SSL_get_finished determine length

Samuel Williams space.ship.traveller at gmail.com
Mon Feb 17 09:10:50 UTC 2020


So what is the valid way to do it? Invoke it with a 1 byte array? Maybe an
example should be added to the manual page?

On Thu, 6 Feb 2020 at 23:18, Marian Beermann <public at enkore.de> wrote:

> > Is it valid to call:
> >
> > size_t size = SSL_get_finished(ssl, NULL, 0);
>
> No
>
> > Because SSL_get_finished invokes memcpy even if the size is 0, so is the
> > undefined behaviour?
>
> Yes
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20200217/2658f8b6/attachment.html>


More information about the openssl-users mailing list