libcrypto: link engines and the legacy provider to libcrypto
ClosedPublic
Actions

Authored by khorben_defora.org on Sep 15 2023, 5:26 PM.

Details

Reviewers

emaste
kp

Commits

rG1a18383a52bc: libcrypto: link engines and the legacy provider to libcrypto

Summary

The most efficient way to ship OpenSSL's legacy provider module and engines is to have them link to libcrypto.so. This can break the build since they are created in a sub-directory of secure/lib/libcrypto, and may be ready to link before libcrypto.so is available.

This commit introduces a LIBCRYPTO_WITHOUT_SUBDIRS define, ensuring libcrypto.so builds in its usual early phase without any OpenSSL provider module or engines. They are then completed as expected later.

This is meant as an alternate fix to D41874.

Test Plan

# echo test | /usr/bin/openssl md4 -provider legacy
MD4(stdin)= 36d729ab4ff7260da6fb010ef5747bb3

Diff Detail

Repository

rG FreeBSD src repository

Lint

Lint Skipped

Unit

Tests Skipped

Event Timeline

khorben_defora.org created this revision.Sep 15 2023, 5:26 PM

Herald added a subscriber: imp. · View Herald TranscriptSep 15 2023, 5:26 PM

khorben_defora.org requested review of this revision.Sep 15 2023, 5:26 PM

This also fixes the issues with py-cryptography that are causing the current test failures in CI. I have no preference in which fix we take (this one or D41874).

lwhsu added a subscriber: lwhsu.Sep 16 2023, 12:11 AM

emaste accepted this revision.Sep 16 2023, 3:57 PM

emaste added a commit: rG1a18383a52bc: libcrypto: link engines and the legacy provider to libcrypto.

This revision is now accepted and ready to land.Sep 16 2023, 3:57 PM

emaste closed this revision.Sep 16 2023, 3:57 PM