[thirdparty/openssl.git] / CHANGES


 OpenSSL CHANGES
 _______________


 Changes between 0.9.1c and 0.9.1d

  *) Autodetect FreeBSD3.
     [Ben Laurie]

  *) Fix various bugs in Configure. This affects the following platforms:
     nextstep
     ncr-scde
     unixware-2.0
     unixware-2.0-pentium
     sco5-cc.
     [Ben Laurie]

  *) Eliminate generated files from CVS. Reorder tests to regenerate files
     before they are needed.
     [Ben Laurie]

  *) Generate Makefile.ssl from Makefile.org (to keep CVS happy).
     [Ben Laurie]

 Changes between 0.9.1b and 0.9.1c

  *) Added OPENSSL_VERSION_NUMBER to crypto/crypto.h and 
     changed SSLeay to OpenSSL in version strings.
     [Ralf S. Engelschall]
  
  *) Some fixups to the top-level documents.
     [Paul Sutton]

  *) Fixed the nasty bug where rsaref.h was not found under compile-time
     because the symlink to include/ was missing.
     [Ralf S. Engelschall]

  *) Incorporated the popular no-RSA/DSA-only patches 
     which allow to compile a RSA-free SSLeay.
     [Andrew Cooke / Interrader Ldt., Ralf S. Engelschall]

  *) Fixed nasty rehash problem under `make -f Makefile.ssl links'
     when "ssleay" is still not found.
     [Ralf S. Engelschall]

  *) Added more platforms to Configure: Cray T3E, HPUX 11, 
     [Ralf S. Engelschall, Beckmann <beckman@acl.lanl.gov>]

  *) Updated the README file.
     [Ralf S. Engelschall]

  *) Added various .cvsignore files in the CVS repository subdirs
     to make a "cvs update" really silent.
     [Ralf S. Engelschall]

  *) Recompiled the error-definition header files and added
     missing symbols to the Win32 linker tables.
     [Ralf S. Engelschall]

  *) Cleaned up the top-level documents;
     o new files: CHANGES and LICENSE
     o merged VERSION, HISTORY* and README* files a CHANGES.SSLeay 
     o merged COPYRIGHT into LICENSE
     o removed obsolete TODO file
     o renamed MICROSOFT to INSTALL.W32
     [Ralf S. Engelschall]

  *) Removed dummy files from the 0.9.1b source tree: 
     crypto/asn1/x crypto/bio/cd crypto/bio/fg crypto/bio/grep crypto/bio/vi
     crypto/bn/asm/......add.c crypto/bn/asm/a.out crypto/dsa/f crypto/md5/f
     crypto/pem/gmon.out crypto/perlasm/f crypto/pkcs7/build crypto/rsa/f
     crypto/sha/asm/f crypto/threads/f ms/zzz ssl/f ssl/f.mak test/f
     util/f.mak util/pl/f util/pl/f.mak crypto/bf/bf_locl.old apps/f
     [Ralf S. Engelschall]

  *) Added various platform portability fixes.
     [Mark J. Cox]

  *) The Genesis of the OpenSSL rpject:
     We start with the latest (unreleased) SSLeay version 0.9.1b which Eric A.
     Joung and Tim J. Hudson created while they were working for C2Net until
     summer 1998.
     [The OpenSSL Project]
 
 Changes between 0.9.0b and 0.9.1b

  *) Updated a few CA certificates under certs/
     [Eric A. Young]

  *) Changed some BIGNUM api stuff.
     [Eric A. Young]

  *) Various platform ports: OpenBSD, Ultrix, IRIX 64bit, NetBSD, 
     DGUX x86, Linux Alpha, etc.
     [Eric A. Young]

  *) New COMP library [crypto/comp/] for SSL Record Layer Compression: 
     RLE (dummy implemented) and ZLIB (really implemented when ZLIB is
     available).
     [Eric A. Young]

  *) Add -strparse option to asn1pars program which parses nested 
     binary structures 
     [Dr Stephen Henson <shenson@bigfoot.com>]

  *) Added "oid_file" to ssleay.cnf for "ca" and "req" programs.
     [Eric A. Young]

  *) DSA fix for "ca" program.
     [Eric A. Young]

  *) Added "-genkey" option to "dsaparam" program.
     [Eric A. Young]

  *) Added RIPE MD160 (rmd160) message digest.
     [Eric A. Young]

  *) Added -a (all) option to "ssleay version" command.
     [Eric A. Young]

  *) Added PLATFORM define which is the id given to Configure.
     [Eric A. Young]

  *) Added MemCheck_XXXX functions to crypto/mem.c for memory checking.
     [Eric A. Young]

  *) Extended the ASN.1 parser routines.
     [Eric A. Young]

  *) Extended BIO routines to support REUSEADDR, seek, tell, etc.
     [Eric A. Young]

