diff options
Diffstat (limited to 'docs/news.html')
-rw-r--r-- | docs/news.html | 454 |
1 files changed, 243 insertions, 211 deletions
diff --git a/docs/news.html b/docs/news.html index 63d032fc..0243d63d 100644 --- a/docs/news.html +++ b/docs/news.html @@ -43,10 +43,57 @@ </table> </td> <td valign="top"><table width="100%" valign="top"><tr><td valign="top" align="left" id="xmlsecContent"> -<div align="Center"> - <h1>XML Security Library News</h1> - </div> +<div align="center"> +<h1>XML Security Library News</h1> +</div> <ul> +<li>March 24 2013<br> + The <a href="download.html">XML Security Library 1.2.19</a> release adds support for DSA-SHA256, ECDSA-SHA1, + ECDSA-SHA224, ECDSA-SHA256, ECDSA-SHA384, ECDSA-SHA512 and fixes a number of miscellaneous bugs. +</li> + +<li>May 11 2011<br> + The <a href="download.html">XML Security Library 1.2.18</a> release fixes + a serious crasher. All users are advised to upgraded as soon as possible. +</li> + +<li>March 31 2011<br> + Changes in <a href="download.html">XML Security Library 1.2.17</a> release: + <ul> +<li>Fixed security issue with libxslt (CVE-2011-1425, reported by Nicolas Gregoire).</li> + <li>Fixed a number of build configuration problems, pkcs12 file loading, and gcrypt init/shutdown.</li> + </ul> +</li> + +<li>May 26 2010<br> + Changes in <a href="download.html">XML Security Library 1.2.16</a> release: + <ul> +<li>New xmlsec-gcrypt library.</li> + <li>xmlsec-gcrypt: Added RSA with SHA1/SHA256/SHA384/SHA512/MD5/RIPEMD160, + DSA with SHA1, AES/DES KW support.</li> + <li>xmlsec-gnutls: Added X509 support and converted the library to use + xmlsec-gcrypt library for all crypto operations.</li> + <li>xmlsec-mscrypto: RSA/OAEP and AES/DES KW support.</li> + <li>Several minor bug fixes and code cleanups.</li> + </ul> +</li> + +<li>April 29 2010<br> + Changes in <a href="download.html">XML Security Library 1.2.15</a> release: + <ul> +<li>xmlsec-mscrypto: Added HMAC with MD5, SHA1, SHA256/384/512; + RSA with MD5, SHA256/384/512 support.</li> + <li>xmlsec-mscrypto: Converted to Unicode (the non-Unicode builds are still available as compile time option).</li> + <li>xmlsec-nss: Added MD5 and SHA256/384/512 support for digest, HMAC + and RSA (the new minimum required version for NSS library is 3.9).</li> + <li>xmlsec-gnutls: Added SHA256/384/512 for digest and HMAC; + MD5 and RIPEMD160 digests support (the new minimum required version for + GnuTLS library is 2.8.0).</li> + <li>Fixed typo: "Copyrigth" should be "Copyright".</li> + <li>Several critical bug fixes and code cleanups.</li> + </ul> +</li> + <li>December 5 2009<br> Changes in <a href="download.html">XML Security Library 1.2.14</a> release: <ul> @@ -71,7 +118,6 @@ <li>Fixed XML dump output</li> </ul> </li> - <li>July 14 2009<br> The new <a href="download.html">XML Security Library 1.2.12</a> release includes the following changes (see ChangeLog for the complete list of changes): @@ -96,7 +142,7 @@ <li>Bug fixes.</li> </ul> </li> -<br><li>June 12 2006<br> +<li>June 12 2006<br> The new <a href="download.html">XML Security Library 1.2.10</a> release includes the following changes: <ul> @@ -104,95 +150,86 @@ <li>Ability to disable system trusted certs in xmlsec-mscrypto (Dmitry Belyavsky)</li> <li>New functions for adding X509IssuerName and X509SerialNumber - nodes to the template (Dmitry Belyavsky) - </li> -<li>Better packaging support for Fedora and Debian (Daniel Veillard, John Belmonte)</li> + nodes to the template (Dmitry Belyavsky)</li> + <li>Better packaging support for Fedora and Debian (Daniel Veillard, John Belmonte)</li> <li>Cleanups from Coverity tool reports</li> <li>Bug fixes</li> </ul> </li> -<br><li>July 12 2005<br> +<li>July 12 2005<br> The new <a href="download.html">XML Security Library 1.2.9</a> release includes few bug fixes and adds support for the recently released <a href="http://www.openssl.org">OpenSSL 0.9.8</a> including several new algorithms for <a href="xmldsig.html">xmlsec-openssl</a>: <ul> <li>SHA224/SHA256/SHA384/SHA512</li> - <li>HMAC-SHA224/SHA256/SHA384/SHA512</li> - <li>RSA-MD5/RIPEMD160/SHA224/SHA256/SHA384/SHA512</li> + <li>HMAC-SHA224/SHA256/SHA384/SHA512</li> + <li>RSA-MD5/RIPEMD160/SHA224/SHA256/SHA384/SHA512</li> </ul> </li> -<br><li>March 