CERT_VerifyCertChain, which CERT_VerifyCert calls if the cert is not explicitly trusted for the requested operation.
The signature check in CERT_VerifyCertChain is controlled by the checkSig Boolean. bob Patrick wrote: > Why does the header for function CERT_VerifyCert in lib\certhigh\certvfy.c > state: " Note that this routine does not verify the signature of the > certificate"? Is that what checkSig is all about? > > -- POC > >
