Silent Crypt::CBC::encode() warning about deprecated opensslv1 PBKDF

$ perl -MSession::Storage::Secure -e 'Session::Storage::Secure->new(secret_key=>1)->encode()' WARNING: The key derivation method "opensslv1" is deprecated. Using -pbkdf=>'pbkdf2' would be better. Pass -nodeprecate=>1 to inhibit this message. at /usr/share/perl5/vendor_perl/Session/Storage/Secure.pm line 213. New CBC-Encrypt-3.01 defaults to -pbkdf => 'opensslv1' to preserve compatibility and warns about that at the same time. This silents the warning until a plan for a migration to the stronger PBKDF is implemented in Session::Storage::Secure. <#8>
dagolden · Mar 16, 2021 · e50a4c0 · e50a4c0
1 parent 8b16fba
commit e50a4c0
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/lib/Session/Storage/Secure.pm b/lib/Session/Storage/Secure.pm
@@ -207,7 +207,7 @@ sub encode {
     my $salt = $self->_irand;
     my $key = hmac_sha256( $salt, $self->secret_key );
 
-    my $cbc = Crypt::CBC->new( -key => $key, -cipher => 'Rijndael' );
+    my $cbc = Crypt::CBC->new( -key => $key, -cipher => 'Rijndael', -pbkdf => 'opensslv1', -nodeprecate => 1 );
     my ( $ciphertext, $mac );
     eval {
         $ciphertext = $self->transport_encoder->( $cbc->encrypt( $self->_freeze($data) ) );