[openssl-users] CRL signature verification

Salz, Rich rsalz at akamai.com
Thu Oct 19 12:31:05 UTC 2017

Previous message: [openssl-users] CRL signature verification
Next message: [openssl-users] Replacing CRYPTO_NUM_LOCKS on migration 101 to 110
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

➢   I was more talking about the parsing. Currently I have 40 LOC [1] to

Look at X509_get1_ocsp which is in crypto/x509v3/v3_utl.c  That’s in 1.0.2 and later

➢ > X509_CRL_verify.  And yes, looking through to find the serial# is what you have to do.
    
➢     That's 1.1-specific, correct?
    
Yes.

Previous message: [openssl-users] CRL signature verification
Next message: [openssl-users] Replacing CRYPTO_NUM_LOCKS on migration 101 to 110
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the openssl-users mailing list