Re: What does the subject name's hash mean?
Edward Chan wrote: Sorry for all the questions today. But I'm looking at the SSL_CTX_load_verify_locations() API and the 3rd arg. This specifies, The name of a directory containing CA certificates. Each file in the directory must contain only a single CA certificate, and the files must be named by the subject name's hash and an extension of .0. That was taken from the O'Reilly book. What exactly is the subject name's hash? a truncated md5 hash value of the der encoded subject dn (it's used to easier locate the issuer of a certificate) Nils __ OpenSSL Project http://www.openssl.org User Support Mailing Listopenssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
RE: What does the subject name's hash mean?
And do what length is it truncated? Thanks. Ed -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Nils Larsch Sent: Saturday, March 05, 2005 1:48 AM To: openssl-users@openssl.org Subject: Re: What does the subject name's hash mean? Edward Chan wrote: Sorry for all the questions today. But I'm looking at the SSL_CTX_load_verify_locations() API and the 3rd arg. This specifies, The name of a directory containing CA certificates. Each file in the directory must contain only a single CA certificate, and the files must be named by the subject name's hash and an extension of .0. That was taken from the O'Reilly book. What exactly is the subject name's hash? a truncated md5 hash value of the der encoded subject dn (it's used to easier locate the issuer of a certificate) Nils __ OpenSSL Project http://www.openssl.org User Support Mailing Listopenssl-users@openssl.org Automated List Manager [EMAIL PROTECTED] __ OpenSSL Project http://www.openssl.org User Support Mailing Listopenssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
Re: What does the subject name's hash mean?
Edward Chan wrote: And do what length is it truncated? Thanks. to the length of an unsigned long, have a look at X509_NAME_hash() in crypto/x509/x509_cmp.c Nils __ OpenSSL Project http://www.openssl.org User Support Mailing Listopenssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
RE: What does the subject name's hash mean?
Ah, cool. Thanks! -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Nils Larsch Sent: Saturday, March 05, 2005 11:10 AM To: openssl-users@openssl.org Subject: Re: What does the subject name's hash mean? Edward Chan wrote: And do what length is it truncated? Thanks. to the length of an unsigned long, have a look at X509_NAME_hash() in crypto/x509/x509_cmp.c Nils __ OpenSSL Project http://www.openssl.org User Support Mailing Listopenssl-users@openssl.org Automated List Manager [EMAIL PROTECTED] __ OpenSSL Project http://www.openssl.org User Support Mailing Listopenssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
