Re: [openssl-users] Certificate path validation.
Hi, To find CA or not, "X509_check_ca" may be used. Thanks, Murugesh P. On 3/29/17, Richard Stanek wrote: > static bool IsCACertificate(X509* cert) > { > // (U) Initialize to false. > bool bRetVal = false; > > BASIC_CONSTRAINTS* bsCA = > (BASIC_CONSTRAINTS
Re: [openssl-users] Certificate path validation.
static bool IsCACertificate(X509* cert) { // (U) Initialize to false. bool bRetVal = false; BASIC_CONSTRAINTS* bsCA = (BASIC_CONSTRAINTS*)X509_get_ext_d2i(cert, NID_basic_constraints, NULL, NULL); if (bsCA) { // (U) Could be a CA
