Monthly Status Report (November)

[Matt Caswell]

As well as normal reviews, responding to user queries, wiki user
requests, OMC business, handling security reports, etc., key activities
this month:

- Updated EVP_get_digestbyname() and EVP_get_cipherbyname() to know
about the new namemap and use it where appropriate
- Wrote and published bog with updates for 3.0
- Significant effort has been spent in conjunction with Richard Levitte
reviewing old issues and triaging them. This is expected to be ongoing
for some time.
- Continued work from the previous month to get the asymmetric cipher
support approved and pushed
- Fixed no-dsa
- Significant ongoing review work on the CMP contribution
- Created PR to move the constant time RSA padding checks out of libssl
and into the providers.
- Fixed no-engine
- Fixed no-cmac and no-camellia
- Fixed no-blake2
- Fixed an uninitialised read in conf_def.c
- Fixed a memory leak in confdump, and added confdump to .gitignore
- Fixed a use-after-free after copying a cipher ctx
- Finished off and pushed PR to fix various algorithm naming inconsistencies
- Fixed EVP_CIPHER_CTX_set_keylen to ensure it does not succeed if a bad
keylen is passed
- Added some missing NULL pointer return checks
- Fix for handling NULL with length 0 in EVP_Encrypt* functions
- Updated and pushed PR to ensure the FIPS self tests are only run once
- Created PR to deprecate the AES_ige_* functions
- Further work on the PR to fix SSL_get_servername()


Matt