-
Notifications
You must be signed in to change notification settings - Fork 3k
New issue
Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? # to your account
openssl 3.0.0 compatible erlang version #4577
Comments
Yes, support for OpenSSL 3.0 API is planned, but not before OTP-25.0. |
Unable to load crypto library. Failed with error: FIPS_mode APIs will be deprecated in openssl 3.0.0 and will no longer be compatible for erlang |
erlang team, |
For Homebrew users in mac: openssl@3 is now installed if you invoke For now we need to use
|
To follow this ticket. |
The crypto app in OTP can now be compiled, linked and used with the new OpenSSL 3.0 cryptolib. The fix is merged to maint and master, and will be released in OTP-24.2 currently scheduled for the middle of December. It has not yet been extensively tested and is not recommended for other usages than experiments and alpha testing. There are no guaranties that it works, not even together with other OTP applications like for example SSL and SSH, although there are no known errors. Compiling and linking with OpenSSL 3.0 cryptolib in compatibility modes (for example to behave as 1.1.1) are not tested. It is not tested with external providers nor FIPS mode. Deprecated functions in the OpenSSL 3.0 cryptolib must not be disabled as OTP/crypto still uses some of the deprecated API functions. The gcc flag -Wno-deprecated-declarations is set to prevent deprecation warnings to be printed when compiling. The plan is now to gradually increase testing and to replace the deprecated APIs. As usual are comments, error reports and pull requests welcome! |
This first support will be released soon in OTP-24.2 and more later in OTP-24.3 |
I found the following cryptic error message using OTP version
We solved it by upgrading the OTP version to |
Can we update the installation instructions to remove the the part advising to pin OpenSSL to version 1.1? Erlang 25.2.2 compiles fine for me with OpenSSL 3 now. |
While compiling observed that erlang is not compatible with openssl 3.0.0.
Erlang is using deprecated APIs which are not present in openssl 3.0.0 (alpha).
Build status:
Build Failed due to RSA_, HMAC_, ENGINE_* etc deprecated APIs
Please provide erlang release compatible to openssl 3.0.0
The text was updated successfully, but these errors were encountered: