openssl

The current firmware is using OpenSSL 1.1.1, which already ends support in September 2023. This means that it is no longer possible to get public security updates since last month. I still remember that it took about a year to migrate from OpenSSL 1.0.2 to 1.1.1 in 2019. I know there's so much...

Today I had a weird issue with AdGuard Home in two AX86U routers. This night, all of a sudden, AdGuard stopped working after a reboot and did not start at all. Thus, I was mostly disconnected from the Internet. When I checked the service, it was "dead" and nothing would revive it. #...

After update to amtm 3.2.0 on FW-384.18 (RT-AC88U), I can't update entware packages (armv7sf-k2.6). Downloading https://bin.entware.net/armv7sf-k2.6/Packages.gz *** Failed to download the package list from https://bin.entware.net/armv7sf-k2.6/Packages.gz Collected errors: * opkg_download...

Whenever I try to update/upgrade opkg I'm getting the following response: admin@RT-AC68U-08B0:/usr/lib# opkg update Downloading http://bin.entware.net/armv7sf-k2.6/Packages.gz wget: error while loading shared libraries: libssl.so.1.1: cannot open shared object file: No such file or directory ***...

I would like to measure the impact of RT-AX-88U's special AES CPU instructions on the performance of OpenSSL and/or OpenVPN in particular. So I am seeking advice how to switch on/off the usage of AES cpu instruction set. The method described here...

I was digging into something else - OpenVPN on MIPS 24kc on Atheros (MIPS big endian as compared to little endian on AsusWRT Broadcom MIPS targets) Target was AR9531 (Atheros) where OpenWRT deliberately disabled a critical function as a default... sfx@blue:~/builds/openwrt$ less .config |...

I was having a thought about OpenSSL 1.1.1 and started the below as a response in a different thread, but I realize it's grown wildly off-topic for that thread. This is just a discussion point and a request for someone with more understanding than I to chime in as to if I'm on the right track...

I was wondering if there would possibly be a change from OpenSSL to LibreSSL from OpenBSD's project. OpenSSL is overly complicated in code,while LibreSSL is smaller code base, which in theory would have less chance of bugs/security-bugs.