[oe] hostapd and openssl version mismatch

NIDHI.CHADHA2 at cognizant.com NIDHI.CHADHA2 at cognizant.com
Fri Jun 10 05:48:47 UTC 2016 

Hi All,

Reference to oe-core branch  Jethro
Revision: 69b1e25a53255433262178b91ab3e328768ad725

Hostapd 2.4-r0 build with openssl version 1.0.2d has an issue in compilation due to no
Compile time support of md4 in 1.0.2d version of openssl .
The compilation issue is undefined reference to EVP_md4 , which is defined
In openssl/1.0.2d-r0/openssl-1.0.2d/crypto/evp/evp.h under the MACRO OPENSSL_NO_MD4.
The macro OPENSSL_NO_MD4 is enabled only if openssl configuration and generated makefile define "no-md4"

// place where EVP_md4 is defined
openssl/1.0.2d-r0/openssl-1.0.2d/crypto/evp/evp.h
# ifndef OPENSSL_NO_MD4
const EVP_MD *EVP_md4(void);
# endif

//Makefile which configures no-md4 flag
CONFIGURE_ARGS : no-md4
DEPFLAG= -DOPENSSL_NO_MD4

Hostapd depends on md4 for number of EAP methods which require md4 support .
To disable the use of EVP_md4 function call in function md4_vector , macro defined in
OPENSSL_NO_MD4 should be used . In case of OPENSSL_NO_MD4 enabled ,
md4_vector returns the value returned by function
openssl_digest_vector(EVP_md4(), num_elem, addr, len, mac);

following patch should be applied in crypto_openssl.c

--- crypto_openssl.c_ori               2016-06-07 12:51:35.571749090 +0530
+++ crypto_openssl.c    2016-06-07 12:37:54.967772380 +0530
@@ -95,7 +95,11 @@

 int md4_vector(size_t num_elem, const u8 *addr[], const size_t *len, u8 *mac)
{
+#ifdef OPENSSL_NO_MD4
+             return -1;
+#else
               return openssl_digest_vector(EVP_md4(), num_elem, addr, len, mac);
+#endif
}

Has anyone faced this issue or Jethro branch has already taken care or this is just a version mismatch for openssl and hostpad?


Thanks
Nidhi


This e-mail and any files transmitted with it are for the sole use of the intended recipient(s) and may contain confidential and privileged information. If you are not the intended recipient(s), please reply to the sender and destroy all copies of the original message. Any unauthorized review, use, disclosure, dissemination, forwarding, printing or copying of this email, and/or any action taken in reliance on the contents of this e-mail is strictly prohibited and may be unlawful. Where permitted by applicable law, this e-mail and other e-mail communications sent to and from Cognizant e-mail addresses may be monitored.

More information about the Openembedded-devel mailing list