luasec/CHANGELOG

--------------------------------------------------------------------------------
LuaSec 0.9
---------------
This version includes:


* Add DNS-based Authentication of Named Entities (DANE) support
* Add __close() metamethod
* Fix deprecation warnings with OpenSSL 1.1
* Fix special case listing of TLS 1.3 EC curves
* Fix general_name leak in cert:extensions()
* Fix unexported 'ssl.config' table
* Replace $(LD) with $(CCLD) variable
* Remove multiple definitions of 'ssl_options' variable
* Use tag to git format: v0.9

--------------------------------------------------------------------------------
LuaSec 0.8.2
---------------
This version includes:

* Fix unexported 'ssl.config' table (backported)

--------------------------------------------------------------------------------
LuaSec 0.8.1
---------------
This version includes:

* Fix general_name leak in cert:extensions() (backported)

--------------------------------------------------------------------------------
LuaSec 0.8
---------------
This version includes:

* Add support to ALPN
* Add support to TLS 1.3
* Add support to multiple certificates
* Add timeout to https module (https.TIMEOUT)
* Drop support to SSL 3.0
* Drop support to TLS 1.0 from https module
* Fix invalid reference to Lua state
* Fix memory leak when get certficate extensions

--------------------------------------------------------------------------------
LuaSec 0.7.2
---------------
This version includes:

* Fix unexported 'ssl.config' table (backported)

--------------------------------------------------------------------------------
LuaSec 0.7.1
---------------
This version includes:

* Fix general_name leak in cert:extensions() (backported)

--------------------------------------------------------------------------------
LuaSec 0.7
---------------
LuaSec depends  on OpenSSL, and  integrates with LuaSocket to  make it
easy to add secure connections to any Lua applications or scripts.

Documentation: https://github.com/brunoos/luasec/wiki

This version includes:

* Add support to OpenSSL 1.1.0
* Add support to elliptic curves list
* Add ssl.config that exports some OpenSSL information
* Add integration with luaossl

--------------------------------------------------------------------------------
LuaSec 0.6
------------
LuaSec depends  on OpenSSL, and  integrates with LuaSocket to  make it
easy to add secure connections to any Lua applications or scripts.

Documentation: https://github.com/brunoos/luasec/wiki

This version includes:

* Lua 5.2 and 5.3 compatibility

* Context module:
  - Add ctx:checkkey()

* SSL module:
  - Add conn:sni() and conn:getsniname()

* Context options:
  - Add "any" protocol ("sslv23" is deprecated)

* HTTPS module:
  - Using "any" protocol without SSLv2/SSLv3, by default

* X509 module:
  - Human readable IP address
  - Add cert:issued()
  - Add cert:pubkey()

* Some bug fixes


=> Thanks to everyone who collaborate with LuaSec <=

--------------------------------------------------------------------------------
LuaSec 0.5
------------
LuaSec depends  on OpenSSL, and  integrates with LuaSocket to  make it
easy to add secure connections to any Lua applications or scripts.

This  version  includes:

  * A new certificate (X509) API, which supports:
    - Reading  the subject  (identity) and  issuer of the certificate.
    - Reading  various X509  extensions, including email  and dnsName.
    - Converting  certificates  to and  from  the  standard ASCII  PEM
      format.
    - Generating the fingerprint/digest of a certificate  (using SHA1,
      SHA256 or SHA512).
    - Reading the  certificate's expiration, serial number,  and other
      info.

  * The ability  to get more  detailed information from  OpenSSL about
    why a certificate failed verification, for each certificate in the
    chain.
  
  * Flags to  force acceptance of invalid certificates,  e.g. to allow
    the use of self-signed certificates in a Trust On First Use model.

  * Flags to control checking CRLs for certificate revocation status.
  
  * Support for ECDH cipher suites.
  
  * An API  to get the TLS  'finished' messages used  for SASL channel
    binding (e.g. the SCRAM PLUS mechanisms).

The work in  this release was undertaken by  Kim Alvefur, Paul Aurich,
Tobias Markmann, Bruno Silvestre and Matthew Wild.

