Hello,
I noticed that although the docs generally refer to the capi engine as
"builtin", it doesn't appear to be linked statically with openssl, and is
actually being loaded by the dynamic engine mechanism. I believe this is
because the OPENSSL_NO_STATIC_ENGINE flag is being set by Configure. The
o
On Mon, Oct 26, 2020 at 9:35 AM Jakob Bohm wrote:
> On 2020-10-24 16:09, Brett Stahlman wrote:
> > Jakob,
> > I don't really understand why the engine *needs* to do PSS. Neither of
> > the badssl certificates seem to use it for signatures. (I'm assuming the
>
On 23/10/2020 14:10, Brett Stahlman wrote:
> > It seems that the CAPI engine is breaking the server verification
> somehow.
> > Note that the only reason I'm using the ca-bundle.crt is that I couldn't
> > figure out how to get CAPI to load the Windows "ROOT"
> >
> > On 23/10/2020 14:10, Brett Stahlman wrote:
> >> It seems that the CAPI engine is breaking the server verification
> somehow.
> >> Note that the only reason I'm using the ca-bundle.crt is that I couldn't
> >> figure out how to get CAPI to loa
Hello,
I'm attempting to use the s_client command on Windows 10 to connect to a
secure server (client.badssl.com) that requires client authentication. When
I run the following command...
echo -e 'GET / HTTP/1.1\r\nHost: client.badssl.com\r\n\r\n' |
./dist/bin/openssl.exe s_client -ign_eof -verifyC
