OpenSSL 0.9.7

Changelog

• New library section OCSP.
• Complete rewrite of ASN1 code.
• CRL checking in verify code and openssl utility.
• Extension copying in 'ca' utility.
• Flexible display options in 'ca' utility.
• Provisional support for international characters with UTF8.
• Support for external crypto devices ('engine') is no longer
  a separate distribution.
• New elliptic curve library section.
• New AES (Rijndael) library section.
• Support for new platforms: Windows CE, Tandem OSS, A/UX, AIX 64-bit,
  Linux x86_64, Linux 64-bit on Sparc v9
• Extended support for some platforms: VxWorks
• Enhanced support for shared libraries.
• Now only builds PIC code when shared library support is requested.
• Support for pkg-config.
• Lots of new manuals.
• Makes symbolic links to or copies of manuals to cover all described
  functions.
• Change DES API to clean up the namespace (some applications link also
  against libdes providing similar functions having the same name).
  Provide macros for backward compatibility (will be removed in the
  future).
• Unify handling of cryptographic algorithms (software and engine)
  to be available via EVP routines for asymmetric and symmetric ciphers.
• NCONF: new configuration handling routines.
• Change API to use more 'const' modifiers to improve error checking
  and help optimizers.
• Finally remove references to RSAref.
• Reworked parts of the BIGNUM code.
• Support for new engines: Broadcom ubsec, Accelerated Encryption
  Processing, IBM 4758.
• A few new engines added in the demos area.
• Extended and corrected OID (object identifier) table.
• PRNG: query at more locations for a random device, automatic query for
  EGD style random sources at several locations.
• SSL/TLS: allow optional cipher choice according to server's preference.
• SSL/TLS: allow server to explicitly set new session ids.
• SSL/TLS: support Kerberos cipher suites (RFC2712).
  Only supports MIT Kerberos for now.
• SSL/TLS: allow more precise control of renegotiations and sessions.
• SSL/TLS: add callback to retrieve SSL/TLS messages.
• SSL/TLS: support AES cipher suites (RFC3268).

OpenSSL engine-0.9.6h

make update

Time to release 0.9.6h [engine].
The tag will be OpenSSL-engine-0_9_6h.

OpenSSL engine-0.9.6g

Time for release.

The tag will be OpenSSL-engine-0_9_6g.

OpenSSL engine-0.9.6f

Recent changes.

Time to release 0.9.6f [engine].
The tag will be OpenSSL-engine-0_9_6f.

OpenSSL engine-0.9.6e

Release 0.9.6e

Submitted by:
Reviewed by:
PR:

OpenSSL engine-0.9.6d

Merge the version changes from 0.9.6-stable.

The tag for this branch will be OpenSSL-engine-0_9_6d

OpenSSL engine-0.9.6c

This commit was manufactured by cvs2svn to create tag 'OpenSSL-engine-

0_9_6c'.

OpenSSL engine-0.9.6b

Add security patch and create release.

Tags will be OpenSSL_0_9_6b and OpenSSL-engine-0_9_6b

OpenSSL engine-0.9.6a

Release OpenSSL 0.9.6a [engine]

The tag will be OpenSSL-engine-0_9_6a

OpenSSL 0.9.6

Changelog

• Some documentation for BIO and SSL libraries.

• Enhanced chain verification using key identifiers.

• New sign and verify options to 'dgst' application.

• Support for DER and PEM encoded messages in 'smime' application.

• New 'rsautl' application, low level RSA utility.

• MD4 now included.

• Bugfix for SSL rollback padding check.

• Support for external crypto devices [1].

• Enhanced EVP interface.

  [1] The support for external crypto devices is currently a separate
  distribution. See the file README.ENGINE.