<![CDATA[wolfSSL - Embedded SSL Library — Equivalent config for X509_V_FLAG_PARTIAL_CHAIN]]> https://www.wolfssl.com/forums/topic2035-equivalent-config-for-x509vflagpartialchain.html Mon, 11 Sep 2023 20:05:38 +0000 PunBB <![CDATA[Re: Equivalent config for X509_V_FLAG_PARTIAL_CHAIN]]> https://www.wolfssl.com/forums/post7246.html#p7246 Hi Bahadirmaktav,

How are you today? My name is Anthony Hu and I am a member of the wolfSSL team. I have checked, and we do not support this particular flag in our OpenSSL compatibility layer. However, I will query my colleagues to see if there is a simple way for you to do this. Please stay tuned.

Warm Regards, Anthony

]]> Mon, 11 Sep 2023 20:05:38 +0000 https://www.wolfssl.com/forums/post7246.html#p7246 <![CDATA[Equivalent config for X509_V_FLAG_PARTIAL_CHAIN]]> https://www.wolfssl.com/forums/post7245.html#p7245 In python, there is a configuration settings when creating a ssl context:
```
ssl_context.verify_flags |= 0x80000  # Refers to setting X509_V_FLAG_PARTIAL_CHAIN flag.
```
Is there any configuration settings in wolfssl similar with this X509_V_FLAG_PARTIAL_CHAIN flag.

Note: The X509_V_FLAG_PARTIAL_CHAIN flag causes intermediate certificates in the trust store to be treated as trust-anchors, in the same way as the self-signed root CA certificates. This makes it possible to trust certificates issued by an intermediate CA without having to trust its ancestor root CA.

]]> Mon, 11 Sep 2023 19:32:41 +0000 https://www.wolfssl.com/forums/post7245.html#p7245