> I am to use TLS for securing an application's data transfer. For
> development purposes I have been using a
> dummy set of certificates in PEM format.
> The currently used "SSL_CTX_load_verify_locations" API requires
> that the certificate be in PEM format.
> However, in real time scenario, the application being developed MUST
> make use of certificates in DER format
> as per the requirements.
> So I wanted to know whether there is a way to load CA certificates
> in DER format using any SSL APIs.
> My search till now for such an API has been unfruitful.
> Thanks in Advance.
> Thanks & Regards
> Chaitra Shankar
> OpenSSL Project http://www.openssl.org Development Mailing List
> [hidden email] Automated List Manager [hidden email]
Chaitra Shankar wrote:
| So I wanted to know whether there is a way to load CA certificates
| in DER format using any SSL APIs.
| My search till now for such an API has been unfruitful.
Yes, directly loading DER encoded certificates into an SSL_CTX
is not supported.
But you can load certificates manually and add them to the SSL_CTX
using the SSL_CTX_add_extra_chain_cert() function.
DMCA: The greed of the few outweighs the freedom of the many
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
-----END PGP SIGNATURE-----
OpenSSL Project http://www.openssl.org Development Mailing List [hidden email] Automated List Manager [hidden email]