Now you can do something meaningful in VerifyPeer callbacks.
Bindings to some of the X509_STORE_CTX functions.
What version of the OpenSSL library are these new functions targeting? My version of OSX ships with 0.9.8r, and I installed 0.9.8s from Homebrew, and neither have the following symbols:
Undefined symbols for architecture x86_64:
"_X509_STORE_CTX_get0_current_issuer", referenced from:
_HsOpenSSLzm0zi10zi3_OpenSSLziX509ziStore_zdwa4_info in libHSHsOpenSSL-0.10.3.a(Store.o)
"_X509_STORE_CTX_get0_current_crl", referenced from:
_HsOpenSSLzm0zi10zi3_OpenSSLziX509ziStore_zdwa2_info in libHSHsOpenSSL-0.10.3.a(Store.o)
ld: symbol(s) not found for architecture x86_64
Could you please guard these new definitions with a flag or some CPP or something?
Sorry for the inconvenience. I'm using Arch Linux which means that I always have the latest version of OpenSSL (1.0.1a atm). I'll write a workaround for 0.9.x today.
Please test this branch. If the fix works for you I'll make a pull request.