Commit bac67407 authored by Bodo Moeller's avatar Bodo Moeller
Browse files

Sync with clean-up 1.0.2 CHANGES file. 

(If a change is already present in 1.0.1f or 1.0.1h,
don't list it again under changes between 1.0.1h and 1.0.2.)
parent 38c65481

CHANGES

+0 −19
Original line number Diff line number Diff line
@@ -350,17 +350,6 @@ 
     This work was sponsored by Intel Corp.

     [Andy Polyakov]



  *) Harmonize version and its documentation. -f flag is used to display

     compilation flags.

     [mancha <mancha1@zoho.com>]



  *) Fix eckey_priv_encode so it immediately returns an error upon a failure

     in i2d_ECPrivateKey.

     [mancha <mancha1@zoho.com>]



  *) Fix some double frees. These are not thought to be exploitable.

     [mancha <mancha1@zoho.com>]



  *) Use algorithm specific chains in SSL_CTX_use_certificate_chain_file():

     this fixes a limiation in previous versions of OpenSSL.

     [Steve Henson]
@@ -379,14 +368,6 @@ 
     structure.

     [Douglas E. Engert, Steve Henson]



  *) Add option SSL_OP_SAFARI_ECDHE_ECDSA_BUG (part of SSL_OP_ALL) which

     avoids preferring ECDHE-ECDSA ciphers when the client appears to be

     Safari on OS X.  Safari on OS X 10.8..10.8.3 advertises support for

     several ECDHE-ECDSA ciphers, but fails to negotiate them.  The bug

     is fixed in OS X 10.8.4, but Apple have ruled out both hot fixing

     10.8..10.8.3 and forcing users to upgrade to 10.8.4 or newer.

     [Rob Stradling, Adam Langley]



  *) New functions OPENSSL_gmtime_diff and ASN1_TIME_diff to find the

     difference in days and seconds between two tm or ASN1_TIME structures.

     [Steve Henson]