Never mind. This helped:
http://www.mail-archive.com/openssl-users@openssl.org/msg37839.html
On Mon, Jan 31, 2011 at 3:48 PM, Karthik Ravikanti <
karthik.ravika...@gmail.com> wrote:
> Hi,
>
> Using the command line tools I was able to create a CA, a certificate
> request and a
m: owner-openssl-us...@openssl.org On Behalf Of Karthik
> Ravikanti
> > Sent: Friday, 21 January, 2011 09:16
>
> > To overcome [snipped], in my get_by_subject lookup method, I'm
> returning
> > the certificate whose subject when printed with X509_NAME_pri
Hi,
Using the command line tools I was able to create a CA, a certificate
request and a certificate signed by the CA. However, I also need to add the
Extended Key Usage field to the certificate. I used the -exfile and
-extensions options in x509 to no avail.
Help!
Thanks,
Karthik
failed:rsa_eay.c:699:*
*2694546820:error:0D0C5006:asn1 encoding routines:ASN1_item_verify:EVP
lib:a_verify.c:184:*
*2694546820:error:14090086:SSL
routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify
failed:s3_clnt.c:1059:*
*
*
*
*
On Fri, Jan 21, 2011 at 3:50 PM, Karthik Ravikanti <
karthik.rav
Can anybody help me with this?
On Wed, Jan 19, 2011 at 10:42 AM, Karthik Ravikanti <
karthik.ravika...@gmail.com> wrote:
> I created a self signed certificate and used it to sign a server's
> certificate. I put root in the client's store, using a custom X509_LO
I created a self signed certificate and used it to sign a server's
certificate. I put root in the client's store, using a custom X509_LOOKUP,
overriding the get_by_subject() method.
I see that I'm indeed returning the correct certificate in the return object
from get_by_subject() and also a return
On Fri, Jan 14, 2011 at 8:03 AM, Dave Thompson wrote:
> > From: owner-openssl-us...@openssl.org On Behalf Of Karthik
> Ravikanti
> > Sent: Thursday, 13 January, 2011 05:12
>
> > Thanks a LOT for the detailed reply. I was more interested in the
> &g
On Fri, Jan 14, 2011 at 8:03 AM, Dave Thompson wrote:
> > From: owner-openssl-us...@openssl.org On Behalf Of Karthik
> Ravikanti
> > Sent: Thursday, 13 January, 2011 05:12
>
> > Thanks a LOT for the detailed reply. I was more interested in the
> &g
wrote:
> > From: owner-openssl-us...@openssl.org On Behalf Of Karthik
> Ravikanti
> > Sent: Tuesday, 11 January, 2011 00:44
>
> > Does OpenSSL provide any API for managing a trust store and a key
> store like Java?
>
> Not in the same way at least.
>
Oops, I already asked this on the list... I forgot to check the reply.
Please ignore.
On Thu, Jan 13, 2011 at 3:16 PM, Karthik Ravikanti <
karthik.ravika...@gmail.com> wrote:
> Hi,
>
> Is there any trust store and key store API in OpenSSL? I did find a few
> functions of type X
Hi,
Is there any trust store and key store API in OpenSSL? I did find a few
functions of type X509_TRUST_* in the code, but it is not clear how to use
them.
Is the only way to manage trusted certificates, and keys is to put them in a
certs directory or a flat PEM file?
Thanks,
Karthik, R.
Hi,
Does OpenSSL provide any API for managing a trust store and a key store like
Java?
Thanks,
karthik
9. Public key algorithm parameters: I used EVP_PKEY_print_param and printed
to a mem bio.
On Mon, Jan 10, 2011 at 3:53 PM, Karthik Ravikanti <
karthik.ravika...@gmail.com> wrote:
> Actually I'm working on a small wrapper for the X509 object.
>
> I need all the following:
&g
g all the right things? Or am I completely off the track?
On Mon, Jan 10, 2011 at 3:25 PM, Christian Hohnstaedt <
christ...@hohnstaedt.de> wrote:
> On Mon, Jan 10, 2011 at 02:32:35PM +0530, Karthik Ravikanti wrote:
> > I remember seeing a method to get the signature parameters as a buffe
I remember seeing a method to get the signature parameters as a buffer. I
can't find it now. :-(
On Mon, Jan 10, 2011 at 2:13 PM, Karthik Ravikanti <
karthik.ravika...@gmail.com> wrote:
> Thanks, I discovered this too, by searching for X509_get_signature_type in
> Google&
Thanks, I discovered this too, by searching for X509_get_signature_type in
Google's codesearch tool.
Where are these things documented anyway?
On Mon, Jan 10, 2011 at 11:40 AM, Christian Hohnstaedt <
christ...@hohnstaedt.de> wrote:
> On Mon, Jan 10, 2011 at 10:51:21AM +0530, Kar
Hi,
How can we get a string representation of a signature algorithm from a
certificate?
Thanks,
Karthik
17 matches
Mail list logo
