From: Tomas Mraz Date: Mon, 13 Dec 2021 14:27:20 +0000 (+0100) Subject: Add some CHANGES.md entries for the 3.0.1 release X-Git-Tag: openssl-3.2.0-alpha1~3197 X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=c868d1f9ca923fa4ea57a46e823c280233e254ea;p=thirdparty%2Fopenssl.git Add some CHANGES.md entries for the 3.0.1 release Reviewed-by: Richard Levitte Reviewed-by: Paul Dale (Merged from https://github.com/openssl/openssl/pull/17274) --- diff --git a/CHANGES.md b/CHANGES.md index 8fd7e7288ac..539d6a047da 100644 --- a/CHANGES.md +++ b/CHANGES.md @@ -70,7 +70,17 @@ OpenSSL 3.1 *Sergey Kirillov, Andrey Matyukov (Intel Corp)* -### Changes between 3.0.0 and 3.0.1 [xx XXX xxxx] +OpenSSL 3.0 +----------- + +For OpenSSL 3.0 a [Migration guide][] has been added, so the CHANGES entries +listed here are only a brief description. +The migration guide contains more detailed information related to new features, +breaking changes, and mappings for the large list of deprecated functions. + +[Migration guide]: https://github.com/openssl/openssl/tree/master/doc/man7/migration_guide.pod + +### Changes between 3.0.0 and 3.0.1 [14 dec 2021] * Fixed invalid handling of X509_verify_cert() internal errors in libssl Internally libssl in OpenSSL calls X509_verify_cert() on the client side to @@ -103,17 +113,52 @@ OpenSSL 3.1 *Richard Levitte* -OpenSSL 3.0 ------------ + * Fixed EVP_PKEY_eq() to make it possible to use it with strictly private + keys. -For OpenSSL 3.0 a [Migration guide][] has been added, so the CHANGES entries -listed here are only a brief description. -The migration guide contains more detailed information related to new features, -breaking changes, and mappings for the large list of deprecated functions. + *Richard Levitte* -[Migration guide]: https://github.com/openssl/openssl/tree/master/doc/man7/migration_guide.pod + * Fixed PVK encoder to properly query for the passphrase. + + *Tomáš Mráz* + + * Multiple fixes in the OSSL_HTTP API functions. + + *David von Oheimb* + + * Allow sign extension in OSSL_PARAM_allocate_from_text() for the + OSSL_PARAM_INTEGER data type and return error on negative numbers + used with the OSSL_PARAM_UNSIGNED_INTEGER data type. Make + OSSL_PARAM_BLD_push_BN{,_pad}() return an error on negative numbers. + + *Richard Levitte* + + * Allow copying uninitialized digest contexts with EVP_MD_CTX_copy_ex. + + *Tomáš Mráz* + + * Fixed detection of ARMv7 and ARM64 CPU features on FreeBSD. + + *Allan Jude* + + * Avoid loading of a dynamic engine twice. + + *Bernd Edlinger* + + * Multiple threading fixes. + + *Matt Caswell* + + * Added NULL digest implementation to keep compatibility with 1.1.1 version. + + *Tomáš Mráz* + + * Allow fetching an operation from the provider that owns an unexportable key + as a fallback if that is still allowed by the property query. + + *Richard Levitte* -### Changes between 1.1.1 and 3.0 [xx XXX xxxx] +### Changes between 1.1.1 and 3.0.0 [7 sep 2021] * TLS_MAX_VERSION, DTLS_MAX_VERSION and DTLS_MIN_VERSION constants are now deprecated.