X-Git-Url: https://git.openssl.org/gitweb/?p=openssl.git;a=blobdiff_plain;f=CHANGES;h=556aa5f3429c481372987c61e08466cbab61041e;hp=f3822758951e49f0720aa7b2527fde368c09bfc4;hb=ff43e2e1557962794f773dd9243d6ffdbf4db1aa;hpb=24cc290b85e7fec364a7f927e9278da329164d22

diff --git a/CHANGES b/CHANGES
index f382275895..556aa5f342 100644
--- a/CHANGES
+++ b/CHANGES
@@ -11,6 +11,28 @@
          *) applies to 0.9.6a (/0.9.6b) and 0.9.7
          +) applies to 0.9.7 only
 
+  +) Initial CRL based revocation checking. If the CRL checking flag(s)
+     are set then the CRL is looked up in the X509_STORE structure and
+     its validity and signature checked, then if the certificate is found
+     in the CRL the verify fails with a revoked error.
+
+     Various new CRL related callbacks added to X509_STORE_CTX structure.
+
+     Command line options added to 'verify' application to support this.
+
+     This needs some additional work, such as being able to handle multiple
+     CRLs with different times, extension based lookup (rather than just
+     by subject name) and ultimately more complete V2 CRL extension
+     handling.
+     [Steve Henson]
+
+  +) Add a general user interface API.  This is designed to replace things
+     like des_read_password and friends (backward compatibility functions
+     using this new API are provided).  The purpose is to remove prompting
+     functions from the DES code section as well as provide for prompting
+     through dialog boxes in a window system and the like.
+     [Richard Levitte]
+
   *) In versions up to 0.9.6, RAND_file_name() resorted to file ".rnd"
      in the current directory if neither $RANDFILE nor $HOME was set.
      RAND_file_name() in 0.9.6a returned NULL in this case.  This has
@@ -3359,7 +3381,7 @@
                                      copied!)
      [Bodo Moeller]
 
-  *) Bugfix: SSL_set_mode ignored its parameter, only SSL_CTX_set_mode
+  *) Bugfix: SSL_set_options ignored its parameter, only SSL_CTX_set_options
      worked.
 
   *) Fix problems with no-hmac etc.