Re: git: 9a36ff5299c8 - main - ftp/lftp: Fix build with libressl >= 2.7.0

From: Matthias Andree <matthias.andree_at_tu-dortmund.de>
Date: Thu, 06 Oct 2022 20:04:23 UTC
Am 06.10.22 um 21:06 schrieb Ganael Laplanche:
> Le 05/10/2022 à 21:20, Matthias Andree a écrit :
>
> Hello Matthias,
>
>
>
> Thanks for your feedback.
>
>
>
> > please decide to
>
> >
>
> >   either mark this NO_PACKAGE,
>
> >
>
> >   or if we want to continue providing binary packages:
>
> >
>
> >   *   remove the LibreSSL option, you cannot link GPLv3 software with
>
> >     LibreSSL,
>
> >   *   and ensure that OpenSSL is either "from base" (GPL copyleft does
>
> >     not apply to OS components (*)), or v3.0.x or newer (OpenSSL v3 is
>
> >     Apache licensed and compatible with GPL v3). OpenSSL 1.x or older
>
> >     from ports also cannot be used for binary shipments.
>
>
>
> There is no such 'LibreSSL' option within the port itself. It only uses :
>
>
>
>   USES=ssl
>
>
>
> so it *can* be linked against libressl using the global :
>
>
>
>   DEFAULT_VERSIONS+=ssl=libressl
>
>
>
> variable set (that's what my last commit fixed), but it is an opt-in 
> and *not* the default, which is set to 'base'.
>
>
>
> FreeBSD package build servers use that default configuration, so we 
> (FreeBSD) do *not* build and provide packages linked against libressl, 
> but only against base openssl.
>
>
>
> So everything should be good or am I missing something ?
>
Ganaël,

Thanks for checking. Seems good, and possibly - with that reasoning - 
it's more the licensing framework that might want to check what licenses 
combine well and which don't.

(I just don't understand the benefit of supporting LibreSSL in the 
framework at all. There have been a few months where LibreSSL was 
"better" than OpenSSL)

Regards
Matthias