1 GNU TLS NEWS -- History of user-visible changes. -*- outline -*-
2 Copyright (C) 2004, 2005, 2006, 2007, 2008, 2009 Simon Josefsson
3 Copyright (C) 2000, 2001, 2002, 2003, 2004 Nikos Mavrogiannopoulos
4 See the end for copying conditions.
6 * Version 2.9.4 (unreleased)
8 ** API and ABI modifications:
9 No changes since last version.
11 * Version 2.9.3 (released 2009-08-19)
13 ** libgnutls: Support for TLS tickets was contributed by Daiki Ueno.
14 The new APIs are gnutls_session_ticket_enable_client,
15 gnutls_session_ticket_enable_server, and
16 gnutls_session_ticket_key_generate.
18 ** gnutls-cli, gnutls-serv: New parameter --noticket to disable TLS tickets.
20 ** API and ABI modifications:
21 gnutls_session_ticket_key_generate: ADDED.
22 gnutls_session_ticket_enable_client: ADDED.
23 gnutls_session_ticket_enable_server: ADDED.
25 * Version 2.9.2 (released 2009-08-14)
27 ** libgnutls: Fix problem with NUL bytes in X.509 CN and SAN fields.
28 By using a NUL byte in CN/SAN fields, it was possible to fool GnuTLS
29 into 1) not printing the entire CN/SAN field value when printing a
30 certificate and 2) cause incorrect positive matches when matching a
31 hostname against a certificate. Some CAs apparently have poor
32 checking of CN/SAN values and issue these (arguable invalid)
33 certificates. Combined, this can be used by attackers to become a
34 MITM on server-authenticated TLS sessions. The problem is mitigated
35 since attackers needs to get one certificate per site they want to
36 attack, and the attacker reveals his tracks by applying for a
37 certificate at the CA. It does not apply to client authenticated TLS
38 sessions. Research presented independently by Dan Kaminsky and Moxie
39 Marlinspike at BlackHat09. Thanks to Tomas Hoger <thoger@redhat.com>
40 for providing one part of the patch. [GNUTLS-SA-2009-4] [CVE-2009-2730].
42 ** libgnutls: Fix rare failure in gnutls_x509_crt_import.
43 The function may fail incorrectly when an earlier certificate was
44 imported to the same gnutls_x509_crt_t structure.
46 ** minitasn1: Internal copy updated to libtasn1 v2.3.
48 ** libgnutls: Fix return value of gnutls_certificate_client_get_request_status.
49 Before it always returned false. Reported by Peter Hendrickson
51 <http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3668>.
53 ** libgnutls: Fix off-by-one size computation error in unknown DN printing.
54 The error resulted in truncated strings when printing unknown OIDs in
55 X.509 certificate DNs. Reported by Tim Kosse
56 <tim.kosse@filezilla-project.org> in
57 <http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3651>.
59 ** libgnutls: Fix PKCS#12 decryption from password.
60 The encryption key derived from the password was incorrect for (on
61 average) 1 in every 128 input for random inputs. Reported by "Kukosa,
62 Tomas" <tomas.kukosa@siemens-enterprise.com> in
63 <http://permalink.gmane.org/gmane.network.gnutls.general/1663>.
65 ** libgnutls: Return correct bit lengths of some MPIs.
66 gnutls_dh_get_prime_bits, gnutls_rsa_export_get_modulus_bits, and
67 gnutls_dh_get_peers_public_bits. Before the reported value was
68 overestimated. Reported by Peter Hendrickson <pdh@wiredyne.com> in
69 <http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3607>.
71 ** libgnutls: Avoid internal error when invoked after GNUTLS_E_AGAIN.
72 Report and patch by Tim Kosse <tim.kosse@filezilla-project.org> in
73 <http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3671>
75 <http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3670>.
77 ** libgnutls: Relax checking of required libtasn1/libgcrypt versions.
78 Before we required that the runtime library used the same (or more
79 recent) libgcrypt/libtasn1 as it was compiled with. Now we just check
80 that the runtime usage is above the minimum required. Reported by
81 Marco d'Itri <md@linux.it> via Andreas Metzler
82 <ametzler@downhill.at.eu.org> in <http://bugs.debian.org/540449>.
84 ** tests: Added new self-test pkcs12_s2k_pem to detect MPI bit length error.
86 ** tests: Improved test vectors in self-test pkcs12_s2k.
88 ** tests: Added new self-test dn2 to detect off-by-one size error.
90 ** tests: Fix failure in "chainverify" because a certificate have expired.
92 ** API and ABI modifications:
93 No changes since last version.
95 * Version 2.9.1 (released 2009-06-08)
97 ** libgnutls: Fix crash in gnutls_global_init after earlier init/deinit cycle.
98 Forwarded by Martin von Gagern <Martin.vGagern@gmx.net> from
99 <http://bugs.gentoo.org/272388>.
101 ** tests: Added new self-tests init_roundtrip.c to detect previous problem.
103 ** Reduce stack usage for some CRQ functions.
105 ** Doc fixes for CRQ functions.
107 ** API and ABI modifications:
108 No changes since last version.
110 * Version 2.9.0 (released 2009-05-28)
114 ** API and ABI modifications:
115 No changes since last version.
117 * Version 2.8.3 (released 2009-08-13)
119 ** libgnutls: Fix patch for NUL in CN/SAN in last release.
120 Code intended to be removed would lead to an read-out-bound error in
121 some situations. Reported by Tomas Hoger <thoger@redhat.com>. A CVE
122 code have been allocated for the vulnerability: [CVE-2009-2730].
124 ** libgnutls: Fix rare failure in gnutls_x509_crt_import.
125 The function may fail incorrectly when an earlier certificate was
126 imported to the same gnutls_x509_crt_t structure.
128 ** libgnutls-extra, libgnutls-openssl: Fix MinGW cross-compiling build error.
130 ** tests: Made self-test mini-eagain take less time.
134 ** API and ABI modifications:
135 No changes since last version.
137 * Version 2.8.2 (released 2009-08-10)
139 ** libgnutls: Fix problem with NUL bytes in X.509 CN and SAN fields.
140 By using a NUL byte in CN/SAN fields, it was possible to fool GnuTLS
141 into 1) not printing the entire CN/SAN field value when printing a
142 certificate and 2) cause incorrect positive matches when matching a
143 hostname against a certificate. Some CAs apparently have poor
144 checking of CN/SAN values and issue these (arguable invalid)
145 certificates. Combined, this can be used by attackers to become a
146 MITM on server-authenticated TLS sessions. The problem is mitigated
147 since attackers needs to get one certificate per site they want to
148 attack, and the attacker reveals his tracks by applying for a
149 certificate at the CA. It does not apply to client authenticated TLS
150 sessions. Research presented independently by Dan Kaminsky and Moxie
151 Marlinspike at BlackHat09. Thanks to Tomas Hoger <thoger@redhat.com>
152 for providing one part of the patch. [GNUTLS-SA-2009-4].
154 ** libgnutls: Fix return value of gnutls_certificate_client_get_request_status.
155 Before it always returned false. Reported by Peter Hendrickson
156 <pdh@wiredyne.com> in
157 <http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3668>.
159 ** libgnutls: Fix off-by-one size computation error in unknown DN printing.
160 The error resulted in truncated strings when printing unknown OIDs in
161 X.509 certificate DNs. Reported by Tim Kosse
162 <tim.kosse@filezilla-project.org> in
163 <http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3651>.
165 ** libgnutls: Return correct bit lengths of some MPIs.
166 gnutls_dh_get_prime_bits, gnutls_rsa_export_get_modulus_bits, and
167 gnutls_dh_get_peers_public_bits. Before the reported value was
168 overestimated. Reported by Peter Hendrickson <pdh@wiredyne.com> in
169 <http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3607>.
171 ** libgnutls: Avoid internal error when invoked after GNUTLS_E_AGAIN.
172 Report and patch by Tim Kosse <tim.kosse@filezilla-project.org> in
173 <http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3671>
175 <http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3670>.
177 ** libgnutls: Relax checking of required libtasn1/libgcrypt versions.
178 Before we required that the runtime library used the same (or more
179 recent) libgcrypt/libtasn1 as it was compiled with. Now we just check
180 that the runtime usage is above the minimum required. Reported by
181 Marco d'Itri <md@linux.it> via Andreas Metzler
182 <ametzler@downhill.at.eu.org> in <http://bugs.debian.org/540449>.
184 ** minitasn1: Internal copy updated to libtasn1 v2.3.
186 ** tests: Fix failure in "chainverify" because a certificate have expired.
188 ** API and ABI modifications:
189 No changes since last version.
191 * Version 2.8.1 (released 2009-06-10)
193 ** libgnutls: Fix crash in gnutls_global_init after earlier init/deinit cycle.
194 Forwarded by Martin von Gagern <Martin.vGagern@gmx.net> from
195 <http://bugs.gentoo.org/272388>.
197 ** libgnutls: Fix PKCS#12 decryption from password.
198 The encryption key derived from the password was incorrect for (on
199 average) 1 in every 128 input for random inputs. Reported by "Kukosa,
200 Tomas" <tomas.kukosa@siemens-enterprise.com> in
201 <http://permalink.gmane.org/gmane.network.gnutls.general/1663>.
203 ** API and ABI modifications:
204 No changes since last version.
206 * Version 2.8.0 (released 2009-05-27)
208 ** doc: Fix gnutls_dh_get_prime_bits. Fix error codes and algorithm lists.
210 ** Major changes compared to the v2.4 branch:
212 *** lib: Linker version scripts reduces number of exported symbols.
214 *** lib: Limit exported symbols on systems without LD linker scripts.
216 *** libgnutls: Fix namespace issue with version symbols.
218 *** libgnutls: Add functions to verify a hash against a certificate.
219 gnutls_x509_crt_verify_hash: ADDED
220 gnutls_x509_crt_get_verify_algorithm: ADDED
222 *** gnutls-serv: Listen on all interfaces, including both IPv4 and IPv6.
224 *** i18n: The GnuTLS gettext domain is now 'libgnutls' instead of 'gnutls'.
226 *** certtool: Query for multiple dnsName subjectAltName in interactive mode.
228 *** gnutls-cli: No longer accepts V1 CAs by default during X.509 chain verify.
230 *** gnutls-serv: No longer disable MAC padding by default.
232 *** gnutls-cli: Certificate information output format changed.
234 *** libgnutls: New priority strings %VERIFY_ALLOW_SIGN_RSA_MD5
235 *** and %VERIFY_ALLOW_X509_V1_CA_CRT.
237 *** libgnutls: gnutls_x509_crt_print prints signature algorithm in oneline mode.
239 *** libgnutls: gnutls_openpgp_crt_print supports oneline mode.
241 *** libgnutls: gnutls_handshake when sending client hello during a
242 rehandshake, will not offer a version number larger than the current.
244 *** libgnutls: New interface to get key id for certificate requests.
245 gnutls_x509_crq_get_key_id: ADDED.
247 *** libgnutls: gnutls_x509_crq_print will now also print public key id.
249 *** certtool: --verify-chain now prints results of using library verification.
251 *** libgnutls: Libgcrypt initialization changed.
253 *** libgnutls: Small byte reads via gnutls_record_recv() optimized.
255 *** gnutls-cli: Return non-zero exit code on error conditions.
257 *** gnutls-cli: Corrected bug which caused a rehandshake request to be ignored.
259 *** certtool: allow setting arbitrary key purpose object identifiers.
261 *** libgnutls: Change detection of when to use a linker version script.
262 Use --enable-ld-version-script or --disable-ld-version-script to
263 override auto-detection logic.
265 *** Fix warnings and build GnuTLS with more warnings enabled.
267 *** New API to set X.509 credentials from PKCS#12 memory structure.
268 gnutls_certificate_set_x509_simple_pkcs12_mem: ADDED
270 *** Old libgnutls.m4 and libgnutls-config scripts removed.
271 Please use pkg-config instead.
273 *** libgnutls: Added functions to handle CRL extensions.
274 gnutls_x509_crl_get_authority_key_id: ADDED
275 gnutls_x509_crl_get_number: ADDED
276 gnutls_x509_crl_get_extension_oid: ADDED
277 gnutls_x509_crl_get_extension_info: ADDED
278 gnutls_x509_crl_get_extension_data: ADDED
279 gnutls_x509_crl_set_authority_key_id: ADDED
280 gnutls_x509_crl_set_number: ADDED
282 *** libgnutls: Added functions to handle X.509 extensions in Certificate
284 gnutls_x509_crq_get_key_rsa_raw: ADDED
285 gnutls_x509_crq_get_attribute_info: ADDED
286 gnutls_x509_crq_get_attribute_data: ADDED
287 gnutls_x509_crq_get_extension_info: ADDED
288 gnutls_x509_crq_get_extension_data: ADDED
289 gnutls_x509_crq_get_key_usage: ADDED
290 gnutls_x509_crq_get_basic_constraints: ADDED
291 gnutls_x509_crq_get_subject_alt_name: ADDED
292 gnutls_x509_crq_get_subject_alt_othername_oid: ADDED
293 gnutls_x509_crq_get_extension_by_oid: ADDED
294 gnutls_x509_crq_set_subject_alt_name: ADDED
295 gnutls_x509_crq_set_basic_constraints: ADDED
296 gnutls_x509_crq_set_key_usage: ADDED
297 gnutls_x509_crq_get_key_purpose_oid: ADDED
298 gnutls_x509_crq_set_key_purpose_oid: ADDED
299 gnutls_x509_crq_print: ADDED
300 gnutls_x509_crt_set_crq_extensions: ADDED
302 *** certtool: Print and set CRL and CRQ extensions.
304 *** minitasn1: Internal copy updated to libtasn1 v2.1.
306 *** examples: Now released into the public domain.
308 *** The Texinfo and GTK-DOC manuals were improved.
310 *** Several self-tests were added and others improved.
312 *** API/ABI changes in GnuTLS 2.8 compared to GnuTLS 2.6.x
313 No offically supported interfaces have been modified or removed. The
314 library should be completely backwards compatible on both the source
317 The shared library no longer exports some symbols that have never been
318 officially supported, i.e., not mentioned in any of the header files.
324 Normally when symbols are removed, the shared library version has to
325 be incremented. This leads to a significant cost for everyone using
326 the library. Because none of the above symbols have ever been
327 intended for use by well-behaved applications, we decided that the it
328 would be better for those applications to pay the price rather than
329 incurring problems on the majority of applications.
331 If it turns out that applications have been using unofficial
332 interfaces, we will need to release a follow-on release on the v2.8
333 branch to exports additional interfaces. However, initial testing
334 suggests that few if any applications have been using any of the
337 Although not a new change compared to 2.6.x, we'd like to remind you
338 interfaces have been modified so that X.509 chain verification now
339 also checks activation/expiration times on certificates. The affected
342 gnutls_x509_crt_list_verify: CHANGED, checks activation/expiration times.
343 gnutls_certificate_verify_peers: Likewise.
344 gnutls_certificate_verify_peers2: Likewise.
345 GNUTLS_CERT_NOT_ACTIVATED: ADDED.
346 GNUTLS_CERT_EXPIRED: ADDED.
347 GNUTLS_VERIFY_DISABLE_TIME_CHECKS: ADDED.
349 This change in behaviour was made during the GnuTLS 2.6.x cycle, and
350 we gave our rationale for it in earlier release notes.
352 The following symbols have been added to the library:
354 gnutls_certificate_set_x509_simple_pkcs12_mem: ADDED
355 gnutls_x509_crl_get_authority_key_id: ADDED
356 gnutls_x509_crl_get_extension_data: ADDED
357 gnutls_x509_crl_get_extension_info: ADDED
358 gnutls_x509_crl_get_extension_oid: ADDED
359 gnutls_x509_crl_get_number: ADDED
360 gnutls_x509_crl_set_authority_key_id: ADDED
361 gnutls_x509_crl_set_number: ADDED
362 gnutls_x509_crq_get_attribute_data: ADDED
363 gnutls_x509_crq_get_attribute_info: ADDED
364 gnutls_x509_crq_get_basic_constraints: ADDED
365 gnutls_x509_crq_get_extension_by_oid: ADDED
366 gnutls_x509_crq_get_extension_data: ADDED
367 gnutls_x509_crq_get_extension_info: ADDED
368 gnutls_x509_crq_get_key_id: ADDED.
369 gnutls_x509_crq_get_key_purpose_oid: ADDED
370 gnutls_x509_crq_get_key_rsa_raw: ADDED
371 gnutls_x509_crq_get_key_usage: ADDED
372 gnutls_x509_crq_get_subject_alt_name: ADDED
373 gnutls_x509_crq_get_subject_alt_othername_oid: ADDED
374 gnutls_x509_crq_print: ADDED
375 gnutls_x509_crq_set_basic_constraints: ADDED
376 gnutls_x509_crq_set_key_purpose_oid: ADDED
377 gnutls_x509_crq_set_key_usage: ADDED
378 gnutls_x509_crq_set_subject_alt_name: ADDED
379 gnutls_x509_crt_get_verify_algorithm: ADDED
380 gnutls_x509_crt_set_crq_extensions: ADDED
381 gnutls_x509_crt_verify_hash: ADDED
383 The following interfaces have been added to the header files:
385 GNUTLS_VERSION: ADDED, replaces LIBGNUTLS_VERSION.
386 GNUTLS_VERSION_MAJOR: ADDED, replaces LIBGNUTLS_VERSION_MAJOR.
387 GNUTLS_VERSION_MINOR: ADDED, replaces LIBGNUTLS_VERSION_MINOR.
388 GNUTLS_VERSION_PATCH: ADDED, replaces LIBGNUTLS_VERSION_PATCH.
389 GNUTLS_VERSION_NUMBER: ADDED, replaces LIBGNUTLS_VERSION_NUMBER.
390 GNUTLS_EXTRA_VERSION: ADDED, replaces LIBGNUTLS_EXTRA_VERSION.
392 The following interfaces have been deprecated:
394 LIBGNUTLS_VERSION: DEPRECATED.
395 LIBGNUTLS_VERSION_MAJOR: DEPRECATED.
396 LIBGNUTLS_VERSION_MINOR: DEPRECATED.
397 LIBGNUTLS_VERSION_PATCH: DEPRECATED.
398 LIBGNUTLS_VERSION_NUMBER: DEPRECATED.
399 LIBGNUTLS_EXTRA_VERSION: DEPRECATED.
401 * Version 2.7.14 (released 2009-05-26)
403 ** libgnutls: Fix namespace issue with version symbol for libgnutls-extra.
404 The symbol LIBGNUTLS_EXTRA_VERSION were renamed to
405 GNUTLS_EXTRA_VERSION. The old symbol will continue to work but is
408 ** Doc: Several typo fixes in documentation.
409 Reported by Peter Hendrickson <pdh@wiredyne.com>.
411 ** API and ABI modifications:
412 GNUTLS_VERSION: ADDED, replaces LIBGNUTLS_EXTRA_VERSION.
413 LIBGNUTLS_EXTRA_VERSION: DEPRECATED.
415 * Version 2.7.13 (released 2009-05-25)
417 ** libgnutls: Fix version of some exported symbols in the shared library.
418 Reported by Andreas Metzler <ametzler@downhill.at.eu.org> in
419 <http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3576>.
421 ** tests: Handle recently expired certificates in chainverify self-test.
422 Reported by Andreas Metzler <ametzler@downhill.at.eu.org> in
423 <http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3580>.
425 ** API and ABI modifications:
426 No changes since last version.
428 * Version 2.7.12 (released 2009-05-20)
430 ** gnutls-serv, gnutls-cli-debug: Make them work on Windows.
432 ** tests/crq_key_id: Don't read entropy from /dev/random in self-test.
433 Reported by Andreas Metzler <ametzler@downhill.at.eu.org> in
434 <http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3570>.
436 ** Fix build failures.
437 Missing sa_family_t and vsnprintf on IRIX. Reported by "Tom
438 G. Christensen" <tgc@jupiterrise.com> in
439 <http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3571>.
441 ** minitasn1: Internal copy updated to libtasn1 v2.2.
442 GnuTLS should work fine with libtasn1 v1.x and that is still
445 ** API and ABI modifications:
446 No changes since last version.
448 * Version 2.7.11 (released 2009-05-18)
450 ** minitasn1: Fix build failure when using internal libtasn1.
451 Reported by "Tom G. Christensen" <tgc@jupiterrise.com> in
452 <http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3548>.
454 ** libgnutls: Fix build failure with --disable-cxx.
455 Reported by Andreas Metzler <ametzler@downhill.at.eu.org> in
456 <http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3557>.
458 ** gnutls-serv: Fix build failure for unportable NI_MAXHOST/NI_MAXSERV.
459 Reported by "Tom G. Christensen" <tgc@jupiterrise.com> in
460 <http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3560>
462 ** Building with many warning flags now requires --enable-gcc-warnings.
463 This avoids crying wolf for normal compiles.
465 ** API and ABI modifications:
466 No changes since last version.
468 * Version 2.7.10 (released 2009-05-13)
470 ** examples: Now released into the public domain.
471 This makes the license of the example code compatible with more
472 licenses, including the (L)GPL.
474 ** minitasn1: Internal copy updated to libtasn1 v2.1.
475 GnuTLS should work fine with libtasn1 v1.x and that is still
478 ** libgnutls: Fix crash in signature verification
479 The fix for the CVE-2009-1415 problem wasn't merged completely.
481 ** doc: Fixes for GTK-DOC output.
483 ** API and ABI modifications:
484 No changes since last version.
486 * Version 2.7.9 (released 2009-05-11)
488 ** doc: Fix strings in man page of gnutls_priority_init.
490 ** doc: Fix tables of error codes and supported algorithms.
492 ** Fix build failure when cross-compiled using MinGW.
494 ** Fix build failure when LZO is enabled.
495 Reported by Arfrever Frehtes Taifersar Arahesis
496 <arfrever.fta@gmail.com> in
497 <http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3522>.
499 ** Fix build failure on systems without AF_INET6, e.g., Solaris 2.6.
500 Reported by "Tom G. Christensen" <tgc@jupiterrise.com> in
501 <http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3524>.
503 ** Fix warnings in self-tests.
505 ** API and ABI modifications:
506 No changes since last version.
508 * Version 2.7.8 (released 2009-05-03)
510 ** libgnutls: Fix DSA key generation.
511 Merged from stable branch. [GNUTLS-SA-2009-2] [CVE-2009-1416]
513 ** libgnutls: Check expiration/activation time on untrusted certificates.
514 Merged from stable branch. Reported by Romain Francoise
515 <romain@orebokech.com>. This changes the semantics of
516 gnutls_x509_crt_list_verify, which in turn is used by
517 gnutls_certificate_verify_peers and gnutls_certificate_verify_peers2.
518 We add two new gnutls_certificate_status_t codes for reporting the new
519 error condition, GNUTLS_CERT_NOT_ACTIVATED and GNUTLS_CERT_EXPIRED.
520 We also add a new gnutls_certificate_verify_flags flag,
521 GNUTLS_VERIFY_DISABLE_TIME_CHECKS, that can be used to disable the new
522 behaviour. [GNUTLS-SA-2009-3] [CVE-2009-1417]
524 ** lib: Linker version scripts reduces number of exported symbols.
525 The linker version script now lists all exported ABIs explicitly, to
526 avoid accidentally exporting unintended functions. Compared to
527 before, most symbols beginning with _gnutls* are no longer exported.
528 These functions have never been intended for use by applications, and
529 there were no prototypes for these function in the public header
530 files. Thus we believe it is possible to do this without incrementing
531 the library ABI version which normally has to be done when removing an
534 ** lib: Limit exported symbols on systems without LD linker scripts.
535 Before all symbols were exported. Now we limit the exported symbols
536 to (for libgnutls and libgnutls-extra) gnutls* and (for libgnutls)
537 _gnutls*. This is a superset of the actual supported ABI, but still
538 an improvement compared to before. This is implemented using Libtool
539 -export-symbols-regex. It is more portable than linker version
542 ** libgnutls: Incremented CURRENT/AGE libtool version to reflect new symbols.
543 This should have been done in the last release.
545 ** gnutls-serv: Listen on all interfaces, including both IPv4 and IPv6.
546 Reported by Peter Hendrickson <pdh@wiredyne.com> in
547 <http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3476>.
549 ** doc: Improved sections for the info manual.
550 We now follow the advice given by the texinfo manual on which
551 directory categories to use. In particular, libgnutls moved from the
552 'GNU Libraries' section to the 'Software libraries' and the command
553 line tools moved from 'Network Applications' to 'System
556 ** API and ABI modifications:
557 gnutls_x509_crt_list_verify: CHANGED, checks activation/expiration times.
558 gnutls_certificate_verify_peers: Likewise.
559 gnutls_certificate_verify_peers2: Likewise.
560 GNUTLS_CERT_NOT_ACTIVATED: ADDED.
561 GNUTLS_CERT_EXPIRED: ADDED.
562 GNUTLS_VERIFY_DISABLE_TIME_CHECKS: ADDED.
564 * Version 2.7.7 (released 2009-04-20)
566 ** libgnutls: Applied patch by Cedric Bail to add functions
567 gnutls_x509_crt_verify_hash() and gnutls_x509_crt_get_verify_algorithm().
569 ** gnutls.pc: Add -ltasn1 to 'pkg-config --libs --static gnutls' output.
570 Reported by Andreas Metzler <ametzler@downhill.at.eu.org> in
571 <http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3467>.
573 ** minitasn1: Internal copy updated to libtasn1 v1.8.
574 GnuTLS is also internally ready to be used with libtasn1 v2.0.
576 ** doc: Fix build failure of errcodes/printlist.
577 Reported by Roman Bogorodskiy <novel@FreeBSD.org> in
578 <http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3435>.
580 ** i18n: The GnuTLS gettext domain is now 'libgnutls' instead of 'gnutls'.
581 It is currently only used by the core library. This will enable a new
582 domain 'gnutls' for translations of the command line tools.
584 ** Corrected possible memory corruption on signature verification failure.
585 Reported by Miroslav Kratochvil <exa.exa@gmail.com>
587 ** API and ABI modifications:
588 gnutls_x509_crt_verify_hash: ADDED
589 gnutls_x509_crt_get_verify_algorithm: ADDED
591 * Version 2.7.6 (released 2009-02-27)
593 ** certtool: Query for multiple dnsName subjectAltName in interactive mode.
594 This applies both to generating certificates and certificate requests.
596 ** pkix.asn: Removed unneeded definitions to reduce memory usage.
598 ** gnutls-cli: No longer accepts V1 CAs by default during X.509 chain verify.
599 Use --priority NORMAL:%VERIFY_ALLOW_X509_V1_CA_CRT to permit V1 CAs to
600 be used for chain verification.
602 ** gnutls-serv: No longer disable MAC padding by default.
603 Use --priority NORMAL:%COMPAT to disable MAC padding again.
605 ** gnutls-cli: Certificate information output format changed.
606 The tool now uses libgnutls' functions to print certificate
607 information. This avoids code duplication.
609 ** libgnutls: New priority strings %VERIFY_ALLOW_SIGN_RSA_MD5
610 ** and %VERIFY_ALLOW_X509_V1_CA_CRT.
611 They can be used to override the default certificate chain validation
614 ** libgnutls: Added %SSL3_RECORD_VERSION priority string that allows to
615 specify the client hello message record version. Used to overcome buggy
616 TLS servers. Report by Martin von Gagern.
618 ** libgnutls: gnutls_x509_crt_print prints signature algorithm in oneline mode.
620 ** libgnutls: gnutls_openpgp_crt_print supports oneline mode.
622 ** doc: Update gnutls-cli and gnutls-serv --help output descriptions.
624 ** API and ABI modifications:
625 No changes since last version.
627 * Version 2.7.5 (released 2009-02-06)
629 ** libgnutls: Accept chains where intermediary certs are trusted.
630 Before GnuTLS needed to validate the entire chain back to a
631 self-signed certificate. GnuTLS will now stop looking when it has
632 found an intermediary trusted certificate. The new behaviour is
633 useful when chains, for example, contains a top-level CA, an
634 intermediary CA signed using RSA-MD5, and an end-entity certificate.
635 To avoid chain validation errors due to the RSA-MD5 cert, you can
636 explicitly add the intermediary RSA-MD5 cert to your trusted certs.
637 The signature on trusted certificates are not checked, so the chain
638 has a chance to validate correctly. Reported by "Douglas E. Engert"
639 <deengert@anl.gov> in
640 <http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3351>.
642 ** libgnutls: result_size in gnutls_hex_encode now holds
643 the size of the result. Report by John Brooks <special@dereferenced.net>.
645 ** libgnutls: gnutls_handshake when sending client hello during a
646 rehandshake, will not offer a version number larger than the current.
647 Reported by Tristan Hill <stan@saticed.me.uk>.
649 ** libgnutls: Permit V1 Certificate Authorities properly.
650 Before they were mistakenly rejected even though
651 GNUTLS_VERIFY_ALLOW_ANY_X509_V1_CA_CRT and/or
652 GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT were supplied. Reported by
653 "Douglas E. Engert" <deengert@anl.gov> in
654 <http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3351>.
656 ** API and ABI modifications:
657 No changes since last version.
659 * Version 2.7.4 (released 2009-01-07)
661 ** libgnutls: deprecate X.509 validation chains using MD5 and MD2 signatures.
662 This is a bugfix -- the previous attempt to do this from internal x509
663 certificate verification procedures did not return the correct value
664 for certificates using a weak hash. Reported by Daniel Kahn Gillmor
665 <dkg@fifthhorseman.net> in
666 <http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3332>,
667 debugged and patch by Tomas Mraz <tmraz@redhat.com> and Daniel Kahn
668 Gillmor <dkg@fifthhorseman.net>.
670 ** libgnutls: New interface to get key id for certificate requests.
671 Patch from David MarÃn Carreño <davefx@gmail.com> in
672 <http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3321>.
674 ** libgnutls: gnutls_x509_crq_print will now also print public key id.
676 ** certtool: --verify-chain now prints results of using library verification.
677 Earlier, certtool --verify-chain used its own validation algorithm
678 which wasn't guaranteed to give the same result as the libgnutls
679 internal validation algorithm. Now this command print a new final
680 line with header 'Chain verification output:' that contains the result
681 from using the internal verification algorithm on the same chain.
683 ** tests: Add crq_key_id self-test of gnutls_x509_crq_get_key_id.
685 ** API and ABI modifications:
686 gnutls_x509_crq_get_key_id: ADDED.
688 * Version 2.7.3 (released 2008-12-10)
690 ** libgnutls: Fix chain verification for chains that ends with RSA-MD2 CAs.
691 Reported by Michael Kiefer <Michael-Kiefer@web.de> in
692 <http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507633> forwarded by
693 Andreas Metzler <ametzler@downhill.at.eu.org> in
694 <http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3309>.
696 ** libgnutls: Libgcrypt initialization changed.
697 If libgcrypt has not already been initialized, GnuTLS will now
698 initialize libgcrypt with disabled secure memory. Initialize
699 libgcrypt explicitly in your application if you want to enable secure
700 memory. Before GnuTLS initialized libgcrypt to use GnuTLS's memory
701 allocation functions, which doesn't use secure memory, so there is no
702 real change in behaviour.
704 ** libgnutls: Fix memory leak in PSK authentication.
705 Reported by Michael Weiser <michael@weiser.dinsnail.net> in
706 <http://permalink.gmane.org/gmane.network.gnutls.general/1465>.
708 ** libgnutls: Small byte reads via gnutls_record_recv() optimized.
710 ** certtool: Move gcry_control(GCRYCTL_ENABLE_QUICK_RANDOM, 0) call earlier.
711 It needs to be invoked before libgcrypt is initialized.
713 ** gnutls-cli: Return non-zero exit code on error conditions.
715 ** gnutls-cli: Corrected bug which caused a rehandshake request to be ignored.
717 ** tests: Added chainverify self-test that tests X.509 chain verifications.
719 ** API and ABI modifications:
720 No changes since last version.
722 * Version 2.7.2 (released 2008-11-18)
724 ** libgnutls: Fix X.509 certificate chain validation error. [GNUTLS-SA-2008-3]
725 The flaw makes it possible for man in the middle attackers (i.e.,
726 active attackers) to assume any name and trick GNU TLS clients into
727 trusting that name. Thanks for report and analysis from Martin von
728 Gagern <Martin.vGagern@gmx.net>. [CVE-2008-4989]
730 Any updates with more details about this vulnerability will be added
731 to <http://www.gnu.org/software/gnutls/security.html>
733 ** libgnutls: Fix namespace issue with version symbols.
734 The symbols LIBGNUTLS_VERSION, LIBGNUTLS_VERSION_MAJOR,
735 LIBGNUTLS_VERSION_MINOR, LIBGNUTLS_VERSION_PATCH, and
736 LIBGNUTLS_VERSION_NUMBER were renamed to GNUTLS_VERSION_NUMBER,
737 GNUTLS_VERSION_MAJOR, GNUTLS_VERSION_MINOR, GNUTLS_VERSION_PATCH, and
738 GNUTLS_VERSION_NUMBER respectively. The old symbols will continue to
739 work but are deprecated.
741 ** certtool: allow setting arbitrary key purpose object identifiers.
743 ** libgnutls: Fix detection of C99 macros, to make debug logging work again.
745 ** libgnutls: Add missing prototype for gnutls_srp_set_prime_bits.
746 Reported by Kevin Quick <quick@sparq.org> in
747 <https://savannah.gnu.org/support/index.php?106454>.
749 ** libgnutls-extra: Make building with LZO compression work again.
750 Build failure reported by Arfrever Frehtes Taifersar Arahesis
751 <arfrever.fta@gmail.com> in
752 <http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3194>.
754 ** libgnutls: Change detection of when to use a linker version script.
755 Use --enable-ld-version-script or --disable-ld-version-script to
756 override auto-detection logic.
758 ** doc: Change license on the manual to GFDLv1.3+.
760 ** doc: GTK-DOC fixes for new splitted configuration system.
762 ** doc: Texinfo stylesheet uses white background.
764 ** tests: Add cve-2008-4989.c self-test.
765 Tests regressions of the GNUTLS-SA-2008-3 security problem, and the
766 follow-on problem with crashes on length 1 certificate chains.
768 ** gnulib: Deprecated modules removed.
769 Modules include memchr and memcmp.
771 ** Fix warnings and build GnuTLS with more warnings enabled.
773 ** minitasn1: Internal copy updated to libtasn1 v1.7.
775 ** API and ABI modifications:
776 gnutls_certificate_set_x509_simple_pkcs12_mem: ADDED
777 GNUTLS_VERSION: ADDED, replaces LIBGNUTLS_VERSION.
778 GNUTLS_VERSION_MAJOR: ADDED, replaces LIBGNUTLS_VERSION_MAJOR.
779 GNUTLS_VERSION_MINOR: ADDED, replaces LIBGNUTLS_VERSION_MINOR.
780 GNUTLS_VERSION_PATCH: ADDED, replaces LIBGNUTLS_VERSION_PATCH.
781 GNUTLS_VERSION_NUMBER: ADDED, replaces LIBGNUTLS_VERSION_NUMBER.
782 LIBGNUTLS_VERSION: DEPRECATED.
783 LIBGNUTLS_VERSION_MAJOR: DEPRECATED.
784 LIBGNUTLS_VERSION_MINOR: DEPRECATED.
785 LIBGNUTLS_VERSION_PATCH: DEPRECATED.
786 LIBGNUTLS_VERSION_NUMBER: DEPRECATED.
788 * Version 2.7.1 (released 2008-10-31)
790 ** certtool: print a PKCS #8 key even if it is not encrypted.
792 ** Old libgnutls.m4 and libgnutls-config scripts removed.
793 Please use pkg-config instead.
795 ** Configuration system modified.
796 There is now a configure script in lib/ and libextra/ as well, because
797 gnulib works better with a config.h per gnulib directory.
799 ** API and ABI modifications:
800 No changes since last version.
802 * Version 2.7.0 (released 2008-10-16)
804 ** libgnutls: Added functions to handle CRL extensions.
806 ** libgnutls: Added functions to handle X.509 extensions in Certificate
809 ** libgnutls: Improved error string for GNUTLS_E_AGAIN.
810 Suggested by "Lavrentiev, Anton (NIH/NLM/NCBI) [C]" <lavr@ncbi.nlm.nih.gov>.
812 ** certtool: Print and set CRL and CRQ extensions.
814 ** libgnutls-extra: Protect internal symbols with static.
815 Fixes problem when linking certtool statically. Tiny patch from Aaron
816 Ucko <ucko@ncbi.nlm.nih.gov>.
818 ** libgnutls-openssl: fix out of bounds access.
819 Problem in X509_get_subject_name and X509_get_issuer_name. Tiny patch
820 from Thomas Viehmann <tv@beamnet.de>.
822 ** libgnutlsxx: Define server_session::get_srp_username even if no SRP.
824 ** tests: Make tests compile when using internal libtasn1.
825 Patch by ludo@gnu.org (Ludovic Courtès).
827 ** Changed detection of libtasn1 and libgcrypt to avoid depending on *-config.
828 We now require a libgcrypt that has Camellia constants declared in
829 gcrypt.h, which means v1.3.0 or later.
831 ** API and ABI modifications:
832 gnutls_x509_crl_get_authority_key_id: ADDED
833 gnutls_x509_crl_get_number: ADDED
834 gnutls_x509_crl_get_extension_oid: ADDED
835 gnutls_x509_crl_get_extension_info: ADDED
836 gnutls_x509_crl_get_extension_data: ADDED
837 gnutls_x509_crl_set_authority_key_id: ADDED
838 gnutls_x509_crl_set_number: ADDED
839 gnutls_x509_crq_get_key_rsa_raw: ADDED
840 gnutls_x509_crq_get_attribute_info: ADDED
841 gnutls_x509_crq_get_attribute_data: ADDED
842 gnutls_x509_crq_get_extension_info: ADDED
843 gnutls_x509_crq_get_extension_data: ADDED
844 gnutls_x509_crq_get_key_usage: ADDED
845 gnutls_x509_crq_get_basic_constraints: ADDED
846 gnutls_x509_crq_get_subject_alt_name: ADDED
847 gnutls_x509_crq_get_subject_alt_othername_oid: ADDED
848 gnutls_x509_crq_get_extension_by_oid: ADDED
849 gnutls_x509_crq_set_subject_alt_name: ADDED
850 gnutls_x509_crq_set_basic_constraints: ADDED
851 gnutls_x509_crq_set_key_usage: ADDED
852 gnutls_x509_crq_get_key_purpose_oid: ADDED
853 gnutls_x509_crq_set_key_purpose_oid: ADDED
854 gnutls_x509_crq_print: ADDED
855 gnutls_x509_crt_set_crq_extensions: ADDED
857 * Version 2.6.6 (released 2009-04-30)
859 ** libgnutls: Corrected double free on signature verification failure.
860 Reported by Miroslav Kratochvil <exa.exa@gmail.com>. See the advisory
861 for more details. [GNUTLS-SA-2009-1] [CVE-2009-1415]
863 ** libgnutls: Fix DSA key generation.
864 Noticed when investigating the previous GNUTLS-SA-2009-1 problem. All
865 DSA keys generated using GnuTLS 2.6.x are corrupt. See the advisory
866 for more details. [GNUTLS-SA-2009-2] [CVE-2009-1416]
868 ** libgnutls: Check expiration/activation time on untrusted certificates.
869 Reported by Romain Francoise <romain@orebokech.com>. Before the
870 library did not check activation/expiration times on certificates, and
871 was documented as not doing so. We have realized that many
872 applications that use libgnutls, including gnutls-cli, fail to perform
873 proper checks. Implementing similar logic in all applications leads
874 to code duplication. Hence, we decided to check whether the current
875 time (as reported by the time function) is within the
876 activation/expiration period of certificates when verifying untrusted
879 This changes the semantics of gnutls_x509_crt_list_verify, which in
880 turn is used by gnutls_certificate_verify_peers and
881 gnutls_certificate_verify_peers2. We add two new
882 gnutls_certificate_status_t codes for reporting the new error
883 condition, GNUTLS_CERT_NOT_ACTIVATED and GNUTLS_CERT_EXPIRED. We also
884 add a new gnutls_certificate_verify_flags flag,
885 GNUTLS_VERIFY_DISABLE_TIME_CHECKS, that can be used to disable the new
888 More details about the vulnerabilities will be posted at
889 <http://www.gnu.org/software/gnutls/security.html>.
891 ** gnutls-cli, gnutls-cli-debug: Fix AIX build problem.
892 Reported by LAUPRETRE François (P) <francois.laupretre@ratp.fr> in
893 <http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3468>.
895 ** tests: Fix linking of tests/openpgp/keyring self-test.
896 Reported by Daniel Black in <https://savannah.gnu.org/support/?106543>.
898 ** API and ABI modifications:
899 gnutls_x509_crt_list_verify: CHANGED, checks activation/expiration times.
900 gnutls_certificate_verify_peers: Likewise.
901 gnutls_certificate_verify_peers2: Likewise.
902 GNUTLS_CERT_NOT_ACTIVATED: ADDED.
903 GNUTLS_CERT_EXPIRED: ADDED.
904 GNUTLS_VERIFY_DISABLE_TIME_CHECKS: ADDED.
906 * Version 2.6.5 (released 2009-04-11)
908 ** libgnutls: Added %SSL3_RECORD_VERSION priority string that allows to
909 specify the client hello message record version. Used to overcome buggy
910 TLS servers. Report by Martin von Gagern.
912 ** GnuTLS no longer uses the libtasn1-config script to find libtasn1.
913 Libtasn1 0.3.4 or later is required. This is to align with the
914 upcoming libtasn1 v2.0 release that doesn't have a libtasn1-script.
916 ** API and ABI modifications:
917 No changes since last version.
919 * Version 2.6.4 (released 2009-02-06)
921 ** libgnutls: Accept chains where intermediary certs are trusted.
922 Before GnuTLS needed to validate the entire chain back to a
923 self-signed certificate. GnuTLS will now stop looking when it has
924 found an intermediary trusted certificate. The new behaviour is
925 useful when chains, for example, contains a top-level CA, an
926 intermediary CA signed using RSA-MD5, and an end-entity certificate.
927 To avoid chain validation errors due to the RSA-MD5 cert, you can
928 explicitly add the intermediary RSA-MD5 cert to your trusted certs.
929 The signature on trusted certificates are not checked, so the chain
930 has a chance to validate correctly. Reported by "Douglas E. Engert"
931 <deengert@anl.gov> in
932 <http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3351>.
934 ** libgnutls: result_size in gnutls_hex_encode now holds
935 the size of the result. Report by John Brooks <special@dereferenced.net>.
937 ** libgnutls: gnutls_handshake when sending client hello during a
938 rehandshake, will not offer a version number larger than the current.
939 Reported by Tristan Hill <stan@saticed.me.uk>.
941 ** libgnutls: Permit V1 Certificate Authorities properly.
942 Before they were mistakenly rejected even though
943 GNUTLS_VERIFY_ALLOW_ANY_X509_V1_CA_CRT and/or
944 GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT were supplied. Reported by
945 "Douglas E. Engert" <deengert@anl.gov> in
946 <http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3351>.
948 ** libgnutls: deprecate X.509 validation chains using MD5 and MD2 signatures.
949 This is a bugfix -- the previous attempt to do this from internal x509
950 certificate verification procedures did not return the correct value
951 for certificates using a weak hash. Reported by Daniel Kahn Gillmor
952 <dkg@fifthhorseman.net> in
953 <http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3332>,
954 debugged and patch by Tomas Mraz <tmraz@redhat.com> and Daniel Kahn
955 Gillmor <dkg@fifthhorseman.net>.
957 ** libgnutls: Fix compile error with Sun CC.
958 Reported by Jeff Cai <jeff.cai@sun.com> in
959 <https://savannah.gnu.org/support/?106549>.
961 ** API and ABI modifications:
962 No changes since last version.
964 * Version 2.6.3 (released 2008-12-12)
966 ** libgnutls: Fix chain verification for chains that ends with RSA-MD2 CAs.
967 Reported by Michael Kiefer <Michael-Kiefer@web.de> in
968 <http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507633> forwarded by
969 Andreas Metzler <ametzler@downhill.at.eu.org> in
970 <http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3309>.
972 ** libgnutls: Fix memory leak in PSK authentication.
973 Reported by Michael Weiser <michael@weiser.dinsnail.net> in
974 <http://permalink.gmane.org/gmane.network.gnutls.general/1465>.
976 ** certtool: Move gcry_control(GCRYCTL_ENABLE_QUICK_RANDOM, 0) call earlier.
977 It needs to be invoked before libgcrypt is initialized.
979 ** gnutls-cli: Return non-zero exit code on error conditions.
981 ** gnutls-cli: Corrected bug which caused a rehandshake request to be ignored.
983 ** API and ABI modifications:
984 No changes since last version.
986 * Version 2.6.2 (released 2008-11-12)
988 ** libgnutls: Fix crash in X.509 validation code for self-signed certificates.
989 The patch to fix the security problem GNUTLS-SA-2008-3 introduced a
990 problem for certificate chains that contained just one self-signed
991 certificate. Reported by Michael Meskes <meskes@debian.org> in
992 <http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=505279>.
994 ** API and ABI modifications:
995 No changes since last version.
997 * Version 2.6.1 (released 2008-11-10)
999 ** libgnutls: Fix X.509 certificate chain validation error. [GNUTLS-SA-2008-3]
1000 The flaw makes it possible for man in the middle attackers (i.e.,
1001 active attackers) to assume any name and trick GNU TLS clients into
1002 trusting that name. Thanks for report and analysis from Martin von
1003 Gagern <Martin.vGagern@gmx.net>. [CVE-2008-4989]
1005 Any updates with more details about this vulnerability will be added
1006 to <http://www.gnu.org/software/gnutls/security.html>
1008 ** libgnutls: Add missing prototype for gnutls_srp_set_prime_bits.
1009 Reported by Kevin Quick <quick@sparq.org> in
1010 <https://savannah.gnu.org/support/index.php?106454>.
1012 ** libgnutls-extra: Protect internal symbols with static.
1013 Fixes problem when linking certtool statically. Tiny patch from Aaron
1014 Ucko <ucko@ncbi.nlm.nih.gov>.
1016 ** libgnutls-openssl: Fix patch against X509_get_issuer_name.
1017 It incorrectly returned the subject DN instead of issuer DN in v2.6.0.
1018 Thanks to Thomas Viehmann <tv@beamnet.de> for report.
1020 ** certtool: Print a PKCS #8 key even if it is not encrypted.
1022 ** tests: Make tests compile when using internal libtasn1.
1023 Patch by ludo@gnu.org (Ludovic Courtès).
1025 ** API and ABI modifications:
1026 No changes since last version.
1028 * Version 2.6.0 (released 2008-10-06)
1030 ** libgnutls: Correct printing and parsing of IPv6 addresses.
1032 ** libgnutls-openssl: fix out of bounds access.
1033 Problem in X509_get_subject_name and X509_get_issuer_name. Tiny patch
1034 from Thomas Viehmann <tv@beamnet.de>.
1036 ** certtool: Use inet_pton for parsing IPv6 addresses.
1038 ** Major changes compared to the v2.4 branch:
1040 *** Added API to replace and update the crypto backend.
1042 *** certtool: can add several subject alternative names via template file.
1044 *** opencdk: Parse (but not decrypt) encrypted secret keys.
1046 *** libgnutls: gnutls_x509_crt_set_subject_alt_name() was added that can
1047 either set or append alternative names. It can also handle binary structures
1048 such as IP addresses.
1050 *** libgnutls: New function to set minimum acceptable SRP bits.
1051 The function is gnutls_srp_set_prime_bits.
1053 *** libgnutls: Add interface to deal with public key and signature algorithms.
1054 The functions are called gnutls_pk_list, gnutls_pk_get_id,
1055 gnutls_sign_list, and gnutls_sign_get_id.
1057 *** libgnutls: New interfaces to get name of public key and signing algorithms.
1058 The functions are gnutls_sign_get_name and gnutls_pk_get_name.
1060 *** libgnutls: New API to get a string corresponding to a error symbol.
1061 The function is gnutls_strerror_name.
1063 *** libgnutls: New API to set the public parameters in a certificate request
1064 *** from a private key.
1065 The function is gnutls_x509_crq_set_key_rsa_raw.
1067 *** libgnutls: New API to set a callback to extract TLS Finished data.
1068 The function to register is gnutls_session_set_finished_function and
1069 it takes a callback of the gnutls_finished_callback_func type.
1071 *** libgnutls: Fix namespace problem with TLS_MASTER_SIZE and TLS_RANDOM_SIZE.
1073 *** libgnutls: New interface to register a new TLS extension handler.
1074 The new function gnutls_ext_register can be used to register handlers
1075 for specific TLS extension types. The callback functions have the new
1076 types gnutls_ext_recv_func and gnutls_ext_send_func. A type to
1077 classify TLS extensions, gnutls_ext_parse_type_t, has been added as
1080 *** libgnutls-extra: Add function to work with Libgcrypt in FIPS mode.
1081 The function is gnutls_register_md5_handler. When libgcrypt is in
1082 FIPS mode, MD5 is disabled, but TLS normally requires use of MD5 in
1085 *** API/ABI changes in GnuTLS 2.6
1086 No functions have been removed or modified. The library should be
1087 fully backwards compatible on both the source and binary level.
1089 A new header file <gnutls/crypto.h> have been added. It contains
1090 definitions related to replacing the internal crypto functionality.
1091 All definitions and the header itself is experimental but supported.
1093 We have realized that the symbols TLS_MASTER_SIZE and TLS_RANDOM_SIZE
1094 does not use the normal namespace. We have added GNUTLS_MASTER_SIZE
1095 and GNUTLS_RANDOM_SIZE, but the old symbols are still defined.
1097 The following functions have been added to libgnutls:
1101 gnutls_crypto_bigint_register2
1102 gnutls_crypto_cipher_register2
1103 gnutls_crypto_digest_register2
1104 gnutls_crypto_mac_register2
1105 gnutls_crypto_pk_register2
1106 gnutls_crypto_rnd_register2
1107 gnutls_crypto_single_cipher_register2
1108 gnutls_crypto_single_digest_register2
1109 gnutls_crypto_single_mac_register2
1114 gnutls_session_set_finished_function
1116 gnutls_sign_get_name
1118 gnutls_srp_set_prime_bits:
1119 gnutls_strerror_name
1120 gnutls_x509_crq_set_key_rsa_raw
1121 gnutls_x509_crt_set_crl_dist_points2
1122 gnutls_x509_crt_set_subject_alt_name
1124 The following functions have been added to libgnutls-extra:
1126 gnutls_register_md5_handler
1128 ** API and ABI modifications:
1129 No changes since last version.
1131 * Version 2.5.9 (released 2008-09-29)
1133 ** libgnutls: Fix several memory leaks.
1134 Reported by Sam Varshavchik <mrsam@courier-mta.com>.
1136 ** libgnutls: Fix buffer overrun in gnutls_x509_crt_list_import.
1137 Report and patch by Jonathan Manktelow.
1139 ** libgnutls: crypto.h gnutls_pk_params_st changes allocation strategy.
1140 The parameters are now allocated in the structure itself.
1142 ** doc: Texinfo HTML manual uses a stylesheet to improve readability.
1144 ** tests: Scripts now use EXEEXT properly.
1145 Modern libtool doesn't create wrapper script, so the self tests need
1146 to invoke certtool.exe under MinGW32+Wine.
1148 ** Uses autoconf 2.63, automake 1.10.1, libtool 2.2.6a.
1149 Automake warnings are now also enabled.
1151 ** API and ABI modifications:
1152 gnutls_pk_params_st: MODIFIED
1154 * Version 2.5.8 (released 2008-09-21)
1156 ** certtool: updated so it can add several subject alternative names using
1159 ** libgnutls: gnutls_x509_crt_set_subject_alt_name() was added that can
1160 either set or append alternative names. It can also handle binary structures
1161 such as IP addresses.
1163 ** libgnutls: Fix crash in hashing code when using non-libgcrypt handlers.
1165 ** libgnutls: New function to set minimum acceptable SRP bits.
1166 The function is gnutls_srp_set_prime_bits. Tiny patch by Kevin Quick
1167 <quick@sparq.org> in <https://savannah.gnu.org/support/index.php?106454>.
1169 ** libgnutls: Check for overflows in gnutls_calloc and gnutls_secure_calloc.
1170 Also fix overflows in calls to those functions. Reported by Werner
1171 Koch <wk@gnupg.org>.
1173 ** libgnutls-extra: Add function to work with Libgcrypt in FIPS mode.
1174 The function is gnutls_register_md5_handler. When libgcrypt is in
1175 FIPS mode, MD5 is disabled, but TLS normally requires use of MD5 in
1178 ** Opencdk: Add calls to gnutls_assert to ease debugging.
1182 ** API and ABI modifications:
1183 gnutls_srp_set_prime_bits: ADDED
1184 gnutls_register_md5_handler: ADDED
1185 gnutls_x509_crt_set_crl_dist_points2: ADDED
1186 gnutls_x509_crt_set_subject_alt_name: ADDED
1188 * Version 2.5.7 (released 2008-09-16)
1190 ** libgnutls: New interfaces to get name of public key and signing algorithms.
1191 The functions are gnutls_sign_get_name and gnutls_pk_get_name.
1193 ** libgnutls: Don't crash when gnutls_credentials_set is called twice.
1195 ** libgnutls: Fix libgnutls shared library version.
1196 It wasn't properly incremented after adding symbols in the last
1199 ** manual: Now mention supported public key and public key signing algorithms.
1201 ** tests/openssl: initialize gnutls before use.
1203 ** tests/setcredcrash: New test to catch regressions of gnutls_credentials_set.
1205 ** GTK-DOC manual: mention new symbols in 2.6.x. Mention crypto.h functions.
1207 ** API and ABI modifications:
1208 gnutls_sign_get_name: ADDED
1209 gnutls_pk_get_name: ADDED
1211 * Version 2.5.6 (released 2008-09-08)
1213 ** libgnutls: Add interface to deal with public key and signature algorithms.
1214 The functions are called gnutls_pk_list, gnutls_pk_get_id,
1215 gnutls_sign_list, and gnutls_sign_get_id. Suggested by Sam
1216 Varshavchik <mrsam@courier-mta.com>.
1218 ** libgnutls: Refactor and clean up some code.
1220 ** libgnutls: Fix compile error with Sun CC.
1222 ** gnutls-cli: Improve --list output to include public key and signature algs.
1224 ** gnutls-cli, gnutls-serv: Remove --copyright parameter.
1225 Use standard --version to get license info.
1227 ** gnutls-cli.1: Document all new parameters.
1228 Thanks to James Westby <jw+debian@jameswestby.net>.
1230 ** tests: New self-test pgps2kgnu to test parsing of encrypted secrets.
1231 Contributed by Daniel Kahn Gillmor <dkg-debian.org@fifthhorseman.net>.
1233 ** API and ABI modifications:
1234 gnutls_pk_list: ADDED
1235 gnutls_pk_get_id: ADDED
1236 gnutls_sign_list: ADDED
1237 gnutls_sign_get_id: ADDED
1239 * Version 2.5.5 (released 2008-08-29)
1241 ** libgnutls: New API to get a string corresponding to a error symbol.
1242 The function is gnutls_strerror_name.
1244 ** libgnutls: Fix include paths so that building with internal libtasn1 works.
1245 Reported by "jth.net ApS" <info@jth.net>.
1247 ** libgnutls: Fix segmentation fault when generating private keys.
1248 Reported by Daniel Kahn Gillmor <dkg-debian.org@fifthhorseman.net>.
1250 ** libgnutls: Remove code to import certificate chains in PKCS#7 format.
1251 The code has not worked since v0.9.0 and apparently nobody has missed
1252 it, so we decided to remove the code rather than fix it. If you have
1253 old certificate chains stored in PKCS#7 format, you can convert them
1254 to a list of PEM certificates by using 'certtool --p7-info'. Reported
1255 by Christian Grothoff <christian@grothoff.org>.
1257 ** opencdk: Parse (but not decrypt) encrypted secret keys.
1258 Contributed by Daniel Kahn Gillmor <dkg-debian.org@fifthhorseman.net>.
1260 ** libgnutls: Fix many warnings.
1262 ** Included copy of libtasn1 is upgraded to version 1.5.
1264 ** Add French translation, thanks to Nicolas Provost.
1266 ** API and ABI modifications:
1267 gnutls_strerror_name: ADDED
1269 * Version 2.5.4 (released 2008-08-19)
1271 ** Fix secure memory initialization of libgcrypt.
1272 Reported by Joe Orton <joe@manyfish.co.uk> in
1273 <http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/2992>.
1276 Reference to NIST SP 800-57 in the manual on key size recommendations.
1277 Added 'Since:' tags to new APIs for gtk-doc.
1279 ** API and ABI modifications:
1280 No changes since last version.
1282 * Version 2.5.3 (released 2008-08-14)
1284 ** libgnutls: New API to set the public parameters in a certificate request
1285 ** from a private key.
1286 The function is gnutls_x509_crq_set_key_rsa_raw. Inspired by
1287 discussion with "Zach C." <fxchip@gmail.com>.
1289 ** libgnutls: New API to set a callback to extract TLS Finished data.
1290 The function to register is gnutls_session_set_finished_function and
1291 it takes a callback of the gnutls_finished_callback_func type.
1293 ** libgnutls: Drop final comma after GNUTLS_CRT_PRINT_UNSIGNED_FULL in enum.
1294 Reported in <https://savannah.gnu.org/support/?106453>.
1296 ** libgnutls: Fix namespace problem with TLS_MASTER_SIZE and TLS_RANDOM_SIZE.
1297 The new names are GNUTLS_MASTER_SIZE and GNUTLS_RANDOM_SIZE. The old
1298 names are mapped to the new names in compat.h. These mappings will
1299 likely be removed more quickly than other mappings in that file due to
1300 the namespace violation.
1302 ** libgnutlsxx: Make it build when SRP is disabled.
1304 ** doc: Add doxygen files in doc/doxygen/.
1306 ** API and ABI modifications:
1307 gnutls_x509_crq_set_key_rsa_raw: ADDED
1308 gnutls_session_set_finished_function: ADDED
1309 gnutls_finished_callback_func: ADDED
1310 GNUTLS_MASTER_SIZE: ADDED
1311 GNUTLS_RANDOM_SIZE: ADDED
1312 TLS_MASTER_SIZE: DEPRECATED
1313 TLS_RANDOM_SIZE: DEPRECATED
1315 * Version 2.5.2 (released 2008-07-08)
1317 ** libgnutls: Fix bug in gnutls_dh_params_generate2.
1318 The prime and generator was swapped.
1320 ** libgnutls: New interface to register a new TLS extension handler.
1321 The new function gnutls_ext_register can be used to register handlers
1322 for specific TLS extension types. The callback functions have the new
1323 types gnutls_ext_recv_func and gnutls_ext_send_func. A type to
1324 classify TLS extensions, gnutls_ext_parse_type_t, has been added as
1327 ** Move more code for TLS/IA extension from libgnutls to libgnutls-extra.
1328 This was made possible by using the new gnutls_ext_register interface.
1329 The TLS/IA functionality has only been supported through the
1330 libgnutls-extra library, so it makes sense for the code to belong
1333 ** API and ABI modifications:
1334 gnutls_ext_recv_func: ADDED
1335 gnutls_ext_send_func: ADDED
1336 gnutls_ext_parse_type_t: ADDED
1337 gnutls_ext_register: ADDED
1339 * Version 2.5.1 (released 2008-07-02)
1343 ** API and ABI modifications:
1344 No changes since last version.
1346 * Version 2.5.0 (released 2008-07-02)
1348 ** Port fixes from v2.4.1 release, see below.
1350 ** Added API to replace and update the crypto backend.
1351 The header gnutls/crypto.h is now officially supported, and declares
1354 ** Rewritten opencdk crypto backend, to use the gnutls internal one.
1356 ** Update gnulib and translations.
1357 The gnulib gc crypto code has been removed since it was never finished
1358 and is no longer even used. An internal non-libgcrypt crypto
1359 implementation may be added in the future, but we'll decide that later
1362 ** API and ABI modifications:
1363 gnutls_crypto_bigint_register2: ADDED.
1364 gnutls_crypto_cipher_register2: ADDED.
1365 gnutls_crypto_digest_register2: ADDED.
1366 gnutls_crypto_mac_register2: ADDED.
1367 gnutls_crypto_pk_register2: ADDED.
1368 gnutls_crypto_rnd_register2: ADDED.
1369 gnutls_crypto_single_cipher_register2: ADDED.
1370 gnutls_crypto_single_digest_register2: ADDED.
1371 gnutls_crypto_single_mac_register2: ADDED.
1373 * Version 2.4.3 (released 2009-02-06)
1375 ** libgnutls: Accept chains where intermediary certs are trusted.
1376 Before GnuTLS needed to validate the entire chain back to a
1377 self-signed certificate. GnuTLS will now stop looking when it has
1378 found an intermediary trusted certificate. The new behaviour is
1379 useful when chains, for example, contains a top-level CA, an
1380 intermediary CA signed using RSA-MD5, and an end-entity certificate.
1381 To avoid chain validation errors due to the RSA-MD5 cert, you can
1382 explicitly add the intermediary RSA-MD5 cert to your trusted certs.
1383 The signature on trusted certificates are not checked, so the chain
1384 has a chance to validate correctly. Reported by "Douglas E. Engert"
1385 <deengert@anl.gov> in
1386 <http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3351>.
1388 ** libgnutls: Permit V1 Certificate Authorities properly.
1389 Before they were mistakenly rejected even though
1390 GNUTLS_VERIFY_ALLOW_ANY_X509_V1_CA_CRT and/or
1391 GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT were supplied. Reported by
1392 "Douglas E. Engert" <deengert@anl.gov> in
1393 <http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3351>.
1395 ** libgnutls: deprecate X.509 validation chains using MD5 and MD2 signatures.
1396 This is a bugfix -- the previous attempt to do this from internal x509
1397 certificate verification procedures did not return the correct value
1398 for certificates using a weak hash. Reported by Daniel Kahn Gillmor
1399 <dkg@fifthhorseman.net> in
1400 <http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3332>,
1401 debugged and patch by Tomas Mraz <tmraz@redhat.com> and Daniel Kahn
1402 Gillmor <dkg@fifthhorseman.net>.
1404 ** libgnutls: Fix chain verification for chains that ends with RSA-MD2 CAs.
1405 Reported by Michael Kiefer <Michael-Kiefer@web.de> in
1406 <http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507633> forwarded by
1407 Andreas Metzler <ametzler@downhill.at.eu.org> in
1408 <http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3309>.
1410 ** libgnutls: Fix crash in X.509 validation code for self-signed certificates.
1411 The patch to fix the security problem GNUTLS-SA-2008-3 introduced a
1412 problem for certificate chains that contained just one self-signed
1413 certificate. Reported by Michael Meskes <meskes@debian.org> in
1414 <http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=505279>.
1416 ** libgnutls: Fix X.509 certificate chain validation error. [GNUTLS-SA-2008-3]
1417 The flaw makes it possible for man in the middle attackers (i.e.,
1418 active attackers) to assume any name and trick GNU TLS clients into
1419 trusting that name. Thanks for report and analysis from Martin von
1420 Gagern <Martin.vGagern@gmx.net>. [CVE-2008-4989]
1422 Any updates with more details about this vulnerability will be added
1423 to <http://www.gnu.org/software/gnutls/security.html>
1425 ** libgnutls: Fix buffer overrun in gnutls_x509_crt_list_import.
1426 Report and patch by Jonathan Manktelow.
1428 ** libgnutls: Avoid use of non-thread safe strerror.
1430 ** API and ABI modifications:
1431 No changes since last version.
1433 * Version 2.4.2 (released 2008-09-15)
1435 ** libgnutls: Don't crash when gnutls_credentials_set is called twice.
1437 ** libgnutls: Corrected memory leak in X.509 functions.
1438 Thanks to Colin Leroy <colin@colino.net>.
1440 ** libgnutls: Fix compile error with Sun CC.
1442 ** gnutls-cli.1: Document all new parameters.
1443 Thanks to James Westby <jw+debian@jameswestby.net>.
1445 ** tests/openssl: initialize gnutls before use.
1446 Fixes crash with libgcrypt 1.4.2. Reported by Ludovic Courtes
1447 <ludovic.courtes@laas.fr>.
1449 ** doc/: Fix texinfo markup for old texinfo versions.
1451 ** Included copy of libtasn1 is upgraded to version 1.5.
1453 ** API and ABI modifications:
1454 No changes since last version.
1456 * Version 2.4.1 (released 2008-06-30)
1458 ** libgnutls: Fix local crash in gnutls_handshake. [GNUTLS-SA-2008-2]
1459 If the gnutls_handshake function is called for a normal session, which
1460 can happen for re-handshakes, the library would crash because it tried
1461 to hash some data using a libgcrypt handle that had been deallocated.
1462 Report and tiny patch from Tomas Mraz <tmraz@redhat.com>. Any updates
1463 with more details about this vulnerability will be added to
1464 <http://www.gnu.org/software/gnutls/security.html>
1466 ** libgnutls: Fix memory leaks when doing a re-handshake.
1467 Reported by Sam Varshavchik <mrsam@courier-mta.com> in
1468 <http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/2928>.
1470 ** Fix compiler warnings.
1471 Reported by Massimo Gaspari <massimo.gaspari@alice.it> in
1472 <http://thread.gmane.org/gmane.network.gnutls.general/1281>.
1474 ** Fix ordering of -I's to avoid opencdk.h conflict with system headers.
1475 Reported by Roman Bogorodskiy <novel@FreeBSD.org> in
1476 <http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/2930>.
1478 ** srptool: Fix a problem where --verify check does not succeed.
1479 Report and tiny patch by Matthias Koenig <mkoenig@suse.de> in
1480 <http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/2944>.
1482 ** API and ABI modifications:
1483 No changes since last version.
1485 * Version 2.4.0 (released 2008-06-19)
1487 ** Major changes compared to the v2.2 branch:
1489 *** The OpenPGP sub-system has been improved and now supports subkeys.
1491 *** The PSK sub-system has been improved and now supports password
1492 *** derivation and PSK identity hints.
1493 The password derivation algorithms support is documented in
1494 draft-ietf-netconf-tls-02.txt.
1496 *** The certtool --inder and --outder has been replaced by --inraw and --outraw.
1497 This aligns terminology with OpenPGP, which doesn't use DER encoding.
1498 The old parameters will continue to work for some time.
1500 *** Certtool now confirm passwords and changes permissions of private key files.
1502 *** The default handshake size limit has been increased to 48kb.
1503 It appears as if some valid handshakes are large due to sending many
1504 CA certificates. (The earlier limit was 16kb.)
1506 *** LZO compression is now disabled by default.
1507 The main reason is that LZO compression in TLS is not standardized,
1508 but license compatiblity issues with minilzo triggered us to make this
1511 *** Improvements for cross-compilation to Windows and OpenWRT.
1513 *** The look of the GTK-DOC manual has been improved.
1514 Major developer visible changes compared to the v2.2 branch:
1516 *** Full OpenPGP support is part of libgnutls, licensed under the LGPL.
1518 *** New APIs to access the raw X.509 Subject and Issuer DN's and
1519 *** elements from the certificate credentials structure.
1520 Thanks to Joe Orton.
1522 *** New APIs to improve working with username/passwords and PSK.
1524 *** Names of constants to affect certificate printing changed.
1525 The constants are used for OpenPGP too, which the names didn't
1526 reflect, so the following name change has been made:
1529 GNUTLS_X509_CRT_FULL GNUTLS_CRT_PRINT_FULL
1530 GNUTLS_X509_CRT_ONELINE GNUTLS_CRT_PRINT_ONELINE
1531 GNUTLS_X509_CRT_UNSIGNED_FULL GNUTLS_CRT_PRINT_UNSIGNED_FULL
1533 The old names will be mapped to the new names for some time.
1535 *** The function gnutls_openpgp_privkey_get_id has been renamed to
1536 *** gnutls_openpgp_privkey_get_key_id.
1537 A compatibility mapping exists to avoid breaking API backwards
1540 *** Replaced all uses of alloca with malloc and free.
1542 *** We no longer build with -D_REENTRANT -D_THREAD_SAFE.
1543 We have been unable to find a documented rationale for this practice.
1545 *** Of course, many smaller fixes have been made, see the ChangeLog file.
1547 *** API/ABI changes in GnuTLS 2.4
1548 All OpenPGP related functions have been moved from libgnutls-extra to
1549 libgnutls, and several new functions have been added (see below).
1550 Before making the release, we discussed whether moving functions from
1551 libgnutls-extra to libgnutls would require us to increment the ABI
1552 version, but the general opinion was that this would not be required.
1553 All older functions continue to work the same. We are open to the
1554 possibility that this decision will lead to problem on some platform,
1555 and if it turns out that the Right Thing should have been to increment
1556 the shared library version, we would need to release an update within
1557 the 2.4.x branch that increments the shared library version.
1559 This release adds the following functions:
1561 gnutls_psk_client_get_hint
1562 gnutls_psk_set_server_credentials_hint
1563 gnutls_psk_netconf_derive_key
1565 Used to get/set the PSK identity hint, and derive PSK keys from
1566 passwords a'la netconf.
1568 gnutls_x509_dn_deinit
1569 gnutls_x509_dn_export
1570 gnutls_x509_dn_import
1573 Used to handle X.509 Certificate DN's directly.
1577 Converts a data buffer to hex. Useful for handling PSK/SRP shared
1580 gnutls_certificate_get_x509_cas
1581 gnutls_certificate_get_x509_crls
1582 gnutls_certificate_get_openpgp_keyring
1584 Functions for direct access to credential elements.
1586 gnutls_openpgp_crt_get_auth_subkey
1587 gnutls_openpgp_crt_get_key_id
1588 gnutls_openpgp_crt_get_pk_dsa_raw
1589 gnutls_openpgp_crt_get_pk_rsa_raw
1590 gnutls_openpgp_crt_get_preferred_key_id
1591 gnutls_openpgp_crt_get_revoked_status
1592 gnutls_openpgp_crt_get_subkey_count
1593 gnutls_openpgp_crt_get_subkey_creation_time
1594 gnutls_openpgp_crt_get_subkey_expiration_time
1595 gnutls_openpgp_crt_get_subkey_fingerprint
1596 gnutls_openpgp_crt_get_subkey_id
1597 gnutls_openpgp_crt_get_subkey_idx
1598 gnutls_openpgp_crt_get_subkey_pk_algorithm
1599 gnutls_openpgp_crt_get_subkey_pk_dsa_raw
1600 gnutls_openpgp_crt_get_subkey_pk_rsa_raw
1601 gnutls_openpgp_crt_get_subkey_revoked_status
1602 gnutls_openpgp_crt_get_subkey_usage
1603 gnutls_openpgp_crt_print
1604 gnutls_openpgp_crt_set_preferred_key_id
1605 gnutls_openpgp_keyring_get_crt
1606 gnutls_openpgp_keyring_get_crt_count
1607 gnutls_openpgp_privkey_export
1608 gnutls_openpgp_privkey_export_dsa_raw
1609 gnutls_openpgp_privkey_export_rsa_raw
1610 gnutls_openpgp_privkey_export_subkey_dsa_raw
1611 gnutls_openpgp_privkey_export_subkey_rsa_raw
1612 gnutls_openpgp_privkey_get_fingerprint
1613 gnutls_openpgp_privkey_get_key_id
1614 gnutls_openpgp_privkey_get_pk_algorithm
1615 gnutls_openpgp_privkey_get_preferred_key_id
1616 gnutls_openpgp_privkey_get_revoked_status
1617 gnutls_openpgp_privkey_get_subkey_count
1618 gnutls_openpgp_privkey_get_subkey_creation_time
1619 gnutls_openpgp_privkey_get_subkey_expiration_time
1620 gnutls_openpgp_privkey_get_subkey_fingerprint
1621 gnutls_openpgp_privkey_get_subkey_id
1622 gnutls_openpgp_privkey_get_subkey_idx
1623 gnutls_openpgp_privkey_get_subkey_pk_algorithm
1624 gnutls_openpgp_privkey_get_subkey_revoked_status
1625 gnutls_openpgp_privkey_set_preferred_key_id
1627 New OpenPGP related functions.
1629 The function gnutls_openpgp_crt_get_key_id is the same as the old
1630 from gnutls_openpgp_crt_get_id, see above.
1632 The release also adds a new header file 'gnutls/crypto.h', however it
1633 is currently not used.
1635 ** libgnutls [OpenPGP]: New APIs to retrieve fingerprint from OpenPGP subkeys.
1636 Contributed by Daniel Kahn Gillmor <dkg-debian.org@fifthhorseman.net>.
1638 ** API and ABI modifications:
1639 gnutls_openpgp_crt_get_subkey_fingerprint: ADDED.
1640 gnutls_openpgp_privkey_get_subkey_fingerprint: ADDED.
1642 * Version 2.3.15 (released 2008-06-15)
1644 ** Disable the openpgp-certs self-tests.
1645 It results in failure under Wine and doesn't work on Debian buildds.
1647 ** API and ABI modifications:
1648 No changes since last version.
1650 * Version 2.3.14 (released 2008-06-11)
1652 ** libgnutls [OpenPGP]: Changed OpenPGP verification behaviour.
1653 An OpenPGP certificate is now only considered verified if all the user
1656 ** Examples: Make C++ example compile.
1657 Earlier it may have failed with an unresolved reference to strlen.
1659 ** Documentation: Doc fix for gnutls_x509_crt_get_extension_oid.
1660 Reported by Sam Varshavchik <mrsam@courier-mta.com>.
1662 ** API and ABI modifications:
1663 No changes since last version.
1665 * Version 2.3.13 (released 2008-06-07)
1667 ** libgnutls [OpenPGP]: Make OpenPGP handshakes work again.
1669 ** doc/: Add psktool to info index. Some minor cleanups.
1671 ** tests/: Added non-forking TLS handshake test, see tests/mini.c.
1673 ** tests/: Added libgcrypt.supp which can be used with valgrind.
1674 The file suppresses the known libgcrypt memory leaks, so they aren't
1675 printed when you run valgrind on the gnutls self-tests. Use it as
1676 follows: valgrind --suppressions=libgcrypt.supp ./x509self or add
1677 '--suppressions=/home/you/src/gnutls/tests/libgcrypt.supp' to your
1680 ** tests/: Reduce amount of debugging output by default.
1681 Use --verbose for each test to get the full output.
1683 ** tests/: Fix memory leaks in several self-tests.
1684 None of the self tests should be leaking memory when running valgrind
1685 or similar tools. (Known exceptions are dhepskself, pskself, and
1686 set_pkcs12_cred, which appear likely to be due to memory leaks in the
1689 ** API and ABI modifications:
1690 No changes since last version.
1692 * Version 2.3.12 (released 2008-06-04)
1694 ** Merge gnutls_with_netconf branch.
1696 *** libgnutls [PSK]: New API to retrieve PSK identity hint in client.
1697 The function is gnutls_psk_client_get_hint.
1699 *** libgnutls [PSK]: New API to set PSK identity hint in server.
1700 The function is gnutls_psk_set_server_credentials_hint.
1702 *** libgnutls [PSK]: Support server key exchange with PSK identity hint.
1703 In the client, the message is parsed and the application can use
1704 gnutls_psk_client_get_hint to retrieve the hint. In the server, the
1705 message is sent if the application has specified a PSK identity hint
1706 using gnutls_psk_set_server_credentials_hint.
1708 *** libgnutls [PSK]: Support Netconf PSK key derivation.
1709 The function gnutls_psk_netconf_derive_key supports the PSK key
1710 derivation as specified in draft-ietf-netconf-tls-02.txt. New self
1713 *** psktool: Support new --netconf-hint to generate PSK key from password.
1714 Uses the Netconf algorithm to derive PSK key from password.
1716 *** gnutls-serv: Support new --pskhint parameter to set PSK identity hint.
1718 *** gnutls-cli: Always support PSK modes, through a callback.
1719 The callback will derive a PSK key using Netconf algorithm. It will
1720 print the PSK identity hint to help the user.
1722 *** New PSK example client and server.
1723 See doc/examples/ex-client-psk.c and doc/examples/ex-serv-psk.c.
1725 ** libgnutls: Fix gnutls_x509_crl_set_version on arm platforms.
1726 The code didn't work properly on platforms where 'char' is unsigned,
1727 when you set version 0. Reported by Laurence Withers
1728 <l@lwithers.me.uk> in
1729 <http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/2825>.
1731 ** libgnutls-openssl: added RAND_pseudo_bytes API.
1732 Patch from Robert Millan <rmh@aybabtu.com>.
1734 ** API and ABI modifications:
1735 RAND_pseudo_bytes: ADDED to libgnutls-openssl.
1736 gnutls_psk_client_get_hint: ADDED.
1737 gnutls_psk_set_server_credentials_hint: ADDED.
1738 gnutls_psk_netconf_derive_key: ADDED
1740 * Version 2.3.11 (released 2008-05-20)
1742 ** Fix flaw in fix for GNUTLS-SA-2008-1-3.
1743 The flaw would result in incorrectly terminated sessions with the
1744 error "Decryption has failed" when the server sends a small packet
1745 (typically when the session is closed). Reported by Andreas Metzler
1746 <ametzler@downhill.at.eu.org> in
1747 <http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/2807>.
1749 ** Don't use gnulib headers when building C++ library.
1750 Fixes builds under Windows.
1752 ** Make umask a requirement.
1753 We don't know of any system that lacks it, even GNU CoreUtils use it
1756 ** Update gnulib files.
1757 Fixes a problem where it pulled in a replacement for memcmp under
1758 MinGW, which caused the C++ example to fail to build.
1760 ** API and ABI modifications:
1761 No changes since last version.
1763 * Version 2.3.10 (released 2008-05-19)
1765 ** Added wide wildcard hostname matching.
1766 Tiny patch by Jean-Philippe Garcia Ballester.
1768 ** Fix three security vulnerabilities. [GNUTLS-SA-2008-1]
1769 Thanks to CERT-FI for finding the bugs and providing detailed reports,
1770 which allowed the bugs to be reproduced and fixed easily. Patches
1771 developed by Simon Josefsson and Nikos Mavrogiannopoulos. Any updates
1772 with more details about these vulnerabilities will be added to
1773 <http://www.gnu.org/software/gnutls/security.html>
1775 *** [GNUTLS-SA-2008-1-1]
1776 *** libgnutls: Fix crash when sending invalid server name.
1777 The crash can be triggered remotely before authentication, which can
1778 lead to a Daniel of Service attack to disable the server. The bug
1779 cause gnutls to store more session resumption data than what was
1780 allocated for, thus overwriting unallocated memory.
1782 *** [GNUTLS-SA-2008-1-2]
1783 *** libgnutls: Fix crash when sending repeated client hellos.
1784 The crash can be triggered remotely before authentication, which can
1785 lead to a Daniel of Service attack to disable the server. The bug
1786 triggers a null-pointer dereference.
1788 *** [GNUTLS-SA-2008-1-3]
1789 *** libgnutls: Fix crash in cipher padding decoding for invalid record lengths.
1790 The crash can be triggered remotely before authentication, which can
1791 lead to a Daniel of Service attack to disable the server. The bug
1792 cause gnutls to read memory beyond the end of the received record.
1794 ** libgnutlsxx: Updated API according to patches from Eduardo
1795 Villanueva Che (discussion at
1796 <http://lists.gnu.org/archive/html/gnutls-devel/2007-02/msg00017.html>)
1798 ** Use umask to restrict permissions to owner before creating a file.
1800 ** API and ABI modifications:
1801 No changes since last version.
1803 * Version 2.3.9 (released 2008-05-16)
1805 ** libgnutls: Fix build failures if SRP/OpenPGP is disabled.
1806 Based on report and tiny patches from
1807 <jared.jennings.ctr@eglin.af.mil>, see
1808 <https://savannah.gnu.org/support/index.php?106342>.
1810 ** libgnutls: Translation fixes.
1812 ** gnutls-cli: Fix so that PSK authentication works.
1813 Also improve manual to give example for gnutls-cli PSK authentication.
1815 ** certtool: Encrypting a private key now require a confirmed password.
1816 Before './certtool -k -8' would merely ask for a password once.
1817 Reported by Daniel 'NebuchadnezzaR' Dehennin
1818 <nebuchadnezzar@asgardr.info> see
1819 <http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=364287>.
1821 ** certtool: When writing private keys to files, change permissions of file.
1822 Now the file which the private key is saved to is chmod'ed 0600.
1823 Reported by martin f krafft <madduck@debian.org> see
1824 <http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=373169>.
1826 ** guile: Fix -fgnu89-inline test.
1828 ** Removed --enable-profile-mode.
1829 The code linked gnutls with the libfc project (Function Check) which
1830 appears to have been stalled since around 2002.
1832 ** Clean up header file checks by ./configure.
1834 ** Update of gnulib files.
1836 ** API and ABI modifications:
1837 No changes since last version.
1839 * Version 2.3.8 (released 2008-04-29)
1841 ** libgnutls: Increase default handshake packet size limit to 48kb.
1842 The old limit was 16kb and some servers send huge list of trusted CAs,
1843 thus running into the limit. FYI, applications can further increase
1844 this limit using gnutls_handshake_set_max_packet_length. Thanks to
1845 Marc Haber <mh+debian-bugs@zugschlus.de> and "Marc F. Clemente"
1846 <marc@mclemente.net> for reporting and providing test servers.
1848 ** libgnutls: Add new error code: GNUTLS_E_HANDSHAKE_TOO_LARGE
1849 Returned when the handshake data size is too large. Before
1850 GNUTLS_E_MEMORY_ERROR was used, which could be confused with other
1853 ** libgnutls: Hide definitions in crypto.h.
1854 We have decided that the APIs defined in crypto.h are not stable
1855 enough for v2.4, so don't use any of those functions.
1857 ** gnutls-cli: exit when hostname doesn't match certificate.
1858 Use --insecure to avoid hostname comparison.
1860 ** certtool: --inder and --outder replaced by --inraw and --outraw.
1861 The reason is to align terminology with OpenPGP, which doesn't use
1862 DER. The old parameters will continue to work for some time.
1864 ** doc: Add section 'Index of new symbols in 2.4.0' to the GTK-DOC manual.
1866 ** doc: Many cosmetic fixes, to silence (most) gtk-doc warnings.
1868 ** Mingw32: Revert libgcrypt vasprintf work-around added in last release.
1869 Use libgcrypt 1.4.1 or later when building on MinGW32, it removes the
1870 vasprintf symbol from the libgcrypt library which caused problems.
1872 ** Update of gnulib files.
1874 ** tests: New self-test of crypto.h RNG code tests/crypto_rng.
1876 ** API and ABI modifications:
1877 GNUTLS_E_HANDSHAKE_TOO_LARGE: ADDED.
1879 * Version 2.3.7 (released 2008-04-21)
1881 ** opencdk now properly sets the key usage bits into openpgp keys.
1883 ** gnutls-cli: Fix crash on TLS handshake failures.
1884 Reported by "Marc F. Clemente" <marc@mclemente.net> in Debian BTS #466477.
1885 This is similar to <http://bugs.debian.org/429183>.
1887 ** certtool: with --generate-request and newly generated keys, print the key.
1889 ** Build fixes for MinGW.
1890 Missing rpl_fseeko symbol in lib/opencdk/. Better checks for linking
1891 with -lws2_32 when needed. Use ASCII only isprint() when printing
1892 X.509 certificate information, to avoid non-ASCII but printable
1893 characters. Thanks to Massimo Gaspari <massimo.gaspari@alice.it> for
1896 ** Update internal copy of libtasn1 to version 1.4.
1898 ** API and ABI modifications:
1899 No changes since last version.
1901 * Version 2.3.6 (released 2008-04-17)
1903 ** Make gnutls_x509_crq_sign2 set certificate request version if not set.
1904 ** Improve documentation for gnutls_x509_crq_sign2.
1905 Based on report from "John Brooks" <aspecialj@gmail.com> in
1906 <http://permalink.gmane.org/gmane.network.gnutls.general/1154>.
1908 ** tests/pathlen: run diff without parameters to improve portability.
1909 Based on HPUX build hints in
1910 <http://hpux.cs.utah.edu/hppd/cgi-bin/wwwtar?/hpux/Gnu/gnutls-2.3.4/gnutls-2.3.4-src-11.11.tar.gz+gnutls-2.3.4/HPUX.Install+text>.
1912 ** Don't use %e specifier with strftime, it doesn't work under Windows.
1913 Reported by Massimo Gaspari <massimo.gaspari@alice.it> in
1914 <http://permalink.gmane.org/gmane.network.gnutls.general/1170>.
1916 ** Remove all uses of gnutls_alloca/gnutls_afree.
1917 Use normal gnutls_malloc instead. One reason is increased portability
1918 to Windows, the other is that several of the uses may be unsafe
1919 because the size of data allocated could be large. Reported by
1920 Massimo Gaspari <massimo.gaspari@alice.it> in
1921 <http://permalink.gmane.org/gmane.network.gnutls.general/1170>.
1923 ** Build Guile code with -fgnu89-inline only when supported.
1924 Reported by Kris Karas <ktk@enterprise.bidmc.harvard.edu> in
1925 <http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/2708>.
1927 ** Several GTK-DOC related fixes.
1929 ** Clean up OpenCDK related code.
1930 GnuTLS now requires its internal OpenCDK code rather than the external
1931 GPL library OpenCDK. Unfortunately, we don't have resources to
1932 maintain an external library (help welcome).
1934 ** API and ABI modifications:
1935 No changes since last version.
1937 * Version 2.3.5 (released 2008-04-14)
1939 ** Build fix for MinGW and --disable-shared.
1940 Reported by Massimo Gaspari <massimo.gaspari@alice.it> in
1941 <http://permalink.gmane.org/gmane.network.gnutls.general/1145>.
1943 ** Document how to generate CRLs.
1944 Suggested by "Rainer Gerhards" <rgerhards@gmail.com>.
1946 ** Documented the --priority option to gnutls-cli and gnutls-serv.
1948 ** Several minor fixes in the OpenPGP interface.
1949 Thanks to Daniel Kahn Gillmor.
1951 ** Fix fopen file descriptor leak in PSK server code.
1952 Thanks to Laurence Withers <l@lwithers.me.uk>, see
1953 <http://lists.gnu.org/archive/html/gnutls-devel/2008-04/msg00002.html>.
1955 ** Translations files not stored directly in git to avoid merge conflicts.
1957 ** New APIs to let applications replace the RNG used.
1958 Update all RNG callers in the code to use the new interface.
1960 ** Guile code now built with -fgnu89-inline to fix inline semantic problem.
1962 ** Update gnulib files.
1964 ** API and ABI modifications:
1965 gnutls_crypto_rnd_register: ADDED
1966 gnutls_rnd_level_t: ADDED
1967 GNUTLS_RND_KEY: ADDED, gnutls_rnd_level_t member
1968 GNUTLS_RND_RANDOM: ADDED, gnutls_rnd_level_t member
1969 GNUTLS_RND_NONCE: ADDED, gnutls_rnd_level_t member
1970 gnutls_crypto_rnd_st: ADDED
1971 GNUTLS_DIG_SHA224: ADDED
1972 GNUTLS_SIGN_RSA_SHA224: ADDED
1973 gnutls_openpgp_crt_get_auth_subkey: MODIFIED
1975 * Version 2.3.4 (released 2008-03-19)
1977 ** Finish renaming of gnutls_certificate_export_x509_cas etc.
1978 They weren't renamed in the public header file.
1980 ** Added functions to register a cipher/mac/digest. This allows to
1981 override the included ones.
1983 ** Fix a bunch of compiler warnings.
1985 ** API and ABI modifications:
1986 gnutls_crypto_cipher_st: ADDED
1987 gnutls_crypto_mac_st: ADDED
1988 gnutls_crypto_digest_st: ADDED
1989 gnutls_crypto_cipher_register: ADDED
1990 gnutls_crypto_mac_register: ADDED
1991 gnutls_crypto_digest_register: ADDED
1992 GNUTLS_E_CRYPTO_ALREADY_REGISTERED: ADDED
1994 * Version 2.3.3 (released 2008-03-10)
1996 ** Fix build failure in libextra/gnutls_extra.c that needed opencdk.h.
1997 Reported by Roman Bogorodskiy <novel@FreeBSD.org>.
1999 ** No longer compiled using -D_REENTRANT -D_THREAD_SAFE.
2000 We could not find any modern justification for enabling these flags by
2001 default. If you know of some platform that needs one of the flags to
2002 work properly, please let us know. (Actually introduced in v2.3.0 but
2003 not documented until now.)
2005 ** Importing many CA certificates are now considerably faster.
2006 This affect gnutls_certificate_set_x509_trust_mem,
2007 gnutls_certificate_set_x509_trust, and
2008 gnutls_certificate_set_x509_trust_file. The complexity was reduced
2009 from O(2*n^2) to O(n). When adding 206 files containing 408
2010 certificates, using gnutls_certificate_set_x509_trust_file, the time
2011 dropped from 40 seconds to 0.3 seconds. Thanks to Edgar Fuß for code
2012 to trigger the problem. See also
2013 <http://blog.josefsson.org/2008/02/27/real-world-performance-tuning-with-callgrind/>.
2015 ** Clarify documentation for gnutls_x509_crt_set_subject_alternative_name
2016 ** to be explicit that it takes zero terminated data.
2018 ** gnutls-cli --print-cert now print PKCS#3 format Diffie-Hellman parameters.
2020 ** Documentation fixes for the GTK-DOC manual.
2022 ** Fix compilation error related to __FUNCTION__ on some systems.
2023 Reported by Tim Mooney, see
2024 <https://savannah.gnu.org/support/?106267>.
2026 ** Updated translations.
2028 ** Update gnulib files.
2030 ** API and ABI modifications:
2031 gnutls_hex2bin: MODIFIED, uses size_t instead of int for string length,
2032 and char* instead of void* for output buffer.
2034 * Version 2.3.2 (released 2008-02-26)
2036 ** Fix srcdir!=objdir failure in openpgpself test.
2038 ** Improved API documentation output from GTK-DOC.
2040 ** Added gnutls_x509_dn_export(). Patch by Joe Orton.
2042 ** Renamed gnutls_certificate_export_x509_cas and friends.
2043 See <http://lists.gnu.org/archive/html/gnutls-devel/2008-02/msg00043.html>.
2045 ** Internal header files cleanup.
2047 ** API and ABI modifications:
2048 gnutls_certificate_export_x509_cas: RENAMED to gnutls_certificate_get_x509_cas
2049 gnutls_certificate_export_x509_crls: RENAMED to gnutls_certificate_get_x509_crls
2050 gnutls_certificate_export_openpgp_keyring: RENAMED to gnutls_certificate_get_openpgp_keyring
2051 gnutls_x509_dn_export: ADDED
2053 * Version 2.3.1 (released 2008-02-21)
2055 ** OpenPGP support merged into libgnutls and is now licensed under LGPL.
2056 The included copy of OpenCDK has been stripped down and re-licensed
2059 ** Cipher priority string handling now handle strings that starts with NULL.
2060 Thanks to Laurence Withers <l@lwithers.me.uk>.
2062 ** gnutls-cli: When -d is used, also prints RNG information from libgcrypt.
2064 ** Corrected memory leaks in session resuming and DHE ciphersuites. Reported
2067 ** Increased the default certificate verification chain limits and allowed
2068 for checks without limitation.
2070 ** Corrected the behaviour of gnutls_x509_crt_get_subject_alt_name()
2071 and gnutls_x509_crt_get_subject_alt_name() to not null terminate binary
2072 strings and return the proper size.
2074 ** Add section 'On Record Padding' to the manual.
2075 This collects all problems related to record padding with
2076 Nokia/Sony-Ericsson phones that we know about.
2078 ** Several improvements in the OpenPGP authentication.
2079 Now subkeys can be used for authentication, according to
2080 draft-mavrogiannopoulos-rfc5081bis-00.txt.
2082 ** certtool can print information on OpenPGP certificates and keys.
2084 ** Added gnutls_x509_dn_import/init/deinit() to access raw DER DN.
2087 ** Added gnutls_certificate_export_x509_cas and other functions to
2088 export elements from the certificate credentials structure. Based on
2089 suggestion from Joe Orton.
2092 Clarify that srp_base64 is not the same as normal base64.
2094 ** Fix non-portable use of brace expansion in makefiles.
2096 ** API and ABI modifications:
2097 gnutls_certificate_export_x509_cas: ADDED
2098 gnutls_certificate_export_x509_crls: ADDED
2099 gnutls_certificate_export_openpgp_keyring: ADDED
2100 gnutls_openpgp_keyid_t: ADDED, instead of hard-coded 'unsigned char[8]'.
2101 gnutls_openpgp_crt_get_key_id: ADDED, obsoletes gnutls_openpgp_crt_get_id.
2102 gnutls_openpgp_crt_get_revoked_status: ADDED
2103 gnutls_openpgp_crt_get_subkey_count: ADDED
2104 gnutls_openpgp_crt_get_subkey_idx: ADDED
2105 gnutls_openpgp_crt_get_subkey_revoked_status: ADDED
2106 gnutls_openpgp_crt_get_subkey_pk_algorithm: ADDED
2107 gnutls_openpgp_crt_get_subkey_creation_time: ADDED
2108 gnutls_openpgp_crt_get_subkey_expiration_time: ADDED
2109 gnutls_openpgp_crt_get_subkey_id: ADDED
2110 gnutls_openpgp_crt_get_subkey_usage: ADDED
2111 gnutls_openpgp_privkey_get_fingerprint: ADDED
2112 gnutls_openpgp_privkey_get_key_id: ADDED
2113 gnutls_openpgp_privkey_get_subkey_count: ADDED
2114 gnutls_openpgp_privkey_get_subkey_idx: ADDED
2115 gnutls_openpgp_privkey_get_subkey_revoked_status: ADDED
2116 gnutls_openpgp_privkey_get_revoked_status: ADDED
2117 gnutls_openpgp_privkey_get_subkey_pk_algorithm: ADDED
2118 gnutls_openpgp_privkey_get_subkey_expiration_time: ADDED
2119 gnutls_openpgp_privkey_get_subkey_id: ADDED
2120 gnutls_openpgp_privkey_get_subkey_creation_time: ADDED
2121 gnutls_openpgp_crt_get_subkey_pk_dsa_raw: ADDED
2122 gnutls_openpgp_crt_get_subkey_pk_rsa_raw: ADDED
2123 gnutls_openpgp_crt_get_pk_dsa_raw: ADDED
2124 gnutls_openpgp_crt_get_pk_rsa_raw: ADDED
2125 gnutls_openpgp_privkey_export_subkey_dsa_raw: ADDED
2126 gnutls_openpgp_privkey_export_subkey_rsa_raw: ADDED
2127 gnutls_openpgp_privkey_export_dsa_raw: ADDED
2128 gnutls_openpgp_privkey_export_rsa_raw: ADDED
2129 gnutls_openpgp_privkey_export: ADDED
2130 gnutls_certificate_set_openpgp_key_file2: ADDED
2131 gnutls_certificate_set_openpgp_key_mem2: ADDED
2132 gnutls_x509_dn_init: ADDED
2133 gnutls_x509_dn_import: ADDED
2134 gnutls_x509_dn_deinit: ADDED
2135 GNUTLS_E_OPENPGP_SUBKEY_ERROR: ADDED
2136 gnutls_hex2bin: ADDED
2137 GNUTLS_CRT_PRINT_FULL: ADDED, same as old GNUTLS_X509_CRT_FULL.
2138 GNUTLS_CRT_PRINT_ONELINE: ADDED, same as old GNUTLS_X509_CRT_ONELINE.
2139 GNUTLS_CRT_PRINT_UNSIGNED_FULL: ADDED, same as
2140 old GNUTLS_X509_CRT_UNSIGNED_FULL.
2142 * Version 2.3.0 (released 2008-01-08)
2144 ** LZO compression is now disabled by default.
2145 The reason is that LZO compression is not standardized in TLS. If you
2146 wish to experiment with it, you will have to supply --with-lzo when
2147 invoking ./configure. The internal copy of minilzo is no longer
2148 included with GnuTLS, so you will need to install liblzo or liblzo2 on
2149 your system to have --with-lzo to be effective.
2151 ** More than one server name field is now sent to the server properly.
2152 Thanks to mark.phillips@virgin.net.
2154 ** Fixes the post_client_hello_function(). The extensions are now parsed
2155 in a callback friendly way.
2157 ** Fix for certificate selection in servers with certificate callbacks.
2159 ** Updated translations.
2161 ** Update gnulib files.
2163 ** API and ABI modifications:
2164 No changes since last version.
2166 * Version 2.2.5 (released 2008-05-19)
2168 ** Fix flaw in fix for GNUTLS-SA-2008-1-3.
2169 The flaw would result in incorrectly terminated sessions with the
2170 error "Decryption has failed" when the server sends a small packet
2171 (typically when the session is closed). Reported by Andreas Metzler
2172 <ametzler@downhill.at.eu.org> in
2173 <http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/2807>.
2175 ** API and ABI modifications:
2176 No changes since last version.
2178 * Version 2.2.4 (released 2008-05-19)
2180 ** Fix three security vulnerabilities. [GNUTLS-SA-2008-1]
2181 Thanks to CERT-FI for finding the bugs and providing detailed reports,
2182 which allowed the bugs to be reproduced and fixed easily. Patches
2183 developed by Simon Josefsson and Nikos Mavrogiannopoulos. Any updates
2184 with more details about these vulnerabilities will be added to
2185 <http://www.gnu.org/software/gnutls/security.html>
2187 *** [GNUTLS-SA-2008-1-1]
2188 *** libgnutls: Fix crash when sending invalid server name.
2189 The crash can be triggered remotely before authentication, which can
2190 lead to a Daniel of Service attack to disable the server. The bug
2191 cause gnutls to store more session resumption data than what was
2192 allocated for, thus overwriting unallocated memory.
2194 *** [GNUTLS-SA-2008-1-2]
2195 *** libgnutls: Fix crash when sending repeated client hellos.
2196 The crash can be triggered remotely before authentication, which can
2197 lead to a Daniel of Service attack to disable the server. The bug
2198 triggers a null-pointer dereference.
2200 *** [GNUTLS-SA-2008-1-3]
2201 *** libgnutls: Fix crash in cipher padding decoding for invalid record lengths.
2202 The crash can be triggered remotely before authentication, which can
2203 lead to a Daniel of Service attack to disable the server. The bug
2204 cause gnutls to read memory beyond the end of the received record.
2206 ** API and ABI modifications:
2207 No changes since last version.
2209 * Version 2.2.3 (released 2008-05-06)
2211 ** Increase default handshake packet size limit to 48kb.
2212 The old limit was 16kb and some servers send huge list of trusted CAs,
2213 thus running into the limit. FYI, applications can further increase
2214 this limit using gnutls_handshake_set_max_packet_length. Thanks to
2215 Marc Haber <mh+debian-bugs@zugschlus.de> and "Marc F. Clemente"
2216 <marc@mclemente.net> for reporting and providing test servers.
2218 ** Fix compilation error related to __FUNCTION__ on some systems.
2219 Reported by Tim Mooney, see
2220 <https://savannah.gnu.org/support/?106267>.
2222 ** Documented the --priority option to gnutls-cli and gnutls-serv.
2224 ** Fix fopen file descriptor leak in PSK server code.
2225 Thanks to Laurence Withers <l@lwithers.me.uk>, see
2226 <http://lists.gnu.org/archive/html/gnutls-devel/2008-04/msg00002.html>.
2228 ** Build Guile code with -fgnu89-inline only when supported.
2229 Reported by Kris Karas <ktk@enterprise.bidmc.harvard.edu> in
2230 <http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/2708>.
2232 ** Make Camellia encryption work.
2233 Reported by Yoshisato YANAGISAWA <yanagisawa@csg.is.titech.ac.jp> in
2234 <http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/2746>.
2236 ** API and ABI modifications:
2237 No changes since last version.
2239 * Version 2.2.2 (released 2008-02-21)
2241 ** Cipher priority string handling now handle strings that starts with NULL.
2242 Thanks to Laurence Withers <l@lwithers.me.uk>.
2244 ** Corrected memory leaks in session resuming and DHE ciphersuites. Reported
2247 ** Increased the default certificate verification chain limits and allowed
2248 for checks without limitation.
2250 ** Corrected the behaviour of gnutls_x509_crt_get_subject_alt_name()
2251 and gnutls_x509_crt_get_subject_alt_name() to not null terminate binary
2252 strings and return the proper size.
2254 ** API and ABI modifications:
2255 No changes since last version.
2257 * Version 2.2.1 (released 2008-01-17)
2259 ** Prevent linking libextra against previously installed libgnutls.
2260 Tiny patch from "Alon Bar-Lev" <alon.barlev@gmail.com>, see
2261 <http://bugs.gentoo.org/show_bug.cgi?id=202269>.
2263 ** Fixes the post_client_hello_function(). The extensions are now parsed
2264 in a callback friendly way.
2266 ** Fix for certificate selection in servers with certificate callbacks.
2268 ** API and ABI modifications:
2269 No changes since last version.
2271 * Version 2.2.0 (released 2007-12-14)
2273 ** Update internal copy of libtasn1 to version 1.2.
2275 ** Certtool --verify-chain now handle inputs larger than 64kb.
2276 This fixes the self-test "rsa-md5-collision" under MinGW+Wine with
2277 recent versions of libgcrypt. The problem was that Wine with the
2278 libgcrypt RNG generates huge amounts of debugging output.
2280 ** Translation updates.
2281 Added Dutch translation. Updated Polish and Swedish translation.
2283 ** Major changes compared to the v2.0 branch:
2285 *** SRP support aligned with newly published RFC 5054.
2287 *** OpenPGP support aligned with newly published RFC 5081.
2289 *** Support for DSA2 keys.
2291 *** Support for Camellia cipher.
2293 *** Support for Opaque PRF Input extension.
2295 *** PKCS#8 parser now handle DSA keys.
2297 *** Change from GPLv2 to GPLv3 for command-line tools, libgnutls-extra, etc.
2298 Notice that liblzo2 2.02 is licensed under GPLv2 only. Earlier
2299 versions, such as 2.01 which is included with GnuTLS, is available
2300 under GPLv2 or later. If this incompatibility causes problems, we
2301 recommend you to disable LZO using --without-lzo. LZO compression is
2302 not a standard TLS compression algorithm, so the impact should be
2305 *** Functions for disabling record protocol padding.
2306 Works around bugs on Nokia/Ericsson phones.
2308 *** New functions gnutls_priority_set() for setting cipher priorities easily.
2309 Priorities like "COMPAT" also enables other work arounds, such as
2312 *** Other minor improvements and bug fixes.
2314 ** Backwards incompatible API/ABI changes in GnuTLS 2.2
2315 To adapt to changes in the TLS extension specifications for OpenPGP
2316 and SRP, the GnuTLS API had to be modified. This means breaking the
2317 API and ABI backwards compatibility. That is something we try to
2318 avoid unless it is necessary. We decided to also remove the already
2319 deprecated stub functions for X.509 to XML conversion and TLS
2320 authorization (see below) when we had the opportunity.
2322 Generally, most applications does not need to be modified. Just
2323 re-compile them against the latest GnuTLS release, and it should work
2326 Applications that use the OpenPGP or SRP features needs to be
2327 modified. Below is a list of the modified APIs and discussion of what
2328 the minimal things you need to modify in your application to make it
2329 work with GnuTLS 2.2.
2331 Note that GnuTLS 2.2 also introduces new APIs -- such as
2332 gnutls_set_priority() that is superior to
2333 gnutls_set_default_priority() -- that you may want to start using.
2334 However, using those new APIs is not required to use GnuTLS 2.2 since
2335 the old functions continue are still supported. This text only
2336 discuss what you minimally have to modify.
2338 *** XML related changes
2339 The function `gnutls_x509_crt_to_xml' has been removed. It has been
2340 deprecated and only returned an error code since GnuTLS version
2341 1.2.11. Nobody has complained, so users doesn't seem to miss the
2342 functionality. We don't know of any other library to convert X.509
2343 certificates into XML format, but we decided (long ago) that GnuTLS
2344 isn't the right place for this kind of functionality. If you want
2345 help to find some other library to use here, please explain and
2346 discuss your use case on help-gnutls@gnu.org.
2348 *** TLS Authorization related changes
2349 Everything related to TLS authorizations have been removed, they were
2350 only stub functions that returned an error code:
2352 GNUTLS_SUPPLEMENTAL_AUTHZ_DATA
2353 gnutls_authz_data_format_type_t
2354 gnutls_authz_recv_callback_func
2355 gnutls_authz_send_callback_func
2357 gnutls_authz_send_x509_attr_cert
2358 gnutls_authz_send_saml_assertion
2359 gnutls_authz_send_x509_attr_cert_url
2360 gnutls_authz_send_saml_assertion_url
2362 *** SRP related changes
2363 The callback gnutls_srp_client_credentials_function has a new
2364 prototype, and its semantic has changed. You need to rewrite the
2365 callback, see the updated function documentation and SRP example code
2366 (doc/examples/ex-client-srp.c and doc/examples/ex-serv-srp.c) for more
2369 The alert codes GNUTLS_A_MISSING_SRP_USERNAME and
2370 GNUTLS_A_UNKNOWN_SRP_USERNAME are no longer used by the SRP
2371 specification, instead the GNUTLS_A_UNKNOWN_PSK_IDENTITY alert is
2372 used. There are #define's to map the old names to the new. You may
2373 run into problems if you have a switch-case with cases for both SRP
2374 alerts, since they are now mapped to the same value. The solution is
2375 to drop the SRP alerts from such switch cases, as they are now
2376 deprecated in favor of GNUTLS_A_UNKNOWN_PSK_IDENTITY.
2378 *** OpenPGP related changes
2379 The function `gnutls_certificate_set_openpgp_keyserver' have been
2380 removed. There is no replacement functionality inside GnuTLS. If you
2381 need keyserver functionality, consider using the GnuPG tools.
2383 All functions, types, and error codes related to OpenPGP trustdb
2384 format have been removed. The trustdb format is a non-standard
2385 GnuPG-specific format, and we recommend you to use key rings instead.
2386 The following have been removed:
2388 gnutls_certificate_set_openpgp_trustdb
2389 gnutls_openpgp_trustdb_init
2390 gnutls_openpgp_trustdb_deinit
2391 gnutls_openpgp_trustdb_import
2392 gnutls_openpgp_key_verify_trustdb
2393 gnutls_openpgp_trustdb_t
2394 GNUTLS_E_OPENPGP_TRUSTDB_VERSION_UNSUPPORTED
2396 The following functions has an added parameter of the (new) type
2397 `gnutls_openpgp_crt_fmt_t'. The type specify the format of the data
2398 (binary or base64). The functions are:
2399 gnutls_certificate_set_openpgp_key_file
2400 gnutls_certificate_set_openpgp_key_mem
2401 gnutls_certificate_set_openpgp_keyring_mem
2402 gnutls_certificate_set_openpgp_keyring_file
2404 To improve terminology and align with the X.509 interface, some
2405 functions have been renamed. Compatibility mappings exists. The old
2406 and new names of the affected functions and types are:
2409 gnutls_openpgp_key_t gnutls_openpgp_crt_t
2410 gnutls_openpgp_key_fmt_t gnutls_openpgp_crt_fmt_t
2411 gnutls_openpgp_key_status_t gnutls_openpgp_crt_status_t
2412 GNUTLS_OPENPGP_KEY GNUTLS_OPENPGP_CERT
2413 GNUTLS_OPENPGP_KEY_FINGERPRINT GNUTLS_OPENPGP_CERT_FINGERPRINT
2414 gnutls_openpgp_key_init gnutls_openpgp_crt_init
2415 gnutls_openpgp_key_deinit gnutls_openpgp_crt_deinit
2416 gnutls_openpgp_key_import gnutls_openpgp_crt_import
2417 gnutls_openpgp_key_export gnutls_openpgp_crt_export
2418 gnutls_openpgp_key_get_key_usage gnutls_openpgp_crt_get_key_usage
2419 gnutls_openpgp_key_get_fingerprint gnutls_openpgp_crt_get_fingerprint
2420 gnutls_openpgp_key_get_pk_algorithm gnutls_openpgp_crt_get_pk_algorithm
2421 gnutls_openpgp_key_get_name gnutls_openpgp_crt_get_name
2422 gnutls_openpgp_key_get_version gnutls_openpgp_crt_get_version
2423 gnutls_openpgp_key_get_creation_time gnutls_openpgp_crt_get_creation_time
2424 gnutls_openpgp_key_get_expiration_time gnutls_openpgp_crt_get_expiration_time
2425 gnutls_openpgp_key_get_id gnutls_openpgp_crt_get_id
2426 gnutls_openpgp_key_check_hostname gnutls_openpgp_crt_check_hostname
2427 gnutls_openpgp_send_key gnutls_openpgp_send_cert
2429 ** API and ABI modifications:
2430 No changes since last version.
2432 * Version 2.1.8 (released 2007-12-10)
2434 ** The GPL version has been changed from version 2 to version 3.
2435 This affects the self-tests, command-line tools, the libgnutls-extra
2436 library, the relevant guile parts, and the build environment.
2438 ** Added gnutls_x509_crt_get_subject_alt_name2().
2440 ** Corrected a segfault when setting an empty gnutls_priority_t
2441 at gnutls_priority_set().
2443 ** Use gettext 0.17 which updates m4/lib-*.m4 macros.
2444 Fixes a problem with spurious -L/usr/lib additions.
2446 ** API and ABI modifications:
2447 gnutls_x509_crt_get_subject_alt_name2: ADD.
2449 * Version 2.1.7 (released 2007-11-29)
2451 ** PKCS #8 parser can now encode/decode DSA keys.
2453 ** Updated gnutls_set_default_priority2() now renamed to
2454 gnutls_priority_set() and gnutls_priority_set_direct() which
2455 accept a string to indicate preferences of ciphersuite parameters.
2457 ** gnutls-cli and gnutls-serv now have a --priority option to set
2458 the priority string.
2460 ** The gnutls_*_convert_priority() functions were deprecated by
2461 the gnutls_priority_set() and gnutls_priority_set_direct().
2463 ** Internal copy of OpenCDK upgraded to version 0.6.6.
2465 ** API and ABI modifications:
2466 gnutls_priority_init: ADD.
2467 gnutls_priority_deinit: ADD.
2468 gnutls_priority_set: ADD.
2469 gnutls_priority_set_direct: ADD.
2470 gnutls_set_default_priority2: RENAMED to gnutls_priority_set_direct()
2471 gnutls_mac_convert_priority: REMOVED
2472 gnutls_compression_convert_priority: REMOVED
2473 gnutls_protocol_convert_priority: REMOVED
2474 gnutls_kx_convert_priority: REMOVED
2475 gnutls_cipher_convert_priority: REMOVED
2476 gnutls_certificate_type_convert_priority: REMOVED
2477 gnutls_set_default_priority: UNDEPRECATED
2478 gnutls_set_default_priority_export: UNDEPRECATED
2480 ** Undocumented API and ABI modifications earlier in the 2.1.x series:
2481 GNUTLS_CIPHER_UNKNOWN: ADD.
2482 GNUTLS_CIPHER_CAMELLIA_128_CBC: ADD.
2483 GNUTLS_CIPHER_CAMELLIA_256_CBC: ADD.
2484 GNUTLS_KX_UNKNOWN: ADD.
2485 GNUTLS_COMP_UNKNOWN: ADD.
2486 GNUTLS_CRT_UNKNOWN: ADD.
2487 gnutls_mac_get_id: ADD.
2488 gnutls_compression_get_id: ADD.
2489 gnutls_cipher_get_id: ADD.
2490 gnutls_kx_get_id: ADD.
2491 gnutls_protocol_get_id: ADD.
2492 gnutls_certificate_type_get_id: ADD.
2493 gnutls_handshake_post_client_hello_func: ADD.
2494 gnutls_certificate_send_x509_rdn_sequence: ADD prototype to gnutls.h.in.
2496 * Version 2.1.6 (released 2007-11-15)
2498 ** Corrected bug in decompression of expanded compression data.
2500 ** Added the --to-p8 option to certtool to convert private keys
2503 ** Introduced the GNUTLS_E_BASE64_UNEXPECTED_HEADER_ERROR error code.
2505 ** gnutls_certificate_set_x509_key_* can now read PKCS #8 unencrypted
2508 ** Fixed GNUTLS_E_UNKNOWN_ALGORITHM vs GNUTLS_E_UNKNOWN_HASH_ALGORITHM.
2509 During the 2.1.x series the GNUTLS_E_UNKNOWN_HASH_ALGORITHM error code
2510 was renamed to GNUTLS_E_UNKNOWN_ALGORITHM, unfortunately without being
2511 documented. This caused some problems (e.g., debian #450854). To
2512 avoid backwards compatibility problems, this release revert this
2513 change, so that GNUTLS_E_UNKNOWN_HASH_ALGORITHM works just like it has
2514 done in GnuTLS 2.0.x and earlier, and add a new error code
2515 GNUTLS_E_UNKNOWN_ALGORITHM.
2517 ** Fixes several gtk-doc warnings.
2519 ** API and ABI modifications:
2520 GNUTLS_E_UNKNOWN_ALGORITHM: CHANGED.
2521 GNUTLS_E_UNKNOWN_HASH_ALGORITHM: CHANGED.
2522 GNUTLS_E_BASE64_UNEXPECTED_HEADER_ERROR: ADD.
2524 * Version 2.1.5 (released 2007-11-01)
2526 ** Fix PKCS#3 parameter export problem.
2528 ** Improve certtool queries, they now print the default value.
2532 ** Update gnulib files.
2534 ** API and ABI modifications:
2535 No changes since last version.
2537 * Version 2.1.4 (released 2007-10-27)
2539 ** Added the --v1 option to certtool, to allow generating X.509
2540 version 1 certificates.
2542 ** certtool: Add option --disable-quick-random to enable the old behaviour
2543 of using /dev/random to generate keys.
2545 ** Added priority functions that accept strings.
2547 ** Added gnutls_set_default_priority2() which accepts a flag to indicate
2548 priorities preferences.
2550 ** Added gnutls_record_disable_padding() to allow servers talking to
2551 buggy clients that complain if the TLS 1.0 record protocol padding is
2554 ** Introduced gnutls_session_enable_compatibility_mode() to allow enabling
2555 all supported compatibility options (like disabling padding).
2557 ** The gnutls_certificate_set_openpgp_* functions were modified to include
2558 the format. This makes the interface consistent with the x509 functions.
2560 ** Internal copy of OpenCDK upgraded to version 0.6.5.
2562 ** Update gnulib files.
2564 ** API and ABI modifications:
2565 gnutls_certificate_set_openpgp_key_mem: MODIFIED
2566 gnutls_certificate_set_openpgp_key_file: MODIFIED
2567 gnutls_certificate_set_openpgp_keyring_mem: MODIFIED
2568 gnutls_certificate_set_openpgp_keyring_file: MODIFIED
2569 gnutls_set_default_priority: DEPRECATED
2570 gnutls_set_default_priority_export: DEPRECATED
2571 gnutls_set_default_priority2: ADDED
2572 gnutls_session_enable_compatibility_mode: ADDED
2573 gnutls_record_disable_padding: ADDED
2574 gnutls_mac_convert_priority: ADDED
2575 gnutls_compression_convert_priority: ADDED
2576 gnutls_protocol_convert_priority: ADDED
2577 gnutls_kx_convert_priority: ADDED
2578 gnutls_cipher_convert_priority: ADDED
2579 gnutls_certificate_type_convert_priority: ADDED
2580 gnutls_openpgp_key_t: RENAMED to gnutls_openpgp_crt_t
2581 gnutls_openpgp_key_status_t: RENAMED to gnutls_openpgp_crt_status_t
2582 gnutls_openpgp_send_key: RENAMED to gnutls_openpgp_send_cert
2583 gnutls_openpgp_key_init: RENAMED to gnutls_openpgp_crt_init
2584 gnutls_openpgp_key_import: RENAMED to gnutls_openpgp_crt_import
2585 gnutls_openpgp_key_export: RENAMED to gnutls_openpgp_crt_export
2586 gnutls_openpgp_key_check_hostname: RENAMED to gnutls_openpgp_crt_check_hostname
2587 gnutls_openpgp_key_get_creation_time: RENAMED to gnutls_openpgp_crt_get_creation_time
2588 gnutls_openpgp_key_get_expiration_time: RENAMED to gnutls_openpgp_crt_get_expiration_time
2589 gnutls_openpgp_key_get_fingerprint: RENAMED to gnutls_openpgp_crt_get_fingerprint
2590 gnutls_openpgp_key_get_version: RENAMED to gnutls_openpgp_crt_get_version
2591 gnutls_openpgp_key_get_pk_algorithm: RENAMED to gnutls_openpgp_crt_get_pk_algorithm
2592 gnutls_openpgp_key_get_name: RENAMED to gnutls_openpgp_crt_get_name
2593 gnutls_openpgp_key_deinit: RENAMED to gnutls_openpgp_crt_deinit
2594 gnutls_openpgp_key_get_id: RENAMED to gnutls_openpgp_crt_get_id
2595 gnutls_openpgp_key_get_key_usage: RENAMED to gnutls_openpgp_crt_get_key_usage
2596 gnutls_openpgp_key_verify_ring: RENAMED to gnutls_openpgp_crt_verify_ring
2597 gnutls_openpgp_key_verify_self: RENAMED to gnutls_openpgp_crt_verify_self
2599 * Version 2.1.3 (released 2007-10-17)
2601 ** TLS authorization support removed.
2602 This technique may be patented in the future, and it is not of crucial
2603 importance for the Internet community. After deliberation we have
2604 concluded that the best thing we can do in this situation is to
2605 encourage society not to adopt this technique. We have decided to
2606 lead the way with our own actions.
2608 ** Re-enabled the 256 bit ciphers in the default priorities.
2610 ** Corrected bugs in openpgp key verification using a keyring (both in
2613 ** API and ABI modifications:
2614 gnutls_certificate_set_openpgp_keyserver: REMOVED
2615 gnutls_authz_data_format_type_t,
2616 gnutls_authz_recv_callback_func,
2617 gnutls_authz_send_callback_func,
2618 gnutls_authz_enable,
2619 gnutls_authz_send_x509_attr_cert,
2620 gnutls_authz_send_saml_assertion,
2621 gnutls_authz_send_x509_attr_cert_url,
2622 gnutls_authz_send_saml_assertion_url: REMOVED.
2623 GNUTLS_SUPPLEMENTAL_USER_MAPPING_DATA: ADDED. To avoid that the
2624 gnutls_supplemental_data_format_type_t enum type becomes empty.
2626 * Version 2.1.2 (released 2007-10-14)
2628 ** Removed all the trustdb code from openpgp authentication.
2629 We now use only the well-specified keyrings.
2631 ** The 256 bit ciphers are not enabled in the default priorities.
2633 ** Added support for DSA2 using libgcrypt 1.3.0.
2635 ** certtool: Fixed data corruption when using --outder.
2637 ** Removed all the xml related stubs and functions.
2639 ** Added capability to set a callback after the client hello is received
2640 by the server in order to adjust parameters before the handshake.
2642 ** SRP was corrected to adhere to the latest draft (published soon as RFC)
2644 ** Corrected bug which did not allow a server to run without supporting
2647 ** Updated the DN parser which now prints wrongly decoded values as hex
2650 ** certtool: Add option --quick-random.
2651 For generating low security test credentials.
2653 ** API and ABI modifications:
2654 gnutls_x509_crt_to_xml: REMOVED
2655 gnutls_openpgp_key_to_xml: REMOVED
2656 gnutls_openpgp_key_verify_trustdb: REMOVED
2657 gnutls_openpgp_trustdb_init: REMOVED
2658 gnutls_openpgp_trustdb_deinit: REMOVED
2659 gnutls_openpgp_trustdb_import: REMOVED
2660 gnutls_certificate_set_openpgp_trustdb: REMOVED
2661 gnutls_srp_client_credentials_function: CHANGED
2662 gnutls_handshake_set_post_client_hello_function: ADDED
2663 gnutls_mac_get_key_size: ADDED
2664 GNUTLS_E_OPENPGP_TRUSTDB_VERSION_UNSUPPORTED: DEPRECATED.
2665 GNUTLS_A_MISSING_SRP_USERNAME: DEPRECATED
2666 GNUTLS_A_UNKNOWN_SRP_USERNAME: DEPRECATED
2668 * Version 2.1.1 (released 2007-09-24)
2670 ** Added support for Camellia cipher, thanks to Yoshisato YANAGISAWA.
2671 Camellia is only enabled in GnuTLS if the installed libgcrypt has been
2672 compiled with Camellia support. See the libgcrypt documentation on
2673 how to enable it. Unconditionally disable it using the configure
2674 option --disable-camellia. Fixes #1.
2676 ** Properly document in the NEWS file the API change in the last release.
2678 ** API and ABI modifications:
2679 No changes since last version.
2681 * Version 2.1.0 (released 2007-09-20)
2683 ** Support for draft-rescorla-tls-opaque-prf-input-00.txt.
2684 The support is disabled by default. Since no value has been allocated
2685 by the IANA for this extension yet, you will need to provide one
2686 yourself by invoking './configure --enable-opaque-prf-input=42'.
2689 ** Example code: Fix compilation flaw under MinGW.
2691 ** API and ABI modifications:
2692 gnutls_oprfi_callback_func: ADD, new typedef function prototype.
2693 gnutls_oprfi_enable_client: ADD, new function.
2694 gnutls_oprfi_enable_server: ADD, new function.
2696 * Version 2.0.4 (released 2007-11-16)
2698 ** Corrected bug in decompression of expanded compression data.
2700 ** API and ABI modifications:
2701 No changes since last version.
2703 * Version 2.0.3 (released 2007-11-10)
2705 ** This version backports several fixes from the 2.1.x branch.
2707 ** Fixed PKCS #3 parameter export.
2709 ** Added gnutls_record_disable_padding() to allow servers talking to
2710 buggy clients that complain if the TLS 1.0 record protocol padding is
2713 ** Introduced gnutls_session_enable_compatibility_mode() to allow enabling
2714 all supported compatibility options (like disabling padding).
2716 ** Corrected bug which did not allow a server to run without supporting
2719 ** API and ABI modifications:
2720 gnutls_session_enable_compatibility_mode: ADDED
2721 gnutls_record_disable_padding: ADDED
2723 * Version 2.0.2 (released 2007-10-17)
2725 ** TLS authorization support removed.
2726 This technique may be patented in the future, and it is not of crucial
2727 importance for the Internet community. After deliberation we have
2728 concluded that the best thing we can do in this situation is to
2729 encourage society not to adopt this technique. We have decided to
2730 lead the way with our own actions.
2732 ** certtool: Fixed data corruption when using --outder.
2734 ** Fix configure-time Guile detection.
2736 ** API and ABI modifications:
2737 GNUTLS_SUPPLEMENTAL_USER_MAPPING_DATA: ADDED. To avoid that the
2738 gnutls_supplemental_data_format_type_t enum type becomes empty.
2740 * Version 2.0.1 (released 2007-09-20)
2742 ** New directory doc/credentials/ with test credentials.
2743 This collects the test credentials from the web page and from src/.
2744 The script gnutls-http-serv has also been moved to that directory.
2746 ** Update SRP extension type and cipher suite with official IANA values.
2747 This breaks backwards compatibility with SRP in older versions of
2748 GnuTLS, but this is intentional to speed up the adoption of the
2749 official values. The old values we used were incorrect.
2751 ** Guile: Fix `x509-certificate-dn-oid'
2753 ** API and ABI modifications:
2754 No changes since last version.
2756 * Version 2.0.0 (released 2007-09-04)
2758 ** Included copy of Libtasn1 upgraded to version 1.1.
2760 ** Disable building of some examples if anonymous ciphers are disabled.
2762 ** Don't build examples for disabled features.
2764 ** API and ABI modifications:
2765 No changes since last version.
2767 * Version 1.7.19 (released 2007-08-27)
2769 ** Fix gnutls_error_is_fatal so that positive "errors" are non-critical.
2770 This solves connection problems in mutt, see
2771 <http://bugs.debian.org/439640>.
2773 ** Update gnulib files.
2774 In particular, the getpass module -- with its dependencies on getline,
2775 getdelim, fseeko etc -- where moved from the lgl/ (used by the core
2776 library) directory to the gl/ directory (only used by the command line
2777 tools). The reason is that getpass is now only used by the
2778 command-line tools, and reducing the number of gnulib modules linked
2779 to the core library helps portability and reduces size.
2783 ** Disable building of PGP examples if PGP is disabled.
2785 ** Included copy of OpenCDK upgraded to version 0.6.4.
2787 ** API and ABI modifications:
2788 No changes since last version.
2790 * Version 1.7.18 (released 2007-08-16)
2792 ** Install images for the info manual.
2793 This has a side effect of renaming the images. See
2794 <http://thread.gmane.org/gmane.comp.tex.texinfo.bugs/3533> for
2795 discussions on the approach chosen.
2797 ** Fix pointer mix to variables of different size.
2798 Patch extracted from
2799 <http://cvs.fedora.redhat.com/viewcvs/devel/gnutls/gnutls-1.6.3-incompat-pointers.patch?rev=1.1&view=auto>.
2801 ** Fix warnings during build.
2802 Thanks to Andreas Metzler <ametzler@downhill.at.eu.org>.
2804 ** API and ABI modifications:
2805 No changes since last version.
2807 * Version 1.7.17 (released 2007-08-15)
2809 ** New functions to perform external signing.
2810 Set the signing callback function (of the gnutls_sign_func prototype)
2811 using the gnutls_sign_callback_set function. In the callback, you may
2812 find the new functions gnutls_x509_privkey_sign_hash and
2813 gnutls_openpgp_privkey_sign_hash useful. A new function
2814 gnutls_sign_callback_get is also added, to retrieve the function
2815 pointer. Thanks to "Alon Bar-Lev" <alon.barlev@gmail.com> for
2816 comments and testing.
2818 ** New self test of client and server authenticated X.509 TLS sessions.
2819 See tests/x509self.c and tests/x509signself.c. The latter also tests
2820 the new external signing callback interface.
2822 ** New errors GNUTLS_E_APPLICATION_ERROR_MIN..GNUTLS_E_APPLICATION_ERROR_MAX.
2823 These two actually describe the outer limits of a range of error codes
2824 reserved to the application. All of the errors are treated as fatal
2825 by the library (it has to since it doesn't know the semantics of the
2826 error codes). This can be useful in callbacks, to signal some
2827 application-specific error condition, which will usually eventually
2828 cause some gnutls API to return the same error code as the callback,
2829 which then can be inspected by the application. Note that error codes
2832 ** gnutls_set_default_priority now disable TLS 1.2 by default.
2833 The RFC is not released yet, and we're approaching a major release so
2834 let's not enable it just yet.
2836 ** Fix namespace so that gnutls_*_t is used consistently.
2837 Before, many places in the GnuTLS code used the old deprecated type
2838 names without the '_t' suffix.
2840 ** Build fixes for Guile code.
2841 Patch from Ludovic Courtes <ludovic.courtes@laas.fr>.
2843 ** More documentation fixes.
2844 In particular, the section headings were modified for casing. By
2845 Ludovic Courtes <ludovic.courtes@laas.fr>.
2847 ** Updated Polish and Swedish translations.
2848 Thanks to Jakub Bogusz <qboosh@pld-linux.org> and Daniel Nylander
2849 <po@danielnylander.se>.
2851 ** API and ABI modifications:
2852 gnutls_sign_func: ADD, new type for sign callback.
2853 gnutls_sign_callback_set: ADD, new function to set sign callback.
2854 gnutls_sign_callback_get: ADD, new function to retrieve sign callback.
2855 gnutls_x509_privkey_sign_hash,
2856 gnutls_openpgp_privkey_sign_hash: ADD, new functions useful in sign callback.
2857 GNUTLS_E_APPLICATION_ERROR_MIN,
2858 GNUTLS_E_APPLICATION_ERROR_MAX: ADD, new CPP #defines for error codes.
2860 * Version 1.7.16 (released 2007-08-07)
2862 ** Fix sanity checks and return values in certificate selection.
2863 In some cases, GnuTLS omitted to report suitable error codes when no
2864 suitable certificate was found.
2866 ** Fix gnutls-cli starttls EOF on Mac OS X.
2867 Thanks to Hal Eden <n.mavrogiannopoulos@gmail.com>.
2869 ** Documentation fixes.
2870 In particular, the section headings were modified for casing. By
2871 Ludovic Courtes <ludovic.courtes@laas.fr>.
2873 ** Update gnulib files.
2875 ** API and ABI modifications:
2876 No changes since last version.
2878 * Version 1.7.15 (released 2007-07-02)
2880 ** Fix self-tests key-id under mingw32.
2882 ** Test that the Guile header files are recent enough to work.
2883 Before we just tested that the command line tool 'guile' was recent
2884 enough, which may not be sufficient if you still have an old
2885 libguile.h header installed.
2887 ** Guile bindings are now installed under $prefix by default.
2888 Use --without-guile-site-dir to install it under $pkgdatadir/site/
2889 where $pkgdatadir is as returned by "guile-config info pkgdatadir".
2890 Use --with-guile-site-dir=/your/own/path to specify the path manually.
2891 The default, --with-guile-site-dir, will install the Guile bindings
2892 under $datadir/guile/site. There is a new section 'Guile
2893 Preparations' in the manual that discuss these issues.
2895 ** Fix run-time library path ordering in linking the Guile bindings.
2897 ** Improved manual on downloading, installing, getting help, bug reports etc.
2898 Suggested by Ludovic Courtès <ludovic.courtes@laas.fr>.
2900 ** Add Malay message translations.
2901 Thanks to Sharuzzaman Ahmat Raslan <sharuzzaman@myrealbox.com>.
2903 ** API and ABI modifications:
2904 No changes since last version.
2906 * Version 1.7.14 (released 2007-06-26)
2908 ** Don't enable Guile bindings unless we have Guile 1.8 or later.
2909 Patch from Ludovic Courtès <ludovic.courtes@laas.fr>.
2911 ** Fix memory leak during DSA signature verification.
2912 Patch from Ludovic Courtès <ludovic.courtes@laas.fr>.
2914 ** Fix crash in gnutls-cli when TLS handshake fails.
2915 Reported by Marc Haber <mh+debian-bugs@zugschlus.de> and Andreas
2916 Metzler <ametzler@downhill.at.eu.org> via Debian BTS #429183, see
2917 <http://bugs.debian.org/429183>.
2919 ** Minor OpenPGP fixes in stream_to_datum.
2920 Patch from Timo Schulz <twoaday@freakmail.de> and Ludovic Courtès
2921 <ludovic.courtes@laas.fr>.
2923 ** Fix off-by-one in TLS 1.2 handshake.
2924 Patch from Ludovic Courtès <ludovic.courtes@laas.fr>.
2926 ** Minor Guile binding self-test cleanup.
2927 Patch from Ludovic Courtès <ludovic.courtes@laas.fr>.
2929 ** Update gnulib files.
2931 ** API and ABI modifications:
2932 No changes since last version.
2934 * Version 1.7.13 (released 2007-06-11)
2936 ** OpenCDK copy updated to version 0.6.3.
2938 ** Build fixes for GnuTLS Guile bindings.
2939 Patch from Ludovic Courtès <ludovic.courtes@laas.fr>.
2941 ** Build fix for GTK-DOC manual.
2943 ** Update gnulib files.
2945 ** API and ABI modifications:
2946 No changes since last version.
2948 * Version 1.7.12 (released 2007-06-08)
2950 ** Guile bindings for GnuTLS have been included.
2951 Contributed by Ludovic Courtès <ludovic.courtes@laas.fr>. There is a
2952 new chapter 'Guile Bindings' in the manual.
2954 ** Have PKCS8 parser return better error codes.
2955 Reported by Nate Nielsen <nielsen-list@memberwebs.com>, see
2956 <http://lists.gnupg.org/pipermail/gnutls-dev/2007-May/001653.html> and
2957 <http://lists.gnupg.org/pipermail/gnutls-dev/2007-May/001654.html>.
2959 ** Fix mem leak for sessions with client authentication via certificates.
2960 Reported by Andrew W. Nosenko <andrew.w.nosenko@gmail.com>, see
2961 <http://lists.gnupg.org/pipermail/gnutls-dev/2007-April/001539.html>.
2964 Reported by Dennis Vshivkov <walrus@amur.ru>, see
2965 <http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=333050>. Added
2966 self-test tests/parse_ca.c to test regressions.
2968 ** Fix build failures related to missing images in manual.
2969 Reported by Andreas Metzler <ametzler@downhill.at.eu.org>.
2971 ** Update gnulib files.
2973 ** API and ABI modifications:
2974 No changes since last version.
2976 * Version 1.7.11 (released 2007-05-26)
2978 ** Include opencdk.h in the release.
2979 Reported by Roman Bogorodskiy <novel@FreeBSD.org>.
2981 ** API and ABI modifications:
2982 No changes since last version.
2984 * Version 1.7.10 (released 2007-05-25)
2986 ** New API functions to extract DER encoded X.509 Subject/Issuer DN.
2987 Suggested by Nate Nielsen <nielsen-list@memberwebs.com>.
2989 ** Update of gnulib files.
2991 ** GnuTLS is now developed in GIT instead of CVS.
2992 See <http://repo.or.cz/w/gnutls.git> for a public repository.
2994 ** API and ABI modifications:
2995 gnutls_x509_crt_get_raw_issuer_dn: ADD.
2996 gnutls_x509_crt_get_raw_dn: ADD.
2998 * Version 1.7.9 (released 2007-05-12)
3000 ** X.509 certificates are preferred over OpenPGP keys.
3001 This is a change in the semantics of gnutls_set_default_priority.
3003 ** The included copy of OpenCDK has been updated to 0.6.1.
3004 There has been some API changes in OpenCDK, and the GnuTLS layer have
3005 been modified as well. Note that while there are API/ABI incompatible
3006 changes in OpenCDK, this does not influence GnuTLS's API/ABI because
3007 its API/ABI have not changed. From this version on, GnuTLS requires
3008 OpenCDK 0.6.0 or later.
3010 ** Fix build failure caused by missing doc/gnutls-logo.pdf.
3012 ** Change certtool's default serial number from 0 to a time-based value.
3014 ** Fix X.509 signing with RSA-PKCS#1 to set a NULL parameters fields.
3015 Before, we remove the parameters field, which resulted in a slightly
3016 different DER encoding which in turn caused signature verification
3017 failures of GnuTLS-generated RSA certificates in some other
3018 implementations (e.g., GnuPG 2.x's gpgsm). Depending on which RFCs
3019 you read, this may or may not be correct, but our new behaviour appear
3020 to be consistent with other widely used implementations.
3022 ** Fix mem leaks in gnutls_x509_crt_print.
3024 ** API and ABI modifications:
3025 No changes since last version.
3027 * Version 1.7.8 (released 2007-04-16)
3029 ** Added examples for the authorization extension.
3030 See doc/examples/ex-client-authz.c and doc/examples/ex-serv-authz.c.
3032 ** The examples only use gnutls_set_default_priority().
3033 The exception is when DH_ANON is needed.
3035 ** Improve gnutls_set_default_priority() priorities.
3036 The new approach is for it to try and negotiate all secure and
3037 standard mechanisms available. Currently, DH_ANON ciphersuites and
3038 LZO compressions are not enabled by default, because they are,
3039 respectively, insecure and non-standardized. Note that TLS 1.2 will
3040 not be enabled by default in non-experimental release until it has
3041 been approved by the IETF.
3043 ** gnutls-cli and gnutls-serv now uses the library's default priorities.
3044 This means that to get DH_ANON and LZO compression, you'll need to
3045 specify that manually using '--kx anon' or '--comp lzo'.
3047 ** Minor fixes to the human display format of X.509 certificates.
3049 ** New APIs to extract Distinguished Name's from X.509 certificates.
3050 Based on patch from Howard Chu <hyc@symas.com>.
3052 ** Improved library searching for opencdk.
3053 It will now add the appropriate -R or -Wl,-rpath flags as necessary.
3054 The deprecated opencdk.m4 is no longer used.
3056 ** New APIs to list supported algorithms in the library.
3057 The APIs are gnutls_cipher_list, gnutls_mac_list,
3058 gnutls_compression_list, gnutls_protocol_list,
3059 gnutls_certificate_type_list, gnutls_kx_list, and
3060 gnutls_cipher_suite_info. Suggested by Howard Chu <hyc@symas.com>.
3062 ** The gnutls_x509_crt_get_key_id API now handle non-RSA/DSA keys.
3064 ** New configure option --disable-tls-authorization to disable tls-authz.
3066 ** Fix prototype for `gnutls_psk_set_client_credentials'.
3067 The last parameter was renamed from 'flags' to 'format' and the type
3068 changed from 'unsigned int' to 'gnutls_psk_key_flags' (an enum type),
3069 which shouldn't cause any ABI changes. Reported by ludo@chbouib.org
3072 ** Fix allocation in gnutls_certificate_set_openpgp_key.
3073 Tiny patch from ludo@chbouib.org (Ludovic Courtès).
3075 ** API and ABI modifications:
3076 gnutls_x509_dn_t: ADD.
3077 gnutls_x509_ava_st: ADD.
3078 gnutls_x509_crt_get_subject,
3079 gnutls_x509_crt_get_issuer: ADD.
3080 gnutls_x509_dn_get_rdn_ava: ADD.
3081 gnutls_cipher_list: ADD.
3082 gnutls_mac_list: ADD.
3083 gnutls_compression_list: ADD.
3084 gnutls_protocol_list: ADD.
3085 gnutls_certificate_type_list: ADD.
3086 gnutls_kx_list: ADD.
3087 gnutls_cipher_suite_info: ADD.
3089 * Version 1.7.7 (released 2007-02-22)
3091 ** Support for supplemental handshake messages and authorization data.
3092 Supplemental data is described in RFC 4680 and the authorization
3093 extensions in draft-housley-tls-authz-extns-07.
3095 ** Support for authorization data in gnutls-cli and gnutls-serv.
3096 New parameters --authz-x509-attr-cert and --authz-saml-assertion.
3098 ** Fix for gnutls_x509_crt_check_hostname.
3099 Before it would have reported that the certificate matched a hostname
3100 when it did not have any dNSName or any CN field. Report and tiny
3101 patch from "Richard W.M. Jones" <rjones@redhat.com>.
3103 ** New self test for RFC 2818 comparison in gnutls_x509_crt_check_hostname.
3104 Tests regressions of the bug, and several other features.
3106 ** GnuTLS now matches URI's with IP Addresses against iPAddress SAN's.
3107 Before there were no support for iPAddress SAN's during comparison.
3109 ** New API to print information about CRL's.
3110 The function is gnutls_x509_crl_print.
3112 ** New API to extract signature value from CRL's.
3113 The function is gnutls_x509_crl_get_signature.
3115 ** Support for directoryName Subject Alternative Name's.
3116 The gnutls_x509_crt_get_subject_alt_name function returns the DN as a
3117 string in the provided buffer.
3119 ** Internal improvements to certtool.
3120 It uses gnutls_x509_crl_print to print CRL information. It uses some
3121 more gnulib modules to simplify error handling.
3123 ** API and ABI modifications:
3124 GNUTLS_HANDSHAKE_SUPPLEMENTAL: ADD, new gnutls_handshake_description_t element.
3125 gnutls_supplemental_data_format_type_t: ADD.
3126 gnutls_authz_data_format_type_t: ADD.
3127 gnutls_supplemental_get_name: ADD.
3128 gnutls_authz_recv_callback_func,
3129 gnutls_authz_send_callback_func: ADD, callback prototypes.
3130 gnutls_authz_enable: ADD.
3131 gnutls_authz_send_x509_attr_cert,
3132 gnutls_authz_send_saml_assertion,
3133 gnutls_authz_send_x509_attr_cert_url,
3134 gnutls_authz_send_saml_assertion_url: ADD.
3135 GNUTLS_SAN_DN: ADD, new gnutls_x509_subject_alt_name_t element.
3136 gnutls_x509_crl_print: ADD.
3137 gnutls_x509_crl_get_signature: ADD.
3139 * Version 1.7.6 (released 2007-02-12)
3141 ** Support for 'otherName' Subject Alternative Names.
3142 The existing API gnutls_x509_crt_get_subject_alt_name may now return
3143 the new type GNUTLS_SAN_OTHERNAME together with the otherName value.
3144 To find out the otherName OID (necessary for proper parsing of the
3145 value), use the new API gnutls_x509_crt_get_subject_alt_othername_oid.
3146 For known OIDs, gnutls_x509_crt_get_subject_alt_othername_oid will
3147 return "virtual" SAN values, e.g., GNUTLS_SAN_OTHERNAME_XMPP to
3148 simplify OID matching. Suggested by Matthias Wimmer <m@tthias.eu>.
3150 ** Certtool can print otherName SAN values for certificates.
3151 For known otherName OIDs (currently only id-on-xmppAddr as defined by
3152 RFC 3920), it will also print the name.
3154 ** Fix TLS 1.2 RSA signing in servers.
3155 Before it used the old-style MD5+SHA1 signature, but the TLS
3156 signatures should be normal PKCS#1 signatures. FYI, we use and
3157 require that DigestInfo parameters are present and NULL for TLS 1.2.
3159 ** Add APIs to access X.509 extensions sequentially.
3160 The existing APIs gnutls_x509_crt_get_extension_oid() and
3161 gnutls_x509_crt_get_extension_by_oid() does not permit callers to
3162 inspect the extensions in the order defined by the certificate.
3164 ** Add API to extract signature value from X.509 certificates.
3165 The function is gnutls_x509_crt_get_signature.
3167 ** Fix crash when generating proxy certificates in batch mode.
3168 If you don't specify a proxy policy in batch mode, it will use
3171 ** Add API to print information about X.509 certificates.
3172 The function is gnutls_x509_crt_print.
3174 ** Certtool uses the new API gnutls_x509_crt_print to print certificate info.
3175 One consequence of this is that the output syntax has changed
3176 slightly. Some more fields are printed.
3180 ** API and ABI modifications:
3181 gnutls_x509_crt_print: ADD
3182 gnutls_certificate_print_formats_t: ADD, new enum.
3183 gnutls_x509_crt_get_signature: ADD.
3184 gnutls_x509_crt_get_extension_data: ADD.
3185 gnutls_x509_crt_get_extension_info: ADD.
3186 gnutls_x509_crt_get_subject_alt_othername_oid: ADD.
3187 GNUTLS_SAN_OTHERNAME: ADD, new gnutls_x509_subject_alt_name_t element.
3188 GNUTLS_SAN_OTHERNAME_XMPP: ADD, new gnutls_x509_subject_alt_name_t element.
3190 * Version 1.7.5 (released 2007-02-06)
3192 ** Servers won't negotiate SRP RSA/DSS cipher suites if no SRP credential
3195 ** Default behaviour for the gnutls-cli and gnutls-serv tools improved.
3197 ** Fix --list output for gnutls-cli and gnutls-serv.
3198 Mention TLS1.2, SHA512 etc.
3200 ** Manual contains new section on setting up a test HTTP server.
3201 A server set up following those descriptions are available online via
3202 <http://www.gnutls.org/server.html>.
3204 ** Update of gnulib files.
3206 ** API and ABI modifications:
3207 No changes since last version.
3209 * Version 1.7.4 (released 2007-02-05)
3211 ** Support for RSA signing using SHA-256/384/512.
3212 A new self test "sha2" tries to build a long X.509 certificate chain
3213 testing all new hashes.
3215 ** The gnutls-serv tool now use static DH parameters if none are supplied.
3217 ** Discuss proxy certificates in the manual.
3219 ** Improve bibliographical citations in the manual.
3221 ** Update of gnulib files.
3223 ** Fix certtool template handling of pathLenConstraints.
3224 It now defaults to -1 instead of 0, which causes the field to be
3225 missing unless the template specify it.
3227 ** API and ABI modifications:
3230 GNUTLS_MAC_SHA512: New gnutls_mac_algorithm_t values.
3233 GNUTLS_DIG_SHA512: New gnutls_digest_algorithm_t values.
3234 GNUTLS_SIGN_RSA_SHA256,
3235 GNUTLS_SIGN_RSA_SHA384,
3236 GNUTLS_SIGN_RSA_SHA512: New gnutls_sign_algorithm_t values.
3238 * Version 1.7.3 (released 2007-02-01)
3240 ** New option to certtool: --generate-proxy.
3241 This will generate a Proxy Certificate from an end entity certificate.
3242 Proxy Certificates are documented in RFC 3820. You will need to
3243 specify the proxy certificate's private key with --load-privkey, the
3244 user certificate with --load-certificate and the private key used to
3245 sign the new proxy certificate with --load-ca-privkey. Certtool will
3246 query for proxy path length and the policy language OID. Currently
3247 only OIDs that have an empty policy are supported (which includes the
3248 two OIDs defined by RFC 3820).
3250 ** Certtool --certificate-info now prints information for Proxy Certificates.
3251 Before the proxy extension was just printed as DER encoded data.
3253 ** New APIs to set proxy subject names and get/set proxy cert extension.
3255 ** Fix parsing of pathLenConstraints in BasicConstraints with missing cA.
3257 ** Added self-test to test for regressions of pathLenConstraint bug.
3258 Incidentally, this also test (some) other regressions or changes in
3259 the output from certtool --certificate-info.
3261 ** When certtool generates CA certificates, pressing enter on the path
3262 ** length constraint query will now remove the field.
3263 Before it set the path length constraint to 0, which is a rather poor
3266 ** Certtool now print times in UTC when printing certificate/CRL info.
3268 ** Add better fix to work around C++ compiler bug on Mac OS X.
3269 Reported and tiny patch provided by Matthias Scheler <tron@NetBSD.org>.
3271 ** Fix import of ASCII armored OpenPGP keys.
3272 Patch by ludovic.courtes@laas.fr (Ludovic Courtès).
3274 ** Update of gnulib files.
3276 ** API and ABI modifications:
3277 gnutls_x509_crt_set_proxy_dn: ADD.
3278 gnutls_x509_crt_set_proxy: ADD.
3279 gnutls_x509_crt_get_proxy: ADD.
3281 * Version 1.7.2 (released 2007-01-14)
3283 ** Certtool now print the value of the pathLenConstraints field for certs.
3285 ** Certtool now query for path length constraints when generating CA certs.
3286 For batch uses, the certtool configuration name is "path_len".
3287 Suggested by Sascha Ziemann <sascha.ziemann@secunet.com>.
3289 ** Add new API to get/set pathLenConstraint in the Basic Constraints.
3290 The new functions gnutls_x509_crt_get_basic_constraints and
3291 gnutls_x509_crt_set_basic_constraints provide a superset of the
3292 functionality in the old gnutls_x509_crt_get_ca_status and
3293 gnutls_x509_crt_set_ca_status (respectively), but the old functions
3294 will continue to be supported.
3296 ** Add new API in OpenCDK to extract public/secret OpenPGP key to S-expr.
3297 The functions are cdk_pubkey_to_sexp and cdk_seckey_to_sexp. A proper
3298 OpenCDK release with this patch will be made soon, which should bump
3299 the OpenCDK version number. Patch by Mario Lenz <mario.lenz@gmx.net>.
3301 ** Certtool --to-p12 can now store more than one certificate in the blob.
3302 Before it could only store one certificate, but now it will read and
3303 store as many certificate there are from the --load-certificate file.
3304 Suggested by Sascha Ziemann <sascha.ziemann@secunet.com>.
3306 ** Clean up separation of gnutls and gnutls-extra for OpenPGP.
3307 In particular, the OpenPGP function variables are no longer part of
3308 the exported libgnutls interface, and no header files from
3309 libgnutls-extra (GPL) are needed by libgnutls (LGPL). The variables
3310 were never intended for non-internal purposes, and thus this does not
3311 imply a change in the external API/ABI.
3313 ** Print URL to gaa when missing, and fix srcdir!=builddir for GAA files.
3314 Reported by ludovic.courtes@laas.fr (Ludovic Courtès).
3316 ** GnuTLS no longer uses -mms-bitfields --enable-runtime-pseudo-reloc.
3317 Before these parameters were set to make GnuTLS build under mingw32,
3318 however, they appear to no longer be necessary.
3320 ** A minor fix to the C++ library to make it build.
3321 Reported by Pavlov Konstantin <thresh@altlinux.ru>.
3323 ** Update of gnulib files.
3325 ** API and ABI modifications:
3326 gnutls_x509_crt_get_basic_constraints: ADD.
3327 gnutls_x509_crt_set_basic_constraints: ADD.
3328 cdk_pubkey_to_sexp: ADD (in opencdk).
3329 cdk_seckey_to_sexp: ADD (in opencdk).
3331 * Version 1.7.1 (released 2006-12-28)
3333 ** TLS 1.2 server side fix.
3334 The Certificate Request sent did not contain the list of supported
3335 hashes field, thus violating the protocol. It will now contain an
3336 empty list. Reported by ludovic.courtes@laas.fr (Ludovic Courtès).
3338 ** TLS 1.2 DSA signature verification fix.
3339 Reported by ludovic.courtes@laas.fr (Ludovic Courtès).
3341 ** Fix the list of trusted CAs that server's send to clients.
3342 Before, the list contained issuer DN's instead of subject DN's of the
3343 trusted CAs. Reported by Max Kellermann <max@duempel.org>.
3345 ** Fix gnutls_certificate_set_x509_crl to initialize the CRL before using it.
3346 Also added a self-test in tests/certificate_set_x509_crl.c to test the
3347 function. Reported by Max Kellermann <max@duempel.org>.
3349 ** Encode UID fields in DN's as DirectoryString.
3350 Before GnuTLS encoded and parsed UID fields as IA5String. This was
3351 incorrect, it should have used DirectoryString. Now it will use
3352 DirectoryString for the UID field, but for backwards compatibility it
3353 will also accept IA5String UID's. Reported by Max Kellermann
3356 ** Improve out-of-sourcedir builds from CVS.
3357 Reported by ludovic.courtes@laas.fr (Ludovic Courtès).
3359 ** Bootstrap tools changed.
3360 We now require autoconf 2.61, automake 1.10, and gettext 0.16, when
3361 building GnuTLS from CVS. Libtool 1.5.22 is used.
3363 ** Fixed a syntax error in lib/gnutls.asn.
3364 Reported by Paul Millar <p.millar@physics.gla.ac.uk>.
3366 ** Added German translation of GnuTLS messages.
3368 ** Update of gnulib files.
3370 ** API and ABI modifications:
3371 No changes since last version.
3373 * Version 1.7.0 (released 2006-11-29)
3375 ** The default protocol priority try TLS 1.1 and TLS 1.2 too.
3376 The details is that the protocol priority set by
3377 `gnutls_set_default_priority' has been changed from TLS 1.0 and SSL
3378 3.0 to TLS 1.2, TLS 1.1, TLS 1.0 and SSL 3.0.
3380 ** Preliminary support for TLS 1.2.
3381 The client has been successfully tested against
3382 https://www.mikestoolbox.org:4433/.
3384 ** Anonself test now print a lot of debugging info, including TLS version.
3386 ** Doc fixes in OpenCDK, to avoid some gtk-doc warnings.
3388 ** Update of gnulib files.
3390 ** API and ABI modifications:
3391 GNUTLS_TLS1_2: New gnutls_protocol_t enum member.
3393 *** Pulled up from stable 1.6.x branch:
3395 ** Fix ./configure failure with non-GCC compilers.
3396 This fixes the following error message:
3397 configure: error: conditional "HAVE_LD_OUTPUT_DEF" was never defined.
3398 Reported by "Michael C. Vergallen" <mvergall@telenet.be>.
3400 * Version 1.6.3 (released 2007-05-26)
3402 ** New API functions to extract DER encoded X.509 Subject/Issuer DN.
3403 Suggested by Nate Nielsen <nielsen-list@memberwebs.com>. Backported
3404 from the 1.7.x branch, see
3405 <http://lists.gnu.org/archive/html/help-gnutls/2007-05/msg00029.html>.
3407 ** Have PKCS8 parser return better error codes.
3408 Reported by Nate Nielsen <nielsen-list@memberwebs.com>, see
3409 <http://lists.gnupg.org/pipermail/gnutls-dev/2007-May/001653.html> and
3410 <http://lists.gnupg.org/pipermail/gnutls-dev/2007-May/001654.html>.
3412 ** Fix mem leak for sessions with client authentication via certificates.
3413 Reported by Andrew W. Nosenko <andrew.w.nosenko@gmail.com>, see
3414 <http://lists.gnupg.org/pipermail/gnutls-dev/2007-April/001539.html>.
3416 ** Fix building of 'tlsia' self test.
3417 Earlier some gcc are known to build tlsia linking to
3418 $prefix/lib/libgnutls-extra.so rather than the libgnutls-extra.so in
3419 the build directory, even though command line parameters look OK.
3420 Changing order of some parameters fixes it.
3422 ** API and ABI modifications:
3423 gnutls_x509_crt_get_raw_issuer_dn: ADD.
3424 gnutls_x509_crt_get_raw_dn: ADD.
3426 * Version 1.6.2 (released 2007-04-18)
3428 ** Fix X.509 signing with RSA-PKCS#1 to set a NULL parameters fields.
3429 Before, we remove the parameters field, which resulted in a slightly
3430 different DER encoding which in turn caused signature verification
3431 failures of GnuTLS-generated RSA certificates in some other
3432 implementations (e.g., GnuPG 2.x's gpgsm). Depending on which RFCs
3433 you read, this may or may not be correct, but our new behaviour appear
3434 to be consistent with other widely used implementations.
3436 ** Regenerate the PKIX ASN.1 syntax tree.
3437 For some reason, after changing the ASN.1 type of ldap-UID in the last
3438 release, the generated C file built from the ASN.1 schema was not
3439 refreshed. This can cause problems when reading/writing UID
3440 components inside X.500 Distinguished Names. Reported by devel
3441 <dev001@pas-world.com>.
3443 ** Updated translations.
3445 ** API and ABI modifications:
3446 No changes since last version.
3448 * Version 1.6.1 (released 2006-12-28)
3450 ** Fix the list of trusted CAs that server's send to clients.
3451 Before, the list contained issuer DN's instead of subject DN's of the
3452 trusted CAs. Reported by Max Kellermann <max@duempel.org>.
3454 ** Fix gnutls_certificate_set_x509_crl to initialize the CRL before using it.
3455 Reported by Max Kellermann <max@duempel.org>.
3457 ** Encode UID fields in DN's as DirectoryString.
3458 Before GnuTLS encoded and parsed UID fields as IA5String. This was
3459 incorrect, it should have used DirectoryString. Now it will use
3460 DirectoryString for the UID field, but for backwards compatibility it
3461 will also accept IA5String UID's. Reported by Max Kellermann
3464 ** Fix ./configure failure with non-GCC compilers.
3465 This fixes the following error message:
3466 configure: error: conditional "HAVE_LD_OUTPUT_DEF" was never defined.
3467 Reported by "Michael C. Vergallen" <mvergall@telenet.be>.
3469 ** API and ABI modifications:
3470 No changes since last version.
3472 * Version 1.6.0 (released 2006-11-17)
3474 ** No changes since 1.5.5.
3475 The major changes compared to the 1.4.x branch are:
3477 *** A GnuTLS C++ library is part of the official distribution.
3478 Currently there are no examples or documentation, but hopefully this
3479 will change. See gnutlsxx.h for the API.
3481 *** Windows is a supported platform.
3482 There are, however, two know bugs. One is related to select() in
3483 command line tools (not, nota bene, in the library), the other is a
3484 problem with libgcrypt that causes delays. Help is needed to resolve
3485 those issues, so we feel we can't delay the release because of this.
3487 *** New APIs for custom push/pull function error reporting.
3488 The new APIs are gnutls_transport_set_errno and
3489 gnutls_transport_set_global_errno. See the release notes for version
3490 1.5.4 for more information.
3492 *** Self tests are run under valgrind, if available. See --disable-valgrind.
3494 * Version 1.5.5 (released 2006-11-16)
3496 ** Correctly bump shared library version after adding new APIs.
3497 This was forgotten in the last release.
3499 ** Fix unsigned vs signed problem in ex-x509-info.c example.
3500 Reported by Tim Kosse <tim.kosse@filezilla-project.org>.
3502 ** Fix the rsa-md5-collision self test to work for MinGW+Wine.
3504 ** Update of gnulib files.
3506 ** API and ABI modifications:
3507 No changes since last version.
3509 * Version 1.5.4 (released 2006-11-07)
3511 ** New API functions to set errno in push/pull functions.
3512 Under Windows, setting the errno variable in a push/pull replacement
3513 may end up setting the wrong errno variable, and GnuTLS send/recv
3514 functions become confused about the real errno returned from a failed
3515 push/pull function. Therefor, we have added two APIs to set the errno
3516 variable used by GnuTLS. The APIs can also help to keep things
3517 thread-safe, by avoiding potentially global variables. Typically,
3518 instead of setting errno in your push/pull function, you will call one
3519 of these functions. It is recommended to use
3520 gnutls_transport_set_errno, but if you don't have the session variable
3521 easily accessible in the push/pull replacement function, you can use
3522 gnutls_transport_set_global_errno. Suggested by Tim Kosse
3523 <tim.kosse@filezilla-project.org>.
3525 void gnutls_transport_set_errno (gnutls_session_t session, int err);
3526 void gnutls_transport_set_global_errno (int err);
3528 ** When calling `recv' or `send' Windows errors are handled properly.
3529 The Windows recv/send functions doesn't use errno, and GnuTLS now use
3530 WSAGetLastError to access the error condition instead.
3532 ** Several OpenPGP API fixes.
3533 All suggested by ludovic.courtes@laas.fr (Ludovic Courtès). The most
3534 important fix is to change the return value of
3535 gnutls_openpgp_privkey_get_pk_algorithm and
3536 gnutls_openpgp_key_get_pk_algorithm from 'int' to
3537 'gnutls_pk_algorithm_t', which is an enum type (and thus API/ABI
3538 compatible with 'int').
3540 ** When a GnuTLS server receive a SSLv2 Client Hello for an unknown TLS
3541 ** version, try to negotiate the highest version support by the GnuTLS server,
3542 ** instead of the lowest.
3543 Reported by <Pasi.Eronen@nokia.com>.
3545 ** Replace old constructs with use of gnulib modules.
3546 For example, we can now assume unistd.h, sys/stat.h, sys/socket.h in
3547 the code. If the headers doesn't exist on the target system, gnulib
3548 will make sure its replacement header files are used instead.
3550 ** Fix SOVERSION computation for *.def files.
3551 This fixes build errors similar to "No rule to make target
3552 `libgnutls-`expr', needed by `all-am'." when building for Windows.
3554 ** gnutls_check-version uses strverscmp from gnulib.
3556 ** Update of gnulib files.
3558 ** API and ABI modifications:
3559 gnutls_transport_set_errno: ADD
3560 gnutls_transport_set_global_errno: ADD
3562 * Version 1.5.3 (released 2006-10-26)
3564 ** Add new self-test of RSA-MD5 signature chains.
3565 Note that we already, since GnuTLS 1.2.9, reject RSA-MD5 signatures
3566 when verifying X.509 chains. The code is in tests/rsa-md5-collision/
3567 and is based on the work by Marc Stevens et al, see
3568 <http://www.win.tue.nl/hashclash/TargetCollidingCertificates/>.
3570 ** Re-factor self tests.
3572 ** The include copy of Libtasn1 is updated to version 0.3.7.
3574 ** The included copy of OpenCDK is updated to version 0.5.11.
3576 ** Fix the filename of the *.def file on Windows after library version bump.
3578 ** Separated the gnulib directory into one for LGPL modules and one for GPL.
3579 This allows the GPL'd part of GnuTLS to take advantage of the GPL'd
3580 gnulib modules. Earlier we could only use the LGPL'ed module from
3581 gnulib, because two gnulib directories in the same project didn't
3584 ** API and ABI modifications:
3585 No changes since last version.
3587 * Version 1.5.2 (released 2006-10-03)
3589 ** Decrement the shared library version back to 13 (as in the 1.4.x branch).
3590 Note that if you installed 1.5.0 or 1.5.1, they will have a higher
3591 shared library version than this version, so you'll have to remove
3592 them and possibly relink your applications. The reason for this is
3593 that no API/ABI changes have been made since the 1.4.x branch, and
3594 that incrementing the shared library version was a mistake. Reported
3595 by Andreas Metzler <ametzler@downhill.at.eu.org>.
3597 ** Fix off-by-one error when computing length to malloc.
3598 The code is used by gnutls_openpgp_add_keyring_file and
3599 gnutls_openpgp_add_keyring_mem. Reported by "Adam Langley"
3600 <agl@imperialviolet.org>.
3602 ** Add version script for the GnuTLS C++ library.
3603 Reported by Andreas Metzler <ametzler@downhill.at.eu.org>.
3605 ** Fix the C++ compiler detection logic.
3606 Reported by Andreas Metzler <ametzler@downhill.at.eu.org>.
3608 ** Update of gnulib files.
3610 ** API and ABI modifications:
3611 No changes since last version.
3613 * Version 1.5.1 (released 2006-09-21)
3615 ** Fix PKCS#1 verification to avoid a variant of Bleichenbacher's
3616 ** Crypto 06 rump session attack.
3617 In particular, we check that the digestAlgorithm.parameters field is
3618 missing or empty, to avoid that it can contain "garbage" that may be
3619 used to alter the numeric properties of the signature. See
3620 <http://www.imc.org/ietf-openpgp/mail-archive/msg14307.html> (which is
3621 not exactly the same as the problem we fix here). Reported by Yutaka
3622 OIWA <y.oiwa@aist.go.jp>.
3624 See GNUTLS-SA-2006-4 on http://www.gnutls.org/security.html for more
3625 up to date information.
3627 ** Add self test to test for above flaw.
3629 ** Fix gnutls-cli-debug regarding resume support detection.
3630 Earlier, if the session-id from the server had a length of 0, it would
3631 indicate that the server supports resumption, which isn't the case.
3632 Reported by Kataja Kai <kai.kataja@op.fi>.
3634 ** Fix building of examples on FreeBSD by including netinet/in.h.
3635 Reported by Roman Bogorodskiy <novel@FreeBSD.org>.
3637 ** Fix certtool bug that caused the private key to not be loaded when
3638 generating a certificate with --load-request, which in turn triggered
3639 another unrelated bug in gnutls_x509_crt_sign2 (also fixed). Reported
3640 by Sascha Ziemann <sascha.ziemann@secunet.com>.
3642 ** gnutls-cli and gnutls-serv works on Windows.
3643 The problem was the select() call that doesn't work on file
3644 descriptors (stdin) on Windows. We borrowed some code from plibc to
3645 solve this. It appears to be somewhat unreliable though.
3647 ** Autoconf 2.60 is now used.
3649 ** API and ABI modifications:
3650 No changes since last version.
3652 * Version 1.5.0 (released 2006-08-13)
3654 ** Change SRP and Cert-Type extensions to match IANA registry.
3656 ** Fixed bug in OpenPGP authentication handshake.
3658 ** Improvements for building under MinGW.
3659 Provides internal inet_ntop and inet_pton functions and arpa/inet.h
3660 header. Calls WSAStartup and WSACleanup in gnutls_global_init and
3661 gnutls_global_deinit, respectively. Loads getaddrinfo and getnameinfo
3662 at run-time from ws2_32.dll, and falls back on a simple replacement if
3663 it is not available. Builds the library with -mms-bitfields
3664 -Wl,--enable-runtime-pseudo-reloc. Links with --output-def, to
3665 create *.def files, which are installed.
3667 ** The examples now (conditionally) include config.h and link to gnulib.
3668 No other source changes were necessary, so the examples should
3669 continue to be possible to use stand-alone without any autoconf or
3672 ** Added C++ header "gnutlsxx.h" and library "libgnutlsxx".
3673 You may unconditionally disable it with --disable-cxx. See
3674 includes/gnutls/gnutlsxx.h and lib/gnutlsxx.cpp for the
3677 ** Made command line tool '--version' behave according to GNU Standards.
3678 This enables 'make distcheck' to succeed.
3680 ** OpenCDK updated to 0.5.9 to fix some problems with OpenPGP support.
3682 ** Make --without-included-libtasn1 work.
3683 Reported by Daniel Black <dragonheart@gentoo.org>.
3685 ** Fix a crash (strcmp() on a NULL value) in the certificate verification logic.
3686 See http://www.gnu.org/software/gnutls/security.html regardging
3687 GNUTLS-SA-2006-2 for more up to date information. Reported by
3688 satyakumar <satyam_kkd@hyd.hellosoft.com>.
3690 ** API and ABI modifications:
3691 No changes since last version.
3693 * Version 1.4.5 (released 2006-11-06)
3695 ** When a GnuTLS server receive a SSLv2 Client Hello for an unknown TLS
3696 ** version, try to negotiate the highest version support by the GnuTLS server,
3697 ** instead of the lowest.
3698 Reported by <Pasi.Eronen@nokia.com>.
3700 ** Fix typo in doc/examples/ex-serv-pgp.c.
3701 Reported by Adam Langley" <agl@imperialviolet.org>.
3703 ** API and ABI modifications:
3704 No changes since last version.
3706 * Version 1.4.4 (released 2006-09-12)
3708 ** Relax the test that caught signatures that exploit the variant of
3709 ** Bleichenbacher's Crypto 06 rump session attack on our
3710 ** verification logic flaw.
3711 In particular, we now permit the digestAlgorithm.parameters field to
3712 be present but empty, whereas in 1.4.3 we actually checked that the
3715 ** Revert the removal of debug information for the GNUTLS-SA-2006-3 problem.
3716 The messages are only printed in debug mode, which is not recommended
3717 for normal use, and thus logging this situation cannot be abused as an
3718 oracle in typical recommended situations.
3720 ** API and ABI modifications:
3721 No changes since last version.
3723 * Version 1.4.3 (released 2006-09-08)
3725 ** Fix PKCS#1 verification to avoid a variant of Bleichenbacher's
3726 ** Crypto 06 rump session attack.
3727 In particular, we check that the digestAlgorithm.parameters field is
3728 empty, to avoid that it can contain "garbage" that may be used to
3729 alter the numeric properties of the signature. See
3730 <http://www.imc.org/ietf-openpgp/mail-archive/msg14307.html> (which is
3731 not exactly the same as the problem we fix here). Reported by Yutaka
3732 OIWA <y.oiwa@aist.go.jp>.
3734 See GNUTLS-SA-2006-4 on http://www.gnutls.org/security.html for more
3735 up to date information.
3737 ** Fix PKCS#1 decryption to avoid Bleichenbacher's Crypto 98 attack.
3738 See <http://www.bell-labs.com/user/bleichen/papers/pkcs.ps.gz>.
3739 Reported by Werner Koch <wk@gnupg.org>.
3741 See GNUTLS-SA-2006-3 on http://www.gnutls.org/security.html for more
3742 up to date information.
3744 ** Fix crash in gnutls_x509_crt_sign2 if passed a NULL issuer_key.
3746 ** API and ABI modifications:
3747 No changes since last version.
3749 * Version 1.4.2 (released 2006-08-12)
3751 ** Fix a crash (strcmp() on a NULL value) in the certificate verification logic.
3752 This can happen if you call gnutls_certificate_verify_peers2 and have
3753 a certain mix of local CA certificates and the peer send special
3754 certificates, that together trigger certain behaviour. It is not
3755 known at this point whether the crash can be triggered without the
3756 special local CA certificate, and thus turn this into a remote crash
3757 of clients that verify server certificates when they talk to a server
3758 with the special server certificate. See GNUTLS-SA-2006-2 on
3759 http://www.gnu.org/software/gnutls/security.html for more up to date
3760 information. Reported by satyakumar <satyam_kkd@hyd.hellosoft.com>.
3762 ** Change SRP and Cert-Type extensions to match IANA registry.
3764 ** OpenCDK updated to 0.5.9 to fix some problems with OpenPGP support.
3766 ** Make --without-included-libtasn1 work.
3767 Reported by Daniel Black <dragonheart@gentoo.org>.
3769 ** API and ABI modifications:
3770 No changes since last version.
3772 * Version 1.4.1 (released 2006-06-14)
3774 ** Replaced inactive ifdefs to enable openpgp support in test programs.
3776 ** Fixed bug in OpenPGP authentication handshake.
3778 ** Fixed typographical in man pages.
3780 ** Build fixes of the manual.
3782 ** Added Swedish translation.
3784 ** API and ABI modifications:
3785 No changes since last version.
3787 * Version 1.4.0 (released 2006-05-15)
3789 ** Remove GnuTLS 0.8.x compatibility functions.
3791 ** The libgcrypt RNG is initialized in gnutls_global_init().
3793 ** TLS/IA API changes from Emile van Bergen.
3794 A dummy credential structure is not needed now, if you wish to use the
3795 low-level TLS/IA API, simply call gnutls_ia_enable to enable TLS/IA on
3798 ** The self-tests are now run under valgrind, if it is installed.
3800 ** Libtasn1 is updated to 0.3.4, and that version is now required.
3802 ** The command line tools now use getaddrinfo and support IPv6.
3804 ** API and ABI modifications:
3805 _gnutls_x509_get_raw_crt_activation_time,
3806 _gnutls_x509_get_raw_crt_expiration_time: Removed.
3807 gnutls_ia_require_inner_phase: Removed, replaced by gnutls_ia_enable.
3808 gnutls_ia_enable: Added.
3810 * Version 1.3.5 (released 2006-03-08)
3812 ** Error messages are now translated using GNU Gettext.
3814 ** The function gnutls_x509_crt_to_xml now return an internal error.
3815 This means that the code to convert X.509 certificates to XML format
3816 does not work any more. The reason is that the function called
3817 libtasn1 internal functions. It seems unclean for libtasn1 to export
3818 the APIs needed here. Instead it would be better to implement XML
3819 support inside libtasn1 properly. If you need this functionality
3820 strongly, please consider looking into implementing this suggested
3821 approach instead. As a workaround, you may also modify lib/x509/xml.c
3822 (change '#if 1' to '#if 0') and build using --with-included-libtasn1.
3824 ** Libraries are now built with libtool's -no-undefined.
3825 This helps producing libraries for Windows using mingw32.
3827 ** Doc fixes to explain that gnutls_record_send can block.
3829 ** Libtasn1 0.3.1 or later is now required.
3830 The include copy has been updated too.
3832 ** gnutls-cli can now recognize services and port numbers with the -p option.
3834 ** API and ABI modifications:
3835 No changes since last version.
3837 * Version 1.3.4 (released 2006-02-09)
3839 ** Fix read of out bounds bug in DER parser.
3840 Reported by Evgeny Legerov <admin@gleg.net>, and debugging help from
3841 Protover SSL. Libtasn1 0.2.18 is now required, which contains the
3842 previous bug fix. The included libtasn1 version in GnuTLS has been
3845 ** Fixed bug in non-blocking gnutls_bye(). gnutls_record_send() will no
3846 longer invalidate a session if the underlying send fails, but it will
3847 prevent future writes. That is to allow reading the already received data.
3848 Patches and bug reports by Yoann Vandoorselaere <yoann@prelude-ids.org>
3850 ** Corrected bugs in gnutls_certificate_set_x509_crl() and
3851 gnutls_certificate_set_x509_trust(), that caused memory corruption if
3852 more than one certificates were added. Report and patch by Max Kellermann.
3854 ** Fix build problems of OpenCDK on AIX.
3855 Thanks to "Heiden, John" <JHeiden@UTNet.UToledo.Edu>.
3857 ** API and ABI modifications:
3858 No changes since last version.
3860 * Version 1.3.3 (released 2006-01-12)
3862 ** New API to access the TLS master secret.
3863 When possible, you should use the TLS PRF functions instead.
3864 Suggested by Jouni Malinen <jkmaline@cc.hut.fi>.
3866 ** Improved handling when multiple libraries use GnuTLS at the same time.
3867 Now gnutls_global_init() can be called multiple times, and
3868 gnutls_global_deinit() will only deallocate the structure when it has
3869 been called as many times as gnutls_global_init() was called.
3871 ** Added a self test of TLS resume functionality.
3873 ** Fix crash in TLS resume code, caused by TLS/IA changes.
3875 ** Documentation fixes about thread unsafety, prompted by
3876 ** discussion with bryanh@giraffe-data.com (Bryan Henderson).
3877 In particular, gnutls_global_init() and gnutls_global_deinit() are not
3878 thread safe. Careful callers may want to protect the call using a
3879 mutex. The problem could also be ignored, which would cause a memory
3880 leak under rare conditions when two threads invoke the function
3881 roughly at the same time.
3883 ** Add 'const' keywords in various places, from Frediano ZIGLIO.
3885 ** The code was indented again, including the external header files.
3887 ** API and ABI modifications:
3888 New functions to retrieve the master secret value:
3889 gnutls_session_get_master_secret
3891 Add a 'const' keyword to existing API:
3892 gnutls_x509_crq_get_challenge_password
3894 * Version 1.3.2 (released 2005-12-15)
3896 ** GnuTLS now support TLS Inner application (TLS/IA).
3897 This is per draft-funk-tls-inner-application-extension-01. This
3898 functionality is added to libgnutls-extra, so it is licensed under the
3899 GNU General Public License.
3901 ** New APIs to access the TLS Pseudo-Random-Function (PRF).
3902 The PRF is used by some protocols building on TLS, such as EAP-PEAP
3903 and EAP-TTLS. One function to access the raw PRF and one to access
3904 the PRF seeded with the client/server random fields are provided.
3905 Suggested by Jouni Malinen <jkmaline@cc.hut.fi>.
3907 ** New APIs to acceess the client and server random fields in a session.
3908 These fields can be useful by protocols using TLS. Note that these
3909 fields are typically used as input to the TLS PRF, and if this is your
3910 intended use, you should use the TLS PRF API that use the
3911 client/server random field directly. Suggested by Jouni Malinen
3912 <jkmaline@cc.hut.fi>.
3914 ** Internal type cleanups.
3915 The uint8, uint16, uint32 types have been replaced by uint8_t,
3916 uint16_t, uint32_t. Gnulib is used to guarantee the presence of
3917 correct types on platforms that lack them. The uint type have been
3918 replaced by unsigned.
3920 ** API and ABI modifications:
3921 New functions to invoke the TLS Pseudo-Random-Function (PRF):
3925 New functions to retrieve the session's client and server random values:
3926 gnutls_session_get_server_random
3927 gnutls_session_get_client_random
3929 New function, to perform TLS/IA handshake:
3932 New function to decide whether to do a TLS/IA handshake:
3933 gnutls_ia_handshake_p
3935 New functions to allocate a TLS/IA credential:
3936 gnutls_ia_allocate_client_credentials
3937 gnutls_ia_free_client_credentials
3938 gnutls_ia_allocate_server_credentials
3939 gnutls_ia_free_server_credentials
3941 New functions to handle the AVP callback:
3942 gnutls_ia_set_client_avp_function
3943 gnutls_ia_set_client_avp_ptr
3944 gnutls_ia_get_client_avp_ptr
3945 gnutls_ia_set_server_avp_function
3946 gnutls_ia_set_server_avp_ptr
3947 gnutls_ia_get_server_avp_ptr
3949 New functions, to toggle TLS/IA application phases:
3950 gnutls_ia_require_inner_phase
3952 New function to mix session keys with inner secret:
3953 gnutls_ia_permute_inner_secret
3955 Low-level API (used internally by gnutls_ia_handshake):
3956 gnutls_ia_endphase_send
3960 New functions that can be used after successful TLS/IA negotiation:
3961 gnutls_ia_generate_challenge
3962 gnutls_ia_extract_inner_secret
3964 Enum type with TLS/IA modes:
3967 Enum type with TLS/IA packet types:
3970 Enum values for TLS/IA alerts:
3971 GNUTLS_A_INNER_APPLICATION_FAILURE
3972 GNUTLS_A_INNER_APPLICATION_VERIFICATION
3974 New error codes, to signal when an application phase has finished:
3975 GNUTLS_E_WARNING_IA_IPHF_RECEIVED
3976 GNUTLS_E_WARNING_IA_FPHF_RECEIVED
3978 New error code to signal TLS/IA verify failure:
3979 GNUTLS_E_IA_VERIFY_FAILED
3981 * Version 1.3.1 (released 2005-12-08)
3983 ** Support for DHE-PSK cipher suites has been added.
3984 This method offers perfect forward secrecy.
3986 ** Fix gnutls-cli STARTTLS hang when SIGINT is sent too quickly, thanks to
3987 Otto Maddox <ottomaddox@fastmail.fm> and Nozomu Ando <nand@mac.com>.
3989 ** Corrected a bug in certtool for 64 bit machines. Reported
3990 by Max Kellermann <max@duempel.org>.
3992 ** New function to set a X.509 private key and certificate pairs, and/or
3993 CRLs, from an PKCS#12 file, suggested by Emile van Bergen
3994 <emile@e-advies.nl>.
3996 The integrity of the PKCS#12 file is protected through a password
3997 based MAC; public-key based signatures for integrity protection are
3998 not supported. PKCS#12 bags may be encrypted using password derived
3999 symmetric keys, public-key based encryption is not supported. The
4000 PKCS#8 keys may be encrypted using passwords. The API use the same
4001 password for all operations. We believe that any more flexibility
4002 create too much complexity that would hurt overall security, but may
4003 add more PKCS#12 related APIs if real-world experience indicate
4006 ** gnutls_x509_privkey_import_pkcs8 now accept unencrypted PEM PKCS#8 keys,
4007 reported by Emile van Bergen <emile@e-advies.nl>.
4008 This will enable "certtool -k -8" to parse those keys.
4010 ** Certtool now generate keys in unencrypted PKCS#8 format for empty passwords.
4011 Use "certtool -p -8" and press press enter at the prompt. Earlier,
4012 certtool would have encrypted the key using an empty password.
4014 ** Certtool now accept --password for --key-info and encrypted PKCS#8 keys.
4015 Earlier it would have prompted the user for it, even if --password was
4018 ** Added self test of PKCS#8 parsing.
4019 Unencrypted and encrypted (pbeWithSHAAnd3-KeyTripleDES-CBC and
4020 pbeWithSHAAnd40BitRC2-CBC) formats are tested. The test is in
4023 ** API and ABI modifications:
4024 New function to set X.509 credentials from a PKCS#12 file:
4025 gnutls_certificate_set_x509_simple_pkcs12_file
4027 New gnutls_kx_algorithm_t enum type:
4030 New API to return session data (basically same as gnutls_session_get_data):
4031 gnutls_session_get_data2
4033 New API to set PSK Diffie-Hellman parameters:
4034 gnutls_psk_set_server_dh_params
4036 * Version 1.3.0 (2005-11-15)
4038 ** Support for TLS Pre-Shared Key (TLS-PSK) ciphersuites have been added.
4039 This add several new APIs, see below. Read the updated manual for
4040 more information. A new self test "pskself" has been added, that will
4041 test this functionality.
4043 ** The session resumption data are now system independent.
4045 ** The code has been re-indented to conform to the GNU coding style.
4047 ** Removed the RIPEMD ciphersuites.
4049 ** Added a discussion of the internals of gnutls in manual.
4051 ** Fixes for Tru64 UNIX 4.0D that lack MAP_FAILED, from Albert Chin.
4053 ** Remove trailing comma in enums, for IBM C v6, from Albert Chin.
4055 ** Make sure config.h is included first in a few files, from Albert Chin.
4057 ** Don't use C++ comments ("//") as they are invalid, from Albert Chin.
4059 ** Don't install SRP programs and man pages if --disable-srp-authentication,
4062 ** API and ABI modifications:
4063 New gnutls_kx_algorithm_t key exchange type: GNUTLS_KX_PSK
4065 New gnutls_credentials_type_t credential type:
4068 New credential types:
4069 gnutls_psk_server_credentials_t
4070 gnutls_psk_client_credentials_t
4072 New functions to allocate PSK credentials:
4073 gnutls_psk_allocate_client_credentials
4074 gnutls_psk_free_client_credentials
4075 gnutls_psk_free_server_credentials
4076 gnutls_psk_allocate_server_credentials
4078 New enum type for PSK key flags:
4079 gnutls_psk_key_flags
4081 New function prototypes for credential callback:
4082 gnutls_psk_client_credentials_function
4083 gnutls_psk_server_credentials_function
4085 New function to set PSK username and key:
4086 gnutls_psk_set_client_credentials
4088 New function to set PSK passwd file:
4089 gnutls_psk_set_server_credentials_file
4091 New function to extract PSK user in server:
4092 gnutls_psk_server_get_username
4094 New functions to set PSK callback:
4095 gnutls_psk_set_server_credentials_function
4096 gnutls_psk_set_client_credentials_function
4098 Use size_t instead of int for output size parameter:
4099 gnutls_srp_base64_encode
4100 gnutls_srp_base64_decode
4102 * Version 1.2.11 (2006-05-11)
4103 - The function gnutls_x509_crt_to_xml is not supported any more, and
4104 return an internal error. The reason is that the function called
4105 internal libtasn1 functions which are no longer exported from
4107 - Updated libtasn1 requirement to 0.3.4 and refreshed internal mintiasn1.
4108 - Updated gnulib compatibility files.
4109 - Fixed _gnutls_x509_get_raw_crt_expiration_time and
4110 _gnutls_x509_get_raw_crt_activation_time to return (time_t)-1 on errors.
4111 - API and ABI modifications:
4112 No changes since last version.
4114 * Version 1.2.10 (2006-02-09)
4115 - Fix read out bounds bug in DER parser. Reported by Evgeny Legerov
4116 <admin@gleg.net>, and debugging help from Protover SSL.
4117 - Libtasn1 0.2.18 is now required (contains the previous bug fix).
4118 The included version has been updated too.
4119 - Fix gnutls-cli STARTTLS hang when SIGINT is sent too quickly, thanks to
4120 Otto Maddox <ottomaddox@fastmail.fm> and Nozomu Ando <nand@mac.com>.
4121 - Corrected a bug in certtool for 64 bit machines. Reported
4122 by Max Kellermann <max@duempel.org>.
4123 - Corrected bugs in gnutls_certificate_set_x509_crl() and
4124 gnutls_certificate_set_x509_trust(), that caused memory corruption if
4125 more than one certificates were added. Report and patch by Max Kellermann.
4126 - Fixed bug in non-blocking gnutls_bye(). gnutls_record_send() will no
4127 longer invalidate a session if the underlying send fails, but it will
4128 prevent future writes. That is to allow reading the already received data.
4129 Patches and bug reports by Yoann Vandoorselaere <yoann@prelude-ids.org>
4131 * Version 1.2.9 (2005-11-07)
4132 - Documentation was updated and improved.
4133 - RSA-MD2 is now supported for verifying digital signatures.
4134 - Due to cryptographic advances, verifying untrusted X.509
4135 certificates signed with RSA-MD2 or RSA-MD5 will now fail with a
4136 GNUTLS_CERT_INSECURE_ALGORITHM verification output. For
4137 applications that must remain interoperable, you can use the
4138 GNUTLS_VERIFY_ALLOW_SIGN_RSA_MD2 or GNUTLS_VERIFY_ALLOW_SIGN_RSA_MD5
4139 flags when verifying certificates. Naturally, this is not
4140 recommended default behaviour for applications. To enable the
4141 broken algorithms, call gnutls_certificate_set_verify_flags with the
4142 proper flag, to change the verification mode used by
4143 gnutls_certificate_verify_peers2.
4144 - Make it possible to send empty data through gnutls_record_send,
4145 to align with the send(2) API.
4146 - Some changes in the certificate receiving part of handshake to prevent
4147 some possible errors with non-blocking servers.
4148 - Added numeric version symbols to permit simple CPP-based feature
4149 tests, suggested by Daniel Stenberg <daniel@haxx.se>.
4150 - The (experimental) low-level crypto alternative to libgcrypt used
4151 earlier (Nettle) has been replaced with crypto code from gnulib.
4152 This leads to easier re-use of these components in other projects,
4153 leading to more review and simpler maintenance. The new configure
4154 parameter --with-builtin-crypto replace the old --with-nettle, and
4155 must be used if you wish to enable this functionality. See README
4156 under "Experimental" for more information. Internally, GnuTLS has
4157 been updated to use the new "Generic Crypto" API in gl/gc.h. The
4158 API is similar to the old crypto/gc.h, because the gnulib code were
4159 based on GnuTLS's gc.h.
4160 - Fix compiler warning in the "anonself" self test.
4161 - API and ABI modifications:
4162 gnutls_x509_crt_list_verify: Added 'const' to prototype in <gnutls/x509.h>.
4163 This doesn't reflect a change in behaviour,
4164 so we don't break backwards compatibility.
4165 GNUTLS_MAC_MD2: New gnutls_mac_algorithm_t value.
4166 GNUTLS_DIG_MD2: New gnutls_digest_algorithm_t value.
4167 GNUTLS_VERIFY_ALLOW_SIGN_RSA_MD2,
4168 GNUTLS_VERIFY_ALLOW_SIGN_RSA_MD5: New gnutls_certificate_verify_flags values.
4170 gnutls_x509_crt_list_verify,
4171 gnutls_x509_crt_verify, or
4172 gnutls_certificate_set_verify_flags.
4173 GNUTLS_CERT_INSECURE_ALGORITHM: New gnutls_certificate_status_t value,
4174 used when broken signature algorithms
4175 is used (currently RSA-MD2/MD5).
4176 LIBGNUTLS_VERSION_MAJOR,
4177 LIBGNUTLS_VERSION_MINOR,
4178 LIBGNUTLS_VERSION_PATCH,
4179 LIBGNUTLS_VERSION_NUMBER: New CPP symbols, indicating the GnuTLS
4180 version number, can be used for feature existence
4183 * Version 1.2.8 (2005-10-07)
4184 - Libgcrypt 1.2.2 is required to fix a bug for forking GnuTLS servers.
4185 - Don't install the auxilliary libexamples library used by the
4186 examples in doc/examples/ on "make install", report and tiny patch
4187 from Thomas Klausner <tk@giga.or.at>.
4188 - If you pass a X.509 CA or PGP trust database to the command line
4189 tool, it will now abort the connection if the server certificate
4190 validation fails. Use the parameter --insecure to continue even
4191 after certificate validation failures. Inspired from discussion
4192 with Alexander Kotelnikov <sacha@myxomop.com>.
4193 - The test for socklen_t has been moved to gnulib.
4194 - Link failures for duplicate or missing "program_name" symbol has been fixed,
4195 patch from Martin Lambers <marlam@marlam.de>.
4196 - The command line tool and the examples no longer uses mmap or bzero,
4197 to make them more portable, patch from Martin Lambers
4199 - Made the PKCS #12 API handle null passwords. Based on patch by
4200 Anton Altaparmakov <aia21@cam.ac.uk>.
4201 - The GTK-DOC manual should build with current released tools.
4202 (But a copy of the output is included, so the tools are not required.)
4203 - The inet_ntop function is now used through gnulib.
4204 - API and ABI modifications:
4205 No changes since last version.
4207 * Version 1.2.7 (2005-09-09)
4208 - The GNUTLS and GNUTLS-EXTRA libraries are now built with versioned symbols.
4209 - Certtool now complains when reading out-of-range X.509 serial
4210 numbers, suggested by Fran <e_agf@yahoo.es>.
4211 - Certtool now uses the readline library (when available) when reading
4212 X.509 serial numbers.
4213 - Fixed build problems in getpass on uClibc and Mingw32 platforms.
4214 - Fixed compile warning regarding socklen_t on Mingw32, reported by
4215 Martin Lambers <marlam@marlam.de>.
4216 - Fixed examples in doc/examples/, suggested by Fran <e_agf@yahoo.es>.
4217 - Gnulib is now used for the core library, enabling future code cleanups.
4218 - The gnutls-cli tool now use gnutls_certificate_verify_peers2,
4219 suggested by Daniel Stenberg <daniel@haxx.se>.
4220 - Doc fixes for gnutls_transport_set_push and gnutls_transport_set_pull.
4221 - Minilibtasn1 is now 0.2.17 (removed optional use of C99 macros).
4222 - Disable zlib support if zlib.h is not present.
4223 - A number of internal cleanups.
4224 - API and ABI modifications:
4225 No changes since last version.
4227 * Version 1.2.6 (2005-07-16)
4228 - MiniLZO updated to version 2.01 and moved to separate directory.
4229 - Collision between system LZO header files and MiniLZO header file
4230 fixed, reported by Matthias Urlichs <smurf@smurf.noris.de>.
4231 - Will now test for liblzo functionality in liblzo2 too, reported by
4232 Thomas Klausner <tk@giga.or.at>.
4233 - Minilibtasn1 is now 0.2.14 (no code changes).
4234 - Some code changes to avoid GTK-DOC warnings.
4235 - API and ABI modifications:
4236 No changes since last version.
4238 * Version 1.2.5 (2005-07-03)
4239 - More builddir != srcdir fixes, reported by Mike Castle
4240 <dalgoda@ix.netcom.com>.
4241 - Fixed off-by-one bug in the size parameter of gnutls_x509_crt_get*_dn,
4242 reported by Adam Langley <alangley@gmail.com>.
4243 - Corrected some stuff in minilzo detection. Pointed out by
4245 - MiniLZO updated to version 2.00.
4246 - gnutls_x509_crt_list_import now accept a DER formatted CRL.
4247 - API and ABI modifications:
4248 No changes since last version.
4250 * Version 1.2.4 (2005-05-28)
4251 - Corrected some bugs that could affect 64 bit systems.
4252 - Some corrections in the header files to include the prototype
4253 of memmem properly (affected 64 bit systems). Report and patch
4254 by Yoann Vandoorselaere <yoann@prelude-ids.org>.
4255 - Introduced the --fix-key option to certtool, which can be used to
4256 regenerate the (optional) parameters in a private key. It should
4257 be used together with --key-info.
4258 - Corrected a bug in certificate chain verification that could lead
4259 to marking a trusted chain as non trusted, if the last certificate in
4260 the chain was a self signed one.
4261 - Gnulib portability files were updated.
4262 - License were updated to reflect new FSF address.
4263 - API and ABI modifications:
4264 No changes since last version.
4266 * Version 1.2.3 (2005-04-28)
4267 - Corrected bug in record packet parsing that could lead
4268 to a denial of service attack.
4269 - Corrected bug in RSA key export. Previously exported keys
4270 can be fixed using certtool. Use certtool -k <infile >outfile
4271 - API and ABI modifications:
4272 gnutls_x509_privkey_fix(): Add.
4274 * Version 1.2.2 (2005-04-25)
4275 - gnutls_error_to_alert() now considers
4276 GNUTLS_E_UNEXPECTED_HANDSHAKE_PACKET.
4277 - Fixed error in session resuming that could cause a crash in a session.
4278 - Fixed pkcs12 friendly name and local key identifier decoding.
4279 - Internal cleanups, removed duplicate typedef/struct definitions,
4280 and made source code include external include file, to check
4281 function prototypes during compile time.
4282 - API and ABI modifications:
4283 No changes since last version. At least not intentional, but due
4284 to the include header changes, there may be inadvertant changes,
4285 please let us know if you find any.
4287 * Version 1.2.1 (2005-04-04)
4288 - gnutls_bye() will no longer fail when RDWR is used and application
4289 data are available for reading.
4290 - Added more strict checks for the SRP parameters (g,n), when they
4291 are not in the included list.
4292 - Added warning to certtool when MD5 is being used for digital
4294 - Optimizations ("-O2 -finline-functions") are not enabled by default,
4295 instead the standard autoconf defaults are used. Use `./configure
4296 CFLAGS="-O2 -finline-functions"' to get the old optimizations.
4297 - Added the option --get-dh-params to certtool, in order to get the
4298 parameters included in the library primes and generators.
4299 - Improved the semantics of GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT, to
4300 allow only trusted Version 1 CAs and introduced
4301 GNUTLS_VERIFY_ALLOW_ANY_X509_V1_CA_CRT which has the old semantics.
4302 - Nettle self tests now build properly, reported by Pierre
4303 <pierre42d@9online.fr>.
4304 - Eliminated some memory leaks in DHE and RSA-EXPORT cipher suites.
4305 Reported by Yoann Vandoorselaere <yoann@prelude-ids.org>.
4306 - If the library has been compiled with features disabled, a warning is
4307 issued during the compilation of any program.
4308 - API and ABI modifications:
4309 gnutls_x509_crt_list_import(): Add
4310 gnutls_x509_crq_get_attribute_by_oid(): Add.
4311 gnutls_x509_crq_set_attribute_by_oid(): Add
4312 gnutls_x509_crt_set_extension_by_oid(): Add.
4313 GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT: Modify semantics.
4314 GNUTLS_VERIFY_ALLOW_ANY_X509_V1_CA_CRT: Add, old behaviour.
4316 * Version 1.2.0 (2005-01-27)
4317 - Added the definitions and OIDs for the RIPEMD-160 hash algorithm.
4318 - Introduced gnutls_x509_crt_sign2(), gnutls_x509_crq_sign2() and
4319 gnutls_x509_crl_sign2().
4320 - Fixed license header in source code files.
4322 * Version 1.1.23 (2005-01-18)
4323 - It is now possible to generate PKCS#12 structures without private
4324 keys using "certtool --to-p12", suggested by Fabian Fagerholm
4326 - Certtool now prints information for the RSA and DSA parameters of
4327 certificates and private keys.
4328 - Corrected the write of CRL distribution points.
4329 - The certificate chain verification function now checks certificates
4330 in the reverse order to minimize the spent resources.
4331 - Corrected several bugs found by Marcin Garski <mgarski@post.pl>
4332 - The functions gnutls_x509_crl_get_issuer_dn, gnutls_x509_crq_get_dn,
4333 gnutls_x509_crt_get_issuer_dn, gnutls_x509_crt_get_dn, and
4334 gnutls_x509_rdn_get now set *sizeof_buf to the buffer length that is
4335 required, instead of the string length. That is, the value has been
4336 incremented by 1 to account for the terminating zero. Reported by
4337 Martin Lambers <marlam@web.de>.
4338 - Debug output shouldn't crash on platforms that doesn't handle NULL
4339 printf %s values. Reported by Michael.Ringe@aachen.utimaco.de.
4340 - Sync included copy of libtasn1 with version 0.2.13.
4341 - Client X.509 authenticated connections via gnutls-cli should now work again.
4343 * Version 1.1.22 (2004-11-04)
4344 - Replace GNU LD version script with Libtool -export-symbols-regex,
4345 from Joe Orton <joe@manyfish.co.uk>.
4346 - Documentation improvements.
4347 - Code indented using 'indent -i4 -kr'.
4348 - The API manual is included in Devhelp format. (Was in last release too,
4349 but the NEWS entry was forgotten.)
4350 - The OpenSSL compatibility code now use the internal crypto interface.
4351 - Added simple self test of OpenSSL compatibility library.
4352 - Internally, libtool convenience libraries are used.
4353 - Cleanups to configure.ac.
4355 * Version 1.1.21 (2004-10-27)
4356 - Print DN of certificates with unknown characters in them, but in hexform
4358 - Added second precision to the X.509 parsing and generation functions.
4359 - Corrected bug in _gnutls_x509_get_dn_oid(), and returns the
4361 - Add parameter --la-file to libgnutls-config and libgnutls-extra-config,
4362 tiny patch contributed by Joe Orton <joe@manyfish.co.uk>.
4363 - Add pkg-config meta files, suggested by Stéphane LOEUILLET
4364 <stephane.loeuillet@tiscali.fr>.
4365 - Fix memory initializaion bug in gnutls_certificate_set_x509_trust,
4366 tiny patch by Aleix Conchillo Flaque <aleix@member.fsf.org>.
4367 - Add self test of PKCS#12 functionality in "certtool", based on test
4368 vectors from Joe Orton <joe@manyfish.co.uk>.
4369 - Fix library order in libgnutls*-config --libs output, to permit
4370 static linking, reported by Yoann Vandoorselaere
4371 <yoann@prelude-ids.org>.
4373 * Version 1.1.20 (2004-10-12)
4374 - Fix compile problem in gl/getpass.c on some systems.
4376 * Version 1.1.19 (2004-10-07)
4377 - Fix memory leak in gnutls_certificate_verify_peers and
4378 gnutls_certificate_free_credentials, report and patch by Simon
4379 Posnjak <simon.posnjak@cetrtapot.si>.
4380 - Fix crash in `certtool --to-p12 --load-privkey foo', i.e. exporting
4381 a key and no certificate to PKCS#12.
4382 - Fix objdir != srcdir builds, reported by "Gerrit P. Haase"
4383 <gp@familiehaase.de>.
4384 - Fixes faulty getpass implementation in libextra/opencdk/, reported
4385 by Yoann Vandoorselaere <yoann@prelude-ids.org>.
4386 - Uses memmem instead of strnstr in lib/.
4387 - Using more GNULib portability files, although not yet inside lib/.
4388 - Added gnutls_certificate_verify_peers to gnutls/compat.h.
4389 Nikos deprecated gnutls_certificate_verify_peers in favor of
4390 gnutls_certificate_verify_peers2 earlier in the 1.1 branch.
4391 - Improvements to the manual.
4392 - Add new example "ex-rfc2818" for certificate verification, from Nikos.
4393 - Known bug: the library require snprintf. This has not yet been
4394 fixed, but will be handled via GNULib later on.
4396 * Version 1.1.18 (2004-08-24)
4397 - Corrected handling of certificate with dates after year 2038.
4398 - Corrected DER decoder which could incorrectly treat input as BER and fail.
4399 - Correct certtool --smime-to-p7 end of line character handling.
4400 - Added example client and server for anonymous authentication.
4401 - Added self test that tests anonymous TLS client and server.
4402 - Added self tests of Nettle and generic crypto layer.
4403 - Added API reference manual in HTML format in doc/reference/ using GTK-DOC.
4404 Online version at <http://www.gnu.org/software/gnutls/reference/>.
4405 - Assume C89 or better; removed checks for size_t, ptrdiff_t and time_t.
4406 - Man pages for API functions are included.
4408 * Version 1.1.17 (2004-08-18)
4409 - Bug fix of padding string in RSA PKCS#1 v1.5 type 2 encryption,
4410 reported by Robey Pointer <robey@danger.com>.
4411 - Generic crypto interface for secret key ciphers, hashes and randomness added.
4412 See section "Experimental" within section "COMPILATION ISSUES" in README.
4413 - Removed length limit on passwords read by 'certtool'.
4414 - Documentation fixes.
4416 * Version 1.1.16 (2004-08-15)
4417 - Fix missing gnulib linker parameter when building certtool.
4418 - Add gnulib module 'progname', needed by module 'error'.
4419 - Improve building with srcdir != objdir.
4421 * Version 1.1.15 (2004-08-15)
4422 - Certtool has simplistic --smime-to-p7 to translate RFC 2633 messages into
4424 - Ported to Mac OS X / Darwin.
4425 - Ported to FreeBSD.
4427 * Version 1.1.14 (2004-08-09)
4428 - Documentation converted to Texinfo format.
4429 - Bug fix of test suite.
4430 - Configure now print build information, used by Autobuild.
4432 * Version 1.1.13 (2004-08-05)
4433 - Added simple self test suite.
4435 * Version 1.1.12 (2004-08-02)
4436 - Updated the SRP authentication to conform to the
4437 latest (yet unreleased) draft. Unfortunately this breaks
4438 compatibility with previous versions.
4439 - Changed the makefiles to be more portable.
4440 - SRP ciphersuites were moved to the gnutls library.
4441 - Added some default limits in the verification of certificate
4442 chains, to avoid denial of service attacks. Also added
4443 gnutls_certificate_set_verify_limits() to override them.
4444 Issue pointed out by Patrik Hornik <patrik@hornik.sk>.
4445 - Added gnutls_certificate_verify_peers2().
4447 * Version 1.1.11 (2004-07-16)
4448 - Added the '_t' suffix to all exported symbols.
4449 - Fixed bug in RSA encryption, report and patch by Martijn Koster
4450 <mak@greenhills.co.uk>.
4451 - Corrected a bug in certificate verification. Pointed out by
4452 Yoann Vandoorselaere <yoann@prelude-ids.org>
4453 - Added the GNUTLS_VERIFY_DO_NOT_ALLOW_SAME flags to the
4454 verification functions.
4455 - The ephemeral DH and RSA parameters are no longer stored in the
4457 - Do not free the SRP (prime and generator) parameters obtained from the
4458 callback if they are the static ones defined in extra.h
4459 - Eliminated some memory leaks. Reported by Yoann Vandoorselaere.
4461 * Version 1.1.10 (2004-06-12)
4462 - Added gnutls_sign_algorithm_get_name() and gnutls_pk_algorithm_get_name()
4463 - Corrected bug in TLS renegotiation.
4464 - Corrected bug in OpenPGP key loading using a callback.
4465 - gnutls-srpcrypt was renamed to srptool
4466 - Allow handshake requests by the client.
4467 - Automatically disable certificate types that do not have corresponding
4469 - Added gnutls_auth_client_get_type() and gnutls_auth_server_get_type()
4470 - Opencdk library is being included if not found.
4471 - certtool can now add ip address SAN extension.
4472 - certtool has now support for more X.520 DN attribute types.
4473 - Better handling of EOF in gnutls_record_recv().
4474 - _gnutls_deinit() is no longer used. Sessions are not
4475 automatically removed any more, on abnormal termination.
4476 - Corrected session resuming in SRP ciphersuites.
4477 - Updated to conform to the latest srp draft (draft-ietf-tls-srp-07)
4478 - Added new functions to allow access to the ephemeral
4479 Diffie Hellman parameters.
4480 - Added the functions gnutls_x509_crt_get_pk_rsa_raw() and
4481 gnutls_x509_crt_get_pk_dsa_raw() to retrieve parameters from certificates.
4482 - Added the functions gnutls_dh_get_group(), gnutls_dh_get_pubkey() and
4483 gnutls_rsa_export_get_pubkey() to retrieve parameters of the DH or
4484 RSA-EXPORT key exchange.
4485 - Some fixes in the session resuming code.
4486 - Added gnutls_openpgp_keyring_check_id().
4488 * Version 1.1.9 (2004-04-14)
4489 - Added support for authority key identifier and the extended key usage
4490 X.509 extension fields. The certtoool was updated to support them.
4491 - The RC2 cipher is no more included. The one in libgcrypt is now used.
4492 - Added batch support to certtool. Now it can use templates.
4494 * Version 1.1.8 (2004-04-07)
4495 - Implemented all the tests for the SRP group parameters in
4496 client side. This may lead to incompatibility with very
4498 - Corrected bug in RSA parameters handling which could cause
4500 - Optimized the copying of rsa_params.
4502 * Version 1.1.7 (2004-03-29)
4503 - Added gnutls_certificate_set_params_function() and
4504 gnutls_anon_set_params_function() that set the RSA or DH
4505 parameters using a callback.
4506 - Added functions gnutls_rsa_params_cpy(), gnutls_dh_params_cpy()
4507 and gnutls_x509_privkey_cpy().
4508 - Corrected a compilation issue when opencdk was installed in a
4509 non standard directory.
4510 - Deprecated: gnutls_srp_server_set_select_function(),
4511 gnutls_certificate_client_set_select_function(), gnutls_srp_server_set_select_function().
4513 * Version 1.1.6 (2004-02-24)
4514 - Several bug fixes, by Arne Thomassen.
4515 - Fixed a bug where 'server name' extension was always sent.
4517 * Version 1.1.5 (2004-01-06)
4518 - Added the gnutls_sign_algorithm type.
4520 * Version 1.1.4 (2004-01-04)
4521 - Improved gnutls-cli's SRP behaviour in SRP ciphersuites.
4522 If they are of highest priority then the abbreviated handshake
4524 - Removed all references of missing files.
4525 - Changed handshake behaviour to send the lowest TLS version
4526 when an unsupported version was advertized. The current behaviour
4527 is to send the maximum version we support.
4528 - Corrected problem printing the DC attributes in a DN.
4530 * Version 1.1.3 (2003-12-30)
4531 - Implemented TLS 1.1 (and also obsoleted the TLS 1.0 CBC protection
4534 * Version 1.1.2 (2003-12-28)
4535 - Added CRL verification functionality to certtool.
4536 - Corrected the CRL distribution point extension handling.
4538 * Version 1.1.1 (2003-12-26)
4539 - Added PKCS #7 support to certtool utility.
4540 - Added support for reading and generating CRL distribution
4541 points extensions in certificates.
4542 - Added support for generating CRLs in the library and the
4544 - Added support for the Subject Key ID PKIX extension.
4546 * Version 1.1.0 (2003-12-21)
4547 - The error codes GNUTLS_E_NO_TEMPORARY_DH_PARAMS and GNUTLS_E_NO_TEMPORARY_RSA_PARAMS
4548 are no longer returned by the handshake function. Ciphersuites that
4549 require temporary parameters are removed when such parameters do not exist.
4550 - Added the callbacks gnutls_certificate_client_retrieve_function() and
4551 gnutls_certificate_server_retrieve_function(), to allow a client or a server
4552 to specify certificates for the handshake without storing them to the
4553 credentials structure.
4554 - Added support for generating and exporting DSA private keys.
4555 - Added gnutls_x509_crt_set_key_usage() and certtool can now set the
4556 certificate's key usage.
4557 - Added gnutls_openpgp_key_get_key_usage().
4559 * Version 1.0.25 (2005-04-27)
4560 - Corrected bug in record packet parsing that could lead
4561 to a denial of service attack.
4562 - Corrected bug in RSA key export.
4564 * Version 1.0.24 (2005-01-18)
4565 - Corrected several bugs found by Marcin Garski <mgarski@post.pl>
4567 * Version 1.0.23 (2004-11-13)
4568 - Replace GNU LD version script with Libtool -export-symbols-regex,
4569 from Joe Orton <joe@manyfish.co.uk>.
4570 - Copy libtasn1 has been updated to version 0.2.11.
4571 - Corrected the write of CRL distribution points.
4572 - It is now possible to generate PKCS#12 structures without private
4573 keys using "certtool --to-p12", suggested by Fabian Fagerholm
4576 * Version 1.0.22 (2004-10-28)
4577 - Print DN of certificates with unknown characters in them, but in hexform
4579 - Corrected bug in _gnutls_x509_get_dn_oid(), and returns the
4581 - Added second precision to the X.509 parsing functions.
4582 - Add parameter --la-file to libgnutls-config and libgnutls-extra-config,
4583 tiny patch contributed by Joe Orton <joe@manyfish.co.uk>.
4584 - Add pkg-config meta files, suggested by Stéphane LOEUILLET
4585 <stephane.loeuillet@tiscali.fr>.
4586 - Fix memory initializaion bug in gnutls_certificate_set_x509_trust,
4587 tiny patch by Aleix Conchillo Flaque <aleix@member.fsf.org>.
4588 - Fix certtool --password for PKCS #12, back ported from 1.1.x branch.
4589 - Fix library order in libgnutls*-config --libs output, to permit
4590 static linking, reported by Yoann Vandoorselaere
4591 <yoann@prelude-ids.org>.
4593 * Version 1.0.21 (2004-10-07)
4594 - Fix memory leak in gnutls_certificate_verify_peers and
4595 gnutls_certificate_free_credentials, report and patch by Simon
4596 Posnjak <simon.posnjak@cetrtapot.si>.
4597 - Fix crash in `certtool --to-p12 --load-privkey foo', i.e. exporting
4598 a key and no certificate to PKCS#12.
4599 - Fix objdir != srcdir builds, reported by "Gerrit P. Haase"
4600 <gp@familiehaase.de>.
4601 - Avoid redefining getpass if system already has it, reported by
4602 Yoann Vandoorselaere <yoann@prelude-ids.org>.
4603 - Add new example "ex-rfc2818" for certificate verification, from Nikos.
4604 - Known bug: the library require snprintf.
4606 * Version 1.0.20 (2004-08-18)
4607 - Bug fix of padding string in RSA PKCS#1 v1.5 type 2 encryption,
4608 reported by Robey Pointer <robey@danger.com>.
4610 * Version 1.0.19 (2004-08-09)
4611 - Bug fix of test suite.
4613 * Version 1.0.18 (2004-08-05)
4614 - Added simple self test suite.
4616 * Version 1.0.17 (2004-08-02)
4617 - Updated the SRP authentication to conform to the
4618 latest (yet unreleased) draft. Unfortunately this breaks
4619 compatibility with previous versions.
4620 - Changed the makefiles to be more portable.
4621 - Added some default limits in the verification of certificate
4622 chains, to avoid denial of service attacks. Also added
4623 gnutls_certificate_set_verify_limits() to override them.
4624 Issue pointed out by Patrik Hornik <patrik@hornik.sk>.
4625 - Added gnutls_certificate_verify_peers2().
4627 * Version 1.0.16 (2004-07-10)
4628 - Do not free the SRP (prime and generator) parameters obtained from the
4629 callback if they are the static ones defined in extra.h.
4630 - Eliminated some memory leaks. Reported by Yoann Vandoorselaere.
4631 - Some fixes in the makefiles.
4633 * Version 1.0.15 (2004-06-29)
4634 - Fixed bug in RSA encryption, report and patch by Martijn Koster
4635 <mak@greenhills.co.uk>.
4636 - Corrected a bug in certificate verification. Pointed out by
4637 Yoann Vandoorselaere <yoann@prelude-ids.org>.
4639 * Version 1.0.14 (2004-06-12)
4640 - Automatically disable certificate types that do not have corresponding
4642 - Updates in the documentation.
4643 - certtool can now add ip address SAN extension.
4644 - certtool has now support for more X.520 DN attribute types.
4645 - Opencdk library is being included if not found.
4646 - Added gnutls_openpgp_keyring_check_id().
4647 - Corrected a serious bug in the included libtasn1 library.
4648 - Corrected session resuming in SRP ciphersuites.
4649 - Updated to conform to the latest srp draft (draft-ietf-tls-srp-07)
4650 - Added the functions gnutls_x509_crt_get_pk_rsa_raw() and
4651 gnutls_x509_crt_get_pk_dsa_raw() to retrieve parameters from certificates.
4652 - Some fixes in the session resuming code.
4654 * Version 1.0.13 (2004-04-29)
4655 - Some complilation fixes.
4656 - Added the --xml parameter to the certtool utility.
4658 * Version 1.0.12 (2004-04-23)
4659 - Corrected bug in OpenPGP key loading using a callback.
4660 - Renamed gnutls-srpcrypt to srptool
4661 - Allow handshake requests by the client.
4662 * Things backported from the development branch:
4663 - Added support for authority key identifier and the extended key usage
4664 X.509 extension fields. The certtoool was updated to support them.
4665 - Added batch support to certtool. Now it can use templates.
4666 - The RC2 cipher is no more included. The one in libgcrypt is now used.
4668 * Version 1.0.11 (2004-04-17)
4669 - Added gnutls_sign_algorithm_get_name() and gnutls_pk_algorithm_get_name()
4670 - Corrected bug in TLS renegotiation.
4672 * Version 1.0.10 (2004-04-03)
4673 - Corrected bug in RSA parameters handling which could cause
4675 - Corrected bug in SSL 3.0 authentication.
4677 * Version 1.0.9 (2004-03-29)
4678 - Added gnutls_certificate_set_params_function() and
4679 gnutls_anon_set_params_function() that set the RSA or DH
4680 parameters using a callback.
4681 - Added functions gnutls_rsa_params_cpy(), gnutls_dh_params_cpy()
4682 and gnutls_x509_privkey_cpy().
4683 - Corrected a compilation issue when opencdk was installed in a
4684 non standard directory.
4685 - Documented the changes need in multi-threaded application due
4686 to the new libgcrypt.
4688 * Version 1.0.8 (2004-02-28)
4689 - Corrected bug in mutual certificate authentication in SSL 3.0.
4691 * Version 1.0.7 (2004-02-25)
4692 - Implemented TLS 1.1 (and also obsoleted the TLS 1.0 CBC protection
4694 - Some updates in the documentation.
4696 * Version 1.0.6 (2004-02-12)
4697 * Backported things from the development branch (while maintaining
4698 backwards compatibility):
4699 - Improved gnutls-cli's SRP behaviour in SRP ciphersuites.
4700 If they are of highest priority then the abbreviated handshake
4702 - The error codes GNUTLS_E_NO_TEMPORARY_DH_PARAMS and GNUTLS_E_NO_TEMPORARY_RSA_PARAMS
4703 are no longer returned by the handshake function. Ciphersuites that
4704 require temporary parameters are removed when such parameters do not exist.
4705 - Added the callbacks gnutls_certificate_client_retrieve_function() and
4706 gnutls_certificate_server_retrieve_function(), to allow a client or a server
4707 to specify certificates for the handshake without storing them to the
4708 credentials structure.
4709 - Added support for generating and exporting DSA private keys.
4711 * Version 1.0.5 (2004-02-11)
4712 - Fixed a bug where 'server name' extension was always sent.
4713 * Backported things from the development branch:
4714 - Added CRL verification functionality to certtool.
4715 - Corrected the CRL distribution point extension handling.
4716 - Added PKCS #7 support to certtool utility.
4717 - Added support for reading and generating CRL distribution
4718 points extensions in certificates.
4719 - Added support for generating CRLs in the library and the
4721 - Added support for the Subject Key ID PKIX extension.
4722 - Added the gnutls_sign_algorithm type.
4724 * Version 1.0.4 (2004-01-04)
4725 - Changed handshake behaviour to send the lowest TLS version
4726 when an unsupported version was advertized. The current behaviour
4727 is to send the maximum version we support.
4728 - certtool no longer asks the password in unencrypted private
4730 - The source is now compiled to use the reentrant libc functions.
4732 * Version 1.0.3 (2003-12-21)
4733 - Corrected bug in gnutls_bye() which made it return an error code
4734 of INVALID_REQUEST instead of success.
4735 - Corrected a bug in the GNUTLS_KEY key usage definitions.
4737 * Version 1.0.2 (2003-12-18)
4738 - Corrected a bug in the RSA key generation. This was
4739 generating unusable RSA keys.
4741 * Version 1.0.1 (2003-12-10)
4742 - Some minor fixes in the makefiles. They now include CFLAGS
4743 from libgcrypt or opencdk if installed in a non standard directory.
4744 - Fixed the SRP detection test in gnutls-cli-debug.
4745 - Added gnutls_rsa_params_export_pkcs1() and gnutls_rsa_params_import_pkcs1().
4747 * Version 1.0.0 (2003-12-04)
4748 - Exported the static SRP group parameters.
4749 - Some fixes in the certificate authenticated SRP ciphersuites.
4750 - Improved the support for draft-ietf-tls-srp-05. The two-phase
4751 handshake is now fully supported without any interaction with
4752 the application layer (except for a callback).
4754 * Version 0.9.99 (2003-11-28)
4755 - Some fixes in the gnutls.h header for the gnutls_server_name_set()
4756 and gnutls_server_name_get() prototypes.
4757 - Exported the gnutls_x509_privkey_sign_data(), gnutls_x509_privkey_verify_data()
4758 and gnutls_x509_crt_verify_data().
4759 - Some fixes in the openpgp authentication.
4760 - Removed the Twofish cipher.
4762 * Version 0.9.98 (2003-11-16)
4763 - The openssl compatibility layer was moved to gnutls-openssl
4764 library instead of being included in the gnutls-extra library.
4765 - Added the RIPEMD ciphersuites defined in draft-ietf-tls-openpgp-keys-04.
4766 - Building with openpgp support is now mandatory.
4767 - gnutls4 compatibility header is no longer included by default in
4769 - gnutls8 function usage yelds a deprecation warning in gcc3.
4770 - gnutls_x509_*_set_dn_by_oid() and gnutls_x509_*_get_*_dn_by_oid()
4771 functions have a raw_flag parameter added.
4772 - Added gnutls_x509_*_get_dn_oid() and gnutls_x509_crt_get_extension_oid()
4773 functions which return the available OIDs.
4775 * Version 0.9.97 (2003-11-11)
4776 - The certtool utility can now generate PKCS #12 structures
4777 without specifying a certificate.
4778 - Added capability to read CRLs to certtool.
4779 - Corrected some functions which return GNUTLS_E_SHORT_MEMORY_BUFFER
4780 to properly set the required buffer size.
4781 - Corrected a bug in libgcrypt detection.
4783 * Version 0.9.96 (2003-11-09)
4784 - Some changes to allow compilation with mingw32.
4785 - Several code cleanups.
4787 * Version 0.9.95 (2003-11-02)
4788 - Improved the verification functions. Added new verification
4789 output flags and removed the unused and redundant ones.
4790 - Improved the OpenPGP key support.
4791 - The prime utility was removed, and its functionality was moved
4794 * Version 0.9.94 (2003-10-30)
4795 - Added manpages for the included programs.
4796 - Documented and improved the certtool utility.
4797 - Added PKCS #12 support to certtool utility.
4799 * Version 0.9.93 (2003-10-26)
4800 - Corrected some compilation issues.
4801 - Improved the certtool command line utility.
4803 * Version 0.9.92 (2003-10-25)
4804 - The RFC2818 hostname verification is now case insensitive.
4805 - Added support for generating X.509 certificates.
4806 - Added the certtool, a tool for generating X.509 certificates
4808 * Version 0.9.91 (2003-10-17)
4809 - Fixed a compilation issue in the openpgp authentication part.
4811 * Version 0.9.90 (2003-10-08)
4812 - Updated the openpgp key API (depends on the unreleased new
4815 * Version 0.9.8 (2003-10-02)
4816 - Updated the SRP implementation to follow the latest draft
4817 (draft-ietf-tls-srp-05).
4818 - Improved the gnutls-cli behaviour in error handling,
4819 and added a check for the peer's hostname.
4820 - Use versioned symbols in the library (where available).
4821 - RIJNDAEL ciphersuites were renamed to AES.
4823 * Version 0.9.7 (2003-08-25)
4824 - The tex files are now included in the distribution.
4825 - The library can now decrypt PKCS #12 files encrypted with
4827 - The missing rfc2818_hostname object is now included.
4828 - Several corrections and bug fixes in the library by
4829 Arne Thomassen <arne@arne-thomassen.de>.
4830 - CR is now allowed in the base64 decoder.
4832 * Version 0.9.6 (2003-06-28)
4833 - Added gnutls_x509_privkey_get_key_id() and gnutls_x509_crt_get_key_id()
4834 functions which return a unique (per public key) ID. These can
4835 be used to check if the private key corresponds to a given certificate.
4836 - Corrections in the TLS layer openpgp certificate packet parser.
4837 - Corrected a bug in the record layer buffering, which affected
4838 the case where external pull function was used. Report and patch
4839 by Sergey Poznyakoff <gray@Mirddin.farlep.net>.
4840 - Corrected a bug in gnutls-srpcrypt where a non allocated variable
4842 - SRP programs are now built by default.
4843 - Added API to read and write to PKCS #12 structures. Prototypes
4845 - The gnutls_transport_ptr type was changed to a pointer type (void*).
4847 * Version 0.9.5 (2003-04-06)
4848 - Several improvements in the PKCS #7 handling
4849 - Eliminated several hard coded constants in MPI parameters.
4851 * Version 0.9.4 (2003-03-28)
4852 - Corrected a parsing error in the Certificate request message.
4853 - Corrected behaviour when a certificate request message is received.
4854 Now a certificate packet is always sent, and in SSL 3.0 cipher suites
4855 a no_certificate alert is sent instead.
4856 - Added functionality to generate PKCS #7 structures (with certificates).
4858 * Version 0.9.3 (2003-03-24)
4859 - Support for MD2 was dropped.
4860 - Improved the error logging functions, by adding a level, and
4861 by allowing debugging messages just by increasing the level.
4862 - The diffie Hellman ciphersuites are now of higher priority than
4864 - The RSA premaster secret version check can no longer be disabled.
4865 - Implemented the counter measure discussed in the paper "Attacking
4866 RSA-based Sessions in SSL/TLS", against the attack described in the
4868 - Added the functions: gnutls_handshake_get_last_in(),
4869 gnutls_handshake_get_last_out().
4870 - The gnutls_certificate_set_rsa_params() was renamed to
4871 gnutls_certificate_set_rsa_export_params().
4872 - Added the new functions: gnutls_certificate_set_x509_key()
4873 gnutls_certificate_set_x509_trust(), gnutls_certificate_set_x509_crl(),
4874 gnutls_x509_crt_export(), gnutls_x509_crl_export().
4875 - Added support for encoding and decoding PKCS #8 2.0 encrypted
4878 * Version 0.9.2 (2003-03-15)
4879 - Some corrections in the memory mapping code (file is unmapped after
4881 - Added support for PKCS#10 certificate requests generation.
4883 * Version 0.9.1 (2003-03-12)
4884 - Corrected a bug in 64 bit architectures, which affected the
4885 serial number calculation in the record layer.
4886 - Added gnutls_certificate_free_keys() which deletes all the
4887 private keys and certificates from the credentials structure.
4888 - Corrected a broken buffer check in _gnutls_io_read_buffered(),
4889 which caused some unexpected packet length errors. Report and patch
4890 by Ian Peters <itp@ximian.com>.
4891 - Added ability to generate RSA keys.
4892 - Increased the maximum parameter size in order to read some large keys
4893 by some CAs. Patch by Ian Peters <itp@ximian.com>.
4894 - Added an strnstr() function and the requirement in some functions to
4895 use null terminated PEM structures is no more.
4896 - Use mmap() if available to read files.
4897 - Fixed a memory leak in SRP code reported by Rupert Kittinger
4898 <r.kittinger@efkon.com>.
4900 * Version 0.9.0 (2003-03-03)
4901 - This version is not binary compatible with the previous ones.
4902 - The library notifies the application on empty and illegal SRP usernames,
4903 so that proper notification (via an alert) is sent to the peer.
4904 - Added ability to send some messages back to the application using
4905 the gnutls_global_set_log_function().
4906 - gnutls_dh_params_generate() and gnutls_rsa_params_generate() now use
4907 gnutls_malloc() to allocate the output parameters.
4908 - Added support for MD2 algorithm in certificate signature verification.
4909 - The RSA and DH parameter generation interface was changed. Added
4910 ability to import and export from and to PKCS3 structures. This
4911 was needed to read parameters generated using the openssl dhparam tool.
4912 - Several changes in the temporary (DH/RSA) parameter codebase. No DH
4913 parameters are now included in the library. Also the credentials structure
4914 can now hold only one temporary parameter of a kind.
4915 - Added a new Certificate, CRL, Private key and PKCS7 structures handling
4916 API, defined in gnutls/x509.h
4917 - Added gnutls_certificate_set_verify_flags() function to allow setting the
4918 verification flags in the credentials structure. They will be used in the
4919 *verify_peers functions.
4920 - Added protection against the new TLS 1.0 record layer timing attack.
4921 - Added support for Certificate revocation lists. Functions defined
4923 - The only functions that were removed are:
4924 gnutls_x509_certificate_to_xml()
4925 gnutls_x509_extract_dn_string()
4926 - Ported to libtasn1 0.2.x
4928 * Version 0.8.1 (2003-01-22)
4929 - Improved the SRP support, to prevent attackers guessing the
4930 available usernames by brute force.
4931 - Improved the SRP detection in gnutls-cli-debug
4932 - Some fixes which now allow compilation.
4934 * Version 0.8.0 (2003-01-20)
4935 - Added gnutls_x509_extract_dn_string() which returns a
4936 distinguished name in a single string.
4937 - Added gnutls_openpgp_extract_key_name_string() which returns
4938 an openpgp user ID in a single string.
4939 - Added gnutls_x509_extract_certificate_ca_status() which returns
4940 the CA status of the given certificate.
4941 - Added SRP-6 support. Follows draft-ietf-tls-srp-04.
4942 - If libtasn1 is not present in the system, it is included in
4943 the main gnutls library.
4944 - If liblzo is present in the system, then the included minilzo
4945 will not be used, and libgnutls-extra will depend on liblzo.
4946 - GNUTLS_E_PARSING_ERROR error code was replaced by GNUTLS_E_BASE64_DECODING_ERROR,
4947 and GNUTLS_E_SRP_PWD_PARSING_ERROR. GNUTLS_E_ASCII_ARMOR_ERROR was also
4948 replaced by GNUTLS_E_BASE64_DECODING_ERROR.
4950 * Version 0.6.0 (2002-12-08)
4951 - Added "gnutls/compat4.h" header. This is included in gnutls.h
4952 to emulate the old 0.4.x API.
4953 - Example programs are now stored in doc/examples/
4954 - Several improvements and updates in the documentation.
4955 - Added the certificate authenticated SRP cipher suites.
4956 - gnutls_x509_extract_certificate_dn_string() was updated to return
4957 an RFC2253 conforming string.
4958 - Added the SRP related functions:
4959 gnutls_srp_verifier()
4960 gnutls_srp_base64_encode()
4961 gnutls_srp_base64_decode()
4962 - Added the function gnutls_srp_set_server_credentials_function()
4963 to allow retrieving SRP parameters from an external backend - other
4964 than password files.
4965 - Added the function gnutls_openpgp_set_recv_key_function()
4966 which can be used to set a callback, to get OpenPGP keys.
4967 - Exported the functions:
4970 which should be used by callback functions.
4971 - Changed the semantics of gnutls_pem_base64_encode_alloc()
4972 and gnutls_pem_base64_decode_alloc(). In the default case
4973 were the gnutls library is used with malloc/realloc/free,
4974 these are binary compatible.
4976 * Version 0.5.11 (2002-11-05)
4977 - Some fixes in 'gnutls-cli' client program to prevent some segmentation
4979 - Example programs found in the documentation can now be generated by
4980 running "make examples" in doc/tex directory.
4981 - Added more descriptive error strings, to gnutls_strerror().
4982 - Documented error codes, and the function reference list is now sorted.
4983 - Optimized buffering code.
4984 - gnutls_x509_extract_certificate_dn_string() was rewritten.
4985 - Added GNUTLS_E_SHORT_MEMORY_BUFFER error code, which is returned in the
4986 case where the memory buffer provided is not long enough.
4987 - Depends on the new OpenCDK 0.3.2.
4989 * Version 0.5.10 (2002-10-13)
4990 - Updated documentation.
4991 - Added server name extension. This allows clients to specify the
4992 name of the server they connect to. Useful to HTTPS.
4993 - Several corrections in the code base, mostly in signed/unsigned,
4996 * Version 0.5.9 (2002-10-10)
4997 - Corrected some code which worked fine in gcc 3.2, but not with any
4999 - Updated 'gnutls-cli' with the '--starttls' option, to allow testing
5000 starttls implementations.
5001 - Added gnutls_x509_extract_key_pk_algorithm() function which extracts
5002 the private key type, of a DER encoded key.
5003 - Added gnutls_x509_extract_certificate_dn_string() which returns the
5004 certificate's distinguished name in a single string.
5005 - Added gnutls_set_default_priority() and gnutls_set_default_export_priority()
5006 functions, to avoid calling all the *_priority() functions if the defaults
5008 - Added int gnutls_x509_check_certificates_hostname() which check whether
5009 the given hostname matches the owner of the given X.509 certificate.
5011 * Version 0.5.8 (2002-09-25)
5012 - Updated documentation.
5013 - Added gnutls_record_get_direction() which replaces the obsolete
5014 gnutls_handshake_get_direction().
5015 - Added function to convert error codes to alert descriptions
5016 - Added LZO compression
5018 * Version 0.5.7 (2002-09-11)
5019 - Some fixes in the memory allocation functions (realloc).
5020 - Improved the string functions used in XML certificate generation.
5021 - Removed dependency on libgdbm.
5022 - Corrected bug in gnutls_dh_params_set() which affected
5023 gnutls_dh_params_deinit().
5024 - Corrected bug in session resuming code in server side.
5026 * Version 0.5.6 (2002-09-06)
5027 - Corrected bugs in SRP implementation, which prevented gnutls
5028 to interoperate with other implementations. (interoperability testing
5029 was done by David Taylor)
5030 - Corrected bug in cert_type extension.
5031 - Corrected extension type checks which used an 8 bit extension size,
5033 - Added versioning in the XML output of certificate functions.
5034 - Removed the X.509 test suite.
5036 * Version 0.5.5 (2002-09-03)
5037 - Updated the SRP implementation to the latest draft. The blowfish
5038 crypt implementation was removed, since the new draft does not allow
5039 other hash algorithms except for the srpsha.
5040 - Renamed all the constructed types in order to have more consistent
5042 - Improved the certificate and key read functions. Now they can read
5043 the certificate and the private key from the same file.
5044 - Updated and corrected documentation.
5046 * Version 0.5.4 (2002-08-27)
5047 - Fixes in TLS 1.0 PRF and SSL3 random functions.
5048 - gnutls_handshake_set_exportable_detection() was obsoleted.
5049 - Added gnutls_openpgp_extract_key_id() which returns the key ID.
5050 - Corrected bug in DHE key exchange
5051 - Added support for temporary RSA keys which are needed for the
5052 export cipher suites.
5053 - Added the TLS_RSA_EXPORT_ARCFOUR_40_MD5 ciphersuite.
5055 * Version 0.5.3 (2002-08-23)
5056 - No changes. Replaces the tarball of 0.5.2 which accidentally contained
5057 code from the unstable branch.
5059 * Version 0.5.2 (2002-08-22)
5060 - Added an error code that is returned in clients which connect
5061 to export only servers. This must be enabled using the
5062 gnutls_handshake_set_exportable_detection() function.
5063 - Updated openssl compatibility layer.
5064 - Added gnutls_handshake_get_direction() function which returns
5065 the state of the handshake when interrupted.
5067 * Version 0.5.1 (2002-07-17)
5068 - Corrected the m4 macros which used <gnutls.h> instead of
5070 - Documentation fixes
5071 - Added gnutls_transport_set_ptr2() function, which accepts two
5072 different pointers, to be used while receiving, and
5074 - Semantic changes in gnutls_record_set_max_size(). The requested
5075 size is now immediately enforced at the output buffers.
5076 - gnutls_global_init_extra() now fails if the library versions do
5078 - Fixes in client and server example programs. Null encryption can
5079 be used in these programs, to assist in debuging.
5080 - Fixes in zlib compression code.
5082 * Version 0.5.0 (2002-07-06)
5083 - Added X.509 certificate tests in tests/ directory
5084 - Removed stubs for SRP and Anonymous authentication. They served
5085 no purpose since they are always included, unless it was requested
5087 - Added gnutls_handshake_set_private_extensions() function. This
5088 function can be used to enable private (gnutls specific) cipher suites
5089 and compression algorithms.
5090 - Added check for C99 macro support by the compiler.
5091 - Added functions gnutls_b64_encode_fmt2() and gnutls_b64_decode_fmt2()
5092 - Added the new libtasn1 library.
5093 - Removed the gdbm backend. Applications are now responsible for the
5094 session resuming backend. The gnutls-serv application contains an
5095 simple example on how to use gdbm for resuming.
5096 - Headers for the gnutls library are now installed in $(includedir)/gnutls
5097 - Added an OpenSSL compatible interface (with some limitations).
5098 - Added functions to convert DER encoded certificates to XML format.
5100 * Version 0.4.4 (2002-06-24)
5101 - Corrected bug in PKCS-1 RSA encryption which prevented gnutls to encrypt
5102 using keys of some specific size.
5104 * Version 0.4.3 (2002-05-23)
5105 - The gnutls-extra library now compiles fine, if the opencdk library is
5107 - Several bug fixes.
5108 - Added gnutls_global_set_mem_func() function, to set the memory allocation
5109 functions, if other than the defaults are to be used.
5110 - The default memory allocation functions are now the ones in libc.
5112 * Version 0.4.2 (2002-05-21)
5113 - Separated ASN.1 structures parser documentation and TLS library
5115 - Added gnutls_handshake_set_rsa_pms() function, which disables the
5116 version check in RSA premaster secret.
5117 - Added gnutls_session_is_resumed() function, which reports if a session
5119 - Added gnutls_state_set_ptr() and gnutls_state_get_ptr() functions, to
5120 assist in callback functions.
5121 - Replaced the included 1024 bit prime for Diffie Hellman, with a new
5123 - Relicensed the library under the GNU Lesser General Public License
5124 - Added gnutls-extra library which contains the GPL covered code of gnutls.
5126 * Version 0.4.1 (2002-04-07)
5127 - Now uses alloca() for temporary variables
5128 - Optimized RSA signing
5129 - Added functions to return the peer's certificate activation and
5131 - Corrected time function's behaviour (the time value returned no longer
5132 relate to local timezone).
5134 * Version 0.4.0 (2002-04-01)
5135 - Added support for RFC2630 (PKCS7) X.509 certificate sets
5136 - Added new functions: gnutls_x509_extract_certificate_pk_algorithm(),
5137 gnutls_openpgp_extract_key_pk_algorithm().
5138 - Several optimizations in the Handshake protocol
5139 - Several optimizations in RSA algorithm
5140 - Unified the return values because of small buffers.
5142 * Version 0.3.92 (2002-03-23)
5143 - Updated documentation
5144 - Combined error codes of ASN.1 parser and gnutls
5145 - Removed GNUTLS_CERT_TRUSTED from the CertificateStatus enumeration
5146 - Added protection against CBC chosen plaintext attack (disabled by default)
5147 - Improved and optimized compression support
5149 * Version 0.3.91 (2002-03-03)
5150 - Added gnutls-cli-debug program
5151 - Corrections in session resumption
5152 - Rehandshake can now handle negotiation of different authentication
5154 - gnutls-cli, gnutls-serv, gnutls-srpcrypt and gnutls-cli-debug are
5155 now being installed.
5157 * Version 0.3.90 (2002-02-24)
5158 - Handshake messages are not kept in memory any more. Now we use
5159 less memory during a handshake
5160 - Added support for certificates with DSA parameters
5161 - Added DHE_DSS cipher suites
5162 - Key exchange methods changed so they do not depend on the
5163 certificate type. Added certificate type negotiation TLS extension.
5164 - Added openpgp key support (EXPERIMENTAL)
5165 - Improved Diffie Hellman key exchange support.
5166 - Bug fixes in the RSA key exchange.
5167 - Added check for the requested TLS extensions
5168 - TLS extensions now use a 16 bit type field.
5169 - Added a minimal string library to assist in ASN.1 parsing
5170 - Changes in ASN.1 parser to work with the new bison
5171 - Added gnutls_x509_extract_subject_alt_name(), which deprecates
5172 gnutls_x509_extract_subject_dns_name()
5173 - gnutls_x509_set_trust_(file/mem) can now be called multiple times
5174 - gnutls_srp_server_set_cred_file() can now be called multiple times
5176 * Version 0.3.5 (2002-01-25)
5177 - Corrected the RSA key exchange method, to avoid attacks against
5180 * Version 0.3.4 (2002-01-20)
5181 - Corrected bugs in DHE_RSA key exchange method
5183 * Version 0.3.3 (2002-01-19)
5184 - Added gnutls_x509pki_verify_certificate()
5185 - Added gnutls_x509pki_set_trust_mem() and gnutls_x509pki_set_key_mem()
5186 - Bug fixes in srpcrypt (based on patch by Marc Huber)
5187 - Bug fixes in the Handshake protocol (based on patch by Guillaume Morin)
5188 - Corrected library versioning
5190 * Version 0.3.2 (2002-01-05)
5191 - Corrected bug which did not allow a client to accept multiple CA names
5192 - Added gnutls_fingerprint()
5193 - Added gnutls_x509pki_extract_certificate_serial()
5194 - Added gnutls_b64_encode_fmt() and gnutls_b64_decode_fmt()
5195 - Corrected behaviour in version advertizing
5196 - Updated documentation
5197 - Prefixed all types in gnutls.h with 'GNUTLS_' to avoid namespace collisions
5199 * Version 0.3.1 (2001-12-21)
5200 - Corrections in the configuration files
5201 - Fixes a bug in anonymous authentication
5203 * Version 0.3.0 (2001-12-17)
5204 - Corrected bug in new integer formatting (now we use the old format again)
5205 - Several corrections and usual cleanups
5207 * Version 0.2.91 (2001-12-10)
5208 - Fixes in MPI handling (fixes possible bug with signed integers)
5209 - Removed name indication extension
5210 - Added gnutls_transport_get_ptr() and gnutls_db_get_ptr()
5211 - Optimizations in server certificate callback.
5212 - Fixes in anonymous authentication
5213 - Corrections in client ciphersuite selection
5215 * Version 0.2.90 (2001-12-07)
5216 - gnutls_handshake(), gnutls_read() etc. functions no longer require
5217 the 'SOCKET cd' argument. This argument is set using the function
5218 gnutls_set_transport_ptr().
5219 - introduced gnutls_x509pki_get_peer_certificate_list(). This function returns
5220 a list containing peer's certificate and issuers DER encoded.
5221 - Updated X.509 certificate handling API
5222 - Added callback to select the server certificate
5223 - More consistent function naming (changes in several function names)
5224 - Buffer overflow checking in ASN.1 structures parser
5225 - Updated documentation
5227 * Version 0.2.11 (2001-11-16)
5228 - Changed the meaning of GNUTLS_E_REHANDSHAKE value. If this value
5229 is returned, then the caller should perform a handshake or send
5230 an alert to the peer.
5231 - Made receive buffer dynamic. Normally if no large chunks are received
5232 it occupies less space.
5233 - Added max_record_size extension
5234 - Bugfixes in session handling
5235 - Improved non blocking IO support in the Handshake Protocol
5236 - Usual bugfixes and cleanups
5237 - Documentation updated (includes ASN.1 documentation)
5239 * Version 0.2.10 (2001-11-05)
5240 - Corrected bugs and improved non blocking IO
5241 - Added hooks to use external database to store sessions
5244 * Version 0.2.9 (2001-10-27)
5245 - AUTH_INFO types and structures were moved to library internals
5246 - AUTH_FAILED is no longer returned in SRP authentication
5247 (any fatal error in SRP means auth failed)
5248 - Introduced GNUTLS_E_INTERRUPTED
5249 - Added support for non blocking IO
5250 - gnutls_recv() and gnutls_send() are now obsolete
5251 - Changed semantics of gnutls_rehandshake()
5253 * Version 0.2.4 (2001-10-12)
5254 - Better handling of X.509 certificate extensions
5255 - Added DHE_RSA ciphersuites
5256 - Updated the Name Indication (dnsname) extension
5257 - Improvements in Diffie Hellman primes handling
5259 * Version 0.2.3 (2001-09-19)
5260 - Memory optimizations in gnutls_recv()
5261 - Fixed several memory leaks
5262 - Added ability to specify callback for x509 client certificate selection
5263 - Better documentation
5265 * Version 0.2.2 (2001-08-21)
5266 - Several bugfixes (library and documentation)
5268 * Version 0.2.1 (2001-08-07)
5271 * Version 0.2.0 (2001-08-07)
5272 - Partial support for X.509v3 Certificate extensions.
5273 - Added Internal memory handlers
5274 - Removed gnutls_x509_set_cn()
5275 - Added X.509 client authentication
5276 - Several bug fixes and protocol fixes
5278 * Version 0.1.9 (2001-07-30)
5279 - Corrected bug(s) in ChangeCipherSpec packet (fixes renegotiate)
5280 - SRP is updated to conform to the newest draft.
5281 - Added support for DNSNAME extension.
5282 - Reentracy fixes in ASN.1 Parsing.
5283 - Optimizations in hash/hmac functions
5284 - (Error) message handling has changed
5285 - Better Protocol Version handling
5286 - Added X.509 Certificate Verification
5287 - gnutls_read() semantics are now closer to read(2) - added EOF
5288 - Documented some part of gnutls in doc/tex/ using Latex
5290 * Version 0.1.4 (2001-06-22)
5291 - Corrected (srp) base64 encoding.
5292 - Changed bcrypt algorithm to include username.
5293 - Added RSA Ciphersuites (no certificate checking).
5294 - Fixes in SSL 2.0 client hello parsing.
5295 - Added ASN.1 and DER parsers.
5296 - Bugfixes in session resuming
5297 - Updated Ciphersuite selection algorithm
5298 - Added internal representation of X.509 structures.
5299 - Added global state
5301 * Version 0.1.3 (2001-06-01)
5302 - Updated API (and the way it is documented - we use inline documentation)
5303 - Added function to access alert messages.
5304 - Added support for renegotiating parameters.
5305 - Better and Faster Resume Database handling.
5308 * Version 0.1.2 (2001-05-14)
5310 - Fixes in extension handling
5312 * Version 0.1.1 (2001-05-13)
5313 - Added compatibility with Stanford's libsrp library
5315 * Version 0.1.0 (2001-05-09)
5316 - Added SSL 2.0 client hello support
5317 - GNUTLS is a gnu library
5318 - Added support for TLS extensions.
5319 - Added support for SRP
5321 * Version 0.0.7 (2001-01-11)
5322 - Added server side session resuming (using gdbm)
5323 - Added twofish algorithm
5325 * Version 0.0.6 (2000-12-20)
5326 - Added client side session resuming
5327 - Better documentation (check doc/API)
5328 - Better socket handling (gnutls can be used with select())
5329 - Some primitive support for non blocking IO and socket options has been added.
5331 * Version 0.0.5 (2000-12-07)
5332 - Added Compression (using ZLIB)
5333 - Added SSL 3.0 support
5335 ----------------------------------------------------------------------
5336 Copying and distribution of this file, with or without modification,
5337 are permitted in any medium without royalty provided the copyright
5338 notice and this notice are preserved.