Project

General

Profile

Feature #4481

Add client_ca method to OpenSSL::SSLSocket

Added by ohai (Ippei Obayashi) almost 10 years ago. Updated over 9 years ago.

Status:
Closed
Priority:
Normal
Target version:
[ruby-core:35461]

Description

=begin
Please add "client_ca" method to OpenSSL::SSLSocket to solve the following problem.

Problem:
If a SSL server decide to authenticate clients using client-certificates,
the server can send the list of client CAs to a client as a hint, and
the client can use the list to select an appropriate certificate.
But the current ruby's ext/openssl does not have the API to access the list.

Solution:
Add a wrapper function for SSL_get_client_CA_list.

Two patches (new method and test) are attached to this message.
=end


Files

ssl_client_ca.diff (2.12 KB) ssl_client_ca.diff ohai (Ippei Obayashi), 03/08/2011 02:56 AM
ssl_client_ca_test.diff (1.07 KB) ssl_client_ca_test.diff ohai (Ippei Obayashi), 03/08/2011 02:56 AM

Also available in: Atom PDF