30 2005<br> +<li>March 30 2005<br> The new <a href="download.html">XML Security Library 1.2.8</a> release merges OpenOffice.org changes to xmlsec-mscrypto and xmlsec-nss into main xmlsec source tree. </li> -<br><li>February 23 2005<br> +<li>February 23 2005<br> The new <a href="download.html">XML Security Library 1.2.7</a> release includes several bug fixes and minor enchancements: <ul> <li>(core) added xmlSecSimpleKeysStoreGetKeys() function;</li> <li>(core) added functions to create <X509Data/> node children - in the signature template;</li> + in the signature template;</li> <li>(core) fixed xmlSecGenerateID() function;</li> <li>(core) fixed dynamic linking initialization/shutdown when custom memory - allocation functions are used;</li> + allocation functions are used;</li> <li>(core) fixed encrypted text parsing and xmlParseInNodeContext() function;</li> <li>(openssl) fixed parsing quoted values in the certificate subject;</li> <li>(mscrypto) negative numbers support in xmlSecBnFromString()/xmlSecBnToString() functions.</li> </ul> </li> - -<br><li>August 25 2004<br> +<li>August 25 2004<br> The new <a href="download.html">XML Security Library 1.2.6</a> fixes several minor bugs and adds support for loading keys and certificates from memory. </li> - -<br><li>July 27 2004<br> +<li>July 27 2004<br> Created a <a href="related.html#books">list of books</a> about cryptography and security that covers most of the topics needed for using XML Security Library. </li> - -<br><li>April 15 2004<br> +<li>April 15 2004<br> The new <a href="download.html">XML Security Library 1.2.5</a> includes a simple XKMS server implementation and fixes a nasty bug with encrypting/decrypting nodes with an empty content. </li> - -<br><li>January 27 2004<br> +<li>January 27 2004<br> The new <a href="download.html">XML Security Library 1.2.4</a> release fixes many configuration and installation problems found by John. </li> - -<br><li>January 6 2004<br> +<li>January 6 2004<br> The new <a href="download.html">XML Security Library 1.2.3</a> release upgrades xmlsec-gnutls code to support latest gnutls library version (1.0.4) and fixes several configuration and installation problems. </li> - -<br><li>November 11 2003<br> +<li>November 11 2003<br> The new <a href="download.html">XML Security Library 1.2.2</a> release includes several improvements in ./configure script (Daniel, Roumen) and a bug fix for certificates serial number processing in xmlsec-mscrypto. </li> - -<br><li>October 14 2003<br> +<li>October 14 2003<br> The new <a href="download.html">XML Security Library 1.2.1</a> release includes a special "hack" for supporting ID attributes with invalid values in Visa 3D; fixed processing of root element node siblings (bug #124245); template functions for creating <enc:KeyReference/> and <enc:DataReference/&gt - nodes (Wouter); new "XMLSEC_DOCDIR" environment variable + nodes (Wouter); new "XMLSEC_DOCDIR" environment variable for ./configure script; updated README files for xmlsec-crypto libraries. </li> - -<br><li>September 30 2003<br> +<li>September 30 2003<br> The major change in the new <a href="download.html">XML Security Library 1.2.0</a> release is the MS Crypto API support implemented by Wouter. Other changes include loading public keys from certificates and improved namespaces @@ -200,16 +237,14 @@ for xmlsec command line utility; updated online XML DSig Verifier; updated docs and man pages. </li> - -<br><li>September 17 2003<br> +<li>September 17 2003<br> The new <a href="download.html">XML Security Library 1.1.2</a> release introduces dynamical crypto engines loading based on ltdl library (including tutorial, API reference and documentation updates); adds an ability to build multiple xmlsec-crypto libraries in one build on Windows; fixes minor problems in test suite and multiple warnings when building on Sun Solaris. </li> - -<br><li>August 21 2003<br> +<li>August 21 2003<br> The new <a href="download.html">XML Security Library 1.1.1</a> release adds <X509Data/> node templates support to xmlsec-nss (Tej); includes new functions for reading keys and certificates from memory @@ -217,8 +252,7 @@ in xmlsec configuration