In 0.9.8g (and I guess other versions)
SSL_add_file_cert_subjects_to_stack() and
SSL_add_dir_cert_subjects_to_stack() leave errors in the error queue
also on success.

For every file attempted read (successfully or not),
there is an error:

error:0906D06C:PEM routines:PEM_read_bio:no start line

This happens because PEM_read_bio_X509() is called in a loop to
read all certs from the file. This error then occurs after the
last certificate is read.

I believe the correct thing is to empty the error log on success.
See bug #1088 (SSL_load_client_CA_file) and fix for that.

Stig

__________________________________________________ ____________________
OpenSSL Project http://www.openssl.org
Development Mailing List openssl-dev@openssl.org
Automated List Manager majordomo@openssl.org