nng - A mirror of https://github.com/nanomsg/nng

	Commit message (Collapse)	Author	Age
*	Add support for OpenSSL v3.5 and newer.	Garrett D'Amore	2025-10-19
\| \| \| \| \| \| \| \| \| \| \|	We are only supporting 3.5 (or newer 3.x releases) as its the newest LTS version of OpenSSL. This supports the full set of TLS features with NNG, including DTLS, PSK, TLS 1.3, etc. Future work will explore making using of the QUIC support in OpenSSL. Note that this OpenSSL work sits on top of NNG's TCP streams, so it cannot benefit from Linux in-kernel TLS or other features such as TCP fast open at this time.
*	Introduce DTLS transport for NNG.	Garrett D'Amore	2025-06-01
\| \| \| \| \| \| \| \| \| \| \| \| \|	This introduces a new experimental transport for DTLS, that provides encryption over UDP. It has a simpler protocol than the current UDP SP protocol (but we intend to fix that by making the UDP transport simpler in a follow up!) There are a few other fixes in the TLS layer itself, and in the build, that were needed to accomplish this work. Also there was an endianness bug in the UDP protocol handling, which is fixed here.
*	TLS: break up the TLS layer a bit to refactor for DTLS.	Garrett D'Amore	2025-04-27
\| \| \| \| \| \| \| \| \| \| \|	This allows us to break the assumption that the bottom half is TCP, or even an nng_stream, since the DTLS layer will use a totally different layer. Only nng_stream neeeds to support dial and listen. Also: UDP: Make the sockaddr arguments to open const. Also: Align the IPv6 address in the sockaddr (this allows for efficient 64-bit or even 128-bit operations on these values.)
*	api: fold TLS supplemental headers into nng.h	Garrett D'Amore	2025-01-04
\|
*	fixes #1087 CMakeLists structural improvements desired	Garrett D'Amore	2020-11-14
\| \| \| \| \|	This doesn't modularize all the tests yet, but it goes a long way in the right direction.
*	fixes #1005 TLS 1.3 support	Garrett D'Amore	2020-02-23
\| \| \| \| \| \| \| \|	This introduces support for an external wolfSSL plugin, and generally creates the framework for pluggable TLS implementations. The wolfSSL engine is provided via an external module (git submodule), available either under a GPLv3 license or a commercial license.
*	Add possibility to use mbedtls cmake target if available	Robert Bielik	2019-12-27
\|
*	fixes #847 Define public TLS API	Garrett D'Amore	2019-01-06
\|
*	move all public headers to include/nng/ folder	Gregor Burger	2018-11-22
\| \| \| \| \| \| \| \| \| \|	This change makes embedding nng + nggpp (or other projects depending on nng) in cmake easier. The header files are moved to a separate include directory. This also makes installation of the headers easier, and allows clearer identification of private vs public heade files. Some additional cleanups were performed by @gedamore, but the main credit for this change belongs with @gregorburger.
*	fixes #456 TLS configuration object hold	Garrett D'Amore	2018-11-05
\| \| \| \|	fixes #776 Configuration of mbedTLS should warn about license
*	fixes #577 target library dependencies should be public	Garrett D'Amore	2018-11-05
\| \| \| \| \| \| \| \| \| \| \|	This is a significant refactor of the library configuration. We use the modern package configuration helper, with a template script that also does the find_package dance for any of our dependencies. We also have restructured the code so that most protocols and transports have their configuration isolated to their own CMakeLists file, reducing the size of the global CMakeLists file.
*	Isolate TLS functions into separate tls.h header file.	Garrett D'Amore	2018-03-02
\|
*	fixes #247 nngcat needs TLS options	Garrett D'Amore	2018-03-02
\| \| \| \| \| \| \|	While here we also fixed a bug in the --file handling that we noticed while writing the TLS handling. We also fixed a warning in the core (msgqueue) for set but unused variables.
*	fixes #173 Define public HTTP server API	Garrett D'Amore	2018-02-01
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	This introduces enough of the HTTP API to support fully server applications, including creation of websocket style protocols, pluggable handlers, and so forth. We have also introduced scatter/gather I/O (rudimentary) for aios, and made other enhancements to the AIO framework. The internals of the AIOs themselves are now fully private, and we have eliminated the aio->a_addr member, with plans to remove the pipe and possibly message members as well. A few other minor issues were found and fixed as well. The HTTP API includes request, response, and connection objects, which can be used with both servers and clients. It also defines the HTTP server and handler objects, which support server applications. Support for client applications will require a client object to be exposed, and that should be happening shortly. None of this is "documented" yet, bug again, we will follow up shortly.
*	fixes #166 Websocket TLS mapping	Garrett D'Amore	2017-12-30
	This introduces the wss:// scheme, which is available and works like the ws:// scheme if TLS is enabled in the library. The library modularization is refactored somewhat, to make it easier to use. There is now a single NNG_ENABLE_TLS that enables TLS support under the hood. This also adds a new option for the TLS transport, NNG_OPT_TLS_CONFIG (and a similar one for WSS, NNG_OPT_TLS_WSS_CONFIG) that offer access to the underlying TLS configuration object, which now has a public API to go with it as well. Note that it is also possible to use pure HTTPS using the private API, which will be exposed in a public form soon.