1. 解释什么是OPENSSL_NO_DEPRECATED_3_0 OPENSSL_NO_DEPRECATED_3_0是一个宏定义,用于在OpenSSL库中隐藏或禁用所有在OpenSSL 3.0版本中被标记为废弃(deprecated)的公共符号。当这个宏被定义时,编译器将忽略这些废弃的API,从而避免在编译时产生关于它们的警告或错误。
If 'no-deprecated' is also # given, do not compile support for interfaces deprecated # up to and including the specified OpenSSL version. # # no-hw-xxx do not compile support for specific crypto hardware. # Generic OpenSSL-style methods relating to this support # are always compiled but ...
DIR="\"/opt/nginx/openssl/lib64/ossl-modules\"" -DOPENSSL_BUILDING_OPENSSL -DZLIB -DZLIB_SHARED -DNDEBUG -MMD -MF crypto/ec/libcrypto-lib-ec_deprecated.d.tmp -MT crypto/ec/libcrypto-lib-ec_deprecated.o -c -o crypto/ec/libcrypto-lib-ec_deprecated.o crypto/ec/ec_deprecated.c gcc ...
# (optional, default: no) ess_cert_id_chain = no # Must the ESS cert id chain be included? # (optional, default: no)
预处理器里添加2个定义:CRT_SECURE_NO_WARNINGS;_WINSOCK_DEPRECATED_NO_WARNINGS; 附加依赖项:libssl.lib;openssl.lib;libcrypto.lib;liblegacy.lib; 最后将前面生成的cert.pem和key.pem放到exe目录下,为什么放到这个目录,是因为下面的代码用到的这2个文件是当前目录,不管怎么样,只要能找到这2个文件即可。
no-zlib-dynamic [default] IsMK1MF=1 CC =cl CFLAG =-DOPENSSL_THREADS -DDSO_WIN32 -W3 -WX -Gs0 -GF -Gy -nologo -DOPENSSL_SYSNAME_WIN32 -DWIN32_LEAN_AND_MEAN -DL_ENDIAN -D_CRT_SECURE_NO_DEPRECATE -D_WINSOCK_DEPRECATED_NO_WARNINGS -DOPENSSL_BN_ASM_PART_WORDS -DOPENSSL_IA32_SSE...
defaultpreserve=no# keep passed DN ordering# A few difference way of specifying how similar the request should look# For type CA, the listed attributes must be the same, and the optional# and supplied fields are just that :-)policy=policy_match# For the CA policy[policy_match]countryName=...
# SHA-1 is deprecated, so use SHA-2 instead. default_md = sha256 name_opt = ca_default cert_opt = ca_default default_days = 375 preserve = no policy = policy_strict [ policy_strict ] # The root CA should only sign intermediate certificates that match. ...
# Optionally, specify some defaults.prompt=noinput_password=123456default_bits=2048distinguished_name=req_distinguished_name string_mask=utf8only # SHA-1is deprecated, so use SHA-2instead. default_md=sha256 # Extension to add when the-x509 option is used. ...
OpenSSL libraries to read OpenSSL's openssl.cnf configuration file, but --ssl-fips-mode is deprecated and will be removed in a future release.How to repeat:1) Use a version of MySQL 8.0.34 that has been compiled with a FIPS-capable OpenSSL 3.0.9. 2) Ensure MySQL is configured to run...