From 9235adbf47cb5bd045742e762e3d17e31b2ed553 Mon Sep 17 00:00:00 2001
From: Richard Levitte <levitte@openssl.org>
Date: Thu, 8 Feb 2001 17:59:29 +0000
Subject: Add the -VAfile option to 'openssl ocsp'.  This option will give the
 client code certificates to use to only check response signatures. I'm not
 entirely sure if the way I just implemented the verification is the right way
 to do it, and would be happy if someone would like to review this.

---
 CHANGES | 5 +++++
 1 file changed, 5 insertions(+)

(limited to 'CHANGES')

diff --git a/CHANGES b/CHANGES
index 136dde4884..4c59e64dbf 100644
--- a/CHANGES
+++ b/CHANGES
@@ -3,6 +3,11 @@
 
  Changes between 0.9.6 and 0.9.7  [xx XXX 2000]
 
+  *) Add the option -VAfile to 'openssl ocsp', so the user can give the
+     OCSP client a number of certificate to only verify the response
+     signature against.
+     [Richard Levitte]
+
   *) Add new function BN_rand_range(), and fix DSA_sign_setup() to prevent
      Bleichenbacher's DSA attack.
      [Ulf Moeller, Bodo Moeller]
-- 
cgit v1.2.3