X-Git-Url: https://git.openssl.org/?p=openssl.git;a=blobdiff_plain;f=NEWS;h=7cf95cfb0bf95f3669ba58aff7d6addc1e0e5916;hp=9ac1b8319b3812ae620be690bd77fd194dcace3c;hb=e264cfe17a6495c56bdd7a46f09b537299f3123d;hpb=6d9ca500d829f5458cfd81ef8818469409b942c7

diff --git a/NEWS b/NEWS
index 9ac1b8319b..7cf95cfb0b 100644
--- a/NEWS
+++ b/NEWS
@@ -5,6 +5,30 @@
   This file gives a brief overview of the major changes between each OpenSSL
   release. For more details please read the CHANGES file.
 
+  Major changes between OpenSSL 0.9.5a and OpenSSL 0.9.6:
+
+      o Some documentation for BIO and SSL libraries.
+      o Enhanced chain verification using key identifiers.
+      o New sign and verify options to 'dgst' application.
+      o Support for DER and PEM encoded messages in 'smime' application.
+      o New 'rsautl' application, low level RSA utility.
+      o MD4 now included.
+      o Bugfix for SSL rollback padding check.
+      o Support for external crypto devices [1].
+      o Enhanced EVP interface.
+
+    [1] The support for external crypto devices is currently a separate
+        distribution.  See the file README.ENGINE.
+
+  Major changes between OpenSSL 0.9.5 and OpenSSL 0.9.5a:
+
+      o Bug fixes for Win32, SuSE Linux, NeXTSTEP and FreeBSD 2.2.8 
+      o Shared library support for HPUX and Solaris-gcc
+      o Support of Linux/IA64
+      o Assembler support for Mingw32
+      o New 'rand' application
+      o New way to check for existence of algorithms from scripts
+
   Major changes between OpenSSL 0.9.4 and OpenSSL 0.9.5:
 
       o S/MIME support in new 'smime' command
@@ -13,7 +37,7 @@
       o Fixes to make s_client, s_server work under Windows
       o Support for multiple fieldnames in SPKACs
       o New SPKAC command line utilty and associated library functions
-      o Options to allow passwords to be passed on command line or environment
+      o Options to allow passwords to be obtained from various sources
       o New public key PEM format and options to handle it
       o Many other fixes and enhancements to command line utilities
       o Usable certificate chain verification
@@ -22,16 +46,22 @@
       o Support of authority information access extension
       o Extensions in certificate requests
       o Simplified X509 name and attribute routines
-      o Initial incomplete support for international character sets
+      o Initial (incomplete) support for international character sets
       o New DH_METHOD, DSA_METHOD and enhanced RSA_METHOD
       o Read only memory BIOs and simplified creation function
+      o TLS/SSL protocol bugfixes: Accept TLS 'client hello' in SSL 3.0
+        record; allow fragmentation and interleaving of handshake and other
+        data
       o TLS/SSL code now "tolerates" MS SGC
+      o Work around for Netscape client certificate hang bug
       o RSA_NULL option that removes RSA patent code but keeps other
         RSA functionality
       o Memory leak detection now allows applications to add extra information
         via a per-thread stack
       o PRNG robustness improved
+      o EGD support
       o BIGNUM library bug fixes
+      o Faster DSA parameter generation
       o Enhanced support for Alpha Linux
       o Experimental MacOS support