[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: (ITS#8533) Support OpenSSL-1.1.0c

To: openldap-its@OpenLDAP.org
Subject: Re: (ITS#8533) Support OpenSSL-1.1.0c
From: hyc@symas.com
Date: Wed, 05 Apr 2017 23:58:11 +0000
Auto-submitted: auto-generated (OpenLDAP-ITS)

quanah@symas.com wrote:
> --On Wednesday, April 05, 2017 10:38 PM +0000 quanah@symas.com wrote:
>
>> --On Wednesday, April 05, 2017 7:58 PM +0000 quanah@symas.com wrote:
>>
>>> If openssl 1.1.0 is built with the option "no-deprecated" the build will
>>> fail, as portions of the code still use the pre 1.1 API.  This needs
>>> fixing  before release.
>>
>> The following 5 function calls are problematic:
>>
>> ./.libs/libldap.so: undefined reference to `OpenSSL_add_all_digests'
>> ./.libs/libldap.so: undefined reference to `SSL_load_error_strings'
>> ./.libs/libldap.so: undefined reference to `ERR_free_strings'
>> ./.libs/libldap.so: undefined reference to `EVP_cleanup'
>> ./.libs/libldap.so: undefined reference to `SSL_library_init'
>>
>>
>> Looking at the best way in which to fix.
>
> These also need fixing, as they don't exist in 1.1 when the old API is
> disabled.
>
> CRYPTO_num_locks()
> CRYPTO_LOCK
> CRYPTO_set_locking_callback()
> CRYPTO_set_id_callback()

These only exist because OpenSSL's support for threading was mostly 
nonexistent in the past. They should just be #ifdef'd away for 1.1.

-- 
   -- Howard Chu
   CTO, Symas Corp.           http://www.symas.com
   Director, Highland Sun     http://highlandsun.com/hyc/
   Chief Architect, OpenLDAP  http://www.openldap.org/project/

Prev by Date: Re: (ITS#8533) Support OpenSSL-1.1.0c
Next by Date: Re: (ITS#8533) Support OpenSSL-1.1.0c
Index(es):
- Chronological
- Thread