On 01/06/14 19:38, Dr. Stephen Henson wrote:
> On Sun, Jun 01, 2014, Kurt Roeckx wrote:
>
>> On Sun, Jun 01, 2014 at 01:39:54PM -0400, Salz, Rich wrote:
>>> Make structures opaque when possible and provide accessor functions. Within
>>> openssl itself use macros if you want.
>>
>> This has been on my list of things I want to see happen for a long time
>> too. Together we removing some APIs. I also want to help getting
>> open source packages fixed so they still work.
>>
>
> That's something I'd like to see too. I've added some support for libssl in
> OpenSSL 1.0.1 (you can make all libssl structures opaque by setting
> OPENSSL_NO_SSL_INTERN). I'd like to see the same happen across libcrypto but
> it's a significant task and likely to cause considerable application breakage.
I would like to see us deprecate far more and turn this:
#ifndef OPENSSL_NO_DEPRECATED
/* Whatever */
#endif
Into this:
#ifdef OPENSSL_DEPRECATED
/* Whatever */
#endif
This then means that by default you don't get the deprecated stuff, and
have to explicitly turn it on.
Applying this same thinking you could do the same thing with the opaque
structures, i.e. make structures opaque by default...you have to
explicitly turn them on if you really need them for backwards compatibility.
Matt
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List openssl-dev@openssl.org
Automated List Manager majord...@openssl.org
