git.sur5r.net Git - bacula/bacula/commit

author	Sebastian Andrzej Siewior <sebastian@breakpoint.cc>
	Thu, 9 Nov 2017 20:55:20 +0000 (21:55 +0100)
committer	Kern Sibbald <kern@sibbald.com>
	Sun, 19 Nov 2017 16:01:10 +0000 (17:01 +0100)
commit	4582761e377a2e1e4cbbbefd26e127b9488f3a48
tree	cf0ca1bb1f16a0b01ad81109c3200fc6a7b15779	tree \| snapshot
parent	8e0a705bdd71b4c6856dc63d5c681792de469c8d	commit \| diff

crypto: remove most of OpenSSL initcallbacks for 1.1

In OpenSSL 1.1 the thread model atomically initialized the library so
there is no need to invoke the init calls, like it was needed for 1.0.2
and earlier. The may be needed for non-standard inits like no-error
strings or so (not the case here). So the ifdef avoids them.

Also, in 1.1 there is no need to teach OpenSSL how to do locking and so
on. Infect, those functions are null-macros as for 1.0.2 compat. So
another ifdef avoids them, too.

I made four function static and removed them the header file since they
don't seem to be used outside of that openssl.c file.

This leaves us the 1.1 init part down to openssl_seed_prng(). I would
actually suggest to get rid of it. OpenSSL is able to gather some
entropy if needed. I don't think reading 2x 1024KiB from system's
entropy on each invocation of the program is wise. But I leave it to
the maintainer to make a decision, I just point it out.

Signed-off-by: Sebastian Andrzej Siewior <sebastian@breakpoint.cc>

bacula/src/lib/openssl.c		diff \| blob \| history
bacula/src/lib/openssl.h		diff \| blob \| history