Bug#828608: Building with OpenSSL 1.0.2 is sufficient for stretch

Ferenc Wágner wferi at niif.hu
Sun Dec 11 14:13:58 UTC 2016

Control: tags -1 - patch

Adrian Bunk <bunk at stusta.de> writes:

> Not a perfect solution but sufficient for stretch is the patch below to 
> use OpenSSL 1.0.2
> [...]
>   libcurl4-openssl-dev,
>   liblog4shib-dev,
> - libssl-dev,
> + libssl1.0-dev | libssl-dev (<< 1.1.0~),

As previously established in this bug report, XMLTooling and cURL must
use the same OpenSSL version, because they exchange SSL_CTX pointers.
I think the only sensible way out would be introducing an OpenSSL 1.0
flavour of curl, and build-depending on libcurl4-openssl1.0-dev here.
See also https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844263.

More information about the Pkg-shibboleth-devel mailing list