source: mod_gnutls/NEWS @ ae233c2

debian/masterdebian/stretch-backportsjessie-backportsmsvaupstream
Last change on this file since ae233c2 was ae233c2, checked in by Nikos Mavrogiannopoulos <nmav@…>, 9 years ago

Added option to turn on/off session tickets.

  • Property mode set to 100644
File size: 2.7 KB
Line 
1** Version 0.5.7 (2010-07-01)
2- Force usage of SDBM. For some reason the default in
3  my system had issues after reaching a limit of entries.
4  SDBM seems stable so force it.
5
6- Optimizations in session caching.
7
8- Added support for session tickets. This allows a
9  server to avoid using a session cache and still support
10  session resumption. This is at the cost of transporting
11  session data during handshake. New option
12  GnuTLSSessionTickets [on|off]
13
14- Depend on gnutls 2.10.0 to force support for safe
15  renegotiation.
16
17** Version 0.5.6 (2010-03-24)
18- Corrected issue with firefox and long POST data (by
19  handling EINTR and EAGAIN errors in read).
20
21- Added support for chained client certificates
22
23- Corrected more issues related to double frees
24http://issues.outoforder.cc/view.php?id=102
25
26** Version 0.5.5 (2009-06-13)
27
28- Removed limits on CA certificate loading. Reported by
29  Sander Marechal and Jack Bates.
30
31- Do not allow sending empty TLS packets even when instructed to.
32  This had the side effect of clients closing connection.
33
34** Version 0.5.4 (2009-01-04)
35
36- mod_gnutls.h: modified definition to extern to avoid compilation
37  errors in darwin.
38
39- Added patch to fix issue with mod_proxy. Investigation and patch by Alain
40  Knaff.
41
42- libgnutls detection uses pkg-config.
43
44** Version 0.5.3 (2008-10-16)
45
46- Corrected bug to allow having an OpenPGP-only web site.
47
48- Increased Max handshake tries due to interrupted system calls.
49
50** Version 0.5.2 (2008-06-29)
51
52- Depend on gnutls 2.4 which has openpgp support in main library.
53
54** Version 0.5.1 (2008-03-05)
55
56- Added --disable-srp configure option
57
58- Better check for memcache (patch by Guillaume Rousse)
59
60- Corrected possible memory leak in DBM support for resuming sessions.
61
62** Version 0.5.0-alpha (2008-01-24)
63
64- Added support for OpenPGP keys. The new directives are:
65  GnuTLSPGPKeyringFile, GnuTLSPGPCertificateFile, GnuTLSPGPKeyFile
66
67** Version 0.4.2 (2007-12-10)
68
69- Added support for sending a certificate chain.
70
71- Corrected bug which did not allow the TLS session cache to be used.
72
73- Do not allow resuming sessions on different servers.
74
75** Version 0.4.1 (2007-12-03)
76
77- Added support for subject alternative names in certificates.
78Only one per certificate is supported.
79
80- New enviroment variables: SSL_CLIENT_M_VERSION, SSL_CLIENT_S_SAN%,
81SSL_CLIENT_S_TYPE, SSL_SERVER_M_VERSION, SSL_SERVER_S_SAN%, SSL_SERVER_S_TYPE
82
83- The compatibility mode can now be enabled explicitely with the
84%COMPAT keyword at the GnuTLSPriorities string. It is no longer the default.
85
86- Check for GnuTLSPriorities directive. This corrects a segfault. Thanks
87to David Hrbáč.
88
89- Better handling of GnuTLSDHFile and GnuTLSRSAFile.
90
91- No longer default paths for RSA and DH parameter files.
Note: See TracBrowser for help on using the repository browser.