Monthly Status Report (February)

Matt Caswell matt at
Wed Mar 6 10:33:34 UTC 2019

As well as normal reviews, responding to user queries, wiki user
requests, OMC business, handling security reports, etc., key activities
this month:

- Worked with Richard to publish the Design and Strategy documents and wrote a
blog post about them
- Created a PR to rewrite SSL_dup
- Made OPENSSL_malloc_init() a no-op
- Significant review time looking at new PRs related to 3.0/FIPS
- Attended regular FIPS sponsor call meetings
- Fixed the issue relating to post-handshake message exchange signally using
SSL_CB_HANDSHAKE_START in the info callback
- Fixed an issue to allow more than 32 KeyUpdates per connection
- Significant review time on the Kernel TLS receive side PR
- Significant review time on the CMP PR
- Significant review time on the "const" PR
- Fixed an issue which allowed interleaving of handshake and other record types
in TLSv1.3
- Co-ordinated updates to the release strategy to introduce the new stability policy
- Investigated and fixed intermittent failures in ecdsatest
- Fixed rel=canonical issue on the website
- Fixed no-stdio
- Fixed an EVP_KDF_CTX leak on error found by Coverity
- Performed the release of 1.1.1b and 1.0.2r
- Fixed the aes128_cbc_hmac_sha1 cipher in the dasync engine
- Fixed issue in bn_cmp_words
- Published details about the extended support option for 1.0.2
- Fixed no-ec, no-sm2 and no-sm3


More information about the openssl-project mailing list