source: mod_gnutls/NEWS @ 771ca63

debian/masterdebian/stretch-backportsjessie-backportsmsvaupstream
Last change on this file since 771ca63 was 771ca63, checked in by Nikos Mavrogiannopoulos <nmav@…>, 9 years ago

The GnuTLSCache variable now can be given the specific
option "sdbm" instead of "dbm". "dbm" will use the default
dbm type of libapr while sdbm will force sdbm to be used.

  • Property mode set to 100644
File size: 3.1 KB
Line 
1** Version 0.5.9 (unreleased)
2- Corrected behavior in Keep-Alive connections (do not
3  terminate the connection prematurely)
4
5- The GnuTLSCache variable now can be given the specific
6  option "sdbm" instead of "dbm". "dbm" will use the default
7  dbm type of libapr while sdbm will force sdbm to be used.
8
9** Version 0.5.8 (2010-08-18)
10- Session tickets are enabled by default.
11
12- Fixes some segmentation faults noticed in some
13  configurations.
14
15** Version 0.5.7 (2010-07-01)
16- Force usage of SDBM. For some reason the default in
17  my system had issues after reaching a limit of entries.
18  SDBM seems stable so force it.
19
20- Optimizations in session caching.
21
22- Added support for session tickets. This allows a
23  server to avoid using a session cache and still support
24  session resumption. This is at the cost of transporting
25  session data during handshake. New option
26  GnuTLSSessionTickets [on|off]
27
28- Depend on gnutls 2.10.0 to force support for safe
29  renegotiation.
30
31** Version 0.5.6 (2010-03-24)
32- Corrected issue with firefox and long POST data (by
33  handling EINTR and EAGAIN errors in read).
34
35- Added support for chained client certificates
36
37- Corrected more issues related to double frees
38http://issues.outoforder.cc/view.php?id=102
39
40** Version 0.5.5 (2009-06-13)
41
42- Removed limits on CA certificate loading. Reported by
43  Sander Marechal and Jack Bates.
44
45- Do not allow sending empty TLS packets even when instructed to.
46  This had the side effect of clients closing connection.
47
48** Version 0.5.4 (2009-01-04)
49
50- mod_gnutls.h: modified definition to extern to avoid compilation
51  errors in darwin.
52
53- Added patch to fix issue with mod_proxy. Investigation and patch by Alain
54  Knaff.
55
56- libgnutls detection uses pkg-config.
57
58** Version 0.5.3 (2008-10-16)
59
60- Corrected bug to allow having an OpenPGP-only web site.
61
62- Increased Max handshake tries due to interrupted system calls.
63
64** Version 0.5.2 (2008-06-29)
65
66- Depend on gnutls 2.4 which has openpgp support in main library.
67
68** Version 0.5.1 (2008-03-05)
69
70- Added --disable-srp configure option
71
72- Better check for memcache (patch by Guillaume Rousse)
73
74- Corrected possible memory leak in DBM support for resuming sessions.
75
76** Version 0.5.0-alpha (2008-01-24)
77
78- Added support for OpenPGP keys. The new directives are:
79  GnuTLSPGPKeyringFile, GnuTLSPGPCertificateFile, GnuTLSPGPKeyFile
80
81** Version 0.4.2 (2007-12-10)
82
83- Added support for sending a certificate chain.
84
85- Corrected bug which did not allow the TLS session cache to be used.
86
87- Do not allow resuming sessions on different servers.
88
89** Version 0.4.1 (2007-12-03)
90
91- Added support for subject alternative names in certificates.
92Only one per certificate is supported.
93
94- New enviroment variables: SSL_CLIENT_M_VERSION, SSL_CLIENT_S_SAN%,
95SSL_CLIENT_S_TYPE, SSL_SERVER_M_VERSION, SSL_SERVER_S_SAN%, SSL_SERVER_S_TYPE
96
97- The compatibility mode can now be enabled explicitely with the
98%COMPAT keyword at the GnuTLSPriorities string. It is no longer the default.
99
100- Check for GnuTLSPriorities directive. This corrects a segfault. Thanks
101to David Hrbáč.
102
103- Better handling of GnuTLSDHFile and GnuTLSRSAFile.
104
105- No longer default paths for RSA and DH parameter files.
Note: See TracBrowser for help on using the repository browser.