From: Alexander K. H. <ak...@fi...> - 2007-03-23 20:03:44
|
Alexey Zakhlestin wrote: > there are currently several openssl packages: > openssl* (which is 0.9.6, actually) > openssl097* > system-openssl-dev > > I wonder why openssl package is left at an older version… > Which of these is preferred to be set as dependency? > > p.s. actually, 0.9.8 branch is already out for some time… > > The "openssl" package is older as per Fink's policy on shared libraries. 0.9.6 and 0.9.7 are different library versions of the package, and so we couldn't simply make the 'openssl' package use 0.9.7 because that would have immediately broken everything that then depended on openssl-shlibs. The 097 packages were created, and then the maintainers converted their packages to link to openssl097-shlibs. If nothing still uses openssl-shlibs then it can be removed. The general preference these days is to link to the OpenSSL libraries that ship with the OS, because our interpretation of the OpenSSL license is that if we link the OS-provided libraries we can make binaries of the packages that use them, but if they link to our own OpenSSL stuff we can't. That cuts down on the motivation to provide an openssl098 package. You might check with the openssl097 maintainer to see, though. We do still have a few packages that can't be redistributed as binaries for other cryptographic reasons, and those tend to stick with Fink's openssl*. -- Alexander K. Hansen Fink User Liason/Documenter ak...@fi... |