On 03 Feb 2003 22:00:08 -0800, Eric Rescorla wrote:
>David Schwartz <[EMAIL PROTECTED]> writes:
>>You nearly always need non-blocking, even if it's just for
>>timeouts.
>Depends. If you're just setting some global timeout, you
>can use blocking I/O perfectly well.
There will almost alwa
David Schwartz <[EMAIL PROTECTED]> writes:
> On 03 Feb 2003 19:01:53 -0800, Eric Rescorla wrote:
> >Tim Regovich <[EMAIL PROTECTED]> writes:
>
> >>*always* operate in non blocking mode. The code may
> >>be slightly more complex but will *always* work
> >>better.
>
> >I don't agree with this. Ge
The following works for the new clsid after I
installed the patch. See my comment in the code.
>
Thank you very much and have a nice day!
The other Mark
--- [EMAIL PROTECTED] wrote:
>
http://support.microsoft.com/default.aspx?scid=kb;en-us;323172
> for all
> versions
>
>
>
>
> Mark
On 03 Feb 2003 19:01:53 -0800, Eric Rescorla wrote:
>Tim Regovich <[EMAIL PROTECTED]> writes:
>>*always* operate in non blocking mode. The code may
>>be slightly more complex but will *always* work
>>better.
>I don't agree with this. Getting non-blocking code correct
>with OpenSSL is quite trick
Tim Regovich <[EMAIL PROTECTED]> writes:
> *always* operate in non blocking mode. The code may
> be slightly more complex but will *always* work
> better.
I don't agree with this. Getting non-blocking code correct
with OpenSSL is quite tricky. If you don't need non-blocking,
there's no reason to d
My $0.02 :
*always* operate in non blocking mode. The code may
be slightly more complex but will *always* work
better.
goven that statement, the problem is still relevant,
since the connecting end cold just stay open
forecever, eating up your sockets, so you have just
pushed the timeout to a dif
sorry for the confusion.
--- [EMAIL PROTECTED] wrote:
>
http://support.microsoft.com/default.aspx?scid=kb;en-us;323172
> for all
> versions
>
>
>
>
> Mark Liu <[EMAIL PROTECTED]>
> Sent by: [EMAIL PROTECTED]
> 02/03/03 03:54 PM
> Please respond to openssl-users
>
>
> To: [EMAI
Mark,
Thanks a lot.
I downloaded q323172_W2K_SP4_X86_EN.exe from
http://www.microsoft.com/windows2000/downloads/critical/q323172/default.asp
and installed it, restarted my Win2K, then neither the
new clsid or the old one stopped working.
I removed the patch. Then the old one starts working
as
http://support.microsoft.com/default.aspx?scid=kb;en-us;323172 for all versions
Mark Liu <[EMAIL PROTECTED]>
Sent by: [EMAIL PROTECTED]
02/03/03 03:54 PM
Please respond to openssl-users
To: [EMAIL PROTECTED]
cc:
Subject: Re: Does this m
No, that one is for Windows NT 4.0, mine is Windows
2000 Professional. It refuses to install.
--- [EMAIL PROTECTED] wrote:
> Okay There is a patch that will do all this for you.
> Microsoft KB Q323172.
> When you apply this it does the xenroll.dll install
> and registry changes
> for you.
> Th
In re
Dan Demers' question:
There
is also (with VC6.0 and later) another approach that might get you what you want
with less effort: the linker option for "Delay-Loaded
DLLs". Despite the name, this does not mean DLLs that
are chock-full of delays, but DLLs that are only loaded when
ne
You can use LoadLibrary() to load the DLLs at runtime instead of
linking to them at compile time.
However, if you do this you will need to load each function pointer
programatically.
dan demers wrote:
in the windows environment,
is it possible to use the explicit
Okay There is a patch that will do all this for you. Microsoft KB Q323172. When you apply this it does the xenroll.dll install and registry changes for you.
The registry has to match the actual DLL on your box. Also our CA is on Unix and for the CA registration part that DLL has to match what's o
Eric is correct. It's the responsibility of the application to control timeouts on the
socket.
Be aware, though, that some applications ported from UNIX make the assumption that a
SIGALRM will cause outstanding recv() calls to complete. This is not the case on other
platforms such as OpenVMS an
Mark, thanks.
Yes, I checked HKEY_CLASSES_ROOT, under which I had
only CEnroll.CEnroll\CurVer and
CEnroll.CEnroll.1\CLSID.
The value of CEnroll.CEnroll.1\CLSID is
{43F8F289-7A20-11D0-8F06-00C04FC295E1}, the old one.
The value of CEnroll.CEnroll\CurVer is
CEnroll.CEnroll.1.
Then I manually added
On Wed, Jan 22, 2003 at 10:31:17AM -0800, [EMAIL PROTECTED] wrote:
>
> I restricted the ciphers on OpenSSL server (Apache with OpenSSL) to say:
> ALL:!eNULL
>
> Case 1: On client side if I use SSL_set_cipher_list() to set the cipher to NULL-MD5
>and connect to the server, the handshake fails.
>
In the registry under HKEY_CLASSES_ROOT there are three keys CEnroll.CEnroll, CEnroll.CEnroll.1 CEnroll.CEnroll.2 that tell the story
Mark Liu <[EMAIL PROTECTED]>
Sent by: [EMAIL PROTECTED]
02/03/03 01:02 PM
Please respond to openssl-users
To: [EMAIL PROTECTED]
Mark,
Thanks a lot for your reply. And it seems that this
is the problem.
But interestingly, the new one does not work for my
Win2K box in my lab. That is, if I use the new one
you offered, it won't give me a whole list of
Cryptographic Service Providers, just like what
happened to my Win2K box
On Thu, Jan 30, 2003 at 11:02:33AM +0100, Martin Witzel wrote:
> This refers to 0.9.7. I have not verified it with earlier versions
>
> When I setup the build process with the 'config no-err' option, I get a lot
> of _link_ errors in the apps directory, because the complete crypto/err
> directory
19 matches
Mail list logo
