An application should call EVP_CIPHER_CTX_cleanup() after a cipher context is finished with to free up any allocated memory.
Before 0.9.7 not calling this function on a ctx wouldn't leak memory but it would still leave sensitive information around: so calling it was always a good idea. Unfortunately it isn't possible to free up the context in the EVP_*Final function because this would break existing applications which reuse a cipher context after calling EVP_*Final(). Steve. ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
