-
Notifications
You must be signed in to change notification settings - Fork 30
Expand file tree
/
Copy pathChangeLog
More file actions
99 lines (83 loc) · 3.29 KB
/
ChangeLog
File metadata and controls
99 lines (83 loc) · 3.29 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
Change Log - In newest-release-first order
ktls-utils 1.4.0 2026-04-27
* Implement support for TLS record size limits
* Implement support for QUIC session tickets
* Implement support for session tags (kernel support still needed)
* Add extensible kernel capability detection
* Add SIGHUP handler for live configuration reload
ktls-utils 1.3.0 2025-10-20
* Implement support for certificates using post-quantum encryption
* Add several new GitHub Action workflows, including a gh-pages generator
* Move /etc/tlshd.conf to /etc/tlshd/config
* Smarter signal handling
ktls-utils 1.2.0 2025-07-11
* Implement Certificate Revocation Lists
* Add a default keyring for NFS consumers
* Improvements to error reporting and logging
* Manage per-session resources more effectively
ktls-utils 1.1.0 2025-06-02
* Return to the old release process
* Update the contribution process
* Accept alternate keyrings during handshake upcall
* Initial support for building ktls-utils with MUSL
ktls-utils 1.0 - 2025-05-05
* Handshake support for in-kernel QUIC
* Package is no longer "experimental"
* Fix minor bugs
ktls-utils 0.11 - 2024-06-05
* Add support for chained certs
* Move to-do items to the GitHub issue tracker
* Fix minor bugs
ktls-utils 0.10 - 2023-09-21
* Fix Server Name Indicator support (IP addresses)
* Add tlshd.conf option to provide specific trust chain
* Reorganize tlshd.conf
* Fix numerous bugs reported by packagers
ktls-utils 0.9 - 2023-05-01
* Cipher negotiaion now conforms with distro security policies
* Improve Server Name Indicator support
* Disable Nagle during handshakes
* Send TLS Alerts on handshake errors
ktls-utils 0.8 - 2023-04-05
* Replace the listen-based upcall mechanism with netlink
* Implement server-side handshake support
* Implement x.509 certificate verification
* Implement keyring-based exchange of authentication material
ktls-utils 0.7 - 2022-11-10
* Remove the -n command line option
* Support client-side peer authentication
* Support upcall API changes in v6.0 prototype kernel
* Add /etc/tlshd.conf with support for default cert and private key
ktls-utils 0.6 - 2022-05-27
* Update value of SOL_TLSH constant for kernel v5.18
* Fix gnutls_transport_is_ktls_enabled()
* Avoid zombie children
* Report peer certificate verification failures
* Split the debug command-line option
ktls-utils 0.5 - 2022-04-11
* Fix retrieval of TLSH_PRIORITIES
* Refactor keyring code
* Sketch in x.509 client authentication support
* Re-license request from Oracle CorpArch
* Enable thorough static code checking
* Enable compilation with older versions of GnuTLS
ktls-utils 0.4 - 2022-03-04
* Add date and time to build version strings
* Document FIPS mode in tlshd(8)
* Initial support for PSK handshakes
* Initial support for SM4_GCM and SM4_CCM ciphers
* Support SOL_TLSH socket options
ktls-utils 0.3 - 2022-02-25
* Tell server not to send New Session tickets
* Document SSLKEYLOGFILE in tlshd(8)
* Move kTLS-specific code to src/tlshd/ktls.c
* Suggested logic to distinguish between PSK and x.509
* Check for existence of keyutils.h
ktls-utils 0.2 - 2022-02-08
* Replace OpenSSL with GnuTLS
* AF_TLSH kernel API has been simplified
* Fixes to get TLS handshake working
* More syslog helpers
* Added sample systemd unit
ktls-utils 0.1 - 2021-12-13
* Initial code base