RE: OpenSSL doesn't pass full cert chain

build out its own chain if necessary and possible. From: owner-openssl-us...@openssl.org [mailto:owner-openssl-us...@openssl.org] On Behalf Of Fahim Sent: Tuesday, January 07, 2014 14:15 To: openssl-users@openssl.org Subject: RE: OpenSSL doesn't pass full cert chain Hello Dave, I wo

RE: OpenSSL doesn't pass full cert chain

ow to implement this? Thanks in advance, Fahim From: owner-openssl-us...@openssl.org [mailto:owner-openssl-us...@openssl.org] On Behalf Of Dave Thompson Sent: Tuesday, January 07, 2014 4:08 AM To: openssl-users@openssl.org Subject: RE: OpenSSL doesn't pass full cert chain To be certain

RE: OpenSSL doesn't pass full cert chain

To be certain I'm clear, since your terminology is a bit unusual: you have a server application using openssl library (libssl), which has a cert that was issued by a CA using intermediate certs. The prover (server in nearly all cases, client in rare cases) per RFC MUST send the full chain exc