]>
Commit | Line | Data |
---|---|---|
81a6c781 | 1 | |
f1c236f8 | 2 | OpenSSL CHANGES |
651d0aff RE |
3 | _______________ |
4 | ||
bf3d6c0c | 5 | Changes between 0.9.8a and 0.9.9 [xx XXX xxxx] |
28e4fe34 | 6 | |
f5cda4cb DSH |
7 | *) New utility "genpkey" this is analagous to "genrsa" etc except it can |
8 | generate keys for any algorithm. Extend and update EVP_PKEY_METHOD to | |
9 | support key and parameter generation and add initial key generation | |
10 | functionality for RSA. | |
11 | [Steve Henson] | |
12 | ||
f733a5ef DSH |
13 | *) Add functions for main EVP_PKEY_method operations. The undocumented |
14 | functions EVP_PKEY_{encrypt,decrypt} have been renamed to | |
15 | EVP_PKEY_{encrypt,decrypt}_old. | |
16 | [Steve Henson] | |
17 | ||
0b6f3c66 DSH |
18 | *) Initial definitions for EVP_PKEY_METHOD. This will be a high level public |
19 | key API, doesn't do much yet. | |
20 | [Steve Henson] | |
21 | ||
0b33dac3 DSH |
22 | *) New function EVP_PKEY_asn1_get0_info() to retrieve information about |
23 | public key algorithms. New option to openssl utility: | |
24 | "list-public-key-algorithms" to print out info. | |
25 | [Steve Henson] | |
26 | ||
33273721 BM |
27 | *) Implement the Supported Elliptic Curves Extension for |
28 | ECC ciphersuites from draft-ietf-tls-ecc-12.txt. | |
29 | [Douglas Stebila] | |
30 | ||
246e0931 DSH |
31 | *) Don't free up OIDs in OBJ_cleanup() if they are in use by EVP_MD or |
32 | EVP_CIPHER structures to avoid later problems in EVP_cleanup(). | |
33 | [Steve Henson] | |
34 | ||
3e4585c8 | 35 | *) New utilities pkey and pkeyparam. These are similar to algorithm specific |
f5cda4cb | 36 | utilities such as rsa, dsa, dsaparam etc except they process any key |
3e4585c8 | 37 | type. |
3e84b6e1 DSH |
38 | [Steve Henson] |
39 | ||
35208f36 DSH |
40 | *) Transfer public key printing routines to EVP_PKEY_ASN1_METHOD. New |
41 | functions EVP_PKEY_print_public(), EVP_PKEY_print_private(), | |
42 | EVP_PKEY_print_param() to print public key data from an EVP_PKEY | |
43 | structure. | |
44 | [Steve Henson] | |
45 | ||
448be743 DSH |
46 | *) Initial support for pluggable public key ASN1. |
47 | De-spaghettify the public key ASN1 handling. Move public and private | |
48 | key ASN1 handling to a new EVP_PKEY_ASN1_METHOD structure. Relocate | |
49 | algorithm specific handling to a single module within the relevant | |
50 | algorithm directory. Add functions to allow (near) opaque processing | |
51 | of public and private key structures. | |
52 | [Steve Henson] | |
53 | ||
36ca4ba6 BM |
54 | *) Implement the Supported Point Formats Extension for |
55 | ECC ciphersuites from draft-ietf-tls-ecc-12.txt. | |
56 | [Douglas Stebila] | |
57 | ||
ddac1974 NL |
58 | *) Add initial support for RFC 4279 PSK TLS ciphersuites. Add members |
59 | for the psk identity [hint] and the psk callback functions to the | |
60 | SSL_SESSION, SSL and SSL_CTX structure. | |
61 | ||
62 | New ciphersuites: | |
63 | PSK-RC4-SHA, PSK-3DES-EDE-CBC-SHA, PSK-AES128-CBC-SHA, | |
64 | PSK-AES256-CBC-SHA | |
65 | ||
66 | New functions: | |
67 | SSL_CTX_use_psk_identity_hint | |
68 | SSL_get_psk_identity_hint | |
69 | SSL_get_psk_identity | |
70 | SSL_use_psk_identity_hint | |
71 | ||
72 | [Mika Kousa and Pasi Eronen of Nokia Corporation] | |
73 | ||
c7235be6 UM |
74 | *) Add RFC 3161 compliant time stamp request creation, response generation |
75 | and response verification functionality. | |
76 |