Menu
▾
▴
fetchmail-users — User questions and discussion
You can subscribe to this list here.
| 2004 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
(1) |
Jul
(16) |
Aug
|
Sep
|
Oct
|
Nov
|
Dec
(1) |
|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 2005 |
Jan
(2) |
Feb
|
Mar
(4) |
Apr
|
May
|
Jun
|
Jul
(8) |
Aug
(21) |
Sep
(17) |
Oct
(35) |
Nov
(39) |
Dec
(55) |
| 2006 |
Jan
(70) |
Feb
(11) |
Mar
(55) |
Apr
(27) |
May
(73) |
Jun
(47) |
Jul
(63) |
Aug
(27) |
Sep
(52) |
Oct
(39) |
Nov
(87) |
Dec
(15) |
| 2007 |
Jan
(23) |
Feb
(46) |
Mar
(108) |
Apr
(63) |
May
(54) |
Jun
(34) |
Jul
(29) |
Aug
(103) |
Sep
(46) |
Oct
(69) |
Nov
(29) |
Dec
(17) |
| 2008 |
Jan
(45) |
Feb
(32) |
Mar
(25) |
Apr
(17) |
May
(39) |
Jun
(20) |
Jul
(64) |
Aug
(31) |
Sep
(38) |
Oct
(20) |
Nov
(42) |
Dec
(50) |
| 2009 |
Jan
(10) |
Feb
(38) |
Mar
(3) |
Apr
(29) |
May
(41) |
Jun
(31) |
Jul
(21) |
Aug
(53) |
Sep
(49) |
Oct
(26) |
Nov
(28) |
Dec
(15) |
| 2010 |
Jan
(83) |
Feb
(38) |
Mar
(33) |
Apr
(44) |
May
(9) |
Jun
(16) |
Jul
(35) |
Aug
(38) |
Sep
(11) |
Oct
(35) |
Nov
(68) |
Dec
(19) |
| 2011 |
Jan
(16) |
Feb
(69) |
Mar
(42) |
Apr
(54) |
May
(56) |
Jun
(29) |
Jul
|
Aug
(65) |
Sep
(3) |
Oct
(39) |
Nov
(33) |
Dec
(4) |
| 2012 |
Jan
(31) |
Feb
(21) |
Mar
(26) |
Apr
(13) |
May
(38) |
Jun
(39) |
Jul
(14) |
Aug
(31) |
Sep
(8) |
Oct
(32) |
Nov
(12) |
Dec
(16) |
| 2013 |
Jan
(40) |
Feb
(22) |
Mar
(21) |
Apr
(15) |
May
(13) |
Jun
(9) |
Jul
(34) |
Aug
(10) |
Sep
(10) |
Oct
|
Nov
(7) |
Dec
(1) |
| 2014 |
Jan
(25) |
Feb
(9) |
Mar
(8) |
Apr
(12) |
May
(7) |
Jun
|
Jul
(7) |
Aug
(4) |
Sep
(27) |
Oct
(25) |
Nov
(18) |
Dec
(3) |
| 2015 |
Jan
(18) |
Feb
(13) |
Mar
(4) |
Apr
(19) |
May
(11) |
Jun
|
Jul
(1) |
Aug
(7) |
Sep
(6) |
Oct
(4) |
Nov
(19) |
Dec
(6) |
| 2016 |
Jan
|
Feb
(8) |
Mar
(14) |
Apr
|
May
(11) |
Jun
|
Jul
(2) |
Aug
(3) |
Sep
(10) |
Oct
|
Nov
(11) |
Dec
(17) |
| 2017 |
Jan
(17) |
Feb
(35) |
Mar
|
Apr
(4) |
May
(8) |
Jun
(2) |
Jul
(16) |
Aug
|
Sep
(5) |
Oct
(11) |
Nov
(15) |
Dec
(10) |
| 2018 |
Jan
|
Feb
(3) |
Mar
|
Apr
(3) |
May
(2) |
Jun
(8) |
Jul
|
Aug
(10) |
Sep
(17) |
Oct
(15) |
Nov
(12) |
Dec
(10) |
| 2019 |
Jan
(4) |
Feb
(14) |
Mar
(33) |
Apr
(17) |
May
(7) |
Jun
(6) |
Jul
(2) |
Aug
(4) |
Sep
(22) |
Oct
(13) |
Nov
|
Dec
|
| 2020 |
Jan
(36) |
Feb
(19) |
Mar
(31) |
Apr
(2) |
May
(22) |
Jun
(7) |
Jul
(25) |
Aug
(9) |
Sep
(17) |
Oct
(52) |
Nov
(13) |
Dec
(9) |
| 2021 |
Jan
(23) |
Feb
(13) |
Mar
(9) |
Apr
(15) |
May
(3) |
Jun
(7) |
Jul
(4) |
Aug
(23) |
Sep
(3) |
Oct
(8) |
Nov
(28) |
Dec
(9) |
| 2022 |
Jan
(38) |
Feb
(2) |
Mar
(56) |
Apr
(24) |
May
(29) |
Jun
(22) |
Jul
(6) |
Aug
(1) |
Sep
|
Oct
(13) |
Nov
(2) |
Dec
|
| 2023 |
Jan
(6) |
Feb
(1) |
Mar
(1) |
Apr
(4) |
May
|
Jun
|
Jul
(21) |
Aug
(5) |
Sep
(1) |
Oct
|
Nov
(5) |
Dec
|
| 2024 |
Jan
(15) |
Feb
(4) |
Mar
|
Apr
(4) |
May
(11) |
Jun
(9) |
Jul
(1) |
Aug
|
Sep
(9) |
Oct
(9) |
Nov
(1) |
Dec
(1) |
| 2025 |
Jan
(7) |
Feb
|
Mar
|
Apr
(3) |
May
|
Jun
(10) |
Jul
|
Aug
(1) |
Sep
(12) |
Oct
|
Nov
|
Dec
|
|
From: Dennis P. <da...@be...> - 2022-05-15 21:40:36
|
After successfully installing OpenSSL 3.0.3 on my CentOS 7 system, I tried to compile fetchmail 7, It was cloned from gitlab. The compile failed with these messages: undefined reference to `OpenSSL_version' undefined reference to `OpenSSL_version_num' undefined reference to `OPENSSL_sk_num' undefined reference to `OPENSSL_sk_value' undefined reference to `OPENSSL_sk_free' undefined reference to `TLS_client_method' undefined reference to `SSL_CTX_set_options' I went to the OpenSSL forum to see what was wrong and got this reply: *After checking the ssl.so library I observed Id don't define the function OpenSSL_version but into the header file opensslv.h you found a define that give you the version of your ssl library ** **# define OPENSSL_VERSION_NUMBER 0x101010cfL ** **# define OPENSSL_VERSION_TEXT "OpenSSL 1.1.1l 24 Aug 2021" ** **** **To resolve your problem don’t call the method OpenSSL_version, but use directly the define in header file opensslv.h.* I guess the implication is that the fetchmail source needs to be modified somewhere, right? |
|
From: Robin A. <ro...@bi...> - 2022-05-14 12:42:09
|
On Sat, 14 May 2022 11:03:25 +0200
Matthias Andree <mat...@gm...> wrote:
> Am 14.05.22 um 08:32 schrieb Robin Atwood:
> >
> > Some of us got emails from GMail telling us that apps like
> > fetchmail, using a simple password, would stop working at the end
> > of May. Hence all the interest in Oauth2.
> >
> Sure, but fetchmail has supported several passwordless schemes for
> ages (Kerberos, client-side certificates), and none of them required
> application registration or other power play.
>
> If some provider tells you "you can't get to your data without jumping
> hoops", find one that is happy with your, or fetchmail's, access
> methods.
Sure, I have pre-paid one year's access at Mailbox.Org while I see what
plays out. :)
Robin
--
----------------------------------------------------------------------
Robin Atwood.
"Ship me somewheres east of Suez, where the best is like the worst,
Where there ain't no Ten Commandments an' a man can raise a thirst"
from "Mandalay" by Rudyard Kipling
----------------------------------------------------------------------
|
|
From: Matthias A. <mat...@gm...> - 2022-05-14 09:03:44
|
Am 14.05.22 um 08:32 schrieb Robin Atwood: > > Some of us got emails from GMail telling us that apps like fetchmail, > using a simple password, would stop working at the end of May. Hence > all the interest in Oauth2. > Sure, but fetchmail has supported several passwordless schemes for ages (Kerberos, client-side certificates), and none of them required application registration or other power play. If some provider tells you "you can't get to your data without jumping hoops", find one that is happy with your, or fetchmail's, access methods. |
|
From: Robin A. <ro...@bi...> - 2022-05-14 06:33:08
|
On Fri, 13 May 2022 19:42:28 +0100 (BST) Andrew C Aitchison <an...@ai...> wrote: > On Fri, 13 May 2022, Robin Atwood wrote: > > > On Wed, 11 May 2022 14:45:49 +0200 > > Marco Gaiarin <ga...@li...> wrote: > > > >> Mandi! Andrew C Aitchison > >> In chel di` si favelave... > >> > >>>> https://support.google.com/accounts/answer/185833 > >>>> eg, enable 2-Step verification and then enable 'App Password', > >>>> and works as expected. > >>> Yes, that is a reasonable option for now. > >> > >> Yes, i confirm. Very simple, compared to all the fuss for > >> registering to oauth services.... > > > > Will this technique work past the end of the month? > > Sounds as if you know more than me, since you have a specific date, > but my guess would be "no". > > You are definitely asking the rght question. > Some of us got emails from GMail telling us that apps like fetchmail, using a simple password, would stop working at the end of May. Hence all the interest in Oauth2. Robin -- ---------------------------------------------------------------------- Robin Atwood. "Ship me somewheres east of Suez, where the best is like the worst, Where there ain't no Ten Commandments an' a man can raise a thirst" from "Mandalay" by Rudyard Kipling ---------------------------------------------------------------------- |
|
From: Robin A. <ro...@bi...> - 2022-05-13 14:00:25
|
On Wed, 11 May 2022 14:45:49 +0200 Marco Gaiarin <ga...@li...> wrote: > Mandi! Andrew C Aitchison > In chel di` si favelave... > > > > https://support.google.com/accounts/answer/185833 > > > eg, enable 2-Step verification and then enable 'App Password', > > > and works as expected. > > Yes, that is a reasonable option for now. > > Yes, i confirm. Very simple, compared to all the fuss for registering > to oauth services.... Will this technique work past the end of the month? Thanks Robin -- ---------------------------------------------------------------------- Robin Atwood. ---------------------------------------------------------------------- |
|
From: Marco G. <ga...@li...> - 2022-05-11 12:50:17
|
Mandi! Andrew C Aitchison In chel di` si favelave... > > https://support.google.com/accounts/answer/185833 > > eg, enable 2-Step verification and then enable 'App Password', and works as > > expected. > Yes, that is a reasonable option for now. Yes, i confirm. Very simple, compared to all the fuss for registering to oauth services.... > We would like to stop fetchmail from being what Google call a > "less secure app", even though we don't believe that that > description is accurate. Good point; also, this is a general problem, many 'unsecure app' (recently i've found the Youtube KODI plugin) exist, a common and simple way will be cool... |
|
From: Marco G. <ga...@li...> - 2022-05-10 21:10:24
|
> And register the app seems a no-way: I've tried this way: https://support.google.com/accounts/answer/185833 eg, enable 2-Step verification and then enable 'App Password', and works as expected. -- Galleggiano lenti, rotondi e contenti la faccia pero` e` solo quella coi denti (R. Vecchioni) |
|
From: Matthias A. <mat...@gm...> - 2022-05-06 00:58:51
|
Am 05.05.22 um 16:43 schrieb Dennis Putnam: > On 5/4/2022 5:02 PM, Matthias Andree wrote: >> Am 02.05.22 um 20:34 schrieb Dennis Putnam: >>> On 3/27/2022 7:42 AM, Matthias Andree wrote: >>>> Am 26.03.22 um 21:20 schrieb Dennis Putnam: >>>>> It appears Fetchmail 7 requires TLS 1.3. I am running CentOS 7 and >>>>> the >>>>> support folks tell me that RedHat does not intend to add TLS 1.3 to >>>>> CentOS. I wonder if it will be added to RHEL? Anyway, that means I am >>>>> stuck using Fetchmail 6 for the foreseeable future. Before I go to >>>>> the >>>>> trouble, do the OAUTH2 patches for Fetchmail 6 also require TLS 1.3? >>>>> TIA. >>>>> >>>> Dennis, >>>> >>>> that's a bit of a letdown although I understand that in a stable >>>> CentOS >>>> 7 series they don't want major changes, and TLS v1.3 in itself is one, >>>> so you are stuck between a rock and a hard place... but you can work >>>> yourself out of this. >>>> >>>> You can install the latest OpenSSL 3.0.x to a separate directory, >>>> WARNING UNTESTED because I do not have CentOS 7, >>>> but somewhere along the lines of but maybe needs tweaking: >>>> unpack OpenSSL 3.0.x, then >>>> ./config --prefix /opt/openssl3 --openssldir=/usr/lib64 >>>> -Wl,-rpath=/opt/openssl3/lib >>>> -- and then point your fetchmail 7 alpha build there to use it, with >>>> ./configure --with-ssl=/opt/openssl3 >>>> >>>> The additional burden on you will then be to watch future OpenSSL >>>> 3.0.x >>>> releases and upgrade your /opt/openssl3 should security fixes become >>>> necessary in some future OpenSSL version, so take notes of what worked >>>> for you if you had to tweak things. >>>> >>>> Hope that helps. >>>> Matthias >>>> >>> Hi Matthias, >>> >>> I am now getting back to this project. Now that OpenSSL 3 is installed >>> (/opt/openssl3) I ran configure as you specified. When I run make, I >>> am getting this: >>> >>> make all-recursive >>> make[1]: Entering directory >>> `/home/dap/Downloads/fetchmail-7.0.0-alpha9' >>> Making all in . >>> make[2]: Entering directory >>> `/home/dap/Downloads/fetchmail-7.0.0-alpha9' >>> depbase=`echo socket.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT socket.o -MD -MP >>> -MF $depbase.Tpo -c -o socket.o socket.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> socket.c: In function ‘SSLOpen’: >>> socket.c:997:3: warning: implicit declaration of function >>> ‘SSL_load_error_strings’; did you mean ‘ERR_lib_error_string’? >>> [-Wimplicit-function-declaration] >>> SSL_load_error_strings(); >>> ^~~~~~~~~~~~~~~~~~~~~~ >>> ERR_lib_error_string >>> socket.c:998:3: warning: implicit declaration of function >>> ‘SSL_library_init’; did you mean ‘SSL_in_init’? >>> [-Wimplicit-function-declaration] >>> SSL_library_init(); >>> ^~~~~~~~~~~~~~~~ >>> SSL_in_init >>> socket.c:999:3: warning: implicit declaration of function >>> ‘OpenSSL_add_all_algorithms’; did you mean ‘OBJ_id_tc26_algorithms’? >>> [-Wimplicit-function-declaration] >>> OpenSSL_add_all_algorithms(); /* see Debian Bug#576430 and >>> manpage */ >>> ^~~~~~~~~~~~~~~~~~~~~~~~~~ >>> OBJ_id_tc26_algorithms >>> socket.c:1000:21: warning: implicit declaration of function ‘SSLeay’; >>> did you mean ‘SSLerr’? [-Wimplicit-function-declaration] >>> ssl_lib_version = SSLeay(); >>> ^~~~~~ >>> SSLerr >>> depbase=`echo getpass.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT getpass.o -MD -MP >>> -MF $depbase.Tpo -c -o getpass.o getpass.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo fetchmail.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT fetchmail.o -MD >>> -MP -MF $depbase.Tpo -c -o fetchmail.o fetchmail.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo env.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT env.o -MD -MP -MF >>> $depbase.Tpo -c -o env.o env.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo idle.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT idle.o -MD -MP >>> -MF $depbase.Tpo -c -o idle.o idle.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo options.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT options.o -MD -MP >>> -MF $depbase.Tpo -c -o options.o options.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo daemon.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT daemon.o -MD -MP >>> -MF $depbase.Tpo -c -o daemon.o daemon.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo driver.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT driver.o -MD -MP >>> -MF $depbase.Tpo -c -o driver.o driver.