Bug 1219879

Summary: [TRACKERBUG] Remove EOL OpenSSL 1.1.1 and OpenSSL 1.0.0 from Tumbleweed
Product: [openSUSE] openSUSE Tumbleweed Reporter: Otto Hollmann <otto.hollmann>
Component: BasesystemAssignee: Pedro Monreal Gonzalez <pmonrealgonzalez>
Status: IN_PROGRESS --- QA Contact: E-mail List <qa-bugs>
Severity: Normal    
Priority: P5 - None CC: meissner, pmonrealgonzalez
Version: Current   
Target Milestone: ---   
Hardware: Other   
OS: Other   
Whiteboard:
Found By: --- Services Priority:
Business Priority: Blocker: ---
Marketing QA Status: --- IT Deployment: ---
Bug Depends on: 1219306, 1219882, 1219884, 1219881, 1219886    
Bug Blocks:    

Description Otto Hollmann 2024-02-13 13:22:22 UTC 
This bug collects the challenges and packages that need to be adapted before removing OpenSSL 1.1.1 and OpenSSL 1.0.0

OpenSSL 1.1.1 (package openssl1_1) is EOL since 11th September 2023.
OpenSSL 1.0.0 (package openssl1_0_0) is EOL since 31th December 2019.

Therefore, it makes sense to get rid of them and we are going to remove them from Factory in the near future. Unfortunately some packages still rely/depend on these old OpenSSL versions. If we would like to keep these packages, they must be adapted to use OpenSSL 3.

Currently these packages are usually hardcoded to use specific openssl package, e.g.:
> BuildRequires:  libopenssl-1_1-devel
The preferred way is to use our meta package
> BuildRequires:  libopenssl
or
> BuildRequires:  libopenssl-devel
that will always pull respective packages with the default OpenSSL version (at the moment libopenssl3 or libopenssl-3-devel).

Migration guide can be found here:
https://www.openssl.org/docs/man3.0/man7/migration_guide.html

List of packages that are using old OpenSSL:
dd_rescue
EternalTerminal
fdo-client
libredfish
libzrtpcpp
python
Comment 1 Otto Hollmann 2024-02-13 14:46:54 UTC 
EternalTerminal https://build.opensuse.org/request/show/1146417
fdo-client https://build.opensuse.org/request/show/1146409

Separate bugs for remaining packages were opened and linked with this bug.