Hi Opessl team
We have a root certificate database, there are two root same certificates which
have different expire time and thumbprint in the database.
We call API "X509_STORE_CTX_init" to load the database first, and then call API
"X509_verify_cert" to verify.
>From our test result, valid ce
Hi Openssl team,
I have a question about certificate verify.
We check a sub-certificate with a lot of root certificates.
We don't want to check sub-certificate's expire time, but we want to get an
error when root certificate expired.
I try to verify it by following option,
X509_VERIFY_PARAM* p