  *) Added a BN_CTX to the BN library.
     [Eric A. Young]

  *) Fixed the weak key values in DES library
     [Eric A. Young]

  *) Changed API in EVP library for cipher aliases.
     [Eric A. Young]

  *) Added support for RC2/64bit cipher.
     [Eric A. Young]

  *) Converted the lhash library to the crypto/mem.c functions.
     [Eric A. Young]

  *) Added more recognized ASN.1 object ids.
     [Eric A. Young]

  *) Added more RSA padding checks for SSL/TLS.
     [Eric A. Young]

  *) Added BIO proxy/filter functionality.
     [Eric A. Young]

  *) Added extra_certs to SSL_CTX which can be used
     send extra CA certificates to the client in the CA cert chain sending
     process. It can be configured with SSL_CTX_add_extra_chain_cert().
     [Eric A. Young]

  *) Now Fortezza is denied in the authentication phase because
     this is key exchange mechanism is not supported by SSLeay at all.
     [Eric A. Young]

  *) Additional PKCS1 checks.
     [Eric A. Young]

  *) Support the string "TLSv1" for all TLS v1 ciphers.
     [Eric A. Young]

  *) Added function SSL_get_ex_data_X509_STORE_CTX_idx() which gives the
     ex_data index of the SSL context in the X509_STORE_CTX ex_data.
     [Eric A. Young]

  *) Fixed a few memory leaks.
     [Eric A. Young]

  *) Fixed various code and comment typos.
     [Eric A. Young]

