I am looking at using the client_cert_callback function. The
signature is:
int client_cert_cb(SSL * s, X509 ** x509, EVP_PKEY ** pkey)
The callback is called from ssl3_send_client_certificate(SSL *s) after
the server certificate has been read:
SSL_handshake:UNKWN before/connect initialization
SSL_connect:UNKWN before/connect initialization
SSL_connect:3WCH_A SSLv3 write client hello A
SSL_connect:3RSH_A SSLv3 read server hello A
SSL_connect:3RSC_A SSLv3 read server certificate A
SSL_connect:3RSKEA SSLv3 read server key exchange A
SSL_connect:3RCR_A SSLv3 read server certificate request A
SSL_connect:3RSD_A SSLv3 read server done A
Is it possible to know at this point (within the callback function)
which type of certificate the server would prefer? DSA or RSA?
What is the appropriate method for accessing the certificate request
information?
Jeffrey Altman * Sr.Software Designer
The Kermit Project * Columbia University
612 West 115th St * New York, NY * 10025 * USA
http://www.kermit-project.org/ * [EMAIL PROTECTED]
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
