Hi!
In blog.ipfire.org - IPFire 2.27 - Core Update 175 is available for testing I read this:
OpenSSL 3.1.0
IPFire makes heavy use of this cryptography library, which is why keeping it up to date (without causing any interference to existing installations) is an important task for the development team. Core Update 175 updates OpenSSL to version 3.1.0, for which some work under the hood was necessary, such as ensuring all dependent packages were ready for using OpenSSL’s API, which has changed from the 1.1.x series.
To avoid breaking any custom software IPFire users may run on their installations, OpenSSL 1.1.1’s files remain untouched on existing installations until the release of Core Update 176. However, please note that OpenSSL 1.1.1 is scheduled for end of life on September 11, 2023, and ensure any custom changes are made compatible to OpenSSL 3.1.0 as soon as possible.
I wonder how do I know if I am using OpenSSL1 or OpenSSL3? Am I using it with OpenVPN? What do I need to do? Create new p12-cerificates?
One older certificate have info like this:
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
X509v3 extensions:
X509v3 Basic Constraints:
Do those “Version: 3” and “v3” in the certificate refer to SSL?