Question regarding RFC standard used

2011-04-22 Thread prk j
Hi, I am wondering what RFC standard is implemented in Openssl version 0.9.8 for verification of certificates. In otherwords, what RFC standard(s) does X509_verify_cert() api implemented? Thanks, Prkj

X509 certificate verification error when purpose is set to 'any' using openssl api's

2011-04-19 Thread prk j
Please can anybody help? This is kind of priority issue for me. I have following set of certificates with X509 extensions defined for code signing in PKCS7 format. Root CA - Key usage (critical): Certificate Sign, CRL Sign CVC Sub-CA - Key usage (critical): Certificate Sign, CRL Sign CVC cert

RE: Error while verifying X509 certificate

2011-03-21 Thread prk j
Hi, I am wondering if anybody has a chance to look at this. If this question is already answered in some old archives could somebody point me to the link please. Any help is greatly appreciated. Thanks, Prkj From: prkj...@hotmail.com To: openssl-users@openssl.org Subject: Error while verif

Error while verifying X509 certificate

2011-03-17 Thread prk j
Hi, I have following set of certificates with X509 extensions defined for code signing in PKCS7 format. Root CA - Key usage (critical): Certificate Sign, CRL Sign CVC Sub-CA - Key usage (critical): Certificate Sign, CRL Sign CVC cert - Key usage(critical): Digital Signature, Key Encipherment. E

RE: Question regarding PKCS7_verify

2011-03-17 Thread prk j
ar 2011 22:05:03 +0100 > From: st...@openssl.org > To: openssl-users@openssl.org > Subject: Re: Question regarding PKCS7_verify > > On Thu, Mar 10, 2011, prk j wrote: > > > > > Hi, > > > > I am new at using openssl API's. Here is my situation. &g

RE: Question regarding PKCS7_verify

2011-03-10 Thread prk j
PKCS7_verify > > On Thu, Mar 10, 2011, prk j wrote: > > > > > Hi, > > > > I am new at using openssl API's. Here is my situation. > > > > I have following set of certificates with X509 extensions defined for code > > signing in PKCS#7 format.

Question regarding PKCS7_verify

2011-03-10 Thread prk j
Hi, I am new at using openssl API's. Here is my situation. I have following set of certificates with X509 extensions defined for code signing in PKCS#7 format. Root CA - Key usage (critical): Certificate Sign, CRL Sign CVC Sub- CA - Key usage (critical): Certificate Sign, CRL Sign CVC cert - K