NSS developers reluctantly export symbols from the library, because once
exported, they should be maintained forever.
Besides that, public API should be "minimally sufficient". That is, even
frequently occurring operation should not be placed in the public API, if it (operation)
may be implemented in a client by calling basic library primitives.
I do not know, whether this applies to your case. Investigate, whether sort of
"CERT_AddExtensionByOID" may be implemented in your code. If not, file a
request for NSS enhancement.
Keep well,
Konstantin
james07 wrote:
Thanks, guess I have to implement a similar function in my code then? Bit of a
shame it is not being exported for public consumption. I imagine its usage
would be quite common, no?
Konstantin Andreev wrote:
This is an ancient [bug 294538], six years (sic!) old.
CERT_AddExtensionByOID, as many other functions, is declared in the public
header (here: cert.h), but is not exported by the library.
--
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
