[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [Libevent-users] [PATCH] Add sample/https-client.c, an example of stacking evhttp as a client on top of bufferevent_ssl.

To: libevent-users@xxxxxxxxxxxxx, Patrick Pelletier <ppelletier@xxxxxxxxxx>
Subject: Re: [Libevent-users] [PATCH] Add sample/https-client.c, an example of stacking evhttp as a client on top of bufferevent_ssl.
From: Nick Mathewson <nickm@xxxxxxxxxxxxx>
Date: Tue, 19 Feb 2013 15:05:17 -0500
Delivered-to: archiver@xxxxxxxx
Delivered-to: libevent-users-outgoing@xxxxxxxx
Delivered-to: libevent-users@xxxxxxxx
Delivery-date: Tue, 19 Feb 2013 15:05:25 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:x-received:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:content-type; bh=xYz1NVeGmKsUoWOludSPBlTmVSYtqmVimr5iU4J25I0=; b=pmLYkT81eyjd94KlBzfC7QfZcxzzCahEM10KfI2sFi+Hremd9HnOc/xShnl2fTxdIw Z2OZj6JSMlt8QSXzOa61zhx/1gdriazLLo/IY2txiS82hZOiDnU3cGkoPwNtxfyvfucU OWrmXlKkKRRQ0QVEp50mJHIfgxd3fCvXktv+w8xAaCRxT2YqlgUWu+eLfiXIb5WrWQTZ HSljeth5UY3xyweU+OdMMT1SW487XTkmnokAUfOB/1YQhbx5cGZRo5W1ZXXcjtniyQhC l2+itWVF1kcZeW48gpCITOMgRxiUBCKSJJ6KOs0Iep9br3XCSrgqHHZCh1xXV+ig1Typ XcmA==
In-reply-to: <1361294551-21026-1-git-send-email-catalinp@xxxxxxxxxx>
References: <1361294551-21026-1-git-send-email-catalinp@xxxxxxxxxx>
Reply-to: libevent-users@xxxxxxxxxxxxx
Sender: owner-libevent-users@xxxxxxxxxxxxx

On Tue, Feb 19, 2013 at 12:22 PM, Catalin Patulea <catalinp@xxxxxxxxxx> wrote:
>
> Signed-off-by: Catalin Patulea <catalinp@xxxxxxxxxx>
> ---
>  .gitignore            |   1 +
>  sample/https-client.c | 207 ++++++++++++++++++++++++++++++++++++++++++++++++++
>  sample/include.am     |   5 ++
>  3 files changed, 213 insertions(+)
>  create mode 100644 sample/https-client.c
>

Looks like a good start!

Patrick, do you have time to have a look at this?  I'm hoping you'll
have some ideas of whether or not this is the right way to write this.

Some initial comments:

   * It could sure use comments!

   * This is dangerous code; it doesn't do any certificate validation
so far as I can see, and as such gets zero protection from
man-in-the-middle attacks.  People who don't know how to use TLS will
be copying our examples here, so we need to make sure to get the
security right.
***********************************************************************
To unsubscribe, send an e-mail to majordomo@xxxxxxxxxxxxx with
unsubscribe libevent-users    in the body.

Follow-Ups:
- Re: [Libevent-users] [PATCH] Add sample/https-client.c, an example of stacking evhttp as a client on top of bufferevent_ssl.
  - From: Catalin Patulea
- Re: [Libevent-users] [PATCH] Add sample/https-client.c, an example of stacking evhttp as a client on top of bufferevent_ssl.
  - From: Nick Mathewson

References:
- [Libevent-users] [PATCH] Add sample/https-client.c, an example of stacking evhttp as a client on top of bufferevent_ssl.
  - From: Catalin Patulea

Prev by Author: Re: [Libevent-users] Re: [PATCH] http: on connection reset, detach the closed fd from the bufferevent
Next by Author: Re: [Libevent-users] [PATCH] Add sample/https-client.c, an example of stacking evhttp as a client on top of bufferevent_ssl.
Previous by thread: [Libevent-users] [PATCH] Add sample/https-client.c, an example of stacking evhttp as a client on top of bufferevent_ssl.
Next by thread: Re: [Libevent-users] [PATCH] Add sample/https-client.c, an example of stacking evhttp as a client on top of bufferevent_ssl.
Index(es):
- Author
- Thread