Re: netbsd-8 built-in heimdal insufficient?

To: Greg Troxel <gdt%lexort.com@localhost>, Mike Pumford <mpumford%mudcovered.org.uk@localhost>
Subject: Re: netbsd-8 built-in heimdal insufficient?
From: "John D. Baker" <jdbaker%consolidated.net@localhost>
Date: Wed, 18 Mar 2020 10:04:16 -0500 (CDT)

I thought OpenSSL v1.0.2 vs 1.1.x played into it, but not the way it
has been characterized.

Base heimdal may be linked against base OpenSSL (1.0.2k in netbsd-8),
but pkgsrc heimdal explicitly does NOT link with any OpenSSL (even 1.1.x
in pkgsrc).  So, the solution for "heimdal linked against obsolete
OpenSSL" is to install "heimdal not linked with ANY OpenSSL".

Meanwhile, other packages have their own dependency on OpenSSL and
install pkgsrc openssl (1.1.1d) when base OpenSSL (1.0.2k in netbsd-8)
is considered insufficient/obsolete.

That also probably explains why "databases/nss_ldap" now wants to install
"databases/openldap-client" (which in turn wants "security/openssl").

On this machine, the following packages want pkgsrc openssl (whereas
in pkgsrc-2019Q4 they didn't):

libarchive
openldap-client (new package to satisfy nss_ldap)
rhash
python37
netatalk22
p5-Net-SSLeay
python27
curl
samba
git-base

Alas, I can't update this machine to netbsd-9 as siisata(4) is broken
for me and hoses my RAID.

-- 
|/"\ John D. Baker, KN5UKS               NetBSD     Darwin/MacOS X
|\ / jdbaker[snail]consolidated[flyspeck]net  OpenBSD            FreeBSD
| X  No HTML/proprietary data in email.   BSD just sits there and works!
|/ \ GPGkeyID:  D703 4A7E 479F 63F8 D3F4  BD99 9572 8F23 E4AD 1645

Follow-Ups:
- Re: netbsd-8 built-in heimdal insufficient?
  - From: Mike Pumford

References:
- netbsd-8 built-in heimdal insufficient?
  - From: John D. Baker

Prev by Date: Re: netbsd-8 built-in heimdal insufficient?
Next by Date: Re: Rust problem i386
Previous by Thread: Re: netbsd-8 built-in heimdal insufficient?
Next by Thread: Re: netbsd-8 built-in heimdal insufficient?
Indexes:

Home | Main Index | Thread Index | Old Index