[Midnightbsd-cvs] [MidnightBSD/mports] cd9420: security/openssl: enable LEGACY provider by default

Lucas Holt noreply at github.com
Thu Jun 25 19:05:14 EDT 2026


  Branch: refs/heads/master
  Home:   https://github.com/MidnightBSD/mports
  Commit: cd9420d621413c8a948777d5592044cc99a38de9
      https://github.com/MidnightBSD/mports/commit/cd9420d621413c8a948777d5592044cc99a38de9
  Author: Lucas Holt <luke at foolishgames.com>
  Date:   2026-06-25 (Thu, 25 Jun 2026)

  Changed paths:
    M security/openssl/Makefile

  Log Message:
  -----------
  security/openssl: enable LEGACY provider by default

Add LEGACY to OPTIONS_DEFAULT so lib/ossl-modules/legacy.so is built and
installed. Without it, software that links this OpenSSL and loads the legacy
provider fails: python-cryptography 43.x calls OSSL_PROVIDER_load("legacy")
during init and treats a missing module as fatal, e.g.

  RuntimeError: OpenSSL 3.0's legacy provider failed to load.

The port already enables legacy ciphers (RC2, RC4) in OPTIONS_DEFAULT, which
need the legacy provider to function at runtime, so building it by default is
the consistent choice. Bump PORTREVISION.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply at anthropic.com>



To unsubscribe from these emails, change your notification settings at https://github.com/MidnightBSD/mports/settings/notifications


More information about the Midnightbsd-cvs mailing list