Opened 8 months ago
Last modified 3 months ago
#18581 new task
OpenSSL 1.1.1 EOL
Reported by: | Coldfirex | Owned by: | nobody |
---|---|---|---|
Priority: | critical | Milestone: | R1/beta5 |
Component: | Build System | Version: | R1/Development |
Keywords: | Cc: | ||
Blocked By: | Blocking: | #18565 | |
Platform: | All |
Description
Howdy, I didnt see a ticket for this already but wanted to make a note that OpenSSL 1.1.1 is now EOL as of this week (Sept 11, 2023). Looks like we need to migrate to 3.0.x (LTS version) or 3.1.x.
Further information: https://www.openssl.org/blog/blog/2023/03/28/1.1.1-EOL/
Change History (6)
comment:1 by , 8 months ago
Component: | - General → Build System |
---|---|
Milestone: | Unscheduled → R1/beta5 |
Priority: | normal → critical |
follow-up: 4 comment:2 by , 8 months ago
comment:3 by , 8 months ago
It looks like alot of the deprecated functions are still there, but will just throw compiler warnings after a quick skim of the migration notes.
https://www.openssl.org/docs/man3.0/man7/migration_guide.html
comment:4 by , 5 months ago
Replying to pulkomandy:
It is possible to use OpenSSL 3 with deprecated function still enabled, that allows to easily migrate to it without too much changes in the code.
A lot of APIs have changed (for the best, better encapsulation of internal structure), but maybe we want to first start using OpenSSL 3, and then start migrating progressively.
When using OpenSSL 3, it's a good practice to review the OpenSSL documentation, release notes, and migration guides to understand the changes and updates introduced in this version. This will help you make informed decisions about which APIs to use, how to update your code, and how to take advantage of the new features provided by OpenSSL 3.
https://www.openssl.org/blog/blog/2023/03/28/1.1.1-EOL/ spacebar clicker
comment:5 by , 3 months ago
Blocking: | 18565 added |
---|
comment:6 by , 3 months ago
OpenSSL 3.2.1 is backward compatible with OpenSSL 3.2.0 and OpenSSL 3.1.0, but not with OpenSSL 1.1.1.
See: https://www.openssl.org/docs/man3.1/man7/migration_guide.html
Submitted a PR for OpenSSL 3.2.1. Ref: https://github.com/haikuports/haikuports/pull/10035
It is possible to use OpenSSL 3 with deprecated function still enabled, that allows to easily migrate to it without too much changes in the code.
A lot of APIs have changed (for the best, better encapsulation of internal structure), but maybe we want to first start using OpenSSL 3, and then start migrating progressively.