projects / openssl.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Remove SSL_{CTX_}set_ecdh_auto() and always enable ECDH
[openssl.git] / CHANGES
diff --git a/CHANGES b/CHANGES
index 55362fe00f02dc9762b9f26e9c8f423dcbc5a0b1..c8da88ccd0107df274c8aa5a20528303bd6f8c93 100644 (file)
--- a/CHANGES
+++ b/CHANGES
@@ -13,6 +13,19 @@
      pages. This work was developed in partnership with Intel Corp.
      [Matt Caswell]
 
+  *) SSL_{CTX_}set_ecdh_auto() has been removed and ECDH is support is
+     always enabled now.  If you want to disable the support you should
+     exclude it using the list of supported ciphers.
+     [Kurt Roeckx]
+
+  *) SSL_{CTX}_set_tmp_ecdh() which can set 1 EC curve now internally calls
+     SSL_{CTX_}set1_curves() which can set a list.
+     [Kurt Roeckx]
+
+  *) Remove support for SSL_{CTX_}set_tmp_ecdh_callback().  You should set the
+     curve you want to support using SSL_{CTX_}set1_curves().
+     [Kurt Roeckx]
+
   *) State machine rewrite. The state machine code has been significantly
      refactored in order to remove much duplication of code and solve issues
      with the old code (see ssl/statem/README for further details). This change
Unnamed repository; edit this file 'description' to name the repository.