From otp@REDACTED Wed Jan 14 12:34:33 2026 From: otp@REDACTED (Erlang/OTP) Date: Wed, 14 Jan 2026 12:34:33 +0100 (CET) Subject: Patch Package OTP 28.3.1 Released Message-ID: <20260114113433.EC77A254644@hel.cslab.ericsson.net> Patch Package: OTP 28.3.1 Git Tag: OTP-28.3.1 Date: 2026-01-14 Trouble Report Id: OTP-19762, OTP-19795, OTP-19890, OTP-19891, OTP-19893, OTP-19896, OTP-19897 Seq num: ERIERL-1260, ERIERL-1268, PR-10437, PR-10458, PR-10465, PR-10480, PR-10481, PR-10482 System: OTP Release: 28 Application: megaco-4.8.2, mnesia-4.25.1, public_key-1.20.1, ssl-11.5.1, xmerl-2.1.8 Predecessor: OTP 28.3 Check out the git tag OTP-28.3.1, and build a full OTP system including documentation. Apply one or more applications from this build as patches to your installation using the 'otp_patch_apply' tool. For information on install requirements, see descriptions for each application version below. # megaco-4.8.2 The megaco-4.8.2 application can be applied independently of other applications on a full OTP 28 installation. ## Fixed Bugs and Malfunctions - The megaco_tcp module had debug unintentionally enabled. Own Id: OTP-19896 > #### Full runtime dependencies of megaco-4.8.2 > > asn1-3.0, debugger-4.0, erts-12.0, et-1.5, kernel-8.0, runtime_tools-1.8.14, > stdlib-2.5 # mnesia-4.25.1 The mnesia-4.25.1 application can be applied independently of other applications on a full OTP 28 installation. ## Fixed Bugs and Malfunctions - Fixed bug where mnesia:del_table_copy/3 could fail when deleting a node that had tables which was not active anywhere. Own Id: OTP-19890 Related Id(s): ERIERL-1268, PR-10482 > #### Full runtime dependencies of mnesia-4.25.1 > > erts-9.0, kernel-5.3, stdlib-5.0 # public_key-1.20.1 Note! The public_key-1.20.1 application _cannot_ be applied independently of other applications on an arbitrary OTP 28 installation. On a full OTP 28 installation, also the following runtime dependency has to be satisfied: -- crypto-5.8 (first satisfied in OTP 28.3) ## Fixed Bugs and Malfunctions - Add missing git ignore for SLH-DSA generates. Own Id: OTP-19897 Related Id(s): PR-10458 > #### Full runtime dependencies of public_key-1.20.1 > > asn1-5.0, crypto-5.8, erts-13.0, kernel-8.0, stdlib-4.0 # ssl-11.5.1 Note! The ssl-11.5.1 application _cannot_ be applied independently of other applications on an arbitrary OTP 28 installation. On a full OTP 28 installation, also the following runtime dependencies have to be satisfied: -- crypto-5.8 (first satisfied in OTP 28.3) -- public_key-1.18.3 (first satisfied in OTP 28.1) ## Fixed Bugs and Malfunctions - Correct TLS-1.3 alert handling so server will always send the alert with the encryption keys that the client is expecting, that is if for instance if client certification fails the alert will be sent using application traffic encryption keys. Own Id: OTP-19795 Related Id(s): PR-10465 - Correct TLS-1.3 session tickets documentation. Own Id: OTP-19891 Related Id(s): PR-10481 - Corrected app environment handling for session callback that was broken In OTP-23. Own Id: OTP-19893 Related Id(s): PR-10480 > #### Full runtime dependencies of ssl-11.5.1 > > crypto-5.8, erts-16.0, inets-5.10.7, kernel-10.3, public_key-1.18.3, > runtime_tools-1.15.1, stdlib-7.0 # xmerl-2.1.8 The xmerl-2.1.8 application can be applied independently of other applications on a full OTP 28 installation. ## Fixed Bugs and Malfunctions - XML regular expressions in XSD validation now handle `\s` and `\S` correctly. Own Id: OTP-19762 Related Id(s): ERIERL-1260, PR-10437 > #### Full runtime dependencies of xmerl-2.1.8 > > erts-6.0, kernel-8.4, stdlib-2.5 # Thanks to Maria Scott