[xmlsec] XMLSec with OpenSSL 3.x

Tue May 17 17:22:45 UTC 2022

Most thanks should go to David who did majority of the work :)

Aleksey

On 5/17/22 1:16 PM, Soós András wrote:
> Hi Aleksey,
> 
> Very very good news. Thanks a lot! For you, and for David too. Good job.
> And thank you for the extra relpy.
> 
> András
> 
> 
> -----Eredeti üzenet-----
> Feladó: Aleksey Sanin <aleksey at aleksey.com>
> Küldve: 2022. május 17., kedd 18:14
> Címzett: Soós András <soos.andras at cardinal.hu>; xmlsec at aleksey.com
> Tárgy: Re: [xmlsec] XMLSec with OpenSSL 3.x
> 
> The real migration to OpenSSL 3.x was much more complex than expected.
> 
> BIG THANKS to David Bailey (snargit) for creating the PR for the
> migration:
> 
> https://eur05.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.com%2Flsh123%2Fxmlsec%2Fpull%2F334&data=05%7C01%7Csoos.andras%40cardinal.hu%7C2f3e196d5823400e81aa08da3820547a%7Cbbc305dc8311401795c65eebe9c4df85%7C0%7C0%7C637884008751365818%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=scyI9g4oRl6nuDbcODOZvclMeR%2FlehImMnvUnp4uJNc%3D&reserved=0
> 
> which I forked here to add small polishing:
> 
> https://eur05.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.com%2Flsh123%2Fxmlsec%2Fpull%2F336&data=05%7C01%7Csoos.andras%40cardinal.hu%7C2f3e196d5823400e81aa08da3820547a%7Cbbc305dc8311401795c65eebe9c4df85%7C0%7C0%7C637884008751365818%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=JOAUXP84ORBYbpQTvQIa4U5vu9t%2FiovPXlFlRnDOyp8%3D&reserved=0
> 
> The work is now merged in the master. There are still a few things that needs to be done:
> 
> 1) Custom engines are deprecated in OpenSSL 3 and are disabled in the build against OpenSSL 3. I will need to think about best ways to migrate that functionality.
> 
> 2) I want to add automatic builds against OpenSSL 3 since the code is significantly different.
> 
> However overall, the OpenSSL 3 build is working and ready for testing!
> 
> Thanks a lot, David!
> 
> Aleksey
> 
> On 3/25/22 1:10 PM, Aleksey Sanin wrote:
>> First, I love patches :) Second, I was planning to look into it
>> sometime this year. So far, it's indeed a lot of "deprecated" warnings
>> but I believe everything works. The work is to replace direct
>> structures access with macros (for old version) or function calls (for
>> newer versions). Functionality didn't change really so I don't believe
>> it's super urgent.
>>
>> Best.
>>
>> Aleksey
>>
>> On 3/25/22 10:40 AM, Soós András wrote:
>>> Hi Aleksey,
>>>
>>> The XMLSec library is now compatible with OpenSSL 1.1.x. I would like
>>> to know when the XMLSec library will be compatible with the OpenSSL
>>> 3.x version. Yesterday I tried to compile the XMLSec 1.2.30 with
>>> OpenSSL 3.0.2. It worked fine, but I got a lot of compiler warnings
>>> about using deprecated functions and structures. Others have already
>>> inquired about the compatibility, or am I the first one? Refactoring
>>> the program code is not a little work, I know, because I’m in a same
>>> project with our own codes. The XMLSec library is a very important
>>> part of our work, and we plan to keep it for long time to come.
>>>
>>> Thank you in advance if you have any encouraging answer.
>>>
>>> Best regards
>>>
>>> András Soós
>>>
>> _______________________________________________
>> xmlsec mailing list
>> xmlsec at aleksey.com
>> https://eur05.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.a
>> leksey.com%2Fmailman%2Flistinfo%2Fxmlsec&data=05%7C01%7Csoos.andra
>> s%40cardinal.hu%7C2f3e196d5823400e81aa08da3820547a%7Cbbc305dc831140179
>> 5c65eebe9c4df85%7C0%7C0%7C637884008751365818%7CUnknown%7CTWFpbGZsb3d8e
>> yJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C30
>> 00%7C%7C%7C&sdata=j%2BA4EffG01d%2F9TNNYkg7DqLlrQSXGkgID9LYJgOyk%2B
>> w%3D&reserved=0
> David Bailey <notifications at github.com>