我在CN=CA1, O=DEVANG中有CA证书的主题名称。
我想转换为X509_NAME格式。
有没有API可以帮助我转换它? 我怎么比较?
答案 0 :(得分:1)
OpenSSL中似乎没有任何辅助函数可用于执行此操作。看起来实现您想要的唯一方法是解析字符串并逐个构建X509_NAME_ENTRY元素。您可以使用strsep,导致类似这样的代码(不进行任何错误检查,并且在名称格式的变化方面容易出错):
#define TEST_NAME "CN=CA1, O=DEVANG"
X509_NAME *x509name = X509_NAME_new();
char *x509nameString = strdup(TEST_NAME);
char *toFree = x509nameString;
char *x509nameEntryString = strsep(&x509nameString, ",");
char *x509nameEntryTypeString;
char *x509nameEntryValueString;
while (NULL != x509nameEntryString) {
x509nameEntryValueString = x509nameEntryString;
x509nameEntryTypeString = strsep(&x509nameEntryValueString, "=");
X509_NAME_add_entry_by_txt(x509name, x509nameEntryTypeString,
MBSTRING_ASC, x509nameEntryValueString, -1, -1, 0);
/* Need to skip spaces */
while ((NULL != x509nameString) &&
(' ' == *x509nameString)) {
x509nameString = &x509nameString[1];
}
x509nameEntryString = strsep(&x509nameString, ",");
}
/* See the result, just FYI */
X509_NAME_print_ex_fp(stdout, x509name, 0, XN_FLAG_ONELINE);
free(toFree);
为了比较两个X509_NAME个实例,函数X509_NAME_cmp()可用。
我希望有人有更好的答案......