Certificates from Windows Store
Date: Mon, 21 Sep 2020 13:08:35 +0000
Hi,
this might be a little bit off-topic but at least in my case it touches the curl-library:
I am using the openssl-built curl library in a application under windows and in order to get it use the latest certificates, I add the certificates from the windows trust stores manually to the open ssl context.
Some application servers the application uses get their certificates from Letsencrypt and I notice that, in a newly installed Windows installation, my application would not trust them unless I open the same (HTTPS) site with the Internet Explorer. It seems as if there is a magic download of the root certificates happening when the Internet Explorer visits a SSL site with an unknown root certificate.
The question is: Is anyone aware of how to emulate this behaviour with the Win32 API without using the Internet Explorer? I searched through the net and did not find any information on what is really going on there.
Thanks in advance,
David Weisgerber
-------------------------------------------------------------------
Unsubscribe: https://cool.haxx.se/list/listinfo/curl-library
Etiquette: https://curl.haxx.se/mail/etiquette.html
Received on 2020-09-21