x509证书使用者替代名称
[英]x509 certificate subject alternative name
问题描述
When using the x509 certificate in c++ obtained using the function SSL_get_peer_certificate , which function should be used to handle the subject alternative name field of the certificate? 
在使用通过函数SSL_get_peer_certificate获得的c ++中使用x509证书时,应使用哪个函数来处理证书的SSL_get_peer_certificate subject alternative name字段? Some certificates dont have multiple CN's but have multiple subject alternative name . 有些证书没有多个CN,但是具有多个subject alternative name 。 How should that be handled? 应该如何处理?
I was able to get the x509_EXTENSIONS struture. 我能够得到x509_EXTENSIONS结构。
typedef struct X509_extension_st
{
ASN1_OBJECT *object;
ASN1_BOOLEAN critical;
ASN1_OCTET_STRING *value;
} X509_EXTENSION;
What is the difference between the object and the value pointers? object和value指针之间有什么区别?
1 个解决方案
解决方案1
1 已采纳 2012-08-08 11:01:28
I guess in some of recent versions of OpenSSL, the X509_st (of which type the peer cert is) contains a field STACK_OF(GENERAL_NAME) *altname . 我猜在最近的一些OpenSSL版本中, X509_st (对等证书的类型)包含一个字段STACK_OF(GENERAL_NAME) *altname 。 If you are able to access it, it should solve your problem. 如果您能够访问它,它应该可以解决您的问题。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.