On Tue, Jan 29, 2019 at 2:14 AM Trevor Hemsley via CentOS-devel centos-devel@centos.org wrote:
On 29/01/2019 04:54, Maheshwari, Shagun wrote:
Hi,
There is a plan from CentOS to support OpenSSL 1.1.1 in future versions of CentOS 7 because openssl community has OpenSSL 1.1.1 which was released in Sep 2018 and it has fixed for many vulnerabilities.
And CentOS has 1.0.2k version.
Can you please update on this?
There is no plan as CentOS is not the place that decides these things. CentOS is a rebuild of RHEL and rebuilds and ships those things that make up RHEL. It doesn't go off and unilaterally decide to upgrade a core component of the operating system just because it's new and shiny.
If you want it in CentOS then it has to go into RHEL first.
Trevor
It could go in EPEL or upstresm in RHEL's "Software Collections Library". But that would be a parallel build, available for alternate compilation, not an in-place replacement. An in-place replacement would be *hard*, and would probably be better slated for RHEL 8. I've not heard any progress on that since the beta in November: My guess, as RHEL and thus CentOS has gotten larger and IBM bought Red Hat, is not to hope for RHEL 8 before June.