10:04:34 CET, guoxiaobi...@163.com wrote:
>> Hi Matt,
>>
>> I have asked senior colleague for running the following commands on Redhat
>> Linux server.
>> $ openssl s_server -no_tls1 -key keyfile -cert certname
>> $ openssl s_client -no_tls1
>>
>>
Hi team,I am trying to use CRL to check certificate revocation as following:1 Overrode the get_crl callback function in X509_STORE_CTX, to get the crl from the cache.2 Set flag X509_V_FlAG_CRL_CHECK, just want to check certificate of end entity. 3 During certificate verification, I can see the