Newsgroups: php.internals Path: news.php.net Xref: news.php.net php.internals:48312 Return-Path: Mailing-List: contact internals-help@lists.php.net; run by ezmlm Delivered-To: mailing list internals@lists.php.net Received: (qmail 10947 invoked from network); 18 May 2010 09:18:36 -0000 Received: from unknown (HELO lists.php.net) (127.0.0.1) by localhost with SMTP; 18 May 2010 09:18:36 -0000 Authentication-Results: pb1.pair.com smtp.mail=pierre.php@gmail.com; spf=pass; sender-id=pass Authentication-Results: pb1.pair.com header.from=pierre.php@gmail.com; sender-id=pass; domainkeys=bad Received-SPF: pass (pb1.pair.com: domain gmail.com designates 74.125.82.42 as permitted sender) DomainKey-Status: bad X-DomainKeys: Ecelerity dk_validate implementing draft-delany-domainkeys-base-01 X-PHP-List-Original-Sender: pierre.php@gmail.com X-Host-Fingerprint: 74.125.82.42 mail-ww0-f42.google.com Received: from [74.125.82.42] ([74.125.82.42:54853] helo=mail-ww0-f42.google.com) by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP id 87/51-02762-A6B52FB4 for ; Tue, 18 May 2010 05:18:35 -0400 Received: by wwb22 with SMTP id 22so41624wwb.29 for ; Tue, 18 May 2010 02:18:31 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:received:in-reply-to :references:date:message-id:subject:from:to:cc:content-type; bh=vvjk8I4emChOZWkx7GsaTMgchvn1BCQsG9Zdcn363ts=; b=iri1g0CgjVTObNGM1JliKBJTFJS/cFZze1DjMAUyaX+Uz5s60Ggp3pNHSzE5qc148x gE6bzYIxBZKPE951ZALDtxHUtxnJi+hEFLThGAjnciiTX6AEVnGZLwwNFsqxR6jeWtNH toVionS0FeDo3WBPjJSEKrU2vUNTr+bOYgmuU= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; b=VU7EB9Bd/uz7i6mpY1Pov9OYTR38hUkd3W1+zuOmOH+xGy9l8ZffFfsfDUmRPR95Ce 98CTiZ2YEkr5ZXYrLhPMwcv1IkxDIG8UrCPmSiA6VLPN2dF87M3WwlmBiN9lv5MeqAWJ cCn2mESLlPwqrvQO/b0HzzFw76wWy1qLNa3tw= MIME-Version: 1.0 Received: by 10.216.89.72 with SMTP id b50mr3888648wef.120.1274174311200; Tue, 18 May 2010 02:18:31 -0700 (PDT) Received: by 10.216.177.146 with HTTP; Tue, 18 May 2010 02:18:31 -0700 (PDT) In-Reply-To: References: Date: Tue, 18 May 2010 11:18:31 +0200 Message-ID: To: Nathan Rixham Cc: internals@lists.php.net Content-Type: text/plain; charset=ISO-8859-1 Subject: Re: [PHP-DEV] SPKAC support for openssl in PHP From: pierre.php@gmail.com (Pierre Joye) hi, Can you open a feature request please? At http://bugs.php.net On Tue, May 18, 2010 at 11:05 AM, Nathan Rixham wrote: > Hi All, > > Wondering if there is any support for SPKAC [1] in the openssl extension for > PHP? > > If not is it planned, and if not can it be? KEYGEN/SPKAC support is growing > in the UA vendors and KEYGEN is part of HTML5, being the preferred way to > generate client side SSL certificates since the private key never leaves the > browser. Further the need for client side certificate generation will be > growing somewhat over the next couple of years thanks to FOAF+SSL - which I > believe is about to start going through standardisation. > > At the minute we have to take a rather hacky approach in PHP [2] and it > get's much worse if you want to use x509 v3 extensions, you have to go > through a nasty process of using a bash script to gen a custom openssl.conf > on the fly to use in the SPKAC request. > > Best, > > Nathan > > [1] http://en.wikipedia.org/wiki/Spkac > [2] > http://lists.whatwg.org/pipermail/whatwg-whatwg.org/attachments/20080714/07ea5534/attachment.txt > > -- > PHP Internals - PHP Runtime Development Mailing List > To unsubscribe, visit: http://www.php.net/unsub.php > > -- Pierre @pierrejoye | http://blog.thepimp.net | http://www.libgd.org