[thirdparty/openssl.git] / CHANGES


 OpenSSL CHANGES
 _______________

 Changes between 0.9.6 and 0.9.7  [xx XXX 2001]

     Both OpenSSL 0.9.6a (bugfix release, 5 Apr 2001) and OpenSSL 0.9.7
     are based on OpenSSL 0.9.6.  
     Change log entries are tagged as follows:
         -) applies to 0.9.6a (/0.9.6b) only
         *) applies to 0.9.6a (/0.9.6b) and 0.9.7
         +) applies to 0.9.7 only

  +) Enhance the general user interface with mechanisms for inner control
     and with pssibilities to have yes/no kind of prompts.
     [Richard Levitte]

  *) Change all calls to low level digest routines in the library and
     applications to use EVP. Add missing calls to HMAC_cleanup() and
     don't assume HMAC_CTX can be copied using memcpy().
     [Verdon Walker <VWalker@novell.com>, Steve Henson]

  +) Add the possibility to control engines through control names but with
     arbitrary arguments instead of just a string.
     Change the key loaders to take a UI_METHOD instead of a callback
     function pointer.  NOTE: this breaks binary compatibility with earlier
     versions of OpenSSL [engine].
     Addapt the nCipher code for these new conditions and add a card insertion
     callback.
     [Richard Levitte]

  +) Enhance the general user interface with mechanisms to better support
     dialog box interfaces, application-defined prompts, the possibility
     to use defaults (for example default passwords from somewhere else)
     and interrupts/cancelations.
     [Richard Levitte]

  *) Don't change *pointer in CRYPTO_add_lock() is add_lock_callback is
     used: it isn't thread safe and the add_lock_callback should handle
     that itself.
     [Paul Rose <Paul.Rose@bridge.com>]

  *) Verify that incoming data obeys the block size in
     ssl3_enc (ssl/s3_enc.c) and tls1_enc (ssl/t1_enc.c).
     [Bodo Moeller]

  +) Tidy up PKCS#12 attribute handling. Add support for the CSP name
     attribute in PKCS#12 files, add new -CSP option to pkcs12 utility.
     [Steve Henson]

  *) Fix OAEP check.
Commit	Line	Data
81a6c781	1
f1c236f8	2	OpenSSL CHANGES
651d0aff RE	3	_______________
651d0aff RE	4
a9d2bc49	5	Changes between 0.9.6 and 0.9.7 [xx XXX 2001]
a43cf9fa	6
f2346808	7	Both OpenSSL 0.9.6a (bugfix release, 5 Apr 2001) and OpenSSL 0.9.7
a9d2bc49 BM	8	are based on OpenSSL 0.9.6.
a9d2bc49 BM	9	Change log entries are tagged as follows:
f2346808 BM	10	-) applies to 0.9.6a (/0.9.6b) only
f2346808 BM	11	*) applies to 0.9.6a (/0.9.6b) and 0.9.7
a9d2bc49 BM	12	+) applies to 0.9.7 only
a9d2bc49 BM	13
fd3e027f	14	+) Enhance the general user interface with mechanisms for inner control
235dd0a2 RL	15	and with pssibilities to have yes/no kind of prompts.
	16	[Richard Levitte]
	17
323f289c DSH	18	*) Change all calls to low level digest routines in the library and
	19	applications to use EVP. Add missing calls to HMAC_cleanup() and
	20	don't assume HMAC_CTX can be copied using memcpy().
	21	[Verdon Walker <VWalker@novell.com>, Steve Henson]
	22
839590f5 RL	23	+) Add the possibility to control engines through control names but with
	24	arbitrary arguments instead of just a string.
	25	Change the key loaders to take a UI_METHOD instead of a callback
	26	function pointer. NOTE: this breaks binary compatibility with earlier
	27	versions of OpenSSL [engine].
	28	Addapt the nCipher code for these new conditions and add a card insertion
	29	callback.
	30	[Richard Levitte]
	31
9ad0f681 RL	32	+) Enhance the general user interface with mechanisms to better support
	33	dialog box interfaces, application-defined prompts, the possibility
	34	to use defaults (for example default passwords from somewhere else)
	35	and interrupts/cancelations.
	36	[Richard Levitte]
	37
3cc1f498 DSH	38	) Don't change pointer in CRYPTO_add_lock() is add_lock_callback is
	39	used: it isn't thread safe and the add_lock_callback should handle
	40	that itself.
	41	[Paul Rose <Paul.Rose@bridge.com>]
	42
285b4275 BM	43	*) Verify that incoming data obeys the block size in
	44	ssl3_enc (ssl/s3_enc.c) and tls1_enc (ssl/t1_enc.c).
	45	[Bodo Moeller]
	46
f2a253e0 DSH	47	+) Tidy up PKCS#12 attribute handling. Add support for the CSP name
	48	attribute in PKCS#12 files, add new -CSP option to pkcs12 utility.
	49	[Steve Henson]
	50
ecf18606 BM	51	*) Fix OAEP check.
	52