Bionic at point-zero shipped with two OpenSSL series the legacy 1.0.2 and non-lts 1.1.0. We made the call that 1.1.0 series is unsupportable over the 10 years, and thus chose (as one time only event) upgrade to 1.1.1 series. It was primarily driven by supportability and maintenance concern.
Note, many applications in bionic, despite using 1.1.1 series do not support TLSv1.3. And many use 1.02. We do not currently have supportability concerns of the GnuTLS 3.5 in bionic over the bionic lifespan. Thus the same premise as to why we went through the painful process of OpenSSL backport do not stand. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1851427 Title: Consider updating GNUTLS for TLSv1.3 and unified config w/Focal To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/gnutls28/+bug/1851427/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs