OpenSSL update to 1.0.0?

tincuprattle · April 14, 2010, 5:06am

OpenSSL in the SUSE Studio repo is: 0.9.8k-3.7.1, while:

OpenSSL 1.0.0 is now available, a major release - 29-Mar-2010

hendersj · April 14, 2010, 10:29pm

On Wed, 14 Apr 2010 03:16:02 +0000, tincuprattle wrote:

> OpenSSL in the SUSE Studio repo is: 0.9.8k-3.7.1, while:
>
>
>> ‘OpenSSL 1.0.0 is now available, a major release’
>> (http://www.openssl.org/source/) - 29-Mar-2010
>
> ** ‘Changelog’ (http://www.openssl.org/news/changelog.html)*

To my knowledge, if it’s in the update repository, Studio should see it,
but given that it’s a major version number change, the openSUSE project
typically doesn’t update major releases within a release of openSUSE, but
rather backports any critical fixes to the earlier release.

So you may not see it until 11.3 is available in Studio, or you could add
a repo that has the newer version of OpenSSL in it, but there may be
unintended side effects when doing that.

Jim

–
Jim Henderson
openSUSE Forums Administrator

ken_yap · April 15, 2010, 12:41am

Also the fact that the version went to 1.0.0 doesn’t necessarily mean that there are new features. On the contrary, the OpenSSL project probably took the last stable 0.9x version and relabelled it. So I would expect that distros have no hurry to break all their dependencies by suddenly switching version but will take their time to edit all their packages.

tincuprattle · April 15, 2010, 6:46am

Thanks for the responses!

user · January 3, 2012, 8:18pm

…suse sucks…on ubuntu i can update openssl just like this:
(on Remote ssh connection… but on this dame SUSE remove ssl crash whole system… suse is bad version of Windows with linux commands )

aptitude remove openssl libssl-dev
wget http://www.openssl.org/source/openssl-1.0.0.tar.gz
tar -xzf openssl-1.0.0.tar.gz
cd openssl-1.0.0
./config --prefix=/usr/local
make
make install

ab · January 3, 2012, 9:50pm

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Not only did you fail to update SSL, you also posted in the wrong forum
so nobody who could possibly care is ever going to read your rant. For
the record, the alternative to the Unbuntu way that you posted (which
doesn’t really look like an Ubuntu way at all… you removed packages
and then recompiled stuff from source which in a non-distro-specific way
which is giving Ubuntu a black eye unnecessarily) is the following:

zypper up

This, of course, assumes the newer version is available to be installed;
if not then you’re probably back to what you did with recompiling
everything from scratch which works for me so not sure why it didn’t for
you.

Good luck.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.15 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iQIcBAEBAgAGBQJPA2oyAAoJEF+XTK08PnB5WjQP/imQ4bsOPdOi6g6FL3jRM/A+
yh/RlBcX03uoxNKnquA7ZiCPGF8vZbo0zPUhuPiLOhskQyBzp78RgJFm+V9lhh+H
cjP9aXh02d5VsXD2RCpshtr/2F/AZnOWO2PacuRftvMqV4SrMp56623oNvTe+8/M
CR7IGhoL8R8o+yc9DZFfknOEBTPoZxOWgR30SNnBIWSrNFCeMPv2yxV09s8Sazzu
jx8cfscf/qrxp8bBlYAd9kR5fLMoYXmpyQANT6Caa2cCp9UhwRfvC3WymskQtde9
lfcptI36YmbtKCxtboBBv1f7Te4ALltXYBPCRgBp5LBRUa63GADFEZtrJneLWhVC
g+H30XckTtmeOugOMy47tei00hRASSa7bvXMiEnej9pmdC9tNZWaM8oP0GIcGeCv
mxvVbo9ntP212vLmpqBFc9LaG3Ev5GUcP0GedaheesudNlcBVLb/0vTiiK+Qbtj7
8D4l3RqorAPYvh4NnCT31EAvjZXqrk1vOGzQ5v8YhhFuyYlPKXryxtJYiNcTunQZ
QVzJKXeQymP7WxidY+2OEQwzB0WtEIqzhGJR5WuYwZV1+fSbe2nsYtYOhrgLAoFh
4SqfVgfFuBc6bU+j69u3Tdspd2+FGalQgTtjHe/reyxfQ3rImR7fQmQw76whffqY
PnPIhCK6sAa+2m5BfUP/
=bjGt
-----END PGP SIGNATURE-----