OpenSSL 4.0 has been released as a major update to the widely-used SSL/TLS and cryptography library. Key additions include Encrypted Client Hello (ECH) support to encrypt the initial TLS handshake and hide Server Name Indication, improving privacy. The release also adds post-quantum cryptography improvements including RFC 8998 support, ML-DSA-MU, and a tls-hybrid-sm2-mlkem post-quantum group. Breaking changes include removal of legacy SSLv3, SSLv2 Client Hello, engine support, and Darwin i386/PowerPC targets.
Sort: