Skip to content

Releases: mirleft/ocaml-tls

v0.12.5

22 Sep 13:56
@hannesm hannesm
v0.12.5
8f8506f
Compare
Choose a tag to compare
v0.12.5

CHANGES:

  • Rename length to v_length to be compatible with cstruct 6.0.0 (#419 @dinosaure)
Assets 3

v0.12.4

08 Aug 10:57
@hannesm hannesm
v0.12.4
8ab44be
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.12.4

CHANGES:

  • handshake_server13: demote group and cipher log level (#417 by @xguerin)
  • tls_lwt: register printers for Tls_alert and Tls_failure (#418 by @hannesm)
Assets 3

v0.12.3

04 Jul 19:45
@hannesm hannesm
v0.12.3
f74f870
Compare
Choose a tag to compare
v0.12.3

CHANGES:

  • Adapt to new GCM and CCM API of mirage-crypto (#416 by @hannesm)
  • Add support for ChaCha20/Poly1305 ciphersuite (#416 by @hannesm)
Assets 3

v0.12.2

20 Jun 11:27
@hannesm hannesm
v0.12.2
c02b15a
Compare
Choose a tag to compare
v0.12.2

CHANGES:

  • tls_lwt again calls Mirage_crypto_rng_lwt.initialize () -- which is since
    mirage-crypto-rng 0.8 no longer inside the lwt monad, and safe to be called
    multiple times and on top level (#415 by @hannesm)
Assets 3

v0.12.1

12 Jun 16:10
@hannesm hannesm
v0.12.1
839bf10
Compare
Choose a tag to compare
v0.12.1

CHANGES:

in #414 by @hannesm

  • Drop support for RC4 ciphersuite
  • Raise lower TLS version in default configuration to 1.2
  • tls_lwt no longer calls Mirage_crypto_rng_unix.initialize -- this needs to be
    done in the application, inside Lwt_main.run:
    Mirage_crypto_rng_lwt.initialize () >>= fun () ->
  • Support ECDHE ciphersuites in TLS 1.2 and below as specified in RFC 8422
    (requested in #413 by @ryanakca, also in #362 by @orbitz @annubiz)
  • drop "TLS_" prefix from ciphersuite constructors
  • BUGFIX: TLS client (<= 1.2) assembling an empty Certificate message
    (noticed in #413, present since 0.12.0 release)
  • Cleanup Packet.any_ciphersuite list (remove ARIA, CAMELLIA, KRB5, EXPORT)
  • Adapt interoperability test scripts with TLS 1.3 support
Assets 3

v0.12.0

12 May 14:37
@hannesm hannesm
v0.12.0
5e967cb
Compare
Choose a tag to compare
v0.12.0

CHANGES:

in #405 by @hannesm

  • TLS 1.3 support
  • Tracing now uses the logs library (log source tls.tracing on debug level)
  • bugfix for padding in ClientHello, which computed wrong length
  • bugfix hs_fragments to be set before executing the protocol handling logic
  • bugfix guard RSA signature with an Insufficient_key handler, which may occur
    when using an RSA key which size is too small for the used digest algorithm
Assets 3

v0.11.1

09 Apr 11:08
@hannesm hannesm
v0.11.1
85dfcb3
Compare
Choose a tag to compare
v0.11.1

CHANGES:

  • Adapt to X509.0.11.0 API changes (#412)
Assets 3

v0.11.0

12 Mar 20:54
@hannesm hannesm
v0.11.0
e21e874
Compare
Choose a tag to compare
v0.11.0

CHANGES:

  • use dune as build system (#407)
  • BREAKING split into tls and tls-mirage opam packages (#407)
  • BREAKING use mirage-crypto instead of nocrypto (#407)
Assets 3

v0.10.6

23 Jan 12:48
@hannesm hannesm
v0.10.6
6737e01
Compare
Choose a tag to compare
v0.10.6

v0.10.6 (2020-01-23)

  • adapt to x509 0.9.0 interface: certificate revocation lists can now be passed
    to the authenticator in Tls_mirage and X509_lwt; also a list of hash
    algorithms to be used for certificate signature verification can be passed to
    the authenticator
  • adapt to lwt 5.0.0
Assets 3

v0.10.5

01 Nov 16:39
@hannesm hannesm
v0.10.5
510a290
Compare
Choose a tag to compare
v0.10.5

v0.10.5 (2019-11-01)

  • adapt to mirage-flow 2.0.0, mirage-clock 3.0.0, mirage-kv 3.0.0 interfaces (#401 @hannesm)
Assets 3