On Sun, Feb 09, 2014 at 10:53:58PM +0100, Thomas Klausner wrote: > On Sun, Feb 09, 2014 at 10:47:46PM +0100, Onno van der Linden wrote: > > /usr/obj/www/firefox/work/mozilla-release/security/manager/ssl/src/CertVerifier.cpp: > > In member function 'SECStatus > > mozilla::psm::CertVerifier::VerifyCert(CERTCertificate*, > > SECCertificateUsage, __int64_t, nsIInterfaceRequestor*, > > mozilla::psm::CertVerifier::Flags, CERTCertList**, SECOidTag*, > > CERTVerifyLog*)': > > /usr/obj/www/firefox/work/mozilla-release/security/manager/ssl/src/CertVerifier.cpp:245:32: > > error: 'CERT_REV_M_FORCE_POST_METHOD_FOR_OCSP' was not declared in this > > scope > > /usr/obj/www/firefox/work/mozilla-release/security/manager/ssl/src/CertVerifier.cpp:357:30: > > error: 'CERT_REV_M_FORCE_POST_METHOD_FOR_OCSP' was not declared in this > > scope > > gmake[3]: *** [CertVerifier.o] Error 1 > > > > security/nss/lib/certdb/certt.h on line 1112 has a define for it > > and certt.h gets included in CertVerifier.h > > > > I don't have the time right now to check further. I'll do > > some more debugging tomorrow, unless someone beats me to it. > > Just as a data point, firefox-27 just built fine for me on > 6.99.31/amd64 from yesterday with dsl's fix for the header file added > manually.
It looks like /usr/pkg/include/nss/nss/certt.h (from nss-3.15.3.1) is used during my build attempt of firefox 27. And that certt.h does *NOT* contain the CERT_REV_M_FORCE_POST_METHOD_FOR_OCSP. However, nss-3.15.4 *DOES* have a certt.h which contains that define. Bug in the current firefox 27 package ? Should firefox 27 depend on nss-3.15.4 ? Why isn't the internal certt.h used ? I have no idea what the answers to those questions should be. I *do* have an idea how to fix my firefox 27 build :-) Onno
