> From: openssl-users On Behalf Of Salz, Rich
> Sent: Sunday, July 05, 2015 11:56
[in response to message about 'ca']
> > > the question: where does the serial number for this certificate come
> from?
> > > is it random by default when nothing is said about it?
>
> It will be random if (a) the seri
> From: openssl-users On Behalf Of Dr. Roger Cuypers
> Sent: Monday, July 06, 2015 10:43
> Follow up:
>
> For some reason, the X509_NAME_hash function calculates a very different
> hash for the server certificate:
>
> 5ad8a5d6
>
> Renaming the certificate to 5ad8a5d6.0 causes it to be found, but I
For clarification:
Using CAFile works, using CAPath doesn't. The OpenSSL exe ist the Windows
1.0.2c version by Eric A. Young. The dll in my program has the same number.
They are from stathis . Both diestributions have exes and
they all yield the 690deae8 hash.
-Ursprüngliche Nachricht---
> For some reason, the X509_NAME_hash function calculates a very different
> hash for the server certificate:
Ah. Have you mixed openssl versions? At one point the hashing changed from
md5 to sha1. That would explain why specifying a directory works, but a
specific file doesn't.
_
Follow up:
For some reason, the X509_NAME_hash function calculates a very different hash
for the server certificate:
5ad8a5d6
Renaming the certificate to 5ad8a5d6.0 causes it to be found, but I wonder
where the difference in the hashes lies.
Regards
-Ursprüngliche Nachricht-
Von: ope
Tried what you suggested, but SSL_get_verify_result still returns error 20.
What I did was the following:
openssl x509 -in D:\certs\-.wikipedia.org.crt -out D:\certs\-.wikipedia.org.der
-outform DER
openssl x509 -in D:\certs\-.wikipedia.org.der -inform DER -out
D:\certs\-.wikipedia.org.pem -out
