> From: owner-openssl-us...@openssl.org On Behalf Of Salz, Rich
> Sent: Monday, 17 December, 2012 12:45
> Thanks for the detailed response, Dave.
>
> > As the authenticator you know your own cert already. As the
> verifier you can get the cert and look at it.
> > ... You should be able to know what you configured.
>
> In general, yes. But in the context of a large proxy server
> fronting hundreds of servers and millions of clients, it's
> way much easier to pull stuff out of the SSL structure than
> to rummage back through configuration.
If you haven't wrapped the OpenSSL struct(s) with your own
and you want to remember something(s) about an SSL connection,
that's what SSL_{set,get}_ex_data are for.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager majord...@openssl.org
