Reviewed-by: Rich Salz <rsalz@openssl.org>
Reviewed-by: Richard Levitte <levitte@openssl.org>
_______________
Changes between 1.0.2 and 1.1.0 [xx XXX xxxx]
+ *) Given the pervasive nature of TLS extensions it is inadvisable to run
+ OpenSSL without support for them. It also means that maintaining
+ the OPENSSL_NO_TLSEXT option within the code is very invasive (and probably
+ not well tested). Therefore the OPENSSL_NO_TLSEXT option has been removed.
+ [Matt Caswell]
*) Version negotiation has been rewritten. In particular SSLv23_method(),
SSLv23_client_method() and SSLv23_server_method() have been deprecated,
STATIC_ENGINE,-
STDIO,-
STORE,-
- TLSEXT,-
UNIT_TEST,-
WHIRLPOOL
$ CONFIG_EXPERIMENTAL := JPAKE,-
SHA/SSL3,TLS1;-
RSA,DSA/SSL3,TLS1;-
DH/SSL3,TLS1;-
- TLS1/TLSEXT;-
EC/GOST;-
DSA/GOST;-
DH/GOST;-
- TLSEXT/SRP,HEARTBEAT;-
/STATIC_ENGINE;-
/DEPRECATED;-
/EC_NISTP_64_GCC_128;-
goto err;
}
}
- rpk->valid_flags = 0;
if (cert->pkeys[i].serverinfo != NULL) {
/* Just copy everything. */
ret->pkeys[i].serverinfo =
projects / oweals / openssl.git / commitdiff