Hello
Do you think is possible to let me know how can certificates used in
FSSLContext can be checked for validation before any usage? Following is
additional detail: in an application a SSLContext is configured (for a
TSSLSocket) and currently a check for files existence is present (checking i
Hello
Do you believe that in the near future will be added to
ICS the functionality to use a certificate directly from Windows store?
Thank you in advance!
--
To unsubscribe or change your settings for TWSocket mailing list
please goto http://lists.elists.org/cgi-bin/mailman/listinfo/twsocket
Vis
Hello
Currently I have implemented a TLS client. This application is encountering a
communication issue when using a new third party server. I am setting the cert
file, private key file, password and ca file. In this configuration the
handshake is not performed. Currently I am using ICS v6 with
Hello
Could you please let me know if there is possibility to use ICS library in
combination with certificates from Windows store.
If this possibility exists please provide me a small code demo (client
implementation).
Thank you in advance.
Kind Regards,
Marius Florigoanta
--
To unsubscribe or
Hello Arno, I have updated to the last version of ICS and I used OpenSSL 1.0.0d
and it works perfectly. Again THANK YOU for your help.
--
To unsubscribe or change your settings for TWSocket mailing list
please goto http://lists.elists.org/cgi-bin/mailman/listinfo/twsocket
Visit our website at http
Thank you for your time!
Indeed updating the OpenSSL version fixed my issue but the following strange
thing happens: currently I am using ICS V7 but the highest version supported by
my ICS is 0.9.8n and in this case the application still would not work OK.
The OpenSSL ver 0.9.8r (or higher) is
Here are the files with OK := 1;
cert0 = Greatest CA (same as server's great CA)
cert1 = Intermediary CA (client's intermediary different from mine's server)
cert2 = Client certificate-BEGIN CERTIFICATE-
MIIKYjCCBkqgAwIBAgIJAMvPXQVBsjM2MA0GCSqGSIb3DQEBCwUAMIGKMQswCQYD
VQQGEwJGUjEPMA0GA1UEB
Attached cert file-BEGIN CERTIFICATE-
MIIKYjCCBkqgAwIBAgIJAMvPXQVBsjM2MA0GCSqGSIb3DQEBCwUAMIGKMQswCQYD
VQQGEwJGUjEPMA0GA1UEBwwGUmVubmVzMREwDwYDVQQIDAhCcml0dGFueTEMMAoG
A1UECgwDSUhFMQwwCgYDVQQLDANJSEUxFTATBgNVBAMMDFBvaXNlYXUgRXJpYzEk
MCIGCSqGSIb3DQEJARYVZXJpYy5wb2lzZWF1QGlucmlhLmZyMB4XDTEwMD
I have updated the SslHandshakeDone(Sender: TObject; ErrCode: Word; PeerCert:
TX509Base; var Disconnect: Boolean); event as you mentioned and I used
SslVerifyDepth = 15 and
for I := 0 to TCustomSslWSocket(Sender).SslCertChain.Count -1 do
TCustomSslWSocket(Sender).SslCertChain[I].SaveToPemFil
Arno, in this moment the client sends the entire certificates chain:
1. its client certificate issued by the intermediary CA (2 from bellow)
2. intermediary certificate issued by the root CA
3. root CA
The only certificate that is common between our server chain and client chain
is (3) root CA.
Thank you for your prompt response. We already tried your solution and seems to
be working. The issue is as follows: I do not have (access to) the client's
certificate (application not developed by me) in order to compose the chains
you mentioned. Furthermore I aspect that other clients that hav
Thank you for your feedback.In my current scenario the certificate structure is
as follows:
Server(my application) | Client
Root certificate -same as- Root certificate
Intermediary CA -not same as- Intermediary CA
Server Cert -no
Sorry! Please find attached the log content for Cert.GetRawText.Certificate:
Data:
Version: 3 (0x2)
Serial Number:
cb:cf:5d:05:41:b2:33:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=FR, L=Rennes, ST=Brittany, O=IHE, OU=IHE, CN=Poiseau
Eri
To: "ICS support mailing"
Date: Monday, May 2, 2011, 5:10 PM
marius gabi wrote:
> I'm receiving the following message
> in the SSLVerifyPeer event: Error = 7 (certificate signature
> failure).
In the OnSslVerifyPeer event please do the following logging and
p
Currently I'm facing an issue in a Server application that
uses TSSLWSocketServer. I'm setting to the SSLContext a server certificate
identified in code as SSLContext.SslCertFile, with the correct private key file
identified as SSLContext.SslPrivKeyFile and a password. Also I'm adding a
CAFile
15 matches
Mail list logo
