[Bug 271728] libunbound uses deprecated SSL_CTX_set_ecdh_auto

Reply: bugzilla-noreply_a_freebsd.org: "[Bug 271728] libunbound uses deprecated SSL_CTX_set_ecdh_auto"
Reply: bugzilla-noreply_a_freebsd.org: "[Bug 271728] libunbound uses deprecated SSL_CTX_set_ecdh_auto"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Tue, 30 May 2023 18:36:22 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=271728

            Bug ID: 271728
           Summary: libunbound uses deprecated SSL_CTX_set_ecdh_auto
           Product: Base System
           Version: CURRENT
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Only Me
          Priority: ---
         Component: misc
          Assignee: bugs@FreeBSD.org
          Reporter: emaste@freebsd.org

When attempting to build libunbound with
  CFLAGS+=-DOPENSSL_API_COMPAT=0x10100000L
as part of OpenSSL 3.0 update testing produced this error:

/tmp/cirrus-ci-build/contrib/unbound/util/net_help.c:1035:6: error: call to
undeclared function 'SSL_CTX_set_ecdh_auto'; ISO C99 and later do not support
implicit function declarations [-Werror,-Wimplicit-function-declaration]
        if(!SSL_CTX_set_ecdh_auto(ctx,1)) {
            ^
/tmp/cirrus-ci-build/contrib/unbound/util/net_help.c:1035:6: note: did you mean
'SSL_CTX_set_ex_data'?
/usr/obj/tmp/cirrus-ci-build/amd64.amd64/tmp/usr/include/openssl/ssl.h:2037:12:
note: 'SSL_CTX_set_ex_data' declared here
__owur int SSL_CTX_set_ex_data(SSL_CTX *ssl, int idx, void *data);
           ^
1 error generated.
make[3]: stopped in /tmp/cirrus-ci-build

There is a config.h HAVE_DECL_SSL_CTX_SET_ECDH_AUTO #define that gets set
(because the function does in fact exist), but as we maintain config.h manually
I think we can just turn it off.

-- 
You are receiving this mail because:
You are the assignee for the bug.