|
|
|
|
Changelog for libwebsockets-devel-4.3.2-39.1.x86_64.rpm :
* Thu Jul 20 2023 Joshua Smith - Move evlib .so files to the sover package as they\'re wanted by software at runtime. * Sat May 27 2023 munix9AATTgooglemail.com- Add upstream patch fix-gcc13-build.patch: Fix -Werror=enum-int-mismatch in lws_tls_server_abort_connection() * Sun Feb 19 2023 Martin Hauke - package libwebsockets-evlib_uv.so- specfile cleanup * Fri Feb 17 2023 Soc Virnyl Estela - Enable build with libuv. * Fri Oct 21 2022 Martin Hauke - Build with support for libuv * Mon Jul 18 2022 Dirk Müller - update to 4.3.2: * http: lws_add_http_header_by_name: add colon if needed * logs: openssl session: improve detection of INFO enabled * logs: lock log context refcount changes * route: fix nl groups and local ipv6 ads * ss: mqtt: fix wrong QoS value on Birth message * ss: http: ensure SS points to wsi when using wsi pointing to SS * ss: reject direct protocol metadata if NULL ss wsi * h1: deal with WAITING_CONNECT in ops-h1 * route: extend lws_route_uidx_t from 1 byte to 2 bytes * gcc12: fix potential test app string overflow * h1: remove assert on unexpected POLLIN state just hangup * sul: add clear advice for zombie suls * logs: use finegrained level test on unix-sockets.c * acme: update for v2 * threadpool: improve relationship with LWS_HAVE_PTHREAD_H * h2: access log: POST: prepare log * mqtt: fix wrong awsiot field set on SUBSCRIBE * Fri Jan 28 2022 Dirk Müller - update to 4.3.1: * tls: clear unused warning on WITHOUT_SERVER * pugins: sshd: handle window-change request * metrics: ss: skip tagging if no ss streamtypename * logs: log context: async_dns: no empty format string * mqtt: protect printing debug only vars * cmake: wrong miniz include dir + mbed link on windows * uv: handle uv_poll_init failure * context: fix compilation error * Tue Oct 05 2021 Martin Hauke - Update to version 4.3.0 * Add full CBOR stream parsing and writing support, with huge amount of test vectors and resumable printf type write apis. See ./READMEs/README.cbor-lecp.md * Add COSE key and signing / validation support with huge amount of test vectors. cose_sign[1] ES256/384/512, RS256/384/512 cose_mac0 HS256/384/512 See ./READMEs/README.cbor-cose.md * JIT Trust: for constrained devices, provides a way to determine the trusted CA certs the peer requires, and instantiate just those. This allows generic client browsing without the overhead of ~130 x.509 CA certs in memory permanently. * Add support for client Netscape cookie jar with caching. * Secure Streams: issue LWSSSCS_EVENT_WAIT_CANCELLED state() when lws_cancel_service() called, so cross-thread events can be handled in SS. * Actively assert() on attempt to destroy SS handles still active in the call stack, use DESTROY_ME returns instead so caller can choose how to handle it. * Improved Client Connection Error report strings for tls errors * SMP: Use a private fakewsi for PROTOCOL_INIT so pts cannot try to use the same one concurrently. * MbedTLS v3 support for all release changes, as well as retaining support for v2.x * MQTT client: support QoS2 * Event lib ops can now be set at context creation time directly * Extra APIs to recover AKID and SKID from x.509 in mbedtls and openssl * Improve http redirect to handle h2-> h2 cleanly * IPv4+6 listen sockets on vhosts are now done with two separate sockets bound individually to AF_INET and AF_INET6 addresses, handled by the same vhost listen flow. * Improved tls restriction handling. * Log contexts: allow objects to log into local logging contexts by lws_context, vhost, wsi and ss handle. Each context has its own emit function and log level. See./READMEs/README.logging.md * Fault injection apis now also support pseudo-random number binding within a specified range, eg, - -fault-injection \"f1(10%),f1_delay(123..456)\" * Remove LWS_WITH_DEPRECATED_THINGS, remove master branch * Interface binding now uses ipv6 scoring to select bind address * Sat Apr 17 2021 Martin Hauke - Update to version 4.2.0 * RFC7231 date and time parsing and retry-after wired up to