> Does anyone know why TLS would report that a site's certificate failed Have you tried to verify the certificate with the OpenSSL command-line
> to verify even though I know it is in fact valid? My cafile.pem file
> had the certificate authority that issued the certificate in it.
tool? Something like
> openssl verify -CAfile cafile.pem server.pem should tell you whether the problem comes from OpenSSL or the tls package.
If your certificate still seems valid you could try to turn on
tls-debugging, either by setting ::tls::debug to 1, or directly by
putting a puts "$option $args" at the beginning of the tls::callback
procedure (contained in the file tls.tcl in your tls installation.)
=> Christian Nassau, http://www.nullhomotopie.de