[Haskell-cafe] tls 1.5.5
Kazu Yamamoto (=?iso-2022-jp?B?GyRCOzNLXE9CSScbKEI=?=)
kazu at iij.ad.jp
Mon Feb 8 20:01:28 UTC 2021
Hi all,
I would like to announce that tls 1.5.5 has been released. The main
purpose of this version is provide the Network.TLS.QUIC module. This
is the first step to bring QUIC to the Haksell community.
Changelog says:
- QUIC support
[#419](https://github.com/vincenthz/hs-tls/pull/419)
[#427](https://github.com/vincenthz/hs-tls/pull/427)
[#428](https://github.com/vincenthz/hs-tls/pull/428)
[#430](https://github.com/vincenthz/hs-tls/pull/430)
[#433](https://github.com/vincenthz/hs-tls/pull/433)
[#441](https://github.com/vincenthz/hs-tls/pull/441)
- Server ECDSA for P-256
[#436](https://github.com/vincenthz/hs-tls/pull/436)
- Sort ciphersuites based on hardware-acceleration support
[#439](https://github.com/vincenthz/hs-tls/pull/439)
- Sending no_application_protocol
[#440](https://github.com/vincenthz/hs-tls/pull/440)
- Internal improvements
[#426](https://github.com/vincenthz/hs-tls/pull/426)
[#431](https://github.com/vincenthz/hs-tls/pull/431)
Technical information can be found from the following blog posts:
- Implementation status of QUIC in Haskell
https://kazu-yamamoto.hatenablog.jp/entry/2020/02/18/145038
- Improving QUIC APIs of the TLS library in Haskell
https://kazu-yamamoto.hatenablog.jp/entry/2020/09/16/150801
- The Current Plan for Haskell QUIC
https://kazu-yamamoto.hatenablog.jp/entry/2020/10/23/141648
IMPORTANT NOTE:
If you want to make "tls" faster, please install "cryptonite" with the
"support_pclmuldq" flag:
% cabal install cryptonite -f support_pclmuldq
This enables hardware acceleration for the GCM part of AES-GCM. If you
use old GCC, you need to disable the "use_target_attributes" flag:
% cabal install cryptonite -f support_pclmuldq -f-use_target_attributes
--Kazu
More information about the Haskell-Cafe
mailing list