mirror of https://github.com/ctz/rustls
70 lines
2.7 KiB
Markdown
70 lines
2.7 KiB
Markdown
## Release history
|
|
|
|
* 0.12.0 (2018-01-06):
|
|
- New API for learning negotiated cipher suite.
|
|
- Move TLS1.3 support from draft 18 to 22.
|
|
- Allow server-side MTU configuration.
|
|
- Tested against latest BoringSSL test suite.
|
|
- Support RFC5705 exporters.
|
|
- Provide `ResolvesServerCertUsingSNI` for doing SNI-based
|
|
certificate switching.
|
|
- Allow disabling SNI extension on clients, for use with
|
|
custom server certificate verifiers where the hostname
|
|
may not make sense.
|
|
- DNS names are now typesafe, using `webpki::DNSName`.
|
|
- Update dependencies.
|
|
* 0.11.0 (2017-08-28):
|
|
- New server API for learning requested SNI name.
|
|
- Server now checks selected certificate for validity.
|
|
- Remove time crate dependency.
|
|
- Follow webpki interface changes.
|
|
- Update dependencies.
|
|
* 0.10.0 (2017-08-12):
|
|
- Request and verify SCTs using sct crate. This doesn't happen
|
|
unless you pass in some certificate transparency logs -- example code
|
|
does this.
|
|
- Request OCSP stapled response and pass to cert verifier.
|
|
Note that OCSP verification is not implemented, but this is the public
|
|
API public change required to support this.
|
|
- Allow OCSP and SCT stapling for servers.
|
|
- Refactor handshake state machines.
|
|
- Bind verifications to final state -- note API change for custom cert
|
|
verification.
|
|
* 0.9.0 (2017-06-16):
|
|
- Update dependencies.
|
|
- Add IO helper function (`complete_io`) to `rustls::Session`.
|
|
- Add blocking stream type -- `rustls::Stream` -- to ease use on top
|
|
of blocking sockets.
|
|
* 0.8.0 (2017-05-14):
|
|
- Add `dangerous_configuration` feature for unsafe features.
|
|
* 0.7.0 (2017-05-08):
|
|
- Update dependencies.
|
|
* 0.6.0 (2017-05-06):
|
|
- Update dependencies.
|
|
- Expose ring's new support for PKCS#8-format private keys.
|
|
- New API for applying limitation to internal buffer sizes.
|
|
* 0.5.8 (2017-03-16):
|
|
- Fix build on later rustc.
|
|
* 0.5.7 (2017-02-27):
|
|
- No changes from 0.5.6; republished with nightly cargo for category support.
|
|
* 0.5.6 (2017-02-19):
|
|
- RFC7627 extended master secret support
|
|
- Assorted documentation improvements
|
|
* 0.5.5 (2017-02-03):
|
|
- Crate categories.
|
|
- Protocol errors now permanent for given session.
|
|
- Exposed `ResolvesServerCert` trait for customising certification
|
|
selection.
|
|
- Exposed `SignatureScheme` enum.
|
|
* 0.5.4 (2017-01-26):
|
|
- First release with TLS1.3-draft-18 support.
|
|
- More performance improvements (now ~15Gbps per core).
|
|
- New API to learn version of negotiated connection.
|
|
* 0.5.0 (2016-09-27):
|
|
- Tickets.
|
|
- Coverage testing.
|
|
- Benchmarking.
|
|
- Massive performance improvements (from ~1Gbps to ~6Gbps per core).
|
|
- OSX support.
|
|
- Minor API corrections and additional testing.
|