undefined symbol: FIPS_mode

[CX-ZG]

My lua-resty-openidc encountered an error while running. I haven't solved it yet： 2024/01/23 10:40:58 [error] 17320#0: *2 lua entry thread aborted: runtime error: /usr/local/openresty/site/lualib/resty/openssl.lua:288: /www/server/nginx/luajit/lib/libluajit-5.1.so.2: undefined symbol: FIPS_mode stack traceback: coroutine 0: [C]: in function ＇__index＇ /usr/local/openresty/site/lualib/resty/openssl.lua:288: in function ＇get_fips_mode＇ /usr/local/openresty/site/lualib/resty/session/utils.lua:42: in function ＇is_fips_mode＇ /usr/local/openresty/site/lualib/resty/session/utils.lua:615: in function ＇derive_aes_gcm_256_key_and_iv＇ /usr/local/openresty/site/lualib/resty/session.lua:940: in function ＇save＇ /usr/local/openresty/site/lualib/resty/session.lua:1908: in function ＇save＇ /usr/local/openresty/site/lualib/resty/openidc.lua:385: in function ＇openidc_authorize＇ /usr/local/openresty/site/lualib/resty/openidc.lua:1543: in function ＇authenticate＇

[bungle]

@CX-ZG most likely difference in OpenSSL version (are you on 1.1.x?). Which version are you running?

[bungle]

Perhaps we need to pcall this and default to false in case it fails.

[mioshare]

In the openssl-1.1.1w version, I encountered the same error. When I used local status, res = pcall(require("resty.openssl").get_fips_mode()), I got the same error. Later, I commented out the line IS_FIPS = require "resty.session.utils".is_fips_mode() in utils.lua and changed it to IS_FIPS = false, which resolved the issue. However, I'm not sure if this modification affects the overall functionality.