www/firefox really depends on security/openssl?
Dr. Peter Voigt
pvoigt at uos.de
Mon May 11 22:03:11 UTC 2015
On Mon, 11 May 2015 13:08:02 -0700
Yuri <yuri at rawbw.com> wrote:
> On 05/11/2015 11:21, Dr. Peter Voigt wrote:
> > Thanks for your feedback. I have to admit that I am a bit lost with
> > the referenced PR:
>
> Or you can just run 'pkg info -d firefox' - it doesn't show any
> openssl dependencies. Running 'ldd' on elfs in firefox package also
> don't show openssl. So firefox doesn't depend on OpenSSL.
>
OK, I currently haven't firefox installed and did not download the
package to do this test myself. But your results go along with the
output of "make run-depends-list". And back to my initial question: Why
does "pkg install firefox" in spite of this insist on installing port
openssl?
> Also, you shouldn't be switching to the base OpenSSL just for one
> package. The reason is, again, the conflict between the base and port
> OpenSSL versions. If I were you, I would move in another direction,
> and try to eliminate base OpenSSL dependency. You need to figure out
> which dependency causes it. You should identify it and see if this
> can be fixed.
>
I changed to base openssl after fighting with latest port openssl.
As reported by several people
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=198788
it is currently more or less impossible to build all ports cleanly
against port openssl leaving you with a mixture of base and port
openssl. And this makes your system as unstable that it cannot be used
anymore. Most people in the referenced PR suggested to rebuild all ports
against base openssl. That's want I did after a hard system crash. Since
then my machine is rock stable again. Besides this port openssl had an
issue with ASM=on.
Peter
More information about the freebsd-ports
mailing list