Hi Albrecht,
I'm still wondering though how I could have found that out myself. :-(
Unfortunately
http://www.openssl.org/docs/ssl/SSL_CTX_set_cert_store.html
reads: Currently no detailed documentation on how to use the X509_STORE
object is available. Is there some more documentation
Hi,
I'm creating a client/server application with OpenSSL, using
self-signed certificates. The client and server shall verify
each other's certificate, and this works well, if I use certificate
files. Now I'd like to embed the CA certificate in the client's
code for easier installation. Hence
Hi Albrecht,
I might be wrong, but I think you should use instead
SSL_CTX_get_cert_store() and then *X509_STORE_add_cert*
to add the certificate to the list of trusted ones that will be used for
verification.
Cerificates added using SSL_CTX_add_extra_chain_cert() are not trusted.
Hi Michel,
many thanks for this very quick reply !
On 06.06.2011 14:20, Michel (PAYBOX) wrote:
Hi Albrecht,
I might be wrong, but I think you should use instead
SSL_CTX_get_cert_store() and then *X509_STORE_add_cert*
to add the certificate to the list of trusted ones that will be used
for