Skip site navigation (1)Skip section navigation (2)
Date:      Sat, 19 May 2007 23:06:00 -0000
From:      Harald Schmalzbauer <h.schmalzbauer@omnisec.de>
To:        freebsd-current@freebsd.org
Subject:   libssl broken by gcc4.2 import [Was: Re: PINE: SIG 6]
Message-ID:  <200705200105.52657.h.schmalzbauer@omnisec.de>
In-Reply-To: <200705192151.34547.pieter@degoeje.nl>
References:  <299DD8FD-0E7A-4E3D-9902-2C7FE45AA7BC@lerctr.org> <9F2A10A0-2B58-4BE4-8DD0-9D7811B6BCE6@lerctr.org> <200705192151.34547.pieter@degoeje.nl>

next in thread | previous in thread | raw e-mail | index | archive | help
Am Samstag, 19. Mai 2007 21:51 schrieb Pieter de Goeje:
[...]
> I believe libssl is broken if not compiled with -DOPENSSL_NO_DH. Gcc will
> warn that the program will abort if the code reaches any call to
> DHparams_dup() when compiling libssl.
>
> ssl3_send_client_key_exchange calls this (macro) at s3_clnt.c:1856. There
> are other places too.

I can confirm that many applications don't work with SSL protocolls any more, 
like kmail and opera.
Your solution sounds reasonable.
How is -DOPENSSL_NO_DH best implemented?

Best regards,

-Harry

>
> - Pieter de Goeje
> _______________________________________________
> freebsd-current@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-current
> To unsubscribe, send any mail to "freebsd-current-unsubscribe@freebsd.org"



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200705200105.52657.h.schmalzbauer>