On Tue, Apr 01, 2003 at 09:32:33AM +0200, Christoph Martin wrote:
> An application should call EVP_CIPHER_CTX_cleanup() after a cipher
> context is finished with to free up any allocated memory.
>
> Before 0.9.7 not calling this function on a ctx wouldn't leak memory but
> it would still leave sensitive information around: so calling it was
> always a good idea.
>
> Unfortunately it isn't possible to free up the context in the EVP_*Final
> function because this would break existing applications which reuse a
> cipher context after calling EVP_*Final().
So I can safely call EVP_*Init() on the same ctx without freeing
inbetween? Why are there *_ex() functions which don't free stuff
when the *() functions now don't free stuff either?
Whatever you want the functions to do, please make sure the manpages
contain correct information.
--
Met vriendelijke groet / with kind regards,
Guus Sliepen <[EMAIL PROTECTED]>
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
