Thanks Dr. Stephen an Mr. Willy Weisz, the comments clarifies the
different matching options.
Still, bugged with the details that made OpenSSL complain about two
strings apparently equal, I've sniffed out the certificates:
0.9.8
SET (1 elem)
SEQUENCE (2
On Mon, Sep 19, 2011, Gabriel Marques wrote:
> Hello folks,
>
> I'm developing a tool for signing digital TV apps, and for testing
> I'm creating a lot of different test scenarios.
>
> Well, using OpenSSL 1.0.0e to create a new certificate, signed by a
> snakeoil one I got the following error:
>
Hi Gabriel,
openssl performs as it is described.
You probably wanted the behaviour activated by the option "supplied"
which requires the DN component to be present, but doesn't tie it to the
corresponding entry in the CA DN.
Regards
Willy
Am 19.09.2011 17:02, schrieb Gabriel Marques:
> Hello fo
Hello folks,
I'm developing a tool for signing digital TV apps, and for testing I'm
creating a lot of different test scenarios.
Well, using OpenSSL 1.0.0e to create a new certificate, signed by a
snakeoil one I got the following error:
--> The stateOrProvinceName field needed to be the same