From mboxrd@z Thu Jan 1 00:00:00 1970 From: Nils Gillmann Subject: Re: libressl Date: Wed, 02 Mar 2016 22:00:31 +0100 Message-ID: <878u20ppcg.fsf@grrlz.net> References: <20160302120317.6d8d12b9@scratchpost.org> Mime-Version: 1.0 Content-Type: text/plain Return-path: Received: from eggs.gnu.org ([2001:4830:134:3::10]:40596) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1abDt4-0000HV-Mi for guix-devel@gnu.org; Wed, 02 Mar 2016 16:00:51 -0500 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1abDt1-0007vE-EX for guix-devel@gnu.org; Wed, 02 Mar 2016 16:00:50 -0500 Received: from plane.gmane.org ([80.91.229.3]:56000) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1abDt1-0007v9-7w for guix-devel@gnu.org; Wed, 02 Mar 2016 16:00:47 -0500 Received: from list by plane.gmane.org with local (Exim 4.69) (envelope-from ) id 1abDsz-0000mV-BU for guix-devel@gnu.org; Wed, 02 Mar 2016 22:00:45 +0100 Received: from xd9bb97c6.dyn.telefonica.de ([217.187.151.198]) by main.gmane.org with esmtp (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Wed, 02 Mar 2016 22:00:45 +0100 Received: from niasterisk by xd9bb97c6.dyn.telefonica.de with local (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Wed, 02 Mar 2016 22:00:45 +0100 List-Id: "Development of GNU Guix and the GNU System distribution." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: guix-devel-bounces+gcggd-guix-devel=m.gmane.org@gnu.org Sender: guix-devel-bounces+gcggd-guix-devel=m.gmane.org@gnu.org To: guix-devel@gnu.org Is it that easy though? I would be surprised, as the process - maybe, most likely, also due to the incredible weird structures of portage policies and politics - to move the packages in Gentoo portage from openssl to handle openssl AND libressl as a one or the other selection option, turns out to take some time now and some packages (in gentoo) do depend on it in a way that they need to be patched to fully work or they have security concerns, for example in the case of tor (or was it bitcoin? or both?). Tracking libressl on OpenBSD, Gentoo, and other bugtracker platforms should be something necessary to do and check before somebody goes ahead and fully replaces openssl with libressl here. I would be really glad to have a system with libressl, that's something I wanted for gentoo for some time now and I am still waiting for the whole meta KDE Plasma-5.5.5 and some other applications (I think 4 months ago it was ~30 I needed to wait for) to get libressl support. Could be changed now, as the general acceptance and the speed to get libressl into Gentoo portage packages picked up since, so maybe my warning is just based on me trying too much on Gentoo when it was still a side testing project, where it is now an official project. -- ng irc://loupsycedyglgamf.onion:67/~NiAsterisk https://psyced.org:34443/NiAsterisk/ EDN: https://wiki.c3d2.de/Echt_Dezentrales_Netz/en