[openssl] master update

Richard Levitte levitte at openssl.org
Tue Sep 7 11:16:14 UTC 2021 

The branch master has been updated
       via  8e7d941ade3a86e352d9c3d601f61c033dc6788b (commit)
      from  6d55d27b2da7a84c9f4b872060be979b5f64af2c (commit)


- Log -----------------------------------------------------------------
commit 8e7d941ade3a86e352d9c3d601f61c033dc6788b
Author: Richard Levitte <levitte at openssl.org>
Date:   Tue Sep 7 11:28:12 2021 +0200

    Mention the concept of providers in NEWS.md and CHANGES.md
    
    Reviewed-by: Tomas Mraz <tomas at openssl.org>
    (Merged from https://github.com/openssl/openssl/pull/16528)
    
    (cherry picked from commit 4c4ab4d7efdf8c9b49c9838742a0fcd7321d88ff)

-----------------------------------------------------------------------

Summary of changes:
 CHANGES.md | 17 +++++++++++++++++
 NEWS.md    |  2 ++
 2 files changed, 19 insertions(+)

diff --git a/CHANGES.md b/CHANGES.md
index 0b3004d1a8..5ed84e657a 100644
--- a/CHANGES.md
+++ b/CHANGES.md
@@ -1397,6 +1397,23 @@ breaking changes, and mappings for the large list of deprecated functions.
 
    *Raja Ashok*
 
+ * Added a new concept for OpenSSL plugability: providers.  This
+   functionality is designed to replace the ENGINE API and ENGINE
+   implementations, and to be much more dynamic, allowing provider
+   authors to introduce new algorithms among other things, as long as
+   there's an API that supports the algorithm type.
+
+   With this concept comes a new core API for interaction between
+   libcrypto and provider implementations.  Public libcrypto functions
+   that want to use providers do so through this core API.
+
+   The main documentation for this core API is found in
+   doc/man7/provider.pod, doc/man7/provider-base.pod, and they in turn
+   refer to other manuals describing the API specific for supported
+   algorithm types (also called operations).
+
+   *The OpenSSL team*
+
 OpenSSL 1.1.1
 -------------
 
diff --git a/NEWS.md b/NEWS.md
index 011f35a849..5d836031c4 100644
--- a/NEWS.md
+++ b/NEWS.md
@@ -95,6 +95,8 @@ OpenSSL 3.0
   * All of the low-level DH, DSA, ECDH, ECDSA and RSA public key functions
     have been deprecated.
   * SSL 3, TLS 1.0, TLS 1.1, and DTLS 1.0 only work at security level 0.
+  * Added providers, a new pluggability concept that will replace the
+    ENGINE API and ENGINE implementations.
 
 OpenSSL 1.1.1
 -------------

More information about the openssl-commits mailing list