On Thu, Aug 12, 2004 at 10:29:54AM +0200, Jos Dehaes wrote: > This works, but we don't have access to the cert chain when our callback > is called (SSL_get_peer_cert_chain returns a NULL pointer). Is this > normal (not yet filled in)? Or do we use the wrong callback/hook at the > wrong place?
I think that's expected behaviour, you can only get to the cert chain via the X509_STORE_CTX whilst it is being verified. joe
