Hi, I'm trying to figure out how to check a certificate is valid
according to a chain of certificates.
There are 3 certs in all, and they are all held as X509 data in memory, e.g.
X509 *server_cert;
X509 *inter_cert;
X509 *root_cert;
How can I check that 'server_cert' is authenticated by
Plot Lost plot.l...@gmail.com writes:
Hi, I'm trying to figure out how to check a certificate is valid
according to a chain of certificates.
There are 3 certs in all, and they are all held as X509 data in memory, e.g.
X509 *server_cert;
X509 *inter_cert;
X509 *root_cert;
How can I check
Hi, I'm trying to figure out how to check a certificate is valid
according to a chain of certificates.
There are 3 certs in all, and they are all held as X509 data in memory, e.g.
X509 *server_cert;
X509 *inter_cert;
X509 *root_cert;
How can I check that 'server_cert' is authenticated by
Hi,
Thus wrote Plot Lost (plot.l...@gmail.com):
Stick them in an X509_STORE_CTX and call X509_verify_cert(). ?See
apps/verify.c for an example.
I'm using verify_cert, and whilst that works to allow me to check that
inter_cert is ok according to root_cert (result = 1) I can't check
that
Plot Lost plot.l...@gmail.com writes:
[...]
For this particular project I'm required to check each step
individually, not the entire chain at once.
That's what verifying the chain does (see the implementation of
X509_verify_cert()). You could add a callback using