Monday, June 06, 2022

Re: new security/libdigidocpp 3.14.8 (openssl version spec broken?)

This tarball fails to package, see below.
Working one attached.


Another problem which I think is a bug in our ports framework:
LIB_DEPENDS += security/openssl/1.1
works and packages, but
LIB_DEPENDS += security/openssl/1.1>=1.1.1m
pulls in OpenSSL 3.0 and fails in `make package`:

===> Building package for libdigidocpp-3.14.8
Create /usr/ports/packages/amd64/all/libdigidocpp-3.14.8.tgz
Creating package libdigidocpp-3.14.8
Creating package debug-libdigidocpp-3.14.8
|library lib/eopenssl11/crypto.11.6 not found
| /usr/lib/libcrypto.so.48.0 (system): bad major
| /usr/lib/libcrypto.so.49.0 (system): bad major
| /usr/local/lib/eopenssl30/libcrypto.so.12.2 (openssl-3.0.3p1): bad major
|library lib/eopenssl11/ssl.11.6 not found
| /usr/lib/libssl.so.51.0 (system): bad major
| /usr/lib/libssl.so.52.0 (system): bad major
| /usr/local/lib/eopenssl30/libssl.so.12.2 (openssl-3.0.3p1): bad major
Direct dependencies for debug-libdigidocpp-3.14.8 resolve to openssl-3.0.3p1 xalan-c-1.12 minizip-3.0.3 libdigidocpp-3.14.8 xml-security-c-2.0.4 libiconv-1.16p0 xerces-c-3.2.3
Full dependency tree is xml-security-c-2.0.4 xz-5.2.5p2 bzip2-1.0.8p0 xerces-c-3.2.3 xalan-c-1.12 openssl-3.0.3p1 minizip-3.0.3 libiconv-1.16p0 zstd-1.5.2 icu4c-71.1v0 lz4-1.9.3p0 libdigidocpp-3.14.8
pkg_create: can't continue

It's surely wrong to infer openssl-3.0.3p1 from
security/openssl/1.1>=1.1.1m which our current openssl-1.1.1op0
satisfies.

I added `>=1.1.1m' as a mental note since this port pulls in a build fix
against newer openssl (1.1.1n would build fine, newer failed).


Playing around I see that
LIB_DEPENDS += security/openssl/1.1<1.2
now pulls in openssl-1.0.2up4

===> Building package for libdigidocpp-3.14.8
Create /usr/ports/packages/amd64/all/libdigidocpp-3.14.8.tgz
Creating package libdigidocpp-3.14.8
|library lib/eopenssl11/crypto.11.6 not found
| /usr/lib/libcrypto.so.48.0 (system): bad major
| /usr/lib/libcrypto.so.49.0 (system): bad major
| /usr/local/lib/eopenssl/libcrypto.so.6.2 (openssl-1.0.2up4): bad major
|library lib/eopenssl11/ssl.11.6 not found
| /usr/lib/libssl.so.51.0 (system): bad major
| /usr/lib/libssl.so.52.0 (system): bad major
| /usr/local/lib/eopenssl/libssl.so.6.2 (openssl-1.0.2up4): bad major
Direct dependencies for libdigidocpp-3.14.8 resolve to openssl-1.0.2up4 xerces-c-3.2.3 xml-security-c-2.0.4 libiconv-1.16p0 minizip-3.0.3 xalan-c-1.12
Full dependency tree is lz4-1.9.3p0 openssl-1.0.2up4 xerces-c-3.2.3 xalan-c-1.12 bzip2-1.0.8p0 zstd-1.5.2 xml-security-c-2.0.4 libiconv-1.16p0 minizip-3.0.3 icu4c-71.1v0 xz-5.2.5p2
pkg_create: can't continue

Is our code tripping over a PKGSPEC ending in a version number?
Or is something wrong with how we roll security/openssl/?

No comments:

Post a Comment