Details
-
Improvement
-
Resolution: Unresolved
-
Major - P3
-
None
-
2.5.2
-
Server Security
Description
In our current design we have two hardcoded SSL_CTX objects for incoming and outgoing connections. This makes it impossible to create multiple outgoing connections using different certificates.
Actions:
- Expand the SSL server/driver code to handle an arbitrary number of outgoing SSL_CTX objects.
- Build shell functionality to specify which certificate should be used for a certain connection. This most likely involves expanding the connect() call to take a certificate path.