Date: Mon, 12 Nov 2018 15:07:45 +0100 From: Kurt Jaeger <pi@freebsd.org> To: Dirk Engling <erdgeist@erdgeist.org> Cc: freebsd-ports <freebsd-ports@freebsd.org> Subject: Re: Broken port qmail-tls, upstream dead Message-ID: <20181112140745.GJ1940@home.opsec.eu> In-Reply-To: <a4212359-f455-8b1f-1330-ce9fb624928b@erdgeist.org> References: <dee341fc-60f8-7bdf-f6e2-ce7231137c60@erdgeist.org> <20181112062019.GH1940@home.opsec.eu> <a4212359-f455-8b1f-1330-ce9fb624928b@erdgeist.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi!
> On 12.11.18 07:20, Kurt Jaeger wrote:
>
> > Which feature breaks ?
>
> Relaying after auth with client certs. The patch manually resets
> openssl's ssl context state to trigger a second handshake after reneg
> and those fields are now opaque in openssl.
>
> > Patches can be applied conditionally (e.g. only for 12).
> > If you provide the patch in a way that fixes the build only for 12 ?
>
> Any pointers for that?
Put the 12er patch into files/extra-patch-fbsd12
and add this to the Makefile:
.if ${OPSYS} == FreeBSD && ${OSVERSION} >= 1200000
EXTRA_PATCHES=extra-patch-fbsd12
.endif
> > Migrate to exim 8-) ? If upstream is dead, maybe it's a signal
> > to migrate away ?
> Well netqmail is well and kicking, it's just that the tls implementation
> is a little rough arund the edges and needs some brushing ;)
Yes, I would not want to migrate, either 8-)
--
pi@opsec.eu +49 171 3101372 2 years to go !
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20181112140745.GJ1940>