Thank you Heikki Toivonen and Goetz Babin-Ebell, your
suggestions were very helpful.
-David
> david kine wrote:
> > How does one load verify locations into a SSL_CTX
> from
> > in-memory X509 certificates?
>
> You can get the X509_STORE from the SSL_CTX.
> There you do an X509_STORE_add_cert()
david kine wrote:
> How does one load verify locations into a SSL_CTX from
> in-memory X509 certificates?
I believe you are after X509_STORE_add_cert(). You can use
SSL_CTX_get_cert_store() to get the store from an SSL_CTX.
--
Heikki Toivonen
signature.asc
Description: OpenPGP digital signat
david kine wrote:
I am writing an SSL client which utilizes a PKCS12
keystore.
I am able to create the keystore using OpenSSL
utilities, read the .p12 file using d2i_PKCS12_fp(),
and parse it using PKCS12_parse(). The X509 and
STACK_OF( X509 ) return parameters are all correct.
The next thing
