On Wed, Oct 25, 2006, Goetz Babin-Ebell wrote: > > It is always possible to have more than one certificate with the > same subject name. > > Only the combination issuer name / serial number must be unique. > (Last time I checked OpenSSL has problems with more than one CA > certificate with the subject name...) >
Depends. If SKID/AKID is used to disambiguate that case OpenSSL should handle it properly. If not it will just use the first certificate it encounters which may not be the right one. Steve. -- Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage OpenSSL project core developer and freelance consultant. Funding needed! Details on homepage. Homepage: http://www.drh-consultancy.demon.co.uk ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
