You can use environment variables in the config file like
extensions = x509v3
[ x509v3 ]
subjectAltName = @subjectAltName
keyUsage= critical,keyEncipherment
extendedKeyUsage = serverAuth
crlDistributionPoints = $ENV::CRLDP
subjectKeyIdentifier = hash
authorityKeyIdentifier = keyid
[ subject
Hello,
I have managed to create a certificate containing different values for
the "subject alternative name". But now I would like to be able to set
this value (this alternative names) from the command line, when I
invoke OpenSSL. Is there any possibility to do that? My target here is
to avoid to
Hi,
Does any know of what would cause ctx->error to be set to 0 (X509_V_OK )
with a call to x509_verify_cert() that should result in
X509_V_ERR_UNABLE_TO_GET_CRL.
From the OpenSSL Source (x509_vfy.h) it looks like that would mean
there were uninitialized values but is there anyway for me to
I have fixed my issue. For anyone who was wondering, what I ended up doing
was looking in the cipher name string appropriate cipher names, and mac
authentication name. I am writing a proxy that is only concerned with a
limited amount of ciphers, so this wasn't all that difficult. I know that
it'
Hello all,
I am trying to reconstruct the key block from a given ssl connection,
and I seem to have found a way to do it (borrowing heavily from the files
t1_enc.c, and ssl_ciph.c) but I run into a problem. During a call to
ssl_cipher_get_evp(const SSL_SESSION *s, const EVP_CIPHER **enc,const