Find modern replacement for LuaCrypto: luaossl ?

[vschiavoni]

The LuaCrypto project seems to be abandoned since two years without newer releases or updates since.
The compilation of the Splay-related modules outputs tons of warnings, especially on OS X, that can eventually break the compatibility.

There is a viable alternative to it:
https://github.com/wahern/luaossl

We use LuaCrypto's methods in 4 places:

• install_check.lua:require"crypto"
  • easy to fix : just change to require"openssl"
• modules/splay/restricted_io.lua:local crypto = require"crypto"
  • we use the crypto.evp module to compute MD5 hashes in various places within this module.
• modules/splay/urpc.lua:local crypto = require"crypto"
  • we use the following code to compute the base key of each outgoing message:

base_key = crypto.evp.new("sha1"):digest(math.random()..tostring(seed))

again using the crypto.evp module;

• splayd.lua:crypto = require"crypto"
  • we use it to compute SHA1 digests of strings to generate per-job filesystems

We also use LuaSec to establish secure connections between the controller and the splay daemons:

if SSL and status then
        -- TLS/SSL client parameters
        local params = {
                mode = "client",
                protocol = "sslv3",
                verify = "none",
                options = "all",
                -- Optional if luasec 0.21+
                key = "key.pem",
                certificate = "client.pem",
        }
        so, err = ssl.wrap(so, params)
        if not so then
                print("Error creating SSL socket:", err)
                os.exit()
        end
        status, err = so:dohandshake()
end

We need to check if luaoss can solve both problems at once, by letting us import only 1 library and use a modern library at the same time.