Bug 135801

Summary:	openssl 0.9.9 SNAP snapshot ebuild (attached)
Product:	Gentoo Linux	Reporter:	J <mesektet+gentoobz>
Component:	New packages	Assignee:	Gentoo's Team for Core System packages <base-system>
Status:	RESOLVED WONTFIX
Severity:	enhancement
Priority:	High
Version:	unspecified
Hardware:	All
OS:	Linux
Whiteboard:
Package list:		Runtime testing required:	---
Attachments:	openssl 0.9.9-SNAP20060605 ebuild patch to enable speed testing of whirlpool

Description J 2006-06-06 11:08:20 UTC

Files (attached)
1. openssl-0.9.9_alpha<date>.ebuild
2. files/openssl-speed-whirlpool.patch

Caveat: I didn't add additional lines to protect openssl 0.9.7 libraries; if anyone upgrades directly from 0.9.7, I think those libraries will be removed... and the system will be hosed if it relies on openssh or anything else linking to libssl/libcrypto.

"Why openssl 0.9.9, even though it's only a snapshot?"
Mainly because it supports SNI, the Server Name Indication extension to TLS that allows Name-based (single-IP) virtual hosting for SSL connections.  It also supports various cyphersuites that use ECDSA and/or ECDH, and it supports whirlpool, which is a potential alternative for anyone worried about the long-term security of the SHA family of hashes.

Comment 1 J 2006-06-06 11:10:48 UTC

Created attachment 88545 [details]
openssl 0.9.9-SNAP20060605 ebuild

Comment 2 J 2006-06-06 11:12:06 UTC

Created attachment 88547 [details, diff]
patch to enable speed testing of whirlpool

Comment 3 SpanKY gentoo-dev

2006-06-07 11:26:26 UTC

i dont feel like bumping a daily ebuild

if you provide a patch against 0.9.8b to make the ebuild flexible to be renamed to a snap version though ...