[openssl-dev] OpenSSL 1.1 X509_NAME issues
Howard Chu
hyc at highlandsun.com
Tue Jan 26 21:54:49 UTC 2016
Quanah Gibson-Mount wrote:
> --On Thursday, January 21, 2016 5:58 PM +0000 Howard Chu <hyc at highlandsun.com>
> wrote:
>
>> In OpenLDAP we reference X509_NAME->bytes->data directly, we want the DER
>> bytes which we then pass thru our own DN validator/formatter. This no
>> longer works with OpenSSL 1.1 and I don't see any provided method to
>> return the DER bytes. I don't want a malloc'd copy, I just want read-only
>> access to the bytes already cached inside the X509_NAME structure.
>>
>> for reference:
>> https://github.com/openldap/openldap/blob/master/libraries/libldap/tls_o.
>> c#L448
>> https://github.com/openldap/openldap/blob/master/libraries/libldap/tls_o.
>> c#L475
>
> Any update on this request?
I sent a patch to rt at openssl.org a couple hours ago. Hasn't shown up yet.
--
-- Howard Chu
CTO, Symas Corp. http://www.symas.com
Director, Highland Sun http://highlandsun.com/hyc/
Chief Architect, OpenLDAP http://www.openldap.org/project/
More information about the openssl-dev
mailing list