Mail archive
alpine-devel

Re: [alpine-devel] Switching back to OpenSSL

From: Natanael Copa <ncopa_at_alpinelinux.org>
Date: Tue, 23 Oct 2018 13:35:53 +0200

On Tue, 23 Oct 2018 00:07:55 -0500
William Pitcock <nenolod_at_dereferenced.org> wrote:

> Hi,
>
> On Sat, Oct 13, 2018 at 11:43 AM William Pitcock
> <nenolod_at_dereferenced.org> wrote:
> >
> > Hi,
> >
> > On Fri, Oct 12, 2018 at 1:13 PM Natanael Copa <ncopa_at_alpinelinux.org> wrote:
> > >
> > > On Fri, 12 Oct 2018 17:30:04 +0000
> > > "Laurent Bercot" <ska-devel_at_skarnet.org> wrote:
> > >
> > > > >But, I can split out the LibreSSL libtls as a standalone package and
> > > > >adapt it to use with our OpenSSL packages. It is something we plan to
> > > > >do in Adélie anyway, so it may as well be incubated upstream.
> > > >
> > > > >Would the above solution be sufficient to resolve your concerns?
> > > >
> > > > Yes, an alternative implementation of libtls works for me.
> > > > Thanks!
> > >
> > > We use libtls for our ssl_client for busybox wget, so yes, we need some
> > > sort of libtls implementation.
> > >
> > > I think there are some port of it to OpenSSL out there, but I don't
> > > know what the state is.
> >
> > I created an aport which builds LibreSSL's libtls against some compat
> > stubs and links against system openssl. This is, for obvious reasons,
> > living in testing.
> > Can people give it a go and tell me if it works?
> >
> > Some very light testing indicates success thus far, but...
>
> Has anyone tried using the libtls-standalone package in testing as of
> yet? It would be nice to know if it is working for others.

I haven't yet. I was thinking to get the openssl 1.1. package built
first and maybe pushed to either main or testing.

Once that is done I will test it with our ssl_client with busybox.

-nc

> William



---
Unsubscribe:  alpine-devel+unsubscribe_at_lists.alpinelinux.org
Help:         alpine-devel+help_at_lists.alpinelinux.org
---
Received on Tue Oct 23 2018 - 13:35:53 GMT