lws_retry. * `LWS_WITH_SUL_DEBUGGING` checks that no sul belonging to Secure Streams and wsi objects are left registered on destruction. * Netlink monitoring on Linux dynamically tracks interface address and routing changes, and immediately closes connections on invalidated routes. * RFC6724 DNS results sorting over ipv4 + ipv6 results, according to available dynamic route information. * Support new event library, sdevent (systemd native loop), via `LWS_WITH_SDEVENT`. * Reduce .rodata cost of role structs by making them sparse. * Additional Secure Streams QA tests and runtime state transition validation. * SMD-over-ss-proxy documentation and helpers to simplify forwarding. * SSPC stream buffering at proxy and client set from policy by streamtype. * Trigger Captive Portal Detection if DNS resolution fails. * Switch all logs related to wsi and Secure Streams to use unique, descriptive tags instead of pointers (which may be reallocated). * Use NOITCE logging for Secure Streams and wsi lifecycle logging using tags. * Update SSPC serialization to include versioning on initial handshake, and pass client pid to proxy so related objects are tagged with it. * Enable errors on -Wconversion pedantic type-related build issues throughout the lws sources and upgrade every affected cast. * `lws_strcmp_wildcard()` helper that understand \"x *\", \"x *y\", \"x *y *\" etc. * `LWS_WITH_PLUGINS_BUILTIN` cmake option just builds plugins into the main library image directly. * Secure Streams proxy supports policy for flow control between proxy and clients. * libressl also supported along with boringssl, wolfssl. * prepared for openssl v3 compatibility, for main function and GENCRYPTO. * Fault injection apis can confirm operation of 48 error paths and counting. * `LWS_WITH_SYS_METRICS` keeps stats and reports them to user-defined function, compatible with openmetrics. * More options around JWT. * Support TLS session caching and reuse by default, on both OpenSSL and mbedtls. * Many fixes and improvements... * Fri Dec 04 2020 Martin Hauke - Update to version 4.1.6 - NEW: CMakeLists.txt has been refactored and modernized into smaller CMakeLists.txt - NEW: event lib support on Unix is now built into dynamically loaded plugins and brought in at runtime, allowing all of the support to be built in isolation without conflicts, and separately packaged with individual dependencies. See ./READMEs/event-libs.md for details and how to force the old static build into lws method. - NEW: Captive Portal Detection. Lws can determine if the active default route is able to connect to the internet, or is in a captive portal type situation, by trying to connect to a remote server that will respond in an unusual way, like provide a 204. - NEW: Secure streams: Support system trust store if it exists - NEW: lws_struct: BLOB support - NEW: lws_sul: Now provides two sorted timer domains, a default one as before, and another whose scheduled events are capable to wake the system from suspend - NEW: System Message Distribution: lws_smd provides a very lightweight way to pass short messages between subsystems both in RTOS type case where the subsystems are all on the lws event loop, and in the case participants are in different processes, using Secure Streams proxying. Participants register a bitmap of message classes they care about; if no particpant cares about a particular message, it is rejected at allocation time for the sender, making it cheap to provide messages speculatively. See lib/system/smd/README.md for full details. - NEW: lws_drivers: wrappers for SDK driver abstractions (or actual drivers) See lib/drivers/README.md. - NEW: Security-aware JWS JWT (JSON Web Tokens) apis are provided on top of the existing JOSE / JWS apis. All the common algorithms are available along with some high level apis like lws http cookie -> JWT struct -> lws http cookie. - REMOVED: esp32-helper and friends used by esp32-factory now lws_drivers exists - REMOVED: generic sessions and friends now JWT is provided- Drop not longer needed patch: * libwebsockets-norpmtools.patch
|
|
|