Re: Nmap-4.85BETA9 compilation problems

[David Fifield <david () bamsoftware com>]

On Sat, Jun 06, 2009 at 12:57:17PM +0200, Jaroslav Fojtik wrote:
> > > I am facing this problem during nmap-4.85BETA9 compilation:
> > >
> > > --------------------------------------------------------------
> > > make[1]: Entering directory `/USR_SRC/nmap-4.85BETA9/ncat'
> > > gcc -I../libpcap -DHAVE_CONFIG_H -DNCAT_DATADIR="\"/usr/local/share/ncat\"" -
> > > D_FORTIFY_SOURCE=2 -I. -I.. -I../nsock/include/ -I../nbase -g -O2 -c ncat_ssl.c -o 
> > > ncat_ssl.o
> > > ncat_ssl.c: In function `cert_match_dnsname':
> > > ncat_ssl.c:130: structure has no member named `it'
>
> > Thank you for this report. I think that this happens with OpenSSL before
> > version 0.9.7. What version of OpenSSL do you have? Anyway, my OpenSSL
> > book recommends conditional compilation with OPENSSL_VERSION_NUMBER to
> > solve this, so that what I did in r13563. It is basically the same as
> > the change you suggested, however I don't have an old version of OpenSSL
> > to test with.
>
> How to find which version of OpenSSL is used?
>
> I have found two openssl.h on my drive:
> /usr/local/ssl/include/openssl
> #define OPENSSL_VERSION_TEXT    "OpenSSL 0.9.8k 25 Mar 2009"
>
> /usr/include/openssl                             <Folder>
> #define OPENSSL_VERSION_TEXT    "OpenSSL 0.9.6d 9 May 2002"
>
> I have attempted to make install of openssl-0.9.8k, but unfortunatelly
> old SSL is still active. Anyway, the configure script should complain and
> either fix an issue or not allow further compilation.

I guess I wasn't clear; the old version of OpenSSL should work now (but
you need to check out from Subversion for the fix). To use your newer
OpenSSL, configure like this:
        ./configure --with-openssl=/usr/local/ssl

David Fifield

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org