[Buildroot] [PATCH 1/1] host-python: Fix building with OpenSSL 1.1.0.

Nicolas Cavallari Nicolas.Cavallari at green-communications.fr
Wed Nov 16 08:53:56 UTC 2016

On 15/11/2016 18:00, Thomas Petazzoni wrote:
> Hello,
> On Tue, 15 Nov 2016 17:02:40 +0100, Nicolas Cavallari wrote:
>> OpenSSL 1.1.0 now hides some internal structures and deprecate some
>> methods and constants.  This breaks the compilation of host-python
>> since it uses the system's openssl.  See
>> https://bugs.python.org/issue26470 for details.
>> Even if buildroot patches host-python to not compile the 'ssl' module,
>> the '_ssl' module is still compiled and fails.  Another module,
>> '_hashlib' also uses openssl's hash algorithms and is also broken by the
>> bump to OpenSSL 1.1.0.
>> if both '_ssl' and '_hashlib' are disabled, host-python compiles
>> but other packages are now broken, like the crda packages which
>> uses the hash functions.
> Are you sure? Many of the autobuilder instances don't have the OpenSSL
> development files installed on the host, which means that OpenSSL
> support is not enabled in host-python, and crda would fail to build.

Python seems to have a fallback for hash algorithms if openssl cannot
be used. I failed to notice it since using DISABLED_MODULES='_ssl
_hashlib' does not enable it.

> I think that a better fix for this problem is to really disable OpenSSL
> in Python. Indeed, we shouldn't rely on the system-provided OpenSSL:
> OpenSSL has never been part of the Buildroot "core dependencies".

Will do that, even if the patch will be a bit intrusive in setup.py

More information about the buildroot mailing list