Re: [PATCH] ima-evm-utils: Add backward compatible support for openssl 1.1

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On Sun, 2018-01-28 at 08:41 -0800, James Bottomley wrote:
> Openssl 1.1 is really annoying in that it made certain objects opaque
> and added accessors for the necessary components, but these accessors
> often don't exist in 1.0 and before, so there's no way to create
> clean code that will compile with both 1.0 and 1.1; instead you have
> to compiled with both code bases to make sure everything is working.
> 
> The other problem is that since the structures are opaque, their size
> isn't known, so having a structure declared as a variable is no
> longer possible.
> 
> This change switches all uses of EVP_MD_CTX to be pointers
> initialised with the correct EVP_MD_CTX_new() (not available in 1.0),
> does the same for HMAC_CTX, and uses the 1.1 only primitive
> RSA_get0_key() to extract the public modulus and exponent from an RSA
> key.
> 
> Signed-off-by: James Bottomley <James.Bottomley@xxxxxxxxxxxxxxxxxxxxx
> >
> Tested-by: Mimi Zohar <zohar@xxxxxxxxxxxxxxxxxx>

OK, let me try that again without the line breaks.

James




[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Index of Archives]     [Linux Kernel]     [Linux Kernel Hardening]     [Linux NFS]     [Linux NILFS]     [Linux USB Devel]     [Video for Linux]     [Linux Audio Users]     [Yosemite News]     [Linux SCSI]

  Powered by Linux