Masu haɓaka rarrabawar Linux ta Void Linux sun amince da wata shawara da aka yi la'akari da ita tun watan Afrilun bara don komawa amfani da ɗakin karatu na OpenSSL. An shirya maye gurbin LibreSSL tare da OpenSSL don Maris 5th. Ana tsammanin cewa canjin ba zai shafi tsarin yawancin masu amfani ba, amma zai sauƙaƙe sauƙin kulawar rarraba kuma zai magance matsaloli da yawa, alal misali, zai ba da damar tattara OpenVPN tare da madaidaicin ɗakin karatu na TLS (a halin yanzu, saboda. zuwa matsaloli tare da LibreSSL, an haɗa kunshin tare da Mbed TLS). Farashin komawa zuwa OpenSSL zai zama dakatar da tallafi ga wasu fakitin da ke daure da tsohuwar OpenSSL API, tallafin wanda aka dakatar da shi a cikin sabbin rassan OpenSSL, amma an kiyaye shi a cikin LibreSSL.
A baya can, ayyukan Gentoo, Alpine da HardenedBSD sun riga sun dawo daga LibreSSL zuwa OpenSSL. Babban dalilin dawowar OpenSSL shine haɓaka rashin daidaituwa tsakanin LibreSSL da OpenSSL, wanda ya haifar da buƙatar samar da ƙarin faci, kulawa mai rikitarwa kuma ya sa yana da wahala a sabunta sigogin. Misali, masu haɓaka Qt sun ƙi tallafawa LibreSSL, kuma suna barin aikin magance matsalolin daidaitawa ga masu haɓaka rarraba, wanda ke buƙatar ƙarin ƙarin aiki zuwa tashar jiragen ruwa Qt6 yayin amfani da LibreSSL.
Bugu da ƙari, saurin ci gaban OpenSSL ya haɓaka a cikin 'yan shekarun nan, tare da ayyuka masu yawa da aka yi don inganta tsaro na lambar tushe da ƙara ƙayyadaddun ƙayyadaddun dandamali na hardware, da samar da cikakken aiwatar da TLS 1.3. Yin amfani da OpenSSL kuma zai ba da izinin faɗaɗa tallafi don algorithms na ɓoyewa a cikin wasu fakiti; misali, a cikin Python, lokacin da aka haɗa tare da LibreSSL, ƙayyadaddun saiti na ciphers kawai aka haɗa.
source: budenet.ru