Backporting to stretch: OpenSSL versions mix
Etienne Dysli Metref
etienne.dysli-metref at switch.ch
Tue Mar 19 09:54:14 GMT 2019
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
On 19/03/2019 10.38, wferi at niif.hu wrote:
> Try reverting c03764e9a6f1efe97053d1a1aa5a1a3a61a875d6. Looks like
> that fix requires OpenSSL 1.1.
Thanks! It builds without error now. :)
> Of course then you can expect occasional test failures, so
> backporting it to OpenSSL 1.0 would be preferable. This is a
> rather shady part of the code, the discussion died off without
> reaching conclusion.
I like crypto, but I also remember the lesson "don't write your own"
;) and since I'm not at ease with C++, I'll avoid introducing bugs here.
..
Would you prefer me to push a new version (~bpo9+2) of the packages
that I rebuild with OpenSSL 1.0 or redo version ~bpo9+1 and force-push
the debian/stretch-backports branch? This affects xml-security-c,
xmltooling and opensaml (the ones I already uploaded on mentors.d.n).
Etienne
-----BEGIN PGP SIGNATURE-----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=9B6v
-----END PGP SIGNATURE-----
More information about the Pkg-shibboleth-devel
mailing list