ks for the hint regarding the ip address.
-Dave
-Original Message-
From: Dr S N Henson [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, September 06, 2000 12:33 PM
To: [EMAIL PROTECTED]
Subject: Re: Bad certificate request.
David Ahrens wrote:
>
> Hi,
>
> I'm
David Ahrens wrote:
>
> Hi,
>
> I'm using openssl to generate a certificate request.
> When I try to build the subject name from a given DN, there are problems
> with the DER encoding.
>
>I've attached a code fragment and the resulting PEM encoded certificate
> request.
>
Not sure wh
Hi,
I'm using openssl to generate a certificate request.
When I try to build the subject name from a given DN, there are problems
with the DER encoding.
I've attached a code fragment and the resulting PEM encoded certificate
request.
-Dave
<> <>
certRqst.c
req_test.pem
thanks Steve,
Where can I obtain dumpasn1? (openssl asn1parse is slightly easy)
> Anyway I've updated the development version to store the original
> encoding and work out signatures from that. It will now verify your
> request correctly. It will be in the next snapshot and OpenSSL 0.9.6
When
Martin Szotkowski wrote:
>
>
>
> >
> > SET OF should be sorted but the request is not sorted, or not sorted
> > correctly.
>
> where is defined order?
>
Each SET OF component should be in lexical order, it is in the DER
encoding rules. If you check the SET OF stuff using dumpasn1 you get:
thanks Steve,
> Excellent, someone has actually included the data for a change.
>
> The problem is that the request is improperly encoded.
I looked in the request. Version is 2, but in PKCS10 is version 1. Maybe
there is the problem.
(where is defined pkcs10 version 2?)
>
> It uses a non standa
Hi,
our CA obtain this certificate request, but when we try issue certificate
with openssl 0.9.5a
openssl ca -config ca.cfg -in cert.req
this error occured:
Using configuration from ca.cfg
Check that the request matches the signature
Signature did not match the certificate request
but when I try
