|Subject:||Net::SSLeay 1.82 request to expose X509_STORE_CTX_new() and X509_verify_cert()|
|Date:||Fri, 22 Dec 2017 11:04:59 -0600|
|To:||bug-Net-SSLeay [...] rt.cpan.org|
|From:||Daniell Freed <wintermte [...] gmail.com>|
Feature request: expose X509_STORE_CTX_new() and X509_verify_cert(). As far as I can tell the only way to verify an x509 certificate structure is to do it via a connection to a remote server that is serving the certificate associated with that x509 structure. I’d like to be able to do verification on an x509 structure that was created by reading it in from a PEM file. Looking at the OpenSSL wiki, it appears (but I could be wrong) that the right way to do this is to create an X509_STORE_CTX, add the X509 to it, then use X509_verify_cert(). Unfortunately, neither X509_STORE_CTX_new() nor X509_verify_cert() are exposed in Net::SSLeay. Thanks, Dan Freed
Message body not shown because it is not plain text.