[Cherry 4.0.x]: Explicitly initialize ssl #1674
Open
Commits on Oct 4, 2024
-
chore: remove redundant parenthesis
Ticket: None Signed-off-by: Daniel Skinstad Drabitzius <[email protected]> (cherry picked from commit a623641)
-
fix: explicitly initialize ssl
From the OpenSSL man pages: Numerous internal OpenSSL functions call OPENSSL_init_ssl(). Therefore, in order to perform nondefault initialisation, OPENSSL_init_ssl() MUST be called by application code prior to any other OpenSSL function calls. See: https://docs.openssl.org/3.3/man3/OPENSSL_init_ssl/#description This fixes errors where e.g. the openssl config configures ssl_conf, which requires ssl to be initialized. Ticket: MEN-7549 Changelog: Fix error while loading OpenSSL config file, by explicitly initializing the SSL context prior to loading. Without the explicit initialisation of SSL, the config might not be properly loaded if e.g. it has sections specifying ssl settings. This was the case with the example configuration for OpenSSL 1.1.1w from Debian Bullseye. Signed-off-by: Daniel Skinstad Drabitzius <[email protected]> (cherry picked from commit 4a3d82b)
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.