[Bug 218421] net/qt5-network: securesocketclient example is broken: qt.network.ssl: QSslSocket: cannot resolve SSL_CTX_set1_groups

bugzilla-noreply at freebsd.org bugzilla-noreply at freebsd.org
Wed Apr 12 05:57:33 UTC 2017


--- Comment #5 from Matthew Rezny <rezny at freebsd.org> ---
(In reply to Yuri Victorovich from comment #4)

It appears there is no SSL_CTX_set1_groups or SSL_CTX_set1_curves exported from
/usr/lib/libssl.so even though it is OpenSSL 1.0.2 in base so one of those
should be present.

Unfortunately, the SSL library situation is a bit complicated. Ports can be
compiled to use OpenSSL from base or from a port via the default versions
mechanism. If nothing is specified, then the default depends on the system
state at build time; ssl from ports will be used if an ssl port is installed,
otherwise base is used. Ergo, official FreeBSD packages will be compiled to use
OpenSSL from base because those builds are with defaults and there will not be
any openssl port found in the poudriere build jail so the default is ssl=base.
I believe TrueOS is using one of the LibreSSL ports for their package builds.

Merely having the security/openssl port installed will not cause it to be used
by ports that were already built with base OpenSSL. Try building the
qt5-network port so it will be using OpenSSL from ports (it should be picked up
automatically but to be sure you should set DEFAULT_VERSIONS+= ssl=openssl in
make.conf) and see if that resolves the issue.

You are receiving this mail because:
You are the assignee for the bug.

More information about the kde-freebsd mailing list