[Cmpforopenssl-devel] Need new option to specify recipient instead "--cacert"

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 454-5900

Hello,
This topic concerns the option "-cacert FILE' of  "cmpforopenssl" tool in case of a initial CMPv2 request sequence.
Our understanding is that this option is mandatory and that it specifies the path to a client local CA certificate file corresponding to the signing CA.
Looking to the source files I have the feeling that the only usage of this option with the initial CMPv2 request sequence is to provide the issuer's name that will fill up the recipient field on the header of the request. I didn't see any other usage of the CA file.
On my specific scenario I know the "issuer" name for the CA but I don't have the CA certificate on the client side before sending the ir (initial request) to server.
My question is if it is possible to add a new option "-caname" or "--recipient" (or similar) to specify the missing field (i.e. issuer). This option could be VERY useful when the "-cacert" is unknown.

Best Regards
Mugur

[Cmpforopenssl-devel] Need new option to specify recipient instead "--cacert"

CMP [RFC4210] implementation based on OpenSSL

[Cmpforopenssl-devel] Need new option to specify recipient instead "--cacert"