[exim-dev] [Bug 2020] New: DANE fails with LibreSSL

Góra strony
Delete this message
Reply to this message
Autor: admin
Data:  
Dla: exim-dev
Temat: [exim-dev] [Bug 2020] New: DANE fails with LibreSSL
https://bugs.exim.org/show_bug.cgi?id=2020

            Bug ID: 2020
           Summary: DANE fails with LibreSSL
           Product: Exim
           Version: 4.88
          Hardware: x86-64
                OS: OpenBSD
            Status: NEW
          Severity: bug
          Priority: medium
         Component: Experimental
          Assignee: nigel@???
          Reporter: km@???
                CC: exim-dev@???


Created attachment 970
--> https://bugs.exim.org/attachment.cgi?id=970&action=edit
patch to fix error

Building DANE on OpenBSD (which uses LibreSSL fork of OpenSSL) fails:

dane-openssl.c: In function 'add_akid':
dane-openssl.c:363: warning: implicit declaration of function
'ASN1_STRING_get0_data'
dane-openssl.c:363: error: invalid type argument of 'unary *'
dane-openssl.c: In function 'wrap_issuer':
dane-openssl.c:502: warning: implicit declaration of function
'X509_getm_notBefore'
dane-openssl.c:502: warning: passing argument 1 of 'X509_gmtime_adj' makes
pointer from integer without a cast
dane-openssl.c:503: warning: implicit declaration of function
'X509_getm_notAfter'
dane-openssl.c:503: warning: passing argument 1 of 'X509_gmtime_adj' makes
pointer from integer without a cast
dane-openssl.c: In function 'set_trust_anchor':
dane-openssl.c:616: warning: implicit declaration of function
'X509_STORE_CTX_get0_untrusted'
dane-openssl.c:616: warning: initialization makes pointer from integer without
a cast
dane-openssl.c: In function 'check_end_entity':
dane-openssl.c:727: warning: implicit declaration of function
'X509_STORE_CTX_get0_chain'
dane-openssl.c:733: warning: implicit declaration of function
'X509_STORE_CTX_set0_verified_chain'
dane-openssl.c: In function 'parse_dns_name':
dane-openssl.c:825: warning: cast to pointer from integer of different size
dane-openssl.c: In function 'verify_chain':
dane-openssl.c:913: warning: implicit declaration of function
'X509_STORE_CTX_get_verify_cb'
dane-openssl.c:913: warning: initialization makes pointer from integer without
a cast
dane-openssl.c:914: warning: implicit declaration of function
'X509_STORE_CTX_get0_cert'
dane-openssl.c:914: warning: initialization makes pointer from integer without
a cast
dane-openssl.c:915: warning: initialization makes pointer from integer without
a cast
dane-openssl.c:927: warning: implicit declaration of function
'X509_STORE_CTX_set_verify'
dane-openssl.c:937: warning: implicit declaration of function
'X509_STORE_CTX_set_error_depth'
dane-openssl.c:938: warning: implicit declaration of function
'X509_STORE_CTX_set_current_cert'
dane-openssl.c: In function 'verify_cert':
dane-openssl.c:1049: warning: initialization makes pointer from integer without
a cast
dane-openssl.c:1050: warning: initialization makes pointer from integer without
a cast
dane-openssl.c:1100: warning: comparison between pointer and integer
dane-openssl.c:1109: warning: implicit declaration of function
'X509_STORE_CTX_get_verify'
dane-openssl.c:1109: warning: assignment makes pointer from integer without a
cast
dane-openssl.c: In function 'DANESSL_library_init':
dane-openssl.c:1703: error: expected '=', ',', ';', 'asm' or '__attribute__'
before 'once'
dane-openssl.c:1703: error: 'once' undeclared (first use in this function)
dane-openssl.c:1703: error: (Each undeclared identifier is reported only once
dane-openssl.c:1703: error: for each function it appears in.)
dane-openssl.c:1703: error: 'CRYPTO_ONCE_STATIC_INIT' undeclared (first use in
this function)
dane-openssl.c:1706: warning: implicit declaration of function
'CRYPTO_THREAD_run_once'
*** Error 1 in target 'dane.o'
ccache gcc -c -O2 -Wall -Wall -Werror=format-security -I. -I/usr/local/include
spool_mbox.c
*** Error 1 in build-OpenBSD-amd64 (Makefile:616 'dane.o')
*** Error 2 in /home/farm/buildfarm/HEAD/exim.46321/src (Makefile:35 'all')

Attached patch makes error go away. Thanks to Viktor Dukhovni for telling what
to do.

--
You are receiving this mail because:
You are on the CC list for the bug.