Download
Browse source Changelog
Documentation
Project   Bug Bounty   Help us   Known bugs   TODO Protocols   CA bundle   HTTP Cookies   HTTP/2   SSL Certs Releases   Security   Version numbers   Vulnerabilities curl tool   man page   Tutorial   HTTP scripting Who and Why
libcurl
ABI API Competitors Examples Features Mailing list Related libs Using libcurl Tutorial Testimonials
Get Help
curl-library curl-users Mailing lists Book: Everything curl Video presentations Report a bug Paid support
Development
Autobuilds Code Style Contribute Deprecate Internals Release Notes Release Procedure Roadmap Run Tests Security Process Specifications Test curl
News
Changelog Release table
curl / Mailing Lists / curl-library / Single Mail
Buy commercial curl support from WolfSSL. We help you work out your issues, debug your libcurl applications, use the API, port to new platforms, add new features and more. With a team lead by the curl founder himself.

Nominating polarssl for deprecation

From: Daniel Stenberg via curl-library <curl-library_at_cool.haxx.se>
Date: Tue, 14 May 2019 16:48:31 +0200 (CEST)

Hi,

The polarssl TLS library has not had an update in over three years. The last
release was done on January 7 2019 [1]. That library has been superceded by
the mbedtls library, which is the current incarnation of it.

In curl we support both, with two separate implementations.

I propose that we move to DEPRECATE PolarSSL support in curl because it seems
unlikely that this library is a good choice for users to get proper TLS
security and support today and at the same time there are plenty of good and
updated alternatives.

I consider it likely that the existing users of curl + polarssl out there are
stuck on old curl versions and when they eventually manage to update curl they
should also be able to update their TLS library.

If nobody objects, I will file a PR soon that makes the polarssl disabled in
code but still present, and mark it for complete removal six months after the
release where it is marked as deprecated. Possibly then marked deprecated in
the July 17 2019 release, removed from the code after January 17 2020.

Opinions?

[1] = https://tls.mbed.org/tech-updates/releases 

-- 
  / daniel.haxx.se | Get the best commercial curl support there is - from me
                   | Private help, bug fixes, support, ports, new features
                   | https://www.wolfssl.com/contact/
-------------------------------------------------------------------
Unsubscribe: https://cool.haxx.se/list/listinfo/curl-library
Etiquette:   https://curl.haxx.se/mail/etiquette.html
Received on 2019-05-14