diff options
| author | Zoltán Böszörményi <zboszor@gmail.com> | 2024-05-09 08:07:55 +0200 |
|---|---|---|
| committer | Khem Raj <raj.khem@gmail.com> | 2024-05-12 08:43:17 -0700 |
| commit | d435a32020be6953cd7e99f94a5c6e5c45a186cc (patch) | |
| tree | 3422b36cf9bd65d79e2901e275f7d604fed6ba99 | |
| parent | 34ee1ff3547cf7d01a2bcd960720cd8bd8515d56 (diff) | |
| download | meta-openembedded-d435a32020be6953cd7e99f94a5c6e5c45a186cc.tar.gz | |
uw-imap: Add a patch to support newer than TLSv1.0
The patch 0001-Support-OpenSSL-1.1.patch enabled building
uw-imap against OpenSSL 1.1.0 or later.
However, TLSv1_client_method() and TLSv1_server_method()
restricts uw-imap to TLSv1.0.
These APIs, along with explicitly versioned APIs like
TLSv1_1_*_method() and TLSv1_2_*_method() are deprecated
in OpenSSL 1.1.0 or later. The replacements are unversioned
API functions: TLS_client_method() and TLS_server_method()
which support TLS version autonegotiation.
This allows the PHP IMAP extension to work with IMAP servers
that enforce TLSv1.2 or higher.
Fixes: https://bugs.php.net/bug.php?id=76928
Signed-off-by: Zoltán Böszörményi <zboszor@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
| -rw-r--r-- | meta-oe/recipes-devtools/uw-imap/uw-imap/uw-imap-newer-tls.patch | 29 | ||||
| -rw-r--r-- | meta-oe/recipes-devtools/uw-imap/uw-imap_2007f.bb | 1 |
2 files changed, 30 insertions, 0 deletions
diff --git a/meta-oe/recipes-devtools/uw-imap/uw-imap/uw-imap-newer-tls.patch b/meta-oe/recipes-devtools/uw-imap/uw-imap/uw-imap-newer-tls.patch new file mode 100644 index 0000000000..958abc90f8 --- /dev/null +++ b/meta-oe/recipes-devtools/uw-imap/uw-imap/uw-imap-newer-tls.patch | |||
| @@ -0,0 +1,29 @@ | |||
| 1 | Signed-off-by: Zoltán Böszörményi <zboszor@gmail.com> | ||
| 2 | Upstream-Status: Pending | ||
| 3 | |||
| 4 | --- imap-2007f/src/osdep/unix/ssl_unix.c.old 2024-05-08 09:41:06.183450584 +0200 | ||
| 5 | +++ imap-2007f/src/osdep/unix/ssl_unix.c 2024-05-08 09:43:38.512931933 +0200 | ||
| 6 | @@ -220,7 +220,11 @@ | ||
| 7 | if (ssl_last_error) fs_give ((void **) &ssl_last_error); | ||
| 8 | ssl_last_host = host; | ||
| 9 | if (!(stream->context = SSL_CTX_new ((flags & NET_TLSCLIENT) ? | ||
| 10 | +#if OPENSSL_VERSION_NUMBER >= 0x10100000 | ||
| 11 | + TLS_client_method () : | ||
| 12 | +#else | ||
| 13 | TLSv1_client_method () : | ||
| 14 | +#endif | ||
| 15 | SSLv23_client_method ()))) | ||
| 16 | return "SSL context failed"; | ||
| 17 | SSL_CTX_set_options (stream->context,0); | ||
| 18 | @@ -703,7 +707,11 @@ | ||
| 19 | } | ||
| 20 | /* create context */ | ||
| 21 | if (!(stream->context = SSL_CTX_new (start_tls ? | ||
| 22 | +#if OPENSSL_VERSION_NUMBER >= 0x10100000 | ||
| 23 | + TLS_server_method () : | ||
| 24 | +#else | ||
| 25 | TLSv1_server_method () : | ||
| 26 | +#endif | ||
| 27 | SSLv23_server_method ()))) | ||
| 28 | syslog (LOG_ALERT,"Unable to create SSL context, host=%.80s", | ||
| 29 | tcp_clienthost ()); | ||
diff --git a/meta-oe/recipes-devtools/uw-imap/uw-imap_2007f.bb b/meta-oe/recipes-devtools/uw-imap/uw-imap_2007f.bb index dcb59f4ea0..17faa3aa6e 100644 --- a/meta-oe/recipes-devtools/uw-imap/uw-imap_2007f.bb +++ b/meta-oe/recipes-devtools/uw-imap/uw-imap_2007f.bb | |||
| @@ -15,6 +15,7 @@ SRC_URI = "https://fossies.org/linux/misc/old/imap-${PV}.tar.gz \ | |||
| 15 | file://0001-Do-not-build-mtest.patch \ | 15 | file://0001-Do-not-build-mtest.patch \ |
| 16 | file://0002-tmail-Include-ctype.h-for-isdigit.patch \ | 16 | file://0002-tmail-Include-ctype.h-for-isdigit.patch \ |
| 17 | file://0001-Fix-Wincompatible-function-pointer-types.patch \ | 17 | file://0001-Fix-Wincompatible-function-pointer-types.patch \ |
| 18 | file://uw-imap-newer-tls.patch \ | ||
| 18 | " | 19 | " |
| 19 | 20 | ||
| 20 | SRC_URI[md5sum] = "2126fd125ea26b73b20f01fcd5940369" | 21 | SRC_URI[md5sum] = "2126fd125ea26b73b20f01fcd5940369" |