version 1.32, 2020/05/06 23:27:59 |
version 1.33, 2020/05/07 03:39:46 |
|
|
|
|
<li> Added -addext option to openssl(1) req subcommand. |
<li> Added -addext option to openssl(1) req subcommand. |
|
|
|
<li> Improved SSL_CTX_set_cipher_list(3) and SSL_set_cipher_list(3) to |
|
include TLSv1.3 cipher suites even if cipher string does not |
|
indicate it. |
|
|
|
<li> Improved to handle TLSv1.3 HelloRetryRequest. |
|
|
|
<li> Provided TLSv1.3 cipher suite aliases to match the names used |
|
in RFC 8446. |
|
|
|
<li> Improved to allow using any of the groups in our NID list to |
|
generate a client key share. |
|
|
|
<li> Fixed printing the serialNumber with X509_print_ex() fall back to |
|
the colon separated hex bytes in case greater than int value. |
|
|
|
<li> Fixed to disallow setting the AES-GCM IV length to zero. |
|
|
|
<li> Added -groups option to openssl(1) s_server subcommand. |
|
|
|
<li> Fixed to show TLSv1.3 extension type with openssl(1) -tlsextdebug. |
|
|
|
<li> Improved portable builds to support for use of static MSVC runtimes. |
|
<li> Fixed portable builds to avoid exporting a sleep() symbol. |
|
|
<li>API and Documentation Enhancements |
<li>API and Documentation Enhancements |
<ul> |
<ul> |
<li>... |
<li>... |