Pourdriere produces faulty build results due to bsd.openssl.mk bug

Mark Felder feld at FreeBSD.org
Thu Apr 2 14:08:02 UTC 2015

On Wed, Apr 1, 2015, at 16:21, Bryan Drewery wrote:
> On 4/1/2015 3:59 PM, Yuri wrote:
> > I found that packages produced by poudriere likely link with base
> > openssl, while port make likely links with the port openssl.
> > This is because of the lines in bsd.openssl.mk which check for the
> > presence of openssl shared library and headers under PREFIX, and set
> > WITH_OPENSSL_BASE when they aren't present. In case of port make files
> > are likely present, and in case of poudriere build files are likely not
> > present.
> > 
> > Example is ftp/curl (with GSSAPI=NONE,  OPENSSL=yes options). *Poudriere
> > produces curl library, that causes VirtualBox to break* due to the
> > openssl base vs. port conflicts. See recent emulation@ ML threads. Port
> > make produces curl library that works fine with VirtualBox.
> > 
> > I think both WITH_OPENSSL_BASE and WITH_OPENSSL_PORT should be retired,
> > and code checking file presence also should be removed, and all ports
> > should be made to build with an openssl port instead. Ports should never
> > use base OpenSSL.
> > 
> > Only <100 ports touch WITH_OPENSSL_... variables. Somebody who is able
> > to make such decisions and has the commit bit should bit should look
> > into this. Otherwise, massively faulty package repositories are produces.
> > 
> > Yuri
> I've wanted this for a long time. I think we should just do it.

What are the risks of something linking to OpenSSL in ports also
requiring something from base which in turn... links in OpenSSL from

More information about the freebsd-ports mailing list