On Mon, Oct 08, 2007, Heit, James R via RT wrote:

>
>
> I get a X509_V_ERR_DEPTH_ZERO_SELF_SIGNED_CERT (18) error in the verify
> callback function.
>


That happens when there is a root CA sent by the server but it doesn't match
the trusted one.

I suggest you dump the root CA using the -showcerts option in s_client and
compare it to the trusted one.

Steve.
--
Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage
OpenSSL project core developer and freelance consultant.
Funding needed! Details on homepage.
Homepage: http://www.drh-consultancy.demon.co.uk
__________________________________________________ ____________________
OpenSSL Project http://www.openssl.org
Development Mailing List openssl-dev@openssl.org
Automated List Manager majordomo@openssl.org