For OpenSSL 1.0.2:
Are you asking how to get a DNS Subject Alternative Name extension into the
certificate?
You would need to edit an openssl.cnf file and add the proper stuff to get this
extension. Check the man page for x509v3_config.
The item you want to put in the config file is
subjectAltN
You may have not run the openssl fipsinstall command.
You should be able to perform ‘make install_fips’ after you do a make install.
Then check your openssl.conf file and make sure it has the proper
fipsmodule.cnf filename and loads the providers you want.
> On Feb 17, 2021, at 10:26 AM, Naga
How I did this:
1) You can make up your own EVP_PKEY that uses your own engine implementation
and attach a data ptr to it
EVP_PKEY* returnPKey;
returnPKey = EVP_PKEY_new();
if( returnPKey )
{
