Hi, I have a client-server application that communicates on a TCP channel. The goal is to "upgrade" the connection at a certain point to SSL, but only after a few messages sent without encryption. Is it somehow possible to use an already existing io object and start an SSL hangshake on it? u.
on 2013-04-13 11:18
on 2013-04-13 23:33
On 4/13/2013 12:18 PM, Nokan Emiro wrote: > Is it somehow possible to use an already existing io object and start an > SSL hangshake on it? > > u. I will be glad to hear about an option like that.
on 2013-04-13 23:55
On Apr 13, 2013 4:19 AM, "Nokan Emiro" <firstname.lastname@example.org> wrote: > u. > I don't know whether any of the std lib or gems do such, but SSL/TLS runs on top of TCP, so it's technically possible...
on 2013-04-14 00:35
From a TCP perspective you will have to make a new connection. New 3 way handshake and all etc... On Sat, Apr 13, 2013 at 2:55 PM, tamouse mailing lists <
on 2013-04-14 00:36
Your control channel can just negotiate with the client. IF both sides agree a new SSL connection can be built. We use this method for my employer in streaming.
on 2013-04-14 10:01
On 4/14/2013 1:36 AM, Cliff Rosson wrote: > Your control channel can just negotiate with the client. IF both sides > agree a new SSL connection can be built. We use this method for my > employer in streaming. The idea is to start SSL on the same existing channel which reduce the need for new overhead. it is possible with OpenSSL libs in a very low level code. IN squid there is such thing in progress. Eliezer
on 2013-04-15 04:17
In the same TCP session?