files (Roumen) and a bug in URI attribute XInclude processing. </li> - -<br><li>August 5 2003<br> +<li>August 5 2003<br> A great patch from Tej that dramaticaly improves xmlsec-nss functionality deserves a minor version number update :). In addition to that, the new <a href="download.html">XML Security Library 1.1.0</a> @@ -228,8 +262,7 @@ and some useful commands for xmlsec developers in a new "HACKING" file). </li> - -<br><li>July 15 2003<br> +<li>July 15 2003<br> There were several minor patches during last month and it's time to do a new <a href="download.html">XML Security Library 1.0.4</a> release to pick up them: x509 certificates names comparison function @@ -239,13 +272,12 @@ <a href="http://oreillynet.com/oscon2003/">OSCON 2003</a> last week. You can download slides <a href="http://www.aleksey.com/xmlsec/extra/xmlsec_oscon_2003.ppt">here</a>. </li> - -<br><li>June 17 2003<br> +<li>June 17 2003<br> The <a href="download.html">XML Security Library 1.0.3</a> release adds PKCS#8 support for xmlsec-openssl (Tej) and fixes several configuration and portability problems. </li> -<br><li>June 03 2003<br> +<li>June 03 2003<br> The <a href="download.html">XML Security Library 1.0.2</a> release includes several fixes in xmlsec-nss configuration and linking options (Tej), PKCS21 files reading improvements, @@ -254,7 +286,7 @@ right now and not configured in by default. Please, don't use or even compile it in. </li> -<br><li>April 28 2003<br> +<li>April 28 2003<br> The <a href="download.html">XML Security Library 1.0.1</a> release is a maintanance release. It fixes several compilation problems found in 1.0.0 release on the following platforms: @@ -264,7 +296,7 @@ LibXML2/LibXSLT/XMLSec libraries).If you don't use one of these platforms then you'll see no difference. </li> -<br><li>April 17 2003<br> +<li>April 17 2003<br> The <a href="download.html">XML Security Library 1.0.0</a> release is the major upgrade from 0.0.X version. The new version includes multiple crypto engines support @@ -274,7 +306,7 @@ new or updated documentation (tutorial, API reference manual and examples). </li> -<br><li>April 10 2003<br> +<li>April 10 2003<br> The final release candidate <a href="download.html">XML Security Library 1.0.0rc1</a> is available for download. This release includes minor API polishing, @@ -286,7 +318,7 @@ If no major problems will be found then the 1.0.0 release should happen in a week from now. </li> -<br><li>April 8 2003<br> +<li>April 8 2003<br> The new <a href="download.html">XML Security Library 0.0.15</a> release is a preparation for the upcomming 1.0.0 release and provides an ability to have both versions installed together @@ -295,20 +327,7 @@ the regression test suite and a fix for minor bug in reading binary keys on Windows. </li> -<br><li>April 6 2003<br><table><tr> -<td> - <a href="http://conferences.oreilly.com/oscon/"><img border="0" src="http://conferences.oreillynet.com/images/os2003/banners/130x40.gif" alt="O'Reilly Open Source Convent3Dion"></a> - </td> -<td width="10"></td> -<td valign="top">It seems that I'll be giving a - <a href="http://conferences.oreillynet.com/cs/os2003/view/e_sess/3838">presentation</a> - at the <a href="http://conferences.oreilly.com/oscon/">O'Reilly Open Source Convention 2003</a> - about XML Security and XML Security Library. Stop by to say "Hello!". - </td> -</tr></table> -</li> - -<br><li>March 26 2003<br><a href="download.html">XML Security Library 0.1.1</a> +<li>March 26 2003<br><a href="download.html">XML Security Library 0.1.1</a> release is the first release candidate for the new stable version of XML Security Library. A lot of internal changes including enchanced processing controls, performance improvements @@ -319,13 +338,13 @@ release candidate and it's very important for me to get your feedback about it. Also if you are missing some features in the library it's the best time to ask! - </li> -<br><li>March 19 2003<br><a href="download.html">XML Security Library 0.0.14</a> release +</li> +<li>March 19 2003<br><a href="download.html">XML Security Library 0.0.14</a> release includes several minor bugfixes in references URI processing, binary transforms processing and xmlsec command