On 20 Aug, Dave Fisher wrote: > > >> On Aug 20, 2020, at 10:27 AM, Matthias Seidel <matthias.sei...@hamburg.de> >> wrote: >> >> Hi Don, >> >> Am 20.08.20 um 18:35 schrieb Don Lewis: >>> >>>> Need to look at the history of >>>> >>>> (1) openssl >>>> (2) curl >>>> (3) and the code that uses those. >>> The version of openssl used by 4.1.7 is seriously out of date and >>> doesn't support recent versions of TLS. >> >> Can we update openssl in 4.1.8 at least to the version we use in >> trunk/AOO42X? > > Yes, please. > >> >> That version is "new" enough and has proven to be stable. > > Here is the version history: > > 3.4: openssl-0.9.8o > 4.0: openssl-0.9.8o > 4.1.0: openssl-0.9.8zg > 4.1.6: openssl-0.9.8zh > > 42X: openssl-1.0.2t > > A general question as we triage the update services bug, > > Have we ever used the system openssl in any of our released builds?
Not that I'm aware of. The FreeBSD port uses system OpenSSL, but the port is compiled and packaged for each OS release. --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@openoffice.apache.org For additional commands, e-mail: dev-h...@openoffice.apache.org
