From nobody Wed Apr 12 04:21:23 2023
X-Original-To: ports@mlmmj.nyi.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
	by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4Px8fg5Xkkz45CJh
	for <ports@mlmmj.nyi.freebsd.org>; Wed, 12 Apr 2023 04:21:31 +0000 (UTC)
	(envelope-from idefix@fechner.net)
Received: from anny.lostinspace.de (anny.lostinspace.de [195.30.95.33])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256)
	(Client did not present a certificate)
	by mx1.freebsd.org (Postfix) with ESMTPS id 4Px8ff4l50z40Dw
	for <ports@freebsd.org>; Wed, 12 Apr 2023 04:21:30 +0000 (UTC)
	(envelope-from idefix@fechner.net)
Authentication-Results: mx1.freebsd.org;
	dkim=pass header.d=fechner.net header.s=default header.b="C/H1zvb4";
	spf=pass (mx1.freebsd.org: domain of idefix@fechner.net designates 195.30.95.33 as permitted sender) smtp.mailfrom=idefix@fechner.net;
	dmarc=pass (policy=none) header.from=fechner.net
Received: from server.idefix.lan (unknown [93.182.104.69])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256)
	(No client certificate requested)
	(Authenticated sender: idefix@fechner.net)
	by anny.lostinspace.de (Postfix) with ESMTPSA id 3CC545C32A
	for <ports@freebsd.org>; Wed, 12 Apr 2023 06:21:25 +0200 (CEST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=fechner.net; s=default;
	t=1681273285;
	h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
	 to:to:cc:mime-version:mime-version:content-type:content-type:
	 content-transfer-encoding:content-transfer-encoding:
	 in-reply-to:in-reply-to:references:references;
	bh=gzoV1Kk13nD+d6xFuMEmYKUKDlxoxQG3NYKOqH/ybnk=;
	b=C/H1zvb4RJevTvP5b/NZ8PJdPpuYddXpzDLGqk6MxNtxiqudkZTdU0ONspQ/lg4tbJNozx
	/JTr18sMMtRoUDvOPqf4LElwt/auFJv2xNVo85nVO7LtNC0JG+KWBcseVm6FB0ggIGN+yc
	lmWTJnt8s1DDyGUjg8P2YrQKdQri8ew=
Received: from [192.168.0.151] (idefix.idefix.lan [192.168.0.151])
	(using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits)
	 key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256)
	(No client certificate requested)
	by server.idefix.lan (Postfix) with ESMTPSA id ED8BCC1119E
	for <ports@freebsd.org>; Wed, 12 Apr 2023 07:21:23 +0300 (EEST)
Message-ID: <b281179d-07c1-ada2-c878-902711adf35f@fechner.net>
Date: Wed, 12 Apr 2023 07:21:23 +0300
List-Id: Porting software to FreeBSD <freebsd-ports.freebsd.org>
List-Archive: https://lists.freebsd.org/archives/freebsd-ports
List-Help: <mailto:ports+help@freebsd.org>
List-Post: <mailto:ports@freebsd.org>
List-Subscribe: <mailto:ports+subscribe@freebsd.org>
List-Unsubscribe: <mailto:ports+unsubscribe@freebsd.org>
Sender: owner-freebsd-ports@freebsd.org
X-BeenThere: freebsd-ports@freebsd.org
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:102.0) Gecko/20100101
 Thunderbird/102.9.1
To: ports@freebsd.org
References: <5fa8902b-d5b9-daf7-efd5-55cb3673343e@fechner.net>
 <d03f6cd9-28d6-94eb-b271-5038f963ac74@FreeBSD.org>
 <65d5661f-2dac-d9aa-3516-54958538c7e3@fechner.net>
 <35636c5c-e6ac-c758-fbe0-cff924889321@FreeBSD.org>
Content-Language: en-US
From: Matthias Fechner <idefix@fechner.net>
Subject: Re: Questions regarding BUILD_DEPENDS definition
In-Reply-To: <35636c5c-e6ac-c758-fbe0-cff924889321@FreeBSD.org>
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 8bit
X-Rspamd-Action: no action
X-Rspamd-Server: anny.lostinspace.de
X-Spamd-Result: default: False [-6.70 / 15.00];
	DWL_DNSWL_MED(-2.00)[fechner.net:dkim];
	NEURAL_HAM_LONG(-1.00)[-1.000];
	NEURAL_HAM_MEDIUM(-1.00)[-1.000];
	NEURAL_HAM_SHORT(-1.00)[-1.000];
	RCVD_DKIM_ARC_DNSWL_MED(-0.50)[];
	DMARC_POLICY_ALLOW(-0.50)[fechner.net,none];
	R_DKIM_ALLOW(-0.20)[fechner.net:s=default];
	RCVD_IN_DNSWL_MED(-0.20)[195.30.95.33:from];
	R_SPF_ALLOW(-0.20)[+a];
	MIME_GOOD(-0.10)[text/plain];
	RCVD_VIA_SMTP_AUTH(0.00)[];
	FROM_EQ_ENVFROM(0.00)[];
	MLMMJ_DEST(0.00)[ports@freebsd.org];
	ASN(0.00)[asn:5539, ipnet:195.30.0.0/16, country:DE];
	MIME_TRACE(0.00)[0:+];
	DKIM_TRACE(0.00)[fechner.net:+];
	RCPT_COUNT_ONE(0.00)[1];
	RCVD_TLS_ALL(0.00)[];
	FROM_HAS_DN(0.00)[];
	ARC_NA(0.00)[];
	RCVD_COUNT_THREE(0.00)[3];
	TO_MATCH_ENVRCPT_ALL(0.00)[];
	TO_DN_NONE(0.00)[];
	PREVIOUSLY_DELIVERED(0.00)[ports@freebsd.org];
	MID_RHS_MATCH_FROM(0.00)[]
X-Rspamd-Queue-Id: 4Px8ff4l50z40Dw
X-Spamd-Bar: ------
X-ThisMailContainsUnwantedMimeParts: N

