+ o Steve is currently working on:
+ X509 V3 extension code including:
+ 1. Support for the more common PKIX extensions.
+ 2. Proper (or at least usable) certificate chain verification.
+ 3. Support in standard applications (req, x509, ca).
+ 4. Documentation on how all the above works.
+ Next on the list is probably PKCS#12 integration.
+
+ o Mark is currently working on:
+ Folding in any changes that are in the C2Net code base that were
+ not in the original SSLeay-0.9.1.b release. Plus other minor
+ tidying.
+
+ o Ralf is currently working on:
+ 1. Support for SSL_set_default_verify_paths(),
+ SSL_load_verify_locations(), SSL_get_cert_store() and
+ SSL_set_cert_store() functions which work like their existing
+ SSL_CTX_xxx() variants but on a per connection basis. That's needed
+ to let us provide full-featured per-URL client verification in
+ mod_ssl or Apache-SSL.
+ 2. The perl/ stuff to make it really work the first time ;-)
+ 3. The new documentation set in PID format under doc/
+ 4. More cleanups to get rid of obsolete/old/ugly files in the
+ source tree which are not really needed.
+