A similar problem was displayed by Xenroll but the other way round:
SSLeay not liking the SHA1 signed stuff from Xenroll. The reason for
this was that the Microsoft uses the PKIX object identifiers (which are
now the virtual "standards") but SSLeay uses other values (which were
just as valid at the time).
A cure that worked with Xenroll is to edit crypto/objects/objects.h
(line 369 or therabouts) to read:
#define OBJ_sha1WithRSAEncryption OBJ_algorithm,29L
Then recompile. Note if you are using NT then you will need to first
manually rebuild obj_dat.h in crypto\objects with
perl obj_dat.pl < objects.h > obj_dat.h
Steve.
--
************************************************
* Dr Stephen N. Henson. *
* Freelance Cryptographic Consultant. *
* Email: [EMAIL PROTECTED] *
************************************************
+-------------------------------------------------------------------------+
| Administrative requests should be sent to [EMAIL PROTECTED] |
| List service provided by Open Software Associates, http://www.osa.com/ |
+-------------------------------------------------------------------------+
