NGINX 1.21.0 mainline with brotli support, TLS 1.3 final (RFC 8446) built against OpenSSL 1.1.1k for Red Hat Enterprise Linux and CentOS

NGINX 1.21.0 mainline version with brotli compression library from Google, TLS 1.3 Final (RFC 8446), http2 (HTTP/2), ngx cache purge and ngx http geoip2 module support. SSL is built dynamically against OpenSSL 1.1.1k added to the CentOS/RHEL repository. Please note that TLS 1.3 final version is supported in Chrome 70+ and Mozilla Firefox 63+. To enable TLS 1.3, you must specify:

ssl_protocols TLSv1.2 TLSv1.3;

Since 1.18.0 release for Centos 7 we build OpenSSL as a separate package that installs to the separate directory (/opt/codeit/openssl111) and does not affects system libraries.

2 thoughts on “NGINX 1.21.0 mainline with brotli support, TLS 1.3 final (RFC 8446) built against OpenSSL 1.1.1k for Red Hat Enterprise Linux and CentOS”

  1. Are gettings this error on one of our servers:

    Updating:
    nginx x86_64 1:1.21.0-1.codeit.el7 CodeITmainline 1.6 M
    Installing for dependencies:
    brotli x86_64 1.0.7-5.el7 epel 318 k

    Transaction check error:
    file /usr/lib64/libbrotlicommon.so.1 from install of brotli-1.0.7-5.el7.x86_64 conflicts with file from package libbrotli-1:1.0.6-1.codeit.el7.x86_64
    file /usr/lib64/libbrotlidec.so.1 from install of brotli-1.0.7-5.el7.x86_64 conflicts with file from package libbrotli-1:1.0.6-1.codeit.el7.x86_64
    file /usr/lib64/libbrotlienc.so.1 from install of brotli-1.0.7-5.el7.x86_64 conflicts with file from package libbrotli-1:1.0.6-1.codeit.el7.x86_64

    What to do?

Leave a Reply

Your email address will not be published. Required fields are marked *