Re: State of LibreSSL in FreeBSD ports

From: Michael Gmelin <>
Date: Mon, 04 Oct 2021 18:38:56 UTC

> On 4. Oct 2021, at 20:21, Mathieu Arnold <> wrote:
> On Sun, Oct 03, 2021 at 04:16:54PM +0200, Felix Palmen wrote:
>> Is LibreSSL in FreeBSD ports
>> * supported, so ports should build with it if at all possible?
>> * supported on a "best effort" base, so setting a port BROKEN is
>>  acceptable if maintaining (working) patches would be too much hassle?
>> * NOT supported at all, so random build failures with LibreSSL are fine?
> I'd say the third option,

I wouldn’t say “not supported at all”. It’s not hard to run very stable setups using libressl from ports.


> the only *SSL variant that is guaranteed too
> work is using the base system OpenSSL, using anything else is bound to
> hurt and segfault at one point or the other.
> This is because your software will have linking with one library from
> the base system that brings OpenSSL, and some other library that links
> with ports OpenSSL or LibreSSL, and the software calls one function that
> is in both.
> At that point, it is a variant of the russian roulette, but with about a
> half and half chance of the function called being resolved to the wrong
> library.
> -- 
> Mathieu Arnold