On Tue, 2010-05-11 at 09:58 -0400, Chris Bare wrote: > That's almost perfect, but doesn't putting it inside the X509_STORE like this > tell the rest of the code it's trusted? If I'm downloading it using AIA I > can't trust it and still need to chain up to a trusted root.
Hm, true. But surely there's something else (ctx->verify_cb or ctx->verify?) that lets you fix that up too? -- dwmw2 ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
