Hi, On Fri, Feb 17, 2017 at 06:37:04PM +0100, Emmanuel Deloget wrote: > I guess the answer to the riddle is: "how long will the 2.4 branch > live?". v2.3 shipped in May 2013. If we assume that v2.4 will be the > stable branch for two more years (I cannot find any roadmap, so this > is pure speculation) then it might make sense for 2.5 to at least > remove support for OpenSSL v0.9.8 (it would have been EoL'd for 3 > years by then).
We have *plans* to release 2.5 faster than "it takes another 3 years",
but we said so when planning 2.4 as well.
Since David pointed out already that RHEL5 is going to be EOLed soon,
I do not thing 0.9.8 is an important target anymore. Depending on the
amount of #ifdef etc., it might make sense to drop 0.9.8 support in
2.4, but only add 1.1 support to master/2.5 - we're early in the 2.4
cycle, which allows "somewhat larger" changes, but 500+ insertions
sounds like a bit too intrusive.
> I must admit that the fact that I can build OpenVPN
> against a security-focused library that haven't seen any evolution/bug
> fix/security fix in one year makes me pretty shaky :)
Well, as far as I understand, at least the RHEL guys would backport
anything that shows up while RHEL5 is still supported... (and since
they never change version numbers, this is/was the goal).
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany g...@greenie.muc.de
fax: +49-89-35655025 g...@net.informatik.tu-muenchen.de
signature.asc
Description: PGP signature
------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, SlashDot.org! http://sdm.link/slashdot
_______________________________________________ Openvpn-devel mailing list Openvpn-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-devel
