|
Home > Archive > Debian Developers > October 2005 > Packages that need to be rebuilt agaisnt libssl0.9.8
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
Packages that need to be rebuilt agaisnt libssl0.9.8
|
|
| Aurelien Jarno 2005-10-06, 2:49 am |
| Christoph Martin a écrit :
> Changes:
> openssl (0.9.8-1) unstable; urgency=low
> .
> * New upstream release (closes: #311826)
The following list of packages needs to be rebuild, otherwise some of
the binary packages they built will be uninstallable after today mirror
push. Maybe bug reports has to be filled?
ace
afbackup
amap
anon-proxy
aolserver4-nsimap
aolserver4-nsopenssl
apache
apache2
apcupsd
approx
ardour
aria
arla
asmail
asterisk
asterisk-oh323
ayttm
bacula
balsa
bazaar
belpic
bibletime
bidwatcher
bincimap
bind9
bozohttpd
bzflag
cacti-cactid
cduce
centericq
cfengine
cfengine2
cipe
clamav
clamcour
cl-ssl
cogito
conserver
courier
cpqarrayd
ctrlproxy
curl
cyrus21-imapd
cyrus-sasl2
d4x
dar
darcs
davfs2
dcmtk
dillo
directory-administrator
dovecot
drscheme
dsniff
ejabberd
ekg
elfsign
elmo
encfs
entity
epic4
erlang
esmtp
ettercap
fetchmail
fireflier
freepops
fwbuilder
gabber
gambas
gbuffy
gkrellm-snmp
gnomesword
gnubiff
gnugk
gnustep-base
gq
hammerhead
heartbeat
heartbeat-2
heimdal
hostapd
hplip
htmldoc
httperf
httrack
hula
icecast2
imapfilter
inn2
ipmitool
ipsec-tools
ipv6calc
ircii-pana
irssi-snapshot
irssi-text
isakmpd
isdnutils
isync
jabber
jabber-jud
jabber-muc
jabber-yahoo
jigdo
jpilot
kannel
kdebase
kdenetwork
kdesdk
kdesvn
keepalived
keynote
kphone
krb4
kvirc
lasso
ldmud
libapache-mod-ssl
libaqbanking
libaws
libchipcard2
libdc0
libesmtp
libfwbuilder
libgcgi
libgwenhywfar
libldap-ruby
liblrdf
libmail-cclient-perl
libnasl
libnet-ssleay-perl
libnet-tclink-perl
libofx
libopenssl-ruby
libpam-mount
libpam-ssh
libprelude
libtorrent
libwww-curl-perl
libzorpll
licq
linux-ftpd-ssl
linuxtrade
lprng
m2crypto
mailsync
mapserver
medussa
mergeant
messagewall
mit-scheme
mixmaster
mnogosearch
monit
multisync
muscleframework
nagios-nrpe
nagios-plugins
nail
neon
neon0.23
nessus-core
nessus-plugins
netatalk
netkit-ftp-ssl
netkit-telnet-ssl
netmrg
net-snmp
newpki-client
newpki-lib
newpki-server
nmap
nsd
ntop
ntp
ocaml-ssl
ocurl
ohphone
omniorb4
openam
opendchub
openh323
openipmi
openldap2.2
openmcu
openntpd
opensc
openslp
openssh
openssh-krb5
openssl
openswan
openvpn
osiris
pantomime
partimage
pavuk
pdns
pennmush
perdition
pgadmin3
php4
php4-tclink
php5
php-imap
pidentd
pipsecd
postal
postfix
postgresql-7.4
postgresql-8.0
pound
prelude-lml
prelude-manager
prelude-nids
proftpd
pstngw
pure-ftpd
pwlib
pyopenssl
python2.1
python2.2
python2.3
python2.4
python-ldap
python-tclink
qca-tls
qpopper
qssl
qterm
rageircd
rapidsvn
raptor
rasqal
rdesktop
redland
redland-bindings
rocks
rsyncrypto
rtorrent
ruby1.8
ruby1.9
rudiments
sendmail
siege
sim
sip-tester
sitecopy
smssend
socat
somaplayer
sope
spamassassin
sqlrelay
ssldump
sslwrap
ssmtp
starttls
stone
streamtuner
stunnel
stunnel4
subversion
suck
sword
sylpheed
sylpheed-claws
sylpheed-claws-gtk2
sylpheed-gtk1
t38modem
tclcurl
tcltls
tcpdump
telak
tellico
tinc
tkrat
tmsnc
tn5250
tor
tqsllib
trustedqsl
ucd-snmp
ultrapossum-slapd
up-imapproxy
uw-imap
valknut
vorbis-tools
vsftpd
vtun
w3c-libwww
w3m
w3mmee
webauth
webfs
wget
wpasupplicant
wvstreams
xchat
xen
xine-ui
xmlsec1
xmms
xmms-scrobbler
xsupplicant
yaz
zmailer
zorp
--
.''`. Aurelien Jarno | GPG: 1024D/F1BCDB73
: :' : Debian developer | Electrical Engineer
`. `' aurel32@debian.org | aurelien@aurel32.net
`- people.debian.org/~aurel32 | www.aurel32.net
--
To UNSUBSCRIBE, email to debian-devel-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
| |
| Josselin Mouette 2005-10-06, 2:49 am |
| Le jeudi 06 octobre 2005 =E0 08:33 +0200, Aurelien Jarno a =E9crit :
> Christoph Martin a =E9crit :
>=20
> The following list of packages needs to be rebuild, otherwise some of=20
> the binary packages they built will be uninstallable after today mirror=20
> push. Maybe bug reports has to be filled?
[snip]
Furthermore, as OpenSSL symbols aren't versioned, this will lead to
random crashes if a binary ends up being linked to both version, won't
it?
--=20
.''`. Josselin Mouette /\./\
: :' : josselin.mouette@ens-lyon.org
`. `' joss@debian.org
`- Debian GNU/Linux -- The power of freedom
| |
| Marco d'Itri 2005-10-06, 2:49 am |
| On Oct 06, Aurelien Jarno <aurelien@aurel32.net> wrote:
> The following list of packages needs to be rebuild, otherwise some of
> the binary packages they built will be uninstallable after today mirror
> push. Maybe bug reports has to be filled?
308 bugs are too many.
Starting from next week send a few warning emails to the maintainers,
then we will see.
--
ciao,
Marco
| |
| Jonas Meurer 2005-10-06, 6:04 pm |
| On 06/10/2005 Aurelien Jarno wrote:
> Christoph Martin a écrit :
>
> The following list of packages needs to be rebuild, otherwise some of
> the binary packages they built will be uninstallable after today mirror
> push. Maybe bug reports has to be filled?
>
> conserver
this package does not exist in debian
> ldmud
that one exists only in stable and oldstable
here's the list of all packages except these two sorted by maintainers,
thanks to dd-list from devscripts:
Laszlo Boszormenyi (GCS) <gcs@debian.hu>
neon
Stefan Hornburg (Racke) <racke@linuxia.de>
courier
pure-ftpd
Richard A Nelson (Rick) <cowboy@debian.org>
sendmail
Eric Schwartz (Skif) <emschwar@debian.org>
yaz
Davide Puricelli (evo) <evo@debian.org>
xchat
Jacek �liwerski (rzyjontko) <rzyj@plusnet.pl>
elmo
Stefan Alfredsson <alfs@debian.org>
monit
Russ Allbery <rra@stanford.edu>
webauth
Domenico Andreoli <cavok@debian.org>
curl
libapache-mod-ssl
tclcurl
Richard Atterer <atterer@debian.org>
jigdo
w3c-libwww
SZALAY Attila <sasa@debian.org>
libzorpll
zorp
Julien BLACHE <jblache@debian.org>
d4x
Thomas Bushnell, BSG <tb@debian.org>
libofx
Miros/law L. Baran <baran@debian.org>
epic4
Dima Barsky <dima@debian.org>
cyrus-sasl2
m2crypto
Brian Bassett <brianb@debian.org>
entity
Dave Beckett <dajobe@debian.org>
raptor
rasqal
redland
redland-bindings
Ian Beckwith <ianb@nessie.mcc.ac.uk>
netkit-telnet-ssl
Luciano Bello <luciano@linux.org.ar>
davfs2
John V. Belmonte <jbelmonte@debian.org>
xmlsec1
Hilko Bengen <bengen@debian.org>
nail
Michael Biebl <biebl@teco.edu>
kdesvn
partimage
Bastian Blank <waldi@debian.org>
omniorb4
Blars Blarson <blarson@blars.org>
suck
Eduard Bloch <blade@debian.org>
encfs
Phil Blundell <pb@debian.org>
dillo
Regis Boudin <regis@boudin.name>
tellico
Nicolas Boullis <nboullis@debian.org>
isync
Jeremy T. Bouse <jbouse@debian.org>
fwbuilder
libesmtp
libfwbuilder
libgcgi
Ludovic Brenta <ludovic@ludovic-brenta.org>
libaws
Ben Burton <bab@debian.org>
kdesdk
Petr Cech <cech@debian.org>
pavuk
Christopher L Cheney <ccheney@debian.org>
vorbis-tools
Pierre Chifflier <chifflier@cpe.fr>
newpki-client
newpki-lib
newpki-server
Russell Coker <russell@coker.com.au>
postal
Jamin W. Collins <jcollins@asgardsrealm.net>
jabber
jabber-jud
jabber-muc
jabber-yahoo
Eric Cooper <ecc@cmu.edu>
approx
Julien Danjou <acid@debian.org>
telak
Frederik Dannemare <frederik@dannemare.net>
clamcour
LI Daobing <lidaobing@gmail.com>
qterm
Debian Apache Maintainers <debian-apache@lists.debian.org>
apache
apache2
Debian OpenOffice Team <debian-openoffice@lists.debian.org>
neon0.23
Debian Qt/KDE Maintainers <debian-qt-kde@lists.debian.org>
kdebase
kdenetwork
Murat Demirten <murat@debian.org>
ettercap
sim
Grzegorz Prokopski (Debian Developer) <gadek@debian.org>
opendchub
Jean-Francois Dive <jef@debian.org>
isakmpd
Eric Dorland <eric@debian.org>
opensc
Paul Dwerryhouse <paul@dwerryhouse.com.au>
kannel
Dirk Eddelbuettel <edd@debian.org>
linuxtrade
Peter Eisentraut <petere@debian.org>
licq
Rene Engelhard <rene@debian.org>
aria
Raphael Enrici <blacknoz@club-internet.fr>
pgadmin3
Carey Evans <careye@spamcop.net>
tn5250
Eric Evans <eevans@sym-link.com>
xsupplicant
Peter Van Eynde <pvaneynd@debian.org>
cl-ssl
Tomas Fasth <tomfa@debian.org>
rdesktop
Duncan Findlay <duncf@debian.org>
spamassassin
José Fonseca <j_r_fonseca@yahoo.co.uk>
esmtp
Romain Francoise <rfrancoise@debian.org>
tcpdump
Jochen Friedrich <jochen@scram.de>
net-snmp
ucd-snmp
Wilmer van der Gaast <lintux@debian.org>
ctrlproxy
Hector Garcia <hector@debian.org>
zmailer
David Moreno Garza <damog@debian.org>
xmms
RISKO Gergely <risko@debian.org>
starttls
Daniel Glassey <wdg@debian.org>
bibletime
gnomesword
sword
Henning Glawe <glaweh@debian.org>
libgwenhywfar
Francois-Denis Gonthier <neumann@lostwebsite.net>
erlang
Stephen Gran <sgran@debian.org>
clamav
Debian PERL Group <pkg-perl-maintainers@lists.alioth.debian.org>
libwww-curl-perl
Yu Guanghui <ygh@debian.org>
qpopper
Marc Haber <mh+debian-packages@zugschlus.de>
rageircd
Fredrik Hallenberg <hallon@debian.org>
asmail
Chris Halls <halls@debian.org>
ayttm
Chris Hanson <cph@debian.org>
mit-scheme
Sam Hartman <hartmans@debian.org>
openssh-krb5
Peter Hawkins <peterh@debian.org>
python-ldap
Adam Heath <doogie@brainfood.com>
xen
Tollef Fog Heen <tfheen@debian.org>
cfengine
Dan Helfman <witten@debian.org>
libnet-tclink-perl
php4-tclink
python-tclink
Gregor Hoffleit <flight@debian.org>
python2.1
Henrique de Moraes Holschuh <hmh@debian.org>
cyrus21-imapd
hplip
Simon Horman <horms@debian.org>
heartbeat
heartbeat-2
perdition
Alex Hudson <home@alexhudson.com>
hula
Philipp Hug <debian@hug.cx>
mnogosearch
Qingning Huo <qhuo@mayhq.co.uk>
libtorrent
rtorrent
Ervin Hearn III <noltar@korongil.net>
pennmush
Alberto Gonzalez Iniesta <agi@inittab.org>
openvpn
Daniel Jacobowitz <dan@debian.org>
ircii-pana
vsftpd
LENART Janos <ocsi@debian.org>
smssend
Sam Johnston <samj@aos.net.au>
pound
Isaac Jones <ijones@debian.org>
darcs
LaMont Jones <lamont@debian.org>
bidwatcher
bind9
nmap
postfix
Robert Jordens <jordens@debian.org>
ardour
liblrdf
Takuo KITAME <kitame@debian.org>
stone
Morgon Kanter <morgon@surgo.net>
vtun
Steve Kemp <skx@debian.org>
dsniff
Bastian Kleineidam <calvin@debian.org>
libpam-mount
Matthias Klose <doko@debian.org>
pantomime
python2.2
python2.3
python2.4
rapidsvn
rudiments
sqlrelay
Gerd Knorr <kraxel@debian.org>
webfs
Sebastian Kuzminsky <seb@highlab.com>
cogito
Noèl Köthe <noel@debian.org>
hammerhead
openipmi
wget
Julien LEMOINE <speedblue@debian.org>
centericq
Aurelien Labrosse <aurelien.labrosse@free.fr>
libpam-ssh
Ryszard Lach <rla@debian.org>
siege
Torsten Landschoff <torsten@debian.org>
openldap2.2
Siggi Langauf <siggi@debian.org>
xine-ui
Andrew Lau <netsnipe@users.sourceforge.net>
balsa
Simon Law <sfllaw@debian.org>
ssldump
wvstreams
Julien Lemoine <speedblue@debian.org>
stunnel
stunnel4
Micha Lenk <micha@lenk.info>
libaqbanking
Sebastian Ley <ley@debian.org>
sope
Faidon Liambotis <faidon@cube.gr>
hostapd
Jeff Licquia <licquia@debian.org>
htmldoc
Francesco Paolo Lovergine <frankie@debian.org>
aolserver4-nsopenssl
imapfilter
proftpd
Ola Lundqvist <opal@debian.org>
ntop
Masamichi Goudge M.D. <Matanuki@Goudge.org>
ipv6calc
Fetchmail Maintainers <pkg-fetchmail-maint@lists.alioth.debian.org>
fetchmail
Debian php Maintainers <pkg-php-maint@lists.alioth.debian.org>
php-imap
php4
php5
Debian PowerDNS Maintainers <powerdns-debian@workaround.org>
pdns
Martin Maurer <fireflier@gibraltar.at>
fireflier
Brian May <bam@debian.org>
dar
heimdal
Rene Mayrhofer <rmayr@debian.org>
openswan
Jonathan McDowell <noodles@earth.li>
sslwrap
Kyle McMartin <kyle@debian.org>
wpasupplicant
Ricardo Javier Cardenes Medina <rcardenes@debian.org>
pipsecd
Samuel Mimram <smimram@debian.org>
ocaml-ssl
Hamish Moffatt <hamish@debian.org>
tqsllib
trustedqsl
Juan Manuel Garcia Molina <juanma@debian.org>
gkrellm-snmp
Ricardo Mones <mones@aic.uniovi.es>
sylpheed
sylpheed-claws
sylpheed-claws-gtk2
sylpheed-gtk1
Mattia Monga <monga@debian.org>
tkrat
Gustavo R. Montesino <grmontesino@ig.com.br>
mergeant
Jan Niehusmann <jan@debian.org>
qca-tls
qssl
Mattias Nordstrom <nordstrom@realnode.com>
bozohttpd
Søren Boll Overgaard <boll@debian.org>
tcltls
Marcin Owsiany <porridge@debian.org>
ekg
Goedson Teixeira Paixao <goedson@debian.org>
gabber
Peter Palfrader <weasel@debian.org>
mixmaster
tor
Gerrit Pape <pape@smarden.org>
bincimap
Brett Parker <iDunno@sommitrealweird.co.uk>
xmms-scrobbler
David Pashley <david@davidpashley.com>
irssi-snapshot
irssi-text
Guilherme de S. Pastore <guilherme.pastore@terra.com.br>
subversion
Javier Fernandez-Sanguino Pen~a <jfs@computer.org>
libnasl
nessus-core
nessus-plugins
Thomas Petazzoni <thomas.petazzoni@enix.org>
cduce
Frederic Peters <fpeters@debian.org>
lasso
Martin Pitt <mpitt@debian.org>
postgresql-7.4
postgresql-8.0
Ari Pollak <ari@debian.org>
streamtuner
Andrew Pollock <apollock@debian.org>
elfsign
Tomas Pospisek <tpo_deb@sourcepole.ch>
mailsync
Mickael Profeta <profeta@debian.org>
libprelude
prelude-lml
prelude-manager
prelude-nids
Debian GIS Project <pkg-grass-devel@lists.alioth.debian.org>
mapserver
Mark Purcell <msp@debian.org>
kphone
Cai Qian <caiqian@debian.org>
linux-ftpd-ssl
netkit-ftp-ssl
Ganesan Rajagopal <rganesan@debian.org>
ipsec-tools
openslp
Petter Reinholdtsen <pere@debian.org>
ipmitool
Tim Riker <Tim@Rikers.org>
bzflag
Sebastian Rittau <srittau@debian.org>
netatalk
Xavier Roche <roche@httrack.com>
httrack
José L. Redrejo RodrÃ_guez <jredrejo@edu.juntaextremadura.net>
gambas
Kurt Roeckx <kurt@roeckx.be>
openntpd
Andrés Roldán <aroldan@debian.org>
amap
Ludovic Rousseau <rousseau@debian.org>
jpilot
muscleframework
Miriam Ruiz <little_miry@yahoo.es>
tmsnc
Anibal Monsalve Salazar <anibal@debian.org>
pidentd
ssmtp
Juergen Salk <juergen.salk@gmx.de>
dcmtk
Andres Salomon <dilinger@voxel.net>
messagewall
Roberto C. Sanchez <roberto@familiasanchez.net>
httperf
Pasi Savilaakso <pasi.savilaakso@pp.inet.fi>
libdc0
valknut
Mikael Sennerholm <mikan@debian.org>
arla
krb4
multisync
Riccardo Setti <giskard@autistici.org>
