In message <[EMAIL PROTECTED]> on Wed, 06 Nov 2002
23:58:06 +0900 (JST), Kiyoshi WATANABE <[EMAIL PROTECTED]> said:
kiyoshi> Does this mean that openssl verify command does not check the name
kiyoshi> chain and if I put the correct value in the issuer of x in
kiyoshi> apps/verify.c, I would not get the error? or does it check in
kiyoshi> somewhere else?
The check happens somwhere else.
The chain is still verified, and the crucial thing to look at is if
you got "OK" at the end. If not, then it's time to look at those
issuer_checks lines.
--
Richard Levitte \ Spannvägen 38, II \ [EMAIL PROTECTED]
Redakteur@Stacken \ S-168 35 BROMMA \ T: +46-8-26 52 47
\ SWEDEN \ or +46-708-26 53 44
Procurator Odiosus Ex Infernis -- [EMAIL PROTECTED]
Member of the OpenSSL development team: http://www.openssl.org/
Unsolicited commercial email is subject to an archival fee of $400.
See <http://www.stacken.kth.se/~levitte/mail/> for more info.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
