On 06.02.23 16:56, Andrew Dunstan wrote:
I recently moved crake to a new machine running Fedora 36, which has OpenSSL 3.0.0. This causes the SSL tests to fail on branches earlier than release 13, so I propose to backpatch commit f0d2c65f17 to the release 11 and 12 branches.
This is not the only patch that we did to support OpenSSL 3.0.0. There was a very lengthy discussion that resulted in various patches. Unless we have a complete analysis of what was done and how it affects various branches, I would not do this. Notably, we did actually consider what to backpatch, and the current state is the result of that. So let's not throw that away without considering that carefully. Even if it gets it to compile, I personally would not *trust* it without that analysis. I think we should just leave it alone and consider OpenSSL 3.0.0 unsupported in the branches were it is now unsupported. OpenSSL 1.1.1 is still supported upstream to serve those releases.
