[Bug 1794589] Re: libssl1.0-dev conflicts libssl-dev

Steve Langasek steve.langasek at canonical.com
Fri Nov 2 17:34:07 UTC 2018 

This is expected behavior.  These two stacks are incompatible, and while
they use symbol versions so will not cause overt ABI problems when
loaded into the same namespace, there are still some opaque structures
that could be problems when passed between two libraries that each
depend on different versions of openssl.  So the value of making the
-dev packages coinstallable is small from the perspective of the
distribution, the costs large given that relocating one or the other
library means reverse-dependencies would also need updating to be able
to find it at build time, and the risks of anything built against both
versions of libssl significant.

** Changed in: openssl1.0 (Ubuntu Cosmic)
       Status: Confirmed => Won't Fix

** Changed in: openssl1.0 (Ubuntu Bionic)
       Status: Confirmed => Won't Fix

** Changed in: openssl1.0 (Ubuntu)
       Status: Confirmed => Won't Fix

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to openssl1.0 in Ubuntu.
https://bugs.launchpad.net/bugs/1794589

Title:
  libssl1.0-dev conflicts libssl-dev

Status in nodejs package in Ubuntu:
  Invalid
Status in openssl1.0 package in Ubuntu:
  Won't Fix
Status in nodejs source package in Bionic:
  Invalid
Status in openssl1.0 source package in Bionic:
  Won't Fix
Status in nodejs source package in Cosmic:
  Invalid
Status in openssl1.0 source package in Cosmic:
  Won't Fix

Bug description:
  [impact]

  The libssl1.0-dev package conflicts with the libssl-dev package, so
  this leads to all packages that depend on libssl1.0-dev to conflict
  with all packages that depend on libssl-dev; as well as all packages
  that depend on those packages (and so on).

  [test case]

  On a Bionic system (or Cosmic), install libssl-dev, and/or any package that depends on it:
  http://qa.ubuntuwire.org/rdepends/v1/bionic/any/libssl-dev

  Then, try to install libssl1.0-dev, or any package that depends on it:
  http://qa.ubuntuwire.org/rdepends/v1/bionic/any/libssl1.0-dev

  see comment 15 for an example of some packages that are force-removed
  when installing libssl1.0-dev, due to conflict.

  [regression potential]

  TBD after fix is determined

  [other info]

  Original description:

  ---

  The fix for https://bugs.launchpad.net/ubuntu/+source/nodejs/+bug/1779863
  is, not surprisingly, somewhat traumatic for some users.

  In my case, installing libssl1.0-dev causes libcurl4-openssl-dev,
  libssh-dev, and libssl-dev to be uninstalled, which makes some of our
  internal packages fail to build.

  Commenting out universe from bionic-updates in /etc/apt/sources.list
  would work around this, but that's not going to fly for everybody.

  nodejs appears to be the tail wagging the dog now, and that's rather
  uncomfortable.

  ProblemType: Bug
  DistroRelease: Ubuntu 18.04
  Package: nodejs-dev (not installed)
  ProcVersionSignature: Ubuntu 4.15.0-34.37-generic 4.15.18
  Uname: Linux 4.15.0-34-generic x86_64
  ApportVersion: 2.20.9-0ubuntu7.3
  Architecture: amd64
  CurrentDesktop: ubuntu:GNOME
  Date: Wed Sep 26 11:03:51 2018
  SourcePackage: nodejs
  UpgradeStatus: Upgraded to bionic on 2018-04-30 (148 days ago)

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/nodejs/+bug/1794589/+subscriptions

More information about the foundations-bugs mailing list