products:openssl:history_3.4
YuOpenSSL-3.4: Version History
YuOpenSSL is a Delphi port of the OpenSSL cryptography and SSL/TSL library. All code is statically compiled into applications. OpenSSL DLLs are not needed. Over 5000 functions, procedures, constants, and types are ready to use in a single Delphi unit.
YuOpenSSL-3.4 v1.0.0 – 21 Nov 2024
First release, based on OpenSSL 3.4.0.
Changes from OpenSSL 3.3:
Potentially significant or incompatible changes:
- SHAKE-128 and SHAKE-256 implementations have no default digest length anymore. That means these algorithms cannot be used with
EVP_DigestFinal/EVP_DigestFinal_exunless thexoflenparam is set before. - An empty renegotiate extension will be used in TLS client hellos instead of the empty renegotiation SCSV, for all connections with a minimum TLS version > 1.0.
- Deprecation of
SSL_SESSION_get_time,SSL_SESSION_set_time, andSSL_CTX_flush_sessionsfunctions in favor of their respective…_exfunctionsSSL_SESSION_get_time_ex,SSL_SESSION_set_time_ex, andSSL_CTX_flush_sessions_exwhich are Y2038-safe on platforms with Y2038-safeC_time_t.
New features:
- Support for directly fetched composite signature algorithms such as RSA-SHA2-256 including new API functions.
- Implementation of RFC 9579 (PBMAC1) in PKCS#12.
- Support for integrity-only cipher suites TLS_SHA256_SHA256 and TLS_SHA384_SHA384 in TLS 1.3, as defined in RFC 9150.
- Support for requesting CRL in CMP.
- Support for additional X.509v3 extensions related to Attribute Certificates.
- Initial Attribute Certificate (RFC 5755) support.
- Possibility to customize ECC groups initialization to use precomputed values to save CPU time and use of this feature by the P-256 implementation.
products/openssl/history_3.4.txt · Last modified: 2024/11/21 22:04 by 127.0.0.1