aolserver4-nsimap
somaplayer
Thomas Seyrat <tomasera@debian.org>
socat
Shachar Shemesh <debianpkg@shemesh.biz>
rsyncrypto
Adeodato Simó <asp16@alu.ua.es>
gbuffy
Martin Sjogren <sjogren@debian.org>
pyopenssl
Guus Sliepen <guus@debian.org>
rocks
tinc
Paul Slootman <paul@debian.org>
isdnutils
Craig Small <csmall@debian.org>
lprng
Jonas Smedegaard <dr@jones.dk>
icecast2
libmail-cclient-perl
uw-imap
Reed Snellenberger <rsnellenberger@houston.rr.com>
sitecopy
David Spreen <netzwurm@debian.org>
anon-proxy
Uwe Steinmann <steinm@debian.org>
netmrg
Roland Stigge <stigge@antcom.de>
gnubiff
Andrew Stribblehill <ads@debian.org>
cfengine2
Stevie Strickland <sstrick@debian.org>
drscheme
Ondřej Surý <ondrej@debian.org>
nsd
Matt Taggart <taggart@debian.org>
cpqarrayd
Jose Luis Tallon <jltallon@adv-solutions.net>
bacula
up-imapproxy
Masato Taruishi <taru@valinux.co.jp>
ultrapossum-slapd
Enrico Tassi <gareuselesinge@users.sourceforge.net>
freepops
ocurl
Debian NTP Team <debian-ntp@gag.com>
ntp
Debian OpenSSL Team <pkg-openssl-devel@lists.alioth.debian.org>
openssl
Debian VoIP Team <pkg-voip-maintainers@lists.alioth.debian.org>
asterisk
asterisk-oh323
gnugk
ohphone
openam
openh323
openmcu
pstngw
pwlib
t38modem
Jason Thomas <jason@debian.org>
nagios-nrpe
Samuele Giovanni Tonon <samu@debian.org>
apcupsd
medussa
Guido Trotter <ultrotter@debian.org>
directory-administrator
gq
nagios-plugins
Fumitoshi UKAI <ukai@debian.or.jp>
ruby-defaults
w3m
w3mmee
Robin Verduijn <robin@debian.org>
kvirc
Wouter Verhelst <wouter@debian.org>
belpic
Matthew Vernon <matthew@debian.org>
openssh
Thomas Viehmann <tv@beamnet.de>
libchipcard2
Jaldhar H. Vyas <jaldhar@debian.org>
dovecot
Martin Waitz <tali@debian.org>
keynote
Rob Weir <rweir@ertius.org>
bazaar
Torsten Werner <twerner@debian.org>
afbackup
ejabberd
Jamie Wilkinson <jaq@debian.org>
osiris
Alexander Wirt <formorer@debian.org>
keepalived
ARAKI Yasuhiro <ar@debian.org>
sip-tester
Stephen Zander <gibreel@debian.org>
libnet-ssleay-perl
Marco d'Itri <md@linux.it>
inn2
sean finney <seanius@debian.org>
cacti-cactid
Debian ACE+TAO maintainers <pkg-ace-devel@lists.alioth.debian.org>
ace
Debian GNUstep maintainers <pkg-gnustep-maintainers@lists.alioth.debian.org>
gnustep-base
Sam Hocevar (Debian packages) <sam+deb@zoy.org>
cipe
akira yamada <akira@debian.org>
libldap-ruby
ruby1.8
ruby1.9
....
jonas
--
To UNSUBSCRIBE, email to debian-devel-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
| |
| Henrique de Moraes Holschuh 2005-10-06, 6:04 pm |
| On Thu, 06 Oct 2005, Aurelien Jarno wrote:
> The following list of packages needs to be rebuild, otherwise some of
> the binary packages they built will be uninstallable after today mirror
> push. Maybe bug reports has to be filled?
Next time, please give us at least a three-days advance warning...
--
"One disk to rule them all, One disk to find them. One disk to bring
them all and in the darkness grind them. In the Land of Redmond
where the shadows lie." -- The Silicon Valley Tarot
Henrique Holschuh
--
To UNSUBSCRIBE, email to debian-devel-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
| |
| Henrique de Moraes Holschuh 2005-10-06, 6:04 pm |
| Is there any chances of versioning openssl symbols properly?
I am not asking for 0.9.7 and 0.9.8 to coexist (although versioned symbols
would make that trivial), but PLEASE version the symbols.
Suggested version tag: OPENSSL_0_9_8
--
"One disk to rule them all, One disk to find them. One disk to bring
them all and in the darkness grind them. In the Land of Redmond
where the shadows lie." -- The Silicon Valley Tarot
Henrique Holschuh
--
To UNSUBSCRIBE, email to debian-devel-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
| |
| sean finney 2005-10-06, 6:04 pm |
| On Thu, Oct 06, 2005 at 08:33:19AM +0200, Aurelien Jarno wrote:
> Christoph Martin a écrit :
>
> The following list of packages needs to be rebuild, otherwise some of
> the binary packages they built will be uninstallable after today mirror
> push. Maybe bug reports has to be filled?
this seems to me like something that would qualify as a "significant
transition", and i'm wondering why this was not announced ahead of time?
i don't think it's good practice to upload anything that breaks over
300 packages in debian without at least some preliminary
announcement/discussion.
and furthermore, there are some of us who have been quietly waiting for
things to settle down from the previous major transitions before doing
our own, at the request of the release team.
sean
ps - i'd also like to second the request for symbol versioning.
