On Mon, Mar 31, 2003, Chris Jarshant wrote:
> I generated 1000 test self-signed CA certs, and wrote
> a small program to add them all to an X509_STORE in
> preparation for verifying a certificate.. But this operation
> took a LONG, LONG time. Even adding 500 certs took
> approx. 30 seconds! It a
And just to be clear, it was the for() loop
that
calls X509_STORE_add_cert() for each
cert that was taking forever, not the actual
verification, which took no perceivable (in
terms of user interface delay)
time.
cj
- Original Message -
From:
Chris Jarshant
To: [EMAIL
I generated 1000 test self-signed CA certs, and
wrote
a small program to add them all to an X509_STORE
in
preparation for verifying a certificate.. But this
operation
took a LONG, LONG time. Even adding 500 certs
took
approx. 30 seconds! It appeared to go real
fast for
the first 100 certs
How long exactly is ``shortly?'' Wouldn't the release be 0.9.6j, which I haven't
heard anything about?
thanks,
adam
On Mon, Mar 17, 2003 at 08:47:01AM +, Ben Laurie wrote:
> I expect a release to follow shortly.
>
> --
> http://www.apache-ssl.org/ben.html http://www.thebunker.net/
>
> I think he means he wants serial numbers "001" "002" ... "010" ... etc.
>
> I dont think that's allowed; ASN.1 integers don't have leading zeros.
> /r$
Integers don't have leading zeros, a representation of an integer
may have a leading zero. If someone want to make a sort based
on ser
OpenSSL follows the DER specifications: if the serial number is positive and
the MSB is set then one leading zero is added. Anything else would break the
standards.
I think he means he wants serial numbers "001" "002" ... "010" ... etc.
I dont think that's allowed; ASN.1 integers don't have leadin
On Mon, Mar 31, 2003, Michiels Olivier wrote:
> Hi,
> I've to insert a serial number in my certificates with one or more zeros
> leading the serial number. Is that possible with Openssl ? If yes, what
> I've to do ?
>
OpenSSL follows the DER specifications: if the serial number is positive and
t
