Re: Should I recompile SSL CPAN modules now?

IO::Socket::SSL depends on Net::SSLeay which actually wraps OpenSSL so if you can get Net::SSLeay rebuilt I think you should be alright. I haven't looked that deeply. Some monk surely knows more.

Comment on Re: Should I recompile SSL CPAN modules now?

Replies are listed 'Best First'.
Re^2: Should I recompile SSL CPAN modules now? by noxxi (Pilgrim) on Apr 12, 2014 at 11:11 UTC
Unless you build statically linked versions it should be enough to just install a patched openssl shared library (libssl.so, libcrypto.so). If you are not sure you might check with strace on linux, e.g.: `$ strace -e open perl -MNet::SSLeay .... open("/lib/x86_64-linux-gnu/libssl.so.1.0.0", O_RDONLY\|O_CLOEXEC) = 3 + + open("/lib/x86_64-linux-gnu/libcrypto.so.1.0.0", O_RDONLY\|O_CLOEXEC) += 3` [download] If you see these libs loaded dynamically all is fine and you just need to replace them by installing the updated libssl package.	[reply] [d/l]

Replies are listed 'Best First'.

Re^2: Should I recompile SSL CPAN modules now?
by noxxi (Pilgrim) on Apr 12, 2014 at 11:11 UTC

 $ strace -e open perl -MNet::SSLeay
 ....
 open("/lib/x86_64-linux-gnu/libssl.so.1.0.0", O_RDONLY|O_CLOEXEC) = 3
+                                                                     
+                                                    
 open("/lib/x86_64-linux-gnu/libcrypto.so.1.0.0", O_RDONLY|O_CLOEXEC) 
+= 3
[download]

[reply]
[d/l]