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo transact.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT transact.o -MD >>> -MP -MF $depbase.Tpo -c -o transact.o transact.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo sink.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT sink.o -MD -MP >>> -MF $depbase.Tpo -c -o sink.o sink.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo smtp.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT smtp.o -MD -MP >>> -MF $depbase.Tpo -c -o smtp.o smtp.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo idlist.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT idlist.o -MD -MP >>> -MF $depbase.Tpo -c -o idlist.o idlist.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo uid.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT uid.o -MD -MP -MF >>> $depbase.Tpo -c -o uid.o uid.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo md5ify.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT md5ify.o -MD -MP >>> -MF $depbase.Tpo -c -o md5ify.o md5ify.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo cram.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT cram.o -MD -MP >>> -MF $depbase.Tpo -c -o cram.o cram.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo gssapi.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT gssapi.o -MD -MP >>> -MF $depbase.Tpo -c -o gssapi.o gssapi.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo oauth2.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT oauth2.o -MD -MP >>> -MF $depbase.Tpo -c -o oauth2.o oauth2.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo opie.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT opie.o -MD -MP >>> -MF $depbase.Tpo -c -o opie.o opie.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo interface.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT interface.o -MD >>> -MP -MF $depbase.Tpo -c -o interface.o interface.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo netrc.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT netrc.o -MD -MP >>> -MF $depbase.Tpo -c -o netrc.o netrc.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo unmime.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT unmime.o -MD -MP >>> -MF $depbase.Tpo -c -o unmime.o unmime.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo conf.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT conf.o -MD -MP >>> -MF $depbase.Tpo -c -o conf.o conf.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo checkalias.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT checkalias.o -MD >>> -MP -MF $depbase.Tpo -c -o checkalias.o checkalias.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo uid_db.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT uid_db.o -MD -MP >>> -MF $depbase.Tpo -c -o uid_db.o uid_db.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo lock.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT lock.o -MD -MP >>> -MF $depbase.Tpo -c -o lock.o lock.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo rcfile_l.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT rcfile_l.o -MD >>> -MP -MF $depbase.Tpo -c -o rcfile_l.o rcfile_l.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo rcfile_y.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT rcfile_y.o -MD >>> -MP -MF $depbase.Tpo -c -o rcfile_y.o rcfile_y.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo ucs/norm_charmap.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT >>> ucs/norm_charmap.o -MD -MP -MF $depbase.Tpo -c -o ucs/norm_charmap.o >>> ucs/norm_charmap.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo fm_realpath.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT fm_realpath.o -MD >>> -MP -MF $depbase.Tpo -c -o fm_realpath.o fm_realpath.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo pop3.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT pop3.o -MD -MP >>> -MF $depbase.Tpo -c -o pop3.o pop3.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo imap.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT imap.o -MD -MP >>> -MF $depbase.Tpo -c -o imap.o imap.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo etrn.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT etrn.o -MD -MP >>> -MF $depbase.Tpo -c -o etrn.o etrn.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo odmr.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT odmr.o -MD -MP >>> -MF $depbase.Tpo -c -o odmr.o odmr.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo xmalloc.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT xmalloc.o -MD -MP >>> -MF $depbase.Tpo -c -o xmalloc.o xmalloc.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo base64.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT base64.o -MD -MP >>> -MF $depbase.Tpo -c -o base64.o base64.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo rfc822.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT rfc822.o -MD -MP >>> -MF $depbase.Tpo -c -o rfc822.o rfc822.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo report.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT report.o -MD -MP >>> -MF $depbase.Tpo -c -o report.o report.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo rfc2047e.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT rfc2047e.o -MD >>> -MP -MF $depbase.Tpo -c -o rfc2047e.o rfc2047e.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo servport.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT servport.o -MD >>> -MP -MF $depbase.Tpo -c -o servport.o servport.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo smbdes.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT smbdes.o -MD -MP >>> -MF $depbase.Tpo -c -o smbdes.o smbdes.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo smbencrypt.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT smbencrypt.o -MD >>> -MP -MF $depbase.Tpo -c -o smbencrypt.o smbencrypt.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo smbmd4.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT smbmd4.o -MD -MP >>> -MF $depbase.Tpo -c -o smbmd4.o smbmd4.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo smbutil.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT smbutil.o -MD -MP >>> -MF $depbase.Tpo -c -o smbutil.o smbutil.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo fm_getaddrinfo.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT fm_getaddrinfo.o >>> -MD -MP -MF $depbase.Tpo -c -o fm_getaddrinfo.o fm_getaddrinfo.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo starttls.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT starttls.o -MD >>> -MP -MF $depbase.Tpo -c -o starttls.o starttls.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo rfc822valid.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT rfc822valid.o -MD >>> -MP -MF $depbase.Tpo -c -o rfc822valid.o rfc822valid.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo sdump.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT sdump.o -MD -MP >>> -MF $depbase.Tpo -c -o sdump.o sdump.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo x509_name_match.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT x509_name_match.o >>> -MD -MP -MF $depbase.Tpo -c -o x509_name_match.o x509_name_match.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo md5c.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT md5c.o -MD -MP >>> -MF $depbase.Tpo -c -o md5c.o md5c.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo tls-aux.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT tls-aux.o -MD -MP >>> -MF $depbase.Tpo -c -o tls-aux.o tls-aux.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> rm -f libfm.a >>> ar cru libfm.a xmalloc.o base64.o rfc822.o report.o rfc2047e.o >>> servport.o smbdes.o smbencrypt.o smbmd4.o smbutil.o fm_getaddrinfo.o >>> starttls.o rfc822valid.o sdump.o x509_name_match.o md5c.o tls-aux.o >>> ranlib libfm.a >>> depbase=`echo strlcpy.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT strlcpy.o -MD -MP >>> -MF $depbase.Tpo -c -o strlcpy.o strlcpy.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> depbase=`echo strlcat.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >>> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >>> -I/opt/openssl3/include -I/usr/kerberos/include -MT strlcat.o -MD -MP >>> -MF $depbase.Tpo -c -o strlcat.o strlcat.c &&\ >>> mv -f $depbase.Tpo $depbase.Po >>> gcc -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include >>> -L/opt/openssl3/lib -L/opt/openssl3/lib -o fetchmail socket.o >>> getpass.o fetchmail.o env.o idle.o options.o daemon.o driver.o >>> transact.o sink.o smtp.o idlist.o uid.o md5ify.o cram.o gssapi.o >>> oauth2.o opie.o interface.o netrc.o unmime.o conf.o checkalias.o >>> uid_db.o lock.o rcfile_l.o rcfile_y.o ucs/norm_charmap.o fm_realpath.o >>> pop3.o imap.o etrn.o odmr.o libfm.a strlcpy.o strlcat.o -lresolv >>> -lcrypto -lssl -lssl -lcrypto >>> fetchmail.o: In function `main': >>> /home/dap/Downloads/fetchmail-7.0.0-alpha9/fetchmail.c:451: undefined >>> reference to `OpenSSL_version' >>> /home/dap/Downloads/fetchmail-7.0.0-alpha9/fetchmail.c:451: undefined >>> reference to `OpenSSL_version_num' >>> /home/dap/Downloads/fetchmail-7.0.0-alpha9/fetchmail.c:455: undefined >>> reference to `OpenSSL_version' >>> /home/dap/Downloads/fetchmail-7.0.0-alpha9/fetchmail.c:455: undefined >>> reference to `OpenSSL_version' >>> socket.o: In function `SSL_verify_callback': >>> /home/dap/Downloads/fetchmail-7.0.0-alpha9/socket.c:729: undefined >>> reference to `OPENSSL_sk_num' >>> /home/dap/Downloads/fetchmail-7.0.0-alpha9/socket.c:730: undefined >>> reference to `OPENSSL_sk_value' >>> /home/dap/Downloads/fetchmail-7.0.0-alpha9/socket.c:742: undefined >>> reference to `OPENSSL_sk_free' >>> socket.o: In function `OSSL_proto_version_logic': >>> /home/dap/Downloads/fetchmail-7.0.0-alpha9/socket.c:911: undefined >>> reference to `TLS_client_method' >>> socket.o: In function `SSLOpen': >>> /home/dap/Downloads/fetchmail-7.0.0-alpha9/socket.c:1072: undefined >>> reference to `SSL_CTX_set_options' >>> /home/dap/Downloads/fetchmail-7.0.0-alpha9/socket.c:999: undefined >>> reference to `OpenSSL_add_all_algorithms' >>> collect2: error: ld returned 1 exit status >>> make[2]: *** [fetchmail] Error 1 >>> make[2]: Leaving directory `/home/dap/Downloads/fetchmail-7.0.0-alpha9' >>> make[1]: *** [all-recursive] Error 1 >>> make[1]: Leaving directory `/home/dap/Downloads/fetchmail-7.0.0-alpha9' >>> make: *** [all] Error 2 >>> >>> >>> Looks like I am missing some arguments for either configure or make. >> >> Hi Dennis, >> >> you are not missing arguments, but you do need newer fetchmail source >> files, and that currently means cloning from Git. Alpha 9 contained some >> bugs that show in some configurations, and that have been fixed on the >> "next" branch in the Git repositories since then, and I don't think I >> will roll other alpha tarballs. Tarballs will likely only happen for >> betas or release candidates later on (and releases of course). You do >> not want to wait for that if you want OAuth 2 now. >> >> For that, you would need to install git, automake, autoconf, flex, >> bison, m4, gettext, and clone from Git instead of downloading a tarball. >> >> The first-time clone takes a little time to download some 10...20 MB (I >> don't know how efficiently GitLab or SourceForge packed the repos), >> future updates only fetch a few new commits then and are quick. See >> https://gitlab.com/fetchmail/fetchmail/-/blob/next/README.git for >> repository addresses. >> >> Reason is there have been too many changes since alpha9, and offering >> alpha tarballs is currently uneconomical on each and every aspect, and I >> do not want to encourage one-off builds of an alpha branch that then >> rots. And the socket.c source file alone has a dozen or so changesets >> that are relevant to OpenSSL use. >> >> >> Development targets recent releases of major Linux or BSD distributions >> such as Fedora Linux, Debian Linux, FreeBSD and maybe derivatives. >> Long-Term-Support releases may be too old unless released recently. >> Up-to-date rolling releases such as Gentoo or Arch Linux or openSUSE's >> rolling release branch should be good, too. Every once in a blue moon I >> also try OpenIllumos Hipster and OpenBSD, but that usually happens >> closer to release or if somebody points me to an issue. Alpha versions >> of fetchmail are irrelevant to past releases of distributions, so I can >> take the liberty of expecting the latest distro releases. >> >> >> In order to avoid further accidents, I have removed most alphas except >> for the more than 10-year-old alpha2+MAPI that carried a failed MAPI >> attempt from a Google Summer of Code project ages ago. It is unusable >> but I wanted this museum as a warning what happens when neither the >> mentor nor the GSoC student (mentee) communicate properly with the >> upstream and the changes need integration and testing. >> >> Regards, >> Matthias >> >> > Hi Matthias, > > Thanks but it looks like the documentation has the wrong URLs. Not quite. Those are web addresses, not git clone addresses (and the readme does not suggest to clone from there, but could be clearer to tell you use the browser and look for the address), and the web sites then offer several clone addresses to chose from, and those sometimes change over the years. > > $ git clone https://gitlab.com/fetchmail/fetchmail/ > Cloning into 'fetchmail'... > error: RPC failed; result=22, HTTP code = 422 > fatal: The remote end hung up unexpectedly ^ This even works for me (and logs a redirect to https://gitlab.com/fetchmail/fetchmail.git/ but that might depend on exact Git version) > > and > > $ git clone https://sourceforge.net/p/fetchmail/git/ci/next/tree/ > Cloning into 'tree'... > fatal: repository > 'https://sourceforge.net/p/fetchmail/git/ci/next/tree/' not found You can browse there and it will tell you that the clone address is, for instance: git clone git://git.code.sf.net/p/fetchmail/git > > > _______________________________________________ > Fetchmail-users mailing list > Fet...@li... > https://lists.sourceforge.net/lists/listinfo/fetchmail-users |
