Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

openssl 1.1.0 binding issue #1758

Closed
burner opened this issue May 12, 2017 · 7 comments
Closed

openssl 1.1.0 binding issue #1758

burner opened this issue May 12, 2017 · 7 comments

Comments

@burner
Copy link
Contributor

burner commented May 12, 2017

Openssl made the jump to 1.1.0 they removed some symbols. Which makes it impossible to use on arch linux without some non sustainable hacks.

CRYPTO_num_locks' CRYPTO_set_id_callback'
CRYPTO_set_locking_callback' SSL_get_ex_new_index'
SSL_library_init' SSL_load_error_strings'
SSLv23_client_method' SSLv23_server_method'

deimos is out of date and without git version tags.
I looked into creating bindings with dstep, but thats gone be a real pain.
IMHO it might be easier to create the definitions we need from openssl ourself and drop the deimos binding. Comments?
@wilzbach
Copy link
Member

wilzbach commented May 12, 2017
edited
Loading

Openssl made the jump to 1.1.0 they removed some symbols. Which makes it impossible to use on arch linux without some non sustainable hacks.

There are two simple "hacks" to solve the problem temporarily:

  • versions "Have_Botan"
  • versions "VibeNoSSL" (and use Nginx etc. as reverse proxy)

@burner
Copy link
Contributor Author

burner commented May 12, 2017

requestHTTP might need https as well. I'm not sure how to use nginx for that.
At some point we need update openssl or drop it. And dropping it is not really an option IMO.

@s-ludwig
Copy link
Member

Are there any known examples of how to properly achieve the same effect that those functions have with 1.1.x? To be honest that's the main roadblock - documentation is awful, code is awful and it's more or less impossible to get the initialization sequence right without an example.

Updating the Deimos headers indeed doesn't sound like fun. The huge mess that the OpenSSL code base is presumably makes that quite a PITA. BTW, I had to clone the Deimos repository anyway to be able to make version tags a reality. There have been no responses in the main repository.

@burner burner mentioned this issue May 12, 2017
Closed
@burner
Copy link
Contributor Author

burner commented May 12, 2017

yeah openssl init looks like a big mess.
void SSL_load_error_strings() {} does not do anything anymore for example

I might have some time on Sunday to see if I can get dstep+vim to get a new version up and running

@CyberShadow
Copy link
Contributor

There have been no responses in the main repository.

Just ping someone (with the necessary privileges), sheesh :)

@CyberShadow
Copy link
Contributor

FWIW, I would certainly be thankful for an update to the Deimos bindings, since I use those in ae! Right now I have to link DFeed against openssl 1.0.0 explicitly.

@wilzbach wilzbach mentioned this issue May 25, 2017
Closed
This was referenced Jul 3, 2017
Closed
Closed
@MartinNowak
Copy link
Contributor

Duplicate of #1748

@tom-tan tom-tan mentioned this issue Sep 9, 2017
Closed
s-ludwig added a commit that referenced this issue Mar 18, 2018
@s-ludwig
Backport OpenSSL fixed from master.
cc1e534 
Includes #1651, #1748, #1758, #1759, #1921, #1981, #2117
@s-ludwig s-ludwig mentioned this issue Mar 18, 2018
Merged
s-ludwig added a commit that referenced this issue Apr 25, 2018
@s-ludwig
Backport OpenSSL fixes from master.
fff748b 
Includes #1651, #1748, #1758, #1759, #1921, #1981, #2117
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
5 participants
@burner @CyberShadow @MartinNowak @s-ludwig @wilzbach