Label Meilensteine

Neues Issue

Add LibreSSL compatibility #28

Geschlossen

vor 5 Jahren von blu.256 geöffnet · 14 Kommentare

blu.256 hat vor 5 Jahren kommentiert

Mitarbeiter

Basic information

• TDE version: R14.0.6
• Distribution: Void Linux
• Hardware: amd64

• SL/Wishlist

Description

Some distributions (like Void Linux) now provide LibreSSL instead of OpenSSL as a default. LibreSSL is OpenBSD's fork of OpenSSL 1.0.1b. TDElibs (especially KSSL in TDEIO) fails to compile.

excerpt from stdout: https://pastebin.com/37QfJMYc

Steps to reproduce

1. Fetch the source code for tdelibs (R14.0.6)
2. Create out-of-source build directory and configure with cmake
3. Run 'make'

Screenshots

<!-- This is a comment. Please fill in the required fields below. The comments provide instructions on how to do so. Note: You do not need to remove comments. --> ## Basic information - TDE version: R14.0.6 <!-- such as R14.0.6 - see tde-config -v --> - Distribution: Void Linux <!-- such as Debian Stretch - see lsb_release -sd --> - Hardware: amd64 <!-- amd64 / i386 / armhf / ... --> <!-- Use SL/* labels to set the severity level. Please do not set a milestone. --> - SL/Wishlist ## Description Some distributions (like Void Linux) now provide LibreSSL instead of OpenSSL as a default. LibreSSL is OpenBSD's fork of OpenSSL 1.0.1b. TDElibs (especially KSSL in TDEIO) fails to compile. excerpt from stdout: https://pastebin.com/37QfJMYc ## Steps to reproduce 1. Fetch the source code for tdelibs (R14.0.6) 2. Create out-of-source build directory and configure with cmake 3. Run 'make' ## Screenshots <!-- If it seems useful, please provide provide one or more screenshots. -->

SlavekB hat vor 5 Jahren kommentiert

Besitzer

Please, what is the output from the CMake configuration that is related to SSL library detection?

Please, what is the output from the CMake configuration that is related to SSL library detection?

blu.256 hat vor 5 Jahren kommentiert

Ersteller

Mitarbeiter

stdout during configuration only mentions OpenSSL once:

-- Checking for one of the modules 'openssl'

CMakeCache.txt contains the following:
https://pastebin.com/n4kfEKH3

BTW, LibreSSL does provide some headers in /usr/include/openssl. I have LibreSSL 2.8.3 and in opensslv.h (which is imported in kopenssl.h) the macro which defines OpenSSL version number contains the value 0x20000000L:
https://pastebin.com/btthU22U

I think, with LibreSSL being a fork of OpenSSL 1.0.1b, that it is not compatible with some of the changes that newer versions brought about; though, OPENSSL_VERSION_NUMBER being > 0x10100000L, the compatibility checks in tdeio/kssl/kopenssl.h fail. I might as well be wrong.
I'm checking this right now and if I have results, I'll report back.

stdout during configuration only mentions OpenSSL once: > -- Checking for one of the modules 'openssl' CMakeCache.txt contains the following: https://pastebin.com/n4kfEKH3 BTW, LibreSSL _does_ provide some headers in /usr/include/openssl. I have LibreSSL 2.8.3 and in opensslv.h (which is imported in kopenssl.h) the macro which defines OpenSSL version number contains the value 0x20000000L: https://pastebin.com/btthU22U I think, with LibreSSL being a fork of OpenSSL _1.0.1b_, that it is not compatible with some of the changes that newer versions brought about; though, OPENSSL_VERSION_NUMBER being > 0x10100000L, the compatibility checks in tdeio/kssl/kopenssl.h fail. I might as well be wrong. I'm checking this right now and if I have results, I'll report back.

blu.256 hat vor 5 Jahren kommentiert

Ersteller

Mitarbeiter

I was able to compile tdelibs making some changes to tdeio/kssl/kopenssl.h and tdeeio/kssl/ksslcertificate.cc
(some #ifndef LIBRESSL_VERSION_NUMBER's to check if the SSL flavour is LibreSSL)

