?,
i had a problem with session ID reuse and openSSL0.9.2b
i set the verify flags to
SSL_VERIFY_PEER | SSL_VERIFY_CLIENT_ONCE | SSL_VERIFY_FAIL_IF_NO_PEER_CERT
but sessions weren't being reused,...
i traced through the code until i failed on ,...
if((s->verify_mode&SSL_VERIFY_PEER) && (!s->sid_ctx_length) etc. etc.
i fixed this with the following
fb->ssl = SSL_new(pConfig->pSSLCtx);
SSL_set_session_id_context(fb->ssl,(UCHAR *)"dave",(UINT)4);
SSL_set_fd(fb->ssl,fb-fd);
it worked !
something tells me that args 2 and 3 to SSL_set_session_id_context
are not correct.
does anyone know what type of info should go in there ?
dave.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
