diff options
author | Rich Salz <rsalz@akamai.com> | 2020-12-26 10:21:41 -0500 |
---|---|---|
committer | Richard Levitte <levitte@openssl.org> | 2021-01-19 11:13:15 +0100 |
commit | 83b6dc8dc739ce7ca82652461bea92c31e634a57 (patch) | |
tree | e2bf6b2f26ffbd21f17b5638dc4d3eaf20cb8b49 /CHANGES.md | |
parent | fee0af0863dff8d13b09cd59af0afbd7e4ae2d57 (diff) |
Deprecate OCSP_xxx API for OSSL_HTTP_xxx
Deprecations made:
OCSP_REQ_CTX typedef->OSSL_HTTP_REQ_CTX
OCSP_REQ_CTX_new->OSSL_HTTP_REQ_CTX_new
OCSP_REQ_CTX_free->OSSL_HTTP_REQ_CTX_free
OCSP_REQ_CTX_http-> OSSL_HTTP_REQ_CTX_header
OCSP_REQ_CTX_add1_header->OSSL_HTTP_REQ_CTX_add1_header
OCSP_REQ_CTX_i2d->OSSL_HTTP_REQ_CTX_i2d
OCSP_REQ_CTX_get0_mem_bio->OSSL_HTTP_REQ_CTX_get0_mem_bio
OCSP_set_max_response_length->OSSL_HTTP_REQ_CTX_set_max_response_length
OCSP_REQ_CTX_nbio_d2i->OSSL_HTTP_REQ_CTX_sendreq_d2i
OCSP_REQ_CTX_nbio->OSSL_HTTP_REQ_CTX_nbio
Made some editorial changes to man3/OCSP_sendreq.pod; move the NOTES
text inline. Some of the original functions had no documentation:
OCSP_REQ_CTX_new, OCSP_REQ_CTX_http, OCSP_REQ_CTX_get0_mem_bio,
OCSP_REQ_CTX_nbio_d2i, and OCSP_REQ_CTX_nbio. Their new counterparts
are now documented in doc/man3/OSSL_HTTP_REQ_CTX.pod
Fixes #12234
Co-authored-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: David von Oheimb <david.von.oheimb@siemens.com>
Reviewed-by: Richard Levitte <levitte@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/13742)
Diffstat (limited to 'CHANGES.md')
-rw-r--r-- | CHANGES.md | 15 |
1 files changed, 15 insertions, 0 deletions
diff --git a/CHANGES.md b/CHANGES.md index ac0b22c6fb..cd093491be 100644 --- a/CHANGES.md +++ b/CHANGES.md @@ -23,6 +23,21 @@ OpenSSL 3.0 ### Changes between 1.1.1 and 3.0 [xx XXX xxxx] + * Deprecated the type OCSP_REQ_CTX and the functions OCSP_REQ_CTX_new(), + OCSP_REQ_CTX_free(), OCSP_REQ_CTX_http(), OCSP_REQ_CTX_add1_header(), + OCSP_REQ_CTX_i2d(), OCSP_REQ_CTX_nbio(), OCSP_REQ_CTX_nbio_d2i(), + OCSP_REQ_CTX_get0_mem_bio() and OCSP_set_max_response_length(). These + were used to collect all necessary data to form a HTTP request, and to + perform the HTTP transfer with that request. With OpenSSL 3.0, the + type is OSSL_HTTP_REQ_CTX, and the deprecated functions are replaced + with OSSL_HTTP_REQ_CTX_new(), OSSL_HTTP_REQ_CTX_free(), + OSSL_HTTP_REQ_CTX_header(), OSSL_HTTP_REQ_CTX_add1_header(), + OSSL_HTTP_REQ_CTX_i2d(), OSSL_HTTP_REQ_CTX_nbio(), + OSSL_HTTP_REQ_CTX_sendreq_d2i(), OSSL_HTTP_REQ_CTX_get0_mem_bio() and + OSSL_HTTP_REQ_CTX_set_max_response_length(). + + *Rich Salz and Richard Levitte* + * Validation of SM2 keys has been separated from the validation of regular EC keys, allowing to improve the SM2 validation process to reject loaded private keys that are not conforming to the SM2 ISO standard. |