Bug#995157: marked as done (FTBFS with openssl3: error: ‘SHA256_Init’ is deprecated: Since OpenSSL 3.0)

Sun, 31 Oct 2021 03:51:18 -0700 

Your message dated Sun, 31 Oct 2021 10:48:28 +0000
with message-id <[email protected]>
and subject line Bug#995157: fixed in libfido2 1.9.0-1
has caused the Debian Bug report #995157,
regarding FTBFS with openssl3: error: ‘SHA256_Init’ is deprecated: Since 
OpenSSL 3.0
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
995157: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=995157
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message --- 
Source: libfido2
Version: 1.8.0-1
Severity: important

Dear Maintainer,

libfido2 fails to build with openssl3 from experimental:

|[  0%] Building C object src/CMakeFiles/fido2.dir/aes256.c.o
|cd /<<PKGBUILDDIR>>/obj-x86_64-linux-gnu/src && /usr/bin/cc -DHAVE_CBOR_H 
-DHAVE_CLOCK_GETTIME -DHAVE_DEV_URANDOM -DHAVE_ENDIAN_H -DHAVE_ERR_H 
-DHAVE_EXPLICIT_BZERO -DHAVE_GETLINE -DHAVE_GETOPT -DHAVE_GETPAGESIZE 
-DHAVE_GETRANDOM -DHAVE_OPENSSLV_H -DHAVE_SIGACTION -DHAVE_SIGNAL_H 
-DHAVE_SYSCONF -DHAVE_SYS_RANDOM_H -DHAVE_UNISTD_H -DSIGNAL_EXAMPLE 
-DTLS=__thread -D_FIDO_INTERNAL -D_FIDO_MAJOR=1 -D_FIDO_MINOR=8 -D_FIDO_PATCH=0 
-I/<<PKGBUILDDIR>>/src -D_POSIX_C_SOURCE=200809L -D_BSD_SOURCE -D_GNU_SOURCE 
-D_DEFAULT_SOURCE -std=c99 -g -O2 -ffile-prefix-map=/<<PKGBUILDDIR>>=. 
-fstack-protector-strong -Wformat -Werror=format-security -Wdate-time 
-D_FORTIFY_SOURCE=2 -fPIC -Wall -Wextra -Werror -Wshadow -Wcast-qual 
-Wwrite-strings -Wmissing-prototypes -Wbad-function-cast -pedantic 
-pedantic-errors -fstack-protector-all -Wno-unused-result -Wconversion 
-Wsign-conversion -MD -MT src/CMakeFiles/fido2.dir/aes256.c.o -MF 
CMakeFiles/fido2.dir/aes256.c.o.d -o CMakeFiles/fido2.dir/aes256.c.o -c 
/<<PKGBUILDDIR>>/src/aes256.c
|[  0%] Generating eddsa_pk_new.3
|cd /<<PKGBUILDDIR>>/obj-x86_64-linux-gnu/man && cp -f 
/<<PKGBUILDDIR>>/man/eddsa_pk_new.3 .
|[  0%] Generating es256_pk_new.3
|cd /<<PKGBUILDDIR>>/obj-x86_64-linux-gnu/man && cp -f 
/<<PKGBUILDDIR>>/man/es256_pk_new.3 .
|[  0%] Generating fido2-assert.1
|cd /<<PKGBUILDDIR>>/obj-x86_64-linux-gnu/man && cp -f 
/<<PKGBUILDDIR>>/man/fido2-assert.1 .
|[  0%] Generating fido2-cred.1
|cd /<<PKGBUILDDIR>>/obj-x86_64-linux-gnu/man && cp -f 
/<<PKGBUILDDIR>>/man/fido2-cred.1 .
|[  0%] Generating fido2-token.1
|cd /<<PKGBUILDDIR>>/obj-x86_64-linux-gnu/man && cp -f 
/<<PKGBUILDDIR>>/man/fido2-token.1 .
|/<<PKGBUILDDIR>>/src/assert.c: In function ‘fido_get_signed_hash’:
|/<<PKGBUILDDIR>>/src/assert.c:389:3: error: ‘SHA256_Init’ is deprecated: Since 
OpenSSL 3.0 [-Werror=deprecated-declarations]
|  389 |   if (dgst->len < SHA256_DIGEST_LENGTH || SHA256_Init(&ctx) == 0 ||
|      |   ^~
|[...]
|In file included from /<<PKGBUILDDIR>>/src/assert.c:8:
|/usr/include/openssl/sha.h:76:27: note: declared here
|   76 | OSSL_DEPRECATEDIN_3_0 int SHA256_Final(unsigned char *md, SHA256_CTX 
*c);
|      |                           ^~~~~~~~~~~~
|/<<PKGBUILDDIR>>/src/assert.c: In function ‘fido_verify_sig_es256’:
|/<<PKGBUILDDIR>>/src/assert.c:433:6: error: ‘EVP_PKEY_get0_EC_KEY’ is 
deprecated: Since OpenSSL 3.0 [-Werror=deprecated-declarations]
|  433 |      (ec = EVP_PKEY_get0_EC_KEY(pkey)) == NULL) {
|      |      ^
|In file included from /<<PKGBUILDDIR>>/src/fido.h:11,
|                 from /<<PKGBUILDDIR>>/src/assert.c:10:
|/usr/include/openssl/evp.h:1372:25: note: declared here
| 1372 | const struct ec_key_st *EVP_PKEY_get0_EC_KEY(const EVP_PKEY *pkey);
|      |                         ^~~~~~~~~~~~~~~~~~~~
|/<<PKGBUILDDIR>>/src/assert.c:433:10: error: assignment discards ‘const’ 
qualifier from pointer target type [-Wdiscarded-qualifiers]
|  433 |      (ec = EVP_PKEY_get0_EC_KEY(pkey)) == NULL) {
|      |          ^
|/<<PKGBUILDDIR>>/src/assert.c:438:2: error: ‘ECDSA_verify’ is deprecated: 
Since OpenSSL 3.0 [-Werror=deprecated-declarations]
[...]
|cc1: all warnings being treated as errors
|make[3]: *** [src/CMakeFiles/fido2.dir/build.make:93: 
src/CMakeFiles/fido2.dir/assert.c.o] Error 1
|make[3]: *** Waiting for unfinished jobs....

