[erlang-questions] SSL: SSL_set_verify callback (Nicola Lugato)

Ingela Anderton Andin ingela@REDACTED
Mon Jul 28 15:33:20 CEST 2008


I am not sure that the existing Erlang API towards openssl lets you get 
at this functionallity, however we are working
on a new ssl-implementation,  that does not use openssl for 
communication only for cryptographics,
where you will be able to do the corresponding. I can not make any 
promises regarding when we
can release this but it is in the pipeline and should be ready in a not 
too distant future. There is a beta-version  of new ssl in R12B
but you would have to hack it as that functionality is not yet included 
in the API.  (That code has also changed quite a lot since  the R12B 

Regards - Ingela Erlang/OTP, Ericsson 

> >>>
> >>> Hello,
> >>>  i'm considering porting some code of mine to erlang. It's a network
> >>> server that uses SSL.
> >>> It makes use of the callback that you can specify on SSL_set_verify (and
> >>> similar) to check if a peer is allowed to connect, based on data in its
> >>> certificate.
> >>>
> >>> (see: http://www.openssl.org/docs/ssl/SSL_CTX_set_verify.html)
> >>>
> >>> I've checked the documentation of the SSL application in Erlang
> >>> (http://www.erlang.org/doc/apps/ssl/index.html), but i couldn't find a way
> >>> to supply such a callback. Is it possible?
> >>> This is a fundamental feature of my server so it would be a blocking
> >>> problem.
> >>>
> >>> Thanks, Nicola

More information about the erlang-questions mailing list