From nobody Wed Jan 31 05:19:59 2024 X-Original-To: questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4TPr2D4KhHz58S3S for ; Wed, 31 Jan 2024 05:19:48 +0000 (UTC) (envelope-from pprocacci@gmail.com) Received: from mail-ej1-x631.google.com (mail-ej1-x631.google.com [IPv6:2a00:1450:4864:20::631]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1D4" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4TPr2D1L8vz4cwP for ; Wed, 31 Jan 2024 05:19:48 +0000 (UTC) (envelope-from pprocacci@gmail.com) Authentication-Results: mx1.freebsd.org; none Received: by mail-ej1-x631.google.com with SMTP id a640c23a62f3a-a2d7e2e7fe0so97655766b.1 for ; Tue, 30 Jan 2024 21:19:48 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1706678387; x=1707283187; darn=freebsd.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=sVgXIXrViVjSDbGnAsoqz4ChxgIRaYEIfQGTGEcnHKY=; b=L0fxjjzdeibnmUwQ1yzD73DjWOyCH76z/95NlBLk0NO/HHooEgSkEhW3ageBZGbnd6 EkK/YYrRb/0drHcpYGPyV88FCWNWuqC3R2VPck7sb+EhcGoMB16z2aJBF+ojxxZmN2RE RqeUrD0hnCNe/VciML2PaK6DPJl4mbNrdmiWyYNBvP2uRvIp9nu7yUfaSU0TCPCxXdt8 nvocb/8w/HLgk4wL21oktRuzw+0d3zQSt8oUNnveLS3TwbcSSXhBkcl1T00LSkRRpcAH GEbJaa57/N4DtQs4FoeGiHGMUXfLo/dEuUByR7rPmZCWBYZelDC3VM2zacQQwz2o/TVT c3lQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1706678387; x=1707283187; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=sVgXIXrViVjSDbGnAsoqz4ChxgIRaYEIfQGTGEcnHKY=; b=p1nYlUsLh5zTazrTuxNvDLDn+fm+PYrX3pacW001iI9JAODwRe4zP9oDz+ImxlPREl 0ES4d192phtt3ucAOzNy38254epQxATTsT2iS6YOqDU1GbHIeO7AxVkG1RaUUh9loHnl IMCGdH1DLfOEEmtEOmeNto6sT0pEpoBMP6TQ0E6tNWPzSrAGevTdbsoe+Vwp35RjojaJ M/KkXKqnnk6QWXHaO/F7CIgy5yM4R37emZTglJst8xQuSKZbGBdR3ZPy79sm1FS8F6Ix fuce+BkhmCJRPcrpxJ8TGOJzWkB0QW3ikWmsbvNf8LD6Mdn79tYoEmTh7rsLyuot7uQm HGKg== X-Gm-Message-State: AOJu0YxwJ/Fp7QV0IyVyNE2cjtnsHTU+LaT2sr47MjOhmPYjDbDlvDWO BmfUZQcjod48171Xz+HJXR+SP510ijcy18dB8OqJmZf8/t+T/OhhOiVOCwuVVmyq2/VN3mz3jSJ 75+v/kRaahfSZM6ZqenbDrV1CQco84TM= X-Google-Smtp-Source: AGHT+IE9ShrgJNqsCWKHQ4UOrX7sscGKhY7/2rS+OtwaPJsHMUrfGpyE2Y/Sjh/H0Q8cxd6NeIAv6be89oPjFCpiUTM= X-Received: by 2002:a17:906:7049:b0:a36:5c45:1e09 with SMTP id r9-20020a170906704900b00a365c451e09mr518268ejj.31.1706678386356; Tue, 30 Jan 2024 21:19:46 -0800 (PST) List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-questions@freebsd.org X-BeenThere: freebsd-questions@freebsd.org MIME-Version: 1.0 References: <00c501da53f6$222d8640$668892c0$@videotron.ca> In-Reply-To: <00c501da53f6$222d8640$668892c0$@videotron.ca> From: Paul Procacci Date: Wed, 31 Jan 2024 00:19:59 -0500 Message-ID: Subject: Re: certbot does not work To: Paul Kagan Cc: questions@freebsd.org Content-Type: multipart/alternative; boundary="000000000000f6f690061037068c" X-Rspamd-Queue-Id: 4TPr2D1L8vz4cwP X-Spamd-Bar: ---- X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:15169, ipnet:2a00:1450::/32, country:US] --000000000000f6f690061037068c Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable On Tue, Jan 30, 2024 at 10:33=E2=80=AFPM Paul Kagan w= rote: > root@videotron:/usr/ports/security/openssl # > @CRYPTOGRAPHY_OPENSSL_NO_LEGACY > > @CRYPTOGRAPHY_OPENSSL_NO_LEGACY: Command not found. > > root@videotron:/usr/ports/security/openssl # setenv > CRYPTOGRAPHY_OPENSSL_NO_LEGACY=3Dyes ; certbot > > setenv: Variable name must contain alphanumeric characters. > > Traceback (most recent call last): > > File "/usr/local/bin/certbot", line 33, in > > sys.exit(load_entry_point('certbot=3D=3D2.8.0', 'console_scripts', > 'certbot')()) > > File "/usr/local/bin/certbot", line 25, in importlib_load_entry_point > > return next(matches).load() > > File "/usr/local/lib/python3.9/importlib/metadata.py", line 86, in load > > module =3D import_module(match.group('module')) > > File "/usr/local/lib/python3.9/importlib/__init__.py", line 127, in > import_module > > return _bootstrap._gcd_import(name[level:], package, level) > > File "", line 1030, in _gcd_import > > File "", line 1007, in _find_and_load > > File "", line 986, in _find_and_load_unlocke= d > > File "", line 680, in _load_unlocked > > File "", line 850, in exec_module > > File "", line 228, in > _call_with_frames_removed > > File "/usr/local/lib/python3.9/site-packages/certbot/main.py", line 6, in > > > from certbot._internal import main as internal_main > > File "/usr/local/lib/python3.9/site-packages/certbot/_internal/main.py", > line 21, in > > import josepy as jose > > File "/usr/local/lib/python3.9/site-packages/josepy/__init__.py", line 40= , > in > > from josepy.json_util import ( > > File "/usr/local/lib/python3.9/site-packages/josepy/json_util.py", line > 24, in > > from OpenSSL