Re: Bug#856004: khtml: please build-depen on libssl1.0-dev for Stretch
On 02/25/2017 09:39 PM, Sebastian Andrzej Siewior wrote:
> No. I assume that it might use QT's internal networking which is 1.0 and if
> they mix then bad things will happen.
>
> The two functions marked * have no error handling if the function is missing.
> Not using SSLv23_client_method() means that the the user of this class has to
> try again with TLSv1_client_method() member which will only allow a TLS1.0
> handshake. This is not what you want because TLS1.0 itself is deprecated and
> the v23 method would allow the maximum possible TLS level (which is currently
> 1.2).
But the question is whether SSL support is actually relevant in khtml at all.
As you can see from the list of reverse dependencies, there's actually not
much that is using khtml and the very few packages that use it are offline
only like SystemSettings or Kiten. So, I don't think any SSL code is actually
ever used.
I mean, if you really insist to rebuild khtml with libssl1.0-dev, then please
just let's go ahead in order to get the number of RC bugs for Stretch down.
Adrian
--
.''`. John Paul Adrian Glaubitz
: :' : Debian Developer - glaubitz@debian.org
`. `' Freie Universitaet Berlin - glaubitz@physik.fu-berlin.de
`- GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913
Reply to: