[Bug 291419] security/tor: The port is configured to use base OpenSSL which is bad
- Go to: [ bottom of page ] [ top of archives ] [ this month ]
Date: Fri, 05 Dec 2025 09:31:03 UTC
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=291419
Bug ID: 291419
Summary: security/tor: The port is configured to use base
OpenSSL which is bad
Product: Ports & Packages
Version: Latest
Hardware: Any
OS: Any
Status: New
Severity: Affects Some People
Priority: ---
Component: Individual Port(s)
Assignee: yuri@freebsd.org
Reporter: p5B2EA84B3@t-online.de
Assignee: yuri@freebsd.org
Flags: maintainer-feedback?(yuri@freebsd.org)
In the Makefile please remove
CONFIGURE_ARGS= --with-openssl-dir="${OPENSSLBASE}"
The fixation to base OpenSSL prevents the use of the newer OpenSSL versions in
the ports which makes problems.
# grep -i openssl info.log
Dec 05 06:58:43.346 [notice] We compiled with OpenSSL 30000100: OpenSSL 3.0.16
11 Feb 2025 and we are running with OpenSSL 30000100: 3.0.16. These two
versions should be binary compatible.
Dec 05 06:58:43.386 [notice] Tor 0.4.8.21 running on FreeBSD with Libevent
2.1.12-stable, OpenSSL 3.0.16, Zlib 1.3.1, Liblzma 5.8.1, Libzstd 1.5.7 and BSD
1403000 as libc.
Dec 05 06:58:43.000 [info] crypto_openssl_late_init: NOT using OpenSSL engine
support.
Dec 05 06:58:43.000 [info] evaluate_evp_for_aes: This version of OpenSSL has a
known-good EVP counter-mode implementation. Using it.
Dec 05 06:58:45.000 [info] tor_tls_context_new: Not trying groups
?*X25519MLKEM768 / ?SecP256r1MLKEM768 / *P-256:?X25519:P-224 because of OpenSSL
version.
Dec 05 08:58:49.000 [info] tor_tls_context_new: Not trying groups
?*X25519MLKEM768 / ?SecP256r1MLKEM768 / *P-256:?X25519:P-224 because of OpenSSL
version.
Please use OpenSSL as a port dependency not base dependency.
--
You are receiving this mail because:
You are the assignee for the bug.