MySQL Server 8.4.7 RPM dependancy on OPENSSL 3.4.0 on AL2023 (AWS Linux - RHEL 9 related)

When attempting to upgrade from MySQL 8.4.6 to 8.4.7 on AL2023, I encountered an OPENSSL 3.4.0
# dnf update percona*
Last metadata expiration check: 0:08:23 ago on Fri Jan 9 02:33:42 2026.
Dependencies resolved.

Problem: cannot install the best update candidate for package percona-server-server-8.4.6-6.1.el9.x86_64
- nothing provides libcrypto.so.3(OPENSSL_3.4.0)(64bit) needed by percona-server-server-8.4.7-7.1.el9.x86_64 from okta-yum
=================================================================================================================================================================================================================================================
Package Architecture Version Repository Size
=================================================================================================================================================================================================================================================
Upgrading:
percona-icu-data-files x86_64 8.4.7-7.1.el9 okta-yum 2.3 M
percona-server-client x86_64 8.4.7-7.1.el9 okta-yum 2.9 M
percona-server-devel x86_64 8.4.7-7.1.el9 okta-yum 2.1 M
percona-server-shared x86_64 8.4.7-7.1.el9 okta-yum 1.4 M
percona-toolkit x86_64 3.7.0-2.el9 okta-yum 20 M
Skipping packages with broken dependencies:
percona-server-server x86_64 8.4.7-7.1.el9 okta-yum 67 M

Transaction Summary
=================================================================================================================================================================================================================================================
Upgrade 5 Packages
Skip 1 Package

Total download size: 29 M
Is this ok [y/N]: n
Operation aborted.
whereas AL2023 (And RHEL 9) only supports up to OPENSSL 3.2.2:
# dnf list openssl*
Last metadata expiration check: 0:07:03 ago on Fri Jan 9 02:33:42 2026.
Installed Packages
openssl.x86_64 1:3.2.2-1.amzn2023.0.2 @System
openssl-devel.x86_64 1:3.2.2-1.amzn2023.0.2 @amazonlinux
openssl-fips-provider-latest.x86_64 1:3.2.2-1.amzn2023.0.2 @System
openssl-libs.x86_64 1:3.2.2-1.amzn2023.0.2 @System
openssl-perl.x86_64 1:3.2.2-1.amzn2023.0.2 @amazonlinux
openssl-pkcs11.x86_64 0.4.12-3.amzn2023.0.1 @System
Available Packages
openssl-fips-provider-certified.x86_64 3.0.8-1.amzn2023.0.1 amazonlinux
openssl-fips-provider-certified-so.x86_64 3.0.8-1.amzn2023.0.1 amazonlinux
openssl-snapsafe-libs.x86_64

Is it possible that the el9 RMPs for percona-server-server were inadvertently built against a more modern version of Linux such as Fedora?

We now have Percona Server 8.4.7 rpms built specifically on AL2023 - Percona Repo. Could you please try installing these packages?

Hi Paul,

Percona Server packages for AL2023 have no dependency on OpenSSL 3.4.0.

Screenshot 2026-01-13 at 10.12.501388×191 11.6 KB