On Wed, Mar 07, 2001 at 02:32:08PM -0000, Toby Shepheard wrote:
> //Is this ok? I'm using the generic SSLv3_method
> meth=SSLv3_method();
> ctx=SSL_CTX_new(meth);
>
> > * You are not reusing an old SSL object that was already used once and
> > not cleared with SSL_clear()?
>
> // The SSL object should be new (iSocket comes from TCP connect statement
> earlier)
> ssl = SSL_new(ctx);
> err = SSL_set_fd(ssl, iSocket);
> err = SSL_connect(ssl);
>
> > Please check out all of these points first.
>
> They seem ok to me. Thanks for the pointers though - any more ideas?
Doesn't look bad. I did dig through the source a bit and it seems, that
for a generic method, the SSL is initialized for "server" (accept) state.
Could you please insert a SSL_set_connect_state() just before the
SSL_connect()? From reading the source I would expect it to help
(and to lead to more work for me, because this must go into the manual
pages :-)
Best regards,
Lutz
--
Lutz Jaenicke [EMAIL PROTECTED]
BTU Cottbus http://www.aet.TU-Cottbus.DE/personen/jaenicke/
Lehrstuhl Allgemeine Elektrotechnik Tel. +49 355 69-4129
Universitaetsplatz 3-4, D-03044 Cottbus Fax. +49 355 69-4153
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
