mirror of
https://github.com/brunoos/luasec.git
synced 2024-12-26 20:48:22 +01:00
119 lines
3.8 KiB
Plaintext
119 lines
3.8 KiB
Plaintext
--------------------------------------------------------------------------------
|
||
LuaSec 0.6a
|
||
------------
|
||
LuaSec depends on OpenSSL, and integrates with LuaSocket to make it
|
||
easy to add secure connections to any Lua applications or scripts.
|
||
|
||
Documentation: https://github.com/brunoos/luasec/wiki
|
||
|
||
This version includes:
|
||
|
||
* Lua 5.2 and 5.3 compatibility
|
||
|
||
* Context module:
|
||
- Add ctx:checkkey()
|
||
|
||
* SSL module:
|
||
- Add conn:sni() and conn:getsniname()
|
||
|
||
* Context options:
|
||
- Add "any" protocol ("sslv23" is deprecated)
|
||
|
||
* HTTPS module:
|
||
- Using "any" protocol without SSLv2/SSLv3, by default
|
||
|
||
* X509 module:
|
||
- Human readable IP address
|
||
- Add cert:issued()
|
||
- Add cert:pubkey()
|
||
|
||
* Some bug fixes
|
||
|
||
|
||
=> Thanks to everyone who collaborate with LuaSec <=
|
||
|
||
--------------------------------------------------------------------------------
|
||
LuaSec 0.5
|
||
------------
|
||
|
||
LuaSec depends on OpenSSL, and integrates with LuaSocket to make it
|
||
easy to add secure connections to any Lua applications or scripts.
|
||
|
||
This version includes:
|
||
|
||
* A new certificate (X509) API, which supports:
|
||
- Reading the subject (identity) and issuer of the certificate.
|
||
- Reading various X509 extensions, including email and dnsName.
|
||
- Converting certificates to and from the standard ASCII PEM
|
||
format.
|
||
- Generating the fingerprint/digest of a certificate (using SHA1,
|
||
SHA256 or SHA512).
|
||
- Reading the certificate's expiration, serial number, and other
|
||
info.
|
||
|
||
* The ability to get more detailed information from OpenSSL about
|
||
why a certificate failed verification, for each certificate in the
|
||
chain.
|
||
|
||
* Flags to force acceptance of invalid certificates, e.g. to allow
|
||
the use of self-signed certificates in a Trust On First Use model.
|
||
|
||
* Flags to control checking CRLs for certificate revocation status.
|
||
|
||
* Support for ECDH cipher suites.
|
||
|
||
* An API to get the TLS 'finished' messages used for SASL channel
|
||
binding (e.g. the SCRAM PLUS mechanisms).
|
||
|
||
The work in this release was undertaken by Kim Alvefur, Paul Aurich,
|
||
Tobias Markmann, Bruno Silvestre and Matthew Wild.
|
||
|
||
--------------------------------------------------------------------------------
|
||
LuaSec 0.4.1
|
||
------------
|
||
- SSL options updated --- based on OpenSSL 1.0.0d.
|
||
- Activate SSL_MODE_RELEASE_BUFFERS by default if it is available.
|
||
(thanks Prosody project)
|
||
|
||
---------------------------------------------------------------------------------
|
||
LuaSec 0.4
|
||
------------
|
||
- Add option 'no_ticket' (included in OpenSSL 0.9.8f).
|
||
- Add HTTPS module. (thanks Tomas Guisasola and Pablo Musa)
|
||
|
||
--------------------------------------------------------------------------------
|
||
LuaSec 0.3.3
|
||
------------
|
||
- BUG: Clear the error queue before call I/O functions (see SSL_get_error
|
||
manual).
|
||
(thanks Matthew Wild)
|
||
|
||
--------------------------------------------------------------------------------
|
||
LuaSec 0.3.2
|
||
------------
|
||
- BUG: Windows uses a different way to report socket error.
|
||
(thanks Sebastien Perin)
|
||
|
||
--------------------------------------------------------------------------------
|
||
LuaSec 0.3.1
|
||
------------
|
||
- BUG: receive("a") returns 'closed' error instead of the content when the
|
||
SSL/TLS connection is shut down cleanly. (thanks Matthias Diener)
|
||
|
||
--------------------------------------------------------------------------------
|
||
LuaSec 0.3
|
||
----------
|
||
- Add functions ssl.rawcontext() and ssl.rawconnection()
|
||
- Add support to encrypted key password. (thanks Norbert Kiesel)
|
||
|
||
--------------------------------------------------------------------------------
|
||
LuaSec 0.2.1
|
||
------------
|
||
- 'key' and 'certificate' configurations become optional. (thanks Ren<65> Rebe)
|
||
- Add '_VERSION' variable to module.
|
||
|
||
--------------------------------------------------------------------------------
|
||
LuaSec 0.2
|
||
----------
|
||
Initial version
|