Re: Self-signed error when using SSL_CTX_load_verify_locations CApath

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Thank you, yes, that solved it.

May I respectfully suggest that you consider improving the error message?

"Self-signed certificate in certificate chain" does not to me convey "No certificate hash links" (or "CA certificate not found in hash links").

Charles


-----Original Message-----
From: openssl-users [mailto:openssl-users-bounces@xxxxxxxxxxx] On Behalf Of Viktor Dukhovni
Sent: Friday, November 30, 2018 10:22 AM
To: openssl-users@xxxxxxxxxxx
Subject: Re:  Self-signed error when using SSL_CTX_load_verify_locations CApath

> On Nov 30, 2018, at 12:47 PM, Charles Mills <charlesm@xxxxxxx> wrote:
> 
> I am using a client certificate that was signed by my “homegrown” CA (which uses the OpenSSL utility). When I point to the CA .PEM with SSL_CTX_load_verify_locations CAfile it works perfectly. When instead I use CApath to point to a folder that contains only that one .PEM file it fails. 

See the documentation of c_rehash.

-- 
	Viktor.

-- 
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users




[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Index of Archives]     [Linux ARM Kernel]     [Linux ARM]     [Linux Omap]     [Fedora ARM]     [IETF Annouce]     [Security]     [Bugtraq]     [Linux]     [Linux OMAP]     [Linux MIPS]     [ECOS]     [Asterisk Internet PBX]     [Linux API]

  Powered by Linux