Package Details: libressl 2.5.1-1

Git Clone URL: https://aur-dev.archlinux.org/libressl.git (read-only)
Package Base: libressl
Description: FREE version of the SSL/TLS protocol forked from OpenSSL - EXPRIMENTAL ONLY
Upstream URL: http://www.libressl.org/
Licenses: custom:OpenSSL
Conflicts: openssl
Provides: openssl
Submitter: Reventlov
Maintainer: anthraxx
Last Packager: anthraxx
Votes: 41
Popularity: 0.743761
First Submitted: 2014-07-11 19:05
Last Updated: 2017-02-03 17:46

Dependencies (2)

Required by (1000)

Sources (3)

Latest Comments

anthraxx commented on 2016-06-06 23:20

updated to 2.4.0 but its just partially working, there are now undefined symbols introduced like SSL_COMP_free_compression_methods need to think about this how to continue this path

curiouseag commented on 2016-03-29 02:36

updated pkgbuild for 2.3.3 for testing
http://paste.opensuse.org/f0e1e817

saironiq commented on 2016-03-02 15:32

looks like this also conflicts with ca-certificates-utils package:

error: failed to commit transaction (conflicting files)
libressl: /etc/ssl/cert.pem exists in filesystem

$ pacman -Qo /etc/ssl/cert.pem
/etc/ssl/cert.pem is owned by ca-certificates-utils 20150402-1

kyrias commented on 2015-12-23 17:51

This package needs to provides/conflict openssl, because they cannot be installed at the same time, unless you change the name of the conflicting files.

arp12 commented on 2015-10-13 20:32

Run this before if installing for the first time:

gpg --keyserver keys.gnupg.net --recv-keys 1FFAA0B24B708F96

tulcod commented on 2015-09-24 12:23

What is the state of this package? Will things "probably" work (with risk of setting cats on fire)? Or will some things (browser (although I guess firefox and chromium have their own integrated ssl lib?), git, nginx, tor, ...) "probably" break?

altkrall commented on 2015-05-03 20:14

some fixes:
https://gist.github.com/devkral/1f2c90012a4519e103b8

summary: patch: fix line numbers
PKGBUILD: add stubconf, add missing links to libs

with them everything works (at least as far I see)

malinas commented on 2015-04-18 08:11

Cheers Anthrax.. great you take it on. As I expected, I haven't been able to come back to it;also I had no replies on the forum regarding rebuilding other packages depending on *ssl (as you might have noticed), so I thought, fine.. f** it ,x

anthraxx commented on 2015-03-19 17:44

Adopted and updated, small reminder: please keep in mind this is highly experimental and could break your system, caution!
However, i will start trying to work on this topic to integrate this better into the environment without breaking things.

malinas commented on 2015-02-02 23:14

Oh.. as in, I mean, with renaming the .so versions inside the chroot, I could have pacman , wget and curl (nothign else tested) seemingly work fine. I would also lend support to maybe just recompile the c_rehash as a c file rather than a perl script, to remove the perl dependency, and then I guess it's testing the many functions and packages.

malinas commented on 2015-02-02 23:11

earlz, you should be more used to arch then ,p Some tips (both to packager and/or users).

Look up the wiki on the building in a chroot/arch-nspawn wrapper.

@Reventlov, thanks for the provided pkgbuild, and appreciate your wisdom in commenting out due to still being a 'testing/staging' package. From configure --help, I decided to libtls and gnu-ld (might not be necessary but default says no).
./configure --enable-libtls --prefix=/usr --with-gnu-ld --sysconfdir=/etc/ssh
I also added the make OPENSSL=no but I don't think it works with portable.
You are probably more updated than I.

Anyway, the 'hack' then to make the nspawn machine working, (don't even think of using it as a drop in replacement on your actual system yet doh), is simply to rename or relink the new libssl.so and libcrypto.so as 1.0.0 hehehe. That is just to make things work .. obviously all packages against openssl need to be recompiled instead with the new libs :)

Oh, and isn't it a typo, that it provides openssl 2.0.1 ahead of 1.0.2?
hope this helps for now.

earlz commented on 2015-01-10 14:26

I'm sure most people already know this, but be VERY careful installing this to replace openssl even for testing. After installing this and removing openssl, sudo no longer works

pouar commented on 2015-01-04 18:55

nevermind I found the problem

pouar commented on 2015-01-04 17:29

does anyone get the following error
error: ‘__NR_getrandom’ undeclared (first use in this function)
it just showed up recently

Reventlov commented on 2014-07-14 10:00

It's commented in the PKGBUILD, i'll let people comment that out.

Otherwise, they will install libressl thinking it's a ready replacement to openssl (and it's not).

Libressl is API compatible, not ABI compatible, so i won't change that.

AntoineVe commented on 2014-07-14 09:30

Conflicts with openssl, +1 to abbradar (« You've forgot to add "provides=(openssl)". »).

Reventlov commented on 2014-07-12 18:43

@Fresh_meat: kinda fixed

Fresh_meat commented on 2014-07-12 11:22

Seems lots of alerady compiled program are broken :(

pacman: error while loading shared libraries: libssl.so.1.0.0: cannot open shared object file: No such file or directory

# ln -s /usr/lib64/libssl.so /usr/lib64/libssl.so.1.0.0

pacman: error while loading shared libraries: libcrypto.so.1.0.0: cannot open shared object file: No such file or directory

# ln -s /usr/lib64/libcrypto.so /usr/lib64/libcrypto.so.1.0.0

pacman: symbol lookup error: /usr/lib/libcrypto.so.1.0.0: undefined symbol: main

Reventlov commented on 2014-07-12 09:17

Fixed, thank you abbradar.

abbradar commented on 2014-07-12 07:14

You've forgot to add "provides=(openssl)". Also, it should not install "/usr/share/man/man1/passwd.1.gz".

Reventlov commented on 2014-07-12 05:34

Fixed.

Siosm commented on 2014-07-12 01:04

There is no official {md5,sha}sum available so far.

omicrondelta commented on 2014-07-12 00:28

can we get an md5sum and provides=('openssl') in this pkgbuild please?