x590cafile default location for gnutls-cli

0

I am using gnutls-cli from Cygwin, on a laptop running Windows XP Home (I have openssl from cygwin also). I am wondering where does gnutls-cli look for CA certificates if I don't specify option --x509cafile? I haven't found the answer anywhere. I can point to my CA certificate bundle at /usr/ssl/certs & successfully verify certificates (e.g. those from AT&T Yahoo email for inbound.att.net), but I'm still wondering where does gnutls-cli look if I don't specify where to look?

Alan Wehmann

Posted 2013-05-26T16:09:16.277

Reputation: 178

Answers

0

It should use /usr/ssl/certs/ca-bundle.crt (from the ca-certificates package), but it seems the Cygwin gnutls package is not configured to use a CA certificate bundle by default. I just raised this with the Cygwin gnutls maintainer; hopefully this will be fixed in a future release.

Yaakov

Posted 2013-05-26T16:09:16.277

Reputation: 733

This is fixed as of the 3.2.0-4 release. – Yaakov – 2013-05-29T22:34:13.680

Asked: 2013-05-26T16:09:16.277

Viewed: 195 times

Active: 2013-05-28T05:53:57.430