> [[email protected] - Tue Jun 02 15:21:30 2009]: > > On Tue, 2009-06-02 at 13:40 +0200, Stephen Henson via RT wrote: > > If however we are going to revise this I'd say we should use > > X509_verify_cert to build the chain instead of more ad-hoc stuff. > > This seems to work... only tested for SSLv3/TLSv1, not DTLS. >
I've committed a slightly modified version of this. Let me know of any problems. ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [email protected] Automated List Manager [email protected]
