diff options
author | Brent Cook <bcook@openbsd.org> | 2015-09-13 19:46:54 -0500 |
---|---|---|
committer | Brent Cook <bcook@openbsd.org> | 2015-09-13 19:46:54 -0500 |
commit | eb604d1d544636b1190fb83f9407a62837617b31 (patch) | |
tree | a1cc996f4ed78c0148b46094a16f3411fb25a4d8 | |
parent | c7ae7c0c9dfacbf93c939f14665d861495595a32 (diff) | |
download | portable-eb604d1d544636b1190fb83f9407a62837617b31.tar.gz portable-eb604d1d544636b1190fb83f9407a62837617b31.tar.bz2 portable-eb604d1d544636b1190fb83f9407a62837617b31.zip |
update changelog with latest
-rw-r--r-- | ChangeLog | 17 |
1 files changed, 17 insertions, 0 deletions
@@ -57,6 +57,10 @@ LibreSSL Portable Release Notes: | |||
57 | https://cpunks.org/pipermail/cypherpunks/2015-September/009007.html | 57 | https://cpunks.org/pipermail/cypherpunks/2015-September/009007.html |
58 | for a longer discussion. | 58 | for a longer discussion. |
59 | 59 | ||
60 | * Fixed a bug in ECDH_compute_key that can lead to silent truncation | ||
61 | of the result key without error. A coding error could cause software | ||
62 | to use much shorter keys than intended. | ||
63 | |||
60 | * Removed support for DTLS_BAD_VER. Pre-DTLSv1 implementations are no | 64 | * Removed support for DTLS_BAD_VER. Pre-DTLSv1 implementations are no |
61 | longer supported. | 65 | longer supported. |
62 | 66 | ||
@@ -64,8 +68,21 @@ LibreSSL Portable Release Notes: | |||
64 | Previous releases removed dynamic and builtin engine support | 68 | Previous releases removed dynamic and builtin engine support |
65 | already. | 69 | already. |
66 | 70 | ||
71 | * Added Certplus CA root certificate to the default cert.pem file. | ||
72 | |||
73 | * New interface OPENSSL_cpu_caps is provided that does not allow | ||
74 | software to inadvertently modify cpu capability flags. | ||
75 | OPENSSL_ia32cap and OPENSSL_ia32cap_loc are removed. | ||
76 | |||
67 | * The out_len argument of AEAD changed from ssize_t to size_t. | 77 | * The out_len argument of AEAD changed from ssize_t to size_t. |
68 | 78 | ||
79 | * Deduplicated DTLS code, sharing bugfixes and improvements with | ||
80 | TLS. | ||
81 | |||
82 | * Converted 'nc' to use libtls for client and server operations; it is | ||
83 | included in the libressl-portable distribution as an example of how | ||
84 | to use the library. | ||
85 | |||
69 | 2.2.3 - Bug fixes, build enhancements | 86 | 2.2.3 - Bug fixes, build enhancements |
70 | 87 | ||
71 | * LibreSSL 2.2.2 incorrectly handles ClientHello messages that do not | 88 | * LibreSSL 2.2.2 incorrectly handles ClientHello messages that do not |