diff options
| author | lloyd <[email protected]> | 2014-01-10 23:07:16 +0000 |
|---|---|---|
| committer | lloyd <[email protected]> | 2014-01-10 23:07:16 +0000 |
| commit | ad6555f522ae16f6284e8dafa02f630b88bcf289 (patch) | |
| tree | bd63c51dbeab75eb0f90c72589bc922141237056 /doc/relnotes/1_11_0.rst | |
| parent | 6894dca64c04936d07048c0e8cbf7e25858548c3 (diff) | |
Split up docs into the reference manual, the website, and everything else.
Add `website` target to makefile.
Some progress towards fixing minimized builds.
TLS now hard requires ECDSA and GCM since otherwise a minimized build
has only insecure options.
Remove boost_thread dependency in command line tool
Diffstat (limited to 'doc/relnotes/1_11_0.rst')
| -rw-r--r-- | doc/relnotes/1_11_0.rst | 23 |
1 files changed, 11 insertions, 12 deletions
diff --git a/doc/relnotes/1_11_0.rst b/doc/relnotes/1_11_0.rst index bfcdc213a..9662afca9 100644 --- a/doc/relnotes/1_11_0.rst +++ b/doc/relnotes/1_11_0.rst @@ -11,19 +11,18 @@ Version 1.11.0, 2012-07-19 TLS and PKI Changes """""""""""""""""""""""""""""""""""""""" -There have been many changes and improvements to :doc:`TLS -<../tls>`. The interface is now purely event driven and does not -directly interact with sockets. New TLS features include TLS v1.2 -support, client certificate authentication, renegotiation, session -tickets, and session resumption. Session information can be saved in -memory or to an encrypted SQLite3 database. Newly supported TLS -ciphersuite algorithms include using SHA-2 for message authentication, -pre shared keys and SRP for authentication and key exchange, ECC -algorithms for key exchange and signatures, and anonymous DH/ECDH key -exchange. +There have been many changes and improvements to TLS. The interface +is now purely event driven and does not directly interact with +sockets. New TLS features include TLS v1.2 support, client +certificate authentication, renegotiation, session tickets, and +session resumption. Session information can be saved in memory or to +an encrypted SQLite3 database. Newly supported TLS ciphersuite +algorithms include using SHA-2 for message authentication, pre shared +keys and SRP for authentication and key exchange, ECC algorithms for +key exchange and signatures, and anonymous DH/ECDH key exchange. -Support for :doc:`OCSP <../ocsp>` has been added. Currently only -client-side support exists. +Support for OCSP has been added. Currently only client-side support +exists. The API for X.509 path validation has changed, with ``x509_path_validate`` in x509path.h now handles path validation and |