Hi, I have enabled ZLIB compression for my application. However, I want connections on port X to be SSL and on port Y to be SSL + ZLIB compression (the latter may be used over 3G connections).
I have read that OpenSSL doesn't really handle this, it's all or nothing - but I've anyhow tried to find a workaround for it. After... ctx = SSL_CTX_new(meth); ...I do... ctx->comp_methods = NULL; ...in case of port X. It seems to almost work ;-) On my machine (Ubuntu), it works out just fine. But on our production server (RedHat) there is a segmentation fault in... EVP_DigestFinal_ex(...) ret=ctx->digest->final(ctx,md); ssl3_get_message(...) ...because digest is NULL. This only happens when I've nulled the comp_methods, so it is not working as planned. I think this might be because... load_builtin_compressions() is called from ssl_cipher_get_evp() which is called from ssl3_setup_key_block ...which reverts my NULL:ing somewhere in the handshake and messes things up. Enough of technical details for now. Has anyone been able to do per-session configuration of ZLIB compression or do you have any ideas how it can be achieved? It would be a nice thing to have, if not I have to use ZLIB above the OpenSSL layer. Thanks, Claes -- View this message in context: http://www.nabble.com/ZLIB-compression-on-and-off-tp22101041p22101041.html Sent from the OpenSSL - User mailing list archive at Nabble.com. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [email protected] Automated List Manager [email protected]
