Support verify_depth from the SSL API without need for user-defined

callbacks. Submitted by: Reviewed by: PR:
author: Bodo Möller <bodo@openssl.org> 1999-05-01 03:20:40 +0000
committer: Bodo Möller <bodo@openssl.org> 1999-05-01 03:20:40 +0000
commit: 7f89714e64d1dc64b50554a92e2a12596b9934ba (patch)
tree: 940620d173d8a4c7cbea392ba4c9760b7a6efa23 /CHANGES
parent: 69bb35ed726102975259808dcf7c279f85afef4f (diff)
download: openssl-7f89714e64d1dc64b50554a92e2a12596b9934ba.tar.gz
1 files changed, 7 insertions, 0 deletions
diff --git a/CHANGES b/CHANGES
index 89bdc84b5c..34908a3487 100644
--- a/CHANGES
+++ b/CHANGES
@@ -5,6 +5,13 @@
 
  Changes between 0.9.2b and 0.9.3
 
+  *) Support verify_depth from the SSL API.
+     x509_vfy.c had what can be considered an off-by-one-error:
+     Its depth (which was not part of the external interface)
+     was actually counting the number of certificates in a chain;
+     now it really counts the depth.
+     [Bodo Moeller]
+
   *) New function SSL_CTX_set_session_id_context that allows to set a default
      value (so that you don't need SSL_set_session_id_context for each
      connection using the SSL_CTX).
author	Bodo Möller <bodo@openssl.org>	1999-05-01 03:20:40 +0000
committer	Bodo Möller <bodo@openssl.org>	1999-05-01 03:20:40 +0000
commit	7f89714e64d1dc64b50554a92e2a12596b9934ba (patch)
tree	940620d173d8a4c7cbea392ba4c9760b7a6efa23 /CHANGES
parent	69bb35ed726102975259808dcf7c279f85afef4f (diff)
download	openssl-7f89714e64d1dc64b50554a92e2a12596b9934ba.tar.gz