As well as normal reviews, responding to user queries, wiki user requests, OMC business, handling security reports, etc., key activities this month:
- Worked with Richard to publish the Design and Strategy documents and wrote a blog post about them - Created a PR to rewrite SSL_dup - Made OPENSSL_malloc_init() a no-op - Significant review time looking at new PRs related to 3.0/FIPS - Attended regular FIPS sponsor call meetings - Fixed the issue relating to post-handshake message exchange signally using SSL_CB_HANDSHAKE_START in the info callback - Fixed an issue to allow more than 32 KeyUpdates per connection - Significant review time on the Kernel TLS receive side PR - Significant review time on the CMP PR - Significant review time on the "const" PR - Fixed an issue which allowed interleaving of handshake and other record types in TLSv1.3 - Co-ordinated updates to the release strategy to introduce the new stability policy - Investigated and fixed intermittent failures in ecdsatest - Fixed rel=canonical issue on the website - Fixed no-stdio - Fixed an EVP_KDF_CTX leak on error found by Coverity - Performed the release of 1.1.1b and 1.0.2r - Fixed the aes128_cbc_hmac_sha1 cipher in the dasync engine - Fixed issue in bn_cmp_words - Published details about the extended support option for 1.0.2 - Fixed no-ec, no-sm2 and no-sm3 Matt
