Hello
Do you think is possible to let me know how can certificates used in
FSSLContext can be checked for validation before any usage? Following is
additional detail: in an application a SSLContext is configured (for a
TSSLSocket) and currently a check for files existence is present (checking
Hello
Do you believe that in the near future will be added to
ICS the functionality to use a certificate directly from Windows store?
Thank you in advance!
--
To unsubscribe or change your settings for TWSocket mailing list
please goto http://lists.elists.org/cgi-bin/mailman/listinfo/twsocket
Hello
Currently I have implemented a TLS client. This application is encountering a
communication issue when using a new third party server. I am setting the cert
file, private key file, password and ca file. In this configuration the
handshake is not performed. Currently I am using ICS v6
Hello
Could you please let me know if there is possibility to use ICS library in
combination with certificates from Windows store.
If this possibility exists please provide me a small code demo (client
implementation).
Thank you in advance.
Kind Regards,
Marius Florigoanta
--
To unsubscribe
I have updated the SslHandshakeDone(Sender: TObject; ErrCode: Word; PeerCert:
TX509Base; var Disconnect: Boolean); event as you mentioned and I used
SslVerifyDepth = 15 and
for I := 0 to TCustomSslWSocket(Sender).SslCertChain.Count -1 do
Attached cert file-BEGIN CERTIFICATE-
MIIKYjCCBkqgAwIBAgIJAMvPXQVBsjM2MA0GCSqGSIb3DQEBCwUAMIGKMQswCQYD
VQQGEwJGUjEPMA0GA1UEBwwGUmVubmVzMREwDwYDVQQIDAhCcml0dGFueTEMMAoG
A1UECgwDSUhFMQwwCgYDVQQLDANJSEUxFTATBgNVBAMMDFBvaXNlYXUgRXJpYzEk
Here are the files with OK := 1;
cert0 = Greatest CA (same as server's great CA)
cert1 = Intermediary CA (client's intermediary different from mine's server)
cert2 = Client certificate-BEGIN CERTIFICATE-
MIIKYjCCBkqgAwIBAgIJAMvPXQVBsjM2MA0GCSqGSIb3DQEBCwUAMIGKMQswCQYD
Thank you for your feedback.In my current scenario the certificate structure is
as follows:
Server(my application) | Client
Root certificate -same as- Root certificate
Intermediary CA -not same as- Intermediary CA
Server Cert
Thank you for your prompt response. We already tried your solution and seems to
be working. The issue is as follows: I do not have (access to) the client's
certificate (application not developed by me) in order to compose the chains
you mentioned. Furthermore I aspect that other clients that
Arno, in this moment the client sends the entire certificates chain:
1. its client certificate issued by the intermediary CA (2 from bellow)
2. intermediary certificate issued by the root CA
3. root CA
The only certificate that is common between our server chain and client chain
is (3) root CA.
Sorry! Please find attached the log content for Cert.GetRawText.Certificate:
Data:
Version: 3 (0x2)
Serial Number:
cb:cf:5d:05:41:b2:33:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=FR, L=Rennes, ST=Brittany, O=IHE, OU=IHE, CN=Poiseau
Currently I'm facing an issue in a Server application that
uses TSSLWSocketServer. I'm setting to the SSLContext a server certificate
identified in code as SSLContext.SslCertFile, with the correct private key file
identified as SSLContext.SslPrivKeyFile and a password. Also I'm adding a
CAFile
check
To: ICS support mailing twsocket@elists.org
Date: Monday, May 2, 2011, 5:10 PM
marius gabi wrote:
I'm receiving the following message
in the SSLVerifyPeer event: Error = 7 (certificate signature
failure).
In the OnSslVerifyPeer event please do the following logging and
post
13 matches
Mail list logo
