112865 – openssl-0.9.7i not built with BF_CBC

Bug 112865 - openssl-0.9.7i not built with BF_CBC

Summary: openssl-0.9.7i not built with BF_CBC

Status:	RESOLVED DUPLICATE of bug 103900

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	[OLD] Unspecified (show other bugs)
Hardware:	AMD64 Linux

Importance:	High minor
Assignee:	Gentoo Linux bug wranglers

URL:	http://bugs.gentoo.org/show_bug.cgi?i...
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2005-11-17 17:11 UTC by Harold Anderson
Modified:	2005-11-18 01:16 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Harold Anderson 2005-11-17 17:11:11 UTC

Please reopen bug 103900.
Openssl 0.9.7e-r2 builds correctly with BF_CBC (required by openvpn),
but higher versions do not include the Blowfish support.
At least, that's what openvpn 2.0.5-r2 thinks.

Strangely, if you list the ciphers in openssl 0.9.7i, bf-cbc is shown,
but openvpn-2.0.5 thinks BF_CBC isn't present.  This might have led uberlord to
close bug 103900 prematurely.

Reproducible: Always
Steps to Reproduce:
1.  emerge openssl-0.9.7i
2.  emerge openvpn-2.0.5-r2
3.  openvpn --config openvpn.conf

Actual Results:  
cimarron openvpn # openvpn --config openvpn.conf
Thu Nov 17 19:31:32 2005 OpenVPN 2.0.5 x86_64-pc-linux-gnu [SSL] [LZO] [EPOLL]
built on Nov 17 2005
Thu Nov 17 19:31:32 2005 IMPORTANT: OpenVPN's default port number is now 1194,
based on an official port number assignment by IANA.  OpenVPN 2.0-beta16 and
earlier used 5000 as the default port.
Thu Nov 17 19:31:32 2005 Cipher algorithm 'BF-CBC' not found (OpenSSL)
Thu Nov 17 19:31:32 2005 Exiting


Expected Results:  
cimarron openvpn # openvpn --config openvpn.conf
Thu Nov 17 19:56:28 2005 OpenVPN 2.0.5 x86_64-pc-linux-gnu [SSL] [LZO] [EPOLL]
built on Nov 17 2005
Thu Nov 17 19:56:28 2005 IMPORTANT: OpenVPN's default port number is now 1194,
based on an official port number assignment by IANA.  OpenVPN 2.0-beta16 and
earlier used 5000 as the default port.
Thu Nov 17 19:56:28 2005 Static Encrypt: Cipher 'BF-CBC' initialized with 128
bit key
Thu Nov 17 19:56:28 2005 Static Encrypt: Using 160 bit message hash 'SHA1' for
HMAC authentication
Thu Nov 17 19:56:28 2005 Static Decrypt: Cipher 'BF-CBC' initialized with 128
bit key
Thu Nov 17 19:56:28 2005 Static Decrypt: Using 160 bit message hash 'SHA1' for
HMAC authentication
Thu Nov 17 19:56:28 2005 LZO compression initialized
Thu Nov 17 19:56:28 2005 TUN/TAP device tun0 opened
Thu Nov 17 19:56:28 2005 /sbin/ifconfig tun0 10.1.0.2 pointopoint 10.1.0.1 mtu 1500
Thu Nov 17 19:56:28 2005 ./home.up tun0 1500 1545 10.1.0.2 10.1.0.1 init
Thu Nov 17 19:56:28 2005 Data Channel MTU parms [ L:1545 D:1200 EF:45 EB:135
ET:0 EL:0 AF:3/1 ]
Thu Nov 17 19:56:28 2005 Local Options hash (VER=V4): 'cc1583e3'
Thu Nov 17 19:56:28 2005 Expected Remote Options hash (VER=V4): '2b90ef6a'
Thu Nov 17 19:56:28 2005 UDPv4 link local (bound): [undef]:1194
Thu Nov 17 19:56:28 2005 UDPv4 link remote: xxx.xxx.xxx.xxx:1194
Thu Nov 17 19:56:36 2005 Peer Connection Initiated with xxx.xxx.xxx.xxx:1194
Thu Nov 17 19:56:37 2005 Initialization Sequence Completed


cimarron portage # emerge --info
Portage 2.0.53_rc7 (default-linux/amd64/2005.1, gcc-3.4.4, glibc-2.3.6-r1,
2.6.14-gentoo-r2 x86_64)
=================================================================
System uname: 2.6.14-gentoo-r2 x86_64 AMD Athlon(tm) 64 X2 Dual Core Processor 4400+
Gentoo Base System version 1.12.0_pre10
dev-lang/python:     2.3.5-r2, 2.4.2
sys-apps/sandbox:    1.2.13
sys-devel/autoconf:  2.13, 2.59-r7
sys-devel/automake:  1.4_p6, 1.5, 1.6.3, 1.7.9-r1, 1.8.5-r3, 1.9.6-r1
sys-devel/binutils:  2.16.1
sys-devel/libtool:   1.5.20-r1
virtual/os-headers:  2.6.11-r2
ACCEPT_KEYWORDS="amd64 ~amd64"
AUTOCLEAN="yes"
CBUILD="x86_64-pc-linux-gnu"
CFLAGS=""
CHOST="x86_64-pc-linux-gnu"
CONFIG_PROTECT="/etc /usr/kde/2/share/config /usr/kde/3/share/config
/usr/lib/X11/xkb /usr/lib64/mozilla/defaults/pref /usr/share/config
/var/qmail/control"
CONFIG_PROTECT_MASK="/etc/gconf /etc/terminfo /etc/env.d"
CXXFLAGS=""
DISTDIR="/usr/portage/distfiles"
FEATURES="autoconfig distlocks sfperms strict"
GENTOO_MIRRORS="http://distfiles.gentoo.org
http://distro.ibiblio.org/pub/linux/distributions/gentoo"
LDFLAGS=""
MAKEOPTS="-j4"
PKGDIR="/usr/portage/packages"
PORTAGE_TMPDIR="/var/tmp"
PORTDIR="/usr/portage"
PORTDIR_OVERLAY="/usr/local/portage"
SYNC="rsync://rsync.gentoo.org/gentoo-portage"
USE="amd64 X alsa audiofile avi berkdb bitmap-fonts bzip2 cdr crypt cups curl
dvd dvdr eds emacs emboss encode esd exif expat f77 fam fftw foomaticdb fortran
ftp gdbm gif glut gmp gnome gpm gstreamer gtk gtk2 gtkhtml gtl hal howl idn
imlib ipv6 java jpeg lcms lm_sensors lzw lzw-tiff mad mng motif mozilla mp3 mpeg
ncurses nls opengl pam pdflib perl png python qt quicktime readline ruby samba
sdl spell ssl tcpd tiff truetype truetype-fonts type1-fonts udev usb userlocales
xml2 xmms xpm xv zlib userland_GNU kernel_linux elibc_glibc"
Unset:  ASFLAGS, CTARGET, LANG, LC_ALL, LINGUAS

Comment 1 Jakub Moc (RETIRED) gentoo-dev

2005-11-18 01:16:07 UTC

*** This bug has been marked as a duplicate of 103900 ***