On Jul 12, 2013, at 4:27 PM, David Cole wrote: > It’s a bad bad really bad idea to make the build of OpenSSL “in-house” as > you’ve been calling it... CMake SHOULD use the system openssl for > distributions that have one already.
I must have missed where ignoring a system version was implied. The question seems to be squarely on ones that do not have it, no? I've asked providers and even advocate using alternates, but at the end of the day one still needs to compile on a myriad of environments that don't have [insert dependency here]. > If there are problems with that approach, then the problems should be > addressed, but bringing a security component into “we have our own custom > build of that which you must use”-land is NEVER a good idea. Saying "that which you must use" is fallacious. It can be set up to be optionally utilized only when there is not one available. In much commercial industry, at least for most proprietary software I've ever worked with, it's a fundamental tenant of configuration control. For platforms that specify self-contained binaries or stand-alone installers, it's pretty much requisite. > Just my opinion. Feel free to flame me if I’m wrong. It's a common opinion to be had after using nice package management systems and even I've been guilty of it, but I think a substantial portion of industry is not able to rely on that. Look at nearly any piece of proprietary UNIX software you can buy in a box and you'll usually find it's exceptionally self-contained (if they're at all portable). If they're not a target audience, so be it. > I agree with your assessment that the build should produce a warning/error > somewhere if CMake is built without openssl support, but I think you’ll find > that a tough sell to some other important CMake devs. 😊 Bundled is the most convenient since it can be made to always -just work- if it's not detected. A error with a URL is the polite way to say action is required without bundling. Cheers! Sean
-- Powered by www.kitware.com Visit other Kitware open-source projects at http://www.kitware.com/opensource/opensource.html Please keep messages on-topic and check the CMake FAQ at: http://www.cmake.org/Wiki/CMake_FAQ Follow this link to subscribe/unsubscribe: http://public.kitware.com/cgi-bin/mailman/listinfo/cmake-developers
