> On Dec 13, 2016, at 8:34 AM, Alexander Kanavin > <alexander.kana...@linux.intel.com> wrote: > > On 12/09/2016 06:11 PM, Jeffrey Johnson wrote: >> Good: you appear to have +beecrypt (for digests) and +libtomcrypt >> (recommended >> because of ECDSA and stable) and +openssl (what Yocto wants last I heard). > > Speaking of openssl, it was actually quietly being disabled, because I didn't > have the -dev package installed. After the openssl headers appeared, there's > a bunch of new errors: > > rpmssl.c: In function ‘rpmsslGenerate’: > rpmssl.c:629:29: error: dereferencing pointer to incomplete type ‘EVP_PKEY > {aka struct evp_pkey_st}’ > if (EVP_PKEY_type(ssl->pkey->type) == EVP_PKEY_EC) { > ^~ > What this means is that rpm needs to be ported to openssl 1.1 - they made a > lot of previously open structures opaque in that version, with accessor > functions (and maybe there are other issues). >
Likely: Fedora/Centos tend to back port fixes rather than upgrade versions: $ rpm -q openssl openssl-1.0.2j-1.fc24.x86_64 FWIW, the versions of pre-reqs are listed in INSTALL. > I'm not sure why yocto wants openssl support, Mark should know that. > I’d recommend libtomcrypt because both complete and slowly changing. There are now github repositories as well. 73 de Jeff > Alex > > ______________________________________________________________________ > RPM Package Manager http://rpm5.org > Developer Communication List rpm-devel@rpm5.org