Fix the version history: given that 1.0.1 has yet to be released,
we should list "Changes between 1.0.0e and 1.0.1", not "between 1.0.0d and 1.0.1".
This commit is contained in:
Bodo Möller
29
CHANGES
29
CHANGES
@@ -2,7 +2,7 @@
|
|||||||
OpenSSL CHANGES
|
OpenSSL CHANGES
|
||||||
_______________
|
_______________
|
||||||
|
|
||||||
Changes between 1.0.0d and 1.0.1 [xx XXX xxxx]
|
Changes between 1.0.0e and 1.0.1 [xx XXX xxxx]
|
||||||
|
|
||||||
*) Redirect HMAC and CMAC operations to FIPS module in FIPS mode. If an
|
*) Redirect HMAC and CMAC operations to FIPS module in FIPS mode. If an
|
||||||
ENGINE is used then we cannot handle that in the FIPS module so we
|
ENGINE is used then we cannot handle that in the FIPS module so we
|
||||||
@@ -22,7 +22,7 @@
|
|||||||
*) New build option no-ec2m to disable characteristic 2 code.
|
*) New build option no-ec2m to disable characteristic 2 code.
|
||||||
[Steve Henson]
|
[Steve Henson]
|
||||||
|
|
||||||
*) Backport libcrypto audit of return value checking from HEAD, not
|
*) Backport libcrypto audit of return value checking from 1.1.0-dev; not
|
||||||
all cases can be covered as some introduce binary incompatibilities.
|
all cases can be covered as some introduce binary incompatibilities.
|
||||||
[Steve Henson]
|
[Steve Henson]
|
||||||
|
|
||||||
@@ -53,13 +53,6 @@
|
|||||||
This should be configurable so applications can judge speed vs strength.
|
This should be configurable so applications can judge speed vs strength.
|
||||||
[Steve Henson]
|
[Steve Henson]
|
||||||
|
|
||||||
*) Add protection against ECDSA timing attacks as mentioned in the paper
|
|
||||||
by Billy Bob Brumley and Nicola Tuveri, see:
|
|
||||||
|
|
||||||
http://eprint.iacr.org/2011/232.pdf
|
|
||||||
|
|
||||||
[Billy Bob Brumley and Nicola Tuveri]
|
|
||||||
|
|
||||||
*) Add TLS v1.2 server support for client authentication.
|
*) Add TLS v1.2 server support for client authentication.
|
||||||
[Steve Henson]
|
[Steve Henson]
|
||||||
|
|
||||||
@@ -142,6 +135,15 @@
|
|||||||
Add command line options to s_client/s_server.
|
Add command line options to s_client/s_server.
|
||||||
[Steve Henson]
|
[Steve Henson]
|
||||||
|
|
||||||
|
Changes between 1.0.0d and 1.0.0e [xx XXX xxxx]
|
||||||
|
|
||||||
|
*) Add protection against ECDSA timing attacks as mentioned in the paper
|
||||||
|
by Billy Bob Brumley and Nicola Tuveri, see:
|
||||||
|
|
||||||
|
http://eprint.iacr.org/2011/232.pdf
|
||||||
|
|
||||||
|
[Billy Bob Brumley and Nicola Tuveri]
|
||||||
|
|
||||||
Changes between 1.0.0c and 1.0.0d [8 Feb 2011]
|
Changes between 1.0.0c and 1.0.0d [8 Feb 2011]
|
||||||
|
|
||||||
*) Fix parsing of OCSP stapling ClientHello extension. CVE-2011-0014
|
*) Fix parsing of OCSP stapling ClientHello extension. CVE-2011-0014
|
||||||
@@ -1022,6 +1024,15 @@
|
|||||||
*) Change 'Configure' script to enable Camellia by default.
|
*) Change 'Configure' script to enable Camellia by default.
|
||||||
[NTT]
|
[NTT]
|
||||||
|
|
||||||
|
Changes between 0.9.8r and 0.9.8s [xx XXX xxxx]
|
||||||
|
|
||||||
|
*) Add protection against ECDSA timing attacks as mentioned in the paper
|
||||||
|
by Billy Bob Brumley and Nicola Tuveri, see:
|
||||||
|
|
||||||
|
http://eprint.iacr.org/2011/232.pdf
|
||||||
|
|
||||||
|
[Billy Bob Brumley and Nicola Tuveri]
|
||||||
|
|
||||||
Changes between 0.9.8q and 0.9.8r [8 Feb 2011]
|
Changes between 0.9.8q and 0.9.8r [8 Feb 2011]
|
||||||
|
|
||||||
*) Fix parsing of OCSP stapling ClientHello extension. CVE-2011-0014
|
*) Fix parsing of OCSP stapling ClientHello extension. CVE-2011-0014
|
||||||
|
|||||||
Reference in New Issue
Block a user