[openssl-dev] [openssl.org #4274] OpenSSL 1.1 X509_NAME_der()

Howard Chu via RT rt at openssl.org
Tue Jan 26 22:49:57 UTC 2016


In OpenLDAP we reference X509_NAME->bytes->data directly, we want the DER 
bytes which we then pass thru our own DN validator/formatter. This no longer 
works with OpenSSL 1.1 and I don't see any provided method to return the DER 
bytes. I don't want a malloc'd copy, I just want read-only access to the bytes 
already cached inside the X509_NAME structure.

The attached patch would be sufficient to meet this requirement.

-- 
   -- Howard Chu
   CTO, Symas Corp.           http://www.symas.com
   Director, Highland Sun     http://highlandsun.com/hyc/
   Chief Architect, OpenLDAP  http://www.openldap.org/project/

-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0001-Add-X509_NAME_der.patch
Type: text/x-diff
Size: 1124 bytes
Desc: not available
URL: <http://mta.openssl.org/pipermail/openssl-dev/attachments/20160126/c964eff6/attachment.patch>


More information about the openssl-dev mailing list