[Libpki-users] OCSP request signing is not working

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

Hi,

I am retrieving the signer certificate for siging the ocsp request.

signer = PKI_X509_CERT_get("ocspsigner.pem", NULL, NULL);

>From signer value Iam taking out the key

PKI_X509_KEYPAIR_VALUE *pubKey = NULL;
pubkey = PKI_X509_CERT_get_data ( signer, PKI_X509_DATA_KEYPAIR_VALUE);
But How to make a keypait out of it.

I tried, keypair = PKI_X509_new_dup_value ( PKI_DATATYPE_X509_KEYPAIR,
pubKey, NULL );
How ever, there is no dup call back for this conversion.

I tried another way:
PKI_X509_KEYPAIR *keypair=PKI_X509_new ( PKI_DATATYPE_X509_KEYPAIR, NULL );
keypair->value = PKI_X509_CERT_get_data ( signer,
PKI_X509_DATA_KEYPAIR_VALUE);

But PKI_X509_OCSP_REQ_sign(ocspreq, keypair, certtochk, cacert, NULL,
digest); is failing in signing the request at EVP_SignFinal in
HSM_OPENSSL_sign call.(with segmentation fault.)

[Libpki-users] OCSP request signing is not working

Easy to use PKI library

[Libpki-users] OCSP request signing is not working