Synchronize with 0.9.7-stable.

author: Lutz Jänicke <jaenicke@openssl.org> 2002-04-11 18:43:52 +0000
committer: Lutz Jänicke <jaenicke@openssl.org> 2002-04-11 18:43:52 +0000
commit: e4fb49775b99f01000dd4a2ce2d89611e13e7b89 (patch)
tree: 1e50fc4f625012977575dca1dba2f22cf5532e1e /NEWS
parent: 381a146dc6e4c35e06546926fe7c48328aeb103d (diff)
1 files changed, 33 insertions, 1 deletions
diff --git a/NEWS b/NEWS
index f8cb8c0831..ebb2b74a0e 100644
--- a/NEWS
+++ b/NEWS
@@ -8,9 +8,41 @@
   Major changes between OpenSSL 0.9.6 and OpenSSL 0.9.7:
 
       o New library section OCSP.
-      o Complete haul-over of the ASN.1 library section.
+      o Complete rewrite of ASN1 code.
+      o CRL checking in verify code and openssl utility.
+      o Extension copying in 'ca' utility.
+      o Flexible display options in 'ca' utility.
+      o Provisional support for international characters with UTF8.
       o Support for external crypto devices ('engine') is no longer
         a separate distribution.
+      o New elliptic curve library section.
+      o New AES (Rijndael) library section.
+      o Change DES API to clean up the namespace (some applications link also
+        against libdes providing similar functions having the same name).
+        Provide macros for backward compatibility (will be removed in the
+        future).
+      o Unifiy handling of cryptographic algorithms (software and
+        engine) to be available via EVP routines for asymmetric and
+        symmetric ciphers.
+      o NCONF: new configuration handling routines.
+      o Change API to use more 'const' modifiers to improve error checking
+        and help optimizers.
+      o Finally remove references to RSAref.
+      o Reworked parts of the BIGNUM code.
+      o Support for new engines: Broadcom ubsec, Accelerated Encryption
+        Processing, IBM 4758.
+      o PRNG: query at more locations for a random device, automatic query for
+        EGD style random sources at several locations.
+      o SSL/TLS: allow optional cipher choice according to server's preference.
+      o SSL/TLS: allow server to explicitly set new session ids.
+      o SSL/TLS: support Kerberos cipher suites (RFC2712).
+      o SSL/TLS: allow more precise control of renegotiations and sessions.
+      o SSL/TLS: add callback to retrieve SSL/TLS messages.
+
+  Changes between OpenSSL 0.9.6c and OpenSSL 0.9.6d:
+
+      o Various SSL/TLS library bugfixes.
+      o Fix DH parameter generation for 'non-standard' generators.
 
   Changes between OpenSSL 0.9.6b and OpenSSL 0.9.6c:
author	Lutz Jänicke <jaenicke@openssl.org>	2002-04-11 18:43:52 +0000
committer	Lutz Jänicke <jaenicke@openssl.org>	2002-04-11 18:43:52 +0000
commit	e4fb49775b99f01000dd4a2ce2d89611e13e7b89 (patch)
tree	1e50fc4f625012977575dca1dba2f22cf5532e1e /NEWS
parent	381a146dc6e4c35e06546926fe7c48328aeb103d (diff)