[thirdparty/openssl.git] / CHANGES


 OpenSSL CHANGES
 _______________

 Changes between 0.9.7e and 0.9.8  [xx XXX xxxx]

  *) Deprecate BN_[get|set]_params() functions (they were ignored internally).
     [Geoff Thorpe]

  *) New FIPS 180-2 algorithms, SHA-224/-256/-384/-512 are implemented.
     [Andy Polyakov and a number of other people]

  *) Improved PowerPC platform support. Most notably BIGNUM assembler
     implementation contributed by IBM.
     [Suresh Chari, Peter Waltenberg, Andy Polyakov]

  *) The new 'RSA_generate_key_ex' function now takes a BIGNUM for the public
     exponent rather than 'unsigned long'. There is a corresponding change to
     the new 'rsa_keygen' element of the RSA_METHOD structure.
     [Jelte Jansen, Geoff Thorpe]

  *) Functionality for creating the initial serial number file is now
     moved from CA.pl to the 'ca' utility with a new option -create_serial.

     (Before OpenSSL 0.9.7e, CA.pl used to initialize the serial
     number file to 1, which is bound to cause problems.  To avoid
     the problems while respecting compatibility between different 0.9.7
     patchlevels, 0.9.7e  employed 'openssl x509 -next_serial' in
     CA.pl for serial number initialization.  With the new release 0.9.8,
     we can fix the problem directly in the 'ca' utility.)
     [Steve Henson]

  *) Reduced header interdepencies by declaring more opaque objects in
     ossl_typ.h. As a consequence, including some headers (eg. engine.h) will
     give fewer recursive includes, which could break lazy source code - so
     this change is covered by the OPENSSL_NO_DEPRECATED symbol. As always,
     developers should define this symbol when building and using openssl to
     ensure they track the recommended behaviour, interfaces, [etc], but
     backwards-compatible behaviour prevails when this isn't defined.
     [Geoff Thorpe]

  *) New function X509_POLICY_NODE_print() which prints out policy nodes.
     [Steve Henson]

  *) Add new EVP function EVP_CIPHER_CTX_rand_key and associated functionality.
     This will generate a random key of the appropriate length based on the 
     cipher context. The EVP_CIPHER can provide its own random key generation
     routine to support keys of a specific form. This is used in the des and 
     3des routines to generate a key of the correct parity. Update S/MIME
     code to use new functions and hence generate correct parity DES keys.
     Add EVP_CHECK_DES_KEY #define to return an error if the key is not 
     valid (weak or incorrect parity).
     [Steve Henson]

  *) Add a local set of CRLs that can be used by X509_verify_cert() as well
     as looking them up. This is useful when the verified structure may contain
     CRLs, for example PKCS#7 signedData. Modify PKCS7_verify() to use any CRLs
     present unless the new PKCS7_NO_CRL flag is asserted.
     [Steve Henson]

  *) Extend ASN1 oid configuration module. It now additionally accepts the
     syntax:

     shortName = some long name, 1.2.3.4
     [Steve Henson]

  *) Reimplemented the BN_CTX implementation. There is now no more static
     limitation on the number of variables it can handle nor the depth of the
     "stack" handling for BN_CTX_start()/BN_CTX_end() pairs. The stack
     information can now expand as required, and rather than having a single
     static array of bignums, BN_CTX now uses a linked-list of such arrays
     allowing it to expand on demand whilst maintaining the usefulness of
     BN_CTX's "bundling".
     [Geoff Thorpe]

  *) Add a missing BN_CTX parameter to the 'rsa_mod_exp' callback in RSA_METHOD
     to allow all RSA operations to function using a single BN_CTX.
     [Geoff Thorpe]

  *) Preliminary support for certificate policy evaluation and checking. This
     is initially intended to pass the tests outlined in "Conformance Testing
     of Relying Party Client Certificate Path Processing Logic" v1.07.
     [Steve Henson]

  *) bn_dup_expand() has been deprecated, it was introduced in 0.9.7 and
     remained unused and not that useful. A variety of other little bignum
     tweaks and fixes have also been made continuing on from the audit (see
     below).
     [Geoff Thorpe]

  *) Constify all or almost all d2i, c2i, s2i and r2i functions, along with
     associated ASN1, EVP and SSL functions and old ASN1 macros.
     [Richard Levitte]

  *) BN_zero() only needs to set 'top' and 'neg' to zero for correct results,
     and this should never fail. So the return value from the use of
     BN_set_word() (which can fail due to needless expansion) is now deprecated;
     if OPENSSL_NO_DEPRECATED is defined, BN_zero() is a void macro.
     [Geoff Thorpe]

