Opened 5 years ago
Last modified 5 years ago
#59016 closed defect
[openssh/openssl] : Apple keychain patch update should have blocked openssl upgrade — at Initial Version
| Reported by: | RJVB (René Bertin) | Owned by: | |
|---|---|---|---|
| Priority: | Normal | Milestone: | |
| Component: | ports | Version: | |
| Keywords: | security | Cc: | yan12125 (Chih-Hsuan Yen) |
| Port: | openssh |
Description
Evidently I only discover this after upgrading myself:
# TODO: Update patch 0002-Apple-keychain-integration-other-changes.patch to use OpenSSL 1.1 APIs.
I never realised until now that this patch isn't applied outside of any variants because it so useful, and once you are used to the possibility to store and fetch certificates (or their passphrases) from the keychain you become dependent on it very quickly. (Here's why my local efforts to keep OpenSSL 1.0x and 1.1x installed in parallel pay off, I can simply revert OpenSSH temporarily).
I'll try to find some time to update the patch but will appreciate if someone beats me to it.
Note: See
TracTickets for help on using
tickets.