SSL_CTX_set_cert_store, SSL_CTX_get_cert_store - manipulate X509 certificate verification storage
void SSL_CTX_set_cert_store(SSL_CTX *ctx, X509_STORE *store); X509_STORE *SSL_CTX_get_cert_store(const SSL_CTX *ctx);
In order to verify the certificates presented by the peer, trusted CA certificates must be accessed. These CA certificates are made available via lookup methods, handled inside the X509_STORE. From the X509_STORE the X509_STORE_CTX used when verifying certificates is created.
Typically the trusted certificate store is handled indirectly via using
SSL_CTX_load_verify_locations(3). Using the
Currently no detailed documentation on how to use the X509_STORE object is
available. Not all members of the X509_STORE are used when the verification
takes place. So will e.g. the