From 07bc1b7c5e5624264c7b3e67fa959b67803ea337 Mon Sep 17 00:00:00 2001
From: David Blacka <davidb@verisign.com>
Date: Thu, 5 Feb 2009 05:06:32 +0000
Subject: [PATCH] update changelog.

git-svn-id: https://svn.verisignlabs.com/jdnssec/tools/trunk@124 4cbd57fe-54e5-0310-bd9a-f30fe5ea5e6e
---
 ChangeLog | 21 ++++++++++++++++++++-
 1 file changed, 20 insertions(+), 1 deletion(-)

diff --git a/ChangeLog b/ChangeLog
index ce3434b..99d7337 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,6 +1,25 @@
+2009-02-04  David Blacka  <davidb@fury.blacka.com>
+
+	* SignUtils: use JDK-native SHA-256 code instead of broken
+	contributed implementation.
+
+	* DnsKeyAlgorithm: Add RSASHA256 and RSASHA512 algorithm, guessing
+	at the code points.  Note, these require Java 5 or later, or an
+	alternate crypto provider.
+
+	* ZoneUtils: add a method to find specific RRs in a list of RRs
+	or RRsets.
+
+	* SignZone: make jdnssec-signzone a bit more aggressive in finding
+	keys. Now it will look for keyfiles matching keys at the zone
+	apex, and, failing that, just look for keyfiles named after the
+	zone.  Specifying any keys at all on the command line will
+	override this behavior.
+
+
 2009-02-01  David Blacka  <davidb@verisignlabs.com>
 
-	* DnsKeyAlgorithms: add official aliases from RFC 5155.
+	* DnsKeyAlgorithm: add official aliases from RFC 5155.
 
 	* JCEDnsSecSigner: refactor zone signing methods to remove
 	duplicate code.