import crypto > > File "/usr/local/lib/python3.9/site-packages/OpenSSL/__init__.py", line 8= , > in > > from OpenSSL import SSL, crypto > > File "/usr/local/lib/python3.9/site-packages/OpenSSL/SSL.py", line 9, in > > > from OpenSSL._util import ( > > File "/usr/local/lib/python3.9/site-packages/OpenSSL/_util.py", line 6, i= n > > > from cryptography.hazmat.bindings.openssl.binding import Binding > > File > "/usr/local/lib/python3.9/site-packages/cryptography/hazmat/bindings/open= ssl/binding.py", > line 167, in > > Binding.init_static_locks() > > File > "/usr/local/lib/python3.9/site-packages/cryptography/hazmat/bindings/open= ssl/binding.py", > line 134, in init_static_locks > > cls._ensure_ffi_initialized() > > File > "/usr/local/lib/python3.9/site-packages/cryptography/hazmat/bindings/open= ssl/binding.py", > line 123, in _ensure_ffi_initialized > > _legacy_provider_error(cls._legacy_provider_loaded) > > File > "/usr/local/lib/python3.9/site-packages/cryptography/hazmat/bindings/open= ssl/binding.py", > line 43, in _legacy_provider_error > > raise RuntimeError( > > RuntimeError: OpenSSL 3.0's legacy provider failed to load. This is a > fatal error by default, but cryptography supports running without legacy > algorithms by setting the environment variable > CRYPTOGRAPHY_OPENSSL_NO_LEGACY. If you did not expect this error, you hav= e > likely made a mistake with your OpenSSL configuration. > > root@videotron:/usr/ports/security/openssl # setenv > CRYPTOGRAPHY_OPENSSL_NO_LEGACY=3Dyes ; certbot > > setenv: Variable name must contain alphanumeric characters. > > Traceback (most recent call last): > > File "/usr/local/bin/certbot", line 33, in > > sys.exit(load_entry_point('certbot=3D=3D2.8.0', 'console_scripts', > 'certbot')()) > > File "/usr/local/bin/certbot", line 25, in importlib_load_entry_point > > return next(matches).load() > > File "/usr/local/lib/python3.9/importlib/metadata.py", line 86, in load > > module =3D import_module(match.group('module')) > > File "/usr/local/lib/python3.9/importlib/__init__.py", line 127, in > import_module > > return _bootstrap._gcd_import(name[level:], package, level) > > File "", line 1030, in _gcd_import > > File "", line 1007, in _find_and_load > > File "", line 986, in _find_and_load_unlocke= d > > File "", line 680, in _load_unlocked > > File "", line 850, in exec_module > > File "", line 228, in > _call_with_frames_removed > > File "/usr/local/lib/python3.9/site-packages/certbot/main.py", line 6, in > > > from certbot._internal import main as internal_main > > File "/usr/local/lib/python3.9/site-packages/certbot/_internal/main.py", > line 21, in > > import josepy as jose > > File "/usr/local/lib/python3.9/site-packages/josepy/__init__.py", line 40= , > in > > from josepy.json_util import ( > > File "/usr/local/lib/python3.9/site-packages/josepy/json_util.py", line > 24, in > > from OpenSSL import crypto > > File "/usr/local/lib/python3.9/site-packages/OpenSSL/__init__.py", line 8= , > in > > from OpenSSL import SSL, crypto > > File "/usr/local/lib/python3.9/site-packages/OpenSSL/SSL.py", line 9, in > > > from OpenSSL._util import ( > > File "/usr/local/lib/python3.9/site-packages/OpenSSL/_util.py", line 6, i= n > > > from cryptography.hazmat.bindings.openssl.binding import Binding > > File > "/usr/local/lib/python3.9/site-packages/cryptography/hazmat/bindings/open= ssl/binding.py", > line 167, in > > Binding.init_static_locks() > > File > "/usr/local/lib/python3.9/site-packages/cryptography/hazmat/bindings/open= ssl/binding.py", > line 134, in init_static_locks > > cls._ensure_ffi_initialized() > > File > "/usr/local/lib/python3.9/site-packages/cryptography/hazmat/bindings/open= ssl/binding.py", > line 123, in _ensure_ffi_initialized > > _legacy_provider_error(cls._legacy_provider_loaded) > > File > "/usr/local/lib/python3.9/site-packages/cryptography/hazmat/bindings/open= ssl/binding.py", > line 43, in _legacy_provider_error > > raise RuntimeError( > > RuntimeError: OpenSSL 3.0's legacy provider failed to load. This is a > fatal error by default, but cryptography supports running without legacy > algorithms by setting the environment variable > CRYPTOGRAPHY_OPENSSL_NO_LEGACY. If you did not expect this error, you hav= e > likely made a mistake with your OpenSSL configuration. > > root@videotron:/usr/ports/security/openssl # > What is your shell? setenv is a csh builtin. The default shell was changed to /bin/ss. Did you account for this change? ~Paul --=20 __________________ :(){ :|:& };: --000000000000f6f690061037068c Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable


On Tue, Jan 30, 2024 at 10:33=E2= =80=AFPM Paul Kagan <pkagan@video= tron.ca> wrote:
=

root@videotron:/usr/ports/security/openssl # @CRYPTO= GRAPHY_OPENSSL_NO_LEGACY

@CRYPTOGRA= PHY_OPENSSL_NO_LEGACY: Command not found.

root@videotron:/usr/ports/security/openssl # setenv CRYPTOGRAPHY_OPE= NSSL_NO_LEGACY=3Dyes ; certbot

sete= nv: Variable name must contain alphanumeric characters.

Traceback (most recent call last):

File "/usr/local/bin/certbot", line 33, in &= lt;module>

sys.exit(load_entry_p= oint('certbot=3D=3D2.8.0', 'console_scripts', 'certbot&= #39;)())

File "/usr/local/bin/= certbot", line 25, in importlib_load_entry_point

return next(matches).load()

File "/usr/local/lib/python3.9/importlib/metadata.py"= , line 86, in load

module =3D impor= t_module(match.group('module'))

File "/usr/local/lib/python3.9/importlib/__init__.py", line = 127, in import_module

return _boots= trap._gcd_import(name[level:], package, level)

File "<frozen importlib._bootstrap>", line 1030= , in _gcd_import

File "<fro= zen importlib._bootstrap>", line 1007, in _find_and_load<= /u>

File "<frozen importlib._bootstrap>= ;", line 986, in _find_and_load_unlocked

File "<frozen importlib._bootstrap>", line 680, = in _load_unlocked

File "<fr= ozen importlib._bootstrap_external>", line 850, in exec_module

File "<frozen importlib._bootst= rap>", line 228, in _call_with_frames_removed

File "/usr/local/lib/python3.9/site-packages/certbo= t/main.py", line 6, in <module>

from certbot._internal import main as internal_main

File "/usr/local/lib/python3.9/site-packages/= certbot/_internal/main.py", line 21, in <module>

import josepy as jose

File "/usr/local/lib/python3.9/site-packages/josepy/__init= __.py", line 40, in <module>

from josepy.json_util import (

File "/usr/local/lib/python3.9/site-packages/josepy/json_util.py"= ;, line 24, in <module>

from = OpenSSL import crypto

File "/u= sr/local/lib/python3.9/site-packages/OpenSSL/__init__.py", line 8, in = <module>

from OpenSSL import = SSL, crypto

File "/usr/local/l= ib/python3.9/site-packages/OpenSSL/SSL.py", line 9, in <module><= u>

from OpenSSL._util import (<= u>

File "/usr/local/lib/python3.9/site-p= ackages/OpenSSL/_util.py", line 6, in <module>

=

from cryptography.hazmat.bindings.openssl.binding im= port Binding

File "/usr/local/= lib/python3.9/site-packages/cryptography/hazmat/bindings/openssl/binding.py= ", line 167, in <module>

Binding.init_static_locks()

