From owner-freebsd-ports@freebsd.org  Tue Aug  9 14:20:10 2016
Return-Path: <owner-freebsd-ports@freebsd.org>
Delivered-To: freebsd-ports@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 512BFBB46D4
 for <freebsd-ports@mailman.ysv.freebsd.org>;
 Tue,  9 Aug 2016 14:20:10 +0000 (UTC)
 (envelope-from news@mips.inka.de)
Received: from mail.inka.de (quechua.inka.de
 [IPv6:2a04:c9c7:0:1073:217:a4ff:fe3b:e77c])
 (using TLSv1 with cipher AES256-SHA (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id 1D99A1D6A
 for <freebsd-ports@freebsd.org>; Tue,  9 Aug 2016 14:20:09 +0000 (UTC)
 (envelope-from news@mips.inka.de)
Received: from mips.inka.de (news@[127.0.0.1])
 by mail.inka.de with uucp (rmailwrap 0.5) 
 id 1bX7t1-00037S-4l; Tue, 09 Aug 2016 16:20:07 +0200
Received: from lorvorc.mips.inka.de (localhost [127.0.0.1])
 by lorvorc.mips.inka.de (8.15.2/8.15.2) with ESMTP id u79EIO7e096643
 for <freebsd-ports@freebsd.org>; Tue, 9 Aug 2016 16:18:24 +0200 (CEST)
 (envelope-from news@lorvorc.mips.inka.de)
Received: (from news@localhost)
 by lorvorc.mips.inka.de (8.15.2/8.15.2/Submit) id u79EIO5o096642
 for freebsd-ports@freebsd.org; Tue, 9 Aug 2016 16:18:24 +0200 (CEST)
 (envelope-from news)
To: freebsd-ports@freebsd.org
From: Christian Weisgerber <naddy@mips.inka.de>
Newsgroups: list.freebsd.ports
Subject: Re: openntpd-5.7p4_2,2 depends on libressl-2.2.6 ?!
Date: Tue, 9 Aug 2016 14:18:24 +0000 (UTC)
Message-ID: <slrnnqjphg.t8q.naddy@lorvorc.mips.inka.de>
References: <2E32FD64-2BF6-46CE-BAD2-39AF82E29E33@ellael.org>
 <56E1BA30.7090306@utanet.at> <010201d1ec8d$b1e53ef0$15afbcd0$@m.jwh.me.uk>
User-Agent: slrn/1.0.2 (FreeBSD)
X-BeenThere: freebsd-ports@freebsd.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Porting software to FreeBSD <freebsd-ports.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-ports>,
 <mailto:freebsd-ports-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ports/>
List-Post: <mailto:freebsd-ports@freebsd.org>
List-Help: <mailto:freebsd-ports-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-ports>,
 <mailto:freebsd-ports-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 09 Aug 2016 14:20:10 -0000

On 2016-08-02, "Joe Holden" <mail@m.jwh.me.uk> wrote:

> That is not a fix since it breaks at least nginx in the official repo,
> because nginx depends on openssl and openntpd depends on libre.
>
> Either the entire tree should move to a library supported by everything, or
> the openntpd port gets split into meta packages so that we don't need to
> return to a stage where everyone is building ports.
>
> Was this not even considered or tested?

I put the blame on the people who thought it a good idea to have
FIVE only partially compatible SSL libraries in the tree: OpenSSL
in base, openssl, openssl-devel, libressl, libressl-devel.

Bernard Spil (brnrd) has worked hard on moving the entire tree to
LibreSSL, but the political will is missing.

Like other software coming out of OpenBSD, OpenNTPD now requires
libtls for its https functionality.  That's a new library with a
new API that doesn't exist in OpenSSL.  The constraints check is a
standard feature of OpenNTPD.  If you run OpenNTPD, you expect it
to be available.  I have no intention of disabling this by default
and it requires libtls.

> (Cc naddy)

Sorry, I somehow didn't get this.

-- 
Christian "naddy" Weisgerber                          naddy@mips.inka.de