Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

There are some questions for help. #8

Open
jnchzy opened this issue Feb 28, 2018 · 5 comments
Open

There are some questions for help. #8

jnchzy opened this issue Feb 28, 2018 · 5 comments

Comments

@jnchzy
Copy link

jnchzy commented Feb 28, 2018
edited

Thank you for your help! I removed tls 0.9.0 and reinstalled tls 0.8.0. The program can be compiled successfully.But I don't know how to call the libnqsb-tls library in the test directory. In the paper of “OCaml inside: a drop-in replacement for libtls”, libnqsb-tls replaced libtls, and I also don't know how to do it specificly. Could you give me an example? Thank you very much!
And I also want to know where the difference between the Ocaml-tls and the libnqsb-tls projects is. In the libnqsb-tls project,tls 0.8.0 is refer to the version of ocaml-tls?
Thank you very much!
@jnchzy
Copy link
Author

jnchzy commented Mar 6, 2018

In the test directory, why server.ocaml-tls and server.libressl, client.ocaml-tls and client.libressl are generated at the same time after making?
The following figures show the test program run sucessfully?
1
2
But, I still don't understand how the test program calls the libnqsb library. What is the function of the library when the program ran successfully? Could you give me some explanation?Thank you very much!

@abbysmal
Copy link
Collaborator

abbysmal commented Mar 6, 2018

Hi,
Sorry for the late reply, I will give you a proper answer during the evening (Singapore time).
Thank you for your patience, will come back to you in a bit.

@abbysmal
Copy link
Collaborator

abbysmal commented Mar 6, 2018

Hi jnchzy,
In the test directory, we build various executable linking them to the different libraries we want to compare and see if they can communicate in the most basic setting: that is establishing a connection with a successful handshake.
So we build a server and a client meant to connect to eachother, linking one version to libnqsb-tls, the other to libressl's libtls. (see Makefile)
This test is by no mean exhaustive but it provides a simple base on which to eventually try more things.
The programs are very simple and you can consider them to be working if after connection a client to a server they both exit with a status code of 0.
This is the simplest kind of example I can give of this library, another potentially interesting test would be to build libnqsb-tls on OpenBSD and trying the library in the wild, it worked two years ago against OpenBSD httpd and some other small programs using libtls.

@jnchzy
Copy link
Author

jnchzy commented Mar 8, 2018
edited

There are two questions when I read the paper of “OCaml inside: a drop-in replacement for libtls”:
Firstly ,how did link httpd against libnqsb-tls in place of libtls. Could you give me some explanation for doing it specificly?
The following command can let libnqsb-tls replace libtls?
LD_PRELOAD_/usr/lib/libnqsb-tls.so httpd -f /etc/httpd.conf -d startup
How can I get the result?
1
Secondly,a large file (over 1GB) is transferred over HTTPS using httpd, how libtls or libnqsb-tls is used to encrypt the payload?
Thank you very much!

@jnchzy
Copy link
Author

jnchzy commented Mar 8, 2018

And I also want to know where the difference between the Ocaml-tls and the libnqsb-tls projects is.Thank you very much!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@abbysmal @jnchzy