Signed-off-by: Adriaan de Jong <dejong@fox-it.com>
Acked-by: James Yonan <james@openvpn.net>
Acked-by: Gert Doering <gert@greenie.muc.de>
Signed-off-by: David Sommerseth <davids@redhat.com>
... | ... |
@@ -3952,6 +3952,7 @@ they are distributed with OpenVPN, they are totally insecure. |
3952 | 3952 |
.B \-\-capath dir |
3953 | 3953 |
Directory containing trusted certificates (CAs and CRLs). |
3954 | 3954 |
Available with OpenSSL version >= 0.9.7 dev. |
3955 |
+Not available with PolarSSL. |
|
3955 | 3956 |
.\"********************************************************* |
3956 | 3957 |
.TP |
3957 | 3958 |
.B \-\-dh file |
... | ... |
@@ -2281,6 +2281,8 @@ options_postprocess_verify_ce (const struct options *options, const struct conne |
2281 | 2281 |
#ifdef USE_POLARSSL |
2282 | 2282 |
if (!(options->ca_file)) |
2283 | 2283 |
msg(M_USAGE, "You must define CA file (--ca)"); |
2284 |
+ if (options->ca_path) |
|
2285 |
+ msg(M_USAGE, "Parameter --capath cannot be used with the PolarSSL version version of OpenVPN."); |
|
2284 | 2286 |
#else |
2285 | 2287 |
if ((!(options->ca_file)) && (!(options->ca_path))) |
2286 | 2288 |
msg(M_USAGE, "You must define CA file (--ca) or CA path (--capath)"); |