[openssl-users] Converting DER encoded unsigned CSR to internal OpenSSL format

Peter P. p.pan48711 at gmail.com
Tue Nov 10 14:40:56 UTC 2015


Hi Dr. Henson,

Thank you for your reply. To work around this issue in my application, I
have considered attempting to re-sign an already signed CSR. Is this
possible with OpenSSL?

Thank you again,

Peter

On Tue, Nov 10, 2015 at 9:18 AM, Dr. Stephen Henson <steve at openssl.org>
wrote:

> On Mon, Nov 09, 2015, Peter P. wrote:
>
> > Hi,
> > I'm writing an application using Openssl 1.0.2d where I am trying to
> take a
> > DER encoded unsigned CSR and read it into an X509_REQ data structure via
> > the d2i_X509_REQ_bio() function. This function errors out during when I
> > attempt to read in my unsigned CSR and I would like to know if there is
> any
> > other way to read in an unsigned CSR into an X509_REQ data structure.
> >
>
> The signature on a CSR is mandatory so if it is not present it isn't a
> valid
> CSR structure any more: that will cause the parser to reject it.
>
> Steve.
> --
> Dr Stephen N. Henson. OpenSSL project core developer.
> Commercial tech support now available see: http://www.openssl.org
> _______________________________________________
> openssl-users mailing list
> To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20151110/d992de33/attachment.html>


More information about the openssl-users mailing list