1 2012-01-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3 * ChangeLog, NEWS: updated changelog and news for release
5 2012-01-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7 * lib/gnutls_cipher.c: corrected typo
9 2012-01-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
11 * NEWS, configure.ac, m4/hooks.m4: bumped version
13 2012-01-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
15 * lib/gnutls_buffers.c: Corrected functionality of
16 gnutls_record_get_direction(). Reported by Philip Allison.
18 2012-01-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
20 * NEWS, lib/gnutls_cipher.c: provide less timing information when
21 decoding packets. Patch by Nadhem Alfardan.
23 2012-01-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
25 * src/serv.c: use AI_ADDRCONFIG if available.
27 2012-01-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
29 * configure.ac: prevent building of crywrap in windows
31 2012-01-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
35 2012-01-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
39 2012-01-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
41 * lib/extras/Makefile.am: added missing file
43 2012-01-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
45 * NEWS, configure.ac, m4/hooks.m4: bumped version
47 2012-01-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
49 * src/certtool-gaa.c, src/certtool-gaa.h, src/p11tool-gaa.c: Updated
52 2012-01-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
54 * doc/latex/.gitignore, doc/latex/cover.tex: added missing file
56 2012-01-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
58 * src/benchmark-tls.c: print the RSA and DH bits as well as EC bits
61 2012-01-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
63 * src/benchmark-tls.c: use 1840 bit DH and RSA to compare with 192
66 2012-01-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
68 * lib/algorithms/publickey.c, lib/algorithms/secparams.c,
69 lib/algorithms/sign.c, lib/auth/cert.c, lib/auth/ecdh_common.c,
70 lib/gnutls_privkey.c, lib/gnutls_pubkey.c, lib/gnutls_sig.c,
71 lib/includes/gnutls/gnutls.h.in, lib/nettle/pk.c, lib/pkcs11_int.h,
72 lib/pkcs11_privkey.c, lib/pkcs11_write.c, lib/x509/key_decode.c,
73 lib/x509/key_encode.c, lib/x509/output.c, lib/x509/privkey.c,
74 lib/x509/privkey_pkcs8.c, lib/x509/verify.c, src/certtool.c,
75 src/p11tool.gaa, tests/slow/keygen.c: GNUTLS_PK_ECC -> GNUTLS_PK_EC
77 2011-12-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
79 * lib/openpgp/gnutls_openpgp.c: CDK_EOF error code now returns
80 GNUTLS_E_PARSING_ERROR
82 2011-12-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
84 * lib/opencdk/armor.c, lib/opencdk/opencdk.h: removed
85 cdk_armor_filter_use()
87 2011-12-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
89 * src/certtool.c: correctly report 0 keys on a keyring
91 2011-12-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
93 * lib/opencdk/kbnode.c, lib/opencdk/opencdk.h,
94 lib/openpgp/gnutls_openpgp.c, lib/openpgp/pgp.c,
95 lib/openpgp/privkey.c: more opencdk simplifications
97 2011-12-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
99 * tests/openpgp-certs/testselfsigs: specify key type (raw) to
102 2011-12-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
104 * lib/opencdk/Makefile.am, lib/opencdk/armor.c,
105 lib/opencdk/keydb.c, lib/opencdk/main.c, lib/opencdk/opencdk.h,
106 lib/openpgp/extras.c, lib/openpgp/gnutls_openpgp.c: Removed unneeded
107 opencdk functionality.
109 2011-12-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
111 * cross.mk: verify signatures on download
113 2011-12-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
115 * lib/gnutls_global.c, lib/gnutls_mem.c: _gnutls_is_secure_memory is
118 2011-12-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
120 * NEWS, src/cli.c: gnutls-cli can now read input from win32.
122 2011-12-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
124 * NEWS, lib/openpgp/pgp.c, lib/openpgp/privkey.c: Avoid using base64
125 armor auto-detection which causes decoding errors in win32. For
126 some reason reading from the stream modifies the stream and this
127 work-around avoids that issue.
129 2011-12-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
131 * tests/pgps2kgnu.c: enable debugging in pgps2kgnu
133 2011-12-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
135 * tests/Makefile.am, tests/openpgp-auth2.c: do not use valgrind in
138 2011-12-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
140 * cross.mk: gmp is compiled with --enable-fat.
142 2011-12-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
144 * tests/Makefile.am: link libutils with libgnu.
146 2011-12-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
148 * .gitignore: more files to ignore
150 2011-12-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
152 * doc/manpages/Makefile.am: Added missing function names.
154 2011-12-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
156 * cross.mk: Added a preliminary win32 compilation makefile.
158 2011-12-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
160 * doc/Makefile.am: win32 fixes
162 2011-12-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
164 * configure.ac: do not build crywrap on win32
166 2011-12-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
168 * extra/includes/gnutls/openssl.h: undefine possible system macros.
170 2011-12-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
172 * doc/examples/ex-serv-dtls.c: updated DTLS example
174 2011-12-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
176 * doc/cha-cert-auth.texi, doc/cha-cert-auth2.texi,
177 doc/cha-programs.texi: more updates
179 2011-12-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
181 * doc/cha-ciphersuites.texi, doc/cha-copying.texi,
182 doc/cha-gtls-app.texi, doc/cha-gtls-examples.texi,
183 doc/cha-internals.texi, doc/cha-library.texi,
184 doc/cha-shared-key.texi, doc/gnutls.texi: Small improvements in
187 2011-12-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
189 * NEWS, lib/x509/privkey.c: corrected bug in DSA private key
192 2011-12-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
194 * src/certtool.gaa: Added --rsa option which is a no-op for now.
196 2011-12-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
198 * lib/extras/randomart.c, lib/extras/randomart.h, lib/gnutls_ui.c,
199 lib/openpgp/output.c, lib/x509/output.c,
200 tests/pathlen/ca-no-pathlen.pem, tests/pathlen/no-ca-or-pathlen.pem:
201 Allow the insertion of characters to align the randomart.
203 2011-12-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
205 * src/certtool.c: Print the fingerprint of PGP keys and not only the
208 2011-12-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
210 * tests/pathlen/ca-no-pathlen.pem,
211 tests/pathlen/no-ca-or-pathlen.pem: Add random art to keys.
213 2011-12-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
215 * tests/mini-deflate.c: Skip deflate test if libz is not available.
217 2011-12-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
219 * lib/openpgp/output.c, lib/x509/output.c, src/certtool.c: updated
220 random art's messages.
222 2011-12-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
224 * src/certtool.c: Print the pgp key's randomart as well.
226 2011-12-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
228 * lib/openpgp/output.c, lib/x509/output.c: Print the randomart on
229 the key ID and not the fingerprint.
231 2011-12-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
233 * lib/gnutls_errors.c: Updated GNUTLS_E_NO_CERTIFICATE_FOUND
236 2011-12-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
238 * .gitignore: more files to ignore
240 2011-12-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
242 * lib/extras/randomart.c, lib/extras/randomart.h, lib/gnutls_ui.c,
243 lib/openpgp/output.c, lib/x509/output.c, src/certtool.c: print
244 randomart for private keys as well.
246 2011-12-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
248 * lib/extras/randomart.c, lib/system.c, lib/system.h,
249 lib/x509/output.c: gnutls_atfork was no longer in use.
251 2011-12-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
253 * NEWS, configure.ac, lib/Makefile.am, lib/extras/Makefile.am,
254 lib/extras/randomart.c, lib/extras/randomart.h, lib/gnutls_ui.c,
255 lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map,
256 lib/openpgp/output.c, lib/x509/output.c: Added function
257 gnutls_random_art() to convert fingerprints to images (currently
260 2011-12-28 Patrick Pelletier <code@funwithsoftware.org>
262 * doc/cha-gtls-app.texi, doc/cha-gtls-examples.texi,
263 doc/cha-internals.texi, lib/algorithms/ciphers.c,
264 lib/algorithms/protocols.c, lib/algorithms/secparams.c,
265 lib/gnutls_cert.c, lib/gnutls_cipher.c, lib/gnutls_db.c,
266 lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_priority.c,
267 lib/gnutls_state.c, lib/gnutls_ui.c, lib/nettle/rnd.c: minor doc and
268 comment fixes Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
270 2011-12-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
272 * doc/Makefile.am, doc/cha-gtls-app.texi,
273 doc/cha-gtls-examples.texi, doc/cha-intro-tls.texi,
274 doc/examples/Makefile.am, doc/examples/ex-client-anon.c,
275 doc/examples/ex-client-dtls.c, doc/examples/ex-client-psk.c,
276 doc/examples/ex-client-resume.c, doc/examples/ex-client-srp.c,
277 doc/examples/ex-client-udp.c, doc/examples/ex-client-x509.c,
278 doc/examples/ex-client1.c, doc/examples/ex-rfc2818.c,
279 doc/examples/ex-serv-anon.c, doc/examples/ex-serv-srp.c,
280 doc/examples/ex-serv-x509.c, doc/examples/ex-serv1.c: updated
281 examples and added new "handling alerts" section.
283 2011-12-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
285 * doc/cha-gtls-examples.texi, doc/examples/udp.c: updated and
286 included in the documentation the udp code.
288 2011-12-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
290 * NEWS, src/cli.c, src/serv.c: Set don't fragment bit in Linux as
291 well as in BSD variants.
293 2011-12-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
295 * .gitignore, doc/examples/ex-serv-dtls.c, doc/examples/ex-serv1.c:
296 updated server examples
298 2011-12-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
300 * doc/cha-cert-auth.texi, doc/cha-cert-auth2.texi,
301 doc/cha-gtls-app.texi, doc/cha-programs.texi,
302 doc/cha-shared-key.texi: smallexample is no longer used. It is
303 intended only for typesetting with smaller pages and had no relation
306 2011-12-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
308 * src/serv.c: prepend UDP to server application name when in UDP
311 2011-12-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
313 * doc/cha-gtls-app.texi, doc/cha-gtls-examples.texi,
314 doc/examples/Makefile.am, doc/examples/ex-serv-dtls.c,
315 doc/examples/ex-serv1.c: Added DTLS server example.
317 2011-12-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
319 * src/udp-serv.c: corrected a leak
321 2011-12-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
323 * doc/cha-gtls-app.texi: Added SECP192R1 curve.
325 2011-12-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
327 * lib/includes/gnutls/abstract.h, lib/includes/gnutls/pkcs11.h:
328 pkcs11.h and abstract.h use extern C idiom for C++.
330 2011-12-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
332 * NEWS, lib/algorithms/ciphersuites.c: Added ciphersuites:
333 GNUTLS_PSK_WITH_AES_256_GCM_SHA384 and
334 GNUTLS_DHE_PSK_WITH_AES_256_GCM_SHA384.
336 2011-12-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
338 * NEWS, lib/algorithms/ciphersuites.c: Corrected ciphersuite
339 GNUTLS_ECDHE_PSK_AES_256_CBC_SHA384
341 2011-12-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
343 * src/serv.c: Only use configured interfaces. Patch by Pino Toscano.
345 2011-12-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
347 * lib/algorithms/protocols.c: better comments.
349 2011-12-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
351 * lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_state.c:
352 gnutls_protocol_get_version() and _gnutls_set_current_version() are
355 2011-12-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
357 * lib/algorithms/ciphersuites.c: documented
358 _gnutls_supported_ciphersuites()
360 2011-12-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
362 * lib/algorithms/ciphersuites.c: renamed the _SHA ciphersuites to
365 2011-12-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
367 * lib/nettle/mpi.c: correctly set the odd bits.
369 2011-12-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
371 * ChangeLog, Makefile.am, cfg.mk: make dist forces regeneration of
372 ChangeLog and manpages.
374 2011-12-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
376 * doc/Makefile.am: Added missing file
378 2011-12-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
380 * NEWS, configure.ac, m4/hooks.m4: bumped version
382 2011-12-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
384 * doc/cha-gtls-app.texi: documented new priority strings.
386 2011-12-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
388 * lib/gnutls_handshake.c: server precedence also used in compression
391 2011-12-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
393 * lib/algorithms.h, lib/algorithms/ciphersuites.c,
394 lib/auth/dh_common.c, lib/auth/rsa.c, lib/auth/rsa_export.c,
395 lib/gnutls_auth.c, lib/gnutls_constate.c, lib/gnutls_constate.h,
396 lib/gnutls_handshake.c, lib/gnutls_int.h,
397 lib/gnutls_session_pack.c, lib/gnutls_state.c,
398 lib/gnutls_v2_compat.c: cipher_suite_st is no longer used
399 internally. We only use a point to 2 bytes.
401 2011-12-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
403 * NEWS, lib/gnutls_handshake.c, lib/gnutls_int.h,
404 lib/gnutls_priority.c: Added new priority string %SERVER_PRECEDENCE.
406 2011-12-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
408 * lib/gnutls_priority.c: Removed 128-bit ciphers from secure192, but
409 added SHA256 (or no ciphersuites are there).
411 2011-12-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
413 * NEWS, src/Makefile.am, src/certtool-common.h, src/certtool-gaa.c,
414 src/certtool-gaa.h, src/certtool.c, src/certtool.gaa, src/dh.c,
415 src/prime.c: Added the --dh-info parameter to certtool.
417 2011-12-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
419 * NEWS, doc/manpages/Makefile.am, lib/algorithms/ciphersuites.c,
420 lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, src/common.c:
421 gnutls_priority_get_cipher_suite was renamed to
422 gnutls_priority_get_cipher_suite_index. This makes a more
423 consistent API at the cost of requiring
424 gnutls_get_cipher_suite_info(). An advantage however is that more
425 information can now be accessed.
427 2011-12-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
429 * NEWS, lib/auth/anon.c, lib/auth/dh_common.c,
430 lib/auth/dh_common.h, lib/auth/dhe.c, lib/auth/dhe_psk.c,
431 lib/crypto-backend.h, lib/gnutls_dh.c, lib/gnutls_dh.h,
432 lib/gnutls_dh_primes.c, lib/gnutls_int.h, lib/nettle/mpi.c,
433 src/benchmark-tls.c, src/benchmark.c, src/prime.c: Diffie Hellman
434 PKCS #3 parameters now contain the recommended private key size. By
435 using the recommended key size the calculations for the server side
436 are reduced, giving a 50% increase in DH calculations.
438 2011-12-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
440 * lib/nettle/mpi.c: small cleanups.
442 2011-12-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
444 * lib/auth/psk_passwd.c, lib/auth/rsa.c, lib/auth/rsa_export.c,
445 lib/auth/srp_passwd.c, lib/crypto-api.c, lib/ext/session_ticket.c,
446 lib/gnutls_cipher.c, lib/gnutls_handshake.c, lib/gnutls_mpi.c,
447 lib/gnutls_pk.c, lib/nettle/gnettle.h, lib/nettle/mpi.c,
448 lib/nettle/pk.c, lib/nettle/rnd.c, lib/opencdk/misc.c,
449 lib/pkcs11_secret.c, lib/random.c, lib/random.h, lib/x509/pkcs12.c,
450 lib/x509/privkey_pkcs8.c: Optimizations in DH parameter generation. The larger prime is find first and the big loop needs to find a
451 smaller prime, increasing performance. The _gnutls_rnd() function
452 is now inline and GNUTLS_RND_NONCE doesn't update random generator
455 2011-12-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
459 2011-12-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
461 * lib/ext/session_ticket.c, lib/gnutls_handshake.c,
462 lib/gnutls_int.h: If a ticket is sent to client then don't store the
463 session information in the session cache.
465 2011-12-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
467 * NEWS, lib/algorithms/ciphersuites.c,
468 lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, src/cli-gaa.c,
469 src/cli.gaa, src/common.c, src/common.h, src/serv-gaa.c,
470 src/serv.gaa: Added gnutls_priority_get_cipher_suite(). This allows
471 listing the ciphersuites enabled in a priority structure. The
472 certtool -l option was overloaded so if combined with --priority it
473 will only list the ciphersuites that are enabled by the given
476 2011-12-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
478 * lib/nettle/ecc_mulmod.c: removed unused variables.
480 2011-12-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
482 * lib/gnutls_priority.c: Added 192-bit curve in normal priorities.
484 2011-12-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
486 * NEWS: documented updates
488 2011-12-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
490 * src/common.c: Print ephemeral information after certificate
493 2011-12-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
495 * lib/algorithms.h, lib/algorithms/ciphersuites.c,
496 lib/gnutls_handshake.c: Optimized ciphersuite sorting.
498 2011-12-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
500 * src/benchmark-tls.c: modified the test to a level of 80bits of
503 2011-12-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
505 * lib/algorithms/ecc.c, lib/includes/gnutls/gnutls.h.in: Added
508 2011-12-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
510 * tests/x509cert.c: be less verbose.
512 2011-12-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
514 * NEWS: documented fix
516 2011-12-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
518 * src/benchmark-tls.c: Added ECDHE-ECDSA test.
520 2011-12-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
522 * lib/nettle/Makefile.am, lib/nettle/ecc.h,
523 lib/nettle/ecc_make_key.c, lib/nettle/ecc_mulmod.c,
524 lib/nettle/ecc_mulmod_timing.c, lib/nettle/ecc_sign_hash.c: The
525 timing resistant ecc_mulmod() is only used when signing using the
526 ECDSA private key. This improves performance in all other cases that
527 do not require timing resistance.
529 2011-12-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
531 * lib/accelerated/x86/x86.h: corrected have_cpuid for x86-64.
533 2011-12-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
535 * doc/Makefile.am, doc/cha-cert-auth2.texi: renamed hardware tokens
538 2011-12-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
540 * doc/cha-cert-auth2.texi: Added section 'Managing encrypted keys'
541 to include PKCS 12 structures.
543 2011-12-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
545 * src/benchmark-tls.c: Added RSA key exchange to comparison.
547 2011-12-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
549 * devel/perlasm/cpuid-x86.pl, devel/perlasm/cpuid-x86_64.pl,
550 lib/accelerated/accelerated.c, lib/accelerated/x86/aes-padlock.c,
551 lib/accelerated/x86/aes-x86.c,
552 lib/accelerated/x86/asm-coff/cpuid-x86-64-coff.s,
553 lib/accelerated/x86/asm-coff/cpuid-x86-coff.s,
554 lib/accelerated/x86/asm/cpuid-x86-64.s,
555 lib/accelerated/x86/asm/cpuid-x86.s, lib/accelerated/x86/x86.h:
556 Exported gnutls_cpuid() and gnutls_have_cpuid().
558 2011-12-06 Simon Josefsson <simon@josefsson.org>
560 * doc/Makefile.am: Fix descriptive text.
562 2011-12-06 Simon Josefsson <simon@josefsson.org>
564 * doc/manpages/Makefile.am, doc/scripts/getfuncs.pl: Fix getfuncs.pl
565 parse bug; require non-empty list of function parameters. Otherwise it would detect a comment like '* foo()' as another
568 2011-12-06 Simon Josefsson <simon@josefsson.org>
570 * doc/manpages/gnutls_init.3,
571 doc/manpages/gnutls_pk_algorithm_get_name.3: Really remove manpages.
573 2011-12-06 Simon Josefsson <simon@josefsson.org>
575 * .gitignore, doc/manpages/Makefile.am: Fix whitespace in last
578 2011-12-06 Simon Josefsson <simon@josefsson.org>
580 * doc/manpages/Makefile.am: Don't rebuild man pages on every 'make'
583 2011-12-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
585 * doc/manpages/Makefile.am, doc/manpages/gnutls_alert_get.3,
586 doc/manpages/gnutls_alert_get_name.3,
587 doc/manpages/gnutls_alert_get_strname.3,
588 doc/manpages/gnutls_alert_send.3,
589 doc/manpages/gnutls_alert_send_appropriate.3,
590 doc/manpages/gnutls_anon_allocate_client_credentials.3,
591 doc/manpages/gnutls_anon_allocate_server_credentials.3,
592 doc/manpages/gnutls_anon_free_client_credentials.3,
593 doc/manpages/gnutls_anon_free_server_credentials.3,
594 doc/manpages/gnutls_anon_set_params_function.3,
595 doc/manpages/gnutls_anon_set_server_dh_params.3,
596 doc/manpages/gnutls_anon_set_server_params_function.3,
597 doc/manpages/gnutls_auth_client_get_type.3,
598 doc/manpages/gnutls_auth_get_type.3,
599 doc/manpages/gnutls_auth_server_get_type.3,
600 doc/manpages/gnutls_bye.3,
601 doc/manpages/gnutls_certificate_activation_time_peers.3,
602 doc/manpages/gnutls_certificate_allocate_credentials.3,
603 doc/manpages/gnutls_certificate_client_get_request_status.3,
604 doc/manpages/gnutls_certificate_expiration_time_peers.3,
605 doc/manpages/gnutls_certificate_free_ca_names.3,
606 doc/manpages/gnutls_certificate_free_cas.3,
607 doc/manpages/gnutls_certificate_free_credentials.3,
608 doc/manpages/gnutls_certificate_free_crls.3,
609 doc/manpages/gnutls_certificate_free_keys.3,
610 doc/manpages/gnutls_certificate_get_issuer.3,
611 doc/manpages/gnutls_certificate_get_openpgp_keyring.3,
612 doc/manpages/gnutls_certificate_get_ours.3,
613 doc/manpages/gnutls_certificate_get_peers.3,
614 doc/manpages/gnutls_certificate_send_x509_rdn_sequence.3,
615 doc/manpages/gnutls_certificate_server_set_request.3,
616 doc/manpages/gnutls_certificate_set_dh_params.3,
617 doc/manpages/gnutls_certificate_set_key.3,
618 doc/manpages/gnutls_certificate_set_openpgp_key.3,
619 doc/manpages/gnutls_certificate_set_openpgp_key_file.3,
620 doc/manpages/gnutls_certificate_set_openpgp_key_file2.3,
621 doc/manpages/gnutls_certificate_set_openpgp_key_mem.3,
622 doc/manpages/gnutls_certificate_set_openpgp_key_mem2.3,
623 doc/manpages/gnutls_certificate_set_params_function.3,
624 doc/manpages/gnutls_certificate_set_rsa_export_params.3,
625 doc/manpages/gnutls_certificate_set_verify_flags.3,
626 doc/manpages/gnutls_certificate_set_verify_function.3,
627 doc/manpages/gnutls_certificate_set_verify_limits.3,
628 doc/manpages/gnutls_certificate_set_x509_crl.3,
629 doc/manpages/gnutls_certificate_set_x509_crl_file.3,
630 doc/manpages/gnutls_certificate_set_x509_crl_mem.3,
631 doc/manpages/gnutls_certificate_set_x509_key.3,
632 doc/manpages/gnutls_certificate_set_x509_key_file.3,
633 doc/manpages/gnutls_certificate_set_x509_key_mem.3,
634 doc/manpages/gnutls_certificate_set_x509_trust.3,
635 doc/manpages/gnutls_certificate_set_x509_trust_file.3,
636 doc/manpages/gnutls_certificate_set_x509_trust_mem.3,
637 doc/manpages/gnutls_certificate_type_get.3,
638 doc/manpages/gnutls_certificate_type_get_id.3,
639 doc/manpages/gnutls_certificate_type_get_name.3,
640 doc/manpages/gnutls_certificate_type_list.3,
641 doc/manpages/gnutls_certificate_type_set_priority.3,
642 doc/manpages/gnutls_certificate_verify_peers2.3,
643 doc/manpages/gnutls_check_version.3,
644 doc/manpages/gnutls_cipher_add_auth.3,
645 doc/manpages/gnutls_cipher_decrypt.3,
646 doc/manpages/gnutls_cipher_decrypt2.3,
647 doc/manpages/gnutls_cipher_deinit.3,
648 doc/manpages/gnutls_cipher_encrypt.3,
649 doc/manpages/gnutls_cipher_encrypt2.3,
650 doc/manpages/gnutls_cipher_get.3,
651 doc/manpages/gnutls_cipher_get_block_size.3,
652 doc/manpages/gnutls_cipher_get_id.3,
653 doc/manpages/gnutls_cipher_get_key_size.3,
654 doc/manpages/gnutls_cipher_get_name.3,
655 doc/manpages/gnutls_cipher_init.3,
656 doc/manpages/gnutls_cipher_list.3,
657 doc/manpages/gnutls_cipher_set_iv.3,
658 doc/manpages/gnutls_cipher_set_priority.3,
659 doc/manpages/gnutls_cipher_suite_get_name.3,
660 doc/manpages/gnutls_cipher_suite_info.3,
661 doc/manpages/gnutls_cipher_tag.3,
662 doc/manpages/gnutls_compression_get.3,
663 doc/manpages/gnutls_compression_get_id.3,
664 doc/manpages/gnutls_compression_get_name.3,
665 doc/manpages/gnutls_compression_list.3,
666 doc/manpages/gnutls_compression_set_priority.3,
667 doc/manpages/gnutls_credentials_clear.3,
668 doc/manpages/gnutls_credentials_set.3,
669 doc/manpages/gnutls_db_check_entry.3,
670 doc/manpages/gnutls_db_get_ptr.3,
671 doc/manpages/gnutls_db_remove_session.3,
672 doc/manpages/gnutls_db_set_cache_expiration.3,
673 doc/manpages/gnutls_db_set_ptr.3,
674 doc/manpages/gnutls_db_set_remove_function.3,
675 doc/manpages/gnutls_db_set_retrieve_function.3,
676 doc/manpages/gnutls_db_set_store_function.3,
677 doc/manpages/gnutls_deinit.3, doc/manpages/gnutls_dh_get_group.3,
678 doc/manpages/gnutls_dh_get_peers_public_bits.3,
679 doc/manpages/gnutls_dh_get_prime_bits.3,
680 doc/manpages/gnutls_dh_get_pubkey.3,
681 doc/manpages/gnutls_dh_get_secret_bits.3,
682 doc/manpages/gnutls_dh_params_cpy.3,
683 doc/manpages/gnutls_dh_params_deinit.3,
684 doc/manpages/gnutls_dh_params_export_pkcs3.3,
685 doc/manpages/gnutls_dh_params_export_raw.3,
686 doc/manpages/gnutls_dh_params_generate2.3,
687 doc/manpages/gnutls_dh_params_import_pkcs3.3,
688 doc/manpages/gnutls_dh_params_import_raw.3,
689 doc/manpages/gnutls_dh_params_init.3,
690 doc/manpages/gnutls_dh_set_prime_bits.3,
691 doc/manpages/gnutls_dtls_cookie_send.3,
692 doc/manpages/gnutls_dtls_cookie_verify.3,
693 doc/manpages/gnutls_dtls_get_data_mtu.3,
694 doc/manpages/gnutls_dtls_get_mtu.3,
695 doc/manpages/gnutls_dtls_prestate_set.3,
696 doc/manpages/gnutls_dtls_set_mtu.3,
697 doc/manpages/gnutls_dtls_set_timeouts.3,
698 doc/manpages/gnutls_ecc_curve_get.3,
699 doc/manpages/gnutls_ecc_curve_get_name.3,
700 doc/manpages/gnutls_ecc_curve_get_size.3,
701 doc/manpages/gnutls_error_is_fatal.3,
702 doc/manpages/gnutls_error_to_alert.3,
703 doc/manpages/gnutls_fingerprint.3,
704 doc/manpages/gnutls_global_deinit.3,
705 doc/manpages/gnutls_global_init.3,
706 doc/manpages/gnutls_global_set_audit_log_function.3,
707 doc/manpages/gnutls_global_set_log_function.3,
708 doc/manpages/gnutls_global_set_log_level.3,
709 doc/manpages/gnutls_global_set_mem_functions.3,
710 doc/manpages/gnutls_global_set_mutex.3,
711 doc/manpages/gnutls_global_set_time_function.3,
712 doc/manpages/gnutls_handshake.3,
713 doc/manpages/gnutls_handshake_get_last_in.3,
714 doc/manpages/gnutls_handshake_get_last_out.3,
715 doc/manpages/gnutls_handshake_set_max_packet_length.3,
716 doc/manpages/gnutls_handshake_set_post_client_hello_function.3,
717 doc/manpages/gnutls_handshake_set_private_extensions.3,
718 doc/manpages/gnutls_hash.3, doc/manpages/gnutls_hash_deinit.3,
719 doc/manpages/gnutls_hash_fast.3,
720 doc/manpages/gnutls_hash_get_len.3,
721 doc/manpages/gnutls_hash_init.3, doc/manpages/gnutls_hash_output.3,
722 doc/manpages/gnutls_hex2bin.3, doc/manpages/gnutls_hex_decode.3,
723 doc/manpages/gnutls_hex_encode.3, doc/manpages/gnutls_hmac.3,
724 doc/manpages/gnutls_hmac_deinit.3, doc/manpages/gnutls_hmac_fast.3,
725 doc/manpages/gnutls_hmac_get_len.3,
726 doc/manpages/gnutls_hmac_init.3, doc/manpages/gnutls_hmac_output.3,
727 doc/manpages/gnutls_init.3, doc/manpages/gnutls_key_generate.3,
728 doc/manpages/gnutls_kx_get.3, doc/manpages/gnutls_kx_get_id.3,
729 doc/manpages/gnutls_kx_get_name.3, doc/manpages/gnutls_kx_list.3,
730 doc/manpages/gnutls_kx_set_priority.3,
731 doc/manpages/gnutls_mac_get.3, doc/manpages/gnutls_mac_get_id.3,
732 doc/manpages/gnutls_mac_get_key_size.3,
733 doc/manpages/gnutls_mac_get_name.3, doc/manpages/gnutls_mac_list.3,
734 doc/manpages/gnutls_mac_set_priority.3,
735 doc/manpages/gnutls_openpgp_crt_check_hostname.3,
736 doc/manpages/gnutls_openpgp_crt_deinit.3,
737 doc/manpages/gnutls_openpgp_crt_export.3,
738 doc/manpages/gnutls_openpgp_crt_get_auth_subkey.3,
739 doc/manpages/gnutls_openpgp_crt_get_creation_time.3,
740 doc/manpages/gnutls_openpgp_crt_get_expiration_time.3,
741 doc/manpages/gnutls_openpgp_crt_get_fingerprint.3,
742 doc/manpages/gnutls_openpgp_crt_get_key_id.3,
743 doc/manpages/gnutls_openpgp_crt_get_key_usage.3,
744 doc/manpages/gnutls_openpgp_crt_get_name.3,
745 doc/manpages/gnutls_openpgp_crt_get_pk_algorithm.3,
746 doc/manpages/gnutls_openpgp_crt_get_pk_dsa_raw.3,
747 doc/manpages/gnutls_openpgp_crt_get_pk_rsa_raw.3,
748 doc/manpages/gnutls_openpgp_crt_get_preferred_key_id.3,
749 doc/manpages/gnutls_openpgp_crt_get_revoked_status.3,
750 doc/manpages/gnutls_openpgp_crt_get_subkey_count.3,
751 doc/manpages/gnutls_openpgp_crt_get_subkey_creation_time.3,
752 doc/manpages/gnutls_openpgp_crt_get_subkey_expiration_time.3,
753 doc/manpages/gnutls_openpgp_crt_get_subkey_fingerprint.3,
754 doc/manpages/gnutls_openpgp_crt_get_subkey_id.3,
755 doc/manpages/gnutls_openpgp_crt_get_subkey_idx.3,
756 doc/manpages/gnutls_openpgp_crt_get_subkey_pk_algorithm.3,
757 doc/manpages/gnutls_openpgp_crt_get_subkey_pk_dsa_raw.3,
758 doc/manpages/gnutls_openpgp_crt_get_subkey_pk_rsa_raw.3,
759 doc/manpages/gnutls_openpgp_crt_get_subkey_revoked_status.3,
760 doc/manpages/gnutls_openpgp_crt_get_subkey_usage.3,
761 doc/manpages/gnutls_openpgp_crt_get_version.3,
762 doc/manpages/gnutls_openpgp_crt_import.3,
763 doc/manpages/gnutls_openpgp_crt_init.3,
764 doc/manpages/gnutls_openpgp_crt_print.3,
765 doc/manpages/gnutls_openpgp_crt_set_preferred_key_id.3,
766 doc/manpages/gnutls_openpgp_crt_verify_ring.3,
767 doc/manpages/gnutls_openpgp_crt_verify_self.3,
768 doc/manpages/gnutls_openpgp_keyring_check_id.3,
769 doc/manpages/gnutls_openpgp_keyring_deinit.3,
770 doc/manpages/gnutls_openpgp_keyring_get_crt.3,
771 doc/manpages/gnutls_openpgp_keyring_get_crt_count.3,
772 doc/manpages/gnutls_openpgp_keyring_import.3,
773 doc/manpages/gnutls_openpgp_keyring_init.3,
774 doc/manpages/gnutls_openpgp_privkey_deinit.3,
775 doc/manpages/gnutls_openpgp_privkey_export.3,
776 doc/manpages/gnutls_openpgp_privkey_export_dsa_raw.3,
777 doc/manpages/gnutls_openpgp_privkey_export_rsa_raw.3,
778 doc/manpages/gnutls_openpgp_privkey_export_subkey_dsa_raw.3,
779 doc/manpages/gnutls_openpgp_privkey_export_subkey_rsa_raw.3,
780 doc/manpages/gnutls_openpgp_privkey_get_fingerprint.3,
781 doc/manpages/gnutls_openpgp_privkey_get_key_id.3,
782 doc/manpages/gnutls_openpgp_privkey_get_pk_algorithm.3,
783 doc/manpages/gnutls_openpgp_privkey_get_preferred_key_id.3,
784 doc/manpages/gnutls_openpgp_privkey_get_revoked_status.3,
785 doc/manpages/gnutls_openpgp_privkey_get_subkey_count.3,
786 doc/manpages/gnutls_openpgp_privkey_get_subkey_creation_time.3,
787 doc/manpages/gnutls_openpgp_privkey_get_subkey_fingerprint.3,
788 doc/manpages/gnutls_openpgp_privkey_get_subkey_id.3,
789 doc/manpages/gnutls_openpgp_privkey_get_subkey_idx.3,
790 doc/manpages/gnutls_openpgp_privkey_get_subkey_pk_algorithm.3,
791 doc/manpages/gnutls_openpgp_privkey_get_subkey_revoked_status.3,
792 doc/manpages/gnutls_openpgp_privkey_import.3,
793 doc/manpages/gnutls_openpgp_privkey_init.3,
794 doc/manpages/gnutls_openpgp_privkey_sec_param.3,
795 doc/manpages/gnutls_openpgp_privkey_set_preferred_key_id.3,
796 doc/manpages/gnutls_openpgp_privkey_sign_hash.3,
797 doc/manpages/gnutls_openpgp_send_cert.3,
798 doc/manpages/gnutls_openpgp_set_recv_key_function.3,
799 doc/manpages/gnutls_pcert_deinit.3,
800 doc/manpages/gnutls_pcert_import_openpgp.3,
801 doc/manpages/gnutls_pcert_import_openpgp_raw.3,
802 doc/manpages/gnutls_pcert_import_x509.3,
803 doc/manpages/gnutls_pcert_import_x509_raw.3,
804 doc/manpages/gnutls_pcert_list_import_x509_raw.3,
805 doc/manpages/gnutls_pem_base64_decode.3,
806 doc/manpages/gnutls_pem_base64_decode_alloc.3,
807 doc/manpages/gnutls_pem_base64_encode.3,
808 doc/manpages/gnutls_pem_base64_encode_alloc.3,
809 doc/manpages/gnutls_perror.3,
810 doc/manpages/gnutls_pk_algorithm_get_name.3,
811 doc/manpages/gnutls_pk_bits_to_sec_param.3,
812 doc/manpages/gnutls_pk_get_id.3, doc/manpages/gnutls_pk_get_name.3,
813 doc/manpages/gnutls_pk_list.3,
814 doc/manpages/gnutls_pkcs11_add_provider.3,
815 doc/manpages/gnutls_pkcs11_copy_secret_key.3,
816 doc/manpages/gnutls_pkcs11_copy_x509_crt.3,
817 doc/manpages/gnutls_pkcs11_copy_x509_privkey.3,
818 doc/manpages/gnutls_pkcs11_deinit.3,
819 doc/manpages/gnutls_pkcs11_delete_url.3,
820 doc/manpages/gnutls_pkcs11_init.3,
821 doc/manpages/gnutls_pkcs11_obj_deinit.3,
822 doc/manpages/gnutls_pkcs11_obj_export.3,
823 doc/manpages/gnutls_pkcs11_obj_export_url.3,
824 doc/manpages/gnutls_pkcs11_obj_get_info.3,
825 doc/manpages/gnutls_pkcs11_obj_get_type.3,
826 doc/manpages/gnutls_pkcs11_obj_import_url.3,
827 doc/manpages/gnutls_pkcs11_obj_init.3,
828 doc/manpages/gnutls_pkcs11_obj_list_import_url.3,
829 doc/manpages/gnutls_pkcs11_privkey_deinit.3,
830 doc/manpages/gnutls_pkcs11_privkey_export_url.3,
831 doc/manpages/gnutls_pkcs11_privkey_generate.3,
832 doc/manpages/gnutls_pkcs11_privkey_get_info.3,
833 doc/manpages/gnutls_pkcs11_privkey_get_pk_algorithm.3,
834 doc/manpages/gnutls_pkcs11_privkey_import_url.3,
835 doc/manpages/gnutls_pkcs11_privkey_init.3,
836 doc/manpages/gnutls_pkcs11_set_pin_function.3,
837 doc/manpages/gnutls_pkcs11_set_token_function.3,
838 doc/manpages/gnutls_pkcs11_token_get_flags.3,
839 doc/manpages/gnutls_pkcs11_token_get_info.3,
840 doc/manpages/gnutls_pkcs11_token_get_mechanism.3,
841 doc/manpages/gnutls_pkcs11_token_get_url.3,
842 doc/manpages/gnutls_pkcs11_token_init.3,
843 doc/manpages/gnutls_pkcs11_token_set_pin.3,
844 doc/manpages/gnutls_pkcs11_type_get_name.3,
845 doc/manpages/gnutls_pkcs12_bag_decrypt.3,
846 doc/manpages/gnutls_pkcs12_bag_deinit.3,
847 doc/manpages/gnutls_pkcs12_bag_encrypt.3,
848 doc/manpages/gnutls_pkcs12_bag_get_count.3,
849 doc/manpages/gnutls_pkcs12_bag_get_data.3,
850 doc/manpages/gnutls_pkcs12_bag_get_friendly_name.3,
851 doc/manpages/gnutls_pkcs12_bag_get_key_id.3,
852 doc/manpages/gnutls_pkcs12_bag_get_type.3,
853 doc/manpages/gnutls_pkcs12_bag_init.3,
854 doc/manpages/gnutls_pkcs12_bag_set_crl.3,
855 doc/manpages/gnutls_pkcs12_bag_set_crt.3,
856 doc/manpages/gnutls_pkcs12_bag_set_data.3,
857 doc/manpages/gnutls_pkcs12_bag_set_friendly_name.3,
858 doc/manpages/gnutls_pkcs12_bag_set_key_id.3,
859 doc/manpages/gnutls_pkcs12_deinit.3,
860 doc/manpages/gnutls_pkcs12_export.3,
861 doc/manpages/gnutls_pkcs12_generate_mac.3,
862 doc/manpages/gnutls_pkcs12_get_bag.3,
863 doc/manpages/gnutls_pkcs12_import.3,
864 doc/manpages/gnutls_pkcs12_init.3,
865 doc/manpages/gnutls_pkcs12_set_bag.3,
866 doc/manpages/gnutls_pkcs12_verify_mac.3,
867 doc/manpages/gnutls_pkcs7_deinit.3,
868 doc/manpages/gnutls_pkcs7_delete_crl.3,
869 doc/manpages/gnutls_pkcs7_delete_crt.3,
870 doc/manpages/gnutls_pkcs7_export.3,
871 doc/manpages/gnutls_pkcs7_get_crl_count.3,
872 doc/manpages/gnutls_pkcs7_get_crl_raw.3,
873 doc/manpages/gnutls_pkcs7_get_crt_count.3,
874 doc/manpages/gnutls_pkcs7_get_crt_raw.3,
875 doc/manpages/gnutls_pkcs7_import.3,
876 doc/manpages/gnutls_pkcs7_init.3,
877 doc/manpages/gnutls_pkcs7_set_crl.3,
878 doc/manpages/gnutls_pkcs7_set_crl_raw.3,
879 doc/manpages/gnutls_pkcs7_set_crt.3,
880 doc/manpages/gnutls_pkcs7_set_crt_raw.3, doc/manpages/gnutls_prf.3,
881 doc/manpages/gnutls_prf_raw.3,
882 doc/manpages/gnutls_priority_deinit.3,
883 doc/manpages/gnutls_priority_init.3,
884 doc/manpages/gnutls_priority_set.3,
885 doc/manpages/gnutls_priority_set_direct.3,
886 doc/manpages/gnutls_privkey_decrypt_data.3,
887 doc/manpages/gnutls_privkey_deinit.3,
888 doc/manpages/gnutls_privkey_get_pk_algorithm.3,
889 doc/manpages/gnutls_privkey_get_type.3,
890 doc/manpages/gnutls_privkey_import_ext.3,
891 doc/manpages/gnutls_privkey_import_openpgp.3,
892 doc/manpages/gnutls_privkey_import_pkcs11.3,
893 doc/manpages/gnutls_privkey_import_x509.3,
894 doc/manpages/gnutls_privkey_init.3,
895 doc/manpages/gnutls_privkey_sign_data.3,
896 doc/manpages/gnutls_privkey_sign_hash.3,
897 doc/manpages/gnutls_protocol_get_id.3,
898 doc/manpages/gnutls_protocol_get_name.3,
899 doc/manpages/gnutls_protocol_get_version.3,
900 doc/manpages/gnutls_protocol_list.3,
901 doc/manpages/gnutls_protocol_set_priority.3,
902 doc/manpages/gnutls_psk_allocate_client_credentials.3,
903 doc/manpages/gnutls_psk_allocate_server_credentials.3,
904 doc/manpages/gnutls_psk_client_get_hint.3,
905 doc/manpages/gnutls_psk_free_client_credentials.3,
906 doc/manpages/gnutls_psk_free_server_credentials.3,
907 doc/manpages/gnutls_psk_server_get_username.3,
908 doc/manpages/gnutls_psk_set_client_credentials.3,
909 doc/manpages/gnutls_psk_set_params_function.3,
910 doc/manpages/gnutls_psk_set_server_credentials_file.3,
911 doc/manpages/gnutls_psk_set_server_credentials_hint.3,
912 doc/manpages/gnutls_psk_set_server_dh_params.3,
913 doc/manpages/gnutls_psk_set_server_params_function.3,
914 doc/manpages/gnutls_pubkey_deinit.3,
915 doc/manpages/gnutls_pubkey_export.3,
916 doc/manpages/gnutls_pubkey_get_key_id.3,
917 doc/manpages/gnutls_pubkey_get_key_usage.3,
918 doc/manpages/gnutls_pubkey_get_openpgp_key_id.3,
919 doc/manpages/gnutls_pubkey_get_pk_algorithm.3,
920 doc/manpages/gnutls_pubkey_get_pk_dsa_raw.3,
921 doc/manpages/gnutls_pubkey_get_pk_ecc_raw.3,
922 doc/manpages/gnutls_pubkey_get_pk_ecc_x962.3,
923 doc/manpages/gnutls_pubkey_get_pk_rsa_raw.3,
924 doc/manpages/gnutls_pubkey_get_preferred_hash_algorithm.3,
925 doc/manpages/gnutls_pubkey_get_verify_algorithm.3,
926 doc/manpages/gnutls_pubkey_import.3,
927 doc/manpages/gnutls_pubkey_import_dsa_raw.3,
928 doc/manpages/gnutls_pubkey_import_ecc_raw.3,
929 doc/manpages/gnutls_pubkey_import_ecc_x962.3,
930 doc/manpages/gnutls_pubkey_import_openpgp.3,
931 doc/manpages/gnutls_pubkey_import_pkcs11.3,
932 doc/manpages/gnutls_pubkey_import_pkcs11_url.3,
933 doc/manpages/gnutls_pubkey_import_privkey.3,
934 doc/manpages/gnutls_pubkey_import_rsa_raw.3,
935 doc/manpages/gnutls_pubkey_import_x509.3,
936 doc/manpages/gnutls_pubkey_init.3,
937 doc/manpages/gnutls_pubkey_set_key_usage.3,
938 doc/manpages/gnutls_pubkey_verify_data.3,
939 doc/manpages/gnutls_pubkey_verify_data2.3,
940 doc/manpages/gnutls_pubkey_verify_hash.3,
941 doc/manpages/gnutls_record_check_pending.3,
942 doc/manpages/gnutls_record_disable_padding.3,
943 doc/manpages/gnutls_record_get_direction.3,
944 doc/manpages/gnutls_record_get_discarded.3,
945 doc/manpages/gnutls_record_get_max_size.3,
946 doc/manpages/gnutls_record_recv.3,
947 doc/manpages/gnutls_record_recv_seq.3,
948 doc/manpages/gnutls_record_send.3,
949 doc/manpages/gnutls_record_set_max_size.3,
950 doc/manpages/gnutls_rehandshake.3, doc/manpages/gnutls_rnd.3,
951 doc/manpages/gnutls_rsa_export_get_modulus_bits.3,
952 doc/manpages/gnutls_rsa_export_get_pubkey.3,
953 doc/manpages/gnutls_rsa_params_cpy.3,
954 doc/manpages/gnutls_rsa_params_deinit.3,
955 doc/manpages/gnutls_rsa_params_export_pkcs1.3,
956 doc/manpages/gnutls_rsa_params_export_raw.3,
957 doc/manpages/gnutls_rsa_params_generate2.3,
958 doc/manpages/gnutls_rsa_params_import_pkcs1.3,
959 doc/manpages/gnutls_rsa_params_import_raw.3,
960 doc/manpages/gnutls_rsa_params_init.3,
961 doc/manpages/gnutls_safe_renegotiation_status.3,
962 doc/manpages/gnutls_sec_param_get_name.3,
963 doc/manpages/gnutls_sec_param_to_pk_bits.3,
964 doc/manpages/gnutls_server_name_get.3,
965 doc/manpages/gnutls_server_name_set.3,
966 doc/manpages/gnutls_session_channel_binding.3,
967 doc/manpages/gnutls_session_enable_compatibility_mode.3,
968 doc/manpages/gnutls_session_get_data.3,
969 doc/manpages/gnutls_session_get_data2.3,
970 doc/manpages/gnutls_session_get_id.3,
971 doc/manpages/gnutls_session_get_ptr.3,
972 doc/manpages/gnutls_session_is_resumed.3,
973 doc/manpages/gnutls_session_set_data.3,
974 doc/manpages/gnutls_session_set_ptr.3,
975 doc/manpages/gnutls_session_ticket_enable_client.3,
976 doc/manpages/gnutls_session_ticket_enable_server.3,
977 doc/manpages/gnutls_session_ticket_key_generate.3,
978 doc/manpages/gnutls_set_default_export_priority.3,
979 doc/manpages/gnutls_set_default_priority.3,
980 doc/manpages/gnutls_sign_algorithm_get_requested.3,
981 doc/manpages/gnutls_sign_callback_get.3,
982 doc/manpages/gnutls_sign_callback_set.3,
983 doc/manpages/gnutls_sign_get_id.3,
984 doc/manpages/gnutls_sign_get_name.3,
985 doc/manpages/gnutls_sign_list.3,
986 doc/manpages/gnutls_srp_allocate_client_credentials.3,
987 doc/manpages/gnutls_srp_allocate_server_credentials.3,
988 doc/manpages/gnutls_srp_base64_decode.3,
989 doc/manpages/gnutls_srp_base64_decode_alloc.3,
990 doc/manpages/gnutls_srp_base64_encode.3,
991 doc/manpages/gnutls_srp_base64_encode_alloc.3,
992 doc/manpages/gnutls_srp_free_client_credentials.3,
993 doc/manpages/gnutls_srp_free_server_credentials.3,
994 doc/manpages/gnutls_srp_server_get_username.3,
995 doc/manpages/gnutls_srp_set_client_credentials.3,
996 doc/manpages/gnutls_srp_set_prime_bits.3,
997 doc/manpages/gnutls_srp_set_server_credentials_file.3,
998 doc/manpages/gnutls_srp_verifier.3, doc/manpages/gnutls_strerror.3,
999 doc/manpages/gnutls_strerror_name.3,
1000 doc/manpages/gnutls_supplemental_get_name.3,
1001 doc/manpages/gnutls_transport_get_ptr.3,
1002 doc/manpages/gnutls_transport_get_ptr2.3,
1003 doc/manpages/gnutls_transport_set_errno.3,
1004 doc/manpages/gnutls_transport_set_errno_function.3,
1005 doc/manpages/gnutls_transport_set_ptr.3,
1006 doc/manpages/gnutls_transport_set_ptr2.3,
1007 doc/manpages/gnutls_transport_set_pull_function.3,
1008 doc/manpages/gnutls_transport_set_pull_timeout_function.3,
1009 doc/manpages/gnutls_transport_set_push_function.3,
1010 doc/manpages/gnutls_transport_set_vec_push_function.3,
1011 doc/manpages/gnutls_x509_crl_check_issuer.3,
1012 doc/manpages/gnutls_x509_crl_deinit.3,
1013 doc/manpages/gnutls_x509_crl_export.3,
1014 doc/manpages/gnutls_x509_crl_get_authority_key_id.3,
1015 doc/manpages/gnutls_x509_crl_get_crt_count.3,
1016 doc/manpages/gnutls_x509_crl_get_crt_serial.3,
1017 doc/manpages/gnutls_x509_crl_get_dn_oid.3,
1018 doc/manpages/gnutls_x509_crl_get_extension_data.3,
1019 doc/manpages/gnutls_x509_crl_get_extension_info.3,
1020 doc/manpages/gnutls_x509_crl_get_extension_oid.3,
1021 doc/manpages/gnutls_x509_crl_get_issuer_dn.3,
1022 doc/manpages/gnutls_x509_crl_get_issuer_dn_by_oid.3,
1023 doc/manpages/gnutls_x509_crl_get_next_update.3,
1024 doc/manpages/gnutls_x509_crl_get_number.3,
1025 doc/manpages/gnutls_x509_crl_get_raw_issuer_dn.3,
1026 doc/manpages/gnutls_x509_crl_get_signature.3,
1027 doc/manpages/gnutls_x509_crl_get_signature_algorithm.3,
1028 doc/manpages/gnutls_x509_crl_get_this_update.3,
1029 doc/manpages/gnutls_x509_crl_get_version.3,
1030 doc/manpages/gnutls_x509_crl_import.3,
1031 doc/manpages/gnutls_x509_crl_init.3,
1032 doc/manpages/gnutls_x509_crl_list_import.3,
1033 doc/manpages/gnutls_x509_crl_list_import2.3,
1034 doc/manpages/gnutls_x509_crl_print.3,
1035 doc/manpages/gnutls_x509_crl_privkey_sign.3,
1036 doc/manpages/gnutls_x509_crl_set_authority_key_id.3,
1037 doc/manpages/gnutls_x509_crl_set_crt.3,
1038 doc/manpages/gnutls_x509_crl_set_crt_serial.3,
1039 doc/manpages/gnutls_x509_crl_set_next_update.3,
1040 doc/manpages/gnutls_x509_crl_set_number.3,
1041 doc/manpages/gnutls_x509_crl_set_this_update.3,
1042 doc/manpages/gnutls_x509_crl_set_version.3,
1043 doc/manpages/gnutls_x509_crl_sign.3,
1044 doc/manpages/gnutls_x509_crl_sign2.3,
1045 doc/manpages/gnutls_x509_crl_verify.3,
1046 doc/manpages/gnutls_x509_crq_deinit.3,
1047 doc/manpages/gnutls_x509_crq_export.3,
1048 doc/manpages/gnutls_x509_crq_get_attribute_by_oid.3,
1049 doc/manpages/gnutls_x509_crq_get_attribute_data.3,
1050 doc/manpages/gnutls_x509_crq_get_attribute_info.3,
1051 doc/manpages/gnutls_x509_crq_get_basic_constraints.3,
1052 doc/manpages/gnutls_x509_crq_get_challenge_password.3,
1053 doc/manpages/gnutls_x509_crq_get_dn.3,
1054 doc/manpages/gnutls_x509_crq_get_dn_by_oid.3,
1055 doc/manpages/gnutls_x509_crq_get_dn_oid.3,
1056 doc/manpages/gnutls_x509_crq_get_extension_by_oid.3,
1057 doc/manpages/gnutls_x509_crq_get_extension_data.3,
1058 doc/manpages/gnutls_x509_crq_get_extension_info.3,
1059 doc/manpages/gnutls_x509_crq_get_key_id.3,
1060 doc/manpages/gnutls_x509_crq_get_key_purpose_oid.3,
1061 doc/manpages/gnutls_x509_crq_get_key_rsa_raw.3,
1062 doc/manpages/gnutls_x509_crq_get_key_usage.3,
1063 doc/manpages/gnutls_x509_crq_get_pk_algorithm.3,
1064 doc/manpages/gnutls_x509_crq_get_subject_alt_name.3,
1065 doc/manpages/gnutls_x509_crq_get_subject_alt_othername_oid.3,
1066 doc/manpages/gnutls_x509_crq_get_version.3,
1067 doc/manpages/gnutls_x509_crq_import.3,
1068 doc/manpages/gnutls_x509_crq_init.3,
1069 doc/manpages/gnutls_x509_crq_print.3,
1070 doc/manpages/gnutls_x509_crq_privkey_sign.3,
1071 doc/manpages/gnutls_x509_crq_set_attribute_by_oid.3,
1072 doc/manpages/gnutls_x509_crq_set_basic_constraints.3,
1073 doc/manpages/gnutls_x509_crq_set_challenge_password.3,
1074 doc/manpages/gnutls_x509_crq_set_dn_by_oid.3,
1075 doc/manpages/gnutls_x509_crq_set_key.3,
1076 doc/manpages/gnutls_x509_crq_set_key_purpose_oid.3,
1077 doc/manpages/gnutls_x509_crq_set_key_rsa_raw.3,
1078 doc/manpages/gnutls_x509_crq_set_key_usage.3,
1079 doc/manpages/gnutls_x509_crq_set_pubkey.3,
1080 doc/manpages/gnutls_x509_crq_set_subject_alt_name.3,
1081 doc/manpages/gnutls_x509_crq_set_version.3,
1082 doc/manpages/gnutls_x509_crq_sign.3,
1083 doc/manpages/gnutls_x509_crq_sign2.3,
1084 doc/manpages/gnutls_x509_crq_verify.3,
1085 doc/manpages/gnutls_x509_crt_check_hostname.3,
1086 doc/manpages/gnutls_x509_crt_check_issuer.3,
1087 doc/manpages/gnutls_x509_crt_check_revocation.3,
1088 doc/manpages/gnutls_x509_crt_cpy_crl_dist_points.3,
1089 doc/manpages/gnutls_x509_crt_deinit.3,
1090 doc/manpages/gnutls_x509_crt_export.3,
1091 doc/manpages/gnutls_x509_crt_get_activation_time.3,
1092 doc/manpages/gnutls_x509_crt_get_authority_info_access.3,
1093 doc/manpages/gnutls_x509_crt_get_authority_key_id.3,
1094 doc/manpages/gnutls_x509_crt_get_basic_constraints.3,
1095 doc/manpages/gnutls_x509_crt_get_ca_status.3,
1096 doc/manpages/gnutls_x509_crt_get_crl_dist_points.3,
1097 doc/manpages/gnutls_x509_crt_get_dn.3,
1098 doc/manpages/gnutls_x509_crt_get_dn_by_oid.3,
1099 doc/manpages/gnutls_x509_crt_get_dn_oid.3,
1100 doc/manpages/gnutls_x509_crt_get_expiration_time.3,
1101 doc/manpages/gnutls_x509_crt_get_extension_by_oid.3,
1102 doc/manpages/gnutls_x509_crt_get_extension_data.3,
1103 doc/manpages/gnutls_x509_crt_get_extension_info.3,
1104 doc/manpages/gnutls_x509_crt_get_extension_oid.3,
1105 doc/manpages/gnutls_x509_crt_get_fingerprint.3,
1106 doc/manpages/gnutls_x509_crt_get_issuer.3,
1107 doc/manpages/gnutls_x509_crt_get_issuer_alt_name.3,
1108 doc/manpages/gnutls_x509_crt_get_issuer_alt_name2.3,
1109 doc/manpages/gnutls_x509_crt_get_issuer_alt_othername_oid.3,
1110 doc/manpages/gnutls_x509_crt_get_issuer_dn.3,
1111 doc/manpages/gnutls_x509_crt_get_issuer_dn_by_oid.3,
1112 doc/manpages/gnutls_x509_crt_get_issuer_dn_oid.3,
1113 doc/manpages/gnutls_x509_crt_get_issuer_unique_id.3,
1114 doc/manpages/gnutls_x509_crt_get_key_id.3,
1115 doc/manpages/gnutls_x509_crt_get_key_purpose_oid.3,
1116 doc/manpages/gnutls_x509_crt_get_key_usage.3,
1117 doc/manpages/gnutls_x509_crt_get_pk_algorithm.3,
1118 doc/manpages/gnutls_x509_crt_get_pk_dsa_raw.3,
1119 doc/manpages/gnutls_x509_crt_get_pk_rsa_raw.3,
1120 doc/manpages/gnutls_x509_crt_get_preferred_hash_algorithm.3,
1121 doc/manpages/gnutls_x509_crt_get_proxy.3,
1122 doc/manpages/gnutls_x509_crt_get_raw_dn.3,
1123 doc/manpages/gnutls_x509_crt_get_raw_issuer_dn.3,
1124 doc/manpages/gnutls_x509_crt_get_serial.3,
1125 doc/manpages/gnutls_x509_crt_get_signature.3,
1126 doc/manpages/gnutls_x509_crt_get_signature_algorithm.3,
1127 doc/manpages/gnutls_x509_crt_get_subject.3,
1128 doc/manpages/gnutls_x509_crt_get_subject_alt_name.3,
1129 doc/manpages/gnutls_x509_crt_get_subject_alt_name2.3,
1130 doc/manpages/gnutls_x509_crt_get_subject_alt_othername_oid.3,
1131 doc/manpages/gnutls_x509_crt_get_subject_key_id.3,
1132 doc/manpages/gnutls_x509_crt_get_subject_unique_id.3,
1133 doc/manpages/gnutls_x509_crt_get_verify_algorithm.3,
1134 doc/manpages/gnutls_x509_crt_get_version.3,
1135 doc/manpages/gnutls_x509_crt_import.3,
1136 doc/manpages/gnutls_x509_crt_import_pkcs11.3,
1137 doc/manpages/gnutls_x509_crt_import_pkcs11_url.3,
1138 doc/manpages/gnutls_x509_crt_init.3,
1139 doc/manpages/gnutls_x509_crt_list_import.3,
1140 doc/manpages/gnutls_x509_crt_list_import2.3,
1141 doc/manpages/gnutls_x509_crt_list_import_pkcs11.3,
1142 doc/manpages/gnutls_x509_crt_list_verify.3,
1143 doc/manpages/gnutls_x509_crt_print.3,
1144 doc/manpages/gnutls_x509_crt_privkey_sign.3,
1145 doc/manpages/gnutls_x509_crt_set_activation_time.3,
1146 doc/manpages/gnutls_x509_crt_set_authority_key_id.3,
1147 doc/manpages/gnutls_x509_crt_set_basic_constraints.3,
1148 doc/manpages/gnutls_x509_crt_set_ca_status.3,
1149 doc/manpages/gnutls_x509_crt_set_crl_dist_points.3,
1150 doc/manpages/gnutls_x509_crt_set_crl_dist_points2.3,
1151 doc/manpages/gnutls_x509_crt_set_crq.3,
1152 doc/manpages/gnutls_x509_crt_set_crq_extensions.3,
1153 doc/manpages/gnutls_x509_crt_set_dn_by_oid.3,
1154 doc/manpages/gnutls_x509_crt_set_expiration_time.3,
1155 doc/manpages/gnutls_x509_crt_set_extension_by_oid.3,
1156 doc/manpages/gnutls_x509_crt_set_issuer_dn_by_oid.3,
1157 doc/manpages/gnutls_x509_crt_set_key.3,
1158 doc/manpages/gnutls_x509_crt_set_key_purpose_oid.3,
1159 doc/manpages/gnutls_x509_crt_set_key_usage.3,
1160 doc/manpages/gnutls_x509_crt_set_proxy.3,
1161 doc/manpages/gnutls_x509_crt_set_proxy_dn.3,
1162 doc/manpages/gnutls_x509_crt_set_pubkey.3,
1163 doc/manpages/gnutls_x509_crt_set_serial.3,
1164 doc/manpages/gnutls_x509_crt_set_subject_alt_name.3,
1165 doc/manpages/gnutls_x509_crt_set_subject_alternative_name.3,
1166 doc/manpages/gnutls_x509_crt_set_subject_key_id.3,
1167 doc/manpages/gnutls_x509_crt_set_version.3,
1168 doc/manpages/gnutls_x509_crt_sign.3,
1169 doc/manpages/gnutls_x509_crt_sign2.3,
1170 doc/manpages/gnutls_x509_crt_verify.3,
1171 doc/manpages/gnutls_x509_crt_verify_data.3,
1172 doc/manpages/gnutls_x509_crt_verify_hash.3,
1173 doc/manpages/gnutls_x509_dn_deinit.3,
1174 doc/manpages/gnutls_x509_dn_export.3,
1175 doc/manpages/gnutls_x509_dn_get_rdn_ava.3,
1176 doc/manpages/gnutls_x509_dn_import.3,
1177 doc/manpages/gnutls_x509_dn_init.3,
1178 doc/manpages/gnutls_x509_dn_oid_known.3,
1179 doc/manpages/gnutls_x509_privkey_cpy.3,
1180 doc/manpages/gnutls_x509_privkey_deinit.3,
1181 doc/manpages/gnutls_x509_privkey_export.3,
1182 doc/manpages/gnutls_x509_privkey_export_dsa_raw.3,
1183 doc/manpages/gnutls_x509_privkey_export_ecc_raw.3,
1184 doc/manpages/gnutls_x509_privkey_export_pkcs8.3,
1185 doc/manpages/gnutls_x509_privkey_export_rsa_raw.3,
1186 doc/manpages/gnutls_x509_privkey_export_rsa_raw2.3,
1187 doc/manpages/gnutls_x509_privkey_fix.3,
1188 doc/manpages/gnutls_x509_privkey_generate.3,
1189 doc/manpages/gnutls_x509_privkey_get_key_id.3,
1190 doc/manpages/gnutls_x509_privkey_get_pk_algorithm.3,
1191 doc/manpages/gnutls_x509_privkey_import.3,
1192 doc/manpages/gnutls_x509_privkey_import_dsa_raw.3,
1193 doc/manpages/gnutls_x509_privkey_import_ecc_raw.3,
1194 doc/manpages/gnutls_x509_privkey_import_pkcs8.3,
1195 doc/manpages/gnutls_x509_privkey_import_rsa_raw.3,
1196 doc/manpages/gnutls_x509_privkey_import_rsa_raw2.3,
1197 doc/manpages/gnutls_x509_privkey_init.3,
1198 doc/manpages/gnutls_x509_privkey_sec_param.3,
1199 doc/manpages/gnutls_x509_privkey_sign_data.3,
1200 doc/manpages/gnutls_x509_privkey_sign_hash.3,
1201 doc/manpages/gnutls_x509_privkey_verify_params.3,
1202 doc/manpages/gnutls_x509_rdn_get.3,
1203 doc/manpages/gnutls_x509_rdn_get_by_oid.3,
1204 doc/manpages/gnutls_x509_rdn_get_oid.3,
1205 doc/manpages/gnutls_x509_trust_list_add_cas.3,
1206 doc/manpages/gnutls_x509_trust_list_add_crls.3,
1207 doc/manpages/gnutls_x509_trust_list_add_named_crt.3,
1208 doc/manpages/gnutls_x509_trust_list_deinit.3,
1209 doc/manpages/gnutls_x509_trust_list_get_issuer.3,
1210 doc/manpages/gnutls_x509_trust_list_init.3,
1211 doc/manpages/gnutls_x509_trust_list_verify_crt.3,
1212 doc/manpages/gnutls_x509_trust_list_verify_named_crt.3: manpages
1213 don't need to be in the repository.
1215 2011-12-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1217 * tests/Makefile.am, tests/cipher-test.c, tests/slow/Makefile.am,
1218 tests/slow/cipher-test.c: cipher-test is now run without valgrind
1220 2011-11-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1222 * lib/gnutls_errors.h: removed superfluous check.
1224 2011-11-29 Simon Josefsson <simon@josefsson.org>
1226 * cfg.mk, tests/suite/chain: Fix syntax-check nits.
1228 2011-11-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1230 * doc/cha-gtls-app.texi, doc/cha-intro-tls.texi,
1231 doc/scripts/mytexi2latex: documentation updates.
1233 2011-11-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1235 * doc/gnutls.texi: use emph instead of cite since cite produces bad
1236 output in texi2html.
1238 2011-11-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1240 * doc/cha-cert-auth2.texi, doc/scripts/mytexi2latex: updates in
1241 sectioning. Subheading was used instead of subsection in few cases.
1243 2011-11-25 Ludovic Courtès <ludo@gnu.org>
1245 * guile/modules/system/documentation/output.scm: guile: Fix the
1246 (unused) `output-procedure-texi-documentation-from-c-file'. Reported by Mike Gran <spk121@yahoo.com>.
1248 2011-11-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1250 * cfg.mk: copy images to html_node
1252 2011-11-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1254 * doc/cha-cert-auth2.texi: added missing node
1256 2011-11-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1258 * doc/cha-cert-auth2.texi, doc/cha-gtls-app.texi,
1259 doc/cha-internals.texi, doc/cha-intro-tls.texi,
1260 doc/cha-library.texi, doc/cha-programs.texi, doc/scripts/gdoc,
1261 doc/scripts/mytexi2latex: updates in texi and tex documentation.
1263 2011-11-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1265 * lib/opencdk/Makefile.am, lib/opencdk/dummy.c, lib/opencdk/main.h:
1266 dropped unneeded function.
1268 2011-11-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1270 * .gitignore, doc/Makefile.am, doc/cha-functions.texi,
1271 doc/cha-gtls-app.texi, doc/gnutls.texi, doc/scripts/gdoc,
1272 lib/gnutls_state.c, lib/includes/gnutls/gnutls.h.in,
1273 lib/includes/gnutls/openpgp.h: Separated API reference to header
1274 files in the texi manual.
1276 2011-11-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1278 * doc/cha-gtls-examples.texi: removed text for tcp functions.
1280 2011-11-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1282 * NEWS, cfg.mk, doc/manpages/Makefile.am,
1283 doc/manpages/gnutls_alert_get.3,
1284 doc/manpages/gnutls_alert_get_name.3,
1285 doc/manpages/gnutls_alert_get_strname.3,
1286 doc/manpages/gnutls_alert_send.3,
1287 doc/manpages/gnutls_alert_send_appropriate.3,
1288 doc/manpages/gnutls_anon_allocate_client_credentials.3,
1289 doc/manpages/gnutls_anon_allocate_server_credentials.3,
1290 doc/manpages/gnutls_anon_free_client_credentials.3,
1291 doc/manpages/gnutls_anon_free_server_credentials.3,
1292 doc/manpages/gnutls_anon_set_params_function.3,
1293 doc/manpages/gnutls_anon_set_server_dh_params.3,
1294 doc/manpages/gnutls_anon_set_server_params_function.3,
1295 doc/manpages/gnutls_auth_client_get_type.3,
1296 doc/manpages/gnutls_auth_get_type.3,
1297 doc/manpages/gnutls_auth_server_get_type.3,
1298 doc/manpages/gnutls_bye.3,
1299 doc/manpages/gnutls_certificate_activation_time_peers.3,
1300 doc/manpages/gnutls_certificate_allocate_credentials.3,
1301 doc/manpages/gnutls_certificate_client_get_request_status.3,
1302 doc/manpages/gnutls_certificate_expiration_time_peers.3,
1303 doc/manpages/gnutls_certificate_free_ca_names.3,
1304 doc/manpages/gnutls_certificate_free_cas.3,
1305 doc/manpages/gnutls_certificate_free_credentials.3,
1306 doc/manpages/gnutls_certificate_free_crls.3,
1307 doc/manpages/gnutls_certificate_free_keys.3,
1308 doc/manpages/gnutls_certificate_get_issuer.3,
1309 doc/manpages/gnutls_certificate_get_openpgp_keyring.3,
1310 doc/manpages/gnutls_certificate_get_ours.3,
1311 doc/manpages/gnutls_certificate_get_peers.3,
1312 doc/manpages/gnutls_certificate_send_x509_rdn_sequence.3,
1313 doc/manpages/gnutls_certificate_server_set_request.3,
1314 doc/manpages/gnutls_certificate_set_dh_params.3,
1315 doc/manpages/gnutls_certificate_set_key.3,
1316 doc/manpages/gnutls_certificate_set_openpgp_key.3,
1317 doc/manpages/gnutls_certificate_set_openpgp_key_file.3,
1318 doc/manpages/gnutls_certificate_set_openpgp_key_file2.3,
1319 doc/manpages/gnutls_certificate_set_openpgp_key_mem.3,
1320 doc/manpages/gnutls_certificate_set_openpgp_key_mem2.3,
1321 doc/manpages/gnutls_certificate_set_params_function.3,
1322 doc/manpages/gnutls_certificate_set_rsa_export_params.3,
1323 doc/manpages/gnutls_certificate_set_verify_flags.3,
1324 doc/manpages/gnutls_certificate_set_verify_function.3,
1325 doc/manpages/gnutls_certificate_set_verify_limits.3,
1326 doc/manpages/gnutls_certificate_set_x509_crl.3,
1327 doc/manpages/gnutls_certificate_set_x509_crl_file.3,
1328 doc/manpages/gnutls_certificate_set_x509_crl_mem.3,
1329 doc/manpages/gnutls_certificate_set_x509_key.3,
1330 doc/manpages/gnutls_certificate_set_x509_key_file.3,
1331 doc/manpages/gnutls_certificate_set_x509_key_mem.3,
1332 doc/manpages/gnutls_certificate_set_x509_trust.3,
1333 doc/manpages/gnutls_certificate_set_x509_trust_file.3,
1334 doc/manpages/gnutls_certificate_set_x509_trust_mem.3,
1335 doc/manpages/gnutls_certificate_type_get.3,
1336 doc/manpages/gnutls_certificate_type_get_id.3,
1337 doc/manpages/gnutls_certificate_type_get_name.3,
1338 doc/manpages/gnutls_certificate_type_list.3,
1339 doc/manpages/gnutls_certificate_type_set_priority.3,
1340 doc/manpages/gnutls_certificate_verify_peers2.3,
1341 doc/manpages/gnutls_check_version.3,
1342 doc/manpages/gnutls_cipher_add_auth.3,
1343 doc/manpages/gnutls_cipher_decrypt.3,
1344 doc/manpages/gnutls_cipher_decrypt2.3,
1345 doc/manpages/gnutls_cipher_deinit.3,
1346 doc/manpages/gnutls_cipher_encrypt.3,
1347 doc/manpages/gnutls_cipher_encrypt2.3,
1348 doc/manpages/gnutls_cipher_get.3,
1349 doc/manpages/gnutls_cipher_get_block_size.3,
1350 doc/manpages/gnutls_cipher_get_id.3,
1351 doc/manpages/gnutls_cipher_get_key_size.3,
1352 doc/manpages/gnutls_cipher_get_name.3,
1353 doc/manpages/gnutls_cipher_init.3,
1354 doc/manpages/gnutls_cipher_list.3,
1355 doc/manpages/gnutls_cipher_set_iv.3,
1356 doc/manpages/gnutls_cipher_set_priority.3,
1357 doc/manpages/gnutls_cipher_suite_get_name.3,
1358 doc/manpages/gnutls_cipher_suite_info.3,
1359 doc/manpages/gnutls_cipher_tag.3,
1360 doc/manpages/gnutls_compression_get.3,
1361 doc/manpages/gnutls_compression_get_id.3,
1362 doc/manpages/gnutls_compression_get_name.3,
1363 doc/manpages/gnutls_compression_list.3,
1364 doc/manpages/gnutls_compression_set_priority.3,
1365 doc/manpages/gnutls_credentials_clear.3,
1366 doc/manpages/gnutls_credentials_set.3,
1367 doc/manpages/gnutls_db_check_entry.3,
1368 doc/manpages/gnutls_db_get_ptr.3,
1369 doc/manpages/gnutls_db_remove_session.3,
1370 doc/manpages/gnutls_db_set_cache_expiration.3,
1371 doc/manpages/gnutls_db_set_ptr.3,
1372 doc/manpages/gnutls_db_set_remove_function.3,
1373 doc/manpages/gnutls_db_set_retrieve_function.3,
1374 doc/manpages/gnutls_db_set_store_function.3,
1375 doc/manpages/gnutls_deinit.3, doc/manpages/gnutls_dh_get_group.3,
1376 doc/manpages/gnutls_dh_get_peers_public_bits.3,
1377 doc/manpages/gnutls_dh_get_prime_bits.3,
1378 doc/manpages/gnutls_dh_get_pubkey.3,
1379 doc/manpages/gnutls_dh_get_secret_bits.3,
1380 doc/manpages/gnutls_dh_params_cpy.3,
1381 doc/manpages/gnutls_dh_params_deinit.3,
1382 doc/manpages/gnutls_dh_params_export_pkcs3.3,
1383 doc/manpages/gnutls_dh_params_export_raw.3,
1384 doc/manpages/gnutls_dh_params_generate2.3,
1385 doc/manpages/gnutls_dh_params_import_pkcs3.3,
1386 doc/manpages/gnutls_dh_params_import_raw.3,
1387 doc/manpages/gnutls_dh_params_init.3,
1388 doc/manpages/gnutls_dh_set_prime_bits.3,
1389 doc/manpages/gnutls_dtls_cookie_send.3,
1390 doc/manpages/gnutls_dtls_cookie_verify.3,
1391 doc/manpages/gnutls_dtls_get_data_mtu.3,
1392 doc/manpages/gnutls_dtls_get_mtu.3,
1393 doc/manpages/gnutls_dtls_prestate_set.3,
1394 doc/manpages/gnutls_dtls_set_mtu.3,
1395 doc/manpages/gnutls_dtls_set_timeouts.3,
1396 doc/manpages/gnutls_ecc_curve_get.3,
1397 doc/manpages/gnutls_ecc_curve_get_name.3,
1398 doc/manpages/gnutls_ecc_curve_get_size.3,
1399 doc/manpages/gnutls_error_is_fatal.3,
1400 doc/manpages/gnutls_error_to_alert.3,
1401 doc/manpages/gnutls_fingerprint.3,
1402 doc/manpages/gnutls_global_deinit.3,
1403 doc/manpages/gnutls_global_init.3,
1404 doc/manpages/gnutls_global_set_audit_log_function.3,
1405 doc/manpages/gnutls_global_set_log_function.3,
1406 doc/manpages/gnutls_global_set_log_level.3,
1407 doc/manpages/gnutls_global_set_mem_functions.3,
1408 doc/manpages/gnutls_global_set_mutex.3,
1409 doc/manpages/gnutls_global_set_time_function.3,
1410 doc/manpages/gnutls_handshake.3,
1411 doc/manpages/gnutls_handshake_get_last_in.3,
1412 doc/manpages/gnutls_handshake_get_last_out.3,
1413 doc/manpages/gnutls_handshake_set_max_packet_length.3,
1414 doc/manpages/gnutls_handshake_set_post_client_hello_function.3,
1415 doc/manpages/gnutls_handshake_set_private_extensions.3,
1416 doc/manpages/gnutls_hash.3, doc/manpages/gnutls_hash_deinit.3,
1417 doc/manpages/gnutls_hash_fast.3,
1418 doc/manpages/gnutls_hash_get_len.3,
1419 doc/manpages/gnutls_hash_init.3, doc/manpages/gnutls_hash_output.3,
1420 doc/manpages/gnutls_hex2bin.3, doc/manpages/gnutls_hex_decode.3,
1421 doc/manpages/gnutls_hex_encode.3, doc/manpages/gnutls_hmac.3,
1422 doc/manpages/gnutls_hmac_deinit.3, doc/manpages/gnutls_hmac_fast.3,
1423 doc/manpages/gnutls_hmac_get_len.3,
1424 doc/manpages/gnutls_hmac_init.3, doc/manpages/gnutls_hmac_output.3,
1425 doc/manpages/gnutls_init.3, doc/manpages/gnutls_key_generate.3,
1426 doc/manpages/gnutls_kx_get.3, doc/manpages/gnutls_kx_get_id.3,
1427 doc/manpages/gnutls_kx_get_name.3, doc/manpages/gnutls_kx_list.3,
1428 doc/manpages/gnutls_kx_set_priority.3,
1429 doc/manpages/gnutls_mac_get.3, doc/manpages/gnutls_mac_get_id.3,
1430 doc/manpages/gnutls_mac_get_key_size.3,
1431 doc/manpages/gnutls_mac_get_name.3, doc/manpages/gnutls_mac_list.3,
1432 doc/manpages/gnutls_mac_set_priority.3,
1433 doc/manpages/gnutls_openpgp_crt_check_hostname.3,
1434 doc/manpages/gnutls_openpgp_crt_deinit.3,
1435 doc/manpages/gnutls_openpgp_crt_export.3,
1436 doc/manpages/gnutls_openpgp_crt_get_auth_subkey.3,
1437 doc/manpages/gnutls_openpgp_crt_get_creation_time.3,
1438 doc/manpages/gnutls_openpgp_crt_get_expiration_time.3,
1439 doc/manpages/gnutls_openpgp_crt_get_fingerprint.3,
1440 doc/manpages/gnutls_openpgp_crt_get_key_id.3,
1441 doc/manpages/gnutls_openpgp_crt_get_key_usage.3,
1442 doc/manpages/gnutls_openpgp_crt_get_name.3,
1443 doc/manpages/gnutls_openpgp_crt_get_pk_algorithm.3,
1444 doc/manpages/gnutls_openpgp_crt_get_pk_dsa_raw.3,
1445 doc/manpages/gnutls_openpgp_crt_get_pk_rsa_raw.3,
1446 doc/manpages/gnutls_openpgp_crt_get_preferred_key_id.3,
1447 doc/manpages/gnutls_openpgp_crt_get_revoked_status.3,
1448 doc/manpages/gnutls_openpgp_crt_get_subkey_count.3,
1449 doc/manpages/gnutls_openpgp_crt_get_subkey_creation_time.3,
1450 doc/manpages/gnutls_openpgp_crt_get_subkey_expiration_time.3,
1451 doc/manpages/gnutls_openpgp_crt_get_subkey_fingerprint.3,
1452 doc/manpages/gnutls_openpgp_crt_get_subkey_id.3,
1453 doc/manpages/gnutls_openpgp_crt_get_subkey_idx.3,
1454 doc/manpages/gnutls_openpgp_crt_get_subkey_pk_algorithm.3,
1455 doc/manpages/gnutls_openpgp_crt_get_subkey_pk_dsa_raw.3,
1456 doc/manpages/gnutls_openpgp_crt_get_subkey_pk_rsa_raw.3,
1457 doc/manpages/gnutls_openpgp_crt_get_subkey_revoked_status.3,
1458 doc/manpages/gnutls_openpgp_crt_get_subkey_usage.3,
1459 doc/manpages/gnutls_openpgp_crt_get_version.3,
1460 doc/manpages/gnutls_openpgp_crt_import.3,
1461 doc/manpages/gnutls_openpgp_crt_init.3,
1462 doc/manpages/gnutls_openpgp_crt_print.3,
1463 doc/manpages/gnutls_openpgp_crt_set_preferred_key_id.3,
1464 doc/manpages/gnutls_openpgp_crt_verify_ring.3,
1465 doc/manpages/gnutls_openpgp_crt_verify_self.3,
1466 doc/manpages/gnutls_openpgp_keyring_check_id.3,
1467 doc/manpages/gnutls_openpgp_keyring_deinit.3,
1468 doc/manpages/gnutls_openpgp_keyring_get_crt.3,
1469 doc/manpages/gnutls_openpgp_keyring_get_crt_count.3,
1470 doc/manpages/gnutls_openpgp_keyring_import.3,
1471 doc/manpages/gnutls_openpgp_keyring_init.3,
1472 doc/manpages/gnutls_openpgp_privkey_deinit.3,
1473 doc/manpages/gnutls_openpgp_privkey_export.3,
1474 doc/manpages/gnutls_openpgp_privkey_export_dsa_raw.3,
1475 doc/manpages/gnutls_openpgp_privkey_export_rsa_raw.3,
1476 doc/manpages/gnutls_openpgp_privkey_export_subkey_dsa_raw.3,
1477 doc/manpages/gnutls_openpgp_privkey_export_subkey_rsa_raw.3,
1478 doc/manpages/gnutls_openpgp_privkey_get_fingerprint.3,
1479 doc/manpages/gnutls_openpgp_privkey_get_key_id.3,
1480 doc/manpages/gnutls_openpgp_privkey_get_pk_algorithm.3,
1481 doc/manpages/gnutls_openpgp_privkey_get_preferred_key_id.3,
1482 doc/manpages/gnutls_openpgp_privkey_get_revoked_status.3,
1483 doc/manpages/gnutls_openpgp_privkey_get_subkey_count.3,
1484 doc/manpages/gnutls_openpgp_privkey_get_subkey_creation_time.3,
1485 doc/manpages/gnutls_openpgp_privkey_get_subkey_fingerprint.3,
1486 doc/manpages/gnutls_openpgp_privkey_get_subkey_id.3,
1487 doc/manpages/gnutls_openpgp_privkey_get_subkey_idx.3,
1488 doc/manpages/gnutls_openpgp_privkey_get_subkey_pk_algorithm.3,
1489 doc/manpages/gnutls_openpgp_privkey_get_subkey_revoked_status.3,
1490 doc/manpages/gnutls_openpgp_privkey_import.3,
1491 doc/manpages/gnutls_openpgp_privkey_init.3,
1492 doc/manpages/gnutls_openpgp_privkey_sec_param.3,
1493 doc/manpages/gnutls_openpgp_privkey_set_preferred_key_id.3,
1494 doc/manpages/gnutls_openpgp_privkey_sign_hash.3,
1495 doc/manpages/gnutls_openpgp_send_cert.3,
1496 doc/manpages/gnutls_openpgp_set_recv_key_function.3,
1497 doc/manpages/gnutls_pcert_deinit.3,
1498 doc/manpages/gnutls_pcert_import_openpgp.3,
1499 doc/manpages/gnutls_pcert_import_openpgp_raw.3,
1500 doc/manpages/gnutls_pcert_import_x509.3,
1501 doc/manpages/gnutls_pcert_import_x509_raw.3,
1502 doc/manpages/gnutls_pcert_list_import_x509_raw.3,
1503 doc/manpages/gnutls_pem_base64_decode.3,
1504 doc/manpages/gnutls_pem_base64_decode_alloc.3,
1505 doc/manpages/gnutls_pem_base64_encode.3,
1506 doc/manpages/gnutls_pem_base64_encode_alloc.3,
1507 doc/manpages/gnutls_perror.3,
1508 doc/manpages/gnutls_pk_algorithm_get_name.3,
1509 doc/manpages/gnutls_pk_bits_to_sec_param.3,
1510 doc/manpages/gnutls_pk_get_id.3, doc/manpages/gnutls_pk_get_name.3,
1511 doc/manpages/gnutls_pk_list.3,
1512 doc/manpages/gnutls_pkcs11_add_provider.3,
1513 doc/manpages/gnutls_pkcs11_copy_secret_key.3,
1514 doc/manpages/gnutls_pkcs11_copy_x509_crt.3,
1515 doc/manpages/gnutls_pkcs11_copy_x509_privkey.3,
1516 doc/manpages/gnutls_pkcs11_deinit.3,
1517 doc/manpages/gnutls_pkcs11_delete_url.3,
1518 doc/manpages/gnutls_pkcs11_init.3,
1519 doc/manpages/gnutls_pkcs11_obj_deinit.3,
1520 doc/manpages/gnutls_pkcs11_obj_export.3,
1521 doc/manpages/gnutls_pkcs11_obj_export_url.3,
1522 doc/manpages/gnutls_pkcs11_obj_get_info.3,
1523 doc/manpages/gnutls_pkcs11_obj_get_type.3,
1524 doc/manpages/gnutls_pkcs11_obj_import_url.3,
1525 doc/manpages/gnutls_pkcs11_obj_init.3,
1526 doc/manpages/gnutls_pkcs11_obj_list_import_url.3,
1527 doc/manpages/gnutls_pkcs11_privkey_deinit.3,
1528 doc/manpages/gnutls_pkcs11_privkey_export_url.3,
1529 doc/manpages/gnutls_pkcs11_privkey_generate.3,
1530 doc/manpages/gnutls_pkcs11_privkey_get_info.3,
1531 doc/manpages/gnutls_pkcs11_privkey_get_pk_algorithm.3,
1532 doc/manpages/gnutls_pkcs11_privkey_import_url.3,
1533 doc/manpages/gnutls_pkcs11_privkey_init.3,
1534 doc/manpages/gnutls_pkcs11_set_pin_function.3,
1535 doc/manpages/gnutls_pkcs11_set_token_function.3,
1536 doc/manpages/gnutls_pkcs11_token_get_flags.3,
1537 doc/manpages/gnutls_pkcs11_token_get_info.3,
1538 doc/manpages/gnutls_pkcs11_token_get_mechanism.3,
1539 doc/manpages/gnutls_pkcs11_token_get_url.3,
1540 doc/manpages/gnutls_pkcs11_token_init.3,
1541 doc/manpages/gnutls_pkcs11_token_set_pin.3,
1542 doc/manpages/gnutls_pkcs11_type_get_name.3,
1543 doc/manpages/gnutls_pkcs12_bag_decrypt.3,
1544 doc/manpages/gnutls_pkcs12_bag_deinit.3,
1545 doc/manpages/gnutls_pkcs12_bag_encrypt.3,
1546 doc/manpages/gnutls_pkcs12_bag_get_count.3,
1547 doc/manpages/gnutls_pkcs12_bag_get_data.3,
1548 doc/manpages/gnutls_pkcs12_bag_get_friendly_name.3,
1549 doc/manpages/gnutls_pkcs12_bag_get_key_id.3,
1550 doc/manpages/gnutls_pkcs12_bag_get_type.3,
1551 doc/manpages/gnutls_pkcs12_bag_init.3,
1552 doc/manpages/gnutls_pkcs12_bag_set_crl.3,
1553 doc/manpages/gnutls_pkcs12_bag_set_crt.3,
1554 doc/manpages/gnutls_pkcs12_bag_set_data.3,
1555 doc/manpages/gnutls_pkcs12_bag_set_friendly_name.3,
1556 doc/manpages/gnutls_pkcs12_bag_set_key_id.3,
1557 doc/manpages/gnutls_pkcs12_deinit.3,
1558 doc/manpages/gnutls_pkcs12_export.3,
1559 doc/manpages/gnutls_pkcs12_generate_mac.3,
1560 doc/manpages/gnutls_pkcs12_get_bag.3,
1561 doc/manpages/gnutls_pkcs12_import.3,
1562 doc/manpages/gnutls_pkcs12_init.3,
1563 doc/manpages/gnutls_pkcs12_set_bag.3,
1564 doc/manpages/gnutls_pkcs12_verify_mac.3,
1565 doc/manpages/gnutls_pkcs7_deinit.3,
1566 doc/manpages/gnutls_pkcs7_delete_crl.3,
1567 doc/manpages/gnutls_pkcs7_delete_crt.3,
1568 doc/manpages/gnutls_pkcs7_export.3,
1569 doc/manpages/gnutls_pkcs7_get_crl_count.3,
1570 doc/manpages/gnutls_pkcs7_get_crl_raw.3,
1571 doc/manpages/gnutls_pkcs7_get_crt_count.3,
1572 doc/manpages/gnutls_pkcs7_get_crt_raw.3,
1573 doc/manpages/gnutls_pkcs7_import.3,
1574 doc/manpages/gnutls_pkcs7_init.3,
1575 doc/manpages/gnutls_pkcs7_set_crl.3,
1576 doc/manpages/gnutls_pkcs7_set_crl_raw.3,
1577 doc/manpages/gnutls_pkcs7_set_crt.3,
1578 doc/manpages/gnutls_pkcs7_set_crt_raw.3, doc/manpages/gnutls_prf.3,
1579 doc/manpages/gnutls_prf_raw.3,
1580 doc/manpages/gnutls_priority_deinit.3,
1581 doc/manpages/gnutls_priority_init.3,
1582 doc/manpages/gnutls_priority_set.3,
1583 doc/manpages/gnutls_priority_set_direct.3,
1584 doc/manpages/gnutls_privkey_decrypt_data.3,
1585 doc/manpages/gnutls_privkey_deinit.3,
1586 doc/manpages/gnutls_privkey_get_pk_algorithm.3,
1587 doc/manpages/gnutls_privkey_get_type.3,
1588 doc/manpages/gnutls_privkey_import_ext.3,
1589 doc/manpages/gnutls_privkey_import_openpgp.3,
1590 doc/manpages/gnutls_privkey_import_pkcs11.3,
1591 doc/manpages/gnutls_privkey_import_x509.3,
1592 doc/manpages/gnutls_privkey_init.3,
1593 doc/manpages/gnutls_privkey_sign_data.3,
1594 doc/manpages/gnutls_privkey_sign_hash.3,
1595 doc/manpages/gnutls_protocol_get_id.3,
1596 doc/manpages/gnutls_protocol_get_name.3,
1597 doc/manpages/gnutls_protocol_get_version.3,
1598 doc/manpages/gnutls_protocol_list.3,
1599 doc/manpages/gnutls_protocol_set_priority.3,
1600 doc/manpages/gnutls_psk_allocate_client_credentials.3,
1601 doc/manpages/gnutls_psk_allocate_server_credentials.3,
1602 doc/manpages/gnutls_psk_client_get_hint.3,
1603 doc/manpages/gnutls_psk_free_client_credentials.3,
1604 doc/manpages/gnutls_psk_free_server_credentials.3,
1605 doc/manpages/gnutls_psk_server_get_username.3,
1606 doc/manpages/gnutls_psk_set_client_credentials.3,
1607 doc/manpages/gnutls_psk_set_params_function.3,
1608 doc/manpages/gnutls_psk_set_server_credentials_file.3,
1609 doc/manpages/gnutls_psk_set_server_credentials_hint.3,
1610 doc/manpages/gnutls_psk_set_server_dh_params.3,
1611 doc/manpages/gnutls_psk_set_server_params_function.3,
1612 doc/manpages/gnutls_pubkey_deinit.3,
1613 doc/manpages/gnutls_pubkey_export.3,
1614 doc/manpages/gnutls_pubkey_get_key_id.3,
1615 doc/manpages/gnutls_pubkey_get_key_usage.3,
1616 doc/manpages/gnutls_pubkey_get_openpgp_key_id.3,
1617 doc/manpages/gnutls_pubkey_get_pk_algorithm.3,
1618 doc/manpages/gnutls_pubkey_get_pk_dsa_raw.3,
1619 doc/manpages/gnutls_pubkey_get_pk_ecc_raw.3,
1620 doc/manpages/gnutls_pubkey_get_pk_ecc_x962.3,
1621 doc/manpages/gnutls_pubkey_get_pk_rsa_raw.3,
1622 doc/manpages/gnutls_pubkey_get_preferred_hash_algorithm.3,
1623 doc/manpages/gnutls_pubkey_get_verify_algorithm.3,
1624 doc/manpages/gnutls_pubkey_import.3,
1625 doc/manpages/gnutls_pubkey_import_dsa_raw.3,
1626 doc/manpages/gnutls_pubkey_import_ecc_raw.3,
1627 doc/manpages/gnutls_pubkey_import_ecc_x962.3,
1628 doc/manpages/gnutls_pubkey_import_openpgp.3,
1629 doc/manpages/gnutls_pubkey_import_pkcs11.3,
1630 doc/manpages/gnutls_pubkey_import_pkcs11_url.3,
1631 doc/manpages/gnutls_pubkey_import_privkey.3,
1632 doc/manpages/gnutls_pubkey_import_rsa_raw.3,
1633 doc/manpages/gnutls_pubkey_import_x509.3,
1634 doc/manpages/gnutls_pubkey_init.3,
1635 doc/manpages/gnutls_pubkey_set_key_usage.3,
1636 doc/manpages/gnutls_pubkey_verify_data.3,
1637 doc/manpages/gnutls_pubkey_verify_data2.3,
1638 doc/manpages/gnutls_pubkey_verify_hash.3,
1639 doc/manpages/gnutls_record_check_pending.3,
1640 doc/manpages/gnutls_record_disable_padding.3,
1641 doc/manpages/gnutls_record_get_direction.3,
1642 doc/manpages/gnutls_record_get_discarded.3,
1643 doc/manpages/gnutls_record_get_max_size.3,
1644 doc/manpages/gnutls_record_recv.3,
1645 doc/manpages/gnutls_record_recv_seq.3,
1646 doc/manpages/gnutls_record_send.3,
1647 doc/manpages/gnutls_record_set_max_size.3,
1648 doc/manpages/gnutls_rehandshake.3, doc/manpages/gnutls_rnd.3,
1649 doc/manpages/gnutls_rsa_export_get_modulus_bits.3,
1650 doc/manpages/gnutls_rsa_export_get_pubkey.3,
1651 doc/manpages/gnutls_rsa_params_cpy.3,
1652 doc/manpages/gnutls_rsa_params_deinit.3,
1653 doc/manpages/gnutls_rsa_params_export_pkcs1.3,
1654 doc/manpages/gnutls_rsa_params_export_raw.3,
1655 doc/manpages/gnutls_rsa_params_generate2.3,
1656 doc/manpages/gnutls_rsa_params_import_pkcs1.3,
1657 doc/manpages/gnutls_rsa_params_import_raw.3,
1658 doc/manpages/gnutls_rsa_params_init.3,
1659 doc/manpages/gnutls_safe_renegotiation_status.3,
1660 doc/manpages/gnutls_sec_param_get_name.3,
1661 doc/manpages/gnutls_sec_param_to_pk_bits.3,
1662 doc/manpages/gnutls_server_name_get.3,
1663 doc/manpages/gnutls_server_name_set.3,
1664 doc/manpages/gnutls_session_channel_binding.3,
1665 doc/manpages/gnutls_session_enable_compatibility_mode.3,
1666 doc/manpages/gnutls_session_get_data.3,
1667 doc/manpages/gnutls_session_get_data2.3,
1668 doc/manpages/gnutls_session_get_id.3,
1669 doc/manpages/gnutls_session_get_ptr.3,
1670 doc/manpages/gnutls_session_is_resumed.3,
1671 doc/manpages/gnutls_session_set_data.3,
1672 doc/manpages/gnutls_session_set_ptr.3,
1673 doc/manpages/gnutls_session_ticket_enable_client.3,
1674 doc/manpages/gnutls_session_ticket_enable_server.3,
1675 doc/manpages/gnutls_session_ticket_key_generate.3,
1676 doc/manpages/gnutls_set_default_export_priority.3,
1677 doc/manpages/gnutls_set_default_priority.3,
1678 doc/manpages/gnutls_sign_algorithm_get_requested.3,
1679 doc/manpages/gnutls_sign_callback_get.3,
1680 doc/manpages/gnutls_sign_callback_set.3,
1681 doc/manpages/gnutls_sign_get_id.3,
1682 doc/manpages/gnutls_sign_get_name.3,
1683 doc/manpages/gnutls_sign_list.3,
1684 doc/manpages/gnutls_srp_allocate_client_credentials.3,
1685 doc/manpages/gnutls_srp_allocate_server_credentials.3,
1686 doc/manpages/gnutls_srp_base64_decode.3,
1687 doc/manpages/gnutls_srp_base64_decode_alloc.3,
1688 doc/manpages/gnutls_srp_base64_encode.3,
1689 doc/manpages/gnutls_srp_base64_encode_alloc.3,
1690 doc/manpages/gnutls_srp_free_client_credentials.3,
1691 doc/manpages/gnutls_srp_free_server_credentials.3,
1692 doc/manpages/gnutls_srp_server_get_username.3,
1693 doc/manpages/gnutls_srp_set_client_credentials.3,
1694 doc/manpages/gnutls_srp_set_prime_bits.3,
1695 doc/manpages/gnutls_srp_set_server_credentials_file.3,
1696 doc/manpages/gnutls_srp_verifier.3, doc/manpages/gnutls_strerror.3,
1697 doc/manpages/gnutls_strerror_name.3,
1698 doc/manpages/gnutls_supplemental_get_name.3,
1699 doc/manpages/gnutls_transport_get_ptr.3,
1700 doc/manpages/gnutls_transport_get_ptr2.3,
1701 doc/manpages/gnutls_transport_set_errno.3,
1702 doc/manpages/gnutls_transport_set_errno_function.3,
1703 doc/manpages/gnutls_transport_set_ptr.3,
1704 doc/manpages/gnutls_transport_set_ptr2.3,
1705 doc/manpages/gnutls_transport_set_pull_function.3,
1706 doc/manpages/gnutls_transport_set_pull_timeout_function.3,
1707 doc/manpages/gnutls_transport_set_push_function.3,
1708 doc/manpages/gnutls_transport_set_vec_push_function.3,
1709 doc/manpages/gnutls_x509_crl_check_issuer.3,
1710 doc/manpages/gnutls_x509_crl_deinit.3,
1711 doc/manpages/gnutls_x509_crl_export.3,
1712 doc/manpages/gnutls_x509_crl_get_authority_key_id.3,
1713 doc/manpages/gnutls_x509_crl_get_crt_count.3,
1714 doc/manpages/gnutls_x509_crl_get_crt_serial.3,
1715 doc/manpages/gnutls_x509_crl_get_dn_oid.3,
1716 doc/manpages/gnutls_x509_crl_get_extension_data.3,
1717 doc/manpages/gnutls_x509_crl_get_extension_info.3,
1718 doc/manpages/gnutls_x509_crl_get_extension_oid.3,
1719 doc/manpages/gnutls_x509_crl_get_issuer_dn.3,
1720 doc/manpages/gnutls_x509_crl_get_issuer_dn_by_oid.3,
1721 doc/manpages/gnutls_x509_crl_get_next_update.3,
1722 doc/manpages/gnutls_x509_crl_get_number.3,
1723 doc/manpages/gnutls_x509_crl_get_raw_issuer_dn.3,
1724 doc/manpages/gnutls_x509_crl_get_signature.3,
1725 doc/manpages/gnutls_x509_crl_get_signature_algorithm.3,
1726 doc/manpages/gnutls_x509_crl_get_this_update.3,
1727 doc/manpages/gnutls_x509_crl_get_version.3,
1728 doc/manpages/gnutls_x509_crl_import.3,
1729 doc/manpages/gnutls_x509_crl_init.3,
1730 doc/manpages/gnutls_x509_crl_list_import.3,
1731 doc/manpages/gnutls_x509_crl_list_import2.3,
1732 doc/manpages/gnutls_x509_crl_print.3,
1733 doc/manpages/gnutls_x509_crl_privkey_sign.3,
1734 doc/manpages/gnutls_x509_crl_set_authority_key_id.3,
1735 doc/manpages/gnutls_x509_crl_set_crt.3,
1736 doc/manpages/gnutls_x509_crl_set_crt_serial.3,
1737 doc/manpages/gnutls_x509_crl_set_next_update.3,
1738 doc/manpages/gnutls_x509_crl_set_number.3,
1739 doc/manpages/gnutls_x509_crl_set_this_update.3,
1740 doc/manpages/gnutls_x509_crl_set_version.3,
1741 doc/manpages/gnutls_x509_crl_sign.3,
1742 doc/manpages/gnutls_x509_crl_sign2.3,
1743 doc/manpages/gnutls_x509_crl_verify.3,
1744 doc/manpages/gnutls_x509_crq_deinit.3,
1745 doc/manpages/gnutls_x509_crq_export.3,
1746 doc/manpages/gnutls_x509_crq_get_attribute_by_oid.3,
1747 doc/manpages/gnutls_x509_crq_get_attribute_data.3,
1748 doc/manpages/gnutls_x509_crq_get_attribute_info.3,
1749 doc/manpages/gnutls_x509_crq_get_basic_constraints.3,
1750 doc/manpages/gnutls_x509_crq_get_challenge_password.3,
1751 doc/manpages/gnutls_x509_crq_get_dn.3,
1752 doc/manpages/gnutls_x509_crq_get_dn_by_oid.3,
1753 doc/manpages/gnutls_x509_crq_get_dn_oid.3,
1754 doc/manpages/gnutls_x509_crq_get_extension_by_oid.3,
1755 doc/manpages/gnutls_x509_crq_get_extension_data.3,
1756 doc/manpages/gnutls_x509_crq_get_extension_info.3,
1757 doc/manpages/gnutls_x509_crq_get_key_id.3,
1758 doc/manpages/gnutls_x509_crq_get_key_purpose_oid.3,
1759 doc/manpages/gnutls_x509_crq_get_key_rsa_raw.3,
1760 doc/manpages/gnutls_x509_crq_get_key_usage.3,
1761 doc/manpages/gnutls_x509_crq_get_pk_algorithm.3,
1762 doc/manpages/gnutls_x509_crq_get_subject_alt_name.3,
1763 doc/manpages/gnutls_x509_crq_get_subject_alt_othername_oid.3,
1764 doc/manpages/gnutls_x509_crq_get_version.3,
1765 doc/manpages/gnutls_x509_crq_import.3,
1766 doc/manpages/gnutls_x509_crq_init.3,
1767 doc/manpages/gnutls_x509_crq_print.3,
1768 doc/manpages/gnutls_x509_crq_privkey_sign.3,
1769 doc/manpages/gnutls_x509_crq_set_attribute_by_oid.3,
1770 doc/manpages/gnutls_x509_crq_set_basic_constraints.3,
1771 doc/manpages/gnutls_x509_crq_set_challenge_password.3,
1772 doc/manpages/gnutls_x509_crq_set_dn_by_oid.3,
1773 doc/manpages/gnutls_x509_crq_set_key.3,
1774 doc/manpages/gnutls_x509_crq_set_key_purpose_oid.3,
1775 doc/manpages/gnutls_x509_crq_set_key_rsa_raw.3,
1776 doc/manpages/gnutls_x509_crq_set_key_usage.3,
1777 doc/manpages/gnutls_x509_crq_set_pubkey.3,
1778 doc/manpages/gnutls_x509_crq_set_subject_alt_name.3,
1779 doc/manpages/gnutls_x509_crq_set_version.3,
1780 doc/manpages/gnutls_x509_crq_sign.3,
1781 doc/manpages/gnutls_x509_crq_sign2.3,
1782 doc/manpages/gnutls_x509_crq_verify.3,
1783 doc/manpages/gnutls_x509_crt_check_hostname.3,
1784 doc/manpages/gnutls_x509_crt_check_issuer.3,
1785 doc/manpages/gnutls_x509_crt_check_revocation.3,
1786 doc/manpages/gnutls_x509_crt_cpy_crl_dist_points.3,
1787 doc/manpages/gnutls_x509_crt_deinit.3,
1788 doc/manpages/gnutls_x509_crt_export.3,
1789 doc/manpages/gnutls_x509_crt_get_activation_time.3,
1790 doc/manpages/gnutls_x509_crt_get_authority_info_access.3,
1791 doc/manpages/gnutls_x509_crt_get_authority_key_id.3,
1792 doc/manpages/gnutls_x509_crt_get_basic_constraints.3,
1793 doc/manpages/gnutls_x509_crt_get_ca_status.3,
1794 doc/manpages/gnutls_x509_crt_get_crl_dist_points.3,
1795 doc/manpages/gnutls_x509_crt_get_dn.3,
1796 doc/manpages/gnutls_x509_crt_get_dn_by_oid.3,
1797 doc/manpages/gnutls_x509_crt_get_dn_oid.3,
1798 doc/manpages/gnutls_x509_crt_get_expiration_time.3,
1799 doc/manpages/gnutls_x509_crt_get_extension_by_oid.3,
1800 doc/manpages/gnutls_x509_crt_get_extension_data.3,
1801 doc/manpages/gnutls_x509_crt_get_extension_info.3,
1802 doc/manpages/gnutls_x509_crt_get_extension_oid.3,
1803 doc/manpages/gnutls_x509_crt_get_fingerprint.3,
1804 doc/manpages/gnutls_x509_crt_get_issuer.3,
1805 doc/manpages/gnutls_x509_crt_get_issuer_alt_name.3,
1806 doc/manpages/gnutls_x509_crt_get_issuer_alt_name2.3,
1807 doc/manpages/gnutls_x509_crt_get_issuer_alt_othername_oid.3,
1808 doc/manpages/gnutls_x509_crt_get_issuer_dn.3,
1809 doc/manpages/gnutls_x509_crt_get_issuer_dn_by_oid.3,
1810 doc/manpages/gnutls_x509_crt_get_issuer_dn_oid.3,
1811 doc/manpages/gnutls_x509_crt_get_issuer_unique_id.3,
1812 doc/manpages/gnutls_x509_crt_get_key_id.3,
1813 doc/manpages/gnutls_x509_crt_get_key_purpose_oid.3,
1814 doc/manpages/gnutls_x509_crt_get_key_usage.3,
1815 doc/manpages/gnutls_x509_crt_get_pk_algorithm.3,
1816 doc/manpages/gnutls_x509_crt_get_pk_dsa_raw.3,
1817 doc/manpages/gnutls_x509_crt_get_pk_rsa_raw.3,
1818 doc/manpages/gnutls_x509_crt_get_preferred_hash_algorithm.3,
1819 doc/manpages/gnutls_x509_crt_get_proxy.3,
1820 doc/manpages/gnutls_x509_crt_get_raw_dn.3,
1821 doc/manpages/gnutls_x509_crt_get_raw_issuer_dn.3,
1822 doc/manpages/gnutls_x509_crt_get_serial.3,
1823 doc/manpages/gnutls_x509_crt_get_signature.3,
1824 doc/manpages/gnutls_x509_crt_get_signature_algorithm.3,
1825 doc/manpages/gnutls_x509_crt_get_subject.3,
1826 doc/manpages/gnutls_x509_crt_get_subject_alt_name.3,
1827 doc/manpages/gnutls_x509_crt_get_subject_alt_name2.3,
1828 doc/manpages/gnutls_x509_crt_get_subject_alt_othername_oid.3,
1829 doc/manpages/gnutls_x509_crt_get_subject_key_id.3,
1830 doc/manpages/gnutls_x509_crt_get_subject_unique_id.3,
1831 doc/manpages/gnutls_x509_crt_get_verify_algorithm.3,
1832 doc/manpages/gnutls_x509_crt_get_version.3,
1833 doc/manpages/gnutls_x509_crt_import.3,
1834 doc/manpages/gnutls_x509_crt_import_pkcs11.3,
1835 doc/manpages/gnutls_x509_crt_import_pkcs11_url.3,
1836 doc/manpages/gnutls_x509_crt_init.3,
1837 doc/manpages/gnutls_x509_crt_list_import.3,
1838 doc/manpages/gnutls_x509_crt_list_import2.3,
1839 doc/manpages/gnutls_x509_crt_list_import_pkcs11.3,
1840 doc/manpages/gnutls_x509_crt_list_verify.3,
1841 doc/manpages/gnutls_x509_crt_print.3,
1842 doc/manpages/gnutls_x509_crt_privkey_sign.3,
1843 doc/manpages/gnutls_x509_crt_set_activation_time.3,
1844 doc/manpages/gnutls_x509_crt_set_authority_key_id.3,
1845 doc/manpages/gnutls_x509_crt_set_basic_constraints.3,
1846 doc/manpages/gnutls_x509_crt_set_ca_status.3,
1847 doc/manpages/gnutls_x509_crt_set_crl_dist_points.3,
1848 doc/manpages/gnutls_x509_crt_set_crl_dist_points2.3,
1849 doc/manpages/gnutls_x509_crt_set_crq.3,
1850 doc/manpages/gnutls_x509_crt_set_crq_extensions.3,
1851 doc/manpages/gnutls_x509_crt_set_dn_by_oid.3,
1852 doc/manpages/gnutls_x509_crt_set_expiration_time.3,
1853 doc/manpages/gnutls_x509_crt_set_extension_by_oid.3,
1854 doc/manpages/gnutls_x509_crt_set_issuer_dn_by_oid.3,
1855 doc/manpages/gnutls_x509_crt_set_key.3,
1856 doc/manpages/gnutls_x509_crt_set_key_purpose_oid.3,
1857 doc/manpages/gnutls_x509_crt_set_key_usage.3,
1858 doc/manpages/gnutls_x509_crt_set_proxy.3,
1859 doc/manpages/gnutls_x509_crt_set_proxy_dn.3,
1860 doc/manpages/gnutls_x509_crt_set_pubkey.3,
1861 doc/manpages/gnutls_x509_crt_set_serial.3,
1862 doc/manpages/gnutls_x509_crt_set_subject_alt_name.3,
1863 doc/manpages/gnutls_x509_crt_set_subject_alternative_name.3,
1864 doc/manpages/gnutls_x509_crt_set_subject_key_id.3,
1865 doc/manpages/gnutls_x509_crt_set_version.3,
1866 doc/manpages/gnutls_x509_crt_sign.3,
1867 doc/manpages/gnutls_x509_crt_sign2.3,
1868 doc/manpages/gnutls_x509_crt_verify.3,
1869 doc/manpages/gnutls_x509_crt_verify_data.3,
1870 doc/manpages/gnutls_x509_crt_verify_hash.3,
1871 doc/manpages/gnutls_x509_dn_deinit.3,
1872 doc/manpages/gnutls_x509_dn_export.3,
1873 doc/manpages/gnutls_x509_dn_get_rdn_ava.3,
1874 doc/manpages/gnutls_x509_dn_import.3,
1875 doc/manpages/gnutls_x509_dn_init.3,
1876 doc/manpages/gnutls_x509_dn_oid_known.3,
1877 doc/manpages/gnutls_x509_privkey_cpy.3,
1878 doc/manpages/gnutls_x509_privkey_deinit.3,
1879 doc/manpages/gnutls_x509_privkey_export.3,
1880 doc/manpages/gnutls_x509_privkey_export_dsa_raw.3,
1881 doc/manpages/gnutls_x509_privkey_export_ecc_raw.3,
1882 doc/manpages/gnutls_x509_privkey_export_pkcs8.3,
1883 doc/manpages/gnutls_x509_privkey_export_rsa_raw.3,
1884 doc/manpages/gnutls_x509_privkey_export_rsa_raw2.3,
1885 doc/manpages/gnutls_x509_privkey_fix.3,
1886 doc/manpages/gnutls_x509_privkey_generate.3,
1887 doc/manpages/gnutls_x509_privkey_get_key_id.3,
1888 doc/manpages/gnutls_x509_privkey_get_pk_algorithm.3,
1889 doc/manpages/gnutls_x509_privkey_import.3,
1890 doc/manpages/gnutls_x509_privkey_import_dsa_raw.3,
1891 doc/manpages/gnutls_x509_privkey_import_ecc_raw.3,
1892 doc/manpages/gnutls_x509_privkey_import_pkcs8.3,
1893 doc/manpages/gnutls_x509_privkey_import_rsa_raw.3,
1894 doc/manpages/gnutls_x509_privkey_import_rsa_raw2.3,
1895 doc/manpages/gnutls_x509_privkey_init.3,
1896 doc/manpages/gnutls_x509_privkey_sec_param.3,
1897 doc/manpages/gnutls_x509_privkey_sign_data.3,
1898 doc/manpages/gnutls_x509_privkey_sign_hash.3,
1899 doc/manpages/gnutls_x509_privkey_verify_params.3,
1900 doc/manpages/gnutls_x509_rdn_get.3,
1901 doc/manpages/gnutls_x509_rdn_get_by_oid.3,
1902 doc/manpages/gnutls_x509_rdn_get_oid.3,
1903 doc/manpages/gnutls_x509_trust_list_add_cas.3,
1904 doc/manpages/gnutls_x509_trust_list_add_crls.3,
1905 doc/manpages/gnutls_x509_trust_list_add_named_crt.3,
1906 doc/manpages/gnutls_x509_trust_list_deinit.3,
1907 doc/manpages/gnutls_x509_trust_list_get_issuer.3,
1908 doc/manpages/gnutls_x509_trust_list_init.3,
1909 doc/manpages/gnutls_x509_trust_list_verify_crt.3,
1910 doc/manpages/gnutls_x509_trust_list_verify_named_crt.3,
1911 doc/scripts/getfuncs.pl, lib/gnutls_cert.c, lib/gnutls_str.c: Added
1912 a more robust manpage generation method.
1914 2011-11-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1916 * doc/examples/ex-serv-psk.c, doc/examples/ex-serv-srp.c:
1917 updated/fixed SRP and PSK examples.
1919 2011-11-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1921 * lib/auth/cert.c: updated client certificate signature algorithm
1922 indication, to allow holding 3 algorithms.
1924 2011-11-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1926 * cfg.mk: use texi2html to generate documentation
1928 2011-11-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1930 * doc/scripts/gdoc: corrected texinfo and manpage generation of
1933 2011-11-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1935 * lib/gnutls_record.c: count all discarded packets as dropped.
1937 2011-11-15 Martin Storsjo <martin@martin.st>
1939 * extra/Makefile.am, lib/Makefile.am: Add dependencies from the def
1940 files to the libraries that generate them This avoids build failures in parallel builds, where builds could
1941 fail with this error message: make[2]: *** No rule to make target `libgnutls-26.def', needed by
1942 `all-am'. Stop. There is no direct rules that generate it, but it is generated as a
1943 byproduct when building libgnutls.la. By marking the la file as a
1944 dependency, make won't bail out by not finding the file until that
1945 dependency is built, and at that point, the def file exists. Signed-off-by: Simon Josefsson <simon@josefsson.org>
1947 2011-11-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1949 * doc/Makefile.am, doc/cha-auth.texi, doc/cha-cert-auth.texi,
1950 doc/cha-cert-auth2.texi, doc/cha-gtls-app.texi,
1951 doc/cha-gtls-examples.texi, doc/cha-intro-tls.texi,
1952 doc/cha-library.texi, doc/cha-shared-key.texi, doc/gnutls.texi,
1953 doc/latex/.gitignore, doc/latex/Makefile.am, doc/latex/gnutls.tex,
1954 doc/scripts/mytexi2latex: reorganized documentation
1956 2011-11-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1958 * lib/accelerated/x86/asm-coff/appro-aes-x86-coff.s,
1959 lib/accelerated/x86/asm-coff/cpuid-x86-64-coff.s,
1960 lib/accelerated/x86/asm-coff/cpuid-x86-coff.s,
1961 lib/accelerated/x86/asm-coff/padlock-x86-coff.s,
1962 lib/accelerated/x86/asm/appro-aes-gcm-x86-64.s,
1963 lib/accelerated/x86/asm/appro-aes-x86-64.s,
1964 lib/accelerated/x86/asm/appro-aes-x86.s,
1965 lib/accelerated/x86/asm/cpuid-x86-64.s,
1966 lib/accelerated/x86/asm/cpuid-x86.s,
1967 lib/accelerated/x86/asm/padlock-x86-64.s,
1968 lib/accelerated/x86/asm/padlock-x86.s: Commited new assembler files.
1970 2011-11-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1972 * cfg.mk, devel/perlasm/aesni-x86.pl,
1973 devel/perlasm/aesni-x86_64.pl, devel/perlasm/cbc.pl,
1974 devel/perlasm/cpuid-x86.pl, devel/perlasm/cpuid-x86_64.pl,
1975 devel/perlasm/e_padlock-x86.pl, devel/perlasm/e_padlock-x86_64.pl,
1976 devel/perlasm/ghash-x86.pl, devel/perlasm/ghash-x86_64.pl,
1977 devel/perlasm/license-gnutls.txt, devel/perlasm/license.txt,
1978 devel/perlasm/ppc-xlate.pl, devel/perlasm/readme,
1979 devel/perlasm/x86_64-xlate.pl, devel/perlasm/x86asm.pl,
1980 devel/perlasm/x86gas.pl, devel/perlasm/x86masm.pl,
1981 devel/perlasm/x86nasm.pl: Added rules to auto-generate the assembler
1984 2011-11-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1986 * .gitignore: more files to ignore
1988 2011-11-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1990 * doc/cha-cert-auth.texi: updated
1992 2011-11-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1994 * doc/cha-auth.texi, doc/cha-cert-auth.texi, doc/cha-programs.texi,
1995 doc/gnutls.texi: Tools are discussed in the relevant chapters and
1998 2011-11-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2000 * NEWS: released 3.0.8
2002 2011-11-12 Simon Josefsson <simon@josefsson.org>
2004 * configure.ac: Add tests/slow/Makfile and sort config files.
2006 2011-11-12 Simon Josefsson <simon@josefsson.org>
2008 * cfg.mk: Fix wordwrap.
2010 2011-11-12 Simon Josefsson <simon@josefsson.org>
2012 * lib/x509/verify-high.c, lib/x509/verify-high.h: Don't export
2013 verify-high structs internally.
2015 2011-11-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2017 * cfg.mk: document the gpl modules used by gnulib
2019 2011-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2021 * tests/Makefile.am, tests/gendh.c, tests/keygen.c,
2022 tests/slow/Makefile.am, tests/slow/README, tests/slow/gendh.c,
2023 tests/slow/keygen.c: slow tests are not being run using valgrind
2025 2011-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2027 * tests/ecdsa/Makefile.am: distribute pem file
2029 2011-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2031 * tests/ecdsa/bad-key.pem, tests/ecdsa/ecdsa: Added test to detect a
2034 2011-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2036 * lib/gnutls_errors.h, lib/gnutls_int.h: define likely() and
2037 unlikely() and use them to prevent debugging code from being
2038 prioritized in branch prediction.
2040 2011-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2042 * .gitignore: more files to ignore
2044 2011-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2046 * NEWS, m4/hooks.m4: bumped library version and documented updates.
2048 2011-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2050 * lib/crypto-backend.h, lib/gnutls_errors.c, lib/gnutls_pk.c,
2051 lib/gnutls_pk.h, lib/includes/gnutls/gnutls.h.in,
2052 lib/includes/gnutls/x509.h, lib/libgnutls.map, lib/nettle/pk.c,
2053 lib/x509/privkey.c, src/certtool.c, tests/Makefile.am,
2054 tests/keygen.c: Added gnutls_x509_privkey_verify_params() which
2055 verifies the parameters of a private key. Added test case for
2056 private key generation.
2058 2011-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2060 * src/certtool-cfg.c, src/certtool-common.c, src/certtool.c,
2061 src/psk.c, src/srptool.c, src/tests.c, src/tls_test.c: simplified
2064 2011-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2066 * configure.ac, m4/hooks.m4: bumped library versions
2068 2011-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2070 * doc/cha-cert-auth.texi, doc/scripts/mytexi2latex,
2071 lib/x509/crl_write.c: Added documentation on revocation lists.
2073 2011-11-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2075 * tests/suite/chain: account for error code 1 in certtool.
2077 2011-11-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2079 * NEWS: document updates
2081 2011-11-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2083 * lib/gnutls_cipher.c: Reduce pad.
2085 2011-11-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2087 * configure.ac: added missing dir
2089 2011-11-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2091 * lib/gnutls_int.h, lib/gnutls_record.c: Revert "periodically print
2092 messages that might be used in timing attacks." This reverts commit a333d71762903ff5b716d1e3967017b1baf61bd2.
2094 2011-11-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2096 * lib/gnutls_state.c: Revert "dropped packets are also reported on
2097 gnutls_deinit() to ensure that they are not lost." This reverts commit 41a73fb4a147dc4773d4b546d5d8b5cfdae255d9.
2099 2011-11-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2103 2011-11-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2105 * lib/gnutls_cipher.c: provide less timing information during packet
2108 2011-11-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2110 * tests/ecdsa/ecdsa: silence test
2112 2011-11-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2114 * lib/crypto-backend.h, lib/gnutls_ecc.c, lib/gnutls_pubkey.c,
2115 lib/nettle/pk.c, lib/pkcs11_write.c, lib/x509/key_decode.c,
2116 lib/x509/key_encode.c, lib/x509/privkey.c: Corrected ECC key
2119 2011-11-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2121 * src/certtool.c: fail on certificate verification
2123 2011-11-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2125 * tests/Makefile.am, tests/ecdsa/Makefile.am, tests/ecdsa/ecdsa:
2126 Added ECDSA key generation, signing and verification tests.
2128 2011-11-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2130 * src/certtool.c: verify the self signature of a CRQ when --crq-info
2133 2011-11-10 Simon Josefsson <simon@josefsson.org>
2135 * lib/x509/verify-high.h: Add verify-high.h, to export some structs
2138 2011-11-10 Simon Josefsson <simon@josefsson.org>
2140 * lib/algorithms.h, lib/algorithms/mac.c: Add explicit digest
2141 mapping functions (for OCSP).
2143 2011-11-10 Simon Josefsson <simon@josefsson.org>
2145 * lib/x509/Makefile.am, lib/x509/verify-high.c: Make verify-high
2146 structures internally accessible (for OCSP).
2148 2011-11-10 Simon Josefsson <simon@josefsson.org>
2150 * lib/libgnutls.map: Indent.
2152 2011-11-10 Simon Josefsson <simon@josefsson.org>
2154 * lib/x509/common.c, lib/x509/common.h, lib/x509/extensions.c: Make
2155 more functions available internally (for OCSP).
2157 2011-11-10 Simon Josefsson <simon@josefsson.org>
2159 * lib/gnutls_str.c, lib/gnutls_str.h, lib/x509/output.c: Make
2160 asciiprint a globally available function.
2162 2011-11-10 Simon Josefsson <simon@josefsson.org>
2166 2011-11-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2168 * lib/gnutls_state.c: dropped packets are also reported on
2169 gnutls_deinit() to ensure that they are not lost.
2171 2011-11-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2173 * lib/gnutls_int.h, lib/gnutls_record.c: periodically print messages
2174 that might be used in timing attacks.
2176 2011-11-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2178 * COPYING.LESSER, lib/COPYING: LGPLv3 license was moved to root.
2180 2011-11-09 Simon Josefsson <simon@josefsson.org>
2182 * configure.ac, doc/reference/gnutls-docs.sgml,
2183 doc/reference/version.xml.in: Update gtk-doc template.
2185 2011-11-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2187 * doc/cha-gtls-app.texi: updated
2189 2011-11-09 Simon Josefsson <simon@josefsson.org>
2191 * lib/includes/gnutls/pkcs11.h: Remove redundant const keyword in
2192 (confuses gtk-doc parser).
2194 2011-11-09 Simon Josefsson <simon@josefsson.org>
2196 * README-alpha: Mention libidn dependency for crywrap.
2198 2011-11-09 Simon Josefsson <simon@josefsson.org>
2200 * lib/gnutls_pubkey.c: Don't crash if gnutls_pubkey_deinit is given
2203 2011-11-09 Simon Josefsson <simon@josefsson.org>
2205 * lib/x509_b64.c, lib/x509_b64.h: Remove dead code and use more
2208 2011-11-09 Simon Josefsson <simon@josefsson.org>
2210 * cfg.mk: Fix code coverage rules.
2212 2011-11-09 Simon Josefsson <simon@josefsson.org>
2214 * .gitignore: Ignore coverage related stuff.
2216 2011-11-09 Simon Josefsson <simon@josefsson.org>
2218 * configure.ac, lib/Makefile.am: Don't add p11-kit to CFLAGS/LIBS
2219 globally, just where it is needed.
2221 2011-11-09 Simon Josefsson <simon@josefsson.org>
2223 * doc/cyclo/Makefile.am: The build rule didn't really work before,
2224 now fixed. Update copyright years.
2226 2011-11-09 Simon Josefsson <simon@josefsson.org>
2228 * .gitignore: Remove unneeded stuff.
2230 2011-11-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2232 * lib/debug.c: enable _gnutls_dump_mpi() when debugging.
2234 2011-11-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2236 * lib/debug.c, lib/debug.h: Revert "Remove dead code." This reverts commit e5d8a79fcc429902e8fb9b7cec91d66b965df5bb.
2238 2011-11-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2240 * configure.ac, lib/Makefile.am, lib/gcrypt/Makefile.am,
2241 lib/gcrypt/cipher.c, lib/gcrypt/init.c, lib/gcrypt/mac.c,
2242 lib/gcrypt/mpi.c, lib/gcrypt/pk.c, lib/gcrypt/rnd.c: No need to
2243 distribute the libgcrypt backend (which cannot even be compiled).
2245 2011-11-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2247 * lib/accelerated/x86/README: updated to include padlock.
2249 2011-11-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2251 * lib/nettle/cipher.c, lib/nettle/mac.c: release allocated memory on
2252 a cipher or mac failure to initialize.
2254 2011-11-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2256 * doc/cha-gtls-app.texi: clarified usage of
2257 gnutls_record_check_pending().
2259 2011-11-09 Simon Josefsson <simon@josefsson.org>
2261 * lib/debug.c, lib/debug.h: Remove dead code.
2263 2011-11-09 Simon Josefsson <simon@josefsson.org>
2265 * .gitignore: Sort and add.
2267 2011-11-09 Simon Josefsson <simon@josefsson.org>
2269 * lib/gnutls_db.c, lib/gnutls_db.h: Remove some redundant prototypes
2270 and use more static.
2272 2011-11-09 Simon Josefsson <simon@josefsson.org>
2274 * lib/gnutls_db.c, lib/gnutls_db.h: Simplify redundant code.
2276 2011-11-09 Simon Josefsson <simon@josefsson.org>
2278 * build-aux/pmccabe2html, gl/Makefile.am, gl/m4/gnulib-cache.m4,
2279 gl/m4/gnulib-comp.m4: Add pmccabe2html gnulib module.
2281 2011-11-09 Simon Josefsson <simon@josefsson.org>
2283 * gl/override/lib/hmac-md5.c.diff, gl/override/lib/memxor.c.diff,
2284 gl/override/lib/memxor.h.diff: Remove obsolete files.
2286 2011-11-09 Simon Josefsson <simon@josefsson.org>
2288 * configure.ac, gl/override/lib/read-file.c.diff,
2289 gl/override/lib/read-file.h.diff,
2290 gl/override/tests/test-read-file.c.diff, gl/read-file.c,
2291 gl/read-file.h, gl/tests/test-read-file.c, lib/gnutls_x509.c,
2292 lib/openpgp/gnutls_openpgp.c, src/certtool-common.c,
2293 src/certtool.c, src/cli.c, src/crywrap/crywrap.c: Simplify static
2294 library renaming hack.
2296 2011-11-09 Simon Josefsson <simon@josefsson.org>
2298 * tests/suite/Makefile.am: Cleanup and fix authorship notice (I
2299 didn't write this file).
2301 2011-11-09 Simon Josefsson <simon@josefsson.org>
2303 * tests/dsa/testdsa, tests/openpgp-certs/testcerts,
2304 tests/suite/testcompat-main, tests/suite/testsrn: Fix
2305 srcdir!=builddir builds.
2307 2011-11-09 Simon Josefsson <simon@josefsson.org>
2309 * Makefile.am: Allow distcheck to work, the suppressions.valgrind
2310 file caused problems.
2312 2011-11-08 Simon Josefsson <simon@josefsson.org>
2314 * doc/Makefile.am: enums.texi: Look in builddir too for gnutls.h.
2316 2011-11-08 Simon Josefsson <simon@josefsson.org>
2318 * NEWS, doc/manpages/Makefile.am: doc: man pages for API functions
2321 2011-11-08 Simon Josefsson <simon@josefsson.org>
2323 * GNUmakefile, gl/Makefile.am, gl/alignof.h, gl/argp-parse.c,
2324 gl/closedir.c, gl/m4/gnulib-comp.m4, gl/m4/math_h.m4,
2325 gl/m4/stdalign.m4, gl/math.in.h, gl/stdalign.in.h, gl/stdlib.in.h,
2326 gl/sys_socket.in.h, gl/tests/Makefile.am, gl/tests/putenv.c,
2327 gl/tests/test-stdalign.c, maint.mk: Update gnulib files.
2329 2011-11-08 Simon Josefsson <simon@josefsson.org>
2331 * cfg.mk: Improve syntax-check rules.
2333 2011-11-08 Simon Josefsson <simon@josefsson.org>
2335 * tests/Makefile.am: Re-indent.
2337 2011-11-08 Simon Josefsson <simon@josefsson.org>
2339 * doc/Makefile.am: Fix syntax-check whitespace nit.
2341 2011-11-08 Simon Josefsson <simon@josefsson.org>
2343 * configure.ac: Fix portability quirk.
2345 2011-11-08 Simon Josefsson <simon@josefsson.org>
2347 * tests/rsa-md5-collision/README: Fix 'the the' double use.
2349 2011-11-08 Simon Josefsson <simon@josefsson.org>
2351 * lib/accelerated/x86/hmac-padlock.c: Remove unneeded assert.h
2354 2011-11-08 Simon Josefsson <simon@josefsson.org>
2356 * .gitattributes: Drop unneeded .gitattributes.
2358 2011-11-08 Simon Josefsson <simon@josefsson.org>
2360 * doc/reference/Makefile.am, gtk-doc.make: Update gtk-doc files.
2362 2011-11-08 Simon Josefsson <simon@josefsson.org>
2364 * doc/reference/gnutls-docs.sgml: Drop openssl API from GnuTLS API
2365 manual to avoid build errors.
2367 2011-11-08 Simon Josefsson <simon@josefsson.org>
2369 * doc/reference/Makefile.am: Drop more extra stuff.
2371 2011-11-08 Simon Josefsson <simon@josefsson.org>
2373 * extra/gnutls-extra.pc.in, extra/libgnutls-extra.map: Remove
2374 obsolete libgnutls-extra stuff.
2376 2011-11-08 Simon Josefsson <simon@josefsson.org>
2378 * doc/examples/verify.c: Include examples.h to get
2379 verify_certificate_callback prototype.
2381 2011-11-08 Simon Josefsson <simon@josefsson.org>
2383 * doc/reference/Makefile.am: Improve header ignoring.
2385 2011-11-08 Simon Josefsson <simon@josefsson.org>
2387 * configure.ac: Use gettext 0.18 to avoid build error.
2389 2011-11-08 Simon Josefsson <simon@josefsson.org>
2391 * lib/nettle/ecc_mulmod.c: Fix compile warnings.
2393 2011-11-08 Simon Josefsson <simon@josefsson.org>
2395 * po/it.po.in: Sync with TP.
2397 2011-11-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2399 * NEWS, configure.ac, m4/hooks.m4: released 3.0.7
2401 2011-11-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2403 * lib/algorithms/ciphersuites.c: Corrected ciphersuite
2404 GNUTLS_ECDHE_RSA_AES_128_CBC_SHA256. Reported by Fabrice Gautier.
2406 2011-11-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2408 * lib/gnutls_session.c: bug fix in gnutls_session_get_data().
2410 2011-11-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2412 * NEWS, configure.ac, m4/hooks.m4: bumped version
2414 2011-11-07 Alban Crequy <alban.crequy@collabora.co.uk>
2416 * lib/gnutls_session.c: gnutls_session_get_data: fix possible buffer
2417 overflow The test to avoid the buffer overflow was always false because
2418 session_data_size was set at the wrong place. This problem has been
2419 introduced by this commit: |commit ad4ed44c65e753e6d3a00104c049dd81826ccbf3 |Author: Nikos
2420 Mavrogiannopoulos <nmav@gnutls.org> |Date: Mon Nov 7 22:24:48 2005
2421 +0000 | | This is the initial commit in the 1.3 branch. Ported
2422 from the PSK branch: | * PSK ciphersuites have been added. |
2423 * The session resumption data are now system independent. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
2425 2011-11-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2427 * NEWS: documented changes.
2429 2011-11-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2431 * lib/auth/ecdh_common.c, lib/crypto-backend.h, lib/gnutls_ecc.c,
2432 lib/gnutls_privkey.c, lib/gnutls_pubkey.c, lib/nettle/Makefile.am,
2433 lib/nettle/ecc.h, lib/nettle/ecc_free.c, lib/nettle/ecc_make_key.c,
2434 lib/nettle/ecc_projective_check_point.c,
2435 lib/nettle/ecc_projective_dbl_point.c, lib/nettle/ecc_sign_hash.c,
2436 lib/nettle/pk.c, lib/pkcs11_write.c, lib/x509/key_decode.c,
2437 lib/x509/key_encode.c, lib/x509/mpi.c, lib/x509/privkey.c,
2438 lib/x509/x509_int.h: Verify that received ECDH public key lies on
2441 2011-11-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2443 * lib/gnutls_priority.c: ECDHE ciphersuites take precendence to
2446 2011-11-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2448 * NEWS, THANKS: documented fixes
2450 2011-11-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2452 * lib/nettle/ecc_test.c: re-removed file
2454 2011-11-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2456 * lib/x509/privkey_pkcs8.c: Report correct error on ECC key parsing
2459 2011-11-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2461 * lib/nettle/ecc.h, lib/nettle/ecc_mulmod.c,
2462 lib/nettle/ecc_projective_add_point.c,
2463 lib/nettle/ecc_projective_dbl_point.c,
2464 lib/nettle/ecc_projective_dbl_point_3.c, lib/nettle/ecc_test.c:
2465 converted more things to native gmp. This solves issue noticed in
2466 mips64 by Joseph Graham.
2468 2011-11-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2470 * tests/suite/testcompat-main: Added tests for null ciphersuites.
2472 2011-11-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2474 * NEWS: documented fix
2476 2011-11-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2478 * doc/Makefile.am, doc/cha-gtls-app.texi, doc/examples/Makefile.am,
2479 doc/examples/ex-client-udp.c, doc/examples/ex-client2.c,
2480 doc/examples/ex-rfc2818.c, doc/examples/examples.h,
2481 doc/examples/verify.c: Include only a single example with X.509
2482 client. This example includes certificate verification.
2484 2011-11-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2486 * doc/latex/Makefile.am: no libextra in doc
2488 2011-11-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2490 * lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h: corrected NULL
2491 cipher encryption. Reported by Fabrice Gautier.
2493 2011-11-04 Ludovic Courtès <ludo@gnu.org>
2495 * configure.ac, guile/modules/gnutls.in, guile/pre-inst-guile.in,
2496 guile/src/Makefile.am: guile: Rename `libguile-gnutls-v-2.la' to
2497 `guile-gnutls-v-2.la'.
2499 2011-11-04 Ludovic Courtès <ludo@gnu.org>
2501 * .gitignore, configure.ac, guile/modules/Makefile.am,
2502 guile/modules/gnutls.in, guile/modules/gnutls.scm,
2503 guile/pre-inst-guile.in, guile/src/Makefile.am: guile: Install
2504 libguile-gnutls under $(libdir)/guile/X.Y.
2506 2011-11-03 Ludovic Courtès <ludo@gnu.org>
2508 * guile/modules/gnutls.scm, guile/pre-inst-guile.in,
2509 guile/src/Makefile.am: guile: Rename to `libguile-gnutls-v-2'.
2511 2011-11-03 Ludovic Courtès <ludo@gnu.org>
2513 * doc/gnutls-guile.texi: doc: Make it clear that both Guile 1.8 and
2516 2011-11-03 Ludovic Courtès <ludo@gnu.org>
2518 * doc/Makefile.am, doc/gnutls-guile.texi: guile: Update doc to
2519 reflect the removal of (gnutls extra).
2521 2011-11-03 Ludovic Courtès <ludo@gnu.org>
2523 * guile/tests/openpgp-auth.scm, guile/tests/openpgp-keyring.scm,
2524 guile/tests/openpgp-keys.scm: guile: Remove uses of (gnutls extra)
2527 2011-11-03 Ludovic Courtès <ludo@gnu.org>
2529 * guile/modules/gnutls.scm, guile/modules/gnutls/build/enums.scm,
2530 guile/modules/gnutls/build/smobs.scm,
2531 guile/modules/gnutls/extra.scm, guile/pre-inst-guile.in,
2532 guile/src/Makefile.am, guile/src/core.c, guile/src/extra.c,
2533 guile/src/make-enum-header.scm, guile/src/make-enum-map.scm,
2534 guile/src/make-smob-header.scm, guile/src/make-smob-types.scm:
2535 guile: Merge the (gnutls extra) module in (gnutls); deprecate it.
2537 2011-11-03 Ludovic Courtès <ludo@gnu.org>
2539 * guile/pre-inst-guile.in, guile/src/Makefile.am: Reverting "Drop
2540 guile libgnutls-extra stuff."
2542 2011-11-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2544 * lib/gnutls_str.c, lib/gnutls_str.h, lib/openpgp/output.c,
2545 lib/x509/output.c: removed duplicate code.
2547 2011-11-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2549 * guile/modules/gnutls/build/enums.scm: removed enumerations that
2552 2011-11-02 Simon Josefsson <simon@josefsson.org>
2554 * lib/auth/srp.c: Fix typo.
2556 2011-11-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2558 * gl/Makefile.am, gl/hmac-md5.c, gl/hmac.h, gl/m4/gnulib-cache.m4,
2559 gl/m4/gnulib-comp.m4, gl/m4/md5.m4, gl/m4/memxor.m4, gl/md5.c,
2560 gl/md5.h, gl/memxor.c, gl/memxor.h, gl/tests/Makefile.am,
2561 gl/tests/test-hmac-md5.c, gl/tests/test-md5.c: hmac-md5 gnulib
2562 module was removed (it was no longer used)
2564 2011-11-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2566 * .gitignore: more files to ignore
2568 2011-11-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2570 * src/srptool.c: print all groups.
2572 2011-11-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2574 * lib/auth/srp.c, lib/auth/srp_passwd.c,
2575 lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, src/prime.c,
2576 src/srptool.c: Added 3072 and 4096-bit groups from RFC5054.
2578 2011-11-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2580 * lib/gnutls_x509.c, lib/openpgp/gnutls_openpgp.c,
2581 src/certtool-common.c, src/certtool.c, src/cli.c,
2582 src/crywrap/crywrap.c: read_file() and friends are accessed as
2585 2011-11-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2587 * gl/override/lib/read-file.c.diff,
2588 gl/override/lib/read-file.h.diff,
2589 gl/override/tests/test-read-file.c.diff, gl/read-file.c,
2590 gl/read-file.h, gl/tests/test-read-file.c: read_file and friends
2591 were renamed to gl_read_file.
2593 2011-10-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2595 * THANKS: added David
2597 2011-10-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2599 * NEWS: documented fix
2601 2011-10-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2603 * doc/Makefile.am: errcodes printlist and alert-printlist become
2604 EXTRA_PROGRAMS so they are not built by default.
2606 2011-10-28 Simon Josefsson <simon@josefsson.org>
2608 * cfg.mk: Fix bootstrap rule to avoid duplicate gettext files.
2610 2011-10-28 Simon Josefsson <simon@josefsson.org>
2612 * cfg.mk: Remove old hack.
2614 2011-10-28 Simon Josefsson <simon@josefsson.org>
2616 * guile/pre-inst-guile.in, guile/src/Makefile.am: Drop guile
2617 libgnutls-extra stuff.
2619 2011-10-28 Simon Josefsson <simon@josefsson.org>
2621 * doc/gnutls.texi: Avoid line wrapping copyright line.
2623 2011-10-28 Simon Josefsson <simon@josefsson.org>
2625 * build-aux/config.rpath: Update config.rpath from gnulib.
2627 2011-10-28 Simon Josefsson <simon@josefsson.org>
2629 * doc/manpages/Makefile.am, doc/reference/gnutls-docs.sgml: Drop
2630 more libgnutls-extra related stuff.
2632 2011-10-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2634 * NEWS, configure.ac, m4/hooks.m4: released 3.0.5
2636 2011-10-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2638 * tests/utils.c: added stdarg.h for vsnprintf.
2640 2011-10-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2642 * src/benchmark.c, src/benchmark.h: win32 fixes by David Hoyt.
2644 2011-10-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2646 * doc/examples/Makefile.am: more builddir fixes.
2648 2011-10-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2650 * build-aux/config.rpath, gl/Makefile.am, gl/connect.c,
2651 gl/inet_ntop.c, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4,
2652 gl/m4/inet_ntop.m4, gl/recv.c, gl/send.c, gl/tests/Makefile.am,
2653 gl/tests/connect.c, gl/tests/test-inet_ntop.c,
2654 gl/tests/test-recv.c, gl/tests/test-send.c: Added recv(), send(),
2655 connect() and inet_ntop() gnulib modules.
2657 2011-10-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2659 * lib/gnutls_int.h, lib/opencdk/opencdk.h: do not unconditionally
2660 include sys/socket.h.
2662 2011-10-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2664 * gl/Makefile.am, gl/close.c, gl/m4/gnulib-cache.m4,
2665 gl/m4/gnulib-comp.m4, gl/tests/Makefile.am, gl/tests/close.c: Added
2666 gnulib close module.
2668 2011-10-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2670 * lib/nettle/rnd.c: do not use NULL for device_fd in windows.
2672 2011-10-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2674 * lib/opencdk/main.c: no need to include windows.h here.
2676 2011-10-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2678 * .gitignore: more files to ignore
2680 2011-10-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2682 * src/certtool-cfg.c, src/cli.c, src/tls_test.c, src/udp-serv.c:
2685 2011-10-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2687 * gl/Makefile.am, gl/arpa_inet.in.h, gl/errno.in.h, gl/inet_pton.c,
2688 gl/m4/ftruncate.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4,
2689 gl/m4/ioctl.m4, gl/m4/perror.m4, gl/m4/pipe.m4, gl/m4/select.m4,
2690 gl/m4/signal_h.m4, gl/m4/strerror_r.m4, gl/m4/sys_ioctl_h.m4,
2691 gl/m4/sys_select_h.m4, gl/m4/thread.m4, gl/m4/yield.m4,
2692 gl/math.in.h, gl/select.c, gl/signal.in.h, gl/strerror-override.c,
2693 gl/strerror-override.h, gl/sys_select.in.h, gl/tests/Makefile.am,
2694 gl/tests/arpa_inet.in.h, gl/tests/connect.c, gl/tests/ftruncate.c,
2695 gl/tests/glthread/lock.c, gl/tests/glthread/lock.h,
2696 gl/tests/glthread/thread.c, gl/tests/glthread/thread.h,
2697 gl/tests/glthread/threadlib.c, gl/tests/glthread/yield.h,
2698 gl/tests/inet_pton.c, gl/tests/ioctl.c, gl/tests/perror.c,
2699 gl/tests/pipe.c, gl/tests/strerror_r.c, gl/tests/sys_ioctl.in.h,
2700 gl/tests/test-connect.c, gl/tests/test-ftruncate.c,
2701 gl/tests/test-ftruncate.sh, gl/tests/test-ioctl.c,
2702 gl/tests/test-lock.c, gl/tests/test-perror.c,
2703 gl/tests/test-perror.sh, gl/tests/test-perror2.c,
2704 gl/tests/test-pipe.c, gl/tests/test-select-fd.c,
2705 gl/tests/test-select-in.sh, gl/tests/test-select-out.sh,
2706 gl/tests/test-select-stdin.c, gl/tests/test-select.c,
2707 gl/tests/test-select.h, gl/tests/test-signal-h.c,
2708 gl/tests/test-strerror_r.c, gl/tests/test-sys_ioctl.c,
2709 gl/tests/test-sys_select.c, gl/tests/test-thread_create.c,
2710 gl/tests/test-thread_self.c, gl/tests/w32sock.h, gl/w32sock.h,
2711 maint.mk: new gnulib + added select + inet_pton.
2713 2011-10-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2715 * src/common.h, src/udp-serv.c: netinet headers were put on an
2718 2011-10-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2720 * doc/cha-gtls-app.texi: more libextra doc fixes.
2722 2011-10-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2724 * doc/cha-functions.texi: extra-api is no more
2726 2011-10-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2728 * lib/accelerated/x86/asm-coff/cpuid-x86-64-coff.s,
2729 lib/accelerated/x86/asm-coff/cpuid-x86-coff.s: corrected symbols for
2732 2011-10-25 Simon Josefsson <simon@josefsson.org>
2734 * NEWS, lib/minitasn1/decoding.c, lib/minitasn1/element.c,
2735 lib/minitasn1/element.h, lib/minitasn1/errors.c,
2736 lib/minitasn1/gstr.c, lib/minitasn1/gstr.h, lib/minitasn1/int.h,
2737 lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c,
2738 lib/minitasn1/parser_aux.h, lib/minitasn1/structure.c,
2739 lib/minitasn1/structure.h, lib/minitasn1/version.c: Update to
2742 2011-10-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2744 * configure.ac: changed mingw32 detection
2746 2011-10-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2748 * configure.ac, lib/accelerated/x86/Makefile.am,
2749 lib/accelerated/x86/asm-coff/appro-aes-gcm-x86-64-coff.s,
2750 lib/accelerated/x86/asm-coff/appro-aes-x86-64-coff.s,
2751 lib/accelerated/x86/asm-coff/cpuid-x86-64-coff.s,
2752 lib/accelerated/x86/asm-coff/padlock-x86-64-coff.s: added coff files
2755 2011-10-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2757 * lib/accelerated/x86/Makefile.am,
2758 lib/accelerated/x86/asm-coff/appro-aes-x86-coff.s,
2759 lib/accelerated/x86/asm-coff/cpuid-x86-coff.s,
2760 lib/accelerated/x86/asm-coff/padlock-x86-coff.s,
2761 lib/accelerated/x86/coff/appro-aes-x86-coff.s,
2762 lib/accelerated/x86/coff/padlock-x86-coff.s: Added coff version of
2765 2011-10-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2767 * .gitignore: more files to ignore
2769 2011-10-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2771 * configure.ac, lib/accelerated/x86/Makefile.am,
2772 lib/accelerated/x86/coff/appro-aes-x86-coff.s,
2773 lib/accelerated/x86/coff/padlock-x86-coff.s: Added COFF versions of
2776 2011-10-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2778 * THANKS: Added Jan.
2780 2011-10-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2782 * lib/minitasn1/coding.c: use coding.c from libtasn1 git, to avoid
2783 issue when compiled with gcc-4.6.
2785 2011-10-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2787 * lib/accelerated/x86/aes-padlock.c: Corrected PHE-partial test.
2789 2011-10-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2791 * NEWS: documented fixes
2793 2011-10-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2795 * lib/gnutls_global.c: library mismatch error is no longer used
2797 2011-10-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2799 * lib/accelerated/x86/Makefile.am,
2800 lib/accelerated/x86/aes-padlock.c,
2801 lib/accelerated/x86/aes-padlock.h,
2802 lib/accelerated/x86/asm/padlock-common.s,
2803 lib/accelerated/x86/sha-padlock.h: PHE-partial detection is not
2804 being done, instead of checking for VIA nano.
2806 2011-10-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2808 * lib/accelerated/x86/Makefile.am,
2809 lib/accelerated/x86/aes-padlock.h,
2810 lib/accelerated/x86/asm/padlock-common.s: No need to check for
2811 padlock nano in 32-bit systems, so simplify things.
2813 2011-10-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2815 * lib/gnutls_hash_int.c: initialize only a fully available hash
2817 2011-10-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2819 * lib/accelerated/x86/asm/padlock-common.s: is_padlock_nano is
2820 behaving properly and saving registers.
2822 2011-10-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2824 * lib/gnutls_errors.c: removed libextra error codes.
2826 2011-10-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2828 * guile/modules/gnutls.scm, guile/src/make-enum-header.scm: removed
2829 extra.h header from guile code.
2831 2011-10-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2833 * lib/includes/gnutls/gnutls.h.in: removed libextra errors.
2835 2011-10-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2837 * src/serv.c, src/udp-serv.c: added extra headers.
2839 2011-10-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2841 * .gitignore, doc/latex/.gitignore, gl/Makefile.am, gl/accept.c,
2842 gl/bind.c, gl/frexp.c, gl/frexpl.c, gl/getpeername.c, gl/gettext.h,
2843 gl/isnan.c, gl/listen.c, gl/m4/arpa_inet_h.m4, gl/m4/frexp.m4,
2844 gl/m4/frexpl.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4,
2845 gl/m4/include_next.m4, gl/m4/inet_pton.m4, gl/m4/isnand.m4,
2846 gl/m4/isnanl.m4, gl/m4/ldexpl.m4, gl/m4/math_h.m4,
2847 gl/m4/printf-frexpl.m4, gl/m4/printf.m4, gl/m4/stdlib_h.m4,
2848 gl/m4/vasnprintf.m4, gl/math.in.h, gl/override/lib/gettext.h.diff,
2849 gl/printf-frexp.c, gl/printf-frexpl.c, gl/recvfrom.c, gl/sendto.c,
2850 gl/setsockopt.c, gl/shutdown.c, gl/socket.c, gl/stdlib.in.h,
2851 gl/tests/Makefile.am, gl/tests/arpa_inet.in.h,
2852 gl/tests/inet_pton.c, gl/tests/test-accept.c,
2853 gl/tests/test-arpa_inet.c, gl/tests/test-bind.c,
2854 gl/tests/test-getpeername.c, gl/tests/test-inet_pton.c,
2855 gl/tests/test-isnanl.h, gl/tests/test-listen.c,
2856 gl/tests/test-recvfrom.c, gl/tests/test-sendto.c,
2857 gl/tests/test-setsockopt.c, gl/tests/test-shutdown.c,
2858 gl/vasnprintf.c, maint.mk: added new gnulib and modules.
2860 2011-10-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2862 * extra/Makefile.am, lib/Makefile.am, lib/accelerated/Makefile.am,
2863 lib/accelerated/x86/Makefile.am, lib/algorithms/Makefile.am,
2864 lib/auth/Makefile.am, lib/ext/Makefile.am, lib/nettle/Makefile.am,
2865 lib/opencdk/Makefile.am, lib/openpgp/Makefile.am, src/Makefile.am:
2866 more builddir fixes by David Hoyt.
2868 2011-10-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2870 * lib/Makefile.am: Added includes in Makefile.am
2872 2011-10-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2874 * lib/accelerated/Makefile.am, lib/algorithms/Makefile.am,
2875 lib/auth/Makefile.am, lib/ext/Makefile.am,
2876 lib/minitasn1/Makefile.am, lib/nettle/Makefile.am,
2877 lib/opencdk/Makefile.am, lib/openpgp/Makefile.am: Added
2878 -I$(builddir)/../../gl to CFLAGS.
2880 2011-10-21 Simon Josefsson <simon@josefsson.org>
2882 * lib/accelerated/x86/Makefile.am: Add -I to fix building. Reported by "Hoyt, David" <hoyt6@llnl.gov>.
2884 2011-10-21 Simon Josefsson <simon@josefsson.org>
2886 * lib/Makefile.am, lib/x509/Makefile.am: Also add -I's for gnulib's
2887 build directory, for mingw. Reported by "Hoyt, David" <hoyt6@llnl.gov>.
2889 2011-10-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2891 * NEWS, extra/gnutls_extra.c, guile/src/extra.c,
2892 lib/auth/srp_passwd.c, lib/gnutls_srp.c: removed more extra.h
2895 2011-10-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2897 * lib/accelerated/x86/asm/appro-aes-gcm-x86-64.s,
2898 lib/accelerated/x86/asm/appro-aes-x86-64.s,
2899 lib/accelerated/x86/asm/appro-aes-x86.s,
2900 lib/accelerated/x86/asm/cpuid-x86-64.s,
2901 lib/accelerated/x86/asm/cpuid-x86.s,
2902 lib/accelerated/x86/asm/padlock-common.s,
2903 lib/accelerated/x86/asm/padlock-x86-64.s,
2904 lib/accelerated/x86/asm/padlock-x86.s: updated gnustack note.
2906 2011-10-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2908 * src/certtool-common.c, src/pkcs11.c, src/psk.c, src/srptool.c,
2909 src/tests.c, src/tls_test.c: extra.h is no more.
2911 2011-10-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2913 * Makefile.am, NEWS, README, configure.ac, doc/Makefile.am,
2914 doc/cha-internals.texi, doc/examples/Makefile.am,
2915 doc/manpages/Makefile.am, doc/reference/Makefile.am,
2916 extra/Makefile.am, extra/gnutls-extra.pc.in, extra/gnutls_extra.c,
2917 extra/gnutls_openssl.c, extra/includes/Makefile.am,
2918 extra/includes/gnutls/openssl.h, extra/libgnutls-extra.map,
2919 extra/openssl_compat.c, extra/openssl_compat.h,
2920 guile/src/Makefile.am, libextra/Makefile.am,
2921 libextra/gnutls-extra.pc.in, libextra/gnutls_extra.c,
2922 libextra/gnutls_openssl.c, libextra/includes/Makefile.am,
2923 libextra/includes/gnutls/extra.h,
2924 libextra/includes/gnutls/openssl.h, libextra/libgnutls-extra.map,
2925 libextra/openssl_compat.c, libextra/openssl_compat.h,
2926 src/Makefile.am, tests/Makefile.am, tests/openpgp-keyring.c,
2927 tests/suite/Makefile.am: libgnutls-extra is no more.
2929 2011-10-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2931 * lib/pkcs11.c, lib/pkcs11_privkey.c, lib/pkcs11_secret.c,
2932 lib/pkcs11_write.c: Added Stef to authors of pkcs11.
2934 2011-10-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2936 * NEWS, THANKS: documented fix
2938 2011-10-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2940 * lib/x509/common.c: Corrected bug in gnutls_x509_data2hex. Report
2941 and fix by Vincent Untz.
2943 2011-10-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2945 * NEWS: updated for register_md5_handler().
2947 2011-10-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2949 * libextra/includes/gnutls/extra.h, libextra/libgnutls-extra.map:
2950 completely drop gnutls_register_md5_handler()
2952 2011-10-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2954 * lib/accelerated/x86/asm/padlock-common.s: Added gnu-stack note.
2956 2011-10-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2958 * NEWS, doc/scripts/Makefile.am: released 3.0.4
2960 2011-10-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2962 * tests/pathlen/ca-no-pathlen.pem,
2963 tests/pathlen/no-ca-or-pathlen.pem: updated tests for new key ID
2965 2011-10-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2967 * lib/x509/privkey.c: key id is being calculated the same way in
2968 private keys as in public keys.
2970 2011-10-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2972 * doc/Makefile.am, doc/cha-intro-tls.texi, doc/cha-tls-app.texi,
2973 doc/gnutls.texi, doc/latex/Makefile.am, doc/latex/gnutls.tex,
2974 doc/scripts/gdoc, doc/scripts/mytexi2latex, doc/scripts/sort1.pl,
2975 doc/scripts/split-texi.pl, doc/scripts/split.pl,
2976 doc/sec-tls-app.texi, tests/nist-pkits/build-chain: 'How to use TLS
2977 in application protocols' section was moved to introduction to TLS.
2980 2011-10-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2982 * src/tests.c, src/tests.h, src/tls_test.c: Added a test for servers
2983 not accepting small records.
2985 2011-10-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2987 * lib/accelerated/x86/asm/padlock-x86-64.s,
2988 lib/accelerated/x86/asm/padlock-x86.s: new version of padlock by
2991 2011-10-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2993 * NEWS, configure.ac, m4/hooks.m4: bumped versions
2995 2011-10-12 Simon Josefsson <simon@josefsson.org>
2997 * .gitignore: Add and sort.
2999 2011-10-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3001 * doc/cha-intro-tls.texi: updated text
3003 2011-10-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3005 * m4/hooks.m4: check for nettle 2.4 or later
3007 2011-10-10 Simon Josefsson <simon@josefsson.org>
3009 * src/cli.c: Fix type of keyid (finally!).
3011 2011-10-10 Simon Josefsson <simon@josefsson.org>
3013 * doc/manpages/Makefile.am, lib/includes/gnutls/abstract.h: More doc
3016 2011-10-10 Simon Josefsson <simon@josefsson.org>
3018 * lib/gnutls_x509.c: GTK-DOC doc fix.
3020 2011-10-10 Simon Josefsson <simon@josefsson.org>
3022 * src/cli.c: Use gnutls_openpgp_keyid_t type for keyid variable.
3024 2011-10-10 Simon Josefsson <simon@josefsson.org>
3026 * src/cli.c: Include stdint.h to get uint8_t.
3028 2011-10-10 Simon Josefsson <simon@josefsson.org>
3030 * src/cli.c: Revert "avoid usage of C99 constructs." This reverts commit 643ebdf12b415fc3edd3b7bc12654bc92d3aed24.
3032 2011-10-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3034 * lib/accelerated/x86/asm/padlock-x86-64.s,
3035 lib/accelerated/x86/asm/padlock-x86.s: updated Andy's code.
3036 padlock_shax_blocks does not require any more, the state to be of
3039 2011-10-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3041 * src/tests.c: Corrected check for AES-GCM
3043 2011-10-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3045 * src/tests.c, src/tests.h, src/tls_test.c: test for camellia
3047 2011-10-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3049 * src/cli.c: avoid usage of C99 constructs.
3051 2011-10-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3053 * lib/accelerated/x86/Makefile.am,
3054 lib/accelerated/x86/asm/padlock-common.s,
3055 lib/accelerated/x86/asm/padlock-x86-64.s,
3056 lib/accelerated/x86/asm/padlock-x86.s: is_padlock_nano moved to
3057 padlock-common.s to allow easier upgrade to Andy's newer code.
3059 2011-10-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3061 * tests/cipher-test.c: Added more elaborate test of hash functions.
3063 2011-10-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3065 * lib/gnutls_int.h, lib/x509/mpi.c: HASH2MAC macro is no more.
3067 2011-10-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3069 * NEWS, lib/gnutls_ui.c, lib/x509/common.c, lib/x509/common.h,
3070 lib/x509/crq.c, lib/x509/output.c, lib/x509/x509.c, src/certtool.c:
3071 Key ID calculation is now consistent on all structures. It is a SHA1
3072 hash of the subjectPublicKeyInfo structures.
3074 2011-10-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3076 * doc/cha-library.texi: simplified documentation
3078 2011-10-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3080 * NEWS, doc/cha-intro-tls.texi: documentation update
3082 2011-10-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3084 * src/tests.c, src/tests.h, src/tls_test.c: Added tests for ECDHE,
3087 2011-10-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3089 * NEWS, lib/gnutls_sig.c: fixes to enable the external signing
3090 callback to operate with TLS 1.2
3092 2011-10-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3094 * NEWS, doc/cha-auth.texi, doc/cha-cert-auth.texi, lib/auth/cert.c,
3095 lib/gnutls_cert.c, lib/gnutls_privkey.c, lib/gnutls_x509.c,
3096 lib/includes/gnutls/abstract.h, lib/includes/gnutls/compat.h,
3097 lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map: Added new
3098 signing callback in gnutls_privkey_t.
3100 2011-10-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3102 * gl/Makefile.am, gl/m4/math_h.m4, gl/math.in.h: updated gnulib.
3104 2011-10-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3106 * NEWS: documented fix
3108 2011-10-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3110 * lib/x509/x509.c: corrected bug in key id extraction. Reported by
3113 2011-10-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3115 * lib/accelerated/x86/aes-padlock.c,
3116 lib/accelerated/x86/aes-padlock.h,
3117 lib/accelerated/x86/asm/padlock-x86-64.s,
3118 lib/accelerated/x86/asm/padlock-x86.s,
3119 lib/accelerated/x86/hmac-padlock.c,
3120 lib/accelerated/x86/sha-padlock.c, src/benchmark-cipher.c: better
3121 detection of padlock PHE.
3123 2011-10-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3125 * .gitignore, NEWS, lib/accelerated/Makefile.am,
3126 lib/accelerated/accelerated.c, lib/accelerated/x86/Makefile.am,
3127 lib/accelerated/x86/aes-padlock.c,
3128 lib/accelerated/x86/aes-padlock.h,
3129 lib/accelerated/x86/hmac-padlock.c,
3130 lib/accelerated/x86/sha-padlock.c,
3131 lib/accelerated/x86/sha-padlock.h, lib/accelerated/x86/x86.h,
3132 lib/nettle/mac.c, tests/cipher-test.c: Updates for padlock hashes in
3133 C7 nano. Requires a part of nettle to be included.
3135 2011-10-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3137 * lib/accelerated/x86/aes-gcm-padlock.c: Always use encryption
3140 2011-10-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3142 * src/Makefile.am, src/serv.c: libextra is not needed for neither
3145 2011-10-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3147 * configure.ac: corrected path
3149 2011-10-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3151 * lib/accelerated/x86/asm/padlock-x86-64.s,
3152 lib/accelerated/x86/asm/padlock-x86.s: updated padlock code.
3154 2011-10-04 Nikos Mavrogiannopoulos <nikos@thingfish.esat.kuleuven.be>
3156 * lib/gnutls_str_array.h, lib/nettle/rnd.c, lib/system.c: fixes in
3157 headers. Suggested by Bjorn Christensen.
3159 2011-10-04 Nikos Mavrogiannopoulos <nikos@thingfish.esat.kuleuven.be>
3161 * lib/accelerated/Makefile.am, lib/accelerated/intel/.gitignore,
3162 lib/accelerated/intel/Makefile.am, lib/accelerated/intel/README,
3163 lib/accelerated/intel/aes-gcm-padlock.c,
3164 lib/accelerated/intel/aes-gcm-x86.c,
3165 lib/accelerated/intel/aes-padlock.c,
3166 lib/accelerated/intel/aes-padlock.h,
3167 lib/accelerated/intel/aes-x86.c, lib/accelerated/intel/aes-x86.h,
3168 lib/accelerated/intel/asm/appro-aes-gcm-x86-64.s,
3169 lib/accelerated/intel/asm/appro-aes-x86-64.s,
3170 lib/accelerated/intel/asm/appro-aes-x86.s,
3171 lib/accelerated/intel/asm/cpuid-x86-64.s,
3172 lib/accelerated/intel/asm/cpuid-x86.s,
3173 lib/accelerated/intel/asm/padlock-x86-64.s,
3174 lib/accelerated/intel/asm/padlock-x86.s,
3175 lib/accelerated/intel/license.txt,
3176 lib/accelerated/intel/sha-padlock.c, lib/accelerated/intel/x86.h,
3177 lib/accelerated/x86/.gitignore, lib/accelerated/x86/Makefile.am,
3178 lib/accelerated/x86/README, lib/accelerated/x86/aes-gcm-padlock.c,
3179 lib/accelerated/x86/aes-gcm-x86.c,
3180 lib/accelerated/x86/aes-padlock.c,
3181 lib/accelerated/x86/aes-padlock.h, lib/accelerated/x86/aes-x86.c,
3182 lib/accelerated/x86/aes-x86.h,
3183 lib/accelerated/x86/asm/appro-aes-gcm-x86-64.s,
3184 lib/accelerated/x86/asm/appro-aes-x86-64.s,
3185 lib/accelerated/x86/asm/appro-aes-x86.s,
3186 lib/accelerated/x86/asm/cpuid-x86-64.s,
3187 lib/accelerated/x86/asm/cpuid-x86.s,
3188 lib/accelerated/x86/asm/padlock-x86-64.s,
3189 lib/accelerated/x86/asm/padlock-x86.s,
3190 lib/accelerated/x86/license.txt, lib/accelerated/x86/sha-padlock.c,
3191 lib/accelerated/x86/x86.h: intel directory renamed to x86.
3193 2011-10-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3197 2011-10-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3199 * .gitignore, gl/Makefile.am, gl/error.c, gl/float.c,
3200 gl/float.in.h, gl/fstat.c, gl/itold.c, gl/lseek.c, gl/m4/close.m4,
3201 gl/m4/dup2.m4, gl/m4/fdopen.m4, gl/m4/float_h.m4, gl/m4/fstat.m4,
3202 gl/m4/gnulib-cache.m4, gl/m4/gnulib-common.m4,
3203 gl/m4/gnulib-comp.m4, gl/m4/msvc-nothrow.m4, gl/m4/pathmax.m4,
3204 gl/m4/stdio_h.m4, gl/m4/sys_stat_h.m4, gl/m4/unistd_h.m4,
3205 gl/math.in.h, gl/msvc-inval.c, gl/msvc-inval.h, gl/msvc-nothrow.c,
3206 gl/msvc-nothrow.h, gl/opendir.c, gl/sockets.c, gl/sockets.h,
3207 gl/stdio.in.h, gl/strings.in.h, gl/sys_stat.in.h,
3208 gl/tests/Makefile.am, gl/tests/close.c, gl/tests/dup2.c,
3209 gl/tests/fdopen.c, gl/tests/msvc-inval.c, gl/tests/msvc-inval.h,
3210 gl/tests/test-close.c, gl/tests/test-dup2.c, gl/tests/test-fgetc.c,
3211 gl/tests/test-fputc.c, gl/tests/test-fread.c,
3212 gl/tests/test-fwrite.c, gl/unistd.in.h, gl/w32sock.h, maint.mk:
3215 2011-10-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3217 * lib/gnutls_sig.c: added an assert
3219 2011-10-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3221 * doc/cha-gtls-app.texi: doc fixes
3223 2011-10-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3225 * lib/gnutls_dtls.c: replaced uint type.
3227 2011-10-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3229 * lib/nettle/egd.c, lib/nettle/rnd.c: fix compilation in windows
3231 2011-10-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3233 * doc/cha-library.texi: updated text.
3235 2011-10-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3237 * lib/accelerated/intel/Makefile.am,
3238 lib/accelerated/intel/aes-padlock.c,
3239 lib/accelerated/intel/aes-padlock.h,
3240 lib/accelerated/intel/sha-padlock.c, lib/gnutls_str.h: Added ability
3241 to hash and hmac with VIA padlock.
3243 2011-10-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3245 * NEWS: documented updates
3247 2011-10-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3249 * lib/nettle/mac.c: optimizations in hmac.
3251 2011-10-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3253 * lib/crypto-backend.h, lib/gnutls_cipher_int.h,
3254 lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_mpi.h,
3255 lib/gnutls_pk.h, lib/nettle/cipher.c, lib/nettle/mac.c,
3256 lib/nettle/mpi.c, lib/nettle/pk.c, lib/nettle/rnd.c,
3257 libextra/Makefile.am, libextra/fipsmd5.c, libextra/gnutls_extra.c:
3258 The hash_fast() and hmac_fast() functions can be registered as well
3259 to allow backends with optimized (hw) implementations. In the nettle
3260 backend the different is one memory allocation less.
3262 2011-09-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3264 * lib/gnutls_cipher_int.h, lib/gnutls_hash_int.h, lib/gnutls_mpi.h,
3265 lib/gnutls_pk.h, lib/nettle/cipher.c, lib/nettle/mac.c,
3266 lib/nettle/mpi.c, lib/nettle/pk.c, lib/nettle/rnd.c: operations
3267 structures were made constants.
3269 2011-09-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3271 * lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_state.c:
3272 simplified usage of resume_true and resume_false.
3274 2011-09-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3276 * lib/gnutls_constate.c: simplified assignment of server_write and
3279 2011-09-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3281 * lib/accelerated/intel/aes-padlock.c,
3282 lib/accelerated/intel/asm/padlock-x86.s: movdqa replaced with movaps
3283 (C3 doesn't support SSE2 but only SSE)
3285 2011-09-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3287 * lib/accelerated/intel/aes-padlock.c: manually keep the IV.
3289 2011-09-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3291 * lib/accelerated/intel/asm/padlock-x86.s: re-added ecb
3293 2011-09-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3295 * lib/accelerated/intel/asm/padlock-x86-64.s,
3296 lib/accelerated/intel/asm/padlock-x86.s: removed unused modes.
3298 2011-09-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3300 * src/benchmark-cipher.c, src/benchmark.h, src/cli-gaa.c,
3301 src/cli-gaa.h, src/cli.gaa: Allow benchmarking the software version
3304 2011-09-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3306 * configure.ac, src/p11common.c: fixed compilation without p11-kit
3308 2011-09-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3310 * lib/accelerated/intel/aes-padlock.c: enabled VIA acceleration.
3312 2011-09-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3314 * src/benchmark.c: small update
3316 2011-09-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3318 * THANKS: more people to thank
3320 2011-09-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3322 * doc/examples/ex-pkcs11-list.c, src/benchmark.c, src/udp-serv.c:
3323 include config.h where needed.
3325 2011-09-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3327 * tests/suite/testcompat-main: worked around openssl 1.0.0e bug
3330 2011-09-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3332 * src/udp-serv.c: udp-serv includes config.h.
3334 2011-09-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3336 * lib/opencdk/read-packet.c, lib/opencdk/stream.c: corrections in
3339 2011-09-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3341 * configure.ac, lib/accelerated/Makefile.am,
3342 lib/accelerated/accelerated.c, lib/accelerated/intel/Makefile.am,
3343 lib/accelerated/intel/x86.h, lib/accelerated/x86.h: Better usage of
3344 X86 conditionals to simplify and avoid an undefined warning in
3347 2011-09-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3349 * lib/nettle/egd.c: a hack to allow compilation on systems without
3352 2011-09-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3354 * lib/gnutls_pcert.c: Disable openpgp code when not requested.
3355 Reported by Bjorn Christensen.
3357 2011-09-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3359 * tests/cve-2009-1416.c, tests/mpi.c, tests/rng-fork.c,
3360 tests/x509cert-tl.c, tests/x509cert.c: more silent tests.
3362 2011-09-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3364 * NEWS, gl/m4/valgrind-tests.m4,
3365 gl/override/m4/valgrind-tests.m4.diff, lib/gnutls_cipher.c,
3366 lib/gnutls_compress.c, lib/gnutls_compress.h,
3367 lib/gnutls_constate.c, lib/gnutls_int.h, tests/Makefile.am,
3368 tests/libgcrypt.supp, tests/safe-renegotiation/Makefile.am,
3369 tests/safe-renegotiation/suppressions.valgrind,
3370 tests/suppressions.valgrind: Further optimizations in the
3371 compression code. Re-enabled the test program by suppressing the
3374 2011-09-23 Simon Josefsson <simon@josefsson.org>
3376 * tests/utils.c: Redeuce self-test noise.
3378 2011-09-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3380 * .gitignore: more files to ignore
3382 2011-09-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3384 * configure.ac, doc/latex/Makefile.am, doc/latex/cover-epub.tex,
3385 doc/latex/cover.tex.in, doc/latex/epub.tex,
3386 doc/latex/macros-epub.tex: Added epub version of manual
3388 2011-09-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3390 * doc/latex/gnutls.bib: corrected typos
3392 2011-09-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3394 * doc/latex/gnutls.tex, doc/scripts/mytexi2latex: pdf is the image
3397 2011-09-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3399 * tests/Makefile.am: deflate test moved out
3401 2011-09-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3403 * lib/gnutls_compress.c: removed uneeded vars
3405 2011-09-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3407 * lib/gnutls_cipher.c, lib/gnutls_compress.c,
3408 lib/gnutls_compress.h, lib/gnutls_record.c, tests/Makefile.am,
3409 tests/eagain-common.h, tests/mini-deflate.c: Simplified and
3410 corrected decompression and compression. Added test program.
3412 2011-09-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3414 * src/common.c: print session ID
3416 2011-09-21 Simon Josefsson <simon@josefsson.org>
3418 * .gitignore, NEWS, lib/includes/gnutls/x509.h, lib/x509/output.c,
3419 lib/x509/x509.c, tests/infoaccess.c: libgnutls:
3420 gnutls_x509_crt_print supports printing AIA fields. Support
3423 2011-09-21 Simon Josefsson <simon@josefsson.org>
3425 * lib/includes/gnutls/x509.h: Improve gnutls_info_access_what_t
3428 2011-09-21 Simon Josefsson <simon@josefsson.org>
3430 * configure.ac, doc/scripts/gdoc, lib/auth/cert.c: Fix syntax-check
3433 2011-09-21 Simon Josefsson <simon@josefsson.org>
3435 * gl/Makefile.am, gl/closedir.c, gl/dirent-private.h,
3436 gl/dirent.in.h, gl/filename.h, gl/isnan.c, gl/m4/argp.m4,
3437 gl/m4/closedir.m4, gl/m4/dirent_h.m4, gl/m4/environ.m4,
3438 gl/m4/fcntl-o.m4, gl/m4/fcntl_h.m4, gl/m4/frexp.m4,
3439 gl/m4/frexpl.m4, gl/m4/getcwd.m4, gl/m4/getpass.m4,
3440 gl/m4/gnulib-comp.m4, gl/m4/iconv.m4, gl/m4/include_next.m4,
3441 gl/m4/ldexpl.m4, gl/m4/lseek.m4, gl/m4/msvc-inval.m4,
3442 gl/m4/nocrash.m4, gl/m4/opendir.m4, gl/m4/pathmax.m4,
3443 gl/m4/printf-frexpl.m4, gl/m4/printf.m4, gl/m4/readdir.m4,
3444 gl/m4/setenv.m4, gl/m4/signbit.m4, gl/m4/sleep.m4,
3445 gl/m4/ssize_t.m4, gl/m4/stdint.m4, gl/m4/stdio_h.m4,
3446 gl/m4/strings_h.m4, gl/m4/sys_stat_h.m4, gl/m4/sys_time_h.m4,
3447 gl/m4/sys_types_h.m4, gl/m4/time_h.m4, gl/m4/unistd_h.m4,
3448 gl/m4/vasnprintf.m4, gl/math.in.h, gl/opendir.c, gl/readdir.c,
3449 gl/stdio.in.h, gl/strings.in.h, gl/sys_stat.in.h, gl/sys_time.in.h,
3450 gl/sys_types.in.h, gl/sys_uio.in.h, gl/tests/Makefile.am,
3451 gl/tests/dup2.c, gl/tests/infinity.h, gl/tests/init.sh,
3452 gl/tests/msvc-inval.c, gl/tests/msvc-inval.h, gl/tests/nan.h,
3453 gl/tests/pathmax.h, gl/tests/putenv.c, gl/tests/stat.c,
3454 gl/tests/test-dup2.c, gl/tests/test-fcntl-h.c,
3455 gl/tests/test-fdopen.c, gl/tests/test-fgetc.c,
3456 gl/tests/test-fprintf-posix.h, gl/tests/test-frexp.c,
3457 gl/tests/test-frexpl.c, gl/tests/test-fseeko4.c,
3458 gl/tests/test-fseeko4.sh, gl/tests/test-fstat.c,
3459 gl/tests/test-ftello4.c, gl/tests/test-ftello4.sh,
3460 gl/tests/test-isnand.h, gl/tests/test-isnanf.h,
3461 gl/tests/test-isnanl.h, gl/tests/test-pathmax.c,
3462 gl/tests/test-printf-posix.h, gl/tests/test-signbit.c,
3463 gl/tests/test-sys_socket.c, gl/tests/test-sys_stat.c,
3464 gl/tests/test-sys_types.c, gl/tests/test-time.c, gl/unistd.in.h,
3465 gl/wchar.in.h, maint.mk: Update gnulib files.
3467 2011-09-21 Simon Josefsson <simon@josefsson.org>
3469 * lib/gnutls_dtls.c, lib/pkcs11_privkey.c, lib/x509/x509.c: Fix
3470 gtk-doc Since: tags.
3472 2011-09-21 Simon Josefsson <simon@josefsson.org>
3474 * doc/manpages/Makefile.am: Generated.
3476 2011-09-21 Simon Josefsson <simon@josefsson.org>
3478 * NEWS, doc/manpages/Makefile.am, lib/includes/gnutls/x509.h,
3479 lib/libgnutls.map, lib/pkix.asn, lib/pkix_asn1_tab.c,
3480 lib/x509/x509.c, tests/Makefile.am, tests/infoaccess.c: Added
3481 gnutls_x509_crt_get_authority_info_access.
3483 2011-09-21 Simon Josefsson <simon@josefsson.org>
3485 * lib/accelerated/intel/aes-padlock.c: Make it build with -Wunused.
3487 2011-09-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3489 * src/serv.c: do not trust getaddrinfo if IPv6 is not enabled. Patch
3492 2011-09-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3494 * .gitignore, doc/scripts/split-texi.pl: Added missing files
3496 2011-09-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3498 * configure.ac, lib/gnutls_privkey.c, lib/pkcs11.c, src/cli.c:
3499 Compilation fixes when pkcs11 is not enabled.
3501 2011-09-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3503 * doc/Makefile.am, doc/gnutls.texi, doc/scripts/gdoc: enumerations
3504 are visible in the texinfo output.
3506 2011-09-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3508 * NEWS: released 3.0.3
3510 2011-09-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3512 * lib/accelerated/intel/Makefile.am: Added missing file.
3514 2011-09-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3516 * doc/gnutls.texi, doc/latex/Makefile.am: doc fixes
3518 2011-09-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3520 * NEWS, lib/accelerated/intel/aes-padlock.c: VIA is disabled by
3523 2011-09-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3525 * configure.ac, m4/hooks.m4: bumped version
3527 2011-09-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3529 * NEWS, lib/auth/cert.c: Corrected memory leak in privkey
3530 deinitialization. Reported by Dan Winship.
3532 2011-09-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3534 * lib/accelerated/accelerated.c, lib/accelerated/intel/Makefile.am,
3535 lib/accelerated/intel/aes-padlock.c,
3536 lib/accelerated/intel/aes-x86.c,
3537 lib/accelerated/intel/asm/cpuid-x86-64.s,
3538 lib/accelerated/intel/asm/cpuid-x86.s, lib/accelerated/x86.h:
3539 eliminated inline assembly.
3541 2011-09-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3543 * NEWS, lib/gnutls_dtls.c, lib/gnutls_int.h, lib/gnutls_record.c,
3544 lib/includes/gnutls/dtls.h, lib/libgnutls.map: Added
3545 gnutls_record_get_discarded() to return the number of discarded
3546 record packets in a DTLS session.
3548 2011-09-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3550 * configure.ac, lib/accelerated/Makefile.am,
3551 lib/accelerated/accelerated.c, lib/accelerated/x86.h: Added better
3552 detection of capabilities in 386. If cpuid doesn't exist don't try
3555 2011-09-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3557 * doc/cha-auth.texi, doc/scripts/mytexi2latex: updates on SRP
3560 2011-09-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3562 * src/benchmark.c: stress that values are bytes and not bits
3564 2011-09-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3566 * src/serv-gaa.c: new gaa
3568 2011-09-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3570 * doc/latex/macros.tex: removed unused macro
3572 2011-09-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3574 * doc/cha-library.texi: corrected name of gnutls_global_set_mutex.
3576 2011-09-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3578 * lib/includes/gnutls/compat.h, lib/includes/gnutls/gnutls.h.in:
3579 Functions for RSA-EXPORT were marked as deprecated.
3581 2011-09-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3583 * doc/cha-gtls-app.texi, lib/gnutls_errors.c: documentation update
3585 2011-09-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3587 * doc/cha-internals.texi: doc updates
3589 2011-09-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3591 * doc/cha-library.texi, doc/cha-support.texi: Downloading and
3592 installing moved to main document
3594 2011-09-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3596 * doc/latex/gnutls.tex: corrected page numbers.
3598 2011-09-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3600 * lib/accelerated/intel/aes-padlock.c: Do not prefer GCM in padlock
3603 2011-09-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3607 2011-09-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3609 * doc/scripts/gdoc: functions and enumerations are being added in
3612 2011-09-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3614 * doc/Makefile.am, doc/cha-gtls-app.texi, doc/cha-internals.texi,
3615 doc/gnutls-objects.eps: removed gnutls-objects.
3617 2011-09-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3619 * doc/cha-gtls-app.texi: updated
3621 2011-09-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3623 * lib/gnutls_buffers.c, lib/gnutls_record.c: clarified format of
3624 sequence number in gnutls_record_recv_seq.
3626 2011-09-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3628 * doc/cha-cert-auth.texi: Added a paragraph on opensc and trousers
3631 2011-09-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3633 * lib/accelerated/x86.h: added license
3635 2011-09-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3637 * NEWS, doc/cha-auth.texi, doc/cha-cert-auth.texi,
3638 doc/cha-gtls-app.texi, doc/cha-intro-tls.texi,
3639 doc/latex/gnutls.tex, doc/latex/macros.tex,
3640 doc/scripts/mytexi2latex, lib/includes/gnutls/gnutls.h.in: updated
3641 documentation. The function descriptions were converted to floats.
3643 2011-09-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3645 * NEWS, lib/accelerated/intel/aes-padlock.c: disable the 64-bit
3646 padlock until it is tested.
3648 2011-09-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3650 * lib/accelerated/x86.h: corrected typo in cpuid for 386.
3652 2011-09-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3654 * doc/scripts/mytexi2latex: fix on double arguments
3656 2011-09-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3658 * .gitignore, doc/cha-cert-auth.texi, doc/cha-intro-tls.texi,
3659 doc/gnutls.texi, doc/latex/Makefile.am, doc/latex/gnutls.tex,
3660 doc/latex/macros.tex, doc/scripts/gdoc, doc/scripts/mytexi2latex,
3661 doc/scripts/split.pl, lib/includes/gnutls/dtls.h,
3662 lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/pkcs12.h,
3663 lib/includes/gnutls/x509.h: Modified gdoc to be able to handle
3664 enumerations. Only valid to latex.
3666 2011-09-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3668 * NEWS, lib/auth/ecdh_common.c, lib/nettle/ecc_free.c,
3669 lib/nettle/pk.c, lib/x509/verify-high.c, tests/x509cert-tl.c,
3670 tests/x509cert.c: Memory leak fixes in ECC ciphersuites and the
3673 2011-09-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3675 * lib/accelerated/intel/aes-gcm-padlock.c,
3676 lib/accelerated/intel/aes-padlock.c,
3677 lib/accelerated/intel/aes-padlock.h: simplified ecb encryption.
3679 2011-09-09 Simon Josefsson <simon@josefsson.org>
3681 * src/prime.c: Fix build warnings.
3683 2011-09-09 Simon Josefsson <simon@josefsson.org>
3685 * lib/pkcs11_write.c: Fix possible infloop and build warning about
3686 uninitialied variable.
3688 2011-09-09 Simon Josefsson <simon@josefsson.org>
3690 * lib/accelerated/intel/aes-gcm-padlock.c,
3691 lib/accelerated/intel/aes-padlock.c,
3692 lib/accelerated/intel/aes-padlock.h, lib/gnutls_sig.c,
3693 lib/gnutls_state.c, lib/gnutls_ui.c,
3694 lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/openpgp.h,
3695 lib/includes/gnutls/x509.h, lib/openpgp/gnutls_openpgp.c,
3696 lib/pkcs11_privkey.c: Fix build errors.
3698 2011-09-09 Simon Josefsson <simon@josefsson.org>
3700 * doc/manpages/Makefile.am: Generated.
3702 2011-09-09 Simon Josefsson <simon@josefsson.org>
3704 * gl/m4/getcwd.m4, gl/m4/gnulib-common.m4, gl/m4/largefile.m4,
3705 gl/tests/init.sh, gl/tests/lstat.c, gl/tests/open.c,
3706 gl/tests/stat.c, gl/tests/test-float.c, gl/unistd.in.h, maint.mk:
3707 Update gnulib files.
3709 2011-09-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3711 * lib/gnutls_handshake.c, lib/gnutls_sig.c, lib/gnutls_srp.c,
3712 lib/gnutls_state.c, lib/gnutls_ui.c, lib/nettle/mac.c: converted
3713 quick data hashes to _gnutls_hash_fast and the hmac equivalent.
3715 2011-09-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3717 * lib/accelerated/intel/Makefile.am,
3718 lib/accelerated/intel/aes-gcm-padlock.c,
3719 lib/accelerated/intel/aes-padlock.c,
3720 lib/accelerated/intel/aes-padlock.h,
3721 lib/accelerated/intel/aes-x86.h, lib/accelerated/intel/padlock.c:
3722 Added padlock support to GCM ciphers.
3724 2011-09-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3726 * lib/gnutls_extensions.c: do not reset length
3728 2011-09-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3730 * NEWS, lib/gnutls_extensions.c: Do not send an empty extension
3731 structure in server hello. This affects old implementations that do
3732 not support extensions. Reported by J. Cameijo Cerdeira.
3734 2011-09-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3736 * lib/gnutls_x509.c: Corrected documentation for
3737 gnutls_certificate_set_x509_trust. Reported by Stephen Lynch.
3739 2011-09-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3741 * doc/cha-internals.texi: minimized example
3743 2011-09-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3745 * lib/accelerated/intel/asm/padlock-x86-64.s,
3746 lib/accelerated/intel/asm/padlock-x86.s: Added gnustack flag
3748 2011-09-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3750 * lib/accelerated/intel/aes-gcm-x86.c,
3751 lib/accelerated/intel/aes-x86.c, lib/accelerated/intel/padlock.c,
3752 lib/crypto-api.c, lib/crypto-backend.h, lib/ext/session_ticket.c,
3753 lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h,
3754 lib/gnutls_constate.c, lib/includes/gnutls/crypto.h,
3755 lib/nettle/cipher.c, lib/x509/privkey_pkcs8.c: Added encryption flag
3756 to simplify and optimize key expansion.
3758 2011-09-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3760 * AUTHORS, lib/accelerated/accelerated.c,
3761 lib/accelerated/intel/Makefile.am,
3762 lib/accelerated/intel/aes-gcm-x86.c,
3763 lib/accelerated/intel/aes-x86.c, lib/accelerated/intel/aes-x86.h,
3764 lib/accelerated/intel/asm/padlock-x86-64.s,
3765 lib/accelerated/intel/asm/padlock-x86.s,
3766 lib/accelerated/intel/padlock.c: Added support for VIA padlock based
3767 on Andy's code (untested).
3769 2011-09-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3771 * lib/accelerated/intel/aes-x86.c, lib/accelerated/intel/aes-x86.h:
3772 corrected AES-NI code.
3774 2011-09-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3776 * lib/gnutls_x509.c: simplified
3777 gnutls_certificate_set_x509_trust_file. It uses
3778 gnutls_certificate_set_x509_trust_mem.
3780 2011-09-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3782 * lib/gnutls_x509.c, lib/x509/x509.c: Modified fix of "Allow CA
3783 importing of 0 certificates to succeed".
3784 gnutls_x509_crt_list_import() is still failing when no certificates
3785 are found and only gnutls_certificate_set_x509_trust_mem() returns
3786 zero when no certificates are found.
3788 2011-09-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3790 * NEWS, lib/gnutls_pubkey.c, lib/includes/gnutls/abstract.h,
3791 lib/libgnutls.map, lib/pkcs11.c, lib/pkcs11_int.h,
3792 lib/pkcs11_privkey.c, lib/pkcs11_write.c, lib/x509/key_decode.c,
3793 lib/x509/key_encode.c, lib/x509/privkey.c, lib/x509/x509_int.h,
3794 src/certtool-common.h, src/certtool.c, src/pkcs11.c, src/prime.c:
3795 Added support to read elliptic curve public keys from PKCS #11
3798 2011-09-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3800 * NEWS, lib/includes/gnutls/pkcs11.h, lib/libgnutls.map,
3801 lib/pkcs11.c, lib/pkcs11_int.h, lib/pkcs11_privkey.c,
3802 lib/pkcs11_write.c, src/certtool-common.c, src/certtool-common.h,
3803 src/certtool-gaa.c, src/certtool.c, src/certtool.gaa,
3804 src/p11common.c, src/p11tool-gaa.c, src/p11tool-gaa.h,
3805 src/p11tool.c, src/p11tool.gaa, src/p11tool.h, src/pkcs11.c: Added
3806 gnutls_pkcs11_privkey_generate(). p11tool can be used to generate
3809 2011-09-06 Simon Josefsson <simon@josefsson.org>
3811 * NEWS, lib/x509/x509.c, tests/parse_ca.c: libgnutls: Allow CA
3812 importing of 0 certificates to succeed. Reported by Jonathan Nieder <jrnieder@gmail.com> in
3813 <http://bugs.debian.org/640639>.
3815 2011-09-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3817 * ChangeLog: updated changelog
3819 2011-09-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3821 * README, README-alpha: simplified README
3823 2011-09-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3825 * lib/accelerated/intel/aes-x86.h: documented extra alignment
3827 2011-09-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3829 * lib/gnutls_record.c: cleaned-up code
3831 2011-09-04 Andreas Metzler <ametzler@downhill.at.eu.org>
3833 * configure.ac: Add p11-kit-1 to gnutls.pc Requires.private. If building with PKCS#11 support append p11-kit-1 to gnutls.pc
3834 Requires.private. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
3836 2011-09-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3838 * .gitignore: more files to ignore
3840 2011-09-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3842 * doc/cha-gtls-app.texi: documentation updates
3844 2011-09-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3846 * lib/gnutlsxx.cpp: updated for lowat
3848 2011-09-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3850 * doc/cha-auth.texi, doc/cha-cert-auth.texi,
3851 doc/cha-functions.texi, doc/cha-gtls-app.texi,
3852 doc/cha-intro-tls.texi: documentation updates. @acronym was removed
3855 2011-09-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3857 * lib/includes/gnutls/compat.h: set_lowat was removed as a macro.
3859 2011-09-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3861 * doc/cha-programs.texi: simplified examples
3863 2011-09-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3865 * doc/examples/ex-serv-pgp.c, tests/openpgp-certs/testcerts:
3866 explicitly enable openpgp certtype in tests.
3868 2011-09-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3872 2011-09-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3874 * configure.ac, m4/hooks.m4: bumped version
3876 2011-09-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3878 * doc/cha-bib.texi, doc/cha-gtls-app.texi, doc/latex/gnutls.bib:
3881 2011-09-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3883 * tests/openpgpself.c: explicitly enable openpgp certtype in tests.
3885 2011-09-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3887 * doc/cha-gtls-app.texi, lib/system_override.c: Added documentation
3888 on asynchronous operation.
3890 2011-08-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3892 * configure.ac: do not exit configure if p11-kit is not found.
3894 2011-08-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3896 * NEWS, lib/gnutls_priority.c: OpenPGP certificate type priority is
3897 not enabled by default.
3899 2011-08-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3901 * NEWS, doc/cha-gtls-app.texi, lib/gnutls_handshake.c,
3902 lib/gnutls_int.h, lib/gnutls_priority.c: Added %NO_EXTENSIONS
3905 2011-08-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3907 * doc/printlist.c: doc fixes
3909 2011-08-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3911 * tests/suite/testcompat-main: disabled test
3913 2011-08-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3915 * libextra/openssl_compat.c, libextra/openssl_compat.h: removed old
3916 and unused compatibility functions.
3918 2011-08-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3920 * lib/includes/gnutls/x509.h, lib/x509/crl.c, lib/x509/crq.c,
3921 lib/x509/extensions.c, lib/x509/key_decode.c, lib/x509/output.c,
3922 lib/x509/privkey.c, lib/x509/x509.c, lib/x509/x509_int.h,
3923 libextra/gnutls_openssl.c, src/crywrap/crywrap.c: corrected sign
3924 type errors for integers.
3926 2011-08-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3928 * lib/gnutls_record.c: Corrected error checking in
3931 2011-08-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3933 * doc/cha-gtls-app.texi: doc updates
3935 2011-08-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3937 * NEWS, src/certtool-cfg.c, src/common.h: removed unneeded header.
3940 2011-08-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3942 * lib/nettle/ecc.h, lib/nettle/ecc_free.c,
3943 lib/nettle/ecc_make_key.c, lib/nettle/ecc_map.c,
3944 lib/nettle/ecc_mulmod.c, lib/nettle/ecc_projective_add_point.c,
3945 lib/nettle/ecc_projective_dbl_point.c,
3946 lib/nettle/ecc_projective_dbl_point_3.c,
3947 lib/nettle/ecc_shared_secret.c, lib/nettle/ecc_sign_hash.c,
3948 lib/nettle/ecc_verify_hash.c: Avoid assert() and do not include
3951 2011-08-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3953 * tests/suite/testcompat: skip if datefudge is not available
3955 2011-08-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3957 * lib/accelerated/x86.h: Modified cpuid for 32-bit x86 to avoid a
3958 gcc issue (not finding a register).
3960 2011-08-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3962 * NEWS, src/Makefile.am, src/benchmark-cipher.c,
3963 src/benchmark-tls.c, src/benchmark.h, src/cli-gaa.c, src/cli-gaa.h,
3964 src/cli.gaa: Benchmark applications were incorporated to gnutls-cli
3966 2011-08-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3968 * lib/algorithms/ciphersuites.c: Corrected DH-ANON ciphersuite
3971 2011-08-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3973 * doc/cha-cert-auth.texi, doc/gnutls-pgp.eps, doc/gnutls-x509.eps:
3976 2011-08-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3978 * NEWS, lib/x509/x509.c: XmppAddr -> UTF8String
3980 2011-08-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3982 * lib/openpgp/gnutls_openpgp.c, lib/openpgp/privkey.c,
3983 lib/x509/x509.c: more updates in private key copy.
3985 2011-08-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3987 * lib/accelerated/intel/aes-x86.h: removed unused variable.
3989 2011-08-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3991 * NEWS, lib/gnutls_privkey.c, lib/gnutls_x509.c,
3992 lib/includes/gnutls/abstract.h, lib/openpgp/gnutls_openpgp.c,
3993 lib/openpgp/gnutls_openpgp.h, lib/openpgp/privkey.c,
3994 lib/x509/x509.c: gnutls_certificate_set_x509_key() and
3995 gnutls_certificate_set_openpgp_key() operate as in gnutls 2.10.x and
3996 do not require to hold the structures.
3998 2011-08-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4000 * lib/accelerated/intel/aes-gcm-x86.c,
4001 lib/accelerated/intel/aes-x86.c: removed unused variables.
4003 2011-08-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4005 * lib/gnutls_record.c: Allow out-of-order change_cipher_spec in
4008 2011-08-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4010 * doc/cha-auth.texi, doc/cha-cert-auth.texi, doc/cha-gtls-app.texi,
4011 doc/cha-intro-tls.texi, doc/examples/ex-cert-select-pkcs11.c,
4012 lib/gnutls_buffers.c, lib/gnutls_pubkey.c, lib/gnutls_record.c:
4013 documentation changes.
4015 2011-08-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4017 * doc/examples/ex-client-srp.c, doc/examples/ex-serv-srp.c:
4018 gnutls/extra.h is not required for SRP.
4020 2011-08-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4022 * doc/latex/gnutls.tex: leave an empty page
4024 2011-08-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4026 * doc/cha-auth.texi, doc/cha-bib.texi, doc/cha-cert-auth.texi,
4027 doc/cha-gtls-app.texi, doc/cha-intro-tls.texi,
4028 doc/latex/gnutls.bib, doc/latex/gnutls.tex: documentation updates
4030 2011-08-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4032 * lib/nettle/rnd.c: unlock rnd mutex on error.
4034 2011-08-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4036 * doc/cha-bib.texi, doc/latex/gnutls.bib: bibliography updated
4038 2011-08-22 Andreas Metzler <ametzler@debian.org>
4040 * lib/libgnutls.map: Export export_gnutls_openpgp_privkey_sign_hash. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
4042 2011-08-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4044 * lib/gnutls_buffers.c, lib/system.c: AIX check moved to system.c.
4046 2011-08-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4048 * src/crywrap/crywrap.c: Handle memory allocation errors.
4050 2011-08-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4052 * doc/manpages/Makefile.am, doc/manpages/crywrap.8: The crywrap
4053 manpage was removed due to license reasons.
4055 2011-08-22 Ludovic Courtès <ludo@gnu.org>
4057 * guile/tests/priorities.scm: guile: Fix `priorities' test to use
4058 `run-test'. This is a followup to commit
4059 cd7b8102316cd4151356c4b2b7909c7435593890 ("guile: Fix tests to match
4060 the `exit' behavior introduced in Guile 2.0.1.").
4062 2011-08-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4064 * src/crywrap/Makefile.am: include README to distribution.
4066 2011-08-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4068 * lib/gnutls_ui.c: documentation fixes.
4070 2011-08-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4072 * doc/cha-cert-auth.texi, doc/cha-internals.texi,
4073 doc/cha-intro-tls.texi, doc/cha-library.texi,
4074 doc/scripts/mytexi2latex: Use texinfo's word break.
4076 2011-08-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4078 * NEWS, m4/hooks.m4: updated for release
4080 2011-08-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4082 * src/crywrap/Makefile.am: Added missing file
4084 2011-08-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4086 * po/cs.po.in, po/fi.po.in, po/nl.po.in, po/pl.po.in, po/sv.po.in,
4087 po/uk.po.in: Sync with TP.
4089 2011-08-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4091 * lib/Makefile.am: corrected typo
4093 2011-08-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4095 * lib/gnutls_buffers.c: Added hack for AIX systems that may not set
4096 errno property on EAGAIN.
4098 2011-08-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4100 * doc/examples/ex-cert-select-pkcs11.c: simplified PKCS #11 token
4103 2011-08-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4105 * doc/cha-gtls-app.texi, doc/cha-intro-tls.texi,
4106 lib/gnutls_record.c, lib/system_override.c: documentation updates
4108 2011-08-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4110 * .gitignore: updated ignored files.
4112 2011-08-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4114 * tests/resume.c: Corrected session resumption test.
4116 2011-08-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4118 * tests/utils.c: Avoid using vfprintf() and use a combination of
4119 vsnprintf and fputs instead. My gnulib has issues with them.
4121 2011-08-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4123 * gl/Makefile.am, gl/m4/gnulib-cache.m4: added vfprintf-posix
4126 2011-08-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4128 * configure.ac: depend on p11-kit 0.4+.
4130 2011-08-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4132 * NEWS, lib/Makefile.am, lib/auth/cert.c, lib/auth/cert.h,
4133 lib/gnutls_cert.c, lib/gnutls_str_array.h, lib/gnutls_x509.c,
4134 lib/openpgp/gnutls_openpgp.c: Removed the limitation of one name per
4137 2011-08-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4139 * doc/cha-auth.texi: rephrased text on anonymous authentication.
4141 2011-08-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4143 * doc/cha-programs.texi: small update in psktool
4145 2011-08-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4147 * NEWS: updated crywrap
4149 2011-08-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4151 * NEWS: documented changes
4153 2011-08-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4155 * lib/auth/cert.c, lib/auth/cert.h, lib/gnutls_cert.c,
4156 lib/gnutls_state.c, lib/gnutls_ui.c, lib/gnutls_x509.c,
4157 lib/openpgp/gnutls_openpgp.c: gnutls_certificate_set_x509_key_file()
4158 and friends support server name indication. If multiple
4159 certificates are set using this function the proper one will be
4160 selected during a handshake, with the limitation of a single name
4163 2011-08-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4165 * lib/x509/x509.c: Documentation fixes.
4167 2011-08-17 Simon Josefsson <simon@josefsson.org>
4169 * cfg.mk, src/crywrap/crywrap.c: Fix syntax-check nits.
4171 2011-08-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4173 * NEWS, lib/algorithms/ciphers.c: Added AES-256-GCM. Reported by
4176 2011-08-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4178 * NEWS: documented fix
4180 2011-08-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4182 * lib/includes/gnutls/pkcs11.h, lib/pkcs11.c, src/p11common.c:
4183 Introduced GNUTLS_PKCS11_PIN_WRONG flag to indicate the previously
4186 2011-08-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4188 * NEWS: documented fix
4190 2011-08-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4192 * doc/cha-programs.texi: some discussion on tokens.
4194 2011-08-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4196 * lib/pkcs11.c: Corrected issue when asking multiple times for PIN.
4198 2011-08-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4200 * configure.ac: corrected configure test
4202 2011-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4204 * src/crywrap/crywrap.c: dhparams have now the 'r' option.
4206 2011-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4208 * src/crywrap/crywrap.c: use audit_log
4210 2011-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4212 * src/crywrap/crywrap.c, src/crywrap/crywrap.h: removed unneeded
4215 2011-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4217 * src/cli.c: unload_file was modified to accept a pointer.
4219 2011-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4221 * NEWS, src/crywrap/Makefile.am, src/crywrap/crywrap.c: corrected
4222 child process cleanup and added option to specify diffie hellman
4225 2011-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4227 * .gitignore: more files to ignore
4229 2011-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4231 * doc/manpages/crywrap.8, src/crywrap/crywrap.c,
4232 src/crywrap/crywrap.h: Corrected crywrap's verification procedure.
4234 2011-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4236 * src/serv.c: use gnutls_sec_param_to_pk_bits() for DH parameter
4239 2011-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4241 * .gitignore, configure.ac, doc/manpages/Makefile.am,
4242 doc/manpages/crywrap.8, gl/Makefile.am, gl/alphasort.c,
4243 gl/argp-ba.c, gl/argp-eexst.c, gl/argp-fmtstream.c,
4244 gl/argp-fmtstream.h, gl/argp-fs-xinl.c, gl/argp-help.c,
4245 gl/argp-namefrob.h, gl/argp-parse.c, gl/argp-pin.c, gl/argp-pv.c,
4246 gl/argp-pvh.c, gl/argp-xinl.c, gl/argp.h, gl/basename-lgpl.c,
4247 gl/dirent.in.h, gl/dirname-lgpl.c, gl/dirname.h, gl/dosname.h,
4248 gl/fpucw.h, gl/frexp.c, gl/frexpl.c, gl/fseeko.c, gl/fseterr.c,
4249 gl/fseterr.h, gl/getopt.c, gl/getopt.in.h, gl/getopt1.c,
4250 gl/getopt_int.h, gl/getsubopt.c, gl/isnan.c, gl/isnand-nolibm.h,
4251 gl/isnand.c, gl/isnanf-nolibm.h, gl/isnanf.c, gl/isnanl-nolibm.h,
4252 gl/isnanl.c, gl/m4/alphasort.m4, gl/m4/argp.m4, gl/m4/dirent_h.m4,
4253 gl/m4/dirname.m4, gl/m4/double-slash-root.m4, gl/m4/dup2.m4,
4254 gl/m4/eealloc.m4, gl/m4/environ.m4, gl/m4/exponentd.m4,
4255 gl/m4/exponentf.m4, gl/m4/exponentl.m4, gl/m4/frexp.m4,
4256 gl/m4/frexpl.m4, gl/m4/getcwd.m4, gl/m4/getopt.m4,
4257 gl/m4/getsubopt.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4,
4258 gl/m4/isnand.m4, gl/m4/isnanf.m4, gl/m4/isnanl.m4, gl/m4/ldexpl.m4,
4259 gl/m4/lstat.m4, gl/m4/malloca.m4, gl/m4/math_h.m4,
4260 gl/m4/mempcpy.m4, gl/m4/mode_t.m4, gl/m4/nocrash.m4, gl/m4/open.m4,
4261 gl/m4/printf-frexp.m4, gl/m4/printf-frexpl.m4, gl/m4/putenv.m4,
4262 gl/m4/rawmemchr.m4, gl/m4/scandir.m4, gl/m4/setenv.m4,
4263 gl/m4/signbit.m4, gl/m4/sleep.m4, gl/m4/stat.m4,
4264 gl/m4/strchrnul.m4, gl/m4/strndup.m4, gl/m4/strnlen.m4,
4265 gl/m4/symlink.m4, gl/m4/sysexits.m4, gl/m4/vfprintf-posix.m4,
4266 gl/m4/vprintf-posix.m4, gl/math.in.h, gl/mempcpy.c,
4267 gl/printf-frexp.c, gl/printf-frexp.h, gl/printf-frexpl.c,
4268 gl/printf-frexpl.h, gl/rawmemchr.c, gl/rawmemchr.valgrind,
4269 gl/scandir.c, gl/signbitd.c, gl/signbitf.c, gl/signbitl.c,
4270 gl/sleep.c, gl/strchrnul.c, gl/strchrnul.valgrind, gl/stripslash.c,
4271 gl/strndup.c, gl/strnlen.c, gl/sysexits.in.h, gl/tests/Makefile.am,
4272 gl/tests/dummy.c, gl/tests/dup2.c, gl/tests/fpucw.h,
4273 gl/tests/getcwd-lgpl.c, gl/tests/ignore-value.h, gl/tests/lstat.c,
4274 gl/tests/malloca.c, gl/tests/malloca.h, gl/tests/malloca.valgrind,
4275 gl/tests/minus-zero.h, gl/tests/nan.h, gl/tests/open.c,
4276 gl/tests/putenv.c, gl/tests/same-inode.h, gl/tests/setenv.c,
4277 gl/tests/stat.c, gl/tests/symlink.c, gl/tests/test-argp-2.sh,
4278 gl/tests/test-argp.c, gl/tests/test-dirent.c, gl/tests/test-dup2.c,
4279 gl/tests/test-environ.c, gl/tests/test-fprintf-posix.h,
4280 gl/tests/test-frexp.c, gl/tests/test-frexpl.c,
4281 gl/tests/test-fseeko3.c, gl/tests/test-fseeko3.sh,
4282 gl/tests/test-fseterr.c, gl/tests/test-getcwd-lgpl.c,
4283 gl/tests/test-getopt.c, gl/tests/test-getopt.h,
4284 gl/tests/test-getopt_long.h, gl/tests/test-ignore-value.c,
4285 gl/tests/test-isnand-nolibm.c, gl/tests/test-isnand.h,
4286 gl/tests/test-isnanf-nolibm.c, gl/tests/test-isnanf.h,
4287 gl/tests/test-isnanl-nolibm.c, gl/tests/test-isnanl.h,
4288 gl/tests/test-lstat.c, gl/tests/test-lstat.h,
4289 gl/tests/test-malloc-gnu.c, gl/tests/test-malloca.c,
4290 gl/tests/test-math.c, gl/tests/test-open.c, gl/tests/test-open.h,
4291 gl/tests/test-printf-frexp.c, gl/tests/test-printf-frexpl.c,
4292 gl/tests/test-printf-posix.h, gl/tests/test-printf-posix.output,
4293 gl/tests/test-rawmemchr.c, gl/tests/test-setenv.c,
4294 gl/tests/test-signbit.c, gl/tests/test-sleep.c,
4295 gl/tests/test-stat.c, gl/tests/test-stat.h,
4296 gl/tests/test-strchrnul.c, gl/tests/test-strnlen.c,
4297 gl/tests/test-symlink.c, gl/tests/test-symlink.h,
4298 gl/tests/test-sysexits.c, gl/tests/test-unsetenv.c,
4299 gl/tests/test-vfprintf-posix.c, gl/tests/test-vfprintf-posix.sh,
4300 gl/tests/test-vprintf-posix.c, gl/tests/test-vprintf-posix.sh,
4301 gl/tests/unsetenv.c, gl/vfprintf.c, gl/vprintf.c, m4/hooks.m4,
4302 src/Makefile.am, src/crywrap/Makefile.am, src/crywrap/README,
4303 src/crywrap/crywrap.c, src/crywrap/crywrap.h, src/crywrap/primes.h:
4304 Added crywrap to the distributed programs.
4306 2011-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4308 * lib/accelerated/intel/.gitignore: files to ignore
4310 2011-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4312 * doc/cha-internals.texi: doc updates
4314 2011-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4316 * doc/cha-auth.texi, doc/cha-cert-auth.texi,
4317 doc/cha-ciphersuites.texi, doc/cha-errors.texi,
4318 doc/cha-functions.texi, doc/cha-gtls-app.texi,
4319 doc/cha-internals.texi, doc/cha-intro-tls.texi,
4320 doc/cha-library.texi, doc/cha-support.texi: do not use capitals in
4323 2011-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4325 * .gitignore, doc/latex/.gitignore: more files to ignore.
