On Mon, Oct 5, 2015 at 11:28 AM, Jason A. Donenfeld <zx...@gentoo.org> wrote: > I assume there are developers hard > at work adding the flag to each and every package.
Keep in mind that it isn't always a drop-in replacement. If it were we'd just make a virtual for libssl and you wouldn't need to mess with flags at all. Some upstreams may support libressl quickly, some might support it more slowly, and some may or may not ever support it. So, I suspect that this will look a lot like trying to switch over to libav - you might have to change what applications you're using in some cases if you really want to do it. As with libav you may see one library or the other "win" in the end which should make things simpler, but I suspect that in the meantime there may be a lot of bundling/etc. When changes require patches and upstream hasn't committed to merging them, that creates a potential maintenance burden and if package maintainers aren't willing to undertake this then we should probably figure out how that is going to work, unless we just plan to ignore these packages for now. If it is just a matter of sticking a simple sed in an ebuild and the libressl team doesn't mind dealing with rare breakage that is probably less of an issue. -- Rich
