Re: [Development] SSL Plans for Qt 5.6

On 10 March 2015 at 14:22, Jan Kundrát wrote: > On Sunday, 22 February 2015 16:27:44 CET, Giuseppe D'Angelo wrote: > > * RHEL 6 ships 1.0.0, EOL Nov 2020 > > This is a bit more complex with RHEL because there are many "RHEL 6"s. RHEL > 6.5 and newer ship with 1.0.1e [1], so they are already cover

Re: [Development] SSL Plans for Qt 5.6

On Sunday, 22 February 2015 16:27:44 CET, Giuseppe D'Angelo wrote: > * RHEL 6 ships 1.0.0, EOL Nov 2020 This is a bit more complex with RHEL because there are many "RHEL 6"s. RHEL 6.5 and newer ship with 1.0.1e [1], so they are already covered. The older OpenSSL 1.0.0 was present in 6.0 to 6.4.

Re: [Development] SSL Plans for Qt 5.6

On 22 February 2015 at 18:02, Thiago Macieira wrote: > > No, there will be no more updates for < 1.0.1 after december. The > lifespan > > of 1.0.1 has not yet been set. They seem to be doing the work to make the > > code more maintainable, then they'll probably have a longer lifespan. > > I meant

Re: [Development] SSL Plans for Qt 5.6

On 24 February 2015 at 03:49, Kevin Kofler wrote: > >> * RHEL 7 ships 1.0.1, EOL Jun 2014 >> * CentOS 7 ships 1.0.1, EOL Jun 2014 > > I think you mean 2024 there (2014 + 10 years). Whooops, yes, of course. My bad... >> Of course there are other considerations, like RHEL/CentOS 6 both >> shipping

Re: [Development] SSL Plans for Qt 5.6

Giuseppe D'Angelo wrote: > * RHEL 7 ships 1.0.1, EOL Jun 2014 > * CentOS 7 ships 1.0.1, EOL Jun 2014 I think you mean 2024 there (2014 + 10 years). > Of course there are other considerations, like RHEL/CentOS 6 both > shipping GCC 4.4, so we might end up dropping support for those > distributions

Re: [Development] SSL Plans for Qt 5.6

On 22 February 2015 at 20:08, Sorvig Morten wrote: > > > On 22 Feb 2015, at 18:50, Jeremy Lainé wrote: > > > > On 02/22/2015 06:42 PM, Richard Moore wrote: > >> > >> > >> On 22 February 2015 at 17:39, Jeremy Lainé > wrote: > >> > >> Whilst I agree with the goal of dropping support for old / unm

Re: [Development] SSL Plans for Qt 5.6

> On 22 Feb 2015, at 18:50, Jeremy Lainé wrote: > > On 02/22/2015 06:42 PM, Richard Moore wrote: >> >> >> On 22 February 2015 at 17:39, Jeremy Lainé wrote: >> >> Whilst I agree with the goal of dropping support for old / unmaintained >> OpenSSL versions, in the case of OS X we probably need

Re: [Development] SSL Plans for Qt 5.6

On 02/22/2015 06:57 PM, Richard Moore wrote: > > > > Slightly off-topic but related : does the Qt Company have any > privileged access to Apple engineers working on Secure Transport? > I would like to understand what the plans are regarding support > for NPN / ALPN. > > > No idea

Re: [Development] SSL Plans for Qt 5.6

On Sunday 22 February 2015 13:37:36 Richard Moore wrote: > On 21 February 2015 at 18:38, Thiago Macieira > > wrote: > > > I suspect enterprise distros etc. will continue to support 1.0.0 for a > > > while. I'm not sure of the level of adoption of 1.0.1 at the moment, so > > > I > > > was erring o

Re: [Development] SSL Plans for Qt 5.6

On Sunday 22 February 2015 18:50:24 Jeremy Lainé wrote: > I understood what you were saying, I think I just expressed my concerns > poorly. When I said "now way to build even from source", I meant "no way > to build support for OpenSSL as shipped by Apple". Anyway, my main > concern is : how do we

Re: [Development] SSL Plans for Qt 5.6

On 22 February 2015 at 17:50, Jeremy Lainé wrote: > On 02/22/2015 06:42 PM, Richard Moore wrote: > > > > On 22 February 2015 at 17:39, Jeremy Lainé wrote: > >> >> Whilst I agree with the goal of dropping support for old / unmaintained >> OpenSSL versions, in the case of OS X we probably need to

Re: [Development] SSL Plans for Qt 5.6

On 02/22/2015 06:42 PM, Richard Moore wrote: > > > On 22 February 2015 at 17:39, Jeremy Lainé > wrote: > > > Whilst I agree with the goal of dropping support for old / > unmaintained > OpenSSL versions, in the case of OS X we probably need to map out the >

Re: [Development] SSL Plans for Qt 5.6

On 22 February 2015 at 17:39, Jeremy Lainé wrote: > Hi Rich, > > On 02/21/2015 06:30 PM, Richard Moore wrote: > > Here's an outline of stuff I'd like to see get done in the Qt 5.6 time > > frame: > > > > * Complete removal of openssl 0.9.8 support > > > > This has been unsupported for a while and

