]>
Commit | Line | Data |
---|---|---|
651d0aff RE |
1 | |
2 | OpenTLS CHANGES | |
3 | _______________ | |
4 | ||
5 | ||
6 | Changes between 0.9.01b and 0.9.1c | |
7 | ||
8 | *) Updated the README file. | |
9 | [Ralf S. Engelschall] | |
10 | ||
11 | *) Added various .cvsignore files in the CVS repository subdirs | |
12 | to make a "cvs update" really silent. | |
13 | [Ralf S. Engelschall] | |
14 | ||
15 | *) Recompiled the error-definition header files and added | |
16 | missing symbols to the Win32 linker tables. | |
17 | [Ralf S. Engelschall] | |
18 | ||
19 | *) Cleaned up the top-level documents; | |
20 | o new files: CHANGES and LICENSE | |
21 | o merged VERSION, HISTORY* and README* files a CHANGES.SSLeay | |
22 | o merged COPYRIGHT into LICENSE | |
23 | o removed obsolete TODO file | |
24 | o renamed MICROSOFT to INSTALL.W32 | |
25 | [Ralf S. Engelschall] | |
26 | ||
27 | *) Removed dummy files from the 0.9.1b source tree: | |
28 | crypto/asn1/x crypto/bio/cd crypto/bio/fg crypto/bio/grep crypto/bio/vi | |
29 | crypto/bn/asm/......add.c crypto/bn/asm/a.out crypto/dsa/f crypto/md5/f | |
30 | crypto/pem/gmon.out crypto/perlasm/f crypto/pkcs7/build crypto/rsa/f | |
31 | crypto/sha/asm/f crypto/threads/f ms/zzz ssl/f ssl/f.mak test/f | |
32 | util/f.mak util/pl/f util/pl/f.mak crypto/bf/bf_locl.old apps/f | |
33 | [Ralf S. Engelschall] | |
34 | ||
35 | *) Added various platform portability fixed. | |
36 | [Marc J. Cox] | |
37 | ||
38 | *) The Genesis of the OpenTLS rpject: | |
39 | We start with the latest (unreleased) SSLeay version 0.9.1b which Eric A. | |
40 | Joung and Tim J. Hudson created while they were working for C2Net until | |
41 | summer 1998. | |
42 | [The OpenTLS Project] | |
43 | ||
44 | Changes between 0.9.0b and 0.9.1b | |
45 | ||
46 | *) Updated a few CA certificates under certs/ | |
47 | [Eric A. Young] | |
48 | ||
49 | *) Changed some BIGNUM api stuff. | |
50 | [Eric A. Young] | |
51 | ||
52 | *) Various platform ports: OpenBSD, Ultrix, IRIX 64bit, NetBSD, | |
53 | DGUX x86, Linux Alpha, etc. | |
54 | [Eric A. Young] | |
55 | ||
56 | *) New COMP library [crypto/comp/] for SSL Record Layer Compression: | |
57 | RLE (dummy implemented) and ZLIB (really implemented when ZLIB is | |
58 | available). | |
59 | [Eric A. Young] | |
60 | ||
61 | *) Add -strparse option to asn1pars program which parses nested | |
62 | binary structures | |
63 | [Dr Stephen Henson <shenson@bigfoot.com>] | |
64 | ||
65 | *) Added "oid_file" to ssleay.cnf for "ca" and "req" programs. | |
66 | [Eric A. Young] | |
67 | ||
68 | *) DSA fix for "ca" program. | |
69 | [Eric A. Young] | |
70 | ||
71 | *) Added "-genkey" option to "dsaparam" program. | |
72 | [Eric A. Young] | |
73 | ||
74 | *) Added RIPE MD160 (rmd160) message digest. | |
75 | [Eric A. Young] | |
76 | ||
77 | *) Added -a (all) option to "ssleay version" command. | |
78 | [Eric A. Young] | |
79 | ||
80 | *) Added PLATFORM define which is the id given to Configure. | |
81 | [Eric A. Young] | |
82 | ||
83 | *) Added MemCheck_XXXX functions to crypto/mem.c for memory checking. | |
84 | [Eric A. Young] | |
85 | ||
86 | *) Extended the ASN.1 parser routines. | |
87 | [Eric A. Young] | |
88 | ||
89 | *) Extended BIO routines to support REUSEADDR, seek, tell, etc. | |
90 | [Eric A. Young] | |
91 | ||
92 | *) Added a BN_CTX to the BN library. | |
93 | [Eric A. Young] | |
94 | ||
95 | *) Fixed the weak key values in DES library | |
96 | [Eric A. Young] | |
97 | ||
98 | *) Changed API in EVP library for cipher aliases. | |
99 | [Eric A. Young] | |
100 | ||
101 | *) Added support for RC2/64bit cipher. | |
102 | [Eric A. Young] | |
103 | ||
104 | *) Converted the lhash library to the crypto/mem.c functions. | |
105 | [Eric A. Young] | |
106 | ||
107 | *) Added more recognized ASN.1 object ids. | |
108 | [Eric A. Young] | |
109 | ||
110 | *) Added more RSA padding checks for SSL/TLS. | |
111 | [Eric A. Young] | |
112 | ||
113 | *) Added BIO proxy/filter functionality. | |
114 | [Eric A. Young] | |
115 | ||
116 | *) Added extra_certs to SSL_CTX which can be used | |
117 | send extra CA certificates to the client in the CA cert chain sending | |
118 | process. It can be configured with SSL_CTX_add_extra_chain_cert(). | |
119 | [Eric A. Young] | |
120 | ||
121 | *) Now Fortezza is denied in the authentication phase because | |
122 | this is key exchange mechanism is not supported by SSLeay at all. | |
123 | [Eric A. Young] | |
124 | ||
125 | *) Additional PKCS1 checks. | |
126 | [Eric A. Young] | |
127 | ||
128 | *) Support the string "TLSv1" for all TLS v1 ciphers. | |
129 | [Eric A. Young] | |
130 | ||
131 | *) Added function SSL_get_ex_data_X509_STORE_CTX_idx() which gives the | |
132 | ex_data index of the SSL context in the X509_STORE_CTX ex_data. | |
133 | [Eric A. Young] | |
134 | ||
135 | *) Fixed a few memory leaks. | |
136 | [Eric A. Young] | |
137 | ||
138 | *) Fixed various code and comment typos. | |
139 | [Eric A. Young] | |
140 | ||
141 | *) A minor bug in ssl/s3_clnt.c where there would always be 4 0 | |
142 | bytes sent in the client random. | |
143 | [Edward Bishop <ebishop@spyglass.com>] | |
144 |