warp-tls

HTTP over TLS support for Warp via the TLS package

Version on this page:	3.2.5
LTS Haskell 21.22:	3.3.6@rev:1
Stackage Nightly 2023-11-30:	3.4.3
Latest on Hackage:	3.4.3

See all snapshots warp-tls appears in

MIT licensed by Michael Snoyman

Maintained by michael@snoyman.com

This version can be pinned in stack with:warp-tls-3.2.5@sha256:28035bd1f5262f3aa9464bcffaea1cf732872884035fb22449f52b2e7e57641a,1628

Module documentation for 3.2.5

Network
- Network.Wai
  - Network.Wai.Handler
    - Network.Wai.Handler.WarpTLS

Depends on 10 packages(full list with versions):

base, bytestring, cryptonite, data-default-class, network, streaming-commons, tls, tls-session-manager, wai, warp

Used by 4 packages in lts-13.19(full list with versions):

hoogle, wai-cli, warp-tls-uid, yesod-bin

warp-tls

Serve WAI applications using the Warp webserver and the Haskell TLS library.

In order to generate a self-signed certificate for testing, try the following:

openssl genrsa -out key.pem 2048
openssl req -new -key key.pem -out certificate.csr
openssl x509 -req -in certificate.csr -signkey key.pem -out certificate.pem

Changes

3.2.5

When tls 1.5.0 is available, TLS 1.3 is automatically supported.

3.2.4.3

Using warp >= 3.2.17.

3.2.4.2

Ignore socket errors while sending close_notify #640

3.2.4

Using tls-session-manager.

3.2.3

Stop using obsoleted APIs of network.

3.2.2

New settting parameter: tlsServerDHEParams #556
Preventing socket leakage #559

3.2.1

Removing dependency to cprng-aes.

3.2.0

Major version up due to breaking changes.
runHTTP2TLS and runHTTP2TLSSocket were removed.

3.1.4

Add an option to disable HTTP2 #450

3.1.3

Removing SHA 512 and SHA 384 from supportedCiphers to rescue Safari and golang. #429

3.1.2

Getting Rating A from the SSL Server Test

3.1.1

Converting “send: resource vanished (Broken pipe)” to ConnectionClosedByPeer. #421

3.1.0

Supporting HTTP/2 #399
Removing RC4 #400

3.0.4.2

tls 1.3 support #390

3.0.4.1

Fix for leaked FDs #378

3.0.4

Replace acceptSafe with accept, see #361

3.0.3

Support chain certs #349

3.0.2

Allow warp-tls to request client certificates. #337

3.0.1.4

Add additional Diffie-Hellman RSA and DSA ciphers to warp-tls.

3.0.1.3

Unable to allow insecure connections with warp-tls #324

3.0.1.2

Make sure Timer is tickled in sendfile. #323

3.0.1

Support for in-memory certificates and keys