From owner-freebsd-ports@freebsd.org Fri Feb 28 08:59:30 2020 Return-Path: Delivered-To: freebsd-ports@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 3684D25DDB2 for ; Fri, 28 Feb 2020 08:59:30 +0000 (UTC) (envelope-from wjw@digiware.nl) Received: from mailman.nyi.freebsd.org (unknown [127.0.1.3]) by mx1.freebsd.org (Postfix) with ESMTP id 48TNl52N4bz47P5 for ; Fri, 28 Feb 2020 08:59:29 +0000 (UTC) (envelope-from wjw@digiware.nl) Received: by mailman.nyi.freebsd.org (Postfix) id 0797725DDB1; Fri, 28 Feb 2020 08:59:29 +0000 (UTC) Delivered-To: ports@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 062F025DDB0 for ; Fri, 28 Feb 2020 08:59:29 +0000 (UTC) (envelope-from wjw@digiware.nl) Received: from smtp.digiware.nl (smtp.digiware.nl [176.74.240.9]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) server-signature RSA-PSS (4096 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 48TNl15DQFz47KH for ; Fri, 28 Feb 2020 08:59:25 +0000 (UTC) (envelope-from wjw@digiware.nl) Received: from router.digiware.nl (localhost.digiware.nl [127.0.0.1]) by smtp.digiware.nl (Postfix) with ESMTP id 1420C43928; Fri, 28 Feb 2020 09:59:23 +0100 (CET) X-Virus-Scanned: amavisd-new at digiware.com Received: from smtp.digiware.nl ([127.0.0.1]) by router.digiware.nl (router.digiware.nl [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id MnB6SIe_Z-4I; Fri, 28 Feb 2020 09:59:22 +0100 (CET) Received: from [192.168.10.9] (vaio [192.168.10.9]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits)) (No client certificate requested) by smtp.digiware.nl (Postfix) with ESMTPSA id 7EACE4390F; Fri, 28 Feb 2020 09:59:22 +0100 (CET) Subject: Re: About protocols in openssl To: Marcin Cieslak Cc: "ports@freebsd.org" References: From: Willem Jan Withagen Message-ID: <87a893b1-d898-fe34-5d1f-203713a0be18@digiware.nl> Date: Fri, 28 Feb 2020 09:59:21 +0100 User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:68.0) Gecko/20100101 Firefox/68.0 Thunderbird/68.5.0 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset=windows-1252; format=flowed Content-Transfer-Encoding: 8bit Content-Language: nl X-Rspamd-Queue-Id: 48TNl15DQFz47KH X-Spamd-Bar: ----- Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of wjw@digiware.nl designates 176.74.240.9 as permitted sender) smtp.mailfrom=wjw@digiware.nl X-Spamd-Result: default: False [-5.69 / 15.00]; ARC_NA(0.00)[]; TO_DN_EQ_ADDR_SOME(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; FROM_HAS_DN(0.00)[]; TO_DN_SOME(0.00)[]; R_SPF_ALLOW(-0.20)[+mx]; NEURAL_HAM_LONG(-1.00)[-1.000,0]; MIME_GOOD(-0.10)[text/plain]; RCVD_TLS_LAST(0.00)[]; DMARC_NA(0.00)[digiware.nl]; RCVD_COUNT_THREE(0.00)[4]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCVD_IN_DNSWL_MED(-0.20)[9.240.74.176.list.dnswl.org : 127.0.9.2]; RCPT_COUNT_TWO(0.00)[2]; NEURAL_HAM_MEDIUM(-1.00)[-1.000,0]; IP_SCORE(-3.19)[ip: (-9.78), ipnet: 176.74.224.0/19(-4.89), asn: 28878(-1.33), country: NL(0.03)]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:28878, ipnet:176.74.224.0/19, country:NL]; MID_RHS_MATCH_FROM(0.00)[] X-BeenThere: freebsd-ports@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Porting software to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 28 Feb 2020 08:59:30 -0000 On 28-2-2020 01:32, Marcin Cieslak wrote: > On Thu, 27 Feb 2020, Willem Jan Withagen wrote: > >> /home/jenkins/workspace/ceph-master/src/pybind/mgr/.tox/py3/lib/python3.7/site-packages/cryptography/hazmat/bindings/_openssl.abi3.so: >> Undefined symbol "SSLv3_client_method" > > This looks to me that you are trying to build ceph in the virtualenv > which probably > pulls required python packages on its own. > > Can you make it to depend and use the existing > security/py-cryptography port? > > I don't know how exactly the ceph port is supposed to work but it > seems to > require virtualenv for its inner workings. You might want to force > virtual env to use FreeBSD-provided libraries with --system-site-packages > but AFAIK it will no longer download anything, i.e. all dependencies > need to packaged. > Interesting, since virtualenv/tox is used during testing with Continuous Integration. And there is where I need the stuff, the port/package comes without the testing stuff. People that want to develop stuff for Ceph really should use what is in the Git repo. > I have just ran "make test" in my ports tree to test py-cryptography > and got 1 error (TestECDSACertificate.test_load_ecdsa_no_named_curve) > but nothing related to SSLv3_client_method being not there. I guess that is because the ports one does not require SSLv3, and is not complaining about missing it. Like you said, very likely virtualenv has pulled its own stuff, and that will require SSLv3 Which is no longer available by default  in openSSL in ports. I'll try and see if I can get away with --system-site-packages, and loading tons op packages. --WjW