projects / openssl.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Add AES support in the applications that support -des and -des3.
[openssl.git] / STATUS
diff --git a/STATUS b/STATUS
index e2164b6664d5dd6286513d861e525a38baf25278..7929c0223177da7bfd9241e8e332ea81a9691087 100644 (file)
--- a/STATUS
+++ b/STATUS
@@ -1,10 +1,12 @@
 
   OpenSSL STATUS                           Last modified at
-  ______________                           $Date: 2001/06/20 15:11:15 $
+  ______________                           $Date: 2002/02/20 18:03:00 $
 
   DEVELOPMENT STATE
 
     o  OpenSSL 0.9.7:  Under development...
+    o  OpenSSL 0.9.6c: Released on December  21st, 2001
+    o  OpenSSL 0.9.6b: Released on July       9th, 2001
     o  OpenSSL 0.9.6a: Released on April      5th, 2001
     o  OpenSSL 0.9.6:  Released on September 24th, 2000
     o  OpenSSL 0.9.5a: Released on April      1st, 2000
@@ -17,8 +19,21 @@
 
   RELEASE SHOWSTOPPERS
 
+    o BIGNUM library failures on 64-bit platforms (0.9.7-dev):
+      - BN_mod_mul verificiation (bc) fails for solaris64-sparcv9-cc
+
+       Checked on                      Result
+       alpha-cc (Tru64 version 4.0)    works
+       linux-alpha+bwx-gcc             doesn't work. Reported by
+                                       Sean O'Riordain <seanpor@acm.org>
+
+       Needs checked on
+       [add platforms here]
+
   AVAILABLE PATCHES
 
+    o 
+
   IN PROGRESS
 
     o Steve is currently working on (in no particular order):
@@ -42,24 +57,20 @@
 
   NEEDS PATCH
 
-    o  engine_list.c memory leaks in 0.9.7-dev (built-in engines)
+    o  An (optional) countermeasure against the predictable-IV CBC
+       weakness in SSL/TLS should be added; see
+       http://www.openssl.org/~bodo/tls-cbc.txt
 
-    o  apps/ca.c: "Sign the certificate?" - "n" creates empty certificate file
+    o  'openssl speed' should include AES support (0.9.7-dev)
 
-    o  OpenSSL_0_9_6-stable:
-       #include <openssl/e_os.h> in exported header files is illegal since
-       e_os.h is suitable only for library-internal use.
+    o  apps/ca.c: "Sign the certificate?" - "n" creates empty certificate file
 
     o  Whenever strncpy is used, make sure the resulting string is NULL-terminated
        or an error is reported
 
-  OPEN ISSUES
+    o  "OpenSSL STATUS" is never up-to-date.
 
-    o  crypto/ex_data.c is not really thread-safe and so must be used
-       with care (e.g., extra locking where necessary, or don't call
-       CRYPTO_get_ex_new_index once multiple threads exist).
-       The current API is not suitable for everything that it pretends
-       to offer.
+  OPEN ISSUES
 
     o  The Makefile hierarchy and build mechanism is still not a round thing:
 
@@ -103,6 +114,10 @@
 
   WISHES
 
+    o  Add variants of DH_generate_parameters() and BN_generate_prime() [etc?]
+       where the callback function can request that the function be aborted.
+       [Gregory Stark <ghstark@pobox.com>, <rayyang2000@yahoo.com>]
+
     o  SRP in TLS.
        [wished by:
         Dj <derek@yo.net>, Tom Wu <tom@arcot.com>,
Unnamed repository; edit this file 'description' to name the repository.