Only allow a temporary rsa key exchange when they key is larger than 512.
[openssl.git] / CHANGES
2015-06-04 Github UserGH293: Typo in CHANGES file.
2015-05-22 Matt CaswellRemove export static DH ciphersuites
2015-05-22 Matt CaswellAdd CHANGES entry for OPENSSL_NO_TLSEXT removal
2015-05-20 Emilia KasperOnly support >= 256-bit elliptic curves with ecdh_auto...
2015-05-16 Matt CaswellVersion negotiation rewrite doc updates
2015-05-13 Matt CaswellAdd CHANGES entry for Kerberos removal
2015-05-03 Rich Salzfix various typo's
2015-04-29 Rich SalzAdd HTTP GET support to OCSP server
2015-04-08 Rich SalzDrop CA.sh for CA.pl
2015-03-25 Matt CaswellDeprecate RAND_pseudo_bytes
2015-03-24 Rich Salzfree NULL cleanup
2015-03-19 Matt CaswellUpdate CHANGES
2015-03-11 Rich SalzMerge OPENSSL_NO_EC{DH,DSA} into OPENSSL_NO_EC
2015-02-03 Dr. Stephen HensonAdd CHANGES entry.
2015-02-02 Rich SalzRemove old DES API
2015-01-31 Matt CaswellAdd changes entry for opaquifying of libssl structures
2015-01-24 Rich Salzifdef cleanup, part 4a: '#ifdef undef'
2015-01-23 Andy PolyakovKeep disclaiming 16-bit support.
2015-01-23 Rich Salzifdef cleanup part 3: OPENSSL_SYSNAME
2015-01-22 Rich Salzifdef cleanup, 2 remove OPENSSL_NO_SETVBUF_IONBF
2015-01-14 Rich SalzCleanup OPENSSL_NO_xxx, part 1 master-pre-reformat
2015-01-12 Rich SalzRT3548: Remove unsupported platforms
2015-01-12 Rich SalzRT3548: Remove some unsupported platforms.
2015-01-06 Dr. Stephen Hensonuse correct credit in CHANGES
2015-01-06 Andy PolyakovCHANGES: mention "universal" ARM support.
2015-01-06 Andy PolyakovRevert "CHANGES: mention "universal" ARM support."
2015-01-06 Andy PolyakovCHANGES: mention "universal" ARM support.
2015-01-06 Dr. Stephen HensonOnly allow ephemeral RSA keys in export ciphersuites.
2015-01-05 Dr. Stephen HensonECDH downgrade bug fix.
2015-01-05 Adam LangleyEnsure that the session ID context of an SSL* is updated
2015-01-05 Dr. Stephen HensonFix various certificate fingerprint issues.
2014-12-28 Rich SalzRT3548: Remove unsupported platforms
2014-12-25 Rich SalzRT3548: unsupported platforms
2014-12-22 Rich SalzRT3548: Remove unsupported platforms.
2014-12-22 Rich SalzRT3548: Remvoe unsupported platforms
2014-12-20 Rich SalzRT3548: Remove outdated platforms
2014-12-18 Matt CaswellUpdate CHANGES for deprecated updates
2014-12-18 Rich SalzRT3548: Remove some obsolete platforms
2014-12-17 Rich SalzRT3548: Remove some obsolete platforms
2014-12-08 Matt CaswellAdd CHANGES entry for OCB
2014-12-04 Kurt RoeckxUpdate changes to indicate that SSLv2 support has been...
2014-11-20 Annie YousarRT2679: Fix error if keysize too short
2014-11-20 David BenjaminDo not resume a session if the negotiated protocol...
2014-11-20 Emilia KasperClean up CHANGES
2014-11-20 Emilia KasperEnsure SSL3_FLAGS_CCS_OK (or d1->change_cipher_spec_ok...
2014-11-20 Emilia KasperAlways require an advertised NewSessionTicket message.
2014-10-28 Emilia KasperTighten session ticket handling
2014-10-27 Emilia KasperAdd missing CHANGES interval [1.0.1h, 1.0.1i]
2014-10-27 Emilia KasperSync CHANGES
2014-10-22 Andy PolyakovAdd missing credit.
