Cryptography and SSL/TLS Toolkit

Welcome to OpenSSL!

OpenSSL is a robust, commercial-grade, and full-featured toolkit for the Transport Layer Security (TLS) and Secure Sockets Layer (SSL) protocols. It is also a general-purpose cryptography library. For more information about the team and community around the project, or to start making your own contributions, start with the community page. To get the latest news, download the source, and so on, please see the sidebar or the buttons at the top of every page.

OpenSSL is licensed under an Apache-style license, which basically means that you are free to get and use it for commercial and non-commercial purposes subject to some simple license conditions.

For a list of vulnerabilities, and the releases in which they were found and fixes, see our Vulnerabilities page.

Latest News

21-Apr-2020Security Advisory: one high severity fix in SSL_check_chain()
21-Apr-2020OpenSSL 1.1.1g is now available, including a security fix
31-Mar-2020OpenSSL 1.1.1f is now available, including bug fixes
17-Mar-2020OpenSSL 1.1.1e is now available, including bug and security fixes
17-Feb-2020New Blog post: QUIC and OpenSSL
20-Dec-2019OpenSSL 1.0.2u is now available, including security fixes



Please remember that export/import and/or use of strong cryptography software, providing cryptography hooks, or even just communicating technical details about cryptography software is illegal in some parts of the world. So when you import this package to your country, re-distribute it from there or even just email technical suggestions or even source patches to the authors or other people you are strongly advised to pay close attention to any laws or regulations which apply to you. The authors of OpenSSL are not liable for any violations you make here. So be careful, it is your responsibility.