As well as normal reviews, responding to user queries, wiki user requests, OMC business, handling security reports, etc., key activities this month:
- Continued work leading to an eventual merge of the PR to bring PKCS#3 DH handling into the default provider - Further work leading to an eventual merge of the PR enabling BIGNUM rand functions to be usable from the FIPS provider - Implemented PR to stop RUN_ONCE from being used inside the FIPS provider (to avoid its accidental use) - Fixed some BIGNUM issues that were failing in the FIPS provider - Implemented PR to make the EC code available from inside the FIPS provider - Fixed the return value for SSL_get0_chain_certs() - Fixed no-dh - Corrected an Extended Master Secret bug on EBCDIC systems - Significant review work on the CMP PR - Cleaned up the core <-> provider interface by removing some unnecessary utility functions - Created PR to fix a problem with SSL_check_chain() so that it works correctly with TLSv1.3 (not merged yet) - Add documentation for the provider DIGEST operation - Created PR to clarify the INSTALL document - Add documentation for the provider CIPHER operation - Created PR to load the config file by default Matt
