[thirdparty/openssl.git] / NEWS


  NEWS
  ====

  This file gives a brief overview of the major changes between each OpenSSL
  release. For more details please read the CHANGES file.

  Major changes between OpenSSL 0.9.6 and OpenSSL 0.9.7:

      o New library section OCSP.
      o Complete rewrite of ASN1 code.
      o CRL checking in verify code and openssl utility.
      o Extension copying in 'ca' utility.
      o Flexible display options in 'ca' utility.
      o Provisional support for international characters with UTF8.
      o Support for external crypto devices ('engine') is no longer
        a separate distribution.
      o New elliptic curve library section.
      o New AES (Rijndael) library section.
      o Change DES API to clean up the namespace (some applications link also
        against libdes providing similar functions having the same name).
        Provide macros for backward compatibility (will be removed in the
        future).
      o Unify handling of cryptographic algorithms (software and engine)
        to be available via EVP routines for asymmetric and symmetric ciphers.
      o NCONF: new configuration handling routines.
      o Change API to use more 'const' modifiers to improve error checking
        and help optimizers.
      o Finally remove references to RSAref.
      o Reworked parts of the BIGNUM code.
      o Support for new engines: Broadcom ubsec, Accelerated Encryption
        Processing, IBM 4758.
      o Extended and corrected OID (object identifier) table.
      o PRNG: query at more locations for a random device, automatic query for
        EGD style random sources at several locations.
      o SSL/TLS: allow optional cipher choice according to server's preference.
      o SSL/TLS: allow server to explicitly set new session ids.
      o SSL/TLS: support Kerberos cipher suites (RFC2712).
      o SSL/TLS: allow more precise control of renegotiations and sessions.
      o SSL/TLS: add callback to retrieve SSL/TLS messages.
      o SSL/TLS: support AES cipher suites (RFC3268).

  Major changes between OpenSSL 0.9.6f and OpenSSL 0.9.6g:

      o Important building fixes on Unix.

  Major changes between OpenSSL 0.9.6e and OpenSSL 0.9.6f:

      o Various important bugfixes.

  Major changes between OpenSSL 0.9.6d and OpenSSL 0.9.6e:

      o Important security related bugfixes.
      o Various SSL/TLS library bugfixes.

  Major changes between OpenSSL 0.9.6c and OpenSSL 0.9.6d:

      o Various SSL/TLS library bugfixes.
      o Fix DH parameter generation for 'non-standard' generators.

  Major changes between OpenSSL 0.9.6b and OpenSSL 0.9.6c:

      o Various SSL/TLS library bugfixes.
      o BIGNUM library fixes.
      o RSA OAEP and random number generation fixes.
      o Object identifiers corrected and added.
      o Add assembler BN routines for IA64.
      o Add support for OS/390 Unix, UnixWare with gcc, OpenUNIX 8,
        MIPS Linux; shared library support for Irix, HP-UX.
      o Add crypto accelerator support for AEP, Baltimore SureWare,
        Broadcom and Cryptographic Appliance's keyserver
        [in 0.9.6c-engine release].

  Major changes between OpenSSL 0.9.6a and OpenSSL 0.9.6b:

      o Security fix: PRNG improvements.
      o Security fix: RSA OAEP check.
      o Security fix: Reinsert and fix countermeasure to Bleichbacher's
        attack.
      o MIPS bug fix in BIGNUM.
      o Bug fix in "openssl enc".
      o Bug fix in X.509 printing routine.
      o Bug fix in DSA verification routine and DSA S/MIME verification.
      o Bug fix to make PRNG thread-safe.
      o Bug fix in RAND_file_name().
      o Bug fix in compatibility mode trust settings.
      o Bug fix in blowfish EVP.
      o Increase default size for BIO buffering filter.
      o Compatibility fixes in some scripts.

