Re: openssl transition

To: debian-devel@lists.debian.org
Subject: Re: openssl transition
From: Adam Majer <adamm@zombino.com>
Date: Thu, 3 Nov 2016 00:42:23 -0500
Message-id: <[🔎] f8878fda-6ad0-5d0c-d2b9-d493997e5c0f@zombino.com>
In-reply-to: <22545.62848.107440.929661@muikku.katiska.org>
References: <1477564821.7930.9.camel@jff-webhosting.net> <22545.62848.107440.929661@muikku.katiska.org>

On 27/10/16 07:39 AM, Antti J ä rvinen wrote:

Jörg Frings-Fürst writes:

 > I have read the discussion about the openssl transition here again.

Possibly referring to
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=827061 ??

 > - The parallel use of release 1.0 and 1.1 will not be pursued?

Might be highly problematic, having purposefully 2 different versions
of the same library in same process isn't the brightest idea. Real
world example is any application that links openssl and qt library.
Should you link different openssl version than the one used by qt
will ..produce interesting results :)

Well, depends how they are used. OpenSSL has versioned symbols, so usingbinaries that are linked via both is not an issue. For example,


  a.out
    - liba
       + openssl 1.0.2
    - libb
       + openssl 1.1.0

should work fine.

The problem is that quite a bit of software probably uses OpenSSL viadlopen interface and not via linking. This could result in problems. Qtcan be patched/rebuild to only look for the 1.0.2 library and resolvesymbols there. What about other cases?


- Adam

Reply to:

Prev by Date: Re: OpenSSL 1.1.0
Next by Date: Bug#843016: ITP: node-meow -- Command-line interface app helper
Previous by thread: Bug#842977: ITP: teiler -- Little script for screenshots and screencasts utilizing rofi, maim, ffmpeg
Next by thread: Bug#843016: ITP: node-meow -- Command-line interface app helper
Index(es):
- Date
- Thread