Hi,
thanks for your reply.
I’ve implemented the HTTPS client (not the server), so I only need one socket.
I’ve done several tests with OpenSSL. I’ve successfully connected to the server via the following command:
openssl s_client -connect server:port -CAfile CAfile -nameserver server
The parameter “nameserver” activates the SNI extension and includes the server name in the Client-Hello packet. Then, the server knows what certificate it has to send. Please see the WireShark capture at the end of the post.
I’d need an analog way to do this with the wip_ssl library.
Thanks.