aboutsummaryrefslogtreecommitdiffstats
path: root/doc/relnotes/1_11_10.rst
diff options
context:
space:
mode:
authorlloyd <[email protected]>2014-10-31 10:18:47 +0000
committerlloyd <[email protected]>2014-10-31 10:18:47 +0000
commit05d29e973175889685a695d34cf810992497b316 (patch)
tree1863a1819f3c02a5b27f6f9266ce2c31bf408ab5 /doc/relnotes/1_11_10.rst
parent8916b9e071503bc8033370c9806075e0b083e84d (diff)
Add TLS fallback signalling (draft-ietf-tls-downgrade-scsv-00)
Diffstat (limited to 'doc/relnotes/1_11_10.rst')
-rw-r--r--doc/relnotes/1_11_10.rst6
1 files changed, 6 insertions, 0 deletions
diff --git a/doc/relnotes/1_11_10.rst b/doc/relnotes/1_11_10.rst
index 5ea11ff9d..3ff9e0113 100644
--- a/doc/relnotes/1_11_10.rst
+++ b/doc/relnotes/1_11_10.rst
@@ -1,6 +1,12 @@
Version 1.11.10, Not Yet Released
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
+* Add support for TLS fallback signaling (draft-ietf-tls-downgrade-scsv-00).
+ Clients will send a fallback SCSV if the version passed to the Client
+ constructor is less than the latest version supported by local policy,
+ so applications implementing fallback are protected. Servers always check
+ the SCSV.
+
* Fixed a bug in CCM mode which caused it to produce incorrect tags
when used with a value of L other than 2. This affected CCM TLS
ciphersuites, which use L=3. Thanks to Manuel Pégourié-Gonnard for