Proposed vote text:
Remove -C option from the dhparam, dsaparam, ecparam and x509 apps.
This is a breaking change and requires OMC approval. The rationale is that it
is easier to not support this using the EVP calls and there is some doubt that
the options are used anymore.
Pauli
--
Dr
Proposed vote text:
Remove the -crypt option from the passwd app.
The rationale behind this is that this is a very old, long broken algorithm and
that supporting it is difficult using non-deprecated calls. This is a breaking
change and requires OMC approval.
Pauli
--
Dr Paul Dale |
Background to the vote:
The OTC meeting today discussed the problems raised by issue #12612. In
summary the problem is that there has been a long standing, widespread
and documented assumption that an EVP_PKEY with a private key will
always also have the public key component.
In spite of this it
Background to the vote:
The OTC meeting today had an extensive discussion on the issues raised
in PR #13228. The code in master uses FIPS186-4 for key and parameter
generation by default. In 1.1.1 and before we used PKCS#3 generation.
This causes a number of backwards compatibility breaks as