  Major changes between OpenSSL 0.9.6 and OpenSSL 0.9.6a:

      o Security fix: change behavior of OpenSSL to avoid using
        environment variables when running as root.
      o Security fix: check the result of RSA-CRT to reduce the
        possibility of deducing the private key from an incorrectly
        calculated signature.
      o Security fix: prevent Bleichenbacher's DSA attack.
      o Security fix: Zero the premaster secret after deriving the
        master secret in DH ciphersuites.
      o Reimplement SSL_peek(), which had various problems.
      o Compatibility fix: the function des_encrypt() renamed to
        des_encrypt1() to avoid clashes with some Unixen libc.
      o Bug fixes for Win32, HP/UX and Irix.
      o Bug fixes in BIGNUM, SSL, PKCS#7, PKCS#12, X.509, CONF and
        memory checking routines.
      o Bug fixes for RSA operations in threaded environments.
      o Bug fixes in misc. openssl applications.
      o Remove a few potential memory leaks.
      o Add tighter checks of BIGNUM routines.
      o Shared library support has been reworked for generality.
      o More documentation.
      o New function BN_rand_range().
      o Add "-rand" option to openssl s_client and s_server.

  Major changes between OpenSSL 0.9.5a and OpenSSL 0.9.6:

      o Some documentation for BIO and SSL libraries.
      o Enhanced chain verification using key identifiers.
      o New sign and verify options to 'dgst' application.
      o Support for DER and PEM encoded messages in 'smime' application.
      o New 'rsautl' application, low level RSA utility.
      o MD4 now included.
      o Bugfix for SSL rollback padding check.
      o Support for external crypto devices [1].
      o Enhanced EVP interface.

    [1] The support for external crypto devices is currently a separate
        distribution.  See the file README.ENGINE.

  Major changes between OpenSSL 0.9.5 and OpenSSL 0.9.5a:

      o Bug fixes for Win32, SuSE Linux, NeXTSTEP and FreeBSD 2.2.8 
      o Shared library support for HPUX and Solaris-gcc
      o Support of Linux/IA64
      o Assembler support for Mingw32
      o New 'rand' application
      o New way to check for existence of algorithms from scripts

  Major changes between OpenSSL 0.9.4 and OpenSSL 0.9.5:

      o S/MIME support in new 'smime' command
      o Documentation for the OpenSSL command line application
      o Automation of 'req' application
      o Fixes to make s_client, s_server work under Windows
      o Support for multiple fieldnames in SPKACs
      o New SPKAC command line utilty and associated library functions
      o Options to allow passwords to be obtained from various sources
      o New public key PEM format and options to handle it
      o Many other fixes and enhancements to command line utilities
      o Usable certificate chain verification
      o Certificate purpose checking
      o Certificate trust settings
      o Support of authority information access extension
      o Extensions in certificate requests
      o Simplified X509 name and attribute routines
      o Initial (incomplete) support for international character sets
      o New DH_METHOD, DSA_METHOD and enhanced RSA_METHOD
      o Read only memory BIOs and simplified creation function
      o TLS/SSL protocol bugfixes: Accept TLS 'client hello' in SSL 3.0
        record; allow fragmentation and interleaving of handshake and other
        data
      o TLS/SSL code now "tolerates" MS SGC
      o Work around for Netscape client certificate hang bug
      o RSA_NULL option that removes RSA patent code but keeps other
        RSA functionality
      o Memory leak detection now allows applications to add extra information
        via a per-thread stack
      o PRNG robustness improved
      o EGD support
      o BIGNUM library bug fixes
      o Faster DSA parameter generation
      o Enhanced support for Alpha Linux
      o Experimental MacOS support

  Major changes between OpenSSL 0.9.3 and OpenSSL 0.9.4:

      o Transparent support for PKCS#8 format private keys: these are used
        by several software packages and are more secure than the standard
        form
      o PKCS#5 v2.0 implementation
      o Password callbacks have a new void * argument for application data
      o Avoid various memory leaks
      o New pipe-like BIO that allows using the SSL library when actual I/O
        must be handled by the application (BIO pair)

