]>
Commit | Line | Data |
---|---|---|
651d0aff | 1 | |
f1c236f8 | 2 | OpenSSL CHANGES |
651d0aff RE |
3 | _______________ |
4 | ||
0cceb1c7 BM |
5 | Changes between 0.9.3a and 0.9.4 |
6 | ||
a111306b BM |
7 | *) New function "CRYPTO_num_locks" that returns CRYPTO_NUM_LOCKS. |
8 | Whoever hopes to achieve shared-library compatibility across versions | |
9 | must use this, not the compile-time macro. | |
11af1a27 BM |
10 | (Exercise 0.9.4: Which is the minimum library version required by |
11 | such programs?) | |
12 | Note: All this applies only to multi-threaded programs, others don't | |
13 | need locks. | |
a111306b BM |
14 | [Bodo Moeller] |
15 | ||
95d29597 BM |
16 | *) Add missing case to s3_clnt.c state machine -- one of the new SSL tests |
17 | through a BIO pair triggered the default case, i.e. | |
18 | SSLerr(...,SSL_R_UNKNOWN_STATE). | |
19 | [Bodo Moeller] | |
20 | ||
21 | *) New "BIO pair" concept (crypto/bio/bss_bio.c) so that applications | |
22 | can use the SSL library even if none of the specific BIOs is | |
23 | appropriate. | |
24 | [Bodo Moeller] | |
25 | ||
9bce3070 DSH |
26 | *) Fix a bug in i2d_DSAPublicKey() which meant it returned the wrong value |
27 | for the encoded length. | |
28 | [Jeon KyoungHo <khjeon@sds.samsung.co.kr>] | |
29 | ||
565d1065 DSH |
30 | *) Add initial documentation of the X509V3 functions. |
31 | [Steve Henson] | |
32 | ||
b7d135b3 DSH |
33 | *) Add a new pair of functions PEM_write_PKCS8PrivateKey() and |
34 | PEM_write_bio_PKCS8PrivateKey() that are equivalent to | |
35 | PEM_write_PrivateKey() and PEM_write_bio_PrivateKey() but use the more | |
36 | secure PKCS#8 private key format with a high iteration count. | |
37 | [Steve Henson] | |
38 | ||
9d9b559e RE |
39 | *) Fix determination of Perl interpreter: A perl or perl5 |
40 | _directory_ in $PATH was also accepted as the interpreter. | |
41 | [Ralf S. Engelschall] | |
42 | ||
5f6d0ea2 DSH |
43 | *) Fix demos/sign/sign.c: well there wasn't anything strictly speaking |
44 | wrong with it but it was very old and did things like calling | |
45 | PEM_ASN1_read() directly and used MD5 for the hash not to mention some | |
46 | unusual formatting. | |
47 | [Steve Henson] | |
48 | ||
f62676b9 DSH |
49 | *) Fix demos/selfsign.c: it used obsolete and deleted functions, changed |
50 | to use the new extension code. | |
51 | [Steve Henson] | |
52 | ||
53 | *) Implement the PEM_read/PEM_write functions in crypto/pem/pem_all.c | |
54 | with macros. This should make it easier to change their form, add extra | |
55 | arguments etc. Fix a few PEM prototypes which didn't have cipher as a | |
56 | constant. | |
57 | [Steve Henson] | |
58 | ||
8151f52a BM |
59 | *) Add to configuration table a new entry that can specify an alternative |
60 | name for unistd.h (for pre-POSIX systems); we need this for NeXTstep, | |
61 | according to Mark Crispin <MRC@Panda.COM>. | |
62 | [Bodo Moeller] | |
63 | ||
c77f47ab | 64 | #if 0 |
05861c77 BL |
65 | *) DES CBC did not update the IV. Weird. |
66 | [Ben Laurie] | |
c77f47ab | 67 | #else |
a7bd0396 BM |
68 | des_cbc_encrypt does not update the IV, but des_ncbc_encrypt does. |
69 | Changing the behaviour of the former might break existing programs -- | |
70 | where IV updating is needed, des_ncbc_encrypt can be used. | |
c77f47ab | 71 | #endif |
05861c77 | 72 | |
233bf734 BL |
73 | *) When bntest is run from "make test" it drives bc to check its |
74 | calculations, as well as internally checking them. If an internal check | |
75 | fails, it needs to cause bc to give a non-zero result or make test carries | |
76 | on without noticing the failure. Fixed. | |
77 | [Ben Laurie] | |
78 | ||
908eb7b8 UM |
79 | *) DES library cleanups. |
80 |