Filing this as important for now, as long as openssl3 is not in unstable.


Michael

--- End Message ---
--- Begin Message --- 
Source: libfido2
Source-Version: 1.9.0-1
Done: Colin Watson <[email protected]>

We believe that the bug you reported is fixed in the latest version of
libfido2, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Colin Watson <[email protected]> (supplier of updated libfido2 package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sun, 31 Oct 2021 10:24:11 +0000
Source: libfido2
Architecture: source
Version: 1.9.0-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Authentication Maintainers 
<[email protected]>
Changed-By: Colin Watson <[email protected]>
Closes: 995157
Changes:
 libfido2 (1.9.0-1) unstable; urgency=medium
 .
   * New upstream release.
     - Added OpenSSL 3.0 compatibility (closes: #995157, LP: #1945810).
Checksums-Sha1:
 91ff37078ef798e62b050d05717c3a8015ef7d6e 2577 libfido2_1.9.0-1.dsc
 51de9da603b0e76ee878c4a3a2383a735a0f2886 576088 libfido2_1.9.0.orig.tar.gz
 87640dd706ab2f100de22856f5729606f66a26eb 833 libfido2_1.9.0.orig.tar.gz.asc
 4486a4ae37e4d96fa9692f99d15d6c3dadbfed87 52328 libfido2_1.9.0-1.debian.tar.xz
Checksums-Sha256:
 7f8f891ce709f3cbf438497677e6e75bf1ad579880182cce73b23bc4d9203ab8 2577 
libfido2_1.9.0-1.dsc
 ba39e3af3736d2dfc8ad3d1cb6e3be7eccc09588610a3b07c865d0ed3e58c2d2 576088 
libfido2_1.9.0.orig.tar.gz
 7786065096a18c5fa2124a4f11288e06530432b57804c5b58616f90d1e51219d 833 
libfido2_1.9.0.orig.tar.gz.asc
 3cbcd00f6e82a2e867f6f693a28d0537bce679563c0152527a91ef40e78fe03f 52328 
libfido2_1.9.0-1.debian.tar.xz
Files:
 a2850a8a9964d22df76057336c781bc0 2577 libs optional libfido2_1.9.0-1.dsc
 ef5bea44900665ae7893e0b5cc740277 576088 libs optional 
libfido2_1.9.0.orig.tar.gz
 2b5588a12974407925c4d1c4243b72ab 833 libs optional 
libfido2_1.9.0.orig.tar.gz.asc
 3fa9f0bf2b9f5120da382c0d857b40e1 52328 libs optional 
libfido2_1.9.0-1.debian.tar.xz

-----BEGIN PGP SIGNATURE-----
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=1kS7
-----END PGP SIGNATURE-----

--- End Message ---

Reply via email to