4327 2011-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4329 * NEWS, lib/pkcs11.c: If a module is dlopened twice, then
4330 deinitialize the second load.
4332 2011-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4334 * doc/cha-gtls-app.texi, doc/cha-intro-tls.texi,
4335 doc/cha-library.texi, lib/gnutls_buffers.c, lib/gnutls_record.c:
4336 documentation updates
4338 2011-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4340 * doc/cha-library.texi: memory handling section is no longer
4343 2011-08-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4345 * doc/cha-gtls-app.texi: Added discussion on DTLS functionality
4347 2011-08-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4349 * doc/cha-programs.texi, doc/cha-support.texi, doc/cha-tls-app.texi:
4352 2011-08-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4354 * doc/cha-gtls-app.texi: updated openssl text
4356 2011-08-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4358 * doc/cha-gtls-app.texi: correct typos
4360 2011-08-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4362 * doc/manpages/gnutls-cli.1: do not escape \#
4364 2011-08-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4366 * doc/cha-cert-auth.texi, doc/cha-intro-tls.texi: more updates
4368 2011-08-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4370 * doc/cha-bib.texi, doc/cha-preface.texi, doc/latex/gnutls.bib:
4371 Added reference to anderson's book
4373 2011-08-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4375 * doc/Makefile.am, doc/cha-cert-auth.texi, doc/cha-internals.texi,
4376 doc/gnutls-certificate-user-use-case.eps,
4377 doc/gnutls-extensions.eps, doc/gnutls.texi,
4378 doc/scripts/mytexi2latex, lib/x509/crl_write.c, lib/x509/crq.c,
4379 lib/x509/pkcs12.c, lib/x509/privkey_pkcs8.c, lib/x509/x509.c:
4380 Internals section updated.
4382 2011-08-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4384 * doc/cha-auth.texi, doc/cha-cert-auth.texi, doc/examples/ex-crq.c,
4385 lib/gnutls_pubkey.c, lib/includes/gnutls/compat.h,
4386 lib/includes/gnutls/x509.h, lib/pkcs11.c, lib/pkcs11_write.c,
4387 lib/x509/crq.c: Documentation updates. gnutls_x509_crq_sign2() and
4388 gnutls_x509_crl_sign2() were removed from the deprecate list to ease
4389 generation of crl and crq structures.
4391 2011-08-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4393 * doc/alert-printlist.c, doc/cha-intro-tls.texi,
4394 doc/cha-library.texi, doc/cha-programs.texi, doc/errcodes.c,
4395 doc/printlist.c: updates
4397 2011-08-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4399 * doc/latex/gnutls.tex: changed paper size.
4401 2011-08-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4403 * lib/gnutls_global.c: doc update
4405 2011-08-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4407 * doc/alert-printlist.c, doc/errcodes.c, doc/printlist.c: reduced
4408 space taken by descriptions.
4410 2011-08-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4412 * doc/cha-gtls-app.texi, doc/cha-intro-tls.texi: more updates.
4414 2011-08-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4416 * NEWS: documented fixes
4418 2011-08-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4420 * lib/accelerated/intel/aes-x86.c, lib/accelerated/intel/aes-x86.h:
4421 Force alignment for AES-NI to the runtime rather than on the
4422 structures. Corrects issue on some systems (reported by Andreas
4425 2011-08-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4427 * doc/cha-gtls-app.texi, doc/cha-intro-tls.texi,
4428 doc/cha-library.texi, lib/system_override.c: Added session
4429 initialization discussion
4431 2011-08-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4433 * doc/cha-cert-auth.texi: more updates
4435 2011-08-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4437 * doc/cha-auth.texi, doc/cha-gtls-app.texi, lib/gnutls_psk.c,
4438 lib/gnutls_x509.c, lib/openpgp/gnutls_openpgp.c: updated
4441 2011-08-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4443 * lib/pkcs11.c: document flags
4445 2011-08-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4447 * NEWS: corrected typo
4449 2011-08-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4451 * lib/README: removed reference to pakchois
4453 2011-08-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4455 * lib/pkcs11.c: Prevent from loading twice the same module.
4457 2011-08-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4459 * lib/accelerated/intel/asm/appro-aes-gcm-x86-64.s,
4460 lib/accelerated/intel/asm/appro-aes-x86-64.s,
4461 lib/accelerated/intel/asm/appro-aes-x86.s: Added note.GNU-stack to
4462 prevent marking the library as using an executable stack. Reported
4465 2011-08-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4467 * configure.ac: bumped version
4469 2011-08-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4471 * lib/accelerated/intel/asm/appro-aes-x86-64.s,
4472 lib/accelerated/intel/asm/appro-aes-x86.s: Included appro's updates
4475 2011-08-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4477 * lib/auth/cert.c: better placement of ifdefs.
4479 2011-08-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4481 * doc/Makefile.am, doc/cha-gtls-app.texi, doc/cha-internals.texi,
4482 doc/gnutls-extensions.eps, doc/gnutls-extensions_st.eps,
4483 doc/gnutls-mod_auth_st.eps, doc/gnutls-modauth.eps,
4484 doc/latex/Makefile.am, doc/latex/gnutls.tex,
4485 doc/scripts/mytexi2latex: Added discussion of the provided
4486 cryptographic functions. Internals is now included in the latex
4487 document (needs rewrite though)
4489 2011-08-03 Simon Josefsson <simon@josefsson.org>
4491 * lib/Makefile.am, lib/accelerated/Makefile.am,
4492 lib/accelerated/accelerated.c, lib/accelerated/cryptodev.c,
4493 lib/accelerated/intel/Makefile.am,
4494 lib/accelerated/intel/aes-gcm-x86.c,
4495 lib/accelerated/intel/aes-x86.c, lib/algorithms.h,
4496 lib/algorithms/Makefile.am, lib/algorithms/cert_types.c,
4497 lib/algorithms/ciphers.c, lib/algorithms/ciphersuites.c,
4498 lib/algorithms/ecc.c, lib/algorithms/kx.c, lib/algorithms/mac.c,
4499 lib/algorithms/protocols.c, lib/algorithms/publickey.c,
4500 lib/algorithms/secparams.c, lib/algorithms/sign.c,
4501 lib/auth/Makefile.am, lib/auth/anon.c, lib/auth/anon.h,
4502 lib/auth/anon_ecdh.c, lib/auth/cert.c, lib/auth/cert.h,
4503 lib/auth/dh_common.c, lib/auth/dh_common.h, lib/auth/dhe.c,
4504 lib/auth/dhe_psk.c, lib/auth/ecdh_common.c, lib/auth/ecdh_common.h,
4505 lib/auth/psk.c, lib/auth/psk.h, lib/auth/psk_passwd.c,
4506 lib/auth/psk_passwd.h, lib/auth/rsa.c, lib/auth/rsa_export.c,
4507 lib/auth/srp.c, lib/auth/srp.h, lib/auth/srp_passwd.c,
4508 lib/auth/srp_passwd.h, lib/auth/srp_rsa.c, lib/auth/srp_sb64.c,
4509 lib/crypto-api.c, lib/crypto-backend.c, lib/crypto-backend.h,
4510 lib/crypto.h, lib/debug.c, lib/debug.h, lib/ext/Makefile.am,
4511 lib/ext/cert_type.c, lib/ext/cert_type.h, lib/ext/ecc.c,
4512 lib/ext/ecc.h, lib/ext/max_record.c, lib/ext/max_record.h,
4513 lib/ext/safe_renegotiation.c, lib/ext/safe_renegotiation.h,
4514 lib/ext/server_name.c, lib/ext/server_name.h,
4515 lib/ext/session_ticket.c, lib/ext/session_ticket.h,
4516 lib/ext/signature.c, lib/ext/signature.h, lib/ext/srp.c,
4517 lib/ext/srp.h, lib/gcrypt/Makefile.am, lib/gcrypt/cipher.c,
4518 lib/gcrypt/init.c, lib/gcrypt/mac.c, lib/gcrypt/mpi.c,
4519 lib/gcrypt/pk.c, lib/gcrypt/rnd.c, lib/gnutls_alert.c,
4520 lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_auth.h,
4521 lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cert.c,
4522 lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_cipher_int.c,
4523 lib/gnutls_cipher_int.h, lib/gnutls_compress.c,
4524 lib/gnutls_compress.h, lib/gnutls_constate.c,
4525 lib/gnutls_constate.h, lib/gnutls_datum.c, lib/gnutls_datum.h,
4526 lib/gnutls_db.c, lib/gnutls_db.h, lib/gnutls_dh.c, lib/gnutls_dh.h,
4527 lib/gnutls_dh_primes.c, lib/gnutls_dtls.c, lib/gnutls_dtls.h,
4528 lib/gnutls_ecc.c, lib/gnutls_errors.c, lib/gnutls_errors.h,
4529 lib/gnutls_extensions.c, lib/gnutls_extensions.h,
4530 lib/gnutls_global.c, lib/gnutls_global.h, lib/gnutls_handshake.c,
4531 lib/gnutls_handshake.h, lib/gnutls_hash_int.c,
4532 lib/gnutls_hash_int.h, lib/gnutls_helper.c, lib/gnutls_int.h,
4533 lib/gnutls_kx.c, lib/gnutls_kx.h, lib/gnutls_mbuffers.c,
4534 lib/gnutls_mbuffers.h, lib/gnutls_mem.c, lib/gnutls_mem.h,
4535 lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_num.c,
4536 lib/gnutls_num.h, lib/gnutls_pcert.c, lib/gnutls_pk.c,
4537 lib/gnutls_pk.h, lib/gnutls_priority.c, lib/gnutls_privkey.c,
4538 lib/gnutls_psk.c, lib/gnutls_pubkey.c, lib/gnutls_record.c,
4539 lib/gnutls_record.h, lib/gnutls_rsa_export.c,
4540 lib/gnutls_rsa_export.h, lib/gnutls_session.c,
4541 lib/gnutls_session_pack.c, lib/gnutls_session_pack.h,
4542 lib/gnutls_sig.c, lib/gnutls_sig.h, lib/gnutls_srp.c,
4543 lib/gnutls_srp.h, lib/gnutls_state.c, lib/gnutls_state.h,
4544 lib/gnutls_str.c, lib/gnutls_str.h, lib/gnutls_supplemental.c,
4545 lib/gnutls_supplemental.h, lib/gnutls_ui.c, lib/gnutls_v2_compat.c,
4546 lib/gnutls_v2_compat.h, lib/gnutls_x509.c, lib/gnutls_x509.h,
4547 lib/hash.c, lib/includes/Makefile.am,
4548 lib/includes/gnutls/abstract.h, lib/includes/gnutls/compat.h,
4549 lib/includes/gnutls/crypto.h, lib/includes/gnutls/dtls.h,
4550 lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/gnutlsxx.h,
4551 lib/includes/gnutls/openpgp.h, lib/includes/gnutls/pkcs11.h,
4552 lib/includes/gnutls/pkcs12.h, lib/includes/gnutls/x509.h,
4553 lib/libgnutls.map, lib/libgnutlsxx.map, lib/locks.c,
4554 lib/nettle/Makefile.am, lib/nettle/cipher.c, lib/nettle/ecc_free.c,
4555 lib/nettle/ecc_make_key.c, lib/nettle/ecc_map.c,
4556 lib/nettle/ecc_mulmod.c, lib/nettle/ecc_points.c,
4557 lib/nettle/ecc_projective_add_point.c,
4558 lib/nettle/ecc_projective_dbl_point.c,
4559 lib/nettle/ecc_projective_dbl_point_3.c,
4560 lib/nettle/ecc_shared_secret.c, lib/nettle/ecc_sign_hash.c,
4561 lib/nettle/ecc_verify_hash.c, lib/nettle/egd.c, lib/nettle/init.c,
4562 lib/nettle/mac.c, lib/nettle/mpi.c, lib/nettle/pk.c,
4563 lib/nettle/rnd.c, lib/opencdk/Makefile.am, lib/opencdk/armor.c,
4564 lib/opencdk/context.h, lib/opencdk/filters.h, lib/opencdk/hash.c,
4565 lib/opencdk/kbnode.c, lib/opencdk/keydb.c, lib/opencdk/literal.c,
4566 lib/opencdk/main.c, lib/opencdk/main.h, lib/opencdk/misc.c,
4567 lib/opencdk/new-packet.c, lib/opencdk/opencdk.h,
4568 lib/opencdk/packet.h, lib/opencdk/pubkey.c,
4569 lib/opencdk/read-packet.c, lib/opencdk/seskey.c,
4570 lib/opencdk/sig-check.c, lib/opencdk/stream.c,
4571 lib/opencdk/stream.h, lib/opencdk/types.h,
4572 lib/opencdk/write-packet.c, lib/openpgp/Makefile.am,
4573 lib/openpgp/compat.c, lib/openpgp/extras.c,
4574 lib/openpgp/gnutls_openpgp.c, lib/openpgp/output.c,
4575 lib/openpgp/pgp.c, lib/openpgp/pgpverify.c, lib/openpgp/privkey.c,
4576 lib/pkcs11.c, lib/pkcs11_privkey.c, lib/pkcs11_secret.c,
4577 lib/pkcs11_write.c, lib/random.c, lib/random.h, lib/system.c,
4578 lib/system_override.c, lib/x509/Makefile.am, lib/x509/common.c,
4579 lib/x509/common.h, lib/x509/crl.c, lib/x509/crl_write.c,
4580 lib/x509/crq.c, lib/x509/dn.c, lib/x509/extensions.c,
4581 lib/x509/key_decode.c, lib/x509/key_encode.c, lib/x509/mpi.c,
4582 lib/x509/output.c, lib/x509/pbkdf2-sha1.c, lib/x509/pkcs12.c,
4583 lib/x509/pkcs12_bag.c, lib/x509/pkcs12_encr.c, lib/x509/pkcs7.c,
4584 lib/x509/privkey.c, lib/x509/privkey_pkcs8.c,
4585 lib/x509/rfc2818_hostname.c, lib/x509/sign.c,
4586 lib/x509/verify-high.c, lib/x509/verify.c, lib/x509/x509.c,
4587 lib/x509/x509_int.h, lib/x509/x509_write.c, lib/x509_b64.c,
4588 lib/x509_b64.h: Clarify license and copyright.
4590 2011-08-03 Simon Josefsson <simon@josefsson.org>
4592 * README: Clarify licensing.
4594 2011-08-03 Simon Josefsson <simon@josefsson.org>
4596 * lib/AUTHORS, lib/ChangeLog, lib/NEWS, lib/autogen.sh,
4597 lib/build-aux/arg-nonnull.h, lib/build-aux/c++defs.h,
4598 lib/build-aux/config.rpath, lib/build-aux/warn-on-use.h,
4599 libextra/AUTHORS, libextra/COPYING, libextra/ChangeLog,
4600 libextra/NEWS, libextra/README, libextra/build-aux/config.rpath:
4601 Remove unused files.
4603 2011-08-03 Simon Josefsson <simon@josefsson.org>
4605 * libextra/includes/gnutls/extra.h: Finish removal of inner
4606 application extension support.
4608 2011-08-03 Simon Josefsson <simon@josefsson.org>
4610 * lib/includes/gnutls/abstract.h, lib/includes/gnutls/dtls.h: More
4613 2011-08-03 Simon Josefsson <simon@josefsson.org>
4615 * .x-sc_GPL_version, .x-sc_avoid_if_before_free,
4616 .x-sc_bindtextdomain, .x-sc_cast_of_alloca_return_value,
4617 .x-sc_cast_of_argument_to_free, .x-sc_file_system,
4618 .x-sc_m4_quote_check, .x-sc_makefile_check, .x-sc_program_name,
4619 .x-sc_prohibit_HAVE_MBRTOWC, .x-sc_prohibit_S_IS_definition,
4620 .x-sc_prohibit_empty_lines_at_EOF,
4621 .x-sc_prohibit_strings_without_use, .x-sc_space_tab, .x-sc_the_the,
4622 .x-sc_two_space_separator_in_usage, .x-sc_useless_cpp_parens,
4623 GNUmakefile, THANKS, build-aux/arg-nonnull.h, build-aux/c++defs.h,
4624 build-aux/config.rpath, build-aux/snippet/_Noreturn.h,
4625 build-aux/snippet/arg-nonnull.h, build-aux/snippet/c++defs.h,
4626 build-aux/snippet/warn-on-use.h, build-aux/useless-if-before-free,
4627 build-aux/vc-list-files, build-aux/warn-on-use.h, cfg.mk,
4628 configure.ac, doc/Makefile.am, gl/Makefile.am, gl/alignof.h,
4629 gl/alloca.c, gl/errno.in.h, gl/error.c, gl/float.c, gl/float.in.h,
4630 gl/fseek.c, gl/fseeko.c, gl/ftell.c, gl/intprops.h,
4631 gl/m4/alloca.m4, gl/m4/errno_h.m4, gl/m4/error.m4,
4632 gl/m4/extensions.m4, gl/m4/float_h.m4, gl/m4/fpieee.m4,
4633 gl/m4/fseek.m4, gl/m4/fseeko.m4, gl/m4/ftell.m4, gl/m4/ftello.m4,
4634 gl/m4/getdelim.m4, gl/m4/getline.m4, gl/m4/getpagesize.m4,
4635 gl/m4/getpass.m4, gl/m4/gettime.m4, gl/m4/gettimeofday.m4,
4636 gl/m4/gnulib-cache.m4, gl/m4/gnulib-common.m4,
4637 gl/m4/gnulib-comp.m4, gl/m4/hmac-md5.m4, gl/m4/include_next.m4,
4638 gl/m4/largefile.m4, gl/m4/lseek.m4, gl/m4/malloc.m4, gl/m4/md5.m4,
4639 gl/m4/memchr.m4, gl/m4/memmem.m4, gl/m4/memxor.m4,
4640 gl/m4/mmap-anon.m4, gl/m4/po.m4, gl/m4/printf.m4,
4641 gl/m4/read-file.m4, gl/m4/realloc.m4, gl/m4/snprintf.m4,
4642 gl/m4/strcase.m4, gl/m4/strdup.m4, gl/m4/strerror.m4,
4643 gl/m4/string_h.m4, gl/m4/strings_h.m4, gl/m4/strverscmp.m4,
4644 gl/m4/time_r.m4, gl/m4/vsnprintf.m4, gl/m4/warn-on-use.m4,
4645 gl/m4/warnings.m4, gl/netdb.in.h, gl/netinet_in.in.h,
4646 gl/stdarg.in.h, gl/stddef.in.h, gl/stdint.in.h, gl/stdio.in.h,
4647 gl/stdlib.in.h, gl/strerror-override.c, gl/strerror-override.h,
4648 gl/strerror.c, gl/string.in.h, gl/strings.in.h, gl/sys_socket.in.h,
4649 gl/sys_stat.in.h, gl/sys_time.in.h, gl/sys_uio.in.h,
4650 gl/tests/Makefile.am, gl/tests/fcntl.in.h, gl/tests/fpucw.h,
4651 gl/tests/init.sh, gl/tests/macros.h, gl/tests/test-float.c,
4652 gl/tests/test-fseek.c, gl/tests/test-fseek.sh,
4653 gl/tests/test-fseek2.sh, gl/tests/test-ftell.c,
4654 gl/tests/test-ftell.sh, gl/tests/test-ftell2.sh,
4655 gl/tests/test-ftell3.c, gl/tests/test-intprops.c,
4656 gl/tests/test-snprintf.c, gl/tests/test-strerror.c,
4657 gl/tests/test-vc-list-files-cvs.sh,
4658 gl/tests/test-vc-list-files-git.sh, gl/tests/test-verify.c,
4659 gl/tests/test-vsnprintf.c, gl/time.in.h, gl/timespec.h,
4660 gl/unistd.in.h, gl/verify.h, gl/wchar.in.h, lib/Makefile.am,
4661 lib/hash.c, lib/pkcs11_privkey.c, maint.mk, src/benchmark-cipher.c,
4662 src/certtool.c, src/cli.c, src/serv.c, tests/Makefile.am,
4663 tests/scripts/common.sh: Update gnulib files. Fix syntax-check
4666 2011-08-03 Simon Josefsson <simon@josefsson.org>
4668 * NEWS, README: Add NEWS entries. Use copyright ranges (now
4671 2011-08-03 Simon Josefsson <simon@josefsson.org>
4673 * po/LINGUAS, po/cs.po.in, po/fi.po.in, po/nl.po.in, po/pl.po.in,
4674 po/sv.po.in, po/uk.po.in: Sync with TP.
4676 2011-08-02 Simon Josefsson <simon@josefsson.org>
4678 * doc/manpages/Makefile.am, doc/reference/Makefile.am,
4679 doc/reference/gnutls-docs.sgml, lib/algorithms/secparams.c,
4680 lib/crypto-api.c, lib/gnutls_cert.c, lib/gnutls_db.c,
4681 lib/gnutls_global.c, lib/gnutls_privkey.c, lib/gnutls_pubkey.c,
4682 lib/includes/gnutls/abstract.h, lib/includes/gnutls/gnutls.h.in,
4683 lib/includes/gnutls/pkcs11.h, lib/locks.c, lib/openpgp/privkey.c,
4684 lib/pkcs11.c, lib/pkcs11_secret.c, lib/pkcs11_write.c,
4685 lib/random.c, lib/system_override.c, lib/x509/crl_write.c,
4686 lib/x509/crq.c, lib/x509/privkey.c, lib/x509/x509.c: More GTK-DOC
4689 2011-08-02 Simon Josefsson <simon@josefsson.org>
4691 * doc/reference/Makefile.am: Simplify GTK-DOC makefile
4694 2011-08-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4696 * lib/includes/gnutls/gnutls.h.in: updated
4698 2011-08-02 Simon Josefsson <simon@josefsson.org>
4700 * lib/algorithms/sign.c, lib/gnutls_dtls.c, lib/gnutls_pubkey.c,
4701 lib/gnutls_record.c, lib/includes/gnutls/abstract.h,
4702 lib/includes/gnutls/crypto.h, lib/includes/gnutls/dtls.h,
4703 lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/openpgp.h,
4704 lib/includes/gnutls/pkcs11.h, lib/nettle/ecc_free.c,
4705 lib/nettle/ecc_make_key.c, lib/nettle/ecc_map.c,
4706 lib/nettle/ecc_mulmod.c, lib/nettle/ecc_points.c,
4707 lib/nettle/ecc_projective_add_point.c,
4708 lib/nettle/ecc_projective_dbl_point.c,
4709 lib/nettle/ecc_projective_dbl_point_3.c,
4710 lib/nettle/ecc_shared_secret.c, lib/nettle/ecc_sign_hash.c,
4711 lib/nettle/ecc_verify_hash.c, lib/pkcs11.c: Fix GTK-DOC manual.
4713 2011-08-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4715 * lib/gnutls_record.c: detect premature termination of connection
4717 2011-08-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4719 * NEWS, lib/includes/gnutls/pkcs11.h, lib/pkcs11.c: the
4720 deprecated_config_file from 2.12.x was incorporated.
4722 2011-08-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4724 * lib/pkcs11.c: documentation update
4726 2011-08-02 Simon Josefsson <simon@josefsson.org>
4728 * doc/manpages/Makefile.am, doc/reference/gnutls-docs.sgml,
4729 lib/algorithms/ecc.c, lib/crypto-api.c, lib/gnutls_alert.c,
4730 lib/gnutls_cert.c, lib/gnutls_dtls.c, lib/gnutls_global.c,
4731 lib/gnutls_pcert.c, lib/gnutls_pubkey.c, lib/gnutls_record.c,
4732 lib/gnutls_state.c, lib/system_override.c, lib/x509/crl.c,
4733 lib/x509/privkey.c, lib/x509/verify-high.c, lib/x509/x509.c: Add
4734 GTK-DOC Since: tags for 3.0.0 additions.
4736 2011-08-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4738 * lib/pkcs11_privkey.c: added asserts.
4740 2011-08-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4742 * README, README-alpha: Refer to nettle alone and p11-kit.
4744 2011-08-01 Stef Walter <stefw@collabora.co.uk>
4746 * lib/pkcs11.c: Don't try to do PKCS#11 login if session is already
4747 logged in. * It is possible for new PKCS#11 sessions to be logged in if another logged in session already exists. * In these cases, don't log in, but detect the condition and return success. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
4749 2011-08-01 Stef Walter <stefw@collabora.co.uk>
4751 * lib/pkcs11_privkey.c: When finding private keys fail, return error
4752 code. * Previously this would result in an endless loop. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
4754 2011-08-01 Stef Walter <stefw@collabora.co.uk>
4756 * lib/includes/gnutls/pkcs11.h, lib/pkcs11.c: Mark the config
4757 argument of gnutls_pkcs11_init() as unused * Since its no longer used. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
4759 2011-07-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4761 * NEWS, lib/gnutls_str.h, lib/gnutls_x509.c,
4762 lib/includes/gnutls/x509.h, lib/x509/x509.c, tests/x509cert.c: Added
4763 GNUTLS_X509_CRT_LIST_FAIL_IF_UNSORTED flag for
4764 gnutls_x509_crt_list_import. It checks whether the list to be
4765 imported is properly sorted.
4767 2011-07-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4769 * NEWS, lib/gnutls_errors.c, lib/gnutls_x509.c,
4770 lib/includes/gnutls/gnutls.h.in: Added
4771 GNUTLS_E_CERTIFICATE_LIST_UNSORTED. If a certificate list is loaded
4772 then verify that it is sorted with order to starts with the subject
4773 and finished with the trusted root. That way we make sure we don't
4774 send data that violate the TLS protocol.
4776 2011-07-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4778 * doc/cha-cert-auth.texi, doc/latex/macros.tex: documentation
4781 2011-07-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4783 * ChangeLog: updated changelog
4785 2011-07-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4787 * NEWS: released 3.0.0
4789 2011-07-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4791 * configure.ac: updated version
4793 2011-07-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4795 * src/certtool-gaa.c, src/certtool.gaa: Corrected typo.
4797 2011-07-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4799 * NEWS: documented updates.
4801 2011-07-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4803 * THANKS: Added Petr.
4805 2011-07-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4807 * lib/gnutls_pcert.c, lib/gnutls_privkey.c,
4808 lib/includes/gnutls/abstract.h, lib/libgnutls.map: Added
4809 gnutls_pcert_list_import_x509_raw() and few doc fixes.
4811 2011-07-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4813 * lib/gnutls.pc.in: corrected for libnettle.
4815 2011-06-24 Andreas Metzler <ametzler@downhill.at.eu.org>
4817 * configure.ac: fix zlib handling in gnutls.pc Only add zlib to gnutls.pc's Requies.private if zlib ships a
4818 pkg-config file. Ancient (<< 1.2.3.1) versions don't. Otherwise add
4819 -lz to Libs.private. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
4821 2011-07-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4823 * doc/examples/ex-client-srp.c, doc/examples/ex-serv-srp.c:
4824 gnutls_global_init_extra() is not needed for SRP.
4826 2011-07-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4828 * NEWS: documented changes.
4830 2011-07-25 Sjoerd Simons <sjoerd.simons@collabora.co.uk>
4832 * lib/gnutls_buffers.c: writev_emu: stop on the first incomplete
4833 write Just like standard writev, we should only move on to the next block
4834 if all the previous ones have been successfully written out.
4835 Otherwise there is a potential for data loss and/or confusing push
4836 functions. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
4838 2011-07-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4840 * doc/latex/fdl.tex: increased size of fdl.
4842 2011-07-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4844 * lib/pkcs11.c: Added debug message to indicate usage of
4845 compatibility mode for /etc/gnutls/pkcs11.conf
4847 2011-07-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4849 * AUTHORS: removed pgp key from authors file.
4851 2011-07-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4853 * ChangeLog: updated changelog.
4855 2011-07-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4857 * NEWS, configure.ac, doc/announce.txt, m4/hooks.m4: released 2.99.4
4859 2011-06-29 Petr PÃsaÅ™ <petr.pisar@atlas.cz>
4861 * lib/gnutls_privkey.c: Honor uninitialized private key in
4862 destructor Fixes bug #107730. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
4864 2011-07-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4866 * src/certtool.c: Corrected initialization of key when generating
4867 request. Reported by Petr Pisar.
4869 2011-07-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4873 2011-07-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4875 * lib/gnutls_rsa_export.c, lib/x509/privkey.c,
4876 lib/x509/privkey_pkcs8.c, lib/x509/x509_int.h: The crippled status
4877 of an gnutls_x509_privkey_t was removed.
4879 2011-07-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4881 * doc/examples/ex-pkcs11-list.c: Example compilation fix.
4883 2011-07-07 Stef Walter <stefw@collabora.co.uk>
4885 * configure.ac, lib/includes/gnutls/pkcs11.h, lib/pkcs11.c,
4886 lib/pkcs11_int.h, lib/pkcs11_privkey.c, lib/pkcs11_write.c: pkcs11:
4887 Use p11_kit_pin_xxx() functionality when 'pinfile' is in uris. * This allows other apps to register a handler for a specific
4888 pinfile and then that application will be able to provide the PIN
4889 for those URIs. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
4891 2011-07-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4893 * lib/pkcs11.c: Added compatibility mode with
4894 /etc/gnutls/pkcs11.conf
4896 2011-07-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4898 * doc/cha-tls-app.texi: Updates in upward negotiation section.
4900 2011-07-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4902 * doc/latex/gnutls.bib: Corrected bibliography
4904 2011-07-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4906 * doc/cha-auth.texi, doc/cha-cert-auth.texi, doc/cha-gtls-app.texi,
4907 doc/cha-intro-tls.texi, doc/cha-library.texi,
4908 doc/cha-programs.texi, doc/cha-tls-app.texi: corrected section
4911 2011-07-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4913 * doc/cha-library.texi, doc/cha-support.texi, lib/gnutls_errors.c,
4914 lib/gnutls_srp.c: Updated information on required libraries.
4916 2011-07-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4918 * doc/cha-cert-auth.texi, doc/cha-gtls-app.texi,
4919 doc/cha-intro-tls.texi, doc/cha-library.texi, doc/cha-preface.texi:
4922 2011-06-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4924 * doc/.gitignore, doc/Makefile.am, doc/alert-printlist.c,
4925 doc/cha-auth.texi, doc/cha-cert-auth.texi, doc/cha-gtls-app.texi,
4926 doc/cha-intro-tls.texi, doc/cha-library.texi, doc/gnutls.texi,
4927 doc/latex/Makefile.am, doc/latex/gnutls.tex, doc/latex/macros.tex,
4928 doc/scripts/gdoc, doc/scripts/mytexi2latex, doc/scripts/sort1.pl,
4929 doc/scripts/split.pl, lib/gnutls_x509.c: updated function listing.
4931 2011-06-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4933 * lib/gnutls_alert.c, lib/includes/gnutls/gnutls.h.in,
4934 lib/libgnutls.map: Added gnutls_alert_get_strname().
4936 2011-06-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4938 * lib/algorithms/cert_types.c, lib/algorithms/ciphers.c,
4939 lib/algorithms/ecc.c, lib/algorithms/kx.c, lib/algorithms/mac.c,
4940 lib/algorithms/protocols.c, lib/algorithms/publickey.c,
4941 lib/algorithms/secparams.c, lib/algorithms/sign.c, lib/auth/cert.c,
4942 lib/auth/psk.c, lib/auth/rsa_export.c, lib/crypto-api.c,
4943 lib/crypto-backend.c, lib/ext/max_record.c,
4944 lib/ext/safe_renegotiation.c, lib/ext/server_name.c,
4945 lib/ext/session_ticket.c, lib/gcrypt/mpi.c, lib/gnutls_alert.c,
4946 lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_buffers.c,
4947 lib/gnutls_cert.c, lib/gnutls_dh_primes.c, lib/gnutls_dtls.c,
4948 lib/gnutls_errors.c, lib/gnutls_global.c, lib/gnutls_handshake.c,
4949 lib/gnutls_mpi.c, lib/gnutls_pcert.c, lib/gnutls_priority.c,
4950 lib/gnutls_privkey.c, lib/gnutls_psk.c, lib/gnutls_pubkey.c,
4951 lib/gnutls_record.c, lib/gnutls_sig.c, lib/gnutls_state.c,
4952 lib/gnutls_str.c, lib/gnutls_ui.c, lib/gnutls_x509.c,
4953 lib/minitasn1/decoding.c, lib/minitasn1/errors.c,
4954 lib/nettle/ecc_verify_hash.c, lib/opencdk/kbnode.c,
4955 lib/opencdk/sig-check.c, lib/openpgp/extras.c,
4956 lib/openpgp/gnutls_openpgp.c, lib/openpgp/output.c,
4957 lib/openpgp/pgp.c, lib/openpgp/privkey.c, lib/pkcs11.c,
4958 lib/pkcs11_privkey.c, lib/pkcs11_secret.c, lib/pkcs11_write.c,
4959 lib/random.c, lib/x509/common.c, lib/x509/crl.c,
4960 lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/dn.c,
4961 lib/x509/extensions.c, lib/x509/output.c, lib/x509/pkcs12.c,
4962 lib/x509/pkcs12_bag.c, lib/x509/pkcs12_encr.c, lib/x509/pkcs7.c,
4963 lib/x509/privkey.c, lib/x509/privkey_pkcs8.c,
4964 lib/x509/rfc2818_hostname.c, lib/x509/sign.c,
4965 lib/x509/verify-high.c, lib/x509/verify.c, lib/x509/x509.c,
4966 lib/x509/x509_write.c: documentation fixes
4968 2011-06-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4970 * NEWS, lib/COPYING, lib/accelerated/accelerated.c,
4971 lib/accelerated/cryptodev.c, lib/auth/anon.c, lib/auth/anon_ecdh.c,
4972 lib/auth/cert.c, lib/auth/dh_common.c, lib/auth/dhe.c,
4973 lib/auth/dhe_psk.c, lib/auth/ecdh_common.c, lib/auth/psk.c,
4974 lib/auth/psk_passwd.c, lib/auth/rsa.c, lib/auth/rsa_export.c,
4975 lib/auth/srp.c, lib/auth/srp_passwd.c, lib/auth/srp_rsa.c,
4976 lib/auth/srp_sb64.c, lib/crypto-api.c, lib/crypto-backend.c,
4977 lib/debug.c, lib/ext/cert_type.c, lib/ext/ecc.c,
4978 lib/ext/max_record.c, lib/ext/safe_renegotiation.c,
4979 lib/ext/server_name.c, lib/ext/session_ticket.c,
4980 lib/ext/signature.c, lib/ext/srp.c, lib/gnutls_alert.c,
4981 lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_buffers.c,
4982 lib/gnutls_cert.c, lib/gnutls_cipher.c, lib/gnutls_cipher_int.c,
4983 lib/gnutls_compress.c, lib/gnutls_constate.c, lib/gnutls_datum.c,
4984 lib/gnutls_db.c, lib/gnutls_dh.c, lib/gnutls_dh_primes.c,
4985 lib/gnutls_dtls.c, lib/gnutls_ecc.c, lib/gnutls_errors.c,
4986 lib/gnutls_extensions.c, lib/gnutls_global.c,
4987 lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_helper.c,
4988 lib/gnutls_kx.c, lib/gnutls_mbuffers.c, lib/gnutls_mem.c,
4989 lib/gnutls_mpi.c, lib/gnutls_num.c, lib/gnutls_pcert.c,
4990 lib/gnutls_pk.c, lib/gnutls_priority.c, lib/gnutls_privkey.c,
4991 lib/gnutls_psk.c, lib/gnutls_pubkey.c, lib/gnutls_record.c,
4992 lib/gnutls_rsa_export.c, lib/gnutls_session.c,
4993 lib/gnutls_session_pack.c, lib/gnutls_sig.c, lib/gnutls_srp.c,
4994 lib/gnutls_state.c, lib/gnutls_str.c, lib/gnutls_supplemental.c,
4995 lib/gnutls_ui.c, lib/gnutls_v2_compat.c, lib/gnutls_x509.c,
4996 lib/hash.c, lib/locks.c, lib/nettle/cipher.c,
4997 lib/nettle/ecc_free.c, lib/nettle/ecc_make_key.c,
4998 lib/nettle/ecc_map.c, lib/nettle/ecc_mulmod.c,
4999 lib/nettle/ecc_points.c, lib/nettle/ecc_projective_add_point.c,
5000 lib/nettle/ecc_projective_dbl_point.c,
5001 lib/nettle/ecc_projective_dbl_point_3.c,
5002 lib/nettle/ecc_shared_secret.c, lib/nettle/ecc_sign_hash.c,
5003 lib/nettle/ecc_verify_hash.c, lib/nettle/egd.c, lib/nettle/init.c,
5004 lib/nettle/mac.c, lib/nettle/mpi.c, lib/nettle/pk.c,
5005 lib/nettle/rnd.c, lib/opencdk/armor.c, lib/opencdk/hash.c,
5006 lib/opencdk/kbnode.c, lib/opencdk/keydb.c, lib/opencdk/literal.c,
5007 lib/opencdk/main.c, lib/opencdk/misc.c, lib/opencdk/new-packet.c,
5008 lib/opencdk/pubkey.c, lib/opencdk/read-packet.c,
5009 lib/opencdk/seskey.c, lib/opencdk/sig-check.c,
5010 lib/opencdk/stream.c, lib/opencdk/write-packet.c,
5011 lib/openpgp/compat.c, lib/openpgp/extras.c,
5012 lib/openpgp/gnutls_openpgp.c, lib/openpgp/output.c,
5013 lib/openpgp/pgp.c, lib/openpgp/pgpverify.c, lib/openpgp/privkey.c,
5014 lib/pkcs11.c, lib/pkcs11_privkey.c, lib/pkcs11_secret.c,
5015 lib/pkcs11_write.c, lib/random.c, lib/system.c,
5016 lib/system_override.c, lib/x509/common.c, lib/x509/crl.c,
5017 lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/dn.c,
5018 lib/x509/extensions.c, lib/x509/key_decode.c,
5019 lib/x509/key_encode.c, lib/x509/mpi.c, lib/x509/output.c,
5020 lib/x509/pbkdf2-sha1.c, lib/x509/pkcs12.c, lib/x509/pkcs12_bag.c,
5021 lib/x509/pkcs12_encr.c, lib/x509/pkcs7.c, lib/x509/privkey.c,
5022 lib/x509/privkey_pkcs8.c, lib/x509/rfc2818_hostname.c,
5023 lib/x509/sign.c, lib/x509/verify-high.c, lib/x509/verify.c,
5024 lib/x509/x509.c, lib/x509/x509_write.c, lib/x509_b64.c: Upgraded to
5027 2011-06-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5029 * doc/latex/cover.tex.in: updated cover.
5031 2011-06-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5033 * doc/latex/fdl.tex: improvements on fdl.
5035 2011-06-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5037 * AUTHORS: Added LRN.
5039 2011-06-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5041 * doc/cha-auth.texi, doc/cha-cert-auth.texi, doc/cha-gtls-app.texi,
5042 doc/cha-intro-tls.texi, doc/cha-library.texi,
5043 doc/cha-programs.texi, doc/scripts/mytexi2latex: documentation
5046 2011-06-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5048 * NEWS, lib/gnutls_srp.c, lib/gnutls_srp.h: gnutls_srp_verifier()
5049 returns data allocated with gnutls_malloc() for consistency.
5051 2011-06-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5053 * lib/gnutls_errors.c: reduced error message.
5055 2011-06-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5057 * doc/cha-intro-tls.texi: simplified text.
5059 2011-06-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5061 * doc/latex/fdl.tex, doc/latex/gnutls.tex: FDL is now included using
5064 2011-06-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5066 * doc/cha-auth.texi, doc/cha-intro-tls.texi,
5067 doc/examples/ex-client1.c, doc/scripts/mytexi2latex: Tables were
5070 2011-06-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5072 * doc/cha-cert-auth.texi, doc/cha-internals.texi,
5073 doc/cha-intro-tls.texi, doc/cha-library.texi,
5074 doc/scripts/mytexi2latex: figures were made floating.
5076 2011-06-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5078 * doc/latex/cover.tex.in, doc/scripts/mytexi2latex: Added
5079 high-quality pdf images.
