1

我正在尝试开发一个 RSA 引擎。在我尝试将我的引擎与 apache httpd 服务器集成之前,我的引擎一直在工作。从源代码安装httpd后,事实证明,我无法编译我的引擎代码了。我在尝试编译时收到以下错误(它之前正在编译,我没有对我的引擎代码进行任何更改)。

$gcc -fPIC -c r_engine.c
r_engine.c:29:8: error: redefinition of ‘struct rsa_meth_st’
struct rsa_meth_st {
    ^ 
In file included from /usr/include/openssl/crypto.h:131:0,
             from r_engine.c:7:
/usr/include/openssl/ossl_typ.h:147:16: note: originally defined here
typedef struct rsa_meth_st RSA_METHOD;

我的示例源代码如下所示,

#include <openssl/opensslconf.h>
#include <stdio.h>
#include <string.h>
#include <unistd.h>
#include <openssl/crypto.h>
#include <openssl/buffer.h>
#include <openssl/engine.h>
#include <openssl/rsa.h>
#include <openssl/bn.h>
#include <openssl/err.h>
#include <openssl/ossl_typ.h>
#include <fcntl.h>
#include <errno.h>
#include <stdlib.h>


/* Declared in ossl_typ.h */
/* typedef struct rsa_meth_st RSA_METHOD; */

//#ifndef INCLUDE_OSSL_TYP_H
//#define INCLUDE_OSSL_TYP_H

struct rsa_meth_st {

const char *name;
int (*rsa_pub_enc) (int flen, const unsigned char *from, unsigned char *to, RSA *rsa, int padding);
int (*rsa_pub_dec) (int flen, const unsigned char *from, unsigned char *to, RSA *rsa, int padding);
int (*rsa_priv_enc) (int flen, const unsigned char *from, unsigned char *to, RSA *rsa, int padding);
int (*rsa_priv_dec) (int flen, const unsigned char *from, unsigned char *to, RSA *rsa, int padding);
int (*rsa_mod_exp) (BIGNUM *r0, const BIGNUM *I, RSA *rsa, BN_CTX *ctx);
int (*bn_mod_exp) (BIGNUM *r, const BIGNUM *a, const BIGNUM *p, const BIGNUM *m, BN_CTX *ctx, BN_MONT_CTX *m_ctx);
int (*init) (RSA *rsa);
int (*finish) (RSA *rsa);
int flags;
char *app_data;
int (*rsa_sign) (int type, const unsigned char *m, unsigned int m_length, unsigned char *sigret, unsigned int *siglen, const RSA *rsa);
int (*rsa_verify) (int dtype, const unsigned char *m, unsigned int m_length, const unsigned char *sigbuf, unsigned int siglen, const RSA *rsa);
int (*rsa_keygen) (RSA *rsa, int bits, BIGNUM *e, BN_GENCB *cb);
};
//#endif


static int eng_rsa_pub_enc (int flen, const unsigned char *from, unsigned char *to, RSA * rsa, int padding){
    printf ("Engine is encrypting using pub key \n");
}

static int eng_rsa_pub_dec (int flen, const unsigned char *from,  unsigned char *to, RSA * rsa, int padding){
    printf ("Engine is decrypting using pub key \n");
}

static int eng_rsa_priv_enc (int flen, const unsigned char *from, unsigned char *to, RSA * rsa, int padding __attribute__ ((unused))){
    printf ("Engine is encrypting using priv key \n");
}

static int eng_rsa_priv_dec (int flen, unsigned char *from, unsigned char *to, RSA * rsa, int padding __attribute__ ((unused))){
    printf ("Engine is decrypting using priv key \n");
}

/* Constants used when creating the ENGINE */
static const char *engine_rsa_id = "r_engine";
static const char *engine_rsa_name = "Demo engine";

struct rsa_meth_st new_rsa =
    {
            "demo RSA Engine",
            eng_rsa_pub_enc,
            eng_rsa_pub_dec,
            eng_rsa_priv_enc,
            eng_rsa_priv_dec,
            NULL,
            NULL,
            NULL,
            NULL,
            RSA_FLAG_CACHE_PUBLIC | RSA_FLAG_CACHE_PRIVATE,
            NULL,
            NULL,
            NULL,
            NULL
    };

static int bind (ENGINE * e, const char *id){
printf ("%s\n", id);

if (!ENGINE_set_id (e, engine_rsa_id) ||

    !ENGINE_set_name (e, engine_rsa_name) ||

    !ENGINE_set_RSA (e, &new_rsa))

    return 0;

return 1;

}

IMPLEMENT_DYNAMIC_BIND_FN (bind)
IMPLEMENT_DYNAMIC_CHECK_FN ()

我注意到,使用新版本的操作系统,我的代码编译和运行良好。我知道这struct rsa_meth_st是在文件中定义的ossl_typ.h,但以前没有抛出任何错误,但为什么现在呢?

gcc version的是gcc (Ubuntu 5.4.0-6ubuntu1~16.04.12) 5.4.0 20160609

4

1 回答 1

1

这似乎是您一直在使用 OpenSSL 的两个不同分支进行构建的情况。在树枝1.0.21.1.1树枝之间,有不少类型是不透明的。这意味着在 中公开可见的某些结构定义在 中1.0.2是私有的1.1.1。你struct rsa_meth_st就是其中之一。因此,您的代码可以使用1.1.1但不能使用1.0.2.

您的问题的解决方案取决于您要使用的 OpenSSL 版本。无论哪种情况,您都必须从代码中删除整个struct rsa_meth_st定义。如果您打算使用1.0.2(现在不支持)构建,那么它的定义已经知道并通过头文件公开,因此您不需要自己重复。如果您打算使用 构建1.1.1,则必须使用RSA_meth_new()后跟相应的RSA_meth_set_()功能。

通常,当您看到像typedef struct rsa_meth_st RSA_METHOD您这样的结构时,通常不应该自己定义相同的结构,因为它已经在其他地方定义(可见或隐藏)。RSA_METHOD相反,您应该通过或更可能的方式引用该类型RSA_METHOD *

于 2021-04-13T01:44:23.290 回答