On Wed, Jun 25, 2014 at 11:15 AM, Jens Maus <m...@jens-maus.de> wrote:
> ...
>
> Actually, I now understand that I can keep a single SSL_CTX throughout the 
> whole lifetime of my application and just assign it to the SSL_new() call. 
> However, as I outlined in my last posts, if I change my code like this I run 
> into the verify_callback problem and that I have to be able to specify 
> different app_data pointers per SSL connection or otherwise I cannot store 
> the certificate check results for evaluation by my application.
>
The SSL* should be unique per connection. Is it not possible to keep a
data structure somewhere that uses the SSL* as a key? Then stuff the
data as the value of the pair.

I know there's a difference between connections and sessions (one
connection can have multiple sessions; sessions can be resumed, etc).
So I'm not clear if it will meet all your needs.

Jeff
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    openssl-users@openssl.org
Automated List Manager                           majord...@openssl.org

Reply via email to