From owner-freebsd-ports@freebsd.org  Thu Oct 27 15:10:07 2016
Return-Path: <owner-freebsd-ports@freebsd.org>
Delivered-To: freebsd-ports@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 098A8C24734
 for <freebsd-ports@mailman.ysv.freebsd.org>;
 Thu, 27 Oct 2016 15:10:07 +0000 (UTC)
 (envelope-from fullermd@over-yonder.net)
Received: from mail.infocus-llc.com (mail.infocus-llc.com [199.15.120.13])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id DCDD411E;
 Thu, 27 Oct 2016 15:10:06 +0000 (UTC)
 (envelope-from fullermd@over-yonder.net)
Received: from draco.over-yonder.net (c-75-65-60-66.hsd1.ms.comcast.net
 [75.65.60.66])
 (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by mail.tarragon.infocus-llc.com (Postfix) with ESMTPSA id 3t4VSN0nd8ztM;
 Thu, 27 Oct 2016 10:00:36 -0500 (CDT)
Received: by draco.over-yonder.net (Postfix, from userid 100)
 id 3t4VSM11nZz4X0; Thu, 27 Oct 2016 10:00:35 -0500 (CDT)
Date: Thu, 27 Oct 2016 10:00:35 -0500
From: "Matthew D. Fuller" <fullermd@over-yonder.net>
To: Mathieu Arnold <mat@FreeBSD.org>
Cc: David Demelier <demelier.david@gmail.com>,
 Don Lewis <truckman@freebsd.org>, mad@madpilot.net,
 freebsd-ports@freebsd.org
Subject: Re: lighttpd does not pull OpenSSL dependency
Message-ID: <20161027150035.GP79735@over-yonder.net>
References: <201610252214.u9PME6br070248@gw.catspoiler.org>
 <ded708c9-f2bf-6b2f-84cf-f97f91c39888@FreeBSD.org>
 <CAO+PfDdXbbgVMZnxiJig+_drLNYRftD4ruqXxHpybztiR1eBAA@mail.gmail.com>
 <7fb24c94-1efa-d1b5-9028-8dec8330e543@FreeBSD.org>
 <CAO+PfDdJ7wv-rzrX7bTRhfY1W_qcL3+gZthqy-aq0sqYhDVcgg@mail.gmail.com>
 <bd8cf64a-7c04-d58b-b9ab-1abbb4cc062b@FreeBSD.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <bd8cf64a-7c04-d58b-b9ab-1abbb4cc062b@FreeBSD.org>
X-Editor: vi
X-OS: FreeBSD <http://www.freebsd.org/>
User-Agent: Mutt/1.6.1-fullermd.4 (2016-04-27)
X-BeenThere: freebsd-ports@freebsd.org
X-Mailman-Version: 2.1.23
Precedence: list
List-Id: Porting software to FreeBSD <freebsd-ports.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-ports>,
 <mailto:freebsd-ports-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ports/>
List-Post: <mailto:freebsd-ports@freebsd.org>
List-Help: <mailto:freebsd-ports-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-ports>,
 <mailto:freebsd-ports-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 27 Oct 2016 15:10:07 -0000

On Thu, Oct 27, 2016 at 03:05:03PM +0200 I heard the voice of
Mathieu Arnold, and lo! it spake thus:
> 
> Once you install openssl from ports, the ports framework will use
> it, always.

That is absolutely not the case since OpenSSL in base was updated to
.so.8 and ports wasn't re-bumped past it.  Everything gets confused
all the time.

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=209582

Even in an e.g. net/ntp rebuilt just now:

% ldd /usr/local/sbin/ntpd | grep -E '(crypto|ssl)'
        libcrypto.so.8 => /usr/local/lib/libcrypto.so.8 (0x800cea000)
        libssl.so.8 => /usr/lib/libssl.so.8 (0x801ae6000)

Just looking at a ldd through /usr/local I'm finding tons of things
that are still linking to base libcrypto.  STuff from ldns, nginx,
Virtualbox, libwww, lots of X pieces...

This makes me *EXTREMELY* nervous about upgrading _any_ systems where
I'm using ports OpenSSL to stable/11.


-- 
Matthew Fuller     (MF4839)   |  fullermd@over-yonder.net
Systems/Network Administrator |  http://www.over-yonder.net/~fullermd/
           On the Internet, nobody can hear you scream.