[New-bugs-announce] [issue40479] Port _hashlib to OpenSSL 3.0.0
Christian Heimes
report at bugs.python.org
Sun May 3 05:23:23 EDT 2020
New submission from Christian Heimes <lists at cheimes.de>:
OpenSSL 3.0.0-alpha1 was releases about a week ago. OpenSSL 1.1.x APIs are still functional. However some APIs have been deprecated and FIPS (usedforsecurity flag) is no longer functional.
* One shot HMAC() is deprecated and should be replaced with EVP_MAC API calls
* ERR_func_error_string() is deprecated
* OpenSSL has introduced a new concept of crypto providers (OSSL_PROVIDER), library context (OPENSSL_CTX) and additional flags. A new function EVP_MD_fetch() has been introduced.
* FIPS support has been rewritten and is now shipped with OpenSSL 3.0.0. EVP_MD_CTX_FLAG_NON_FIPS_ALLOW is no longer supported. FIPS state is no longer part of EVP_MD_CTX but of EVP_MD.
See https://wiki.openssl.org/index.php/OpenSSL_3.0
----------
assignee: christian.heimes
components: SSL
messages: 367962
nosy: christian.heimes, gregory.p.smith
priority: normal
severity: normal
status: open
title: Port _hashlib to OpenSSL 3.0.0
type: enhancement
versions: Python 3.7, Python 3.8, Python 3.9
_______________________________________
Python tracker <report at bugs.python.org>
<https://bugs.python.org/issue40479>
_______________________________________
More information about the New-bugs-announce
mailing list