Browsers are starting to enforce Certificate Transparency (CT).
Below is a sample of CT Precertificate SCTs, which is required for CT.
It includes a new certificate extension with an OID of
1.3.6.1.4.1.11129.2.4.2.
How do we use `openssl req` and a CONF file to add the information
(assuming we al
> Sometimes, the program crashes when doing an SSL_CTX_free; before the
> crash, ctx is an invalid pointer, that's why I can get a valid value from
> SSL_CTX_get_max_cert_list (ctx), so it's not a double free problem.
You mean it's a VALID pointer?
We'll need a more detailed backtrace.
__
I got a program which does the following sequence of operations --
SSL_shutdown(ssl)
SSL_free (ssl);
SSL_CTX_free ( ctx );
close(socket)
Where 'socket' is the underlying non-blocking socket the ssl connection
is established over. bio is also set to non-blocking.
Sometimes, the program crashes
