projects / thirdparty / openssl.git / blame
| Commit | Line | Data |
|---|---|---|
| 75b8dfc0 RE |
1 | |
| 2 | OpenSSL STATUS Last modified at | |
| 749d055e | 3 | ______________ $Date: 2002/08/14 11:07:29 $ |
| 75b8dfc0 RE |
4 | |
| 5 | DEVELOPMENT STATE | |
| 6 | ||
| 010da5c0 | 7 | o OpenSSL 0.9.8: Under development... |
| b218af2b | 8 | o OpenSSL 0.9.7-beta3: Released on July 30th, 2002 |
| 97e4b188 | 9 | o OpenSSL 0.9.7-beta2: Released on June 16th, 2002 |
| a2b38b30 | 10 | o OpenSSL 0.9.7-beta1: Released on June 1st, 2002 |
| 36969082 | 11 | o OpenSSL 0.9.6g: Released on August 9th, 2002 |
| fbe792f0 | 12 | o OpenSSL 0.9.6f: Released on August 8th, 2002 |
| b218af2b | 13 | o OpenSSL 0.9.6e: Released on July 30th, 2002 |
| 336c35dc | 14 | o OpenSSL 0.9.6d: Released on May 9th, 2002 |
| 84fcd6f8 | 15 | o OpenSSL 0.9.6c: Released on December 21st, 2001 |
| 6b46ca13 | 16 | o OpenSSL 0.9.6b: Released on July 9th, 2001 |
| 4d231b43 | 17 | o OpenSSL 0.9.6a: Released on April 5th, 2001 |
| 16221173 RL |
18 | o OpenSSL 0.9.6: Released on September 24th, 2000 |
| 19 | o OpenSSL 0.9.5a: Released on April 1st, 2000 | |
| 20 | o OpenSSL 0.9.5: Released on February 28th, 2000 | |
| 21 | o OpenSSL 0.9.4: Released on August 09th, 1999 | |
| 22 | o OpenSSL 0.9.3a: Released on May 29th, 1999 | |
| 23 | o OpenSSL 0.9.3: Released on May 25th, 1999 | |
| 24 | o OpenSSL 0.9.2b: Released on March 22th, 1999 | |
| 25 | o OpenSSL 0.9.1c: Released on December 23th, 1998 | |
| 75b8dfc0 | 26 | |
| c0a95365 | 27 | [See also http://www.openssl.org/support/rt2.html] |
| 006723cf | 28 | |
| 0424fe1a | 29 | RELEASE SHOWSTOPPERS |
| 006723cf | 30 | |
| 0424fe1a BM |
31 | o BN_mod_mul verification fails for mips3-sgi-irix |
| 32 | unless configured with no-asm | |
| b9b43196 | 33 | |
| 75b8dfc0 RE |
34 | AVAILABLE PATCHES |
| 35 | ||
| 0b0b2a80 | 36 | o |
| 6b46ca13 | 37 | |
| 75b8dfc0 RE |
38 | IN PROGRESS |
| 39 | ||
| 67d5ac03 | 40 | o Steve is currently working on (in no particular order): |
| 75c4f7e0 | 41 | ASN1 code redesign, butchery, replacement. |
| 36f554d4 | 42 | OCSP |
| 7f060601 | 43 | EVP cipher enhancement. |
| 36f554d4 | 44 | Enhanced certificate chain verification. |
| 1d48dd00 | 45 | Private key, certificate and CRL API and implementation. |
| 5a9a4b29 | 46 | Developing and bugfixing PKCS#7 (S/MIME code). |
| 87c49f62 | 47 | Various X509 issues: character sets, certificate request extensions. |
| 1e552869 RL |
48 | o Geoff and Richard are currently working on: |
| 49 | ENGINE (the new code that gives hardware support among others). | |
| 50 | o Richard is currently working on: | |
| b8ffcf49 | 51 | UI (User Interface) |
| 1e552869 RL |
52 | UTIL (a new set of library functions to support some higher level |
| 53 | functionality that is currently missing). | |
| 79d2eb64 | 54 | Shared library support for VMS. |
| 257341b5 RL |
55 | Kerberos 5 authentication |
| 56 | Constification | |
| b8ffcf49 | 57 | OCSP |
| 679ab7c3 | 58 | |
| 75b8dfc0 RE |
59 | NEEDS PATCH |
| 60 | ||
| 749d055e BM |
61 | o 0.9.8-dev: COMPLEMENTOFALL and COMPLEMENTOFDEFAULT do not |
| 62 | handle ECCdraft cipher suites correctly. | |
| 63 | ||
| 91b842c9 | 64 | o apps/ca.c: "Sign the certificate?" - "n" creates empty certificate file |
| acafc0b4 | 65 | |
| 2cb924b0 | 66 | o "OpenSSL STATUS" is never up-to-date. |
| 40753f76 | 67 | |
| 2cb924b0 | 68 | OPEN ISSUES |
| a14280d4 | 69 | |
| 2ec077d8 RE |
70 | o The Makefile hierarchy and build mechanism is still not a round thing: |
| 71 | ||
| 72 | 1. The config vs. Configure scripts | |
| 73 | It's the same nasty situation as for Apache with APACI vs. | |
| 74 | src/Configure. It confuses. | |
| 75 | Suggestion: Merge Configure and config into a single configure | |
| 76 | script with a Autoconf style interface ;-) and remove | |
| 77 | Configure and config. Or even let us use GNU Autoconf | |
| 78 | itself. Then we can avoid a lot of those platform checks | |
| 79 | which are currently in Configure. | |
| 80 | ||
| a6f20a1e RE |
81 | o Support for Shared Libraries has to be added at least |
| 82 | for the major Unix platforms. The details we can rip from the stuff | |
| 83 | Ralf has done for the Apache src/Configure script. Ben wants the | |
| 84 | solution to be really simple. | |
| 85 | ||
| 86 | Status: Ralf will look how we can easily incorporate the | |
| 87 | compiler PIC and linker DSO flags from Apache | |
| 88 | into the OpenSSL Configure script. | |
| 89 | ||
| eb025998 UM |
90 | Ulf: +1 for using GNU autoconf and libtool (but not automake, |
| 91 | which apparently is not flexible enough to generate | |
| 92 | libcrypto) | |
| 93 | ||
| 69d1dfba RE |
94 | WISHES |
| 95 | ||
| 182d8435 BM |
96 | o Add variants of DH_generate_parameters() and BN_generate_prime() [etc?] |
| 97 | where the callback function can request that the function be aborted. | |
| 98 | [Gregory Stark <ghstark@pobox.com>, <rayyang2000@yahoo.com>] | |
| 99 | ||
| 27bfba29 | 100 | o SRP in TLS. |
| 528f6b81 RL |
101 | [wished by: |
| 102 | Dj <derek@yo.net>, Tom Wu <tom@arcot.com>, | |
| 103 | Tom Holroyd <tomh@po.crl.go.jp>] | |
| 104 | ||
| 27bfba29 RL |
105 | See http://search.ietf.org/internet-drafts/draft-ietf-tls-srp-00.txt |
| 106 | as well as http://www-cs-students.stanford.edu/~tjw/srp/. | |
| 528f6b81 RL |
107 | |
| 108 | Tom Holroyd tells us there is a SRP patch for OpenSSH at | |
| 109 | http://members.tripod.com/professor_tom/archives/, that could | |
| 110 | be useful. |