[Bug 1832616] Re: rebuild against OpenSSL 1.1.1

Steve Langasek steve.langasek at canonical.com
Fri Jul 26 18:12:55 UTC 2019 

The rationale here is insufficient for an SRU, as is the test case.  If
there are "unknown runtime incompatibilities" between erlang built
against openssl 1.1.0, and openssl 1.1.1 used at runtime, that is a bug
in openssl and should not result in a rebuild of erlang.

If rebuilding erlang against openssl results in different code paths
being used, then those need to be part of the test case, not merely
checking that the new erlang-crypto ends up with a newer versioned
library dep.

If rebuilding erlang against openssl 1.1.1 is necessary in order to
either expose TLSv1.3 to erlang apps, or give erlang apps the ability to
control TLS protocol negotiation, that needs to be spelled out in the
rationale.

** Changed in: erlang (Ubuntu Bionic)
       Status: Confirmed => Invalid

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to erlang in Ubuntu.
https://bugs.launchpad.net/bugs/1832616

Title:
  rebuild against OpenSSL 1.1.1

Status in erlang package in Ubuntu:
  Fix Released
Status in erlang source package in Bionic:
  Invalid
Status in erlang source package in Cosmic:
  Fix Released
Status in erlang source package in Disco:
  Fix Released
Status in erlang source package in Eoan:
  Fix Released

Bug description:
  [Impact]

   * Erlang picks up 1.1.1 symbol dependencies when rebuilt against openssl 1.1.1
   * As OpenSSL is published in bionic we should rebuild erlang against openssl 1.1.1
   * This may fix any unknown runtime compatibilies between erlang compiled with 1.1.0 whist running against 1.1.1

  E.g. it picks up RSA_pkey_ctx_ctrl at OPENSSL_1_1_1  symbol usage.

  [Test Case]

   * Check that erlang-crypto Depends on libssl1.1 (>= 1.1.1)

  [Regression Potential]

   * This rebuild will cause erlang to depend on a higher version of
  openssl.

  [Other Info]
   
   * Noticed / reported to me via IRC.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/erlang/+bug/1832616/+subscriptions

More information about the foundations-bugs mailing list