Any thoughts on when is openssl going to be updated?

Hi folks,
I was wondering if anyone knows when openssl is going to be updated on linux?

At the moment on manjaro we have:

openssl version
OpenSSL 1.1.1l  24 Aug 2021

For comparison on OSX:

openssl version
OpenSSL 3.0.0 7 sep 2021 (Library: OpenSSL 3.0.0 7 sep 2021)

On a similar note does anyone know why the -Qe flag doesn’t show openssl as installed on the system?

pacman -Qe |grep open

java-openjfx 16.u8-1
java8-openjfx 8.u202-3
jdk8-openjdk 8.u292-1
jre8-openjdk 8.u292-1
jre8-openjdk-headless 8.u292-1
libopenraw 0.3.0-1
mkinitcpio-openswap 0.1.0-3
networkmanager-openconnect 1.2.7dev+65+gca4187c-1
networkmanager-openvpn 1.8.14-1
openmpi 4.1.1-2
openresolv 3.12.0-1
openssh 8.7p1-2

Instead if we use Ss to search on upstream repo we see that openssl is already installed

pacman -Ss openssl

core/openssl 1.1.1.l-1 [installed]
    The Open Source toolkit for Secure Sockets Layer and Transport Layer Security
extra/pkcs11-helper 1.27.0-1 [installed]
    A library that simplifies the interaction with PKCS11 providers for end-user applications using a simple API and
    optional OpenSSL engine
extra/python-pyopenssl 20.0.1-1 [installed]
    Python3 wrapper module around the OpenSSL library
extra/xmlsec 1.2.32-1 [installed]
```

When edges have been rounded enough, probably. :man_shrugging:
It shouldn’t last long after Arch updates it.


You restricted the search to explicitly installed packages (-e option), whereas openssl is likely installed as a dependency.

1 Like

Thanks!

Wasn’t aware it was installed as dependency, thanks for clarifying.

AUR package openssl-git will provide the latest Linux version

$ pamac info openssl-git
Name                  : openssl-git
Version               : 3.0.0.beta1.r187.gef1e0242a9-1
1 Like

The Arch openssl package is currently flagged out of date for the 3.0 stable release. Once it’s determined everything that depends on it is compatible, it will be updated. 1.1.1 is still a supported LTS (Long Term Support) release, so it may take some time. It’s possible they may update opensssl to 3.0 and replace openssl-1.0 with openssl-1.1 since all other older versions are out of support. See here for more info.

The -Qe flag will only list explicitly installed packages. openssl is normally installed as a dependency. You can use -Qs to list all installed packages.

1 Like

I’m not sure how stable that is that’s why I didn’t want to take that chance, thanks.