cURL / Mailing Lists / curl-library / Single Mail

curl-library

Re: seeding SSL once

From: Daniel Stenberg <daniel_at_haxx.se>
Date: Thu, 7 Feb 2002 11:45:50 +0100 (MET)

On Wed, 30 Jan 2002, Cris Bailiff wrote:

> If you really want to improve the SSL situation, you should probably have a
> look at SSL cafile loading as well - quick traces look to me like these are
> done on every request as well, when they should only be necessary once per
> ssl context (or once per handle). Even better would be to support the SSL
> CAdir option - instead of loading all of the root CA certs for every
> request, this option allows you to only read the CA chain that is actually
> required (into the cache)...

This sounds like a reasonable suggestion, indeed.

I've added this to the TODO file so that it won't be forgotten. I must admit
that it doesn't feel like something *I* personally will add to libcurl within
the nearest months. I just hope that someone else who values this high enough
will volounteer.

-- 
    Daniel Stenberg -- curl groks URLs -- http://curl.haxx.se/

Received on 2002-02-07

This message: [ Message body ]
Next message: Daniel Stenberg: "Re: format of certificate for CURLOPT_CAINFO"
Previous message: Daniel Stenberg: "Re: SSL connection"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]