[erlang-questions] OpenSSL 1.0 removed md2 and this affects Erlang/OTP builds.

Michal Niec michal.niec@REDACTED
Wed Oct 5 14:18:31 CEST 2011


On 5 paź 2011, at 14:04, Jesper Louis Andersen wrote:

> A modern Ubuntu (11.10 - will be released later this month) ships with
> a more recent OpenSSL library. In this SSL-library it has been decided
> to kill md2 as a message digest algorithm, probably due to its
> appalling cryptographic strength. This yields a problem with building
> the "dev" branch of Erlang/OTP:

Opensuse 11.4 (which is current release) use openssl 1.0.0 and also lacks of md2. From openssl version >1.0.0 MD2 is disabled by default. However Fedora 15, Centos 6 have openssl 1.0.0 versions with md2 enabled.

> gcc -c -o .... /home/jlouis/Projects/otp/erts/emulator/sys/unix crypto.c
> crypto.c:46:25: fatal error: openssl/md2.h: No such file or directory
> compilation terminated.

Dev branch on github contains problematic md2 support, but in  R14B04 release this feature is removed.

Michal Niec

> _______________________________________________
> erlang-questions mailing list
> erlang-questions@REDACTED
> http://erlang.org/mailman/listinfo/erlang-questions

More information about the erlang-questions mailing list