fix support for receiving fragmented handshake messages

author: Bodo Möller <bodo@openssl.org> 2006-11-29 14:45:50 +0000
committer: Bodo Möller <bodo@openssl.org> 2006-11-29 14:45:50 +0000
commit: 1e24b3a09e31b10649e5024b502ac3d7276923fe (patch)
tree: c89aeee02f9af875342c47ec72392d6154197f16 /CHANGES
parent: 73b979e601f09c8a235dd7dc92a841843af31459 (diff)
1 files changed, 25 insertions, 5 deletions
diff --git a/CHANGES b/CHANGES
index 682a4f0994..3607fe9f39 100644
--- a/CHANGES
+++ b/CHANGES
@@ -4,11 +4,6 @@
 
  Changes between 0.9.8e and 0.9.9  [xx XXX xxxx]
 
-  *) Load error codes if they are not already present instead of using a
-     static variable. This allows them to be cleanly unloaded and reloaded.
-     Improve header file function name parsing.
-     [Steve Henson]
-
   *) Initial incomplete changes to avoid need for function casts in OpenSSL
      when OPENSSL_NO_FCAST is set: some compilers (gcc 4.2 and later) reject
      their use. Safestack is reimplemented using inline functions: tests show
@@ -423,9 +418,21 @@
 
  Changes between 0.9.8d and 0.9.8e  [XX xxx XXXX]
 
+  *) Have SSL/TLS server implementation tolerate "mismatched" record
+     protocol version while receiving ClientHello even if the
+     ClientHello is fragmented.  (The server can't insist on the
+     particular protocol version it has chosen before the ServerHello
+     message has informed the client about his choice.)
+     [Bodo Moeller]
+
   *) Add RFC 3779 support.
      [Rob Austein for ARIN, Ben Laurie]
 
+  *) Load error codes if they are not already present instead of using a
+     static variable. This allows them to be cleanly unloaded and reloaded.
+     Improve header file function name parsing.
+     [Steve Henson]
+
  Changes between 0.9.8c and 0.9.8d  [28 Sep 2006]
 
   *) Introduce limits to prevent malicious keys being able to
@@ -1430,6 +1437,19 @@
      differing sizes.
      [Richard Levitte]
 
+ Changes between 0.9.7l and 0.9.7m  [xx XXX xxxx]
+
+  *) Have SSL/TLS server implementation tolerate "mismatched" record
+     protocol version while receiving ClientHello even if the
+     ClientHello is fragmented.  (The server can't insist on the
+     particular protocol version it has chosen before the ServerHello
+     message has informed the client about his choice.)
+     [Bodo Moeller]
+
+  *) Load error codes if they are not already present instead of using a
+     static variable. This allows them to be cleanly unloaded and reloaded.
+     [Steve Henson]
+
  Changes between 0.9.7k and 0.9.7l  [28 Sep 2006]
 
   *) Introduce limits to prevent malicious keys being able to
author	Bodo Möller <bodo@openssl.org>	2006-11-29 14:45:50 +0000
committer	Bodo Möller <bodo@openssl.org>	2006-11-29 14:45:50 +0000
commit	1e24b3a09e31b10649e5024b502ac3d7276923fe (patch)
tree	c89aeee02f9af875342c47ec72392d6154197f16 /CHANGES
parent	73b979e601f09c8a235dd7dc92a841843af31459 (diff)