From 33b1a4c218c5f8bd27c3fbce8012b4b9fb591b65 Mon Sep 17 00:00:00 2001
From: Richard Levitte <levitte@openssl.org>
Date: Wed, 20 Sep 2000 14:47:04 +0000
Subject: [PATCH 1/5] Wrong variable used.  It's funny how some bugs take a
 long time getting triggered...

---
 util/mkdef.pl | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/util/mkdef.pl b/util/mkdef.pl
index b673e05a7..0ac793555 100755
--- a/util/mkdef.pl
+++ b/util/mkdef.pl
@@ -867,7 +867,7 @@ sub update_numbers
 			$new_syms++;
 			printf OUT "%s%-40s%d\t%s\n","",$s, ++$start_num,$i;
 			if (exists $r{$s}) {
-				($s, $i) = split /\\/,$r{$sym};
+				($s, $i) = split /\\/,$r{$s};
 				printf OUT "%s%-40s%d\t%s\n","",$s, $start_num,$i;
 			}
 		}

From edb0d643673c1dd853c0d73ff42708b4fb7f7dec Mon Sep 17 00:00:00 2001
From: Richard Levitte <levitte@openssl.org>
Date: Wed, 20 Sep 2000 15:10:16 +0000
Subject: [PATCH 2/5] AIX doesn't like ftime() either.

---
 apps/speed.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/speed.c b/apps/speed.c
index d20038e1b..1214de39d 100644
--- a/apps/speed.c
+++ b/apps/speed.c
@@ -87,7 +87,7 @@
 #elif !defined(MSDOS) && (!defined(VMS) || defined(__DECC))
 # define TIMES
 #endif
-#if !defined(_UNICOS) && !defined(__OpenBSD__) && !defined(sgi) && !defined(__FreeBSD__) && !(defined(__bsdi) || defined(__bsdi__))
+#if !defined(_UNICOS) && !defined(__OpenBSD__) && !defined(sgi) && !defined(__FreeBSD__) && !(defined(__bsdi) || defined(__bsdi__)) && !defined(_AIX)
 # define TIMEB
 #endif
 

From 50b14a38f5fecacd5c5aa4b8f75280cb03d8b6a2 Mon Sep 17 00:00:00 2001
From: Richard Levitte <levitte@openssl.org>
Date: Wed, 20 Sep 2000 15:15:37 +0000
Subject: [PATCH 3/5] Reports about a few old systems. Reported by Bernhard
 Simon <bs@bsws.zid.tuwien.ac.at>

---
 STATUS | 10 +++++++++-
 1 file changed, 9 insertions(+), 1 deletion(-)

diff --git a/STATUS b/STATUS
index 9452af4b2..78692bf05 100644
--- a/STATUS
+++ b/STATUS
@@ -1,6 +1,6 @@
 
   OpenSSL STATUS                           Last modified at
-  ______________                           $Date: 2000/09/19 16:14:47 $
+  ______________                           $Date: 2000/09/20 15:15:37 $
 
   DEVELOPMENT STATE
 
@@ -75,6 +75,14 @@
 			irix-mips3-cc [engine] (Irix 6.2)	- success
 				One has to do the same as for OpenBSD in
 					speed.c [FIXED]
+			aix-cc (3.2.5, cc 1.3.0.44)		- success
+			aix-gcc (3.2.5, gcc 2.8.1)		- success
+				Both first failed to compiled due to ftime().
+					[FIXED]
+			alpha-cc (V4.0E)			- success
+			alpha-gcc (V4.0E, gcc 2.8.1)		- success
+			ultrix-cc (V4.5)			- success
+			ultrix-gcc (V4.5, gcc 2.8.1)		- success
     o  OpenSSL 0.9.5a: Released on April     1st, 2000
     o  OpenSSL 0.9.5:  Released on February 28th, 2000
     o  OpenSSL 0.9.4:  Released on August   09th, 1999

From b38d84d8678d0ca17e542933fe9611f0ebdbe192 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Bodo=20M=C3=B6ller?= <bodo@openssl.org>
Date: Wed, 20 Sep 2000 15:22:02 +0000
Subject: [PATCH 4/5] Additions for 0.9.6.

---
 NEWS   |  3 ++-
 STATUS | 13 +++++++------
 2 files changed, 9 insertions(+), 7 deletions(-)

diff --git a/NEWS b/NEWS
index 31077d209..65dd4a7d9 100644
--- a/NEWS
+++ b/NEWS
@@ -12,7 +12,8 @@
       o New sign and verify options to 'dgst' application.
       o Support for DER and PEM encoded messages in 'smime' application.
       o New 'rsautl' application, low level RSA utility.
-
+      o MD4 now included.
+      o Bugfix for SSL rollback padding check.
 
