package async_ssl
An Async-pipe-based interface with OpenSSL
Install
Dune Dependency
Authors
Maintainers
Sources
v0.16.1.tar.gz
md5=7e404ed41467b7ac0ef985f5ac6eccd8
sha512=e4545e91d15d43f1a53ca8d05e8b7d39d11627671d0da2b2b02451b197387b396a310d51397decbd6448fc2bb13aa237b052685263dea4e2010f7884ad94371d
doc/CHANGES.html
Release v0.16.0
- Removed Support for OpenSSL 1.0. We now require OpenSSL 1.1.x. (OpenSSL 3.x should also work but is untested).
- Added new configuration option
override_security_levelas an escape hatch to override the system wide OpenSSL security level. SeeSsl.Override_security_level - Added
Connection.peer_certificate_fingerprintandCertificate.fingerprint. - Expose
?socketonTls.listento allow configuring the underlying listening socket. SeeAsync_unix.Tcp.Server.create.
Old pre-v0.15 changelogs (very likely stale and incomplete)
git version
- Added function
Ffi.set_default_verify_paths, to make OpenSSL use its default for CA certificates locations
113.33.00
- Make sure to close the
Pipe.Writer.tthat goes back to the application, otherwise the application will never get an `Eof if the connection is closed.
113.24.00
- Switched to ppx.
113.00.00
- Added
Ssl.Connection.close.
112.35.00
- Fix github issue #4 (some comments swapped).
112.24.00
- By default OpenSSL ignores the result of certificate validation, so we need to tell it not to.
- Expose session details such as checked certificates and negotiated version. Add session resumption.
112.17.00
- moved ffi_bindings and ffi_stubgen in separate libraries
111.21.00
- Upgraded to use new ctypes and its new stub generation methods.
111.08.00
- Improved the propagation of SSL errors to the caller.
111.06.00
Initial release