From 6693b2ebd83771f8ac02ec1533360444f9f6fb58 Mon Sep 17 00:00:00 2001
From: Theo Buehler <tb@openbsd.org>
Date: Wed, 7 Oct 2020 21:54:19 +0200
Subject: Zap many things that are promised for later

We can mention the new OpenSSL compat API and the validator API
when they're enabled.

The commit message for the validator is out of place.
---
 ChangeLog | 24 ++----------------------
 1 file changed, 2 insertions(+), 22 deletions(-)

diff --git a/ChangeLog b/ChangeLog
index 936ffa4..0edf65e 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -34,29 +34,12 @@ LibreSSL Portable Release Notes:
 	  enabled for both server and client. The OpenSSL TLSv1.3 API is not
 	  yet available and will be provided in an upcoming release.
 
-	* This release also adds a new X509 certificate chain validator
-
-	  The new validator finds multiple validated chains to handle the
-	  modern PKI cases which may frequently have multiple paths via
-	  different intermediates to different roots. It is loosely based on
-	  golang's X509 validator.
-
-	  This includes integration so that the new validator can be used via
-	  X509_verify_cert() as well as a new API x509_verify() which will
-	  return multiple chains (similar to go).
-
-	  The new public API is not yet exposed, and will be finalized and
-	  enabled later.
+	* New X509 certificate chain validator loosely based on Go's X509
+	  validator.
 
 	* Improve the handling of BIO_read()/BIO_write() failures in the
 	  TLSv1.3 stack.
 
-	* Prepare to provide most of the TLSv1.3-related OpenSSL 1.1.1 API.
-	  This will be finished in an upcoming release.
-
-	* Implement SSL_{CTX_,}set_ciphersuites() and add regress. This is not
-	  yet public API and will be enabled in a future release.
-
 	* Start replacing the existing TLSv1.2 record layer.
 
 	* Define OPENSSL_NO_SSL_TRACE in opensslfeatures.h.
@@ -112,9 +95,6 @@ LibreSSL Portable Release Notes:
 
 	* Document return value from EC_KEY_get0_public_key(3).
 
-	* Add initial manual page for the x509_verify() chain validator which
-	  will be installed once the new API is publically exposed.
-
 	* Greatly expanded test coverage by the tlsfuzzer test scripts.
 
 	* Test the Botan TLS client with LibreSSL, OpenSSL 1.0.2 and 1.1.1
-- 
cgit v1.2.3-55-g6feb