[xmlsec] core methods for write of <X509SubjectName/> and <X509IssuerSerial/>
Roumen Petrov
xmlsec@roumenpetrov.info
Thu, 24 Jul 2003 11:43:19 +0300
Aleksey Sanin wrote:
>>> I have looked at your new patch and I have few comments:
>>> 0) It seems that xmlSecOpenSSLKeyDataX509XmlWrite() function
>>> now writes subject, serial or full certificate only for the
>>> first certificate
>>> in the xmlSecKey. All other certificates are written "in-full".
>>
>> There is no special case the first cert :-[
>
> Well, I used a wrong word. Not "cert" but "certs" :) The point is that
> you don;t know
> the certs order in xmlSecKey. Nobody said that it'll be the same as
> one you've
> specified in xmlsec utility command line :) For example, xmlsec-XXX
> might use
> a hash table (per cert subject) to store the certs assotiated with a key.
Might is not easy to implement writing of <X509Data>.
Only reasonable please to specify "cert. xmlsec_write_type" is might
method XXX-AdoptCert (cert_store, cert, cert_properties).