git: 627709f3ac - main - Status/2023Q2/openssl3.adoc: Fixes

Go to: [ bottom of page ] [ top of archives ] [ this month ]
From: Lorenzo Salvadore <salvadore_at_FreeBSD.org>
Date: Mon, 24 Jul 2023 14:35:51 UTC
The branch main has been updated by salvadore:

URL: https://cgit.FreeBSD.org/doc/commit/?id=627709f3aca8833ab381d2a7c49d1ba41920f4ee

commit 627709f3aca8833ab381d2a7c49d1ba41920f4ee
Author:     Graham Perrin <grahamperrin@FreeBSD.org>
AuthorDate: 2023-07-24 14:32:27 +0000
Commit:     Lorenzo Salvadore <salvadore@FreeBSD.org>
CommitDate: 2023-07-24 14:35:12 +0000

    Status/2023Q2/openssl3.adoc: Fixes
    
    Approved by:    Pierre Pronchery <pierre@freebsdfoundation.org>
    (original report submitter)
    Approved by:    carlavilla (mentor, implicit)
    Pull Request:   https://github.com/freebsd/freebsd-doc/pull/225
---
 .../en/status/report-2023-04-2023-06/openssl3.adoc   | 20 ++++++++++----------
 1 file changed, 10 insertions(+), 10 deletions(-)

diff --git a/website/content/en/status/report-2023-04-2023-06/openssl3.adoc b/website/content/en/status/report-2023-04-2023-06/openssl3.adoc
index 119ee459c4..c939fdb790 100644
--- a/website/content/en/status/report-2023-04-2023-06/openssl3.adoc
+++ b/website/content/en/status/report-2023-04-2023-06/openssl3.adoc
@@ -10,21 +10,21 @@ Contact: Pierre Pronchery <pierre@freebsdfoundation.org>
 Pierre has been tasked with importing OpenSSL 3 into the base system.
 
 OpenSSL is a library for general-purpose cryptography and secure communication.
-It provides an Open Source implementation of the SSL and TLS network protocols, which are widely used in applications such as e-mail, instant messaging, Voice over IP (VoIP), or more prominently the global Web (aka HTTPS).
-Assuming that the Apache and nginx web servers use OpenSSL, their combined market share for web traffic exceeds 50%, cementing the leadership and critical importance of OpenSSL as part of Internet's infrastructure.
+It provides an open source implementation of the SSL and TLS network protocols, which are widely used in applications such as e-mail, instant messaging, Voice over IP (VoIP), or more prominently the global Web (aka HTTPS).
+Assuming that the Apache and nginx web servers use OpenSSL, their combined market share for web traffic exceeds 50%, cementing the leadership and critical importance of OpenSSL as part of the infrastructure of the Internet.
 
-Since its initial release in August 2016, the 1.1 branch of OpenSSL has been adopted by most Linux and BSD systems, while remaining supported by the upstream maintainers through a Long Term Support policy.
-However, official support is planned to end in the middle of September this year, and it became urgent and necessary to consider adopting its successor for Long Term Support, the 3.0 branch.
+Since its initial release in August 2016, the 1.1 branch of OpenSSL has been adopted by most Linux and BSD systems, while remaining supported by the upstream maintainers through an LTS (long term support) policy.
+However, official support is planned to end in the middle of September this year, and it became urgent and necessary to consider adopting its successor for LTS, the 3.0 branch.
 
-OpenSSL has largely outgrown its ancestor SSLeay, now shipping over half a million single lines of code (SLOC) split in over 2.000 files.
-Perhaps as a consequence, its build system is relatively complex and normally requires Perl, which has been removed from FreeBSD's base system since 5.0-RELEASE.
-Thankfully however, it was possible to import and setup OpenSSL's 3.0.9 release the FreeBSD way, and it is now part of the base system as planned for FreeBSD's 14.0 release.
+OpenSSL has largely outgrown its ancestor SSLeay, now shipping over half a million single lines of code (SLOC) split in over two thousand files.
+Perhaps as a consequence, its build system is relatively complex and normally requires Perl, which was removed from base more than twenty years ago for FreeBSD 5.0-RELEASE.
+Thankfully however, it was possible to import and setup OpenSSL 3.0.9 the FreeBSD way, and it is now part of the base system as planned for FreeBSD 14.0-RELEASE.
 
-It is an understatement to mention that OpenSSL 3 is a new major release.
+To describe OpenSSL 3 as a major release is an understatement.
 First, its problematic licensing model has finally been solved, with a complete switch to the Apache License 2.0.
 Then, OpenSSL 3 introduces the concept of provider modules.
-While obsolete cryptographical algorithms have been isolated away into a "legacy" module, it is also possible to restrict the implementation to standards part of link:https://en.wikipedia.org/wiki/Federal_Information_Processing_Standards[FIPS] with the "fips" module.
-The latter can then benefit from a dedicated certification process, and be validated officially (like the 3.0.8 release when writing these lines).
+While obsolete cryptographical algorithms have been isolated to a _legacy_ module, it is also possible to restrict the implementation to the standards part of link:https://en.wikipedia.org/wiki/Federal_Information_Processing_Standards[FIPS] with the _fips_ module.
+The latter can then benefit from a dedicated certification process, and be validated officially (like the 3.0.8 release at the time of writing).
 
 Moreover, the updated library comes with a version bump, as applications using OpenSSL 1.1 need to be recompiled to use 3.0.
 Many API functions have been deprecated and replaced with newer, more generic alternatives, however it is still possible to explicitly request older APIs and have OpenSSL 3 expose them accordingly.