This is the mail archive of the
cygwin-apps
mailing list for the Cygwin project.
Re: fetchmail and openssl
- From: Jason Tishler <jason at tishler dot net>
- To: cygwin-apps at cygwin dot com
- Date: Mon, 30 Apr 2012 08:13:00 -0400
- Subject: Re: fetchmail and openssl
- References: <4F985F18.7040106@gmail.com> <4F986152.5000700@gmail.com>
Vladimir,
On Wed, Apr 25, 2012 at 11:40:50PM +0300, Vladimir Shatilo wrote:
> In the latest cygwin package fetchmail 6.3.18-1 has been compiled with
> old openssl 0.9.8 library. This causes errors in ssl certificate
> validation when connecting to imap or pop3 with ssl. The problem is
> openssl 1.0.0 and later has different hash generation algorithm then
> previous 0.9.8 version. So after c_rehash symbolic links to valid
> certificates have different names then fetchmail is looking for.
>
> First I have verified it with strace and have got symbolic link names
> of certificates that fetchmail is looking for. I created symbolic
> links with valid names (according to openssl 0.9.8 hashes) to existing
> certificates and fetchmail has worked well.
>
> Finally I have compiled fetchmail 6.3.21 from source with openssl
> 1.0.1a-1 library and have got everything working as required.
>
> So this is required to update fetchmail to 6.3.21 and compile it with
> latest openssl 1.0.1a-1 library in the main cygwin package.
Thanks for the above, I will release an updated fetchmail as soon as I
can.
Jason