OpenSSLTest is not using the OpenSSL Provider

[reta]

Signed-off-by: Andriy Redko andriy.redko@aiven.io

Description

OpenSSLTest should be using the OpenSSL Provider. There are few issues with netty-tcnative and OpenSSL:

• it uses OpenSSL 1.0 and needs compat-openssl10
• netty-tcnative uses old OpenSSL version even though newer versions are available during runtime netty/netty-tcnative#746
• [Upgrade] Use OpenSSL v3 netty/netty-tcnative#742
• Link against to the libcrypt.so.2 netty/netty-tcnative#703

Issues Resolved

Closes #2208

Is this a backport? If so, please add backport PR # and/or commits #

Testing

[Please provide details of testing done: unit testing, integration testing and manual testing]

Check List

• New functionality includes testing
• New functionality has been documented
• Commits are signed per the DCO using --signoff

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.
For more information on following Developer Certificate of Origin and signing off your commits, please check here.

[codecov-commenter]

Codecov Report

Merging #2219 (00c7a05) into main (89a11c5) will decrease coverage by 0.03%.
The diff coverage is n/a.

@@             Coverage Diff              @@
##               main    #2219      +/-   ##
============================================
- Coverage     61.06%   61.03%   -0.04%     
+ Complexity     3269     3268       -1     
============================================
  Files           259      259              
  Lines         18335    18335              
  Branches       3248     3248              
============================================
- Hits          11196    11190       -6     
- Misses         5553     5559       +6     
  Partials       1586     1586              

Impacted Files	Coverage Δ
...ecurity/configuration/StaticResourceException.java	0.00% <0.00%> (-25.00%)	⬇️
...nsearch/security/dlic/rest/api/AuditApiAction.java	63.82% <0.00%> (-4.26%)	⬇️
...ic/auth/ldap/backend/LDAPAuthorizationBackend.java	57.73% <0.00%> (-0.57%)	⬇️
...ensearch/security/ssl/DefaultSecurityKeyStore.java	68.04% <0.00%> (+0.20%)	⬆️

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.

[DarshitChanpura]

Bwc tests are broken on main. Tracking issue here: #2221

[DarshitChanpura]

Bwc tests are broken on main. Tracking issue here: #2221

@reta this should be unblocked now

[peternied]

@reta Any thoughts on this PR? Seems like this work has stalled

[reta]

@reta Any thoughts on this PR? Seems like this work has stalled

@peternied I think we decided to drop support for OpenSSL (due to numerous limitations mentioned in description), the pull request in the current form will work only if OpenSSL 1.0.0 is present in the system (which is way outdated). The other options which some projects are doing is to prebuild netty-tcnative-openssl-static-{os_arch} binaries (since those are not available by default). WDYT?

[peternied]

I'm going to close this pull request. If anything changes we can reopen in the future.