[cmake-developers] Unexpected bad status for file DOWNLOAD for http://*.xz URLs
Christopher Sean Morrison
brlcad at mac.com
Fri Jul 12 21:08:37 EDT 2013
On Jul 12, 2013, at 4:27 PM, David Cole wrote:
> It’s a bad bad really bad idea to make the build of OpenSSL “in-house” as you’ve been calling it... CMake SHOULD use the system openssl for distributions that have one already.
I must have missed where ignoring a system version was implied. The question seems to be squarely on ones that do not have it, no? I've asked providers and even advocate using alternates, but at the end of the day one still needs to compile on a myriad of environments that don't have [insert dependency here].
> If there are problems with that approach, then the problems should be addressed, but bringing a security component into “we have our own custom build of that which you must use”-land is NEVER a good idea.
Saying "that which you must use" is fallacious. It can be set up to be optionally utilized only when there is not one available.
In much commercial industry, at least for most proprietary software I've ever worked with, it's a fundamental tenant of configuration control. For platforms that specify self-contained binaries or stand-alone installers, it's pretty much requisite.
> Just my opinion. Feel free to flame me if I’m wrong.
It's a common opinion to be had after using nice package management systems and even I've been guilty of it, but I think a substantial portion of industry is not able to rely on that. Look at nearly any piece of proprietary UNIX software you can buy in a box and you'll usually find it's exceptionally self-contained (if they're at all portable). If they're not a target audience, so be it.
> I agree with your assessment that the build should produce a warning/error somewhere if CMake is built without openssl support, but I think you’ll find that a tough sell to some other important CMake devs. 😊
Bundled is the most convenient since it can be made to always -just work- if it's not detected. A error with a URL is the polite way to say action is required without bundling.
Cheers!
Sean
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://public.kitware.com/pipermail/cmake-developers/attachments/20130712/5cf578ff/attachment.html>
More information about the cmake-developers
mailing list