« Changelog History


OpenSSL v0.9.0.b Release Notes

    • Updated a few CA certificates under certs/

    Eric A. Young

    • Changed some BIGNUM api stuff.

    Eric A. Young

    • Various platform ports: OpenBSD, Ultrix, IRIX 64bit, NetBSD, DGUX x86, Linux Alpha, etc.

    Eric A. Young

    • New COMP library [crypto/comp/] for SSL Record Layer Compression: RLE (dummy implemented) and ZLIB (really implemented when ZLIB is available).

    Eric A. Young

    • Add -strparse option to asn1pars program which parses nested binary structures

    Dr Stephen Henson [email protected]

    • Added "oid_file" to ssleay.cnf for "ca" and "req" programs.

    Eric A. Young

    • DSA fix for "ca" program.

    Eric A. Young

    • Added "-genkey" option to "dsaparam" program.

    Eric A. Young

    • Added RIPE MD160 (rmd160) message digest.

    Eric A. Young

    • Added -a (all) option to "ssleay version" command.

    Eric A. Young

    • Added PLATFORM define which is the id given to Configure.

    Eric A. Young

    • Added MemCheck_XXXX functions to crypto/mem.c for memory checking.

    Eric A. Young

    • Extended the ASN.1 parser routines.

    Eric A. Young

    • Extended BIO routines to support REUSEADDR, seek, tell, etc.

    Eric A. Young

    • Added a BN_CTX to the BN library.

    Eric A. Young

    • Fixed the weak key values in DES library

    Eric A. Young

    • Changed API in EVP library for cipher aliases.

    Eric A. Young

    • Added support for RC2/64bit cipher.

    Eric A. Young

    • Converted the lhash library to the crypto/mem.c functions.

    Eric A. Young

    • Added more recognized ASN.1 object ids.

    Eric A. Young

    • Added more RSA padding checks for SSL/TLS.

    Eric A. Young

    • Added BIO proxy/filter functionality.

    Eric A. Young

    • Added extra_certs to SSL_CTX which can be used send extra CA certificates to the client in the CA cert chain sending process. It can be configured with SSL_CTX_add_extra_chain_cert().

    Eric A. Young

    • Now Fortezza is denied in the authentication phase because this is key exchange mechanism is not supported by SSLeay at all.

    Eric A. Young

    • Additional PKCS1 checks.

    Eric A. Young

    • Support the string "TLSv1" for all TLS v1 ciphers.

    Eric A. Young

    • Added function SSL_get_ex_data_X509_STORE_CTX_idx() which gives the ex_data index of the SSL context in the X509_STORE_CTX ex_data.

    Eric A. Young

    • Fixed a few memory leaks.

    Eric A. Young

    • Fixed various code and comment typos.

    Eric A. Young

    • A minor bug in ssl/s3_clnt.c where there would always be 4 0 bytes sent in the client random.

    Edward Bishop [email protected]

    <!-- Links -->