Monthly Status Report (December)

Matt Caswell matt at openssl.org
Mon Jan 10 15:52:10 UTC 2022


As well as normal reviews, attending regular OMC and OTC meetings, 
attending daily stand up meetings, responding to user queries, wiki user 
requests, OMC business, sys-admin, support customer issues, CLA 
submissions, handling security reports, etc., key activities this month:

- Attended many QUIC design meetings
- Provided input on the HPKE submission
- Clarified the deprecation warnings in the docs which were confusing
- Published QUIC design blog post and associated PRs
- Developed tests and a patch for the name constraints/libssl bug 
(CVE-2021-4044)
- Fixed a bug in the *set0_tmp_dh_pkey() functions
- Fixed a documentation bug in the tlsext_ticket_key_cb() functions
- Provided user support for finding replacements to deprecated functions
- Investigated the abstract record layer and what it needs to do
- Investigated whether DH key security level was checked at time of use
- Disabled TLSv1.0 and TLSv1.1 in the CDN for www.openssl.org
- Enabled TLSv1.3 in the CDN for www.openssl.org
- Created a voting policy proposal for OMC
- Created a policy change proposal for OMC
- Created a support and stability policy proposal for OMC
- Reviewed AES-GCM optimisation PR
- Investigated a regression with the s_client -proxy option in master
- Found and fixed a bug with SNI data in combination with s_client -proxy
- Fixed a leak and other proboems in EVP_DigestInit_ex()
- Created a draft testing policy
- Fixed a bug in the tracing code
- Fixed the symbol presence test when used with shlib_variant
- Investigated CVE-2002-20001
- Fixed a bug in X509_STORE_CTX_set_purpose()
- Performed the 3.0.1 and 1.1.1m releases
- Produced a tentative fix for test_encoder_decoder failure on non-stop

Matt


More information about the openssl-project mailing list