On Thu, Jan 30, 2014, Salz, Rich wrote: > Has anyone thought about how to increase the SSL options? Looking at the > #define's for SSL_OP_... it seems that all 32bits are taken. > >
One err option is to use the mode value which alhough not originally intended for that use has many free bits. Bits to re-enable the sending of time values in handshakes have been places in there for example. An alternative is to add something to the CERT structure, either by using existing flags (cert_flags is there in OpenSSL 1.0.2) or adding new fields. The advantage of using CERT is that it is an opaque structure not defined in a public header file so rearranging it internally wont affect binary compatibility. Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [email protected] Automated List Manager [email protected]
