Right now we don't have an API for doing certificate validation in our x509 layer.
Alex On Tue, Jun 9, 2015 at 6:04 AM, Alexey Kuchmenko <akuchme...@authasas.com> wrote: > Hi! How do I verify X509 cert? I see X509_verify_cert() function in > bindings/openssl/x509_vfy.py, but it looks like it is not exposed by > criptography.io API. I need to > > - verify cert is not expired (by date, no revocation list) > > - cert is issued by one of trusted certificates (issuer chain length > max=1, I have certificates of all possible issuers) > > _______________________________________________ > Cryptography-dev mailing list > Cryptography-dev@python.org > https://mail.python.org/mailman/listinfo/cryptography-dev > > -- "I disapprove of what you say, but I will defend to the death your right to say it." -- Evelyn Beatrice Hall (summarizing Voltaire) "The people's good is the highest law." -- Cicero GPG Key fingerprint: 125F 5C67 DFE9 4084
_______________________________________________ Cryptography-dev mailing list Cryptography-dev@python.org https://mail.python.org/mailman/listinfo/cryptography-dev
