OpenSSL is a widely used open-source suite that applications can use to communicate securely. Its 1.1.1 version was originally released in September 2018. Since the official provides 5 years of updates and maintenance for each long-term support version, The official OpenSSL blog recently warned that the support for OpenSSL 1.1.1 will be released in September 2023. End, urge users to upgrade.
▲ OpenSSL 1.1.1 end of support warning, source OpenSSL blog
Users must upgrade to a newer version of OpenSSL before the end of life of OpenSSL 1.1.1 on September 11, officials said. The current latest version, OpenSSL 3.1, will be officially supported until March 14, 2025, while the long-term version, OpenSSL 3.0, will have a life cycle of up to September 7, 2026.
It is reported that OpenSSL 3.0 has many major changes compared to the old version and is not fully compatible with the previous version. The changes of 3. X compared to the old version include joining the Federal Information Processing Standard (FIPS), using the Apache License 2.0 open-source authorization, and abandoning many old APIs.
The official said that most software using OpenSSL 1.1.1 could run normally only after recompilation, but developers will see many compilation warnings for deprecated APIs. Before the end of the OpenSSL 1.1.1 life cycle, users need to take necessary actions to ensure official support and security.