W3C home > Mailing lists > Public > www-lib@w3.org > July to September 2001

Re: wwwssl problems

From: Fred Covely <fcovely@bcftech.com>
Date: Thu, 26 Jul 2001 17:14:16 -0400 (EDT)
To: www-lib@w3.org
Message-ID: <NDBBIGEEOLAKIPFCDMLNEEPLGOAA.fcovely@bcftech.com>
I am trying to use client side certificates in a libwww app and am
having a similar problem.  I am running on windows 2000 and
can see the certificates I need in the user|advanced|digital certificates
dialog off of the control panel.  However, I cannot locate the
windows directory where the certificates are actually stored.
Presumabley its in some private win-only data store.  So my
question is what is the easiest way to use certificates in
libwww on a windows client?

FYI I have tried several incarnations of:
	SSL_CTX_set_default_verify_paths(app_ctx);
	rc = SSL_CTX_load_verify_locations(app_ctx,NULL,"d:\\"); // where I am
putting my exported .cer files
	rc = SSL_CTX_load_verify_locations(app_ctx,"d:\\verisignclass3.cer",NULL);
// as an example of a attempt to directly load a .cer file

Finally here are the error messages my log shows:

13:57:11      depth = 1 /O=VeriSign Trust Network/OU=VeriSign,
Inc./OU=VeriSign International Server CA - Class 3/OU=www.verisign.com/CPS
Incorp.by Ref. LIABILITY LTD.(c)97 VeriSign
13:57:11      verify error: num=20:unable to get local issuer certificate
13:57:11      verify return: 1
13:57:11      depth = 1 /O=VeriSign Trust Network/OU=VeriSign,
Inc./OU=VeriSign International Server CA - Class 3/OU=www.verisign.com/CPS
Incorp.by Ref. LIABILITY LTD.(c)97 VeriSign
13:57:11      verify error: num=27:certificate not trusted
13:57:11      verify return: 1

I know I will figure this out if I have to, but if anyone has any ideas,
sample code,
or doc, please let me know.

thx

Fred Covely
fcovely@covely.com
Received on Friday, 27 July 2001 04:32:32 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Monday, 23 April 2007 18:18:39 GMT