I'm using the latest released version, 0.9.6g. We looked at the 0.9.7 version but it was still in testing and that seemed like not such a good plan for us right now given the relative stability of the 0.9.6 release series. Just setting breakpoints in OpenSSL on the push and clear methods, it looks like it's not an uncommon coding practice so I'd guess it's not going to be trivial for them to change. Ferrell
-----Original Message----- From: Aleksey Sanin [mailto:[EMAIL PROTECTED]] Sent: Thursday, September 05, 2002 1:02 PM To: Moultrie, Ferrell (ISSAtlanta) Cc: [EMAIL PROTECTED] Subject: Re: [xmlsec] more error handling concerns Which OpenSSL version do you use? Probably it's worth to inform OpenSSL guys about this. Aleksey Moultrie, Ferrell (ISSAtlanta) wrote: >Aleksey: > One difficulty I'm having with the new error handler and using the >OpenSSL error stack is that the OpenSSL crypto library frequently uses >the error stack to capture "expected" errors. When one of those occurs, >it calls ERR_clear() which removes not only the OpenSSL error info but >any previously stored xmlsec errors -- which I haven't even had a chance >to see yet! The only option appears to be to override the default xmlsec >error callback -- but that gets us back to needing thread local storage >in the application, etc. Sigh. >Ferrell > >===================================== >Ferrell Moultrie ([EMAIL PROTECTED]) >Software Engineer > >Internet Security Systems, Inc. >6303 Barfield Road >Atlanta, Georgia 30328 >Phone: 404-236-2600 >Direct: 404-236-2849 >Fax: 404-236-2632 >http://www.iss.net > >Internet Security Systems -- The Power to Protect >===================================== >_______________________________________________ >xmlsec mailing list >[EMAIL PROTECTED] >http://www.aleksey.com/mailman/listinfo/xmlsec > > _______________________________________________ xmlsec mailing list [EMAIL PROTECTED] http://www.aleksey.com/mailman/listinfo/xmlsec
