diff options
| author | Jack Lloyd <[email protected]> | 2016-10-09 13:45:00 -0400 |
|---|---|---|
| committer | Jack Lloyd <[email protected]> | 2016-10-09 13:45:00 -0400 |
| commit | 1cf1e4a5fac9832195972539cfdbc531c6a0b5f7 (patch) | |
| tree | b8c289bed968541b7b883b0b59381e9d32527128 | |
| parent | 8521658302b5170469339b93f54490a79473a8d0 (diff) | |
Update todo
[ci skip]
| -rw-r--r-- | doc/todo.rst | 6 |
1 files changed, 4 insertions, 2 deletions
diff --git a/doc/todo.rst b/doc/todo.rst index dfe7d2f90..4e96bb147 100644 --- a/doc/todo.rst +++ b/doc/todo.rst @@ -44,7 +44,7 @@ Public Key Crypto, Math External Providers, Hardware Support ---------------------------------------- -* Extend OpenSSL provider (cipher modes, HMAC, CMAC) +* Extend OpenSSL provider (DH, HMAC, CMAC, GCM) * /dev/crypto provider (ciphers, hashes) * Windows CryptoAPI provider (ciphers, hashes, RSA) * Apple CommonCrypto @@ -61,7 +61,6 @@ TLS * Curve25519 key exchange * NEWHOPE (CECPQ1) key exchange (GH #613) * TLS OCSP stapling (RFC 6066) -* Encrypt-then-MAC extension (RFC 7366) * Authentication using TOFU (sqlite3 storage) * Certificate pinning (using TACK?) * TLS supplemental authorization data (RFC 4680, RFC 5878) @@ -75,6 +74,9 @@ PKIX * Test suite for validation of 'real world' cert chains (GH #611) * Support multiple DNS names in certificates +* Improve output of X509_Certificate::to_string + This is a free-form string for human consumption so the only constraints + are being informative and concise. (GH #656) * X.509 policy constraints * OCSP responder logic * X.509 attribute certificates (RFC 5755) |