2325456 – openssl3 3.2.2 avialable on epel8 but not epel9

Bug 2325456 - openssl3 3.2.2 avialable on epel8 but not epel9

Summary: openssl3 3.2.2 avialable on epel8 but not epel9

Keywords:
Status:	CLOSED NOTABUG
Alias:	None
Product:	Fedora EPEL
Classification:	Fedora
Component:	openssl3
Sub Component:
Version:	epel9
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	unspecified
Target Milestone:	---
Assignee:	Michel Lind
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2024-11-12 13:02 UTC by Danie de Jager
Modified:	2024-11-12 17:59 UTC (History)
CC List:	2 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:	2024-11-12 17:59:44 UTC
Type:	Bug
Embargoed:

Attachments	(Terms of Use)

Description Danie de Jager 2024-11-12 13:02:06 UTC

Description of problem:
I'm merely wondering why there is a package for openssl 3.2.2 in epel8 but epel9 does not package openssl at all and the OS itself is using 3.0.7. Could openssl3 be packages for epel9 as well?
Should the version for epel8 not be updated to the latest 3.2.3?

Comment 1 Danie de Jager 2024-11-12 13:04:25 UTC

Should the version for epel8 not be updated to the latest 3.2.3?

Comment 2 Michel Lind 2024-11-12 17:59:44 UTC

Hi Danie!

openssl3 in epel8 is a backport from the openssl in c9s, which is version 3.2.2 - I don't think we really want to maintain a newer version than that and deal with security issues ourselves

❯ fedrq pkgs openssl -b c9s
openssl-1:3.2.2-6.el9.src
openssl-1:3.2.2-6.el9.x86_64

This is also why we don't have, nor need, openssl3 in epel9 and above

Note You need to log in before you can comment on or make changes to this bug.