diff options
| author | Frediano Ziglio <freddy77@gmail.com> | 2022-05-18 12:57:06 +0100 |
|---|---|---|
| committer | Frediano Ziglio <freddy77@gmail.com> | 2022-06-29 07:57:53 +0100 |
| commit | 58d375e5eadc6fb9e587e99fd81adcb95d01e8d6 (patch) | |
| tree | 5c86c1d59f0586d3af76b6d45d44181accf18933 | |
| parent | 8a1961104974587883e5ac3ebf4bd057ac556d12 (diff) | |
Replace EVP_PKEY_cmp with EVP_PKEY_eq
EVP_PKEY_cmp was made obsolete in OpenSSL.
The main reason is that the return value is not coherent with
other *_cmp functions.
So it was replaced by EVP_PKEY_eq, which does the same.
Rename to avoid a deprecation warning on newer OpenSSL releases.
Signed-off-by: Frediano Ziglio <freddy77@gmail.com>
| -rw-r--r-- | common/ssl_verify.c | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/common/ssl_verify.c b/common/ssl_verify.c index 9ee8059..f12628a 100644 --- a/common/ssl_verify.c +++ b/common/ssl_verify.c @@ -72,7 +72,11 @@ static int verify_pubkey(X509* cert, const char *key, size_t key_size) goto finish; } +#if OPENSSL_VERSION_NUMBER >= 0x30000000 + ret = EVP_PKEY_eq(orig_pubkey, cert_pubkey); +#else ret = EVP_PKEY_cmp(orig_pubkey, cert_pubkey); +#endif if (ret == 1) { spice_debug("public keys match"); |