net-im/ejabberd won't build without openssl's MD2 sha_drv.c:23:25: error: openssl/md2.h: No such file or directory sha_drv.c: In function 'sha_drv_control': sha_drv.c:40: error: 'MD2_DIGEST_LENGTH' undeclared (first use in this function) sha_drv.c:40: error: (Each undeclared identifier is reported only once sha_drv.c:40: error: for each function it appears in.) sha_drv.c:42: warning: implicit declaration of function 'MD2' make[1]: *** [../sha_drv.so] Error 1 make[1]: *** Waiting for unfinished jobs.... make[1]: Leaving directory `/var/tmp/portage/net-im/ejabberd-2.1.5/work/ejabberd-2.1.5/src/tls' make: *** [all-recursive] Error 1 from discussion with one of developers (russian): [16:31:43] <Rion> а когда ежик будет совместим с openssl-1.0 ? [16:32:04] <Rion> или для этого какие-то хитрые манипуляции при сборке можно совершить? [16:32:29] <Rion> просто по-умолчанию опенссл-1.0 собирается без md2 [16:41:09] <xram> md2 нужен для капсов [16:41:57] <xram> так что это проблема openssl [16:42:05] <xram> много RFC до сих пор требует md2 Reproducible: Always Steps to Reproduce:
According to upstream md2 is required for capses but vendors are about to disable this... I'll report upstream.
Created attachment 241493 [details, diff] Remove MD2 support from ejabberd Fixes the issue
please apply the patch rather sooner than later, bug 330437 is already open...
this patch makes ejabberd incompatible with XEP-0115 read http://xmpp.org/extensions/xep-0115.html and http://www.iana.org/assignments/hash-function-text-names/hash-function-text-names.xml (the first link refers to the second one) i'd suggest to write a letter to XMPP Standards Foundation and ask them to change xep-0115
(In reply to comment #4) > this patch makes ejabberd incompatible with XEP-0115 XEP states: An implementation MAY support other algorithms. Any such algorithm SHOULD be registered in the IANA Hash Function Textual Names Registry [24]. So I don't see any incompatibility... Could you clarify?
Confirmed that the patch works allows ejabberd to compile and work.
The upstream bug is fixed. They added a "openssl/md2.h" check in the configure script and "#ifdef HAVE_MD2" around the code. The attached patch is still good, since they changed exact same places in the code and we dont need the support anymore.
Thank you Samuli. I've took upstream patch anyway, since if there are any problems (in other places) with it I'd like to see them earlier then later. This bug is fixed.