openssl: Add a warning about minor version bump and OpenSSH

Let's prevent bad thing from happening when we update to 3.1.0...
author: Xi Ruoyao <xry111@xry111.site> 2023-03-15 14:17:56 +0800
committer: Xi Ruoyao <xry111@xry111.site> 2023-03-15 14:17:56 +0800
commit: bbaf00d41541380665f0b146d60d12afb44cc62b (patch)
tree: 55bf5a49837784c34e7f19d48d3aec3a71ffafdd
parent: 23a6c4c492e3e30704f0f1dc0facc32006936707 (diff)
1 files changed, 14 insertions, 0 deletions
diff --git a/chapter08/openssl.xml b/chapter08/openssl.xml
index 6a97bcc2a..10cfe26ce 100644
--- a/chapter08/openssl.xml
+++ b/chapter08/openssl.xml
@@ -99,6 +99,20 @@ make MANSUFFIX=ssl install</userinput></screen>
       </para>
 
       <para>
+        If <application>OpenSSH</application> is installed, it will be an
+        exception of the general rule above.  It contains an
+        over-restrictive OpenSSL version check, so both SSH client and SSH
+        server will refuse to start if <application>OpenSSH</application>
+        is updated with MAJOR version number unchanged but MINOR version
+        number changed.  You need to rebuild
+        <application>OpenSSH</application> after such an upgrade.
+        <emphasis role='bold'>If <application>OpenSSH</application> is being
+        used to access the system, you must rebuild and reinstall it
+        after upgrading OpenSSL to a new MINOR version number before logout
+        or you won't be able to login via SSH anymore.</emphasis>
+      </para>
+
+      <para>
         However, any running programs linked to those libraries need to be stopped
         and restarted. Read the related entries in
         <xref linkend='pkgmgmt-upgrade-issues'/> for details.
author	Xi Ruoyao <xry111@xry111.site>	2023-03-15 14:17:56 +0800
committer	Xi Ruoyao <xry111@xry111.site>	2023-03-15 14:17:56 +0800
commit	bbaf00d41541380665f0b146d60d12afb44cc62b (patch)
tree	55bf5a49837784c34e7f19d48d3aec3a71ffafdd
parent	23a6c4c492e3e30704f0f1dc0facc32006936707 (diff)