It should be possible to use trusted certificates when
SSL_CTX_use_certificate_chain_file() is called. Simply replacing
PEM_read_bio_X509 with PEM_read_bio_X509_AUX should work. Or is there
some reason why this should not be changed?

See also

Tomas Mraz
No matter how far down the wrong road you've gone, turn back.
Turkish proverb

__________________________________________________ ____________________
OpenSSL Project
Development Mailing List
Automated List Manager