Date: Wed, 25 Oct 2023 11:57:28 +0200 From: DutchDaemon - FreeBSD Forums Administrator <DutchDaemon@FreeBSD.org> To: ports@freebsd.org Subject: Re: FreeBSD 13 + CertBot + OpenSSL 3 - status? Message-ID: <fe4c96c3-1292-4084-acf3-c2a570fb21f0@FreeBSD.org> In-Reply-To: <186133619.3538.1698225155900@localhost> References: <76713a44-1fa4-41ee-a4f9-177907e9a57f@FreeBSD.org> <18b65b654d0.2818.b36d34a15fda208b80f54b6ad54d9e04@freebsd.org> <186133619.3538.1698225155900@localhost>
next in thread | previous in thread | raw e-mail | index | archive | help
This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--------------jw0D29VZbuZRy6krDntw80gZ
Content-Type: multipart/mixed; boundary="------------CSmHWJPMaYOK8e5aHyYDtuSY";
protected-headers="v1"
From: DutchDaemon - FreeBSD Forums Administrator <DutchDaemon@FreeBSD.org>
To: ports@freebsd.org
Message-ID: <fe4c96c3-1292-4084-acf3-c2a570fb21f0@FreeBSD.org>
Subject: Re: FreeBSD 13 + CertBot + OpenSSL 3 - status?
References: <76713a44-1fa4-41ee-a4f9-177907e9a57f@FreeBSD.org>
<18b65b654d0.2818.b36d34a15fda208b80f54b6ad54d9e04@freebsd.org>
<186133619.3538.1698225155900@localhost>
In-Reply-To: <186133619.3538.1698225155900@localhost>
--------------CSmHWJPMaYOK8e5aHyYDtuSY
Content-Type: multipart/alternative;
boundary="------------YRlRXZkGgsgquuHvDq21ZINS"
--------------YRlRXZkGgsgquuHvDq21ZINS
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: base64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--------------YRlRXZkGgsgquuHvDq21ZINS
Content-Type: text/html; charset=UTF-8
Content-Transfer-Encoding: quoted-printable
<!DOCTYPE html>
<html data-lt-installed=3D"true">
<head>
<meta http-equiv=3D"Content-Type" content=3D"text/html; charset=3DUTF=
-8">
</head>
<body style=3D"padding-bottom: 1px;" text=3D"#000000" bgcolor=3D"#FFFFF=
F">
<div class=3D"moz-cite-prefix">On 25/10/2023 11:12, Ronald Klop wrote=
:<br>
</div>
<blockquote type=3D"cite"
cite=3D"mid:186133619.3538.1698225155900@localhost">
<meta http-equiv=3D"content-type" content=3D"text/html; charset=3DU=
TF-8">
Hi,<br>
<br>
I see that you are compiling certbot to openssl from ports.
Apparently you are running a not often used configuration of the
port.<br>
</blockquote>
<p>I'm not so sure about that. OpenSSL in ports is usually quite a
lot ahead of base system OpenSSL, which is why I build everything
against it. I'm sure I'm not the only one.</p>
<blockquote type=3D"cite"
cite=3D"mid:186133619.3538.1698225155900@localhost">
Did you try reaching out to the maintainer of the port
(<a class=3D"moz-txt-link-abbreviated" href=3D"mailto:python@FreeBS=
D.org">python@FreeBSD.org</a>)?<br>
</blockquote>
<p>This bug is pretty well-known, and since it originates in pkgconf
(not Python) and there is a lengthy PR about it (with a tentative
patch, which I was told about just now), I decided to just post
here to get some eyeballs, Successfully ;)<br>
</p>
<blockquote type=3D"cite"
cite=3D"mid:186133619.3538.1698225155900@localhost">
And there are also other implementations of the ACME protocol in
the ports tree like security/acmetool. I have no experience with
them but they might fit your use case.<br>
</blockquote>
<p>dehydrate and acmetools are currently on the radar to avoid the
next (unavoidable) issue with certbot.<br>
</p>
<blockquote type=3D"cite"
cite=3D"mid:186133619.3538.1698225155900@localhost">
<br>
Sorry I can't help you further for now. Maybe others have more
handson experience with running python with openssl111 from ports.<=
br>
<br>
PS: as you have the name "Dutch" in your email please check out
the upcoming Dutch BSD event in November: <a class=3D"moz-txt-link-=
freetext" href=3D"https://bsdnl.nl/">https://bsdnl.nl/</a><br>;
</blockquote>
<p>I can't, but I'll alert the FreeBSD Forums about it; plenty of
Dutchies on there as well.<br>
</p>
<br>
<blockquote type=3D"cite"
cite=3D"mid:186133619.3538.1698225155900@localhost">
=C2=A0
<p><strong>Van:</strong> Dutch Daemon - FreeBSD Forums
Administrator <a class=3D"moz-txt-link-rfc2396E" href=3D"mailto:d=
utchdaemon@freebsd.org"><dutchdaemon@freebsd.org></a><br>
<strong>Datum:</strong> woensdag, 25 oktober 2023 09:22<br>
<strong>Aan:</strong> <a class=3D"moz-txt-link-abbreviated" href=3D=
"mailto:freebsd-ports@freebsd.org">freebsd-ports@freebsd.org</a><br>
<strong>Onderwerp:</strong> Re: FreeBSD 13 + CertBot + OpenSSL 3
- status?</p>
<blockquote
style=3D"padding-right: 0px; padding-left: 5px; margin-left: 5px; border-=
left: #000000 2px solid; margin-right: 0px">
<div class=3D"MessageRFC822Viewer" id=3D"P">
<div class=3D"MultipartAlternativeViewer">
<div class=3D"TextHTMLViewer" id=3D"P.P.P">
<div>
<div>=C2=A0</div>
<div id=3D"aqm-original" style=3D"color: black;">
<div class=3D"aqm-original-body"
style=3D"color: #000000; background: #ffffff; padding-bottom: 1px;">
<div style=3D"color: black;">
<hr
style=3D"border: none; border-top: solid #D0D0D0 1.0pt;">
<p
style=3D"color: black; font-family: sans-serif; margin: 8pt 0px;">On
October 24, 2023 14:54:40 DutchDaemon - FreeBSD
Forums Administrator
<a class=3D"moz-txt-link-rfc2396E" href=3D"mailto=
:DutchDaemon@FreeBSD.org"><DutchDaemon@FreeBSD.org></a> wrote:</p>
<blockquote class=3D"gmail_quote"
style=3D"margin: 0 0 0 0.75ex; border-left: 1px solid #808080; padding-le=
ft: 0.75ex;">
<p>Does anyone in 'port land' know what the
current developments are wrt CertBot (or
py-crypto under its hood)?=C2=A0</p>
<p>CertBot is happily compiling against OpenSSL
3 from ports, but when running 'certbot', the
crypto side of it talks to the base system
OpenSSL 1.1.1, hence failing because the
OpenSSL 1.1.1 library does not understand the
OpenSSL 3 calls made to it.</p>
<p>From what I understood, this was due to an
error/regression in pkgconf(?) which causes
some type of 'path reversal' that causes
py-crypto to ignore the OpenSSL it was
compiled against, favoring the base system
library.</p>
<p>I either have to revert a whole lot of
servers back to OpenSSL 1.1.1w from ports in
order to renew certificates, or wait for "any
movement" in getting the path reversal
addressed/fixed.</p>
<p>So: does anyone know where we're at with
this?</p>
</blockquote>
</div>
</div>
</div>
<div>Memory jog:</div>
<div>=C2=A0</div>
<div>=C2=A0</div>
<div><span
style=3D"font-family: Courier New, Courier, Liberation Mono, monospace;">=
Traceback
(most recent call last):</span></div>
<div><span
style=3D"font-family: Courier New, Courier, Liberation Mono, monospace;">=
=C2=A0File
"/usr/local/bin/certbot", line 33, in <module><=
/span></div>
<div><span
style=3D"font-family: Courier New, Courier, Liberation Mono, monospace;">=
=C2=A0
=C2=A0sys.exit(load_entry_point('certbot=3D=3D2.6.0',=
'console_scripts', 'certbot')())</span></div>
<div><span
style=3D"font-family: Courier New, Courier, Liberation Mono, monospace;">=
