Your message dated Fri, 05 Jun 2026 00:20:24 +0000
with message-id <[email protected]>
and subject line Bug#1138391: fixed in lighttpd 1.4.82-3
has caused the Debian Bug report #1138391,
regarding lighttpd: FTBFS with openssl 4.0
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
1138391: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138391
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: lighttpd
Version: 1.4.82-2
Severity: normal
Tags: sid
control: affects -1 src:openssl
User: [email protected]
Usertags: openssl-4.0
OpenSSL 4.0 is in experimental. This package fails to build against it:
| libtool: compile: gcc -DHAVE_CONFIG_H -DHAVE_VERSIONSTAMP_H
-DLIBRARY_DIR=\"/usr/lib/lighttpd\" -DSBIN_DIR=\"/usr/sbin\" -I. -I..
-Wdate-time -D_FORTIFY_SOURCE=2 -D_REENTRANT -D_TIME_BITS=64
-D_FILE_OFFSET_BITS=64 -D_LARGEFILE_SOURCE -D_LARGE_FILES -D_DEFAULT_SOURCE -g
-O2 -Werror=implicit-function-declaration
-ffile-prefix-map=/build/reproducible-path/lighttpd-1.4.82=.
-fstack-protector-strong -fstack-clash-protection -Wformat
-Werror=format-security -fcf-protection -Wa,--noexecstack -pipe -Wall -W
-Wshadow -pedantic -c mod_openssl.c -fPIC -DPIC -o
.libs/mod_openssl_la-mod_openssl.o
| mod_openssl.c: In function ‘verify_callback’:
| mod_openssl.c:1944:16: warning: assignment discards ‘const’ qualifier
from pointer target type [-Wdiscarded-qualifiers]
| 1944 | issuer = X509_get_issuer_name(err_cert);
| | ^
| mod_openssl.c:1970:29: warning: passing argument 1 of
‘safer_X509_NAME_oneline’ discards ‘const’ qualifier from pointer
target type [-Wdiscarded-qualifiers]
| 1970 |
safer_X509_NAME_oneline(X509_get_subject_name(err_cert),buf,sizeof(buf));
| | ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
| mod_openssl.c:1857:36: note: expected ‘X509_NAME *’ {aka ‘struct
X509_name_st *’} but argument is of type ‘const X509_NAME *’ {aka
‘const struct X509_name_st *’}
| 1857 | safer_X509_NAME_oneline(X509_NAME *name, char *buf, size_t sz)
| | ~~~~~~~~~~~^~~~
| mod_openssl.c:1983:33: warning: passing argument 1 of
‘safer_X509_NAME_oneline’ discards ‘const’ qualifier from pointer
target type [-Wdiscarded-qualifiers]
| 1983 |
safer_X509_NAME_oneline(X509_get_issuer_name(err_cert),buf,sizeof(buf));
| | ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
| mod_openssl.c:1857:36: note: expected ‘X509_NAME *’ {aka ‘struct
X509_name_st *’} but argument is of type ‘const X509_NAME *’ {aka
‘const struct X509_name_st *’}
| 1857 | safer_X509_NAME_oneline(X509_NAME *name, char *buf, size_t sz)
| | ~~~~~~~~~~~^~~~
| mod_openssl.c: In function ‘https_add_ssl_client_subject’:
| mod_openssl.c:4853:18: warning: assignment discards ‘const’ qualifier
from pointer target type [-Wdiscarded-qualifiers]
| 4853 | if (!(xe = X509_NAME_get_entry(xn, i))) {
| | ^
| mod_openssl.c:4863:74: error: invalid use of incomplete typedef
‘ASN1_STRING’ {aka ‘const struct asn1_string_st’}
| 4863 | (const
char*)X509_NAME_ENTRY_get_data(xe)->data,
| |
^~
| mod_openssl.c:4864:61: error: invalid use of incomplete typedef
‘ASN1_STRING’ {aka ‘const struct asn1_string_st’}
| 4864 | X509_NAME_ENTRY_get_data(xe)->length);
| | ^~
| mod_openssl.c: In function ‘https_add_ssl_client_entries’:
| mod_openssl.c:4906:8: warning: assignment discards ‘const’ qualifier from
pointer target type [-Wdiscarded-qualifiers]
| 4906 | xn = X509_get_subject_name(xs);
| | ^
| make[4]: *** [Makefile:2631: mod_openssl_la-mod_openssl.lo] Error 1
|
Full buildlog
https://breakpoint.cc/openssl-rebuild/logs-4/attempted/lighttpd_1.4.82-2_amd64-2026-04-19T12:28:30Z
Sebastian
--- End Message ---
--- Begin Message ---
Source: lighttpd
Source-Version: 1.4.82-3
Done: Glenn Strauss (debian) <[email protected]>
We believe that the bug you reported is fixed in the latest version of
lighttpd, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Glenn Strauss (debian) <[email protected]> (supplier of updated lighttpd
package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Thu, 04 Jun 2026 18:44:20 -0400
Source: lighttpd
Architecture: source
Version: 1.4.82-3
Distribution: unstable
Urgency: medium
Maintainer: Debian lighttpd maintainers <[email protected]>
Changed-By: Glenn Strauss (debian) <[email protected]>
Closes: 1137738 1138391 1138820
Changes:
lighttpd (1.4.82-3) unstable; urgency=medium
.
