1.0.5

CHANGES:

• Removed links to nqsb (we're no longer in charge of that domain)
  (6398b0c)

1.0.4

CHANGES:

• breaking change Allow decoding of negative serial numbers (#177 @hannesm)
  Now, serial returns the entire (integer) value as a string - previously the
  potentially leading 0 byte was removed. So:
  -serial d795 49bd 1a67 1751
  +serial 00d7 9549 bd1a 6717 51
  fixes in 38cc70a and #179 (#178 @dinosaure)
• Add alternate SHA1RSA OID 1.3.14.3.2.29 (#176 @mefyl)
• Allow custom pretty printers for unknown X509 extensions (#175 @reynir)
• Minor code cleanups: remove unused algorithms, remove def and def'
  (#177 @hannesm)

1.0.3

CHANGES:

• Use the opam package kdf instead of pbkdf (@hannesm #174)

1.0.2

CHANGES:

• Fix RSA public and private key encoding and decoding (@hannesm #172, reported
  by @anmonteiro #171)

1.0.1

CHANGES:

• Speedup PEM decoding and encoding significantly (@hannesm #170)

The no cstruct release

What's Changed

• Fix mixup of subject and hash in error message by @reynir in #165
• Use string instead of cstruct by @dinosaure in #167
• Rename Authenticator.server_{cert,key}_fingerprint by @reynir in #164
• Add Certificate.fold_decode_pem_multiple by @art-w in #169

New Contributors

• @art-w made their first contribution in #169

Full Changelog: v0.16.5...v1.0.0

0.16.5

CHANGES:

• Always embed local_key_id in PKCS12 bags (reported #163 by @NightBlues,
  revised and implemented by @hannesm)

0.16.4

CHANGES:

• Adapt to mirage-crypto-rng 0.11.0 API changes (#162 @hannesm)

0.16.3

CHANGES:

• Validation: allow self-signed server certificate with BasicConstraints CA=true
  (reported by @mbacarella in mirleft/ocaml-tls#446
  (lightningnetwork/lnd#5450), fix #161 by @hannesm)

0.16.2

CHANGES:

• Improve parse error message of Authenticator.of_string (mirage/ocaml-git#593
  by @dinosaure, mirage/ocaml-git#582 by @reynir)