Ocaml Ssl Versions Save

OCaml SSL bindings.

0.6.0

9 months ago

CHANGES:

  • Raise an error when Ssl.flush isn't successful (#104, #120)
  • Add an API-compatible Ssl.Runtime_lock module. The functions in this module don't release the OCaml runtime lock. While they don't allow other OCaml threads to run concurrently, they don't perform any copying in the underlying data, leading certain workloads to be faster than their counterparts that release the lock. (#106)
  • Guarantee Ssl.output_string writes the whole string by retrying the operation with unwritten bytes (#103, #116)
  • Fix calls in C stubs that need to call ERR_clear_error before the underlying OpenSSL call (#118)
  • Add a module Ssl.Error to retrieve OpenSSL errors in a structured way (#119)
  • Deprecate Ssl.{SSLv23,SSLv3,TLSv1,TLSv1_1}, which were were formally deprecated in March 2021 and earlier (#115).

0.5.13

1 year ago

CHANGES:

  • Add Ssl.close_notify to perform a one-way shutdown (#63, #96).

0.5.12

1 year ago

CHANGES:

  • Add a few verification functions (#71):
    • add_extra_chain_cert to send additional chain certificates to the peer.
    • add_cert_to_store: to allow verification of the peer certificate CA.
    • set_ip: sets the expected IP address to be verified on a SSL socket.
  • Improve use_certificate_from_string (#71) to read any type of key (rather than just RSA).
  • Fix a segmentation fault in the ALPN selection callback under OCaml 5 (#89).
  • Audit the C FFI and add CAMLparamX and CAMLreturn calls (#90).

0.5.11

1 year ago
  • Add digest function (#65, #66).
  • Restore compatibility with openssl < 1.1.0 (#73).
  • Improved compatibility with OCaml 5 (#79).
  • Fix client_verify_callback for NO_NAKED_POINTERS mode. A user-provided verification function in C remains an out-of-heap pointer for 4.x for compatibility, but is boxed for OCaml 5.x or 4.x when configured with --disable-naked-pointers. (#83)

v0.5.10

3 years ago
  • Add use_certificate_from_string (#54).
  • Add get_verify_error_string, get_start_date, get_expiration_date (#57).
  • Release master lock on ALPN failure (#58).
  • Add version (#60).
  • Switch to dune 2 (#61).

0.5.9

4 years ago
  • Backward compatibility with OpenSSL 1.0.2 (#53).

0.5.8

4 years ago
  • Better error reporting.
  • Add support for hostname validation (#49).
  • Add ALPN support (#37, #38, #48).

0.5.7

5 years ago
  • Correctly set #defines (#40).
  • Correctly deal with non-existent directories for Homebrew (#42).

0.5.6

5 years ago
  • Switch to the dune build system.

0.5.5

6 years ago
  • Make sure that LDFLAGS is honored during build.