/ Register

Learn about Centmin Mod LEMP Stack today
Register Now

Beta Branch enable OPENSSL_SYSTEM_USE='y' by default for EL8 & EL9 in 130.00beta01

Discussion in 'Centmin Mod Github Commits' started by eva2000, Jun 9, 2024.

Previous Thread Next Thread
Loading...
  1. Jun 9, 2024 #1
    eva2000

    eva2000 Administrator Staff Member

    58,893
    12,490
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +19,122
    Local Time:
    9:16 AM
    Nginx 1.31.x
    MariaDB 10.x/11.4+/12.3+
    enable OPENSSL_SYSTEM_USE='y' by default for EL8 & EL9 in 130.00beta01

    - enable OPENSSL_SYSTEM_USE='y' by default for EL8 and EL9 to use system OpenSSL versions for Nginx builds. CentOS 7 originally compiled OpenSSL 1.1.1 with Ngixn for TLSv1.3 and HTTP/2 support when CentOS 7 system OpenSSL 1.0.2 older didn't support TLSv1.3 or HTTP/2. Now with EL8 and EL9 operating systems their system OpenSSL versions are newer. EL8 uses OpenSSL 1.1.1 and EL9 uses OpenSSL 3.0.7 with backported patches keeping same version number. This will speed up Nginx installs/recompiles/upgrades as it no longer needs to compile OpenSSL 1.1.1
    - you can revert to compiling OpenSSL 1.1.1, or 3.0/3.1/3.2/3.3 by setting OPENSSL_SYSTEM_USE='n' in persistent config file /etc/centminmod/custom_config.inc before initial Centmin Mod installs or before running centmin.sh menu option 4
    - other scenarios which will auto disable OPENSSL_SYSTEM_USE include, if you set LIBRESSL_SWITCH='y' or BORINGSSL_SWITCH=''y' to use LibreSSL or BoringSSL with Nginx instead of OpenSSL or when you set NGINX_QUIC_SUPPORT='y' to enable Nginx HTTP/3 which requires quicTLS OpenSSL fork compiled library with Nginx
    - CentOS 7 will continue with compiled OpenSSL 1.1.1

    Continue reading...

    130.00beta01 branch

    Support Centmin Mod


    If you find Centmin Mod useful, please help support Centmin Mod
     
Previous Thread Next Thread
Loading...

.