summaryrefslogtreecommitdiffstats
path: root/FAQ
diff options
context:
space:
mode:
authorDr. Stephen Henson <steve@openssl.org>2013-02-12 17:02:45 +0100
committerDr. Stephen Henson <steve@openssl.org>2013-02-12 17:02:45 +0100
commit2527b94fec345c0bec58f4c7a810b7b8d0552b17 (patch)
treebbac036680b1ec0563e3a4b068c388ac596726d8 /FAQ
parentCheck DTLS_BAD_VER for version number. (diff)
downloadopenssl-2527b94fec345c0bec58f4c7a810b7b8d0552b17.tar.xz
openssl-2527b94fec345c0bec58f4c7a810b7b8d0552b17.zip
Upate FAQ.
Add description of "allocate and encode" operation for ASN1 routines. Document how versioning will for after the letter release reaches y.
Diffstat (limited to 'FAQ')
-rw-r--r--FAQ23
1 files changed, 22 insertions, 1 deletions
diff --git a/FAQ b/FAQ
index 12bda1fd14..df681c8168 100644
--- a/FAQ
+++ b/FAQ
@@ -189,6 +189,12 @@ Therefore the answer to the common question "when will feature X be
backported to OpenSSL 1.0.0/0.9.8?" is "never" but it could appear
in the next minor release.
+* What happens when the letter release reaches z?
+
+It was decided after the release of OpenSSL 0.9.8y the next version should
+be 0.9.8za then 0.9.8zb and so on.
+
+
[LEGAL] =======================================================================
* Do I need patent licenses to use OpenSSL?
@@ -864,7 +870,7 @@ The opposite assumes we already have len bytes in buf:
p = buf;
p7 = d2i_PKCS7(NULL, &p, len);
-At this point p7 contains a valid PKCS7 structure of NULL if an error
+At this point p7 contains a valid PKCS7 structure or NULL if an error
occurred. If an error occurred ERR_print_errors(bio) should give more
information.
@@ -876,6 +882,21 @@ that has been read or written. This may well be uninitialized data
and attempts to free the buffer will have unpredictable results
because it no longer points to the same address.
+Memory allocation and encoding can also be combined in a single
+operation by the ASN1 routines:
+
+ unsigned char *buf = NULL; /* mandatory */
+ int len;
+ len = i2d_PKCS7(p7, &buf);
+ if (len < 0)
+ /* Error */
+ /* Do some things with 'buf' */
+ /* Finished with buf: free it */
+ OPENSSL_free(buf);
+
+In this special case the "buf" parameter is *not* incremented, it points
+to the start of the encoding.
+
* OpenSSL uses DER but I need BER format: does OpenSSL support BER?