emailAddress in DN

2014-07-31 Thread Alexander Komyagin
X509v3 Subject Key Identifier: OpenSSL version is 1.0.1g. Best Regards, Alexander Komyagin

Re: OCSP

2012-08-06 Thread Alexander Komyagin
ress (i.e. -port :::8080), but that didn't help > (although it does work with 0.9.81 just fine). > > Many thanks, > Steve > > > > > > -- Best wishes, Alexander Komyagin __ OpenSSL

Re: How to use ocsp in openssl

2012-06-22 Thread Alexander Komyagin
for validation purposes! > > >>>> > > >>>> I'm very new to openssl but i found that i can use bundled command-line > > >>>> `ocsp` application for checking certificates. Documentation says that I > > >>>> need to call it with the re

Re: Error: can't resolve symbol 'X509_sign_ctx'

2012-06-09 Thread Alexander Komyagin
-key ca.key -out ca.crt -passin > pass:testing123 > > I get this error: > openssl: can't resolve symbol 'X509_sign_ctx' > > Does anyone know what that means? > > Thanks, > > EV -- Best wishes, Alexander Komyagin

[FEATURE] OCSP functionality patch

2012-06-08 Thread Alexander Komyagin
ILURE doesn't tell you much). -- Best wishes, Alexander Komyagin diff --git a/apps/apps.c b/apps/apps.c index 4e11915..47f8c2f 100644 --- a/apps/apps.c +++ b/apps/apps.c @@ -2338,8 +2338,12 @@ int args_verify(char ***pargs, int *pargc, flags |= X509_V_FLAG_CB_ISSUER_CHECK; else if (!

Re: authenticate peer

2012-06-04 Thread Alexander Komyagin
d. On Mon, 2012-06-04 at 15:53 +0530, Lloyd wrote: > Thanks again... > > In my case I am using "SELF SIGNED CERTIFICATES", totally eliminating > CA. So, is it possible to check both sides without a CA? > > Thanks for your help > > Lloyd > > On Mon,

Re: authenticate peer

2012-06-04 Thread Alexander Komyagin
/SSL_CTX_load_verify_locations.html On Mon, 2012-06-04 at 15:14 +0530, Lloyd wrote: > Thanks Alexander Komyagin, > > So it means in mutual authentication mode also, each client and server > need only to load its only private key and public key. During SSL > handshake the SSL protocol

Re: authenticate peer

2012-06-04 Thread Alexander Komyagin
tes (isn't certificate mean public key in this > context?),. Is it possible to load all client certificate? which > openSSL api shoud I use ffor this? > > Thanks a lot, > > Lloyd > > -- Best wishes, Alexander Komyagin

Re: Programming with OpenSSL in different operation systems

2012-05-11 Thread Alexander Komyagin
_ > OpenSSL Project http://www.openssl.org > User Support Mailing Listopenssl-users@openssl.org > Automated List Manager majord...@openssl.org -- Best wishes, Alexander Komyagin __