tls cert verification failure

[Tomte25]

Does anyone know why openssl would verify a certificate but tls would
fail it? The command "openssl s_client -connect <host>:<port> -CAfile
<CA file loc>" returns "Verify return code: 0 (ok)". However I get
this error when trying to use tls: "Original error: SSL channel
"sock205": error: certificate verify failed".

Here is a snippet of code I'm using:

echo "Registering socket"

if {[string equal [string range $url 0 4] https] } {
::http::register https 443 [list ::tls::socket -require 1 -cafile /
hci/qdx5.2/integrator/tcl/lib/tls1.5/cacert.pem]
}

echo "Sending message $inData"

if {![catch {set http [::http::geturl $url -type $type -headers $head -
query $inData]} error_msg ]} {
set html [::http::data $http]
...

[Bezoar]

This might be something to consider ... I notice that your socket
channel is a very high number sock205. Tcl assigns numbers
sequentially and I wonder if you are running out of descriptors and
this error is just an indication of this. Depending on OS each process
is limited to a certain number of descriptors. If this code does work
at all particularily when you start up then you may have to consider
this as a potential cause.

Carl