Date: Wed, 12 Apr 2017 10:26:12 +0200 From: Bernard Spil <brnrd@FreeBSD.org> To: Ben Woods <woodsb02@gmail.com> Cc: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org, Mathieu Arnold <mat@mat.cc> Subject: Re: svn commit: r438307 - in head: . security/libressl Message-ID: <ab0562213bd70da7a90e659d95666a5e@FreeBSD.org> In-Reply-To: <3d3a826a-45d1-dff8-e913-8111e71e8b7a@mat.cc> References: <201704111901.v3BJ1Ykc091596@repo.freebsd.org> <CAOc73CBaDscx964%2Bmph0F%2Bw_XB3xp-2P9yA5CqbQ6Vx4xJZEuQ@mail.gmail.com> <3d3a826a-45d1-dff8-e913-8111e71e8b7a@mat.cc>
next in thread | previous in thread | raw e-mail | index | archive | help
On 2017-04-12 8:29, Mathieu Arnold wrote: > Le 12/04/2017 à 00:48, Ben Woods a écrit : >> On Wed, 12 Apr 2017 at 3:01 am, Bernard Spil <brnrd@freebsd.org >> <mailto:brnrd@freebsd.org>> wrote: >> >> Author: brnrd >> Date: Tue Apr 11 19:01:34 2017 >> New Revision: 438307 >> URL: https://svnweb.freebsd.org/changeset/ports/438307 >> >> Log: >> security/libressl: Update to 2.5.3 >> >> - Update to 2.5.3 >> - Bump shlib versions >> - Add UPDATING entry for shlib version bumps >> - Use --enable-nc configure arg >> - Align with CFLAGS from -devel >> - Remove commented EXPLICIT_BZERO blurb >> - Update pkg-plist >> - Add x25519, drop krb5_asn header >> - Add ocspcheck binary >> - Added/removed man-pages >> >> Modified: >> head/UPDATING >> head/security/libressl/Makefile >> head/security/libressl/distinfo >> head/security/libressl/pkg-plist >> head/security/libressl/version.mk <http://version.mk>; >> >> Modified: head/UPDATING >> >> ============================================================================== >> --- head/UPDATING Tue Apr 11 18:58:18 2017 (r438306) >> +++ head/UPDATING Tue Apr 11 19:01:34 2017 (r438307) >> @@ -5,6 +5,30 @@ they are unavoidable. >> You should get into the habit of checking this file for changes >> each time >> you update your ports collection, before attempting any port >> upgrades. >> >> +20170411: >> + AFFECTS: users of security/libressl >> + AUTHOR: brnrd@FreeBSD.org >> + >> + The port has been updated to the latest stable version 2.5 of >> LibreSSL. >> + The shared library versions of the libraries have been bumped. >> + >> + After upgrading, manually update all packages that depend on >> any of the >> + libraries provided by LibreSSL (libssl, libcrypto and libtls) >> since the >> + versions of these libraries have changed. Normally, you can >> obtain the >> + list of dependent software by running the following command: >> + >> + # pkg info -r libressl >> + >> + Then you should rebuild all ports depending on libressl to >> avoid dangling >> + shared library dependencies. Poudriere and pkg handle this >> correctly, >> + portmaster and portupgrade users can use the following to >> rebuild all >> + dependent ports. >> + >> + Portmaster users: >> + portmaster -r libressl >> + Portupgrade users: >> + portupgrade -fr security/libressl >> + >> 20170410: >> AFFECTS: users of x11-wm/awesome >> AUTHOR: garga@FreeBSD.org >> >> >> >> Hi Bernard, >> >> I thought the normal practice was for the commit to also bump the >> PORTREVISION for all ports that depend on the one that has changed, to >> ensure users of portmaster and portupgrade automatically rebuild all >> dependent ports? > > It is not always feasible to do so, libressl is not the default, and > there are *many* ports that depends on it through USES=ssl. Hi Ben, There are currently no ports that have a runtime dependency on LibreSSL. Both security/acme-client as well as net/openntpd use statically linked libtls. www/obhttpd is the exception but forces a user to switch to default SSL=libressl and not via a DEPENDS. Cheers, Bernard.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?ab0562213bd70da7a90e659d95666a5e>