Delete NULL ciphers from 'ALL' in the cipher list aliases. This means that NULL ciphers specifically have to be enabled with e.g. "DEFAULT:eNULL". This prevents cipher lists from inadvertantly having NULL ciphers at the top of their list (e.g. the default ones) because they didn't have to be taken into account before.

commit: bc420ac592df14384ba4acf7104482123e8729ba [log] [tgz]
author: Dr. Stephen Henson <steve@openssl.org> Fri Mar 12 01:43:28 1999 +0000
committer: Dr. Stephen Henson <steve@openssl.org> Fri Mar 12 01:43:28 1999 +0000
tree: ec02b3a751339a1a70935bff519e10b7510e582c
parent: abd4c915271d8660f52e5e8c5b6abc9deed1302a [diff] [blame]
diff --git a/CHANGES b/CHANGES
index 277b540..a121754 100644
--- a/CHANGES
+++ b/CHANGES

@@ -5,6 +5,12 @@
 
  Changes between 0.9.1c and 0.9.2
 
+  *) Change the meaning of 'ALL' in the cipher list. It now means "everything
+     except NULL ciphers". This means the default cipher list will no longer
+     enable NULL ciphers. They need to be specifically enabled e.g. with
+     the string "DEFAULT:eNULL".
+     [Steve Henson]
+
   *) Fix to RSA private encryption routines: if p < q then it would
      occasionally produce an invalid result. This will only happen with
      externally generated keys because OpenSSL (and SSLeay) ensure p > q.
commit	bc420ac592df14384ba4acf7104482123e8729ba	[log] [tgz]
author	Dr. Stephen Henson <steve@openssl.org>	Fri Mar 12 01:43:28 1999 +0000
committer	Dr. Stephen Henson <steve@openssl.org>	Fri Mar 12 01:43:28 1999 +0000
tree	ec02b3a751339a1a70935bff519e10b7510e582c
parent	abd4c915271d8660f52e5e8c5b6abc9deed1302a [diff] [blame]