Hi Michal - Looking good! Unfortunately, OpenSSL doesn’t verify things by default (or throw an error if verification fails). Here’s an overview of some other things we will need to do on top: https://www.openbsd.org/papers/linuxconfau2017-libtls I’m sure you already have a similar link? I thought that overview was handy for me... Brian Sent from my iPhone > On Apr 30, 2018, at 4:55 AM, Michal Simon <[log in to unmask]> wrote: > > Branch: refs/heads/xrdtls > Home: https://github.com/xrootd/xrootd > Commit: e3419d6f5ce6b1abdf9335f4828f07d7517507ed > https://github.com/xrootd/xrootd/commit/e3419d6f5ce6b1abdf9335f4828f07d7517507ed > Author: Michal Simon <[log in to unmask]> > Date: 2018-04-30 (Mon, 30 Apr 2018) > > Changed paths: > M src/XrdCl/CMakeLists.txt > M src/XrdCl/XrdClAsyncSocketHandler.cc > M src/XrdCl/XrdClAsyncSocketHandler.hh > A src/XrdCl/XrdClAsyncTlsSocketHandler.cc > A src/XrdCl/XrdClAsyncTlsSocketHandler.hh > M src/XrdCl/XrdClChannel.cc > M src/XrdCl/XrdClSocket.cc > M src/XrdCl/XrdClSocket.hh > M src/XrdCl/XrdClStatus.hh > M src/XrdCl/XrdClStream.cc > M src/XrdCl/XrdClStream.hh > A src/XrdCl/XrdClTls.cc > A src/XrdCl/XrdClTls.hh > M src/XrdCl/XrdClTransportManager.cc > M src/XrdCl/XrdClXRootDMsgHandler.cc > M src/XrdCl/XrdClXRootDMsgHandler.hh > M src/XrdCl/XrdClXRootDTransport.cc > M src/XrdCl/XrdClXRootDTransport.hh > A src/XrdTls/CMakeLists.txt > A src/XrdTls/XrdTlsCtx.hh > > Log Message: > ----------- > [XrdCl] Implement TLS encryption. > > > > ######################################################################## > Use REPLY-ALL to reply to list > > To unsubscribe from the XROOTD-DEV list, click the following link: > https://listserv.slac.stanford.edu/cgi-bin/wa?SUBED1=XROOTD-DEV&A=1 ######################################################################## Use REPLY-ALL to reply to list To unsubscribe from the XROOTD-DEV list, click the following link: https://listserv.slac.stanford.edu/cgi-bin/wa?SUBED1=XROOTD-DEV&A=1