Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

PEP 644: Mention Void and Gentoo changes (GH-1860) #1860

Merged
merged 1 commit into from
Mar 3, 2021
Merged

PEP 644: Mention Void and Gentoo changes (GH-1860) #1860

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
15 changes: 9 additions & 6 deletions pep-0644.rst
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -8,7 +8,7 @@ Type: Standards Track
Content-Type: text/x-rst
Created: 27-Oct-2020
Python-Version: 3.10
Post-History: 27-Oct-2020
Post-History: 27-Oct-2020, 03-Mar-2021


Abstract
Expand Down Expand Up @@ -124,7 +124,7 @@ OpenSSL 1.1.1 added TLS 1.3, SHA-3, X448 and Ed448.
- Debian 10 Buster
- Fedora 29+
- FreeBSD 11.3+
- Gentoo Linux stable
- Gentoo Linux stable (dropped LibreSSL as alternative in January 2021 [10]_)
- HardenedBSD (switched back to OpenSSL in 2018 [3]_)
- Linux Mint 19.3+
- macOS (python.org installer)
Expand All @@ -135,6 +135,7 @@ OpenSSL 1.1.1 added TLS 1.3, SHA-3, X448 and Ed448.
- SUSE Enterprise Linux 15-SP2
- Ubuntu 18.10+
- Ubuntu 20.04 LTS / Focal
- VoidLinux (switched back to OpenSSL in March 2021 [5]_)
- Windows (python.org installer, Conda)


Expand All @@ -159,10 +160,11 @@ created: 2014-04 (forked from OpenSSL 1.0.1g)
- OpenBSD
- OpenELEC (discontinued)
- TrueOS (discontinued)
- VOID Linux (currently moving back to OpenSSL [5]_)

Some distributions like FreeBSD, Gentoo, and OPNsense also feature LibreSSL
instead of OpenSSL as non-standard TLS libraries.
Some distributions like FreeBSD and OPNsense also feature LibreSSL
instead of OpenSSL as non-standard TLS libraries. Gentoo discontinued
LibreSSL as an alternative to OpenSSL in January 2021 [10]_ due to
compatibility issues and little testing.

OpenBSD ports has a port ``security/openssl/1.1`` which is documented as
"[...] is present to provide support for applications which cannot be made
Expand Down Expand Up @@ -324,11 +326,12 @@ References
.. [2] https://github.com/libressl-portable/portable/issues/455
.. [3] https://hardenedbsd.org/article/shawn-webb/2018-04-30/hardenedbsd-switching-back-openssl
.. [4] https://lists.alpinelinux.org/~alpine/devel/%3CCA%2BT2pCGFeh30aEi43hAvJ3yoHBijABy_U62wfjhVmf3FmbNUUg%40mail.gmail.com%3E
.. [5] https://github.com/void-linux/void-packages/issues/20935
.. [5] https://voidlinux.org/news/2021/02/OpenSSL.html
.. [6] https://forums.swift.org/t/rfc-moving-swiftnio-ssl-to-boringssl/18280
.. [7] https://openports.se/security/openssl/1.1
.. [8] https://www.openssl.org/docs/OpenSSL300Design.html
.. [9] https://www.openssl.org/policies/releasestrat.html
.. [10] https://www.gentoo.org/support/news-items/2021-01-05-libressl-support-discontinued.html


Copyright
Expand Down