Releases: mongodb-js/kerberos
v2.2.0
2.2.0 (2024-09-05)
The MongoDB Node.js team is pleased to announce version 2.2.0 of the kerberos package!
Release Notes
protect is now an option for KerberosClient.wrap()
protect can be provided to KerberosClient.wrap(). When configured, wrapped message will be encrypted.
Thanks @arabull for this contribution!
Features
Documentation
We invite you to try the kerberos library immediately, and report any issues to the NODE project.
Contributors
Assets 16
- 30.3 KB
2024-09-11T14:46:33Z - 833 Bytes
2024-09-11T14:46:33Z - 83.6 KB
2024-09-11T14:46:33Z - 833 Bytes
2024-09-11T14:46:33Z - 83.6 KB
2024-09-11T14:46:33Z - 833 Bytes
2024-09-11T14:46:33Z - 66.6 KB
2024-09-11T14:46:33Z - 833 Bytes
2024-09-11T14:46:33Z - 69.9 KB
2024-09-11T14:46:33Z - 833 Bytes
2024-09-11T14:46:33Z -
2024-09-11T14:37:58Z -
2024-09-11T14:37:58Z - Loading
v2.1.2
2.1.2 (2024-08-12)
The MongoDB Node.js team is pleased to announce version 2.1.2 of the kerberos package!
Release Notes
MacOS builds reverted to use dynamic linking
We recently made runtime linking with system kerberos libraries (#165) the default for Linux and MacOS (#188) platforms due to the fact that system kerberos libraries often link against the system SSL library. However, Node.js ships with it's own SSL library, and having both loaded when they are different versions would crash the addon. Inadvertently this did not work as intended on MacOS, so we're reverting the change for that platform, other platforms are unaffected.
Bug Fixes
Documentation
We invite you to try the kerberos library immediately, and report any issues to the NODE project.
v2.1.1
2.1.1 (2024-07-16)
The MongoDB Node.js team is pleased to announce version 2.1.1 of the kerberos package!
Release Notes
Fix segfault when running kerberos on systems with 1.x OpenSSL versions and Node.js 18+
Kerberos depends on OpenSSL and Node.js always bundles a copy of OpenSSL. Unfortunately an incompatiblity arises when Node's SSL version is not compatible with the version that the system kerberos library was built with.
Kerberos will now load the system library by default with runtime dynamic linking. This enables us to specify that kerberos use the SSL version it was built against (RTLD_DEEPBIND) so it does not adopt the symbols available in Node.js' address space.
Starting in Node 18+ these Node's SSL symbols are from OpenSSL 3+, whereas on RHEL 8 the system SSL library is 1.1.1k.
Add Spectre Mitigation and Control Flow Guard
On Windows only, we have added the SpectreMitigation and /guard:cf flags, thanks to a contribution from @rzhao271! If you are building on Windows yourself you may need to install Spectre-mitigated libraries for Visual Studio. Those using the prebuilds should not need any changes.
MacOS universal builds
In a previous PR we made our MacOS prebuilds be universal binaries so the same build works on both M1 and Intel. This PR moves the universal build flags under a condition so that when building a static library only the platform being built for is included.
Bug Fixes
- MONGOSH-1808: only build universal macos binaries when creating loadable_library (#186) (ec3ab7a)
- NODE-6253: use runtime linking against system kerberos libraries by default (#188) (04044d2)
- NODE-6265: add Spectre Mitigation and CFG (#190) (54b9799)
- NODE-6108: allow building from source on latest Node.js 20.x (#172) (c1f7aca)
Documentation
We invite you to try the kerberos library immediately, and report any issues to the NODE project.
Contributors
Assets 16
v2.1.1-alpha.0
2.1.1-alpha.0 (2024-06-28)
The MongoDB Node.js team is pleased to announce version 2.1.1-alpha.0 of the kerberos package!
Release Notes
Bug Fixes
Documentation
We invite you to try the kerberos library immediately, and report any issues to the NODE project.
v2.1.0
The MongoDB Node.js team is pleased to announce version 2.1.0 of the kerberos package!
Features
- NODE-5746: The kerberos library now provides the ability to build from source to use a runtime linked system kerberos library. To enable this flag use
GYP_DEFINES='kerberos_use_rtld=true' npm i --build-from-source
We invite you to try the kerberos library immediately, and report any issues to the NODE project.
v2.0.3
The MongoDB Node.js team is pleased to announce version 2.0.3 of the kerberos package!
Features
- NODE-5600: Resolves glibc compatibility issues. This fixes issues installing 2.0.2 on Node 16 due to the glibc requirement being too high.
We invite you to try the kerberos library immediately, and report any issues to the NODE project.
v2.0.2
The MongoDB Node.js team is pleased to announce version 2.0.2 of the kerberos package!
Features
- NODE-5505: Resolves compiler warnings and downstream BinSkim issues, fixes string length casts on username.
We invite you to try the kerberos library immediately, and report any issues to the NODE project.
v2.0.1
The MongoDB Node.js team is pleased to announce version 2.0.1 of the kerberos package!
Bug Fixes
- NODE-4297: Update version of prebuild-install to v7.1.1
We invite you to try the kerberos library immediately, and report any issues to the NODE project.
v2.0.0
The MongoDB Node.js team is pleased to announce version 2.0.0 of the kerberos package!
Release Highlights
This major release makes our conversion of this library to use N-API officially available.
The kerberos package now requires a minimum Node.js version of 12.
⚠BREAKING CHANGES
- Node.js 12.9 or greater is required.
- NODE-3472: convert to Node-API (#137) (f9481a4)
- NODE-3848: update dependencies (#142) (8c06728)
Bug Fixes
We invite you to try the kerberos library immediately, and report any issues to the NODE project.
v2.0.0-beta.0
The MongoDB Node.js team is pleased to announce version 2.0.0-beta.0 of the kerberos package!
Release Highlights
This release updates the Kerberos package to use the Node-API for native bindings. The kerberos package now requires a minimum Node.js version of 12.9.0 or greater.
⚠️ Breaking Changes
Full Changelog: v1.1.7...v2.0.0-beta.0
We invite you to try the kerberos library immediately, and report any issues to the NODE project.