[openssl-dev] [openssl.org #4243] 1.1.0-pre2: bug: EVP_CIPHER_CTX isn't completely opaque
Viktor Dukhovni via RT
rt at openssl.org
Fri Jan 15 19:42:40 UTC 2016
> On Jan 15, 2016, at 10:32 AM, balducci at units.it via RT <rt at openssl.org> wrote:
>
> This seems to be the reason why trying to build openssh-7.1p2 (with
> -DOPENSSL_API_COMPAT=0x10000000L) fails with:
>
> In file included from ssh_api.h:26:0,
> from ssh_api.c:21:
> cipher.h:69:17: error: field 'evp' has incomplete type
> EVP_CIPHER_CTX evp;
Note that OPENSSL_API_COMPAT does not guarantee full source compatibility,
rather it merely prevents the suppression of *deprecated* interfaces.
Interfaces that changed incompatibly as a result of newly opaque data structures
still require code changes. With OPENSSL_API_COMPAT you get as much compatibility
as is still available with that API, but not 100%, because making structures opaque
did force some incompatible changes.
--
Viktor.
More information about the openssl-dev
mailing list