Hi Sorry for my poor english ;-)
I connect (via THTTPSend and OpenSSL Library, HTTPSend.Sock.SSL.VerifyCert is False) to https://www.paypal.com/ and all is right, site data was getted. But if I switch HTTPSend.Sock.SSL.VerifyCert to True then connecting is closed without data getted. I traced source and reached to this code: x := sslconnect(FSsl); if x < 1 then begin SSLcheck; Exit; end; sslconnect is function from OpenSSL library. If VerifyCert is True then function sslconnect return -1. At OpenSSL Web wrote: "RETURN VALUES <0 The TLS/SSL handshake was not successful, because a fatal error occurred either at the protocol level or a connection failure occurred. The shutdown was not clean. It can also occur of action is need to continue the operation for non-blocking BIOs. Call SSL_get_error() with the return value ret to find out the reason." In my case error is: "error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed" Please help me understand my mistake. btw. In Indy components I found VerifyCallback function that is OpenSSL library Callback. function VerifyCallback(Ok: Integer; ctx: PX509_STORE_CTX): Integer; cdecl; This function call user event OnVerifyPeer: VerifiedOK := TIdServerIOHandlerSSL(IdSSLSocket.fParent).DoVerifyPeer(Certificate); Why Synapse not offer this event? This is IMO very useful event, but maybe not...? ;-) Thx for any answer :) regards Johnny -- Pozdrowienia, Johnny ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ synalist-public mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/synalist-public
