Hi ,
I want to verify a particular certificate stored in an xml ,against a self
signed root certificate using openssl.
For this, am using libxmlsecurity [ internally has openssl ] for parsing my
signature.xml having a certificate .
1. For adding Root Certifiates to *keystore *am using *
Hi,
I am using VxWorks 5.5 EAP supplicant. I know it's old, but that's the
reality. This supplicant is a part of certain HW that authenticates with AAA
server using EAP-TTLS.
Now, everything works fine when i am using X509 certificates that were
generated in openssl 0.9.7e (it's also old, but
I have a chain that fails to verify:
brs% openssl verify -verbose -issuer_checks -CAfile serversTA.pem -untrusted
'servers-users.pem' dua.pem
dua.pem: CN = config, CN = DSA Manager
error 29 at 0 depth lookup:subject issuer mismatch
CN = config, CN = DSA Manager
error 31 at 0 depth
I have a chain that fails to verify:
brs% openssl verify -verbose -issuer_checks -CAfile serversTA.pem -untrusted
'servers-users.pem' dua.pem
dua.pem: CN = config, CN = DSA Manager
error 29 at 0 depth lookup:subject issuer mismatch
CN = config, CN = DSA Manager
error 31 at 0 depth
On 07/20/2011 12:45 PM, Gaglia wrote:
...
Feedbacks always appreciated, in case somebody has further investigated
the issue :)
__
OpenSSL Project http://www.openssl.org
User Support Mailing List
Command Line:
OpenSSL generate DSA public and private keys using the command line
interface (PEM Files)
OpenSSL command line interface convert to DER format for Java
Code:
Load them into Java using PCKS#8 Reader Classes
-Sign a Message (Use Java String.getbytes(UTF8)) Read about problems
verify
Couple updates...
Command Line:
OpenSSL generate DSA public and private keys using the command line
interface (PEM Files)
OpenSSL command line interface convert to DER format for Java
Code:
Load them into Java using PCKS#8 Reader Classes
-Sign a Message (Use Java String.getbytes(UTF8))