From owner-freebsd-ports@freebsd.org Fri Jul 8 16:29:47 2016 Return-Path: Delivered-To: freebsd-ports@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id BB007B83782 for ; Fri, 8 Jul 2016 16:29:47 +0000 (UTC) (envelope-from mi+thun@aldan.algebra.com) Received: from vms173009pub.verizon.net (vms173009pub.verizon.net [206.46.173.9]) (using TLSv1 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 95CA919C8; Fri, 8 Jul 2016 16:29:47 +0000 (UTC) (envelope-from mi+thun@aldan.algebra.com) Received: from vz-proxy-m007.mx.aol.com ([64.236.83.14]) by vms173009.mailsrvcs.net (Oracle Communications Messaging Server 7.0.5.32.0 64bit (built Jul 16 2014)) with ESMTPA id <0OA0003GB8GXMS50@vms173009.mailsrvcs.net>; Fri, 08 Jul 2016 11:29:25 -0500 (CDT) X-CMAE-Score: 0 X-CMAE-Analysis: v=2.1 cv=MtGvkDue c=1 sm=1 tr=0 a=MJxOpqxZADbEbEImuSX/mw==:117 a=cAmyUtKerLwA:10 a=r77TgQKjGQsHNAKrUKIA:9 a=ZvVHFmlGEJr6WiHGIeQA:9 a=pILNOxqGKmIA:10 a=4NfHOOSOETqXdR2k5y4A:9 a=Y6ccpz4RSHE1uEj_:21 a=_W_S_7VecoQA:10 Received: by 108.53.87.98 with SMTP id 3e29c163; Fri, 08 Jul 2016 16:29:25 GMT Subject: base components should always be default (Re: change in default openssl coming) To: freebsd-ports@freebsd.org References: From: "Mikhail T." Cc: Mathieu Arnold Message-id: Date: Fri, 08 Jul 2016 12:29:20 -0400 MIME-version: 1.0 In-reply-to: Content-Type: text/plain; charset=windows-1252 Content-Transfer-Encoding: 7bit X-Content-Filtered-By: Mailman/MimeDel 2.1.22 X-BeenThere: freebsd-ports@freebsd.org X-Mailman-Version: 2.1.22 Precedence: list List-Id: Porting software to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 08 Jul 2016 16:29:47 -0000 On 08.07.2016 02:26, Mathieu Arnold wrote: > During this summer (sometime in August I think) I will be changing the default OpenSSL for the ports tree from the base system version to security/openssl. The short answer is "Why?!" The longer reaction is: "please don't". Certainly not without a lengthy and exhaustive discussion (or flame-war, if you will), which shall arrive at a consensus -- and, if it does not, then no change shall happen. Generally, we should be eating our own dog-food -- using base-provided components for everything by default where at all possible. If the base OpenSSL is in some way(s) deficient, well, that's an argument for updating the base. The base comes with not just the libraries, but withe accompanying header-files -- meaning, the developers are free to use those libraries. So the ports certainly should be doing just that. Our ports and the packages derived from them are part of FreeBSD -- and the various components need to remain tightly integrated. Yes, I understand, you intend for there to remain an option, which the holdouts like myself will be able to use to retain the old behavior. But that's not good enough -- if the default packages will be built differently, then bitrot will creep in and building against the base will slowly become more and more difficult. > I will also, because it goes with it, change the default GSSAPI from base to something else, Sorry, what goes with what? Are you saying, Heimdal can't be built with port's OpenSSL or vice versa? -mi