Author vstinner
Recipients barry, christian.heimes, gregory.p.smith, pablogsal, vstinner
Date 2021-03-16.10:45:57
SpamBayes Score -1.0
Marked as misclassified Yes
Message-id <1615891557.96.0.875228223054.issue43466@roundup.psfhosted.org>
In-reply-to
Content
Should the rpath be set on OpenSSL, on the Python ssl module, or on the Python executable?

> no (default): don't set an rpath

If most users get it wrong, why not using "auto: auto-detect rpath from OPENSSL_LDFLAGS (--with-openssl or pkg-config)" by default?

The Fedora packaging disallows the usage of rpath.

All I need about rpath is that it can be dangerous in some cases, but I forgot about the details. For example, on Fedora, if OpenSSL is installed in the regular /usr/lib64/libssl.so directory, rpath must not be used. Otherwise, it can lead to crash, bugs or vulnerabilities.

Fedora, Python and rpath:

* https://pagure.io/packaging-committee/issue/886
* https://bugs.python.org/issue36659#msg340731

Tell me if you need more details about the issues when rpath is misued. But I need to ask my colleagues, I forgot the details.
History
Date User Action Args
2021-03-16 10:45:57vstinnersetrecipients: + vstinner, barry, gregory.p.smith, christian.heimes, pablogsal
2021-03-16 10:45:57vstinnersetmessageid: <1615891557.96.0.875228223054.issue43466@roundup.psfhosted.org>
2021-03-16 10:45:57vstinnerlinkissue43466 messages
2021-03-16 10:45:57vstinnercreate