Usage of new verify_fun ssl option

[Paul Guyot]

Ingela,

Thank you for your quick reply.

>> - the verify_fun function is also passed the local (server) certificate, which does not have the critical extension. How can I distinguish the two certificates?
>> 
> Good question, there are extensions that could be used  if they are present ...  maybe we should change
> the verify fun to be called  with {valid, peer} for the peer certificate!?

That would work for us.

Regards,

Paul
-- 
Semiocast                    http://semiocast.com/
+33.175000290 - 62 bis rue Gay-Lussac, 75005 Paris