发表新帖
发表新帖

Can OpenSSL on Windows use the system certificate store?

前端 未结
关注
4 878
深忆病人
深忆病人 2020-12-02 09:17

Some working C++ code that I\'m porting from Linux to Windows is failing on windows because SSL_get_verify_result() is returning X509_V_ERR_UNABLE_TO_GET_

4条回答
  • 醉梦人生
    醉梦人生 (楼主)
    2020-12-02 10:02

    I have done it earlier. Hope this helps, if this is exactly what you are looking for.

    1. Load your certificate (in PCCERT_CONTEXT structure) from Windows Cert store using Crypto APIs.
    2. Get encrypted content of it in binary format as it is. [PCCERT_CONTEXT->pbCertEncoded].
    3. Parse this binary buffer into X509 certificate Object using OpenSSL's d2i_X509() method.
    4. Get handle to OpenSSL's trust store using SSL_CTX_get_cert_store() method.
    5. Load above parsed X509 certificate into this trust store using X509_STORE_add_cert() method.
    6. You are done!

    0 讨论(0)
 看不清?
提交回复
热议问题