31 Mar
2014
31 Mar
'14
8:26 p.m.
On 2014-03-27 12:15, Leon Winter wrote:
I hereby release my patches to stunnel for support of muliple client certificates with the same CN into the public domain.
Thank you very much. Could you please test my implementation? https://www.stunnel.org/downloads/beta/stunnel-5.01b2.tar.gz
It should be thread-safe, as X509_STORE_get1_certs() synchronizes X509_STORE operations with CRYPTO_LOCK_X509_STORE locks. It also doesn't use any pointers to internal OpenSSL data structures, so it should be able to survive updates of the OpenSSL shared libraries.
Mike