Deprecation

Salz, Rich rsalz at akamai.com
Fri Feb 14 16:17:48 UTC 2020


  *   I think we should delay the deprecation of engine stuff to 4.0. Personally I don't have sense of stability of provider API.

I share this concern.  This is the first release of the provider infrastructure, and while it will be known to work for FIPS modules, it’s hubris to think OpenSSL will get it completely right for other uses.

All other deprecations point to existing API’s or, if they are brand new, are not a lot of code/work to implement them.  The provider interface is both brand new and significant work.  Deprecating and saying “use providers” without at least one release cycle of providers, seems premature.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-project/attachments/20200214/29e740bb/attachment.html>


More information about the openssl-project mailing list