=C2=A0File
"/usr/local/bin/certbot", line 25, in
importlib_load_entry_point</span></div>
<div><span
style=3D"font-family: Courier New, Courier, Liberation Mono, monospace;">=
=C2=A0
=C2=A0return next(matches).load()</span></div>
<div><span
style=3D"font-family: Courier New, Courier, Liberation Mono, monospace;">=
=C2=A0File
"/usr/local/lib/python3.9/importlib/metadata.py",
line 86, in load</span></div>
<div><span
style=3D"font-family: Courier New, Courier, Liberation Mono, monospace;">=
=C2=A0
=C2=A0module =3D import_module(match.group('module'))=
</span></div>
<div><span
style=3D"font-family: Courier New, Courier, Liberation Mono, monospace;">=
=C2=A0File
"/usr/local/lib/python3.9/importlib/__init__.py",
line 127, in import_module</span></div>
<div><span
style=3D"font-family: Courier New, Courier, Liberation Mono, monospace;">=
=C2=A0
=C2=A0return _bootstrap._gcd_import(name[level:],
package, level)</span></div>
<div><span
style=3D"font-family: Courier New, Courier, Liberation Mono, monospace;">=
=C2=A0File
"<frozen importlib._bootstrap>", line 1030, in
_gcd_import</span></div>
<div><span
style=3D"font-family: Courier New, Courier, Liberation Mono, monospace;">=
=C2=A0File
"<frozen importlib._bootstrap>", line 1007, in
_find_and_load</span></div>
<div><span
style=3D"font-family: Courier New, Courier, Liberation Mono, monospace;">=
=C2=A0File
"<frozen importlib._bootstrap>", line 986, in
_find_and_load_unlocked</span></div>
<div><span
style=3D"font-family: Courier New, Courier, Liberation Mono, monospace;">=
=C2=A0File
"<frozen importlib._bootstrap>", line 680, in
_load_unlocked</span></div>
<div><span
style=3D"font-family: Courier New, Courier, Liberation Mono, monospace;">=
=C2=A0File
"<frozen importlib._bootstrap_external>", line
850, in exec_module</span></div>
<div><span
style=3D"font-family: Courier New, Courier, Liberation Mono, monospace;">=
=C2=A0File
"<frozen importlib._bootstrap>", line 228, in
_call_with_frames_removed</span></div>
<div><span
style=3D"font-family: Courier New, Courier, Liberation Mono, monospace;">=
=C2=A0File
"/usr/local/lib/python3.9/site-packages/certbot/main.py", line 6, in
<module></span></div>
<div><span
style=3D"font-family: Courier New, Courier, Liberation Mono, monospace;">=
=C2=A0
=C2=A0from certbot._internal import main as internal_=
main</span></div>
<div><span
style=3D"font-family: Courier New, Courier, Liberation Mono, monospace;">=
=C2=A0File
"/usr/local/lib/python3.9/site-packages/certbot/_internal/main.py", line
21, in <module></span></div>
<div><span
style=3D"font-family: Courier New, Courier, Liberation Mono, monospace;">=
=C2=A0
=C2=A0import josepy as jose</span></div>
<div><span
style=3D"font-family: Courier New, Courier, Liberation Mono, monospace;">=
=C2=A0File
"/usr/local/lib/python3.9/site-packages/josepy/__init__.py", line 40, in
<module></span></div>
<div><span
style=3D"font-family: Courier New, Courier, Liberation Mono, monospace;">=
=C2=A0
=C2=A0from josepy.json_util import (</span></div>
<div><span
style=3D"font-family: Courier New, Courier, Liberation Mono, monospace;">=
=C2=A0File
"/usr/local/lib/python3.9/site-packages/josepy/json_util.py", line 14,
in <module></span></div>
<div><span
style=3D"font-family: Courier New, Courier, Liberation Mono, monospace;">=
=C2=A0
=C2=A0from OpenSSL import crypto</span></div>
<div><span
style=3D"font-family: Courier New, Courier, Liberation Mono, monospace;">=
