[英]x509 certificate subject alternative name
When using the x509 certificate in c++ obtained using the function SSL_get_peer_certificate
, which function should be used to handle the subject alternative name
field of the certificate? 在使用通过函数
SSL_get_peer_certificate
获得的c ++中使用x509证书时,应使用哪个函数来处理证书的SSL_get_peer_certificate
subject alternative name
字段? Some certificates dont have multiple CN's but have multiple subject alternative name
. 有些证书没有多个CN,但是具有多个
subject alternative name
。 How should that be handled? 应该如何处理?
I was able to get the x509_EXTENSIONS struture. 我能够得到x509_EXTENSIONS结构。
typedef struct X509_extension_st
{
ASN1_OBJECT *object;
ASN1_BOOLEAN critical;
ASN1_OCTET_STRING *value;
} X509_EXTENSION;
What is the difference between the object
and the value
pointers? object
和value
指针之间有什么区别?
I guess in some of recent versions of OpenSSL, the X509_st
(of which type the peer cert is) contains a field STACK_OF(GENERAL_NAME) *altname
. 我猜在最近的一些OpenSSL版本中,
X509_st
(对等证书的类型)包含一个字段STACK_OF(GENERAL_NAME) *altname
。 If you are able to access it, it should solve your problem. 如果您能够访问它,它应该可以解决您的问题。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.