On Tue, May 15, 2007, [EMAIL PROTECTED] wrote: > > Thank you Dr. Henson for the answer .. > I feel more ensured ... :) > > I achieved to go a little bit further in my test now after having put the > right > certificate in client side. > I am quite suprised by the behaviour of my server since when the client > certificate belongs to the CRL list handled by my server, I have this time > the > handshake error ("no certificate returned"). I was expecting for a message > like > "CR revoked .." ( the client connexion was refused before I use > SSL_get_verify_result API as I expected first.) > Is it the normal behaviour or have I forget to set an option? >
I'd suggest you set up s_client/s_server with the appropriate certificates and CRL and see if you get the same results. Steve. -- Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage OpenSSL project core developer and freelance consultant. Funding needed! Details on homepage. Homepage: http://www.drh-consultancy.demon.co.uk ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]