[Pkg-openssl-devel] OpenSSL 1.1.0
Lisandro Damián Nicanor Pérez Meyer
perezmeyer at gmail.com
Fri Nov 11 16:55:23 UTC 2016
On viernes, 11 de noviembre de 2016 16:05:49 ART Jan Niehusmann wrote:
> On Fri, Nov 11, 2016 at 03:15:09PM +0100, Kurt Roeckx wrote:
> > At least something like that also came up with xmltooling.
> > It's probably caused by this:
> > curl_easy_setopt(easy, CURLOPT_SSL_CTX_FUNCTION, &sslCtxFunction_cb);
> >
> > You get an SSL_CTX from OpenSSL 1.1 and you call an OpenSSL 1.0
> > function with that handle. And libcurl really shouldn't have been
> > exposing such functions directly. If something like that is
> > really needed libcurl should have made a proper wrapper.
>
> Yes, I agree that libcurl shouldn't expose such functions. But it does,
> and it's to late to change that.
>
> By exposing that function, SSL_CTX became part of curl's ABI.
>
> So by linking to a different OpenSSL version with a different
> representation of SSL_CTX, curl indeed changed its ABI and must
> change SONAME, right?
That or switching it's B-D to libssl1.0-dev to avoid the breackage, but yes,
you are right.
--
Lisandro Damián Nicanor Pérez Meyer
http://perezmeyer.com.ar/
http://perezmeyer.blogspot.com/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: This is a digitally signed message part.
URL: <http://lists.alioth.debian.org/pipermail/pkg-openssl-devel/attachments/20161111/942bbc7a/attachment-0001.sig>
More information about the Pkg-openssl-devel
mailing list