[openssl-users] [openssl-dev] X509_verify() error - block type is not 01

Nayna Jain naynjain at in.ibm.com
Mon Jun 22 02:26:37 UTC 2015

Thanks Victor,

I want to match the certificate with the private key for whose public key
that certificate is provided.

If this verifies who signed the certificate, then how do I verify whether
the certificate provided is for the private key which was generated,

Thanks & Regards,
Nayna Jain

From:	Viktor Dukhovni <openssl-users at dukhovni.org>
To:	openssl-users at openssl.org, openssl-dev at openssl.org
Date:	06/22/2015 07:39 AM
Subject:	Re: [openssl-dev] [openssl-users] X509_verify() error - block
            type	is not 01
Sent by:	"openssl-dev" <openssl-dev-bounces at openssl.org>

On Mon, Jun 22, 2015 at 04:12:29AM +0530, Nayna Jain wrote:

> I am trying to verify X509 certificate against two private keys such that
> atleast one of them it should match.

What do you mean by "match"?  Was either key used to sign the
certificate, or is one of the keys the public key of the subject?

> X509_verify(x509, pkey) where pkey is of EVP_PKEY type

This checks whether the key signed the certificate.

openssl-dev mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20150622/e2a91cfb/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: graycol.gif
Type: image/gif
Size: 105 bytes
Desc: not available
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20150622/e2a91cfb/attachment.gif>

More information about the openssl-users mailing list