|
From: Dennis P. <da...@be...> - 2022-05-05 15:04:13
|
On 5/4/2022 5:02 PM, Matthias Andree wrote: > Am 02.05.22 um 20:34 schrieb Dennis Putnam: >> On 3/27/2022 7:42 AM, Matthias Andree wrote: >>> Am 26.03.22 um 21:20 schrieb Dennis Putnam: >>>> It appears Fetchmail 7 requires TLS 1.3. I am running CentOS 7 and the >>>> support folks tell me that RedHat does not intend to add TLS 1.3 to >>>> CentOS. I wonder if it will be added to RHEL? Anyway, that means I am >>>> stuck using Fetchmail 6 for the foreseeable future. Before I go to the >>>> trouble, do the OAUTH2 patches for Fetchmail 6 also require TLS 1.3? >>>> TIA. >>>> >>> Dennis, >>> >>> that's a bit of a letdown although I understand that in a stable CentOS >>> 7 series they don't want major changes, and TLS v1.3 in itself is one, >>> so you are stuck between a rock and a hard place... but you can work >>> yourself out of this. >>> >>> You can install the latest OpenSSL 3.0.x to a separate directory, >>> WARNING UNTESTED because I do not have CentOS 7, >>> but somewhere along the lines of but maybe needs tweaking: >>> unpack OpenSSL 3.0.x, then >>> ./config --prefix /opt/openssl3 --openssldir=/usr/lib64 >>> -Wl,-rpath=/opt/openssl3/lib >>> -- and then point your fetchmail 7 alpha build there to use it, with >>> ./configure --with-ssl=/opt/openssl3 >>> >>> The additional burden on you will then be to watch future OpenSSL 3.0.x >>> releases and upgrade your /opt/openssl3 should security fixes become >>> necessary in some future OpenSSL version, so take notes of what worked >>> for you if you had to tweak things. >>> >>> Hope that helps. >>> Matthias >>> >> Hi Matthias, >> >> I am now getting back to this project. Now that OpenSSL 3 is installed >> (/opt/openssl3) I ran configure as you specified. When I run make, I >> am getting this: >> >> make all-recursive >> make[1]: Entering directory `/home/dap/Downloads/fetchmail-7.0.0-alpha9' >> Making all in . >> make[2]: Entering directory `/home/dap/Downloads/fetchmail-7.0.0-alpha9' >> depbase=`echo socket.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT socket.o -MD -MP >> -MF $depbase.Tpo -c -o socket.o socket.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> socket.c: In function ‘SSLOpen’: >> socket.c:997:3: warning: implicit declaration of function >> ‘SSL_load_error_strings’; did you mean ‘ERR_lib_error_string’? >> [-Wimplicit-function-declaration] >> SSL_load_error_strings(); >> ^~~~~~~~~~~~~~~~~~~~~~ >> ERR_lib_error_string >> socket.c:998:3: warning: implicit declaration of function >> ‘SSL_library_init’; did you mean ‘SSL_in_init’? >> [-Wimplicit-function-declaration] >> SSL_library_init(); >> ^~~~~~~~~~~~~~~~ >> SSL_in_init >> socket.c:999:3: warning: implicit declaration of function >> ‘OpenSSL_add_all_algorithms’; did you mean ‘OBJ_id_tc26_algorithms’? >> [-Wimplicit-function-declaration] >> OpenSSL_add_all_algorithms(); /* see Debian Bug#576430 and manpage */ >> ^~~~~~~~~~~~~~~~~~~~~~~~~~ >> OBJ_id_tc26_algorithms >> socket.c:1000:21: warning: implicit declaration of function ‘SSLeay’; >> did you mean ‘SSLerr’? [-Wimplicit-function-declaration] >> ssl_lib_version = SSLeay(); >> ^~~~~~ >> SSLerr >> depbase=`echo getpass.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT getpass.o -MD -MP >> -MF $depbase.Tpo -c -o getpass.o getpass.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo fetchmail.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT fetchmail.o -MD >> -MP -MF $depbase.Tpo -c -o fetchmail.o fetchmail.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo env.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT env.o -MD -MP -MF >> $depbase.Tpo -c -o env.o env.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo idle.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT idle.o -MD -MP >> -MF $depbase.Tpo -c -o idle.o idle.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo options.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT options.o -MD -MP >> -MF $depbase.Tpo -c -o options.o options.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo daemon.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT daemon.o -MD -MP >> -MF $depbase.Tpo -c -o daemon.o daemon.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo driver.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT driver.o -MD -MP >> -MF $depbase.Tpo -c -o driver.o driver.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo transact.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT transact.o -MD >> -MP -MF $depbase.Tpo -c -o transact.o transact.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo sink.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT sink.o -MD -MP >> -MF $depbase.Tpo -c -o sink.o sink.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo smtp.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT smtp.o -MD -MP >> -MF $depbase.Tpo -c -o smtp.o smtp.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo idlist.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT idlist.o -MD -MP >> -MF $depbase.Tpo -c -o idlist.o idlist.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo uid.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT uid.o -MD -MP -MF >> $depbase.Tpo -c -o uid.o uid.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo md5ify.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT md5ify.o -MD -MP >> -MF $depbase.Tpo -c -o md5ify.o md5ify.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo cram.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT cram.o -MD -MP >> -MF $depbase.Tpo -c -o cram.o cram.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo gssapi.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT gssapi.o -MD -MP >> -MF $depbase.Tpo -c -o gssapi.o gssapi.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo oauth2.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT oauth2.o -MD -MP >> -MF $depbase.Tpo -c -o oauth2.o oauth2.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo opie.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT opie.o -MD -MP >> -MF $depbase.Tpo -c -o opie.o opie.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo interface.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT interface.o -MD >> -MP -MF $depbase.Tpo -c -o interface.o interface.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo netrc.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT netrc.o -MD -MP >> -MF $depbase.Tpo -c -o netrc.o netrc.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo unmime.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT unmime.o -MD -MP >> -MF $depbase.Tpo -c -o unmime.o unmime.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo conf.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT conf.o -MD -MP >> -MF $depbase.Tpo -c -o conf.o conf.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo checkalias.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT checkalias.o -MD >> -MP -MF $depbase.Tpo -c -o checkalias.o checkalias.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo uid_db.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT uid_db.o -MD -MP >> -MF $depbase.Tpo -c -o uid_db.o uid_db.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo lock.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT lock.o -MD -MP >> -MF $depbase.Tpo -c -o lock.o lock.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo rcfile_l.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT rcfile_l.o -MD >> -MP -MF $depbase.Tpo -c -o rcfile_l.o rcfile_l.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo rcfile_y.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT rcfile_y.o -MD >> -MP -MF $depbase.Tpo -c -o rcfile_y.o rcfile_y.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo ucs/norm_charmap.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT >> ucs/norm_charmap.o -MD -MP -MF $depbase.Tpo -c -o ucs/norm_charmap.o >> ucs/norm_charmap.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo fm_realpath.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT fm_realpath.o -MD >> -MP -MF $depbase.Tpo -c -o fm_realpath.o fm_realpath.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo pop3.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT pop3.o -MD -MP >> -MF $depbase.Tpo -c -o pop3.o pop3.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo imap.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT imap.o -MD -MP >> -MF $depbase.Tpo -c -o imap.o imap.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo etrn.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT etrn.o -MD -MP >> -MF $depbase.Tpo -c -o etrn.o etrn.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo odmr.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT odmr.o -MD -MP >> -MF $depbase.Tpo -c -o odmr.o odmr.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo xmalloc.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT xmalloc.o -MD -MP >> -MF $depbase.Tpo -c -o xmalloc.o xmalloc.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo base64.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT base64.o -MD -MP >> -MF $depbase.Tpo -c -o base64.o base64.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo rfc822.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT rfc822.o -MD -MP >> -MF $depbase.Tpo -c -o rfc822.o rfc822.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo report.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT report.o -MD -MP >> -MF $depbase.Tpo -c -o report.o report.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo rfc2047e.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT rfc2047e.o -MD >> -MP -MF $depbase.Tpo -c -o rfc2047e.o rfc2047e.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo servport.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT servport.o -MD >> -MP -MF $depbase.Tpo -c -o servport.o servport.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo smbdes.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT smbdes.o -MD -MP >> -MF $depbase.Tpo -c -o smbdes.o smbdes.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo smbencrypt.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT smbencrypt.o -MD >> -MP -MF $depbase.Tpo -c -o smbencrypt.o smbencrypt.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo smbmd4.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT smbmd4.o -MD -MP >> -MF $depbase.Tpo -c -o smbmd4.o smbmd4.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo smbutil.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT smbutil.o -MD -MP >> -MF $depbase.Tpo -c -o smbutil.o smbutil.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo fm_getaddrinfo.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT fm_getaddrinfo.o >> -MD -MP -MF $depbase.Tpo -c -o fm_getaddrinfo.o fm_getaddrinfo.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo starttls.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT starttls.o -MD >> -MP -MF $depbase.Tpo -c -o starttls.o starttls.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo rfc822valid.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT rfc822valid.o -MD >> -MP -MF $depbase.Tpo -c -o rfc822valid.o rfc822valid.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo sdump.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT sdump.o -MD -MP >> -MF $depbase.Tpo -c -o sdump.o sdump.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo x509_name_match.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT x509_name_match.o >> -MD -MP -MF $depbase.Tpo -c -o x509_name_match.o x509_name_match.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo md5c.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT md5c.o -MD -MP >> -MF $depbase.Tpo -c -o md5c.o md5c.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo tls-aux.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT tls-aux.o -MD -MP >> -MF $depbase.Tpo -c -o tls-aux.o tls-aux.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> rm -f libfm.a >> ar cru libfm.a xmalloc.o base64.o rfc822.o report.o rfc2047e.o >> servport.o smbdes.o smbencrypt.o smbmd4.o smbutil.o fm_getaddrinfo.o >> starttls.o rfc822valid.o sdump.o x509_name_match.o md5c.o tls-aux.o >> ranlib libfm.a >> depbase=`echo strlcpy.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT strlcpy.o -MD -MP >> -MF $depbase.Tpo -c -o strlcpy.o strlcpy.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> depbase=`echo strlcat.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ >> gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 >> -I/opt/openssl3/include -I/usr/kerberos/include -MT strlcat.o -MD -MP >> -MF $depbase.Tpo -c -o strlcat.o strlcat.c &&\ >> mv -f $depbase.Tpo $depbase.Po >> gcc -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include >> -L/opt/openssl3/lib -L/opt/openssl3/lib -o fetchmail socket.o >> getpass.o fetchmail.o env.o idle.o options.o daemon.o driver.o >> transact.o sink.o smtp.o idlist.o uid.o md5ify.o cram.o gssapi.o >> oauth2.o opie.o interface.o netrc.o unmime.o conf.o checkalias.o >> uid_db.o lock.o rcfile_l.o rcfile_y.o ucs/norm_charmap.o fm_realpath.o >> pop3.o imap.o etrn.o odmr.o libfm.a strlcpy.o strlcat.o -lresolv >> -lcrypto -lssl -lssl -lcrypto >> fetchmail.o: In function `main': >> /home/dap/Downloads/fetchmail-7.0.0-alpha9/fetchmail.c:451: undefined >> reference to `OpenSSL_version' >> /home/dap/Downloads/fetchmail-7.0.0-alpha9/fetchmail.c:451: undefined >> reference to `OpenSSL_version_num' >> /home/dap/Downloads/fetchmail-7.0.0-alpha9/fetchmail.c:455: undefined >> reference to `OpenSSL_version' >> /home/dap/Downloads/fetchmail-7.0.0-alpha9/fetchmail.c:455: undefined >> reference to `OpenSSL_version' >> socket.o: In function `SSL_verify_callback': >> /home/dap/Downloads/fetchmail-7.0.0-alpha9/socket.c:729: undefined >> reference to `OPENSSL_sk_num' >> /home/dap/Downloads/fetchmail-7.0.0-alpha9/socket.c:730: undefined >> reference to `OPENSSL_sk_value' >> /home/dap/Downloads/fetchmail-7.0.0-alpha9/socket.c:742: undefined >> reference to `OPENSSL_sk_free' >> socket.o: In function `OSSL_proto_version_logic': >> /home/dap/Downloads/fetchmail-7.0.0-alpha9/socket.c:911: undefined >> reference to `TLS_client_method' >> socket.o: In function `SSLOpen': >> /home/dap/Downloads/fetchmail-7.0.0-alpha9/socket.c:1072: undefined >> reference to `SSL_CTX_set_options' >> /home/dap/Downloads/fetchmail-7.0.0-alpha9/socket.c:999: undefined >> reference to `OpenSSL_add_all_algorithms' >> collect2: error: ld returned 1 exit status >> make[2]: *** [fetchmail] Error 1 >> make[2]: Leaving directory `/home/dap/Downloads/fetchmail-7.0.0-alpha9' >> make[1]: *** [all-recursive] Error 1 >> make[1]: Leaving directory `/home/dap/Downloads/fetchmail-7.0.0-alpha9' >> make: *** [all] Error 2 >> >> >> Looks like I am missing some arguments for either configure or make. > > Hi Dennis, > > you are not missing arguments, but you do need newer fetchmail source > files, and that currently means cloning from Git. Alpha 9 contained some > bugs that show in some configurations, and that have been fixed on the > "next" branch in the Git repositories since then, and I don't think I > will roll other alpha tarballs. Tarballs will likely only happen for > betas or release candidates later on (and releases of course). You do > not want to wait for that if you want OAuth 2 now. > > For that, you would need to install git, automake, autoconf, flex, > bison, m4, gettext, and clone from Git instead of downloading a tarball. > > The first-time clone takes a little time to download some 10...20 MB (I > don't know how efficiently GitLab or SourceForge packed the repos), > future updates only fetch a few new commits then and are quick. See > https://gitlab.com/fetchmail/fetchmail/-/blob/next/README.git for > repository addresses. > > Reason is there have been too many changes since alpha9, and offering > alpha tarballs is currently uneconomical on each and every aspect, and I > do not want to encourage one-off builds of an alpha branch that then > rots. And the socket.c source file alone has a dozen or so changesets > that are relevant to OpenSSL use. > > > Development targets recent releases of major Linux or BSD distributions > such as Fedora Linux, Debian Linux, FreeBSD and maybe derivatives. > Long-Term-Support releases may be too old unless released recently. > Up-to-date rolling releases such as Gentoo or Arch Linux or openSUSE's > rolling release branch should be good, too. Every once in a blue moon I > also try OpenIllumos Hipster and OpenBSD, but that usually happens > closer to release or if somebody points me to an issue. Alpha versions > of fetchmail are irrelevant to past releases of distributions, so I can > take the liberty of expecting the latest distro releases. > > > In order to avoid further accidents, I have removed most alphas except > for the more than 10-year-old alpha2+MAPI that carried a failed MAPI > attempt from a Google Summer of Code project ages ago. It is unusable > but I wanted this museum as a warning what happens when neither the > mentor nor the GSoC student (mentee) communicate properly with the > upstream and the changes need integration and testing. > > Regards, > Matthias > > Hi Matthias, Thanks but it looks like the documentation has the wrong URLs. $ git clone https://gitlab.com/fetchmail/fetchmail/ Cloning into 'fetchmail'... error: RPC failed; result=22, HTTP code = 422 fatal: The remote end hung up unexpectedly and $ git clone https://sourceforge.net/p/fetchmail/git/ci/next/tree/ Cloning into 'tree'... fatal: repository 'https://sourceforge.net/p/fetchmail/git/ci/next/tree/' not found |
|
From: Matthias A. <mat...@gm...> - 2022-05-04 21:02:20
|
Am 02.05.22 um 20:34 schrieb Dennis Putnam: > On 3/27/2022 7:42 AM, Matthias Andree wrote: >> Am 26.03.22 um 21:20 schrieb Dennis Putnam: >>> It appears Fetchmail 7 requires TLS 1.3. I am running CentOS 7 and the >>> support folks tell me that RedHat does not intend to add TLS 1.3 to >>> CentOS. I wonder if it will be added to RHEL? Anyway, that means I am >>> stuck using Fetchmail 6 for the foreseeable future. Before I go to the >>> trouble, do the OAUTH2 patches for Fetchmail 6 also require TLS 1.3? >>> TIA. >>> >> Dennis, >> >> that's a bit of a letdown although I understand that in a stable CentOS >> 7 series they don't want major changes, and TLS v1.3 in itself is one, >> so you are stuck between a rock and a hard place... but you can work >> yourself out of this. >> >> You can install the latest OpenSSL 3.0.x to a separate directory, >> WARNING UNTESTED because I do not have CentOS 7, >> but somewhere along the lines of but maybe needs tweaking: >> unpack OpenSSL 3.0.x, then >> ./config --prefix /opt/openssl3 --openssldir=/usr/lib64 >> -Wl,-rpath=/opt/openssl3/lib >> -- and then point your fetchmail 7 alpha build there to use it, with >> ./configure --with-ssl=/opt/openssl3 >> >> The additional burden on you will then be to watch future OpenSSL 3.0.x >> releases and upgrade your /opt/openssl3 should security fixes become >> necessary in some future OpenSSL version, so take notes of what worked >> for you if you had to tweak things. >> >> Hope that helps. >> Matthias >> > Hi Matthias, > > I am now getting back to this project. Now that OpenSSL 3 is installed > (/opt/openssl3) I ran configure as you specified. When I run make, I > am getting this: > > make all-recursive > make[1]: Entering directory `/home/dap/Downloads/fetchmail-7.0.0-alpha9' > Making all in . > make[2]: Entering directory `/home/dap/Downloads/fetchmail-7.0.0-alpha9' > depbase=`echo socket.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT socket.o -MD -MP > -MF $depbase.Tpo -c -o socket.o socket.c &&\ > mv -f $depbase.Tpo $depbase.Po > socket.c: In function ‘SSLOpen’: > socket.c:997:3: warning: implicit declaration of function > ‘SSL_load_error_strings’; did you mean ‘ERR_lib_error_string’? > [-Wimplicit-function-declaration] > SSL_load_error_strings(); > ^~~~~~~~~~~~~~~~~~~~~~ > ERR_lib_error_string > socket.c:998:3: warning: implicit declaration of function > ‘SSL_library_init’; did you mean ‘SSL_in_init’? > [-Wimplicit-function-declaration] > SSL_library_init(); > ^~~~~~~~~~~~~~~~ > SSL_in_init > socket.c:999:3: warning: implicit declaration of function > ‘OpenSSL_add_all_algorithms’; did you mean ‘OBJ_id_tc26_algorithms’? > [-Wimplicit-function-declaration] > OpenSSL_add_all_algorithms(); /* see Debian Bug#576430 and manpage */ > ^~~~~~~~~~~~~~~~~~~~~~~~~~ > OBJ_id_tc26_algorithms > socket.c:1000:21: warning: implicit declaration of function ‘SSLeay’; > did you mean ‘SSLerr’? [-Wimplicit-function-declaration] > ssl_lib_version = SSLeay(); > ^~~~~~ > SSLerr > depbase=`echo getpass.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT getpass.o -MD -MP > -MF $depbase.Tpo -c -o getpass.o getpass.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo fetchmail.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT fetchmail.o -MD > -MP -MF $depbase.Tpo -c -o fetchmail.o fetchmail.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo env.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT env.o -MD -MP -MF > $depbase.Tpo -c -o env.o env.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo idle.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT idle.o -MD -MP > -MF $depbase.Tpo -c -o idle.o idle.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo options.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT options.o -MD -MP > -MF $depbase.Tpo -c -o options.o options.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo daemon.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT daemon.o -MD -MP > -MF $depbase.Tpo -c -o daemon.o daemon.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo driver.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT driver.o -MD -MP > -MF $depbase.Tpo -c -o driver.o driver.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo transact.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT transact.o -MD > -MP -MF $depbase.Tpo -c -o transact.o transact.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo sink.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT sink.o -MD -MP > -MF $depbase.Tpo -c -o sink.o sink.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo smtp.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT smtp.o -MD -MP > -MF $depbase.Tpo -c -o smtp.o smtp.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo idlist.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT idlist.o -MD -MP > -MF $depbase.Tpo -c -o idlist.o idlist.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo uid.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT uid.o -MD -MP -MF > $depbase.Tpo -c -o uid.o uid.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo md5ify.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT md5ify.o -MD -MP > -MF $depbase.Tpo -c -o md5ify.o md5ify.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo cram.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT cram.o -MD -MP > -MF $depbase.Tpo -c -o cram.o cram.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo gssapi.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT gssapi.o -MD -MP > -MF $depbase.Tpo -c -o gssapi.o gssapi.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo oauth2.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT oauth2.o -MD -MP > -MF $depbase.Tpo -c -o oauth2.o oauth2.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo opie.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT opie.o -MD -MP > -MF $depbase.Tpo -c -o opie.o opie.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo interface.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT interface.o -MD > -MP -MF $depbase.Tpo -c -o interface.o interface.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo netrc.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT netrc.o -MD -MP > -MF $depbase.Tpo -c -o netrc.o netrc.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo unmime.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT unmime.o -MD -MP > -MF $depbase.Tpo -c -o unmime.o unmime.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo conf.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT conf.o -MD -MP > -MF $depbase.Tpo -c -o conf.o conf.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo checkalias.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT checkalias.o -MD > -MP -MF $depbase.Tpo -c -o checkalias.o checkalias.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo uid_db.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT uid_db.o -MD -MP > -MF $depbase.Tpo -c -o uid_db.o uid_db.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo lock.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT lock.o -MD -MP > -MF $depbase.Tpo -c -o lock.o lock.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo rcfile_l.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT rcfile_l.o -MD > -MP -MF $depbase.Tpo -c -o rcfile_l.o rcfile_l.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo rcfile_y.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT rcfile_y.o -MD > -MP -MF $depbase.Tpo -c -o rcfile_y.o rcfile_y.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo ucs/norm_charmap.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT > ucs/norm_charmap.o -MD -MP -MF $depbase.Tpo -c -o ucs/norm_charmap.o > ucs/norm_charmap.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo fm_realpath.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT fm_realpath.o -MD > -MP -MF $depbase.Tpo -c -o fm_realpath.o fm_realpath.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo pop3.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT pop3.o -MD -MP > -MF $depbase.Tpo -c -o pop3.o pop3.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo imap.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT imap.o -MD -MP > -MF $depbase.Tpo -c -o imap.o imap.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo etrn.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT etrn.o -MD -MP > -MF $depbase.Tpo -c -o etrn.o etrn.