Hello,

The IndyIPServer250 package most probably is compiled using the default Indy version that comes with CBuilder, in order to use with sgcIndy, this package should be recompiled with the new version.

sgcIndy supports openSSL 1.1.1 and 3.0.0, so futures releases will be supported too. I've not implemented nothing about ed448.

Kind Regards,
Sergio

Hello,

Reinstallation of sgcIndy solved mentioned issue.

according to:
https://www.openssl.org/docs/man3.1/man3/SSL_CTX_set_verify.html

there is a new flag concerning verification:
SSL_VERIFY_POST_HANDSHAKE

Please add it to TIdSSLVerifyMode enumeration in file Protocols\IdSSLOpelSSL.pas, and update TranslateInternalVerifyToSSL function

Proposed solution based on standard Indy code (i do not have sgcIndy source code):

TIdSSLVerifyMode = (sslvrfPeer, sslvrfFailIfNoPeerCert, sslvrfClientOnce, sslvrfVerifyPostHandshake);

function TranslateInternalVerifyToSSL(Mode: TIdSSLVerifyModeSet): Integer;
{$IFDEF USE_INLINE} inline; {$ENDIF}
begin
Result := SSL_VERIFY_NONE;
if sslvrfPeer in Mode then begin
Result := Result or SSL_VERIFY_PEER;
end;
if sslvrfFailIfNoPeerCert in Mode then begin
Result:= Result or SSL_VERIFY_FAIL_IF_NO_PEER_CERT;
end;
if sslvrfClientOnce in Mode then begin
Result:= Result or SSL_VERIFY_CLIENT_ONCE;
end;
if sslvrfVerifyPostHandshake in Mode then begin
Result:= Result or SSL_VERIFY_POST_HANDSHAKE;
end;
end;

Kind Regards

Hello,

I've updated the sgcIndy library with this new verify flag, will be available on the next release. Thanks for the feedback.

Kind Regards,
Sergio