OpenSSL 1.1 compatibility
Cantor, Scott
cantor.2 at osu.edu
Tue Jun 28 17:21:37 UTC 2016
> What are your plans for handling the upcoming OpenSSL 1.1 API changes?
I asked Rod to find some time to look at the issues but other priorities got in the way. Since 1.0.2 will be supported until 2020, I figured sometime by end of 2017 was sufficient. Given the impact of breaking changes, I can't really see how any Linux distribution could expect to stop supporting the old ABI overnight.
> I guess you read the Debian bug reports on the list (#828607, #828608):
> xml-security-c and xmltooling seem to be affected. Looks like most
> OpenSSL structures can't be allocated statically anymore, which means
> quite some churn, but no big complications. As far as I looked...
> However, backwards compatibility could be an issue.
I haven't reviewed it, but my experience tells me that it will not be simple, unless it's just a case of it being possible to access the structures, but only after allocating them indirectly. If they block access to them, I will likely lose functionality, possibly fatally.
-- Scott
More information about the Pkg-shibboleth-devel
mailing list