Updates CHANGES and NEWS for the new release

author Matt Caswell <matt@openssl.org>

Tue, 22 Sep 2020 12:13:17 +0000 (13:13 +0100)

committer Matt Caswell <matt@openssl.org>

Tue, 22 Sep 2020 12:45:08 +0000 (13:45 +0100)
author Matt Caswell <matt@openssl.org>
Tue, 22 Sep 2020 12:13:17 +0000 (13:13 +0100)
committer Matt Caswell <matt@openssl.org>
Tue, 22 Sep 2020 12:45:08 +0000 (13:45 +0100)
diff --git a/CHANGES b/CHANGES

index ee5403dffc10eb1988e34d77ea6b0e90df66d0e6..150af73395c7da432cf289f21c2e2139c57d7f06 100644 (file)
--- a/CHANGES
+++ b/CHANGES
@@ -9,6 +9,10 @@
  
   Changes between 1.1.1g and 1.1.1h [xx XXX xxxx]
  
+  *) Certificates with explicit curve parameters are now disallowed in
+     verification chains if the X509_V_FLAG_X509_STRICT flag is used.
+     [Tomas Mraz]
+
    *) The 'MinProtocol' and 'MaxProtocol' configuration commands now silently
       ignore TLS protocol version bounds when configuring DTLS-based contexts, and
       conversely, silently ignore DTLS protocol version bounds when configuring
diff --git a/NEWS b/NEWS

index fc8ff7371a6c4a6df2fb82ee3217d4fcb183ae76..47db6cbb5d4f687ab41945e3f2ca2fa694608bd5 100644 (file)
--- a/NEWS
+++ b/NEWS
@@ -7,7 +7,11 @@
  
    Major changes between OpenSSL 1.1.1g and OpenSSL 1.1.1h [under development]
  
-      o
+      o Disallow explicit curve parameters in verifications chains when
+        X509_V_FLAG_X509_STRICT is used
+      o Enable 'MinProtocol' and 'MaxProtocol' to configure both TLS and DTLS
+        contexts
+      o Oracle Developer Studio will start reporting deprecation warnings
  
    Major changes between OpenSSL 1.1.1f and OpenSSL 1.1.1g [21 Apr 2020]
author	Matt Caswell <matt@openssl.org>
	Tue, 22 Sep 2020 12:13:17 +0000 (13:13 +0100)
committer	Matt Caswell <matt@openssl.org>
	Tue, 22 Sep 2020 12:45:08 +0000 (13:45 +0100)
CHANGES		patch \| blob \| blame \| history
NEWS		patch \| blob \| blame \| history