[Bug 268043] devel/py-twisted: Consumer ports fail to run: module 'OpenSSL.SSL' has no attribute 'TLS_METHOD' after 22.10.0 update

In reply to: bugzilla-noreply_a_freebsd.org: "[Bug 268043] devel/py-twisted regression with openssl port"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Tue, 13 Dec 2022 04:10:02 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=268043

Charlie Li <vishwin@freebsd.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |vishwin@freebsd.org

--- Comment #8 from Charlie Li <vishwin@freebsd.org> ---
While this works as a quick-fix, this text replacement is ultimately incorrect.
Hardcoding to TLSv1_2_method() locks the connection to TLSv1.2 mode only, which
is problematic if higher protocol versions (ie TLSv1.3) are mutually available
between client and server.

The correct solution is to update security/py-openssl to 21.0.0, as
TLS_method() was exposed then, and the minimum security/py-cryptography version
is 3.3. This commit should then be reverted.

-- 
You are receiving this mail because:
You are on the CC list for the bug.