Hi Dr. Henson, Thank you for your reply. To work around this issue in my application, I have considered attempting to re-sign an already signed CSR. Is this possible with OpenSSL? Thank you again, Peter On Tue, Nov 10, 2015 at 9:18 AM, Dr. Stephen Henson <steve at openssl.org> wrote: > On Mon, Nov 09, 2015, Peter P. wrote: > > > Hi, > > I'm writing an application using Openssl 1.0.2d where I am trying to > take a > > DER encoded unsigned CSR and read it into an X509_REQ data structure via > > the d2i_X509_REQ_bio() function. This function errors out during when I > > attempt to read in my unsigned CSR and I would like to know if there is > any > > other way to read in an unsigned CSR into an X509_REQ data structure. > > > > The signature on a CSR is mandatory so if it is not present it isn't a > valid > CSR structure any more: that will cause the parser to reject it. > > Steve. > -- > Dr Stephen N. Henson. OpenSSL project core developer. > Commercial tech support now available see: http://www.openssl.org > _______________________________________________ > openssl-users mailing list > To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users > -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20151110/d992de33/attachment.html>
