#6371 enhancement new
Support native Windows trusted CA database for SSL certificate validation
|Reported by:||Itamar Turner-Trauring||Owned by:||aronbierbaum|
branch-diff, diff-cov, branch-cov, buildbot
This was originally part of #5446, where Glyph wrote:
On Windows - and this is purely from a quick glance at the reference documentation, so take it with a grain of salt - I believe the right way to do this is to use CertOpenSystemStore with the string "CA", or possibly "ROOT", or maybe both, and then do CertEnumCertificatesInStore or maybe just PFXExportCertStoreEx to dump the certs into a format we can import into OpenSSL.