Adam Joseph (1): Configurations: mips64*-linux-*abin32 needs bn_ops SIXTY_FOUR_BIT Akshat Maheshwari (1): Fix a typo in the function name Cameron Gutman (1): armcap: skip probing _armv7_tick() Clemens Lang (6): APPS: dhparam: Support setting properties APPS: ecparam: Support setting properties APPS: pkeyparam: Support setting properties TEST: Check property query support of apps/pkey APPS: dgst: Support properties when signing APPS: genrsa: Support setting properties Daniel Fiala (8): Convert serverinfo in SSL_CTX_use_serverinfo() to v2. Add an EVP demo for key encoding using EC Add documentation and test for EVP_PBE_alg_add Add an EVP demo for AES key wrap Check that sk_SSL_CIPHER_value returns non-NULL value. Clear incorrectly reported errors in d2i_CMS_ContentInfo Fix examples related to BIO_do_accept Disable printf format checking on MinGW David von Oheimb (2): X509_STORE_CTX_set_default(): improve error handling, also in its use 80-test_ssl_new.t: make dependencies on CTLOG_FILE and TEST_CERTS_DIR explicit Dmitry Belyavskiy (1): openssl speed fails in FIPS mode Dr. David von Oheimb (4): CMP: correct handling of fallback subject in OSSL_CMP_CTX_setup_CRM() and its doc crypto/x509/{x509_req,x_all}.c: add some NULL parameter checks, improve coding style x509_vpm.c: add missing direct error reporting and improve coding style stack.c: add missing direct error reporting and improve coding style Gang Chen (1): crypto/conf: gcc build warning fix Gibeom Gwon (2): X509 x509_req.c: Set 'modified' flag when X509_req_info_st member data updated X509 x_all.c: Set 'modified' flag when ASN1_item_sign{,_ctx} call was successful Graham Woodward (1): Fix missing null check in ossl_cmp_log_parse_metadata() J.W. Jagersma (4): djgpp: Inherit config from BASE_unix djgpp: Use usleep() for ossl_sleep() djgpp: Define WATT32_NO_OLDIES before including socket headers djgpp: Skip test/rsa_complex.c Jeff Croxell (1): Clarify dashes are required for openssl list command Juergen Christ (2): apps/speed.c: Wait for generated children s390x: fix ecx derive Kazuki Yamaguchi (1): Fix error propagatation in BN_check_prime() Matt Caswell (14): Correct the documentation for OPENSSL_MALLOC_FD CRYPTO_mem_debug_push() and CRYPTO_mem_debug_pop() should return 0 Fix SSL_pending() and SSL_has_pending() with DTLS Test that swapping the first app data record with Finished msg works Don't incorrectly skip the multiblock test Ensure we build ub sanitizer builds with -DPEDANTIC Add some documentation for X509_gmtime_adj() Correctly handle a retransmitted ClientHello Add additional messages to the DTLS dropped records test Test a 0 return from the ticket key callback If a ticket key callback returns 0 in TLSv1.3 don't send a ticket Fix usage of custom EVP_CIPHER objects Ensure we call the cleanup() function when cleaning an EVP_CIPHER_CTX Test usage of a custom EVP_CIPHER Patrik Sevallius (2): Update documentation, standard input is expected to be in binary format too Always use FORMAT_BINARY for infile Pauli (20): property: make cache flushing slight less deterministic Avoid using tsan_add Coverity 1508534 & 1508540: misuses of time_t Limit the size of various MAXCHUNK definitions evp enc: cache cipher IV length Fix bug in EVP_CIPHER_CTX_get_iv_length() Coverity 1508506: misuse of time_t Coverity 1508532: out of bounds access Add missing ')' to command help Coverity 1513478: negative return test: make unit tests FIPS provider version aware evp_test: allow FIPS provider version based escapes in evp_test TDES: fix test with old FIPS provider Fix default padding regression against 3.0.0 FIPS provider Add CI to test old FIPS provider versions Remove FIPS condition on SM2 test. Remove FIPS condition on IV gen test. Runtime detect FIPS RNG usage in test Remove unnecessary define Coverity 1515415: NULL dereference Richard Levitte (6): util/wrap.pl.in: If the subprocess died with a signal, let's re-signal it util/wrap.pl.in: Use parentheses so `kill` gets all its arguments apps/ciphers.h: Ensure ossl_assert() is properly declared OpenSSL::config: determine the MSVC target architecture by asking cl OpenSSL::config: Fix VMS guesses OpenSSL::config: Fix trivial bugs Ryan Kelley (1): Moving notify check after the no time check Sam James (1): test: placate Clang's --Wbitwise-instead-of-logical Stefanos Harhalakis (1): Fix man page to indicate SHA256 MAC for PKCS12 Tianjia Zhang (1): test: Fix memory leak of asynctest Tobias Brunner (1): Fix documented max. length for info buffer in HKDF Tobias Nießen (1): Fix typo in migration guide Todd Short (3): Fix doc-nits Add documentation for the OPENSSL_gmtime functions Test TLS extension ordering Tomas Mraz (9): ec_kmgmt.c: Do not crash when getting OSSL_PKEY_PARAM_ENCODED_PUBLIC_KEY Add testcases for EVP_PKEY_get1_encoded_public_key Clarify documentation in regards to EC key parameters Always automatically add -DPEDANTIC with enable-ubsan Document the return value of OSSL_LIB_CTX_load_config() With fips provider 3.0.0 skip tests related to explicit curves handling Fix detection of ktls support in cross-compile environment on Linux Fix error return values from BIO_ctrl_(w)pending() Maximum return value of BIO_ctrl_(w)pending is SIZE_MAX Tomáš Mráz (1): EVP_PKEY_eq: regain compatibility with the 3.0.0 FIPS provider olszomal (1): OSSL_PROVIDER_set_default_search_path() return value slontis (1): SHAKE documentation updates for default output length. valdaarhun (1): Fix memory leak in BN_rand_range() visbjn (1): ssl_log_secret call in tls13_key_update