Hi, we were just troubleshooting an icecast instance that wouldn't accept a new certificate (the previous one ran fine but was from a different CA). It looked like it should work or libssl was doind default things that were not desired. In the end justdave took a look and fixed it. Here's his ticket. - https://trac.xiph.org/ticket/1717
Looks good to me, it's even documented in the SSL doc: | SSL_CTX_use_certificate_file() loads the first certificate stored in | file into ctx. The formatting type of the certificate must be specified | from the known types SSL_FILETYPE_PEM, | SSL_FILETYPE_ASN1. SSL_use_certificate_file() loads the certificate from | file into ssl. See the NOTES section on why | SSL_CTX_use_certificate_chain_file() should be preferred. Cheers, -- Niv Sardi