Re: Asynchronous ENGINE operation?

2008-03-05 Thread Geoff Thorpe
On Wed, 2008-03-05 at 13:54 -0500, Thor Lancelot Simon wrote: > On Wed, Mar 05, 2008 at 12:10:04PM -0500, Geoff Thorpe wrote: > > > > I was not involved in the discussion so am not familiar with the > > arguments. However I agree that SSL_[poll|select]() would be unwise > > because it presumes to

[openssl.org #1647] DTLS Renegotiation bug

2008-03-05 Thread Pavel via RT
Hello, I write application wich should use DTLS, I tested renegotiation in my app and i cannot make it working. Renegotiation on client: When client calls SSL_renegotiate() and SSL_do_handshake() - "Encrypted Handshake Message" goes to server (I use Wireshark to see what happening). After that

Re: Asynchronous ENGINE operation?

2008-03-05 Thread Thor Lancelot Simon
On Wed, Mar 05, 2008 at 12:10:04PM -0500, Geoff Thorpe wrote: > > I was not involved in the discussion so am not familiar with the > arguments. However I agree that SSL_[poll|select]() would be unwise > because it presumes to make the SSL/TLS stack transport-aware, whereas > the BIO scheme is an h

Re: Asynchronous ENGINE operation?

2008-03-05 Thread Geoff Thorpe
FWIW, I think we mostly agree but are attacking the general issue from different angles. On Wed, 2008-03-05 at 10:44 -0500, Thor Lancelot Simon wrote: > Well, I did not suggest that one would ever use a file descriptor per > operation. But, let me try again. > > Note first that that OpenSSL does

Re: Defining new X.509 Extensions

2008-03-05 Thread Dr. Stephen Henson
On Wed, Mar 05, 2008, Carolin Latze wrote: > Ok, > > I finally found out, that doc/openssl.txt has some documentation > regarding this issue. Forget my mail :-) > Well if you want it to behave like a standard OpenSSL extension you need to add a custom OID and add appropriate code. You can copy

Re: Asynchronous ENGINE operation?

2008-03-05 Thread Thor Lancelot Simon
On Wed, Mar 05, 2008 at 10:01:26AM -0500, Geoff Thorpe wrote: > Hi Thor, > > On Sun, 2008-03-02 at 23:21 -0500, Thor Lancelot Simon wrote: > > > FWIW, this is not really the right way of implementing async support in > > > openssl. "Completion" events are not always going to be related to file > >

Re: Asynchronous ENGINE operation?

2008-03-05 Thread Geoff Thorpe
Hi Thor, On Sun, 2008-03-02 at 23:21 -0500, Thor Lancelot Simon wrote: > > FWIW, this is not really the right way of implementing async support in > > openssl. "Completion" events are not always going to be related to file > > descriptors in any clear way > > Certainly if the file in question is

Re: Defining new X.509 Extensions

2008-03-05 Thread Carolin Latze
Ok, I finally found out, that doc/openssl.txt has some documentation regarding this issue. Forget my mail :-) Carolin Carolin Latze wrote: > Hi everybody, > > I am not 100% sure,that this is the right list for my question but > according to my understanding, this is more related to > developing/