diff options
| author | lloyd <[email protected]> | 2012-06-17 18:53:44 +0000 |
|---|---|---|
| committer | lloyd <[email protected]> | 2012-06-17 18:53:44 +0000 |
| commit | 490560a33e35e37a4d2f817abc9b6f10f40bc93c (patch) | |
| tree | 552c4787f1e0c314feaa256d78d51e24426f0f09 | |
| parent | 61950bd643ca50d25282d5f428023e0f7a81353f (diff) | |
Port in 1.10.2 change notes
| -rw-r--r-- | doc/log.txt | 15 |
1 files changed, 10 insertions, 5 deletions
diff --git a/doc/log.txt b/doc/log.txt index 701497220..bc0990747 100644 --- a/doc/log.txt +++ b/doc/log.txt @@ -54,18 +54,23 @@ Version 1.11.0, Not Yet Released Series 1.10 ---------------------------------------- -Version 1.10.2, Not Yet Released +Version 1.10.2, 2012-06-17 ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ +* To protect clients against renegotiation attacks, the TLS client + now sends the renegotiation extension SCSV. + +* TLS renegotiation is completely disabled in this release. All hello + requests, and all client hellos after the initial negotiation, are + ignored. + +* Fix bugs in TLS affecting DSA servers. + * Pipe::reset no longer requires that message processing be completed, a requirement that caused problems when a Filter's end_msg call threw an exception, after which point the Pipe object was no longer usable. -* The SSL/TLS code is disabled by default in this release. A new - version is being developed and the current iteration should not be - used unless needed for existing code. - * Add support for the rdrand instruction introduced in Intel's Ivy Bridge processors. |