Re: OpenSSL 1.1.0

To: Lisandro Damián Nicanor Pérez Meyer <perezmeyer@gmail.com>
Cc: debian-devel@lists.debian.org
Subject: Re: OpenSSL 1.1.0
From: Bernd Zeimetz <bernd@bzed.de>
Date: Tue, 15 Nov 2016 14:52:15 +0100
Message-id: <[🔎] 61e920682c1a46c3db3ff721a195c980@mail.recluse.de>
In-reply-to: <[🔎] 5780263.BR0va87zph@tonks>
References: <20160611123036.GA8321@roeckx.be> <[🔎] 9305320.iY2l6Dq22s@tonks> <[🔎] 20161114211624.GA7717@x61s.reliablesolutions.de> <[🔎] 5780263.BR0va87zph@tonks>

On 2016-11-15 14:43, Lisandro Damián Nicanor Pérez Meyer wrote:

I *really* disagree with that. Swtiching libssl-dev to providelibssl1.1-devmeans that some apps/libs will get automatically recompiled and some ofthem
might even not FTBFS (because for example, they are ready to use 1.1).

If a 1.1.0 ready package ftbfs when libssl-dev points to 1.0 it is a bugthatshould be fixed anyway. There is no real reason not to support bothversions.

That means we left the door open to crashes due to mixed libsslversions.
By letting libssl-dev provide libssl1.0 we do not open this door, andwe let
maintainers decide on a per-basis case.


And we have to maintain two openssl versions trough the release cycle.



--
 Bernd Zeimetz                            Debian GNU/Linux Developer
 http://bzed.de                                http://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F

Reply to:

Follow-Ups:
- Re: OpenSSL 1.1.0
  - From: Lisandro Damián Nicanor Pérez Meyer <perezmeyer@gmail.com>

References:
- Re: OpenSSL 1.1.0
  - From: Lisandro Damián Nicanor Pérez Meyer <perezmeyer@gmail.com>
- Re: OpenSSL 1.1.0
  - From: Jan Niehusmann <jan@gondor.com>
- Re: OpenSSL 1.1.0
  - From: Lisandro Damián Nicanor Pérez Meyer <perezmeyer@gmail.com>

Prev by Date: Re: OpenSSL 1.1.0
Next by Date: Re: OpenSSL 1.1.0
Previous by thread: Re: OpenSSL 1.1.0
Next by thread: Re: OpenSSL 1.1.0
Index(es):
- Date
- Thread