Releases: mirleft/ocaml-tls
Releases · mirleft/ocaml-tls
0.17.4
CHANGES:
- tls: handle half-closed connection properly: a received CLOSE_NOTIFY does not
lead to a CLOSE_NOTIFY to be sent (asend_close_notify
sends it explicitly)
(#488 @hannesm) - tls: modify return type of
handle_tls
- the Alert is now in the right hand
side, and`Eof
is explicit in the second part of the tuple
(#488 @hannesm) - tls: remove
can_handle_appdata
, the functionhandshake_in_progress
is
available (#488 @hannesm) - tls-mirage: avoid exceptions in reneg and rekey (#487 @hannesm)
- tls: remove HEARTBEAT decoding - HEARTBEAT was never supported in this
library, the decoder was superfluous (#487 @hannesm) - tls-mirage: provide
underlying : flow -> FLOW.flow
(#487 @hannesm,
fixes #425 @dinosaure) - tls-mirage: implement mirage-flow 4 API (
val shutdown
) (#488 @hannesm) - tls-eio: adapt to half-closed connections (#488 @talex5)
- tls-eio: implement Eio.Resource.Close (#489 @paurkedal, reviewed by @talex5)
0.17.3
CHANGES:
- tls: provide Engine.export_key_material, which implements RFC 5705 (and 8446)
TLS EKM (#482 @hannesm) - tls: fix protocol_version in Engine.epoch (TLS 1.3 always pretended TLS 1.0)
(#482 @hannesm) - tls: add the side (
`Client
or`Server
) to epoch_data
(#482 @hannesm) - BREAKING tls: Engine.epoch - return result instead of custom variant
(#483 @hannesm)
0.17.2
0.17.1
0.17.0
0.16.0
CHANGES:
- BREAKING: new opam package tls-lwt (formerly tls.lwt), in dune:
(libraries tls.lwt) should now be libraries (tls-lwt)
(#468 @hannesm, reported #449 by @mbacarella) - tls: update to mirage-crypto 0.11 API (#468 @hannesm)
- tls: relax SignatureAlgorithms extension handling to allow OpenSSL
interoperability tests with TLS 1.0 and TLS 1.1 (#469 @hannesm) - tls: remove Utils.filter_map and and Utils.option, use Stdlib instead (#455
@hannesm) - tls: do not globally open Utils (#455 @hannesm)
- tls: export log source of Tracing module (#461 @bikallem)
- tls: remove unused ciphersuites to reduce binary size (#467 @hannesm)
- tls-lwt: do not catch out of memory exception (#469 @hannesm)
- tls-eio: add fuzz testing using crowbar (#456 #463 @talex5)
- tls-eio: update to eio 0.7 (#456 @talex5)
- tls-eio: fix test for develop with vendoring (#462 @bikallem)