luasec/README.md

35 lines
1.3 KiB
Markdown
Raw Normal View History

2015-08-21 16:21:16 +02:00
LuaSec 0.6a
2014-01-29 21:43:33 +01:00
==========
2012-05-30 19:26:40 +02:00
2014-01-29 21:43:33 +01:00
LuaSec depends on OpenSSL, and integrates with LuaSocket to make it
easy to add secure connections to any Lua applications or scripts.
2013-03-30 14:12:57 +01:00
2014-01-29 21:43:33 +01:00
This version includes:
2013-03-30 14:12:57 +01:00
* A new certificate (X509) API, which supports:
2014-01-29 21:43:33 +01:00
- Reading the subject (identity) and issuer of the certificate.
- Reading various X509 extensions, including email and dnsName.
- Converting certificates to and from the standard ASCII PEM
format.
- Generating the fingerprint/digest of a certificate (using SHA1,
SHA256 or SHA512).
- Reading the certificate's expiration, serial number, and other
info.
2013-03-30 14:12:57 +01:00
2014-01-29 21:43:33 +01:00
* The ability to get more detailed information from OpenSSL about
why a certificate failed verification, for each certificate in the
chain.
2013-03-30 14:12:57 +01:00
2014-01-29 21:43:33 +01:00
* Flags to force acceptance of invalid certificates, e.g. to allow
the use of self-signed certificates in a Trust On First Use model.
2013-03-30 14:12:57 +01:00
2014-01-29 21:43:33 +01:00
* Flags to control checking CRLs for certificate revocation status.
* Support for ECDH cipher suites.
* An API to get the TLS 'finished' messages used for SASL channel
binding (e.g. the SCRAM PLUS mechanisms).
2013-03-30 14:12:57 +01:00
2014-01-29 21:43:33 +01:00
The work in this release was undertaken by Kim Alvefur, Paul Aurich,
Tobias Markmann, Bruno Silvestre and Matthew Wild.