2014-10-15 Matt CaswellUpdates CHANGES file
2014-10-15 Bodo MoellerSupport TLS_FALLBACK_SCSV.
2014-10-02 Bodo MoellerDTLS 1.2 support has been added to 1.0.2.
2014-09-29 Dr. Stephen HensonAdd additional explanation to CHANGES entry.
2014-09-29 Dr. Stephen HensonAdd additional DigestInfo checks.
2014-09-23 Emilia KasperNote i2d_re_X509_tbs and related changes in CHANGES
2014-09-23 Andy PolyakovCHANGES: mention ECP_NISTZ256.
2014-09-05 Dr. Stephen HensonAdd CHANGES entry for SCT viewer code.
2014-08-15 Rich SalzMerge branch 'master' of git.openssl.org:openssl
2014-08-15 Claus AssmannRT3268: Fix spelling errors in CHANGES file.
2014-08-01 Bodo MoellerSync with clean-up 1.0.2 CHANGES file.
2014-08-01 Bodo MoellerSync with current 1.0.2 CHANGES file.
2014-08-01 Bodo MoellerSimplify and fix ec_GFp_simple_points_make_affine
2014-07-22 Andy PolyakovCHANGES: mention new platforms.
2014-07-04 Dr. Stephen HensonRemove all RFC5878 code.
2014-06-01 Ben LaurieMerge branch 'erbridge-probable_primes'
2014-06-01 Ben LaurieCredit to Felix.
2014-05-23 Martin KaiserAdd an NSS output format to sess_id to export to export...
2014-04-26 manchaFix version documentation.
2014-04-26 manchaFix eckey_priv_encode()
2014-04-22 Ben LaurieFix double frees.
2014-04-07 Dr. Stephen HensonAdd heartbeat extension bounds check.
2014-04-05 Dr. Stephen HensonSet TLS padding extension value.
2014-04-01 Dr. Stephen HensonDon't try and verify signatures if key is NULL (CVE...
2014-03-12 Dr. Stephen HensonFix for CVE-2014-0076
2014-01-03 Dr. Stephen HensonUse algorithm specific chains for certificates.
2013-12-20 Dr. Stephen HensonFix DTLS retransmission from previous session.
2013-12-13 Dr. Stephen HensonUpdate to pad extension.
2013-11-06 Dr. Stephen HensonExperimental workaround TLS filler (WTF) extension.
2013-10-22 Dr. Stephen HensonUpdate test server details.
2013-09-20 Ben LaurieMerge remote-tracking branch 'trevp/pemfix' into trev...
2013-09-18 Dr. Stephen HensonAdd functions to set ECDSA_METHOD structure.
2013-09-17 Bodo MoellerMove change note for SSL_OP_SAFARI_ECDHE_ECDSA_BUG.
2013-09-17 Bodo MoellerMove the change note for partial chain verification...
2013-09-16 Bodo MoellerSync CHANGES and NEWS files.
2013-09-13 Rob StradlingUpdate CHANGES.
2013-09-08 Dr. Stephen HensonDocument extension clash.
2013-09-08 Dr. Stephen HensonExperimental encrypt-then-mac support.
2013-09-06 Scott DeboyAdd callbacks supporting generation and retrieval of...
2013-09-05 Veres Lajosmisspellings fixes by https://github.com/vlajos/misspel...
2013-07-17 Dr. Stephen HensonEVP support for wrapping algorithms.
2013-07-04 Jeff WaltonFix multiple cosmetic typos.
2013-06-21 Dr. Stephen HensonUpdate CHANGES
2013-06-12 Dr. Stephen HensonExetended OAEP support.
2013-06-12 TrevorAdd support for arbitrary TLS extensions.
2013-04-09 Dr. Stephen HensonDual DTLS version methods.
2012-12-19 Dr. Stephen Hensoncorrect CHANGES
2012-12-11 Ben LaurieMake openssl verify return errors.
2012-12-07 Ben LaurieFix OCSP checking.
2012-12-06 Dr. Stephen HensonAdd code to download CRLs based on CRLDP extension.
next