source: mod_gnutls/NEWS @ 41dd507

debian/masterdebian/stretch-backportsjessie-backportsmsvaproxy-ticketupstream
Last change on this file since 41dd507 was 41dd507, checked in by Nikos Mavrogiannopoulos <nmav@…>, 10 years ago

Released 0.5.8.

  • Property mode set to 100644
File size: 2.8 KB
RevLine 
[41dd507]1** Version 0.5.8 (2010-08-18)
[bca274d]2- Session tickets are enabled by default.
3
[41dd507]4- Fixes some segmentation faults noticed in some
5  configurations.
6
[7b3e5de]7** Version 0.5.7 (2010-07-01)
[03a9a6b]8- Force usage of SDBM. For some reason the default in
9  my system had issues after reaching a limit of entries.
10  SDBM seems stable so force it.
11
12- Optimizations in session caching.
13
[4deda6d]14- Added support for session tickets. This allows a
15  server to avoid using a session cache and still support
16  session resumption. This is at the cost of transporting
[ae233c2]17  session data during handshake. New option
18  GnuTLSSessionTickets [on|off]
[bf41514]19
20- Depend on gnutls 2.10.0 to force support for safe
21  renegotiation.
22
[d02158b]23** Version 0.5.6 (2010-03-24)
[9085f5b]24- Corrected issue with firefox and long POST data (by
25  handling EINTR and EAGAIN errors in read).
26
27- Added support for chained client certificates
28
29- Corrected more issues related to double frees
30http://issues.outoforder.cc/view.php?id=102
31
32** Version 0.5.5 (2009-06-13)
[8663ace]33
34- Removed limits on CA certificate loading. Reported by
35  Sander Marechal and Jack Bates.
36
[9085f5b]37- Do not allow sending empty TLS packets even when instructed to.
38  This had the side effect of clients closing connection.
39
[8663ace]40** Version 0.5.4 (2009-01-04)
[6d4de37]41
42- mod_gnutls.h: modified definition to extern to avoid compilation
43  errors in darwin.
44
[f46e1f2]45- Added patch to fix issue with mod_proxy. Investigation and patch by Alain
46  Knaff.
47
48- libgnutls detection uses pkg-config.
49
[bde24cf]50** Version 0.5.3 (2008-10-16)
[7ca474b]51
[bde24cf]52- Corrected bug to allow having an OpenPGP-only web site.
53
54- Increased Max handshake tries due to interrupted system calls.
[7ca474b]55
[1897a1c]56** Version 0.5.2 (2008-06-29)
57
58- Depend on gnutls 2.4 which has openpgp support in main library.
59
[b71edd5]60** Version 0.5.1 (2008-03-05)
[b333517]61
62- Added --disable-srp configure option
63
64- Better check for memcache (patch by Guillaume Rousse)
65
[fc4c2e47]66- Corrected possible memory leak in DBM support for resuming sessions.
67
[f548f15]68** Version 0.5.0-alpha (2008-01-24)
[e5bbda4]69
[f548f15]70- Added support for OpenPGP keys. The new directives are:
71  GnuTLSPGPKeyringFile, GnuTLSPGPCertificateFile, GnuTLSPGPKeyFile
[e5bbda4]72
[a2cb12f]73** Version 0.4.2 (2007-12-10)
[5e81262]74
75- Added support for sending a certificate chain.
76
[ae4a2b0]77- Corrected bug which did not allow the TLS session cache to be used.
78
[c055502]79- Do not allow resuming sessions on different servers.
80
[8e2a483]81** Version 0.4.1 (2007-12-03)
[3dbff0d]82
83- Added support for subject alternative names in certificates.
84Only one per certificate is supported.
[5cac844]85
[af4998e]86- New enviroment variables: SSL_CLIENT_M_VERSION, SSL_CLIENT_S_SAN%,
[ea470be]87SSL_CLIENT_S_TYPE, SSL_SERVER_M_VERSION, SSL_SERVER_S_SAN%, SSL_SERVER_S_TYPE
88
89- The compatibility mode can now be enabled explicitely with the
90%COMPAT keyword at the GnuTLSPriorities string. It is no longer the default.
[d786d75]91
[a3c97d1]92- Check for GnuTLSPriorities directive. This corrects a segfault. Thanks
93to David Hrbáč.
94
95- Better handling of GnuTLSDHFile and GnuTLSRSAFile.
[d786d75]96
97- No longer default paths for RSA and DH parameter files.
Note: See TracBrowser for help on using the repository browser.