Re: Certificates from Windows Store
Date: Mon, 21 Sep 2020 15:15:35 +0200
AFAIK most operating systems have a database of trusted certificate
signature authorities. Maybe Let's Encrypt isn't in your local database.
Cheers,
Emil
Am 21.09.20 um 15:08 schrieb David Weisgerber via curl-library:
> Hi,
>
> this might be a little bit off-topic but at least in my case it touches
> the curl-library:
>
> I am using the openssl-built curl library in a application under windows
> and in order to get it use the latest certificates, I add the
> certificates from the windows trust stores manually to the open ssl context.
>
> Some application servers the application uses get their certificates
> from Letsencrypt and I notice that, in a newly installed Windows
> installation, my application would not trust them unless I open the same
> (HTTPS) site with the Internet Explorer. It seems as if there is a magic
> download of the root certificates happening when the Internet Explorer
> visits a SSL site with an unknown root certificate.
>
> The question is: Is anyone aware of how to emulate this behaviour with
> the Win32 API without using the Internet Explorer? I searched through
> the net and did not find any information on what is really going on there.
>
>
>
> Thanks in advance,
> David Weisgerber
>
>
> -------------------------------------------------------------------
> Unsubscribe: https://cool.haxx.se/list/listinfo/curl-library
> Etiquette: https://curl.haxx.se/mail/etiquette.html
>
-------------------------------------------------------------------
Unsubscribe: https://cool.haxx.se/list/listinfo/curl-library
Etiquette: https://curl.haxx.se/mail/etiquette.html
Received on 2020-09-21