Don't set pointer if add_lock_callback used.

[openssl.git] / CHANGES

diff --git a/CHANGES b/CHANGES
index 5859004a4c19900845accc2464a20b21d95b028d..cf79a8ea10d205dfb314b379f061c3282d24fd12 100644 (file)
--- a/CHANGES
+++ b/CHANGES
@@ -11,6 +11,19 @@
          *) applies to 0.9.6a (/0.9.6b) and 0.9.7
          +) applies to 0.9.7 only
 
+  *) Don't change *pointer in CRYPTO_add_lock() is add_lock_callback is
+     used: it isn't thread safe and the add_lock_callback should handle
+     that itself.
+     [Paul Rose <Paul.Rose@bridge.com>]
+
+  *) Verify that incoming data obeys the block size in
+     ssl3_enc (ssl/s3_enc.c) and tls1_enc (ssl/t1_enc.c).
+     [Bodo Moeller]
+
+  +) Tidy up PKCS#12 attribute handling. Add support for the CSP name
+     attribute in PKCS#12 files, add new -CSP option to pkcs12 utility.
+     [Steve Henson]
+
   *) Fix OAEP check.
      [Ulf Möller, Bodo Möller]
 
@@ -106,11 +119,12 @@
      handling.
      [Steve Henson]
 
-  +) Add a general user interface API.  This is designed to replace things
-     like des_read_password and friends (backward compatibility functions
-     using this new API are provided).  The purpose is to remove prompting
-     functions from the DES code section as well as provide for prompting
-     through dialog boxes in a window system and the like.
+  +) Add a general user interface API (crypto/ui/).  This is designed
+     to replace things like des_read_password and friends (backward
+     compatibility functions using this new API are provided).
+     The purpose is to remove prompting functions from the DES code
+     section as well as provide for prompting through dialog boxes in
+     a window system and the like.
      [Richard Levitte]
 
   *) In versions up to 0.9.6, RAND_file_name() resorted to file ".rnd"