[Privoxy-devel] Bug#1075870: privoxy: FTBFS with MbedTLS 3.6
Roland Rosenfeld
roland at spinnaker.de
Fri Oct 11 10:54:51 CEST 2024
On Fri, 11 Oct 2024, I wrote:
> > > ssl.c: In function ‘generate_host_certificate’:
> > > ssl.c:1550:4: warning: ‘mbedtls_x509write_crt_set_serial’ is deprecated [-Wdeprecated-declarations]
> > > 1550 | ret = mbedtls_x509write_crt_set_serial(&cert, &serial);
> > > | ^~~
> > > In file included from /usr/include/mbedtls/ssl.h:23,
> > > from /usr/include/mbedtls/net_sockets.h:32,
> > > from project.h:57,
> > > from ssl.c:45:
> > > (according to
> > > https://github.com/Mbed-TLS/mbedtls/blob/development/ChangeLog this
> > > is deprecated in favor of mbedtls_x509write_crt_set_serial_raw()).
> >
> > Strangely I'm not getting this warning. I'll look into it.
>
> This problem persists with current GIT master. Maybe it's depending
> on the mbedtls version? I use 3.6.0 from Debian experimental, in the
> meantime 3.6.1 is released upstream.
I just tried out to compile mbedtls 3.6.1 as a quick hack (needs some
ABI change mechanisms). But when building privoxy against 3.6.1 the
above deprecation warning persists.
> > Does it work if you build Privoxy from the git master branch?
> > Is the problem reproducible with curl?
>
> Just tried this out, but the problem persists.
If privoxy is build against mbedtls 3.6.1, your patch seems to work as
expected, while it is broken with 3.6.0.
I'm not sure whether this is a bug in 3.6.0, which is fixed in 3.6.1
or some incompatibility between the new privoxy code and 3.6.0.
I'll request the Debian maintainer packaging mbedtls 3.6.1...
Greetings
Roland
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <https://lists.privoxy.org/pipermail/privoxy-devel/attachments/20241011/411bd06b/attachment.bin>
More information about the Privoxy-devel
mailing list