diff options
author | lloyd <[email protected]> | 2014-10-31 10:18:47 +0000 |
---|---|---|
committer | lloyd <[email protected]> | 2014-10-31 10:18:47 +0000 |
commit | 05d29e973175889685a695d34cf810992497b316 (patch) | |
tree | 1863a1819f3c02a5b27f6f9266ce2c31bf408ab5 /doc/relnotes/1_11_10.rst | |
parent | 8916b9e071503bc8033370c9806075e0b083e84d (diff) |
Add TLS fallback signalling (draft-ietf-tls-downgrade-scsv-00)
Diffstat (limited to 'doc/relnotes/1_11_10.rst')
-rw-r--r-- | doc/relnotes/1_11_10.rst | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/doc/relnotes/1_11_10.rst b/doc/relnotes/1_11_10.rst index 5ea11ff9d..3ff9e0113 100644 --- a/doc/relnotes/1_11_10.rst +++ b/doc/relnotes/1_11_10.rst @@ -1,6 +1,12 @@ Version 1.11.10, Not Yet Released ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ +* Add support for TLS fallback signaling (draft-ietf-tls-downgrade-scsv-00). + Clients will send a fallback SCSV if the version passed to the Client + constructor is less than the latest version supported by local policy, + so applications implementing fallback are protected. Servers always check + the SCSV. + * Fixed a bug in CCM mode which caused it to produce incorrect tags when used with a value of L other than 2. This affected CCM TLS ciphersuites, which use L=3. Thanks to Manuel Pégourié-Gonnard for |