-
Notifications
You must be signed in to change notification settings - Fork 30.3k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
OpenSSL 3.1 in Node 18 #47177
Comments
Unlikely, for the following reason (from here):
Compare the release schedule for v18.x:
IOW, openssl 3.1 goes EOL 1.5 month earlier than v18.x does. We could bring v18.x's EOL date forward (we've done that before) but only when there's a really compelling reason. I don't think there's anything in 3.1 that would warrant such a move. |
cc @nodejs/lts @nodejs/releasers I'm in agreement with @bnoordhuis -- it makes little sense to update to a non-LTS OpenSSL version in LTS Node.js 18. I'd go further and suggest that we keep the upcoming Node.js 20 on OpenSSL 3.0 as well -- the end of support date for OpenSSL 3.0 is after the end of support date for Node.js 20. |
Thank you for the explanation, it makes sense from a timeline perspective. On the other hand, OpenSSL 3.1 contains multiple important performance fixes that openssl decided not to backport onto 3.0 because it requires an exception in their process. Here are 3 commits that are not in 3.0, that speed up reading a certificate bundle from the OS ( openssl/openssl#18846 has a list that references more performance issues that were fixed in 3.1 vs. 3.0. Based on these performance issues and fixes, is it possible to reconsider upgrading Node 18 and 20 to OpenSSL 3.1? |
@krk We can likely add compatibility with OpenSSL 3.1 so that you can either build Node.js from source and link it against some OpenSSL 3.1 release or maybe even dynamically link against OpenSSL 3.1. Beyond that, it remains very unlikely that our official builds will be linked against an OpenSSL version that will reach its end-of-life status so soon. |
I don't think there's anything else to discuss so I'll go ahead and close this. LMK if there is reason to reopen. |
Now that OpenSSL 3.1 is out, is there a plan to update Node 18 to use it?
The text was updated successfully, but these errors were encountered: