]>
Commit | Line | Data |
---|---|---|
651d0aff | 1 | |
f1c236f8 | 2 | OpenSSL CHANGES |
651d0aff RE |
3 | _______________ |
4 | ||
c90341a1 RL |
5 | Changes between 0.9.5a and 0.9.6 [xx XXX 2000] |
6 | ||
2c05c494 BM |
7 | *) Implement SSL_OP_TLS_ROLLBACK_BUG: In ssl3_get_client_key_exchange, if |
8 | this option is set, tolerate broken clients that send the negotiated | |
9 | protocol version number instead of the requested protocol version | |
10 | number. | |
11 | [Bodo Moeller] | |
12 | ||
13 | *) Call dh_tmp_cb (set by ..._TMP_DH_CB) with correct 'is_export' flag; | |
14 | i.e. non-zero for export ciphersuites, zero otherwise. | |
15 | Previous versions had this flag inverted, inconsistent with | |
16 | rsa_tmp_cb (..._TMP_RSA_CB). | |
17 | [Bodo Moeller; problem reported by Amit Chopra] | |
18 | ||
b4b41f48 DSH |
19 | *) Add missing DSA library text string. Work around for some IIS |
20 | key files with invalid SEQUENCE encoding. | |
21 | [Steve Henson] | |
22 | ||
6d7cce48 RL |
23 | *) Add a document (doc/standards.txt) that list all kinds of standards |
24 | and so on that are implemented in OpenSSL. | |
25 | [Richard Levitte] | |
26 | ||
439df508 DSH |
27 | *) Enhance c_rehash script. Old version would mishandle certificates |
28 | with the same subject name hash and wouldn't handle CRLs at all. | |
29 | Added -fingerprint option to crl utility, to support new c_rehash | |
30 | features. | |
31 | [Steve Henson] | |
32 | ||
0e1c0612 | 33 | *) Eliminate non-ANSI declarations in crypto.h and stack.h. |
2c05c494 | 34 |