Albert Chin <[EMAIL PROTECTED]> writes: > OpenSSL has a directory and path for certificates in PEM format used > to verify a peer certificate (i.e. CAfile and CApath). Does GnuTLS > have similar functionality?
GnuTLS does not support reading all files in a directory, but it supports reading CA certificates in PEM format from a file, see gnutls_certificate_set_x509_trust_file(). You'll call gnutls_certificate_verify_peers2() to use it. IIRC, the file may contain more than one CA certificate, so you should be able to 'cat /somewhere/openssl/somewhere/* > gnutls-cas.pem' and use that file, or similar Regards, Simon _______________________________________________ Help-gnutls mailing list [email protected] http://lists.gnu.org/mailman/listinfo/help-gnutls
