Add NID_certificate_policies to the list of supported extensions so

that our certificates will stop throwing critical exception errors. This should be ok since "openssl verify" at least claims to be checking policies if given the (undocumented) -policy etc switches. (needs further testing). svn path=/openssl/trunk/crypto/x509v3/v3_purp.c; revision=149
author: Rob Austein <sra@hactrn.net> 2006-08-11 23:28:44 +0000
committer: Rob Austein <sra@hactrn.net> 2006-08-11 23:28:44 +0000
commit: e0b445c6976155525b005e3f2559763d82a0d9e6 (patch)
tree: 66d5d432a84e99226fd27db36719afd35f290dde
parent: 02611dcc8e6ffff182ba447a9c24b0e0984eea71 (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/openssl/trunk/crypto/x509v3/v3_purp.c b/openssl/trunk/crypto/x509v3/v3_purp.c
index d5f2166a..ae05b39b 100644
--- a/openssl/trunk/crypto/x509v3/v3_purp.c
+++ b/openssl/trunk/crypto/x509v3/v3_purp.c
@@ -285,6 +285,7 @@ int X509_supported_extension(X509_EXTENSION *ex)
         	NID_key_usage,		/* 83 */
 		NID_subject_alt_name,	/* 85 */
 		NID_basic_constraints,	/* 87 */
+		NID_certificate_policies, /* 89 */
         	NID_ext_key_usage,	/* 126 */
 		NID_sbgp_ipAddrBlock,	/* 290 */
 		NID_sbgp_autonomousSysNum, /* 291 */
author	Rob Austein <sra@hactrn.net>	2006-08-11 23:28:44 +0000
committer	Rob Austein <sra@hactrn.net>	2006-08-11 23:28:44 +0000
commit	e0b445c6976155525b005e3f2559763d82a0d9e6 (patch)
tree	66d5d432a84e99226fd27db36719afd35f290dde
parent	02611dcc8e6ffff182ba447a9c24b0e0984eea71 (diff)