Thanks, however I just discovered some misbehaviour that I'm unsure
whom to blame for:
If a certificate gets rejected than this currently not detected in
Connection *conn_open_ssl(Octstr *host, int port, Octstr *certkeyfile,
Octstr *our_host)
and I don't understand why. HTTP requests over a SSL connection later
fail when they try to write something. I suspect this never came up
until now because the SSL negotiations always succeeded.
Any ideas?
Regards
J�rg
BTW: What's the certkeyfile good for in this function. IMHO it would
be better to place it into the global context using
int SSL_CTX_use_certificate_file(SSL_CTX *ctx, const char *file, int type);
This way we would not have to carry around this file forever. New SSL
objects
inherit the certificates from the context they were created from.
-----Original Message-----
From: Stipe Tolj
To: J�rg Pommnitz
Cc: '[EMAIL PROTECTED]'
Sent: 12/7/01 11:35 AM
Subject: Re: Heads up: SSL client code to verify SSL server certificates
BTW, the patch looks good!
Stipe
[EMAIL PROTECTED]
-------------------------------------------------------------------
Wapme Systems AG
M�nsterstr. 248
40470 D�sseldorf
Tel: +49-211-74845-0
Fax: +49-211-74845-299
E-Mail: [EMAIL PROTECTED]
Internet: http://www.wapme-systems.de
-------------------------------------------------------------------
wapme.net - wherever you are
