-
Notifications
You must be signed in to change notification settings - Fork 30
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Cannot compile with OpenSSL 1.1.0l #75
Comments
I'm not sure how hard it would be to compile MoCOCrW against OpenSSL 1.1.0 while disabling the newer features. Is using OpenSSL 1.1.1 an option for you? As for the CMake warning, we should probably add a |
It could be a feasible option, we could try a test. We need your library because we are implementing a standard for secured communications in the field of vehicular communications (this link contains a piece of the whole infrastructure: see paragraph 3.5) and we already developed signature and verification using this OpenSSL version. My concern is to cancel the work done so far, but today we can perform some tests. |
I've installed openssl@1.1.1, but this error has been thrown:
|
I couldn't find a section 3.5 in this document. Can you elaborate?
Which compiler and compiler version are you using?
We use |
I'm sorry, the section is at paragraph 5.3: there you can see a simple scenario and signed messages should be exchanged between vehicles and encrypted messages should be used to communicate with the PKI. Regarding the problem, those are the compilers we are using:
Using Can I submit a pull request? Should I change something else other than those two lines? |
explicit_bzero(3) is a glibc extension and may not be available, for example on systems using musl. We have a good alternative in util::vectorCleanse(), which uses OPENSSL_cleanse(3), so use that instead. See: bmwcarit#75
I've opened a pull request for this now in #76. |
Ok, thank you very much! |
It seems GCC 6 just didn't yet have the warning we're disabling with
Can you provide the output of the failing test? |
explicit_bzero(3) is a glibc extension and may not be available, for example on systems using musl. We have a good alternative in util::vectorCleanse(), which uses OPENSSL_cleanse(3), so use that instead. See: #75
This is the output:
|
Are you running the build and tests with root privileges? If so, please don't do that. |
It is a problem since I'm using a Docker image. By running test as non-root user there aren't problems, but in "production" can this problem cause failures? |
Hi, In general, one should avoid using root whever possible, so this design follows the principle of least privilege. I fear that I don't understand about which issues in "production" you are concerned. |
Ok, I understood the problem. |
The BioTest testcase that fails failed because it assumes that it will not have write access to |
Ok, perfectly! |
Hello!
I'm trying to compile this library in a docker image with OpenSSL at version 1.1.0l, but when I start to compile the process fails immediately:
The branch I'm trying to compile is openssl1.1.
Can you help me?
The text was updated successfully, but these errors were encountered: