[gentoo-commits] proj/qt:master commit in: dev-qt/qtnetwork/, dev-qt/qtnetwork/files/ - gentoo-commits

From:	Stefan Strogin <steils@g.o>
To:	gentoo-commits@l.g.o
Subject:	[gentoo-commits] proj/qt:master commit in: dev-qt/qtnetwork/, dev-qt/qtnetwork/files/
Date:	Thu, 28 May 2020 07:20:45
Message-Id:	`1590650249.431b0cfa1327f4732beb8f8fcf962fa4bf691bf4.steils@gentoo`

1

commit:     431b0cfa1327f4732beb8f8fcf962fa4bf691bf4

2

Author:     Stefan Strogin <steils <AT> gentoo <DOT> org>

3

AuthorDate: Sun Feb  9 02:13:53 2020 +0000

4

Commit:     Stefan Strogin <steils <AT> gentoo <DOT> org>

5

CommitDate: Thu May 28 07:17:29 2020 +0000

6

URL:        https://gitweb.gentoo.org/proj/qt.git/commit/?id=431b0cfa

7

8

dev-qt/qtnetwork: [5.15] add patch for LibreSSL

9

10

Closes: https://github.com/gentoo/qt/pull/207

11

Package-Manager: Portage-2.3.87, Repoman-2.3.20

12

Signed-off-by: Stefan Strogin <steils <AT> gentoo.org>

13

14

 .../files/qtnetwork-5.15.9999-libressl.patch       | 359 +++++++++++++++++++++

15

 dev-qt/qtnetwork/qtnetwork-5.15.9999.ebuild        |   2 +

16

 2 files changed, 361 insertions(+)

17

18

diff --git a/dev-qt/qtnetwork/files/qtnetwork-5.15.9999-libressl.patch b/dev-qt/qtnetwork/files/qtnetwork-5.15.9999-libressl.patch

19

new file mode 100644

20

index 00000000..d78e1929

21

--- /dev/null

22

+++ b/dev-qt/qtnetwork/files/qtnetwork-5.15.9999-libressl.patch

23

@@ -0,0 +1,359 @@

24

+From faefff58d6669a41ed7831589420c4413bc28f97 Mon Sep 17 00:00:00 2001

25

+From: Stefan Strogin <steils@g.o>

26

+Date: Wed, 5 Feb 2020 03:49:35 +0200

27

+Subject: [PATCH] QSslSocket: add LibreSSL support

28

+

29

+Upstream-Status: Inappropriate

30

+[Upstream is not willing to accept any patches for LibreSSL support]

31

+Signed-off-by: Stefan Strogin <steils@g.o>

32

+---

33

+ src/network/ssl/qsslcertificate_openssl.cpp   |  2 +-

34

+ src/network/ssl/qsslcontext_openssl.cpp       | 17 ++++++-

35

+ src/network/ssl/qsslcontext_openssl_p.h       |  7 +++

36

+ src/network/ssl/qsslsocket_openssl.cpp        |  2 +-

37

+ .../ssl/qsslsocket_openssl_symbols.cpp        | 29 ++++++++++++

38

+ .../ssl/qsslsocket_openssl_symbols_p.h        | 45 +++++++++++++++++++

39

+ 6 files changed, 99 insertions(+), 3 deletions(-)

40

+

41

+diff --git a/src/network/ssl/qsslcertificate_openssl.cpp b/src/network/ssl/qsslcertificate_openssl.cpp

42

+index 6f1fb26add..eba5a72951 100644

43

+--- a/src/network/ssl/qsslcertificate_openssl.cpp

44

++++ b/src/network/ssl/qsslcertificate_openssl.cpp

45

+@@ -658,7 +658,7 @@ static QMultiMap<QByteArray, QString> _q_mapFromX509Name(X509_NAME *name)

46

+         unsigned char *data = nullptr;

47

+         int size = q_ASN1_STRING_to_UTF8(&data, q_X509_NAME_ENTRY_get_data(e));

48

+         info.insert(name, QString::fromUtf8((char*)data, size));

49

+-#if QT_CONFIG(opensslv11)

50

++#if QT_CONFIG(opensslv11) && !defined(LIBRESSL_VERSION_NUMBER)

51

+         q_CRYPTO_free(data, nullptr, 0);

52

+ #else

53

+         q_CRYPTO_free(data);

54

+diff --git a/src/network/ssl/qsslcontext_openssl.cpp b/src/network/ssl/qsslcontext_openssl.cpp

55

+index abc398b209..c2f90be009 100644

56

+--- a/src/network/ssl/qsslcontext_openssl.cpp

57

++++ b/src/network/ssl/qsslcontext_openssl.cpp

58

+@@ -397,16 +397,28 @@ init_context:

59

+         maxVersion = DTLS1_VERSION;

60

+         break;

61

+     case QSsl::DtlsV1_0OrLater:

62

++#ifdef DTLS_MAX_VERSION

63

+         minVersion = DTLS1_VERSION;

64

+         maxVersion = DTLS_MAX_VERSION;

65

++#else

66

++        Q_UNREACHABLE();

67

++#endif // DTLS_MAX_VERSION

68

+         break;

69

+     case QSsl::DtlsV1_2:

70

++#ifdef DTLS1_2_VERSION

71

+         minVersion = DTLS1_2_VERSION;

72

+         maxVersion = DTLS1_2_VERSION;

73

++#else

74

++        Q_UNREACHABLE();

75

++#endif // DTLS1_2_VERSION

76

+         break;

77

+     case QSsl::DtlsV1_2OrLater:

78

++#if defined(DTLS1_2_VERSION) && defined(DTLS_MAX_VERSION)

79

+         minVersion = DTLS1_2_VERSION;

80

+         maxVersion = DTLS_MAX_VERSION;

81

++#else

82

++        Q_UNREACHABLE();

83

++#endif // DTLS1_2_VERSION && DTLS_MAX_VERSION

84

+         break;

85

+     case QSsl::TlsV1_3OrLater:

86

+ #ifdef TLS1_3_VERSION

87

+@@ -711,6 +723,7 @@ void QSslContext::applyBackendConfig(QSslContext *sslContext)

88

+     }

89

+ #endif // ocsp

90

+

91

++#ifndef LIBRESSL_VERSION_NUMBER

92

+     QSharedPointer<SSL_CONF_CTX> cctx(q_SSL_CONF_CTX_new(), &q_SSL_CONF_CTX_free);

93

+     if (cctx) {

94

+         q_SSL_CONF_CTX_set_ssl_ctx(cctx.data(), sslContext->ctx);

95

+@@ -757,7 +770,9 @@ void QSslContext::applyBackendConfig(QSslContext *sslContext)

96

+             sslContext->errorStr = msgErrorSettingBackendConfig(QSslSocket::tr("SSL_CONF_finish() failed"));

97

+             sslContext->errorCode = QSslError::UnspecifiedError;

98

+         }

99

+-    } else {

100

++    } else

101

++#endif // LIBRESSL_VERSION_NUMBER

102

++    {

103

+         sslContext->errorStr = msgErrorSettingBackendConfig(QSslSocket::tr("SSL_CONF_CTX_new() failed"));

104

+         sslContext->errorCode = QSslError::UnspecifiedError;

105

+     }

106

+diff --git a/src/network/ssl/qsslcontext_openssl_p.h b/src/network/ssl/qsslcontext_openssl_p.h

107

+index 70cb97aad8..01a61cf535 100644

108

+--- a/src/network/ssl/qsslcontext_openssl_p.h

109

++++ b/src/network/ssl/qsslcontext_openssl_p.h

110

+@@ -61,6 +61,13 @@

111

+

112

+ QT_BEGIN_NAMESPACE

113

+

114

++#ifndef DTLS_ANY_VERSION

115

++#define DTLS_ANY_VERSION 0x1FFFF

116

++#endif

117

++#ifndef TLS_ANY_VERSION

118

++#define TLS_ANY_VERSION 0x10000

119

++#endif

120

++

121

+ #ifndef QT_NO_SSL

122

+

123

+ class QSslContextPrivate;

124

+diff --git a/src/network/ssl/qsslsocket_openssl.cpp b/src/network/ssl/qsslsocket_openssl.cpp

125

+index 6239537949..6f5e7fd6e2 100644

126

+--- a/src/network/ssl/qsslsocket_openssl.cpp

127

++++ b/src/network/ssl/qsslsocket_openssl.cpp

128

+@@ -605,7 +605,7 @@ bool QSslSocketBackendPrivate::initSslContext()

129

+     else if (mode == QSslSocket::SslServerMode)

130

+         q_SSL_set_psk_server_callback(ssl, &q_ssl_psk_server_callback);

131

+

132

+-#if OPENSSL_VERSION_NUMBER >= 0x10101006L

133

++#if OPENSSL_VERSION_NUMBER >= 0x10101006L && !defined(LIBRESSL_VERSION_NUMBER)

134

+     // Set the client callback for TLSv1.3 PSK

135

+     if (mode == QSslSocket::SslClientMode

136

+         && QSslSocket::sslLibraryBuildVersionNumber() >= 0x10101006L) {

137

+diff --git a/src/network/ssl/qsslsocket_openssl_symbols.cpp b/src/network/ssl/qsslsocket_openssl_symbols.cpp

138

+index 2f57998cea..c5779dd285 100644

139

+--- a/src/network/ssl/qsslsocket_openssl_symbols.cpp

140

++++ b/src/network/ssl/qsslsocket_openssl_symbols.cpp

141

+@@ -145,11 +145,14 @@ DEFINEFUNC(const BIO_METHOD *, BIO_s_mem, void, DUMMYARG, return nullptr, return

142

+ DEFINEFUNC2(int, BN_is_word, BIGNUM *a, a, BN_ULONG w, w, return 0, return)

143

+ DEFINEFUNC(int, EVP_CIPHER_CTX_reset, EVP_CIPHER_CTX *c, c, return 0, return)

144

+ DEFINEFUNC(int, EVP_PKEY_up_ref, EVP_PKEY *a, a, return 0, return)

145

++#ifdef OPENSSL_NO_DEPRECATED_3_0

146

+ DEFINEFUNC2(EVP_PKEY_CTX *, EVP_PKEY_CTX_new, EVP_PKEY *pkey, pkey, ENGINE *e, e, return nullptr, return)

147

+ DEFINEFUNC(int, EVP_PKEY_param_check, EVP_PKEY_CTX *ctx, ctx, return 0, return)

148

+ DEFINEFUNC(void, EVP_PKEY_CTX_free, EVP_PKEY_CTX *ctx, ctx, return, return)

149

++#endif // OPENSSL_NO_DEPRECATED_3_0

150

+ DEFINEFUNC(int, EVP_PKEY_base_id, EVP_PKEY *a, a, return NID_undef, return)

151

+ DEFINEFUNC(int, RSA_bits, RSA *a, a, return 0, return)

152

++#ifndef LIBRESSL_VERSION_NUMBER

153

+ DEFINEFUNC(int, DSA_bits, DSA *a, a, return 0, return)

154

+ DEFINEFUNC(int, OPENSSL_sk_num, OPENSSL_STACK *a, a, return -1, return)

155

+ DEFINEFUNC2(void, OPENSSL_sk_pop_free, OPENSSL_STACK *a, a, void (*b)(void*), b, return, DUMMYARG)

156

+@@ -157,6 +160,14 @@ DEFINEFUNC(OPENSSL_STACK *, OPENSSL_sk_new_null, DUMMYARG, DUMMYARG, return null

157

+ DEFINEFUNC2(void, OPENSSL_sk_push, OPENSSL_STACK *a, a, void *b, b, return, DUMMYARG)

158

+ DEFINEFUNC(void, OPENSSL_sk_free, OPENSSL_STACK *a, a, return, DUMMYARG)

159

+ DEFINEFUNC2(void *, OPENSSL_sk_value, OPENSSL_STACK *a, a, int b, b, return nullptr, return)

160

++#else

161

++DEFINEFUNC(int, sk_num, STACK *a, a, return -1, return)

162

++DEFINEFUNC2(void, sk_pop_free, STACK *a, a, void (*b)(void*), b, return, DUMMYARG)

163

++DEFINEFUNC(_STACK *, sk_new_null, DUMMYARG, DUMMYARG, return nullptr, return)

164

++DEFINEFUNC2(void, sk_push, _STACK *a, a, void *b, b, return, DUMMYARG)

165

++DEFINEFUNC(void, sk_free, _STACK *a, a, return, DUMMYARG)

166

++DEFINEFUNC2(void *, sk_value, STACK *a, a, int b, b, return nullptr, return)

167

++#endif // LIBRESSL_VERSION_NUMBER

168

+ DEFINEFUNC(int, SSL_session_reused, SSL *a, a, return 0, return)

169

+ DEFINEFUNC2(unsigned long, SSL_CTX_set_options, SSL_CTX *ctx, ctx, unsigned long op, op, return 0, return)

170

+ #ifdef TLS1_3_VERSION

171

+@@ -182,7 +193,11 @@ DEFINEFUNC2(void, X509_STORE_set_verify_cb, X509_STORE *a, a, X509_STORE_CTX_ver

172

+ DEFINEFUNC3(int, X509_STORE_set_ex_data, X509_STORE *a, a, int idx, idx, void *data, data, return 0, return)

173

+ DEFINEFUNC2(void *, X509_STORE_get_ex_data, X509_STORE *r, r, int idx, idx, return nullptr, return)

174

+ DEFINEFUNC(STACK_OF(X509) *, X509_STORE_CTX_get0_chain, X509_STORE_CTX *a, a, return nullptr, return)

175

++#ifndef LIBRESSL_VERSION_NUMBER

176

+ DEFINEFUNC3(void, CRYPTO_free, void *str, str, const char *file, file, int line, line, return, DUMMYARG)

177

++#else

178

++DEFINEFUNC(void, CRYPTO_free, void *a, a, return, DUMMYARG)

179

++#endif

180

+ DEFINEFUNC(long, OpenSSL_version_num, void, DUMMYARG, return 0, return)

181

+ DEFINEFUNC(const char *, OpenSSL_version, int a, a, return nullptr, return)

182

+ DEFINEFUNC(unsigned long, SSL_SESSION_get_ticket_lifetime_hint, const SSL_SESSION *session, session, return 0, return)

183

+@@ -222,7 +237,9 @@ DEFINEFUNC5(int, OCSP_id_get0_info, ASN1_OCTET_STRING **piNameHash, piNameHash,

184

+             ASN1_OCTET_STRING **piKeyHash, piKeyHash, ASN1_INTEGER **pserial, pserial, OCSP_CERTID *cid, cid,

185

+             return 0, return)

186

+ DEFINEFUNC2(OCSP_RESPONSE *, OCSP_response_create, int status, status, OCSP_BASICRESP *bs, bs, return nullptr, return)

187

++#ifndef LIBRESSL_VERSION_NUMBER

188

+ DEFINEFUNC(const STACK_OF(X509) *, OCSP_resp_get0_certs, const OCSP_BASICRESP *bs, bs, return nullptr, return)

189

++#endif

190

+ DEFINEFUNC2(int, OCSP_id_cmp, OCSP_CERTID *a, a, OCSP_CERTID *b, b, return -1, return)

191

+ DEFINEFUNC7(OCSP_SINGLERESP *, OCSP_basic_add1_status, OCSP_BASICRESP *r, r, OCSP_CERTID *c, c, int s, s,

192

+             int re, re, ASN1_TIME *rt, rt, ASN1_TIME *t, t, ASN1_TIME *n, n, return nullptr, return)

193

+@@ -354,12 +371,14 @@ DEFINEFUNC2(int, SSL_CTX_use_PrivateKey, SSL_CTX *a, a, EVP_PKEY *b, b, return -

194

+ DEFINEFUNC2(int, SSL_CTX_use_RSAPrivateKey, SSL_CTX *a, a, RSA *b, b, return -1, return)

195

+ DEFINEFUNC3(int, SSL_CTX_use_PrivateKey_file, SSL_CTX *a, a, const char *b, b, int c, c, return -1, return)

196

+ DEFINEFUNC(X509_STORE *, SSL_CTX_get_cert_store, const SSL_CTX *a, a, return nullptr, return)

197

++#ifndef LIBRESSL_VERSION_NUMBER

198

+ DEFINEFUNC(SSL_CONF_CTX *, SSL_CONF_CTX_new, DUMMYARG, DUMMYARG, return nullptr, return);

199

+ DEFINEFUNC(void, SSL_CONF_CTX_free, SSL_CONF_CTX *a, a, return ,return);

200

+ DEFINEFUNC2(void, SSL_CONF_CTX_set_ssl_ctx, SSL_CONF_CTX *a, a, SSL_CTX *b, b, return, return);

201

+ DEFINEFUNC2(unsigned int, SSL_CONF_CTX_set_flags, SSL_CONF_CTX *a, a, unsigned int b, b, return 0, return);

202

+ DEFINEFUNC(int, SSL_CONF_CTX_finish, SSL_CONF_CTX *a, a, return 0, return);

203

+ DEFINEFUNC3(int, SSL_CONF_cmd, SSL_CONF_CTX *a, a, const char *b, b, const char *c, c, return 0, return);

204

++#endif

205

+ DEFINEFUNC(void, SSL_free, SSL *a, a, return, DUMMYARG)

206

+ DEFINEFUNC(STACK_OF(SSL_CIPHER) *, SSL_get_ciphers, const SSL *a, a, return nullptr, return)

207

+ DEFINEFUNC(const SSL_CIPHER *, SSL_get_current_cipher, SSL *a, a, return nullptr, return)

208

+@@ -843,17 +862,21 @@ bool q_resolveOpenSslSymbols()

209

+     RESOLVEFUNC(ASN1_STRING_get0_data)

210

+     RESOLVEFUNC(EVP_CIPHER_CTX_reset)

211

+     RESOLVEFUNC(EVP_PKEY_up_ref)

212

++#ifdef OPENSSL_NO_DEPRECATED_3_0

213

+     RESOLVEFUNC(EVP_PKEY_CTX_new)

214

+     RESOLVEFUNC(EVP_PKEY_param_check)

215

+     RESOLVEFUNC(EVP_PKEY_CTX_free)

216

++#endif // OPENSSL_NO_DEPRECATED_3_0

217

+     RESOLVEFUNC(EVP_PKEY_base_id)

218

+     RESOLVEFUNC(RSA_bits)

219

++#ifndef LIBRESSL_VERSION_NUMBER

220

+     RESOLVEFUNC(OPENSSL_sk_new_null)

221

+     RESOLVEFUNC(OPENSSL_sk_push)

222

+     RESOLVEFUNC(OPENSSL_sk_free)

223

+     RESOLVEFUNC(OPENSSL_sk_num)

224

+     RESOLVEFUNC(OPENSSL_sk_pop_free)

225

+     RESOLVEFUNC(OPENSSL_sk_value)

226

++#endif

227

+     RESOLVEFUNC(DH_get0_pqg)

228

+     RESOLVEFUNC(SSL_CTX_set_options)

229

+

230

+@@ -895,7 +918,9 @@ bool q_resolveOpenSslSymbols()

231

+

232

+     RESOLVEFUNC(SSL_SESSION_get_ticket_lifetime_hint)

233

+     RESOLVEFUNC(DH_bits)

234

++#ifndef LIBRESSL_VERSION_NUMBER

235

+     RESOLVEFUNC(DSA_bits)

236

++#endif

237

+

238

+ #if QT_CONFIG(dtls)

239

+     RESOLVEFUNC(DTLSv1_listen)

240

+@@ -925,7 +950,9 @@ bool q_resolveOpenSslSymbols()

241

+     RESOLVEFUNC(OCSP_check_validity)

242

+     RESOLVEFUNC(OCSP_cert_to_id)

243

+     RESOLVEFUNC(OCSP_id_get0_info)

244

++#ifndef LIBRESSL_VERSION_NUMBER

245

+     RESOLVEFUNC(OCSP_resp_get0_certs)

246

++#endif

247

+     RESOLVEFUNC(OCSP_basic_sign)

248

+     RESOLVEFUNC(OCSP_response_create)

249

+     RESOLVEFUNC(i2d_OCSP_RESPONSE)

250

+@@ -1055,12 +1082,14 @@ bool q_resolveOpenSslSymbols()

251

+     RESOLVEFUNC(SSL_CTX_use_RSAPrivateKey)

252

+     RESOLVEFUNC(SSL_CTX_use_PrivateKey_file)

253

+     RESOLVEFUNC(SSL_CTX_get_cert_store);

254

++#ifndef LIBRESSL_VERSION_NUMBER

255

+     RESOLVEFUNC(SSL_CONF_CTX_new);

256

+     RESOLVEFUNC(SSL_CONF_CTX_free);

257

+     RESOLVEFUNC(SSL_CONF_CTX_set_ssl_ctx);

258

+     RESOLVEFUNC(SSL_CONF_CTX_set_flags);

259

+     RESOLVEFUNC(SSL_CONF_CTX_finish);

260

+     RESOLVEFUNC(SSL_CONF_cmd);

261

++#endif

262

+     RESOLVEFUNC(SSL_accept)

263

+     RESOLVEFUNC(SSL_clear)

264

+     RESOLVEFUNC(SSL_connect)

265

+diff --git a/src/network/ssl/qsslsocket_openssl_symbols_p.h b/src/network/ssl/qsslsocket_openssl_symbols_p.h

266

+index 018962bcc1..62cf23ae38 100644

267

+--- a/src/network/ssl/qsslsocket_openssl_symbols_p.h

268

++++ b/src/network/ssl/qsslsocket_openssl_symbols_p.h

269

+@@ -80,6 +80,13 @@ QT_BEGIN_NAMESPACE

270

+

271

+ #define DUMMYARG

272

+

273

++#ifdef LIBRESSL_VERSION_NUMBER

274

++typedef _STACK STACK;

275

++typedef STACK OPENSSL_STACK;

276

++typedef void OPENSSL_INIT_SETTINGS;

277

++typedef int (*X509_STORE_CTX_verify_cb)(int ok,X509_STORE_CTX *ctx);

278

++#endif

279

++

280

+ #if !defined QT_LINKED_OPENSSL

281

+ // **************** Shared declarations ******************

282

+ // ret func(arg)

283

+@@ -230,20 +237,43 @@ const unsigned char * q_ASN1_STRING_get0_data(const ASN1_STRING *x);

284

+ Q_AUTOTEST_EXPORT BIO *q_BIO_new(const BIO_METHOD *a);

285

+ Q_AUTOTEST_EXPORT const BIO_METHOD *q_BIO_s_mem();

286

+

287

++#ifndef LIBRESSL_VERSION_NUMBER

288

+ int q_DSA_bits(DSA *a);

289

++#else

290

++#define q_DSA_bits(dsa) q_BN_num_bits((dsa)->p)

291

++#endif

292

+ int q_EVP_CIPHER_CTX_reset(EVP_CIPHER_CTX *c);

293

+ Q_AUTOTEST_EXPORT int q_EVP_PKEY_up_ref(EVP_PKEY *a);

294

++#ifdef OPENSSL_NO_DEPRECATED_3_0

295

+ EVP_PKEY_CTX *q_EVP_PKEY_CTX_new(EVP_PKEY *pkey, ENGINE *e);

296

+ void q_EVP_PKEY_CTX_free(EVP_PKEY_CTX *ctx);

297

+ int q_EVP_PKEY_param_check(EVP_PKEY_CTX *ctx);

298

++#endif // OPENSSL_NO_DEPRECATED_3_0

299

+ int q_EVP_PKEY_base_id(EVP_PKEY *a);

300

+ int q_RSA_bits(RSA *a);

301

++

302

++#ifndef LIBRESSL_VERSION_NUMBER

303

+ Q_AUTOTEST_EXPORT int q_OPENSSL_sk_num(OPENSSL_STACK *a);

304

+ Q_AUTOTEST_EXPORT void q_OPENSSL_sk_pop_free(OPENSSL_STACK *a, void (*b)(void *));

305

+ Q_AUTOTEST_EXPORT OPENSSL_STACK *q_OPENSSL_sk_new_null();

306

+ Q_AUTOTEST_EXPORT void q_OPENSSL_sk_push(OPENSSL_STACK *st, void *data);

307

+ Q_AUTOTEST_EXPORT void q_OPENSSL_sk_free(OPENSSL_STACK *a);

308

+ Q_AUTOTEST_EXPORT void * q_OPENSSL_sk_value(OPENSSL_STACK *a, int b);

309

++#else // LIBRESSL_VERSION_NUMBER

310

++int q_sk_num(STACK *a);

311

++#define q_OPENSSL_sk_num(a) q_sk_num(a)

312

++void q_sk_pop_free(STACK *a, void (*b)(void *));

313

++#define q_OPENSSL_sk_pop_free(a, b) q_sk_pop_free(a, b)

314

++STACK *q_sk_new_null();

315

++#define q_OPENSSL_sk_new_null() q_sk_new_null()

316

++void q_sk_push(STACK *st, void *data);

317

++#define q_OPENSSL_sk_push(st, data) q_sk_push(st, data)

318

++void q_sk_free(STACK *a);

319

++#define q_OPENSSL_sk_free q_sk_free

320

++void *q_sk_value(STACK *a, int b);

321

++#define q_OPENSSL_sk_value(a, b) q_sk_value(a, b)

322

++#endif // LIBRESSL_VERSION_NUMBER

323

++

324

+ int q_SSL_session_reused(SSL *a);

325

+ unsigned long q_SSL_CTX_set_options(SSL_CTX *ctx, unsigned long op);

326

+ int q_OPENSSL_init_ssl(uint64_t opts, const OPENSSL_INIT_SETTINGS *settings);

327

+@@ -269,8 +299,13 @@ int q_DH_bits(DH *dh);

328

+ # define q_SSL_load_error_strings() q_OPENSSL_init_ssl(OPENSSL_INIT_LOAD_SSL_STRINGS \

329

+                                                        | OPENSSL_INIT_LOAD_CRYPTO_STRINGS, NULL)

330

+

331

++#ifndef LIBRESSL_VERSION_NUMBER

332

+ #define q_SKM_sk_num(type, st) ((int (*)(const STACK_OF(type) *))q_OPENSSL_sk_num)(st)

333

+ #define q_SKM_sk_value(type, st,i) ((type * (*)(const STACK_OF(type) *, int))q_OPENSSL_sk_value)(st, i)

334

++#else

335

++#define q_SKM_sk_num(type, st) ((int (*)(const STACK_OF(type) *))q_sk_num)(st)

336

++#define q_SKM_sk_value(type, st,i) ((type * (*)(const STACK_OF(type) *, int))q_sk_value)(st, i)

337

++#endif // LIBRESSL_VERSION_NUMBER

338

+

339

+ #define q_OPENSSL_add_all_algorithms_conf()  q_OPENSSL_init_crypto(OPENSSL_INIT_ADD_ALL_CIPHERS \

340

+                                                                    | OPENSSL_INIT_ADD_ALL_DIGESTS \

341

+@@ -279,7 +314,11 @@ int q_DH_bits(DH *dh);

342

+                                                                     | OPENSSL_INIT_ADD_ALL_DIGESTS, NULL)

343

+

344

+ int q_OPENSSL_init_crypto(uint64_t opts, const OPENSSL_INIT_SETTINGS *settings);

345

++#ifndef LIBRESSL_VERSION_NUMBER

346

+ void q_CRYPTO_free(void *str, const char *file, int line);

347

++#else

348

++void q_CRYPTO_free(void *a);

349

++#endif

350

+

351

+ long q_OpenSSL_version_num();

352

+ const char *q_OpenSSL_version(int type);

353

+@@ -497,12 +536,14 @@ int q_SSL_CTX_use_PrivateKey(SSL_CTX *a, EVP_PKEY *b);

354

+ int q_SSL_CTX_use_RSAPrivateKey(SSL_CTX *a, RSA *b);

355

+ int q_SSL_CTX_use_PrivateKey_file(SSL_CTX *a, const char *b, int c);

356

+ X509_STORE *q_SSL_CTX_get_cert_store(const SSL_CTX *a);

357

++#ifndef LIBRESSL_VERSION_NUMBER

358

+ SSL_CONF_CTX *q_SSL_CONF_CTX_new();

359

+ void q_SSL_CONF_CTX_free(SSL_CONF_CTX *a);

360

+ void q_SSL_CONF_CTX_set_ssl_ctx(SSL_CONF_CTX *a, SSL_CTX *b);

361

+ unsigned int q_SSL_CONF_CTX_set_flags(SSL_CONF_CTX *a, unsigned int b);

362

+ int q_SSL_CONF_CTX_finish(SSL_CONF_CTX *a);

363

+ int q_SSL_CONF_cmd(SSL_CONF_CTX *a, const char *b, const char *c);

364

++#endif

365

+ void q_SSL_free(SSL *a);

366

+ STACK_OF(SSL_CIPHER) *q_SSL_get_ciphers(const SSL *a);

367

+ const SSL_CIPHER *q_SSL_get_current_cipher(SSL *a);

368

+@@ -728,7 +769,11 @@ int q_OCSP_check_validity(ASN1_GENERALIZEDTIME *thisupd, ASN1_GENERALIZEDTIME *n

369

+ int q_OCSP_id_get0_info(ASN1_OCTET_STRING **piNameHash, ASN1_OBJECT **pmd, ASN1_OCTET_STRING **pikeyHash,

370

+                         ASN1_INTEGER **pserial, OCSP_CERTID *cid);

371

+

372

++#ifndef LIBRESSL_VERSION_NUMBER

373

+ const STACK_OF(X509) *q_OCSP_resp_get0_certs(const OCSP_BASICRESP *bs);

374

++#else

375

++#define q_OCSP_resp_get0_certs(bs) ((bs)->certs)

376

++#endif

377

+ Q_AUTOTEST_EXPORT OCSP_CERTID *q_OCSP_cert_to_id(const EVP_MD *dgst, X509 *subject, X509 *issuer);

378

+ Q_AUTOTEST_EXPORT void q_OCSP_CERTID_free(OCSP_CERTID *cid);

379

+ int q_OCSP_id_cmp(OCSP_CERTID *a, OCSP_CERTID *b);

380

+--

381

+2.26.2

382

+

383

384

diff --git a/dev-qt/qtnetwork/qtnetwork-5.15.9999.ebuild b/dev-qt/qtnetwork/qtnetwork-5.15.9999.ebuild

385

index 1e8c4106..ab3fa869 100644

386

--- a/dev-qt/qtnetwork/qtnetwork-5.15.9999.ebuild

387

+++ b/dev-qt/qtnetwork/qtnetwork-5.15.9999.ebuild

388

@@ -44,6 +44,8 @@ QT5_GENTOO_PRIVATE_CONFIG=(

389

 	:network

390

)

391

392

+PATCHES=( "${FILESDIR}"/${P}-libressl.patch ) # Bug 562050, not upstreamable

393

+

394

 pkg_setup() {

395

 	use connman && QT5_TARGET_SUBDIRS+=(src/plugins/bearer/connman)

396

 	use networkmanager && QT5_TARGET_SUBDIRS+=(src/plugins/bearer/networkmanager)

1	commit: 431b0cfa1327f4732beb8f8fcf962fa4bf691bf4
2	Author: Stefan Strogin <steils <AT> gentoo <DOT> org>
3	AuthorDate: Sun Feb 9 02:13:53 2020 +0000
4	Commit: Stefan Strogin <steils <AT> gentoo <DOT> org>
5	CommitDate: Thu May 28 07:17:29 2020 +0000
6	URL: https://gitweb.gentoo.org/proj/qt.git/commit/?id=431b0cfa
7
8	dev-qt/qtnetwork: [5.15] add patch for LibreSSL
9
10	Closes: https://github.com/gentoo/qt/pull/207
11	Package-Manager: Portage-2.3.87, Repoman-2.3.20
12	Signed-off-by: Stefan Strogin <steils <AT> gentoo.org>
13
14	.../files/qtnetwork-5.15.9999-libressl.patch \| 359 +++++++++++++++++++++
15	dev-qt/qtnetwork/qtnetwork-5.15.9999.ebuild \| 2 +
16	2 files changed, 361 insertions(+)
17
18	diff --git a/dev-qt/qtnetwork/files/qtnetwork-5.15.9999-libressl.patch b/dev-qt/qtnetwork/files/qtnetwork-5.15.9999-libressl.patch
19	new file mode 100644
20	index 00000000..d78e1929
21	--- /dev/null
22	+++ b/dev-qt/qtnetwork/files/qtnetwork-5.15.9999-libressl.patch
23	@@ -0,0 +1,359 @@
24	+From faefff58d6669a41ed7831589420c4413bc28f97 Mon Sep 17 00:00:00 2001
25	+From: Stefan Strogin <steils@g.o>
26	+Date: Wed, 5 Feb 2020 03:49:35 +0200
27	+Subject: [PATCH] QSslSocket: add LibreSSL support
28	+
29	+Upstream-Status: Inappropriate
30	+[Upstream is not willing to accept any patches for LibreSSL support]
31	+Signed-off-by: Stefan Strogin <steils@g.o>
32	+---
33	+ src/network/ssl/qsslcertificate_openssl.cpp \| 2 +-
34	+ src/network/ssl/qsslcontext_openssl.cpp \| 17 ++++++-
35	+ src/network/ssl/qsslcontext_openssl_p.h \| 7 +++
36	+ src/network/ssl/qsslsocket_openssl.cpp \| 2 +-
37	+ .../ssl/qsslsocket_openssl_symbols.cpp \| 29 ++++++++++++
38	+ .../ssl/qsslsocket_openssl_symbols_p.h \| 45 +++++++++++++++++++
39	+ 6 files changed, 99 insertions(+), 3 deletions(-)
40	+
41	+diff --git a/src/network/ssl/qsslcertificate_openssl.cpp b/src/network/ssl/qsslcertificate_openssl.cpp
42	+index 6f1fb26add..eba5a72951 100644
43	+--- a/src/network/ssl/qsslcertificate_openssl.cpp
44	++++ b/src/network/ssl/qsslcertificate_openssl.cpp
45	+@@ -658,7 +658,7 @@ static QMultiMap<QByteArray, QString> _q_mapFromX509Name(X509_NAME *name)
46	+ unsigned char *data = nullptr;
47	+ int size = q_ASN1_STRING_to_UTF8(&data, q_X509_NAME_ENTRY_get_data(e));
48	+ info.insert(name, QString::fromUtf8((char*)data, size));
49	+-#if QT_CONFIG(opensslv11)
50	++#if QT_CONFIG(opensslv11) && !defined(LIBRESSL_VERSION_NUMBER)
51	+ q_CRYPTO_free(data, nullptr, 0);
52	+ #else
53	+ q_CRYPTO_free(data);
54	+diff --git a/src/network/ssl/qsslcontext_openssl.cpp b/src/network/ssl/qsslcontext_openssl.cpp
55	+index abc398b209..c2f90be009 100644
56	+--- a/src/network/ssl/qsslcontext_openssl.cpp
57	++++ b/src/network/ssl/qsslcontext_openssl.cpp
58	+@@ -397,16 +397,28 @@ init_context:
59	+ maxVersion = DTLS1_VERSION;
60	+ break;
61	+ case QSsl::DtlsV1_0OrLater:
62	++#ifdef DTLS_MAX_VERSION
63	+ minVersion = DTLS1_VERSION;
64	+ maxVersion = DTLS_MAX_VERSION;
65	++#else
66	++ Q_UNREACHABLE();
67	++#endif // DTLS_MAX_VERSION
68	+ break;
69	+ case QSsl::DtlsV1_2:
70	++#ifdef DTLS1_2_VERSION
71	+ minVersion = DTLS1_2_VERSION;
72	+ maxVersion = DTLS1_2_VERSION;
73	++#else
74	++ Q_UNREACHABLE();
75	++#endif // DTLS1_2_VERSION
76	+ break;
77	+ case QSsl::DtlsV1_2OrLater:
78	++#if defined(DTLS1_2_VERSION) && defined(DTLS_MAX_VERSION)
79	+ minVersion = DTLS1_2_VERSION;
80	+ maxVersion = DTLS_MAX_VERSION;
81	++#else
82	++ Q_UNREACHABLE();
83	++#endif // DTLS1_2_VERSION && DTLS_MAX_VERSION
84	+ break;
85	+ case QSsl::TlsV1_3OrLater:
86	+ #ifdef TLS1_3_VERSION
87	+@@ -711,6 +723,7 @@ void QSslContext::applyBackendConfig(QSslContext *sslContext)
88	+ }
89	+ #endif // ocsp
90	+
91	++#ifndef LIBRESSL_VERSION_NUMBER
92	+ QSharedPointer<SSL_CONF_CTX> cctx(q_SSL_CONF_CTX_new(), &q_SSL_CONF_CTX_free);
93	+ if (cctx) {
94	+ q_SSL_CONF_CTX_set_ssl_ctx(cctx.data(), sslContext->ctx);
95	+@@ -757,7 +770,9 @@ void QSslContext::applyBackendConfig(QSslContext *sslContext)
96	+ sslContext->errorStr = msgErrorSettingBackendConfig(QSslSocket::tr("SSL_CONF_finish() failed"));
97	+ sslContext->errorCode = QSslError::UnspecifiedError;
98	+ }
99	+- } else {
100	++ } else
101	++#endif // LIBRESSL_VERSION_NUMBER
102	++ {
103	+ sslContext->errorStr = msgErrorSettingBackendConfig(QSslSocket::tr("SSL_CONF_CTX_new() failed"));
104	+ sslContext->errorCode = QSslError::UnspecifiedError;
105	+ }
106	+diff --git a/src/network/ssl/qsslcontext_openssl_p.h b/src/network/ssl/qsslcontext_openssl_p.h
107	+index 70cb97aad8..01a61cf535 100644
108	+--- a/src/network/ssl/qsslcontext_openssl_p.h
109	++++ b/src/network/ssl/qsslcontext_openssl_p.h
110	+@@ -61,6 +61,13 @@
111	+
112	+ QT_BEGIN_NAMESPACE
113	+
114	++#ifndef DTLS_ANY_VERSION
115	++#define DTLS_ANY_VERSION 0x1FFFF
116	++#endif
117	++#ifndef TLS_ANY_VERSION
118	++#define TLS_ANY_VERSION 0x10000
119	++#endif
120	++
121	+ #ifndef QT_NO_SSL
122	+
123	+ class QSslContextPrivate;
124	+diff --git a/src/network/ssl/qsslsocket_openssl.cpp b/src/network/ssl/qsslsocket_openssl.cpp
125	+index 6239537949..6f5e7fd6e2 100644
126	+--- a/src/network/ssl/qsslsocket_openssl.cpp
127	++++ b/src/network/ssl/qsslsocket_openssl.cpp
128	+@@ -605,7 +605,7 @@ bool QSslSocketBackendPrivate::initSslContext()
129	+ else if (mode == QSslSocket::SslServerMode)
130	+ q_SSL_set_psk_server_callback(ssl, &q_ssl_psk_server_callback);
131	+
132	+-#if OPENSSL_VERSION_NUMBER >= 0x10101006L
133	++#if OPENSSL_VERSION_NUMBER >= 0x10101006L && !defined(LIBRESSL_VERSION_NUMBER)
134	+ // Set the client callback for TLSv1.3 PSK
135	+ if (mode == QSslSocket::SslClientMode
136	+ && QSslSocket::sslLibraryBuildVersionNumber() >= 0x10101006L) {
137	+diff --git a/src/network/ssl/qsslsocket_openssl_symbols.cpp b/src/network/ssl/qsslsocket_openssl_symbols.cpp
138	+index 2f57998cea..c5779dd285 100644
139	+--- a/src/network/ssl/qsslsocket_openssl_symbols.cpp
140	++++ b/src/network/ssl/qsslsocket_openssl_symbols.cpp
141	+@@ -145,11 +145,14 @@ DEFINEFUNC(const BIO_METHOD *, BIO_s_mem, void, DUMMYARG, return nullptr, return
142	+ DEFINEFUNC2(int, BN_is_word, BIGNUM *a, a, BN_ULONG w, w, return 0, return)
143	+ DEFINEFUNC(int, EVP_CIPHER_CTX_reset, EVP_CIPHER_CTX *c, c, return 0, return)
144	+ DEFINEFUNC(int, EVP_PKEY_up_ref, EVP_PKEY *a, a, return 0, return)
145	++#ifdef OPENSSL_NO_DEPRECATED_3_0
146	+ DEFINEFUNC2(EVP_PKEY_CTX , EVP_PKEY_CTX_new, EVP_PKEY pkey, pkey, ENGINE *e, e, return nullptr, return)
147	+ DEFINEFUNC(int, EVP_PKEY_param_check, EVP_PKEY_CTX *ctx, ctx, return 0, return)
148	+ DEFINEFUNC(void, EVP_PKEY_CTX_free, EVP_PKEY_CTX *ctx, ctx, return, return)
149	++#endif // OPENSSL_NO_DEPRECATED_3_0
150	+ DEFINEFUNC(int, EVP_PKEY_base_id, EVP_PKEY *a, a, return NID_undef, return)
151	+ DEFINEFUNC(int, RSA_bits, RSA *a, a, return 0, return)
152	++#ifndef LIBRESSL_VERSION_NUMBER
153	+ DEFINEFUNC(int, DSA_bits, DSA *a, a, return 0, return)
154	+ DEFINEFUNC(int, OPENSSL_sk_num, OPENSSL_STACK *a, a, return -1, return)
155	+ DEFINEFUNC2(void, OPENSSL_sk_pop_free, OPENSSL_STACK a, a, void (b)(void*), b, return, DUMMYARG)
156	+@@ -157,6 +160,14 @@ DEFINEFUNC(OPENSSL_STACK *, OPENSSL_sk_new_null, DUMMYARG, DUMMYARG, return null
157	+ DEFINEFUNC2(void, OPENSSL_sk_push, OPENSSL_STACK a, a, void b, b, return, DUMMYARG)
158	+ DEFINEFUNC(void, OPENSSL_sk_free, OPENSSL_STACK *a, a, return, DUMMYARG)
159	+ DEFINEFUNC2(void , OPENSSL_sk_value, OPENSSL_STACK a, a, int b, b, return nullptr, return)
160	++#else
161	++DEFINEFUNC(int, sk_num, STACK *a, a, return -1, return)
162	++DEFINEFUNC2(void, sk_pop_free, STACK a, a, void (b)(void*), b, return, DUMMYARG)
163	++DEFINEFUNC(_STACK *, sk_new_null, DUMMYARG, DUMMYARG, return nullptr, return)
164	++DEFINEFUNC2(void, sk_push, _STACK a, a, void b, b, return, DUMMYARG)
165	++DEFINEFUNC(void, sk_free, _STACK *a, a, return, DUMMYARG)
166	++DEFINEFUNC2(void , sk_value, STACK a, a, int b, b, return nullptr, return)
167	++#endif // LIBRESSL_VERSION_NUMBER
168	+ DEFINEFUNC(int, SSL_session_reused, SSL *a, a, return 0, return)
169	+ DEFINEFUNC2(unsigned long, SSL_CTX_set_options, SSL_CTX *ctx, ctx, unsigned long op, op, return 0, return)
170	+ #ifdef TLS1_3_VERSION
171	+@@ -182,7 +193,11 @@ DEFINEFUNC2(void, X509_STORE_set_verify_cb, X509_STORE *a, a, X509_STORE_CTX_ver
172	+ DEFINEFUNC3(int, X509_STORE_set_ex_data, X509_STORE a, a, int idx, idx, void data, data, return 0, return)
173	+ DEFINEFUNC2(void , X509_STORE_get_ex_data, X509_STORE r, r, int idx, idx, return nullptr, return)
174	+ DEFINEFUNC(STACK_OF(X509) , X509_STORE_CTX_get0_chain, X509_STORE_CTX a, a, return nullptr, return)
175	++#ifndef LIBRESSL_VERSION_NUMBER
176	+ DEFINEFUNC3(void, CRYPTO_free, void str, str, const char file, file, int line, line, return, DUMMYARG)
177	++#else
178	++DEFINEFUNC(void, CRYPTO_free, void *a, a, return, DUMMYARG)
179	++#endif
180	+ DEFINEFUNC(long, OpenSSL_version_num, void, DUMMYARG, return 0, return)
181	+ DEFINEFUNC(const char *, OpenSSL_version, int a, a, return nullptr, return)
182	+ DEFINEFUNC(unsigned long, SSL_SESSION_get_ticket_lifetime_hint, const SSL_SESSION *session, session, return 0, return)
183	+@@ -222,7 +237,9 @@ DEFINEFUNC5(int, OCSP_id_get0_info, ASN1_OCTET_STRING **piNameHash, piNameHash,
184	+ ASN1_OCTET_STRING piKeyHash, piKeyHash, ASN1_INTEGER pserial, pserial, OCSP_CERTID *cid, cid,
185	+ return 0, return)
186	+ DEFINEFUNC2(OCSP_RESPONSE , OCSP_response_create, int status, status, OCSP_BASICRESP bs, bs, return nullptr, return)
187	++#ifndef LIBRESSL_VERSION_NUMBER
188	+ DEFINEFUNC(const STACK_OF(X509) , OCSP_resp_get0_certs, const OCSP_BASICRESP bs, bs, return nullptr, return)
189	++#endif
190	+ DEFINEFUNC2(int, OCSP_id_cmp, OCSP_CERTID a, a, OCSP_CERTID b, b, return -1, return)
191	+ DEFINEFUNC7(OCSP_SINGLERESP , OCSP_basic_add1_status, OCSP_BASICRESP r, r, OCSP_CERTID *c, c, int s, s,
192	+ int re, re, ASN1_TIME rt, rt, ASN1_TIME t, t, ASN1_TIME *n, n, return nullptr, return)
193	+@@ -354,12 +371,14 @@ DEFINEFUNC2(int, SSL_CTX_use_PrivateKey, SSL_CTX a, a, EVP_PKEY b, b, return -
194	+ DEFINEFUNC2(int, SSL_CTX_use_RSAPrivateKey, SSL_CTX a, a, RSA b, b, return -1, return)
195	+ DEFINEFUNC3(int, SSL_CTX_use_PrivateKey_file, SSL_CTX a, a, const char b, b, int c, c, return -1, return)
196	+ DEFINEFUNC(X509_STORE , SSL_CTX_get_cert_store, const SSL_CTX a, a, return nullptr, return)
197	++#ifndef LIBRESSL_VERSION_NUMBER
198	+ DEFINEFUNC(SSL_CONF_CTX *, SSL_CONF_CTX_new, DUMMYARG, DUMMYARG, return nullptr, return);
199	+ DEFINEFUNC(void, SSL_CONF_CTX_free, SSL_CONF_CTX *a, a, return ,return);
200	+ DEFINEFUNC2(void, SSL_CONF_CTX_set_ssl_ctx, SSL_CONF_CTX a, a, SSL_CTX b, b, return, return);
201	+ DEFINEFUNC2(unsigned int, SSL_CONF_CTX_set_flags, SSL_CONF_CTX *a, a, unsigned int b, b, return 0, return);
202	+ DEFINEFUNC(int, SSL_CONF_CTX_finish, SSL_CONF_CTX *a, a, return 0, return);
203	+ DEFINEFUNC3(int, SSL_CONF_cmd, SSL_CONF_CTX a, a, const char b, b, const char *c, c, return 0, return);
204	++#endif
205	+ DEFINEFUNC(void, SSL_free, SSL *a, a, return, DUMMYARG)
206	+ DEFINEFUNC(STACK_OF(SSL_CIPHER) , SSL_get_ciphers, const SSL a, a, return nullptr, return)
207	+ DEFINEFUNC(const SSL_CIPHER , SSL_get_current_cipher, SSL a, a, return nullptr, return)
208	+@@ -843,17 +862,21 @@ bool q_resolveOpenSslSymbols()
209	+ RESOLVEFUNC(ASN1_STRING_get0_data)
210	+ RESOLVEFUNC(EVP_CIPHER_CTX_reset)
211	+ RESOLVEFUNC(EVP_PKEY_up_ref)
212	++#ifdef OPENSSL_NO_DEPRECATED_3_0
213	+ RESOLVEFUNC(EVP_PKEY_CTX_new)
214	+ RESOLVEFUNC(EVP_PKEY_param_check)
215	+ RESOLVEFUNC(EVP_PKEY_CTX_free)
216	++#endif // OPENSSL_NO_DEPRECATED_3_0
217	+ RESOLVEFUNC(EVP_PKEY_base_id)
218	+ RESOLVEFUNC(RSA_bits)
219	++#ifndef LIBRESSL_VERSION_NUMBER
220	+ RESOLVEFUNC(OPENSSL_sk_new_null)
221	+ RESOLVEFUNC(OPENSSL_sk_push)
222	+ RESOLVEFUNC(OPENSSL_sk_free)
223	+ RESOLVEFUNC(OPENSSL_sk_num)
224	+ RESOLVEFUNC(OPENSSL_sk_pop_free)
225	+ RESOLVEFUNC(OPENSSL_sk_value)
226	++#endif
227	+ RESOLVEFUNC(DH_get0_pqg)
228	+ RESOLVEFUNC(SSL_CTX_set_options)
229	+
230	+@@ -895,7 +918,9 @@ bool q_resolveOpenSslSymbols()
231	+
232	+ RESOLVEFUNC(SSL_SESSION_get_ticket_lifetime_hint)
233	+ RESOLVEFUNC(DH_bits)
234	++#ifndef LIBRESSL_VERSION_NUMBER
235	+ RESOLVEFUNC(DSA_bits)
236	++#endif
237	+
238	+ #if QT_CONFIG(dtls)
239	+ RESOLVEFUNC(DTLSv1_listen)
240	+@@ -925,7 +950,9 @@ bool q_resolveOpenSslSymbols()
241	+ RESOLVEFUNC(OCSP_check_validity)
242	+ RESOLVEFUNC(OCSP_cert_to_id)
243	+ RESOLVEFUNC(OCSP_id_get0_info)
244	++#ifndef LIBRESSL_VERSION_NUMBER
245	+ RESOLVEFUNC(OCSP_resp_get0_certs)
246	++#endif
247	+ RESOLVEFUNC(OCSP_basic_sign)
248	+ RESOLVEFUNC(OCSP_response_create)
249	+ RESOLVEFUNC(i2d_OCSP_RESPONSE)
250	+@@ -1055,12 +1082,14 @@ bool q_resolveOpenSslSymbols()
251	+ RESOLVEFUNC(SSL_CTX_use_RSAPrivateKey)
252	+ RESOLVEFUNC(SSL_CTX_use_PrivateKey_file)
253	+ RESOLVEFUNC(SSL_CTX_get_cert_store);
254	++#ifndef LIBRESSL_VERSION_NUMBER
255	+ RESOLVEFUNC(SSL_CONF_CTX_new);
256	+ RESOLVEFUNC(SSL_CONF_CTX_free);
257	+ RESOLVEFUNC(SSL_CONF_CTX_set_ssl_ctx);
258	+ RESOLVEFUNC(SSL_CONF_CTX_set_flags);
259	+ RESOLVEFUNC(SSL_CONF_CTX_finish);
260	+ RESOLVEFUNC(SSL_CONF_cmd);
261	++#endif
262	+ RESOLVEFUNC(SSL_accept)
263	+ RESOLVEFUNC(SSL_clear)
264	+ RESOLVEFUNC(SSL_connect)
265	+diff --git a/src/network/ssl/qsslsocket_openssl_symbols_p.h b/src/network/ssl/qsslsocket_openssl_symbols_p.h
266	+index 018962bcc1..62cf23ae38 100644
267	+--- a/src/network/ssl/qsslsocket_openssl_symbols_p.h
268	++++ b/src/network/ssl/qsslsocket_openssl_symbols_p.h
269	+@@ -80,6 +80,13 @@ QT_BEGIN_NAMESPACE
270	+
271	+ #define DUMMYARG
272	+
273	++#ifdef LIBRESSL_VERSION_NUMBER
274	++typedef _STACK STACK;
275	++typedef STACK OPENSSL_STACK;
276	++typedef void OPENSSL_INIT_SETTINGS;
277	++typedef int (X509_STORE_CTX_verify_cb)(int ok,X509_STORE_CTX ctx);
278	++#endif
279	++
280	+ #if !defined QT_LINKED_OPENSSL
281	+ // ************** Shared declarations ****************
282	+ // ret func(arg)
283	+@@ -230,20 +237,43 @@ const unsigned char * q_ASN1_STRING_get0_data(const ASN1_STRING *x);
284	+ Q_AUTOTEST_EXPORT BIO q_BIO_new(const BIO_METHOD a);
285	+ Q_AUTOTEST_EXPORT const BIO_METHOD *q_BIO_s_mem();
286	+
287	++#ifndef LIBRESSL_VERSION_NUMBER
288	+ int q_DSA_bits(DSA *a);
289	++#else
290	++#define q_DSA_bits(dsa) q_BN_num_bits((dsa)->p)
291	++#endif
292	+ int q_EVP_CIPHER_CTX_reset(EVP_CIPHER_CTX *c);
293	+ Q_AUTOTEST_EXPORT int q_EVP_PKEY_up_ref(EVP_PKEY *a);
294	++#ifdef OPENSSL_NO_DEPRECATED_3_0
295	+ EVP_PKEY_CTX q_EVP_PKEY_CTX_new(EVP_PKEY pkey, ENGINE *e);
296	+ void q_EVP_PKEY_CTX_free(EVP_PKEY_CTX *ctx);
297	+ int q_EVP_PKEY_param_check(EVP_PKEY_CTX *ctx);
298	++#endif // OPENSSL_NO_DEPRECATED_3_0
299	+ int q_EVP_PKEY_base_id(EVP_PKEY *a);
300	+ int q_RSA_bits(RSA *a);
301	++
302	++#ifndef LIBRESSL_VERSION_NUMBER
303	+ Q_AUTOTEST_EXPORT int q_OPENSSL_sk_num(OPENSSL_STACK *a);
304	+ Q_AUTOTEST_EXPORT void q_OPENSSL_sk_pop_free(OPENSSL_STACK a, void (b)(void *));
305	+ Q_AUTOTEST_EXPORT OPENSSL_STACK *q_OPENSSL_sk_new_null();
306	+ Q_AUTOTEST_EXPORT void q_OPENSSL_sk_push(OPENSSL_STACK st, void data);
307	+ Q_AUTOTEST_EXPORT void q_OPENSSL_sk_free(OPENSSL_STACK *a);
308	+ Q_AUTOTEST_EXPORT void * q_OPENSSL_sk_value(OPENSSL_STACK *a, int b);
309	++#else // LIBRESSL_VERSION_NUMBER
310	++int q_sk_num(STACK *a);
311	++#define q_OPENSSL_sk_num(a) q_sk_num(a)
312	++void q_sk_pop_free(STACK a, void (b)(void *));
313	++#define q_OPENSSL_sk_pop_free(a, b) q_sk_pop_free(a, b)
314	++STACK *q_sk_new_null();
315	++#define q_OPENSSL_sk_new_null() q_sk_new_null()
316	++void q_sk_push(STACK st, void data);
317	++#define q_OPENSSL_sk_push(st, data) q_sk_push(st, data)
318	++void q_sk_free(STACK *a);
319	++#define q_OPENSSL_sk_free q_sk_free
320	++void q_sk_value(STACK a, int b);
321	++#define q_OPENSSL_sk_value(a, b) q_sk_value(a, b)
322	++#endif // LIBRESSL_VERSION_NUMBER
323	++
324	+ int q_SSL_session_reused(SSL *a);
325	+ unsigned long q_SSL_CTX_set_options(SSL_CTX *ctx, unsigned long op);
326	+ int q_OPENSSL_init_ssl(uint64_t opts, const OPENSSL_INIT_SETTINGS *settings);
327	+@@ -269,8 +299,13 @@ int q_DH_bits(DH *dh);
328	+ # define q_SSL_load_error_strings() q_OPENSSL_init_ssl(OPENSSL_INIT_LOAD_SSL_STRINGS \
329	+ \| OPENSSL_INIT_LOAD_CRYPTO_STRINGS, NULL)
330	+
331	++#ifndef LIBRESSL_VERSION_NUMBER
332	+ #define q_SKM_sk_num(type, st) ((int ()(const STACK_OF(type) ))q_OPENSSL_sk_num)(st)
333	+ #define q_SKM_sk_value(type, st,i) ((type * ()(const STACK_OF(type) , int))q_OPENSSL_sk_value)(st, i)
334	++#else
335	++#define q_SKM_sk_num(type, st) ((int ()(const STACK_OF(type) ))q_sk_num)(st)
336	++#define q_SKM_sk_value(type, st,i) ((type * ()(const STACK_OF(type) , int))q_sk_value)(st, i)
337	++#endif // LIBRESSL_VERSION_NUMBER
338	+
339	+ #define q_OPENSSL_add_all_algorithms_conf() q_OPENSSL_init_crypto(OPENSSL_INIT_ADD_ALL_CIPHERS \
340	+ \| OPENSSL_INIT_ADD_ALL_DIGESTS \
341	+@@ -279,7 +314,11 @@ int q_DH_bits(DH *dh);
342	+ \| OPENSSL_INIT_ADD_ALL_DIGESTS, NULL)
343	+
344	+ int q_OPENSSL_init_crypto(uint64_t opts, const OPENSSL_INIT_SETTINGS *settings);
345	++#ifndef LIBRESSL_VERSION_NUMBER
346	+ void q_CRYPTO_free(void str, const char file, int line);
347	++#else
348	++void q_CRYPTO_free(void *a);
349	++#endif
350	+
351	+ long q_OpenSSL_version_num();
352	+ const char *q_OpenSSL_version(int type);
353	+@@ -497,12 +536,14 @@ int q_SSL_CTX_use_PrivateKey(SSL_CTX a, EVP_PKEY b);
354	+ int q_SSL_CTX_use_RSAPrivateKey(SSL_CTX a, RSA b);
355	+ int q_SSL_CTX_use_PrivateKey_file(SSL_CTX a, const char b, int c);
356	+ X509_STORE q_SSL_CTX_get_cert_store(const SSL_CTX a);
357	++#ifndef LIBRESSL_VERSION_NUMBER
358	+ SSL_CONF_CTX *q_SSL_CONF_CTX_new();
359	+ void q_SSL_CONF_CTX_free(SSL_CONF_CTX *a);
360	+ void q_SSL_CONF_CTX_set_ssl_ctx(SSL_CONF_CTX a, SSL_CTX b);
361	+ unsigned int q_SSL_CONF_CTX_set_flags(SSL_CONF_CTX *a, unsigned int b);
362	+ int q_SSL_CONF_CTX_finish(SSL_CONF_CTX *a);
363	+ int q_SSL_CONF_cmd(SSL_CONF_CTX a, const char b, const char *c);
364	++#endif
365	+ void q_SSL_free(SSL *a);
366	+ STACK_OF(SSL_CIPHER) q_SSL_get_ciphers(const SSL a);
367	+ const SSL_CIPHER q_SSL_get_current_cipher(SSL a);
368	+@@ -728,7 +769,11 @@ int q_OCSP_check_validity(ASN1_GENERALIZEDTIME thisupd, ASN1_GENERALIZEDTIME n
369	+ int q_OCSP_id_get0_info(ASN1_OCTET_STRING piNameHash, ASN1_OBJECT pmd, ASN1_OCTET_STRING **pikeyHash,
370	+ ASN1_INTEGER *pserial, OCSP_CERTID cid);
371	+
372	++#ifndef LIBRESSL_VERSION_NUMBER
373	+ const STACK_OF(X509) q_OCSP_resp_get0_certs(const OCSP_BASICRESP bs);
374	++#else
375	++#define q_OCSP_resp_get0_certs(bs) ((bs)->certs)
376	++#endif
377	+ Q_AUTOTEST_EXPORT OCSP_CERTID q_OCSP_cert_to_id(const EVP_MD dgst, X509 subject, X509 issuer);
378	+ Q_AUTOTEST_EXPORT void q_OCSP_CERTID_free(OCSP_CERTID *cid);
379	+ int q_OCSP_id_cmp(OCSP_CERTID a, OCSP_CERTID b);
380	+--
381	+2.26.2
382	+
383
384	diff --git a/dev-qt/qtnetwork/qtnetwork-5.15.9999.ebuild b/dev-qt/qtnetwork/qtnetwork-5.15.9999.ebuild
385	index 1e8c4106..ab3fa869 100644
386	--- a/dev-qt/qtnetwork/qtnetwork-5.15.9999.ebuild
387	+++ b/dev-qt/qtnetwork/qtnetwork-5.15.9999.ebuild
388	@@ -44,6 +44,8 @@ QT5_GENTOO_PRIVATE_CONFIG=(
389	:network
390	)
391
392	+PATCHES=( "${FILESDIR}"/${P}-libressl.patch ) # Bug 562050, not upstreamable
393	+
394	pkg_setup() {
395	use connman && QT5_TARGET_SUBDIRS+=(src/plugins/bearer/connman)
396	use networkmanager && QT5_TARGET_SUBDIRS+=(src/plugins/bearer/networkmanager)

Gentoo Archives: gentoo-commits