[openssl-users] Build OpenSSL-Release on Linux: "make tests" problems with certificates

Rob Hermann rhermann at centurioncares.com
Tue Mar 1 14:33:10 UTC 2016


My linux environment is linux-elf. I'm logged in as su.

When I run "make tests"  from the command line,   at the tail end of  
the tests I get some errors about expired certificates:

testing pkcs7 conversions
p -> d
p -> p
d -> d
p -> d
d -> p
p -> p
testing pkcs7 conversions (2)
p -> d
p -> p
d -> d
p -> d
d -> p
p -> p
The following command should have some OK's and some failures
There are definitly a few expired certificates
../util/shlib_wrap.sh ../apps/openssl verify -CApath ../certs/demo 
../certs/demo/*.pem
../certs/demo/ca-cert.pem: C = AU, ST = Queensland, O = CryptSoft Pty 
Ltd, CN = Test CA (1024 bit)
error 20 at 0 depth lookup:unable to get local issuer certificate
../certs/demo/dsa-ca.pem: C = AU, ST = Some-State, O = Internet Widgits 
Pty Ltd, CN = CA
error 20 at 0 depth lookup:unable to get local issuer certificate
3077822616:error:0B06E06B:x509 certificate 
routines:X509_get_pubkey_parameters:unable to find parameters in 
chain:x509_vfy.c:1966:
../certs/demo/dsa-pca.pem: C = AU, ST = Some-State, O = Internet Widgits 
Pty Ltd, CN = PCA
error 18 at 0 depth lookup:self signed certificate
C = AU, ST = Some-State, O = Internet Widgits Pty Ltd, CN = PCA
error 10 at 0 depth lookup:certificate has expired
OK
../certs/demo/pca-cert.pem: C = AU, ST = Queensland, O = CryptSoft Pty 
Ltd, CN = Test PCA (1024 bit)
error 18 at 0 depth lookup:self signed certificate
C = AU, ST = Queensland, O = CryptSoft Pty Ltd, CN = Test PCA (1024 bit)
error 10 at 0 depth lookup:certificate has expired
OK
_make[1]: *** [test_verify] Error 2__
__make[1]: Leaving directory `/home/rhermann/src/OpenSSLWork/test'__
__make: *** [tests] Error 2__
_[root at rhlinuxdev OpenSSLWork]#

what do the underlined statements mean ? is there an expired certificate 
that needs to get updated ?

Rob Hermann

-- 
*Rob Hermann *
Senior Software Engineer
Centurion, Inc.
rhermann at centurioncares.com <mailto:rhermann at centurioncares.com>

www.centurioncares.com <http://www.centurioncares.com>

*Confidentiality Statement
* This email and/or any attached files are intended solely for the 
individual or entity to whom they are addressed. If you have received 
this message in error, please notify us by sending a reply email to the 
sender and remove this message and any associated attachments from your 
computer system(s). Unauthorized use, distribution, or disclosure of 
such messages may be a violation of the law. Centurion would like to 
remind you to refrain from sending private or personal information, such 
as account numbers, social security numbers, passwords, or any other 
confidential financial, credit card or business information via email or 
email attachments. For your security, you are encouraged to contact us 
via phone with any sensitive information rather than use email.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20160301/c4af4af4/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: Centurion-CARES-Email-Logo.jpg
Type: image/jpeg
Size: 102049 bytes
Desc: not available
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20160301/c4af4af4/attachment-0001.jpg>


More information about the openssl-users mailing list