version 1.28, 2018/03/25 14:21:58 |
version 1.29, 2018/03/25 20:39:59 |
|
|
<p> |
<p> |
|
|
<li>LibreSSL 2.7.2 |
<li>LibreSSL 2.7.2 |
<ul> |
<ul> |
<li>... |
<li> Fixed a bug in int_x509_param_set_hosts, calling strlen() if name |
</ul> |
length provided is 0 to match the OpenSSL behaviour. Issue noticed |
|
by Christian Heimes <christian@python.org> |
|
<li> Added support for many OpenSSL 1.0.2 and 1.1 APIs, based on |
|
observations of real-world usage in applications. These are |
|
implemented in parallel with existing OpenSSL 1.0.1 APIs - visibility |
|
changes have not been made to existing structs, allowing code written |
|
for older OpenSSL APIs to continue working. |
|
<li> Extensive corrections, improvements, and additions to the |
|
API documentation, including new public APIs from OpenSSL that had |
|
no pre-existing documentation. |
|
<li> Added support for automatic library initialization in libcrypto, |
|
libssl, and libtls. Support for pthread_once or a compatible |
|
equivalent is now required of the target operating system. As a |
|
side-effect, minimum Windows support is Vista or higher. |
|
<li> Converted more packet handling methods to CBB, which improves |
|
resiliency when generating TLS messages. |
|
<li> Completed TLS extension handling rewrite, improving consistency of |
|
checks for malformed and duplicate extensions. |
|
<li>Rewrote ASN1_TYPE_{get,set}_octetstring() using templated ASN.1. |
|
This removes the last remaining use of the old M_ASN1_* macros |
|
(asn1_mac.h) from API that needs to continue to exist. |
|
<li> Added support for client-side session resumption in libtls. |
|
A libtls client can specify a session file descriptor (a regular |
|
file with appropriate ownership and permissions) and libtls will |
|
manage reading and writing of session data across TLS handshakes. |
|
<li> Improved support for strict alignment on ARMv7 architectures, |
|
conditionally enabling assembly in those cases. |
|
<li> Fixed a memory leak in libtls when reusing a tls_config. |
|
<li> Merged more DTLS support into the regular TLS code path, removing |
|
duplicated code. |
|
</ul> |
<p> |
<p> |
|
|
<li>mandoc 1.14.3 |
<li>mandoc 1.14.3 |
<ul> |
<ul> |
<li>... |
<li>... |