RabbitMQ 3.6.2 will have a dependency on socat #355

michaelklishin · 2016-03-29T14:49:41Z

This is a heads-up, not an issue: in RabbitMQ 3.6.2, packages will depend on socat but apparently with some installation methods that dependency is ignored.

It would be very nice if this project installed the socat package before installing RabbitMQ.

The text was updated successfully, but these errors were encountered:

jjasghar · 2016-03-29T15:43:37Z

Ah nice thanks @michaelklishin. Is the socat package just a standard pkg from apt or yum?

michaelklishin · 2016-03-29T20:32:03Z

socat is also available for Debian Jessie and later versions.

I could only find so much about yum: according to Percona installation docs, socat has to be installed from EPEL.

binarin · 2016-03-30T14:47:55Z

It's in EPEL for CentOS 6, and directly available in CentOS 7. Probably the same holds for RHEL.

jjasghar · 2016-03-30T15:36:47Z

Awesome, I'll get the PR together and ask yall both to verify. 🤘

jjasghar · 2016-06-02T19:41:56Z

#372 should be what we need right?

michaelklishin · 2016-06-02T20:22:17Z

novettaberin · 2018-08-10T17:26:03Z

Is there any way to make socat optional? Or at the very least ensure that the RPM requires version 1.7.3.1 or newer? see: https://www.pcworld.com/article/3029389/socat-vulnerability-shows-that-crypto-backdoors-can-be-hard-to-spot.html

I can't use RabbitMQ if I have to use a library with a known security hole.

michaelklishin · 2018-08-10T22:04:21Z

@bericoberin you can use any socat version. This is not the right place to discuss RPM package dependencies: this is a Chef cookbook.

michaelklishin mentioned this issue May 19, 2016

3.6.2 released #365

Closed

jjasghar closed this as completed Jun 2, 2016

rabbitmq locked and limited conversation to collaborators Aug 10, 2018

Provide feedback