  *) BN_CTX_get() should return zero-valued bignums, providing the same
     initialised value as BN_new().
Commit	Line	Data
81a6c781	1
f1c236f8	2	OpenSSL CHANGES
651d0aff RE	3	_______________
651d0aff RE	4
d5f686d8	5	Changes between 0.9.7e and 0.9.8 [xx XXX xxxx]
4d94ae00	6
df11e1e9 GT	7	*) Deprecate BN_[get\|set]_params() functions (they were ignored internally).
	8	[Geoff Thorpe]
	9
ad500340 AP	10	*) New FIPS 180-2 algorithms, SHA-224/-256/-384/-512 are implemented.
	11	[Andy Polyakov and a number of other people]
	12
e14f4aab AP	13	*) Improved PowerPC platform support. Most notably BIGNUM assembler
	14	implementation contributed by IBM.
	15	[Suresh Chari, Peter Waltenberg, Andy Polyakov]
	16
bcfea9fb GT	17	*) The new 'RSA_generate_key_ex' function now takes a BIGNUM for the public
	18	exponent rather than 'unsigned long'. There is a corresponding change to
	19	the new 'rsa_keygen' element of the RSA_METHOD structure.
	20	[Jelte Jansen, Geoff Thorpe]
	21
d5f686d8 BM	22	*) Functionality for creating the initial serial number file is now
	23	moved from CA.pl to the 'ca' utility with a new option -create_serial.
	24
	25	(Before OpenSSL 0.9.7e, CA.pl used to initialize the serial
	26	number file to 1, which is bound to cause problems. To avoid
	27	the problems while respecting compatibility between different 0.9.7
	28	patchlevels, 0.9.7e employed 'openssl x509 -next_serial' in
	29	CA.pl for serial number initialization. With the new release 0.9.8,
	30	we can fix the problem directly in the 'ca' utility.)
64674bcc DSH	31	[Steve Henson]
64674bcc DSH	32
3a87a9b9 GT	33	*) Reduced header interdepencies by declaring more opaque objects in
	34	ossl_typ.h. As a consequence, including some headers (eg. engine.h) will
	35	give fewer recursive includes, which could break lazy source code - so
	36	this change is covered by the OPENSSL_NO_DEPRECATED symbol. As always,
	37	developers should define this symbol when building and using openssl to
	38	ensure they track the recommended behaviour, interfaces, [etc], but
	39	backwards-compatible behaviour prevails when this isn't defined.
	40	[Geoff Thorpe]
	41
bf5773fa DSH	42	*) New function X509_POLICY_NODE_print() which prints out policy nodes.
	43	[Steve Henson]
	44
216659eb DSH	45	*) Add new EVP function EVP_CIPHER_CTX_rand_key and associated functionality.
	46	This will generate a random key of the appropriate length based on the
	47	cipher context. The EVP_CIPHER can provide its own random key generation
	48	routine to support keys of a specific form. This is used in the des and
	49	3des routines to generate a key of the correct parity. Update S/MIME
	50	code to use new functions and hence generate correct parity DES keys.
	51	Add EVP_CHECK_DES_KEY #define to return an error if the key is not
	52	valid (weak or incorrect parity).
	53	[Steve Henson]
	54
e1a27eb3 DSH	55	*) Add a local set of CRLs that can be used by X509_verify_cert() as well
	56	as looking them up. This is useful when the verified structure may contain
	57	CRLs, for example PKCS#7 signedData. Modify PKCS7_verify() to use any CRLs
	58	present unless the new PKCS7_NO_CRL flag is asserted.
	59	[Steve Henson]
	60
6446e0c3 DSH	61	*) Extend ASN1 oid configuration module. It now additionally accepts the
	62	syntax:
	63
	64	shortName = some long name, 1.2.3.4
	65	[Steve Henson]
	66
5c98b2ca GT	67	*) Reimplemented the BN_CTX implementation. There is now no more static
	68	limitation on the number of variables it can handle nor the depth of the
	69	"stack" handling for BN_CTX_start()/BN_CTX_end() pairs. The stack
	70	information can now expand as required, and rather than having a single
	71	static array of bignums, BN_CTX now uses a linked-list of such arrays
	72	allowing it to expand on demand whilst maintaining the usefulness of
	73	BN_CTX's "bundling".
	74	[Geoff Thorpe]
	75
46ef873f GT	76	*) Add a missing BN_CTX parameter to the 'rsa_mod_exp' callback in RSA_METHOD
	77	to allow all RSA operations to function using a single BN_CTX.
	78	[Geoff Thorpe]
	79
4acc3e90 DSH	80	*) Preliminary support for certificate policy evaluation and checking. This
	81	is initially intended to pass the tests outlined in "Conformance Testing
	82	of Relying Party Client Certificate Path Processing Logic" v1.07.
	83	[Steve Henson]
	84
7f663ce4 GT	85	*) bn_dup_expand() has been deprecated, it was introduced in 0.9.7 and
	86	remained unused and not that useful. A variety of other little bignum
	87	tweaks and fixes have also been made continuing on from the audit (see
	88	below).
	89	[Geoff Thorpe]
	90
875a644a RL	91	*) Constify all or almost all d2i, c2i, s2i and r2i functions, along with
875a644a RL	92	associated ASN1, EVP and SSL functions and old ASN1 macros.
7f663ce4	93	[Richard Levitte]
875a644a	94
b6358c89 GT	95	*) BN_zero() only needs to set 'top' and 'neg' to zero for correct results,
	96	and this should never fail. So the return value from the use of
	97	BN_set_word() (which can fail due to needless expansion) is now deprecated;
	98	if OPENSSL_NO_DEPRECATED is defined, BN_zero() is a void macro.
	99	[Geoff Thorpe]
	100
9e051bac GT	101	*) BN_CTX_get() should return zero-valued bignums, providing the same
	102	initialised value as BN_new().
	103