SSL_get_finished determine length

Marian Beermann public at enkore.de
Thu Feb 6 10:18:05 UTC 2020


> Is it valid to call:
> 
> size_t size = SSL_get_finished(ssl, NULL, 0);

No

> Because SSL_get_finished invokes memcpy even if the size is 0, so is the
> undefined behaviour?

Yes


More information about the openssl-users mailing list