Skip Menu |
 

This queue is for tickets about the IO-Socket-SSL CPAN distribution.

Report information
The Basics
Id: 13040
Status: resolved
Priority: 0/
Queue: IO-Socket-SSL

People
Owner: Nobody in particular
Requestors: roy [...] momentous.ca
Cc:
AdminCc:

Bug Information
Severity: Important
Broken in: 0.96
Fixed in: 0.97



Subject: Problems connecting to some SSL applications - two line change
Download (untitled) / with headers
text/plain 583b
While trying to discover why openssl s_client could connect to a remote server performing certificate validation and why IO::Socket::SSL could not, I discovered that s_client was sending my CA Cert along with the Certificate. It seems that at some point, it found and loaded the CA cert... I found the following workaround worked: Change: Net::SSLeay::CTX_use_certificate_file ($ctx, $arg_hash->{'SSL_cert_file'}, $filetype) to: Net::SSLeay::CTX_use_certificate_chain_file ($ctx, $arg_hash->{'SSL_cert_file'}) The gotcha is this hack only supports PEM encoded files.


This service is sponsored and maintained by Best Practical Solutions and runs on Perl.org infrastructure.

Please report any issues with rt.cpan.org to rt-cpan-admin@bestpractical.com.