On 2016-11-18 15:22:07 [+0100], Benjamin Drung wrote: > Instead of forcing salt to use OpenSSL 1.0, let's try to make it work > with OpenSSL 1.1. Adjusting the initialization to work with OpenSSL 1.1 > was quite easy. I forwarded the patch upstream to > https://github.com/saltstack/salt/pull/37772 to get it reviewed and > accepted.
so it is just two calls? I was a little afraid once I all those rsa ops and so on. But if nothing else breaks - good. A little note: OPENSSL_INIT_ADD_ALL_CIPHERS & friends could change on the next so.bump. Probably they won't but they could. A "Depend: libssl-1.0.2 || libssl-1.1.0" would avoid further breakage if ABI changes. Sebastian