Hi,
I thought that two values could be the same. Both use the hash value
of the subject public key field information of the issuer certificate.
RFC 2560 does not have any description of the use of authority key
identifer. However looking at the archives of PKIX discussion, some
mentioned the
There was no data in BIO out.
I needed to call BIO_reset() after calling PKCS7_sign().
Thanks
- Original Message -
From: Dr. Stephen Henson [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Sunday, January 19, 2003 5:10 AM
Subject: Re: Problem passing BIO buffer to PKCS7_sign()
On Sat,
On Sun, Jan 19, 2003, marcus.carey wrote:
There was no data in BIO out.
I needed to call BIO_reset() after calling PKCS7_sign().
From which I deduce you are also using PKCS7_DETACHED. Yes at present you have
to call BIO_reset() to rewind the BIO to the start. This is because detached
data
I have already posted the following on the lists under Proxy'ing client
certs thread.
Could not see the posting, hence re-posting.
-
My understanding had been the following :
Client Proxy Server -- Proxy Client
the problem seems to be that you use self signed
certificates /both sides/.
there is a few possible ways to do this:
1. use custom handler for errors in certificates in
your server
static int SSL_verify_callback(int ok, X509_STORE_CTX
*ctx)
{
charbuf[256];
X509* err_cert;
int err,
