Bug 253480

Summary: [patch] dns/bind916: make libxml2 dependency optional
Product: Ports & Packages Reporter: Eugene Grosbein <eugen>
Component: Individual Port(s)Assignee: Mathieu Arnold <mat>
Status: Closed Not Accepted    
Severity: Affects Some People Keywords: easy, patch-ready
Priority: --- Flags: bugzilla: maintainer-feedback? (mat)
eugen: maintainer-feedback?
Version: Latest   
Hardware: Any   
OS: Any   
See Also: https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=263499
Attachments:
Description Flags
re-add options LIBXML2 none

Description Eugene Grosbein freebsd_committer freebsd_triage 2021-02-13 11:17:42 UTC 
Created attachment 222407 [details]
re-add options LIBXML2

The PR 186890 and following commit http://svnweb.freebsd.org/changeset/ports/347284 made libxml2 non-optional dependency in 2014 for bind99.

The problem mentioned in the PR 186890 is not reproducible for bind916. Time showed the libxml2 library has its own unpleasant backlog of security vulnerabilities. Upstream code of ISC BIND fully supports libxml2 as optional dependency. Let us make it optional dependency again for out port, too keeping it enabled by default to preserve POLA.

Attached patch re-adds option LIBXML2 so one could disable it. PORTREVISION not changed because default built is not affected.
Comment 1 Mathieu Arnold freebsd_committer freebsd_triage 2021-03-08 12:43:27 UTC 
I would say that BIND9 has probably more security advisories than libxml2, the BIND9 ports already have way too many options as it is, I don't like the idea of adding a new one.