The attached patch adds a DEBUG option and enables more features: - Set --enable-opensslall which is needed for wolfSSL_X509_NAME_print_ex() and friends. - Set --enable-certgen to allow certificate generation. - Define WOLFSSL_ALT_NAMES so one can generate certificates with the Subject Alternative Name extension. - Set --enable-sessioncerts to allow to inspect certificates with wolfSSL_get_peer_cert_chain(). - Set --enable-des3 so one can load PBES2-3DES-CBC-encoded keys. Additionally a patch to prevent memory leaks is included.
Created attachment 221740 [details] security/wolfssl: Add DEBUG option and enable more features
Hello Fabian Thank you for the patch, I shall go through it and test out the builds. Once done I shall get back to you.
A commit references this bug: Author: fox Date: Fri Jan 29 22:11:12 UTC 2021 New revision: 563255 URL: https://svnweb.freebsd.org/changeset/ports/563255 Log: security/wolfssl: Add DEBUG option and enable more features. - Set --enable-opensslall which is needed for wolfSSL_X509_NAME_print_ex() and friends. - Set --enable-certgen to allow certificate generation. - Define WOLFSSL_ALT_NAMES so one can generate certificates with the Subject Alternative Name extension. - Set --enable-sessioncerts to allow to inspect certificates with wolfSSL_get_peer_cert_chain(). - Set --enable-des3 so one can load PBES2-3DES-CBC-encoded keys. Additionally a patch to prevent memory leaks is included. PR: 252829 Submitted by: Fabian Keil <fk@fabiankeil.de> Reported by: Fabian Keil <fk@fabiankeil.de> Approved by: fox (maintainer) Changes: head/security/wolfssl/Makefile head/security/wolfssl/files/ head/security/wolfssl/files/patch-src-ssl.c
Everything looks good, applied the patch and committed the changes. Thank you for the report. Closing the report.