[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Bug#754513: ITP: libressl -- SSL library, forked from OpenSSL

On 07/13/2014 02:17 PM, Matthias Urlichs wrote:
> Does gnutls have an openssl shim which actually works as a generic
> replacement? I dimly recall a couple of not-so-nice incompatibilities

As much as I understand, it's a complete alternative with a different
API, I don't think there's a compatibility layer (though I didn't look).

> while IMHO it's possible to safely mix openssl and libressl if we prepare
> for that (i.e. make sure that _everything_ in libressl is only exported 
> with properly versioned symbols), again IMHO the time and effort required
> for _that_ would be better spent evaluating the changes both projects made
> and then deciding which of the two shall be in Debian.
> 
> Both efforts have started fairly recently, so it's kind of premature to do
> that now; and while IANARTM (Release Team Member) transitioning the whole
> of Debian to libressl closer to the release would not be a good idea even
> if we decide it's (going to be) the better alternative.

I fully agree with what's above.

Thomas
Reply to: