-
Notifications
You must be signed in to change notification settings - Fork 7
/
Copy pathChangeLog
207 lines (159 loc) · 7.1 KB
/
ChangeLog
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
Changes in version 3.1.3
------------------------
* Removed unnecessary code
* Fixed blocking client example
* Updated TLS certificates
* Fixed X509Credentials for client examples
* Simplified and made MANIFEST.in more explicit
* Explicitly use python2 in shebang lines
* Preserve quoted arguments when passing them along in shell scripts
* Updated copyright years
* Updated license
Changes in version 3.1.2
------------------------
* Fixed truncated data for DER exported certificates/keys
* Removed obsolete pycompat/pyversions files
Changes in version 3.1.0
------------------------
* Add ability to set the client certificate request option for servers
Changes in version 3.0.0
------------------------
* Fixed check for OpenPGP support
* Don't force the reactor type in test scripts
* Support GnuTLS 3.4
* Refactor passing parameters to Session objects
* Added __info__ module with package details
* Minor improvements to the Debian packaging
* Updated installation instructions
* Fix tests with latest python-application
Changes in version 2.0.1
------------------------
* Initialize default cipher priorities on Session
Changes in version 2.0.0
------------------------
* Swtich to GnuTLS 3 (>= 3.1.4)
* Added gnutls_certificate_verify_peers3
* Add dependency on libgnutls
* Remove no longer needed workaround for ctypes
* Avoid sending empty data to peer
* Add count command line option to tc-openssl
* Bumped Debian Standards-Version
* Only build Debian package for Python >= 2.7
Changes in version 1.2.5
------------------------
* Fixed initializing libgcrypt
* Enhanced logging in example scripts
Changes in version 1.2.4
------------------------
* Fixed compatibility with twisted 11.1.0 for TLSServer as well
Changes in version 1.2.3
------------------------
* Always use the gnutls library with the requested version
* Fixed issue with dlopen ignoring changes to LD_LIBRARY_PATH after launch
* Fixed the twisted interface to work with changes in twisted 11.1.0
* Removed unused imports and variables
* Allow specifying the server session class in TLSPort and reactor.listenTLS
Changes in version 1.2.2
------------------------
* Fixed compatibility with libgnutls 2.11
* Bumped debian standards version to 3.9.2
* Reworked debian packaging
Changes in version 1.2.1
------------------------
* Removed no longer needed dependencies from Build-Depends
* Add the current directory to the Windows search path
* Refactored error handling code to improve robustness
* Allow extension to be build with mingw on windows
* Use the system path separator when building the list of packages
* Only load SRP functions from libgnutls if available
* Fixed compatibility with Twisted 11.0
* Included support for more protocols, ciphers and MAC algorithms
* Added export methods on X509Certificate, X509PrivateKey and X509CRL
* Bumped Debian standards version to 3.9.1
* Added debian source format file
Changes in version 1.2.0
------------------------
* Fixed threading issue with ctypes older than 1.0.3
* Removed compile time dependency on gnutls and reorganized library code
* Improved finding the gnutls library at runtime
* Fixed the shutdown procedure in examples/server.py
* Remove unneeded shutdown call from examples/client.py
* Made examples/server.py threaded
* Simplified windows build procedure
* Added support for cygwin
* Improved error handling
* Added INSTALL file
* Bumped debian standards version to 3.8.3
Changes in version 1.1.9
------------------------
* Made loseConnection signature match the corresponding one from twisted
* Bumped debian standards version to 3.8.2
* Fixed lintian warning about missing misc:Depends dependency
Changes in version 1.1.8
------------------------
* Workaround for changed tcp.Server.__init__ signature in twisted 8.2.0
* Fixed DeprecationWarning when running with python2.6 or newer
Changes in version 1.1.7
------------------------
* Updated debian build dependency to libgnutls-dev 2.4.1 or newer
* Use the default python interpreter instead of /usr/bin/python in
example, test and setup scripts
* Improved detection of gnutls libraries by using libgnutls-config
* Fixed gnutls library location for Mac OSX installations
Changes in version 1.1.6
------------------------
* Require libgnutls version 2.4.1 or higher.
Changes in version 1.1.5
------------------------
* Added server name extension support.
* Fixed 64-bit issues with size_t and ssize_t.
* Require libgnutls version 2.2.2 or higher.
Changes in version 1.1.4
------------------------
* Better integration with twisted. The TLSClient and TLSServer
classes now declare that they implement ISSLTransport.
Changes in version 1.1.3
------------------------
* Better version headers for changelog entries.
* Check if C module initialization failed.
Changes in version 1.1.2
------------------------
* Added LICENSE file and updated copyright notices to reference it.
* Only included the relevant examples in the source distribution.
* Avoid multiple splits on name/value pairs in X509Name.
Changes in version 1.1.1
------------------------
* Removed a circular reference manifesting on handshake failures.
Changes in version 1.1.0
------------------------
* Send TLS bye if the client session peer certificate verification fails
* Based CertificateError on GNUTLSError and added 4 new certificate related
exceptions derived from it.
* Added the ability to send TLS alerts based on certain error conditions
Using this mechanism a python exception related to GNUTLS can be mapped
to a TLS alert and sent to the peer which will map it back to the original
python exception, making it possible to transfer error conditions and
raise their corresponding exception on the other side that becomes this
way aware of the errors that occured in the peer. Currently this is used
to map certificate related exceptions into TLS alerts and back to python
exceptions on the other side.
* Send a TLS alert before closing a connection as a result of an error in
the twisted interface.
* Preserve closing reason while sending the close alerts.
* Pass the proper exception when a client connection fails.
* Improved some exception messages related to certificate errors.
* Added the ability to specify the certificate name to use in exceptions
raised by certificate checking methods, which helps improve the clarity
of the error messages.
* Set transport on protocol after the TCP connection is made, because we
may call connectionLost without calling connectionMade if TLS negociation
fails (which in turn will call connectionLost on the protocol).
* Added _closeWriteConnection to handle half closed connections.
Changes in version 1.0.2
------------------------
* Avoid the need to handle bye timeouts in the twisted interface by not
waiting for the bye notification acknowledgement as we do not use the
TCP connection anymore after closing the TLS session.
Changes in version 1.0.1
------------------------
* Fixed typo in internal class name in the twisted interface