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo odmr.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT odmr.o -MD -MP > -MF $depbase.Tpo -c -o odmr.o odmr.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo xmalloc.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT xmalloc.o -MD -MP > -MF $depbase.Tpo -c -o xmalloc.o xmalloc.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo base64.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT base64.o -MD -MP > -MF $depbase.Tpo -c -o base64.o base64.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo rfc822.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT rfc822.o -MD -MP > -MF $depbase.Tpo -c -o rfc822.o rfc822.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo report.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT report.o -MD -MP > -MF $depbase.Tpo -c -o report.o report.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo rfc2047e.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT rfc2047e.o -MD > -MP -MF $depbase.Tpo -c -o rfc2047e.o rfc2047e.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo servport.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT servport.o -MD > -MP -MF $depbase.Tpo -c -o servport.o servport.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo smbdes.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT smbdes.o -MD -MP > -MF $depbase.Tpo -c -o smbdes.o smbdes.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo smbencrypt.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT smbencrypt.o -MD > -MP -MF $depbase.Tpo -c -o smbencrypt.o smbencrypt.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo smbmd4.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT smbmd4.o -MD -MP > -MF $depbase.Tpo -c -o smbmd4.o smbmd4.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo smbutil.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT smbutil.o -MD -MP > -MF $depbase.Tpo -c -o smbutil.o smbutil.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo fm_getaddrinfo.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT fm_getaddrinfo.o > -MD -MP -MF $depbase.Tpo -c -o fm_getaddrinfo.o fm_getaddrinfo.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo starttls.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT starttls.o -MD > -MP -MF $depbase.Tpo -c -o starttls.o starttls.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo rfc822valid.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT rfc822valid.o -MD > -MP -MF $depbase.Tpo -c -o rfc822valid.o rfc822valid.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo sdump.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT sdump.o -MD -MP > -MF $depbase.Tpo -c -o sdump.o sdump.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo x509_name_match.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT x509_name_match.o > -MD -MP -MF $depbase.Tpo -c -o x509_name_match.o x509_name_match.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo md5c.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT md5c.o -MD -MP > -MF $depbase.Tpo -c -o md5c.o md5c.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo tls-aux.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT tls-aux.o -MD -MP > -MF $depbase.Tpo -c -o tls-aux.o tls-aux.c &&\ > mv -f $depbase.Tpo $depbase.Po > rm -f libfm.a > ar cru libfm.a xmalloc.o base64.o rfc822.o report.o rfc2047e.o > servport.o smbdes.o smbencrypt.o smbmd4.o smbutil.o fm_getaddrinfo.o > starttls.o rfc822valid.o sdump.o x509_name_match.o md5c.o tls-aux.o > ranlib libfm.a > depbase=`echo strlcpy.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT strlcpy.o -MD -MP > -MF $depbase.Tpo -c -o strlcpy.o strlcpy.c &&\ > mv -f $depbase.Tpo $depbase.Po > depbase=`echo strlcat.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ > gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 > -I/opt/openssl3/include -I/usr/kerberos/include -MT strlcat.o -MD -MP > -MF $depbase.Tpo -c -o strlcat.o strlcat.c &&\ > mv -f $depbase.Tpo $depbase.Po > gcc -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include > -L/opt/openssl3/lib -L/opt/openssl3/lib -o fetchmail socket.o > getpass.o fetchmail.o env.o idle.o options.o daemon.o driver.o > transact.o sink.o smtp.o idlist.o uid.o md5ify.o cram.o gssapi.o > oauth2.o opie.o interface.o netrc.o unmime.o conf.o checkalias.o > uid_db.o lock.o rcfile_l.o rcfile_y.o ucs/norm_charmap.o fm_realpath.o > pop3.o imap.o etrn.o odmr.o libfm.a strlcpy.o strlcat.o -lresolv > -lcrypto -lssl -lssl -lcrypto > fetchmail.o: In function `main': > /home/dap/Downloads/fetchmail-7.0.0-alpha9/fetchmail.c:451: undefined > reference to `OpenSSL_version' > /home/dap/Downloads/fetchmail-7.0.0-alpha9/fetchmail.c:451: undefined > reference to `OpenSSL_version_num' > /home/dap/Downloads/fetchmail-7.0.0-alpha9/fetchmail.c:455: undefined > reference to `OpenSSL_version' > /home/dap/Downloads/fetchmail-7.0.0-alpha9/fetchmail.c:455: undefined > reference to `OpenSSL_version' > socket.o: In function `SSL_verify_callback': > /home/dap/Downloads/fetchmail-7.0.0-alpha9/socket.c:729: undefined > reference to `OPENSSL_sk_num' > /home/dap/Downloads/fetchmail-7.0.0-alpha9/socket.c:730: undefined > reference to `OPENSSL_sk_value' > /home/dap/Downloads/fetchmail-7.0.0-alpha9/socket.c:742: undefined > reference to `OPENSSL_sk_free' > socket.o: In function `OSSL_proto_version_logic': > /home/dap/Downloads/fetchmail-7.0.0-alpha9/socket.c:911: undefined > reference to `TLS_client_method' > socket.o: In function `SSLOpen': > /home/dap/Downloads/fetchmail-7.0.0-alpha9/socket.c:1072: undefined > reference to `SSL_CTX_set_options' > /home/dap/Downloads/fetchmail-7.0.0-alpha9/socket.c:999: undefined > reference to `OpenSSL_add_all_algorithms' > collect2: error: ld returned 1 exit status > make[2]: *** [fetchmail] Error 1 > make[2]: Leaving directory `/home/dap/Downloads/fetchmail-7.0.0-alpha9' > make[1]: *** [all-recursive] Error 1 > make[1]: Leaving directory `/home/dap/Downloads/fetchmail-7.0.0-alpha9' > make: *** [all] Error 2 > > > Looks like I am missing some arguments for either configure or make. Hi Dennis, you are not missing arguments, but you do need newer fetchmail source files, and that currently means cloning from Git. Alpha 9 contained some bugs that show in some configurations, and that have been fixed on the "next" branch in the Git repositories since then, and I don't think I will roll other alpha tarballs. Tarballs will likely only happen for betas or release candidates later on (and releases of course). You do not want to wait for that if you want OAuth 2 now. For that, you would need to install git, automake, autoconf, flex, bison, m4, gettext, and clone from Git instead of downloading a tarball. The first-time clone takes a little time to download some 10...20 MB (I don't know how efficiently GitLab or SourceForge packed the repos), future updates only fetch a few new commits then and are quick. See https://gitlab.com/fetchmail/fetchmail/-/blob/next/README.git for repository addresses. Reason is there have been too many changes since alpha9, and offering alpha tarballs is currently uneconomical on each and every aspect, and I do not want to encourage one-off builds of an alpha branch that then rots. And the socket.c source file alone has a dozen or so changesets that are relevant to OpenSSL use. Development targets recent releases of major Linux or BSD distributions such as Fedora Linux, Debian Linux, FreeBSD and maybe derivatives. Long-Term-Support releases may be too old unless released recently. Up-to-date rolling releases such as Gentoo or Arch Linux or openSUSE's rolling release branch should be good, too. Every once in a blue moon I also try OpenIllumos Hipster and OpenBSD, but that usually happens closer to release or if somebody points me to an issue. Alpha versions of fetchmail are irrelevant to past releases of distributions, so I can take the liberty of expecting the latest distro releases. In order to avoid further accidents, I have removed most alphas except for the more than 10-year-old alpha2+MAPI that carried a failed MAPI attempt from a Google Summer of Code project ages ago. It is unusable but I wanted this museum as a warning what happens when neither the mentor nor the GSoC student (mentee) communicate properly with the upstream and the changes need integration and testing. Regards, Matthias |
|
From: Dennis P. <da...@be...> - 2022-05-02 19:04:57
|
On 3/27/2022 7:42 AM, Matthias Andree wrote: > Am 26.03.22 um 21:20 schrieb Dennis Putnam: >> It appears Fetchmail 7 requires TLS 1.3. I am running CentOS 7 and the >> support folks tell me that RedHat does not intend to add TLS 1.3 to >> CentOS. I wonder if it will be added to RHEL? Anyway, that means I am >> stuck using Fetchmail 6 for the foreseeable future. Before I go to the >> trouble, do the OAUTH2 patches for Fetchmail 6 also require TLS 1.3? >> TIA. >> > Dennis, > > that's a bit of a letdown although I understand that in a stable CentOS > 7 series they don't want major changes, and TLS v1.3 in itself is one, > so you are stuck between a rock and a hard place... but you can work > yourself out of this. > > You can install the latest OpenSSL 3.0.x to a separate directory, > WARNING UNTESTED because I do not have CentOS 7, > but somewhere along the lines of but maybe needs tweaking: > unpack OpenSSL 3.0.x, then > ./config --prefix /opt/openssl3 --openssldir=/usr/lib64 > -Wl,-rpath=/opt/openssl3/lib > -- and then point your fetchmail 7 alpha build there to use it, with > ./configure --with-ssl=/opt/openssl3 > > The additional burden on you will then be to watch future OpenSSL 3.0.x > releases and upgrade your /opt/openssl3 should security fixes become > necessary in some future OpenSSL version, so take notes of what worked > for you if you had to tweak things. > > Hope that helps. > Matthias > Hi Matthias, I am now getting back to this project. Now that OpenSSL 3 is installed (/opt/openssl3) I ran configure as you specified. When I run make, I am getting this: make all-recursive make[1]: Entering directory `/home/dap/Downloads/fetchmail-7.0.0-alpha9' Making all in . make[2]: Entering directory `/home/dap/Downloads/fetchmail-7.0.0-alpha9' depbase=`echo socket.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT socket.o -MD -MP -MF $depbase.Tpo -c -o socket.o socket.c &&\ mv -f $depbase.Tpo $depbase.Po socket.c: In function ‘SSLOpen’: socket.c:997:3: warning: implicit declaration of function ‘SSL_load_error_strings’; did you mean ‘ERR_lib_error_string’? [-Wimplicit-function-declaration] SSL_load_error_strings(); ^~~~~~~~~~~~~~~~~~~~~~ ERR_lib_error_string socket.c:998:3: warning: implicit declaration of function ‘SSL_library_init’; did you mean ‘SSL_in_init’? [-Wimplicit-function-declaration] SSL_library_init(); ^~~~~~~~~~~~~~~~ SSL_in_init socket.c:999:3: warning: implicit declaration of function ‘OpenSSL_add_all_algorithms’; did you mean ‘OBJ_id_tc26_algorithms’? [-Wimplicit-function-declaration] OpenSSL_add_all_algorithms(); /* see Debian Bug#576430 and manpage */ ^~~~~~~~~~~~~~~~~~~~~~~~~~ OBJ_id_tc26_algorithms socket.c:1000:21: warning: implicit declaration of function ‘SSLeay’; did you mean ‘SSLerr’? [-Wimplicit-function-declaration] ssl_lib_version = SSLeay(); ^~~~~~ SSLerr depbase=`echo getpass.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT getpass.o -MD -MP -MF $depbase.Tpo -c -o getpass.o getpass.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo fetchmail.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT fetchmail.o -MD -MP -MF $depbase.Tpo -c -o fetchmail.o fetchmail.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo env.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT env.o -MD -MP -MF $depbase.Tpo -c -o env.o env.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo idle.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT idle.o -MD -MP -MF $depbase.Tpo -c -o idle.o idle.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo options.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT options.o -MD -MP -MF $depbase.Tpo -c -o options.o options.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo daemon.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT daemon.o -MD -MP -MF $depbase.Tpo -c -o daemon.o daemon.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo driver.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT driver.o -MD -MP -MF $depbase.Tpo -c -o driver.o driver.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo transact.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT transact.o -MD -MP -MF $depbase.Tpo -c -o transact.o transact.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo sink.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT sink.o -MD -MP -MF $depbase.Tpo -c -o sink.o sink.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo smtp.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT smtp.o -MD -MP -MF $depbase.Tpo -c -o smtp.o smtp.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo idlist.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT idlist.o -MD -MP -MF $depbase.Tpo -c -o idlist.o idlist.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo uid.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT uid.o -MD -MP -MF $depbase.Tpo -c -o uid.o uid.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo md5ify.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT md5ify.o -MD -MP -MF $depbase.Tpo -c -o md5ify.o md5ify.