[openssl-dev] The evolution of the 'master' branch
Matt Caswell
matt at openssl.org
Tue Feb 10 23:01:31 UTC 2015
On 07/02/15 14:41, Richard Moore wrote:
>
>
> On 3 February 2015 at 22:02, Rich Salz <rsalz at openssl.org
> <mailto:rsalz at openssl.org>> wrote:
>
> As we've already said, we are moving to making most OpenSSL data
> structures opaque. We deliberately used a non-specific term. :)
> As of Matt's commit of the other day, this is starting to happen
> now. We know this will inconvenience people as some applications
> no longer build. We want to work with maintainers to help them
> migrate, as we head down this path.
>
> We have a wiki page to discuss this effort. It will eventually include
> tips on migration, application and code updates, and anything else the
> community finds useful. Please visit:
>
> http://wiki.openssl.org/index.php/1.1_API_Changes
>
>
> I've documented what got broken in Qt by the changes so far. I've listed
> the functions I think we can use instead where they exist, and those
> where there does not appear to be a replacement.
On the wiki you wrote:
"session->tlsext_tick_lifetime_hint - we were directly accessing the
lifetime hint of the session."
I have just pushed (along with some associated documentation) some new
ticket API functions, which should cover the above gap:
int SSL_SESSION_has_ticket(const SSL_SESSION *s);
unsigned long SSL_SESSION_get_ticket_lifetime_hint(const SSL_SESSION *s);
void SSL_SESSION_get0_ticket(const SSL_SESSION *s, unsigned char **tick,
size_t *len);
Matt
More information about the openssl-dev
mailing list