Hi, I'm now about the argument. Anyway I'm trying to setup https on a server without success. So I've tried testing it with s_client.
$ openssl s_client -verify 1 -showcerts -connect $MY_SERVERIP:$MY_SERVERPORT verify depth is 1 CONNECTED(00000003) depth=1 /C=IT/O=$CA_O/OU=$CA_OU/CN=$CA_CN verify error:num=19:self signed certificate in certificate chain verify return:1 depth=1 /C=IT/O=$CA_O/OU=$CA_OU/CN=$CA_CN verify return:1 depth=0 /C=IT/ST=Italy/L=Milan/O=$MY_O/OU=$MY_OU/CN=$MY_SERVERIP verify return:1 16816:error:14094412:SSL routines:SSL3_READ_BYTES:sslv3 alert bad certificate: s3_pkt.c:1086:SSL alert number 42 16816:error:140790E5:SSL routines:SSL23_WRITE:ssl handshake failure:s23_lib.c: 188: I've tried searching, but I can't find what is the meaning of that error. Is there something I can read where error codes are explained? Could it be caused by the fact that the O field (organization) in the CA certificate is different from mine? I've noticed that right now, while I was "masking" the real data :( Am I supposed to left ST and L fields empty as in the CA certificate? Sending a csr have a cost to my departement, and I've sent 3 csr yet, so I would like to be sure about the reason before sending another one. Sending another request and failing again can cause my bad troubles :( Can anyone help me? Thanks Barbara ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
