[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Potential spiped 1.6.3 release -- please test

To: Peter Pentchev <roam@ringlet.net>
Subject: Re: Potential spiped 1.6.3 release -- please test
From: Graham Percival <gperciva@tarsnap.com>
Date: Tue, 21 Jan 2025 15:10:10 -0800
Cc: Colin Percival <cperciva@tarsnap.com>, spiped@tarsnap.com
In-reply-to: <Z4-NYk_qxKapqKXy@straylight.m.ringlet.net>
References: <bd5b60d1-9fc5-48e2-b67c-da5470366316@tarsnap.com> <Z4-NYk_qxKapqKXy@straylight.m.ringlet.net>

On 2025-01-21, Peter Pentchev wrote:
> > * portability and standards compliance fixes.
> 
> Thanks for the fix for the OpenSSL 3.x deprecated functions!
> I kept meaning to drop you a note about that (there was a Debian patch that
> defined OPENSSL_SUPPRESS_DEPRECATED), and I kept putting it off...

I've wondered about using OPENSSL_SUPPRESS_DEPRECATED, but I'm not
convinced that it's intended to be public.  That #define is not in
NEWS.md; it's mentioned in CHANGES.md, but in the context of
configuration headers and "internal hacks".

Our current method is:
- try to compile with AES_encrypt()
- if that fails, add -Wno-deprecated to CFLAGS and try again; if the
  modified attempt succeeds, add it to the CFLAGS for the relevant
  files.

I'm not certain this is the best method, but I think it's slightly safer
than OPENSSL_SUPPRESS_DEPRECATED.

Cheers,
- Graham

Follow-Ups:
- Re: Potential spiped 1.6.3 release -- please test
  - From: Peter Pentchev <roam@ringlet.net>

References:
- Potential spiped 1.6.3 release -- please test
  - From: Colin Percival <cperciva@tarsnap.com>
- Re: Potential spiped 1.6.3 release -- please test
  - From: Peter Pentchev <roam@ringlet.net>

Prev by Date: Re: Potential spiped 1.6.3 release -- please test
Next by Date: Re: Potential spiped 1.6.3 release -- please test
Previous by thread: Re: Potential spiped 1.6.3 release -- please test
Next by thread: Re: Potential spiped 1.6.3 release -- please test
Index(es):
- Date
- Thread