You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@thrift.apache.org by "Gonzalo Aguilar (JIRA)" <ji...@apache.org> on 2015/10/07 17:07:26 UTC
[jira] [Commented] (THRIFT-3369) Implement SSL/TLS support on C
with g_lib
[ https://issues.apache.org/jira/browse/THRIFT-3369?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14946990#comment-14946990 ]
Gonzalo Aguilar commented on THRIFT-3369:
-----------------------------------------
I forgot to say that's required to do this on init:
thrift_ssl_socket_initialize_openssl();
and
thrift_ssl_socket_finalize_openssl();
when system finished using ssl. I plan to manage this also inside the library but currently is not there. Also SSLContext management is a little bit spartan. I will do it better.
My client does something like this to negotiate the connection:
manager->socket = thrift_ssl_socket_new_with_host(cipher, host, port, error);
> Implement SSL/TLS support on C with g_lib
> -----------------------------------------
>
> Key: THRIFT-3369
> URL: https://issues.apache.org/jira/browse/THRIFT-3369
> Project: Thrift
> Issue Type: Improvement
> Components: C glib - Library
> Affects Versions: 0.9.1, 0.9.2, 0.9.3
> Reporter: Gonzalo Aguilar
> Labels: features, patch
> Fix For: 0.9.4
>
> Attachments: feature-thrift-3369-tls-impl.patch.bz2
>
>
> Implement SSL/TLS based on plain openssl instead of going through the way defined in THRIFT-1016.
> This help us to maintain a reference implementation and later switch over GIO or whatever is defined. But also does not add any other dependencies to the project. So bare minimum installation for supporting SSL/TLS is there and aligned with CPP counterpart.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)