In article <[EMAIL PROTECTED]> you wrote:
> Here is an RTFM question, most likely, so first of all,
> where is the FM?
>
> I am attempting to use SSL as a basic transport for a variety of
> purposes, some of which is transporting already encrypted data.
> At such times, I want to renegotiate back to a NULL cipher.
>
> I know I can just write to the socket at any time, but I want the same API.
> I suppose I could step back one level, and wrap my own API around the one
> in question (SSL_read/SSL_write), but that gets hairy at times.
Just writing to the socket will lead to problems when you after this again
want to switch back to SSL. What you want is really just a renegotation with a
different cipher suite. Just reconfigure the cipher suite and force a
renegotation. That should be all you need. At least you've not to bypass
SSL_write/SSL_read...
Ralf S. Engelschall
[EMAIL PROTECTED]
www.engelschall.com
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
