Hi.
I have installed openssl-0.9.1c.tar.gz + openssl-0.9.1c-bnrec.patch
on a RedHat 5.2.
When I try to create a server certificate using:
/usr/local/ssl/bin/ssleay req -new -keyout servkey.pem -out servreq.pem\
-days 360 -config /opt/ca/lib/ssleay.cnf
cat servreq.pem servkey.pem > serv.pem
/usr/local/ssl/bin/ssleay ca -policy policy-anything -out servcert.pem \
-infiles serv.cert -config /opt/ca/lib/ssleay.cnf
the last command gives the following error message:
using configuration from /usr/local/ssl/lib/ssleay.cnf
Enter PEM pass phrase:
unable to load CA certificate
5875:error:02001002:system library:fopen:system
lib:bss_file.c:116:fopen('/root/.oid','r')
5875:error:2006D002:BIO routines:BIO_new_file:system lib:bss_file.c:118:
5875:error:0906D06C:PEM routines:PEM_read_bio:no start line:pem_lib.c:628:
Note that the "ca" command does not consider the -config option and
open the original ssleay.cnf file. Anyway, the problem arises even if
I put a copy of my .cnf into /usr/local/ssl/lib.
Moreover, note that "req" commands use the correct .cnf file.
Is this a bug? Is it my mistake?
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
