[Info-vax] HPE contact for access to formerly "free" OpenSSL kits?

[Stephen Hoffman]

On 2019-03-05 14:34:14 +0000, Rod Regier said:

> The past pattern I have observed with HP and later HPE for SSL and 
> later SSL1 was to issue complete kits for updated versions.  These 
> normal correspond to "upstream" releases by the primary OpenSSL 
> maintainer.

For some of the OpenSSL versions.

HPE delays in releases have been common, as have been skipped releases.

OpenSSL 1.1.1b is current.

OpenSSL work on the OpenSSL 3.0 release underway.  OpenSSL 3 is the 
next release after 1.1.1 series.  OpenSSL has re-numbered releases 
after 1.1.1.

OpenSSL 1.0.2r is the current release in the older series.

Patches for the OpenSSL 1.0.2 series will end 31-Dec-2019; at the end 
of this year.


> ...
> 
> There is a document hosted on an HPE web site that references the later 
> SSL1 1.0-2N (dated January 2018), but I have not been able to locate an 
> HPE web site where I could download the binary.  That kit was 
> apparently mastered by VSI.

It's in the patch area.  I doubt it's going to be made openly available 
given the trend at HPE, unless the SSL1 kit happens to be added into 
some re-spin of the hobbyist distro.

Wouldn't surprise me to see the HPE OpenVMS hobbyist program end in the 
next two years or so, too.  This given the end of new-patch support, 
and the HPE roadmap to exit the OpenVMS business.  But I digress.

As has been discussed previously, alternatives include downloading TLS 
from elsewhere, building locally from the canonical sources, or VSI 
support.  That's the choice you'll be working with after HPE new-patch 
support ends, after all.

What VSI might be planning with the OpenSSL kits has not been widely 
discussed.  They'll likely be tracking OpenSSL, and—entirely as a 
guess—we'll probably see (hypothetical) VSI SSL2 (1.1.1) or (maybe) 
SSL3 kit arrive later this year.


-- 
Pure Personal Opinion | HoffmanLabs LLC