Privacy Manifest and Signature

Question

Privacy Manifest and Signature

jzilske opened this issue 10 months ago · 11 comments

As per the Upcoming third-party SDK requirements using OpenSSL in an App on the App Store will require a privacy manifest (cf. Privacy manifest files) starting next spring. Since the package comes with precompiled libraries a code signature may also be required. Is that something that you would consider providing?

Answer 1 · 2023-12-14T16:28:09.000Z

yes. technically.
theoretically I’m not the author of OpenSSL

Answer 2 · 2023-12-14T18:40:24.000Z

Yes, that's what I thought as well. 🙂
Do you think this should rather be taken to the OpenSSL foundation then?

Answer 3 · 2024-01-24T04:23:05.000Z

@krzyzanowskim would you be able to provide an update on this issue? Will you be adding the required privacy manifest by the April deadline in this project? 🙏🏻

Answer 4 · 2024-01-24T06:37:16.000Z

FWIW, a discussion about this has been started on the official OpenSSL repo: openssl/openssl#23262

Answer 5 · 2024-01-29T15:40:02.000Z

Following this

Answer 6 · 2024-02-19T12:29:01.000Z

FWIW, a discussion about this has been started on the official OpenSSL repo: openssl/openssl#23262

...and it seems there's nothing coming: openssl/openssl#23262 (comment)

Answer 7 · 2024-03-05T09:50:35.000Z

It looks like we need to fork this repository, add our own privacy manifest, and sign it ourselves.

Answer 8 · 2024-03-05T21:39:00.000Z

looks like you can also propose changes to the build script in a PR

Answer 9 · 2024-03-22T13:03:11.000Z

@krzyzanowskim Please Look into #195 for the Privacy Manifest

Answer 10 · 2024-03-24T16:29:00.000Z

Shipped with 3.1.5 https://github.com/krzyzanowskim/OpenSSL/releases/tag/3.1.5000

Answer 11 · 2024-04-15T14:11:08.000Z

Thank you very much @krzyzanowskim!