Changeset ae29683 in mod_gnutls for CHANGELOG


Ignore:
Timestamp:
Feb 21, 2014, 12:15:56 AM (6 years ago)
Author:
Daniel Kahn Gillmor <dkg@…>
Branches:
debian/master, debian/stretch-backports, jessie-backports, upstream
Children:
4addf74, 62f781c
Parents:
180e49f (diff), 1a99240 (diff)
Note: this is a merge changeset, the changes displayed below correspond to the merge itself.
Use the (diff) links above to see all the changes relative to each parent.
Message:

Imported Upstream version 0.6

File:
1 moved

Legend:

Unmodified
Added
Removed

  • CHANGELOG

    r180e49f rae29683  
    1 ** Version 0.6.0
    2 - GnuTLSCache none is now an allowed option.
     1**TODO:
     2- Fix support for proxy termination
     3- Handle Unclean Shutdowns
     4- make session cache use generic apache caches
     5
     6** Version 0.6 (2014-02-17)
     7- Generating DH Params instead of using static ones.
     8- Now considering ServerAlias Directives.
     9- Major Legacy Code Cleanup.
     10- html and pdf and manual documentation generated from markdown sources
     11- support monkeysphere validation agent (MSVA) client-certificate verification
     12- wider test suite
     13- GnuTLSExportCertificates off by default
     14
     15** Version 0.5.10 (2011-07-12)
     16- Patched a bug responsible for excessive memory consumption by mod_gnutls.
     17- Support for proxying from SSL to plain HTTP was added (ie. proxy termination).
    318
    419** Version 0.5.9 (2010-09-24)
     20- GnuTLSCache none is now an allowed option.
    521- Corrected behavior in Keep-Alive connections (do not
    622  terminate the connection prematurely)
    7 
    823- The GnuTLSCache variable now can be given the specific
    924  option "gdbm" instead of "dbm". "dbm" will use the berkeley
     
    1328** Version 0.5.8 (2010-08-18)
    1429- Session tickets are enabled by default.
    15 
    1630- Fixes some segmentation faults noticed in some
    1731  configurations.
     
    2135  my system had issues after reaching a limit of entries.
    2236  SDBM seems stable so force it.
    23 
    2437- Optimizations in session caching.
    25 
    2638- Added support for session tickets. This allows a
    2739  server to avoid using a session cache and still support
     
    2941  session data during handshake. New option
    3042  GnuTLSSessionTickets [on|off]
    31 
    3243- Depend on gnutls 2.10.0 to force support for safe
    3344  renegotiation.
     
    3647- Corrected issue with firefox and long POST data (by
    3748  handling EINTR and EAGAIN errors in read).
    38 
    3949- Added support for chained client certificates
    40 
    4150- Corrected more issues related to double frees
    4251http://issues.outoforder.cc/view.php?id=102
    4352
    4453** Version 0.5.5 (2009-06-13)
    45 
    4654- Removed limits on CA certificate loading. Reported by
    4755  Sander Marechal and Jack Bates.
    48 
    4956- Do not allow sending empty TLS packets even when instructed to.
    5057  This had the side effect of clients closing connection.
    5158
    5259** Version 0.5.4 (2009-01-04)
    53 
    5460- mod_gnutls.h: modified definition to extern to avoid compilation
    5561  errors in darwin.
    56 
    5762- Added patch to fix issue with mod_proxy. Investigation and patch by Alain
    5863  Knaff.
    59 
    6064- libgnutls detection uses pkg-config.
    6165
    6266** Version 0.5.3 (2008-10-16)
    63 
    6467- Corrected bug to allow having an OpenPGP-only web site.
    65 
    6668- Increased Max handshake tries due to interrupted system calls.
    6769
    6870** Version 0.5.2 (2008-06-29)
    69 
    7071- Depend on gnutls 2.4 which has openpgp support in main library.
    7172
    7273** Version 0.5.1 (2008-03-05)
    73 
    7474- Added --disable-srp configure option
    75 
    7675- Better check for memcache (patch by Guillaume Rousse)
    77 
    7876- Corrected possible memory leak in DBM support for resuming sessions.
    7977
    8078** Version 0.5.0-alpha (2008-01-24)
    81 
    8279- Added support for OpenPGP keys. The new directives are:
    8380  GnuTLSPGPKeyringFile, GnuTLSPGPCertificateFile, GnuTLSPGPKeyFile
    8481
    8582** Version 0.4.2 (2007-12-10)
    86 
    8783- Added support for sending a certificate chain.
    88 
    8984- Corrected bug which did not allow the TLS session cache to be used.
    90 
    9185- Do not allow resuming sessions on different servers.
    9286
    9387** Version 0.4.1 (2007-12-03)
    94 
    9588- Added support for subject alternative names in certificates.
    9689Only one per certificate is supported.
    97 
    9890- New enviroment variables: SSL_CLIENT_M_VERSION, SSL_CLIENT_S_SAN%,
    9991SSL_CLIENT_S_TYPE, SSL_SERVER_M_VERSION, SSL_SERVER_S_SAN%, SSL_SERVER_S_TYPE
    100 
    10192- The compatibility mode can now be enabled explicitely with the
    10293%COMPAT keyword at the GnuTLSPriorities string. It is no longer the default.
    103 
    10494- Check for GnuTLSPriorities directive. This corrects a segfault. Thanks
    10595to David Hrbáč.
    106 
    10796- Better handling of GnuTLSDHFile and GnuTLSRSAFile.
    108 
    10997- No longer default paths for RSA and DH parameter files.
Note: See TracChangeset for help on using the changeset viewer.