On 24. 06. 22 11:27, Florian Weimer wrote:
* Felix Schwarz:
Are these Python 2.7 dependencies only used at build time? In that
case Fedora could maybe announce that openssl1.1 might not get the
full security suport so the burden for openssl1.1 packagers is lower
without removing the functionality?
I'm pretty sure it's used for Python's own HTTPS implementation, among
other things, so it's not really an optional feature (although Python
can be built without it, I believe).
It is possible to build Python 2 without the ssl module. HTTPS would indeed not
work and hence pip would not work. In return, the package would be useless for
Python developers using virtualenv to test their code that still needs to
support Python 2.
If openssl1.1-devel goes away, we would likely need to either bundle openssl
entirely (which is worse than having openssl1.1-devel in Fedora IMHO), or just
bundle the headers somehow, which just creates a room for breakage with every
openssl 1.1 update for no added benefit.
--
Miro Hrončok
--
Phone: +420777974800
IRC: mhroncok
_______________________________________________
devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx
Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure