https://bugs.openldap.org/show_bug.cgi?id=9572
Issue ID: 9572 Summary: OpenLDAP no longer builds against libressl after ITS#9521 Product: OpenLDAP Version: 2.4.59 Hardware: All OS: FreeBSD Status: UNCONFIRMED Severity: normal Priority: --- Component: build Assignee: bugs@openldap.org Reporter: delphij@freebsd.org Target Milestone: ---
In #9521, OpenLDAP would be using OpenSSL 1.1 TLSv1.3 API (SSL_CTX_set_ciphersuites and SSL_set_ciphersuites) and is no longer compatible with LibreSSL.
Reported by a FreeBSD user at https://bugs.freebsd.org/256433 .
https://bugs.openldap.org/show_bug.cgi?id=9572
--- Comment #1 from Howard Chu hyc@openldap.org --- (In reply to Xin Li from comment #0)
In #9521, OpenLDAP would be using OpenSSL 1.1 TLSv1.3 API (SSL_CTX_set_ciphersuites and SSL_set_ciphersuites) and is no longer compatible with LibreSSL.
Reported by a FreeBSD user at https://bugs.freebsd.org/256433 .
Note that the changes for ITS#9521 are specifically #ifdef'd for OpenSSL version 1.1.1 or greater. If LibreSSL isn't working here it's because it's lying about its OpenSSL version. Tell them to fix their stuff.
https://bugs.openldap.org/show_bug.cgi?id=9572
Quanah Gibson-Mount quanah@openldap.org changed:
What |Removed |Added ---------------------------------------------------------------------------- Resolution|--- |INVALID Status|UNCONFIRMED |RESOLVED
--- Comment #2 from Quanah Gibson-Mount quanah@openldap.org --- I'd additionally note that OpenLDAP only officially supports OpenSSL and GnuTLS.
https://bugs.openldap.org/show_bug.cgi?id=9572
Quanah Gibson-Mount quanah@openldap.org changed:
What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |VERIFIED