[oi-dev] OpenSSL 1.0.0 replacing 0.9.8 in userland-gate = massive headache
Jesus Cea
jcea at jcea.es
Sun Sep 4 15:17:45 UTC 2011
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 03/09/11 22:56, Alasdair Lumsden wrote:
> In Oracle's official userland-gate, they have replaced OpenSSL
> 0.9.8 with 1.0.0. This has massive ramifications, because
> everything linked against OpenSSL 0.9.8 breaks as soon as
> library/security/openssl gets upgraded, including pkg, which is all
> kinds of fun.
I think the right approach would to migrate to OpenSSL 1.0.0 and link
all the OI packages with it, but provide a 0.9.8 library for legacy
applications.
It is what I am doing now in my own machines:
"""
[root at babylon5 lib]# d *libssl*
lrwxrwxrwx 1 root root 15 Feb 9 2011 libssl.so -> libssl.so.1.0.0
- -r-xr-xr-x 1 root root 236060 Mar 26 2007 libssl.so.0.9.7
- -r-xr-xr-x 1 root root 319416 Feb 9 2011 libssl.so.0.9.8
- -r-xr-xr-x 1 root root 355028 Feb 9 2011 libssl.so.1.0.0
"""
The only problem with this is that OI should keep pushing security
fixes for the deprecated 0.9.8 version.
- --
Jesus Cea Avion _/_/ _/_/_/ _/_/_/
jcea at jcea.es - http://www.jcea.es/ _/_/ _/_/ _/_/ _/_/ _/_/
jabber / xmpp:jcea at jabber.org _/_/ _/_/ _/_/_/_/_/
. _/_/ _/_/ _/_/ _/_/ _/_/
"Things are not so easy" _/_/ _/_/ _/_/ _/_/ _/_/ _/_/
"My name is Dump, Core Dump" _/_/_/ _/_/_/ _/_/ _/_/
"El amor es poner tu felicidad en la felicidad de otro" - Leibniz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iQCVAwUBTmOWmZlgi5GaxT1NAQLufQP/eSGiYTKJgSYOQS//bs/OOXTwVpzOeSbc
6H9UV32/2VCBMiGFFi1O4qdBNVczsEPxb4NBPacoDYtBDwOw195VPnI1TNZX60cT
14jscws7EOB+mD2HtJ58y5wlko7SABbLG/QfjdoOjSSmidnA+BejGFzVy32YE29o
/OppqglBrRM=
=t79H
-----END PGP SIGNATURE-----
More information about the oi-dev
mailing list