Date: Sun, 31 Jan 2021 22:01:57 +0000 From: Rick Macklem <rmacklem@uoguelph.ca> To: "Hartmann, O." <ohartmann@walstatt.org>, FreeBSD CURRENT <freebsd-current@freebsd.org>, Guido Falsi <mad@madpilot.net> Cc: "junchoon@dec.sakura.ne.jp" <junchoon@dec.sakura.ne.jp> Subject: Re: (n244517-f17fc5439f5) svn stuck forever in /usr/ports? Message-ID: <YQXPR0101MB0968D09A38D0A8E244D8C2C6DDB79@YQXPR0101MB0968.CANPRD01.PROD.OUTLOOK.COM> In-Reply-To: <86a368dc-f118-79fb-2ed8-af461041198a@madpilot.net> References: <20210130073923.0b2a80c1@hermann.fritz.box> <20210130192520.e7cf7f680c0abd31b0771107@dec.sakura.ne.jp> <18e15d74-d95b-76b7-59a4-64a8f338ba73@madpilot.net> <a5e18e3b-181c-c094-b98c-7e233cdac972@madpilot.net> <20210131103510.30d9a322@hermann.fritz.box>, <86a368dc-f118-79fb-2ed8-af461041198a@madpilot.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Guido Falsi wrote:=0A= [good stuff snipped]=0A= >Performed a full bisect. Tracked it down to commit aa906e2a4957, adding=0A= >KTLS support to embedded OpenSSL.=0A= >=0A= >I filed a bug report about this:=0A= >=0A= >https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D253135=0A= >=0A= >=0A= >Apart from switching to svn:// scheme, another workaround is to build=0A= >base using WITHOUT_OPENSSL_KTLS.=0A= Just fyi, when I tested the daemons I have for nfs-over-tls (which use ktls= ),=0A= they acted like things were ok (no handshake problems), but the data=0A= ended up on the wire unencrypted (nfs-over-tls doesn't do a SSL_write(),=0A= so it depends on ktls to do the encryption).=0A= =0A= Since these daemons work fine with openssl3 in ports/security/openssl-devel= ,=0A= I suspect the ktls backport is not quite right. I've sent jhb@ email.=0A= =0A= rick=0A= =0A= --=0A= Guido Falsi <mad@madpilot.net>=0A= _______________________________________________=0A= freebsd-current@freebsd.org mailing list=0A= https://lists.freebsd.org/mailman/listinfo/freebsd-current=0A= To unsubscribe, send any mail to "freebsd-current-unsubscribe@freebsd.org"= =0A=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?YQXPR0101MB0968D09A38D0A8E244D8C2C6DDB79>