Hello, I'm currently constructing a binding to my favourite language and the trickiest thing is getting automatic release of resources right while at the same time allowing the programmer the ability to explicitly do so when needed. I understand that for certain data structures it is undesirable for them to hang around in memory longer than necessary. I would like to ask which of openssl's types are of this category (I assume a short list?), and whether the supplied free functions of the API appropriate to these types do more than just release a memory block, by also clearing it?
Hopefully I can use this info to leave out bindings for some 'free' functions and let the garbage collector reclaim according to its own schedule. -------- I also would like to ask a question of anyone familiar with the ssltest.c test application from the distribution. Translated to my favourite language and invoked with the -server_auth command line flag induces an error not seen when the C derived executable is substituted. In particular when the verify callback is called, the context returns the error X509_V_ERR_SELF_SIGNED_CERT_IN_CHAIN which is not one of those explicitly allowed for by the callback. Given that the problem must be purely a bug in my translation/binding, can anyone offer a clue how this error might come about? With the flag -client_auth everything is fine. I have poured over my code several times and cannot see any deviation from the C code. How I wish it were just a segfault! Thanks, Chris Quinn ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
