From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by finch.gentoo.org (Postfix) with ESMTPS id 378DB1382C5 for ; Sat, 27 Mar 2021 01:47:10 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 6E8DAE07B3; Sat, 27 Mar 2021 01:47:06 +0000 (UTC) Received: from p-impout004.msg.pkvw.co.charter.net (p-impout004aa.msg.pkvw.co.charter.net [47.43.26.135]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id DBA4AE076B for ; Sat, 27 Mar 2021 01:47:05 +0000 (UTC) Received: from localhost ([96.28.177.163]) by cmsmtp with ESMTP id Py2al46g6LC0yPy2alIOCM; Sat, 27 Mar 2021 01:47:05 +0000 X-Authority-Analysis: v=2.3 cv=Q/OsHL+a c=1 sm=1 tr=0 a=xqrt2BZAGHte7XHhrxJgbA==:117 a=xqrt2BZAGHte7XHhrxJgbA==:17 a=HpEJnUlJZJkA:10 a=ONkqxpLgAAAA:8 a=CHMBqC342tEsIXu9jZoA:9 a=37-HeriWg6sA:10 a=tjmALrGxM7DUZ0c70rWr:22 a=RBBcRewTFc8P4JkPnay6:22 a=pHzHmUro8NiASowvMSCR:22 a=Ew2E2A-JSTLzCXPT_086:22 Date: Sat, 27 Mar 2021 01:47:00 +0000 From: "Thomas Mueller" To: gentoo-dev@lists.gentoo.org Subject: Re: [gentoo-dev] [News review] LibreSSL support discontinued References: <78a7442c39dd552b0b13353db491c44d04945d51.camel@gentoo.org> <6f310538dac68130bc267723c513b754e26b2d53.camel@gentoo.org> X-CMAE-Envelope: MS4wfDEL6/HJFyyEDRyxlICJQeu5rDLblMkfyQNG4JetPH5IZ6z2FRjPLnq5A1o5zS5YRTH72Fz7SOnpvj1hwhmtqM7YhGZ21PXjKJkgtHeBP6n7Q7reP/Gc YA8rWzaqQW7O8x2TIF379MSuJtQfxZfpmSSZNg8eSUqFNIQLTRKHPtHj Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-dev@lists.gentoo.org Reply-to: gentoo-dev@lists.gentoo.org X-Auto-Response-Suppress: DR, RN, NRN, OOF, AutoReply Message-Id: <20210327014706.6E8DAE07B3@pigeon.gentoo.org> X-Archives-Salt: 25245306-3f25-43db-a9d9-7db146ac3075 X-Archives-Hash: 6c267a9cd6c8df42146620dcd6cafd79 > On Sun, 2021-01-03 at 21:47 +0100, Michał Górny wrote: > Hello, > > Please review the news item inlined below. This is based on what > > I discussed with blueness (LibreSSL team lead). The news item is kinda > > long-ish because I wanted to include the full rationale since I believe > > our users will find it desirable to know it. > > If it's ok, I'd like to push it soonish. This will give people around > > 4 weeks to prepare and/or migrate their systems manually before being > > hit by the masks. Afterwards, we'll mask libressl with a prolonged > > removal date. I'm thinking of 3 months since I suspect that our > > packages will start strongly requiring OpenSSL by then. > > I'm mentioning the LibreSSL overlay since one of our users is > > interested in maintaining it. It will probably be the best alternative > > for users who want to continue fighting the lost cause without causing > > major problems for Gentoo mainline. > Thank you all for feedback. I've just pushed the last version. > Best regards, > Michał Górny Just a couple days ago, I found an article through Distrowatch: Void Linux is dropping LibreSSL in favor of OpenSSL. 2021-02-28 Void to switch back to OpenSSL void At the start of the year we mentioned the Gentoo project was considering dropping support for LibreSSL, a fork of the OpenSSL cryptography library. While LibreSSL was intended to be smaller, lighter, and more secure, a lot of work and improvements have gone into OpenSSL while not many Linux packages are tested against LibreSSL, causing problems for their maintainers. The extra effort to maintain compatibility with LibreSSL while new features arrive in OpenSSL first has caused the Void team to switch from running LibreSSL back to OpenSSL. "The Void Linux team is switching back to OpenSSL on March 5th, 2021 (2021-03-05). For most users, there should be no noticeable change. If you have any packages installed that are no longer provided by Void, or your system has explicit dependencies on LibreSSL, you will of course need to take action to ensure your system continues to function after the switch." URL of Void Linux article is https://voidlinux.org/news/2021/02/OpenSSL.html Tom