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo cram.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT cram.o -MD -MP -MF $depbase.Tpo -c -o cram.o cram.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo gssapi.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT gssapi.o -MD -MP -MF $depbase.Tpo -c -o gssapi.o gssapi.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo oauth2.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT oauth2.o -MD -MP -MF $depbase.Tpo -c -o oauth2.o oauth2.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo opie.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT opie.o -MD -MP -MF $depbase.Tpo -c -o opie.o opie.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo interface.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT interface.o -MD -MP -MF $depbase.Tpo -c -o interface.o interface.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo netrc.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT netrc.o -MD -MP -MF $depbase.Tpo -c -o netrc.o netrc.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo unmime.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT unmime.o -MD -MP -MF $depbase.Tpo -c -o unmime.o unmime.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo conf.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT conf.o -MD -MP -MF $depbase.Tpo -c -o conf.o conf.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo checkalias.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT checkalias.o -MD -MP -MF $depbase.Tpo -c -o checkalias.o checkalias.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo uid_db.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT uid_db.o -MD -MP -MF $depbase.Tpo -c -o uid_db.o uid_db.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo lock.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT lock.o -MD -MP -MF $depbase.Tpo -c -o lock.o lock.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo rcfile_l.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT rcfile_l.o -MD -MP -MF $depbase.Tpo -c -o rcfile_l.o rcfile_l.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo rcfile_y.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT rcfile_y.o -MD -MP -MF $depbase.Tpo -c -o rcfile_y.o rcfile_y.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo ucs/norm_charmap.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT ucs/norm_charmap.o -MD -MP -MF $depbase.Tpo -c -o ucs/norm_charmap.o ucs/norm_charmap.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo fm_realpath.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT fm_realpath.o -MD -MP -MF $depbase.Tpo -c -o fm_realpath.o fm_realpath.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo pop3.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT pop3.o -MD -MP -MF $depbase.Tpo -c -o pop3.o pop3.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo imap.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT imap.o -MD -MP -MF $depbase.Tpo -c -o imap.o imap.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo etrn.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT etrn.o -MD -MP -MF $depbase.Tpo -c -o etrn.o etrn.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo odmr.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT odmr.o -MD -MP -MF $depbase.Tpo -c -o odmr.o odmr.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo xmalloc.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT xmalloc.o -MD -MP -MF $depbase.Tpo -c -o xmalloc.o xmalloc.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo base64.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT base64.o -MD -MP -MF $depbase.Tpo -c -o base64.o base64.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo rfc822.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT rfc822.o -MD -MP -MF $depbase.Tpo -c -o rfc822.o rfc822.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo report.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT report.o -MD -MP -MF $depbase.Tpo -c -o report.o report.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo rfc2047e.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT rfc2047e.o -MD -MP -MF $depbase.Tpo -c -o rfc2047e.o rfc2047e.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo servport.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT servport.o -MD -MP -MF $depbase.Tpo -c -o servport.o servport.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo smbdes.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT smbdes.o -MD -MP -MF $depbase.Tpo -c -o smbdes.o smbdes.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo smbencrypt.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT smbencrypt.o -MD -MP -MF $depbase.Tpo -c -o smbencrypt.o smbencrypt.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo smbmd4.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT smbmd4.o -MD -MP -MF $depbase.Tpo -c -o smbmd4.o smbmd4.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo smbutil.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT smbutil.o -MD -MP -MF $depbase.Tpo -c -o smbutil.o smbutil.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo fm_getaddrinfo.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT fm_getaddrinfo.o -MD -MP -MF $depbase.Tpo -c -o fm_getaddrinfo.o fm_getaddrinfo.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo starttls.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT starttls.o -MD -MP -MF $depbase.Tpo -c -o starttls.o starttls.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo rfc822valid.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT rfc822valid.o -MD -MP -MF $depbase.Tpo -c -o rfc822valid.o rfc822valid.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo sdump.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT sdump.o -MD -MP -MF $depbase.Tpo -c -o sdump.o sdump.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo x509_name_match.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT x509_name_match.o -MD -MP -MF $depbase.Tpo -c -o x509_name_match.o x509_name_match.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo md5c.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT md5c.o -MD -MP -MF $depbase.Tpo -c -o md5c.o md5c.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo tls-aux.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT tls-aux.o -MD -MP -MF $depbase.Tpo -c -o tls-aux.o tls-aux.c &&\ mv -f $depbase.Tpo $depbase.Po rm -f libfm.a ar cru libfm.a xmalloc.o base64.o rfc822.o report.o rfc2047e.o servport.o smbdes.o smbencrypt.o smbmd4.o smbutil.o fm_getaddrinfo.o starttls.o rfc822valid.o sdump.o x509_name_match.o md5c.o tls-aux.o ranlib libfm.a depbase=`echo strlcpy.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT strlcpy.o -MD -MP -MF $depbase.Tpo -c -o strlcpy.o strlcpy.c &&\ mv -f $depbase.Tpo $depbase.Po depbase=`echo strlcat.o | sed 's|[^/]*$|.deps/&|;s|\.o$||'`;\ gcc -DHAVE_CONFIG_H -DLOCALEDIR=\"/usr/local/share/locale\" -I. -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -MT strlcat.o -MD -MP -MF $depbase.Tpo -c -o strlcat.o strlcat.c &&\ mv -f $depbase.Tpo $depbase.Po gcc -g -O2 -I/opt/openssl3/include -I/usr/kerberos/include -L/opt/openssl3/lib -L/opt/openssl3/lib -o fetchmail socket.o getpass.o fetchmail.o env.o idle.o options.o daemon.o driver.o transact.o sink.o smtp.o idlist.o uid.o md5ify.o cram.o gssapi.o oauth2.o opie.o interface.o netrc.o unmime.o conf.o checkalias.o uid_db.o lock.o rcfile_l.o rcfile_y.o ucs/norm_charmap.o fm_realpath.o pop3.o imap.o etrn.o odmr.o libfm.a strlcpy.o strlcat.o -lresolv -lcrypto -lssl -lssl -lcrypto fetchmail.o: In function `main': /home/dap/Downloads/fetchmail-7.0.0-alpha9/fetchmail.c:451: undefined reference to `OpenSSL_version' /home/dap/Downloads/fetchmail-7.0.0-alpha9/fetchmail.c:451: undefined reference to `OpenSSL_version_num' /home/dap/Downloads/fetchmail-7.0.0-alpha9/fetchmail.c:455: undefined reference to `OpenSSL_version' /home/dap/Downloads/fetchmail-7.0.0-alpha9/fetchmail.c:455: undefined reference to `OpenSSL_version' socket.o: In function `SSL_verify_callback': /home/dap/Downloads/fetchmail-7.0.0-alpha9/socket.c:729: undefined reference to `OPENSSL_sk_num' /home/dap/Downloads/fetchmail-7.0.0-alpha9/socket.c:730: undefined reference to `OPENSSL_sk_value' /home/dap/Downloads/fetchmail-7.0.0-alpha9/socket.c:742: undefined reference to `OPENSSL_sk_free' socket.o: In function `OSSL_proto_version_logic': /home/dap/Downloads/fetchmail-7.0.0-alpha9/socket.c:911: undefined reference to `TLS_client_method' socket.o: In function `SSLOpen': /home/dap/Downloads/fetchmail-7.0.0-alpha9/socket.c:1072: undefined reference to `SSL_CTX_set_options' /home/dap/Downloads/fetchmail-7.0.0-alpha9/socket.c:999: undefined reference to `OpenSSL_add_all_algorithms' collect2: error: ld returned 1 exit status make[2]: *** [fetchmail] Error 1 make[2]: Leaving directory `/home/dap/Downloads/fetchmail-7.0.0-alpha9' make[1]: *** [all-recursive] Error 1 make[1]: Leaving directory `/home/dap/Downloads/fetchmail-7.0.0-alpha9' make: *** [all] Error 2 Looks like I am missing some arguments for either configure or make. |
|
From: Robert H. <rjh...@gm...> - 2022-05-02 12:41:53
|
The Google documentation indicates that the following apps do not need verification. The documentation for setting this up is very well hidden. I've not found it yet. The hint that I found is to follow the "Advanced" on the consent screen (https://support.google.com/cloud/answer/7454865#unverified-app-screen). Unfortunately, just that hint, not further documentation. ------------- from https://support.google.com/cloud/answer/9110914#ver-prep&zippy=%2Csteps-to-prepare-for-verification%2Cwhat-app-types-are-not-applicable-for-verification What app types are not applicable for verification? You do not need to submit your app for review if it's going to be used in any of the following scenarios: Personal Use: The app is not shared with anyone else or will be used by fewer than 100 users. Hence, you can continue using the app by bypassing the unverified app warning during sign-in. SMTP/IMAP/WP: The app is used to send emails through WordPress, or similar single account SMTP plug-ins. Internal Use: An app is internal when the people in your domains only use it internally. Learn more about public and internal applications. Learn how to mark your app as internal in the FAQ How can I mark my app as internal-only? Domain-Wide Install: If your app is intended for only Google Workspace enterprise users, access will depend on permission being granted by the domain administrator. Google Workspace domain administrators are the only ones that can whitelist the app for use within their domains. To learn how to make your app Domain-Wide Install, see My application has users with enterprise accounts from another Google Workspace Domain. How does this apply to my Google Workspace or Cloud Identity enterprise accounts? Development/Testing/Staging: If your app is in development/testing/staging mode and not ready to be publicly accessible, then you do not need to submit your app for verification. Note that your app will be subject to the unverified app screen and the 100-user cap will be in effect when an app is in development/testing/staging. If your app is for Development/Testing/Staging, it is recommended that you keep your app’s publish status set to Testing and only update to In Production once it is ready for public use. If your app’s publishing status is set to “Testing” and not “In production”, then you do not need to submit your app for verification. Note that your app will be subject to the unverified app screen and the 100-user cap will be in effect when an app is in development/testing/staging. Learn more about Publishing status. Service Accounts: When your app is trying to access data from users' Google Cloud project and can run API requests on its behalf. To understand what service accounts are, see Service accounts. For instructions on using a service account, see Using OAuth 2.0 for Server to Server Applications. -- Robert Horn rjh...@gm... |
|
From: Marco G. <ga...@li...> - 2022-05-01 22:10:15
|
> But... you *have* registered the app? Your doc suggest you have not, but
> seems to me clear that auth done with a non-registered app last max a
> week...
And register the app seems a no-way:
Eseguire il push in produzione?
La tua app sarà disponibile a tutti gli utenti dotati di Account Google.
La configurazione che hai effettuato richiede che la tua app venga sottoposta a verifica. Per completare la verifica, dovrai fornire:
Un link ufficiale alle norme sulla privacy della tua app
Un video YouTube che mostri come intendi utilizzare i dati degli utenti Google ottenuti dagli ambiti
Una spiegazione scritta che motivi a Google la tua necessità di accedere a dati utente sensibili e/o riservati
Tutti i tuoi domini verificati in Google Search Console
in english:
Push into production?
Your app will be available to all users with Google Accounts.
The configuration you've done requires your app to be verified. To complete the verification, you'll need to provide:
An official link to your app's privacy policy
A YouTube video showing how you intend to use Google user data obtained from scopes
A written explanation that motivates Google for your need to access sensitive and/or confidential user data
All your domains verified in Google Search Console
All requirement out of scope, AFAIK...
--
Mi piaccion le fiabe
raccontane altre (F. Guccini)
|
|
From: Lucio C. <lu...@la...> - 2022-04-29 15:36:50
|
On Thu, 28 Apr 2022, Matthias Andree wrote: > We can stop that nonsense today, and not be made jump through the hoops. > The proper user response is: take your data while you still can, and to > where you will not be bullied. It may be inconvenient. ... I have been following the discussion on oauth2 both on the alpine and fetchmail mailing lists. With some (or a lot of) worry. I have "always" (that means from the '90s) been used to receive *and store* my mail on my (work) computer. This was fine and gradually I added also a number of procmail filters. For a time I also followed the local implementation of sendmail in my institute. For some time we had a local institute IMAP, but that was mainly for those we called "the homeless" (those using a Windows PC and not having a home on a Linux workstation). I still received all mail on my work computer. I had (still have) a local IMAP which can be activated on my own work computer, and used it seldom on some long trips. But I prefer to ssh to such work computer, and run alpine there (what I regularly do from home during this pandemics). Unfortunately a while ago my institution (which is composed of several institutes) made a move towards Gsuite (apparently one of the reasons was that the kmow-how about home-grown mail handling solutions was disappearing). I managed to continue "business as usual" like before ADDING fetchmail in the loop: http://sax.iasf-milano.inaf.it/~lucio/WWW/WhereManWins/gs.html I still get all my mail on my work computer through my procmail rules, with the little price of a 5 min delay (I run fetchmail every 5 min) and a daily cleanup of the Gsuite Bin (I can manage 99% of this via Alpine/IMAP without using Gmail web interface) ... I leave only spam there :-) I receive only a smll percentage of my mail on another public provider (an old fashioned civic network, which has only POP support; I now use fetchmail on it too, but 3-4 times a day only). If fetchmail would not continue to operate with Gsuite, I guess I'd be forced to look for some other (fetchmail-friendly) provider (if I only had a static IP and not a CGNAT DHCP at home, I would even be ready to run my own MX/SMTP) and possibly route all Gsuite mail to it. Advices and suggestions are welcome. -- Lucio Chiappetti - INAF/IASF - via Corti 12 - I-20133 Milano (Italy) For more info : http://www.iasf-milano.inaf.it/~lucio/personal.html ------------------------------------------------------------------------ "All that is google does not glitter Nor all who use alpine/procmail are lost" |
|
From: Matthias A. <mat...@gm...> - 2022-04-28 20:16:57
|
[Bcc'd to Eduardo Chappa's address found on repo.or.cz/alpine.git] Am 20.04.22 um 11:00 schrieb Andrew C Aitchison: > > On Wed, 13 Apr 2022, Matthias Andree wrote: > >> Am 12.04.22 um 23:18 schrieb Marco Gaiarin: >> > I've followed literally: >> > >> > https://gitlab.com/fetchmail/fetchmail/-/blob/next/README.OAUTH2 >> > >> > (eg, the readme of fetchmail 7) and works as expected. Now i have to > manage >> > some script to refresh the token, and download the email. >> > >> > I've only a question, before put all that stuff in 'production'. >> > >> > Juergen Edner say that the OAuth client created in 'Test mode' least > at >> > maximum a week. >> > But if i try to publish the app, i need the Google approval process, > because the api used (eg, GMAIL >> > API) is 'restricted'. >> > >> > So, it is needed to publish the app? If yes, what is the shortest and > error >> > prone path to get it approved? >> > >> Their requiring registration of the "app" (we have never called >> fetchmail that) - and not solely the user for his or her own account - >> is one of the reasons why I say that OAUTH2 in this form is generally a >> non-starter and does not scale. >> >> I cannot possibly register fetchmail with each and every mail service, >> and device registration is somewhat pointless anyways. > > There has been some discussion of fetchmail and google in the email list > for alpine - another open source MUA - particularly the thoughts > of the main alpine developer at > https://mailman12.u.washington.edu/pipermail/alpine-info/2022-April/001162.html I have read Eduardo's mail again, and I come to different conclusions. The thought of supporting users of accessing some service is nice, and I have sympathy for it. Also, sticking together as maintainers of Free and Open Source Software and explaining the situation to users seems useful. So here is my take. On a broader view, stepping back a yard from the drawing board: The entire OAuth discussion so far has revolved around Google and Microsoft wherever I have seen it (either by Andrew's pointer to ALPINE, or on the getmail mailing list). The intro always goes as a variation on the "$BIGCOMPANY wants OAuth to let me access my own data where IMAP or POP3 used to work" theme. So why do YOU, the user, allow that to happen? Why do we foster monopolies? Meaning we are not it is not technically about OAuth, but it is about $BIGCOMPANY trying to own the game, your data, your whatever_other_valuable by changing the rules. In essence, they try to exert control over what applications the users are permitted to use to access their VERY OWN PERSONAL data. Since when have we allowed such intrusions into users' liberties to happen? What do I have to gain as maintainer of a free and open source software in that race? Nothing. If I open the OAuth floodgate now, I pay with my time to implement, debug, or - if contributed - review and integrate things. I will create a technical debt for myself that there will be a permanent expectation that this is supported, and that will also take time. All time that is spent, or rather wasted, on trying to implement technical solutions for a political problem. It could be invested in other changes that would be useful to fetchmail. But look, if $BIGCOMPANY want to change rules again tomorrow, they will do so. And fetchmail would be back to square one. A spare-time open source maintainer cannot possibly win such a race. I will not try. We can stop that nonsense today, and not be made jump through the hoops. The proper user response is: take your data while you still can, and to where you will not be bullied. It may be inconvenient. I am not picking up a technical fight to attack political arbitrariness. I am not going to register fetchmail with any service provider. I have one voice, users have many. If someone has come to fetchmail for free beer, sorry, you've taken the wrong turn. We want free choice in this place. This includes the choice to leave fetchmail behind because I am not catering for that OAuth 2 need. But unlike $BIGCOMPANY, I need no high user count, I need not bind your attention, I do not need you to stay on my site longer, because I am not selling advertisements. Fetchmail does not call home, it does not track you, it does not breach your privacy, and everyone can see the source code and confirm that to him- or herself. Try that with Outlook, or with the web-based interfaces to GMail or Outlook.com/MSN. What does this mean? The existing prototypical code in the "next" branch (towards 7.0.0) can remain until found vulnerable or nonfunctional. It will be considered experimental unsupported code. Feel free to discuss OAuth on the list, but make sure OAuth is in the subject, and do not expect me to even pay attention. If there is a service that offers OAuth 2.0 as part of a non-discriminatory public mail service through IMAP and/or POP3 WITHOUT requiring app registration, verification, and other nonsense, feel free to tell me about it, we will need something to test against if it's not M or G, and if it's not too much of an effort, we may actively implement for that service to make a public demonstration that OAuth 2.0 can go without exerting control over apps. That would be valuable in defanging all the FUD and distractions around "less secure apps". For OAuth pull requests, stick to contrib/ and make it standalone, except for the minimal changes to the fetchmail code (which we already have and might be sufficient already). Be sure to make contributions high-quality, include documentation, be easily reviewed, and best two other fetchmail users have tested the code on their systems, too, then I may look at pull request. Make sure that you have all licenses to the code you share, and the only acceptable languages for now are C, C++, Python 3 (for upstream-supported versions) and portable Shell. Anything else, ask me before you spend your time. About libraries, make sure they blend in with existing licenses, in particular, they need to be compatible with GPL v2, GPL v3, Apache, and OpenSSL licenses. Only use widely-used high-quality libraries (Boost would be fine). I consider dynamic linking to be creating derivative works, because the FSF (author of the GPL) does. Happy mail fetching, Matthias |
|
From: Marco G. <ga...@li...> - 2022-04-27 21:40:19
|
Mandi! J.Edner In chel di` si favelave... > Google verifies projects configured for a user type of External and > a publishing status of In production if they meet one or more of the > OAuth verification criteria: [...] > * Your project's OAuth clients request authorization of any sensitive > or restricted scopes. fetchmail OAUTH2 README suggest: + I think that the scope ".../auth/gmail.modify" to "View and modify but not delete your email" is sufficient. and '.../auth/gmail.modify' scope is a restricted ones; so seem to me required to 'register' the app... But... you *have* registered the app? Your doc suggest you have not, but seems to me clear that auth done with a non-registered app last max a week... -- La virulenza delle polemiche su un argomento è inversamente proporzionale alla reale importanza dell'argomento stesso. (Legge di Potter) |
|
From: Matthias A. <mat...@gm...> - 2022-04-26 19:24:15
|
The 6.4.30 release of fetchmail is now available at the usual locations, including <https://sourceforge.net/projects/fetchmail/files/branch_6.4/>. It updates the Romanian-language translations and tightens up SSL/TLS library version requirements a tiny bit and might fix cross-compilation. The source archive is available at: <https://sourceforge.net/projects/fetchmail/files/branch_6.4/fetchmail-6.4.30.tar.xz/download> <https://sourceforge.net/projects/fetchmail/files/branch_6.4/fetchmail-6.4.30.tar.lz/download> The detached GnuPG signature is available at: <https://sourceforge.net/projects/fetchmail/files/branch_6.4/fetchmail-6.4.30.tar.xz.asc/download> <https://sourceforge.net/projects/fetchmail/files/branch_6.4/fetchmail-6.4.30.tar.lz.asc/download> The SHA256 hashes for the tarballs are: SHA256(fetchmail-6.4.30.tar.xz)= 35824c20aa1d8d97e3f1611fef49b9f7f68396f7cbc4d3a807fed27ae9ea445a SHA256(fetchmail-6.4.30.tar.lz)= 2a5feabd20379401664f8fdd99c1e2506aa6acaef6daa4a678ef365be7972303 Here are the release notes: -------------------------------------------------------------------------------- fetchmail-6.4.30 (released 2022-04-26, 31666 LoC): # BREAKING CHANGES: * Bump wolfSSL minimum required version to 5.2.0 to pull in security fix. # CHANGES: * Using OpenSSL 1.* before 1.1.1n elicits a compile-time warning. * Using OpenSSL 3.* before 3.0.2 elicits a compile-time warning. * configure.ac was tweaked in order to hopefully fix cross-compilation issues report, and different patch suggested, by Fabrice Fontaine, https://gitlab.com/fetchmail/fetchmail/-/merge_requests/42 # TRANSLATIONS: language translations were updated by this fine person: * ro: Remus-Gabriel Chelu [Romanian] -------------------------------------------------------------------------------- Happy fetches, Matthias |
|
From: Robin A. <ro...@bi...> - 2022-04-24 14:37:06
|
On Sun, 24 Apr 2022 11:38:50 +0200
"J.Edner" <fli...@te...> wrote:
> Hello Marco,
>
> >> Juergen Edner say that the OAuth client created in 'Test mode'
> >> least at maximum a week.
> >> But if i try to publish the app, i need the Google approval
> >> process, because the api used (eg, GMAIL API) is 'restricted'.
> >> So, it is needed to publish the app? If yes, what is the shortest
> >> and error prone path to get it approved?
> >
> > OK, i can confirm Juergen is true; after 7 days:
> >
> > /home/famiglia/fetchmail-oauth2.py -c /home/famiglia/.oauth2.conf
> > --auto_refresh Traceback (most recent call last):
> > File "/home/famiglia/fetchmail-oauth2.py", line 591, in <module>
> > main(sys.argv)
> > File "/home/famiglia/fetchmail-oauth2.py", line 502, in main
> > newTok = response['access_token']
> > KeyError: 'access_token'
> >
> > I've redone the auth with '--obtain_refresh_token_file' and now
> > works back as usual.
> >
> >
> > I perfectly agree that big G is not fair on this, but... more
> > practically, how can i 'register' a (fake?) fetcmail app?
>
> In general there is not always a requirement to get your application
> verified by Google, if you set the status to "external" and
> "production". This was one of the most irritating facts for me too,
> as I configured Fetchmail OAuth2 access for the first time. These are
> the verification rules:
>
> Verification Status
> -------------------
> Google verifies projects configured for a user type of External and
> a publishing status of In production if they meet one or more of
> the OAuth verification criteria:
>
> * You want to display an icon or display name for your project on
> the OAuth consent screen.
> * Your project's OAuth clients request authorization of any
> sensitive or restricted scopes.
> * The number of authorized domains for your project exceeds the
> domain count limit.
> * There are changes to your project's OAuth consent screen
> configuration after a previous published, verified configuration.