  *) A minor bug in ssl/s3_clnt.c where there would always be 4 0 
     bytes sent in the client random.
     [Edward Bishop <ebishop@spyglass.com>]
Commit	Line	Data
651d0aff	1
f1c236f8	2	OpenSSL CHANGES
651d0aff RE	3	_______________
	4
	5
9228157c	6	Changes between 0.9.1c and 0.9.1d
320a14cb	7
5dcdcd47 BL	8	*) Autodetect FreeBSD3.
	9	[Ben Laurie]
	10
1641cb60 BL	11	*) Fix various bugs in Configure. This affects the following platforms:
	12	nextstep
	13	ncr-scde
	14	unixware-2.0
	15	unixware-2.0-pentium
	16	sco5-cc.
	17	[Ben Laurie]
ae82b46f	18
8d7ed6ff BL	19	*) Eliminate generated files from CVS. Reorder tests to regenerate files
	20	before they are needed.
	21	[Ben Laurie]
	22
	23	*) Generate Makefile.ssl from Makefile.org (to keep CVS happy).
	24	[Ben Laurie]
	25
9228157c	26	Changes between 0.9.1b and 0.9.1c
9ce5db45	27
f10a5c2a RE	28	*) Added OPENSSL_VERSION_NUMBER to crypto/crypto.h and
f10a5c2a RE	29	changed SSLeay to OpenSSL in version strings.
9ce5db45	30	[Ralf S. Engelschall]
9acc2aa6 RE	31
	32	*) Some fixups to the top-level documents.
	33	[Paul Sutton]
651d0aff	34
13e91dd3 RE	35	*) Fixed the nasty bug where rsaref.h was not found under compile-time
	36	because the symlink to include/ was missing.
	37	[Ralf S. Engelschall]
	38
	39	*) Incorporated the popular no-RSA/DSA-only patches
	40	which allow to compile a RSA-free SSLeay.
320a14cb	41	[Andrew Cooke / Interrader Ldt., Ralf S. Engelschall]
13e91dd3 RE	42
	43	*) Fixed nasty rehash problem under `make -f Makefile.ssl links'
	44	when "ssleay" is still not found.
	45	[Ralf S. Engelschall]
	46
	47	*) Added more platforms to Configure: Cray T3E, HPUX 11,
	48	[Ralf S. Engelschall, Beckmann <beckman@acl.lanl.gov>]
	49
651d0aff RE	50	*) Updated the README file.
	51	[Ralf S. Engelschall]
	52
	53	*) Added various .cvsignore files in the CVS repository subdirs
	54	to make a "cvs update" really silent.
	55	[Ralf S. Engelschall]
	56
	57	*) Recompiled the error-definition header files and added
	58	missing symbols to the Win32 linker tables.
	59	[Ralf S. Engelschall]
	60
	61	*) Cleaned up the top-level documents;
	62	o new files: CHANGES and LICENSE
	63	o merged VERSION, HISTORY* and README* files a CHANGES.SSLeay
	64	o merged COPYRIGHT into LICENSE
	65	o removed obsolete TODO file
	66	o renamed MICROSOFT to INSTALL.W32
	67	[Ralf S. Engelschall]
	68
	69	*) Removed dummy files from the 0.9.1b source tree:
	70	crypto/asn1/x crypto/bio/cd crypto/bio/fg crypto/bio/grep crypto/bio/vi
	71	crypto/bn/asm/......add.c crypto/bn/asm/a.out crypto/dsa/f crypto/md5/f
	72	crypto/pem/gmon.out crypto/perlasm/f crypto/pkcs7/build crypto/rsa/f
	73	crypto/sha/asm/f crypto/threads/f ms/zzz ssl/f ssl/f.mak test/f
	74	util/f.mak util/pl/f util/pl/f.mak crypto/bf/bf_locl.old apps/f
	75	[Ralf S. Engelschall]
	76
13e91dd3	77	*) Added various platform portability fixes.
9acc2aa6	78	[Mark J. Cox]
651d0aff	79
f1c236f8	80	*) The Genesis of the OpenSSL rpject:
651d0aff RE	81	We start with the latest (unreleased) SSLeay version 0.9.1b which Eric A.
	82	Joung and Tim J. Hudson created while they were working for C2Net until
	83	summer 1998.
f1c236f8	84	[The OpenSSL Project]
651d0aff RE	85
	86	Changes between 0.9.0b and 0.9.1b
	87
	88	*) Updated a few CA certificates under certs/
	89	[Eric A. Young]
	90
	91	*) Changed some BIGNUM api stuff.
	92	[Eric A. Young]
	93
	94	*) Various platform ports: OpenBSD, Ultrix, IRIX 64bit, NetBSD,
	95	DGUX x86, Linux Alpha, etc.
	96	[Eric A. Young]
	97
	98	*) New COMP library [crypto/comp/] for SSL Record Layer Compression:
	99	RLE (dummy implemented) and ZLIB (really implemented when ZLIB is
	100	available).
	101	[Eric A. Young]
	102
	103	*) Add -strparse option to asn1pars program which parses nested
	104	binary structures
	105	[Dr Stephen Henson <shenson@bigfoot.com>]
	106
	107	*) Added "oid_file" to ssleay.cnf for "ca" and "req" programs.
	108	[Eric A. Young]
	109
	110	*) DSA fix for "ca" program.
	111	[Eric A. Young]
	112
	113	*) Added "-genkey" option to "dsaparam" program.
	114	[Eric A. Young]
	115
	116	*) Added RIPE MD160 (rmd160) message digest.
	117	[Eric A. Young]
	118
	119	*) Added -a (all) option to "ssleay version" command.
	120	[Eric A. Young]
	121
	122	*) Added PLATFORM define which is the id given to Configure.
	123	[Eric A. Young]
	124
	125	*) Added MemCheck_XXXX functions to crypto/mem.c for memory checking.
	126	[Eric A. Young]
	127
	128	*) Extended the ASN.1 parser routines.
	129	[Eric A. Young]
	130
	131	*) Extended BIO routines to support REUSEADDR, seek, tell, etc.
	132	[Eric A. Young]
	133
	134	*) Added a BN_CTX to the BN library.
	135	[Eric A. Young]
	136
	137	*) Fixed the weak key values in DES library
	138	[Eric A. Young]
	139
	140	*) Changed API in EVP library for cipher aliases.
	141	[Eric A. Young]
	142
	143	*) Added support for RC2/64bit cipher.
	144	[Eric A. Young]
	145
	146	*) Converted the lhash library to the crypto/mem.c functions.
	147	[Eric A. Young]
	148
149	*) Added more recognized ASN.1 object ids.
150	[Eric A. Young]
151
152	*) Added more RSA padding checks for SSL/TLS.
153	[Eric A. Young]
154
155	*) Added BIO proxy/filter functionality.
156	[Eric A. Young]
157
158	*) Added extra_certs to SSL_CTX which can be used
159	send extra CA certificates to the client in the CA cert chain sending
160	process. It can be configured with SSL_CTX_add_extra_chain_cert().
161	[Eric A. Young]
162
163	*) Now Fortezza is denied in the authentication phase because
164	this is key exchange mechanism is not supported by SSLeay at all.
165	[Eric A. Young]
166
167	*) Additional PKCS1 checks.
168	[Eric A. Young]
169
170	*) Support the string "TLSv1" for all TLS v1 ciphers.
171	[Eric A. Young]
172
173	*) Added function SSL_get_ex_data_X509_STORE_CTX_idx() which gives the
174	ex_data index of the SSL context in the X509_STORE_CTX ex_data.
175	[Eric A. Young]
176
177	*) Fixed a few memory leaks.
178	[Eric A. Young]
179
180	*) Fixed various code and comment typos.
181	[Eric A. Young]
182
183	*) A minor bug in ssl/s3_clnt.c where there would always be 4 0
184	bytes sent in the client random.
185	[Edward Bishop <ebishop@spyglass.com>]
186