I was able to compile tdelibs making some changes to tdeio/kssl/kopenssl.h and tdeeio/kssl/ksslcertificate.cc (some #ifndef LIBRESSL_VERSION_NUMBER's to check if the SSL flavour is LibreSSL)

blu.256 hat vor 5 Jahren kommentiert

Ersteller

Mitarbeiter

My changes as a patch file: https://pastebin.com/e3mPVc1p

My changes as a patch file: https://pastebin.com/e3mPVc1p

MicheleC hat vor 5 Jahren kommentiert

Besitzer

Hi Blu, thanks for the good work. Rather than posting a patch on pastebin, could you create a branch and a pull request here in gitea? That is the main advantage of using gitea, moreover authorship of the patch would be maintained automatically.

The wiki guide on TGW should provide some help on how to create a PR and if you need further help, just ask here.

Hi Blu, thanks for the good work. Rather than posting a patch on pastebin, could you create a branch and a pull request here in gitea? That is the main advantage of using gitea, moreover authorship of the patch would be maintained automatically.<br> The wiki guide on TGW should provide some help on how to create a PR and if you need further help, just ask here.

MicheleC hat vor 5 Jahren kommentiert

Besitzer

@blu256: I have added you to the contributor group, so you can now create PRs 😃

Don't forget to sign-off your commit with the -s flag as per DCO.

@blu256: I have added you to the contributor group, so you can now create PRs :smiley: Don't forget to sign-off your commit with the -s flag as per DCO.

blu.256 hat vor 5 Jahren kommentiert

Ersteller

Mitarbeiter

Ok, done.

Ok, done.

SlavekB hat eine neue Abhängigkeit vor 5 Jahren hinzugefügt

#29 Fixed compatibility with LibreSSL

MicheleC hat vor 5 Jahren kommentiert

Besitzer

Thanks a lot and keep up the good work 😄

Thanks a lot and keep up the good work :smile:

MicheleC hat diesen Issue vor 5 Jahren zum R14.0.7 release Meilenstein hinzugefügt

blu.256 hat dieses Issue vor 5 Jahren aus einem Commit referenziert

Added some checks in KSSL (in TDEIO) to correctly recognize LibreSSL (which is a fork of OpenSSL 1.0.1b) This resolves issue #28. Signed-off-by: Mavridis Philippe

SlavekB hat dieses Issue vor 5 Jahren aus einem Commit referenziert

Added some checks in KSSL (in TDEIO) to correctly recognize LibreSSL (which is a fork of OpenSSL 1.0.1b) This resolves issue #28. Signed-off-by: Mavridis Philippe (cherry picked from commit 86fea6f5c542ba7113dbc598d8b4c18be69901f2)

SlavekB hat vor 5 Jahren kommentiert

Besitzer

@blu256, thank you for your excellent cooperation.

@blu256, thank you for your excellent cooperation.

SlavekB hat diesen Issue vor 5 Jahren geschlossen

MicheleC hat vor 5 Jahren kommentiert

Besitzer

Keep up the good work Philippe 😄

Keep up the good work Philippe :smile:

StefG hat vor 5 Jahren kommentiert

Hello,

there's a typo in the patch for ksslcertificate.cc which breaks compilation: you have written LIBERSSL_VERSION_NUMBER instead of LIBRESSL_VERSION_NUMBER

Hello, there's a typo in the patch for ksslcertificate.cc which breaks compilation: you have written LIBERSSL_VERSION_NUMBER instead of LIBRESSL_VERSION_NUMBER

MicheleC hat dieses Issue vor 5 Jahren aus einem Commit referenziert

Fixed type in LIBRESSL usage. This relates to a comment made on issue #28. Signed-off-by: Michele Calgaro <michele.calgaro@yahoo.it>

MicheleC hat dieses Issue vor 5 Jahren aus einem Commit referenziert

Fixed type in LIBRESSL usage. This relates to a comment made on issue #28. Signed-off-by: Michele Calgaro <michele.calgaro@yahoo.it> (cherry picked from commit 8b66a5759a6735bfcc7a94e6ba539f0bea55d587)

MicheleC hat vor 5 Jahren kommentiert

Besitzer

Thanks Stef. This has now been fixed. Could you please double check and let us know if ok?

Thanks Stef. This has now been fixed. Could you please double check and let us know if ok?

