OpenSSL 1.1.1 EOL

[Coldfirex]

Howdy, I didnt see a ticket for this already but wanted to make a note that OpenSSL 1.1.1 is now EOL as of this week (Sept 11, 2023). Looks like we need to migrate to 3.0.x (LTS version) or 3.1.x.

Further information: ​https://www.openssl.org/blog/blog/2023/03/28/1.1.1-EOL/

[pulkomandy]

It is possible to use OpenSSL 3 with deprecated function still enabled, that allows to easily migrate to it without too much changes in the code.

A lot of APIs have changed (for the best, better encapsulation of internal structure), but maybe we want to first start using OpenSSL 3, and then start migrating progressively.

[Coldfirex]

It looks like alot of the deprecated functions are still there, but will just throw compiler warnings after a quick skim of the migration notes.

​https://www.openssl.org/docs/man3.0/man7/migration_guide.html

[elysalary]

Replying to pulkomandy:

It is possible to use OpenSSL 3 with deprecated function still enabled, that allows to easily migrate to it without too much changes in the code.

A lot of APIs have changed (for the best, better encapsulation of internal structure), but maybe we want to first start using OpenSSL 3, and then start migrating progressively.

When using OpenSSL 3, it's a good practice to review the OpenSSL documentation, release notes, and migration guides to understand the changes and updates introduced in this version. This will help you make informed decisions about which APIs to use, how to update your code, and how to take advantage of the new features provided by OpenSSL 3.

​​https://www.openssl.org/blog/blog/2023/03/28/1.1.1-EOL/ ​spacebar clicker

[cocobean]

OpenSSL 3.2.1 is backward compatible with OpenSSL 3.2.0 and OpenSSL 3.1.0, but not with OpenSSL 1.1.1.

See: ​https://www.openssl.org/docs/man3.1/man7/migration_guide.html

Submitted a PR for OpenSSL 3.2.1. Ref: ​https://github.com/haikuports/haikuports/pull/10035