Hello, Thanks for ur suggestions, Now the crl is working well , but only in the case of using CRLfile. When I use the CRLfile , the client having the revoked certificate is now not able to connect to the server. But when I m providing the CRLpath in the stunnel config file , the client is still able to connect. That is CRL is working in the case of CRLfile entry and not working in the case of CRLpath. So where is the flaw. regards piyush "Dr. Stephen Henson" <[EMAIL PROTECTED]> wrote: On Wed, Jun 06, 2007, piyush tewari wrote:
> > > "Dr. Stephen Henson" wrote: On Wed, Jun 06, 2007, piyush tewari wrote: > > The second CRL file , that is CRL2 , is showing the revoked certificate. > > But when i m calculating the hash for this CRL , it is showing the error. > This shows that the problem is related to openssl. > The command line operations were as follows:- > > C:\openssl>openssl x509 -hash -noout -in my_crl1.pem > unable to load certificate > 656:error:0906D06C:PEM routines:PEM_read_bio:no start > line:./crypto/pem/pem_lib.c:642:Expecting: TRUSTED > CERTIFICATE > Use the 'crl' command the 'x509' command is for certificates. Steve. -- Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage OpenSSL project core developer and freelance consultant. Funding needed! Details on homepage. Homepage: http://www.drh-consultancy.demon.co.uk ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED] --------------------------------- Luggage? GPS? Comic books? Check out fitting gifts for grads at Yahoo! Search.