--
| |
| Henrique de Moraes Holschuh 2005-10-06, 6:04 pm |
| On Thu, 06 Oct 2005, Alastair McKinstry wrote:
> On Thu, 2005-10-06 at 11:24 -0300, Henrique de Moraes Holschuh wrote:
>
> minor point, but in the name of consistency could we use version tags of
> the form OPENSSL_0.9.8, matching e.g. GLIBC_2.0 , etc.
Sure. As long as it is versioned and the version changes with the ABI, I
will be very happy :-)
--
"One disk to rule them all, One disk to find them. One disk to bring
them all and in the darkness grind them. In the Land of Redmond
where the shadows lie." -- The Silicon Valley Tarot
Henrique Holschuh
--
To UNSUBSCRIBE, email to debian-devel-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
| |
| Frank Küster 2005-10-06, 6:04 pm |
| sean finney <seanius@debian.org> wrote:
> and furthermore, there are some of us who have been quietly waiting for
> things to settle down from the previous major transitions before doing
> our own, at the request of the release team.
I'm only following d-d-a, -private, and -devel, but that only partly,
and *I* have not yet read anywhere that transitions are allowed again at
all. If they are and I had known, it would have saved me quite some
work...=20
Regards, Frank
--=20
Frank K=FCster
Inst. f. Biochemie der Univ. Z=FCrich
Debian Developer
| |
| Alastair McKinstry 2005-10-06, 6:04 pm |
| On Thu, 2005-10-06 at 11:24 -0300, Henrique de Moraes Holschuh wrote:
> Is there any chances of versioning openssl symbols properly?
>
> I am not asking for 0.9.7 and 0.9.8 to coexist (although versioned symbols
> would make that trivial), but PLEASE version the symbols.
>
> Suggested version tag: OPENSSL_0_9_8
minor point, but in the name of consistency could we use version tags of
the form OPENSSL_0.9.8, matching e.g. GLIBC_2.0 , etc.
Regards
Alastair
> --
> "One disk to rule them all, One disk to find them. One disk to bring
> them all and in the darkness grind them. In the Land of Redmond
> where the shadows lie." -- The Silicon Valley Tarot
> Henrique Holschuh
>
>
--
To UNSUBSCRIBE, email to debian-devel-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
| |
| Andreas Barth 2005-10-06, 6:04 pm |
| * Frank Küster (frank@debian.org) [051006 17:13]:
> sean finney <seanius@debian.org> wrote:
>
>
> I'm only following d-d-a, -private, and -devel, but that only partly,
> and *I* have not yet read anywhere that transitions are allowed again at
> all. If they are and I had known, it would have saved me quite some
> work...
You are right - as so often.
People are still required to speak with the release team first. But some
people prefer to make all of our life harder then necessary.
Please again: If someone wants to make any transition, please speak
*first* with the release team. Do not just assume you can upload just
anything. We really want to finish the c++-abi-transition first.
Cheers,
Andi
--
To UNSUBSCRIBE, email to debian-devel-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
| |
| Henrique de Moraes Holschuh 2005-10-06, 6:04 pm |
| On Thu, 06 Oct 2005, Josselin Mouette wrote:
> Furthermore, as OpenSSL symbols aren't versioned, this will lead to
> random crashes if a binary ends up being linked to both version, won't
> it?
Oh crap!
OpenSSL *must* version its symbols, it is the kind of lib that ends up
linked to libs that end up linked into other libs or even worse, end up in
nsswitch modules and thus shadow-linked to every dang thing in the system.
--
"One disk to rule them all, One disk to find them. One disk to bring
them all and in the darkness grind them. In the Land of Redmond
where the shadows lie." -- The Silicon Valley Tarot
Henrique Holschuh
--
To UNSUBSCRIBE, email to debian-devel-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
| |
| Joey Hess 2005-10-06, 6:04 pm |
| Jonas Meurer wrote:
>
> this package does not exist in debian
It's in non-free
--
see shy jo
| |
| Christoph Martin 2005-10-06, 8:49 pm |
| Andreas Barth schrieb:
> * Frank Küster (frank@debian.org) [051006 17:13]:
>
>
> You are right - as so often.
>
> People are still required to speak with the release team first. But some
> people prefer to make all of our life harder then necessary.
>
> Please again: If someone wants to make any transition, please speak
> *first* with the release team. Do not just assume you can upload just
> anything. We really want to finish the c++-abi-transition first.
Sorry for that. I missed the message about not doing library
transitions. My fault. But I also do not really understand why so many
packages need to be rebuild since libssl0.9.7 will be in the archive
too. We had the same scheme with libssl0.9.6 and libssl0.9.7. Sarge
released with some packages still linked against libssl0.9.6. Only the
new to build packages link against the new library.
I however understand the problem with different libraries linked against
different versions of openssl. But I don't think that versioning the
symbols in Debian alone would be such a good idea. Than we would be
incompatible with other distributions. All LSB connected distros should
do it the same way.
Release team: If you think it would be the right thing to remove openssl
0.9.8 from sid, feel free to do it. I did the update, because a lot of
people bugged me about the new version and upstream only recommends this
version. It also closes a grave security bug.
Christoph
--
========================================
====================================
Christoph Martin, EDV der Verwaltung, Uni-Mainz, Germany
Internet-Mail: Christoph.Martin@Uni-Mainz.DE
Telefon: +49-6131-3926337
| |
| Jeroen van Wolffelaar 2005-10-06, 8:49 pm |
| On Thu, Oct 06, 2005 at 10:20:12PM +0200, Christoph Martin wrote:
> a lot of people bugged me about the new version and upstream only recommends
> this version. It also closes a grave security bug.
Hm, that wasn't listed in the changelog. Anyway, there hasn't been a security
advisory about openssl recently, did you backport a patch to the sarge version
(and prefereably also, to the woody version) and informed the security team? I
noticed you just requested help for maintaining openssl, so I can imagine that
it's been hard to find to come up with a patch, but it would at least be
beneficial to at least document such security issues, by informing security
team, filing an RC bug on your own package, and mentioning the CVE ID (or at
the very least, a short description of the bug fixed) in your changelog entry.
