0.17.4

CHANGES:

• tls: handle half-closed connection properly: a received CLOSE_NOTIFY does not
  lead to a CLOSE_NOTIFY to be sent (a send_close_notify sends it explicitly)
  (#488 @hannesm)
• tls: modify return type of handle_tls - the Alert is now in the right hand
  side, and `Eof is explicit in the second part of the tuple
  (#488 @hannesm)
• tls: remove can_handle_appdata, the function handshake_in_progress is
  available (#488 @hannesm)
• tls-mirage: avoid exceptions in reneg and rekey (#487 @hannesm)
• tls: remove HEARTBEAT decoding - HEARTBEAT was never supported in this
  library, the decoder was superfluous (#487 @hannesm)
• tls-mirage: provide underlying : flow -> FLOW.flow (#487 @hannesm,
  fixes #425 @dinosaure)
• tls-mirage: implement mirage-flow 4 API (val shutdown) (#488 @hannesm)
• tls-eio: adapt to half-closed connections (#488 @talex5)
• tls-eio: implement Eio.Resource.Close (#489 @paurkedal, reviewed by @talex5)

0.17.3

CHANGES:

• tls: provide Engine.export_key_material, which implements RFC 5705 (and 8446)
  TLS EKM (#482 @hannesm)
• tls: fix protocol_version in Engine.epoch (TLS 1.3 always pretended TLS 1.0)
  (#482 @hannesm)
• tls: add the side (`Client or `Server) to epoch_data
  (#482 @hannesm)
• BREAKING tls: Engine.epoch - return result instead of custom variant
  (#483 @hannesm)

0.17.2

CHANGES:

• tls-eio: update to eio 0.12 (#479 @talex5)

0.17.1

CHANGES:

• tls-async: update to 0.16 series (#476 @tmcgilchrist, review by @torinnd)
• avoid Cstruct.copy (@hannesm)

0.17.0

CHANGES:

• tls-async: remove ocaml < 5.0.0 constraint (#471 #474 @hannesm)
• remove dependency on ppx, especially ppx_cstruct and ppx_sexp_conv across
  the libraries (#473 @hannesm, discussion in #472)

0.16.0

CHANGES:

• BREAKING: new opam package tls-lwt (formerly tls.lwt), in dune:
  (libraries tls.lwt) should now be libraries (tls-lwt)
  (#468 @hannesm, reported #449 by @mbacarella)
• tls: update to mirage-crypto 0.11 API (#468 @hannesm)
• tls: relax SignatureAlgorithms extension handling to allow OpenSSL
  interoperability tests with TLS 1.0 and TLS 1.1 (#469 @hannesm)
• tls: remove Utils.filter_map and and Utils.option, use Stdlib instead (#455
  @hannesm)
• tls: do not globally open Utils (#455 @hannesm)
• tls: export log source of Tracing module (#461 @bikallem)
• tls: remove unused ciphersuites to reduce binary size (#467 @hannesm)
• tls-lwt: do not catch out of memory exception (#469 @hannesm)
• tls-eio: add fuzz testing using crowbar (#456 #463 @talex5)
• tls-eio: update to eio 0.7 (#456 @talex5)
• tls-eio: fix test for develop with vendoring (#462 @bikallem)

0.15.5

CHANGES:

• tls-eio release only: fix end-of-file handling (#454 @talex5), avoid
  deprecation warnings (#454 @hannesm)

0.15.4

CHANGES:

• New package tls-eio (#451 @talex5)
• Tls_async: expose tls_handler (#448 @mbacarella, reviewed by @torinnd)

0.15.3

CHANGES:

• Upgrade to v0.15 of Jane Street packages (#444 @bcc32)
• Use cmdliner 1.1.0 in lwt/examples (#445 @hannesm)

0.15.2

CHANGES:

• Drop dependency on async_find (#442 @torinnd)