Re: Linking coreutils against OpenSSL

To: "Theodore Ts'o" <tytso@mit.edu>
Cc: Luca Boccassi <bluca@debian.org>, Benjamin Barenblat <bbaren@debian.org>, debian-devel@lists.debian.org, Michael Stone <mstone@debian.org>
Subject: Re: Linking coreutils against OpenSSL
From: Florian Weimer <fw@deneb.enyo.de>
Date: Mon, 13 Nov 2023 19:19:49 +0100
Message-id: <[🔎] 87msvhwm62.fsf@mid.deneb.enyo.de>
In-reply-to: <[🔎] ZU15zWTTcB8Q917H@mit.edu> (Theodore Ts'o's message of "Thu, 9 Nov 2023 19:31:09 -0500")
References: <[🔎] 87v8aaa6ya.jfx@dymaxion.benjamin.barenblat.name> <[🔎] CAMw=ZnRa=qdvTxk_iSjMeuQ1LEVU6ga9R9=7Wp99zW4vevdijw@mail.gmail.com> <[🔎] ZU15zWTTcB8Q917H@mit.edu>

* Theodore Ts'o:

> If you can get upstream a patch so that coreutils could try to dlopen
> OpenSSL and use it if it is available, but skip it if it is not, that
> might be one way to avoid OpenSSL going into essential.  The challenge
> is that OpenSSL is not known for its ability to maintain a stable ABI,
> but if we only care about supporting a specific version of OpenSSL
> (the one which is shipped with coreutils) and given that the fallback
> is a slower sha256sum, which IMHO is *not* a disaster, perhaps it's
> doable?

I think the OpenSSL 3 ABI should be stable for quite some time.  It's
probably not even necessary to use dlvsym instead of dlsym because I
think OpenSSL upstream just adds new functions if they need new
behaviors.

Reply to:

References:
- Linking coreutils against OpenSSL
  - From: Benjamin Barenblat <bbaren@debian.org>
- Re: Linking coreutils against OpenSSL
  - From: Luca Boccassi <bluca@debian.org>
- Re: Linking coreutils against OpenSSL
  - From: "Theodore Ts'o" <tytso@mit.edu>

Prev by Date: Re: reference Debian package of multiple binaries sharing one man page
Next by Date: Bug#1055897: ITP: speakersafetyd -- speaker protection daemon for embedded Linux systems
Previous by thread: Re: Linking coreutils against OpenSSL
Next by thread: Re: Linking coreutils against OpenSSL
Index(es):
- Date
- Thread