upgrading the openSSL version from 1.0.2j to 1.1.1c - api changes

Matt Caswell matt at openssl.org
Wed Nov 13 13:02:57 UTC 2019

On 13/11/2019 09:22, Umamaheswari Nagarajan wrote:
> The following apis seems to be unavailable or modified in 1.1.1c,
> ENGINE_cleanup

This still exists, but was converted from a function to a macro that
does nothing. You no longer need to call it. OpenSSL 1.1.0+ cleans
itself up automatically.

> RAND_cleanup

As above.

> CRYPTO_lock

This function was used to lock an internal OpenSSL lock. These locks are
not exposed any more. You will need to rewrite your code to not need
this function. There are some new lock related functions that exist that
are essentially thin wrappers around the platform threading library that
is in use. Depending on what you need it for they might suffice:

int CRYPTO_THREAD_read_lock(CRYPTO_RWLOCK *lock);
int CRYPTO_THREAD_write_lock(CRYPTO_RWLOCK *lock);
void CRYPTO_THREAD_lock_free(CRYPTO_RWLOCK *lock);



Now called RSA_PKCS1_OpenSSL().

> DH_get_ex_new_index> DSA_get_ex_new_index
> RSA_get_ex_new_index

All of these still exist but were just converted from functions to macros.


More information about the openssl-users mailing list