سؤال

I have a certificate chain in STACK_OF(X509) that I would like to verify. But I cannot seem to find how. How can I take individual certs out of this structure and verify them. Or verify the whole structure as a whole?

I am using SSL_get_peer_cert_chain(ssl) to get the stack.

هل كانت مفيدة؟

المحلول

There is the openssl verify utility to verify certificate chains.

You can look at the source in the git repository at apps/verify.c

مرخصة بموجب: CC-BY-SA مع الإسناد
لا تنتمي إلى StackOverflow
scroll top