macOS
brew install openssl@4local Homebrew formula metadata
sudo port install opensslMacPorts ports tree · devel/openssl/Portfile · 来源: api.github.com
安装
brew install openssl@4local Homebrew formula metadata
sudo port install opensslMacPorts ports tree · devel/openssl/Portfile · 来源: api.github.com
sudo apk add opensslAlpine Linux edge package indexes · openssl · 来源: dl-cdn.alpinelinux.org
sudo apt install opensslDebian stable package indexes · openssl · 来源: deb.debian.org
sudo dnf install opensslFedora Rawhide package metadata · openssl · 来源: dl.fedoraproject.org
nix profile install nixpkgs#opensslnixpkgs package indexes · openssl · 来源: raw.githubusercontent.com
sudo pacman -S opensslArch Linux sync databases · openssl · 来源: geo.mirror.pkgbuild.com
sudo zypper install opensslopenSUSE Tumbleweed package metadata · openssl · 来源: download.opensuse.org
choco install opensslChocolatey community package catalog · openssl · 来源: community.chocolatey.org
scoop install main/opensslScoop official bucket manifest trees · bucket/openssl.json · 来源: api.github.com
winget install --id ShiningLight.OpenSSL.Dev -eWindows Package Manager source index · ShiningLight.OpenSSL.Dev · 来源: cdn.winget.microsoft.com
概览
Cryptography and SSL/TLS Toolkit
历史
OpenSSL is one of the foundational open-source cryptography and TLS toolkits: a C library, command-line utility, and provider of low-level primitives used by operating systems, language runtimes, servers, package managers, and embedded products. The Homebrew `openssl@4` formula tracks the 4.0 series, a feature-release branch announced by the OpenSSL project on April 14, 2026.
The OpenSSL codebase descends from SSLeay, the SSL implementation written by Eric A. Young and Tim J. Hudson in the 1990s. The OpenSSL project published its first release on December 23, 1998, after SSLeay development stopped, and it became the long-running community-maintained successor for SSL/TLS and general-purpose cryptographic APIs.
OpenSSL evolved from the pre-TLS web-security era into a toolkit spanning TLS protocol support, X.509 certificate handling, cryptographic algorithms, engines, command-line inspection tools, and compliance-oriented modules. OpenSSL 3.0 introduced the provider architecture, moving algorithm implementations behind loadable providers and making FIPS use a provider-based model. OpenSSL 4.0 continued that major-version lineage with feature and compatibility changes rather than an LTS promise.
OpenSSL became a default dependency because it solved two hard packaging problems at once: it supplied a portable TLS stack and a broad cryptographic library. Unix-like operating systems, web servers, mail servers, VPNs, database clients, programming language bindings, and package managers built around it, which made ABI transitions and security updates highly visible across distributions.
The project’s adoption history also includes hard lessons in security maintenance. Events such as the 2014 Heartbleed vulnerability changed how many organizations viewed OpenSSL patching, funding, audits, and dependency tracking. Later 3.x and 4.x branches are packaged with branch-specific formulas so developers can pin applications to a supported ABI and test migrations deliberately.
Developers use the `openssl` executable to generate keys and CSRs, inspect certificates, test TLS endpoints, convert key formats, create hashes and signatures, and debug trust-chain problems. Applications link against libssl and libcrypto for TLS sessions, certificate verification, envelope encryption, digests, random number generation, and public-key operations.
Package maintainers care about exactly which OpenSSL line is installed because headers, library names, provider configuration, FIPS behavior, and deprecated APIs can affect downstream builds. A versioned package such as `openssl@4` lets build scripts and CI select the 4.0 branch while older software remains on a 3.x or LTS branch.
For package nerds, OpenSSL is the dependency that makes dependency graphs feel real: a small ABI or policy change can ripple through language ecosystems, OS images, containers, and vendored binaries. The `@4` suffix is meaningful because it advertises a major cryptographic-runtime transition, not a cosmetic formula split.
安全态势
没有找到 openssl@4 的匹配本地密钥处理 manifest。Nucleus 软件包元数据仍在此发布,以便未来覆盖拥有稳定的软件包 URL。
在无人值守的代理使用前,请检查该工具是否读取明文凭据、写入远程状态、发布制品或调用插件。
local files
These source-backed paths show where this package keeps local settings or durable credentials. Automic Vault can use them as review targets for secret scanning, migration, and command approval.
