On Thu, Aug 23, 2001 at 12:11:48PM -0400, Raja Said wrote:
> i building an application using ssl.
> i have read the documentation of the open ssl multiple times
> and i have the following situation:
> when i run a server & client using ssl. but without
>
> SSL_CTX_set_verify(ctx,
> SSL_VERIFY_PEER|SSL_VERIFY_FAIL_IF_NO_PEER_CERT,NULL);
> then the handshake seems to pass.
> but including this causes SSL_ERROR_SSL on both sides.
> i dont have any idea how to fix this, can any one help me figure it
> out?
The handshake will fail, when the verification fails.
You do not use a "verify_callback". You therefore do not get any information
about whey the verification fails.
> and when i do SSL_get_current_cipher and get print its version and
> name
> NULL is written. although i did SSL_CTX_set_cipher_list(ctx,"ALL").
>
> any ideas why this doesnt work?
When the verification failed, no session is negotiated and therefore
there cannot be information about a session, that does not exist :-)
Best regards,
Lutz
--
Lutz Jaenicke [EMAIL PROTECTED]
BTU Cottbus http://www.aet.TU-Cottbus.DE/personen/jaenicke/
Lehrstuhl Allgemeine Elektrotechnik Tel. +49 355 69-4129
Universitaetsplatz 3-4, D-03044 Cottbus Fax. +49 355 69-4153
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
