Hi all, I am about to push version 3.1 of OpenSSL into the core-testing repository. This time it is an actual minor update which is compatible with 3.0. That means there is no soname change and no rebuild should be required. However, packages might do runtime checks and ask for the specific version they were built with. OpenSSH is such a case. So far I have not noticed any other package having this check, but I guess we have to figure this out in [testing]. If you notice an issue, please let me know so I can add it to the todo list: https://archlinux.org/todo/openssl-31/ Greetings, Pierre -- Pierre Schmitz, https://pierre-schmitz.com
Pierre Schmitz <pierre@archlinux.de> on Wed, 2023/05/31 07:13:
However, packages might do runtime checks and ask for the specific version they were built with.
At least in the past we had this with freeradius... Guess it is safe to rebuild that too. -- main(a){char*c=/* Schoene Gruesse */"B?IJj;MEH" "CX:;",b;for(a/* Best regards my address: */=0;b=c[a++];) putchar(b-1/(/* Chris cc -ox -xc - && ./x */b/42*2-3)*42);}
On Wed, May 31, 2023 at 9:10 AM Christian Hesse <list@eworm.de> wrote:
Pierre Schmitz <pierre@archlinux.de> on Wed, 2023/05/31 07:13:
However, packages might do runtime checks and ask for the specific version they were built with.
At least in the past we had this with freeradius... Guess it is safe to rebuild that too.
Thanks for the hint. I have rebuild freeradius a put all packages into testing. I have updated all openssl and openssl-1.1 versions to their latest patch release before. -- Pierre Schmitz, https://pierre-schmitz.com
Thanks to everybody for testing the update. So far nothing major came up; only Postfix issued a warning regarding a potential rebuild). I'll move the release to the stable repos then. Greetings, Pierre On Wed, May 31, 2023 at 7:13 AM Pierre Schmitz <pierre@archlinux.de> wrote:
Hi all,
I am about to push version 3.1 of OpenSSL into the core-testing repository. This time it is an actual minor update which is compatible with 3.0. That means there is no soname change and no rebuild should be required.
However, packages might do runtime checks and ask for the specific version they were built with. OpenSSH is such a case. So far I have not noticed any other package having this check, but I guess we have to figure this out in [testing]. If you notice an issue, please let me know so I can add it to the todo list: https://archlinux.org/todo/openssl-31/
Greetings,
Pierre
-- Pierre Schmitz, https://pierre-schmitz.com
-- Pierre Schmitz, https://pierre-schmitz.com
participants (2)
-
Christian Hesse
-
Pierre Schmitz