[squid-users] Can I configure squid5 with Boring SSL

Alex Rousskov rousskov at measurement-factory.com
Mon May 3 20:42:16 UTC 2021


Hello Vinod,

    Squid does not support BoringSSL, and we will not add such support
in the foreseeable future. We have more than enough troubles with GnuTLS
support and not enough resources to support a yet another TLS library,
especially the one that is not meant for general use[1]!

[1] https://boringssl.googlesource.com/boringssl/
Although BoringSSL is an open source project, it is not intended for
general use, as OpenSSL is. We don't recommend that third parties depend
upon it. Doing so is likely to be frustrating because there are no
guarantees of API or ABI stability.


HTH,

Alex.


On 5/3/21 4:10 PM, vinod mg wrote:
> Hi Team,
> 
> I have followed
>https://www.interserver.net/tips/kb/openssl-vs-boringssl-boringssl-install-boringssl/
> <https://www.interserver.net/tips/kb/openssl-vs-boringssl-boringssl-install-boringssl/>
> and was able to install in server's /home/src/boringssl
> 
> while configuring squid I am using below options - 
> 
> ./configure '--prefix=/opt/boring/squid5'
> '--with-openssl=/home/src/boringssl' '--enable-ssl-crtd'
> '--with-filedescriptors=3276800' '--enable-storeio=diskd,aufs,ufs'
> '--with-large-files' '--enable-useragent-log'
> '--enable-ltdl-convenience' '--with-tls' '--enable-http-violations'
> 
> 
> while running 'make' I am getting below error, and I am not able to find
> solution for this.
> 
> In file included from ../../src/ssl/support.h:21,
> 
>                  from ../../src/SquidConfig.h:29,
> 
>                  from old_api.cc:24:
> 
> ../../src/ssl/gadgets.h:56:25: error: ‘TXT_DB’ was not declared in this
> scope
> 
>  typedef std::unique_ptr<TXT_DB, HardFun<void, TXT_DB*, &TXT_DB_free>>
> TXT_DB_Pointer;
> 
> ../../src/ssl/gadgets.h:56:47: error: ‘TXT_DB’ was not declared in this
> scope
> 
>  typedef std::unique_ptr<TXT_DB, HardFun<void, TXT_DB*, &TXT_DB_free>>
> TXT_DB_Pointer;
> 
> ../../src/ssl/gadgets.h:56:68: error: template argument 2 is invalid
> 
>  typedef std::unique_ptr<TXT_DB, HardFun<void, TXT_DB*, &TXT_DB_free>>
> TXT_DB_Pointer;
> 
> ../../src/ssl/gadgets.h:56:68: error: template argument 3 is invalid
> 
> ../../src/ssl/gadgets.h:56:71: error: template argument 1 is invalid
> 
>  typedef std::unique_ptr<TXT_DB, HardFun<void, TXT_DB*, &TXT_DB_free>>
> TXT_DB_Pointer;
> 
> ../../src/ssl/gadgets.h:56:71: error: template argument 2 is invalid
> 
> ../../src/ssl/gadgets.h:56:1: error: ‘typedef’ was ignored in this
> declaration [-Werror]
> 
>  typedef std::unique_ptr<TXT_DB, HardFun<void, TXT_DB*, &TXT_DB_free>>
> TXT_DB_Pointer;
> 
> cc1plus: all warnings being treated as errors
> 
> make[3]: *** [Makefile:840: old_api.lo] Error 1
> 
> make[3]: Leaving directory '/tmp/squid-5.0.5/src/mem'
> 
> make[2]: *** [Makefile:6851: all-recursive] Error 1
> 
> make[2]: Leaving directory '/tmp/squid-5.0.5/src'
> 
> make[1]: *** [Makefile:5840: all] Error 2
> 
> make[1]: Leaving directory '/tmp/squid-5.0.5/src'
> 
> make: *** [Makefile:593: all-recursive] Error 1
> 
> 
> My node is running on - CentOS Linux release 8.3.2011
> Squid version - 5.0.4
> Installed Openssl version - OpenSSL 1.1.1g FIPS  21 Apr 2020
> 
> Thanks,
> Vinod
> 
> _______________________________________________
> squid-users mailing list
> squid-users at lists.squid-cache.org
> http://lists.squid-cache.org/listinfo/squid-users
> 



More information about the squid-users mailing list