Re: [asio-users] [EXTERNAL] Re: Native Windows ssl::stream support
Brought to you by:
chris_kohlhoff
From: Kasper L. <la...@st...> - 2020-08-11 19:42:49
|
Hi Scott, On 21/07/2020 21.53, Scott Mueller wrote: > > The Schannel methods are transport agnostic, so it should be possible to use these in ASIO just like OpenSSL. The only real gotchas in Schannel involve making certain that the use patterns are correct- the buffer set-up, renegotiation and shutdown are all handled properly. There is documentation for these, but it is tricky to navigate and the samples are strange (everything is under the same SSPI umbrella). Microsoft documentation in this arena is very sparse and only really makes sense if you are referring to a working sample. > As I wrote to Vinnie I have made proof-of-concept where I try to do that: https://github.com/laudrup/boost-asio-windows-sspi As I've had the misfortune to work with the Win32 API before I'm sort of used to the pain so I had to cross reference quite a few examples and code snippets I could find just to make this ugly POC work. > If you can find the Windows 2000 SDK, you'll find some complete (more or less) samples that implement an Schannel client and server. I've worked with this quite a bit in the past, so I could probably help with this some, time permitting. > It would most likely be very useful to get your input on some of the many quirks of using SChannel as I don't have any experience with that myself. Currently, I think I'll try to focus on trying to get a working design and leave handling of the strangeness until that is more or less in place. Thanks a lot and kind regards, Kasper Laudrup |