[erlang-questions] SSL: "unknown ca"

e@REDACTED e@REDACTED
Sat Jan 31 01:38:20 CET 2015


On 01/30/2015 11:00 PM, PAILLEAU Eric wrote:

>> my 'cacertfile' (as given to the 'ssl' application) contains one and
>> only one certificate which is self-signed.
>>
>
> If it is self-signed, it is a root CA cert. (issuer=subject)
> Depending X509 version, you  may also have an attribute CA=true or
> CA=false (version = 3 if I remember).
> openssl x509 printing may help you.
> For SSL you must have some KeyUsages :
>
>   serverAuth             SSL/TLS Web Server Authentication.
>   clientAuth             SSL/TLS Web Client Authentication.


sorry, i am completely lost.
who is gonna read this info from my certificate and when?

also it is still completely unclear where is the ORIGIN of the error:
"unknown ca" -- who has thrown it?



More information about the erlang-questions mailing list