   Major changes between OpenSSL 0.9.5 and OpenSSL 0.9.5a:
 
diff --git a/STATUS b/STATUS
index 78692bf05..163cc472a 100644
--- a/STATUS
+++ b/STATUS
@@ -1,6 +1,6 @@
 
   OpenSSL STATUS                           Last modified at
-  ______________                           $Date: 2000/09/20 15:15:37 $
+  ______________                           $Date: 2000/09/20 15:22:02 $
 
   DEVELOPMENT STATE
 
@@ -65,11 +65,12 @@
 				All hpux 10.20 targets succeeded provided -ldl
 					has been changed to -ldld.
 			solaris-sparcv9-gcc (2.6/ultra5)	- success
-			solaris-sparcv9-cc (SunOS 5.7 SC3.0)	- failed
-				Complaints about a number of -x parameters to
-					the compiler and failed to compile an
-					assembler file.  Maybe a too old
-					compiler?
+			[ solaris-sparcv9-cc (SunOS 5.7 SC3.0)	- failed      ]
+			[	Complaints about a number of -x parameters to ]
+			[		the compiler and failed to compile an ]
+			[		assembler file.  Maybe a too old      ]
+			[		compiler? (Yes, apparently:)          ]
+			solaris-sparcv9-cc (SunOS 5.6 SC4.2)	- success
 			FreeBSD (2.2.5-RELEASE)			- success
 			alpha-cc [engine] (OSF1 5.0A)		- success
 			irix-mips3-cc [engine] (Irix 6.2)	- success

From b22bda21a15b46094db379ffba55e3481e60223f Mon Sep 17 00:00:00 2001
From: Richard Levitte <levitte@openssl.org>
Date: Wed, 20 Sep 2000 15:52:26 +0000
Subject: [PATCH 5/5] Add news and a description of the ENGINE part and how
 it's currently distributed.

---
 NEWS          |  4 ++++
 README.ENGINE | 54 +++++++++++++++++++++++++++++++++++++++++++++++++++
 2 files changed, 58 insertions(+)
 create mode 100644 README.ENGINE

diff --git a/NEWS b/NEWS
index 65dd4a7d9..674703e80 100644
--- a/NEWS
+++ b/NEWS
@@ -14,6 +14,10 @@
       o New 'rsautl' application, low level RSA utility.
       o MD4 now included.
       o Bugfix for SSL rollback padding check.
+      o Support for external crypto device[1].
+
+    [1] The support for external crypto devices is currently a separate
+        distribution.  See the file README.ENGINE.
 
   Major changes between OpenSSL 0.9.5 and OpenSSL 0.9.5a:
 
diff --git a/README.ENGINE b/README.ENGINE
new file mode 100644
index 000000000..b30206c0e
--- /dev/null
+++ b/README.ENGINE
@@ -0,0 +1,54 @@
+
+  ENGINE
+  ======
+
+  With OpenSSL 0.9.6, a new component has been added to support external 
+  crypto devices, for example accelerator cards.  The component is called
+  ENGINE, and has still a pretty experimental status and almost no
+  documentation.  It's designed to be faily easily extensible by the
+  calling programs.
+
+  There's currently built-in support for the following crypto devices:
+
+      o CryptoSwift
+      o Compaq Atalla
+      o nCipher CHIL
+
+  A number of things are still needed and are being worked on:
+
+      o An openssl utility command to handle or at least check available
+        engines.
+      o A better way of handling the methods that are handled by the
+        engines.
+      o Documentation!
+
+  What already exists is fairly stable as far as it has been tested, but
+  the test base has been a bit small most of the time.
+
+  Because of this experimental status and what's lacking, the ENGINE
+  component is not yet part of the default OpenSSL distribution.  However,
+  we have made a separate kit for those who want to try this out, to be
+  found in the same places as the default OpenSSL distribution, but with
+  "-engine-" being part of the kit file name.  For example, version 0.9.6
+  is distributed in the following two files:
+
+      openssl-0.9.6.tar.gz
+      openssl-engine-0.9.6.tar.gz
+
+  NOTES
+  =====
+
+  openssl-engine-0.9.6.tar.gz does not depend on openssl-0.9.6.tar, you do
+  not need to download both.
+
+  openssl-engine-0.9.6.tar.gz is usable even if you don't have an external
+  crypto device.  The internal OpenSSL functions are contained in the
+  engine "openssl", and will be used by default.
+
+  No external crypto device is chosen unless you say so.  You have actively
+  tell the openssl utility commands to use it through a new command line
+  switch called "-engine".  And if you want to use the ENGINE library to
+  do something similar, you must also explicitely choose an external crypto
+  device, or the built-in crypto routines will be used, just as in the
+  default OpenSSL distribution.
+