On Mon, Feb 8, 2010 at 2:30 PM, Klaus Darilion <klaus.mailinglists at pernau.at> wrote: > > > Am 08.02.2010 13:15, schrieb Nanang Izzuddin: >> >> Hi Pierre, >> >> Just want to revisit this topic again :) >> >> First, let me clarify that the issue added in ticket #1032 is about >> giving a chance for application to "override" negative result in >> certificate verification, not really the main idea you've suggested, >> which was about exporting/escalating OpenSSL verification callback in >> its 'native' way (including leaking some OpenSSL data), did I get it >> wrong? >> >> A reason behind 'ignoring' your main idea was that the use-case >> samples you've given can be handled by the existing mechanism, e.g: >> - certificate info could be queried via pj_ssl_sock_get_info(). >> - application can check whether certificate has been received by >> calling pj_ssl_sock_get_info() in on_connect_complete(). > > Is it possible to use the on_connect_complete() callback from pjsua-API? > I think we'll have to add it then. But the question still remains, will it be sufficient to capture your use case? Cheers Benny
