source: mod_gnutls/NEWS @ be90561

debian/masterdebian/stretch-backportsjessie-backportsmsvaupstream
Last change on this file since be90561 was be90561, checked in by Nikos Mavrogiannopoulos <nmav@…>, 9 years ago

Updated for 0.5.9

  • Property mode set to 100644
File size: 3.2 KB
Line 
1** Version 0.5.9 (2010-09-24)
2- Corrected behavior in Keep-Alive connections (do not
3  terminate the connection prematurely)
4
5- The GnuTLSCache variable now can be given the specific
6  option "gdbm" instead of "dbm". "dbm" will use the berkeley
7  db type of libapr while gdbm will force gdbm to be used.
8  sdbm is no longer being used due to serious limitations.
9
10** Version 0.5.8 (2010-08-18)
11- Session tickets are enabled by default.
12
13- Fixes some segmentation faults noticed in some
14  configurations.
15
16** Version 0.5.7 (2010-07-01)
17- Force usage of SDBM. For some reason the default in
18  my system had issues after reaching a limit of entries.
19  SDBM seems stable so force it.
20
21- Optimizations in session caching.
22
23- Added support for session tickets. This allows a
24  server to avoid using a session cache and still support
25  session resumption. This is at the cost of transporting
26  session data during handshake. New option
27  GnuTLSSessionTickets [on|off]
28
29- Depend on gnutls 2.10.0 to force support for safe
30  renegotiation.
31
32** Version 0.5.6 (2010-03-24)
33- Corrected issue with firefox and long POST data (by
34  handling EINTR and EAGAIN errors in read).
35
36- Added support for chained client certificates
37
38- Corrected more issues related to double frees
39http://issues.outoforder.cc/view.php?id=102
40
41** Version 0.5.5 (2009-06-13)
42
43- Removed limits on CA certificate loading. Reported by
44  Sander Marechal and Jack Bates.
45
46- Do not allow sending empty TLS packets even when instructed to.
47  This had the side effect of clients closing connection.
48
49** Version 0.5.4 (2009-01-04)
50
51- mod_gnutls.h: modified definition to extern to avoid compilation
52  errors in darwin.
53
54- Added patch to fix issue with mod_proxy. Investigation and patch by Alain
55  Knaff.
56
57- libgnutls detection uses pkg-config.
58
59** Version 0.5.3 (2008-10-16)
60
61- Corrected bug to allow having an OpenPGP-only web site.
62
63- Increased Max handshake tries due to interrupted system calls.
64
65** Version 0.5.2 (2008-06-29)
66
67- Depend on gnutls 2.4 which has openpgp support in main library.
68
69** Version 0.5.1 (2008-03-05)
70
71- Added --disable-srp configure option
72
73- Better check for memcache (patch by Guillaume Rousse)
74
75- Corrected possible memory leak in DBM support for resuming sessions.
76
77** Version 0.5.0-alpha (2008-01-24)
78
79- Added support for OpenPGP keys. The new directives are:
80  GnuTLSPGPKeyringFile, GnuTLSPGPCertificateFile, GnuTLSPGPKeyFile
81
82** Version 0.4.2 (2007-12-10)
83
84- Added support for sending a certificate chain.
85
86- Corrected bug which did not allow the TLS session cache to be used.
87
88- Do not allow resuming sessions on different servers.
89
90** Version 0.4.1 (2007-12-03)
91
92- Added support for subject alternative names in certificates.
93Only one per certificate is supported.
94
95- New enviroment variables: SSL_CLIENT_M_VERSION, SSL_CLIENT_S_SAN%,
96SSL_CLIENT_S_TYPE, SSL_SERVER_M_VERSION, SSL_SERVER_S_SAN%, SSL_SERVER_S_TYPE
97
98- The compatibility mode can now be enabled explicitely with the
99%COMPAT keyword at the GnuTLSPriorities string. It is no longer the default.
100
101- Check for GnuTLSPriorities directive. This corrects a segfault. Thanks
102to David Hrbáč.
103
104- Better handling of GnuTLSDHFile and GnuTLSRSAFile.
105
106- No longer default paths for RSA and DH parameter files.
Note: See TracBrowser for help on using the repository browser.