Ingore the correct flag file.

[openssl.git] / STATUS

diff --git a/STATUS b/STATUS
index 7853d9ff50ed3b17f34512c22b2bbdfab7b38505..a9e7f99224cbcd2f1466c7183d4c554ba2f017ad 100644 (file)
--- a/STATUS
+++ b/STATUS
@@ -1,10 +1,16 @@
 
   OpenSSL STATUS                           Last modified at
 
   OpenSSL STATUS                           Last modified at

-  ______________                           $Date: 2002/03/11 09:36:04 $
+  ______________                           $Date: 2002/12/30 23:56:09 $

 
   DEVELOPMENT STATE
 
 
   DEVELOPMENT STATE
 

-    o  OpenSSL 0.9.7:  Under development...
+    o  OpenSSL 0.9.8:  Under development...
+    o  OpenSSL 0.9.7:  Released on December  31st, 2002
+    o  OpenSSL 0.9.6h: Released on December   5th, 2002
+    o  OpenSSL 0.9.6g: Released on August     9th, 2002
+    o  OpenSSL 0.9.6f: Released on August     8th, 2002
+    o  OpenSSL 0.9.6e: Released on July      30th, 2002
+    o  OpenSSL 0.9.6d: Released on May        9th, 2002

     o  OpenSSL 0.9.6c: Released on December  21st, 2001
     o  OpenSSL 0.9.6b: Released on July       9th, 2001
     o  OpenSSL 0.9.6a: Released on April      5th, 2001
     o  OpenSSL 0.9.6c: Released on December  21st, 2001
     o  OpenSSL 0.9.6b: Released on July       9th, 2001
     o  OpenSSL 0.9.6a: Released on April      5th, 2001


@@ -17,23 +23,21 @@
     o  OpenSSL 0.9.2b: Released on March     22th, 1999
     o  OpenSSL 0.9.1c: Released on December  23th, 1998
 
     o  OpenSSL 0.9.2b: Released on March     22th, 1999
     o  OpenSSL 0.9.1c: Released on December  23th, 1998
 

+  [See also http://www.openssl.org/support/rt2.html]
+

   RELEASE SHOWSTOPPERS
 
   RELEASE SHOWSTOPPERS
 

-    o BIGNUM library failures on 64-bit platforms (0.9.7-dev):
-      - BN_mod_mul verificiation (bc) fails for solaris64-sparcv9-cc
-        and other 64-bit platforms
+    o [2002-11-21]
+      PR 343 mentions that scrubbing memory with 'memset(ptr, 0, n)' may
+      be optimized away in modern compilers.  This is definitely not good
+      and needs to be fixed immediately.  The formula to use is presented
+      in:

 
 

-       Checked on                      Result
-       alpha-cc (Tru64 version 4.0)    works
-       linux-alpha+bwx-gcc             doesn't work. Reported by
-                                       Sean O'Riordain <seanpor@acm.org>
-       OpenBSD-sparc64                 doesn't work.  BN_mod_mul breaks.
+      http://online.securityfocus.com/archive/82/297918/2002-10-27/2002-11-02/0

 
 

-       Needs checked on
-       [add platforms here]
+      The problem report that mentions this is:

 
 

-      - BN_mod_mul verification fails for mips3-sgi-irix
-        unless configured with no-asm
+      https://www.aet.TU-Cottbus.DE/rt2/Ticket/Display.html?id=343

 
   AVAILABLE PATCHES
 
 
   AVAILABLE PATCHES
 


@@ -56,15 +60,18 @@
        UTIL (a new set of library functions to support some higher level
              functionality that is currently missing).
        Shared library support for VMS.
        UTIL (a new set of library functions to support some higher level
              functionality that is currently missing).
        Shared library support for VMS.

-       Kerberos 5 authentication
+       Kerberos 5 authentication (Heimdal)

        Constification
        Constification

-       OCSP
+       Compression
+       Attribute Certificate support
+       Certificate Pair support
+       Storage Engines (primarly an LDAP storage engine)
+       Certificate chain validation with full RFC 3280 compatibility

 
   NEEDS PATCH
 
 
   NEEDS PATCH
 

-    o  An (optional) countermeasure against the predictable-IV CBC
-       weakness in SSL/TLS should be added; see
-       http://www.openssl.org/~bodo/tls-cbc.txt
+    o  0.9.8-dev: COMPLEMENTOFALL and COMPLEMENTOFDEFAULT do not
+       handle ECCdraft cipher suites correctly.

 
     o  apps/ca.c: "Sign the certificate?" - "n" creates empty certificate file
 
 
     o  apps/ca.c: "Sign the certificate?" - "n" creates empty certificate file