openssl x509 -hash

To: tech-crypto%netbsd.org@localhost
Subject: openssl x509 -hash
From: Greg Troxel <gdt%ir.bbn.com@localhost>
Date: Sat, 25 Feb 2012 09:42:32 -0500

Some colleagues have been finding that "openssl x509 -hash" produces
different results on netbsd-5 vs -current (late 2011).  The results are
consistent between i386/amd64.

(The hashes are used as symlinks in a CA directory to allow finding
trust anchor CA certs; we are using a private CA.)

1) Is anyone else seeing this?

2) Is there a notion that these hashes are meant to be computed/used on
a single machine, or are they meant to be broadly portable?  The man
page doesn't explain this very well.

Attachment: pgp7qLYRR92nL.pgp
Description: PGP signature

Follow-Ups:
- Re: openssl x509 -hash
  - From: Greg Troxel

Prev by Date: Re: Patch: new random pseudodevice
Next by Date: Re: openssl x509 -hash
Previous by Thread: Patch: new random pseudodevice
Next by Thread: Re: openssl x509 -hash
Indexes:

Home | Main Index | Thread Index | Old Index