Summary: | net-misc/sslwrap-2.0.6 fails to compile | ||
---|---|---|---|
Product: | Gentoo Linux | Reporter: | SI Reasoning <si> |
Component: | New packages | Assignee: | No maintainer - Look at https://wiki.gentoo.org/wiki/Project:Proxy_Maintainers if you want to take care of it <maintainer-needed> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | hawking |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | x86 | ||
OS: | Linux | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- |
Description
SI Reasoning
2006-09-08 05:13:08 UTC
Compile failures are not security bugs. SSL_OP_NON_EXPORT_FIRST is broken according to changelog from www.openssl.org: *) New option SSL_OP_CIPHER_SERVER_PREFERENCE allows the server to override the clients preferred ciphersuites and rather use its own preferences. Should help to work around M$ SGC (Server Gated Cryptography) bug in Internet Explorer by ensuring unchanged hash method during stepup (Also replaces the broken/deactivated SSL_OP_NON_EXPORT_FIRST option.) [Lutz Jaenicke] So SSL_OP_NON_EXPORT_FIRST in s_server.c should be replaced with SSL_OP_CIPHER_SERVER_PREFERENCE .Adding something like this add the end of src_unpack would do: " sed -i \ -e "s/SSL_OP_NON_EXPORT_FIRST/SSL_OP_CIPHER_SERVER_PREFERENCE/g" \ s_server.c" Thanks, fixed in CVS. Track keywording requests on bug #169464 |