[ Glenn Strauss ]
* Add patches to build with OpenSSL 4 and Nettle 4 (closes: #1138391)
* Change default-libmysqlclient-dev to libmariadb-dev (closes: #1137738)
* Fix lintian warnings
.
[Bastian Germann]
* Drop lighttpd-mod-wolfssl (closes: #1138820)
Checksums-Sha1:
457a126ca84c7fd12c03fce43ac97e4a563a6ffa 3995 lighttpd_1.4.82-3.dsc
7e4b9edb2cfc9df655370cac283758d6bfe7b2ef 43132 lighttpd_1.4.82-3.debian.tar.xz
a451487ad428a3c886727acf623fa1f6ecb0259e 9085
lighttpd_1.4.82-3_source.buildinfo
Checksums-Sha256:
ca954606005f8b4f5805aae736f164bb9d08529386a9bd48056ced71da8bc38d 3995
lighttpd_1.4.82-3.dsc
54fa08d691886402322cc13d672c28fcd9ab9b2a6e1bbbced80ba6cbfd9cde30 43132
lighttpd_1.4.82-3.debian.tar.xz
6af4b787896ce3e397bbdb6592ce6826d60b50a84f0d5cec6a1b8ce7403c0e66 9085
lighttpd_1.4.82-3_source.buildinfo
Files:
eb345f6befdc7e5c61230f15cd773fdf 3995 httpd optional lighttpd_1.4.82-3.dsc
020a1d574bb18b723016b1259e9dbcc1 43132 httpd optional
lighttpd_1.4.82-3.debian.tar.xz
c2d613612e06d88b5adebb5fa2fa2dc7 9085 httpd optional
lighttpd_1.4.82-3_source.buildinfo
-----BEGIN PGP SIGNATURE-----
iQIzBAEBCgAdFiEE4nHvbibgVaAAFovgqzWd8b5Y+E4FAmoiELAACgkQqzWd8b5Y
+E4e2A//YReAT8cG0+bo5e6vZnyfuGdvTEfGDLsjf+bl7neHUah8IOuS27AmbUir
rFn4El1JZtawgYW4leK7JODa4W1uyfxkzBlsUX/4WfEaGUgDldYMpMdmebDRaaCR
hewPBFV+na4BRBu9VF88ynmaaWcZOrOdBml2PBPodOo8euSUXsdMV8QncrxJvGiA
PaFUQ5i7cafnBC3/TwtFeNnX3dLNYRzszCSouFImMIhzk+/vIN4gnhe5mkA4YMc6
+5F2pgmCsP8SNyL28fBVo+oIhyqPD4cuuggYq553OY3LfjorcU/dy9TH9yX0Zamu
vZg/v1lEUPAF7IYCAGezyXu5vp4Pj5XqQZ2W6AtoK3ovi9p9o0LUgxvbKaiSwo2D
4rQhma96kzqkwjE0Ti6P8kFmgLY7SmzCaSBXJXoAiuunfnNuZ/duFXo8vpmq8LkM
EFUFnkSYciVw7fnSebBzevYsWhuVVr4vuaAk8j3WC+Na1YrCDxicz4XN92wHwtsG
lKV807EBoavePKktmFFq9/O4YrOXXZU2OQMfuTrz3yjxgpEQB6qx8TLxlSAR85Co
zacY7cB9Wp5J7kX7GAQmnB/aHkTBTOTrpTtGynC02Cn8P6H63YN+Wkuk/B4sZ2Ux
ptLuSMtuk4oFrKf5POrU485VERk6/jnnIZOiPJNl8qOPcmqvSBE=
=6sYf
-----END PGP SIGNATURE-----
pgpkiI9qxJgjj.pgp
Description: PGP signature
--- End Message ---
