Regression in OpenBSD

Fred Wright fw at fwright.net
Fri Dec 22 05:39:28 UTC 2023


I found one build error that's a regression - in OpenBSD 5.6.  It's 
"'CMAC_CTX' undeclared" in authreadkeys.c, which is due to the new 
conditional around the inclusion of <openssl/cmac.h>.  Some other sources 
include this unconditionally, and macencrypt.c has it in an if/else 
construct.  The else case there would be implicitly <= 0x20000000L, while 
the condition here is < 0x20000000L.  That seemed like a hint, so I tried 
changing the "<" to "<=" (line 26 of authreadkeys.c), and that fixed it. 
That suggests that other cases of "< 0x20000000L" may incorrect as well. 
Perhaps this OpenBSD install is the only case where the value of 
OPENSSL_VERSION_NUMBER == 0x20000000L.

Ntpsec doesn't fully support OpenBSD anyway, due to the lack of "timex" 
(though my Mac patches fix that), and the fact that OpenBSD provides 
LibreSSL rather than OpenSSL, but the 1.2.2a "Mac" version did build with 
--disable-nts.

NetBSD 6.1.5 also fails due to a missing declaration for ldexpl, but 
that's not a new problem.

Fred Wright


More information about the devel mailing list