Mark wrote:
You point at it in the context before the handshake. You can either point at a dir full of digest named ones or a specific root cert file.Strangely I tried the former which did not work. The latter method appears to work fine (it connected and exchanged data anyway).
did you a c_rehash <ca_directory> ? with <ca_directory> being the path to the directory with the CA file(s) ? Naturally you have to set the directory in openssl with the -CApath command line option and the SSL_CTX_load_verify_locations(ctx, NULL, CApath) function call... Bye Goetz -- DMCA: The greed of the few outweighs the freedom of the many
smime.p7s
Description: S/MIME Cryptographic Signature