Monthly Status Report (June 2021)

[Richard Levitte]

Apart from normal business, such as normal reviews, OMC business,
normal system administration tasks, small fixes, etc., key activities
this month:

* Development:
  - STORE: Fix OSSL_STORE_open_ex() error reporting
(PR openssl/openssl#15476)
  - Decoding PKCS#8: separate decoding of encrypted and unencrypted PKCS#8
(PR openssl/openssl#15498)
  - Configure: variable expand GENERATE values too
(PR openssl/openssl#15554)
  - PROV: Specify correct signature sizes for ED25519 and ED448 signatures
(PR openssl/openssl#15565)
  - DECODER & ENCODER: use property definitions instead of getting 
implementation parameters
(PR openssl/openssl#15570)
  - util/mknum.pl: Allow unset ordinals in beta1-dev
(PR openssl/openssl#15578)
  - test/recipes/80-test_cmp_http.t: Simplify test_cmp_http()
(PR openssl/openssl#15580)
  - Deprecate EVP_CIPHER_impl_ctx_size and EVP_CIPHER_CTX_buf_noconst
(PR openssl/openssl#15584)
  - Refactor XXX_do_all_provided() to behave like XXX_fetch()
(PR openssl/openssl#15604)
  - FIPS: don't include crypto/passphrase.c in libfips.a 
(PR openssl/openssl#15615)
  - OpenSSL::Test.pm: Replace all uses of rel2abs() with abs_path()
(PR openssl/openssl#15644)
  - APPS: Restore the possibility to combine -pubout with -text
(PR openssl/openssl#15658)
  - STORE: Make OSSL_STORE_LOADER_fetch() consistent with all other fetch 
functions
(PR openssl/openssl#15689)
  - Configure: Allow spaces around '=' in all build.info statements
(PR openssl/openssl#15691)
  - Clean away remaining Travis related files
(PR openssl/openssl#15692)
  - OpenSSL::Test: Treat SRCDATA directory specially, as it might not exist
(PR openssl/openssl#15700)
  - OpenSSL::Test: If __cwd() is to create the directory, do it early
(PR openssl/openssl#15701)
  - Windows Github CI: test in Windows 2016 as well
(PR openssl/openssl#15709)
  - Building: Add necessary dependencies for linker scripts and .rc files
(PR openssl/openssl#15717)
  - CORE: Move away the allocation of the temporary no_cache method store
(PR openssl/openssl#15737)
  - CORE: Do a bit of cleanup of core fetching
(PR openssl/openssl#15750)
  - VMS build: drop a spurious debug print
(PR openssl/openssl#15758)
  - DSO: Fix the VMS DSO name converter to actually do something
(PR openssl/openssl#15765)
  - TEST: Change 'catdir' to 'catfile' when dealing with files, in run_tests.pl
(PR openssl/openssl#15767)
  - TEST: Make test/recipes/01-test_symbol_presence.t more platform agnostic
(PR openssl/openssl#15771)
  - TEST: Display the correct shared library name
(PR openssl/openssl#15776)
  - Make util/wrap.pl work better on VMS
(PR openssl/openssl#15791)
  - test/recipes/80-test_cmp_http.t: Kill the mock server brutally
(PR openssl/openssl#15797)
  - STORE: Fix OSSL_STORE_open_ex() error reporting, take 2
(PR openssl/openssl#15820)
  - TESTS: drop explicit quotes from empty command line arguments
(PR openssl/openssl#15822)
  - Fix definition of ossl_intmax_t and ossl_uintmax_t
(PR openssl/openssl#15825)
  - test/recipes/80-test_cmp_http.t: use app() rather than cmd()
(PR openssl/openssl#15846)
  - Adapt shlibloadtest for VMS
(PR openssl/openssl#15872)
  - ENCODER & DECODER: Allow en/decoders to have multiple names
(PR openssl/openssl#15904)
  - Fix 'openssl req' to correctly use the algorithm from '-newkey algo:'
(PR openssl/openssl#15912)
  - PROV: Have our PEM->DER decoder only recognise our PEM names
(PR openssl/openssl#15930)
  - ENCODER & DECODER: Make a tighter coupling between en/decoders and keymgmt
(PR openssl/openssl#15933)
  - DECODER & ENCODER: Make sure to pass around the original selection bits
(PR openssl/openssl#15934)
* Web:
  - bin/mk-manpages3: install more than just HTML files
(PR openssl/web#241)
* Internal:
  - Worked on more details of the FIPS buildbot master
-- 
Richard Levitte levi...@openssl.org
OpenSSL Project http://www.openssl.org/~levitte/

Monthly Status Report (June 2021)

[Tomas Mraz]

My key activities this month were:

- triage of newly reported issues and responding to questions
- re-triage of issues/PRs in Assessed milestone completed, the
milestone is now closed
- participation on the meetings

- reviews of various PRs:
  - I've reviewed more than 100 PRs this month
  - Notable PRs reviewed:
- Decoding PKCS#8: separate decoding of encrypted and unencrypted
PKCS#8 #15498
- s390x: EVP_CipherInit_ex sequences lead to wrong results #15521
- DECODER & ENCODER: use property definitions instead of getting
implementation parameters #15570
- Refactor XXX_do_all_provided() to behave like XXX_fetch() #15604
- property: improve ossl_property_find_property() function #15614
- Add a generic SubjectPublicKeyInfo decoder #15662
- Add various OBJ functions as callbacks #15681
- Don't hold any locks while calling the provider init function
#15854
- property: add locking to the property string database #15871
- ENCODER & DECODER: Make a tighter coupling between en/decoders
and keymgmt #15933

- submitted 24 PRs:
  - In particular:
- Move libssl related defines used by fips provider to prov_ssl.h
#15609
- X509_digest_sig: Handle RSA-PSS and EDDSA certificates #15618
- Elimination of some sources not needed in the FIPS_MODULE #15622
- Do not duplicate symbols between libcrypto and libssl in static
builds #15714
- Multiple PRs fixing build and test issues on AIX
- Only the fips module dependencies are relevant for
fips.module.sources #15903
- Multiple fixes related to reading PEM key files #15949

-- 
Tomáš Mráz
No matter how far down the wrong road you've gone, turn back.
  Turkish proverb
[You'll know whether the road is wrong if you carefully listen to your
conscience.]