--------------------------------------------------------------------------------
LuaSec 0.4.1
------------
- SSL options updated --- based on OpenSSL 1.0.0d.
- Activate SSL_MODE_RELEASE_BUFFERS by default if it is available.
  (thanks Prosody project)

---------------------------------------------------------------------------------
LuaSec 0.4
------------
- Add option 'no_ticket' (included in OpenSSL 0.9.8f).
- Add HTTPS module. (thanks Tomas Guisasola and Pablo Musa)

--------------------------------------------------------------------------------
LuaSec 0.3.3
------------
- BUG: Clear the error queue before call I/O functions (see SSL_get_error 
  manual).
  (thanks Matthew Wild)

--------------------------------------------------------------------------------
LuaSec 0.3.2
------------
- BUG: Windows uses a different way to report socket error.
  (thanks Sebastien Perin)

--------------------------------------------------------------------------------
LuaSec 0.3.1
------------
- BUG: receive("a") returns 'closed' error instead of the content when the
  SSL/TLS connection is shut down cleanly. (thanks Matthias Diener)

--------------------------------------------------------------------------------
LuaSec 0.3
----------
- Add functions ssl.rawcontext() and ssl.rawconnection()
- Add support to encrypted key password. (thanks Norbert Kiesel)

--------------------------------------------------------------------------------
LuaSec 0.2.1
------------
- 'key' and 'certificate' configurations become optional. (thanks René Rebe)
- Add '_VERSION' variable to module.

--------------------------------------------------------------------------------
LuaSec 0.2
----------
Initial version
Update 0.8 -> 0.9 2019-10-31 15:34:27 +01:00			`--------------------------------------------------------------------------------`
			`LuaSec 0.9`
			`---------------`
			`This version includes:`


			`* Add DNS-based Authentication of Named Entities (DANE) support`
			`* Add __close() metamethod`
			`* Fix deprecation warnings with OpenSSL 1.1`
			`* Fix special case listing of TLS 1.3 EC curves`
			`* Fix general_name leak in cert:extensions()`
			`* Fix unexported 'ssl.config' table`
			`* Replace $(LD) with $(CCLD) variable`
			`* Remove multiple definitions of 'ssl_options' variable`
			`* Use tag to git format: v0.9`

			`--------------------------------------------------------------------------------`
			`LuaSec 0.8.2`
			`---------------`
			`This version includes:`

			`* Fix unexported 'ssl.config' table (backported)`

			`--------------------------------------------------------------------------------`
			`LuaSec 0.8.1`
			`---------------`
			`This version includes:`

			`* Fix general_name leak in cert:extensions() (backported)`

Update version to 0.8, new rock file 2019-04-16 19:01:52 +02:00			`--------------------------------------------------------------------------------`
			`LuaSec 0.8`
			`---------------`
			`This version includes:`

			`* Add support to ALPN`
			`* Add support to TLS 1.3`
			`* Add support to multiple certificates`
			`* Add timeout to https module (https.TIMEOUT)`
			`* Drop support to SSL 3.0`
			`* Drop support to TLS 1.0 from https module`
			`* Fix invalid reference to Lua state`
			`* Fix memory leak when get certficate extensions`

Update 0.8 -> 0.9 2019-10-31 15:34:27 +01:00			`--------------------------------------------------------------------------------`
			`LuaSec 0.7.2`
			`---------------`
			`This version includes:`

			`* Fix unexported 'ssl.config' table (backported)`

			`--------------------------------------------------------------------------------`
			`LuaSec 0.7.1`
			`---------------`
			`This version includes:`

			`* Fix general_name leak in cert:extensions() (backported)`

Version number to 0.7alpha 2017-09-26 23:22:49 +02:00			`--------------------------------------------------------------------------------`
Change version number to 0.7 2018-06-27 15:36:26 +02:00			`LuaSec 0.7`
Version number to 0.7alpha 2017-09-26 23:22:49 +02:00			`---------------`
Change version number to 0.7 2018-06-27 15:36:26 +02:00			`LuaSec depends on OpenSSL, and integrates with LuaSocket to make it`
			`easy to add secure connections to any Lua applications or scripts.`
Version number to 0.7alpha 2017-09-26 23:22:49 +02:00
Change version number to 0.7 2018-06-27 15:36:26 +02:00			`Documentation: https://github.com/brunoos/luasec/wiki`

			`This version includes:`

			`* Add support to OpenSSL 1.1.0`
			`* Add support to elliptic curves list`
			`* Add ssl.config that exports some OpenSSL information`
			`* Add integration with luaossl`
Version number to 0.7alpha 2017-09-26 23:22:49 +02:00
Version number -> 0.5. 2014-01-29 21:43:33 +01:00			`--------------------------------------------------------------------------------`
Update version number and rock file. 2016-03-03 20:11:46 +01:00			`LuaSec 0.6`
Version number -> 0.6 alpha 2015-08-21 16:21:16 +02:00			`------------`
Changelog 2016-02-16 13:49:19 +01:00			`LuaSec depends on OpenSSL, and integrates with LuaSocket to make it`
			`easy to add secure connections to any Lua applications or scripts.`

