[openssl-dev] Constness in SSL_CTX_set_srp_username and SSL_CTX_set_srp_password functions
Kurt Roeckx
kurt at roeckx.be
Mon Feb 16 17:26:47 UTC 2015
On Mon, Feb 16, 2015 at 04:29:36PM +0100, Krzysztof Kwiatkowski wrote:
> Hi,
>
> Currently SSL_CTX_set_srp_username/password functions take char* argument
> for username/password value. In an application level code those values are
> very often const (user provided data). In such cases, when passing those
> values to OpenSSL library either dirty cast needs to be performed to remove
> constness, or const value needs to be copied to temporary location (which
> for SSL_CTX_set_srp_username is useless as this function copies again
> username value in ssl3_ctx_ctrl function).
>
> I've submitted pull request https://github.com/openssl/openssl/pull/227 ,
> when I try to cleanup API, so that const values also can be passed to
> functions. Please integrate if interested.
Please send this to rt at openssl.org so that we can keep track of
it.
Kurt
More information about the openssl-dev
mailing list