[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Help-gnutls] Re: Certs directory for peer certificate validation
From: |
Albert Chin |
Subject: |
Re: [Help-gnutls] Re: Certs directory for peer certificate validation |
Date: |
Mon, 15 May 2006 09:46:00 -0500 |
User-agent: |
Mutt/1.5.6i |
On Mon, May 15, 2006 at 02:05:45PM +0200, Simon Josefsson wrote:
> Albert Chin <address@hidden> writes:
>
> > OpenSSL has a directory and path for certificates in PEM format used
> > to verify a peer certificate (i.e. CAfile and CApath). Does GnuTLS
> > have similar functionality?
>
> GnuTLS does not support reading all files in a directory, but it
> supports reading CA certificates in PEM format from a file, see
> gnutls_certificate_set_x509_trust_file(). You'll call
> gnutls_certificate_verify_peers2() to use it.
Is there a default CA certificate file or do all clients need to call
gnutls_certificate_set_x509_trust_file()?
--
albert chin (address@hidden)