[Haskell-cafe] Is there a cross platform CA certificate bundle solution for HsOpenSSL?

Marios Titas redneb8888 at gmail.com
Sat Feb 14 00:31:40 UTC 2015

If I want to use HsOpenSSL for a tls client application that verifies
the server certificate I have to manually specify a CA certificate
bundle containing the trusted roots. For example, in a linux system, I
would do the following

    mkTlsContext :: IO Context
    mkTlsContext = do
        ctx <- context
        contextSetVerificationMode ctx (VerifyPeer True False Nothing)
        contextSetCADirectory ctx "/etc/ssl/certs"
        return ctx

The problem is that the above solution only works for linux. Is there
a cross-platform way to find a reasonable CA bundle and use it with

Note that the tls package has x509-system [1] that does exactly that.
So I am basically asking if anybody has written something similar for

[1] https://hackage.haskell.org/package/x509-system

More information about the Haskell-Cafe mailing list