From Newsgroup: muc.lists.freebsd.stable
------=_Part_4816_1954727266.1765280966541
Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit
Van: Michael Osipov <
michaelo@FreeBSD.org>
Datum: dinsdag, 9 december 2025 10:50
Aan:
freebsd-stable@FreeBSD.org
Onderwerp: Newer OpenSSL (3.5+) on 14-STABLE?
Hi folks,
since OpenSSL 3.0 will go EOL in 2026-09, but 14-STABLE will live more than two years after that is there any planning to upgrade to OpenSSL 3.5 in 14.4 or later?
The question popped up since upstream projects are now starting to remove OpenSSL < 3.0.0 support and 13.x will be cutoff with OpenSSL from base.
Examples:
* https://cryptography.io/en/latest/changelog/#main
* https://github.com/curl/curl/commit/69c89bf3d3137fcbb2b8bc57233182adcf1e2817
Michael
PS: I am not planning to use OpenSSl from ports for various reasons
According to the release strategy of OpenSSL, version 3.5 should be API/ABI compatible as only the minor version increases.
https://openssl-library.org/policies/releasestrat/index.html
In the end it I think it would be best to ask the people who did the heavy lifting of the import if porting to 14 is feasible or not.
https://cgit.freebsd.org/src/log/crypto/openssl
Regards,
Ronald.
------=_Part_4816_1954727266.1765280966541
Content-Type: text/html; charset=us-ascii
Content-Transfer-Encoding: 7bit
<html><head></head><body>
<p><strong>Van:</strong> Michael Osipov <
michaelo@FreeBSD.org><br> <strong>Datum:</strong> dinsdag, 9 december 2025 10:50<br> <strong>Aan:</strong>
freebsd-stable@FreeBSD.org<br> <strong>Onderwerp:</strong> Newer OpenSSL (3.5+) on 14-STABLE?</p>
<blockquote style="padding-right: 0px; padding-left: 5px; margin-left: 5px; border-left: #000000 2px solid; margin-right: 0px">
<div class="MessageRFC822Viewer" id="P">
<div class="TextPlainViewer" id="P.P">Hi folks,<br>
since OpenSSL 3.0 will go EOL in 2026-09, but 14-STABLE will live more than two years after that is there any planning to upgrade to OpenSSL 3.5 in 14.4 or later?<br>
The question popped up since upstream projects are now starting to remove OpenSSL < 3.0.0 support and 13.x will be cutoff with OpenSSL from base.<br>
Examples:<br>
* <a href="
https://cryptography.io/en/latest/changelog/#main">https://cryptography.io/en/latest/changelog/#main</a><br>
*<br>
<a href="
https://github.com/curl/curl/commit/69c89bf3d3137fcbb2b8bc57233182adcf1e2817">https://github.com/curl/curl/commit/69c89bf3d3137fcbb2b8bc57233182adcf1e2817</a><br>
Michael<br>
PS: I am not planning to use OpenSSl from ports for various reasons<br> </div>
<hr></div>
</blockquote>
According to the release strategy of OpenSSL, version 3.5 should be API/ABI compatible as only the minor version increases.<br>
<a href="
https://openssl-library.org/policies/releasestrat/index.html">https://openssl-library.org/policies/releasestrat/index.html</a><br>
In the end it I think it would be best to ask the people who did the heavy lifting of the import if porting to 14 is feasible or not.<br>
<a href="
https://cgit.freebsd.org/src/log/crypto/openssl">https://cgit.freebsd.org/src/log/crypto/openssl</a><br>
Regards,<br>
Ronald.<br>
</body></html>
------=_Part_4816_1954727266.1765280966541--
--
Posted automagically by a mail2news gateway at muc.de e.V.
Please direct questions, flames, donations, etc. to
news-admin@muc.de
--- Synchronet 3.21a-Linux NewsLink 1.2