Recent nss upgrade breaks ssl support in curl in a CentOS 6.7 build

Christian Lohmaier lohmaier at
Sun Mar 13 16:02:31 UTC 2016

Hi *,

On Sun, Mar 13, 2016 at 1:55 PM, Giuseppe Castagno
<giuseppe.castagno at> wrote:
> Hi all,
> I found recent upgrading nss cause curl configure failing to detect nss
> availability.
> Happens only in CentOS 6.7, didn't observe it on Ubuntu 14.04.
> nss upgrade is present both in master and in libreoffice-5-1.

… and libreoffice-5-0

patch committed to master as 98d48dad9e807a4a40f4c3d1b5280d9e5156cb18
cherry-pick for 5-0:
cherry-pick for 5-1:

thanks for hunting this down..

Problem is that is not added to curl's configure
check, and system one on the baseline is too old (only patched 3.19
version). On other distros, system versions of jumps in
and satisfies the configure check...

configure:21330: checking whether to enable Windows native SSL/TLS
(Windows native builds only)
configure:21352: result: no
configure:21368: checking whether to enable iOS/Mac OS X native SSL/TLS
configure:21384: result: no
configure:24009: WARNING: Using hard-wired libraries and compilation
flags for NSS.
configure:24028: checking for SSL_VersionRangeSet in -lnss3
configure:24050: /usr/bin/ccache /opt/rh/devtoolset-2/root/usr/bin/gcc
-o conftest -O2 -Wno-system-headers -isystem
-Wl,-z,origin -Wl,-rpath,\$$ORIGIN conftest.c -lnss3  -lssl3 -lsmime3
-lnss3 -lplds4 -lplc4 -lnspr4 -lz -lrt >&5
undefined reference to `NSSUTIL_ArgParseModuleSpecEx at NSSUTIL_3.21'
collect2: error: ld returned 1 exit status


More information about the LibreOffice mailing list