Check out: http://www.linuxdoc.org/HOWTO/SSL-Certificates-HOWTO/
Amol -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of amit limaye Sent: Wednesday, 27 March, 2002 10:50 AM To: [EMAIL PROTECTED]; Bhavin Shah; [EMAIL PROTECTED] Subject: settings for making a local CA ne ideas how can i set a new local CA on my machine -SIGTERM amit On Wed, 27 Mar 2002, Bhavin Shah wrote: > Hi Amit, > > I cannot exactly solve the particular problem which you mention, but you can > go through the directory: > <openssl_source_root_directory>/apps > > This directory contains a number of applications that make up the openssl > binary which you can run from the command line. > It has example code on using the OpenSSL APIs which you will find pretty > useful. > Files that may particularly interest you include : > s_server.c (A SSL server app) > s_client.c (A SSL client app) > s_cb.c > s_socket.c > apps.c > and app_rand.c > > also check out the other CA, certs related source files there. > > Hey, and something in the subject line does help people judge whether they > know anything about your problem and may be able to help you much better, > much faster. > > Regards, > Bhavin Shah > Software Engineer > Pace Soft Silicon > > ----- Original Message ----- > From: "amit limaye" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Sent: Wednesday, March 27, 2002 10:13 AM > > > > > > HI > > this is what i get when i try to verify a client cert i have generated > > thesecertificates using openssl and made a local CA > > > > the steps i followb4 registering the verify callback are > > > > SSL_CTX_load_verify_locations(m_context,CA_FILE,CA_PATH); > > cert_names = SSL_load_client_CA_file("/certificates/client/CA.pem"); > > > > if(cert_names != NULL) > > SSL_CTX_set_client_CA_list(m_context,cert_names); > > else > > cout<<"\n******\n***********Certificate names could not be loaded****** > \n*** "<<endl; > > SSL_CTX_set_verify(m_context,SSL_VERIFY_PEER,verify_client); > > > > > > can neone help me with something im missing > > > > > > SSL3 alert write:fatal:unknown CA > > SSL_accept:error in SSLv3 read client certificate B > > returnvalue of ssl write-1 (This is the when i try to write > > > > > > -SIGTERM > > amit > > ______________________________________________________________________ > > OpenSSL Project http://www.openssl.org > > User Support Mailing List [EMAIL PROTECTED] > > Automated List Manager [EMAIL PROTECTED] > > ______________________________________________________________________ > OpenSSL Project http://www.openssl.org > User Support Mailing List [EMAIL PROTECTED] > Automated List Manager [EMAIL PROTECTED] ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED] ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]