[Bug 236697] www/shellinabox - build against SSL from ports, fix connection problem with TLS 1.3

[bugzilla-noreply at freebsd.org]

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=236697

            Bug ID: 236697
           Summary: www/shellinabox - build against SSL from ports, fix
                    connection problem with TLS 1.3
           Product: Ports & Packages
           Version: Latest
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Only Me
          Priority: ---
         Component: Individual Port(s)
          Assignee: olivier at freebsd.org
          Reporter: gahr at FreeBSD.org
          Assignee: olivier at freebsd.org
             Flags: maintainer-feedback?(olivier at freebsd.org)

Created attachment 203028
  --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=203028&action=edit
Build shellinabox with SSL from ports

By default, shellinabox is configured not to be linked against an SSL
implementation. Instead, it dlopen's libcrypto.so at runtime:

https://github.com/shellinabox/shellinabox/blob/4f0ecc31ac6f985e0dd3f5a52cbfc0e9251f6361/libhttp/ssl.c#L206-L222

This means that - unless LD_LIBRARY_PATH is set - shellinabox always picks up
openssl from base. This is the cause of this issue:
https://github.com/shellinabox/shellinabox/issues/453

The patch attached turns off runtime loading and set CFLAGS and LDFLAGS so that
openssl from base is picked up (if it's there).

The PAM code doesn't build without runtime loading, so I just turned it off. I
can try to find the time to look into it as well, if needed.

-- 
You are receiving this mail because:
You are the assignee for the bug.