			`Documentation: https://github.com/brunoos/luasec/wiki`

			`This version includes:`

			`* Lua 5.2 and 5.3 compatibility`

			`* Context module:`
			`- Add ctx:checkkey()`

			`* SSL module:`
			`- Add conn:sni() and conn:getsniname()`

			`* Context options:`
			`- Add "any" protocol ("sslv23" is deprecated)`

			`* HTTPS module:`
			`- Using "any" protocol without SSLv2/SSLv3, by default`

			`* X509 module:`
			`- Human readable IP address`
			`- Add cert:issued()`
			`- Add cert:pubkey()`

			`* Some bug fixes`


			`=> Thanks to everyone who collaborate with LuaSec <=`
Version number -> 0.6 alpha 2015-08-21 16:21:16 +02:00
			`--------------------------------------------------------------------------------`
Version number -> 0.5. 2014-01-29 21:43:33 +01:00			`LuaSec 0.5`
			`------------`
			`LuaSec depends on OpenSSL, and integrates with LuaSocket to make it`
			`easy to add secure connections to any Lua applications or scripts.`

			`This version includes:`

			`* A new certificate (X509) API, which supports:`
			`- Reading the subject (identity) and issuer of the certificate.`
			`- Reading various X509 extensions, including email and dnsName.`
			`- Converting certificates to and from the standard ASCII PEM`
			`format.`
			`- Generating the fingerprint/digest of a certificate (using SHA1,`
			`SHA256 or SHA512).`
			`- Reading the certificate's expiration, serial number, and other`
			`info.`

			`* The ability to get more detailed information from OpenSSL about`
			`why a certificate failed verification, for each certificate in the`
			`chain.`

			`* Flags to force acceptance of invalid certificates, e.g. to allow`
			`the use of self-signed certificates in a Trust On First Use model.`

			`* Flags to control checking CRLs for certificate revocation status.`

			`* Support for ECDH cipher suites.`

			`* An API to get the TLS 'finished' messages used for SASL channel`
			`binding (e.g. the SCRAM PLUS mechanisms).`

			`The work in this release was undertaken by Kim Alvefur, Paul Aurich,`
			`Tobias Markmann, Bruno Silvestre and Matthew Wild.`

LuaSec 0.4 2012-09-02 16:32:26 +02:00			`--------------------------------------------------------------------------------`
LuaSec 0.4.1 2012-09-02 16:33:59 +02:00			`LuaSec 0.4.1`
			`------------`
			`- SSL options updated --- based on OpenSSL 1.0.0d.`
			`- Activate SSL_MODE_RELEASE_BUFFERS by default if it is available.`
			`(thanks Prosody project)`

			`---------------------------------------------------------------------------------`
LuaSec 0.4 2012-09-02 16:32:26 +02:00			`LuaSec 0.4`
			`------------`
			`- Add option 'no_ticket' (included in OpenSSL 0.9.8f).`
			`- Add HTTPS module. (thanks Tomas Guisasola and Pablo Musa)`

LuaSec 0.3.3 2012-09-02 16:31:22 +02:00			`--------------------------------------------------------------------------------`
			`LuaSec 0.3.3`
			`------------`
			`- BUG: Clear the error queue before call I/O functions (see SSL_get_error`
			`manual).`
			`(thanks Matthew Wild)`

LuaSec 0.3.2 2012-09-02 16:30:04 +02:00			`--------------------------------------------------------------------------------`
			`LuaSec 0.3.2`
			`------------`
			`- BUG: Windows uses a different way to report socket error.`
			`(thanks Sebastien Perin)`

LuaSec 0.3.1 2012-09-02 16:27:04 +02:00			`--------------------------------------------------------------------------------`
			`LuaSec 0.3.1`
			`------------`
			`- BUG: receive("a") returns 'closed' error instead of the content when the`
			`SSL/TLS connection is shut down cleanly. (thanks Matthias Diener)`

LuaSec 0.3 2012-09-02 16:22:22 +02:00			`--------------------------------------------------------------------------------`
			`LuaSec 0.3`
			`----------`
			`- Add functions ssl.rawcontext() and ssl.rawconnection()`
LuaSec 0.3.1 2012-09-02 16:27:04 +02:00			`- Add support to encrypted key password. (thanks Norbert Kiesel)`
LuaSec 0.3 2012-09-02 16:22:22 +02:00
			`--------------------------------------------------------------------------------`
			`LuaSec 0.2.1`
			`------------`
Convert CHANGELOG from ISO-8859-1 to UTF-8 2017-02-18 13:26:40 +01:00			`- 'key' and 'certificate' configurations become optional. (thanks René Rebe)`
LuaSec 0.3 2012-09-02 16:22:22 +02:00			`- Add '_VERSION' variable to module.`

			`--------------------------------------------------------------------------------`
			`LuaSec 0.2`
			`----------`
			`Initial version`