Re: certificate regeneration problem: how to create certs for use in a client/server application

Jeffrey Walton Wed, 23 Jul 2014 19:10:28 -0700

On Wed, Jul 23, 2014 at 9:21 PM, Daniel Bertrand
<danieljamesbertr...@me.com> wrote:
> Specifically, what can lead me backwards from the
>
> "Error with certificate at depth: 0,  Error with issuer” error code?
>
> I was hoping for a specific reason why this line
>
> X509_NAME_oneline(X509_get_issuer_name(cert), data, 256);
>
> is failing.
Well, that function returns a char* on success. Are you not getting a
valid pointer back?


This gives you error for the particular depth:

    int err = X509_STORE_CTX_get_error(ctx);

What error are you getting? The errors are listed at
http://www.openssl.org/docs/crypto/X509_STORE_CTX_get_error.html.

It should be the same error returned from:

    openssl s_client -connect <server>:<port> -CAfile <internal ca>

Jeff
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    openssl-users@openssl.org
Automated List Manager                           majord...@openssl.org

Re: certificate regeneration problem: how to create certs for use in a client/server application

Reply via email to