2 Feb
2004
2 Feb
'04
4:14 p.m.
I've added some peer certificate verification code. It makes sure the chain is unbroken, that the signatures are correct, and that the root of the certificate chain provided is trusted.
I haven't yet added code to check the dates on the certificates, but should get to that soon. I also haven't done anything with the flags (anyone up for that???).
I was thinking about adding an optional callback that would be called in the event of a problem with one of the certificates (wrong flags, untrusted, etc) so that an application could make a decision about whether to override the verification failure. Any thoughts?
Bill