curl-library
Re: Problems with Windows Binaries
Date: Wed, 24 Nov 2010 12:25:02 +0100
hi,
Sorry for the late reply, I missed this mail.
On Thu, Oct 28, 2010 at 10:25 PM, Dan Fandrich <dan_at_coneharvesters.com> wrote:
> On Thu, Oct 28, 2010 at 09:46:22PM +0200, David Graf wrote:
>> The problem occurs actually during the initialization. OpenSsl insists
>> on getting part of the RNG entropy using the desktop on Windows. This
>> operation can be very slow, even worst if the user running this
>> process has no desktop access.
>>
>> On recent windows versions the Crypt API is crypto safe and can be use
>> safely to get an entropy.
>
> What do you suggest as a better way to seed OpenSSL on Windows? Is there
> a Windows crypt API call that's broadly available that returns high-quality
> random data that can be used with RAND_add() instead of calling
> RAND_screen() in libcurl?
Yes, the CryptoAPI is crypto safe (in decent windows versions, xp sp1+
afair) and is also used by openssl btw. See an example here:
http://lxr.php.net/opengrok/xref/PHP_5_3/win32/winutil.c#52
Cheers,
-- Pierre @pierrejoye | http://blog.thepimp.net | http://www.libgd.org ------------------------------------------------------------------- List admin: http://cool.haxx.se/list/listinfo/curl-library Etiquette: http://curl.haxx.se/mail/etiquette.htmlReceived on 2010-11-24