John Gardiner Myers wrote: > > "Nelson B. Bolyard" wrote: > > I don't see any way that SSL_ResetHandshake can return > > SEC_ERROR_UNKNOWN_ISSUER > > The poster said that SSL_ForceHandshake was the function that returned > SEC_ERROR_UNKNOWN_ISSUER.
You're right. I read >> SSL_ResetHandshake fails with -8179. But I see that the full sentence was: >> Calling SSL_ForceHandshake following >> SSL_ResetHandshake fails with -8179. > > I presume this was because the peer sent a cert with an issuer that was > not on the list of trusted CAs. Yes, I agree. -- Nelson Bolyard Netscape
