Uh oh!
There was an error while loading.Please reload this page.
- Notifications
You must be signed in to change notification settings - Fork33.3k
gh-127330: Update for OpenSSL 3.4#127331
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to ourterms of service andprivacy statement. We’ll occasionally send you account related emails.
Already on GitHub?Sign in to your account
Uh oh!
There was an error while loading.Please reload this page.
Conversation
Also:- Avoid the deprecated `datetime.datetime.utcnow()`- Fix newlineThis requires that the OpenSSL source tree is a Git checkout,and that you have Git installed. Both should be fine for a toolrun manually by people who can change the tool.
!buildbot Arch |
bedevere-bot commentedNov 27, 2024
🤖 New build scheduled with the buildbot fleet by@encukou for commitea72022 🤖 The command will test the builders whose names match following regular expression: The builders matched are:
|
I think this looks right, but I've never actually done the process myself :-) The only other thing we might want is bumping the version that's used in the Windows and macOS builds. |
I believe@gpshead has done these updates most recently. |
ned-deily commentedNov 27, 2024 • edited
Loading Uh oh!
There was an error while loading.Please reload this page.
edited
Uh oh!
There was an error while loading.Please reload this page.
Up to now, we've treated that as a separate decision, independent of what version(s) CPython supports. In particular, we have been taking the conservative approach and sticking with OpenSSL 3.0.x which is documented as that project's LTS version. We will eventually have to revisit that, i.e. before 2026-09-07, but it doesn't need to be part of this process. |
This does not seem to fix#125936 |
Uh oh!
There was an error while loading.Please reload this page.
@petermarko, yes, this is better error reporting in general, but doesn't affect the bug we're getting there. I'll send another PR for a better error message for that case, andthen, hopefully, one to fix the underlying bug. |
Uh oh!
There was an error while loading.Please reload this page.
db5c576 intopython:mainUh oh!
There was an error while loading.Please reload this page.
python/cpython#127331python/cpython#127361(From OE-Core rev: e271e9cbf896f1fb97d56c426e4217a6d2105ea4)Signed-off-by: Peter Marko <peter.marko@siemens.com>Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
python/cpython#127331python/cpython#127361Signed-off-by: Peter Marko <peter.marko@siemens.com>Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
python/cpython#127331python/cpython#127361(From OE-Core rev: e5f3a1793e34fb4cd1e53ca60b67f9a9f084b7a6)Signed-off-by: Peter Marko <peter.marko@siemens.com>Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
python/cpython#127331python/cpython#127361Signed-off-by: Peter Marko <peter.marko@siemens.com>Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
python/cpython#127331python/cpython#127361(From OE-Core rev: e5f3a1793e34fb4cd1e53ca60b67f9a9f084b7a6)Signed-off-by: Peter Marko <peter.marko@siemens.com>Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
python/cpython#127331python/cpython#127361(From OE-Core rev: e5f3a1793e34fb4cd1e53ca60b67f9a9f084b7a6)Signed-off-by: Peter Marko <peter.marko@siemens.com>Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
… process (pythonGH-127331)- Add `git describe` output to headers generated by `make_ssl_data.py` This info is more important than the date when the file was generated. It does mean that the tool now requires a Git checkout of OpenSSL, not for example a release tarball.- Regenerate the older file to add the info. To the other older file, add a note about manual edits.- Add notes on how to add a new OpenSSL version- Add 3.4 error messages and multissl tests
rossburton commentedApr 30, 2025 • edited
Loading Uh oh!
There was an error while loading.Please reload this page.
edited
Uh oh!
There was an error while loading.Please reload this page.
Any chance of this being backported to the 3.13 branch? As can be seen in the reference list above, Yocto is carrying this patch as we build 3.13 against OpenSSL 3.4. |
@Yhg1s Do you want Python 3.13 to have messages for OpenSSL 3.4's new error codes? |
Ah, sorry, I thought we'd discussed this (or maybe I just didn't make the final call). No, I don't think we should backport this to 3.13. It may seem harmless but it's the kind of thing that'll trip people up when doing patch upgrades (which we want to be as seamless as possible, evidence of the last couple of expedited releases notwithstanding.) |
It's also possible I didn'trecord your call correctly back then. |
Uh oh!
There was an error while loading.Please reload this page.
Add
git describeoutput to headers generated bymake_ssl_data.pyIMO, this info is more important than the date when the file was generated.
It does mean that the tool now requires a Git checkout of OpenSSL, not for example a release tarball.
I've regenerated the older file to add the info. To the other older file I added a note about manual edits.
Add notes on how to add a new OpenSSL version
I believe that what I wrote is the correct process.ssl experts, do you want to you verify?@jackjansen,@tiran,@dstufft,@alex
Add 3.4 error messages and multissl tests
Hopefully we'll start getting fewer
[SYS] unknown errorin tests! (See#127257)