summaryrefslogtreecommitdiff
path: root/src/lib/libssl/man/SSL_CTX_new.3
diff options
context:
space:
mode:
authorjsing <>2024-08-02 10:48:54 +0000
committerjsing <>2024-08-02 10:48:54 +0000
commit238e8f729447488ba7da46567db3c52117fd06ad (patch)
tree8d588376ef1f79f315be375339e9c5ea6e59bd83 /src/lib/libssl/man/SSL_CTX_new.3
parent487ab22d69a392256aed985c0e474422fbae6492 (diff)
downloadopenbsd-238e8f729447488ba7da46567db3c52117fd06ad.tar.gz
openbsd-238e8f729447488ba7da46567db3c52117fd06ad.tar.bz2
openbsd-238e8f729447488ba7da46567db3c52117fd06ad.zip
Rewrite CRYPTO_EX_DATA.
CRYPTO_EX_DATA exists as a way to allow an application to attach data to various components in libcrypto and libssl. The general idea is that there are various "classes" (e.g. RSA) and an application can get an "index" (which can have new/dup/free functions provided). The application can then use the index to store a pointer to some form of data within that class, for later retrieval. However, even by OpenSSL standards, this is an insane API. The current implementation allows for data to be set without calling new, indexes can be used without allocation, new can be called without actually getting an index and dup can be called either after new or without new (see regress and RSA_get_ex_new_index(3)/CRYPTO_set_ex_data(3) for more details). On top of this, the previous "overhaul" of the code was written to be infinitely extensible. For now, the rewrite intends to maintain the existing behaviour - once we bed this down we can attempt to ratchet the API requirements and require some sort of sensible sequence. The only intentional change is that there is now a hard limit on the number of indexes that can be allocated (previously there was none, relying only on ENOMEM). ok tb@
Diffstat (limited to 'src/lib/libssl/man/SSL_CTX_new.3')
0 files changed, 0 insertions, 0 deletions