wf...@niif.hu (Ferenc Wágner) writes: > Just adding that Shibboleth itself is also problematic, because > XMLTooling, which is incompatible with OpenSSL 1.1, uses libcurl, which > already switched to OpenSSL 1.1. So switching xml-security-c to OpenSSL > 1.0 did not actually solve the problem for Shibboleth because of the > above version clash in XMLTooling.
It's worth noting that Apache also requires OpenSSL 1.0, which may also affect what the Shibboleth stack can link against. > Shall I bring it up with the curl maintainers? Or wait for the > conclusion on debian-devel? This seems like something we're going to have to figure out project-wide, since the way the transition is currently set up doesn't seem likely to work. -- Russ Allbery (r...@debian.org) <http://www.eyrie.org/~eagle/>