Release for OpenSSL 3.0.0? #2128
Replies: 4 comments 1 reply
-
There's no ETA for a release. I would assume it's not a blocker for you to upgrade to OpenSSL v3 though, API-wise Transmission should be compatible (despite a few deprecation warnings for DH functions) and just work, it's just that RC4 algorithm got moved to a separate provider that's not enabled by default. According to https://www.openssl.org/docs/man3.0/man7/migration_guide.html,
Then based on https://www.openssl.org/docs/manmaster/man5/config.html, I would assume that something like this is possible to configure (not tested):
|
Beta Was this translation helpful? Give feedback.
-
I believe those are system-wide changes, and I don't think the package maintainers are interested in enabling the legacy provider system-wide by default. Is there a flag or environment variable that would work? |
Beta Was this translation helpful? Give feedback.
-
The fact that they're now considered legacy doesn't affect the programs unless those algorithms are in fact used. IMHO it doesn't make the system any less secure compared to using OpenSSL 1.1 and not upgrading to 3.0. There's no "flag or environment variable" that affects Transmission in particular. There're, however, environment variables that affect OpenSSL (described there in https://www.openssl.org/docs/manmaster/man5/config.html#ENVIRONMENT) that you can set to e.g. use a different configuration file for a particular process ( |
Beta Was this translation helpful? Give feedback.
-
There are several other "new release" discussion threads, so I'm locking this one. |
Beta Was this translation helpful? Give feedback.
-
I see that #1777 is complete, but it doesn't cleanly apply to 3.00 due to the new submodule. Is there an ETA for a release with that change?
Beta Was this translation helpful? Give feedback.
All reactions