Thanks,
--Jeroen
--
Jeroen van Wolffelaar
Jeroen@wolffelaar.nl (also for Jabber & MSN; ICQ: 33944357)
http://Jeroen.A-Eskwadraat.nl
--
To UNSUBSCRIBE, email to debian-devel-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
| |
| Moritz Muehlenhoff 2005-10-06, 8:49 pm |
| In linux.debian.devel, you wrote:
>
> Hm, that wasn't listed in the changelog. Anyway, there hasn't been a security
> advisory about openssl recently, did you backport a patch to the sarge version
> (and prefereably also, to the woody version) and informed the security team?
Christoph is probably referring to CAN-2005-2946 and bug #314465, which is about
the fact that MD5 is the default digest algo in openssl.
This bug has an inflated severity, it's not overly urgent. There have been several
collision attacks on MD5 (i.e. you can create a foo/bar pair, which share a
common hash), but no second preimage attacks have been demonstrated so
far (i.e. creating a bar, which shares a hash with a given foo).
Several exploits have been derived from the basic collision attacks, though, (google
for Kaminski or Daum/Lucks for some cool demonstrations), but it's not as grave
as it might appear. Upgrading to SHA-1 is still a good idea, of course, but no
need to break things more than necessary.
Cheers,
Moritz
--
To UNSUBSCRIBE, email to debian-devel-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
| |
| Anthony DeRobertis 2005-10-06, 8:49 pm |
| Moritz Muehlenhoff wrote:
> Upgrading to SHA-1 is still a good idea, of course,
Correct me if I'm wrong, but haven't there been collision attacks on
SHA-1, too?
--
To UNSUBSCRIBE, email to debian-devel-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
| |
| Nathanael Nerode 2005-10-07, 2:57 am |
| martin@uni-mainz.de wrote:
> But I don't think that versioning the
>symbols in Debian alone would be such a good idea. Than we would be
>incompatible with other distributions.
Well, only in one direction if I remember my versioning rules correctly.
Consider the following cases:
* binary built against unversioned libssl from other distro, running with
versioned libssl on Debian
Breaks because it can't find the symbols.
* binary built against versioned libssl on Debian, running with unversioned
libssl on other distro
Works, because if it can't find a versioned symbol, it tries the unversioned
symbol.
This can be fixed even more by keeping available one version of libssl with
unversioned symbols, and versioning the symbols on all other versions. Then
binaries from other distros will work as long as the unversioned-symbol
version is available (and compatible, of course).
--
Nathanael Nerode <neroden@twcny.rr.com>
Make sure your vote will count.
http://www.verifiedvoting.org/
--
To UNSUBSCRIBE, email to debian-devel-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
| |
| Russ Allbery 2005-10-07, 2:57 am |
| Nathanael Nerode <neroden@twcny.rr.com> writes:
> Well, only in one direction if I remember my versioning rules correctly.
> Consider the following cases:
> * binary built against unversioned libssl from other distro, running with
> versioned libssl on Debian
> Breaks because it can't find the symbols.
At least in my testing, binaries built against an unversioned library work
fine with a versioned library. Maybe I wasn't testing properly?
--
Russ Allbery (rra@stanford.edu) <http://www.eyrie.org/~eagle/>
--
To UNSUBSCRIBE, email to debian-devel-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
| |
| Henrique de Moraes Holschuh 2005-10-07, 2:57 am |
| On Thu, 06 Oct 2005, Russ Allbery wrote:
> At least in my testing, binaries built against an unversioned library work
> fine with a versioned library. Maybe I wasn't testing properly?
You are correct, they work just fine. DEPENDING on the version of ld.so,
you might get a helpful warning, but that's about it.
--
"One disk to rule them all, One disk to find them. One disk to bring
them all and in the darkness grind them. In the Land of Redmond
where the shadows lie." -- The Silicon Valley Tarot
Henrique Holschuh
--
To UNSUBSCRIBE, email to debian-devel-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
| |
| Moritz Muehlenhoff 2005-10-07, 7:50 am |
| In linux.debian.devel, you wrote:
> Moritz Muehlenhoff wrote:
>
> Correct me if I'm wrong, but haven't there been collision attacks on
> SHA-1, too?
Yes, but to public knowledge they're only feasible with government grade
hardware, while MD5 is subject to attacks with much lower complexity.
There might be an AES-like competition for the next-gen hash in 2006, but
I'm not sure if it has been decided yet.
Cheers,
Moritz
--
To UNSUBSCRIBE, email to debian-devel-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
| |
| Domenico Andreoli 2005-10-07, 7:50 am |
| On Thu, Oct 06, 2005 at 06:29:55PM +0200, Andreas Barth wrote:
> * Frank Küster (frank@debian.org) [051006 17:13]:
>
> You are right - as so often.
>
> People are still required to speak with the release team first. But some
> people prefer to make all of our life harder then necessary.
>
> Please again: If someone wants to make any transition, please speak
> *first* with the release team. Do not just assume you can upload just
> anything. We really want to finish the c++-abi-transition first.
is the run for openssl 0.9.8 started anyway? i have curl and
libapache-mod-ssl ready for the upload.
ciao
domenico
-----[ Domenico Andreoli, aka cavok
--[ http://people.debian.org/~cavok/gpgkey.asc
---[ 3A0F 2F80 F79C 678A 8936 4FEE 0677 9033 A20E BC50
--
To UNSUBSCRIBE, email to debian-devel-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
| |
| Henrique de Moraes Holschuh 2005-10-07, 7:50 am |
| Xref: number1.nntp.dca.giganews.com linux.debian.devel:179214
On Fri, 07 Oct 2005, Domenico Andreoli wrote:
> is the run for openssl 0.9.8 started anyway? i have curl and
> libapache-mod-ssl ready for the upload.
I am going to hold out and wait at least a week. I want to know what the
release team will do re. 0.9.8.
PLEASE, let's take the opportunity to enable symbol versioning. That way,
there will NOT be any need for a new transition when 0.9.9 is out.
--
"One disk to rule them all, One disk to find them. One disk to bring
them all and in the darkness grind them. In the Land of Redmond
where the shadows lie." -- The Silicon Valley Tarot
Henrique Holschuh
--
To UNSUBSCRIBE, email to debian-devel-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
| |
| Christoph Martin 2005-10-07, 7:50 am |
| Jeroen van Wolffelaar schrieb:
> On Thu, Oct 06, 2005 at 10:20:12PM +0200, Christoph Martin wrote:
>
>
> Hm, that wasn't listed in the changelog. Anyway, there hasn't been a security
> advisory about openssl recently, did you backport a patch to the sarge version
> (and prefereably also, to the woody version) and informed the security team? I
> noticed you just requested help for maintaining openssl, so I can imagine that
> it's been hard to find to come up with a patch, but it would at least be
> beneficial to at least document such security issues, by informing security
> team, filing an RC bug on your own package, and mentioning the CVE ID (or at
> the very least, a short description of the bug fixed) in your changelog entry.
