X-Git-Url: https://git.openssl.org/gitweb/?p=openssl.git;a=blobdiff_plain;f=STATUS;h=3a6d0ae43506b7c2d8520945fefbc8dda916f6c1;hp=a4f2af08bdbbd6445198f01d5b91dff4f623a7af;hb=8f06b003736c957c6e693d3b5dd1393f91a530cd;hpb=bbd1c84e6eabdbfbc2e2d1a4f4e9ab1d21b6453b diff --git a/STATUS b/STATUS index a4f2af08bd..3a6d0ae435 100644 --- a/STATUS +++ b/STATUS @@ -1,11 +1,13 @@ OpenSSL STATUS Last modified at - ______________ $Date: 2001/02/22 15:10:11 $ + ______________ $Date: 2002/02/13 10:21:25 $ DEVELOPMENT STATE o OpenSSL 0.9.7: Under development... - o OpenSSL 0.9.6a: Bugfix release -- under development... + o OpenSSL 0.9.6c: Released on December 21st, 2001 + o OpenSSL 0.9.6b: Released on July 9th, 2001 + o OpenSSL 0.9.6a: Released on April 5th, 2001 o OpenSSL 0.9.6: Released on September 24th, 2000 o OpenSSL 0.9.5a: Released on April 1st, 2000 o OpenSSL 0.9.5: Released on February 28th, 2000 @@ -17,11 +19,12 @@ RELEASE SHOWSTOPPERS - o + o BIGNUM library failures on 64-bit platforms (0.9.7-dev): + - BN_mod_mul verificiation (bc) fails for solaris64-sparcv9-cc AVAILABLE PATCHES - o + o IN PROGRESS @@ -36,15 +39,25 @@ o Geoff and Richard are currently working on: ENGINE (the new code that gives hardware support among others). o Richard is currently working on: + UI (User Interface) UTIL (a new set of library functions to support some higher level functionality that is currently missing). Shared library support for VMS. - OCSP Kerberos 5 authentication Constification + OCSP NEEDS PATCH + o An (optional) countermeasure against the predictable-IV CBC + weakness in SSL/TLS should be added; see + http://www.openssl.org/~bodo/tls-cbc.txt + + o All 'openssl' subprograms taking '-des' and '-des3' options should + include AES support (0.9.7-dev) + + o 'openssl speed' should include AES support (0.9.7-dev) + o apps/ca.c: "Sign the certificate?" - "n" creates empty certificate file o OpenSSL_0_9_6-stable: @@ -54,13 +67,9 @@ o Whenever strncpy is used, make sure the resulting string is NULL-terminated or an error is reported - OPEN ISSUES + o "OpenSSL STATUS" is never up-to-date. - o crypto/ex_data.c is not really thread-safe and so must be used - with care (e.g., extra locking where necessary, or don't call - CRYPTO_get_ex_new_index once multiple threads exist). - The current API is not suitable for everything that it pretends - to offer. + OPEN ISSUES o The Makefile hierarchy and build mechanism is still not a round thing: @@ -104,4 +113,18 @@ WISHES - o + o Add variants of DH_generate_parameters() and BN_generate_prime() [etc?] + where the callback function can request that the function be aborted. + [Gregory Stark , ] + + o SRP in TLS. + [wished by: + Dj , Tom Wu , + Tom Holroyd ] + + See http://search.ietf.org/internet-drafts/draft-ietf-tls-srp-00.txt + as well as http://www-cs-students.stanford.edu/~tjw/srp/. + + Tom Holroyd tells us there is a SRP patch for OpenSSH at + http://members.tripod.com/professor_tom/archives/, that could + be useful.