diff options
author | steve <steve> | 2011-05-09 15:44:00 +0000 |
---|---|---|
committer | steve <steve> | 2011-05-09 15:44:00 +0000 |
commit | 08b66ff094d0eecc78eeb8edb623679e1ffb55a9 (patch) | |
tree | 75b2b030f3f3e0d9472b4ad574c6e5856c32929e /CHANGES | |
parent | fadc78af0ffa3d468cd59ff1e6443a97a869065a (diff) | |
download | openssl-08b66ff094d0eecc78eeb8edb623679e1ffb55a9.tar.gz |
Initial TLS v1.2 client support. Include a default supported signature
algorithms extension (including everything we support). Swicth to new
signature format where needed and relax ECC restrictions.
Not TLS v1.2 client certifcate support yet but client will handle case
where a certificate is requested and we don't have one.
Diffstat (limited to 'CHANGES')
-rw-r--r-- | CHANGES | 6 |
1 files changed, 6 insertions, 0 deletions
@@ -4,6 +4,12 @@ Changes between 1.0.1 and 1.1.0 [xx XXX xxxx] + *) Initial TLS v1.2 client support. Add a default signature algorithms + extension including all the algorithms we support. Parse new signature + format in client key exchange. Relax some ECC signing restrictions for + TLS v1.2 as indicated in RFC5246. + [Steve Henson] + *) Add server support for TLS v1.2 signature algorithms extension. Switch to new signature format when needed using client digest preference. All server ciphersuites should now work correctly in TLS v1.2. No client |