projects / thirdparty / openssl.git / blame
| Commit | Line | Data |
|---|---|---|
| 651d0aff | 1 | |
| f1c236f8 | 2 | OpenSSL CHANGES |
| 651d0aff RE |
3 | _______________ |
| 4 | ||
| 0cceb1c7 BM |
5 | Changes between 0.9.3a and 0.9.4 |
| 6 | ||
| a111306b BM |
7 | *) New function "CRYPTO_num_locks" that returns CRYPTO_NUM_LOCKS. |
| 8 | Whoever hopes to achieve shared-library compatibility across versions | |
| 9 | must use this, not the compile-time macro. | |
| 11af1a27 BM |
10 | (Exercise 0.9.4: Which is the minimum library version required by |
| 11 | such programs?) | |
| 12 | Note: All this applies only to multi-threaded programs, others don't | |
| 13 | need locks. | |
| a111306b BM |
14 | [Bodo Moeller] |
| 15 | ||
| 95d29597 BM |
16 | *) Add missing case to s3_clnt.c state machine -- one of the new SSL tests |
| 17 | through a BIO pair triggered the default case, i.e. | |
| 18 | SSLerr(...,SSL_R_UNKNOWN_STATE). | |
| 19 | [Bodo Moeller] | |
| 20 | ||
| 21 | *) New "BIO pair" concept (crypto/bio/bss_bio.c) so that applications | |
| 22 | can use the SSL library even if none of the specific BIOs is | |
| 23 | appropriate. | |
| 24 | [Bodo Moeller] | |
| 25 | ||
| 9bce3070 DSH |
26 | *) Fix a bug in i2d_DSAPublicKey() which meant it returned the wrong value |
| 27 | for the encoded length. | |
| 28 | [Jeon KyoungHo <khjeon@sds.samsung.co.kr>] | |
| 29 | ||
| 565d1065 DSH |
30 | *) Add initial documentation of the X509V3 functions. |
| 31 | [Steve Henson] | |
| 32 | ||
| b7d135b3 DSH |
33 | *) Add a new pair of functions PEM_write_PKCS8PrivateKey() and |
| 34 | PEM_write_bio_PKCS8PrivateKey() that are equivalent to | |
| 35 | PEM_write_PrivateKey() and PEM_write_bio_PrivateKey() but use the more | |
| 36 | secure PKCS#8 private key format with a high iteration count. | |
| 37 | [Steve Henson] | |
| 38 | ||
| 9d9b559e RE |
39 | *) Fix determination of Perl interpreter: A perl or perl5 |
| 40 | _directory_ in $PATH was also accepted as the interpreter. | |
| 41 | [Ralf S. Engelschall] | |
| 42 | ||
| 5f6d0ea2 DSH |
43 | *) Fix demos/sign/sign.c: well there wasn't anything strictly speaking |
| 44 | wrong with it but it was very old and did things like calling | |
| 45 | PEM_ASN1_read() directly and used MD5 for the hash not to mention some | |
| 46 | unusual formatting. | |
| 47 | [Steve Henson] | |
| 48 | ||
| f62676b9 DSH |
49 | *) Fix demos/selfsign.c: it used obsolete and deleted functions, changed |
| 50 | to use the new extension code. | |
| 51 | [Steve Henson] | |
| 52 | ||
| 53 | *) Implement the PEM_read/PEM_write functions in crypto/pem/pem_all.c | |
| 54 | with macros. This should make it easier to change their form, add extra | |
| 55 | arguments etc. Fix a few PEM prototypes which didn't have cipher as a | |
| 56 | constant. | |
| 57 | [Steve Henson] | |
| 58 | ||
| 8151f52a BM |
59 | *) Add to configuration table a new entry that can specify an alternative |
| 60 | name for unistd.h (for pre-POSIX systems); we need this for NeXTstep, | |
| 61 | according to Mark Crispin <MRC@Panda.COM>. | |
| 62 | [Bodo Moeller] | |
| 63 | ||
| c77f47ab | 64 | #if 0 |
| 05861c77 BL |
65 | *) DES CBC did not update the IV. Weird. |
| 66 | [Ben Laurie] | |
| c77f47ab | 67 | #else |
| a7bd0396 BM |
68 | des_cbc_encrypt does not update the IV, but des_ncbc_encrypt does. |
| 69 | Changing the behaviour of the former might break existing programs -- | |
| 70 | where IV updating is needed, des_ncbc_encrypt can be used. | |
| c77f47ab | 71 | #endif |
| 05861c77 | 72 | |
| 233bf734 BL |
73 | *) When bntest is run from "make test" it drives bc to check its |
| 74 | calculations, as well as internally checking them. If an internal check | |
| 75 | fails, it needs to cause bc to give a non-zero result or make test carries | |
| 76 | on without noticing the failure. Fixed. | |
| 77 | [Ben Laurie] | |
| 78 | ||
| 908eb7b8 UM |
79 | *) DES library cleanups. |
| 80 |