[xmlsec] Turning off cert verification
Aleksey Sanin
aleksey at aleksey.com
Wed Aug 29 10:11:58 PDT 2007
> I need to be able to load self-signed certificates, ...
Add the certificate as the trusted one. It should go through.
>
> if((keyInfoCtx->flags & XMLSEC_KEYINFO_FLAGS_X509DATA_DONT_VERIFY_CERTS) == 0) {
> ret = xmlSecOpenSSLKeyDataX509VerifyAndExtractKey(data, key, keyInfoCtx);
> if(ret < 0) {
> xmlSecError(XMLSEC_ERRORS_HERE,
> xmlSecErrorsSafeString(xmlSecKeyDataKlassGetName(id)),
> "xmlSecOpenSSLKeyDataX509VerifyAndExtractKey",
> XMLSEC_ERRORS_R_XMLSEC_FAILED,
> XMLSEC_ERRORS_NO_MESSAGE);
> return(-1);
> }
> }
Ops, this looks like a bug! I need to investigate this. Thanks!
Aleksey
More information about the xmlsec
mailing list