On Mon, 3 Jan 2005, Andy Polyakov wrote:
> Just couple of common words first. I realize that sometimes we can't
> match the level of enthusiasm of our contributors [which might be
> experienced as frustrating], but I want to emphasize that it does *not*
> mean that the feedback is not appreciated. Please, keep up the good work
> and bear with us. It *is* appreciated.
Thanks. I don't expect many folks to get excited over porting a program
to DOS.
> Next thing to understand. Changes to 0.9.7 are *currently* prioritized,
> because we're trying to schedule 0.9.7f release. For this reason we [or
> at least I] a bit reluctant to apply cosmetic changes to 0.9.7. Or in
> other words changes that solve *real* problems in 0.9.7 are prioritized
> for *this* particular moment. So don't get upset if you find that not
> everything went in, or you have to argue and show that the problem is
> *real*, or 0.9.8 changes were left without immediate attention.
I wasn't expecting everything to go in. The "set -e" lines do prevent
the man pages from being installed in 0.9.8. The watt-32 debug problem
should probably be fixed in both, since it causes unexpected and
(probably) inappropriate action by the executable. I don't expect
changes to go into the distribution without appropriate consideration. I
think it was well over a year and after many revisions before my first
attempts to get OpenSSL to work in DOS got into the code at all. There isn't
any hurry. I am not sure that anyone is actually compiling OpenSSL for
DOS besides me and Gisle Vanem. The proposed patches are in the mailing
list archive and the rt archive if anyone needs to see them.
> I haven't audited the proposed patch yet, but I'd like you to explicitly
> state what happens if the "noise" driver is not installed at end-user
> system and provide a pointer to the driver (I know you've provided one
> back then, but please send it once again). This would be of value to
> mention in INSTALL.DJGPP. In fact just write a paragraph *as* if it was
> meant for INSTALL.DJGPP. A.
I'll try to write this in the next few days. The "noise" program was
recently released under a more liberal license (originally it was under
the GPL). I need to verify some changes in the package with the author,
then I'll plan to make it available from my website. Actually the
INSTALL.DJGPP needs revision. It is now about 2 years since I wrote it,
and I see that the URL cited for obtaining DJGPP is no longer valid.
When "noise" isn't installed, the 0.9.8 and 0.9.7 (non-fips)
pass "make test" without any problems, but the 0.9.7 (fips) test
suite fails in fips_aesavs, fips_desmovs, fips_dsatest, and in
fips_sha1test, all with error of "PRNG not seeded:md_rand.c:512". I
presume that without "noise" being installed, applications built with
the library may occasionally fail with this error, and at other times
be less secure than might be assumed by the user. I tested
"openssl s_client" and it seemed to work OK without noise. Can you think
of any specific tests that I should make?
Doug
--
Doug Kaufman
Internet: [EMAIL PROTECTED]
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [email protected]
Automated List Manager [EMAIL PROTECTED]
