Hello.
I am trying to compile the radsecproxy using the modified openssl to use a specific cipher.
However, if I set configure to look for openssl in a particular library and compile radsecproxy, it will fail with multiple errors.
I want to know the cause. Am I trying it wrong?
Below is the error log.
gcc -DPACKAGE_NAME="radsecproxy" -DPACKAGE_TARNAME="radsecproxy" - DPACKAGE_VERSION="1.6.9" -DPACKAGE_STRING="radsecproxy\ 1.6.9" - DPACKAGE_BUGREPORT="radsecproxy@lists.nordu.net" -DPACKAGE_URL="" - DPACKAGE="radsecproxy" -DVERSION="1.6.9" -DHAVE_MALLOPT=1 - DUSE_OPENSSL=1 -I. -DSYSCONFDIR="/usr/local/etc" -g -Wall -Werror -fno- strict-aliasing -I/usr/local/openssl-aria/include -I/usr/local/openssl- aria/include/openssl -Wall -pedantic -Wno-long-long -pthread -DRADPROT_UDP - DRADPROT_TCP -DRADPROT_TLS -DRADPROT_DTLS -g -O2 -MT dtls.o -MD -MP -MF .deps/dtls.Tpo -c -o dtls.o dtls.c
dtls.c: In function ‘dtlsread’:
dtls.c:175:15: error: dereferencing pointer to incomplete type
BIO_free(ssl->rbio);
^
dtls.c:176:6: error: dereferencing pointer to incomplete type
ssl->rbio = rbio;
^
dtls.c: In function ‘dtlsacccon’:
dtls.c:217:25: error: dereferencing pointer to incomplete type
BIO_free(ssl->rbio);
^
dtls.c:218:16: error: dereferencing pointer to incomplete type
ssl->rbio = getrbio(ssl, rbios, 5);
^
dtls.c:219:21: error: dereferencing pointer to incomplete type
if (!ssl->rbio)
^
dtls.c: In function ‘dtlsserverwr’:
dtls.c:292:3: error: ‘ERR_remove_state’ is deprecated (declared at /usr/local/openssl-aria/include/openssl/err.h:260) [-Werror=deprecated- declarations]
ERR_remove_state(0);
^
dtls.c: In function ‘dtlsservernew’:
dtls.c:414:5: error: ‘ERR_remove_state’ is deprecated (declared at /usr/local/openssl-aria/include/openssl/err.h:260) [-Werror=deprecated- declarations]
ERR_remove_state(0);
^
dtls.c: In function ‘dtlsclientrd’:
dtls.c:671:5: error: ‘ERR_remove_state’ is deprecated (declared at /usr/local/openssl-aria/include/openssl/err.h:260) [-Werror=deprecated- declarations]
ERR_remove_state(0);
^
cc1: all warnings being treated as errors
Below is the modified Makefile source. Please look at the check_ssl_dir
4047 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for OpenSSL" >&5
4048 $as_echo_n "checking for OpenSSL... " >&6; }
4049 SSL_DIR=
4050 found_ssl="no"
4051
4052 # Check whether --with-ssl was given.
4053 if test "${with_ssl+set}" = set; then :
4054 withval=$with_ssl; check_ssl_dir="/usr/local/openssl-aria"
4055 else
4056 check_ssl_dir="/usr/local/openssl-aria"
4057 fi
4058
4059 for dir in $check_ssl_dir ; do
4060 ssldir="$dir"
4061 if test -f "$dir/include/openssl/ssl.h"; then
4062 found_ssl="yes";
4063 SSL_DIR="${ssldir}"
4064 SSL_CFLAGS="-I$ssldir/include -I$ssldir/include/openssl";
4065 break;
4066 fi
4067 if test -f "$dir/include/ssl.h"; then
4068 found_ssl="yes";
4069 SSL_DIR="${ssldir}"
4070 SSL_CFLAGS="-I$ssldir/include/";
4071 break
4072 fi
4073 done
#####################################################
(주)누리텔레콤 신현오
사원 / 전력IoT개발팀
Mobile: 010-4796-2043
Office: 02-781-0755
Address : 전라남도 나주시 우정로 56 (토담리치타워 A동 501호)
#####################################################
This is an error you would get when you try to compile code written for OpenSSL 1.0.2, but have OpenSSL 1.1.x. Base your custom OpenSSL on 1.0.2 instead of 1.1.x, and try to build radsecproxy with that.
From: radsecproxy [mailto:radsecproxy-bounces@lists.nordu.net] On Behalf Of ??? Sent: Tuesday, February 12, 2019 7:26 PM To: radsecproxy@lists.nordu.net Subject: [radsecproxy] Error occurs if a specific openssl is specified and compiled.
Hello. I am trying to compile the radsecproxy using the modified openssl to use a specific cipher. However, if I set configure to look for openssl in a particular library and compile radsecproxy, it will fail with multiple errors. I want to know the cause. Am I trying it wrong?
-
Wall, Stephen -
신현오