"Simon J. Gerraty" <[EMAIL PROTECTED]>:
> A quick look though CHANGES and apps/* did not show much in the way
> of API changes [...] but after a successful call to
> SSL_CTX_use_PrivateKey_file(), SSL_get_certificate(ssl_con) returns
> NULL.
Actually this may be mentioned in CHANGES, because the problem
could be that the program first calls SSL_new and then
SSL_CTX_use_PrivateKey_file:
Changes between 0.9.2b and 0.9.3 [24 May 1999]
[...]
*) Create a duplicate of the SSL_CTX's CERT in SSL_new instead of
copying pointers. The cert_st handling is changed by this in
various ways (and thus what used to be known as ctx->default_cert
is now called ctx->cert, since we don't resort to s->ctx->[default_]cert
any longer when s->cert does not give us what we need).
ssl_cert_instantiate becomes obsolete by this change.
As soon as we've got the new code right (possibly it already is?),
we have solved a couple of bugs of the earlier code where s->cert
was used as if it could not have been shared with other SSL structures.
Note that using the SSL API in certain dirty ways now will result
in different behaviour than observed with earlier library versions:
Changing settings for an SSL_CTX *ctx after having done s = SSL_new(ctx)
does not influence s as it used to.
[...]
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