5081 2011-06-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5083 * .gitignore, doc/latex/.gitignore: more files to ignore
5085 2011-06-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5087 * configure.ac, doc/Makefile.am, doc/cha-auth.texi,
5088 doc/cha-bib.texi, doc/cha-cert-auth.texi,
5089 doc/cha-ciphersuites.texi, doc/cha-errors.texi,
5090 doc/cha-functions.texi, doc/cha-gtls-app.texi,
5091 doc/cha-internals.texi, doc/cha-intro-tls.texi,
5092 doc/cha-library.texi, doc/cha-preface.texi, doc/cha-programs.texi,
5093 doc/cha-support.texi, doc/cha-tls-app.texi, doc/errcodes.c,
5094 doc/examples/ex-client1.c, doc/examples/ex-pkcs11-list.c,
5095 doc/examples/ex-serv-anon.c, doc/gnutls.texi,
5096 doc/latex/Makefile.am, doc/latex/cover.tex.in, doc/latex/fdl.tex,
5097 doc/latex/gnutls.bib, doc/latex/gnutls.tex, doc/latex/macros.tex,
5098 doc/printlist.c, doc/scripts/mytexi2latex, doc/scripts/sort1.pl,
5099 doc/signatures.texi: updated documentation to allow latex output.
5101 2011-06-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5103 * lib/gnutls_record.c, lib/x509/crq.c, lib/x509/x509.c,
5104 lib/x509/x509_write.c: corrected typos
5106 2011-06-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5108 * doc/cha-cert-auth.texi, doc/examples/Makefile.am,
5109 doc/examples/ex-cert-select.c, doc/examples/ex-client-udp.c,
5110 doc/examples/ex-crq.c, doc/examples/ex-pkcs11-list.c,
5111 doc/examples/ex-session-info.c, doc/examples/ex-verify.c: indented
5112 code. Corrected PKCS #11 example.
5114 2011-06-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5116 * doc/Makefile.am: added missing file.
5118 2011-06-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5120 * AUTHORS, NEWS, lib/includes/gnutls/gnutls.h.in, m4/hooks.m4:
5123 2011-06-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5125 * NEWS, lib/gnutls_errors.c, lib/includes/gnutls/pkcs11.h,
5126 lib/pkcs11.c, lib/pkcs11_write.c, src/p11tool-gaa.c,
5127 src/p11tool-gaa.h, src/p11tool.c, src/p11tool.gaa, src/p11tool.h,
5128 src/pkcs11.c: Added new PKCS #11 flags to force an object being
5129 private or not. Those are GNUTLS_PKCS11_OBJ_FLAG_MARK_PRIVATE and
5130 GNUTLS_PKCS11_OBJ_FLAG_MARK_NOT_PRIVATE. p11tool supports now the
5131 --no-private and --private options.
5133 2011-06-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5135 * src/p11common.c: Limit the number of attempts with the same PIN,
5136 to avoid attempting again and again with a wrong PIN.
5138 2011-06-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5140 * lib/pkcs11_write.c: When writing an object with CKA_TRUSTED set
5141 CKA_PRIVATE explicitly to FALSE, to allow the SO to write it.
5142 Reported by Rickard Bellgrim.
5144 2011-06-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5148 2011-06-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5150 * src/pkcs11.c: removed unneeded test.
5152 2011-06-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5154 * lib/pkcs11.c: Enforce the GNUTLS_PKCS11_OBJ_FLAG_LOGIN_SO even if
5155 GNUTLS_PKCS11_OBJ_FLAG_LOGIN is specified.
5157 2011-06-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5159 * src/Makefile.am, src/p11common.c, src/pkcs11.c: Use common code
5160 for PKCS #11 callbacks across clients. Require SO login to write a
5163 2011-06-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5165 * lib/algorithms/ciphersuites.c, lib/ext/safe_renegotiation.h: bit
5166 fields changed to unsigned.
5168 2011-06-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5170 * lib/gnutls_pubkey.c, lib/x509/privkey.c: Moved null check before
5173 2011-06-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5175 * lib/opencdk/keydb.c: removed unreachable code warning
5177 2011-06-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5179 * lib/opencdk/hash.c, lib/opencdk/main.h, lib/opencdk/stream.c,
5180 lib/opencdk/write-packet.c: eliminated wipemem().
5182 2011-06-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5184 * lib/gnutls_pk.c: corrected uninitialized variable warning.
5186 2011-06-16 Rickard Bellgrim <rickard@opendnssec.org>
5188 * lib/pkcs11_write.c: The CKA_SUBJECT must be specified for a
5189 certificate. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
5191 2011-06-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5193 * lib/includes/gnutls/pkcs11.h, lib/pkcs11.c, src/pkcs11.c: When
5194 setting the TRUSTED flag login as security officer.
5196 2011-06-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5198 * lib/pkcs11_write.c: write label in PKCS #11 privkey.
5200 2011-06-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5202 * lib/gnutls_privkey.c, lib/gnutls_pubkey.c, lib/pkcs11.c,
5203 lib/pkcs11_int.h, lib/pkcs11_privkey.c, lib/pkcs11_secret.c,
5204 lib/pkcs11_write.c: define ck_bool_t to be compatible with PKCS #11
5207 2011-06-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5209 * configure.ac: ignore more warnings.
5211 2011-06-09 Stef Walter <stefw@collabora.co.uk>
5213 * lib/Makefile.am, lib/pkcs11_int.h, lib/pkcs11_spec.h: Use pkcs11.h
5214 specification file from p11-kit. * Remove one included briefly in gnutls. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
5216 2011-06-09 Stef Walter <stefw@collabora.co.uk>
5218 * lib/pkcs11.c, src/cli.c, src/p11common.c, src/pkcs11.c,
5219 tests/suite/mini-eagain2.c: Fix up compiler warnings. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
5221 2011-06-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5223 * lib/pkcs11_spec.h: Added missing file
5225 2011-06-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5227 * doc/cha-cert-auth.texi: document new config file format and path.
5229 2011-06-07 Stef Walter <stefw@collabora.co.uk>
5231 * configure.ac, doc/examples/Makefile.am, lib/Makefile.am,
5232 lib/auth/cert.c, lib/gnutls_global.c, lib/gnutls_privkey.c,
5233 lib/gnutls_pubkey.c, lib/gnutls_x509.c, lib/pakchois/README,
5234 lib/pakchois/dlopen.c, lib/pakchois/dlopen.h,
5235 lib/pakchois/errors.c, lib/pakchois/pakchois.c,
5236 lib/pakchois/pakchois.h, lib/pakchois/pakchois11.h, lib/pkcs11.c,
5237 lib/pkcs11_int.h, lib/pkcs11_privkey.c, lib/pkcs11_secret.c,
5238 lib/pkcs11_write.c, src/Makefile.am, src/certtool-common.c,
5239 src/certtool.c, src/cli.c, src/p11tool.c, src/serv.c: The attached
5240 patch ports gnutls to p11-kit. p11-kit is added as a dependency.
5241 p11-kit itself has no dependencies outside of basic libc stuff. The
5242 source code for p11-kit is available both in git and tarball form.
5243 [3] If the gnutls dependency on p11-kit is disabled (via a configure
5244 option) then the PKCS#11 support is disabled. This is useful in bare
5245 bones embedded systems or places where very minimal dependencies are
5248 2011-06-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5250 * doc/manpages/Makefile.am: updated
5252 2011-06-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5254 * lib/pkcs11.c, lib/pkcs11_privkey.c: Return error code when an
5255 object is not found. Only request for token insertion if the
5256 expected data is not found. Based on patch by Stef Walter.
5258 2011-06-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5260 * configure.ac: Depend on automake 1.11.
5262 2011-06-06 Stef Walter <stefw@collabora.co.uk>
5264 * tests/suite/Makefile.am: tests: Build eagain-cli with correct
5265 libraries * Add -ldl -lpthread to linker flags Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
5267 2011-05-30 Stef Walter <stefw@collabora.co.uk>
5269 * src/cli.c: gnutls-cli: Fix uninitialized variable when PKCS#11
5270 uris in use. * When PKCS#11 URIs are in use previously tried to free
5271 uninitialized memory. Initialize to zero. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
5273 2011-05-30 Stef Walter <stefw@collabora.co.uk>
5275 * lib/pkcs11.c: pkcs11: Accept CKR_USER_ALREADY_LOGGED_IN as
5276 successful result for PAP Login * When doing CKF_PROTECTED_AUTHENTICATION_PATH login, accept CKR_USER_ALREADY_LOGGED_IN as a successful result. * Another code path, or another consumer of the same PKCS#11 module may have already logged in. * This is what the non PAP code path already does. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
5278 2011-06-06 Stef Walter <stefw@collabora.co.uk>
5280 * lib/auth/srp.c, lib/auth/srp_rsa.c, lib/ext/session_ticket.c,
5281 lib/gnutls_compress.c, lib/hash.c, lib/nettle/ecc_mulmod.c,
5282 lib/x509/common.c: Remove unused variables * GCC 4.6.0 prints a warning, and build failes with -Wunused Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
5284 2011-06-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5286 * lib/nettle/rnd.c: use gnutls_assert_val() in EGD errors.
5288 2011-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5290 * tests/dsa/testdsa, tests/openpgp-certs/testcerts,
5291 tests/scripts/common.sh, tests/suite/testcompat-main,
5292 tests/suite/testsrn: Corrected fail() shell function. Reported by
5295 2011-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5297 * tests/dsa/testdsa: Corrected typo. Reported by Andreas Metzler.
5299 2011-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5301 * doc/manpages/Makefile.am: regenerated makefile.
5303 2011-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5305 * lib/x509/common.c: documentation fix.
5307 2011-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5309 * lib/accelerated/intel/Makefile.am,
5310 lib/accelerated/intel/aes-x86.c,
5311 lib/accelerated/intel/asm/appro-aes-gcm-x86.s: pclmul is not used on
5312 intel 32-bit systems.
5314 2011-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5316 * lib/accelerated/intel/aes-x86.c, lib/gnutls_global.h,
5317 lib/gnutls_priority.c: When AES and GCM acceleration is available
5318 increase the priority of AES-GCM ciphersuites in performance and
5321 2011-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5323 * lib/gcrypt/cipher.c, lib/gcrypt/pk.c: prevent compilation of
5324 gcrypt support since it is incomplete.
5326 2011-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5328 * lib/Makefile.am, lib/algorithms/ciphers.c,
5329 lib/algorithms/ciphersuites.c, lib/gcrypt/cipher.c,
5330 lib/nettle/cipher.c, m4/hooks.m4: do not use NETTLE_LIBS to include
5331 hogweed and gmp. removed ENABLE_CAMELLIA and NETTLE_GCM.
5333 2011-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5335 * src/benchmark-tls.c: improved benchmark.
5337 2011-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5339 * doc/Makefile.am, doc/cha-cert-auth.texi, doc/cha-internals.texi,
5340 doc/cha-intro-tls.texi, doc/cha-library.texi,
5341 doc/cha-programs.texi, doc/examples/ex-session-info.c,
5342 doc/gnutls-certificate-user-use-case.pdf,
5343 doc/gnutls-client-server-use-case.pdf,
5344 doc/gnutls-extensions_st.pdf, doc/gnutls-handshake-sequence.pdf,
5345 doc/gnutls-handshake-state.pdf, doc/gnutls-internals.pdf,
5346 doc/gnutls-layers.pdf, doc/gnutls-logo.pdf,
5347 doc/gnutls-mod_auth_st.pdf, doc/gnutls-objects.pdf,
5348 doc/gnutls-pgp.pdf, doc/gnutls-x509.pdf, doc/gnutls.texi: Updated
5349 documentation. Removed all .pdf files. They were not needed.
5351 2011-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5353 * lib/algorithms.h, lib/algorithms/ciphersuites.c,
5354 lib/gnutls_handshake.c: Avoid memory allocations when requesting the
5355 supported ciphersuites.
5357 2011-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5359 * lib/accelerated/intel/aes-x86.c: more verbose if the PCLMUL
5360 instruction is detected.
5362 2011-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5364 * tests/cipher-test.c: Added debugging ability to cipher-test.
5366 2011-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5368 * doc/TODO: more cleanup.
5370 2011-06-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5372 * doc/TODO: Added new TODO items.
5374 2011-06-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5376 * doc/TODO: removed completed items from todo list
5378 2011-06-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5380 * lib/gnutls_priority.c: reinstated MAC-ALL semantics.
5382 2011-06-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5384 * .gitignore: more files to ignore.
5386 2011-06-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5388 * lib/gnutls_session_pack.c: store the ECC curve in the session
5389 resumption parameters.
5391 2011-06-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5393 * NEWS, doc/cha-cert-auth.texi, doc/examples/ex-verify.c,
5394 lib/gnutls_cert.c, lib/includes/gnutls/x509.h, lib/libgnutls.map,
5395 lib/x509/verify-high.c, tests/Makefile.am, tests/x509cert-tl.c:
5396 Added gnutls_x509_trust_list_add_named_crt() and
5397 gnutls_x509_trust_list_verify_named_crt() that allow having a list
5398 of certificates in the trusted list that will be associated with a
5399 name (e.g. server name) and will not be used as CAs.
5401 2011-06-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5403 * NEWS, doc/cha-intro-tls.texi,
5404 lib/accelerated/intel/aes-gcm-x86.c,
5405 lib/accelerated/intel/aes-x86.c, lib/algorithms/ciphersuites.c,
5406 lib/gnutls_priority.c, lib/includes/gnutls/gnutls.h.in,
5407 lib/nettle/cipher.c: Added SuiteB ciphersuites. Added SUITEB128 and
5408 SUITEB192 priority strings. SECURE256 was renamed to SECURE192
5409 (because TLS ciphersuite's security level was not enough to justify
5412 2011-06-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5414 * NEWS, lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map:
5415 gnutls_ecc_curve_get() was added.
5417 2011-06-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5419 * lib/gnutls_state.c: The PRF is now read from the ciphersuite
5422 2011-06-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5424 * src/common.c: Print information on elliptic curve sessions.
5426 2011-06-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5428 * lib/abstract_int.h, lib/gnutls_pubkey.c, lib/gnutls_sig.c,
5429 lib/gnutls_sig.h, lib/includes/gnutls/abstract.h,
5430 lib/includes/gnutls/compat.h, lib/libgnutls.map, lib/x509/common.c,
5431 lib/x509/common.h, lib/x509/crq.c, lib/x509/privkey.c,
5432 lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509_int.h: Split
5433 pubkey_verify_sig() to pubkey_verify_hashed_data() and
5434 pubkey_verify_data(). Added gnutls_pubkey_verify_data2() to allow
5435 verification of a signature when the signature algorithm cannot be
5436 determined by the signature and the public key only.
5438 2011-06-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5440 * lib/gnutls_hash_int.h, lib/gnutls_sig.c: Allow all SHA algorithms
5443 2011-06-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5445 * lib/x509/verify.c: fixes for
5446 http://tools.ietf.org/html/draft-mavrogiannopoulos-tls-dss-00
5448 2011-06-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5450 * lib/auth/cert.h, lib/gnutls_cert.c, lib/gnutls_handshake.c:
5451 simplified _gnutls_selected_cert_supported_kx().
5453 2011-06-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5455 * lib/gnutls_pubkey.c, lib/nettle/pk.c, lib/x509/verify.c:
5456 Truncation of ECDSA and DSA signatures moved to
5457 _wrap_nettle_pk_sign() and _wrap_nettle_pk_verify().
5459 2011-06-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5461 * lib/algorithms.h, lib/algorithms/ciphersuites.c,
5462 lib/algorithms/sign.c, lib/ext/signature.c, lib/gnutls_buffers.c,
5463 lib/gnutls_buffers.h, lib/gnutls_handshake.c, lib/gnutls_int.h,
5464 lib/gnutls_sig.c, lib/nettle/pk.c: Simplified the handling of
5465 handshake messages to be hashed. Instead of doing a hash during the
5466 handshake process we now keep the data until handshake is over and
5467 hash them on demand. This uses more memory but eliminates issues
5468 with TLS 1.2 and makes the handling simpler.
5470 2011-06-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5472 * lib/ext/signature.c, lib/gnutls_pubkey.c, lib/nettle/pk.c,
5473 lib/x509/common.h, lib/x509/verify.c: Hash algorithms used for DSA
5474 and ECDSA correspond to draft-mavrogiannopoulos-tls-dss-00.txt.
5476 2011-06-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5478 * lib/ext/ecc.c: updated
5480 2011-06-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5482 * doc/cha-internals.texi, doc/gnutls.texi: Added refint macro to
5483 refer to internal -non exported- functions. Used it to reference to
5484 the gnutls_*_register() functions.
5486 2011-06-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5488 * NEWS, lib/Makefile.am, lib/auth/psk_passwd.c, lib/auth/rsa.c,
5489 lib/auth/rsa_export.c, lib/auth/srp_passwd.c, lib/crypto-api.c,
5490 lib/crypto-backend.c, lib/crypto-backend.h, lib/crypto.c,
5491 lib/ext/session_ticket.c, lib/gnutls_cipher.c,
5492 lib/gnutls_cipher_int.h, lib/gnutls_handshake.c,
5493 lib/gnutls_hash_int.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h,
5494 lib/gnutls_pk.c, lib/includes/gnutls/crypto.h, lib/libgnutls.map,
5495 lib/nettle/mpi.c, lib/nettle/pk.c, lib/opencdk/misc.c,
5496 lib/pkcs11_secret.c, lib/random.h, lib/x509/pkcs12.c,
5497 lib/x509/privkey_pkcs8.c, libextra/gnutls_openssl.c, src/psk.c,
5498 src/srptool.c, tests/Makefile.am, tests/crypto_rng.c,
5499 tests/rng-fork.c: gnutls/crypto.h no longer includes functions to
5500 register ciphers. Thus the following functions - gnutls_crypto_bigint_register - gnutls_crypto_cipher_register - gnutls_crypto_digest_register - gnutls_crypto_mac_register - gnutls_crypto_pk_register - gnutls_crypto_rnd_register - gnutls_crypto_single_cipher_register - gnutls_crypto_single_digest_register - gnutls_crypto_single_mac_register are only available internally
5501 via crypto-backend.h.
5503 2011-06-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5505 * build-aux/config.rpath: updated
5507 2011-06-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5509 * lib/accelerated/intel/asm/appro-aes-gcm-x86-64.s,
5510 lib/accelerated/intel/asm/appro-aes-gcm-x86.s,
5511 lib/accelerated/intel/asm/appro-aes-x86-64.s,
5512 lib/accelerated/intel/asm/appro-aes-x86.s: typos and date fix in
5515 2011-06-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5517 * src/benchmark-tls.c: Added benchmark on GCM ciphersuites and
5518 arcfour for comparison.
5520 2011-06-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5522 * lib/gnutls_int.h: corrected typo.
5524 2011-06-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5526 * lib/accelerated/intel/aes-gcm-x86.c,
5527 lib/accelerated/intel/aes-x86.c: indented code
5529 2011-06-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5531 * src/benchmark.c: properly initialize benchmarks.
5533 2011-06-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5535 * configure.ac, m4/hooks.m4: bumped version.
5537 2011-06-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5539 * lib/accelerated/intel/aes-gcm-x86.c: Corrections in encryption and
5540 decryption of incomplete blocks.
5542 2011-06-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5544 * lib/accelerated/intel/aes-gcm-x86.c, lib/gnutls_int.h,
5545 lib/gnutls_state.c: Use nettle's memxor or gnulib's if it doesn't
5548 2011-06-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5550 * NEWS, lib/accelerated/intel/Makefile.am,
5551 lib/accelerated/intel/aes-gcm-x86.c,
5552 lib/accelerated/intel/aes-x86.c, lib/accelerated/intel/aes-x86.h,
5553 lib/accelerated/intel/asm/appro-aes-gcm-x86-64.s,
5554 lib/accelerated/intel/asm/appro-aes-gcm-x86.s, lib/gnutls_num.c,
5555 lib/gnutls_num.h, tests/cipher-test.c: Added AES-GCM optimizations
5556 using the PCLMULQDQ instruction. Uses Andy Polyakov's assembly code.
5558 2011-06-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5560 * lib/crypto-api.c: documented usage of gnutls_cipher_add_auth().
5562 2011-06-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5564 * doc/cha-intro-tls.texi: updates.
5566 2011-05-31 Roman Bogorodskiy <bogorodskiy@gmail.com>
5568 * lib/Makefile.am: Prevent including installed gnutls' headers.
5570 2011-05-31 Roman Bogorodskiy <bogorodskiy@gmail.com>
5572 * src/udp-serv.c: Add missing <netinet/in.h> to get sockaddr_in.
5574 2011-05-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5576 * doc/cha-intro-tls.texi: Compatibility text updated.
5578 2011-05-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5580 * lib/accelerated/intel/asm/appro-aes-x86-64.s,
5581 lib/accelerated/intel/asm/appro-aes-x86.s: Added new AES code by
5584 2011-05-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5586 * doc/credentials/x509/ca-key.pem: Added missing file.
5588 2011-05-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5590 * .gitignore: more files to ignore
5592 2011-05-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5594 * lib/nettle/Makefile.am, lib/nettle/ecc_free.c,
5595 lib/nettle/ecc_make_key.c, lib/nettle/ecc_map.c,
5596 lib/nettle/ecc_mulmod.c, lib/nettle/ecc_points.c,
5597 lib/nettle/ecc_projective_add_point.c,
5598 lib/nettle/ecc_projective_dbl_point_3.c,
5599 lib/nettle/ecc_shared_secret.c, lib/nettle/ecc_sign_hash.c,
5600 lib/nettle/ecc_test.c, lib/nettle/ecc_verify_hash.c: Added FSF
5601 copyright to public domain files.
5603 2011-05-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5605 * configure.ac, lib/accelerated/x86.h: Use cpuid.h if it exists, to
5606 use the x86 CPUID instruction.
5608 2011-05-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5610 * THANKS: Added Dash.
5612 2011-05-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5614 * lib/gnutls_compress.c, lib/gnutls_compress.h,
5615 lib/gnutls_handshake.c: simplified
5616 _gnutls_supported_compression_methods().
5618 2011-05-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5620 * lib/gnutls_constate.c, lib/gnutls_handshake.c, lib/gnutls_int.h,
5621 lib/gnutls_session_pack.c, lib/gnutls_v2_compat.c: Correctly set
5622 compression method when resuming sessions. Reported by Dash Shendy.
5624 2011-05-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5626 * lib/gnutls_hash_int.c: digest_length() uses int as input.
5628 2011-05-28 Stef Walter <stefw@collabora.co.uk>
5630 * lib/nettle/cipher.c: Fix warnings with GCC 4.5.2
5632 2011-05-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5634 * doc/credentials/Makefile.am, doc/credentials/x509/Makefile.am:
5635 Corrected EXTRA_DIST
5637 2011-05-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5639 * tests/suite/testcompat-main: updated keys.
5641 2011-05-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5643 * lib/auth/cert.c, lib/auth/cert.h, lib/gnutls_handshake.c,
5644 lib/gnutls_handshake.h: Take into account each and every advertized
5645 public key algorithm when selecting a certificate. Previously we
5646 were assuming only RSA or DSA, or ANY.
5648 2011-05-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5650 * doc/credentials/gnutls-http-serv, src/serv-gaa.c, src/serv-gaa.h,
5651 src/serv.c, src/serv.gaa: Added feature to specify ecc private keys
5654 2011-05-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5656 * lib/algorithms.h, lib/gnutls_handshake.c, lib/gnutls_state.c:
5657 Corrected ECC ciphersuite detection.
5659 2011-05-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5661 * doc/credentials/x509-ca-key.pem, doc/credentials/x509-ca.pem,
5662 doc/credentials/x509-client-key.pem,
5663 doc/credentials/x509-client.pem, doc/credentials/x509-other-ca.pem,
5664 doc/credentials/x509-proxy-key.pem, doc/credentials/x509-proxy.pem,
5665 doc/credentials/x509-server-dsa.pem,
5666 doc/credentials/x509-server-key-dsa.pem,
5667 doc/credentials/x509-server-key.pem,
5668 doc/credentials/x509-server.pem, doc/credentials/x509-trust.pem,
5669 doc/credentials/x509/ca.pem, doc/credentials/x509/cert-dsa.pem,
5670 doc/credentials/x509/cert-ecc.pem,
5671 doc/credentials/x509/cert-rsa.pem, doc/credentials/x509/cert.pem,
5672 doc/credentials/x509/clicert-dsa.pem,
5673 doc/credentials/x509/clicert.pem, doc/credentials/x509/key-dsa.pem,
5674 doc/credentials/x509/key-ecc.pem, doc/credentials/x509/key-rsa.pem,
5675 doc/credentials/x509/key.pem, lib/nettle/pk.c, lib/x509/verify.c:
5676 Laxed verification checks for DSA to allow SHA256 in place of
5677 SHA224. Added new certificate sets in doc/credentials/x509/.
5679 2011-05-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5681 * lib/gnutls_priority.c: ECDHE and ECDSA were added to deafult
5684 2011-05-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5686 * lib/auth/rsa.c, lib/x509/key_encode.c, lib/x509/privkey_pkcs8.c:
5687 gnutls_secure_malloc() is no longer used.
5689 2011-05-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5691 * lib/auth/dhe_psk.c, lib/auth/psk.c: deinitialize PSK key memory.
5693 2011-05-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5695 * lib/auth/psk.c: explicitly request for client key in server side.
5697 2011-05-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5699 * NEWS, lib/algorithms/ciphersuites.c, lib/algorithms/kx.c,
5700 lib/auth/anon.c, lib/auth/anon_ecdh.c, lib/auth/dh_common.c,
5701 lib/auth/dh_common.h, lib/auth/dhe.c, lib/auth/dhe_psk.c,
5702 lib/auth/ecdh_common.c, lib/auth/ecdh_common.h, lib/gnutls_state.c,
5703 lib/includes/gnutls/gnutls.h.in: Added ECDHE-PSK ciphersuites for
5706 2011-05-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5708 * doc/gnutls-guile.texi: Corrections.
5710 2011-05-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5712 * doc/.gitignore: ignore tex files.
5714 2011-05-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5716 * doc/cha-copying.texi: Do not list all licenses in the manual of
5717 gnutls. Just the license of the manual is enough.
5719 2011-05-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5721 * doc/Makefile.am, doc/cha-ciphersuites.texi,
5722 doc/cha-functions.texi, doc/cha-preface.texi,
5723 doc/gnutls-guile.texi, doc/guile.texi, guile/src/core.c: guile
5724 bindings added as a separate document.
5726 2011-05-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5728 * doc/gnutls.texi: reorganization. Removed guile bindings.
5730 2011-05-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5732 * doc/cha-auth.texi, doc/cha-cert-auth.texi, doc/cha-gtls-app.texi,
5733 doc/gnutls.texi: reorganization and added section on parameter
5736 2011-05-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5738 * lib/Makefile.am, lib/auth/Makefile.am, lib/ext/Makefile.am,
5739 lib/nettle/Makefile.am: Added new headers.
5741 2011-05-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5743 * NEWS: document elliptic curves addition.
5745 2011-05-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5747 * m4/hooks.m4: libgcrypt support was removed.
5749 2011-05-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5751 * NEWS: listed newly added functions.
5753 2011-05-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5755 * lib/nettle/Makefile.am, lib/nettle/ecc.h,
5756 lib/nettle/ecc_make_key.c, lib/nettle/ecc_shared_secret.c,
5757 lib/nettle/ecc_sign_hash.c, lib/nettle/ecc_verify_hash.c,
5758 lib/nettle/mp_unsigned_bin.c: Use nettle's functions for integer
5761 2011-05-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5763 * lib/algorithms/publickey.c, lib/gnutls_sig.c: more updates for
5766 2011-05-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5768 * lib/ext/ecc.c: reduced debugging.
5770 2011-05-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5772 * lib/gnutls_pubkey.c, lib/gnutls_sig.c: Changes to allow ECDH-DSA
5773 with client mode certificates.
5775 2011-05-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5777 * tests/certs/ca-cert-ecc.pem, tests/certs/ca-ecc.pem,
5778 tests/certs/cert-ecc.pem, tests/certs/ecc.pem,
5779 tests/suite/testcompat-main: Added server and client mode tests for
5782 2011-05-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5784 * lib/ext/session_ticket.c, lib/gnutls_db.c, lib/gnutls_dtls.c,
5785 lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_int.h,
5786 lib/gnutls_session_pack.c, lib/gnutls_v2_compat.c,
5787 lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map,
5788 lib/nettle/rnd.c, lib/opencdk/keydb.c, lib/opencdk/literal.c,
5789 lib/opencdk/read-packet.c, lib/opencdk/sig-check.c,
5790 lib/openpgp/gnutls_openpgp.c, lib/system.c, lib/system.h,
5791 lib/x509/common.c, lib/x509/verify.c, tests/chainverify.c: Added
5792 gnutls_global_set_time_function() to allow overriding the default
5793 system time() function.
5795 2011-05-25 Giuseppe Scrivano <gscrivano@gnu.org>
5797 * doc/cha-programs.texi: Fix example in the documentation. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
5799 2011-05-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5801 * doc/cha-programs.texi: updated documentation on PSK. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
5803 2011-05-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5805 * lib/nettle/ecc_projective_add_point.c: If Q=-P return the point at
5808 2011-05-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5810 * tests/chainverify.c: Added elliptic curves chain certificate.
5812 2011-05-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5814 * lib/gnutls_buffers.c: do not try to write to a socket when no
5817 2011-05-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5819 * tests/openpgpself.c: increased log level
5821 2011-05-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5823 * lib/gnutls_buffers.h, lib/gnutls_handshake.c:
5824 _gnutls_handshake_hash_buffer_clear was replaced by
5825 _gnutls_buffer_clear();
5827 2011-05-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5829 * lib/nettle/pk.c: Only warn on invalid security level hashes.
5831 2011-05-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5833 * src/certtool.c: SHA256 is the default hash algorithm in certtool.
5835 2011-05-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5837 * lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_privkey.c,
5838 lib/gnutls_sig.c, lib/x509/verify.c: Several updates to allow
5839 generation and signing of an ECC certificate.
5841 2011-05-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5843 * doc/manpages/certtool.1: updated certtool info.
5845 2011-05-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5847 * lib/algorithms/ciphersuites.c: corrected bug in ciphersuite name
5850 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5852 * doc/cha-auth.texi: Discussed the newly added ciphersuites.
5854 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5856 * doc/Makefile.am: Added algorithms/ to function index.
5858 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5860 * lib/algorithms/ciphersuites.c: Added ECC ciphersuites from
5863 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5865 * src/certtool.c: Print the private key after generation. Print ECC
5868 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5870 * lib/algorithms/ecc.c, lib/gnutls_ecc.c,
5871 lib/includes/gnutls/abstract.h, lib/includes/gnutls/x509.h,
5872 lib/libgnutls.map, lib/x509/privkey.c: Added
5873 gnutls_x509_privkey_import_ecc_raw() and
5874 gnutls_x509_privkey_export_ecc_raw().
5876 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5878 * lib/x509/privkey.c: Decode PEM ECC private keys.
5880 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5882 * lib/algorithms.h, lib/algorithms/ecc.c, lib/x509/key_encode.c,
5883 lib/x509/privkey.c, src/certtool-gaa.c, src/certtool-gaa.h,
5884 src/certtool.c, src/certtool.gaa: updates to allow the generation of
5887 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5889 * lib/x509_b64.c: do not crash on null message.
5891 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5893 * .gitignore: updated
5895 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5897 * lib/algorithms/ciphersuites.c, lib/algorithms/kx.c,
5898 lib/auth/cert.c, lib/auth/dhe.c, lib/gnutls_pk.c, lib/gnutls_pk.h,
5899 lib/gnutls_pubkey.c, lib/gnutls_sig.c, lib/gnutls_state.c,
5900 lib/includes/gnutls/gnutls.h.in, lib/nettle/ecc_sign_hash.c,
5901 lib/nettle/pk.c, lib/nettle/rnd.c, lib/nettle/rnd.h,
5902 lib/x509/common.h, lib/x509/verify.c: Added support for verifying
5903 server certificates with ECDSA.
5905 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5907 * lib/ext/ecc.c: Only reply with ECC Packet format extension if we
5908 have negotiated ECC.
5910 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5912 * tests/pathlen/ca-no-pathlen.pem,
5913 tests/pathlen/no-ca-or-pathlen.pem, tests/pkcs12_s2k_pem.c: leak fix
5914 and updates for new formats.
5916 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5918 * tests/suite/testcompat-main: Added ECDHE-RSA tests.
5920 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5922 * lib/algorithms/secparams.c, lib/gnutls_pubkey.c: always put
5923 leading zero to output keys
5925 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5927 * lib/x509/output.c: print the bits together with the security
5930 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5932 * lib/x509/privkey.c, lib/x509/privkey_pkcs8.c: leaks fixes.
5934 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5936 * lib/pkcs11.c: corrected file descriptor leak.
5938 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5940 * libextra/gnutls_extra.c: gnutls_algorithms.h -> algorithms.h
5942 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5944 * lib/x509/key_decode.c, lib/x509/key_encode.c: corrected ECC public
5945 key encoding/decoding.
5947 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5949 * src/certtool-common.c, src/certtool.c: Corrected bug in public key
5950 import. print information on ECC public keys.
5952 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5954 * lib/includes/gnutls/crypto.h, lib/nettle/pk.c,
5955 lib/x509/key_encode.c, lib/x509/x509_int.h: No need to keep Z in
5956 parameters since the pubkey can always be converted to an affine
5959 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5961 * lib/algorithms/secparams.c, lib/gnutls_pubkey.c,
5962 lib/includes/gnutls/abstract.h, lib/libgnutls.map,
5963 lib/x509/common.c, lib/x509/key_decode.c, lib/x509/mpi.c,
5964 lib/x509/output.c: print information on ECC certificates.
5966 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5968 * lib/abstract_int.h, lib/algorithms.h, lib/algorithms/ecc.c,
5969 lib/auth/anon.h, lib/auth/ecdh_common.c, lib/auth/ecdh_common.h,
5970 lib/auth/rsa.c, lib/auth/rsa_export.c, lib/ext/ecc.c,
5971 lib/gnutls.asn, lib/gnutls_asn1_tab.c, lib/gnutls_ecc.c,
5972 lib/gnutls_ecc.h, lib/gnutls_errors.c, lib/gnutls_int.h,
5973 lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_privkey.c,
5974 lib/gnutls_pubkey.c, lib/gnutls_rsa_export.c,
5975 lib/gnutls_rsa_export.h, lib/gnutls_sig.c, lib/gnutls_sig.h,
5976 lib/gnutls_state.c, lib/gnutls_state.h,
5977 lib/includes/gnutls/crypto.h, lib/includes/gnutls/gnutls.h.in,
5978 lib/libgnutls.map, lib/nettle/ecc_test.c, lib/nettle/pk.c,
5979 lib/openpgp/openpgp_int.h, lib/openpgp/pgp.c,
5980 lib/openpgp/privkey.c, lib/x509/Makefile.am, lib/x509/common.c,
5981 lib/x509/common.h, lib/x509/crq.c, lib/x509/key_decode.c,
5982 lib/x509/key_encode.c, lib/x509/mpi.c, lib/x509/privkey.c,
5983 lib/x509/privkey_pkcs8.c, lib/x509/verify.c, lib/x509/x509.c,
5984 lib/x509/x509_int.h, lib/x509/x509_write.c: gnutls_pk_params_st is
5985 used internally to transfer public key parameters. This replaces the
5986 raw bigint_t arrays.
5988 2011-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5990 * lib/algorithms.h, lib/algorithms/ciphersuites.c,
5991 lib/algorithms/ecc.c, lib/auth/ecdh_common.c, lib/ext/ecc.c,
5992 lib/ext/ecc.h: Curve TLS ID is being stored in algorithms/ecc.c.
5994 2011-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5996 * configure.ac, lib/Makefile.am, lib/algorithms.h,
5997 lib/algorithms/Makefile.am, lib/algorithms/cert_types.c,
5998 lib/algorithms/ciphers.c, lib/algorithms/ciphersuites.c,
5999 lib/algorithms/ecc.c, lib/algorithms/kx.c, lib/algorithms/mac.c,
6000 lib/algorithms/protocols.c, lib/algorithms/publickey.c,
6001 lib/algorithms/secparams.c, lib/algorithms/sign.c, lib/auth/cert.c,
6002 lib/auth/dh_common.c, lib/auth/dhe.c, lib/auth/ecdh_common.c,
6003 lib/auth/rsa.c, lib/auth/rsa_export.c, lib/ext/session_ticket.c,
6004 lib/ext/signature.c, lib/ext/srp.c, lib/gnutls_algorithms.c,
6005 lib/gnutls_algorithms.h, lib/gnutls_auth.c, lib/gnutls_cert.c,
6006 lib/gnutls_cipher.c, lib/gnutls_cipher_int.c,
6007 lib/gnutls_compress.c, lib/gnutls_constate.c, lib/gnutls_ecc.c,
6008 lib/gnutls_handshake.c, lib/gnutls_kx.c, lib/gnutls_priority.c,
6009 lib/gnutls_record.c, lib/gnutls_sig.c, lib/gnutls_state.c,
6010 lib/gnutls_v2_compat.c, lib/gnutls_x509.c, lib/nettle/ecc_test.c,
6011 lib/nettle/mpi.c, lib/opencdk/read-packet.c, lib/x509/common.h,
6012 lib/x509/privkey_pkcs8.c: gnutls_algorithms.c was split into
6013 manageable files in algorithms/.
6015 2011-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6017 * lib/gnutls_handshake.c: use the _gnutls_session_is_ecc() to check
6020 2011-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6022 * lib/auth/ecdh_common.c, lib/gnutls_algorithms.c,
6023 lib/includes/gnutls/gnutls.h.in, lib/nettle/pk.c, lib/x509/x509.c:
6024 Added OIDs and definitions for ECDSA signature algorithm.
6026 2011-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6028 * src/benchmark-tls.c: Print purpose of testing.
6030 2011-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6032 * src/benchmark-tls.c: compare ECDH and DH on the same security
6035 2011-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6037 * doc/cha-intro-tls.texi, lib/gnutls_algorithms.c,
6038 lib/gnutls_algorithms.h, lib/gnutls_priority.c: Added ability to
6039 specify curves as priority strings.
6041 2011-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6043 * lib/nettle/ecc.h: removed ecc_is_valid_idx() prototype
6045 2011-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6047 * lib/nettle/ecc.h, lib/nettle/ecc_make_key.c,
6048 lib/nettle/ecc_map.c, lib/nettle/ecc_mulmod.c,
6049 lib/nettle/ecc_points.c, lib/nettle/ecc_projective_add_point.c,
6050 lib/nettle/ecc_projective_dbl_point.c,
6051 lib/nettle/ecc_projective_dbl_point_3.c,
6052 lib/nettle/ecc_shared_secret.c, lib/nettle/ecc_test.c,
6053 lib/nettle/ecc_verify_hash.c, lib/nettle/pk.c: Dropped ltc_ from
6054 function and type names.
6056 2011-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6058 * tests/x509cert.c: corrected memory leak.
6060 2011-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6062 * lib/nettle/cipher.c: use new nettle's name for gcm_aes_auth().
6064 2011-05-21 Simon Josefsson <simon@josefsson.org>
6066 * gl/hmac-md5.c, gl/m4/valgrind-tests.m4, gl/memxor.c, gl/memxor.h,
6067 gl/override/lib/hmac-md5.c.diff, gl/override/lib/memxor.c.diff,
6068 gl/override/lib/memxor.h.diff,
6069 gl/override/m4/valgrind-tests.m4.diff: Override gnulib code with fix
6070 for memxor and valgrind.
6072 2011-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6074 * lib/auth/anon_ecdh.c, lib/auth/dh_common.c, lib/auth/dhe.c,
6075 lib/auth/ecdh_common.c, lib/gnutls_algorithms.c,
6076 lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_state.c,
6077 lib/gnutls_state.h, lib/includes/gnutls/gnutls.h.in: Added support
6078 for ECDHE-RSA ciphersuites.
6080 2011-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6082 * tests/eagain-common.h: inlined function to avoid gcc warnings
6084 2011-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6086 * lib/nettle/Makefile.am, lib/nettle/ecc.h, lib/nettle/ecc_free.c,
6087 lib/nettle/ecc_make_key.c, lib/nettle/ecc_map.c,
6088 lib/nettle/ecc_mulmod.c, lib/nettle/ecc_points.c,
6089 lib/nettle/ecc_projective_add_point.c,
6090 lib/nettle/ecc_projective_dbl_point.c,
6091 lib/nettle/ecc_projective_dbl_point_3.c,
6092 lib/nettle/ecc_shared_secret.c, lib/nettle/ecc_sign_hash.c,
6093 lib/nettle/ecc_test.c, lib/nettle/ecc_verify_hash.c,
6094 lib/nettle/ltc_ecc_map.c, lib/nettle/ltc_ecc_mulmod.c,
6095 lib/nettle/ltc_ecc_points.c,
6096 lib/nettle/ltc_ecc_projective_add_point.c,
6097 lib/nettle/ltc_ecc_projective_dbl_point.c: Added previous code that
6098 was fixed for y^2 = x^3 - 3x + b, because all secg curves have a
6099 fixed to -3. Simplified file naming scheme.
6101 2011-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6103 * lib/gnutls_algorithms.c, lib/gnutls_int.h: Added SECP224R1.
6105 2011-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6107 * src/Makefile.am, src/benchmark-cipher.c, src/benchmark-tls.c,
6108 src/benchmark.c, src/benchmark.h: updates to benchmarks.
6110 2011-05-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6112 * lib/gnutls_algorithms.c, lib/gnutls_int.h, lib/gnutls_priority.c,
6113 lib/nettle/ecc_test.c: Added curve SECP512R1.
6115 2011-05-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6117 * src/benchmark-cipher.c, src/benchmark-common.c, src/benchmark.c:
6118 benchmark ECDH and DH.