Config paths the tool may read or write during local use.
$OPENSSLDIR/openssl.cnf可执行文件
| 命令 | 类型 | 暴露范围 | 备注 |
|---|---|---|---|
| 没有可执行文件数据。 | |||
新鲜度
这些信号区分页生成时间、软件包管理器活动和上游发布比较。只有存在证据 URL 和可比较版本时,才会提示版本落后。
https://github.com/openssl/openssl
安装元数据
| 软件包键 | brew:openssl@4 |
|---|---|
| 版本 | 4.0.1 |
| 软件包管理器 | Homebrew |
| 软件包管理器页面 | https://formulae.brew.sh/formula/openssl@4 |
| 主页 | https://openssl-library.org |
| 仓库 | https://github.com/openssl/openssl |
| 上游文档 | https://docs.openssl.org/4.0/man5/config |
| 许可证 | Apache-2.0 |
| 源码归档 | https://github.com/openssl/openssl/releases/download/openssl-4.0.1/openssl-4.0.1.tar.gz |
| 最后更新 | 2026-07-04T15:59:44-04:00 |
| Pulse | updated |
| 依赖 | ca-certificates |
| Bottle | 可用 (于 arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux) |
| Homebrew post-install | 未定义 |
| 服务 | 未声明 |
| 注意事项 | To add additional certificates, place .pem files in $HOMEBREW_PREFIX/etc/openssl@4/certs and run $HOMEBREW_PREFIX/opt/openssl@4/bin/c_rehash |
注册表事实
| Source Database | Homebrew formula API |
|---|---|
| Tap | homebrew/core |
| Full Name | openssl@4 |
| Version Scheme | 0 |
| Revision | 0 |
| Bottle Stable Root URL | https://ghcr.io/v2/homebrew/core |
| Deprecated | no |
| Disabled | no |
| Keg Only | yes |
| URL Keys |
|
源数据库匹配
匹配项来自外部软件包管理器索引,并与本地 Automic Vault 软件包链接分开显示。
libssl-dev 3.5.6-1~deb13u1
Secure Sockets Layer toolkit - development files
sudo apt install libssl-devlibssl-doc 3.5.6-1~deb13u1
Secure Sockets Layer toolkit - development documentation
sudo apt install libssl-doclibssl3t64 3.5.6-1~deb13u1
Secure Sockets Layer toolkit - shared libraries
sudo apt install libssl3t64openssl 3.5.6-1~deb13u1
Secure Sockets Layer toolkit - cryptographic utility
sudo apt install opensslopenssl-provider-fips 3.5.6-1~deb13u1
Secure Sockets Layer toolkit - cryptographic utility
sudo apt install openssl-provider-fipsopenssl-provider-legacy 3.5.6-1~deb13u1
Secure Sockets Layer toolkit - cryptographic utility
sudo apt install openssl-provider-legacyopenssl
nix profile install nixpkgs#openssllibssl-dev 3.0.13-0ubuntu3
Secure Sockets Layer toolkit - development files
sudo apt install libssl-devlibssl-doc 3.0.13-0ubuntu3
Secure Sockets Layer toolkit - development documentation
sudo apt install libssl-doclibssl3t64 3.0.13-0ubuntu3
Secure Sockets Layer toolkit - shared libraries
sudo apt install libssl3t64openssl 3.0.13-0ubuntu3
Secure Sockets Layer toolkit - cryptographic utility
sudo apt install openssllibcrypto3 3.5.7-r0
Crypto library from openssl
sudo apk add libcrypto3libssl3 3.5.7-r0
SSL shared libraries
sudo apk add libssl3openssl 3.5.7-r0
Toolkit for Transport Layer Security (TLS)
sudo apk add opensslopenssl-dbg 3.5.7-r0
Toolkit for Transport Layer Security (TLS) (debug symbols)
sudo apk add openssl-dbgopenssl-dev 3.5.7-r0
Toolkit for Transport Layer Security (TLS) (development files)
sudo apk add openssl-dev来源线索
此页面由 av-web 从 scripts/generate-pkg-sqlite.py 生成的私有软件包 SQLite 工件提供。
View the package source record on GitHub.