Date: Mon, 29 Mar 2021 19:48:41 +0000 From: bugzilla-noreply@freebsd.org To: ports-bugs@FreeBSD.org Subject: [Bug 254643] security/openssl 1.1.1k and SSL webservers do not work when cryptodev.ko is loaded Message-ID: <bug-254643-7788@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D254643 Bug ID: 254643 Summary: security/openssl 1.1.1k and SSL webservers do not work when cryptodev.ko is loaded Product: Ports & Packages Version: Latest Hardware: amd64 OS: Any Status: New Severity: Affects Some People Priority: --- Component: Individual Port(s) Assignee: brnrd@freebsd.org Reporter: cryx-freebsd@h3q.com Flags: maintainer-feedback?(brnrd@freebsd.org) Assignee: brnrd@freebsd.org I've seen this happening on FreeBSD 11.4 and 12.2 that when cryptodev.ko mo= dule is loaded and openssl with version 1.1.1k from ports is installed, both ngi= nx and apache24 are unable to establish an SSL session. nginx error message is like this: [crit] 5569#100511: *27523 SSL_do_handshake() failed (SSL: error:0201502D:system library:ioctl:Operation not supported error:1427D044:= SSL routines:construct_stateless_ticket:internal error error:0201502D:system library:ioctl:Operation not supported) (45: Operation not supported) while = SSL handshaking When unloading the cryptodev.ko and restarting the webserver, everything wo= rks okay, reloading cryptodev.ko again and restarting the webserver brings back= the issue. This did not happen with previously installed 1.1.1j version. --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-254643-7788>