
 BabaSSL CHANGES
 _______________

 This is a high-level summary of the most important changes.
 For a full list of changes, see the git commit log.

 Changes between 8.3.1 and 8.3.2 [2022年12月12日]

  *) 修复C90下的编译问题

  *) 修复SSL_CTX_dup()函数的bug

  *) 修复NTLS ServerKeyExchange消息的RSA签名问题

  *) 修复apps/x509的SM2证书签名bug

  *) 支持新特性 - 添加导出符号前缀

 Changes between 8.3.0 and 8.3.1 [2022年4月2日]

  *) 修改EC-ElGamal的bug

  *) 修复2处SM2签名算法的实现bug [0x9527-zhou]

  *) 修复CVE-2022-0778

 Changes between 8.2.0 and 8.3.0 [28 Feb 2022]

  *) Fix CVE-2021-4160

  *) Support wrap mode in `openssl enc` command

  *) ASYNC: Fixes for nested job creation

  *) Support TLS certificate compression (RFC 8879)

  *) A bundle of upstream patches are backported [hustliyilin]

  *) Support NTLS session ticket

  *) Support integrity algorithm 128-EIA3

  *) Support NTLS client authentication

  *) Remove ARIA cipher

  *) Support software random generator in compliance with Chinese SCA

  *) Support PHE algorithm EC-Elgamal

  *) Support RSA_SM4 cipher suites for NTLS

  *) SM3 and SM4 hardware acceleration on aarch64

  *) SM4 optimization for non-asm mode

 Changes between 8.1.3 and 8.2.0 [19 May 2021]

  *) Support NTLS(formal GM double cert) handshake processing, GB/T 38636-2020 TLCP

  *) Support delegated credential

  *) Update BoringSSL QUIC API

  *) Fix CVE-2021-3449

  *) Fix CVE-2021-23840 and CVE-2021-23841

 Changes with 8.1.3 [15 Jan 2021]

  *) Support more QUIC related APIs

  *) Fix CVE-2020-1971

  *) Fix CVE-2020-1967

  *) Give a default sm2-id for sm2 sign process which not set sm-id

  *) Support BoringSSL QUIC API

  *) Fix up problems of CVE-2019-1551

  *) Support TLS1.3-GM cipher suite, see https://datatracker.ietf.org/doc/html/rfc8998 for more information

  *) Support global session cache, asynchronous session lookup

  *) Support SM2 cert sign, SM2 speed testing for babassl/apps

  *) Support dynamic cipher, make EVP api compatible with lua ffi

  *) Fork from OpenSSL version 1.1.1d
