How can I make CRLs to be taken in account when validating certificates on OpenSSL linked applications

Solution Unverified - Updated -

Issue

While usually applications that are using OpenSSL bindings to validate certificates are having a CApath option there is no relevant option for Certificate Revocation Lists (CRLs). How can multiple certificate revocation lists be maintained for an application that trusts multiple CAs?

An example of applications where this can be used is curl (which also provides the libcurl that is used by many other applications).

Environment

Red Hat Enterprise Linux 4
Red Hat Enterprise Linux 5
Red Hat Enterprise Linux 6

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content