File: ChangeLog

package info (click to toggle)
ktls-utils 1.3.0-2
  • links: PTS, VCS
  • area: main
  • in suites: forky, sid
  • size: 636 kB
  • sloc: ansic: 3,620; makefile: 55; sh: 44
file content (92 lines) | stat: -rw-r--r-- 3,085 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
 
Change Log - In newest-release-first order

ktls-utils 1.3.0 2025-10-20
 * Implement support for certificates using post-quantum encryption
 * Add several new GitHub Action workflows, including a gh-pages generator
 * Move /etc/tlshd.conf to /etc/tlshd/config
 * Smarter signal handling

ktls-utils 1.2.0 2025-07-11
 * Implement Certificate Revocation Lists
 * Add a default keyring for NFS consumers
 * Improvements to error reporting and logging
 * Manage per-session resources more effectively

ktls-utils 1.1.0 2025-06-02
 * Return to the old release process
 * Update the contribution process
 * Accept alternate keyrings during handshake upcall
 * Initial support for building ktls-utils with MUSL

ktls-utils 1.0 - 2025-05-05
 * Handshake support for in-kernel QUIC
 * Package is no longer "experimental"
 * Fix minor bugs

ktls-utils 0.11 - 2024-06-05
 * Add support for chained certs
 * Move to-do items to the GitHub issue tracker
 * Fix minor bugs

ktls-utils 0.10 - 2023-09-21
 * Fix Server Name Indicator support (IP addresses)
 * Add tlshd.conf option to provide specific trust chain
 * Reorganize tlshd.conf
 * Fix numerous bugs reported by packagers

ktls-utils 0.9 - 2023-05-01
 * Cipher negotiaion now conforms with distro security policies
 * Improve Server Name Indicator support
 * Disable Nagle during handshakes
 * Send TLS Alerts on handshake errors

ktls-utils 0.8 - 2023-04-05
 * Replace the listen-based upcall mechanism with netlink
 * Implement server-side handshake support
 * Implement x.509 certificate verification
 * Implement keyring-based exchange of authentication material

ktls-utils 0.7 - 2022-11-10
 * Remove the -n command line option
 * Support client-side peer authentication
 * Support upcall API changes in v6.0 prototype kernel
 * Add /etc/tlshd.conf with support for default cert and private key

ktls-utils 0.6 - 2022-05-27
 * Update value of SOL_TLSH constant for kernel v5.18
 * Fix gnutls_transport_is_ktls_enabled()
 * Avoid zombie children
 * Report peer certificate verification failures
 * Split the debug command-line option

ktls-utils 0.5 - 2022-04-11
 * Fix retrieval of TLSH_PRIORITIES
 * Refactor keyring code
 * Sketch in x.509 client authentication support
 * Re-license request from Oracle CorpArch
 * Enable thorough static code checking
 * Enable compilation with older versions of GnuTLS

ktls-utils 0.4 - 2022-03-04
 * Add date and time to build version strings
 * Document FIPS mode in tlshd(8)
 * Initial support for PSK handshakes
 * Initial support for SM4_GCM and SM4_CCM ciphers
 * Support SOL_TLSH socket options

ktls-utils 0.3 - 2022-02-25
 * Tell server not to send New Session tickets
 * Document SSLKEYLOGFILE in tlshd(8)
 * Move kTLS-specific code to src/tlshd/ktls.c
 * Suggested logic to distinguish between PSK and x.509
 * Check for existence of keyutils.h

ktls-utils 0.2 - 2022-02-08
 * Replace OpenSSL with GnuTLS
 * AF_TLSH kernel API has been simplified
 * Fixes to get TLS handshake working
 * More syslog helpers
 * Added sample systemd unit

ktls-utils 0.1 - 2021-12-13
 * Initial code base