diff options
| author | Theo Buehler <tb@openbsd.org> | 2023-05-10 02:20:55 -0600 |
|---|---|---|
| committer | Theo Buehler <tb@openbsd.org> | 2023-05-10 02:21:38 -0600 |
| commit | b24deefa4271f6fa31e0ea842774e7c6ce859916 (patch) | |
| tree | 2d5efd2c5b882d6315ed6b42e4f9cb1f87351df6 /ChangeLog | |
| parent | bfc51905a91739c3955fe458b8eacb8bf8300543 (diff) | |
| download | portable-b24deefa4271f6fa31e0ea842774e7c6ce859916.tar.gz portable-b24deefa4271f6fa31e0ea842774e7c6ce859916.tar.bz2 portable-b24deefa4271f6fa31e0ea842774e7c6ce859916.zip | |
Update ChangeLog
Diffstat (limited to 'ChangeLog')
| -rw-r--r-- | ChangeLog | 4 |
1 files changed, 3 insertions, 1 deletions
| @@ -45,6 +45,7 @@ LibreSSL Portable Release Notes: | |||
| 45 | - Added endbr64 instructions to amd64 assembly. | 45 | - Added endbr64 instructions to amd64 assembly. |
| 46 | - Imported RFC 5280 policy checking code from BoringSSL and used it | 46 | - Imported RFC 5280 policy checking code from BoringSSL and used it |
| 47 | to replace the old exponential time code. | 47 | to replace the old exponential time code. |
| 48 | - Converted more of libcrypto to use CBB/CBS. | ||
| 48 | * New features | 49 | * New features |
| 49 | - Added support for truncated SHA-2 and for SHA-3. | 50 | - Added support for truncated SHA-2 and for SHA-3. |
| 50 | * Compatibility changes | 51 | * Compatibility changes |
| @@ -62,13 +63,14 @@ LibreSSL Portable Release Notes: | |||
| 62 | - The explicitText user notice uses UTF8String instead of VisibleString | 63 | - The explicitText user notice uses UTF8String instead of VisibleString |
| 63 | to reduce the risk of emitting certificates with invalid DER-encoding. | 64 | to reduce the risk of emitting certificates with invalid DER-encoding. |
| 64 | * Bug fixes | 65 | * Bug fixes |
| 65 | - Correctly reduce negative input to BN_mod_exp2_mont(). | 66 | - Correctly handle negative input to various BIGNUM functions. |
| 66 | - Ensure ERR_load_ERR_strings() does not set errno unexpectedly. | 67 | - Ensure ERR_load_ERR_strings() does not set errno unexpectedly. |
| 67 | - Fix error checking of i2d_ECDSA_SIG() in ossl_ecdsa_sign(). | 68 | - Fix error checking of i2d_ECDSA_SIG() in ossl_ecdsa_sign(). |
| 68 | - Fixed detection of extended operations (XOP) on AMD hardware. | 69 | - Fixed detection of extended operations (XOP) on AMD hardware. |
| 69 | - Ensure Montgomery exponentiation is used for the initial RSA blinding. | 70 | - Ensure Montgomery exponentiation is used for the initial RSA blinding. |
| 70 | - Policy is always checked in X509 validation. Critical policy extensions | 71 | - Policy is always checked in X509 validation. Critical policy extensions |
| 71 | are no longer silently ignored. | 72 | are no longer silently ignored. |
| 73 | - Fixed error handling in tls_check_common_name(). | ||
| 72 | * Documentation improvements | 74 | * Documentation improvements |
| 73 | - Improved documentation of BIO_ctrl(3), BIO_set_info_callback(3), | 75 | - Improved documentation of BIO_ctrl(3), BIO_set_info_callback(3), |
| 74 | BIO_get_info_callback(3), BIO_method_type(3), and BIO_method_name(3). | 76 | BIO_get_info_callback(3), BIO_method_type(3), and BIO_method_name(3). |