Hi list!
I'm currently implementing support for CRLs in our system. The CRLs are
signed by the same CA that issued the certificate of the peer. Therefore,
to verify the CRL, I need to find the certificate of the parent of the peer
that I'm communicating with.
During an SSL session, I can use SSL_get_peer_certificate() to get to the
certificate of the peer. Is there a clever way I can get to its parent's
certificate?
The chain that SSL_get_peer_cert_chain() returns, doesn't seem to include
the entire chain, in case the peer's parent is self-signed. Is this correct?
Regards,
Mats Nilsson
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
