On Tue, Aug 22, 2000 at 07:44:50AM -0700, Dan Kegel wrote:
> It could well just be a lack of documentation and examples.
> The code inside OpenSSL and its existing sample apps is
> scary enough that it really takes great willpower to sit down
> and reverse engineer an understanding of how things work together.
True, it certainly would be better to have a tutorial, plus
documentation of at least all the essential SSL_... functions.
If you're looking for example code, then in addition to
apps/s_client.c and apps/s_server.c (which really are quite badly
written) you should look at ssl/ssltest.c (aka test/ssltest.c). This
unlike most applications uses an SSL BIO (i.e. it uses BIO_read and
BIO_write, which is translated to SSL_read and SSL_write by
ssl/bio_ssl.c), so it isn't quite the same, but it should still be
helpful. Also looking at third-party applications may help,
e.g. Lutz Jaenicke's TLS extension to Postfix (which uses BIO pairs
in the current version).
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
