Abathuthukisi bokusabalalisa kwe-Void Linux bagunyaze isiphakamiso ebesicatshangelwa kusukela ngo-Ephreli wonyaka odlule sokubuyela ekusebenziseni umtapo wezincwadi we-OpenSSL. Ukushintshwa kwe-LibreSSL nge-OpenSSL kuhlelelwe umhlaka-5 Mashi. Kulindeleke ukuthi ushintsho ngeke luthinte izinhlelo zabasebenzisi abaningi, kodwa luzokwenza kube lula kakhulu ukugcinwa kokusabalalisa futhi luzoxazulula izinkinga eziningi, isibonelo, kuzokwenza kube nokwenzeka ukuhlanganisa i-OpenVPN ngelabhulali ye-TLS evamile (okwamanje, ezinkingeni nge-LibreSSL, iphakheji ihlanganiswe ne-Mbed TLS). Intengo yokubuyela ku-OpenSSL izoba ukumiswa kokusekelwa kwamanye amaphakheji ahlanganiswe ne-OpenSSL API endala, usekelo olwanqanyulwa emagatsheni amasha e-OpenSSL, kodwa lwagcinwa ku-LibreSSL.
Ngaphambilini, amaphrojekthi we-Gentoo, Alpine kanye ne-HardenedBSD asevele abuyile esuka ku-LibreSSL aya ku-OpenSSL. Isizathu esiyinhloko sokubuyiswa kwe-OpenSSL kwaba ukungezwani okukhulayo phakathi kwe-LibreSSL ne-OpenSSL, okuholele esidingweni sokuhlinzeka ngeziqephu ezengeziwe, ukulungiswa okuyinkimbinkimbi futhi kwenza kwaba nzima ukubuyekeza izinguqulo. Isibonelo, abathuthukisi be-Qt bayenqaba ukusekela i-LibreSSL, futhi bashiye umsebenzi wokuxazulula izinkinga zokuhambisana kubathuthukisi bokusabalalisa, okudinga umsebenzi omningi ongeziwe ukuze kuthengwe i-Qt6 uma usebenzisa i-LibreSSL.
Ngaphezu kwalokho, ijubane lokuthuthukiswa kwe-OpenSSL liye lashesha eminyakeni yamuva, nomsebenzi omkhulu owenziwe ukuthuthukisa ukuphepha kwesisekelo sekhodi nokwengeza ukulungiselelwa okuqondene nengxenyekazi yezingxenyekazi zekhompuyutha, nokuhlinzeka ngokusebenza okugcwele kwe-TLS 1.3. Ukusebenzisa i-OpenSSL kuzovumela nosekelo olwandisiwe lwama-algorithms wokubethela kwamanye amaphakheji; isibonelo, ku-Python, lapho ihlanganiswa ne-LibreSSL, kufakwe isethi elinganiselwe yama-cipher.
Source: opennet.ru