It is documented in bug #314465. But it is not really a bug which you
can fix by backporting. It's about MD5 hashes being insecure. I talked
with upstream about the issue and follow their arguments:
>The default digest in 0.9.8 and the cvs head is SHA-1
>(we didn't change 0.9.7 as we didn't want to break existing
>implementations depending on the default digest being MD5).
>About SHA-256 etc. : they are included in the soon to
>appear 0.9.8.
The bug had been release critical and has the security tag. I downgraded
it to get the last 0.9.7 version into testing before uploading 0.9.8.
Christoph
--
========================================
====================================
Christoph Martin, Leiter der EDV der Verwaltung, Uni-Mainz, Germany
Internet-Mail: Christoph.Martin@Uni-Mainz.DE
Telefon: +49-6131-3926337
Fax: +49-6131-3922856
| |
| Henrique de Moraes Holschuh 2005-10-07, 7:50 am |
| On Thu, 06 Oct 2005, Nathanael Nerode wrote:[vbcol=seagreen]
> martin@uni-mainz.de wrote:
Then mail the other distro maintainers and upstream, they will listen to you
and it is actually probable you will not have much trouble with the other
distros.
Upstream might want a foolproof way to detect whether it should version
symbols or not (I suspect that when using libtool this is a no brainer: tell
libtool to version, and if the platform can't version, it should simply
ignore the request).
Debian can and often does lead the other distros re. versioned symbols. It
is very troubling that openssl is still unversioned, and thus we have to
transition a lot of packages every time a new openssl hits the archive, OR
risk segfaults everywhere.
--
"One disk to rule them all, One disk to find them. One disk to bring
them all and in the darkness grind them. In the Land of Redmond
where the shadows lie." -- The Silicon Valley Tarot
Henrique Holschuh
--
To UNSUBSCRIBE, email to debian-devel-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
| |
| Domenico Andreoli 2005-10-07, 7:50 am |
| On Fri, Oct 07, 2005 at 06:12:33AM -0300, Henrique de Moraes Holschuh wrote:
> On Fri, 07 Oct 2005, Domenico Andreoli wrote:
>
> I am going to hold out and wait at least a week. I want to know what the
> release team will do re. 0.9.8.
i'm seconding. what do you think about uploading stuff to experimental?
> PLEASE, let's take the opportunity to enable symbol versioning. That way,
> there will NOT be any need for a new transition when 0.9.9 is out.
any consensus here? have the RMs any opinion about?
thanks
domenico
-----[ Domenico Andreoli, aka cavok
--[ http://people.debian.org/~cavok/gpgkey.asc
---[ 3A0F 2F80 F79C 678A 8936 4FEE 0677 9033 A20E BC50
| |
| Josselin Mouette 2005-10-07, 7:50 am |
| Le jeudi 06 octobre 2005 =E0 22:20 +0200, Christoph Martin a =E9crit :
> I however understand the problem with different libraries linked against
> different versions of openssl. But I don't think that versioning the
> symbols in Debian alone would be such a good idea. Than we would be
> incompatible with other distributions. All LSB connected distros should
> do it the same way.
We're already doing it for libpng, as no one else seemed interested in
properly version the symbols. There haven't been any issues reported so
far.
--=20
.''`. Josselin Mouette /\./\
: :' : josselin.mouette@ens-lyon.org
`. `' joss@debian.org
`- Debian GNU/Linux -- The power of freedom
| |
| Andreas Barth 2005-10-07, 7:50 am |
| Xref: number1.nntp.dca.giganews.com linux.debian.devel:179226
* Domenico Andreoli (cavok@debian.org) [051007 10:59]:
> is the run for openssl 0.9.8 started anyway? i have curl and
> libapache-mod-ssl ready for the upload.
There is nothing one can stop anymore. It will be tied with the
c++-abi-transition soon enough.
Cheers,
Andi
--
To UNSUBSCRIBE, email to debian-devel-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
| |
| Martijn van Oosterhout 2005-10-07, 7:50 am |
| 2005/10/7, Nathanael Nerode <neroden@twcny.rr.com>:
> Well, only in one direction if I remember my versioning rules correctly.
> Consider the following cases:
> * binary built against unversioned libssl from other distro, running with
> versioned libssl on Debian
> Breaks because it can't find the symbols.
> * binary built against versioned libssl on Debian, running with unversion=
ed
> libssl on other distro
> Works, because if it can't find a versioned symbol, it tries the unversio=
ned
> symbol.
Actually, as long as the dynamic linker understands versioned symbols,
either combination works. If an unversioned symbol is found it as
matched against the oldest version available. Not always right
ofcourse, but no worse than without versioning.
The problem would be if two different groups go and version the
symbols in a different way (OPENSSL_0.9.8 vs OPENSSL_0_9_8). But as
long as we're the only people versioning, there's no problem. If it
becomes an issue we can add their version names to our libraries.
| |
| Henrique de Moraes Holschuh 2005-10-07, 6:06 pm |
| On Fri, 07 Oct 2005, Martijn van Oosterhout wrote:
> The problem would be if two different groups go and version the
> symbols in a different way (OPENSSL_0.9.8 vs OPENSSL_0_9_8). But as
I will repeat myself once: just hunt down and email the openssl maintainers
for: SuSE, RH/Fedora, Mandriva, Gentoo, plus upstream, with the explanation
of why we versioned the symbols and the patch (and YES, I can write the
explanation if anyone needs it).
They won't set a different symbol if you use something that Solaris will
also accept (upstream) or that looks sane (other distros). Probably most
will apply the patch.
Information about Solaris is easy to find, and appears to be exactly the
same as what is done in Linux, other than they have preferred namespaces:
http://www.usenix.org/publications/...rowndavid_html/
Other distros will soon notice (and there is no reason why you can't email
them directly, either) when the biggest ones start versioning symbols, and
the next edition of the LSB will pick it up if all major players deployed
it.
