development branches, API changes, and long-term maintenance

Mon, 26 Jul 2010 14:34:25 -0700 

Hello.

I've browsed through about a year's worth of the openssl-users and openssl-dev 
mail list archives in search of some information.  I think I found most of what 
I'm looking for, but I want to summarize my questions and my understanding of 
the current situation for your review:

1) I've seen several questions regarding support for TLS v1.1 and v1.2, and 
I've 
seen Dr. Henson patiently repeat that TLS v1.1 functionality is slated for 
1.1.0 
and probably 1.0.1 as well.  (In fact, according to ChangeLog it looks like 
initial support for TLS v1.1 is in 1.0.1.)  I have never seen any definitive 
statement regarding the plan to back port TLS v1.1 (or v1.2) functionality to 
the 0.9.8 development branch.  It is my assumption, therefore, that there are 
no 
plans to do so at this time.  Is that correct?

2) It sounds like the intent of the OpenSSL.org team is to support the 0.9.8 
development branch well into the foreseeable future (at least a couple of years 
from now).  However, in light of number (1) above, I believe that it will be 
mostly bug/security-related fixes and minor functionality improvements.  Is 
that 
correct?  (I'm sure it may be a function of paid ($$$) requests for new 
functionality too.)

3) I've also found references to API changes between the 0.9.8 development 
branch and the 1.0.x branch that make the libraries incompatible.  (It sounds 
like there may be API changes between the 1.0.x development branch and the 
1.1.x 
branch too.)  What I haven't been able to find is a document/web page/email 
thread that summarizes the scope of and/or the actual changes to the API and 
the 
resulting implications one must consider when porting an application to the new 
version.  Is there such a document?  If so, where is it?

4) In general, what is the team's philosophy for maintaining development 
branches into the future?  E.g.  how many development branches are going to be 
actively maintained?  For what period of time (in general), etc.

Thank you.
Geoff



      

______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    openssl-users@openssl.org
Automated List Manager                           majord...@openssl.org

Reply via email to