http://www.mozilla.org/projects/security/pki/nss/ref/ssl/sslfnc.html#1088928 says "To obtain the certificate that was rejected by the certificate authentication callback, the callback function calls SSL_PeerCertificate."
And it really does mean the callback function. Once that returns, the information is destroyed, and SSL_PeerCertificate will fail. This seems obvious in retrospect. Just posting here in case anyone else trips on this. _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
