===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/74.html,v
retrieving revision 1.7
retrieving revision 1.8
diff -u -r1.7 -r1.8
--- www/74.html 2023/10/04 08:42:20 1.7
+++ www/74.html 2023/10/04 15:00:14 1.8
@@ -237,12 +237,12 @@
Removed most public symbols that were deprecated in OpenSSL 0.9.8.
Removed the public X9.31 API (RSA_X931_PADDING is still available).
Removed Cipher Text Stealing mode.
- openssl(1) nseq command.
Removed ENGINE support, including ECDH_METHOD and ECDSA_METHOD.
Removed COMP, DSO, dynamic loading of conf modules and support for
custom ex_data and error stacks.
Removed proxy certificate (RFC 3820) support.
Removed SXNET and NETSCAPE_CERT_SEQUENCE support including the
+ openssl(1) nseq command.
ENGINE support was removed and OPENSSL_NO_ENGINE is set. In spite
of this, some stub functions are provided to avoid patching some
applications that do not honor OPENSSL_NO_ENGINE.
@@ -303,7 +303,8 @@
Correctly handle negative input to various BIGNUM functions.
Ensure ERR_load_ERR_strings() does not set errno unexpectedly.
Fix error checking of i2d_ECDSA_SIG() in ossl_ecdsa_sign().
- Fixed aliasing issue in BN_mod_inverse().
+ Fixed aliasing issue in BN_mod_inverse(). Disallowed aliasing of result
+ and modulus in various BN_mod_* functions.
Fixed detection of extended operations (XOP) on AMD hardware.
Ensure Montgomery exponentiation is used for the initial RSA blinding.
Policy is always checked in X509 validation. Critical policy extensions
@@ -312,7 +313,6 @@
Add missing pointer invalidation in SSL_free().
Fixed X509err() and X509V3err() and their internal versions.
Ensure that OBJ_obj2txt() always returns a C string again.
- Fixed aliasing issue in BN_mod_inverse().
Made EVP_PKEY_set1_hkdf_key() fail on a NULL key.
On socket errors in the poll loop, netcat could issue system calls
on invalidated file descriptors.