> From: owner-openssl-us...@openssl.org On Behalf Of cschwaderer > Sent: Thursday, 20 May, 2010 15:33
> I created a CA file that is a simple Linux cat of two certificates. > The file path and name of caFile = "/etc/myClientCAs". > > Then I execute SSL_load_client_CA_file(caFile); > [and] struct_st->num ... says 1 instead of 2. > > Is there any special requirements to the file being passed in to the > SSL_load_client_CA_file() call? Or can it be a simple > concatination of two > base64 PEM certificates in order for this call to recognize > that there are > two certificates in this file? > Just a concatenation. To be abundantly clear, like: -----BEGIN CERTIFICATE----- base64cert usually several lines -----END CERTIFICATE----- -----BEGIN CERTIFICATE----- base64cert ditto -----END CERTIFICATE----- If you want you can even do: othergarbage may be multiple lines -----BEGIN CERTIFICATE----- base64cert usually several lines -----END CERTIFICATE----- othergarbage ditto -----BEGIN CERTIFICATE----- base64cert ditto -----END CERTIFICATE----- othergarbage ditto And the same answer for _load_verify_(,file,) presumably also relevant per your prior message. But different for _load_verify_(,,dir). ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
