[Delta] QCA roadmap
Alon Bar-Lev
alon.barlev at gmail.com
Wed Apr 11 21:30:49 PDT 2007
On 4/11/07, Justin Karneges <justin-psi2 at affinix.com> wrote:
> When I used openssl x509 -text, it showed all the items comma-delimited,
No it doesn't... It is slash-delimited.
/C=IL/O=Xor Technologies/OU=Users/CN=Alon Bar-Lev/emailAddress=alon at xor-t.com
OpenSSL's format is hierach-like name.
> except for emailAddress which had a '/' character between it at the CN (that
> confused me, I wasn't sure if openssl was putting the email address into the
> common name...). I'll add support for emailAddress as a label.
It is not in CN.... Or I don't understand.
> That said: qca-openssl is wrong.. sorry about it. This is why the order is
> messed up. Also, email address should at least show up as an OID in the
> current implementation, but again qca-openssl is wrong and so there's no
> email address at all. I need to fix the plugin.
OK.
>
> > > Non-end certs are determined by a missing private key I thought?
> >
> > No... When I load the certificates from the public context, I don't
> > have means to determine if a private object is available.
> > So I "guess" based on the chains available.
>
> Maybe use CertificateChain::complete() ?
But I first need to load the certificates....
I use complete() afterwards.
I also use Certificate::isIssuerOf () so I get this part right.
Best Regards,
Alon Bar-Lev.
More information about the delta
mailing list