Lars Wendler <polynomia...@gentoo.org> wrote: > So, basically openssl is the last big showstopper for openssl-1.1 to > get out of p.mask.
s/openssl/openssh/ Another showstopper is net-libs/wvstreams, hence net-dialup/wvdial. BTW, this is a Debian bug open without any comment since April 2017: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=859791 Debians and Archs workarounds can be called slotting of openssl:1.0 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=828603 While many of the new opaqueness problems are easy to fix, some functions of wvstreams rely so much on internals which are inaccessible with openssl-1.1 that they seem impossible to convert. My guess (I am not an openssl guru) is that the whole wvstreams implementation would need to change, maybe also the provided API with some functionality being dropped or attacked completely differently. The uncommented bugreports and missing PRs suggest that this will never happen by upstream, and there also seems to be no fork with it. Maybe for wvstreams a workaround might be to mask/remove USE=ssl: Perhaps wvdial would then loose some functionality (does anybody know what would break?) but given how useful wvdial is, this is better than dropping it completely.