NOCRYPT / NOSECURE
Ruslan Ermilov
ru at freebsd.org
Thu May 15 07:58:00 PDT 2003
On Thu, May 15, 2003 at 04:20:08PM +0200, Dag-Erling Smorgrav wrote:
> I just tried to run a tinderbox with NOCRYPT and NOSECURE (but not
> NO_OPENSSL) defined. It failed because there are Makefiles
> (games/factor was the one that broke the build, but glimpse(1) tells
> me there are others) which check NO_OPENSSL and / or NOCRYPT but not
> NOSECURE.
>
> NOSECURE is a meaningless subset of NOCRYPT. It means "don't descend
> into src/secure", but that's equivalent to NOCRYPT because a) we don't
> descend into src/secure if NOCRYPT is set and b) the only significant
> stuff which NOCRYPT disables but NOSECURE doesn't is Kerberos, which
> requires OpenSSL, which isn't built in the NOSECURE case, so there's
> no way we can build world with NOSECURE but not NOCRYPT.
>
> I would therefore like to remove NOSECURE, preferably before 5.1.
>
I'm all for it.
I tired of fixing all these NOCRYPT/NOSECURE/NO_OPENSSL/NO_OPENSSH
combinations.
Please go ahead.
> NO_OPENSSL is also a subset of NOCRYPT. There is so little that
> builds with NO_OPENSSL but not with NOCRYPT that I think it might be
> worthwhile to deprecate NO_OPENSSL and change the description of
> NOCRYPT from "will prevent building of crypt versions" to "do not
> build crypto-related software"
>
I'm not so sure about NO_OPENSSL.
--
Ruslan Ermilov Sysadmin and DBA,
ru at sunbay.com Sunbay Software AG,
ru at FreeBSD.org FreeBSD committer,
+380.652.512.251 Simferopol, Ukraine
http://www.FreeBSD.org The Power To Serve
http://www.oracle.com Enabling The Information Age
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-arch/attachments/20030515/b1dfd5f9/attachment.bin
More information about the freebsd-arch
mailing list