[Git][NTPsec/ntpsec][master] 3 commits: Update aes_siv.c to supress warnings on OpenSSL 3

Hal Murray (@hal.murray) gitlab at mg.gitlab.com
Tue Apr 19 20:13:16 UTC 2022 


Hal Murray pushed to branch master at NTPsec / ntpsec


Commits:
607c174c by Hal Murray at 2022-04-17T02:25:30-07:00
Update aes_siv.c to supress warnings on OpenSSL 3

libaes_siv uses openssl/cmac.h
That has been noisily deprecated in OpenSSL 3
Drop this change when upstream is fixed.

- - - - -
e26a59f8 by Hal Murray at 2022-04-17T02:57:30-07:00
Tweak doc for nts cert command

- - - - -
80509eab by Hal Murray at 2022-04-17T03:01:55-07:00
HOWTO-OpenSSL: FreeBSD has package for OpenSSL 3

- - - - -


3 changed files:

- HOWTO-OpenSSL
- docs/includes/nts-commands.adoc
- libaes_siv/aes_siv.c


Changes:

=====================================
HOWTO-OpenSSL
=====================================
@@ -8,6 +8,15 @@ It also works for testing 3.0.1
 It's rough.  Don't be surprised by bugs/oversights.
 Corrections, clarifications and feedback encouraged.
 
+FreeBSD 13.0 has OpenSSL 3.0.2 available as a package.
+You can just install it and ignore the rest of this note.
+  sudo pkg update
+  sudo pkg install openssl-devel-3.0.2
+openssl-devel-3.0.2            TLSv1.3 capable SSL and crypto library
+
+
+
+
 Download OpenSSL source from here:
   https://www.openssl.org/source/
   https://www.openssl.org/source/old/1.1.1/


=====================================
docs/includes/nts-commands.adoc
=====================================
@@ -9,7 +9,12 @@ normal TLS protocol negotiation, which is not usually necessary.
 The options are as follows:
 
 +cert+ _file_::
-  Present the certificate in _file_ as our certificate.
+  Present the certificate (chain) in _file_ as our certificate.
+  +
+  Note that there is no checking on the certificate.
+  In particular, it may have expired or may not cover the host name
+  used to get to this server or may not be signed by a CA that
+  is in the clients root-server collection.
 
 +key+ _file_::
   Read the private key to our certificate from _file_.


=====================================
libaes_siv/aes_siv.c
=====================================
@@ -2,6 +2,10 @@
  * SPDX-License-Identifier: Apache-2.0
  */
 
+/* Hack to supress a blizzard of warnings when built on OpenSSL 3
+ * Drop this patch when upstream is fixed. */
+#define OPENSSL_SUPPRESS_DEPRECATED 1
+
 #define _POSIX_C_SOURCE 200112L
 #define _ISOC99_SOURCE 1
 



View it on GitLab: https://gitlab.com/NTPsec/ntpsec/-/compare/8d6e76914e284714d209518544dfaa51e267f58e...80509eab753d0f7d5518d27717e2f9f19d920a78

-- 
View it on GitLab: https://gitlab.com/NTPsec/ntpsec/-/compare/8d6e76914e284714d209518544dfaa51e267f58e...80509eab753d0f7d5518d27717e2f9f19d920a78
You're receiving this email because of your account on gitlab.com.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ntpsec.org/pipermail/vc/attachments/20220419/9c7610f0/attachment-0001.htm>

More information about the vc mailing list