[tor-bugs] #26034 [Core Tor/Tor]: LibreSSL 2.7.x supports some OpenSSL 1.1 APIs? (was: LibreSSL 2.7.x may support OpenSSL 1.1 APIs?)
Tor Bug Tracker & Wiki
blackhole at torproject.org
Wed May 9 12:40:08 UTC 2018
#26034: LibreSSL 2.7.x supports some OpenSSL 1.1 APIs?
--------------------------+------------------------------------
Reporter: nickm | Owner: nickm
Type: defect | Status: assigned
Priority: Medium | Milestone: Tor: 0.3.5.x-final
Component: Core Tor/Tor | Version:
Severity: Normal | Resolution:
Keywords: | Actual Points:
Parent ID: | Points:
Reviewer: | Sponsor:
--------------------------+------------------------------------
Changes (by nickm):
* milestone: Tor: 0.3.4.x-final => Tor: 0.3.5.x-final
Comment:
So I tried merging the obvious patch:
{{{
--- a/src/common/compat_openssl.h
+++ b/src/common/compat_openssl.h
@@ -28,6 +28,11 @@
#define OPENSSL_1_1_API
#endif /* OPENSSL_VERSION_NUMBER >= OPENSSL_V_SERIES(1,1,0) && ... */
+#if defined(LIBRESSL_VERSION_NUMBER) && LIBRESSL_VERSION_NUMBER >=
0x2070000fL
+/* LibreSSL 2.7.x and later also have this API */
+#define OPENSSL_1_1_API
+#endif
+
#ifndef OPENSSL_VERSION
#define OPENSSL_VERSION SSLEAY_VERSION
#endif
}}}
And while it appears that libressl supports '''some''' of the new OpenSSL
APIs, the port is nontrivial: there are other things that we're
conditioning on the 1.1 API that libressl does '''not''' have.
So let's revisit this in a later series.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/26034#comment:1>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list