Elan Ruusamäe [Wed, 1 Apr 2015 10:39:38 +0000 (13:39 +0300)]
up to 1.17.0
- added a patch to check revocation via OCSP
- added the --tls1 option to force TLS 1
- Added an option to force a given SSL version
- Fixed a bug occuring with TLS and multiple names in the certificate
- removed "test -a/-o" (test has an undefined behavior with more than 4 elements)
- fixed: -N was always comparing the CN with 'localhost')
- improved the "No certificate returned" error message
- handle broken OpenSSL clients (-servername not working)
- removed an hard coded reference to the error number by the SSL chain verification