aboutsummaryrefslogtreecommitdiff
path: root/Changes.rst
AgeCommit message (Expand)Author
2021-04-03Deprecate non TLS mode in OpenVPNArne Schwabe
2021-03-22Deprecate the --verify-hash optionArne Schwabe
2021-03-22Document the simple self-signed certificate setup in examplesArne Schwabe
2021-03-21Implement peer-fingerprint to check fingerprint of peer certificateArne Schwabe
2021-03-11Require at least 100MB of mlock()-able memory if --mlock is used.Gert Doering
2021-03-08Prefer TLS libraries TLS PRF function, fix OpenVPN in FIPS modeArne Schwabe
2021-01-30Remove inetd support from OpenVPNArne Schwabe
2020-10-09Implement generating data channel keys via EKM/RFC 5705Arne Schwabe
2020-08-16Changes.rst: fix mistyped option namesMagnus Kroken
2020-08-12Changes.rst updates in preparation to 2.5_beta1Gert Doering
2020-08-10Document different behaviour of dynamic cipher negotiationArne Schwabe
2020-08-04client-connect: Add documentation for the deferred client connect featureArne Schwabe
2020-07-27Rename ncp-ciphers to data-ciphersArne Schwabe
2020-07-26Avoid sending push request after receving push replyArne Schwabe
2020-07-23Deprecate --inetdArne Schwabe
2020-07-21Remove --client-cert-not-requiredDavid Sommerseth
2020-07-21Remove --ifconfig-pool-linearDavid Sommerseth
2020-07-20Drop support for OpenSSL 1.0.1Arne Schwabe
2020-07-19Remove CAS_PARTIAL stateArne Schwabe
2020-07-18Remove --no-ivDavid Sommerseth
2020-07-15Add deferred authentication support to plugin-auth-pamGert Doering
2020-07-09Deprecate ncp-disable and add improved ncp to Changes.rstArne Schwabe
2019-02-06Fix various spelling mistakesJonathan Tooker
2018-10-26tls-crypt-v2: add script hook to verify metadataSteffan Karger
2018-10-08Add support for CHACHA20-POLY1305 in the data channelSteffan Karger
2017-11-19Add --tls-cert-profile option.Steffan Karger
2017-11-03Remove references to keychain-mcd in Changes.rstDavid Sommerseth
2017-08-17Use consistent version referencesDavid Sommerseth
2017-08-17Highlight deprecated featuresDavid Sommerseth
2017-08-15Deprecate --keysizeSteffan Karger
2017-06-29doc: The CRL processing is not a deprecated featureDavid Sommerseth
2017-06-20Update Changes.rst with relevant info for 2.4.3 release.Gert Doering
2017-06-19Fix potential double-free in --x509-alt-username (CVE-2017-7521)Steffan Karger
2017-06-19Restrict --x509-alt-username extension typesSteffan Karger
2017-06-19Fix remote-triggerable memory leaks (CVE-2017-7521)Steffan Karger
2017-06-19mbedtls: fix --x509-track post-authentication remote DoS (CVE-2017-7522)Steffan Karger
2017-06-18Fix mbedtls fingerprint calculationSteffan Karger
2017-05-18crypto: Enable SHA256 fingerprint checking in --verify-hashDavid Sommerseth
2017-05-11Drop packets instead of assert out if packet id rolls over (CVE-2017-7479)Steffan Karger
2017-05-11Don't assert out on receiving too-large control packets (CVE-2017-7478)Steffan Karger
2017-05-08Fix memory leak in x509_verify_cert_ku()Steffan Karger
2017-05-05Fix Changes.rst layoutSteffan Karger
2017-03-19Be less picky about keyUsage extensionsSteffan Karger
2017-03-19Deprecate --ns-cert-typeSteffan Karger
2016-12-27Textual fixes for Changes.rstSteffan Karger
2016-12-24docs: Further enhance the documentation related to SWEET32David Sommerseth
2016-12-14Changes.rst: Mainatiner update on C99David Sommerseth
2016-12-14Further enhance async-push feature descriptionDavid Sommerseth
2016-12-09Changes: Further improve systemd unit file updatesDavid Sommerseth
2016-12-07Deprecate --no-ivSteffan Karger
generated by cgit v1.1 at 2024-10-06 20:31:35 +0000