Michael Kaufmann
Michael Kaufmann
We use libcurl in a product (reverse proxy) that loads resources from back-end servers. The number of these back-end servers is known, but our customers have different setups. Some have...
> Can we repurpose ``CURLOPT_SSL_SESSIONID_CACHE`` for this? This would work for easy handles, e.g. ``curl_easy_setopt(curl, CURLOPT_SSL_SESSIONID_CACHE, 50L);``. For share handles, this is no solution, because the SSL session cache is...
How do we proceed here? Are there open questions? It's probably a "niche feature", but it may be worth implementing. I can rebase the commits if that helps for a...
I have updated the pull request.
> As another workaround, you can use ``syslog-ng-ctl reopen`` or send a ``SIGUSR1`` signal in your logrotate script to avoid a full reload. That's a very good hint, will do....
@MrAnno ``packaging/rhel/syslog-ng.logrotate`` uses the HUP signal, probably USR1 would be better.
> Is the problem that ``SSL_set_tlsext_host_name`` doesn't by itself actually do any hostname validation? Yes, it only sets the SNI hostname. This name is not used to validate the server...
> c:\zlib\dist\crc32.c(1110): error C2373: 'crc32_combine_op': redefinition; different type modifiers That problem can probably be solved by adding "ZEXPORT" to the function crc32_combine_op() in crc32.c
"git bisect" shows that this is the bad commit: 4fe6c2fdc80b11d6ec16c7a87ec46031d459e86b CC @neverpanic , @beldmit I think the bug is that the digest algorithm is selected here: ``` md = (EVP_MD...
> Question: when you use a larger ssl session cache, do you also increase `CURLOPT_MAXCONNECTS` ? It seems like maybe in a common case a user would like them both...