Jeffrey Altman wrote:
> My guess at the moment is that the easist place is in the functions
> that convert stacks of ciphers to/from byte streams of ciphers since
> those functions must be called in all of the appropriate places.
OK, but this seems like a nasty hack to me. Unfortunately I haven't got
time right now to investigate a less nasty hack.
However, I did have occasion to wander through this area of the code a
while back, and I don't remember there being many places that would be
affected, and I also have a vague memory of there being some kind of
filtering going on already.
BTW, if there's no callback into the app, are you envisaging a patch to
OpenSSL? Would it make OpenSSL Kerberos specific?
Cheers,
Ben.
--
http://www.apache-ssl.org/ben.html
"There is no limit to what a man can do or how far he can go if he
doesn't mind who gets the credit." - Robert Woodruff
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
