source: mod_gnutls/NEWS @ 7ce01c9

debian/masterdebian/stretch-backportsjessie-backportsmsvaupstream
Last change on this file since 7ce01c9 was 7ce01c9, checked in by Nikos Mavrogiannopoulos <nmav@…>, 9 years ago

Corrected behavior in Keep-Alive connections (do not
terminate the connection prematurely)

  • Property mode set to 100644
File size: 2.9 KB
RevLine 
[7ce01c9]1** Version 0.5.9 (unreleased)
2- Corrected behavior in Keep-Alive connections (do not
3  terminate the connection prematurely)
4
[41dd507]5** Version 0.5.8 (2010-08-18)
[bca274d]6- Session tickets are enabled by default.
7
[41dd507]8- Fixes some segmentation faults noticed in some
9  configurations.
10
[7b3e5de]11** Version 0.5.7 (2010-07-01)
[03a9a6b]12- Force usage of SDBM. For some reason the default in
13  my system had issues after reaching a limit of entries.
14  SDBM seems stable so force it.
15
16- Optimizations in session caching.
17
[4deda6d]18- Added support for session tickets. This allows a
19  server to avoid using a session cache and still support
20  session resumption. This is at the cost of transporting
[ae233c2]21  session data during handshake. New option
22  GnuTLSSessionTickets [on|off]
[bf41514]23
24- Depend on gnutls 2.10.0 to force support for safe
25  renegotiation.
26
[d02158b]27** Version 0.5.6 (2010-03-24)
[9085f5b]28- Corrected issue with firefox and long POST data (by
29  handling EINTR and EAGAIN errors in read).
30
31- Added support for chained client certificates
32
33- Corrected more issues related to double frees
34http://issues.outoforder.cc/view.php?id=102
35
36** Version 0.5.5 (2009-06-13)
[8663ace]37
38- Removed limits on CA certificate loading. Reported by
39  Sander Marechal and Jack Bates.
40
[9085f5b]41- Do not allow sending empty TLS packets even when instructed to.
42  This had the side effect of clients closing connection.
43
[8663ace]44** Version 0.5.4 (2009-01-04)
[6d4de37]45
46- mod_gnutls.h: modified definition to extern to avoid compilation
47  errors in darwin.
48
[f46e1f2]49- Added patch to fix issue with mod_proxy. Investigation and patch by Alain
50  Knaff.
51
52- libgnutls detection uses pkg-config.
53
[bde24cf]54** Version 0.5.3 (2008-10-16)
[7ca474b]55
[bde24cf]56- Corrected bug to allow having an OpenPGP-only web site.
57
58- Increased Max handshake tries due to interrupted system calls.
[7ca474b]59
[1897a1c]60** Version 0.5.2 (2008-06-29)
61
62- Depend on gnutls 2.4 which has openpgp support in main library.
63
[b71edd5]64** Version 0.5.1 (2008-03-05)
[b333517]65
66- Added --disable-srp configure option
67
68- Better check for memcache (patch by Guillaume Rousse)
69
[fc4c2e47]70- Corrected possible memory leak in DBM support for resuming sessions.
71
[f548f15]72** Version 0.5.0-alpha (2008-01-24)
[e5bbda4]73
[f548f15]74- Added support for OpenPGP keys. The new directives are:
75  GnuTLSPGPKeyringFile, GnuTLSPGPCertificateFile, GnuTLSPGPKeyFile
[e5bbda4]76
[a2cb12f]77** Version 0.4.2 (2007-12-10)
[5e81262]78
79- Added support for sending a certificate chain.
80
[ae4a2b0]81- Corrected bug which did not allow the TLS session cache to be used.
82
[c055502]83- Do not allow resuming sessions on different servers.
84
[8e2a483]85** Version 0.4.1 (2007-12-03)
[3dbff0d]86
87- Added support for subject alternative names in certificates.
88Only one per certificate is supported.
[5cac844]89
[af4998e]90- New enviroment variables: SSL_CLIENT_M_VERSION, SSL_CLIENT_S_SAN%,
[ea470be]91SSL_CLIENT_S_TYPE, SSL_SERVER_M_VERSION, SSL_SERVER_S_SAN%, SSL_SERVER_S_TYPE
92
93- The compatibility mode can now be enabled explicitely with the
94%COMPAT keyword at the GnuTLSPriorities string. It is no longer the default.
[d786d75]95
[a3c97d1]96- Check for GnuTLSPriorities directive. This corrects a segfault. Thanks
97to David Hrbáč.
98
99- Better handling of GnuTLSDHFile and GnuTLSRSAFile.
[d786d75]100
101- No longer default paths for RSA and DH parameter files.
Note: See TracBrowser for help on using the repository browser.