StefG hat vor 5 Jahren kommentiert

I can't really do it. I was compiling Release 14.0.6 when I met the LibreSSL acceptance problem, then I found this patch and just copied-pasted the 3 relevant lines in the kopenssl.h and ksslcertificate.cc from 14.0.6, and it wouldn't compile because of the typo. Once corrected, it built OK.

So I can say it compiles with 14.0.6 (I can't say it works, since I haven't finished building the whole environment, but at least it builds OK), but I can't test the development version (I would need to recompile all dependencies with development versions).

Sorry.

But proofreading this 2 letters change seems fine ;-)

I can't really do it. I was compiling Release 14.0.6 when I met the LibreSSL acceptance problem, then I found this patch and just copied-pasted the 3 relevant lines in the kopenssl.h and ksslcertificate.cc from 14.0.6, and it wouldn't compile because of the typo. Once corrected, it built OK. So I can say it compiles with 14.0.6 (I can't say it works, since I haven't finished building the whole environment, but at least it builds OK), but I can't test the development version (I would need to recompile all dependencies with development versions). Sorry. But proofreading this 2 letters change seems fine ;-)

MicheleC hat vor 5 Jahren kommentiert

Besitzer

no problem. if you ever come around the same issue, just let us know. Thanks for poiting out the typo 👍

no problem. if you ever come around the same issue, just let us know. Thanks for poiting out the typo :+1:

Anmelden, um an der Diskussion teilzunehmen.

Keine Branch/Tag angegeben

Branches Tags

r14.1.x

master

feat/kate/php-syntax-heredoc-ident

fix/tde-75

issue/270/tdelibs-V4

feat/new_hwcontrol

feat/tdeio-xattr-support

fix/api-for-python

r14.0.x

v3.5.13-sru

feat/tdehtml+svg

other/string-fixes

feat/fix-suspend-code

r14.1.1

r14.1.0

r14.0.13

r14.0.12

r14.0.11

r14.0.10

r14.0.9

r14.0.8

r14.0.7

r14.0.6

r14.0.5

r14.0.4

r14.0.3

r14.0.2

r14.0.1

r14.0.0

v3.5.13.2

v3.5.13.1

v3.5.13

Label

Label anwenden

Label entfernen

GE/need-info
General - need additional info from contributor PR/keep-branch
Pull request - do not delete branch after merging PR/not-ok
Pull request - need fixing PR/rfc
Pull request - request for comments PR/update-trans
Pull request - update to translation files needed PR/wip
Pull request - work in progress RS/R14.0.x
Related to R14.0.x series RS/R14.1.x
Related to R14.1.x series SL/critical
Severity level - critical SL/major
Severity level - major SL/minor
Severity level - minor SL/normal
Severity level - normal SL/regression
Severity level - regression from previous version SL/trivial
Severity level - trivial SL/wishlist
Severity level - wishlist request ST/duplicate
Status - duplicate of another issue ST/invalid
Status - invalid report ST/notourproblem
Status - not our problem ST/rejected
Status - rejected ST/wontfix
Status - won't fix ST/worksforme
Status - works for me, unable to reproduce

Kein Label GE/need-info PR/keep-branch PR/not-ok PR/rfc PR/update-trans PR/wip RS/R14.0.x RS/R14.1.x SL/critical SL/major SL/minor SL/normal SL/regression SL/trivial SL/wishlist ST/duplicate ST/invalid ST/notourproblem ST/rejected ST/wontfix ST/worksforme

Meilenstein

Meilenstein setzen

Meilenstein entfernen

Keine Einträge

Kein Meilenstein

R14.0.7 release

Zuständig

Benutzer zuweisen

Zuständige entfernen

Niemand zuständig

4 Beteiligte

Nachrichten

Abonnieren

Fällig am

Das Fälligkeitsdatum ist ungültig oder außerhalb des zulässigen Bereichs. Bitte verwende das Format „jjjj-mm-tt“.

Kein Fälligkeitsdatum gesetzt.

Abhängig von

#29 Fixed compatibility with LibreSSL

TDE/tdelibs

Referenz: TDE/tdelibs#28

Verfassen Vorschau

Laden…

Abbrechen

Speichern

Hier gibt es bis jetzt noch keinen Inhalt.