3413 – Openssh still using deprecated Openssl_3.0 api's

Bug 3413 - Openssh still using deprecated Openssl_3.0 api's

Summary: Openssh still using deprecated Openssl_3.0 api's

Status:	CLOSED WONTFIX

Alias:	None

Product:	Portable OpenSSH
Classification:	Unclassified
Component:	Miscellaneous (show other bugs)
Version:	8.9p1
Hardware:	PPC AIX

Importance:	P5 normal
Assignee:	Assigned to nobody

URL:
Keywords:

Depends on:
Blocks:

Reported:	2022-03-23 19:21 AEDT by Mayank
Modified:	2022-10-04 21:58 AEDT (History)
CC List:	2 users (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Mayank 2022-03-23 19:21:42 AEDT

Hi 

I tried to compile Openssh on AIX platform and what I saw that if I use openssl provided cryptographic functions, it is still making use of those functions which are declared Deprecated by the openssl (Deprecated in Openssl3.0)community .
So I want to know whether are there any plans to migrate the openssh code so that it should start using the alternative functions (non-deprecated) provided by the openssl community ?

For example : 

Openssl 3.0 header file rsa.h says RSA_meth_set1_name is deprecated.

OSSL_DEPRECATEDIN_3_0 int RSA_meth_set1_name(RSA_METHOD *meth,
                                             const char *name);


Thanks
Mayank

Comment 1 Darren Tucker 2022-04-29 13:39:25 AEST

We don't currently have any plans to migrate OpenSSL APIs (again).  We need to support LibreSSL and OpenSSL 1.x since the former is our upstream and the latter is still widely deployed.

Comment 2 Damien Miller 2022-06-24 15:02:53 AEST

We won't fix this until support for the 1.1x API is gone, but have added suppression of the warnings.

Comment 3 Damien Miller 2022-10-04 21:58:58 AEDT

Closing bugs from openssh-9.1 release cycle