Page MenuHomeFreeBSD
Differential D40265

libfetch: do not call deprecated OpenSSL functions
ClosedPublic
Actions

Authored by emaste on May 25 2023, 3:30 PM.
Tags
None
Referenced Files
Unknown Object (File)
Fri, Sep 20, 4:48 PM
Unknown Object (File)
Wed, Sep 18, 6:26 AM
Unknown Object (File)
Aug 14 2024, 3:34 PM
Unknown Object (File)
Aug 6 2024, 2:57 AM
Unknown Object (File)
Jul 8 2024, 2:46 AM
Unknown Object (File)
Jun 28 2024, 8:31 AM
Unknown Object (File)
Jun 27 2024, 8:49 AM
Unknown Object (File)
May 23 2024, 4:58 AM
View All 30 Files
Subscribers
imp

Details

Reviewers
ngie
khorben_defora.org
des
Commits
rG01aee8c92d93: libfetch: do not call deprecated OpenSSL functions
Summary
As of OpenSSL 1.1 SSL_library_init() and SSL_load_error_strings() are
deprecated.  There are replacement initialization functions but they do
not need to be called: "As of version 1.1.0 OpenSSL will automatically
allocate all resources that it needs so no explicit initialisation is
required."

Wrap both calls in an OPENSSL_VERSION_NUMBER block.

Event:          Kitchener-Waterloo Hackathon 202305
Sponsored by:   The FreeBSD Foundation

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

emaste requested review of this revision.May 25 2023, 3:30 PM
emaste created this revision.
khorben_defora.org accepted this revision.May 25 2023, 3:49 PM

LGTM; and this also builds fine with OpenSSL 3.0.8 in src.

This revision is now accepted and ready to land.May 25 2023, 3:49 PM
emaste added a comment.May 25 2023, 4:10 PM

For reference, in current OpenSSL 1.1:

# if OPENSSL_API_COMPAT < 0x10100000L
#  define SSL_library_init() OPENSSL_init_ssl(0, NULL)
# endif

and

# if OPENSSL_API_COMPAT < 0x10100000L
#  define SSL_load_error_strings() \
    OPENSSL_init_ssl(OPENSSL_INIT_LOAD_SSL_STRINGS \
                     | OPENSSL_INIT_LOAD_CRYPTO_STRINGS, NULL)
# endif
Closed by commit rG01aee8c92d93: libfetch: do not call deprecated OpenSSL functions (authored by emaste). · Explain WhyMay 25 2023, 4:22 PM
This revision was automatically updated to reflect the committed changes.
emaste added a commit: rG01aee8c92d93: libfetch: do not call deprecated OpenSSL functions.
Herald added a subscriber: imp. · View Herald TranscriptMay 25 2023, 4:22 PM
ngie added inline comments.May 25 2023, 11:11 PM
lib/libfetch/common.c
1207–1215

Does it make sense punting this no-op code forward instead of deleting it, given that supported versions of FreeBSD (12.x, 13.x) have OpenSSL 1.1.1?

1217

This is the newer/non-deprecated name.

Revision Contents
Changeset List

PathSize
lib/
libfetch/
2 lines

Diff 122417

View Options

lib/libfetch/common.c

Loading...