On Wed, Dec 05, 2001 at 04:57:17PM -0500, nicholas black wrote:
> hey there. my software's operating in both client and server mode, and
> needs a different verify function depending on the two.
>
> i've used SSL_CTX_set_verify() to set the default callback. i'm usually
> acting as a server, so i set it to my client cert verification function.
>
> when i want to connect to my server, i first get a new SSL * with
> SSL_new(), then attempt to change the callback function via
> SSL_set_verify(). said function is never called.
>From the CHANGES file:
*) Modified SSL library such that the verify_callback that has been set
specificly for an SSL object with SSL_set_verify() is actually being
used. Before the change, a verify_callback set with this function was
ignored and the verify_callback() set in the SSL_CTX at the time of
the call was used. New function X509_STORE_CTX_set_verify_cb() introduced
to allow the necessary settings.
[Lutz Jaenicke]
The fix will be available in 0.9.6c (due out in the next days!?) and 0.9.7.
Nevertheless: thanks for your effort!
Best regards,
Lutz
--
Lutz Jaenicke [EMAIL PROTECTED]
BTU Cottbus http://www.aet.TU-Cottbus.DE/personen/jaenicke/
Lehrstuhl Allgemeine Elektrotechnik Tel. +49 355 69-4129
Universitaetsplatz 3-4, D-03044 Cottbus Fax. +49 355 69-4153
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
