Google Git
Sign in
pigweed/third_party/github/Mbed-TLS/mbedtls-framework/78a8c71993c0c32b14946b8171b15beb3e250303^!/./ChangeLog
commit
78a8c71993c0c32b14946b8171b15beb3e250303
[log]
author
Paul Bakker <p.j.bakker@polarssl.org>
Wed Mar 06 17:01:52 2013 +0100
committer
Paul Bakker <p.j.bakker@polarssl.org>
Wed Mar 06 18:01:03 2013 +0100
tree
8c2de5c68067b0fe7ada9a992367638244c213d5
parent
37286a573bd36b7d80fd101b54bd25bb04979b4e [diff] [blame]
Re-added support for parsing and handling SSLv2 Client Hello messages

If the define POLARSSL_SSL_SRV_SUPPORT_SSLV2_CLIENT_HELLO is enabled,
the SSL Server module can handle the old SSLv2 Client Hello messages.

It has been updated to deny SSLv2 Client Hello messages during
renegotiation.

diff --git a/ChangeLog b/ChangeLog
index f5d6b4a..e3611bd 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -14,6 +14,8 @@
      PKCS#1 v2.1 functions
    * Added support for custom labels when using rsa_rsaes_oaep_encrypt()
      or rsa_rsaes_oaep_decrypt()
+   * Re-added handling for SSLv2 Client Hello when the define
+     POLARSSL_SSL_SRV_SUPPORT_SSLV2_CLIENT_HELLO is set
 
 Security
    * Removed further timing differences during SSL message decryption in