I'm writing an application that acts as an SSL server. It is pointed to
a certificate store directory that contains hashed (nnnnnnnn.m) links to
the certificates in the chain (individual PEM files), and told which
server certificate to use. I provide OpenSSL with these using
SSL_CTX_load_verify_locations and SSL_CTX_use_certificate_file
respectively. How can I best achieve the following?
1) Have OpenSSL verify the certificate chain
2) Ensure the root certificate matches the CA cert embedded in my code
Any help appreciated -- I've been trying to figure this one out for
several days.
Dan.
--
Dan Ellis, Software Engineer, BSC Team
ip.access ltd < http://www.ipaccess.com >
Building 2020, Cambourne Business Park, Cambourne, Cambridge, CB3 6DW
Tel: 01954 713790, Fax: 01954 713799
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
