Development #74996
Use EVP_* in a way that is compatible with OpenSSL 1.0
Début:
01 mars 2023
Echéance:
% réalisé:
0%
Temps estimé:
Patch proposed:
Non
Planning:
Non
Description
Hi,
I am trying to build Lasso on CentOS 7:
OpenSSL 1.0.2k-fips 26 Jan 2017Unfortunately, with this version:
- EVP_DigestSign does not exist
- EVP_MD_CTX_free does not exist
which leads to compilation/linking errors. As mentionned on the mailing list, building against EPEL-provided OpenSSL 1.1 leads to segfaults (and is not a great approach anyway, as it makes Lasso depend on EPEL).
Both issues are pretty easy to fix: EVP_DigestSign should be equivalent to EVP_DigestSignUpdate + EVP_DigestSignFinal, and EVP_MD_CTX_free is an alias for EVP_MD_CTX_destroy
I have attache a patch that I tested successfully (using the LemonLDAP::NG unit test suite) on both OpenSSL 1.0 and OpenSSL 3.0
Fichiers
Révisions associées
Release 2.8.2 (#74996)
- Compatibility with EVP API of openssl 1.x, thanks to Maxime Besson
from Worteks.
Historique
Mis à jour par Benjamin Dauvergne il y a environ un an
- Statut changé de Nouveau à En cours
- Assigné à mis à Benjamin Dauvergne
Looks good, I will make a 2.8.2 release soon.
Mis à jour par Benjamin Dauvergne il y a environ un an
- Statut changé de En cours à Fermé
- Assigné à changé de Benjamin Dauvergne à Maxime Besson
Lasso 2.8.2 released.
Compatibility with EVP API of openssl 1.x (#74996)
Thanks to Maxime Besson from Worteks.