line utility. - </li> -<br><li>March 5 2003<br> +</li> +<li>March 5 2003<br> The <a href="download.html">XML Security Library 0.1.0</a> release creates a framework for integrating XML Security Library with almost any crypto engine and even combining multiple crypto @@ -337,187 +356,200 @@ However, if you plan to use XML Security Library with a new crypto engine and plan to write some code then you can start now. The "backend" API is pretty stable and I do not expect major - changes. - </li> -<br><li>February 21 2003<br><a href="download.html">XML Security Library 0.0.13</a> release + changes. +</li> +<li>February 21 2003<br><a href="download.html">XML Security Library 0.0.13</a> release fixes incorrect processing of signatures with more than 3 binary transforms in a row, improved pkcs12 files support and minor documentation update. - </li> -<br><li>January 26 2003<br> +</li> +<li>January 26 2003<br> Two major fixes in <a href="http://www.aleksey.com/pipermail/xmlsec/2003/000507.html">HMAC</a> and <a href="http://www.aleksey.com/pipermail/xmlsec/2003/000516.html">DES/AES</a> algorithms are the reason for the new <a href="download.html">XML Security Library 0.0.12</a> release. Also there are few other minor features and bug fixes (see Changelog in the distribution for more details). - </li> -<br><li>December 3 2002<br> +</li> +<li>December 3 2002<br> New <a href="download.html">XML Security Library 0.0.11</a> release fixes a <a href="http://www.aleksey.com/pipermail/xmlsec/2002/000368.html">major problem</a> in Reference URI attribute processing. This release also includes several Win32 build process fixes from Igor. - </li> -<br><li>October 20 2002<br> +</li> +<li>October 20 2002<br> Almost two months from previous release and a lot of minor enchancements are good reasons for the new - <a href="download.html">XML Security Library 0.0.10</a> release:<br> - - added a way to specify "current time" to verify certificates - expiration against it;<br> - - implemented XML results output format for the xmlsec command - line utility;<br> - - fixed XMLDSig examples and added a new one (thanks to Devin - Heitmueller);<br> - - resolved static link issue and a bunch of other improvements - for Win32 platform builds (Igor Zlatkovic);<br> - - added dynamic linking option for xmlsec command line utility - to help Debian port (John Belmonte);<br> - - minor bug fixes. - </li> -<br><li>August 26 2002<br> + <a href="download.html">XML Security Library 0.0.10</a> release: + <ul> +<li>Added a way to specify "current time" to verify certificates + expiration against it;</li> + <li>Implemented XML results output format for the xmlsec command + line utility;</li> + <li>Fixed XMLDSig examples and added a new one (thanks to Devin + Heitmueller);</li> + <li>Resolved static link issue and a bunch of other improvements + for Win32 platform builds (Igor Zlatkovic);</li> + <li>Added dynamic linking option for xmlsec command line utility + to help Debian port (John Belmonte);</li> + <li>Minor bug fixes.</li> + </ul> +</li> +<li>August 26 2002<br> I've completelly screwed up. The release 0.0.8 was totally broken (I've simply packaged files from wrong CVS :) ) and I am doing a new <a href="download.html">0.0.9 release</a> - to fix all the problems. Please upgrade to the new version + to fix all the problems. Please upgrade to the new version if you use any of previous XML Security Library releases.<br> - I am really sorry for my stupid mistakes and I promise to never - do releases on Friday :( <br> - And special thanks to Ferrell Moultrie for pointing this out. - </li> -<br><li>August 23 2002<br><a href="download.html">XML Security Library 0.0.8</a> is released:<br> - - New errors reporting system is created and all the code is updated;<br> - - Added XPointer transform support;<br> - - Major enveloped and XPath transforms performance improvements;<br> - - Updated XPath 2 Filter implementation to reflect latest W3C specifications;<br> - - <a href="xmlsec-man.html">Man page</a> for xmlsec utility is written;<br> - - Automatically generated <a href="documentation.html">API Reference - Manual</a> (more than 370 symbols) is created;<br> - - Minor Win32 bug fixes from Igor;<br> - - Debian port from John Belmonte.