Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[openssl] Set tls security level to automatic for OpenSSL 3.x #22945

Merged
merged 2 commits into from
Mar 12, 2024
Merged

[openssl] Set tls security level to automatic for OpenSSL 3.x #22945

merged 2 commits into from
Mar 12, 2024

Conversation

uilianries
Copy link
Member

@uilianries uilianries commented Mar 1, 2024
edited
Loading

Specify library name and version: openssl/3.x

The PR #21708 added the new option tls_security_level which is capable to configure a OpenSSL property. It's configured according to current versions available for 3.x, but OpenSSL moves fast it can be changed in the future, resulting in a misconfiguration in a solitary bump version PR.

Thanks to @jcar87 for pointing it, this PR keeps the current option, but instead, uses the default value from OpenSSL when not configured to an explicit value.

@uilianries
Set tls security level to automatic for openssl 3.x
b52bc4a 
Signed-off-by: Uilian Ries <uilianries@gmail.com>
@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Mar 1, 2024

🤖 Beep Boop! This pull request is making changes to 'recipes/openssl//'.

👋 @Hopobcn @Croydon you might be interested. 😉

@ghost
Copy link

ghost commented Mar 1, 2024

I detected other pull requests that are modifying openssl/3.x.x recipe:

This message is automatically generated by https://github.com/ericLemanissier/conan-center-conflicting-prs so don't hesitate to report issues/improvements there.

This was referenced Mar 1, 2024
Closed
Closed
Merged
Merged
@conan-center-bot

This comment has been minimized.

Sign in to view
@uilianries uilianries marked this pull request as draft March 1, 2024 12:02
@uilianries
Copy link
Member Author

Ops, Conan 1.x is not so smart. Gonna check it now.

@uilianries
convert OptionValue to string
6f0d9c1 
Signed-off-by: Uilian Ries <uilianries@gmail.com>
@uilianries uilianries self-assigned this Mar 1, 2024
@uilianries uilianries marked this pull request as ready for review March 1, 2024 12:19
uilianries
uilianries commented Mar 1, 2024
View reviewed changes
recipes/openssl/3.x.x/conanfile.py
@@ -386,7 +384,8 @@ def _configure_args(self):

args.append("no-fips" if self.options.get_safe("no_fips", True) else "enable-fips")
args.append("no-md2" if self.options.get_safe("no_md2", True) else "enable-md2")
args.append("-DOPENSSL_TLS_SECURITY_LEVEL=%s" % str(self.options.tls_security_level))
if str(self.options.tls_security_level) != "None":
Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Both None and 0 are negative boolean values. Plus, self.options.tls_security_level is a Conan object, it's converted according to the operation needed.

@conan-center-bot
Copy link
Collaborator

Conan v1 pipeline ✔️

All green in build 3 (6f0d9c1f6b3d1b868731475ef58a9dbf57e7a37a):

  • openssl/3.0.13:
    All packages built successfully! (All logs)

  • openssl/3.2.1:
    All packages built successfully! (All logs)

  • openssl/3.2.0:
    All packages built successfully! (All logs)

  • openssl/3.1.4:
    All packages built successfully! (All logs)

  • openssl/3.1.5:
    All packages built successfully! (All logs)

  • openssl/3.1.3:
    All packages built successfully! (All logs)

  • openssl/3.0.12:
    All packages built successfully! (All logs)

Conan v2 pipeline ✔️

Note: Conan v2 builds are now mandatory. Please read our discussion about it.

All green in build 2 (6f0d9c1f6b3d1b868731475ef58a9dbf57e7a37a):

  • openssl/3.2.1:
    All packages built successfully! (All logs)

  • openssl/3.1.5:
    All packages built successfully! (All logs)

  • openssl/3.2.0:
    All packages built successfully! (All logs)

  • openssl/3.1.3:
    All packages built successfully! (All logs)

  • openssl/3.1.4:
    All packages built successfully! (All logs)

  • openssl/3.0.12:
    All packages built successfully! (All logs)

  • openssl/3.0.13:
    All packages built successfully! (All logs)

@prince-chrismc prince-chrismc mentioned this pull request Mar 1, 2024
Open
@conan-center-bot conan-center-bot merged commit f3504d4 into conan-io:master Mar 12, 2024
43 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jcar87 jcar87 jcar87 approved these changes

@danimtb danimtb danimtb approved these changes

@AbrilRBS AbrilRBS Awaiting requested review from AbrilRBS

Assignees

@uilianries uilianries

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@uilianries @conan-center-bot @jcar87 @danimtb