21 Jun
2008
21 Jun
'08
12:17 a.m.
On Sat, 2008-06-21 at 00:13 +0200, Johannes Berg wrote:
Back to the original question - discount SSH - how do we get compression + SSL out of openssl..
I don't think it's possible. OpenSSL says, in the NOTES section of SSL_COMP_add_compression_method(3):
The TLS standard (or SSLv3) allows the integration of compression methods into the communication. The TLS RFC does however not specify compression methods or their corresponding identifiers, so there is currently no compatible way to integrate compression with unknown peers. It is therefore currently not recommended to integrate compression into applications. Applications for non-public use may agree on certain compression methods. Using different compression methods with the same identifier will lead to connection failure.
However, there is http://tools.ietf.org/html/draft-ietf-tls-compression, but openssl doesn't support that (only zlib and rle)
I'm way behind the times. http://www.faqs.org/rfc/rfc3749.txt
johannes