RFE: www/apache2 +openssl97 variant to fix bug

[ecronin (Eric Cronin)]

OpenSSL 0.9.8 (security/openssl) seems to have a known mis-interaction with Apache and large uploads, which is particularly exercised by Subversion. see <​http://subversion.tigris.org/faq.html#ssl-negotiation-error> for a less than helpful confirmation.

Since OpenSSL 0.9.8 hasn't been fixed, the attached patch adds a +openssl97 variant to apache2 which I can confirm fixes the inability to commit large files into Subversion. It is uglier than I would like, but because /opt/local gets looked at before /opt/local/lib/openssl97/ it is necessary that the openssl port be deactivated for the configure and build of apache2 +openssl97 to pick the correct library. Additionally, I'm using the internal registry_active API to check that this is the case. I'm not opposed to someone smarter than me at Portfiles fixing any of these problems.

[tabithamc@…]

Please see my amendment to Ticket #13182. The openssl97 port is probably not needed any more (unless the Subversion problem with OpenSSL 0.9.8 is independent of the symbols error with Apache2 as described in more detail in Ticket #13182).

If OpenSSL 0.9.8 can be used successfully with Apache2 and Subversion, I would suggest that the openssl97 port be deprecated.

[ecronin (Eric Cronin)]

Yes, this ticket addresses a runtime issue between apache+mod_dav_svn and openssl 0.9.8. I haven't rebuilt apache on the production machine in several months so I'm unsure if the current letter revision of 0.9.8 has resolved the issue, but it is orthogonal to the problem in ticket #13182.

[(none)]

Milestone Port Enhancements deleted

[tobypeterson]

Is this still an issue?

[jmroot (Joshua Root)]

Replying to toby@…:

Is this still an issue?

Assuming not.