How do I use m2crypto to validate a X509 certificate chain in a non-SSL setting

Posted by Brock Pytlik on Stack Overflow See other posts from Stack Overflow or by Brock Pytlik
Published on 2010-04-13T03:29:04Z Indexed on 2010/04/13 3:32 UTC
Read the original article Hit count: 620

I'm trying to figure out how to, using m2crypto, validate the chain of trust from a public key version of a X509 certificate back to one of a set of known root CA's when the chain may be arbitrarily long. The SSL.Context module looks promising except that I'm not doing this in the context of a SSL connection and I can't see how the information passed to load_verify_locations is used.

Essentially, I'm looking for the interface that's equivalent to: openssl verify pub_key_x509_cert

Is there something like that in m2crypto?

Thanks.

© Stack Overflow or respective owner

Related posts about m2crypto

Related posts about python