I have stored chain in trusted store and verified the leaf certificate .
I have also done the similar with storing certificate chain except leaf
certificate in untrusted store ,but here i had added exception in x_509
verify function to avoid th error of self signed root certificate stored in
untrus
On Mon, Mar 04, 2013, Dave Thompson wrote:
> And: openssl -- so far -- only uses a root in truststore
> as an anchor. It can use intermediates in truststore to
> build the chain, but that chain must end at a root in
> truststore to verify okay. According to posts in the last
> few months, this
> From: owner-openssl-us...@openssl.org On Behalf Of Jakob Bohm
> Sent: Monday, 25 February, 2013 03:18
> On 2/25/2013 4:26 AM, Dave Thompson wrote:
> > The one limitation, implicit above, is "a" chain, singular.
> > If there is more than one chain above a given cert or subtree --
> > e.g. Clam-S
> From: owner-openssl-us...@openssl.org On Behalf Of ashish2881
> Sent: Wednesday, 27 February, 2013 06:05
> I have a .pem file say : chain.pem
> chain.pem == server certificate-> intermediate CA certificate
> -> self signed root certificate .
>
> Now i am writing the code in C using opensl Api
Hi Jakob ...
My doubt is like this .
I have a .pem file say : chain.pem
chain.pem == server certificate-> intermediate CA certificate -> self signed
root certificate .
Now i am writing the code in C using opensl Api's to verify this (chain.pem)
chain .
filename ==> chain.pem
On 2/25/2013 4:26 AM, Dave Thompson wrote:
From: owner-openssl-us...@openssl.org On Behalf Of Jakob Bohm
Sent: Friday, 22 February, 2013 06:03
On 2/21/2013 2:29 PM, ashish2881 wrote:
I have a certificate chain in a file chain.pem .it also has root
certificate(self signed) .
How can i verify t
> From: owner-openssl-us...@openssl.org On Behalf Of Jakob Bohm
> Sent: Friday, 22 February, 2013 06:03
> On 2/21/2013 2:29 PM, ashish2881 wrote:
> > I have a certificate chain in a file chain.pem .it also has root
> > certificate(self signed) .
> > How can i verify the chain,if all certificates a
On 2/21/2013 2:29 PM, ashish2881 wrote:
I have a certificate chain in a file chain.pem .it also has root
certificate(self signed) .
How can i verify the chain,if all certificates are present in the chain .
Thanks
Good question!
I recently tested this myself, and here are my (preliminary) re
