Kyle Hamilton | 1 Apr 10:54 2009
Picon

Re: [PATCH] Fix RSA blinding locking hole

Submit your patch to rt <at> openssl.org, and it'll go into the request
tracking system.  I would also recommend that you wait for a bit more
than a single day before getting irritated with people who work on
this in their spare time, and have day jobs.

-Kyle H

On Wed, Apr 1, 2009 at 1:48 AM, Marc Haisenko <haisenko <at> comdasys.com> wrote:
> Forgive my frustration, but which god do I need to sacrifice to to get some
> attention ? Even a "go away, we don't care" would be OK...
>        Marc
>
> --
> Marc Haisenko
> Team Leader and Senior Developer
> Comdasys AG
> Rüdesheimer Str. 7
> 80686 München
> Germany
>
> Tel.: +49 (0)89 548 433 321
> ______________________________________________________________________
> OpenSSL Project                                 http://www.openssl.org
> Development Mailing List                       openssl-dev <at> openssl.org
> Automated List Manager                           majordomo <at> openssl.org
>
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
Development Mailing List                       openssl-dev <at> openssl.org
Automated List Manager                           majordomo <at> openssl.org
(Continue reading)

Marc Haisenko | 1 Apr 10:59 2009

Re: [PATCH] Fix RSA blinding locking hole

On Wednesday 01. April 2009 10:54:39 Kyle Hamilton wrote:
> Submit your patch to rt <at> openssl.org, and it'll go into the request
> tracking system.  I would also recommend that you wait for a bit more
> than a single day before getting irritated with people who work on
> this in their spare time, and have day jobs.
>
> -Kyle H

Thanks, I'll do. I'm not frustrated that I didn't a response to my patch but 
no response to the whole issue which I reported almost two weeks ago. I am 
enough of a open source veteran to know you can't expect immediate responses 
but four e-mails and no response is frustrating.
	Marc

--

-- 
Marc Haisenko
Team Leader and Senior Developer
Comdasys AG
Rüdesheimer Str. 7
80686 München
Germany

Tel.: +49 (0)89 548 433 321
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
Development Mailing List                       openssl-dev <at> openssl.org
Automated List Manager                           majordomo <at> openssl.org

Kyle Hamilton | 1 Apr 11:03 2009
Picon

Re: [PATCH] Fix RSA blinding locking hole

I'm only seeing two, the one with the patch and the one with the "what
god do you have to sacrifice?".

However, that doesn't mean much of anything, as I'm horrible with
managing my emails.

rt <at> openssl.org is the best place to send patches, as it creates a
ticket in the Request Tracking system that is used by the core
developers.

-Kyle H

On Wed, Apr 1, 2009 at 1:59 AM, Marc Haisenko <haisenko <at> comdasys.com> wrote:
> On Wednesday 01. April 2009 10:54:39 Kyle Hamilton wrote:
>> Submit your patch to rt <at> openssl.org, and it'll go into the request
>> tracking system.  I would also recommend that you wait for a bit more
>> than a single day before getting irritated with people who work on
>> this in their spare time, and have day jobs.
>>
>> -Kyle H
>
> Thanks, I'll do. I'm not frustrated that I didn't a response to my patch but
> no response to the whole issue which I reported almost two weeks ago. I am
> enough of a open source veteran to know you can't expect immediate responses
> but four e-mails and no response is frustrating.
>        Marc
>
> --
> Marc Haisenko
> Team Leader and Senior Developer
(Continue reading)

Marc Haisenko | 1 Apr 11:12 2009

Re: [PATCH] Fix RSA blinding locking hole

On Wednesday 01. April 2009 11:03:55 Kyle Hamilton wrote:
> I'm only seeing two, the one with the patch and the one with the "what
> god do you have to sacrifice?".

