wpa_supplicant and OpenSSL 3.0

Jouni Malinen j at w1.fi
Sat Mar 12 00:44:14 PST 2022


On Fri, Mar 11, 2022 at 06:18:40AM +0000, Bala Duvvuri wrote:
> I went through the change log for wpa_supplicant version 2.10
> 
>             * added support for using OpenSSL 3.0
> 
> My understanding is as part of the changes legacy provider is still loaded and we need to include the compiler flag "-Wno-error=deprecated-declarations"
> 
> Reference - https://w1.fi/cgit/hostap/commit/?id=ff2eccbd
> 
> I still see reference to the deprecated API's, ex: EC_KEY_new_by_curve_name
> 
> My question is if there is a plan in wpa_supplicant to remove deprecated OpenSSL 3.0 API's and use the default provider and not the legacy provider?

It would seem reasonable to update API use to the new preferred API over
time. Unfortunately, some of those cases can be a bit inconvenient since
support for older OpenSSL versions needs to be maintained.

As far as the legacy provider is concerned, it cannot really be removed
without losing existing functionality that is still widely used in real
world deployments.

-- 
Jouni Malinen                                            PGP id EFC895FA



More information about the Hostap mailing list