otp.git/lib, branch OTP-18.3.4

Update release notes

2016-06-13T11:21:37+00:00

Merge branch 'ingela/inets/clean-white-space/OTP-13663' into maint-18

2016-06-13T11:21:25+00:00

* ingela/inets/clean-white-space/OTP-13663:
  inets: Prepare for release
  inets: Handle multiple \t in mime types file

Merge branch 'ingela/maint/ssl/max-session-table/OTP-13490' into maint-18

2016-06-13T11:21:25+00:00

* ingela/maint/ssl/max-session-table/OTP-13490:
  ssl: Mitigate load increase when the whole session table is invalidated

Merge branch 'joedevivo/maint/ssl/PR-1063/OTP-13635' into maint-18

2016-06-13T11:21:23+00:00

* joedevivo/maint/ssl/PR-1063/OTP-13635:
  ssl:recv timeout() can be 0

Merge branch 'ingela/maint/ssl/tls-1.2-available-hashsigns/OTP-13670' into maint-18

2016-06-13T11:21:23+00:00

* ingela/maint/ssl/tls-1.2-available-hashsigns/OTP-13670:
  ssl: ordsets:intersection/2 did not give the expected result

Merge branch 'kennethlakin/maint/tls-use-negotiated-prf/PR-1042/OTP-13546' into maint-18

2016-06-13T11:21:22+00:00

* kennethlakin/maint/tls-use-negotiated-prf/PR-1042/OTP-13546:
  ssl: Use cipher suite's PRF in prf/5

ssl: Mitigate load increase when the whole session table is invalidated

2016-06-13T11:11:03+00:00

inets: Prepare for release

2016-06-13T10:37:55+00:00

ssl: Prepare for release

2016-06-13T10:34:34+00:00

ssl: Use cipher suite's PRF in prf/5

2016-06-09T16:12:48+00:00

Use the negotiated cipher suite's PRF algorithm in calls to
ssl:prf/5, rather than a hard-coded one.

For TLS 1.0 the PRF algorithm was hard-coded to MD5/SHA1. This
was correct 100% of the time.

For TLS 1.1 and 1.2 the PRF algorithm was hard-coded to SHA256.
This was correct only some of the time for TLS 1.2 and none of the
time for TLS 1.1. Because the TLS handshake code calls tls_v1:prf/5
through another path, the handshaking process used the negotiated
PRF and did not encounter this bug.

A new test (prf) has been added to ssl_basic_SUITE to guard against future
breakage.