Date: Sun, 10 Aug 2025 12:32:55 +0100 From: Lexi Winter <ivy@freebsd.org> To: Cy Schubert <Cy.Schubert@cschubert.com> Cc: "Enji Cooper (yaneurabeya)" <yaneurabeya@gmail.com>, Ian FREISLICH <ianfreislich@gmail.com>, FreeBSD Current <current@freebsd.org>, Pierre Pronchery <khorben@defora.org> Subject: Re: OpenSSL legacy provider is broken Message-ID: <aJiDZ6w1Od82CYzj@freefall.freebsd.org> In-Reply-To: <20250810060606.CD0DF147@slippy.cwsent.com> References: <b3f09f1b-e946-4bf1-822d-243dcd0dcd02@gmail.com> <B43DA54A-0017-42CA-A1FE-15F28048FEF0@gmail.com> <20250810060606.CD0DF147@slippy.cwsent.com>
index | next in thread | previous in thread | raw e-mail
[-- Attachment #1 --] Cy Schubert: > This looks like it's due to MIT KRB5 in 15. The HEIMDAL option needs to be > replaced with a BASE option and BASE should test for MIT KRB5 or HEIMDAL by > looking at which kdc (kdc for Heimdal or krb5kdc for MIT) is installed. no, don't do that: the kdc is an optional component that may not be installed when building ports, so you can't distinguish between base Kerberos versions that way. see https://reviews.freebsd.org/D51841 for a better way to do this. [-- Attachment #2 --] -----BEGIN PGP SIGNATURE----- iHUEABYKAB0WIQSyjTg96lp3RifySyn1nT63mIK/YAUCaJiDZAAKCRD1nT63mIK/ YM/KAP9yACYUnk8DfdHw+uS/BE/OyomnM7wLnJfNG6431EoMVgEAjq09UIetBAYk hcTKP0DRIL1CR7gYRcILuFVIZSqMaQQ= =gl+c -----END PGP SIGNATURE-----home | help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?aJiDZ6w1Od82CYzj>