[openssl] openssl-3.0 update

Richard Levitte levitte at openssl.org
Tue Sep 7 11:15:16 UTC 2021 

The branch openssl-3.0 has been updated
       via  4c4ab4d7efdf8c9b49c9838742a0fcd7321d88ff (commit)
      from  76b45e5ac8e133ee672639125267bda6f0b5a4b0 (commit)


- Log -----------------------------------------------------------------
commit 4c4ab4d7efdf8c9b49c9838742a0fcd7321d88ff
Author: Richard Levitte <levitte at openssl.org>
Date:   Tue Sep 7 11:28:12 2021 +0200

    Mention the concept of providers in NEWS.md and CHANGES.md
    
    Reviewed-by: Tomas Mraz <tomas at openssl.org>
    (Merged from https://github.com/openssl/openssl/pull/16528)

-----------------------------------------------------------------------

Summary of changes:
 CHANGES.md | 17 +++++++++++++++++
 NEWS.md    |  2 ++
 2 files changed, 19 insertions(+)

diff --git a/CHANGES.md b/CHANGES.md
index bc6d9516ff..5578b0e7e5 100644
--- a/CHANGES.md
+++ b/CHANGES.md
@@ -1389,6 +1389,23 @@ breaking changes, and mappings for the large list of deprecated functions.
 
    *Raja Ashok*
 
+ * Added a new concept for OpenSSL plugability: providers.  This
+   functionality is designed to replace the ENGINE API and ENGINE
+   implementations, and to be much more dynamic, allowing provider
+   authors to introduce new algorithms among other things, as long as
+   there's an API that supports the algorithm type.
+
+   With this concept comes a new core API for interaction between
+   libcrypto and provider implementations.  Public libcrypto functions
+   that want to use providers do so through this core API.
+
+   The main documentation for this core API is found in
+   doc/man7/provider.pod, doc/man7/provider-base.pod, and they in turn
+   refer to other manuals describing the API specific for supported
+   algorithm types (also called operations).
+
+   *The OpenSSL team*
+
 OpenSSL 1.1.1
 -------------
 
diff --git a/NEWS.md b/NEWS.md
index 9d198fca8d..f2097f1dd4 100644
--- a/NEWS.md
+++ b/NEWS.md
@@ -87,6 +87,8 @@ OpenSSL 3.0
   * All of the low-level DH, DSA, ECDH, ECDSA and RSA public key functions
     have been deprecated.
   * SSL 3, TLS 1.0, TLS 1.1, and DTLS 1.0 only work at security level 0.
+  * Added providers, a new pluggability concept that will replace the
+    ENGINE API and ENGINE implementations.
 
 OpenSSL 1.1.1
 -------------

More information about the openssl-commits mailing list