Bug#828082: bind9: FTBFS with openssl 1.1
On Sun, Jan 22, 2017 at 6:26 AM, Luca Boccassi wrote: > This will allow a clean rebuild for backporting purposes. Would really > appreciate a lot if this change could be made :-) There are no jessie backports of bind. Best wishes, Mike
Bug#828082: bind9: FTBFS with openssl 1.1
On Sun, 15 Jan 2017 03:45:30 -0500 Michael Gilbertwrote: > On Fri, Jan 13, 2017 at 4 > > Upstream has actually added a patch for this already in the stable > > branch as far as I know, so I expect this to actually have been > > fixed in 9.10.4-P5. > > I worked on this today, their patch is not applied in -P5, so I'll be > uploading a version with Bernhard's suggestion. > > Best wishes, > Mike Hello Mike, Would it be possible to build-depend on: libssl1.0-dev | libssl-dev (<< 1.1.0~) instead of just libssl1.0-dev ? This will allow a clean rebuild for backporting purposes. Would really appreciate a lot if this change could be made :-) Thank you! Kind regards, Luca Boccassi
Bug#828082: bind9: FTBFS with openssl 1.1
On Fri, Jan 13, 2017 at 4 > Upstream has actually added a patch for this already in the stable > branch as far as I know, so I expect this to actually have been > fixed in 9.10.4-P5. I worked on this today, their patch is not applied in -P5, so I'll be uploading a version with Bernhard's suggestion. Best wishes, Mike
Bug#828082: bind9: FTBFS with openssl 1.1
On Fri, Jan 13, 2017 at 07:31:03PM +0100, Bernhard Schmidt wrote: > Hi, > > > Your package is failing to build with openss 1.1: > > checking for OpenSSL library... no > > yes > > checking for using OpenSSL for hash functions... no > > [...] > > checking for OpenSSL library... using OpenSSL from /usr/lib and /usr/include > > checking whether linking with OpenSSL works... yes > > [...] > > configure: error: OpenSSL has unsupported dynamic loading > > no > > [...] > > BIND 9 is being built without cryptography support. This means it will > > not have DNSSEC support. Use --with-openssl, or --with-pkcs11 and > > --enable-native-pkcs11 to enable cryptography. > > src:bind9 still fails to rebuild in unstable. I understand that you > would not want to import a large patch for this, so please switch > build-deps to libssl1.0-dev for stretch. Upstream has actually added a patch for this already in the stable branch as far as I know, so I expect this to actually have been fixed in 9.10.4-P5. That being set, it's not using libssl, so either solution is fine for me. Kurt
Bug#828082: bind9: FTBFS with openssl 1.1
Hi, > Your package is failing to build with openss 1.1: > checking for OpenSSL library... no > yes > checking for using OpenSSL for hash functions... no > [...] > checking for OpenSSL library... using OpenSSL from /usr/lib and /usr/include > checking whether linking with OpenSSL works... yes > [...] > configure: error: OpenSSL has unsupported dynamic loading > no > [...] > BIND 9 is being built without cryptography support. This means it will > not have DNSSEC support. Use --with-openssl, or --with-pkcs11 and > --enable-native-pkcs11 to enable cryptography. src:bind9 still fails to rebuild in unstable. I understand that you would not want to import a large patch for this, so please switch build-deps to libssl1.0-dev for stretch. Patch attached (libssl-dev kept as alternative for easier backporting) Bernhard diff --git a/debian/control b/debian/control index 6698667..eaa7b33 100644 --- a/debian/control +++ b/debian/control @@ -6,7 +6,7 @@ Uploaders: Michael Gilbert, Robie Basak = 9), dh-exec, libkrb5-dev, - libssl-dev, + libssl1.0-dev | libssl-dev, libtool, bison, libdb-dev (>>4.6), libldap2-dev, signature.asc Description: Digital signature
Bug#828082: bind9: FTBFS with openssl 1.1
Source: bind9 Version: 9.10.3.dfsg.P4-10 Severity: important Control: block 827061 by -1 Hi, Your package is failing to build with openss 1.1: checking for OpenSSL library... no yes checking for using OpenSSL for hash functions... no [...] checking for OpenSSL library... using OpenSSL from /usr/lib and /usr/include checking whether linking with OpenSSL works... yes [...] configure: error: OpenSSL has unsupported dynamic loading no [...] BIND 9 is being built without cryptography support. This means it will not have DNSSEC support. Use --with-openssl, or --with-pkcs11 and --enable-native-pkcs11 to enable cryptography. Kurt