Beefy Boxes and Bandwidth Generously Provided by pair Networks
Your skill will accomplish
what the force of many cannot
 
PerlMonks  

Re^2: Multiplexing HTTPS server, peer cert authentication problem.

by erroneousBollock (Curate)
on Mar 06, 2007 at 01:09 UTC ( [id://603328]=note: print w/replies, xml ) Need Help??


in reply to Re: Multiplexing HTTPS server, peer cert authentication problem.
in thread Multiplexing HTTPS server, peer cert authentication problem.

I'm not sure I understand.

I do understand that you're saying I should split the (SSL) accept() into a non-SSL accept() and a start_SSL().
What I don't understand is what problem that solves :)

From what I have read, SSL_startHandshake makes sure that start_SSL is non-blocking (doesn't re-bless socket until it succeeds or fails).
So, is your suggestion that the peer certificate authentication goes awry somehow, because I'm still blocking?

-David.
  • Comment on Re^2: Multiplexing HTTPS server, peer cert authentication problem.

Replies are listed 'Best First'.
Re^3: Multiplexing HTTPS server, peer cert authentication problem.
by Thelonius (Priest) on Mar 06, 2007 at 18:10 UTC
    Well, I am suggesting it because the documentation recommends it.

    I tried it out and it seems to work, with one change, that it needs SSL_server => 1 here:

      my $sslaccept = IO::Socket::SSL->start_SSL($acceptsock, 
       {SSL_startHandshake => 0,
        SSL_server       => 1,
        SSL_use_cert     => 1,
        SSL_verify_depth => 1,
        SSL_verify_mode  => 0x03,
       });

    [download]
    Otherwise it will try to authenticate as a client.

    Here's a restructured program:

    Read more... (7 kB)
[reply]
[d/l]
[select]
      Hi Thelonius,

      Excellent! It works. Thank-you very much.

      I'll reply at the top-level with a summary so that others may benefit from your research.
      -David.
[reply]

In Section Seekers of Perl Wisdom

Log In?
Username:
Password:

What's my password?
Create A New User
Domain Nodelet?

www.com | www.net | www.org
Node Status?
node history
Node Type: note [id://603328]
help
Chatterbox?
and the web crawler heard nothing...

How do I use this?Last hourOther CB clients
Other Users?
Others examining the Monastery: (5)
As of 2024-04-23 18:33 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?

    No recent polls found