diff options
author | Joseph Birr-Pixton <jpixton@gmail.com> | 2023-01-29 12:41:15 +0000 |
---|---|---|
committer | ctz <jpixton@gmail.com> | 2023-01-30 09:05:15 +0000 |
commit | 411a65d7367bed6e5c90ed4bfa000334536e68ae (patch) | |
tree | c8fd1026d3d69cbcb3c43c7c88656b720ae1209c | |
parent | 8a29ee4d332b9ddcbc258c9910b06458b726d0ee (diff) |
Changelog items for alpha1v/0.21.0-alpha.1
-rw-r--r-- | README.md | 13 |
1 files changed, 13 insertions, 0 deletions
@@ -27,6 +27,19 @@ If you'd like to help out, please see [CONTRIBUTING.md](CONTRIBUTING.md). - Support for connecting to peers named with IP addresses. This means rustls now depends on a fork of webpki - `rustls-webpki` - with a suitably extended API. + - *Breaking change*: `StoresClientSessions` trait renamed to `ClientSessionStore` and + reworked to allow storage of multiple TLS1.3 tickets and avoid reuse of them. + This is a privacy improvement, see RFC8446 appendix C.4. + - *Breaking change*: `rustls::Error` is no longer `PartialEq`. + - *Breaking change*: rework `rustls::Error` to avoid String usage in + `PeerMisbehavedError`, `PeerIncompatibleError` and certificate errors. + Especially note that custom certificate verifiers should move to use the + new certificate errors. + - *Breaking change*: replace `webpki::Error` appearing in the public API + in `RootCertStore::add`. + - The number of tickets sent by a TLS1.3 server is now configurable via + `ServerConfig::send_tls13_tickets`. Previously one ticket was sent, now + the default is four. * 0.20.8 (2023-01-12) - Yield an error from `ConnectionCommon::read_tls()` if buffers are full. Both a full deframer buffer and a full incoming plaintext buffer will |