Re: strange certificate verification

Thu, 26 Oct 2006 02:41:13 -0700

hu ho, the way I rename the file was bad, I omitted the firsts characters if they were "0". 
I feel just a little bit stupid.... sorry and thanks for your help :)

Alexis Lefort a écrit :
Yes, if I load the file it works, but I want it to work even if the file is only in the directory. I have just seen something else: I did by myself a software that does the equivalent of c_rehash, but my software accept to rename the file whereas c_rehash refuses to do so! 
Why c_rehash can refuses to rename the file???

Vincenzo Sciarra a écrit :

Yes I'm sorry.


try this :
// SSL_CTX_set_client_CA_list (sslctx, SSL_load_client_CA_file (caList)); 
SSL_CTX_load_verify_locations (sslctx, "/path/of/CA/cert/file", NULL);





2006/10/26, Alexis Lefort <[EMAIL PROTECTED]>:


 There is no man page on SSL_CTX_set_verify_locations, do you mean
SSL_CTX_load_verify_locations?

 what I do is :
 SSL_CTX_set_client_CA_list (sslctx, SSL_load_client_CA_file (caList));
SSL_CTX_load_verify_locations (sslctx, caList, caPath);


 Vincenzo Sciarra a écrit :
The software must verify server certificate with a local CA?


 SSL_CTX_set_client_CA_list ()

 Try to use

 SSL_CTX_set_verify_locations()

 You can specify file containing CA cert file





 2006/10/26, Alexis Lefort <[EMAIL PROTECTED]>:

Thanks for your reply :)
This is what I already do, and there is only one certificate in the file 




Ce message et toutes les pièces jointes sont confidentiels et établis a
l'intention exclusive de ses destinataires. Toute modification, édition,
utilisation ou diffusion non autorisée est interdite. Tout message
électronique est susceptible d'altération. CXR Anderson Jacobson décline
toute responsabilité au titre de ce message s'il a été altéré, déformé,
falsifié, édité ou diffusé sans autorisation.

This message and any attachments are confidential and intended solely
for the addressees. Any unauthorised alteration, printing, use or
dissemination is prohibited. E-mails are susceptible to alteration. CXR
Anderson Jacobson shall not be liable for the message if altered,
changed, falsified, printed or disseminated without authorisation.
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    openssl-users@openssl.org
Automated List Manager                           [EMAIL PROTECTED]

Reply via email to