  Major changes between OpenSSL 0.9.2b and OpenSSL 0.9.3:
      o Lots of enhancements and cleanups to the Configuration mechanism
      o RSA OEAP related fixes
      o Added `openssl ca -revoke' option for revoking a certificate
      o Source cleanups: const correctness, type-safe stacks and ASN.1 SETs
      o Source tree cleanups: removed lots of obsolete files
      o Thawte SXNet, certificate policies and CRL distribution points
        extension support
      o Preliminary (experimental) S/MIME support
      o Support for ASN.1 UTF8String and VisibleString
      o Full integration of PKCS#12 code
      o Sparc assembler bignum implementation, optimized hash functions
      o Option to disable selected ciphers

  Major changes between OpenSSL 0.9.1c and OpenSSL 0.9.2b:
      o Fixed a security hole related to session resumption
      o Fixed RSA encryption routines for the p < q case
      o "ALL" in cipher lists now means "everything except NULL ciphers"
      o Support for Triple-DES CBCM cipher
      o Support of Optimal Asymmetric Encryption Padding (OAEP) for RSA
      o First support for new TLSv1 ciphers
      o Added a few new BIOs (syslog BIO, reliable BIO)
      o Extended support for DSA certificate/keys.
      o Extended support for Certificate Signing Requests (CSR)
      o Initial support for X.509v3 extensions
      o Extended support for compression inside the SSL record layer
      o Overhauled Win32 builds
      o Cleanups and fixes to the Big Number (BN) library
      o Support for ASN.1 GeneralizedTime
      o Splitted ASN.1 SETs from SEQUENCEs
      o ASN1 and PEM support for Netscape Certificate Sequences
      o Overhauled Perl interface
      o Lots of source tree cleanups.
      o Lots of memory leak fixes.
      o Lots of bug fixes.

  Major changes between SSLeay 0.9.0b and OpenSSL 0.9.1c:
      o Integration of the popular NO_RSA/NO_DSA patches
      o Initial support for compression inside the SSL record layer
      o Added BIO proxy and filtering functionality
      o Extended Big Number (BN) library
      o Added RIPE MD160 message digest
      o Addeed support for RC2/64bit cipher
      o Extended ASN.1 parser routines
      o Adjustations of the source tree for CVS
      o Support for various new platforms
Commit	Line	Data
3b52c2e7 RE	1
	2	NEWS
	3	====
	4
	5	This file gives a brief overview of the major changes between each OpenSSL
	6	release. For more details please read the CHANGES file.
	7
3ba25ee8	8	Major changes between OpenSSL 0.9.6 and OpenSSL 0.9.7:
83f25717 RL	9
83f25717 RL	10	o New library section OCSP.
e4fb4977 LJ	11	o Complete rewrite of ASN1 code.
	12	o CRL checking in verify code and openssl utility.
	13	o Extension copying in 'ca' utility.
	14	o Flexible display options in 'ca' utility.
	15	o Provisional support for international characters with UTF8.
4dec4f64 BM	16	o Support for external crypto devices ('engine') is no longer
4dec4f64 BM	17	a separate distribution.
e4fb4977 LJ	18	o New elliptic curve library section.
	19	o New AES (Rijndael) library section.
	20	o Change DES API to clean up the namespace (some applications link also
	21	against libdes providing similar functions having the same name).
	22	Provide macros for backward compatibility (will be removed in the
	23	future).
ece0bdf1 BM	24	o Unify handling of cryptographic algorithms (software and engine)
ece0bdf1 BM	25	to be available via EVP routines for asymmetric and symmetric ciphers.
e4fb4977 LJ	26	o NCONF: new configuration handling routines.
	27	o Change API to use more 'const' modifiers to improve error checking
	28	and help optimizers.
	29	o Finally remove references to RSAref.
	30	o Reworked parts of the BIGNUM code.
	31	o Support for new engines: Broadcom ubsec, Accelerated Encryption
	32	Processing, IBM 4758.
e1f7ea25	33	o Extended and corrected OID (object identifier) table.
e4fb4977 LJ	34	o PRNG: query at more locations for a random device, automatic query for
	35	EGD style random sources at several locations.
	36	o SSL/TLS: allow optional cipher choice according to server's preference.
	37	o SSL/TLS: allow server to explicitly set new session ids.
	38	o SSL/TLS: support Kerberos cipher suites (RFC2712).
	39	o SSL/TLS: allow more precise control of renegotiations and sessions.
	40	o SSL/TLS: add callback to retrieve SSL/TLS messages.
ea4f109c	41	o SSL/TLS: support AES cipher suites (RFC3268).
e4fb4977	42
36969082 RL	43	Major changes between OpenSSL 0.9.6f and OpenSSL 0.9.6g:
	44
	45	o Important building fixes on Unix.
	46
fbe792f0 RL	47	Major changes between OpenSSL 0.9.6e and OpenSSL 0.9.6f:
	48
	49	o Various important bugfixes.
	50
b218af2b LJ	51	Major changes between OpenSSL 0.9.6d and OpenSSL 0.9.6e:
	52
	53	o Important security related bugfixes.
	54	o Various SSL/TLS library bugfixes.
	55
151457ab	56	Major changes between OpenSSL 0.9.6c and OpenSSL 0.9.6d:
e4fb4977 LJ	57
	58	o Various SSL/TLS library bugfixes.
	59	o Fix DH parameter generation for 'non-standard' generators.
4dec4f64	60
151457ab	61	Major changes between OpenSSL 0.9.6b and OpenSSL 0.9.6c:
ae52ec98 BM	62
	63	o Various SSL/TLS library bugfixes.
	64	o BIGNUM library fixes.
ef5f6a08 RL	65	o RSA OAEP and random number generation fixes.
	66	o Object identifiers corrected and added.
	67	o Add assembler BN routines for IA64.
	68	o Add support for OS/390 Unix, UnixWare with gcc, OpenUNIX 8,
	69	MIPS Linux; shared library support for Irix, HP-UX.
a3790c0d	70	o Add crypto accelerator support for AEP, Baltimore SureWare,
ef5f6a08 RL	71	Broadcom and Cryptographic Appliance's keyserver
ef5f6a08 RL	72	[in 0.9.6c-engine release].
ae52ec98	73
151457ab	74	Major changes between OpenSSL 0.9.6a and OpenSSL 0.9.6b:
4dec4f64 BM	75
	76	o Security fix: PRNG improvements.
	77	o Security fix: RSA OAEP check.
	78	o Security fix: Reinsert and fix countermeasure to Bleichbacher's
	79	attack.
	80	o MIPS bug fix in BIGNUM.
	81	o Bug fix in "openssl enc".
	82	o Bug fix in X.509 printing routine.
	83	o Bug fix in DSA verification routine and DSA S/MIME verification.
	84	o Bug fix to make PRNG thread-safe.
	85	o Bug fix in RAND_file_name().
	86	o Bug fix in compatibility mode trust settings.
	87	o Bug fix in blowfish EVP.
	88	o Increase default size for BIO buffering filter.
	89	o Compatibility fixes in some scripts.
83f25717	90
7cdd2aa1 RL	91	Major changes between OpenSSL 0.9.6 and OpenSSL 0.9.6a:
	92
	93	o Security fix: change behavior of OpenSSL to avoid using
	94	environment variables when running as root.
	95	o Security fix: check the result of RSA-CRT to reduce the
	96	possibility of deducing the private key from an incorrectly
	97	calculated signature.
	98	o Security fix: prevent Bleichenbacher's DSA attack.
	99	o Security fix: Zero the premaster secret after deriving the
	100	master secret in DH ciphersuites.
4fea8145	101	o Reimplement SSL_peek(), which had various problems.
307bf4da RL	102	o Compatibility fix: the function des_encrypt() renamed to
307bf4da RL	103	des_encrypt1() to avoid clashes with some Unixen libc.
7cdd2aa1 RL	104	o Bug fixes for Win32, HP/UX and Irix.
	105	o Bug fixes in BIGNUM, SSL, PKCS#7, PKCS#12, X.509, CONF and
	106	memory checking routines.
5012158a	107	o Bug fixes for RSA operations in threaded environments.
7cdd2aa1 RL	108	o Bug fixes in misc. openssl applications.
	109	o Remove a few potential memory leaks.
	110	o Add tighter checks of BIGNUM routines.
	111	o Shared library support has been reworked for generality.
	112	o More documentation.
4fea8145	113	o New function BN_rand_range().
7cdd2aa1 RL	114	o Add "-rand" option to openssl s_client and s_server.
7cdd2aa1 RL	115
4e87e05b DSH	116	Major changes between OpenSSL 0.9.5a and OpenSSL 0.9.6:
	117
	118	o Some documentation for BIO and SSL libraries.
	119	o Enhanced chain verification using key identifiers.
	120	o New sign and verify options to 'dgst' application.
	121	o Support for DER and PEM encoded messages in 'smime' application.
	122	o New 'rsautl' application, low level RSA utility.
b38d84d8 BM	123	o MD4 now included.
b38d84d8 BM	124	o Bugfix for SSL rollback padding check.
4dec4f64	125	o Support for external crypto devices [1].
fda05b21	126	o Enhanced EVP interface.
b22bda21	127
4dec4f64 BM	128	[1] The support for external crypto devices is currently a separate
	129	distribution. See the file README.ENGINE.
	130
35a79ecb RL	131	Major changes between OpenSSL 0.9.5 and OpenSSL 0.9.5a:
35a79ecb RL	132
b7a81df4	133	o Bug fixes for Win32, SuSE Linux, NeXTSTEP and FreeBSD 2.2.8
35a79ecb RL	134	o Shared library support for HPUX and Solaris-gcc
35a79ecb RL	135	o Support of Linux/IA64
b7a81df4	136	o Assembler support for Mingw32
35a79ecb RL	137	o New 'rand' application
	138	o New way to check for existence of algorithms from scripts
	139
0c235249 UM	140	Major changes between OpenSSL 0.9.4 and OpenSSL 0.9.5:
0c235249 UM	141
90644dd7	142	o S/MIME support in new 'smime' command
0c235249	143	o Documentation for the OpenSSL command line application
90644dd7 DSH	144	o Automation of 'req' application
	145	o Fixes to make s_client, s_server work under Windows
	146	o Support for multiple fieldnames in SPKACs
	147	o New SPKAC command line utilty and associated library functions
ae1bb4e5	148	o Options to allow passwords to be obtained from various sources
90644dd7 DSH	149	o New public key PEM format and options to handle it
	150	o Many other fixes and enhancements to command line utilities
	151	o Usable certificate chain verification
	152	o Certificate purpose checking
	153	o Certificate trust settings
	154	o Support of authority information access extension
	155	o Extensions in certificate requests
	156	o Simplified X509 name and attribute routines
