[openssl][uwp] SSL_CTX_load_verify_locations not working for UWP port
Feng LI
nemokingdom at gmail.com
Fri Jun 5 01:04:47 UTC 2020
SSL_CTX_load_verify_locations
<https://www.openssl.org/docs/man1.0.2/man3/SSL_CTX_load_verify_locations.html>
is
required for UWP port to load ca file since OpenSSL will not use the CA of
the OS.
But in UWP build, stdio is disabled
<https://github.com/openssl/openssl/blob/082c041b4233b17b80129d4ac6b33a28014442b0/Configurations/50-win-onecore.conf#L113>
by
default. However, SSL_CTX_load_verify_locations relies on the default
X509_STORE file lookup functionality uses stdio (via BIO_s_file). That
basically means no verification of peers and hosts is possible with OpenSSL
on UWP port.
Is there a way to fix this or if there's a workaround for UWP ?
Thanks,
Feng
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mta.openssl.org/pipermail/openssl-users/attachments/20200604/1f89bddf/attachment.html>
More information about the openssl-users
mailing list