Hi Goetz, > >> You point at it in the context before the handshake. You can either > >> point at a dir full of digest named ones or a specific > root cert file. > > > > Strangely I tried the former which did not work. The latter method > > appears to work fine (it connected and exchanged data anyway). > > did you a c_rehash <ca_directory> ? > > with <ca_directory> being the path to the directory > with the CA file(s) ?
Yes. > Naturally you have to set the directory in openssl with > the -CApath command line option and the > SSL_CTX_load_verify_locations(ctx, NULL, CApath) > function call... I used SSL_CTX_load_verify_locations(ctx, NULL, CApath) but did not use the -CApath option anywhere. Where should that be used? Cheers, Mark ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
