X-Git-Url: https://git.openssl.org/gitweb/?p=openssl.git;a=blobdiff_plain;f=STATUS;h=a9e7f99224cbcd2f1466c7183d4c554ba2f017ad;hp=5731aae29f47361bf86094955233f31b58cd87ca;hb=26e97244588fef483bb905cd7947004fd0cf3569;hpb=36969082bb6e2f6304388c2d7f50854822e1220c diff --git a/STATUS b/STATUS index 5731aae29f..a9e7f99224 100644 --- a/STATUS +++ b/STATUS @@ -1,13 +1,12 @@ OpenSSL STATUS Last modified at - ______________ $Date: 2002/08/12 06:53:17 $ + ______________ $Date: 2002/12/30 23:56:09 $ DEVELOPMENT STATE o OpenSSL 0.9.8: Under development... - o OpenSSL 0.9.7-beta3: Released on July 30th, 2002 - o OpenSSL 0.9.7-beta2: Released on June 16th, 2002 - o OpenSSL 0.9.7-beta1: Released on June 1st, 2002 + o OpenSSL 0.9.7: Released on December 31st, 2002 + o OpenSSL 0.9.6h: Released on December 5th, 2002 o OpenSSL 0.9.6g: Released on August 9th, 2002 o OpenSSL 0.9.6f: Released on August 8th, 2002 o OpenSSL 0.9.6e: Released on July 30th, 2002 @@ -28,8 +27,17 @@ RELEASE SHOWSTOPPERS - o BN_mod_mul verification fails for mips3-sgi-irix - unless configured with no-asm + o [2002-11-21] + PR 343 mentions that scrubbing memory with 'memset(ptr, 0, n)' may + be optimized away in modern compilers. This is definitely not good + and needs to be fixed immediately. The formula to use is presented + in: + + http://online.securityfocus.com/archive/82/297918/2002-10-27/2002-11-02/0 + + The problem report that mentions this is: + + https://www.aet.TU-Cottbus.DE/rt2/Ticket/Display.html?id=343 AVAILABLE PATCHES @@ -52,12 +60,19 @@ UTIL (a new set of library functions to support some higher level functionality that is currently missing). Shared library support for VMS. - Kerberos 5 authentication + Kerberos 5 authentication (Heimdal) Constification - OCSP + Compression + Attribute Certificate support + Certificate Pair support + Storage Engines (primarly an LDAP storage engine) + Certificate chain validation with full RFC 3280 compatibility NEEDS PATCH + o 0.9.8-dev: COMPLEMENTOFALL and COMPLEMENTOFDEFAULT do not + handle ECCdraft cipher suites correctly. + o apps/ca.c: "Sign the certificate?" - "n" creates empty certificate file o "OpenSSL STATUS" is never up-to-date.