Re: OpenSSL 1.1.0

To: debian-devel@lists.debian.org
Subject: Re: OpenSSL 1.1.0
From: Moritz Mühlenhoff <jmm@inutil.org>
Date: Wed, 29 Jun 2016 21:49:40 +0200
Message-id: <[🔎] slrnnn89ik.v9j.jmm@inutil.org>
References: <[🔎] 20160611123036.GA8321@roeckx.be> <[🔎] 20160614111158.GA3952@sliepen.org> <[🔎] CAJxTCxyZOXZt4XNeXLVPvQOTN0qF0soTG1jpSht5uBUfF3McmQ@mail.gmail.com>

Jérémy Lal <kapouer@melix.org> wrote
> The openssl release strategy page [1] states:
> Version 1.1.0 will be supported until 2018-04-30.
> Version 1.0.2 will be supported until 2019-12-31 (LTS).
>
> Considering the dates, upstream authors using openssl 1.0.2 might not
> migrate to the new api until 1.0.2 end of life.
> Is it reasonnable, for security and human resources sake, to carry hundreds
> of patches for a transition that will happen much more safely and naturally
> later ?

Certainly. 1.1 brings a lot of internal changes which will be beneficial in
the long run. And of course's there a wide range of 1.1 features which will b
e important during the lifetime of stretch (e.g. chacha20/poly1305 support).

Cheers,
        Moritz

Reply to:

Follow-Ups:
- Re: OpenSSL 1.1.0
  - From: Pau Garcia i Quiles <pgquiles@elpauer.org>

References:
- OpenSSL 1.1.0
  - From: Kurt Roeckx <kurt@roeckx.be>
- Re: OpenSSL 1.1.0
  - From: Guus Sliepen <guus@debian.org>
- Re: OpenSSL 1.1.0
  - From: Jérémy Lal <kapouer@melix.org>

Prev by Date: ITP: gnome-shell-extension-move-clock -- move clock extension for GNOME shell
Next by Date: Re: OpenSSL 1.1.0
Previous by thread: Re: OpenSSL 1.1.0
Next by thread: Re: OpenSSL 1.1.0
Index(es):
- Date
- Thread