<html><head><meta http-equiv="Content-Type" content="text/html; charset=utf-8"></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; line-break: after-white-space;" class="">Shane has done the IG D.9 work: it is in #12835 and is awaiting review.  I think it should be in beta if possible.  It’s mostly adding a second test case due to NIST changing guidance recently, so low risk and helpful for the lab.<div class=""><br class=""></div><div class=""><div class="">As Shane notes in 12801, there will be some conflicts generated over the FIPS error handling and self tests, hopefully they won’t slow progress.</div></div><div class=""><br class=""></div><div class="">12754 could be considered optional and something better should likely be done for 3.1 that what I’m planning there.  With RAND_DRBG removed, there is nothing remotely comparable.  Even RAND_DRBG is a bit of a stretch as a comparison.</div><div class=""><br class=""></div><div class=""><br class=""></div><div class="">The API renaming discussion *must* reach a conclusion before beta.</div><div class=""><br class=""></div><div class=""><br class=""></div><div class="">Pauli<br class=""><div class="">
<div dir="auto" style="word-wrap: break-word; -webkit-nbsp-mode: space; line-break: after-white-space;" class=""><div style="caret-color: rgb(0, 0, 0); color: rgb(0, 0, 0); font-family: Helvetica; font-size: 12px; font-style: normal; font-variant-caps: normal; font-weight: normal; letter-spacing: normal; text-align: start; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; -webkit-text-stroke-width: 0px; text-decoration: none;">-- <br class="">Dr Paul Dale | Distinguished Architect | Cryptographic Foundations <br class="">Phone +61 7 3031 7217<br class="">Oracle Australia</div><div style="caret-color: rgb(0, 0, 0); color: rgb(0, 0, 0); font-family: Helvetica; font-size: 12px; font-style: normal; font-variant-caps: normal; font-weight: normal; letter-spacing: normal; text-align: start; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; -webkit-text-stroke-width: 0px; text-decoration: none;"><br class=""></div><br class="Apple-interchange-newline"></div><br class="Apple-interchange-newline">
</div>
<div><br class=""><blockquote type="cite" class=""><div class="">On 10 Sep 2020, at 8:40 pm, Matt Caswell <<a href="mailto:matt@openssl.org" class="">matt@openssl.org</a>> wrote:</div><br class="Apple-interchange-newline"><div class=""><div class=""><br class=""><br class="">On 09/09/2020 13:03, Kurt Roeckx wrote:<br class=""><blockquote type="cite" class="">On Wed, Aug 26, 2020 at 04:58:26PM +0100, Matt Caswell wrote:<br class=""><blockquote type="cite" class="">Please can anyone with PRs that they wish to have included in OpenSSL<br class="">3.0 beta1 ensure that they are merged to master by 8th September.<br class=""></blockquote><br class="">So that date has passed now. Can someone give an overview of what<br class="">we think is still needed to be done before the beta 1 release? Are<br class="">there open PRs for everything? Do we a milestone on github to<br class="">indicate which PRs need to go in before beta1?<br class=""></blockquote><br class=""><br class="">I believe the "blockers" to be:<br class=""><br class=""><a href="https://urldefense.com/v3/__https://github.com/openssl/openssl/pull/12536__;!!GqivPVa7Brio!O5gzpHuWIANvRtRYOHA9m7SK4SqMUb2uLzEGQbUrX9nFSRhT7-sA0F-JQc5z_l4$" class="">https://urldefense.com/v3/__https://github.com/openssl/openssl/pull/12536__;!!GqivPVa7Brio!O5gzpHuWIANvRtRYOHA9m7SK4SqMUb2uLzEGQbUrX9nFSRhT7-sA0F-JQc5z_l4$</a> <br class=""><a href="https://urldefense.com/v3/__https://github.com/openssl/openssl/pull/12754__;!!GqivPVa7Brio!O5gzpHuWIANvRtRYOHA9m7SK4SqMUb2uLzEGQbUrX9nFSRhT7-sA0F-JseFWMvQ$" class="">https://urldefense.com/v3/__https://github.com/openssl/openssl/pull/12754__;!!GqivPVa7Brio!O5gzpHuWIANvRtRYOHA9m7SK4SqMUb2uLzEGQbUrX9nFSRhT7-sA0F-JseFWMvQ$</a> <br class=""><a href="https://urldefense.com/v3/__https://github.com/openssl/openssl/pull/12750__;!!GqivPVa7Brio!O5gzpHuWIANvRtRYOHA9m7SK4SqMUb2uLzEGQbUrX9nFSRhT7-sA0F-J0OAUQ5s$" class="">https://urldefense.com/v3/__https://github.com/openssl/openssl/pull/12750__;!!GqivPVa7Brio!O5gzpHuWIANvRtRYOHA9m7SK4SqMUb2uLzEGQbUrX9nFSRhT7-sA0F-J0OAUQ5s$</a> <br class=""><a href="https://urldefense.com/v3/__https://github.com/openssl/openssl/pull/12781__;!!GqivPVa7Brio!O5gzpHuWIANvRtRYOHA9m7SK4SqMUb2uLzEGQbUrX9nFSRhT7-sA0F-JYPbPTZA$" class="">https://urldefense.com/v3/__https://github.com/openssl/openssl/pull/12781__;!!GqivPVa7Brio!O5gzpHuWIANvRtRYOHA9m7SK4SqMUb2uLzEGQbUrX9nFSRhT7-sA0F-JYPbPTZA$</a> <br class=""><a href="https://urldefense.com/v3/__https://github.com/openssl/openssl/pull/12801__;!!GqivPVa7Brio!O5gzpHuWIANvRtRYOHA9m7SK4SqMUb2uLzEGQbUrX9nFSRhT7-sA0F-J_mL-S18$" class="">https://urldefense.com/v3/__https://github.com/openssl/openssl/pull/12801__;!!GqivPVa7Brio!O5gzpHuWIANvRtRYOHA9m7SK4SqMUb2uLzEGQbUrX9nFSRhT7-sA0F-J_mL-S18$</a> <br class=""><br class="">Aside from these there are potential PRs not yet opened but slated for<br class="">beta1 regarding:<br class="">- Refactor serialization? (owner: Richard)<br class="">- lhash refactor? (owner: Me)<br class="">- IG D.9 update? (owner: Shane)<br class=""><br class="">There's also this issue - but I'm not sure that it needs to be resolved<br class="">for beta1:<br class=""><a href="https://urldefense.com/v3/__https://github.com/openssl/openssl/issues/12195__;!!GqivPVa7Brio!O5gzpHuWIANvRtRYOHA9m7SK4SqMUb2uLzEGQbUrX9nFSRhT7-sA0F-J1-VRwBk$" class="">https://urldefense.com/v3/__https://github.com/openssl/openssl/issues/12195__;!!GqivPVa7Brio!O5gzpHuWIANvRtRYOHA9m7SK4SqMUb2uLzEGQbUrX9nFSRhT7-sA0F-J1-VRwBk$</a> <br class=""><br class="">Matt<br class=""></div></div></blockquote></div><br class=""></div></body></html>