SSL_get_verify_result(ssl)
Hi, I have written a client/server code using openssl. when i am verifying the server certificate on the client side and also the client certificate on the server side the verification fails. On the client side , SSL_get_verify_result(ssl) returns code 18. which is : 18 X509_V_ERR_DEPTH_ZERO_SELF_SIGNED_CERT: self signed certificate i have the server certificate on the client side and i am using this function in my client code. if (SSL_CTX_load_verify_locations(ctx,CERTF,HOME) <= 0 ) { ERR_print_errors_fp(stderr); exit(3); } where CERTF is server certificate and HOME is the certificate path. i have used verify command to check the server certificate which the server is sending to the client and the certificate the client is having on its side. this command gives OK. then i dont know where is the problem. Please tell me why it fails. biswaksen
SSL_CTX_use_PrivateKey_file()
Hi, can somebody help me out. when i use the SSL_CTX_use_PrivateKey_file() function in my client and server program, both the server and client progarm asks on the command prompt to Enter PEM pass phrase: I dont want the user to enter the pass phrase , how to avoid this situation. Is there anyway to set the pass phrase from the program only biswaksen __ Do You Yahoo!? Yahoo! Greetings - send holiday greetings for Easter, Passover http://greetings.yahoo.com/ __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
SSL_CTX_use_PrivateKey_file()
Hi, can somebody help me out. when i use the SSL_CTX_use_PrivateKey_file() function in my client and server program, both the server and client progarm asks on the command prompt to Enter PEM pass phrase: I dont want the user to enter the pass phrase , how to avoid this situation. Is there anyway ? biswaksen
[no subject]
Hi, I need help from the openssl users. i appreciate somebody's help in this regard. I am very new to openssl progarmming. I am facing a problem in writing a client program, which talks to a server which does client authentication. can anybody send me a snippet of client code. i am sending snippet my client code. Please correct me if i am writing the wrong APIS . SSLeay_add_ssl_algorithms(); meth = SSLv3_client_method(); SSL_load_error_strings(); ctx = SSL_CTX_new (meth); CHK_NULL(ctx); if (SSL_CTX_use_certificate_file(ctx, CERTF, SSL_FILETYPE_PEM) <= 0) { ERR_print_errors_fp(stderr); exit(3); } if (SSL_CTX_use_PrivateKey_file(ctx, KEYF, SSL_FILETYPE_PEM) <= 0) { ERR_print_errors_fp(stderr); exit(4); } if (!SSL_CTX_check_private_key(ctx)) { fprintf(stderr,"Private key does not match the certificate public key\n"); exit(5); } ssl = SSL_new (ctx); SSL_set_fd (ssl, sd); err= SSL_connect (ssl); printf("Connection error : %d",err); biswaksen __ Do You Yahoo!? Yahoo! Movies - coverage of the 74th Academy Awards® http://movies.yahoo.com/ __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
[no subject]
hi, i am writing a ssl client program in C using openssl APIs to connect to the ssl server where the ssl server does client authentication. so i need to know what are the functions the client should use to do the same and the sequence of the function. any help will be highly appreciated biswaksen