From owner-freebsd-ports@freebsd.org Tue Oct 24 15:30:54 2017 Return-Path: Delivered-To: freebsd-ports@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 4C27AE50A3D for ; Tue, 24 Oct 2017 15:30:54 +0000 (UTC) (envelope-from dweimer@dweimer.net) Received: from mailman.ysv.freebsd.org (mailman.ysv.freebsd.org [IPv6:2001:1900:2254:206a::50:5]) by mx1.freebsd.org (Postfix) with ESMTP id 2BD4364089 for ; Tue, 24 Oct 2017 15:30:54 +0000 (UTC) (envelope-from dweimer@dweimer.net) Received: by mailman.ysv.freebsd.org (Postfix) id 279AFE50A3A; Tue, 24 Oct 2017 15:30:54 +0000 (UTC) Delivered-To: ports@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 216B9E50A39; Tue, 24 Oct 2017 15:30:54 +0000 (UTC) (envelope-from dweimer@dweimer.net) Received: from webmail.dweimer.net (24-240-198-190.static.stls.mo.charter.com [24.240.198.190]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "www.dweimer.net", Issuer "Go Daddy Secure Certificate Authority - G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id EE87C64085; Tue, 24 Oct 2017 15:30:53 +0000 (UTC) (envelope-from dweimer@dweimer.net) Received: from www.dweimer.net (ugs-3p.dweimer.local [10.9.5.254]) (authenticated bits=0) by webmail.dweimer.net (8.15.2/8.15.2) with ESMTPSA id v9OFUZmX044548 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO); Tue, 24 Oct 2017 10:30:35 -0500 (CDT) (envelope-from dweimer@dweimer.net) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=dweimer.net; s=2017.01.31; t=1508859035; bh=0KpjmEvMm6ieJPfHWNFh38CbQhXZmnQ1TMdzUVrG8y0=; h=Date:From:To:Cc:Subject:Reply-To:In-Reply-To:References; b=k2os/bJyX6hgz3B9cVXcV3GW11usA/EjDT1mHCbZyYd2MqX2oXcLnarVRFklBHjUb nxEW+32UWGfHv+23t5XcfXse5fLj8YaDF6Rotjp7w7QriVI9FBaQbVQvdqKLIOHUv8 5rHNcbxMVJpigqZCUhDq3kMM/bg2kPX2NXvtdjQgCc6tafGqjPWMGEqTZEEQM19+EX y+HH8tMVQKHLWeBTYTz6I0YvjuwQxRUZgbwH+reLM1AaNjWE7Owk5bTCkyqwXVi4iT 4AjpAdPk1gxUatvnoHcigzwmptC8sVc6zDa+hSKL7kig/HP7bq4J0WMUJJ+F8qs8SC lb5Th8p242pRA== MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII; format=flowed Content-Transfer-Encoding: 7bit Date: Tue, 24 Oct 2017 10:30:35 -0500 From: "Dean E. Weimer" To: Adam Weinberger Cc: Ernie Luzar , "ports@FreeBSD.org" , freebsd-questions@freebsd.org, owner-freebsd-questions@freebsd.org Subject: Re: openssl problem Organization: dweimer.net Reply-To: dweimer@dweimer.net Mail-Reply-To: dweimer@dweimer.net In-Reply-To: <8A81AECC-858E-442B-93B2-99D71491BA7D@adamw.org> References: <59EF4775.40009@gmail.com> <8A81AECC-858E-442B-93B2-99D71491BA7D@adamw.org> Message-ID: <4952b2a19db0a9026fa39f78f8e64962@dweimer.net> X-Sender: dweimer@dweimer.net User-Agent: Roundcube Webmail/1.3.1 X-BeenThere: freebsd-ports@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: Porting software to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 24 Oct 2017 15:30:54 -0000 On 2017-10-24 9:15 am, Adam Weinberger wrote: >> On 24 Oct, 2017, at 8:00, Ernie Luzar wrote: >> >> I do "pkg install openssl" that works ok. >> >> But from that point I get 2 different messages at port make time >> depending on the port being installed. >> >> /usr/ports/sysutils/qjail >make install clean >> /!\ WARNING /!\ >> >> You have security/openssl installed but do not have >> DEFAULT_VERSIONS+=ssl=openssl set in your make.conf >> >> Which stops if I add DEFAULT_VERSIONS+=ssl=openssl to /etc/make.conf >> >> >> Get this error all the time, even with /etc/make.com populated with >> DEFAULT_VERSIONS+=ssl=openssl >> >> /usr/ports/www/links >make install clean >> make: "/usr/ports/Mk/Uses/ssl.mk" line 77: You are using >> an unsupported SSL provider openssl >> >> I see this needing 2 solutions. >> >> 1. The openssl port needs to be changes so it populates /etc/make.conf >> with DEFAULT_VERSIONS+=ssl=openssl > > That is unlikely ever to happen. The workflow isn't "install openssl, > make.conf is updated", it's "make.conf is updated (by you), now when > you install things openssl is brought in automatically." No port > should ever be touching things in /etc without a tremendously good > reason. > >> 2. The /usr/ports/Mk/Uses/ssl.mk" line 77 needs to be changed to >> resolve this bogus error message. > > I'm not sure how you're getting this message, as openssl is definitely > a valid value. Is this on quarterly or HEAD? How old is your ports > tree? What else is in your make.conf? > > # Adam from /usr/ports/Mk/Uses/ssl.mk: ... 11 # DEFAULT_VERSIONS+= ssl= 12 # 13 # Variants being base, openssl, openssl-devel, libressl, and libressl-devel ... 73 # Get OPENSSL_SHLIBVER from the port 74 .sinclude <${PORTSDIR}/${OPENSSL_PORT}/version.mk> 75 76 . if !defined(OPENSSL_SHLIBVER) 77 .error You are using an unsupported SSL provider ${SSL_DEFAULT} 78 . endif ... Not sure if this means that the port www/links doesn't work with openssl in ports, or if this is caused by other dependent ports need to be rebuilt now that you have added the line to make.conf By adding the option in make.conf you are telling the ports they should use openssl from ports instead of the openssl libraries in base. The warning you received is just because the system recognized that openssl from ports was installed but without an option set it was still building against base. The assumption being that you wouldn't have installed it without wanting to build against it instead, so it wants to let you know. If you change from one to the other you should rebuild all ports that use OpenSSL to make sure they are all using the same OpenSSL libraries. -- Thanks, Dean E. Weimer http://www.dweimer.net/