[Bug 2154945] [NEW] privoxy: FTBFS with openssl 4.0

Tue, 02 Jun 2026 05:00:59 -0700 

Public bug reported:

Imported from Debian bug http://bugs.debian.org/1138398:

Package: privoxy
Version: 4.1.0-1
Severity: normal
Tags: sid
control: affects -1 src:openssl
User: [email protected]
Usertags: openssl-4.0

OpenSSL 4.0 is in experimental. This package fails to build against it:

| gcc -c -pipe -g -O2 -Werror=implicit-function-declaration 
-ffile-prefix-map=/build/reproducible-path/privoxy-4.1.0=. 
-fstack-protector-strong -fstack-clash-protection -Wformat 
-Werror=format-security -fcf-protection -DNDEBUG -Wdate-time 
-D_FORTIFY_SOURCE=2  -pthread -Wall -Wdate-time -D_FORTIFY_SOURCE=2 openssl.c 
-o openssl.o
| openssl.c: In function ‘ssl_store_cert’:
| openssl.c:377:10: error: invalid use of incomplete typedef ‘ASN1_INTEGER’ 
{aka ‘const struct asn1_string_st’}
|   377 |    if (bs->length <= (int)sizeof(long))
|       |          ^~
| openssl.c:391:13: error: invalid use of incomplete typedef ‘ASN1_INTEGER’ 
{aka ‘const struct asn1_string_st’}
|   391 |       if (bs->type == V_ASN1_NEG_INTEGER)
|       |             ^~
| openssl.c:411:13: error: invalid use of incomplete typedef ‘ASN1_INTEGER’ 
{aka ‘const struct asn1_string_st’}
|   411 |       if (bs->type == V_ASN1_NEG_INTEGER)
|       |             ^~
| openssl.c:420:25: error: invalid use of incomplete typedef ‘ASN1_INTEGER’ 
{aka ‘const struct asn1_string_st’}
|   420 |       for (i = 0; i < bs->length; i++)
|       |                         ^~
| openssl.c:422:42: error: invalid use of incomplete typedef ‘ASN1_INTEGER’ 
{aka ‘const struct asn1_string_st’}
|   422 |          if (BIO_printf(bio, "%02x%c", bs->data[i],
|       |                                          ^~
| openssl.c:423:29: error: invalid use of incomplete typedef ‘ASN1_INTEGER’ 
{aka ‘const struct asn1_string_st’}
|   423 |                ((i + 1 == bs->length) ? '\n' : ':')) <= 0)
|       |                             ^~
| openssl.c:532:28: warning: initialization discards ‘const’ qualifier from 
pointer target type [-Wdiscarded-qualifiers]
|   532 |       X509_EXTENSION *ex = X509_get_ext(crt, loc);
|       |                            ^~~~~~~~~~~~
| openssl.c:555:28: warning: initialization discards ‘const’ qualifier from 
pointer target type [-Wdiscarded-qualifiers]
|   555 |       X509_EXTENSION *ex = X509_get_ext(crt, loc);
|       |                            ^~~~~~~~~~~~
| openssl.c:578:28: warning: initialization discards ‘const’ qualifier from 
pointer target type [-Wdiscarded-qualifiers]
|   578 |       X509_EXTENSION *ex = X509_get_ext(crt, loc);
|       |                            ^~~~~~~~~~~~
| openssl.c:601:28: warning: initialization discards ‘const’ qualifier from 
pointer target type [-Wdiscarded-qualifiers]
|   601 |       X509_EXTENSION *ex = X509_get_ext(crt, loc);
|       |                            ^~~~~~~~~~~~
| openssl.c:623:28: warning: initialization discards ‘const’ qualifier from 
pointer target type [-Wdiscarded-qualifiers]
|   623 |       X509_EXTENSION *ex = X509_get_ext(crt, loc);
|       |                            ^~~~~~~~~~~~
| openssl.c:647:28: warning: initialization discards ‘const’ qualifier from 
pointer target type [-Wdiscarded-qualifiers]
|   647 |       X509_EXTENSION *ex = X509_get_ext(crt, loc);
|       |                            ^~~~~~~~~~~~
| openssl.c: In function ‘create_server_ssl_connection’:
| openssl.c:1100:4: warning: ‘SSL_set1_host’ is deprecated: Since OpenSSL 
4.0 [-Wdeprecated-declarations]
|  1100 |    if (!SSL_set1_host(ssl, csp->http->host))
|       |    ^~
| In file included from project.h:76,
|                  from openssl.c:50:
| /usr/include/openssl/ssl.h:1922:34: note: declared here
|  1922 | OSSL_DEPRECATEDIN_4_0 __owur int SSL_set1_host(SSL *s, const char 
*host);
|       |                                  ^~~~~~~~~~~~~
| openssl.c: In function ‘ssl_certificate_is_invalid’:
| openssl.c:1648:4: warning: ‘X509_cmp_current_time’ is deprecated: Since 
OpenSSL 4.0 [-Wdeprecated-declarations]
|  1648 |    ret = X509_cmp_current_time(X509_get_notAfter(cert));
|       |    ^~~
| In file included from /usr/include/openssl/pem.h:23,
|                  from openssl.c:38:
| /usr/include/openssl/x509.h:694:27: note: declared here
|   694 | OSSL_DEPRECATEDIN_4_0 int X509_cmp_current_time(const ASN1_TIME *s);
|       |                           ^~~~~~~~~~~~~~~~~~~~~
| openssl.c: In function ‘generate_host_certificate’:
| openssl.c:1997:16: warning: assignment discards ‘const’ qualifier from 
pointer target type [-Wdiscarded-qualifiers]
|  1997 |    issuer_name = X509_get_subject_name(issuer_cert);
|       |                ^
| make[2]: *** [GNUmakefile:314: openssl.o] Error 1


Full buildlog
        
https://breakpoint.cc/openssl-rebuild/logs-4/attempted/privoxy_4.1.0-1_amd64-2026-04-19T09:58:31Z

Sebastian

** Affects: privoxy (Ubuntu)
     Importance: Undecided
         Status: New

** Affects: privoxy (Debian)
     Importance: Undecided
         Status: New


** Tags: ftbfs openssl-4.0

** Bug watch added: Debian Bug tracker #1138398
   https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138398

** Changed in: privoxy (Debian)
 Remote watch: None => Debian Bug tracker #1138398

** Tags added: ftbfs openssl-4.0

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2154945

Title:
  privoxy: FTBFS with openssl 4.0

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/privoxy/+bug/2154945/+subscriptions


-- 
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

Reply via email to