openssl_3_4: init at 3.4.1; openssl_3_3: remove; openssl_3: 3.0.15 -> 3.0.16

[thillux]

Updates OpenSSL 3.x latest to 3.4.1

Release notes:
https://github.com/openssl/openssl/blob/openssl-3.4.0/NEWS.md#openssl-34

Security Fixes in 3.4.1:

• Fixed RFC7250 handshakes with unauthenticated servers don't abort as expected. ([CVE-2024-12797])
• Fixed timing side-channel in ECDSA signature computation. (CVE-2024-13176)

Security Fixes in 3.0.16:

• Fixed timing side-channel in ECDSA signature computation. (CVE-2024-13176)
• Fixed possible OOB memory access with invalid low-level GF(2^m) elliptic curve parameters. (CVE-2024-9143)

Some significant changes for 3.4.x:

• Deprecation of TS_VERIFY_CTX_set_* functions and addition of replacement TS_VERIFY_CTX_set0_* functions with improved semantics
• SHAKE-128 and SHAKE-256 implementations have no default digest length anymore. That means these algorithms cannot be used with EVP_DigestFinal/_ex() unless the xoflen param is set before.
• An empty renegotiate extension will be used in TLS client hellos instead of the empty renegotiation SCSV, for all connections with a minimum TLS version > 1.0.
• Deprecation of SSL_SESSION_get_time(), SSL_SESSION_set_time() and SSL_CTX_flush_sessions() functions in favor of their respective _ex functions which are Y2038-safe on platforms with Y2038-safe time_t

Some new features:

• Support for directly fetched composite signature algorithms such as RSA-SHA2-256 including new API functions
• New options -not_before and -not_after for explicit setting start and end dates of certificates created with the req and x509 apps
• Support for attribute certificates
• Support for pkeyutl in combination with key encapsulation (e.q. PQC-KEMs): -encap/-decap

Things done

• Built on platform(s)
  • x86_64-linux
  • aarch64-linux
  • x86_64-darwin
  • aarch64-darwin
• For non-Linux: Is sandboxing enabled in nix.conf? (See Nix manual)
  • sandbox = relaxed
  • sandbox = true
• Tested, as applicable:
  • NixOS test(s) (look inside nixos/tests)
  • and/or package tests
  • or, for functions and "core" functionality, tests in lib/tests or pkgs/test
  • made sure NixOS tests are linked to the relevant packages
• Tested compilation of all packages that depend on this change using nix-shell -p nixpkgs-review --run "nixpkgs-review rev HEAD". Note: all changes have to be committed, also see nixpkgs-review usage
• Tested basic functionality of all binary files (usually in ./result/bin/)
• 25.05 Release Notes (or backporting 24.11 and 25.05 Release notes)
  • (Package updates) Added a release notes entry if the change is major or breaking
  • (Module updates) Added a release notes entry if the change is significant
  • (Module addition) Added a release notes entry if adding a new NixOS module
• Fits CONTRIBUTING.md.

---

Add a 👍 reaction to pull requests you find important.

[siriobalmelli]

Would it be possible to integrate this upstream fix in this PR? openssl/openssl#26469

Currently, openssl is subtly broken on some aarch64-linux like Graviton

[mweinelt]

This patch will be part of the upcoming 3.4.1 release.

[thillux]

@siriobalmelli We probably update this PR to 3.4.1 when released. And do not merge before. I'll mark it as draft accordingly until then. 3.4.1 will only hit unstable/master I guess.

When 3.3.3 is released, it will also be updated for 24.11.

[thillux]

WIP again for 3.0.16

[thillux]

3.0.16 also added

[ruuda]

I’m getting a hash mismatch on c05c515:

error: hash mismatch in fixed-output derivation '/nix/store/4r4jwx0w6384b60wx0sbamyfqjdrq6s1-openssl-3.4.1.tar.gz.drv':
         specified: sha256-1LIlJ6ZFrPdrU+REh6jbaHxu7WIdckaJHQJeOLqMllE=
            got:    sha256-ACotazC1i/S+pGxDvdljZar42qbEKHgqpP7uBtoZffM=

[K900]

Fixed already, update to latest staging-next.