From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <gary@mlbassoc.com>
Received: by yocto-www.yoctoproject.org (Postfix, from userid 118)
	id DA925E00AA9; Tue, 16 Dec 2014 06:01:50 -0800 (PST)
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on
	yocto-www.yoctoproject.org
X-Spam-Level: 
X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00 autolearn=ham
	version=3.3.1
X-Spam-HAM-Report: * -1.9 BAYES_00 BODY: Bayes spam probability is 0 to 1%
	*      [score: 0.0000]
Received: from mail.chez-thomas.org (mail.mlbassoc.com [65.100.170.105])
	by yocto-www.yoctoproject.org (Postfix) with ESMTP id 9C20EE009E2
	for <meta-freescale@yoctoproject.org>;
	Tue, 16 Dec 2014 06:01:45 -0800 (PST)
Received: by mail.chez-thomas.org (Postfix, from userid 1998)
	id CF166F8119A; Tue, 16 Dec 2014 07:01:44 -0700 (MST)
Received: from [192.168.1.114] (zeus [192.168.1.114])
	by mail.chez-thomas.org (Postfix) with ESMTP id 124BEF811D9;
	Tue, 16 Dec 2014 07:01:43 -0700 (MST)
Message-ID: <54903B47.5090209@mlbassoc.com>
Date: Tue, 16 Dec 2014 07:01:43 -0700
From: Gary Thomas <gary@mlbassoc.com>
User-Agent: Mozilla/5.0 (X11; Linux x86_64;
	rv:31.0) Gecko/20100101 Thunderbird/31.3.0
MIME-Version: 1.0
To: meta-freescale@yoctoproject.org
References: <3230301C09DEF9499B442BBE162C5E48257EA92F@SESTOEX04.enea.se>
In-Reply-To: <3230301C09DEF9499B442BBE162C5E48257EA92F@SESTOEX04.enea.se>
Subject: Re: meta-fsl-ppc uses Openssl 1.0.1g in master
X-BeenThere: meta-freescale@yoctoproject.org
X-Mailman-Version: 2.1.13
Precedence: list
List-Id: Usage and development list for the meta-fsl-* layers
	<meta-freescale.yoctoproject.org>
List-Unsubscribe: <https://lists.yoctoproject.org/options/meta-freescale>,
	<mailto:meta-freescale-request@yoctoproject.org?subject=unsubscribe>
List-Archive: <http://lists.yoctoproject.org/pipermail/meta-freescale>
List-Post: <mailto:meta-freescale@yoctoproject.org>
List-Help: <mailto:meta-freescale-request@yoctoproject.org?subject=help>
List-Subscribe: <https://lists.yoctoproject.org/listinfo/meta-freescale>,
	<mailto:meta-freescale-request@yoctoproject.org?subject=subscribe>
X-List-Received-Date: Tue, 16 Dec 2014 14:01:50 -0000
Content-Type: text/plain; charset=windows-1252; format=flowed
Content-Transfer-Encoding: 7bit

On 2014-12-16 06:58, Sona Sarmadi wrote:
> Hi guys,
> Is there any specific reason why openssl 1.0.1g is used by default? Yocto is using 1.0.1j in master to address some security issues (SSLv3 protocol vulnerability). If there is a
> strong reason to stay on 1.0.1g, I suggest we apply sslv3 patches  otherwise we just remove this line.
> _https://git.yoctoproject.org/cgit/cgit.cgi/meta-fsl-ppc/tree/conf/machine/include/qoriq-default-versions.inc_
> PREFERRED_VERSION_openssl = "1.0.1g"

Indeed, why is there a pinned version at all in meta-fsl-*?

-- 
------------------------------------------------------------
Gary Thomas                 |  Consulting for the
MLB Associates              |    Embedded world
------------------------------------------------------------