diff options
| author | Richard Levitte <levitte@openssl.org> | 2020-06-22 13:15:22 +0200 |
|---|---|---|
| committer | Richard Levitte <levitte@openssl.org> | 2020-06-28 10:55:51 +0200 |
| commit | 3bd65f9b5b4731acae395d045dea63d7fdfd507b (patch) | |
| tree | 0479dd53f467b72f0d8896d5e562db75c8cd08e8 /CHANGES.md | |
| parent | 5a9752756b68632320c5aed7b6eb38e63a8ebf31 (diff) | |
Update NEWS and CHANGES
NEWS and CHANGES hasn't mentioned OPENSSL_CTX before, so adding entries now.
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/12228)
Diffstat (limited to 'CHANGES.md')
| -rw-r--r-- | CHANGES.md | 22 |
1 files changed, 22 insertions, 0 deletions
diff --git a/CHANGES.md b/CHANGES.md index 8f8ee33415..7da5ccd55c 100644 --- a/CHANGES.md +++ b/CHANGES.md @@ -23,6 +23,28 @@ OpenSSL 3.0 ### Changes between 1.1.1 and 3.0 [xx XXX xxxx] + * Added a library context that applications as well as other + libraries can use to form a separate context within which libcrypto + operations are performed. + + There are two ways this can be used: + + - Directly, by passing a library context to functions that take + such an argument, such as `EVP_CIPHER_fetch` and similar algorithm + fetching functions. + - Indirectly, by creating a new library context and then assigning + it as the new default, with `OPENSSL_CTX_set0_default`. + + All public OpenSSL functions that take an `OPENSSL_CTX` pointer, + apart from the functions directly related to `OPENSSL_CTX`, accept + NULL to indicate that the default library context should be used. + + Library code that changes the default library context using + `OPENSSL_CTX_set0_default` should take care to restore it with a + second call before returning to the caller. + + *Richard Levitte* + * Handshake now fails if Extended Master Secret extension is dropped on renegotiation. |