Hi Alex,
do you have symlink hash.0 pointing to your trusted cert?
yours,
Vadim
On Mon, Feb 07, 2000 at 06:31:41PM +1100, Alex Cosic wrote:
> Hi,
>
> I used the code which is more or less standard for verification of
> certificates:
>
> SSL_CTX_set_verify(ctx,SSL_VERIFY_PEER,server_verify_cb)
> if (!SSL_CTX_load_verify_locations(ctx,CERTPEMFILE,NULL);
> { exit(1); }
>
> etc etc where MS_CALLBACK server_verify_cb is taken from /aps/verify.c.
>
> I wrote my own cert x509 pem file as a trusted cerificate. It is
> selfsigned and its private key is used to sign untrusted pem x509
> certificate file. I checked with x509_verify(...) and everything was OK.
> However, when I run the previous code I get the error message:
>
> depth=0
> /c=AU /CN=alex /ou alex /o=alex
> state = 0 reason = unable to get local issuer certificate
> depth = 0
> /c=AU /CN=alex /ou alex /o=alex
> state = 0 reason = unable to clerify first certificate.
>
> It seems that it can not find the trusted certificate file, or it could not
> recognise it. Any suggestion?
>
> Thanks in advance
>
> Alex Cosic
>
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
