cURL / Mailing Lists / curl-library / Single Mail

curl-library

Re: Problems with Windows Binaries

From: Pierre Joye <pierre.php_at_gmail.com>
Date: Wed, 24 Nov 2010 12:25:02 +0100

hi,

Sorry for the late reply, I missed this mail.

On Thu, Oct 28, 2010 at 10:25 PM, Dan Fandrich <dan_at_coneharvesters.com> wrote:
> On Thu, Oct 28, 2010 at 09:46:22PM +0200, David Graf wrote:
>> � � The problem occurs actually during the initialization. OpenSsl insists
>> � � on getting part of the RNG entropy using the desktop on Windows. This
>> � � operation can be very slow, even worst if the user running this
>> � � process has no desktop access.
>>
>> � � On recent windows versions the Crypt API is crypto safe and can be use
>> � � safely to get an entropy.
>
> What do you suggest as a better way to seed OpenSSL on Windows? Is there
> a Windows crypt API call that's broadly available that returns high-quality
> random data that can be used with RAND_add() instead of calling
> RAND_screen() in libcurl?

Yes, the CryptoAPI is crypto safe (in decent windows versions, xp sp1+
afair) and is also used by openssl btw. See an example here:

http://lxr.php.net/opengrok/xref/PHP_5_3/win32/winutil.c#52

Cheers,

-- 
Pierre
@pierrejoye | http://blog.thepimp.net | http://www.libgd.org
-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-library
Etiquette:  http://curl.haxx.se/mail/etiquette.html

Received on 2010-11-24

This message: [ Message body ]
Next message: Amr Oreaba: "Re: SMTP authentication fails"
Previous message: Brett: "LibCurl built with SSL says Unsupported Protocol"
Next in thread: Dan Fandrich: "Re: Problems with Windows Binaries"
Reply: Dan Fandrich: "Re: Problems with Windows Binaries"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]