Hi Al,
Yes, your EBCDIC fixes for the tests would be very much appreciated. I am
at exactly the same point with regard to the seq faults and misc. other
failures and your help would really speed things up.
To enable shared libraries you need to edit Configure and alter the
OS390-Unix config
Ulf Moeller via RT wrote:
> The certificate encoding is in fact ok:
>
> 27168: OBJECT IDENTIFIER qcStatements (1 3 6 1 5 5
> 7 1 3)
> 27261: BOOLEAN TRUE
> 2729 24: OCTET STRING, encapsulates {
> 2731 22: SEQUEN
> As I have no real clue what to do with such an extension when verifying
> a certificate I would simply ignore it.
Hm... If the certificate issuer thought the extension could just be
ignored, they probably wouldn't mark it as critical.
> A quick hack fix on the command line is to use the option
> "-ignore_critical".
AFAIK, if the qc is present you could enhance the string
"Verification successful" to
"Verification successful with a signing certificate issued to be legally
binding"
... although to really make sense, openssl wo
