v1.38.0

What's Changed

• 800-131Ar1: length of the key-derivation key shall be at least 112 bits. by @skmcgrail in #1924
• Marshalling/Unmarshalling DH public keys by @justsmth in #1916
• Also prune SSM documents from ec2-test-framework by @samuel40791765 in #1925
• Use illegal_parameter instead of decode_error for invalid key shares by @justsmth in #1923
• Add null check in dh testing by @torben-hansen in #1937
• DH paramgen callback by @justsmth in #1928
• Upstream merge 2024 10 17 by @torben-hansen in #1934
• Remove old Intel CPU types by @justsmth in #1942
• Remove retries on PCT failure in EC and RSA key generation. by @nebeid in #1938
• Add p4p, bump up time by @justsmth in #1943
• PQ README by @jakemas in #1932
• bump mysql CI to 9.1.0 by @justsmth in #1939
• HKDF, HKDF_expand, and PBKDF Truncated SHA2-512 by @skmcgrail in #1946
• Missing functionality + Adding Nmap to our CI by @smittals2 in #1915
• Fix FIPS.md typo by @justsmth in #1950
• Support encode or decode ∞ like OpenSSL by @samuel40791765 in #1930
• Expand support for EVP_PKEY_HMAC by @justsmth in #1933
• Add PKCS7-internal BIO_f_cipher by @WillChilds-Klein in #1836
• Add PKCS7-internal BIO_f_md by @WillChilds-Klein in #1886
• Ruby Support - DSA custom md by @justsmth in #1953
• Add support for POINT_CONVERSION_HYBRID by @samuel40791765 in #1936
• Fixes for Coverity Alerts by @smittals2 in #1960
• Also test w/ gcc 4.8 by @justsmth in #1962
• Actually add support for SSL_get_server/peer_tmp_key by @samuel40791765 in #1945
• Coverity Fix Null Check by @smittals2 in #1965
• ML-KEM keygen Pairwise Consistency Test by @dkostic in #1964
• EDDSA PCT by @torben-hansen in #1968
• Expose AES_cfb1_encrypt and AES_cfb8_encrypt by @skmcgrail in #1967

Full Changelog: v1.37.0...v1.38.0