On Wed, Sep 25, 2024 at 08:10:36PM +0000, Lucas Gabriel Vuotto wrote:
> For post-unlock, as nothing seems critical. Announcement at [0],
> changelog at [1]. Probably the most interesting part is that they now
> use EVP_AEAD interfaces for QUIC.

This seems to be for aws-lc only, see include/haproxy/quic_tls-t.h:

#if defined(USE_OPENSSL_AWSLC)

# define QUIC_AEAD_API

(also, our EVP_AEAD API diverged from BoringSSL a while back - this was
a mistake)

> 
> The patch update is noiser than usual because of a small change in the
> surrounding code.

The patch was only needed while we had LibreSSL version number < 4.0.0.
You can drop it now.

> It still runs fine. OK?

ok tb with the quic_tls.h patch removed. After ports unlock, of course.