Hi David,
I am CCing the squeak-dev list.
I had tried to contact Ron over the weekend, since he is the admin for the SqueakSource Cryptography package. I needed to add you as a member of the Crypto team. That's right, you are a member now. I didn't hear from him so the email address may be bad. We'll see if we hear from him in the future. I hope so.
Do you have the link to the Crypto mailing list?
I agree we should do this in public. I would suggest the squeak-dev list.
We may have several "forks" and/or subsequent work done from the root package.
The root package for SSL is in the Monticello repository http://www.squeaksource.com/Cryptography, but it may not be the latest. I think that the SSL package there is the latest...Whoa! I just checked again and new SSL packages were inserted 2 days ago. The latest there used to be SSL-rww.4.mcz and now there is a SSL-jrd.12.mcz.
The root package for Cryptography is in the same repository, but it is less clear which is the latest and greatest. There is a mixture of version numbers. I am using Cryptography-cmm.13.mcz. All tests pass except for a Rindael test and an X509 test (due to bad validity dates).
I know there is packages in http://croquet-src-01.oit.duke.edu:8886/Contributions. SSL look like the ones now in the Cryptography repository above. The Cryptography packages in Contributions look like they are also in the Cryptography repository, but mixed up with other work. In Contributions, there is the sequence of packages:
Cryptography-RJT.10.mcz (the root package) Cryptography-jrd.11.mcz Cryptography-jrd.12.mcz Cryptography-mtf.13.mcz
These are interwoven with other packages in the Cryptography repository, with the same version numbers.
Lastly, David, it sounded like you have developments that you wanted to integrate.
Cheers, Rob
-------------------------------------------------- From: "C. David Shaffer" cdshaffer@acm.org Sent: Tuesday, June 29, 2010 2:23 PM To: "Rob Withers" reefedjib@yahoo.com; "Ron Teitelbaum" Ron@USMedRec.com Subject: Cryptography
Ron and Rob,
I see that there is a Cryptography mailing list but that there hasn't been a post since 2009. I would like updates to Cryptography to happen "in public" since I think a lot of people are interested in these packages. I can post to either forum.
Based on what I've seen, integrating work that has been done may take a few 'back-and-forths' so I just need to know in what forum to raise questions.
Finally, I know I'm not part of the Crypto team and I'm no expert in cryptography or even the Squeak frameworks. What I see, however, is the there is some code harvesting to be done and I think I can do a little of it without causing any harm. I'm using SSL and MD5+HMAC heavily under Squeak3.9 and Squeak4.1 (soon) and so I can exercise parts of the framework past what is already covered by unit tests. Any other bugs that I introduce can be fixed by harsh words from those that use those bits of functionality.
David