=C2=A0File
"/usr/local/lib/python3.9/site-packages/OpenSSL/__init__.py", line 8, in
<module></span></div>
<div><span
style=3D"font-family: Courier New, Courier, Liberation Mono, monospace;">=
=C2=A0
=C2=A0from OpenSSL import SSL, crypto</span></div>
<div><span
style=3D"font-family: Courier New, Courier, Liberation Mono, monospace;">=
=C2=A0File
"/usr/local/lib/python3.9/site-packages/OpenSSL/SSL.py", line 9, in
<module></span></div>
<div><span
style=3D"font-family: Courier New, Courier, Liberation Mono, monospace;">=
=C2=A0
=C2=A0from OpenSSL._util import (</span></div>
<div><span
style=3D"font-family: Courier New, Courier, Liberation Mono, monospace;">=
=C2=A0File
"/usr/local/lib/python3.9/site-packages/OpenSSL/_util.py", line 6, in
<module></span></div>
<div><span
style=3D"font-family: Courier New, Courier, Liberation Mono, monospace;">=
=C2=A0
=C2=A0from cryptography.hazmat.bindings.openssl.bindi=
ng
import Binding</span></div>
<div><span
style=3D"font-family: Courier New, Courier, Liberation Mono, monospace;">=
=C2=A0File
"/usr/local/lib/python3.9/site-packages/cryptography/hazmat/bindings/open=
ssl/binding.py",
line 15, in <module></span></div>
<div><span
style=3D"font-family: Courier New, Courier, Liberation Mono, monospace;">=
=C2=A0
=C2=A0from cryptography.exceptions import InternalErr=
or</span></div>
<div><span
style=3D"font-family: Courier New, Courier, Liberation Mono, monospace;">=
=C2=A0File
"/usr/local/lib/python3.9/site-packages/cryptography/exceptions.py",
line 9, in <module></span></div>
<div><span
style=3D"font-family: Courier New, Courier, Liberation Mono, monospace;">=
=C2=A0
=C2=A0from cryptography.hazmat.bindings._rust import
exceptions as rust_exceptions</span></div>
<div><span
style=3D"font-family: Courier New, Courier, Liberation Mono, monospace;">=
ImportError:
/<b><span style=3D"color: #cc0000;">usr/local/lib/pyt=
hon3.9/site-packages/cryptography/hazmat/bindings/_rust.abi3.so</span></b=
>:
Undefined symbol
"EVP_default_properties_is_fips_enabled"</span></div>=
</div>
</div>
</div>
</div>
</blockquote>
<br>
=C2=A0
</blockquote>
</body>
<lt-container></lt-container>
</html>
--------------YRlRXZkGgsgquuHvDq21ZINS--
--------------CSmHWJPMaYOK8e5aHyYDtuSY--
--------------jw0D29VZbuZRy6krDntw80gZ
Content-Type: application/pgp-signature; name="OpenPGP_signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="OpenPGP_signature.asc"
-----BEGIN PGP SIGNATURE-----
wsF5BAABCAAjFiEE9AWUvcZu/lO5r3wZ0R2eb0cya6gFAmU45okFAwAAAAAACgkQ0R2eb0cya6hl
2g//ag+Fd2HLwFs9c5rzpAsDB4L5jo3c+vbpFrSxL2qShAUQAJOREsALhP8HsFzawAlLgq6gRNnd
ia28mawQ5w97tWsO+vu9vlHbKJOLLjhMx8wzVjw05QlJCfHLqDdR/W9Osx0RM2KjU3bKgrjpGQXn
UAF2C8YcdRDYuiXUIpL5IrRWbcGXy/51vHAdbY4YBNqOrN5nrY20XSxBk2RCyMIzsb+PfdmUSlJl
Wu2RYjFSqOrZ7eHbYR8FhKZlIw/K9IcGQWbJu5fepuMc9BU1EBkcaQYFbxgcHe91hP0VlFaj9hhU
G9MipUgrEExBrk5c8CXtR/SxR5u1tH+0R8bkeZ1jO/0MCwO2pCNUThh0D1+peER7PhYwH7ROwhl/
ojcK8t3NR0x44pEJ6LEMxfhVF8T6eaIHnFmPQxOGUe9UFI2qJcdcuVC4QnVqQj0N877Sv16/S7oQ
gXWGdODF4OP8nGFq9luxF7gnfe4Po1ainPRA4zvEUuHbbzhXz1T0vvO65D3hdiXyWwG5hgFed7bA
UtqxgcVhfz/KQkvcamN6H6sC955ER4VqxtUBz382231fNIGHq1ZihNSuCeOFagIc792vsGJEd93I
lcvdXMriYcXniqGxNTUTNqIVyFAwRoKG59MoKTfNI5hU6tDL6cbdBXmDCpx/ol1LC+Amj5GQP8Iw
zhU=
=vv87
-----END PGP SIGNATURE-----
--------------jw0D29VZbuZRy6krDntw80gZ--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?fe4c96c3-1292-4084-acf3-c2a570fb21f0>