On 13 April 2018 at 22:45, Sebastian Andrzej Siewior <sebast...@breakpoint.cc> wrote: > On 2018-04-12 13:08:57 [+0000], Nicola Tuveri wrote: >> Package: openssl >> Version: 1.0.2l-1~bpo8+1 >> Severity: important >> Tags: patch > > backports? >
Yes, old-stable backports. >> I marked this bug as important, as it stops everyone using official >> debian packages from using third-party ENGINEs that require to use that >> function to set special handling of ASN.1 format, which basically >> includes every ENGINE that would add support for cryptosystems that >> upstream OpenSSL does not support (defying the purpose of using some >> ENGINEs). > > Not everyone. It should work in stable, doesn't it? Yes, my application does work in stable. Has symbol versioning been completely disabled there? Or am I just lucky that the function I need was whitelisted when the versioning script was created for the new release, but the same bug can still resurface for the symbol OPENSSL_foobar_magic in future OpenSSL 1.1.0x? Thanks for your reply, Nicola