On Aug 20, 2008, at 11:15 AM, Neha Sharma wrote:
Hi
I see that there is a globus function that lets you find out the
length of certificate chain from a context handle.
gss_inquire_sec_context_by_oid(
&minor_status,
context_handle,
&cert_chain_oid,
&cert_chain_buffers);
Is there a similar function to find out the length of certificate
chain from a credential handle?
Thanks
-Neha
If you have a globus_gsi_cred_handle, you can do
globus_gsi_cred_get_cert_chain() and examine the size of the X509
stack. There is no direct way to determine this from the
gss_cred_id_t. It might be possible to export the credential and then
use one of the globus_gsi_cred_read_* functions to load it into a
credential. It might makes sense to support the cert_chain_oid in the
function gss_inquire_cred_by_oid(), but that's not implemented
currently.
Joe
