> -----Original Message----- > From: Woodhouse, David > Sent: Thursday, September 29, 2016 5:19 PM > To: Long, Qin <[email protected]>; [email protected] > Cc: Ye, Ting <[email protected]> > Subject: Re: [Patch] CryptoPkg/OpensslLib: Upgrade OpenSSL version to > 1.0.2j > > On Thu, 2016-09-29 at 14:09 +0800, Qin Long wrote: > > Two official releases (OpenSSL 1.0.2i and 1.0.2j) were available > > with several severity fixes at 22-Sep-2016 and 26-Sep-2016 with > > several security fixes. Refer to > > https://www.openssl.org/news/secadv/20160922.txt and > > https://www.openssl.org/news/secadv/20160926.txt. > > This patch is to upgrade the supported OpenSSL version in > > CryptoPkg/OpensslLib to catch the latest release 1.0.2j. > > Hm, we're ready to move to 1.1.0 now aren't we? >
Yeah, the internal evaluations is still on process. I plan to make this at Q4. (https://github.com/qloong/edk2/tree/dev-openssl-1.1.0xx for more validations) Before the formal move, we still use this patch to catch the latest openssl-1.0.2 fixes. > -- > Sent with Evolution's ActiveSync support. > > David Woodhouse Open Source Technology Centre > [email protected] Intel Corporation _______________________________________________ edk2-devel mailing list [email protected] https://lists.01.org/mailman/listinfo/edk2-devel
