On Sun, 2018-01-28 at 08:41 -0800, James Bottomley wrote: > Openssl 1.1 is really annoying in that it made certain objects opaque > and added accessors for the necessary components, but these accessors > often don't exist in 1.0 and before, so there's no way to create > clean code that will compile with both 1.0 and 1.1; instead you have > to compiled with both code bases to make sure everything is working. > > The other problem is that since the structures are opaque, their size > isn't known, so having a structure declared as a variable is no > longer possible. > > This change switches all uses of EVP_MD_CTX to be pointers > initialised with the correct EVP_MD_CTX_new() (not available in 1.0), > does the same for HMAC_CTX, and uses the 1.1 only primitive > RSA_get0_key() to extract the public modulus and exponent from an RSA > key. > > Signed-off-by: James Bottomley <James.Bottomley@xxxxxxxxxxxxxxxxxxxxx > > > Tested-by: Mimi Zohar <zohar@xxxxxxxxxxxxxxxxxx> OK, let me try that again without the line breaks. James
