[oi-dev] OpenSSL 1.0.0 replacing 0.9.8 in userland-gate = massive headache

Alasdair Lumsden alasdairrr at gmail.com
Sun Sep 4 00:13:32 UTC 2011

Hi Andrzej,

On 09/ 4/11 12:54 AM, Andrzej Szeszo wrote:
> I personally don't have a preference. We may as well go with 3 as
> Garrett is suggesting.

What about getting JDS, XNV, g11n, etc, all rebuilt?

alanc mentioned on IRC that our friendly upstream shipped openssl 0.9.8 
compatibility libraries for around 5 builds to allow them to get 
everything prepared internally, so we'd be doing better than Oracle if 
we somehow managed it in 1 build.

I think it'd just end up stalling things, so I definitely prefer going 
down the incremental approach.

> We could provide 0.9.8 compatibility libs inside 1.0.0 package during
> the transition period.

That's a nice idea, but thinking about it, is it not clearer to put them 
in a separate package? Otherwise the @1.0.0 version becomes misleading.

It also means we can obsolete the compatibility package properly via 
IPS, and lets people see clearly that the older library version is 
provided for compatibility.



More information about the oi-dev mailing list