Backporting to stretch: OpenSSL versions mix
Cantor, Scott
cantor.2 at osu.edu
Mon Mar 18 13:17:10 GMT 2019
On 3/18/19, 8:36 AM, "Pkg-shibboleth-devel on behalf of Etienne Dysli Metref" <pkg-shibboleth-devel-bounces+cantor.2=osu.edu at alioth-lists.debian.net on behalf of etienne.dysli-metref at switch.ch> wrote:
> IIRC, the SPv3 is not backwards-compatible with OpenSSL 1.0, is it?
Yes, it is.
> Also, it must use the same version of OpenSSL libcurl has been
> compiled against because they exchange SSL_CTX structs... So I could
> either rebuild everything against OpenSSL 1.0 or request a backport of
> libcurl4-openssl-dev on stretch that would use OpenSSL 1.1. What do
> you think?
I don't think you can just assume that everything using libcurl will support 1.1 , so using whatever is "standard" for that OS is the correct choice.
-- Scott
More information about the Pkg-shibboleth-devel
mailing list