You are viewing a plain text version of this content. The canonical link for it is here.
Posted to bugs@httpd.apache.org by bu...@apache.org on 2012/07/05 15:09:36 UTC
[Bug 53512] New: OPENSSL_NO_SSL_INTERN should not be defined with
OPENSSL_VERSION_NUMBER 0x10001000
https://issues.apache.org/bugzilla/show_bug.cgi?id=53512
Priority: P2
Bug ID: 53512
Assignee: bugs@httpd.apache.org
Summary: OPENSSL_NO_SSL_INTERN should not be defined with
OPENSSL_VERSION_NUMBER 0x10001000
Severity: major
Classification: Unclassified
OS: NetBSD
Reporter: ryo_on@yk.rim.or.jp
Hardware: PC
Status: NEW
Version: 2.4.2
Component: mod_ssl
Product: Apache httpd-2
Created attachment 29033
--> https://issues.apache.org/bugzilla/attachment.cgi?id=29033&action=edit
Exclude 0x10001000
OPENSSL_VERSION_NUMBER 0x10001000 (pre-beta snapshot of OpenSSL 1.0.1) does not
have some functions, for example SSL_SESSION_get_compress_id.
PLease exclude 0x10001000 from the conditional of OPENSSL_NO_SSL_INTERN
definition.
NetBSD 6.99.8 and 6.0_BETA2 are shipped with OPENSSL_VERSION_NUMBER 0x10001000.
Please see http://gnats.netbsd.org/46655 .
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org
[Bug 53512] OPENSSL_NO_SSL_INTERN should not be defined with
OPENSSL_VERSION_NUMBER 0x10001000
Posted by bu...@apache.org.
https://issues.apache.org/bugzilla/show_bug.cgi?id=53512
Kaspar Brand <as...@velox.ch> changed:
What |Removed |Added
----------------------------------------------------------------------------
Hardware|PC |All
Severity|major |normal
--- Comment #1 from Kaspar Brand <as...@velox.ch> ---
Increasing the version check to require 1.0.1-beta1 is a way to address this,
that's right, but frankly, the proper fix is for NetBSD to pick up a *released*
version of OpenSSL.
Both 6.0_BETA2 and 6.99.8 seem to have a snapshot from 5 June 2011
(http://cvsweb.netbsd.org/bsdweb.cgi/src/crypto/external/bsd/openssl/dist/crypto/opensslv.h?rev=HEAD)
- which lacks numerous fixes compared to 1.0.1, and of course even more
compared to 1.0.1c: see e.g.
http://cvs.openssl.org/filediff?f=openssl/CHANGES&v1=1.1481.2.56&v2=1.1481.2.56.2.103.
I would really urge NetBSD to pull up a more recent OpenSSL *release* (and not
repeat the exercise they did in 5.x, with the 0.9.9-dev snapshot... I was
really hoping for this to be a one-time screw up).
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org
[Bug 53512] OPENSSL_NO_SSL_INTERN should not be defined with
OPENSSL_VERSION_NUMBER 0x10001000
Posted by bu...@apache.org.
https://issues.apache.org/bugzilla/show_bug.cgi?id=53512
Kaspar Brand <as...@velox.ch> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |RESOLVED
Resolution|--- |WONTFIX
--- Comment #2 from Kaspar Brand <as...@velox.ch> ---
(In reply to comment #1)
> I would really urge NetBSD to pull up a more recent OpenSSL *release* (and
> not repeat the exercise they did in 5.x, with the 0.9.9-dev snapshot... I
> was really hoping for this to be a one-time screw up).
Hurrah, seems like someone has listened:
http://cvsweb.netbsd.org/bsdweb.cgi/src/crypto/external/bsd/openssl/dist/crypto/opensslv.h?rev=1.3.4.1&content-type=text/x-cvsweb-markup
http://releng.netbsd.org/cgi-bin/req-6.cgi?show=491
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org