SSL_CTX_set_cert_store 3 2005-04-23 0.9.9-dev OpenSSL

NAME

SSL_CTX_set_cert_store, SSL_CTX_get_cert_store - manipulate X509 certificate verification storage

LIBRARY

libcrypto, -lcrypto

SYNOPSIS


 #include 


 void SSL_CTX_set_cert_store(SSL_CTX *ctx, X509_STORE *store);
 X509_STORE *SSL_CTX_get_cert_store(const SSL_CTX *ctx);

DESCRIPTION

_S_S_L___C_T_X___s_e_t___c_e_r_t___s_t_o_r_e_(_) sets/replaces the certificate verification storage of ccttxx to/with ssttoorree. If another X509_STORE object is currently set in ccttxx, it will be _X_5_0_9___S_T_O_R_E___f_r_e_e_(_)ed.

_S_S_L___C_T_X___g_e_t___c_e_r_t___s_t_o_r_e_(_) returns a pointer to the current certificate verification storage.

NOTES

In order to verify the certificates presented by the peer, trusted CA certificates must be accessed. These CA certificates are made available via lookup methods, handled inside the X509_STORE. From the X509_STORE the X509_STORE_CTX used when verifying certificates is created.

Typically the trusted certificate store is handled indirectly via using _S_S_L___C_T_X___l_o_a_d___v_e_r_i_f_y___l_o_c_a_t_i_o_n_s(3). Using the _S_S_L___C_T_X___s_e_t___c_e_r_t___s_t_o_r_e_(_) and _S_S_L___C_T_X___g_e_t___c_e_r_t___s_t_o_r_e_(_) functions it is possible to manipulate the X509_STORE object beyond the _S_S_L___C_T_X___l_o_a_d___v_e_r_i_f_y___l_o_c_a_t_i_o_n_s(3) call.

Currently no detailed documentation on how to use the X509_STORE object is available. Not all members of the X509_STORE are used when the verification takes place. So will e.g. the _v_e_r_i_f_y___c_a_l_l_b_a_c_k_(_) be overridden with the _v_e_r_i_f_y___c_a_l_l_b_a_c_k_(_) set via the _S_S_L___C_T_X___s_e_t___v_e_r_i_f_y(3) family of functions. This document must therefore be updated when documentation about the X509_STORE object and its handling becomes available.

RETURN VALUES

_S_S_L___C_T_X___s_e_t___c_e_r_t___s_t_o_r_e_(_) does not return diagnostic output.

_S_S_L___C_T_X___g_e_t___c_e_r_t___s_t_o_r_e_(_) returns the current setting.

SEE ALSO

_s_s_l(3), _S_S_L___C_T_X___l_o_a_d___v_e_r_i_f_y___l_o_c_a_t_i_o_n_s(3), _S_S_L___C_T_X___s_e_t___v_e_r_i_f_y(3)