I was refering to the two threads cited in my patch e-mail:
[1] - http://marc.info/?l=openssl-dev&m=123754568501758&w=2
[2] - http://marc.info/?l=openssl-users&m=123788810006272&w=2

> However, that doesn't mean much of anything, as I'm horrible with
> managing my emails.
>
> rt <at> openssl.org is the best place to send patches, as it creates a
> ticket in the Request Tracking system that is used by the core
> developers.
>
> -Kyle H

Alright. Maybe it would be a good idea to document that on the openssl.org 
homepage, because before I submitted my patch I was searching the site for 
guidelines on how the project wants to have patches submitted, to no avail. 
There is no mentioning of a Request Tracker either (or maybe I'm blind) :-)
	Marc

--

-- 
Marc Haisenko
Team Leader and Senior Developer
Comdasys AG
Rüdesheimer Str. 7
80686 München
Germany
(Continue reading)

Kyle Hamilton | 1 Apr 11:23 2009
Picon

Re: [PATCH] Fix RSA blinding locking hole

On Wed, Apr 1, 2009 at 2:12 AM, Marc Haisenko <haisenko <at> comdasys.com> wrote:
> On Wednesday 01. April 2009 11:03:55 Kyle Hamilton wrote:
> I was refering to the two threads cited in my patch e-mail:
> [1] - http://marc.info/?l=openssl-dev&m=123754568501758&w=2
> [2] - http://marc.info/?l=openssl-users&m=123788810006272&w=2

Due to a lot of problems in current web browsers (Firefox 3.0.7 had a
critical flaw in some component or other, and I would prefer my
machine not get pwned :) ), I tend not to go to unknown sites.  This
mailing list is archived on Nabble, and it's likely that you'd get
more folk to look if you linked there.

>> rt <at> openssl.org is the best place to send patches, as it creates a
>> ticket in the Request Tracking system that is used by the core
>> developers.
>
> Alright. Maybe it would be a good idea to document that on the openssl.org
> homepage, because before I submitted my patch I was searching the site for
> guidelines on how the project wants to have patches submitted, to no avail.
> There is no mentioning of a Request Tracker either (or maybe I'm blind) :-)

It's actually under "Support" on the left side, then "Request Tracker"
at the top.  I agree, the site could use a major redesign to be more
useful.  (Right now, it's obfuscated, probably to prevent people from
abusing it.)

The people who give base-level support don't generally get RT
accounts.  (I don't have one, for example.)  It's my thought that RT
is primarily used for the developers, rather than trying to delegate
support requests -- probably because nobody's getting paid for this
(Continue reading)

Marc Haisenko | 1 Apr 11:31 2009

Re: [PATCH] Fix RSA blinding locking hole

On Wednesday 01. April 2009 11:23:45 Kyle Hamilton wrote:
> On Wed, Apr 1, 2009 at 2:12 AM, Marc Haisenko <haisenko <at> comdasys.com> wrote:
> > On Wednesday 01. April 2009 11:03:55 Kyle Hamilton wrote:
> > I was refering to the two threads cited in my patch e-mail:
> > [1] - http://marc.info/?l=openssl-dev&m=123754568501758&w=2
> > [2] - http://marc.info/?l=openssl-users&m=123788810006272&w=2
>
> Due to a lot of problems in current web browsers (Firefox 3.0.7 had a
> critical flaw in some component or other, and I would prefer my
> machine not get pwned :) ), I tend not to go to unknown sites.  This
> mailing list is archived on Nabble, and it's likely that you'd get
> more folk to look if you linked there.

http://www.openssl.org/support/

:-)

MARC (not me, the Mail ARChive) is one of the largest mail archives on the 
web... and the one linked on the OpenSSL homepage.

> >> rt <at> openssl.org is the best place to send patches, as it creates a
> >> ticket in the Request Tracking system that is used by the core
> >> developers.
> >
> > Alright. Maybe it would be a good idea to document that on the
> > openssl.org homepage, because before I submitted my patch I was searching
> > the site for guidelines on how the project wants to have patches
> > submitted, to no avail. There is no mentioning of a Request Tracker
> > either (or maybe I'm blind) :-)
>
(Continue reading)

Marsh Ray | 1 Apr 17:09 2009
Picon

Re: [PATCH] Fix RSA blinding locking hole

Marc Haisenko wrote:
> ...  Maybe it would be a good idea to document that on the openssl.org
> homepage, because before I submitted my patch I was searching the site for 
> guidelines on how the project wants to have patches submitted, to no avail. 
> There is no mentioning of a Request Tracker either (or maybe I'm blind) :-)

Seconded.

I joined this list a few weeks ago for the purpose of submitting a small 
patch. I was soon directed to RT.

There are some interesting discussions here, so I've stuck around.

However, it seems like at least every week someone else tries to submit 
a patch via this list.

How do we submit a patch for the website? Hmmm... :-)

- Marsh
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
Development Mailing List                       openssl-dev <at> openssl.org
Automated List Manager                           majordomo <at> openssl.org


Gmane