Hi there
I'm running into a build failure for 1.7-dev6 with LibreSSL on FreeBSD
11.0-RELEASE-p3 amd64. I've no idea if this is a supported combo or not
but it does work with 1.6.9 very nicely already.
cc -Iinclude -Iebtree -Wall -O2 -pipe -fno-omit-frame-pointer
-fstack-protector -fno-strict-aliasing -DFREEBSD_PORTS -DTPROXY
-DCONFIG_HAP_CRYPT -DUSE_GETADDRINFO -DUSE_ZLIB -DENABLE_POLL
-DENABLE_KQUEUE -DUSE_CPU_AFFINITY -DUSE_OPENSSL -DUSE_LUA
-I/usr/local/include/lua53 -DUSE_PCRE -I/usr/local/include
-DUSE_PCRE_JIT -DCONFIG_HAPROXY_VERSION=\"1.7-dev6-d5d890b\"
-DCONFIG_HAPROXY_DATE=\"2016/11/09\" -c -o ebtree/ebistree.o
ebtree/ebistree.c
src/ssl_sock.c:1966:8: warning: implicit declaration of function
'SSL_CTX_add1_chain_cert' is invalid in C99
[-Wimplicit-function-declaration]
if (!SSL_CTX_add1_chain_cert(ctx, ckch->chain_certs[i]))
{
^
src/ssl_sock.c:2270:12: warning: incompatible integer to pointer
conversion assigning to 'pem_password_cb *' (aka 'int (*)(char *, int,
int, void *)') from 'int' [-Wint-conversion]
passwd_cb = SSL_CTX_get_default_passwd_cb(ctx);
^ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
src/ssl_sock.c:2271:21: warning: incompatible integer to pointer
conversion assigning to 'void *' from 'int' [-Wint-conversion]
passwd_cb_userdata =
SSL_CTX_get_default_passwd_cb_userdata(ctx);
^ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
src/ssl_sock.c:3521:6: error: use of undeclared identifier
'OSSL_HANDSHAKE_STATE'
OSSL_HANDSHAKE_STATE state =
SSL_get_state((SSL
*)conn->xprt_ctx);
^
4 warnings generated.
src/ssl_sock.c:3522:24: error: use of undeclared identifier 'state'; did
you mean 'stat'?
empty_handshake = state ==
TLS_ST_BEFORE;
^~~~~
stat
full log is here:
https://gist.github.com/dch/929c09cb48fc5dec5e1a99bda2f7d5d5
There's a partial patch here
https://github.com/HardenedBSD/hardenedbsd-ports/commit/b0c5e0fd15cdf9b6059e5c66e66f9e81b4e7f252
via HardenedBSD project but I can't tell if this would break other SSL
library combinations.
Any suggestions?
Thanks
Dave
