--- Begin Message ---Hello, I'm having big trouble getting OpenCA to return an SCEP enrolled certificate. I'm testing with SSCEP and with a Cisco IOS 12.2(13)T3 router.SSCEP dumps core while tring to unpack the returned cert in pkcs7_unwrap(), on line pkcs7bio = PKCS7_dataInit(s->reply_p7, NULL); because s->reply_p7 is NULL. On the OpenCA machine (Redhat Linux 8.0), I see files in /usr/local/OpenCA/var/tmp called scep_pki*.p7 (contains base64 though strangely formatted) and a file scep_client*.crt which is empty (0 bytes)! I've built OpenCA with ./configure --with-openca-user=jpm --with-openca-group=jpm --with-module-prefix=/usr/local/openca/modules --with-httpd-user=apache --with-httpd-group=apache --with-httpd-fs-prefix=/var/www/ --with-cgi-fs-prefix=/var/www/cgi-bin --with-htdocs-fs-prefix=/var/www/html --with-openssl-prefix=/usr/local --enable-ocspd --enable-scep --enable-dbi --with-hierarchy-level=ca --with-httpd-host=xhost Can you help me find the problem ? Thanks & regards, -JP
--- End Message ---
smime.p7s
Description: S/MIME Cryptographic Signature
