[openssl] openssl-3.0.0-alpha8 create

Matt Caswell matt at openssl.org
Thu Nov 5 14:29:33 UTC 2020

The annotated tag openssl-3.0.0-alpha8 has been created
        at  f85ad0f0f36f76616559e02f00596f63e40d11f7 (tag)
   tagging  20d7295cb0529882306c370f5dd895f412bbf59b (commit)
  replaces  openssl-3.0.0-alpha7
 tagged by  Matt Caswell
        on  Thu Nov 5 14:04:01 2020 +0000

- Log -----------------------------------------------------------------
OpenSSL 3.0.0-alpha8 release tag


Ard Biesheuvel (1):
      crypto/poly1305/asm: fix armv8 pointer authentication

Benjamin Kaduk (4):
      Unify ssl3_get_cipher_by_std_name() implementation
      Clear error queue entries from bad DLTS records
      Adjust error reason for ssl_get_min_max_version() failure
      Add more diagnostics to ossl_shim

Daniel Bevenius (1):
      EVP: Fix typo in EVP_PKEY_gen comment

Dr. Matthias St. Pierre (2):
      README: make the link to the OpenSSL 3.0 Wiki page more prominent
      Change markdown link style in README, INSTALL, SUPPORT and CONTRIBUTING

Hu Keping (1):
      Do not export the submodules gost-engine

Ichinose Shogo (1):
      fix typo in README

Jacob Hoffman-Andrews (1):
      Prefix crlNumber output with 0x.

Jeremiah Gowdy (1):
      Implement OpenSSL secure memory for Windows

Kan (1):
      Add parentheses to fix PCLINT Info:773

Matt Caswell (13):
      Prepare for 3.0 alpha 8
      Concentrate deprecated libssl API usage in one file
      Pass an EVP_PKEY for SSL_SECOP_TMP_DH in the security callback
      Add a CHANGES entry for the SSL_SECOP_TMP_DH change
      Fix no-dh
      Rename EVP_PKEY_set1_tls_encodedpoint to EVP_PKEY_set1_encoded_public_key
      Document EVP_PKEY_set1_encoded_public_key()
      Deprecate EVP_PKEY_set1_tls_encodedpoint()
      Ensure we raise SSLfatal on error
      Fix some missed usage of DEFINE_LHASH_OF()
      Allow empty deprecation macros to be passed as macro arguments
      Update copyright year
      Prepare for release of 3.0 alpha 8

Nicola Tuveri (2):
      Constify OSSL_FUNC_keymgmt_has()
      Constify OSSL_FUNC_keymgmt_validate()

Pauli (6):
      null prov: fix gettable param array type.
      list: add a -provider-info option.
      enc: change the text to reference `-list` instead of the deprecated `-ciphers`
      Remove EVP_aes_(128|192|256)_siv functions
      afalg: add a NULL pointer check
      defltprov: remove duplicate algorithm names.

Randall S. Becker (4):
      Fix missing include of string.h in apps/lib/engine.c for strcmp.
      Rewrite the HPE NonStop Notes file in Markdown with more explanations.
      Remove FLOSS from all OSS builds on NonStop except for SPT threading.
      Moved OPENSSL_fork_prepare,_parent,_child from init.c to threads_pthread.c.

Richard Levitte (17):
      TEST: modify tconversion.pl for forensics
      dev/release.sh: improve instruction for pushing the tag
      ENCODER & DECODER: set params on all encoder/decoder instances, unconditionally
      DH: make the private key length importable / exportable
      DH: have DH_set_length() increment the dirty count.
      TEST: fix the DH tests to reproduce the priv_len settings
      Work around Windows ftell() bug as per Microsoft engineering's suggestion
      Unexport internal MSBLOB and PVK functions
      APPS: Implement load_keyparams() to load key parameters
      APPS: Remove the format argument where it's not used
      configdata.pm.in, util/dofile.pl: Make a HERE document stricter.
      DH: stop setting the private key length arbitrarily
      test/recipes/15-test_gendh.t: don't try DER params
      Add easy to digest selector macros for EVP_PKEYs
      Simplify and clarify doc/internal/man7/deprecation.pod
      util/find-doc-nits: ignore OSSL_DEPRECATED*, alongside other reserved symbols
      test/recipes/90-test_shlibload.t: Skip when address sanitizer enabled

Romain Geissler (1):
      Fix aarch64 static linking into shared libraries (see issue #10842 and pull request #11464)

Shane Lontis (6):
      Remove ossl_prov_util_nid_to_name()
      Rename EVP_MAC_size() to EVP_MAC_CTX_get_mac_size().
      Rename EVP_KDF_size() to EVP_KDF_CTX_get_kdf_size().
      Rename EVP_KDF_reset() to EVP_KDF_CTX_reset().
      Fix sparc t4 build error 'undefined symbol: cipher_hw_generic_cbc'
      Add AES KW inverse ciphers to the EVP layer

XiaokangQian (1):
      Fix Aes-xts potential failure on aarch64

jwalch (3):
      Patch leak in EVP_PKEY2PKCS8() error path
      Initialize outl in evp_enc.c to 0, protect against NULL
      Prevent potential UAF in init_thread_deregister()

xuyunjia (1):
      resolve defects: reverse_inull; row[DB_exp_date] referenced before checking


More information about the openssl-commits mailing list