>Since x509 -signkey is supposed to create self-signed certificates, it's
supposed to set AKID == SKID.
It also has to set the SKID if it plugs in a new public key which I dont
think it does either.
I think the same problem is in "openssl x509 ... -CA ..." which also can
create a new cert fro
Looks like OpenSSL has a problem/feature of garbage-in garbage-out. It's a
problem because it does not comply with the RFC and a feature because it
lets OpenSSL work with broken clients.
My OCSP request from some time ago had the encoding error of encoding the
default values and it looks like
Hi Steve,
I found a bug in the earlier submission where the single run (2 pass) produced
slightly different encoding than 2 separate passes.
The attachment is a fixed /apps/smime.c - its actually less lines changed than
the previous one.
I'm not sure how to generate just a patch file.
The pat
Hi Steve, Richard,
OK, the file is attached. The file modified was from
openssl-0.9.8-beta6\apps\smime.c
It is just a simple hack to make it do a double pass over the file to do both
operations in the one call - sorry but I used a "goto" :-).
My user likes it much better this way because they
