[thirdparty/openssl.git] / CHANGES


 OpenSSL CHANGES
 _______________

 Changes between 0.9.5 and 0.9.5a  [XX XXX 2000]

  *) Rename openssl x509 option '-crlext', which was added in 0.9.5,
     to '-clrext' (= clear extensions), as intended and documented.
     [Bodo Moeller; inconsistency pointed out by Michael Attili
     <attili@amaxo.com>]

  *) Fix for HMAC. It wasn't zeroing the rest of the block if the key length
     was larger than the MD block size.      
     [Steve Henson, pointed out by Yost William <YostW@tce.com>]

  *) Modernise PKCS12_parse() so it uses STACK_OF(X509) for its ca argument
     fix a leak when the ca argument was passed as NULL. Stop X509_PUBKEY_set()
     using the passed key: if the passed key was a private key the result
     of X509_print(), for example, would be to print out all the private key
     components.
     [Steve Henson]

  *) des_quad_cksum() byte order bug fix.
Commit	Line	Data
651d0aff	1
f1c236f8	2	OpenSSL CHANGES
651d0aff RE	3	_______________
651d0aff RE	4
4c4d87f9	5	Changes between 0.9.5 and 0.9.5a [XX XXX 2000]
865874f2	6
3bc90f23 BM	7	*) Rename openssl x509 option '-crlext', which was added in 0.9.5,
	8	to '-clrext' (= clear extensions), as intended and documented.
	9	[Bodo Moeller; inconsistency pointed out by Michael Attili
	10	<attili@amaxo.com>]
	11
b475baff DSH	12	*) Fix for HMAC. It wasn't zeroing the rest of the block if the key length
	13	was larger than the MD block size.
	14	[Steve Henson, pointed out by Yost William <YostW@tce.com>]
	15
e77066ea DSH	16	*) Modernise PKCS12_parse() so it uses STACK_OF(X509) for its ca argument
	17	fix a leak when the ca argument was passed as NULL. Stop X509_PUBKEY_set()
	18	using the passed key: if the passed key was a private key the result
	19	of X509_print(), for example, would be to print out all the private key
	20	components.
	21	[Steve Henson]
	22
7af4816f UM	23	*) des_quad_cksum() byte order bug fix.
	24