On 2022/11/26 20:21, Volker Schlecht wrote:
> +# OpenSSL used: {X,Ed}25519 via EVP, SSL_CIPHER_standard_name and
> +# 5-10 other missing symbols/defines.We have EVP X25519/Ed25519 now, but there are a whole stack of other OpenSSL things it tries to use, I started making a list but there are too many - some are obviously easy enough to workaround but if I understand correctly, I think some are not and are things that libressl doesn't want. At this point I think it might make sense to change the comment to something like "uses a wide range of SSL API and only really supports boring/openssl". FWIW this is as far as I got: BN_secure_new CRYPTO_secure_malloc_init CRYPTO_secure_malloc_initialized CRYPTO_secure_used ECDH_compute_key ERR_LIB_ASYNC ERR_LIB_OSSL_STORE ERR_LIB_SM2 EVP_CIPH_OCB_MODE EVP_DigestFinalXOF EVP_F_EVP_DIGESTFINALXOF EVP_MD_FLAG_XOF EVP_PKEY_CTX_set_dsa_paramgen_q_bits EVP_PKEY_ED448 EVP_PKEY_X448 EVP_PKEY_X448 EVP_R_NOT_XOF_OR_INVALID_LENGTH NID_auth_psk OPENSSL_INIT_SETTINGS OPENSSL_INIT_new OPENSSL_clear_free OPENSSL_memdup OPENSSL_secure_clear_free OPENSSL_secure_zalloc SSL_CIPHER_standard_name SSL_CTX_set1_sigalgs_list SSL_SESSION_get0_ticket SSL_client_hello_get0_ciphers SSL_client_hello_get0_ext SSL_get_shared_sigalgs SSL_set_cert_cb
