After five months of active development, the new version of the library Openssl 3.3.0 has been released. This update includes the implementation of the SSL/TLS protocols and a wide range of encryption algorithms. The OpenSSL 3.3 support period is scheduled to last until April 2026. Meanwhile, previous versions of Opensl – 3.2, 3.1, and 3.0 LTS – will be supported until November 2025, March 2025, and September 2026, respectively. The source code of the project is available under the Apache 2.0 license.
The latest Innovations in the Opensl 3.3.0 update open new horizons in protecting Internet connections. The release introduces numerous changes geared towards enhancing performance and security.
With the new Openssl 3.3.0, users can expect several improvements, such as:
- Added QLOG support for tracking QUIC connections
- Developed API for configuring downtime when using QUIC and determining the possibility of adding extra flows
- Introduced APIs for deactivating implicit QUIC event processing and checking the size and usage of the QUIC stream buffer
- Presented SSL_WRITE_EX2 for optimized transmission of the end of the flow using QUIC
Other enhancements in algorithms and APIs include:
- Implementation of Blake2S support with customizable output length, similar to Blake2b
- Added API for secure time handling on 32-bit systems beyond 2038 and new functions for certificates manipulation
- Enhanced capabilities of the EVP_PKEY_FROMDATA function for CRT parameters output
Further optimization and safety enhancements in Openssl 3.3.0 incorporate:
- Optimization and improvements for AES-GCM on ARM Neuverse and optimization for Apple Silicon M3
- Assembled MD5 for Loongarch64 and RISC-V Vector Foreign Assum for various cryptographic functions
- Establishment of new rules for provider configurations and changes in behavior in response to HTTP checks to boost error