2 OpenSSL STATUS Last modified at
3 ______________ $Date: 2000/09/18 09:21:01 $
7 o OpenSSL 0.9.6: Under development (in release cycle)...
8 Proposed release date September 24, 2000
9 0.9.6-beta1 is available:
10 OpenBSD-x86 2.7 - failed
11 ftime not supported [FIXED]
12 hpux-parisc-cc 10.20 - passed
13 hpux-parisc-gcc 10.20 - passed
14 hpux-parisc-gcc 11.00 - passed
16 hpux-brokengcc - failed
19 linux-sparcv7 - passed
21 Solaris [engine] - failed
22 speed cswift gives odd errors [FIXED]
23 solaris-sparcv8-gcc - passed
24 solaris-sparcv9-gcc - passed
25 solaris-sparcv9-cc - passed
26 solaris64-sparcv9-cc - passed
31 PCURSORINFO not defined unless Win2000 [FIXED]
32 RAND_poll() problem on Win2000 [FIXED]
33 DSO method always DSO_METHOD_null [FIXED]
34 CygWin32 - test failed
37 aix-gcc (AIX 4.3.2) - passed
39 Some things were missing [FIXED]
40 0.9.6-beta2 is available:
43 Win32 w/ VC6 or Mingw32 - failed
44 RAND_poll(), a few uninitialised vars [FIXED]
45 RAND_poll() should used LoadLibrary instead of
46 GetModuleHandle [FIXED]
47 Major compilation problem with VC6 on NT
48 Mingw32 says "175: parse error before `DWORD'"
49 Win32 w/ CygWin - success?
50 VMS/Alpha 7.1 (CPQ C 5.6-003, TCP/IP 5.0) - success
51 Just a small warning in dso_vms.c [FIXED]
52 VMS/Alpha 7.2-1 (CPQ 5.6-003, TCP/IP 5.0A) - success
53 VMS/VAX 7.2-1 (CPQ 5.2-003, TCP/IP 5.0) - success
54 o OpenSSL 0.9.5a: Released on April 1st, 2000
55 o OpenSSL 0.9.5: Released on February 28th, 2000
56 o OpenSSL 0.9.4: Released on August 09th, 1999
57 o OpenSSL 0.9.3a: Released on May 29th, 1999
58 o OpenSSL 0.9.3: Released on May 25th, 1999
59 o OpenSSL 0.9.2b: Released on March 22th, 1999
60 o OpenSSL 0.9.1c: Released on December 23th, 1998
66 o CA.pl patch (Damien Miller)
70 o Steve is currently working on (in no particular order):
71 ASN1 code redesign, butchery, replacement.
72 EVP cipher enhancement.
73 Proper (or at least usable) certificate chain verification.
74 Private key, certificate and CRL API and implementation.
75 Developing and bugfixing PKCS#7 (S/MIME code).
76 Various X509 issues: character sets, certificate request extensions.
77 o Geoff and Richard are currently working on:
78 ENGINE (the new code that gives hardware support among others).
79 o Richard is currently working on:
80 UTIL (a new set of library functions to support some higher level
81 functionality that is currently missing).
82 Dynamic thread-lock support.
83 Shared library support for VMS.
87 o non-blocking socket on AIX
88 o $(PERL) in */Makefile.ssl
89 o "Sign the certificate?" - "n" creates empty certificate file
93 o internal_verify doesn't know about X509.v3 (basicConstraints
96 o The Makefile hierarchy and build mechanism is still not a round thing:
98 1. The config vs. Configure scripts
99 It's the same nasty situation as for Apache with APACI vs.
100 src/Configure. It confuses.
101 Suggestion: Merge Configure and config into a single configure
102 script with a Autoconf style interface ;-) and remove
103 Configure and config. Or even let us use GNU Autoconf
104 itself. Then we can avoid a lot of those platform checks
105 which are currently in Configure.
107 o Support for Shared Libraries has to be added at least
108 for the major Unix platforms. The details we can rip from the stuff
109 Ralf has done for the Apache src/Configure script. Ben wants the
110 solution to be really simple.
112 Status: Ralf will look how we can easily incorporate the
113 compiler PIC and linker DSO flags from Apache
114 into the OpenSSL Configure script.
116 Ulf: +1 for using GNU autoconf and libtool (but not automake,
117 which apparently is not flexible enough to generate
121 o The perl/ stuff needs a major overhaul. Currently it's
122 totally obsolete. Either we clean it up and enhance it to be up-to-date
123 with the C code or we also could replace it with the really nice
124 Net::SSLeay package we can find under
125 http://www.neuronio.pt/SSLeay.pm.html. Ralf uses this package for a
126 longer time and it works fine and is a nice Perl module. Best would be
127 to convince the author to work for the OpenSSL project and create a
128 Net::OpenSSL or Crypt::OpenSSL package out of it and maintains it for
131 Status: Ralf thinks we should both contact the author of Net::SSLeay
132 and look how much effort it is to bring Eric's perl/ stuff up