New -set_serial options to 'req' and 'x509'. Remove the old broken bio read of serial numbers in the 'ca' index file. This would choke if a revoked certificate was specified with a negative serial number. Fix typo in uid.c

commit: acba75c59dc6c42b39caab6168d1284ae0f09e8f [log] [tgz]
author: Dr. Stephen Henson <steve@openssl.org> Mon Feb 19 13:38:32 2001 +0000
committer: Dr. Stephen Henson <steve@openssl.org> Mon Feb 19 13:38:32 2001 +0000
tree: fdb146bd39e5837c19488c3512861fec2fbb9179
parent: 267a1927eb7207620069418efac833335d5b9ffd [diff] [blame]
diff --git a/CHANGES b/CHANGES
index 14d0305..79e9dad 100644
--- a/CHANGES
+++ b/CHANGES

@@ -3,6 +3,13 @@
 
  Changes between 0.9.6 and 0.9.7  [xx XXX 2000]
 
+  *) New option -set_serial to 'req' and 'x509' this allows the serial
+     number to use to be specified on the command line. Previously self
+     signed certificates were hard coded with serial number 0 and the 
+     CA options of 'x509' had to use a serial number in a file which was
+     auto incremented.
+     [Steve Henson]
+
   *) Avoid false positives in memory leak detection code (crypto/mem_dbg.c)
      due to incorrect handling of multi-threading:
commit	acba75c59dc6c42b39caab6168d1284ae0f09e8f	[log] [tgz]
author	Dr. Stephen Henson <steve@openssl.org>	Mon Feb 19 13:38:32 2001 +0000
committer	Dr. Stephen Henson <steve@openssl.org>	Mon Feb 19 13:38:32 2001 +0000
tree	fdb146bd39e5837c19488c3512861fec2fbb9179
parent	267a1927eb7207620069418efac833335d5b9ffd [diff] [blame]