Re: openSSL 0.9.7 and COMP_{zlib,rle}

Wed, 15 Jan 2003 06:17:25 -0800 

In message <[EMAIL PROTECTED]> on Wed, 15 
Jan 2003 10:20:46 +0000, Andrew Marlow <[EMAIL PROTECTED]> said:

apm35> I would like to report a bug in openSSL version 0.9.7.
apm35> I cannot get on-the-fly compression to work using
apm35> SSL_COMP_add_compression_method. The performance
apm35> of the ssltest program is the same with or without
apm35> the -zlib command line option. My own program behaves
apm35> in a similar way. I have added trace to the ZLIB compress
apm35> function and the trace does not come out. By hacking the
apm35> code of s3_{clnt,srv} to force it into thinking that
apm35> compression is being used the trace statements DO get
apm35> executed, but just by calling SSL_COMP_add_compression_method
apm35> they do not.
apm35> 
apm35> I understand that as of 0.9.7 SSL_COMP_add_compression_method
apm35> is all that is needed (i.e no explicit negotiation is
apm35> needed unlike 0.9.6) but I do not think it is working
apm35> properly.

Actually, the way it's done in 0.9.7, there should be no need to call
SSL_COMP_add_compression_method() at all (i.e. there should be no need
at all for the -zlib flag in ssltest).

However, for this to work, you MUST configure with the options 'zlib'
or 'zlib-dynamic'.  Something like this:

  ./config zlib

If you don't, it's assumed you don't care about or don't have the z
library (same as if you gave the configuration option 'no-zlib').

If you want to trace the actual calls, you should do it in
crypto/comp/c_zlib.c.

I'm pondering making 'zlib-dynamic' the default instead of 'no-zlib'.
Does that sound like a good idea.  What it means is that the build
environment must have zlib.h reachable by the compiler.  We *could*
have a copy of the relevant lines from zlib.h as part of OpenSSL...

-- 
Richard Levitte   \ Spannvägen 38, II \ [EMAIL PROTECTED]
Redakteur@Stacken  \ S-168 35  BROMMA  \ T: +46-8-26 52 47
                    \      SWEDEN       \ or +46-708-26 53 44
Procurator Odiosus Ex Infernis                -- [EMAIL PROTECTED]
Member of the OpenSSL development team: http://www.openssl.org/

Unsolicited commercial email is subject to an archival fee of $400.
See <http://www.stacken.kth.se/~levitte/mail/> for more info.
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    [EMAIL PROTECTED]
Automated List Manager                           [EMAIL PROTECTED]

Reply via email to