>
> Regards
> Juergen
Juergen -
I tried publishing my "fetchmail" app but when I do the "oauth2
--obtain_refresh_token_file" step, I get an HTTP 400 error from Google.
So what's the simplest way to resolve this? Create a display name? Is
that possible without creating yet another app?
Thanks
Robin
--
----------------------------------------------------------------------
Robin Atwood.
"Ship me somewheres east of Suez, where the best is like the worst,
Where there ain't no Ten Commandments an' a man can raise a thirst"
from "Mandalay" by Rudyard Kipling
----------------------------------------------------------------------
|
|
From: J.Edner <fli...@te...> - 2022-04-24 09:51:11
|
Hello Marco,
>> Juergen Edner say that the OAuth client created in 'Test mode' least at
>> maximum a week.
>> But if i try to publish the app, i need the Google approval process, because
>> the api used (eg, GMAIL API) is 'restricted'.
>> So, it is needed to publish the app? If yes, what is the shortest and error
>> prone path to get it approved?
>
> OK, i can confirm Juergen is true; after 7 days:
>
> /home/famiglia/fetchmail-oauth2.py -c /home/famiglia/.oauth2.conf --auto_refresh
> Traceback (most recent call last):
> File "/home/famiglia/fetchmail-oauth2.py", line 591, in <module>
> main(sys.argv)
> File "/home/famiglia/fetchmail-oauth2.py", line 502, in main
> newTok = response['access_token']
> KeyError: 'access_token'
>
> I've redone the auth with '--obtain_refresh_token_file' and now works back
> as usual.
>
>
> I perfectly agree that big G is not fair on this, but... more practically,
> how can i 'register' a (fake?) fetcmail app?
In general there is not always a requirement to get your application
verified by Google, if you set the status to "external" and
"production". This was one of the most irritating facts for me too,
as I configured Fetchmail OAuth2 access for the first time. These are
the verification rules:
Verification Status
-------------------
Google verifies projects configured for a user type of External and
a publishing status of In production if they meet one or more of the
OAuth verification criteria:
* You want to display an icon or display name for your project on the
OAuth consent screen.
* Your project's OAuth clients request authorization of any sensitive
or restricted scopes.
* The number of authorized domains for your project exceeds the domain
count limit.
* There are changes to your project's OAuth consent screen
configuration after a previous published, verified configuration.
Regards
Juergen
|
|
From: Marco G. <ga...@li...> - 2022-04-20 20:40:27
|
Mandi! Marco Gaiarin
In chel di` si favelave...
> Juergen Edner say that the OAuth client created in 'Test mode' least at
> maximum a week.
> But if i try to publish the app, i need the Google approval process, because
> the api used (eg, GMAIL API) is 'restricted'.
> So, it is needed to publish the app? If yes, what is the shortest and error
> prone path to get it approved?
OK, i can confirm Juergen is true; after 7 days:
/home/famiglia/fetchmail-oauth2.py -c /home/famiglia/.oauth2.conf --auto_refresh
Traceback (most recent call last):
File "/home/famiglia/fetchmail-oauth2.py", line 591, in <module>
main(sys.argv)
File "/home/famiglia/fetchmail-oauth2.py", line 502, in main
newTok = response['access_token']
KeyError: 'access_token'
I've redone the auth with '--obtain_refresh_token_file' and now works back
as usual.
I perfectly agree that big G is not fair on this, but... more practically,
how can i 'register' a (fake?) fetcmail app?
--
Son giunto alla conclusione che, almeno una volta nella vita, bisogna
usare Windows a fondo, perché è un'esperienza che rende uomini.
Almeno, io, dopo, ho sempre due palle così. (Leonardo Serni)
|
|
From: Andrew C A. <fet...@ai...> - 2022-04-20 09:00:42
|
On Wed, 13 Apr 2022, Matthias Andree wrote: > Am 12.04.22 um 23:18 schrieb Marco Gaiarin: > > I've followed literally: > > > > https://gitlab.com/fetchmail/fetchmail/-/blob/next/README.OAUTH2 > > > > (eg, the readme of fetchmail 7) and works as expected. Now i have to manage > > some script to refresh the token, and download the email. > > > > I've only a question, before put all that stuff in 'production'. > > > > Juergen Edner say that the OAuth client created in 'Test mode' least at > > maximum a week. > > But if i try to publish the app, i need the Google approval process, because the api used (eg, GMAIL > > API) is 'restricted'. > > > > So, it is needed to publish the app? If yes, what is the shortest and error > > prone path to get it approved? > > > Their requiring registration of the "app" (we have never called > fetchmail that) - and not solely the user for his or her own account - > is one of the reasons why I say that OAUTH2 in this form is generally a > non-starter and does not scale. > > I cannot possibly register fetchmail with each and every mail service, > and device registration is somewhat pointless anyways. There has been some discussion of fetchmail and google in the email list for alpine - another open source MUA - particularly the thoughts of the main alpine developer at https://mailman12.u.washington.edu/pipermail/alpine-info/2022-April/001162.html > So tell your mail service provider to stop that "app" registration > nonsense. I may seem pointless, but if nobody tells them, they will > never notice. Good idea. -- Andrew C. Aitchison Kendal, UK an...@ai... |
|
From: Robert H. <rjh...@gm...> - 2022-04-18 18:07:05
|
A somewhat more technical question about this. Does the approval mechanism for unverified applications (https://developers.google.com/apps-script/guides/client-verification) not work? Or is the problem other non-technical policy issues or potential future problems with an approval mechanism that technically works today? My apologies that I've not invested the time in setting up and testing fetchmail 7 to verify whether the documented approval mechanism works or not with fetchmail. R Horn rjh...@gm... On Sat, Apr 16, 2022 at 3:45 AM Matthias Andree <mat...@gm...> wrote: > > Am 13.04.22 um 23:55 schrieb Andrew C Aitchison: > > On Wed, 13 Apr 2022, Matthias Andree wrote: > > > >> Am 12.04.22 um 23:18 schrieb Marco Gaiarin: > >>> Juergen Edner say that the OAuth client created in 'Test mode' least at > >>> maximum a week. > >>> But if i try to publish the app, i need the Google approval process, > >>> because > >>> the api used (eg, GMAIL API) is 'restricted'. > >>> > >>> > >>> So, it is needed to publish the app? If yes, what is the shortest > >>> and error > >>> prone path to get it approved? > >>> > >> Their requiring registration of the "app" (we have never called > >> fetchmail that) - and not solely the user for his or her own account - > >> is one of the reasons why I say that OAUTH2 in this form is generally a > >> non-starter and does not scale. > >> > >> I cannot possibly register fetchmail with each and every mail service, > >> and device registration is somewhat pointless anyways. > > > > There is a point to it. If you usually use fetchmail to access gamil, > > then gmail receives a login as you from, say, Outlook then gmail will > > be suspicious and look harder, perhaps look whether the connection is > > from a country and a computer/device that you have never used before. > > I believe that they can choose to block the connection even if the > > password > > is correct, and warn you when you login from your usual computer. > > > > Yes, this is a pain, but there is a good reason behind what they are > > trying it do, as well as good reasons to complain about it. > > > Andrew, > > Thanks. But none of what you mentioned or relay as their intention makes > any good point to me why registering an and receiving approval for an > application with a service is required. GMail specifically offers > 2-factor authentication. That can happen without registering *MY* > implementation aka. fetchmail with them. > > To me it still looks that the decision to register the app itself is a > political issue about exerting control and being discriminatory about > what clients people can use, and is not about security. > > So if the abomination of hundreds of pages of a "standard" just for > authentication by itself does NOT suffice to implement OAuth2, then we > should probably leave it out and remove the experimental bits that are > in fetchmail's code before a release, even from contrib, and replace > them with a document README.OAuth2 that starts with "why does fetchmail > not implement OAuth2". > > Or else somebody show me to a mail service that is not just some SOHO > site and that *does* implement OAuth2 without requiring jumping through > arbitrary hoops and showing dressage tricks or play sit up and beg or > something, then we can implement it and document "why you cannot use > OAuth2 with Google" instead. > > Regards, > Matthias > > > > _______________________________________________ > Fetchmail-users mailing list > Fet...@li... > https://lists.sourceforge.net/lists/listinfo/fetchmail-users -- Robert Horn rjh...@gm... |
|
From: Matthias A. <mat...@gm...> - 2022-04-16 07:44:07
|
Am 13.04.22 um 23:55 schrieb Andrew C Aitchison: > On Wed, 13 Apr 2022, Matthias Andree wrote: > >> Am 12.04.22 um 23:18 schrieb Marco Gaiarin: >>> Juergen Edner say that the OAuth client created in 'Test mode' least at >>> maximum a week. >>> But if i try to publish the app, i need the Google approval process, >>> because >>> the api used (eg, GMAIL API) is 'restricted'. >>> >>> >>> So, it is needed to publish the app? If yes, what is the shortest >>> and error >>> prone path to get it approved? >>> >> Their requiring registration of the "app" (we have never called >> fetchmail that) - and not solely the user for his or her own account - >> is one of the reasons why I say that OAUTH2 in this form is generally a >> non-starter and does not scale. >> >> I cannot possibly register fetchmail with each and every mail service, >> and device registration is somewhat pointless anyways. > > There is a point to it. If you usually use fetchmail to access gamil, > then gmail receives a login as you from, say, Outlook then gmail will > be suspicious and look harder, perhaps look whether the connection is > from a country and a computer/device that you have never used before. > I believe that they can choose to block the connection even if the > password > is correct, and warn you when you login from your usual computer. > > Yes, this is a pain, but there is a good reason behind what they are > trying it do, as well as good reasons to complain about it. Andrew, Thanks. But none of what you mentioned or relay as their intention makes any good point to me why registering an and receiving approval for an application with a service is required. GMail specifically offers 2-factor authentication. That can happen without registering *MY* implementation aka. fetchmail with them. To me it still looks that the decision to register the app itself is a political issue about exerting control and being discriminatory about what clients people can use, and is not about security. So if the abomination of hundreds of pages of a "standard" just for authentication by itself does NOT suffice to implement OAuth2, then we should probably leave it out and remove the experimental bits that are in fetchmail's code before a release, even from contrib, and replace them with a document README.OAuth2 that starts with "why does fetchmail not implement OAuth2". Or else somebody show me to a mail service that is not just some SOHO site and that *does* implement OAuth2 without requiring jumping through arbitrary hoops and showing dressage tricks or play sit up and beg or something, then we can implement it and document "why you cannot use OAuth2 with Google" instead. Regards, Matthias |
|
From: Matthias A. <mat...@gm...> - 2022-04-13 17:20:55
|
Am 12.04.22 um 23:18 schrieb Marco Gaiarin: >> Yes. Same result... > OK, i've managed to make it work. > > > I've followed literally: > > https://gitlab.com/fetchmail/fetchmail/-/blob/next/README.OAUTH2 > > (eg, the readme of fetchmail 7) and works as expected. Now i have to manage > some script to refresh the token, and download the email. > > > I've only a question, before put all that stuff in 'production'. > > > Juergen Edner say that the OAuth client created in 'Test mode' least at > maximum a week. > But if i try to publish the app, i need the Google approval process, because > the api used (eg, GMAIL API) is 'restricted'. > > > So, it is needed to publish the app? If yes, what is the shortest and error > prone path to get it approved? > Their requiring registration of the "app" (we have never called fetchmail that) - and not solely the user for his or her own account - is one of the reasons why I say that OAUTH2 in this form is generally a non-starter and does not scale. I cannot possibly register fetchmail with each and every mail service, and device registration is somewhat pointless anyways. So tell your mail service provider to stop that "app" registration nonsense. I may seem pointless, but if nobody tells them, they will never notice. |
|
From: Marco G. <ga...@li...> - 2022-04-12 21:40:16
|
> Yes. Same result... OK, i've managed to make it work. I've followed literally: https://gitlab.com/fetchmail/fetchmail/-/blob/next/README.OAUTH2 (eg, the readme of fetchmail 7) and works as expected. Now i have to manage some script to refresh the token, and download the email. I've only a question, before put all that stuff in 'production'. Juergen Edner say that the OAuth client created in 'Test mode' least at maximum a week. But if i try to publish the app, i need the Google approval process, because the api used (eg, GMAIL API) is 'restricted'. So, it is needed to publish the app? If yes, what is the shortest and error prone path to get it approved? Thanks. -- L'essenziale e` invisibile agli occhi (Il piccolo principe) |
18 messages has been excluded from this view by a project administrator.
