From owner-freebsd-hackers@FreeBSD.ORG Tue Nov 16 08:01:49 2010 Return-Path: Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 08B951065744 for ; Tue, 16 Nov 2010 08:01:49 +0000 (UTC) (envelope-from Joerg.Pulz@frm2.tum.de) Received: from mailhost.frm2.tum.de (mailhost.frm2.tum.de [129.187.179.12]) by mx1.freebsd.org (Postfix) with ESMTP id 8F99E8FC13 for ; Tue, 16 Nov 2010 08:01:48 +0000 (UTC) Received: from mailhost.frm2.tum.de (localhost [127.0.0.1]) by mailhost.frm2.tum.de (8.14.4/8.14.4) with ESMTP id oAG80eB7050254; Tue, 16 Nov 2010 09:01:41 +0100 (CET) (envelope-from Joerg.Pulz@frm2.tum.de) X-Virus-Scanned: at mailhost.frm2.tum.de Received: from hades.admin.frm2 (hades.admin.frm2 [172.25.1.10]) (authenticated bits=0) by mailhost.frm2.tum.de (8.14.4/8.14.4) with ESMTP id oAG81dE6050286 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Tue, 16 Nov 2010 09:01:39 +0100 (CET) (envelope-from Joerg.Pulz@frm2.tum.de) Date: Tue, 16 Nov 2010 09:01:36 +0100 (CET) From: Joerg Pulz To: Benjamin Lee In-Reply-To: <4CE1DB90.3000502@b1c1l1.com> Message-ID: References: <4CE1DB90.3000502@b1c1l1.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed X-Greylist: Sender succeeded SMTP AUTH, not delayed by milter-greylist-4.2.3 (mailhost.frm2.tum.de [129.187.179.12]); Tue, 16 Nov 2010 09:01:39 +0100 (CET) Cc: freebsd-hackers@freebsd.org Subject: Re: [CFT+RFC] patch to buildworld with heimdal from ports X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 16 Nov 2010 08:01:49 -0000 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Mon, 15 Nov 2010, Benjamin Lee wrote: > On 11/15/2010 02:08 PM, Joerg Pulz wrote: >> Hi, >> >> after the security/heimdal port was updated to the current heimdal >> release and i added one missing function from base it is now possible to >> completely buildworld src/ using the port for all Kerberos5/GSSAPI >> enabled parts. > > Hi Joerg, > > I don't think that having the base system depend on a port is the right > solution to resolving the libgssapi compatibility problems in base. > > Did you ever come across the old PR kern/147454 that I submitted in > June? In it I included a src patch that replaced the base system's > libgssapi with upstream Heimdal's, which resolved all libgssapi > compatibility problems. That patch is now stale, but either way I > haven't been able to draw enough attention to the issue to have it fixed. Hi Benjamin, the patch is not being meant to change the default. So default world builds will still use what we have in base now. It's just an additional option. There are already other places in base where one can link against stuff from ports. E.g. you can build base heimdal with OpenLDAP hdb backend support (see src/kerberos5/Makefile.inc) or you can build base sendmail with SASL and OpenLDAP support (see /etc/make.conf for SASL instructions) or you can build base bind with IDN and XML support (see src/usr.sbin/named/Makefile or in src.conf(5) the WITH_BIND_IDN and WITH_BIND_XML option). So it's not really uncommon to build base and link/use stuff from ports. I think as long as base is self hosting and you're not required to have somthing from ports installed just to be able to actually build world successful, everything is fine. I'm aware of kern/147454 and it will probably of use for my ongoing work in this area. Kind regards Joerg - -- The beginning is the most important part of the work. -Plato -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.16 (FreeBSD) iD8DBQFM4jpjSPOsGF+KA+MRAiffAKCRJazCvg/feEJgUhkc8ieDz+6mDACfTyYh kreX9tEcoBq57VWr0i3XxBU= =y7Vb -----END PGP SIGNATURE-----