From owner-freebsd-current@freebsd.org  Sun Oct 14 06:00:21 2018
Return-Path: <owner-freebsd-current@freebsd.org>
Delivered-To: freebsd-current@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 6645810C688D
 for <freebsd-current@mailman.ysv.freebsd.org>;
 Sun, 14 Oct 2018 06:00:21 +0000 (UTC)
 (envelope-from truckman@FreeBSD.org)
Received: from smtp.freebsd.org (smtp.freebsd.org
 [IPv6:2610:1c1:1:606c::24b:4])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client CN "smtp.freebsd.org",
 Issuer "Let's Encrypt Authority X3" (verified OK))
 by mx1.freebsd.org (Postfix) with ESMTPS id 15F5C7AA7C;
 Sun, 14 Oct 2018 06:00:21 +0000 (UTC)
 (envelope-from truckman@FreeBSD.org)
Received: from mousie.catspoiler.org (unknown [76.212.85.177])
 (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits))
 (Client did not present a certificate)
 (Authenticated sender: truckman)
 by smtp.freebsd.org (Postfix) with ESMTPSA id 7E325D3CB;
 Sun, 14 Oct 2018 06:00:20 +0000 (UTC)
 (envelope-from truckman@FreeBSD.org)
Date: Sat, 13 Oct 2018 23:00:18 -0700 (PDT)
From: Don Lewis <truckman@FreeBSD.org>
Subject: Re: OpenSSL 1.1.1 libssl.so version number
To: FreeBSD current <freebsd-current@FreeBSD.org>
cc: re@FreeBSD.org
In-Reply-To: <tkrat.3c3bfd84a6c58d9a@FreeBSD.org>
Message-ID: <tkrat.2bc2d671f8dc3fb8@FreeBSD.org>
References: <tkrat.3c3bfd84a6c58d9a@FreeBSD.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; CHARSET=us-ascii
Content-Disposition: INLINE
X-BeenThere: freebsd-current@freebsd.org
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: Discussions about the use of FreeBSD-current
 <freebsd-current.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-current>, 
 <mailto:freebsd-current-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-current/>
List-Post: <mailto:freebsd-current@freebsd.org>
List-Help: <mailto:freebsd-current-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-current>, 
 <mailto:freebsd-current-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 14 Oct 2018 06:00:21 -0000

On 12 Oct, Don Lewis wrote:
> Prior to the OpenSSL 1.1.1 import, the base OpenSSL library was
> /usr/lib/libssl.so.8.  The security/openssl port (1.0.2p) installed
> ${LOCALBASE}/lib/ilbssl.so.9 and the security/openssl-devel port
> (1.1.0i) installed ${LOCALBASE}/lib/libssl.so.11.  After the import, the
> base OpenSSL library is /usr/lib/libssl.so.9.  Now if you build ports
> with DEFAULT_VERSIONS+=ssl=openssl, the library that actually gets used
> is ambiguous because there are now two different versions of libssl.so
> (1.0.2p and 1.1.1) with the same shared library version number.
> 
> I stumbled across this when debugging a virtualbox-ose configure
> failure.  The test executable was linked to the ports version of
> libssl.so but rtld chose the base libssl.so at run time.

It looks to me like the base libssl.so version needs to get moved to a
value that doesn't collide with ports, perhaps 12.  These are the
library version numbers currently used by the various ssl ports:

	boringssl       1
	openssl         9
	openssl-devel   10
	openssl111      11
	libressl        43
	libressl-devel  44