On 7/15/2024 4:46 PM, William Wood wrote:
2024.07.15 08:40:50 LOG6[service]: Loading certificate from file: C:\Certificates\gain-futures-chain.pem 2024.07.15 08:40:50 LOG3[service]: SSL_CTX_use_certificate_chain_file: crypto/bio/bss_file.c:297: error:80000002:system library::No such file or directory
The error looks pretty self-explanatory to me. Are you sure your file is really named "C:\Certificates\gain-futures-chain.pem"?
This is the best I can gather regarding getting verification of the REMOTE certificate.
You seem to have misunderstood the documentation. The "cert" option is for *your* certificate, while the the "CAfile" option is for *trusted* (peer) certificates.
verifyChain = yes verifyPeer = yes
Are you sure you want to verify both the peer certificate ("verifyPeer = yes") and its chain ("verifyChain = yes")? This is very unusual.
checkHost = 192.111.85.171 checkIP = api.gainfutures.com
Are you sure that you have both IP address and hostname in your peer certificate? Certificates with IP addresses are extremely rare. Also, 192.111.85.171 looks like an IP address (not a hostname) to me, while "api.gainfutures.com" looks like a hostname (not an IP address).
A troubleshooting tip: Adding random options to a non-working configuration doesn't make diagnosing the issue any easier. Start with the most basic configuration that works, and only then start fine-tuning your configuration by adding one option at a time.
Best regards, Mike