Index: head/sysutils/spiped/Makefile
===================================================================
--- head/sysutils/spiped/Makefile	(revision 429218)
+++ head/sysutils/spiped/Makefile	(revision 429219)
@@ -1,43 +1,42 @@
 # $FreeBSD$
 
 PORTNAME=	spiped
 PORTVERSION=	1.5.0
-PORTREVISION=	2
+PORTREVISION=	3
 CATEGORIES=	sysutils security
 MASTER_SITES=	http://www.tarsnap.com/spiped/
 
 MAINTAINER=	cperciva@tarsnap.com
 COMMENT=	Daemon for creating secure symmetric pipes
 
 LICENSE=	BSD2CLAUSE
 LICENSE_FILE=	${WRKSRC}/COPYRIGHT
 
-# The spiped build only needs C99, but this will help to get us a compiler
-# which has support for AESNI on x86 systems
-USES=		compiler:c11 tar:tgz
-USE_OPENSSL=	YES
+# The spiped build only needs C99, but asking for compiler:c11 will help to
+# get us a compiler which has support for AESNI on x86 systems
+USES=		compiler:c11 tar:tgz ssl
 
 # Install into ${STAGEDIR}${PREFIX}
 MAKE_ARGS+=	BINDIR=${STAGEDIR}${PREFIX}/bin
 MAKE_ARGS+=	MAN1DIR=${STAGEDIR}${PREFIX}/man/man1
 
 # Force __BSD_VISIBLE on since it works and improves performance;
 # add -I and -L directories for OpenSSL
 MAKE_ARGS+=	CFLAGS="-O2 -D__BSD_VISIBLE -I${OPENSSLINC}"
 MAKE_ARGS+=	LDADD_EXTRA="-L${OPENSSLLIB}"
 
 PORTDOCS=	BUILDING CHANGELOG COPYRIGHT README STYLE
 PLIST_FILES=	bin/spipe \
 		bin/spiped \
 		man/man1/spipe.1.gz \
 		man/man1/spiped.1.gz
 
 USE_RC_SUBR=	spiped
 
 OPTIONS_DEFINE=	DOCS
 
 post-install:
 	@${MKDIR} ${STAGEDIR}${DOCSDIR}
 	${INSTALL_DATA} ${PORTDOCS:S,^,${WRKSRC}/,} ${STAGEDIR}${DOCSDIR}
 
 .include <bsd.port.mk>
Index: head/sysutils/spiped/files/spiped.in
===================================================================
--- head/sysutils/spiped/files/spiped.in	(revision 429218)
+++ head/sysutils/spiped/files/spiped.in	(revision 429219)
@@ -1,78 +1,80 @@
 #!/bin/sh
 
 # $FreeBSD$
 #
 # PROVIDE: spiped
 # REQUIRE: LOGIN
 # KEYWORD: shutdown
 #
 # Add the following lines to /etc/rc.conf.local or /etc/rc.conf
 # to enable this service:
 #
 # spiped_enable:	Set to YES to enable spiped.
 # spiped_pipes:		List of names of pipes to create.
 # spiped_pipe_X_mode:	"encrypt"/"client" or "decrypt"/"server".
 # spiped_pipe_X_source: Source address of pipe X.
 # spiped_pipe_X_target:	Target address of pipe X.
 # spiped_pipe_X_key:	Key file for pipe X.
+# spiped_pipe_X_flags:	Optional flags for pipe X. See spiped(1) for details.
 
 . /etc/rc.subr
 
 name="spiped"
 rcvar=spiped_enable
 
 load_rc_config $name
 
 : ${spiped_enable="NO"}
 
 command=%%PREFIX%%/bin/${name}
 start_cmd="${name}_start"
 stop_cmd="${name}_stop"
 
 spiped_start()
 {
 	local P PIDFILE MODE SOURCE TARGET KEY MODEFLAG
 
 	for P in ${spiped_pipes}; do
 		PIDFILE=/var/run/spiped_${P}.pid
 		eval MODE=\$spiped_pipe_${P}_mode
 		eval SOURCE=\$spiped_pipe_${P}_source
 		eval TARGET=\$spiped_pipe_${P}_target
 		eval KEY=\$spiped_pipe_${P}_key
+		eval FLAGS=\$spiped_pipe_${P}_flags
 		case "$MODE" in
 		encrypt | client)
 			MODEFLAG="-e"
 			;;
 		decrypt | server)
 			MODEFLAG="-d"
 			;;
 		*)
 			echo Invalid value for spiped_pipe_${P}_mode: $MODE
 			continue
 		esac
-		${command} -D $MODEFLAG -s $SOURCE -t $TARGET -k $KEY -p $PIDFILE
+		${command} -D $MODEFLAG -s $SOURCE -t $TARGET -k $KEY -p $PIDFILE $FLAGS
 	done
 }
 
 spiped_stop()
 {
 	local P PIDFILE
 
 	for P in ${spiped_pipes}; do
 		PIDFILE=/var/run/spiped_${P}.pid
 		if [ -f $PIDFILE ] ; then
 			rc_pid=$(check_pidfile $PIDFILE $command)
 		fi
 		if [ -z "$rc_pid" ]; then
 			[ -n "$rc_fast" ] && return 0
 			_run_rc_notrunning
 			return 1
 		fi
 		echo "Stopping ${name}."
 		kill $sig_stop $rc_pid
 		wait_for_pids $rc_pid
 		rm $PIDFILE
 	done
 }
 
 run_rc_command "$1"