Jeremy Harris jgh at
Sun Sep 8 17:09:12 UTC 2019

On 29/08/2019 23:31, Jeremy Harris wrote:
> I have a note from 2017 in my code to the effect that
> SSL_get_certificate() is broken in that it returns the last
> cert loaded rather than the one passed out to the client
> (on the server).

Note that one might have both an EC and an RSA cert loaded.

> Is this still the case?  I can't track down any obvious fix in the
> OpenSSL git.

Nobody knows?


More information about the openssl-users mailing list