[openssl-dev] OpenSSL 1.1 X509_NAME issues
Howard Chu
hyc at highlandsun.com
Thu Jan 21 17:58:01 UTC 2016
In OpenLDAP we reference X509_NAME->bytes->data directly, we want the DER
bytes which we then pass thru our own DN validator/formatter. This no longer
works with OpenSSL 1.1 and I don't see any provided method to return the DER
bytes. I don't want a malloc'd copy, I just want read-only access to the bytes
already cached inside the X509_NAME structure.
for reference:
https://github.com/openldap/openldap/blob/master/libraries/libldap/tls_o.c#L448
https://github.com/openldap/openldap/blob/master/libraries/libldap/tls_o.c#L475
--
-- Howard Chu
CTO, Symas Corp. http://www.symas.com
Director, Highland Sun http://highlandsun.com/hyc/
Chief Architect, OpenLDAP http://www.openldap.org/project/
More information about the openssl-dev
mailing list