Late Monthly Status Report (January 2020)

Richard Levitte levitte at
Tue Jun 16 20:51:50 UTC 2020

Apart from normal business, such as normal reviews, OMC business,
normal system administration tasks, small fixes, etc., key activities
this month:

* Development

  - [not_yet_merged] WIP: OSSL_STORE for providers
    (PR openssl/openssl#9389)
  - CORE & EVP: Adapt KEYEXCH, SIGNATURE and ASYM_CIPHER to handle key types better
    (PR openssl/openssl#10647)
  - Configuration: synchronise the variables on the build file templates
    (PR openssl/openssl#10753)
  - EVP: Fix method to determine if a PKEY is legacy or not
    (PR openssl/openssl#10758)
  - DOCS: The interpretation of OPENSSL_API_COMPAT has changed, update docs
    (PR openssl/openssl#10765)
  - Add missing inclusion of "internal/deprecated.h"
    (PR openssl/openssl#10766)
  - EVP: If a key can't be exported to provider, fallback to legacy
    (PR openssl/openssl#10771)
  - Add the DSA serializers to the default provider tools
    (PR openssl/openssl#10772)
  - EVP: make EVP_PKEY_{bits,security_bits,size} work with provider only keys
    (PR openssl/openssl#10778)
  - PROV: Fix mixup between general and specialized GCM implementations
    (PR openssl/openssl#10783)
  - Configure: use $list_separator_re only for defines and includes
    (PR openssl/openssl#10793)
  - Eliminate some EVP_PKEY_size() uses
    (PR openssl/openssl#10798)
  - EVP: clear error when falling back from failed EVP_KEYMGMT_fetch()
    (PR openssl/openssl#10803)
  - CORE: renumber OSSL_FUNC_KEYMGMT macros
    (PR openssl/openssl#10804)
  - Fix documentation for EVP_DigestSign* and EVP_DigestVerify*
    (PR openssl/openssl#10805)
  - Fix EVP_Digest{Sign,Verify}Final() and EVP_Digest{Sign,Verify}() for provider only keys
    (PR openssl/openssl#10806)
  - EVP: Adapt EVP_PKEY Seal and Open for provider keys
    (PR openssl/openssl#10808)
  - Move the definition of OPENSSL_BUILDING_OPENSSL
    (PR openssl/openssl#10813)
  - Change returned -2 to 0 in EVP_Digest{Sign,Verify}Init()
    (PR openssl/openssl#10815)
  - Add EVP_PKEY_get_default_digest_name()
    (PR openssl/openssl#10824)
  - CRYPTO: Remove support for ex_data fields when building the FIPS module
    (PR openssl/openssl#10837)
  - Modify EVP_CIPHER_is_a() and EVP_MD_is_a() to handle legacy methods too
    (PR openssl/openssl#10845)
  - Move the stored namemap pre-population to namemap construction
    (PR openssl/openssl#10846)
  - [1.1.1] Fix documentation of return value for EVP_Digest{Sign,Verify}Init()
    (PR openssl/openssl#10847)
  - Build file templates: Use explicit files instead of $< or $? for pods
    (PR openssl/openssl#10849)
  - EVP: Add evp_pkey_make_provided() and refactor around it
    (PR openssl/openssl#10850)
  - Adapt X509_PUBKEY_set() for use with provided implementations
    (PR openssl/openssl#10851)
  - For all assembler scripts where it matters, recognise clang > 9.x
    (PR openssl/openssl#10855)
  - Add GNU properties note for Intel CET in
    (PR openssl/openssl#10875)
  - Configure: Better detection of '-static' in @{$config{LDFLAGS}}
    (PR openssl/openssl#10878)
  - PROV: Fix bignum printout in text serializers
    (PR openssl/openssl#10891)
  - OpenSSL::Test: bring back the relative paths
    (PR openssl/openssl#10913)
  - Adapt ASN1_item_sign_ctx() for use with provided keypairs
    (PR openssl/openssl#10920)
  - Add internal maxsize macros
    (PR openssl/openssl#10928)
  - test/recipes/30-test_evp.t: Fix multiple definition of @bffiles
    (PR openssl/openssl#10944)

* Administration

  - Stop making snaps for 1.1.0 and 1.0.2, and make 3.0-dev snaps
  - Switch final review to be for OTC rather than OMC

Richard Levitte         levitte at
OpenSSL Project

More information about the openssl-project mailing list