Nick Kew wrote:
Unless OpenSSL nomenclature is rather confusing here, an SSL_CTX
sounds like the kind of thing you would instantiate per-connection
or per-request. Does your module act on a request or a connection?
Maybe a bit of background reading and examination of reference
implementations would be a better help for you right now.
SSL_CTX_new(3): SSL_CTX_new - create a new SSL_CTX object as framework
for TLS/SSL enabled functions
SSL_new(3): SSL_new - create a new SSL structure for a connection
The SSL_CTX is a template/configuration holder to stamp out your
connection instances from. This saves configuring certificates, cipher
specs, etc... for every connection.
Darryl