[Bug 958430] Re: [FFe] Please merge openssl 1.0.1 from Debian unstable

Colin Watson cjwatson at canonical.com
Thu Mar 22 16:47:26 UTC 2012


While I know a number of people are interested in support for newer
versions of TLS, my motivation for this FFe is that we've had commercial
requests to backport performance work for newer Intel processors from
the 1.0.1 branch.  I attempted this a while back.  The result was an
improvement for most algorithms, but a 36% regression for RC4.  At this
point I have run out of my comfort zone for backporting OpenSSL patches:
it's not at all obvious how they're intertwined, and I am concerned that
an amateur backport attempt could easily introduce security problems.
I'm a lot more comfortable with the idea of just using 1.0.1, especially
since it's in Debian unstable now.

I have a merge prepared and ready to go.  Preview temporarily here:

  http://people.canonical.com/~cjwatson/tmp/openssl/

** Changed in: openssl (Ubuntu)
   Importance: Undecided => High

** Changed in: openssl (Ubuntu)
       Status: Confirmed => Triaged

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to openssl in Ubuntu.
https://bugs.launchpad.net/bugs/958430

Title:
  [FFe] Please merge openssl 1.0.1 from Debian unstable

Status in “openssl” package in Ubuntu:
  Triaged

Bug description:
  Please use openssl 1.0.1 in Ubuntu 12.04 LTS.

  I really need TLS 1.1 support and cannot wait another 2 years.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openssl/+bug/958430/+subscriptions




More information about the foundations-bugs mailing list