swift-nio-ssl

Semver Patch

• Fixed an error when working on both SwiftNIO and SwiftNIO SSL in package edit mode. (#99)
• Updated BoringSSL to ad9eee16. (#97)
• Docs improvements. (#94, #95)

This is a major breaking release. SwiftNIO SSL 2.0.0 transitions SwiftNIO to use a vendored copy of BoringSSL instead of relying on the system copy of libssl.

Semver Major

• Substantially renamed a number of types to remove the phrase "OpenSSL" from them. (#75)
• NIOSSLClientHandler now requires a serverHostname, though it may still be nil. (#82)
• uncleanShutdown was previously on OpenSSLError, is now on NIOSSLError. (#76)
• Renamed SSLContext to NIOSSLContext. (#73)
• Changed the type of TLSConfiguration.applicationProtocols to [String]. (#70)

This release contains no function changes, and exists purely for administrative reasons.

Semver Minor

• Added support for removing TLS handlers from live connections without tearing those connections down ("unwrapping" TLS from a connection) (#54)
• Made TLSConfiguration structures mutable. (#58)
• Fixed crashes when issuing a certain pattern of repeated calls to Channel.close() while a TLS handler is in the pipeline. (#52)
• Added support for extracting the public keys of TLS certificates during handshakes.

Semver Patch

• Warnings and test cleanup. (#53, #61)

Semver Patch

• Added Android support. This is not currently under CI, so may regress. (#45)
• Improved .gitignore. (#42)
• Improved documentation. (#43)

Semver Patch

• Fixed a bug where receiving a CLOSE_NOTIFY in the same read call as application data would cause us to fail to emit that application data, leading to data loss. (#40)
• Fixed an issue where release mode builds would fail due to duplicate symbol definitions. (#41)

Semver Minor

• Added support for OpenSSL 1.1 on all platforms. This is the first release that supports the OpenSSL 1.1 series of libraries. (#20)
• Added support for OpenSSL 1.1.1. (#36, #37)
• Added support for configuring TLS 1.3 ciphers explicitly (#38)

Semver Patch

• Added custom ByteBufferBIO object to reduce the overhead of application data processing in OpenSSL. This leads to faster throughput. (#27)
• Fixed some performance problems in the sample TLS echo server. (#28)
• Testing improvements (#33).

This release contains no code changes, and is exists purely for administrative purposes.

Semver Minor

• Support users supplying a passphrase callback for private keys with passphrases on both the OpenSSLPrivateKey and to the SSLContext. (#21)
• Added OpenSSLPKCS12Bundle structure for accessing the contents of a PKCS#12 bundle. (#23)

Semver Patch

• Fixed a bug where the initializer for OpenSSLPrivateKey and OpenSSLCertificate that used a buffer of memory could accidentally escape a pointer from a withUnsafeBytes callback. (#22)
• Improved syscall handling, reducing the risk of errors from return codes like EINTR. (#24)

Semver Patch

• Flush EmbeddedChannel in tests to ensure that write promises are succeeded. (#15)

Semver Minor

• Expose the OpenSSL MD5 header file in CNioOpenSSL. (#13)

Semver Patch

• Stopped performing @testable imports of NIO. (#11)