[openssl-project] Milestones and the 1.1.1 release

Matt Caswell matt at openssl.org
Tue Jul 3 09:03:34 UTC 2018

On 02/07/18 18:36, Salz, Rich wrote:
> Thanks for finishing this off.
>     https://github.com/openssl/openssl/issues?q=is%3Aopen+is%3Aissue+milestone%3A1.1.1
> Are 6512 and 6396 the same, and closed because we made things more secure?

They may be the same, or maybe not. Almost certainly this is the result
of the SCA mitigations we've put in place. For 6512 @romen was going to
do some testing and report back, so I've pinged him.

For 6396 the answer may be to implement 6418 which should help quite a
lot. There is some doubt though whether we can get that in quickly
enough. Awaiting further input from @bbbrumley.

In both cases I think we should keep them open for now. I wouldn't
consider either as showstoppers though.

> Is 6342 a python bug, they'll need to upgrade?

Maybe. Pinged @tiran for an update.

> Is 6228 a foolscap issue?

A comment in 6234 says that the foolscap issue was solved by setting
SSL_MODE_AUTO_RETRY on by default, so I closed this issue.

> I think we can close 6221 soon.

Probably, yes.


More information about the openssl-project mailing list