So in a crux, what can I do to ensure that openssl does not read app
data
pkts
at all..
Nothing. You have no guarantee how many bytes the kernel's read() will
hand back up to you.
You will have to severely hack on your kernel and networking
implementation to make this happen.
You might
Hi,
I want to have no email address in the DN and so I used the email_in_dn
configuration file directive, but when triying to sign a csr, I get the
following error:
Using configuration from /home/tc/Test-Server-CA.cnf
DEBUG[load_index]: unique_subject = no
Error Loading extension section
If you could send me the source I could debug it for
you
--- Urjit Gokhale [EMAIL PROTECTED]
wrote:
Hi Girish,
Thanks for replying.
I am specifying the ssl method as SSLv23_method()
while creating the SSL context. As I understand, the
method set in the context will apply to all the
Hello
Can I disable Nagle algorithm using OpenSSL? My application always send
entire buffers to openssl, so I think disable Nagle
but I'm wondering if openssl need coalescing data when sending SSL payloads.
Thanks and sorry my english ...
Leandro Gustavo Biss Becker
Hi
I´m trying to remove features not used by our project from openssl (0.9.8b)
but some options do not work.
First, i´ve tried use perl Configure VC-WIN32 no-hw. When linking libeay,
the .def file export
functions that do not exists due no-hw switch giving a linker error.
Second, i´ve tried
Yes, u can use setsockopt(...TCP_NODELAY) before
SSL_set_fd(). OpenSSL doesn't care about Nagle.
regards,
Girish
--- Leandro Gustavo Biss Becker
[EMAIL PROTECTED] wrote:
Hello
Can I disable Nagle algorithm using OpenSSL? My
application always send
entire buffers to openssl, so I think
Our experience is successful using TCP_NODELAY with OpenSSL in our
client/server application.
Dave McLellan - Consulting Software Engineer
Storage Platforms, Enablers, and Applications
EMC Corporation
228 South St.
Hopkinton MA 01748
phone: 508-249-1257
fax 508-497-8030
-Original
Thank you guys
Best Regards
Leandro Gustavo Biss Becker
Engenheiro Eletrônico / Electronic Engineer
__
OpenSSL Project http://www.openssl.org
User Support Mailing List
Hello,
To check if my client or server is causing the problem, I ran my client with
s_server and ran my server with s_client.
my client can connect to s_server without any trouble.
But s_client can not connect to my server.
Here is information s_client dumps on my screen:
Thanks david..let me add more clarity to my requirement...
Is there someway for the application to know before calling ssl_read,
that some app data buffer can be got for sure?
Only by putting that data in a buffer, which seems to be what you don't
want.
Or can SSL_peek prevent me
Hi Marek
As per your mail, we today tried this option but still the problem
persists.. The handshake is successful but when 19K image is read,
only 1460 bytes are being read and after that SSL_read returns -1. The
error shown by error API is decrpytion record error..
Can anyone plz try
Can I disable Nagle algorithm using OpenSSL? My application always send
entire buffers to openssl, so I think disable Nagle
but I'm wondering if openssl need coalescing data when sending
SSL payloads.
Nagle only kicks in when you have an outstanding unacknowledged packet
smaller than
Thanks once again for the responses...I would like to add few more points
here..there seems to be a callback function (msg_callback) within the ssl_st
structure, which when registered by the application for a specific content
type,
SSL_read, seems to call that if a pkt of that content type is seen
a. Does this msg_callback get executed after peek? or after read?
if former,
I could
simply discard the buffer as peek does not dequeue the pkt, so the kernel
can read
it again. If its a read, then I need to pass on that buffer to
the kernel
module
which does the actual decryption.
14 matches
Mail list logo