I have a client in which i loaded my CRL. I can see through my logs that it
revoked the server certificate but it continues with the handshake and
eventually succeeds. How can I fail the handshake when a revoked certificate
is handled?
BTW.. I used these to load my crl
pStore = SSL_CTX_get_cert_store(ctx);
pLookup = X509_STORE_add_lookup(pStore, X509_LOOKUP_file());
X509_STORE_set_flags(
pStore, X509_V_FLAG_CRL_CHECK |X509_V_FLAG_CRL_CHECK_ALL);
retVal = X509_load_crl_file( pLookup, clientCRL,X509_FILETYPE_PEM);
--
View this message in context:
http://www.nabble.com/Revoking-Server-Certificate-via-CRL-t1197004.html#a3157226
Sent from the OpenSSL - Dev forum at Nabble.com.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [email protected]
Automated List Manager [EMAIL PROTECTED]
