I use:
int verify_CAkey()
{
FILE *fp1, fp2;
X509 *A, *B;
EVP_PKEY *A_pub;
int flag;
fp1 = fopen( "CAcertA", "rb" );
fp2 = fopen( "certB", "rb" );
A = (X509 *)PEM_ASN1_read ((char *(*)(...))d2i_X509, PEM_STRING_X509,
fp1, NULL, NULL, NULL);
A_pub = X509_extract_key( A );
B = (X509
hello!
Suppose that I have a CA-cert A and a cert B that is signed by the
public key of A. I am trying to figure out how to verify that B is
certified by A:
This is what I got so far (which I clearly havent compiled yet :-)
/* load the cert (this works just fine) */
fp =
From: Douglas **UNKNOWN CHARSET** [EMAIL PROTECTED]
douglas/* this is where I am confused, From reading ariels "manuals" I get the
douglas impression that I should create a X509_STORE that contains the ca-cert.
douglas Then I should init the X509_STORE_CTX with this and also an
douglas