Update X509 cert chain verify

2026-06-20 03:44:15 +08:00 · 2026-06-18 19:25:34 +08:00
parent 055d3fe812
commit d7c6db0a21
4 changed files with 6 additions and 2 deletions
--- a/include/gmssl/version.h
+++ b/include/gmssl/version.h
@@ -18,7 +18,7 @@ extern "C" {


 #define GMSSL_VERSION_NUM	30200
-#define GMSSL_VERSION_STR	"GmSSL 3.2.0-dev.1088"
+#define GMSSL_VERSION_STR	"GmSSL 3.2.0-dev.1089"

 int gmssl_version_num(void);
 const char *gmssl_version_str(void);
--- a/include/gmssl/x509_cer.h
+++ b/include/gmssl/x509_cer.h
@@ -324,6 +324,7 @@ typedef enum {
 } X509_CERT_TYPE;

 int x509_cert_check(const uint8_t *cert, size_t certlen, int cert_type, int *path_len_constraint);
+int x509_cert_check_subject(const uint8_t *cert, size_t certlen, int is_cacert);

 /*
 IssuerAndSerialNumber ::= SEQUENCE {
@@ -363,6 +364,8 @@ typedef enum {
 } X509_CERT_CHAIN_TYPE;

 #define X509_MAX_VERIFY_DEPTH	6
+//int x509_cert_chain_verify(const uint8_t *certs, size_t certslen,
+//	const uint8_t *cacerts, size_t cacertslen, int depth, int *verify_result);
 int x509_certs_verify(const uint8_t *certs, size_t certslen, int certs_type,
 	const uint8_t *rootcerts, size_t rootcertslen, int depth, int *verify_result);
 int x509_certs_verify_tlcp(const uint8_t *certs, size_t certslen, int certs_type,