last hostapd update is failing to build against libressl.
Created attachment 616400 [details] build.log
Created attachment 616402 [details] emerge-info.txt
Created attachment 616404 [details] environment
Thanks for the report. Indeed I haven't had a libressl env to test my last revbump's changes which enabled a few important new features.
This bug is not an easy one to patch. SSL_set_cert_cb is a handshake-time callback API which is used by hostapd to perform some sanity checks. LibreSSL, just as OpenSSL older than 1.0.2, just won't do. LibreSSL doesn't provide this API and I do not see any mention of such plans or work in progress. I found just a LibreSSL enhancement request and mentioned the current Gentoo bug: https://github.com/libressl-portable/portable/issues/534 It's a shame because this "regression" has been caused by enablement of SUITEB functionality which I've done on suggestion from zerochaos and which seems quite important. So the choices are: * leave LibreSSL broken with >=hostapd-2.9-r2; * disable SUITEB (= drop the changes between 2.9-r1 and 2.9-r2, or part of them); * add USE flag and declare conflict of SUITEB and LibreSSL. The last one sounds the most Gentooish, but this accidental proliferation of USE flags is a bit annoying, since if not this compatibility issue users won't want to make a choice.
Another possibility is to disabling suiteb only if libressl USE is set?
(In reply to Quentin R. from comment #6) > Another possibility is to disabling suiteb only if libressl USE is set? Technically yes, but would be a bad surprise for users. USE flags are meant to be orthogonal.
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=f24ef74b43a105f8b0ac8377db6526d4a05c2a36 commit f24ef74b43a105f8b0ac8377db6526d4a05c2a36 Author: Andrey Utkin <andrey_utkin@gentoo.org> AuthorDate: 2020-04-21 22:01:28 +0000 Commit: Andrey Utkin <andrey_utkin@gentoo.org> CommitDate: 2020-04-21 22:17:33 +0000 net-wireless/hostapd: make USE flag for Suite B Suite B functionality in hostapd uses OpenSSL feature unavailable in LibreSSL. So, enabling that functionality conflicts with using LibreSSL. Before hostapd-2.9-r2 ebuild, Suite B was disabled. hostapd-2.9-r2 ebuild has enablied Suite B was unconditionally. This commit enables it based on suiteb USE flag, which is enabled by default, and which is declared conflicting with libressl USE flag. Bug: https://bugs.gentoo.org/710992 Package-Manager: Portage-2.3.66, Repoman-2.3.16 Signed-off-by: Andrey Utkin <andrey_utkin@gentoo.org> net-wireless/hostapd/hostapd-2.9-r2.ebuild | 12 +++++++++--- net-wireless/hostapd/hostapd-9999.ebuild | 12 +++++++++--- net-wireless/hostapd/metadata.xml | 1 + 3 files changed, 19 insertions(+), 6 deletions(-)
Should work now. Thanks for your patience.
