Hello,
I'm having great success securing my application with
OpenSSLL, but I have a small question regarding client
certificates and private keys.
I load a PKCS#12 file into an SSL_CTX as follows:
1. Use PKCS12_parse() to read the client certificate,
private key, and trusted CA stack
2. Use SSL_CTX_get_cert_store() to get the SSL_CTX's
trusted CA certificate store (initially empty)
3. Pop the X509's from the PKCS#12 CA stack and push
onto the SSL_CTX's certificate store
4. Use SSL_CTX_use_certificate() to load the client
certificate into the SSL_CTX
5. Use SSL_CTX_use_PrivateKey() to load the client's
private key into the SSL_CTX
All this is working fine. Now I need to print the
contents of the SSL_CTX for administrative purposes.
I am able to access the trusted CA's with
SSL_CTX_get_cert_store(), traverse the stack and print
the subject and issuer.
MY QUESTION IS: how do I access the client
certificate and private key from an SSL_CTX?
Thanks for the help,
-David
____________________________________________________
Start your day with Yahoo! - make it your home page
http://www.yahoo.com/r/hs
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [email protected]
Automated List Manager [EMAIL PROTECTED]
