hadoop-common-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Allen Wittenauer (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (HADOOP-14597) Native compilation broken with OpenSSL-1.1.0 because EVP_CIPHER_CTX has been made opaque
Date Tue, 18 Jul 2017 20:15:00 GMT

    [ https://issues.apache.org/jira/browse/HADOOP-14597?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16092114#comment-16092114
] 

Allen Wittenauer commented on HADOOP-14597:
-------------------------------------------

I'm +1, but with some caveats that the unit tests in this part of the world are a bit broken.
I was using:

{code}
mvn test -Dtest='*ssl*' -Pnative -Drequire.openssl -Drequire.test.libhadoop
{code}

to test on both OS X and Linux and with both OpenSSL 1.0x and 1.1.x.  It revealed that if
I pass in -Dopenssl.prefix=foo (to point to a different OpenSSL), the tests always fail. 
This appears to be more of a build problem than anything else.  If the standard OpenSSL library
is used (which in my case was 1.0x on Linux), it works fine.

I think the patch is good enough to go in to unblock OpenSSL 1.1 users.  We should probably
do a follow-up to figure out why loading the libhadoop.so and openssl libraries during unit
testing is failing.

> Native compilation broken with OpenSSL-1.1.0 because EVP_CIPHER_CTX has been made opaque
> ----------------------------------------------------------------------------------------
>
>                 Key: HADOOP-14597
>                 URL: https://issues.apache.org/jira/browse/HADOOP-14597
>             Project: Hadoop Common
>          Issue Type: Improvement
>    Affects Versions: 3.0.0-alpha4
>         Environment: openssl-1.1.0
>            Reporter: Ravi Prakash
>            Assignee: Ravi Prakash
>         Attachments: HADOOP-14597.00.patch, HADOOP-14597.01.patch, HADOOP-14597.02.patch,
HADOOP-14597.03.patch, HADOOP-14597.04.patch
>
>
> Trying to build Hadoop trunk on Fedora 26 which has openssl-devel-1.1.0 fails with this
error
> {code}[WARNING] /home/raviprak/Code/hadoop/trunk/hadoop-common-project/hadoop-common/src/main/native/src/org/apache/hadoop/crypto/OpensslCipher.c:
In function ‘check_update_max_output_len’:
> [WARNING] /home/raviprak/Code/hadoop/trunk/hadoop-common-project/hadoop-common/src/main/native/src/org/apache/hadoop/crypto/OpensslCipher.c:256:14:
error: dereferencing pointer to incomplete type ‘EVP_CIPHER_CTX {aka struct evp_cipher_ctx_st}’
> [WARNING]    if (context->flags & EVP_CIPH_NO_PADDING) {
> [WARNING]               ^~
> {code}
> https://github.com/openssl/openssl/issues/962 mattcaswell says
> {quote}
> One of the primary differences between master (OpenSSL 1.1.0) and the 1.0.2 version is
that many types have been made opaque, i.e. applications are no longer allowed to look inside
the internals of the structures
> {quote}



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)

---------------------------------------------------------------------
To unsubscribe, e-mail: common-issues-unsubscribe@hadoop.apache.org
For additional commands, e-mail: common-issues-help@hadoop.apache.org


Mime
View raw message