[Pkg-openssl-devel] Bug#1138395: duo-unix: FTBFS with openssl 4.0
Sebastian Andrzej Siewior
sebastian at breakpoint.cc
Sat May 30 17:06:52 BST 2026
Package: duo-unix
Version: 1.11.3-1.2
Severity: normal
Tags: sid
control: affects -1 src:openssl
User: pkg-openssl-devel at lists.alioth.debian.org
Usertags: openssl-4.0
OpenSSL 4.0 is in experimental. This package fails to build against it:
| libtool: compile: gcc -DHAVE_CONFIG_H -I. -I.. -I../compat -Wdate-time -D_FORTIFY_SOURCE=2 -g -O2 -Werror=implicit-function-declaration -ffile-prefix-map=/build/reproducible-path/duo-unix-1.11.3=. -fstack-protector-strong -fstack-clash-protection -Wformat -Werror=format-security -fcf-protection -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -c https.c -fPIC -DPIC -o .libs/https.o
| https.c: In function '_SSL_check_server_cert':
| https.c:123:25: error: implicit declaration of function 'ASN1_STRING_data'; did you mean 'ASN1_STRING_set0'? [-Wimplicit-function-declaration]
| 123 | p = (char *)ASN1_STRING_data(altname->d.ia5);
| | ^~~~~~~~~~~~~~~~
| | ASN1_STRING_set0
| https.c:123:17: warning: cast to pointer from integer of different size [-Wint-to-pointer-cast]
| 123 | p = (char *)ASN1_STRING_data(altname->d.ia5);
| | ^
| https.c:133:18: warning: assignment discards 'const' qualifier from pointer target type [-Wdiscarded-qualifiers]
| 133 | (subject = X509_get_subject_name(cert)) != NULL) {
| | ^
| https.c:139:22: warning: assignment discards 'const' qualifier from pointer target type [-Wdiscarded-qualifiers]
| 139 | if ((tmp = X509_NAME_ENTRY_get_data(
| | ^
| https.c:142:21: warning: cast to pointer from integer of different size [-Wint-to-pointer-cast]
| 142 | p = (char *)ASN1_STRING_data(tmp);
| | ^
| https.c: In function 'https_send':
| https.c:682:5: warning: 'HMAC_CTX_new' is deprecated: Since OpenSSL 3.0 [-Wdeprecated-declarations]
| 682 | if ((hmac = HMAC_CTX_new()) == NULL) {
| | ^~
| In file included from https.c:26:
| /usr/include/openssl/hmac.h:33:33: note: declared here
| 33 | OSSL_DEPRECATEDIN_3_0 HMAC_CTX *HMAC_CTX_new(void);
| | ^~~~~~~~~~~~
| https.c:688:5: warning: 'HMAC_Init' is deprecated: Since OpenSSL 1.1.0 [-Wdeprecated-declarations]
| 688 | HMAC_Init(hmac, skey, strlen(skey), EVP_sha1());
| | ^~~~~~~~~
| /usr/include/openssl/hmac.h:38:36: note: declared here
| 38 | OSSL_DEPRECATEDIN_1_1_0 __owur int HMAC_Init(HMAC_CTX *ctx,
| | ^~~~~~~~~
| https.c:689:5: warning: 'HMAC_Update' is deprecated: Since OpenSSL 3.0 [-Wdeprecated-declarations]
| 689 | HMAC_Update(hmac, (unsigned char *)p, strlen(p));
| | ^~~~~~~~~~~
| /usr/include/openssl/hmac.h:46:27: note: declared here
| 46 | OSSL_DEPRECATEDIN_3_0 int HMAC_Update(HMAC_CTX *ctx, const unsigned char *data,
| | ^~~~~~~~~~~
| https.c:690:5: warning: 'HMAC_Final' is deprecated: Since OpenSSL 3.0 [-Wdeprecated-declarations]
| 690 | HMAC_Final(hmac, MD, NULL);
| | ^~~~~~~~~~
| /usr/include/openssl/hmac.h:48:27: note: declared here
| 48 | OSSL_DEPRECATEDIN_3_0 int HMAC_Final(HMAC_CTX *ctx, unsigned char *md,
| | ^~~~~~~~~~
| https.c:691:5: warning: 'HMAC_CTX_free' is deprecated: Since OpenSSL 3.0 [-Wdeprecated-declarations]
| 691 | HMAC_CTX_free(hmac);
| | ^~~~~~~~~~~~~
| /usr/include/openssl/hmac.h:35:28: note: declared here
| 35 | OSSL_DEPRECATEDIN_3_0 void HMAC_CTX_free(HMAC_CTX *ctx);
| | ^~~~~~~~~~~~~
| make[3]: *** [Makefile:517: https.lo] Error 1
Full buildlog
https://breakpoint.cc/openssl-rebuild/logs-4/attempted/duo-unix_1.11.3-1.2_amd64-2026-04-19T09:20:55Z
Sebastian
More information about the Pkg-openssl-devel
mailing list