[CDRIVER-1066] Allow compiling against OpenSSL 1.1.X Created: 20/Jan/16 Updated: 11/Oct/16 Resolved: 13/Jul/16 |
|
| Status: | Closed |
| Project: | C Driver |
| Component/s: | tls |
| Affects Version/s: | 1.1.8 |
| Fix Version/s: | 1.4.0 |
| Type: | Bug | Priority: | Minor - P4 |
| Reporter: | Mitchell Blank | Assignee: | Hannes Magnusson |
| Resolution: | Done | Votes: | 0 |
| Labels: | intern2016 | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Issue Links: |
|
||||||||
| Epic Link: | TLS Improvements | ||||||||
| Backwards Compatibility: | Fully Compatible | ||||||||
| Description |
|
Recently, OpenSSL posted a couple 1.1.0-alpha releases and asked users to see if there were any interoperability problems. One of the biggest changes coming in 1.1 is that many objects (such as EVP_MD_CTX) now are only visible as opaque pointers. i.e. their exact size and layout are considered private to OpenSSL. Of course, this means that they can't be put on the stack. With this small patch, I was able to compile 1.1.8 of the C driver against OpenSSL 1.1.0-pre2. I haven't tested it, but it seems sane enough:
There are also a couple deprecated warnings that pop up, which you may be interested in:
|
| Comments |
| Comment by Githook User [ 04/Aug/16 ] |
|
Author: {u'username': u'ajdavis', u'name': u'A. Jesse Jiryu Davis', u'email': u'jesse@mongodb.com'}Message: |
| Comment by Githook User [ 13/Jul/16 ] |
|
Author: {u'username': u'bjori', u'name': u'Hannes Magnusson', u'email': u'bjori@php.net'}Message: |
| Comment by Githook User [ 13/Jul/16 ] |
|
Author: {u'username': u'bjori', u'name': u'Hannes Magnusson', u'email': u'bjori@php.net'}Message: |
| Comment by Githook User [ 13/Jul/16 ] |
|
Author: {u'username': u'bjori', u'name': u'Hannes Magnusson', u'email': u'bjori@php.net'}Message: |
| Comment by Githook User [ 13/Jul/16 ] |
|
Author: {u'username': u'bjori', u'name': u'Hannes Magnusson', u'email': u'bjori@php.net'}Message: – And turns out, we never use it anyway |
| Comment by A. Jesse Jiryu Davis [ 26/Jun/16 ] |
|
More urgent now because Debian has begun testing packages with OpenSSL 1.1.0 and libmongoc didn't build: https://www.mail-archive.com/debian-bugs-dist@lists.debian.org/msg1431772.html |
| Comment by A. Jesse Jiryu Davis [ 08/Feb/16 ] |
|
Sorry for the delay here, Mitchell. We're in the midst of an overhaul to our SSL code that will support libraries besides OpenSSL on Mac and Windows, scheduled for the 1.4 release: |
| Comment by A. Jesse Jiryu Davis [ 20/Jan/16 ] |
|
Thanks so much for the report and patch, we'll take a look. On Wed, Jan 20, 2016 at 2:04 PM, Mitchell Blank (JIRA) <jira@mongodb.org> |
| Comment by A. Jesse Jiryu Davis [ 20/Jan/16 ] |
|
Thanks so much for the report and patch, we'll take a look. On Wed, Jan 20, 2016 at 2:04 PM, Mitchell Blank (JIRA) <jira@mongodb.org> |