On 16. 09. 20 14:29, Simo Sorce wrote:
Indeed compat-openssl10 really should go.
If there are still packages depending on it they should be ported or
dropped at this point.
Openssl1.0.2 is unmaintained upstream and only critical security fixes
are done in RHEL. But the team that handles them does not own the
Fedora package anymore. OpenSSL 1.0 does not support things lie TLS 1.3
or system-wide crypto policies.
Frankly at this point it is just a liability to continue offering it.
I'll file a bugzilla to ask to retire it from rawhide.
Even if that's the case we should not just retire packages without coordinating
with the dependent ones, with an exception of legal requirements.
There should be a deprecation period, Fedora change or a direct communication
with the package maintainers of the dependent packages, not a direct retirement.
--
Miro Hrončok
--
Phone: +420777974800
IRC: mhroncok
_______________________________________________
devel mailing list -- devel@lists.fedoraproject.org
To unsubscribe send an email to devel-le...@lists.fedoraproject.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org