<br> -</li> -<br><li>July 11 2002<br> + I am really sorry for my stupid mistakes and I promise to never + do releases on Friday :(<br> + And special thanks to Ferrell Moultrie for pointing this out. +</li> +<li>August 23 2002<br><a href="download.html">XML Security Library 0.0.8</a> is released: + <ul> +<li>New errors reporting system is created and all the code is updated;</li> + <li>Added XPointer transform support;</li> + <li>Major enveloped and XPath transforms performance improvements;</li> + <li>Updated XPath 2 Filter implementation to reflect latest W3C specifications;</li> + <li> +<a href="xmlsec-man.html">Man page</a> for xmlsec utility is written;</li> + <li>Automatically generated <a href="documentation.html">API Reference</a> +</li> + <li>Manual (more than 370 symbols) is created;</li> + <li>Minor Win32 bug fixes from Igor;</li> + <li>Debian port from John Belmonte.</li> + </ul> +</li> +<li>July 11 2002<br> XML Security Library <a href="documentation.html">documentation</a> created. - </li> -<br><li>July 10 2002<br> +</li> +<li>July 10 2002<br> A new <a href="download.html">XML Security Library 0.0.7</a> release includes all small bug fixes for last month and a new LibXML2 library with improved canonicalization. - </li> -<br><li>May 28 2002<br> +</li> +<li>May 28 2002<br> New LibXML 2.4.22 is <a href="http://xmlsoft.org/news.html">released</a> and new <a href="download.html">XML Security Library 0.0.6</a> is - released:<br> - - Win32 port is added: the idea and most of the configuration scripts + released: + <ul> +<li>Win32 port is added: the idea and most of the configuration scripts code was taken from LibXML2 (written by Igor Zlatkovic). I modified - original files so all errors are mine, not Igor's.<br> - - Many different performance optimizations (especially for RSA/DSA - algorithms and enveloped signatures).<br> - - <a href="http://www.w3.org/TR/xmldsig-filter2/">XPath Filter 2</a> + original files so all errors are mine, not Igor's.</li> + <li>Many different performance optimizations (especially for RSA/DSA + algorithms and enveloped signatures).</li> + <li> +<a href="http://www.w3.org/TR/xmldsig-filter2/">XPath Filter 2</a> and <a href="http://lists.w3.org/Archives/Public/w3c-ietf-xmldsig/2002AprJun/0001.html">Alternative XPath Filter</a> (not compiled by default, use --enable-altxpath configuration - switch if you need this transform) support is added. <br> - - Custom network protocol handler support is added. It is similar - to custom protocol handlers in LibXML2 but applied to binary files.<br> - - Separated XML Security Library RPM into xmlsec and xmlsec-devel - (suggested by Devin Heitmueller).<br> + switch if you need this transform) support is added. </li> + <li>Custom network protocol handler support is added. It is similar + to custom protocol handlers in LibXML2 but applied to binary files.</li> + <li>Separated XML Security Library RPM into xmlsec and xmlsec-devel + (suggested by Devin Heitmueller).</li> + </ul> </li> - <br><li>May 14 2002<br> +<li>May 14 2002<br> I've checked in new code for plugging in custom input handlers (similar to ones that exist in LibXML2). The downside is that you have to use <a href="ftp://xmlsoft.org/cvs-snapshot.tar.gz">daily LibXML2 snapshot</a> to compile daily XML Security Library snapshot. - </li> - <br><li>April 28 2002<br><a href="download.html">XMLSec 0.0.5</a> released: <br> - - Big external and internal cleanup. Now the API looks much more consistent +</li> +<li>April 28 2002<br><a href="download.html">XMLSec 0.0.5</a> released: + <ul> +<li>Big external and internal cleanup. Now the API looks much more consistent and I hope simple. I hope to declare API frozen in the next couple weeks. - Meantime, all comments and suggestions are welcome!<br> - - Added <a href="http://www.w3.org/TR/xmlenc-core/#sec-Alg-SymmetricKeyWrap"> - symmetric key wrap</a> (aes, des) support.<br> - - Added RIPEMD-160 support.<br> -</li> - <br><li>April 19 2002<br> - Minor release <a href="download.html">XMLSec 0.0.4</a> with main - goal to fix broken RPM:<br> - - The RPM is recompiled using OpenSSL 0.9.6. The previous - version was compiled with OpenSSL 0.9.7 but I got few complains - that there are no RPMs for 0.9.7 yet. The downsides of using 0.9.6 are - some functionality limitations for XML Encryption (no AES support, - incorrect padding mode for DES, etc.). If you want to use - XML Encryption it is better to compile the library from sources - and use OpenSSL 0.9.7<br> - - The testDSig, testEnc and testKeys scripts merged into standalone - "xmlsec" application.<br> - - A couple minor bugs fixed.<br> -</li> - <br><li>April 17 2002<br> + Meantime, all comments and suggestions are welcome!</li> + <li>Added <a href="http://www.w3.org/TR/xmlenc-core/#sec-Alg-SymmetricKeyWrap"> + symmetric key wrap</a> (aes, des) support.</li> + <li>Added RIPEMD-160 support.</li> + </ul> +</li> +<li>April 19 2002<br> + Minor release <a href="download.html">XMLSec 0.0.4</a> with main + goal to fix broken RPM: + <ul> +<li>The RPM is recompiled using OpenSSL 0.9.6. The previous + version was compiled with OpenSSL 0.9.7 but I got few complains + that there are no RPMs for 0.9.7 yet. The downsides of using 0.9.6 are + some functionality limitations for XML Encryption (no AES support, + incorrect padding mode for DES, etc.). If you want to use + XML Encryption it is better to compile the library from sources + and use OpenSSL 0.9.7</li> + <li>The testDSig, testEnc and testKeys scripts merged into standalone + "xmlsec" application.</li> + <li>A couple minor bugs fixed.</li> + </ul> +</li> +<li>April 17 2002<br> Installed <a href="http://www.aleksey.com/pipermail/xmlsec"> - xmlsec mailing list.</a><br> -</li> - <br><li>April 16 2002<br> - A lot of changes and time for new release <a href="download.html">XMLSec 0.0.3</a>:<br> - - The first release that includes <a href="xmlenc.html">XML Encryption support</a>! - The bad news is that most of new features require <a href="download.html">OpenSSL 0.9.7</a> which is - not officially released yet.<br> - - Options to enable/disable support for particular algorithms were - added to the <code>./configure</code> script.<br> - - All transforms header files were consolidated in transforms.h - <br> -</li> - <br><li>April 6 2002<br> - The <a href="download.html">RPM packages</a> are now available.<br><br> -</li> - <li>April 5 2002<br> - Test suite updates and new minor release <a href="download.html">XML Security Library 0.0.2a.</a> - <br> - New <a href="http://lists.w3.org/Archives/Public/w3c-ietf-xmldsig/2002AprJun/0017.html"> - interoperability tests</a> - were provided by Merlin Hughes. XML Security Library successfully passed - <b>all tests </b>after small test program tweaking and adding workaround -for <a href="http://groups.google.com/groups?hl=en&threadm=96uofi%2417gh%241%40FreeBSD.csie.NCTU.edu.tw&rnum=2&prev=/groups%3Fq%3DX509_STORE_add_crl%26hl%3Den%26selm%3D96uofi%252417gh%25241%2540FreeBSD.csie.NCTU.edu.tw%26rnum%3D2"> - OpenSSL CRL problem.</a> - These new tests are included into the distribution and previous Merlin's -test suites are removed. Because of these changes I decided to generate -a new package that also will include the <a href="http://www.aleksey.com/xmlsec/xmldsig-verifier.html"> -Online XML Digital Signature Verifier</a> - code.<br><br> -</li> - <li>April 3 2002<br> - The <a href="http://www%2Caleksey.com/xmlsec/xmldsig-verifier.html">Online XML Digital Signature Verifier</a> - is available! You can use this tool to verify your XML Digital Signatures - from online Web form or using a simple Perl script. The idea was stolen -from <a href="http://lists.w3.org/Archives/Public/w3c-ietf-xmldsig/2002AprJun/0006.html"> - Manoj K. Srivastava.</a><br><br> -</li> - <li>March 31 2002<br> - Some major changes and a time for new release: <a href="download.html"> - XML Security Library 0.0.2</a> - . Now XML Security Library supports <b>all</b> MUST/SHOULD/MAY <a href="xmldsig-interop.html"> - features</a> - from XMLDSig standard!<br> - - Added X509 certificates and certificate chains support<br> - - The detailed signature generation/verification results are made available - to the application<br> - - RetrievalMethod, Manifests and <a href="http://www.ietf.org/internet-drafts/draft-eastlake-xmldsig-uri-02.txt"> - additional algorithms</a> - are added<br> - - The Transforms and KeyInfo code was significantly re-writen with a goal - to separate it from XMLDSig logic for better re-usability (in XML Encryption, - etc.)