Created attachment 219138 [details] Integrate the upstream fix into the port Hi, the update to security/nss 3.58 on 2020-10-17 introduced a nasty upstream bug that broke several applications. Most notably pidgin. The upstream bug report also mentions curl, but I could not reproduce that. The attached patch integrates the upstream fix into the port and bumps PORTREVISION. The upstream bug report: https://bugzilla.mozilla.org/show_bug.cgi?id=1672703 The upstream fix is here: https://hg.mozilla.org/projects/nss/rev/b03a4fc5b902498414b02640dcb2717dfef9682f Regards, Yamagi
A commit references this bug: Author: jbeich Date: Wed Oct 28 10:50:30 UTC 2020 New revision: 553535 URL: https://svnweb.freebsd.org/changeset/ports/553535 Log: security/nss: unbreak non-gecko consumers after r552532 Pidgin failed with "nss: Handshake failed (-12251)" i.e., SSL_ERROR_RX_MALFORMED_CHANGE_CIPHER -12251 "SSL received a malformed Change Cipher Spec record." PR: 250665 Submitted by: yamagi@yamagi.org Changes: head/security/nss/Makefile head/security/nss/files/patch-bug1672703
A commit references this bug: Author: jbeich Date: Wed Oct 28 10:50:53 UTC 2020 New revision: 553536 URL: https://svnweb.freebsd.org/changeset/ports/553536 Log: MFH: r553535 security/nss: unbreak non-gecko consumers after r552532 Pidgin failed with "nss: Handshake failed (-12251)" i.e., SSL_ERROR_RX_MALFORMED_CHANGE_CIPHER -12251 "SSL received a malformed Change Cipher Spec record." PR: 250665 Submitted by: yamagi@yamagi.org Approved by: ports-secteam blanket Changes: _U branches/2020Q4/ branches/2020Q4/security/nss/Makefile branches/2020Q4/security/nss/files/patch-bug1672703
Thanks. Expect /latest and /quarterly packages to get the fix in ~2 days (builds start on Tuesday/Thursday/Saturday/Sunday at 01:00 UTC).