diff options
| author | Dr. Stephen Henson <steve@openssl.org> | 2014-06-29 13:31:57 +0100 |
|---|---|---|
| committer | Janusz Kozerski <j.kozerski@samsung.com> | 2014-10-20 15:25:28 +0200 |
| commit | fc1a03c8be99e25358bdd982d843f98c3c5e1fda (patch) | |
| tree | 22be82e988e36a854e490b56b2077e548ac9db32 /apps | |
| parent | a2c17df78ff130cddc6afe0b111760616c50a239 (diff) | |
| download | openssl-fc1a03c8be99e25358bdd982d843f98c3c5e1fda.tar.gz openssl-fc1a03c8be99e25358bdd982d843f98c3c5e1fda.tar.bz2 openssl-fc1a03c8be99e25358bdd982d843f98c3c5e1fda.zip | |
Show errors on CSR verification failure.
If CSR verify fails in ca utility print out error messages.
Otherwise some errors give misleading output: for example
if the key size exceeds the library limit.
PR#2875
(cherry picked from commit a30bdb55d1361b9926eef8127debfc2e1bb8c484)
Diffstat (limited to 'apps')
| -rw-r--r-- | apps/ca.c | 2 |
1 files changed, 2 insertions, 0 deletions
@@ -1620,12 +1620,14 @@ static int certify(X509 **xret, char *infile, EVP_PKEY *pkey, X509 *x509, { ok=0; BIO_printf(bio_err,"Signature verification problems....\n"); + ERR_print_errors(bio_err); goto err; } if (i == 0) { ok=0; BIO_printf(bio_err,"Signature did not match the certificate request\n"); + ERR_print_errors(bio_err); goto err; } else |