<br><br> -</li> - <li>March 18 2002<br> - - Fixed wrong way shift of the DSA digest result bug found by Philipp - Gühring. This bug is critical and I have to do a <a href="download/xmlsec-0.0.1a.tar.gz"> - new build.</a> - <br> - - Added "--with-pedantic" configuration option and fixed all but "unused - variable" warnings (bug reported by Daniel Veillard).<br><br> -</li> - <li>March 17 2002<br> - The <a href="download.html">XML Security Library 0.0.1</a> - is released and available for download! Please try it out and send -me your comments/suggestions. </li> - - </ul> + xmlsec mailing list.</a> +</li> +<li>April 16 2002<br> + A lot of changes and time for new release <a href="download.html">XMLSec 0.0.3</a>: + <ul> +<li>The first release that includes <a href="xmlenc.html">XML Encryption support</a>! + The bad news is that most of new features require <a href="download.html">OpenSSL 0.9.7</a> which is + not officially released yet.</li> + <li>Options to enable/disable support for particular algorithms were + added to the <code>./configure</code> script.</li> + <li>All transforms header files were consolidated in "transforms.h".</li> + </ul> +</li> +<li>April 6 2002<br> + The <a href="download.html">RPM packages</a> are now available. +</li> +<li>April 5 2002<br> + Test suite updates and new minor release <a href="download.html">XML + Security Library 0.0.2a.</a><br> + New <a href="http://lists.w3.org/Archives/Public/w3c-ietf-xmldsig/2002AprJun/0017.html"> + interoperability tests</a> + were provided by Merlin Hughes. XML Security Library successfully passed + <b>all tests </b>after small test program tweaking and adding workaround + for <a href="http://groups.google.com/groups?hl=en&threadm=96uofi%2417gh%241%40FreeBSD.csie.NCTU.edu.tw&rnum=2&prev=/groups%3Fq%3DX509_STORE_add_crl%26hl%3Den%26selm%3D96uofi%252417gh%25241%2540FreeBSD.csie.NCTU.edu.tw%26rnum%3D2"> + OpenSSL CRL problem.</a> + These new tests are included into the distribution and previous Merlin's + test suites are removed. Because of these changes I decided to generate + a new package that also will include the <a href="http://www.aleksey.com/xmlsec/xmldsig-verifier.html">Online + XML Digital Signature Verifier</a> code. +</li> +<li>April 3 2002<br> + The <a href="http://www%2Caleksey.com/xmlsec/xmldsig-verifier.html">Online XML + Digital Signature Verifier</a> is available! You can use this tool to + verify your XML Digital Signatures from online Web form or using a simple + Perl script. The idea was stolen from <a href="http://lists.w3.org/Archives/Public/w3c-ietf-xmldsig/2002AprJun/0006.html">Manoj K. + Srivastava.</a> +</li> +<li>March 31 2002<br> + Some major changes and a time for new release: <a href="download.html">XML Security + Library 0.0.2</a>. Now XML Security Library supports <b>all</b> MUST/SHOULD/MAY + <a href="xmldsig-interop.html">features</a> from XMLDSig standard! + <ul> +<li>Added X509 certificates and certificate chains support</li> + <li>The detailed signature generation/verification results are made available + to the application</li> + <li>RetrievalMethod, Manifests and <a href="http://www.ietf.org/internet-drafts/draft-eastlake-xmldsig-uri-02.txt">additional + algorithms</a> are added</li> + <li>The Transforms and KeyInfo code was significantly re-writen with a goal + to separate it from XMLDSig logic for better re-usability (in XML Encryption, + etc.)</li> + </ul> +</li> +<li>March 18 2002<br><ul> +<li>Fixed wrong way shift of the DSA digest result bug found by Philipp + Gühring. This bug is critical and I have to do a <a href="download/xmlsec-0.0.1a.tar.gz">new + build.</a> +</li> + <li>Added "--with-pedantic" configuration option and fixed all but "unused + variable" warnings (bug reported by Daniel Veillard).</li> + </ul> +</li> +<li>March 17 2002<br> + The <a href="download.html">XML Security Library 0.0.1</a> is released + and available for download! Please try it out and send + me your comments/suggestions. +</li> +</ul> </td></tr></table></td> </tr></table></body> </html> |