I'm not entirely certain what you're looking at. The server that hosts the SOAP service must be accessed using TLS or SSL; this means that the certificate and key need to be available to the server hosting the service, not (necessarily) the client. (XML encryption isn't done yet, according to the docs I'm reading.)
The idea behind SSL and TLS is this: SSL/TLS provide you what is essentially a socket that you can read from and write to, the same way you normally would. This socket passes information through in such a way that what is sent is what is read, both ways. The encryption is handled almost transparently to your application. If you're getting garbage at the server end, then you have an issue with the code that's generating the garbage, not necessarily TLS/SSL. If I'm missing something, please let me know. Your report wasn't very helpful in figuring out what you're doing or how you're doing it. Your server is gSOAP. What's your client? How are they configured [to the extent that they use encryption]? -Kyle H On 2/8/06, Lee Colclough <[EMAIL PROTECTED]> wrote: > > > > Hi, > > > > I have created a CA certificate and used it to sign a server and client > certificate for my client / server apps. All the certificate validation > seems fine, and the data I send out (it's a SOAP message) appears to have > been encrypted properly, but it's not being decrypted at the other end. > > > > I'm on a WinXP system, and I have concatenated the key and cert files > together in PEM format as instructed. The error message I get is invalid > SOAP message, because when I look at the message received by the server, > it's still encrypted. > > > > If anyone has any knowledge of using OpenSSL within gSoap and can help, I > can provide more specific detail. > > > > Any ideas appreciated, > > > > Lee Colclough ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
