Bug 269410 - www/apache24: add toption to build mod_tls
Summary: www/apache24: add toption to build mod_tls
Status: New
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Only Me
Assignee: freebsd-apache (Nobody)
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2023-02-08 13:31 UTC by Mina Galić
Modified: 2023-03-28 11:39 UTC (History)
1 user (show)

See Also:
bugzilla: maintainer-feedback? (apache)

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Mina Galić freebsd_triage 2023-02-08 13:31:08 UTC 
mod_tls is a rustls based replacement for mod_ssl that can be used, more or less, as drop-in replacement.
(at least mod_md can configure it)

we currently provide no option to build it.
Comment 1 Michael Osipov 2023-03-28 10:57:49 UTC 
(In reply to Mina Galić from comment #0)

This seems to be wrong, no? Docs say: "mod_tls, being written in C, used the Rust implementation of TLS named rustls via its C interface rustls-ffi. This gives memory safe cryptography and protocol handling at comparable performance."

So it does not replace mod_ssl with OpenSSL, it is another implementation.
Comment 2 Mina Galić freebsd_triage 2023-03-28 11:39:56 UTC 
you're, technically, right: it's a replacement in that it can be used instead of mod_ssl, and possibly alongside it, too.

not a replacement in: the Apache Httpd project has bet all its horses on this new thing.