[Net-ssleay-devel] Re: Net::SSLeay & CRL's
Eric Nichols
eric at dirwiz.com
Wed Jan 18 16:19:46 UTC 2006
Very strange.. still crashes perl in windows.. here is the code...
If you would like I can setup VNC and an IM client if you want to take a look...
Thanks
Eric
On Thu, January 12, 2006 6:42 pm, Mike McCauley wrote:
> Hello Eric,
>
> On Friday 13 January 2006 00:37, Eric Nichols wrote:
>> Ok I tried the code. The good news is it did not crash. The bad news.. it
>> did not crash... Let me explain..
>>
>> I ran the new script straight out and did not load any CRL's anywhere.
>> According to the docs it should have errored on the connection because it
>> could not find the CRL file.
>> Thoughts?
>
> You did not enable certificate verification. You need to add
>
> &Net::SSLeay::CTX_set_default_verify_paths($ctx);
> &Net::SSLeay::set_verify($ssl, &Net::SSLeay::VERIFY_PEER, 0);
>
> to your code.
> If you are using private certificates you may need to call
> Net::SSLeay::CTX_load_verify_locations
> too.
>
> Hint: use Net::SSLeay::get_verify_result($ssl) to find out why verification
> fails. You should expect 3: unable to get certificate CRL.
>
> Cheers.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: ssleay.pl
Type: application/octet-stream
Size: 1931 bytes
Desc: not available
Url : http://lists.alioth.debian.org/pipermail/net-ssleay-devel/attachments/20060118/38df6867/ssleay.obj
More information about the Net-ssleay-devel
mailing list