[squid-users] Dynamic SSL Certificate Generation

From: Markus Moeller <huaraz_at_moeller.plus.com>
Date: Sat, 6 Aug 2011 15:30:13 +0100

I try to use sslbump and Dynamic SSL Certificate Generation with squid 3.2
(latest from bzr) but get the following error:

g++ -DHAVE_CONFIG_H -I../.. -I../../include -I../../lib -I../../src -I../../include
      -Wall -Wpointer-arith -Wwrite-strings -Wcomments -Werror -pipe -D_REENTRANT
 -g -O2 -MT certificate_db.o -MD -MP -MF .deps/certificate_db.Tpo -c -o
certificate_db.o certificate_db.cc
certificate_db.cc: In member function ‚bool
Ssl::CertificateDb::deleteInvalidCertificate()‚:
certificate_db.cc:438:53: error: invalid conversion from ‚void*‚ to ‚const
_STACK*‚
certificate_db.cc:438:53: error: initializing argument 1 of ‚void*
sk_value(const _STACK*, int)‚
certificate_db.cc: In member function ‚bool
Ssl::CertificateDb::deleteOldestCertificate()‚:
certificate_db.cc:477:39: error: invalid conversion from ‚void*‚ to ‚const
_STACK*‚
certificate_db.cc:477:39: error: initializing argument 1 of ‚void*
sk_value(const _STACK*, int)‚
certificate_db.cc: In member function ‚bool
Ssl::CertificateDb::deleteByHostname(const std::string&)‚:
certificate_db.cc:503:53: error: invalid conversion from ‚void*‚ to ‚const
_STACK*‚
certificate_db.cc:503:53: error: initializing argument 1 of ‚void*
sk_value(const _STACK*, int)‚
make[3]: *** [certificate_db.o] Error 1
make[3]: Leaving directory
`/backup/bazaar/squid-3-bzr/squid-3.2-comp/src/ssl'
make[2]: *** [all-recursive] Error 1
make[2]: Leaving directory `/backup/bazaar/squid-3-bzr/squid-3.2-comp/src'
make[1]: *** [all] Error 2
make[1]: Leaving directory `/backup/bazaar/squid-3-bzr/squid-3.2-comp/src'
make: *** [all-recursive] Error 1

The configure was

./configure --prefix=/opt/squid-3.2 \
        --sysconfdir=/etc/squid \
        --bindir=/opt/squid-3.2/sbin \
        --sbindir=/opt/squid-3.2/sbin \
        --localstatedir=/var \
        --libexecdir=/opt/squid-3.2/sbin \
        --datadir=/opt/squid-3.2/share/squid \
        --mandir=/opt/squid-3.2/share/man \
        --with-dl \
        --with-maxfd=4096 \
        --enable-snmp \
        --enable-carp \
        --enable-useragent-log \
        --enable-auth \
        --enable-auth-basic="LDAP MSNT NCSA PAM SMB NOS getpwnam
MSNT-multi-domain" \
        --enable-auth-ntlm="smb_lm fake" \
        --enable-auth-negotiate="kerberos negotiate_wrapper" \
        --enable-auth-digest="LDAP file" \
        --enable-external-acl-helpers="file_userip LDAP_group
kerberos_ldap_group session unix_group wbinfo_group" \
        --enable-ntlm-fail-open \
        --enable-referer-log \
        --enable-arp-acl \
        --enable-htcp \
        --enable-underscores \
        --enable-stacktraces \
        --enable-delay-pools \
        --enable-useragent-log \
        --enable-referer-log \
        --enable-forward-log \
        --enable-multicast-miss \
        --enable-ssl \
        --enable-ssl-crtd \
        --enable-cache-digests \
        --enable-auth-on-acceleration \
        --enable-storeio="aufs,diskd,ufs" \
        --enable-linux-netfilter \
        --enable-removal-policies="heap,lru" \
        --enable-icmp \
        --with-samba-sources=/usr/include/samba \
        --enable-large-cache-files \
        --enable-x-accelerator-vary \
        --enable-follow-x-forwarded-for \
        --with-default-user=squid \
        --enable-translation

make DEFAULT_SWAP_DIR=/var/cache/squid \
        DEFAULT_LOG_PREFIX=/var/log/squid \
        DEFAULT_PID_FILE=/var/run/squid.pid \
        SAMBAPREFIX=/usr

compiler details

> g++ -v
Using built-in specs.
COLLECT_GCC=g++
COLLECT_LTO_WRAPPER=/usr/lib/gcc/i586-suse-linux/4.5/lto-wrapper
Target: i586-suse-linux
Configured with:
../configure --prefix=/usr --infodir=/usr/share/info --mandir=/usr/share/man
 --libdir=/usr/lib --libexecdir=/usr/lib --enable-languages=c,c++,objc,fortran,obj-c++,java,ada
 --enable-checking=release --with-gxx-include-dir=/usr/include/c++/4.5 --enable-ssp
 --disable-libssp --disable-plugin --with-bugurl=http://bugs.opensuse.org/ --with-pkgversion='SUSE
Linux' --disable-libgcj --disable-libmudflap --with-slibdir=/lib --with-system-zlib
 --enable-__cxa_atexit --enable-libstdcxx-allocator=new --disable-libstdcxx-pch
 --enable-version-specific-runtime-libs --program-suffix=-4.5 --enable-linux-futex
 --without-system-libunwind --enable-gold --with-plugin-ld=/usr/bin/gold --with-arch-32=i586
 --with-tune=generic --build=i586-suse-linux
Thread model: posix
gcc version 4.5.0 20100604 [gcc-4_5-branch revision 160292] (SUSE Linux)

Should this work with 3.2 ?

Thank you
Markus
Received on Sat Aug 06 2011 - 14:30:35 MDT

This archive was generated by hypermail 2.2.0 : Sat Aug 06 2011 - 12:00:01 MDT