Am 11.04.2023 um 19:54 schrieb Matthew Seaman:
> Hmmm... I wonder if this is the shared library provides/requires thing 
> that pkg does?  If you run ldd(1) against the binaries from 
> gitlab-shell, is there any indication of linking against a shlib from 
> the heimdal port?
>
> If so, then that would seem to be a mistake in the gitlab-shell port, 
> and it should probably add a LIB_DEPENDS against security/heimdal.
>
> Otherwise, all I can suggest is deleting both heimdal and gitlab-shell 
> packages, and then reinstalling gitlab-shell. Hopefully that will tidy 
> up the dependency graph.

I think that is it:
cd /usr/local/share/gitlab-shell/
$ ldd gitlab-shell
gitlab-shell:
         libthr.so.3 => /lib/libthr.so.3 (0x801193000)
         libc.so.7 => /lib/libc.so.7 (0x8011c1000)
$ ldd gitlab-shell-authorized-keys-check
gitlab-shell-authorized-keys-check:
         libthr.so.3 => /lib/libthr.so.3 (0x801157000)
         libc.so.7 => /lib/libc.so.7 (0x801185000)
$ ldd gitlab-shell-authorized-principals-check
gitlab-shell-authorized-principals-check:
         libthr.so.3 => /lib/libthr.so.3 (0x801148000)
         libc.so.7 => /lib/libc.so.7 (0x801176000)
$ ldd gitlab-sshd
gitlab-sshd:
         libgssapi.so.3 => /usr/local/lib/heimdal/libgssapi.so.3 
(0x8012f2000)
         libthr.so.3 => /lib/libthr.so.3 (0x801333000)
         libc.so.7 => /lib/libc.so.7 (0x801361000)
         libheimntlm.so.0 => /usr/local/lib/heimdal/libheimntlm.so.0 
(0x80176b000)
         libkrb5.so.26 => /usr/local/lib/heimdal/libkrb5.so.26 (0x801777000)
         libhx509.so.5 => /usr/local/lib/heimdal/libhx509.so.5 (0x801811000)
         libwind.so.0 => /usr/local/lib/heimdal/libwind.so.0 (0x801862000)
         libheimsqlite.so.0 => /usr/local/lib/heimdal/libheimsqlite.so.0 
(0x80188d000)
         libhcrypto.so.4 => /usr/local/lib/heimdal/libhcrypto.so.4 
(0x80196d000)
         libasn1.so.8 => /usr/local/lib/heimdal/libasn1.so.8 (0x8019ad000)
         libcom_err.so.1 => /usr/local/lib/heimdal/libcom_err.so.1 
(0x801a59000)
         libheimbase.so.1 => /usr/local/lib/heimdal/libheimbase.so.1 
(0x801a60000)
         libintl.so.8 => /usr/local/lib/libintl.so.8 (0x801a73000)
         libroken.so.18 => /usr/local/lib/heimdal/libroken.so.18 
(0x801a81000)
         libcrypto.so.11 => /usr/local/lib/libcrypto.so.11 (0x801a97000)
         libcrypt.so.5 => /lib/libcrypt.so.5 (0x801d23000)

I'm not sure how to handle this.
I saw in the commit logs that heimdal is only used if CGO is enabled in 
the build. That could maybe be a work-around for this problem.

Gruß
Matthias

-- 

"Programming today is a race between software engineers striving to
build bigger and better idiot-proof programs, and the universe trying to
produce bigger and better idiots. So far, the universe is winning." --
Rich Cook