Created attachment 191847 [details] svn diff for net/haproxy ``` net/haproxy: Fix build with OpenSSL 1.1 - Allow building without NPN which was super- seeded by ALPN (security/openssl-devel) - Allow building with LibreSSL 2.7 (implements OpenSSL 1.1 API) PR: Approved by: (maintainer) ```
Didn't you already submit "building without NPN" in ports/225893? Speaking of LibreSSL support, can you please participate in http://www.serverphorums.com/read.php?10,1506745 thread to finish polishing this efford and finally include it upstream?
Created attachment 192967 [details] HAProxy fails to build with latest ports libressl 2.7.2 Both recent HAProxy versions from ports r1.7.10 and 1.7.11 fail to build against the latest ports version of libressl, 2.7.2
Please join discussion at haproxy ML: http://www.serverphorums.com/read.php?10,1529423 There is a patch available there which almost satisfies authors, so there is a little bit more effort needed to integrate it upstream.
During BSDCan 2018 the intention to update OpenSSL in base to 1.1.x branch was documented. Intention is to update 12-STABLE to current 1.1.0 and subsequently update it to 1.1.1 when that is released.
Created attachment 195694 [details] Adjusted for changes to openssl-compat.h in haproxy 1.7.11 libressl 2.7.4 I've updated Bernard's patch for haproxy 1.7.11 libressl 2.7.4 with two files, only change was placement of the modified lines in openssl-compat.h, while sock.c is unchanged but included for completeness. Thank-you Bernard.
Created attachment 195695 [details] For completeness sock.c in haproxy 1.7.11 libressl 2.7.4
A commit references this bug: Author: tobik Date: Thu Dec 13 06:11:25 UTC 2018 New revision: 487345 URL: https://svnweb.freebsd.org/changeset/ports/487345 Log: net/haproxy builds fine with OpenSSL 1.1.1 http://beefy11.nyi.freebsd.org/data/head-i386-default/p485718_s340864/logs/haproxy-1.8.14.log PR: 226956 Changes: head/net/haproxy/Makefile
Still doesn't build with LibreSSL though: src/ssl_sock.c:60:10: fatal error: 'openssl/async.h' file not found #include <openssl/async.h> ^~~~~~~~~~~~~~~~~ 1 error generated.
haproxy is 2.0.4, libressl-devel 3.0.0 and libressl 2.9.2. Builds fine with libressl. The error of comment8 ist correct fixed with: #if (OPENSSL_VERSION_NUMBER >= 0x1010000fL) && !defined(OPENSSL_NO_ASYNC) && !defined(LIBRESSL_VERSION_NUMBER) #include <openssl/async.h> #endif I close here, with overcome by events. Should there still problems, please, re-open.