--
"One disk to rule them all, One disk to find them. One disk to bring
them all and in the darkness grind them. In the Land of Redmond
where the shadows lie." -- The Silicon Valley Tarot
Henrique Holschuh
--
To UNSUBSCRIBE, email to debian-devel-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
| |
| Moritz Muehlenhoff 2005-10-07, 6:06 pm |
| In linux.debian.devel, you wrote:
>
> It is documented in bug #314465. But it is not really a bug which you
> can fix by backporting. It's about MD5 hashes being insecure. I talked
> with upstream about the issue and follow their arguments:
Well, it's not that MD5 is secure in 0.9.8, it's just that the default hash
has been changed. So changing /etc/openssl.cnf's "default_md = md5" to
"default_md = sha1" would have the same effect, as sha1 is already present
in 0.9.7; only the more complex SHA variants have been introduced in 0.9.8.
Cheers,
Moritz
--
To UNSUBSCRIBE, email to debian-devel-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
| |
| Steve Langasek 2005-10-08, 2:50 am |
| On Fri, Oct 07, 2005 at 12:47:00PM +0200, Josselin Mouette wrote:
> Le jeudi 06 octobre 2005 à 22:20 +0200, Christoph Martin a écrit :
[vbcol=seagreen]
> We're already doing it for libpng, as no one else seemed interested in
> properly version the symbols. There haven't been any issues reported so
> far.
What ever happened to libpng upstream's bizarre plan to hand-mangle symbol
names in lieu of versioning? If they're not doing that, then someone
(like... the maintainer ;) should bludgeon them into accepting a patch for
real symbol versioning...
--
Steve Langasek Give me a lever long enough and a Free OS
Debian Developer to set it on, and I can move the world.
vorlon@debian.org http://www.debian.org/
| |
| Steve Langasek 2005-10-08, 2:50 am |
| On Thu, Oct 06, 2005 at 10:20:12PM +0200, Christoph Martin wrote:
[vbcol=seagreen]
[vbcol=seagreen]
[vbcol=seagreen]
> Sorry for that. I missed the message about not doing library
> transitions. My fault. But I also do not really understand why so many
> packages need to be rebuild since libssl0.9.7 will be in the archive
> too.
How? I don't see any openssl097 source package in the archive, only openssl
and openssl096. If it is your intention to upload an openssl097 source
package, please do so ASAP (preferably *before* libssl0.9.7 is removed from
unstable via rene!), and please tell maintainers that they should *not* be
transitioning to libssl0.9.8 at this time. There are probably many packages
that can safely be migrated to libssl0.9.8, but there are a large number of
other packages, which no one has made a list of, which will have a cascade
effect on segfaults related to other transitions if they are rebuilt now
against a libssl0.9.8 that doesn't have versioned symbols.
> I however understand the problem with different libraries linked against
> different versions of openssl. But I don't think that versioning the
> symbols in Debian alone would be such a good idea. Than we would be
> incompatible with other distributions.
We would be only unidirectionally incompatible with other distros, in the
same way that we would be incompatible distros that shipped an older version
of libssl0.9.8 which was missing a newly-added symbol but was otherwise
ABI-compatible.
> All LSB connected distros should do it the same way.
Yes, they certainly should. Maintainers that implement versioned symbols
for libraries are always encouraged to submit patches upstream.
> Release team: If you think it would be the right thing to remove openssl
> 0.9.8 from sid, feel free to do it. I did the update, because a lot of
> people bugged me about the new version and upstream only recommends this
> version. It also closes a grave security bug.
I don't think it makes much sense to remove the package from sid once it's
been uploaded, but please see above for my concerns on how we handle this
going forward.
--
Steve Langasek Give me a lever long enough and a Free OS
Debian Developer to set it on, and I can move the world.
vorlon@debian.org http://www.debian.org/
| |
| Josselin Mouette 2005-10-08, 5:55 pm |
| Le vendredi 07 octobre 2005 à 14:33 -0700, Steve Langasek a écrit :
>
> What ever happened to libpng upstream's bizarre plan to hand-mangle symbol
> names in lieu of versioning? If they're not doing that, then someone
> (like... the maintainer ;) should bludgeon them into accepting a patch for
> real symbol versioning...
They're planning to do that for the next major libpng version only. At
the time the patch was included in Debian, neither upstream nor other
distributors seemed interested, but I can try again...
--
.''`. Josselin Mouette /\./\
: :' : josselin.mouette@ens-lyon.org
`. `' joss@debian.org
`- Debian GNU/Linux -- The power of freedom
| |
| Steve Langasek 2005-10-08, 8:48 pm |
| On Sat, Oct 08, 2005 at 05:44:25PM +0200, Josselin Mouette wrote:
> Le vendredi 07 octobre 2005 à 14:33 -0700, Steve Langasek a écrit :
[vbcol=seagreen]
[vbcol=seagreen]
> They're planning to do that for the next major libpng version only.
I have a better idea, then; how about if they just never have new major
versions of libpng, ever again? The last two soname changes were in fact
total bullshit, and judging by past events I can see them using symbol
versioning as an *excuse* to change an soname, which would be the most
ironically counterproductive option available to them...
--
Steve Langasek Give me a lever long enough and a Free OS
Debian Developer to set it on, and I can move the world.
vorlon@debian.org http://www.debian.org/
| |
| Henrique de Moraes Holschuh 2005-10-09, 5:53 pm |
| On Sat, 08 Oct 2005, Steve Langasek wrote:
> I have a better idea, then; how about if they just never have new major
> versions of libpng, ever again? The last two soname changes were in fact
> total bullshit, and judging by past events I can see them using symbol
Or, for something that has a modicum of chance of png upstream accepting,
why not telling us (d-devel) about a supposed upcoming version change a week
before they release it, so that we can tell them they are smoking crack and
fix the error before it hits the wild if that's the case?
--
"One disk to rule them all, One disk to find them. One disk to bring
them all and in the darkness grind them. In the Land of Redmond
where the shadows lie." -- The Silicon Valley Tarot
Henrique Holschuh
--
To UNSUBSCRIBE, email to debian-devel-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
|
|
|
|
|