SSL2 implementation), show at least the server certificate.

extensions from RAW to DER to avoid confusion with raw extensions.

Update NEWS file.

Submitted by: Andy Polyakov

because of missing session ID context (so that application programmers
are directly pointed to what they should do differently).

So omit it for now :-(

doesn't have a default value like the "-config" options of other
openssl subprograms.

the secret key before we've encrypted it and using the right NID for RC2-64.
Add various arguments to the experimental programs 'dec' and 'enc' to make
testing less painful.

This stuff has now been tested against Netscape Messenger and it can encrypt
and decrypt S/MIME messages with RC2 (128, 64 and 40 bit) DES and triple DES.

Its still experimental though...

(meaning pointer to char) to des_cblock * (meaning pointer to
array with 8 char elements), which allows the compiler to
do more typechecking.  (The changed argument types were of type
des_cblock * back in SSLeay, and a lot of ugly casts were
used then to turn them into pointers to elements; but it can be
done without those casts.)

Introduce new type const_des_cblock -- before, the pointers rather
than the elements pointed to were declared const, and for
some reason gcc did not complain about this (but some other
compilers did).

which cost me some time to find out about.

find the right RecipientInfo based on the recipient certificate (so would
fail a lot of the time) and fixup cipher structures to correctly (maybe)
modify the AlgorithmIdentifiers.  Largely untested at present... this will be
fixed in due course. Well the stuff was broken to begin with so if its broken
now then you haven't lost anything :-)

unsigned/signed cmp error in asn1parse. Change various pem_all.c args to
use pem_password_cb.

use (certain parts of) OpenSSL.

Submitted by: Oleg Girko

that's what the calling code seems to expect.