Package: libssh-4 Version: 0.7.3-1 Source: libssh On Debian Unstable, libssh-4 is built against and (automatically) depends upon libssl1.0.2 - the corresponding dev-package for libssl1.0.2 is libssl1.0-dev.
Its corresponding dev-package libbsh-dev hard-depends upon libssl-dev (which is OpenSSL 1.1, not 1.0.) This is an inconsistency that shouldn't be there. It gets worse when trying to install apache2-dev for instance, which depends upon libssl1.0-dev | libssl-dev (< 1.1). libssl1.0-dev (pulled in by apache2-dev) and libssl-dev (pulled in by libssh-dev) conflict. Boom. I suggest changing the dependency of libssh-dev also to "libssl1.0-dev | libssl-dev (< 1.1)". --- This is currently not a problem on stretch, as libssl-dev is still part of OpenSSL 1.0 there, but might get problematic if stretch decides to also ship OpenSSL 1.1. I currently do not see it happen, so regard Stretch/Testing as unaffected. Best regards, Mihai
signature.asc
Description: OpenPGP digital signature