Generally speaking, OpenSSL hasn't exactly encouraged multiple objects
in one DER file. While it's theoretically possible to have several
objects in such a file file, there is code in OpenSSL where that's
simply not considered. For example, this snippet in the man-page
'X509_LOOKUP_file' is quite
If you need multiple certificates in a single DER structure, you're looking
for something to create a "PKIpath". I've never heard of curl requiring
such, though. Chances are it will handle the PEM chain just fine.
What curl command line are you trying to use?
-Kyle H
On Thu, May 21, 2020, 18:00
I am a complete newbie to this list.
I wanted to search the archive but found no such page.
I have a requirement to convert all certs in a *.p12 file to a *.der file
for use in the curl command.
The first hop to a *.pem file has all the certs.
But the second hop only has one cert. The I rea
Sorry for just another (intermediate) update: further debugging
shows the I/O laywer (unsurprisingly) wasn't the problem. I have
to take some steps back and start over :-(
On Wed, May 20, 2020, Matt Caswell wrote:
> This sounds odd. Why does the client fail because it hasn't read the
> expected data yet? Normally (with non-blocking sockets), a failure to
Sorry, I should have written that the read call is timing out
(doesn't matter whether the timeout is 5s or 20s).
