On 2009.10.20 at 10:11:46 +0200, Peter Sylvester wrote: > > A better question is to match a given hostname > against a certificate and determine whether it > obeys the https rules. > There can be multiple hostnames and wild cards. > > The code implemented by "curl" is a complete way to do this.
Hmm, license of CURL seems to not have any incompatibilites with OpenSSL license. May be this code should be considered to be moved into openssl library? At least to the set of examples provided with OpenSSL. Better - as API function is libssl with appropriate switch in the s_client utility. So all users of the library can use robust and well tested code. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
