Late Monthly Status Report (September 2019)

Richard Levitte levitte at
Sat Dec 28 11:05:41 UTC 2019

Apart from normal business, such as normal reviews, OMC business,
normal system administration tasks, small fixes, etc., key activities
this month:

* Development

  - Rework the documentation of our individual MAC implementations
    (PR openssl/openssl#9713)
  - Refactor how KEYMGMT methods get associated with other methods
    (PR openssl/openssl#9678)
  - test/errtest.c: more conditions for checking __FILE__ and __LINE__
    (PR openssl/openssl#9755)
  - New functions EVP_MD_free() and EVP_CIPHER_free()
    (PR openssl/openssl#9758)
  - Move libapps.a source to apps/lib
    (PR openssl/openssl#9723)
  - Move KDFs and PRFs into providers
    (PR openssl/openssl#9662)
  - Rework the perl fallback functionality
    (PR openssl/openssl#9826)
  - test/evp_test.c: try fetching algorithms
    (PR openssl/openssl#9121)
  - doc/man3/OSSL_PARAM.pod: add details about multiple elements with
    same key
    (PR openssl/openssl#9741)
  - util/perl/OpenSSL/ Disable stdout/stderr redirection on
    (PR openssl/openssl#9862)
  - Rework test/ to support selective verbosity and TAP copy
    (PR openssl/openssl#9862)
  - ERR fixups and additions
    (PR openssl/openssl#9765)
  - Refactor to be generated by template
    (PR openssl/openssl#9693)
  - Deprecate the public definition of ERR_STATE
    (PR openssl/openssl#9462)
  - Unify assembler scripts
    (PR openssl/openssl#9884)
  - crypto/bn/ Correct use of SSE2 definition
    (PR openssl/openssl#9879)
  - Refactor TLS1-PRF to create the MAC contexts early
    (PR openssl/openssl#9930)
  - Use name identity instead of name in diverse methods
    (PR openssl/openssl#9897)
  - Refactor TLS-PRF's kdf_tls1_prf_mkmacctx() to a provider utility
    (PR openssl/openssl#9946)
  - Refactor SSKDF to create the MAC contexts early
    (PR openssl/openssl#9946)
  - include/openssl/macros.h: Rework OPENSSL_FUNC for div C standards
    (PR openssl/openssl#9913)
  - include/openssl/macros.h: better OPENSSL_FUNC fallback
    (PR openssl/openssl#9976)
  - Rework cipher / digest fetching for legacy nids with multiple name support
    (PR openssl/openssl#9969)
  - Configure, make it possible to use variables in indexes
    (PR openssl/openssl#9637)
  - When building of modules is disabled, build the legacy provider
    into libcrypto
    (PR openssl/openssl#9637)
  - OSSL_PARAM.pod: document the mechanism to figure out buffer sizes
    (PR openssl/openssl#10025)
  - Make doc/man7/ and doc/internal/man3/ conform with man-pages(7)
    (PR openssl/openssl#10034)
  - Make relevant tests more sensitive to 'no-fips'
    (PR openssl/openssl#10047)
  - Make ASYNC manuals conform with man-pages(7)
    (PR openssl/openssl#10043)
  - [not yet merged] Adapt EVP_CIPHER_{param_to_asn1,asn1_to_param} for use
    with provider.
    (PR openssl/openssl#10008)
  - [not yet merged] Replumbing: pre-populate the EVP namemap with
    commonly known names
    (PR openssl/openssl#8984)
  - [not yet merged] Display multiple names
    (PR openssl/openssl#9979)
  - [unpublished] Continued work on flexible installation commands for
  - [not yet merged] X509_LOOKUP_store: new X509_LOOKUP_METHOD that
    works by OSSL_STORE URI
    (PR openssl/openssl#8442)

* System administration

  - Installed and set up internal github EE instance
  - Fixed letsencrypt issues with our gitlab instance
  - Modernized our apache config template usage

Richard Levitte         levitte at
OpenSSL Project

More information about the openssl-project mailing list