On 09/13/2011 05:28 AM, Vladimir Mencl wrote:
Hi guys,
We've run into a similar issue on an Ubuntu system.
All proxy certificate verification was failing with a very similar error
message - certificates appeared to be issued by a CA with a different hash
value. With a closer look, the hash value was that of the end-entity
certificate (user or host certificate) the proxy certificate was derived from.
And it all appeared to be due to:
http://bugzilla.globus.org/globus/show_bug.cgi?id=6984
Debian v6 uses OpenSSL 0.9.8o, which requires an additional initialization
call, which Globus wasn't making. Has been fixed in Globus, but we are
installing Globus through VDT, which has not been updated with this fix yet.
We solved this by downgrading OpenSSL to OpenSSL 0.9.8l (installing this into
a separate directory and altering LD_LIBRARY_PATH)
Hope this helps.
Cheers,
Vlad
Now things are clear.
Thank you
Amitav
