Re: How to add intermediate certificate chain in SSL_CTX using OpenSSL API

Viktor Dukhovni Sat, 08 Mar 2014 12:42:23 -0800

On Sat, Mar 08, 2014 at 08:26:54PM +0530, Harshal Talele wrote:

> In my case cert.pem file contains private key too.
> I wan to understand if I have to be use intermediate certificates in SSL
> handshake is there any specific way in which we have to populate SSL_CTX
> structure?
> 
> I have tried using SSL_CTX_use_certificate_chain_file() API. Is this the
> right way?


Yes:

    /* XXX: Add robust error handling? :-) */
    if (SSL_CTX_use_certificate_chain_file(ctx, cert_file) <= 0)
        goto fail;
    if (SSL_CTX_use_PrivateKey_file(ctx, key_file, SSL_FILETYPE_PEM) <= 0)
        goto fail;

-- 
        Viktor.
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    openssl-users@openssl.org
Automated List Manager                           majord...@openssl.org

Re: How to add intermediate certificate chain in SSL_CTX using OpenSSL API

Reply via email to