Re: [Development] SSL Plans for Qt 5.6

Hi Rich, On 02/21/2015 06:30 PM, Richard Moore wrote: > Here's an outline of stuff I'd like to see get done in the Qt 5.6 time > frame: > > * Complete removal of openssl 0.9.8 support > > This has been unsupported for a while and was really only retained > since it is the only version apple ship o

Re: [Development] SSL Plans for Qt 5.6

Gingerbrad is using 1.0.0  https://android.googlesource.com/platform/external/openssl.git/+/gingerbread/openssl.version First 1.0.1 was used in Jelly Bean  https://android.googlesource.com/platform/external/openssl.git/+/jb-mr0-release/openssl.version So, for Android the minimum SSL version is 1.0.

Re: [Development] SSL Plans for Qt 5.6

On 21 February 2015 at 19:06, Richard Moore wrote: > I suspect enterprise distros etc. will continue to support 1.0.0 for a > while. I'm not sure of the level of adoption of 1.0.1 at the moment, so I > was erring on the side of caution. Any feedback on this is welcome. Quick investigation, * Debi

Re: [Development] SSL Plans for Qt 5.6

On 21 February 2015 at 18:38, Thiago Macieira wrote: > > I suspect enterprise distros etc. will continue to support 1.0.0 for a > > while. I'm not sure of the level of adoption of 1.0.1 at the moment, so I > > was erring on the side of caution. Any feedback on this is welcome. > > And with CII su

Re: [Development] SSL Plans for Qt 5.6

On 21 February 2015 at 18:38, Konstantin Ritt wrote: > 2015-02-21 22:05 GMT+04:00 Richard Moore : > >> >> On 21 February 2015 at 17:34, Konstantin Ritt wrote: >> >>> 2015-02-21 21:30 GMT+04:00 Richard Moore : >>> Here's an outline of stuff I'd like to see get done in the Qt 5.6 time fr

Re: [Development] SSL Plans for Qt 5.6

On Saturday 21 February 2015 22:38:03 Konstantin Ritt wrote: > The SecureTransport backend has been already introduced - that's a feature, > a dep. library version bump is not Major behaviour change. -- Thiago Macieira - thiago.macieira (AT) intel.com Software Architect - Intel Open Source Tech

Re: [Development] SSL Plans for Qt 5.6

On Saturday 21 February 2015 18:06:47 Richard Moore wrote: > On 21 February 2015 at 17:54, Giuseppe D'Angelo wrote: > > On 21 February 2015 at 18:30, Richard Moore wrote: > > > Openssl 0.9.8 will reach EOL in December anyway. In addition to removing > > > > the > > > > > support from the source

Re: [Development] SSL Plans for Qt 5.6

2015-02-21 22:05 GMT+04:00 Richard Moore : > > On 21 February 2015 at 17:34, Konstantin Ritt wrote: > >> 2015-02-21 21:30 GMT+04:00 Richard Moore : >> >>> Here's an outline of stuff I'd like to see get done in the Qt 5.6 time >>> frame: >>> >>> * Complete removal of openssl 0.9.8 support >>> >>>

Re: [Development] SSL Plans for Qt 5.6

On 21 February 2015 at 17:54, Giuseppe D'Angelo wrote: > On 21 February 2015 at 18:30, Richard Moore wrote: > > Openssl 0.9.8 will reach EOL in December anyway. In addition to removing > the > > support from the sources, I suspect this will involve some changes to how > > the library is searched

Re: [Development] SSL Plans for Qt 5.6

On 21 February 2015 at 17:34, Konstantin Ritt wrote: > 2015-02-21 21:30 GMT+04:00 Richard Moore : > >> Here's an outline of stuff I'd like to see get done in the Qt 5.6 time >> frame: >> >> * Complete removal of openssl 0.9.8 support >> >> This has been unsupported for a while and was really only

Re: [Development] SSL Plans for Qt 5.6

On 21 February 2015 at 18:30, Richard Moore wrote: > Openssl 0.9.8 will reach EOL in December anyway. In addition to removing the > support from the sources, I suspect this will involve some changes to how > the library is searched for when we use dlopen. As well as 1.0.0. Should we make Qt 5.6 r

Re: [Development] SSL Plans for Qt 5.6

2015-02-21 21:30 GMT+04:00 Richard Moore : > Here's an outline of stuff I'd like to see get done in the Qt 5.6 time > frame: > > * Complete removal of openssl 0.9.8 support > > This has been unsupported for a while and was really only retained since > it is the only version apple ship on OS X (tho

[Development] SSL Plans for Qt 5.6

Here's an outline of stuff I'd like to see get done in the Qt 5.6 time frame: * Complete removal of openssl 0.9.8 support This has been unsupported for a while and was really only retained since it is the only version apple ship on OS X (though they don't actually recommend using it). Qt 5.5 intr