[Bug 268043] devel/py-twisted: Consumer ports fail to run: module 'OpenSSL.SSL' has no attribute 'TLS_METHOD' after 22.10.0 update

bugzilla-noreply Mon, 12 Dec 2022 20:10:12 -0800

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=268043


Charlie Li <vish...@freebsd.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |vish...@freebsd.org

--- Comment #8 from Charlie Li <vish...@freebsd.org> ---
While this works as a quick-fix, this text replacement is ultimately incorrect.
Hardcoding to TLSv1_2_method() locks the connection to TLSv1.2 mode only, which
is problematic if higher protocol versions (ie TLSv1.3) are mutually available
between client and server.

The correct solution is to update security/py-openssl to 21.0.0, as
TLS_method() was exposed then, and the minimum security/py-cryptography version
is 3.3. This commit should then be reverted.

-- 
You are receiving this mail because:
You are on the CC list for the bug.

[Bug 268043] devel/py-twisted: Consumer ports fail to run: module 'OpenSSL.SSL' has no attribute 'TLS_METHOD' after 22.10.0 update

Reply via email to