ae1bb4e5	157	o Initial (incomplete) support for international character sets
90644dd7 DSH	158	o New DH_METHOD, DSA_METHOD and enhanced RSA_METHOD
90644dd7 DSH	159	o Read only memory BIOs and simplified creation function
8bd5b794 BM	160	o TLS/SSL protocol bugfixes: Accept TLS 'client hello' in SSL 3.0
	161	record; allow fragmentation and interleaving of handshake and other
	162	data
90644dd7	163	o TLS/SSL code now "tolerates" MS SGC
8bd5b794	164	o Work around for Netscape client certificate hang bug
90644dd7 DSH	165	o RSA_NULL option that removes RSA patent code but keeps other
90644dd7 DSH	166	RSA functionality
07e6dbde BM	167	o Memory leak detection now allows applications to add extra information
	168	via a per-thread stack
	169	o PRNG robustness improved
4d524e10	170	o EGD support
6d9ca500	171	o BIGNUM library bug fixes
4d524e10	172	o Faster DSA parameter generation
74235cc9 UM	173	o Enhanced support for Alpha Linux
74235cc9 UM	174	o Experimental MacOS support
0c235249	175
ed7f60fb DSH	176	Major changes between OpenSSL 0.9.3 and OpenSSL 0.9.4:
	177
	178	o Transparent support for PKCS#8 format private keys: these are used
c97cbcb3 BM	179	by several software packages and are more secure than the standard
	180	form
	181	o PKCS#5 v2.0 implementation
	182	o Password callbacks have a new void * argument for application data
	183	o Avoid various memory leaks
	184	o New pipe-like BIO that allows using the SSL library when actual I/O
	185	must be handled by the application (BIO pair)
ed7f60fb	186
8e8a8a5f	187	Major changes between OpenSSL 0.9.2b and OpenSSL 0.9.3:
9de649ff UM	188	o Lots of enhancements and cleanups to the Configuration mechanism
9de649ff UM	189	o RSA OEAP related fixes
8e8a8a5f RE	190	o Added `openssl ca -revoke' option for revoking a certificate
	191	o Source cleanups: const correctness, type-safe stacks and ASN.1 SETs
	192	o Source tree cleanups: removed lots of obsolete files
703126f0	193	o Thawte SXNet, certificate policies and CRL distribution points
a03dd7a6	194	extension support
703126f0 DSH	195	o Preliminary (experimental) S/MIME support
	196	o Support for ASN.1 UTF8String and VisibleString
	197	o Full integration of PKCS#12 code
2cf9fcda	198	o Sparc assembler bignum implementation, optimized hash functions
b0759f87	199	o Option to disable selected ciphers
8e8a8a5f	200
d343d272	201	Major changes between OpenSSL 0.9.1c and OpenSSL 0.9.2b:
738769ff RE	202	o Fixed a security hole related to session resumption
	203	o Fixed RSA encryption routines for the p < q case
	204	o "ALL" in cipher lists now means "everything except NULL ciphers"
3b52c2e7 RE	205	o Support for Triple-DES CBCM cipher
	206	o Support of Optimal Asymmetric Encryption Padding (OAEP) for RSA
	207	o First support for new TLSv1 ciphers
	208	o Added a few new BIOs (syslog BIO, reliable BIO)
	209	o Extended support for DSA certificate/keys.
03e20a1a	210	o Extended support for Certificate Signing Requests (CSR)
3b52c2e7 RE	211	o Initial support for X.509v3 extensions
	212	o Extended support for compression inside the SSL record layer
	213	o Overhauled Win32 builds
	214	o Cleanups and fixes to the Big Number (BN) library
	215	o Support for ASN.1 GeneralizedTime
	216	o Splitted ASN.1 SETs from SEQUENCEs
	217	o ASN1 and PEM support for Netscape Certificate Sequences
	218	o Overhauled Perl interface
	219	o Lots of source tree cleanups.
	220	o Lots of memory leak fixes.
	221	o Lots of bug fixes.
	222
	223	Major changes between SSLeay 0.9.0b and OpenSSL 0.9.1c:
	224	o Integration of the popular NO_RSA/NO_DSA patches
	225	o Initial support for compression inside the SSL record layer
	226	o Added BIO proxy and filtering functionality
	227	o Extended Big Number (BN) library
	228	o Added RIPE MD160 message digest
	229	o Addeed support for RC2/64bit cipher
	230	o Extended ASN.1 parser routines
	231	o Adjustations of the source tree for CVS
	232	o Support for various new platforms
	233