On Thu, Sep 09, 1999 at 09:29:12AM +0200, Thomas Olausson wrote:
> What I can't get to work is client side certificate.
> When using the cli.cpp and serv.cpp, I call
>
> SSL_CTX_use_certificate_file and
> SSL_CTX_use_PrivateKey_file
> on the client side.
>
> However, the
> client_cert = SSL_get_peer_certificate (ssl);
> on the server side, always returns NULL.
The server has to explicitly ask for the client certificate, or it
won't be sent in the handshake. Look at apps/s_server.c or at
ssl/ssltest.c to see what they call when client authentication is
demanded (but ignore verify_callback, you don't need that if client
certificates are to be mandatory, and if you need such a callback you
don't want to do that as in those example programs -- see list archives
for some discussion on this).
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
