Page MenuHomeFreeBSD
Differential D44892

OpenSSL: use the upstream provided version.map files for the fips/legacy providers
Needs ReviewPublic
Actions

Authored by ngie on Apr 21 2024, 4:35 PM.
Tags
None
Referenced Files
Unknown Object (File)
Tue, Nov 12, 2:04 AM
Unknown Object (File)
Thu, Nov 7, 4:49 AM
Unknown Object (File)
Tue, Nov 5, 9:22 AM
Unknown Object (File)
Wed, Oct 30, 1:47 AM
Unknown Object (File)
Oct 17 2024, 1:07 AM
Unknown Object (File)
Oct 17 2024, 1:07 AM
Unknown Object (File)
Oct 16 2024, 7:51 AM
Unknown Object (File)
Oct 15 2024, 5:03 PM
View All 67 Files
Subscribers
brooks
imp
pierre-yves.peneau_lirmm.fr

Details

Reviewers
cy
emaste
Commits
rG42ce242e3530: OpenSSL: use the upstream provided version.map files for the fips/legacy…
Summary

This change introduces a static copy of the fips and legacy linker version maps
generated by the OpenSSL 3.0.13 build process.

This partly unbreaks the fips and legacy providers by not exposing
unnecessary symbols from the fips/legacy provider shared objects shared with
other providers (base, default) and libcrypto.

Test Plan
  • make tinderbox passed on universe14a.freebsd.org.

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

ngie created this revision.Apr 21 2024, 4:35 PM
Herald added a subscriber: imp. · View Herald TranscriptApr 21 2024, 4:35 PM
ngie requested review of this revision.Apr 21 2024, 4:35 PM
Harbormaster completed remote builds in B57257: Diff 137459.Apr 21 2024, 4:35 PM
ngie edited the summary of this revision. (Show Details)Apr 21 2024, 4:36 PM
ngie edited the test plan for this revision. (Show Details)
ngie added reviewers: cy, emaste.
ngie added a subscriber: pierre-yves.peneau_lirmm.fr.
This revision was not accepted when it landed; it landed in state Needs Review.Apr 21 2024, 4:59 PM
Closed by commit rG42ce242e3530: OpenSSL: use the upstream provided version.map files for the fips/legacy… (authored by ngie). · Explain Why
This revision was automatically updated to reflect the committed changes.
ngie added a commit: rG42ce242e3530: OpenSSL: use the upstream provided version.map files for the fips/legacy….
ngie added a reverting change: rG572948d00ddf: Revert "OpenSSL: use the upstream provided version.map files for the….
ngie reopened this revision.EditedApr 21 2024, 5:00 PM

I accidentally pushed this to main (and have subsequently reverted it). I've really become used to git push.default nothing thanks to being bitten so much at work and forgot that my local forks don't use this config by default :(..

emaste added a subscriber: brooks.Apr 23 2024, 6:16 PM
ngie edited the summary of this revision. (Show Details)Apr 27 2024, 4:31 PM

Revision Contents
Changeset List

PathSize
crypto/
openssl/
providers/
5 lines
5 lines
secure/
lib/
libcrypto/
modules/
fips/
2 lines
legacy/
2 lines

Diff 137461

View Options

crypto/openssl/providers/fips.ld

Loading...
View Options

crypto/openssl/providers/legacy.ld

Loading...
View Options

secure/lib/libcrypto/modules/fips/Makefile

Loading...
View Options

secure/lib/libcrypto/modules/legacy/Makefile

Loading...