Quoting Ismail Doenmez
Hi;
Quoting "Dominique Leuenberger a.k.a DimStar"
: Quoting Ismail Doenmez
: M{i,a}ster Darix just made me aware of another missing component: openSSL needs to be either patched or updated. For Factory, an update to 1.0.1 (which is the first version to carry the needed fix upstream) might still be viable, but it being openSSL is of course tricky :)
Please note that openSSL 1.0.1 has an important regression: http://rt.openssl.org/Ticket/Display.html?id=2771 (login: guest/guest)
... which has been identified to be a bug in Big-IP F5 load balancer software and not openssl. "It is fixed in the recently released BIG-IP LTM 10.2.4 software"
I am not so sure that this is a load balancer problem, see https://bbs.archlinux.org/viewtopic.php?id=138103&p=1
I see... good not to be the first ones in this case :) So if we want mod_spdy, then we should discuss if we want the NPN patch in our openssl package (and probably a small modification on the apache patch, as that one currently checks for openSSL versions). Of: we agree not to ship mod_spdy, considering it not 'ready' is a valid option too (We can target it for 12.3 in this case). Dominique -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org