default_policy is only mandated if you don't use -policy. -Kyle H
2009/5/27 Victor B. Wagner <[email protected]>: > Documentation for openssl ts command says following: > >>Timestamp responce generation >>...skip... >>-policy object_id >> The default policy to use for the response unless the client >> explicitly requires a particular TSA policy. The OID can be speci- >> fied either in dotted notation or with its name. >> Overrides the default_policy config file option. >> (Optional) > ...skip... >>CONFIGURATION FILE OPTIONS > ...skip... >> default_policy >> The default policy to use when the request does not mandate any >> policy. The same as the -policy command line option. (Optional) > > However, if I don't specify -policy in the command line, and config > doesn't contain default_policy variable, openssl ts -reply command complains > > variable lookup failed for tsa_section::default_policy > Response is not generated. > 3082778272:error:0E06D06C:configuration file > routines:NCONF_get_string:no value:conf_lib.c:335:group=tsa_section > name=default_policy > > Does it mean that default_policy configuration file option should be > marked as "Mandatory" in the documentation, or I'm missing something? > > > > > > ______________________________________________________________________ > OpenSSL Project http://www.openssl.org > Development Mailing List [email protected] > Automated List Manager [email protected] > ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [email protected] Automated List Manager [email protected]
