From owner-freebsd-current@freebsd.org Wed Feb 3 11:27:52 2021 Return-Path: Delivered-To: freebsd-current@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 08203533C12 for ; Wed, 3 Feb 2021 11:27:52 +0000 (UTC) (envelope-from junchoon@dec.sakura.ne.jp) Received: from www121.sakura.ne.jp (www121.sakura.ne.jp [153.125.133.21]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4DVztt4djRz4T4C for ; Wed, 3 Feb 2021 11:27:49 +0000 (UTC) (envelope-from junchoon@dec.sakura.ne.jp) Received: from kalamity.joker.local (115-38-187-204.shizuoka1.commufa.jp [115.38.187.204]) (authenticated bits=0) by www121.sakura.ne.jp (8.16.1/8.16.1/[SAKURA-WEB]/20201212) with ESMTPA id 113BRddQ060658; Wed, 3 Feb 2021 20:27:40 +0900 (JST) (envelope-from junchoon@dec.sakura.ne.jp) Date: Wed, 3 Feb 2021 20:27:39 +0900 From: Tomoaki AOKI To: freebsd-current@freebsd.org Cc: Rick Macklem Subject: Re: (n244517-f17fc5439f5) svn stuck forever in /usr/ports? Message-Id: <20210203202739.ea781e9ed3145f26d45968f3@dec.sakura.ne.jp> In-Reply-To: References: <20210130073923.0b2a80c1@hermann.fritz.box> <20210130192520.e7cf7f680c0abd31b0771107@dec.sakura.ne.jp> <18e15d74-d95b-76b7-59a4-64a8f338ba73@madpilot.net> <20210131103510.30d9a322@hermann.fritz.box> <86a368dc-f118-79fb-2ed8-af461041198a@madpilot.net> Reply-To: junchoon@dec.sakura.ne.jp Organization: Junchoon corps X-Mailer: Sylpheed 3.7.0 (GTK+ 2.24.33; amd64-portbld-freebsd13.0) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Rspamd-Queue-Id: 4DVztt4djRz4T4C X-Spamd-Bar: / Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of junchoon@dec.sakura.ne.jp has no SPF policy when checking 153.125.133.21) smtp.mailfrom=junchoon@dec.sakura.ne.jp X-Spamd-Result: default: False [-0.60 / 15.00]; HAS_REPLYTO(0.00)[junchoon@dec.sakura.ne.jp]; RCVD_VIA_SMTP_AUTH(0.00)[]; TO_DN_SOME(0.00)[]; MV_CASE(0.50)[]; REPLYTO_ADDR_EQ_FROM(0.00)[]; HAS_ORG_HEADER(0.00)[]; NEURAL_HAM_SHORT(-1.00)[-1.000]; RCPT_COUNT_TWO(0.00)[2]; RECEIVED_SPAMHAUS_PBL(0.00)[115.38.187.204:received]; SUBJECT_ENDS_QUESTION(1.00)[]; R_DKIM_NA(0.00)[]; RBL_DBL_DONT_QUERY_IPS(0.00)[153.125.133.21:from]; MID_RHS_MATCH_FROM(0.00)[]; ASN(0.00)[asn:7684, ipnet:153.125.128.0/18, country:JP]; MIME_TRACE(0.00)[0:+]; ARC_NA(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; FROM_HAS_DN(0.00)[]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; NEURAL_HAM_LONG(-1.00)[-1.000]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[sakura.ne.jp]; AUTH_NA(1.00)[]; SPAMHAUS_ZRD(0.00)[153.125.133.21:from:127.0.2.255]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCVD_TLS_LAST(0.00)[]; R_SPF_NA(0.00)[no SPF record]; RCVD_COUNT_TWO(0.00)[2]; MAILMAN_DEST(0.00)[freebsd-current] X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.34 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 03 Feb 2021 11:27:52 -0000 On Mon, 1 Feb 2021 03:24:45 +0000 Rick Macklem wrote: > Rick Macklem wrote: > >Guido Falsi wrote: > >[good stuff snipped] > >>Performed a full bisect. Tracked it down to commit aa906e2a4957, adding > >>KTLS support to embedded OpenSSL. > >> > >>I filed a bug report about this: > >> > >>https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=253135 > >> > >> > >>Apart from switching to svn:// scheme, another workaround is to build > >>base using WITHOUT_OPENSSL_KTLS. > >Just fyi, when I tested the daemons I have for nfs-over-tls (which use ktls), > >they acted like things were ok (no handshake problems), but the data > >ended up on the wire unencrypted (nfs-over-tls doesn't do a SSL_write(), > >so it depends on ktls to do the encryption). > > > >Since these daemons work fine with openssl3 in ports/security/openssl-devel, > >I suspect the ktls backport is not quite right. I've sent jhb@ email. > I was wrong on the above. I did a full buildworld/installworld and the daemons > now seem to work with the openssl in head/main. > > Btw, did anyone try rebuilding svn from sources after doing > the system upgrade? > (The openssl library calls and .h files definitely changed.) Yes. Both *cd /usr/src/usr.bin/svn ; make clean ; make ; make install *Rebuild whole base OS after (each twice to be sure) make clean make cleandepend make cleandir didn't help. Only rebuilding WITHOUT_OPENSSL_KTLS=yes in /etc/src.conf in conjunction with WITHOUT_CLEAN=yes helped. Regards. > > rick > > rick > > -- > Guido Falsi > _______________________________________________ > freebsd-current@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-current > To unsubscribe, send any mail to "freebsd-current-unsubscribe@freebsd.org" > _______________________________________________ > freebsd-current@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-current > To unsubscribe, send any mail to "freebsd-current-unsubscribe@freebsd.org" > _______________________________________________ > freebsd-current@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-current > To unsubscribe, send any mail to "freebsd-current-unsubscribe@freebsd.org" -- Tomoaki AOKI