File &= quot;/usr/local/lib/python3.9/site-packages/cryptography/hazmat/bindings/op= enssl/binding.py", line 134, in init_static_locks

cls._ensure_ffi_initialized()

File "/usr/local/lib/python3.9/site-packages/cryptograp= hy/hazmat/bindings/openssl/binding.py", line 123, in _ensure_ffi_initi= alized

_legacy_provider_error(cls._= legacy_provider_loaded)

File "= /usr/local/lib/python3.9/site-packages/cryptography/hazmat/bindings/openssl= /binding.py", line 43, in _legacy_provider_error

raise RuntimeError(

RuntimeError: OpenSSL 3.0's legacy provider failed to load. This is= a fatal error by default, but cryptography supports running without legacy= algorithms by setting the environment variable CRYPTOGRAPHY_OPENSSL_NO_LEG= ACY. If you did not expect this error, you have likely made a mistake with = your OpenSSL configuration.

root@vi= deotron:/usr/ports/security/openssl # setenv CRYPTOGRAPHY_OPENSSL_NO_LEGACY= =3Dyes ; certbot

setenv: Variable n= ame must contain alphanumeric characters.

Traceback (most recent call last):

File "/usr/local/bin/certbot", line 33, in <module><= u>

sys.exit(load_entry_point('cert= bot=3D=3D2.8.0', 'console_scripts', 'certbot')())

File "/usr/local/bin/certbot",= line 25, in importlib_load_entry_point

return next(matches).load()

Fi= le "/usr/local/lib/python3.9/importlib/metadata.py", line 86, in = load

module =3D import_module(match= .group('module'))

File &quo= t;/usr/local/lib/python3.9/importlib/__init__.py", line 127, in import= _module

return _bootstrap._gcd_impo= rt(name[level:], package, level)

Fi= le "<frozen importlib._bootstrap>", line 1030, in _gcd_impo= rt

File "<frozen importlib.= _bootstrap>", line 1007, in _find_and_load

File "<frozen importlib._bootstrap>", line = 986, in _find_and_load_unlocked

Fil= e "<frozen importlib._bootstrap>", line 680, in _load_unloc= ked

File "<frozen importlib= ._bootstrap_external>", line 850, in exec_module

<= p class=3D"MsoNormal">File "<frozen importlib._bootstrap>",= line 228, in _call_with_frames_removed

File "/usr/local/lib/python3.9/site-packages/certbot/main.py"= ;, line 6, in <module>

from c= ertbot._internal import main as internal_main

File "/usr/local/lib/python3.9/site-packages/certbot/_inter= nal/main.py", line 21, in <module>

import josepy as jose

Fi= le "/usr/local/lib/python3.9/site-packages/josepy/__init__.py", l= ine 40, in <module>

from jose= py.json_util import (

File "/u= sr/local/lib/python3.9/site-packages/josepy/json_util.py", line 24, in= <module>

from OpenSSL import= crypto

File "/usr/local/lib/p= ython3.9/site-packages/OpenSSL/__init__.py", line 8, in <module>=

from OpenSSL import SSL, crypto=

File "/usr/local/lib/python3.9/s= ite-packages/OpenSSL/SSL.py", line 9, in <module><= /p>

from OpenSSL._util import (

File "/usr/local/lib/python3.9/site-packages/OpenSS= L/_util.py", line 6, in <module>

from cryptography.hazmat.bindings.openssl.binding import Binding

File "/usr/local/lib/python3.9/= site-packages/cryptography/hazmat/bindings/openssl/binding.py", line 1= 67, in <module>

Binding.init_= static_locks()

File "/usr/loca= l/lib/python3.9/site-packages/cryptography/hazmat/bindings/openssl/binding.= py", line 134, in init_static_locks

cls._ensure_ffi_initialized()

File "/usr/local/lib/python3.9/site-packages/cryptography/hazmat/bind= ings/openssl/binding.py", line 123, in _ensure_ffi_initialized<= u>

_legacy_provider_error(cls._legacy_provide= r_loaded)

File "/usr/local/lib= /python3.9/site-packages/cryptography/hazmat/bindings/openssl/binding.py&qu= ot;, line 43, in _legacy_provider_error

raise RuntimeError(

RuntimeErr= or: OpenSSL 3.0's legacy provider failed to load. This is a fatal error= by default, but cryptography supports running without legacy algorithms by= setting the environment variable CRYPTOGRAPHY_OPENSSL_NO_LEGACY. If you di= d not expect this error, you have likely made a mistake with your OpenSSL c= onfiguration.

root@videotron:/usr/p= orts/security/openssl #


What is your shell?
setenv is a csh buil= tin.
The default shell was changed to /bin/ss.=C2=A0 Did you acco= unt for this change?

~Paul

--
__________________

:(){ :|:& };:
--000000000000f6f690061037068c--