cURL / Mailing Lists / curl-library / Single Mail


Exposing/Verifying ssl certificate hash for a https connection

From: Arindam <>
Date: Mon, 15 Oct 2012 17:09:40 -0700

Because of some security constraints, whenever we make a https request we
want to check that atleast one of the certificates in the chain matches a
particular sha1_hash. I am doing this by checking the certificate against
the X509->sha1_hash in cert_verify_callback() function in ssluse.c, and
setting a value in data->info.

However, it seems that during the SSL connection the 'data' pointer keeps
changing. So, my application points to a different 'data' pointer whereas
the conn->data points to a different one.

Is there a ssl specific data structure I can use for this scenario ? How do
I get it from the CURL* handle ?


List admin:
Received on 2012-10-16