Levy itai wrote:
>
> Hi,
>
> When the SSL server sends its certificate, there is a need sometimes
> (according to the SSL V.3.0 protocol) to send a certificate list,
> which is a sequence (chain) of X.509.V3 certificates, ordered with the
> server's certificate first, followed by any
> certificate authority certificates proceeding sequentially upward.
>
> Does anyone knows which functions I can use in order to load the certificate
> chain and send it to the client when needed ?
> I use SSL_CTX_use_certificate_file in order to load the certificate, but
> how do I load the certificate chain ?
>
This is done automatically if the relevant certifiicates are available
in whatever verify locations you set up.
Steve.
--
Dr Stephen N. Henson. http://www.drh-consultancy.demon.co.uk/
Personal Email: [EMAIL PROTECTED]
Senior crypto engineer, Celo Communications: http://www.celocom.com/
Core developer of the OpenSSL project: http://www.openssl.org/
Business Email: [EMAIL PROTECTED] PGP key: via homepage.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
