Re: git: 6ae2ea6b9804 - 2026Q1 - graphics/openexr*: Security update to v3.4.5 and i386 fix

Am 25.02.26 um 01:50 schrieb Alexey Dokuchaev:
> On Tue, Feb 24, 2026 at 09:28:05PM +0000, Daniel Engberg wrote:
>> commit 6ae2ea6b9804ed95bc7a67f4bff6954441d9890f
>>
>>    graphics/openexr*: Security update to v3.4.5 and i386 fix
>>
>>    To prevent people seeing SIGILL crashes down late at run-time,
>>    check if the CPU is sse2-capable by querying the clang compiler
>>    from the pre-install script (pkg-plist's @preexec).
>> [...]
>> --- a/graphics/openexr/pkg-plist
>> +++ b/graphics/openexr/pkg-plist
>> @@ -1,3 +1,4 @@
>> +%%i386%%@preexec clang </dev/null -m32 -E - -march=native -### 2>&1 | tr ' ' $'\n' | grep -q +sse2 || { echo >&2 "This port requires a CPU with SSE2 instruction set extension." ; exit 1; }
> 
> Is this hackery really that useful?  SSE2 was introduced more than
> twenty years ago, it is fairly safe to assume that 32-bit x86 CPUs
> people might still use for doing graphics these days support it.

The OpenEXR guys have taken my hint and will force down -msse2 
everywhere the compiler accepts the flag,
<https://github.com/AcademySoftwareFoundation/openexr/pull/2271>
(read the related issue, too, for a twist on the "museum" theme)

But yes, I prefer to clarify assumptions up front, and explicitly.

Feel free to fill me in how else people should reliably and unmistakably 
[1] be informed that they are installing a port that won't work on their 
system.

_____
[1] Without adding new dependencies just to close off that niche. 
Possibly amidst their quarterly "pkg upgrade -f".

-- 
Matthias Andree