On Wed, Jan 11, 2006, Samy Thiyagarajan wrote: > hi all.. > > I got stuck up with the following error.. > client : > error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown > ca:s3_pkt.c:1052:SSL alert number 48 > > 'verify ' command returns OK ( for both options -CApath , -CAfile ) > > ** when i tested s_client (with the same certificates and CA path )against > s_server ( with -Verify option ).. it successfully communicates.. !! > > But still my client report the above mentioned error when I test with my > server programm. If i hav some bug in my server prog..is the error message > is misleading..? > > Some assistance HIGHLY appreciated.. >
That message means the server cannot verify the client certificate being sent to it. You need to trust the client certificate root CA and make sure any intermediate certificates are included by the client. Steve. -- Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage OpenSSL project core developer and freelance consultant. Funding needed! Details on homepage. Homepage: http://www.drh-consultancy.demon.co.uk ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
