From 83e352466e250c10a64609e73a12e5c136a983d4 Mon Sep 17 00:00:00 2001 From: Brent Cook Date: Wed, 21 Mar 2018 06:03:13 -0500 Subject: [PATCH] update changelog --- ChangeLog | 37 ++++++++++++++++++++++++++++++++++--- 1 file changed, 34 insertions(+), 3 deletions(-) diff --git a/ChangeLog b/ChangeLog index 3d84ed3..905d696 100644 --- a/ChangeLog +++ b/ChangeLog @@ -30,15 +30,46 @@ LibreSSL Portable Release Notes: 2.7.0 - Bug fixes and improvements - * Merged more DTLS support into the regular TLS code path, removing - duplicated code. + * Added support for many new OpenSSL 1.0.2 and 1.1 APIs, based on an + observations of real-world usage among applications. These are + implemented in parallel with existing OpenSSL 1.0.1 APIs for + backward compatibility. - * Converted ssl3_send_client_hello(), ssl3_send_server_hello() to CBB. + * Extensive corrections, improvements, and additions to the + API documentation, including new public APIs from OpenSSL that had + no pre-existing documentation. + + * Added support for automatic library initialization in libcrypto, + libssl, and libtls. Support for pthread_once or a compatible + equivalent is now required of the target operating system. As a + side-effect, minimum Windows support is Vista or higher. + + * Converted more packet handling methods to CBB, which improves + resiliency when processing malformed input data. + + * Rewrote TLS extension handling, improving consistency of + checks for malformed or duplicate extensions. * Rewrite ASN1_TYPE_{get,set}_octetstring() using templated ASN.1. This removes the last remaining use of the old M_ASN1_* macros (asn1_mac.h) from API that needs to continue to exist. + * Added support for client-side session resumption in libtls. + A libtls client can specify a session file descriptor (a regular + file with appropriate ownership and permissions) and libtls will + manage reading and writing of session data across TLS handshakes. + + * Improved support for strict alignment on ARMv7 architectures, + conditionally enabling assembly in those cases. + + * Fixed a memory leak in libtls when reusing a tls_config. + + * Merged more DTLS support into the regular TLS code path, removing + duplicated code. + + * Many improvements to Windows Cmake-based builds and tests, + especially when targeting Visual Studio. + 2.6.4 - Bug fixes * Make tls_config_parse_protocols() work correctly when passed a NULL