Welcome to the wolfSSL Forums!

kackle123 · 2015-07-02 14:31:32

kackle123
Member
Offline

Registered: 2015-05-13
Posts: 22

Topic: Encrypted Email

I have some basic questions about doing encrypted email on an embedded platform. I am posting here because I'm sure others will want to do the same thing in the future.

If I want to send an email without validating the email server's identity via certificates, but still encrypt the communication, how would I go about doing that? I try such code below but I keep getting a PEER_KEY_ERROR from CyaSSL_negotiate.

CyaSSL_Init();

method = CyaSSLv23_client_method();

ctx = CyaSSL_CTX_new(method);

wolfSSL_CTX_set_verify(ctx, SSL_VERIFY_NONE, 0);

wolfSSL_CTX_use_PrivateKey_buffer(ctx, 
                                  clientKeyInBuffer, 
                                  strlen(clientKeyInBuffer), 
                                  SSL_FILETYPE_PEM);
                                  
ssl = CyaSSL_new(ctx);

socket = SMTP_connect(&params->server);

recv(socket, response, CYASSL_SMTP_RESPONSE_BUFFER_SIZE, 0);

CyaSSL_set_fd(ssl, socket);

SMTP_send_command(socket, "EHLO me", response);

SMTP_send_command(socket, "STARTTLS", response);

CyaSSL_negotiate(ssl);

SSL_SMTP_send_command(socket, "EHLO me", response);

Variable "clientKeyInBuffer" holds what was in ASCII disk file "client-key.pem".

chrisc · 2015-07-02 15:10:13

chrisc
Site Admin
Offline

From: Bozeman, MT
Registered: 2010-10-20
Posts: 650

Re: Encrypted Email

Hi Kackle123,

Have you tried running the wolfCrypt test app on your target platform to make sure the library has been configured correctly and that the crypto algorithms pass?

The wolfCrypt test is located in <wolfssl_root>/wolfcrypt/test/test.c. You can define NO_MAIN_DRIVER if you have your own driver code available.

Thanks,
Chris

https://www.wolfssl.com

kackle123 · 2015-07-06 08:11:53

kackle123
Member
Offline

Registered: 2015-05-13
Posts: 22

Re: Encrypted Email

Chris, thank you for your reply.

Running the test on the target sounds like a good idea, but I have no filesystem. Is this feasible?

What is meant by "NO_MAIN_DRIVER"; a driver for what?

kackle123 · 2015-07-07 08:46:48

kackle123
Member
Offline

Registered: 2015-05-13
Posts: 22

Re: Encrypted Email

Should I move this issue to your email support? I don't know how frequently forum questions are handled here.

chrisc · 2015-07-14 12:18:39

chrisc
Site Admin
Offline

From: Bozeman, MT
Registered: 2010-10-20
Posts: 650

Re: Encrypted Email

Case moved to email support.

https://www.wolfssl.com

Welcome to the wolfSSL Forums!

Encrypted Email

Posts: 5

1 Topic by kackle123 2015-07-02 14:31:32 (edited by kackle123 2015-07-10 13:44:00)

Topic: Encrypted Email

2 Reply by chrisc 2015-07-02 15:10:13

Re: Encrypted Email

3 Reply by kackle123 2015-07-06 08:11:53

Re: Encrypted Email

4 Reply by kackle123 2015-07-07 08:46:48

Re: Encrypted Email

5 Reply by chrisc 2015-07-14 12:18:39

Re: Encrypted Email

Posts: 5