from the must-have-missed-starssl-then dept.
Yes, it's official. The recent work in cleaning up OpenSSL
is now officially a fork, with its own website and donation link.
The project's name going forward is LibreSSL, and according to the (so far spartan) website, the first release will be included in OpenBSD 5.6, which is expected to be released November 1st, 2014.
The order of the day (or following weeks and months, more likely) is cleanup first, then, as it says on the website,
For other OS's
Multi OS support will happen once we have
We know you all want this tomorrow. We are working as fast as we can but our primary focus is good software that we trust to run ourselves. We don't want to break your heart.
- Flensed, refactored, rewritten, and fixed enough of the code so we have stable baseline that we trust and can be maintained/improved.
- The right Portability team in place.
- A Stable Commitment of Funding to support an increased development and porting effort.
Also just in: Ars Technica has a story about LibreSSL: OpenSSL code beyond repair, claims creator of “LibreSSL” fork, with a nice sampling of quotables from Theo de Raadt (deraadt@), while Ted Unangst (tedu@) has contributed a origins of libressl blog post and just told misc@ that FIPS mode is not coming back to LibreSSL..