File: CHANGELOG.txt

package info (click to toggle)
tomcat-native 1.2.10-1~bpo8%2B1
  • links: PTS, VCS
  • area: main
  • in suites: jessie-backports
  • size: 1,956 kB
  • sloc: ansic: 12,426; sh: 3,529; java: 2,091; xml: 1,147; perl: 327; makefile: 58
file content (117 lines) | stat: -rw-r--r-- 5,051 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
 
  Preface

   This is the Changelog for Tomcat Native 1.2.

  Changes in 1.2.10

     Update minimum recommended OpenSSL version to 1.0.2j. (markt)

  Changes in 1.2.9

     * Update: Update minimum recommended OpenSSL version to 1.0.2i. (markt)

  Changes in 1.2.8

     * Fix: 59616: Correct the Windows build files so that OCSP is correctly
       enabled and disabled in the respective Windows binaries. (markt)
     * Fix: Correctly handle OS level EAGAIN return codes during non-blocking
       TLS I/O. (markt)
     * Fix: Correct a potential performance problem identified by Nate Clark
       due to Tomcat Native providing OpenSSL with thread identifiers poorly
       suited to the hash function used by OpenSSL when selecting a bucket
       for the hash that holds the per thread error data. Tomcat Native on
       Windows and on Solaris were not affected. A fix has been applied for
       OSX and Linux. Other platforms may still be affected. (markt/rjung)

  Changes in 1.2.7

     * Update: Update minimum recommended OpenSSL version to 1.0.2h. (markt)

  Changes in 1.2.6

     * Update: Change the OpenSSL version check in configure to be fatal.
       (rjung)
     * Update: Use new OpenSSL 1.1.0 protocol version max and min API when
       creating a new SSL context. (rjung)
     * Update: Improve renegotiation code and make it compatible with OpenSSL
       1.1.0. (rjung)
     * Code: OpenSSL 1.1.0 compatibility updates. (rjung)
     * Fix: Fix some compiler warnings in native ssl code. (rjung)
     * Add: Add support for using Java keystores for certificate chains.
       (markt)
     * Update: Remove the explicit CRL check when verifying certificates. The
       checks were already part of the internal certification verification
       since OpenSSL 0.9.7. Backport from mod_ssl. (rjung)

  Changes in 1.2.5

     * Update: Enable OpenSSL version check in configure by default. It can
       be turned off using --disable-openssl-version-check. (rjung)
     * Fix: 59024: Native function versionString() and for OpenSSL 1.1.0 also
       version() (both in in ssl.c) now return the OpenSSL run time version,
       not the compile time version. (rjung)
     * Code: Track changes in the OpenSSL master branch so it is possible to
       build Tomcat Native with that branch. (billbarker)

  Changes in 1.2.4

     * Fix: SSL.getHandshakeCount(), which was unused, now returns the
       handshake completed count rather than the handshake started count.
       (remm)

  Changes in 1.2.3

     * Fix: Remove Java classes that do not have C implementation code for
       their native methods in the current library. They were used for NPN
       support which is superseded by ALPN support in the current code.
       (kkolinko)
     * Fix: Fix typo in declaration of a stub method used when the library is
       compiled without OpenSSL support. (kkolinko)
     * Fix: Fix the signature of the implementation of the native SSL method
       newSSL() in the case when OPENSSL is not available. (rjung)
     * Fix: Fix the signature of the implementation of the native SSLSocket
       method getInfoB() to return jbyteArray instead of jobject. This is
       consistent with what it actually returns and how the native Java
       method is declared. (rjung)
     * Add: Add support for using Java keystores for certificates and keys.
       (jfclere)
     * Code: Remove code that performs a read after a renegotiation that
       appears to be unnecessary with OpenSSL 1.0.2. (billbarker)
     * Add: Expose SSL_renegotiate to the Java API. (remm)

  Changes in 1.2.2

     * Fix: Fix broken debug and maintainer mode build. (rjung)
     * Fix: Forward port additional fixes to the OpenSSL I/O to align it with
       non-OpenSSL I/O. (markt)

  Changes in 1.2.1

     * Fix: 58566: Enable Tomcat Native 1.2.x to work with Tomcat releases
       that do not have the necessary Java code to support SNI. (markt)
     * Update: Minor rework of "buildconf" script. (rjung)
     * Fix: Fix APR dependency version expression in RPM spec file. (rjung)
     * Fix: Fix major library version number in Windows build files, RPM spec
       file and build description. (rjung)
     * Fix: Remove files "KEYS" and "download_deps.sh" from Windows (zip)
       source distribution. (rjung)
     * Fix: Fix "unused variable" compiler warning. (rjung)

  Changes in 1.2.0

     * Add: Add support for TLS extension ALPN. (markt)
     * Add: Add support for TLS extension SNI (Server Name Indication).
       (markt)
     * Add: Add support for OpenSSL BIO. (jfclere)
     * Add: Support wakeable pollsets and add Poll.interrupt() API. (mturk)
     * Add: Add Pool.unmanaged() API. (mturk)
     * Update: APIs SSL.generateRSATempKey() and SSL.loadDSATempKey() have
       been removed. (rjung)
     * Update: The minimum required APR version is 1.4.3.
     * Update: The minimum required OpenSSL version is 1.0.2.

  Changes in 1.1.x

   Please see the 1.1.x changelog.

   Copyright  2008-2016, The Apache Software Foundation