This is a "feature" of OpenSSL 0.9.2b, you need to call
SSL_set_connect_state
before the SSL_connect. This is not needed in older and newer versions (I've
asked the same question and was told it would be fixed on OpenSSL 0.9.3x)
/Per Nilsson
> -----Original Message-----
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]]On Behalf Of Bodo Moeller
> Sent: Tuesday, May 18, 1999 9:58 PM
> To: [EMAIL PROTECTED]
> Subject: Re: SSL_connect
>
>
> "Scheltema, R.A." <[EMAIL PROTECTED]>:
>
> > With the
> > examples given with the OpenSSL-distribution I've been able to
> make a (as of
> > yet) minimal server to which Netscape and IExplorer can connect
> and exchange
> > information. The problem is the client.
>
> > According to the example "Minimal client for Unix, by Sampo Kellomaki" I
> > only have to create a ssl-context (no certificates\key) and then I can
> > connect to the minimal server after the standard socket-stuff.
> This, much to
> > my regret :(, does not happen. The SSL_connect-call fails (it
> returns -1).
>
> > My questions are:
> > 1. Do I have to install callback-functions for verification of
> the server.
>
> No.
>
> > 2. Which are the reasons for a SSL_connect-call to fail.
>
> Do you call these
> SSL_load_error_strings();
> ERR_load_crypto_strings();
> SSL_library_init();?
> If so, calling ERR_print_errors(stderr) after the error occured might
> give informative output (provided that you checked the return values
> of previous calls -- in case you don't have a working TCP connection,
> for example, SSL obviously cannot work).
> ______________________________________________________________________
> OpenSSL Project http://www.openssl.org
> User Support Mailing List [EMAIL PROTECTED]
> Automated List Manager [EMAIL PROTECTED]
>
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
