From owner-freebsd-apache@freebsd.org  Mon Mar 26 16:43:09 2018
Return-Path: <owner-freebsd-apache@freebsd.org>
Delivered-To: freebsd-apache@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 1E2E7F5400C
 for <freebsd-apache@mailman.ysv.freebsd.org>;
 Mon, 26 Mar 2018 16:43:09 +0000 (UTC)
 (envelope-from marquis@roble.com)
Received: from mx5.roble.com (mx5.roble.com [209.237.23.5])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client CN "mx5.roble.com", Issuer "mx5.roble.com" (not verified))
 by mx1.freebsd.org (Postfix) with ESMTPS id AE66586699
 for <freebsd-apache@freebsd.org>; Mon, 26 Mar 2018 16:43:08 +0000 (UTC)
 (envelope-from marquis@roble.com)
Received: from roble.com (roble.com [209.237.23.50])
 by mx5.roble.com (Postfix) with ESMTP id 58EC061A3B
 for <freebsd-apache@freebsd.org>; Mon, 26 Mar 2018 09:43:07 -0700 (PDT)
Date: Mon, 26 Mar 2018 09:43:07 -0700 (PDT)
From: Roger Marquis <marquis@roble.com>
To: freebsd-apache@freebsd.org
Subject: Apache HTTP Server 2.4.33 Released, with libressl compatibility?
Message-ID: <nycvar.OFS.7.76.1803260942140.71165@mx.roble.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII; format=flowed
X-BeenThere: freebsd-apache@freebsd.org
X-Mailman-Version: 2.1.25
Precedence: list
List-Id: Support of apache-related ports  <freebsd-apache.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-apache>, 
 <mailto:freebsd-apache-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-apache/>
List-Post: <mailto:freebsd-apache@freebsd.org>
List-Help: <mailto:freebsd-apache-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-apache>,
 <mailto:freebsd-apache-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 26 Mar 2018 16:43:09 -0000

Port is up-to-date, thanks!

Anyone know if a libressl patch is in the works, or have a patch to not
build ab?

  > ...
  > --- ab ---
  > /usr/local/share/apr/build-1/libtool --silent --mode=link cc    -O2 -pipe 
-I/usr/local/include -DLIBICONV_PLUG
  > -fstack-protector -fno-strict-aliasing     -L/usr/local/lib/db5 -L/usr/lib 
-L/usr/local/lib -Wl,-rpath,/usr/local/lib
  > -fstack-protector -o ab  ab.lo      -L/usr/local/lib -R/usr/local/lib 
-laprutil-1 -ldb-5.3 -lexpat -L/usr/local/lib
  > -R/usr/local/lib -lapr-1 -lcrypt -lpthread -lm -L/usr/local/lib -lssl 
-lcrypto -lcrypt -lpthread
  > ab.o: In function `main':
  > ab.c:(.text+0x442): undefined reference to `TLS_client_method'
  > ab.c:(.text+0xbe6): undefined reference to `SSL_CTX_set_max_proto_version'
  > ab.c:(.text+0xbf6): undefined reference to `SSL_CTX_set_min_proto_version'
  > cc: error: linker command failed with exit code 1 (use -v to see invocation)
  > *** [ab] Error code 1
  >
  > make[4]: stopped in /usr/ports/www/apache24/work/httpd-2.4.33/support
  > 1 error

Roger


>                Apache HTTP Server 2.4.33 Released
>
>   March 26, 2018
>
>   The Apache Software Foundation and the Apache HTTP Server Project
>   are pleased to announce the release of version 2.4.33 of the Apache
>   HTTP Server ("Apache").  This version of Apache is our latest GA
>   release of the new generation 2.4.x branch of Apache HTTPD and
>   represents fifteen years of innovation by the project, and is
>   recommended over all previous releases. This release of Apache is
>   a security release.
>
>   We consider this release to be the best version of Apache available, and
>   encourage users of all prior versions to upgrade.
>
>   Apache HTTP Server 2.4.33 is available for download from:
>
>     http://httpd.apache.org/download.cgi
>
>   Apache 2.4 offers numerous enhancements, improvements, and performance
>   boosts over the 2.2 codebase.  For an overview of new features
>   introduced since 2.4 please see:
>
>     http://httpd.apache.org/docs/trunk/new_features_2_4.html
>
>   Please see the CHANGES_2.4 file, linked from the download page, for a
>   full list of changes. A condensed list, CHANGES_2.4.33 includes only
>   those changes introduced since the prior 2.4 release.  A summary of all
>   of the security vulnerabilities addressed in this and earlier releases
>   is available:
>
>     http://httpd.apache.org/security/vulnerabilities_24.html
>
>   This release requires the Apache Portable Runtime (APR), minimum
>   version 1.5.x, and APR-Util, minimum version 1.5.x. Some features may
>   require the 1.6.x version of both APR and APR-Util. The APR libraries
>   must be upgraded for all features of httpd to operate correctly.
>
>   This release builds on and extends the Apache 2.2 API.  Modules written
>   for Apache 2.2 will need to be recompiled in order to run with Apache
>   2.4, and require minimal or no source code changes.
>
>     http://svn.apache.org/repos/asf/httpd/httpd/trunk/VERSIONING
>
>   When upgrading or installing this version of Apache, please bear in mind
>   that if you intend to use Apache with one of the threaded MPMs (other
>   than the Prefork MPM), you must ensure that any modules you will be
>   using (and the libraries they depend on) are thread-safe.
>
>   Please note the 2.2.x branch has now passed the end of life at the Apache
>   HTTP Server project and no further activity will occur including security
>   patches.  Users must promptly complete their transitions to this 2.4.x
>   release of httpd to benefit from further bug fixes or new features.
>