Re: OpenSSL legacy provider is broken
- Reply: Cy Schubert : "Re: OpenSSL legacy provider is broken"
- In reply to: Cy Schubert : "Re: OpenSSL legacy provider is broken"
- Go to: [ bottom of page ] [ top of archives ] [ this month ]
Date: Sun, 10 Aug 2025 11:32:55 UTC
Cy Schubert: > This looks like it's due to MIT KRB5 in 15. The HEIMDAL option needs to be > replaced with a BASE option and BASE should test for MIT KRB5 or HEIMDAL by > looking at which kdc (kdc for Heimdal or krb5kdc for MIT) is installed. no, don't do that: the kdc is an optional component that may not be installed when building ports, so you can't distinguish between base Kerberos versions that way. see https://reviews.freebsd.org/D51841 for a better way to do this.