6120 2011-05-20 Simon Josefsson <simon@josefsson.org>
6122 * build-aux/config.rpath, gl/Makefile.am, gl/alignof.h,
6123 gl/glthread/lock.c, gl/glthread/lock.h, gl/glthread/threadlib.c,
6124 gl/hmac-md5.c, gl/intprops.h, gl/m4/gnulib-cache.m4,
6125 gl/m4/gnulib-comp.m4, gl/m4/strerror.m4, gl/m4/strerror_r.m4,
6126 gl/m4/thread.m4, gl/m4/valgrind-tests.m4, gl/m4/yield.m4,
6127 gl/memxor.c, gl/memxor.h, gl/stdint.in.h, gl/strerror-impl.h,
6128 gl/strerror.c, gl/strerror_r.c, gl/tests/Makefile.am,
6129 gl/tests/dummy.c, gl/tests/glthread/thread.c,
6130 gl/tests/glthread/thread.h, gl/tests/glthread/yield.h,
6131 gl/tests/test-intprops.c, gl/tests/test-lock.c,
6132 gl/tests/test-strerror.c, gl/tests/test-strerror_r.c: Update gnulib
6135 2011-05-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6137 * lib/auth/ecdh_common.c, lib/gnutls_handshake.c, src/common.c:
6138 client side ECC fixes.
6140 2011-05-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6142 * src/cli.c: corrected debugging.
6144 2011-05-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6146 * lib/auth/ecdh_common.c, lib/gnutls_algorithms.c,
6147 lib/gnutls_algorithms.h, lib/gnutls_global.c,
6148 lib/includes/gnutls/crypto.h, lib/nettle/ecc.h,
6149 lib/nettle/ecc_free.c, lib/nettle/ecc_make_key.c,
6150 lib/nettle/ecc_shared_secret.c, lib/nettle/ecc_sign_hash.c,
6151 lib/nettle/ecc_test.c, lib/nettle/ecc_verify_hash.c,
6152 lib/nettle/ltc_ecc_map.c, lib/nettle/ltc_ecc_mulmod.c,
6153 lib/nettle/ltc_ecc_points.c,
6154 lib/nettle/ltc_ecc_projective_add_point.c,
6155 lib/nettle/ltc_ecc_projective_dbl_point.c, lib/nettle/pk.c,
6156 lib/x509/x509_int.h: Account 'A' in calculations for point doubling.
6158 2011-05-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6160 * gl/Makefile.am, gl/alignof.h, gl/close-hook.c, gl/close-hook.h,
6161 gl/error.c, gl/error.h, gl/fd-hook.c, gl/fd-hook.h,
6162 gl/glthread/lock.c, gl/glthread/lock.h, gl/glthread/threadlib.c,
6163 gl/intprops.h, gl/m4/error.m4, gl/m4/fcntl_h.m4, gl/m4/fseeko.m4,
6164 gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/inttypes.m4,
6165 gl/m4/manywarnings.m4, gl/m4/memchr.m4, gl/m4/netdb_h.m4,
6166 gl/m4/stdint.m4, gl/m4/stdio_h.m4, gl/m4/strerror.m4,
6167 gl/m4/strerror_r.m4, gl/m4/string_h.m4, gl/m4/sys_uio_h.m4,
6168 gl/m4/thread.m4, gl/m4/unistd_h.m4, gl/m4/warnings.m4,
6169 gl/m4/wchar_h.m4, gl/m4/yield.m4, gl/malloc.c, gl/netdb.in.h,
6170 gl/realloc.c, gl/sockets.c, gl/stdint.in.h, gl/stdio.in.h,
6171 gl/stdlib.in.h, gl/strerror-impl.h, gl/strerror.c, gl/strerror_r.c,
6172 gl/string.in.h, gl/sys_socket.in.h, gl/sys_uio.in.h,
6173 gl/tests/Makefile.am, gl/tests/dummy.c, gl/tests/fcntl.in.h,
6174 gl/tests/glthread/thread.c, gl/tests/glthread/thread.h,
6175 gl/tests/glthread/yield.h, gl/tests/intprops.h,
6176 gl/tests/inttypes.in.h, gl/tests/test-fcntl-h.c,
6177 gl/tests/test-intprops.c, gl/tests/test-inttypes.c,
6178 gl/tests/test-lock.c, gl/tests/test-strerror.c,
6179 gl/tests/test-strerror_r.c, gl/tests/test-sys_socket.c,
6180 gl/tests/test-sys_uio.c, gl/unistd.in.h, gl/verify.h, gl/wchar.in.h:
6181 Added new gnulib and error.h.
6183 2011-05-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6185 * lib/gnutls_global.c: removed debugging.
6187 2011-05-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6189 * cfg.mk: added error.h
6191 2011-05-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6193 * lib/Makefile.am, lib/auth/Makefile.am, lib/auth/anon.h,
6194 lib/auth/anon_ecdh.c, lib/auth/ecdh_common.c,
6195 lib/auth/ecdh_common.h, lib/ext/Makefile.am, lib/ext/ecc.c,
6196 lib/ext/ecc.h, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h,
6197 lib/gnutls_dh.c, lib/gnutls_ecc.c, lib/gnutls_ecc.h,
6198 lib/gnutls_errors.c, lib/gnutls_extensions.c, lib/gnutls_global.c,
6199 lib/gnutls_int.h, lib/gnutls_pk.c, lib/gnutls_pk.h,
6200 lib/gnutls_priority.c, lib/gnutls_state.c, lib/gnutls_state.h,
6201 lib/includes/gnutls/crypto.h, lib/includes/gnutls/gnutls.h.in,
6202 lib/nettle/Makefile.am, lib/nettle/ecc.h, lib/nettle/ecc_free.c,
6203 lib/nettle/ecc_make_key.c, lib/nettle/ecc_shared_secret.c,
6204 lib/nettle/ecc_sign_hash.c, lib/nettle/ecc_test.c,
6205 lib/nettle/ecc_verify_hash.c, lib/nettle/gnettle.h,
6206 lib/nettle/ltc_ecc_map.c, lib/nettle/ltc_ecc_mulmod.c,
6207 lib/nettle/ltc_ecc_points.c,
6208 lib/nettle/ltc_ecc_projective_add_point.c,
6209 lib/nettle/ltc_ecc_projective_dbl_point.c,
6210 lib/nettle/mp_unsigned_bin.c, lib/nettle/mpi.c, lib/nettle/multi.c,
6211 lib/nettle/pk.c, lib/nettle/rnd.c, lib/nettle/rnd.h,
6212 lib/x509/x509_int.h: Initial ecc support. Adds support for anonymous
6215 2011-05-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6217 * src/benchmark-common.c, src/benchmark.h: more win32 fixes.
6219 2011-05-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6221 * src/benchmark-common.c: corrections in win32 version.
6223 2011-05-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6225 * lib/ext/signature.c, lib/gnutls_extensions.c: Some debugging moved
6228 2011-05-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6230 * src/Makefile.am, src/benchmark-common.c, src/benchmark-tls.c,
6231 src/benchmark.c, src/benchmark.h, tests/eagain-common.h: Added
6232 benchmark utility that tests the encryption time in TLS packets.
6234 2011-05-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6236 * src/p11common.c: corrected message reporting.
6238 2011-05-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6240 * src/p11common.c: Corrected PIN caching.
6242 2011-05-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6244 * lib/gnutls_record.c: assign value
6246 2011-05-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6248 * lib/nettle/mpi.c: reduce the repetitions for rabin-miller to a
6251 2011-05-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6253 * doc/cha-intro-tls.texi: discuss missing algorithms.
6255 2011-05-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6259 2011-05-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6261 * lib/gnutls_str.c, lib/gnutls_str.h, lib/pkcs11.c: Correctly import
6262 and export pkcs11-urls with ID field set.
6264 2011-05-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6266 * lib/nettle/egd.c, lib/opencdk/literal.c, lib/opencdk/misc.c,
6267 lib/opencdk/read-packet.c, lib/pkcs11.c, lib/x509/common.c,
6268 lib/x509_b64.c, lib/x509_b64.h: eliminated last instances of
6269 strcpy() and strcat() to keep pendantics happy.
6271 2011-05-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6273 * doc/cha-intro-tls.texi: update on compatibility issues text.
6275 2011-05-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6277 * lib/pkcs11.c: doc update in gnutls_pkcs11_init()
6279 2011-05-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6281 * doc/cha-preface.texi: removed references that produced nothing in
6284 2011-05-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6286 * doc/cha-intro-tls.texi: Added missing nodes.
6288 2011-05-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6290 * doc/cha-intro-tls.texi: Added discussion on compatibility issues.
6292 2011-05-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6294 * libextra/gnutls_openssl.c: undef X509_NAME before including
6297 2011-05-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6299 * NEWS, doc/cha-gtls-app.texi, lib/accelerated/intel/aes-x86.c,
6300 lib/auth/rsa.c, lib/auth/rsa_export.c, lib/auth/srp.c,
6301 lib/gnutls_buffers.c, lib/gnutls_dtls.c, lib/gnutls_errors.c,
6302 lib/gnutls_errors.h, lib/gnutls_global.c, lib/gnutls_global.h,
6303 lib/gnutls_handshake.c, lib/gnutls_record.c,
6304 lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, src/cli.c,
6305 src/serv.c: Added gnutls_global_set_audit_log_function() that allows
6306 associating TLS session with several important issues.
6308 2011-05-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6310 * NEWS, lib/x509/crq.c: updates
6312 2011-05-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6314 * NEWS, lib/includes/gnutls/x509.h, lib/libgnutls.map,
6315 lib/x509/crq.c, lib/x509/x509_write.c, tests/crq_key_id.c: Added
6316 gnutls_x509_crq_verify().
6318 2011-05-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6320 * doc/manpages/certtool.1, src/Makefile.am, src/certtool-common.c,
6321 src/certtool-common.h, src/certtool.c, src/common.c,
6322 src/p11common.c, src/p11common.h, src/pkcs11.c: certtool can now
6323 load private keys and public keys from PKCS #11 tokens (via URLs).
6325 2011-05-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6327 * lib/pkcs11_privkey.c: gnutls_pkcs11_privkey_import_url() will
6328 correctly set algorithm of private key.
6330 2011-05-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6332 * src/Makefile.am, src/certtool.c, src/p11tool.c: No libgnutls-extra
6333 is required for certtool or p11tool.
6335 2011-05-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6337 * tests/rng-fork.c: Do not use /tmp for temporary file. Just use the
6338 local (test) directory.
6340 2011-05-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6342 * tests/hostname-check.c: Added a check to verify that we don't try
6343 forever trying to verify too many wildcards.
6345 2011-05-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6347 * THANKS, lib/gnutls_str.c, lib/gnutls_str.h, lib/openpgp/pgp.c,
6348 lib/x509/rfc2818_hostname.c: _gnutls_hostname_compare() was
6349 incredibly slow when over ten wildcards were present. Set a limit on
6350 6 wildcards to avoid any denial of service attack. Reported by Kalle
6353 2011-05-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6355 * lib/gnutls_str.c, lib/opencdk/misc.c: Use c_toupper to avoid
6356 converting characters non in the english ASCII set. Reported by
6357 Kalle Olavi Niemitalo.
6359 2011-05-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6361 * lib/x509/verify-high.c: use > 0 instead of == 1.
6363 2011-05-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6365 * .gitignore, NEWS, lib/gnutls_cert.c,
6366 lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/x509.h,
6367 lib/libgnutls.map, lib/x509/verify-high.c, tests/Makefile.am,
6368 tests/x509cert.c: Added gnutls_certificate_get_issuer() to allow
6369 getting the issuer a certificate from the certificate credentials
6372 2011-04-30 Andreas Metzler <ametzler@downhill.at.eu.org>
6374 * doc/manpages/p11tool.1: escape dashes in manpage Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
6376 2011-05-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6378 * .gitignore, gl/m4/.gitignore, gl/m4/byteswap.m4,
6379 gl/m4/codeset.m4, gl/m4/fcntl-o.m4, gl/m4/fcntl_h.m4,
6380 gl/m4/func.m4, gl/m4/gettext.m4, gl/m4/glibc2.m4, gl/m4/glibc21.m4,
6381 gl/m4/hmac-md5.m4, gl/m4/iconv.m4, gl/m4/intdiv0.m4, gl/m4/intl.m4,
6382 gl/m4/intldir.m4, gl/m4/intlmacosx.m4, gl/m4/intmax.m4,
6383 gl/m4/inttypes-pri.m4, gl/m4/lcmessage.m4, gl/m4/ld-output-def.m4,
6384 gl/m4/ld-version-script.m4, gl/m4/lock.m4, gl/m4/md5.m4,
6385 gl/m4/memmem.m4, gl/m4/memxor.m4, gl/m4/nls.m4, gl/m4/po.m4,
6386 gl/m4/printf-posix.m4, gl/m4/progtest.m4, gl/m4/strcase.m4,
6387 gl/m4/strdup.m4, gl/m4/strings_h.m4, gl/m4/strverscmp.m4,
6388 gl/m4/threadlib.m4, gl/m4/time_r.m4, gl/m4/uintmax_t.m4,
6389 gl/m4/valgrind-tests.m4, gl/m4/vasprintf.m4, gl/m4/visibility.m4,
6390 gl/m4/vsnprintf.m4, gl/tests/.gitignore, gl/tests/intprops.h,
6391 gl/tests/test-byteswap.c, gl/tests/test-func.c,
6392 gl/tests/test-hmac-md5.c, gl/tests/test-md5.c,
6393 gl/tests/test-strings.c, gl/tests/test-strverscmp.c,
6394 gl/tests/test-u64.c, gl/tests/test-vasprintf.c,
6395 gl/tests/test-vsnprintf.c: Added missing m4 gl files.
6397 2011-05-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6399 * NEWS: documented previous updates.
6401 2011-04-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6403 * tests/suite/testcompat-main: Check for openssl 1.0.x to test DTLS.
6405 2011-04-28 Ludovic Courtès <ludo@gnu.org>
6407 * guile/modules/Makefile.am, guile/modules/gnutls/build/tests.scm,
6408 guile/tests/anonymous-auth.scm, guile/tests/errors.scm,
6409 guile/tests/openpgp-auth.scm, guile/tests/openpgp-keyring.scm,
6410 guile/tests/openpgp-keys.scm, guile/tests/pkcs-import-export.scm,
6411 guile/tests/session-record-port.scm, guile/tests/srp-base64.scm,
6412 guile/tests/x509-auth.scm, guile/tests/x509-certificates.scm: guile:
6413 Fix tests to match the `exit' behavior introduced in Guile 2.0.1. This fix makes tests behave correctly wrt. to the Guile bug fix at
6415 <http://git.sv.gnu.org/cgit/guile.git/commit/?id=e309f3bf9ee910c4772353ca3ff95f6f4ef466b5>.
6417 2011-04-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6419 * lib/gnutls.pc.in: removed pakchois dependency
6421 2011-04-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6423 * NEWS, configure.ac: updated for release
6425 2011-04-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6427 * tests/x509dn.c: added missing header.
6429 2011-04-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6431 * lib/accelerated/intel/Makefile.am: pass tag=CC to libtool. It
6432 seems automake cannot really work with assembler sources.
6434 2011-04-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6436 * lib/gnutls_pcert.c, lib/openpgp/gnutls_openpgp.c: documentation
6439 2011-04-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6441 * cfg.mk: start counting from 2009 for ChangeLog.
6443 2011-04-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6445 * tests/hostname-check.c: Removed incorrect test on IPAddresses (was
6446 relying on IPaddresses encoded as text)
6448 2011-04-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6450 * lib/x509/rfc2818_hostname.c: gnutls_x509_crt_check_hostname() will
6451 never compare against IPaddress. (previous comparison was flawed)
6453 2011-04-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6455 * doc/examples/ex-cert-select.c, lib/auth/cert.c, lib/auth/cert.h,
6456 lib/gnutls_cert.c, lib/includes/gnutls/abstract.h,
6457 lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, src/certtool.c,
6458 src/cli.c, tests/x509dn.c: Added
6459 gnutls_certificate_set_retrieve_function2() to replace
6460 gnutls_certificate_set_retrieve_function(). The new one is a
6461 efficient for busy servers because it eliminates the need for the
6462 server to encode the certificate to DER format.
6464 2011-04-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6466 * lib/gnutls_alert.c, lib/gnutls_errors.c,
6467 lib/includes/gnutls/gnutls.h.in: Added GNUTLS_E_USER_ERROR
6469 2011-04-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6471 * lib/auth/cert.c, lib/ext/signature.c, lib/ext/signature.h,
6472 lib/gnutls_pcert.c, lib/includes/gnutls/abstract.h,
6473 lib/libgnutls.map: Eliminated the need for sign_algo in
6474 gnutls_pcert_st. This means that we don't follow RFC5246 by letter,
6475 but there wasn't any other implementation using the sign_algorithm
6476 part of the certificate selection, and this helps reduce complexity.
6478 2011-04-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6480 * src/cfg/Makefile.am, src/cfg/README: Added readme for libcfg.
6482 2011-04-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6484 * configure.ac: No need to check for -maes and -mpclmul with the
6485 current AES-NI code.
6487 2011-04-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6489 * .gitignore: updated
6491 2011-04-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6493 * lib/Makefile.am, lib/abstract_int.h, lib/auth/cert.c,
6494 lib/auth/cert.h, lib/auth/dhe.c, lib/auth/rsa.c,
6495 lib/auth/rsa_export.c, lib/auth/srp_rsa.c, lib/ext/signature.c,
6496 lib/ext/signature.h, lib/gnutls_algorithms.c, lib/gnutls_cert.c,
6497 lib/gnutls_cert.h, lib/gnutls_handshake.c, lib/gnutls_int.h,
6498 lib/gnutls_mpi.c, lib/gnutls_pcert.c, lib/gnutls_privkey.c,
6499 lib/gnutls_pubkey.c, lib/gnutls_sig.c, lib/gnutls_sig.h,
6500 lib/gnutls_state.c, lib/gnutls_ui.c, lib/gnutls_x509.c,
6501 lib/gnutls_x509.h, lib/includes/gnutls/abstract.h,
6502 lib/opencdk/pubkey.c, lib/openpgp/gnutls_openpgp.c,
6503 lib/openpgp/gnutls_openpgp.h, lib/openpgp/openpgp_int.h,
6504 lib/openpgp/pgp.c, lib/openpgp/pgpverify.c, lib/openpgp/privkey.c,
6505 lib/pkcs11_int.h, lib/x509/common.h, lib/x509/pkcs12_encr.c,
6506 lib/x509/sign.c, lib/x509/verify-high.c, lib/x509/verify.c,
6507 lib/x509/x509.c, lib/x509/x509_int.h: Combined external abstract API
6508 with internal usage of gnutls_cert. This results to a
6509 gnutls_pcert_st struct exported in abstract.h. This change will allow a certificate retrieval callback that does
6510 not require gnutls to decode or encode the provided certificate.
6512 2011-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6514 * NEWS, lib/gnutls_priority.c: Restored HMAC-MD5 for compatibility.
6515 Although considered weak, several sites require it for connection.
6516 It is enabled for "NORMAL" and "PERFORMANCE" priority strings.
6518 2011-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6520 * lib/accelerated/intel/aes-x86.c: Try to detect AES-NI on Intel and
6523 2011-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6525 * NEWS, configure.ac, lib/accelerated/intel/Makefile.am,
6526 lib/accelerated/intel/README, lib/accelerated/intel/aes-x86.c,
6527 lib/accelerated/intel/asm/appro-aes-x86-64.s,
6528 lib/accelerated/intel/asm/appro-aes-x86.s,
6529 lib/accelerated/intel/asm/x64_iaesx64.s,
6530 lib/accelerated/intel/asm/x86_iaesx86.s,
6531 lib/accelerated/intel/iaes_asm_interface.h,
6532 lib/accelerated/intel/iaesni.h, lib/accelerated/intel/license.txt:
6533 Added Andy Polyakov's version of AES-NI optimizations.
6535 2011-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6537 * .gitignore: more files to ignore
6539 2011-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6541 * src/tests.c: COMP-ZLIB -> COMP-DEFLATE
6543 2011-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6545 * lib/Makefile.am, m4/hooks.m4: Link with pthreads.
6547 2011-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6549 * doc/Makefile.am: read API from new directories as well.
6551 2011-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6553 * lib/accelerated/Makefile.am: corrected filename
6555 2011-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6557 * lib/ext/session_ticket.c: removed conditional compilation
6559 2011-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6561 * lib/ext/session_ticket.h: removed conditional compilation.
6563 2011-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6565 * lib/accelerated/cryptodev.c: use correct header.
6567 2011-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6569 * lib/README: documented directories.
6571 2011-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6573 * lib/Makefile.am, lib/accelerated/Makefile.am,
6574 lib/accelerated/cryptodev.c, lib/accelerated/cryptodev.h,
6575 lib/cryptodev.c, lib/gnutls_cryptodev.h, lib/gnutls_global.c: Moved
6576 cryptodev to accelerated/
6578 2011-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6580 * lib/gnutls_extensions.c, lib/gnutls_handshake.c: Session tickets
6581 are included unconditionally.
6583 2011-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6585 * configure.ac, lib/Makefile.am, lib/auth/Makefile.am,
6586 lib/auth/anon.c, lib/auth/anon.h, lib/auth/cert.c, lib/auth/cert.h,
6587 lib/auth/dh_common.c, lib/auth/dh_common.h, lib/auth/dhe.c,
6588 lib/auth/dhe_psk.c, lib/auth/psk.c, lib/auth/psk.h,
6589 lib/auth/psk_passwd.c, lib/auth/psk_passwd.h, lib/auth/rsa.c,
6590 lib/auth/rsa_export.c, lib/auth/srp.c, lib/auth/srp.h,
6591 lib/auth/srp_passwd.c, lib/auth/srp_passwd.h, lib/auth/srp_rsa.c,
6592 lib/auth/srp_sb64.c, lib/auth_anon.c, lib/auth_anon.h,
6593 lib/auth_cert.c, lib/auth_cert.h, lib/auth_dh_common.c,
6594 lib/auth_dh_common.h, lib/auth_dhe.c, lib/auth_dhe_psk.c,
6595 lib/auth_psk.c, lib/auth_psk.h, lib/auth_psk_passwd.c,
6596 lib/auth_psk_passwd.h, lib/auth_rsa.c, lib/auth_rsa_export.c,
6597 lib/auth_srp.c, lib/auth_srp.h, lib/auth_srp_passwd.c,
6598 lib/auth_srp_passwd.h, lib/auth_srp_rsa.c, lib/auth_srp_sb64.c,
6599 lib/ext/Makefile.am, lib/ext/cert_type.c, lib/ext/cert_type.h,
6600 lib/ext/max_record.c, lib/ext/max_record.h,
6601 lib/ext/safe_renegotiation.c, lib/ext/safe_renegotiation.h,
6602 lib/ext/server_name.c, lib/ext/server_name.h,
6603 lib/ext/session_ticket.c, lib/ext/session_ticket.h,
6604 lib/ext/signature.c, lib/ext/signature.h, lib/ext/srp.c,
6605 lib/ext/srp.h, lib/ext_cert_type.c, lib/ext_cert_type.h,
6606 lib/ext_max_record.c, lib/ext_max_record.h,
6607 lib/ext_safe_renegotiation.c, lib/ext_safe_renegotiation.h,
6608 lib/ext_server_name.c, lib/ext_server_name.h,
6609 lib/ext_session_ticket.c, lib/ext_session_ticket.h,
6610 lib/ext_signature.c, lib/ext_signature.h, lib/ext_srp.c,
6611 lib/ext_srp.h, lib/gnutls_anon_cred.c, lib/gnutls_auth.c,
6612 lib/gnutls_cert.c, lib/gnutls_extensions.c, lib/gnutls_handshake.c,
6613 lib/gnutls_psk.c, lib/gnutls_record.c, lib/gnutls_session_pack.c,
6614 lib/gnutls_sig.c, lib/gnutls_srp.c, lib/gnutls_state.c,
6615 lib/gnutls_ui.c, lib/gnutls_x509.c, lib/openpgp/gnutls_openpgp.h,
6616 m4/hooks.m4: The auth_ and ext_ files were moved to respective
6619 2011-04-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6621 * doc/cha-intro-tls.texi: Reorganized sections in documentation.
6623 2011-04-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6625 * doc/examples/ex-cxx.cpp: removed unneeded comment.
6627 2011-04-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6629 * tests/cve-2009-1416.c, tests/pkcs12_s2k_pem.c: Added missing
6632 2011-04-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6634 * tests/suite/Makefile.am, tests/suite/chain, tests/suite/testbig,
6635 tests/suite/testbig-main, tests/suite/testcompat,
6636 tests/suite/testcompat-main, tests/suite/x509paths/.gitignore,
6637 tests/suite/x509paths/README, tests/x509paths/README,
6638 tests/x509paths/chain: x509paths tests moved to suite/.
6640 2011-04-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6642 * tests/certs/cert-rsa-2432.pem, tests/certs/rsa-2432.pem,
6643 tests/scripts/common.sh, tests/suite/Makefile.am,
6644 tests/suite/testbig, tests/suite/testbig-main: Added
6645 interoperability tests with openssl.
6647 2011-04-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6649 * lib/gnutls_buffers.c: Corrected SSLv2 header parsing.
6651 2011-04-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6653 * doc/credentials/x509-server-dsa.pem,
6654 doc/credentials/x509-server-key-dsa.pem: corrected illegal DSA key.
6656 2011-04-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6658 * tests/suite/Makefile.am, tests/suite/testsrn: Enabled the extra
6659 safe renegotiation tests.
6661 2011-04-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6663 * m4/hooks.m4: removed opaque PRF from m4.
6665 2011-04-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6667 * lib/gnutls_buffers.c: removed text about select().
6669 2011-04-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6671 * configure.ac, lib/Makefile.am: check for libdl that pakchois
6674 2011-04-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6676 * lib/Makefile.am, lib/pakchois/README: Added readme about pakchois
6677 and removed checks for pakchois in Makefile.am.
6679 2011-04-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6681 * configure.ac, m4/hooks.m4: Reorganization in configure file.
6682 Pakchois is not longer checked for being present. The included
6683 version is always used.
6685 2011-04-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6687 * gl/.gitignore, gl/asprintf.c, gl/byteswap.in.h, gl/hmac-md5.c,
6688 gl/hmac.h, gl/md5.c, gl/md5.h, gl/memmem.c, gl/memxor.c,
6689 gl/memxor.h, gl/str-two-way.h, gl/strcasecmp.c, gl/strdup.c,
6690 gl/strings.in.h, gl/strncasecmp.c, gl/strverscmp.c, gl/time_r.c,
6691 gl/u64.h, gl/unistd.h, gl/vasprintf.c, gl/vsnprintf.c,
6692 gl/warn-on-use.h, gl/wchar.h: Added missing gnulib files
6694 2011-04-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6696 * lib/crypto-api.c: Added missing const.
6698 2011-04-12 Ludovic Courtès <ludo@gnu.org>
6700 * NEWS, src/certtool-common.c, src/certtool.c, src/p11tool.c,
6701 tests/crq_key_id.c, tests/cve-2009-1416.c, tests/pkcs12_s2k_pem.c:
6702 Don't include <gcrypt.h> when it's not needed.
6704 2011-04-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6706 * doc/cha-internals.texi: fixed and updates in documentation
6708 2011-04-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6710 * doc/gnutls-crypto-layers.eps: Updated crypto layers documentation.
6712 2011-04-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6714 * NEWS, lib/accelerated/intel/Makefile.am,
6715 lib/accelerated/intel/aes-x86.c,
6716 lib/accelerated/intel/asm/x64_do_rdtsc.s,
6717 lib/accelerated/intel/asm/x86_do_rdtsc.s, tests/cipher-test.c:
6718 Updates in the AES-NI accelerator.
6720 2011-04-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6722 * lib/crypto-api.c, lib/includes/gnutls/crypto.h, lib/libgnutls.map:
6723 Added gnutls_cipher_set_iv().
6725 2011-04-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6727 * tests/Makefile.am, tests/cipher-test.c: Added test vectors for
6730 2011-04-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6732 * lib/accelerated/intel/aes-x86.c, lib/crypto.c,
6733 lib/includes/gnutls/crypto.h: Increased priority of CPU assisted
6736 2011-04-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6738 * src/cli.c: Do not rely on lowat being set.
6740 2011-04-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6742 * lib/accelerated/Makefile.am, lib/accelerated/intel/Makefile.am,
6743 lib/accelerated/intel/README: Added README explaining the usage of
6746 2011-04-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6748 * lib/gnutls_buffers.c: Corrected parsing error in TLS, when many
6749 handshake messages were packed in a single record message.
6751 2011-04-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6753 * .gitignore, configure.ac, lib/accelerated/Makefile.am,
6754 lib/accelerated/accelerated.c, lib/accelerated/aes-x86.c,
6755 lib/accelerated/aes-x86.h, lib/accelerated/intel/Makefile.am,
6756 lib/accelerated/intel/aes-x86.c, lib/accelerated/intel/aes-x86.h,
6757 lib/accelerated/intel/asm/x64_do_rdtsc.s,
6758 lib/accelerated/intel/asm/x64_iaesx64.s,
6759 lib/accelerated/intel/asm/x86_do_rdtsc.s,
6760 lib/accelerated/intel/asm/x86_iaesx86.s,
6761 lib/accelerated/intel/iaes_asm_interface.h,
6762 lib/accelerated/intel/iaesni.h, lib/accelerated/intel/license.txt,
6763 m4/gcc.m4: fixes in acceleration detection. Added Intel's library
6764 code for AES-NI acceleration.
6766 2011-04-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6768 * guile/modules/gnutls/build/enums.scm, lib/libgnutls.map,
6769 libextra/Makefile.am: Purged all references of LZO.
6771 2011-04-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6773 * configure.ac: removed duplicate test
6775 2011-04-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6777 * doc/examples/ex-cxx.cpp, gl/time.in.h: No need to under restrict
6778 for C++. Only use config.h.
6780 2011-04-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6782 * NEWS, lib/includes/gnutls/gnutls.h.in, lib/system_override.c:
6783 gnutls_transport_set_global_errno() is no more.
6785 2011-04-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6787 * tests/eagain-common.h, tests/safe-renegotiation/Makefile.am,
6788 tests/safe-renegotiation/srn0.c, tests/safe-renegotiation/srn1.c,
6789 tests/safe-renegotiation/srn2.c, tests/safe-renegotiation/srn3.c,
6790 tests/safe-renegotiation/srn4.c, tests/safe-renegotiation/srn5.c:
6791 Combined the safe renegotiation tests with the again-common lib.
6793 2011-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6795 * NEWS, configure.ac, doc/cha-intro-tls.texi, doc/cha-preface.texi,
6796 doc/cha-programs.texi, lib/gnutls_compress.c, lib/gnutls_errors.c,
6797 lib/gnutls_state.c, lib/includes/gnutls/gnutls.h.in,
6798 lib/libgnutls.map, libextra/gnutls_extra.c, m4/hooks.m4: Support for
6801 2011-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6803 * NEWS, configure.ac: bumped version
6805 2011-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6807 * .gitignore, gl/time.h, gl/time.in.h: updated time.h.in
6809 2011-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6811 * lib/gnutls_algorithms.c, lib/gnutls_dtls.c, lib/gnutls_mem.c,
6812 lib/gnutls_psk.c, lib/gnutls_record.c,
6813 lib/includes/gnutls/gnutls.h.in, lib/pkcs11.c,
6814 lib/pkcs11_privkey.c, lib/x509/verify-high.c, lib/x509/verify.c:
6815 Corrected documentation of several API functions.
6817 2011-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6819 * doc/cha-gtls-app.texi, doc/cha-library.texi: documentation
6822 2011-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6824 * doc/scripts/gdoc, doc/scripts/sort2.pl: remove perl warnings from
6827 2011-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6829 * configure.ac, lib/Makefile.am, lib/accelerated/Makefile.am,
6830 lib/accelerated/accelerated.c, lib/accelerated/accelerated.h,
6831 lib/accelerated/aes-x86.c, lib/accelerated/aes-x86.h,
6832 lib/accelerated/x86.h, lib/gnutls_global.c, m4/gcc.m4: Added support
6833 for x86 intel AES instruction acceleration if detected.
6835 2011-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6837 * gl/time.h, gl/unistd.h, gl/warn-on-use.h, gl/wchar.h: Added gl/
6840 2011-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6842 * cfg.mk: corrected po directory and build-aux paths.
6844 2011-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6846 * doc/examples/Makefile.am: include gnulib files.
6848 2011-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6850 * doc/TODO: updated TODO
6852 2011-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6854 * tests/openpgp-certs/testselfsigs: Use --infile in certtool to
6855 avoid issues with streams in windows. Patch by LRN.
6857 2011-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6859 * lib/opencdk/armor.c: Changes armor.c to be able to handle both LF
6860 and CRLF inputs (output is still either LF-only or CRLF-only
6861 depending on the platform). Patch by LRN. Optimizations in the usage of strlen().
6863 2011-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6865 * src/cli.c, src/psk.c, src/serv.c, src/srptool.c, src/tests.c:
6866 Define variables within the intended scope (not windows). Based on
6869 2011-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6871 * doc/examples/ex-cert-select-pkcs11.c, src/common.c, src/pkcs11.c:
6872 Use getpass.h (from gnulib). Patch by LRN.
6874 2011-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6876 * lib/pakchois/dlopen.c: Return correct value for dlclose() in
6877 windows. Patch by LRN.
6879 2011-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6881 * tests/openpgp-auth.c: Disable openpgp-auth run in windows due to
6882 lack of socketpair(). Patch by LRN.
6884 2011-04-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6886 * Makefile.am: gl before lib or libextra
6888 2011-04-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6890 * ChangeLog: generated
6892 2011-04-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6896 2011-04-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6898 * .gitignore, doc/cha-gtls-app.texi, doc/cha-intro-tls.texi,
6899 doc/examples/Makefile.am, doc/examples/ex-client-udp.c,
6900 doc/examples/udp.c, lib/gnutls_state.c: Added documentation for
6903 2011-04-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6907 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6909 * tests/chainverify.c: disable test in windows.
6911 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6913 * tests/mini-x509-rehandshake.c, tests/openpgp-auth.c,
6914 tests/openpgp-auth2.c: corrected leaks in tests.
6916 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6918 * lib/auth_cert.c, lib/gnutls_pk.c: corrected memory leak on RSA
6921 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6923 * lib/x509/common.c: more leaks fixed in common.c
6925 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6927 * lib/gnutls_pubkey.c: Corrected leaks in gnutls_pubkey_t
6930 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6932 * lib/x509/verify-high.c: fix in trusted_list certificate
6935 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6937 * lib/gnutls_privkey.c: correction in deinitialization of privkey.
6939 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6941 * tests/mini-x509-rehandshake.c, tests/mini-x509.c: combined more
6942 tests with eagain-common.h.
6944 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6946 * lib/auth_dh_common.c, lib/gnutls_privkey.c, lib/gnutls_x509.c,
6947 lib/nettle/pk.c, lib/pakchois/pakchois.c, lib/pakchois/pakchois.h,
6948 lib/pkcs11.c, lib/x509/verify-high.c, tests/mini-x509.c: Corrected
6951 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6953 * build-aux/arg-nonnull.h, build-aux/c++defs.h,
6954 build-aux/config.rpath, build-aux/warn-on-use.h, cfg.mk,
6955 gl/Makefile.am, gl/m4/.gitignore, gl/m4/gnulib-cache.m4,
6956 gl/m4/gnulib-comp.m4: added valgrind from gnulib.
6958 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6960 * tests/dsa/testdsa, tests/openpgp-certs/testcerts: Do not run the
6961 test scripts in win32 environment.
6963 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6965 * cfg.mk: use the system wide gnulib-tool.
6967 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6969 * .gitignore: updated
6971 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6975 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6977 * tests/suite/ecore/src/lib/ecore_exe.c: include priority headers
6980 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6982 * configure.ac, tests/Makefile.am, tests/suite/Makefile.am,
6983 tests/suite/Makefile.in: Better way of not including the tests/suite
6984 directory. Based on discussion with LRN and Vincent Torri.
6986 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6988 * .gitignore, Makefile.am, cfg.mk, configure.ac,
6989 doc/examples/Makefile.am, doc/gendocs_template, gl/.gitignore,
6990 gl/Makefile.am, gl/accept.c, gl/alignof.h, gl/alloca.c,
6991 gl/alloca.in.h, gl/arpa_inet.in.h, gl/asnprintf.c, gl/bind.c,
6992 gl/c-ctype.c, gl/c-ctype.h, gl/close-hook.c, gl/close-hook.h,
6993 gl/close.c, gl/connect.c, gl/errno.in.h, gl/error.c, gl/error.h,
6994 gl/fclose.c, gl/float+.h, gl/float.in.h, gl/fseeko.c, gl/ftello.c,
6995 gl/gai_strerror.c, gl/getaddrinfo.c, gl/getdelim.c, gl/getline.c,
6996 gl/getpass.c, gl/getpass.h, gl/gettext.h, gl/gettime.c,
6997 gl/gettimeofday.c, gl/inet_ntop.c, gl/inet_pton.c, gl/intprops.h,
6998 gl/listen.c, gl/lseek.c, gl/m4/.gitignore, gl/m4/00gnulib.m4,
6999 gl/m4/alloca.m4, gl/m4/arpa_inet_h.m4, gl/m4/asm-underscore.m4,
7000 gl/m4/autobuild.m4, gl/m4/clock_time.m4, gl/m4/close.m4,
7001 gl/m4/errno_h.m4, gl/m4/error.m4, gl/m4/extensions.m4,
7002 gl/m4/fclose.m4, gl/m4/float_h.m4, gl/m4/fseeko.m4,
7003 gl/m4/ftello.m4, gl/m4/getaddrinfo.m4, gl/m4/getdelim.m4,
7004 gl/m4/getline.m4, gl/m4/getpagesize.m4, gl/m4/getpass.m4,
7005 gl/m4/gettime.m4, gl/m4/gettimeofday.m4, gl/m4/gnulib-cache.m4,
7006 gl/m4/gnulib-common.m4, gl/m4/gnulib-comp.m4, gl/m4/gnulib-tool.m4,
7007 gl/m4/hostent.m4, gl/m4/include_next.m4, gl/m4/inet_ntop.m4,
7008 gl/m4/inet_pton.m4, gl/m4/intmax_t.m4, gl/m4/inttypes_h.m4,
7009 gl/m4/ioctl.m4, gl/m4/lib-ld.m4, gl/m4/lib-link.m4,
7010 gl/m4/lib-prefix.m4, gl/m4/longlong.m4, gl/m4/lseek.m4,
7011 gl/m4/malloc.m4, gl/m4/manywarnings.m4, gl/m4/memchr.m4,
7012 gl/m4/minmax.m4, gl/m4/mmap-anon.m4, gl/m4/multiarch.m4,
7013 gl/m4/netdb_h.m4, gl/m4/netinet_in_h.m4, gl/m4/perror.m4,
7014 gl/m4/printf.m4, gl/m4/read-file.m4, gl/m4/readline.m4,
7015 gl/m4/realloc.m4, gl/m4/select.m4, gl/m4/servent.m4,
7016 gl/m4/size_max.m4, gl/m4/snprintf.m4, gl/m4/socketlib.m4,
7017 gl/m4/sockets.m4, gl/m4/socklen.m4, gl/m4/sockpfaf.m4,
7018 gl/m4/stdarg.m4, gl/m4/stdbool.m4, gl/m4/stddef_h.m4,
7019 gl/m4/stdint.m4, gl/m4/stdint_h.m4, gl/m4/stdio_h.m4,
7020 gl/m4/stdlib_h.m4, gl/m4/strerror.m4, gl/m4/string_h.m4,
7021 gl/m4/sys_ioctl_h.m4, gl/m4/sys_select_h.m4, gl/m4/sys_socket_h.m4,
7022 gl/m4/sys_stat_h.m4, gl/m4/sys_time_h.m4, gl/m4/time_h.m4,
7023 gl/m4/timespec.m4, gl/m4/ungetc.m4, gl/m4/unistd_h.m4,
7024 gl/m4/valgrind-tests.m4, gl/m4/vasnprintf.m4, gl/m4/version-etc.m4,
7025 gl/m4/warn-on-use.m4, gl/m4/warnings.m4, gl/m4/wchar_h.m4,
7026 gl/m4/wchar_t.m4, gl/m4/wint_t.m4, gl/m4/xsize.m4, gl/malloc.c,
7027 gl/memchr.c, gl/minmax.h, gl/netdb.in.h, gl/netinet_in.in.h,
7028 gl/perror.c, gl/printf-args.c, gl/printf-args.h, gl/printf-parse.c,
7029 gl/printf-parse.h, gl/progname.c, gl/progname.h, gl/read-file.c,
7030 gl/read-file.h, gl/readline.c, gl/readline.h, gl/realloc.c,
7031 gl/recv.c, gl/select.c, gl/send.c, gl/setsockopt.c, gl/shutdown.c,
7032 gl/size_max.h, gl/snprintf.c, gl/socket.c, gl/sockets.c,
7033 gl/sockets.h, gl/stdarg.in.h, gl/stdbool.in.h, gl/stddef.in.h,
7034 gl/stdint.in.h, gl/stdio-impl.h, gl/stdio-write.c, gl/stdio.in.h,
7035 gl/stdlib.in.h, gl/strerror.c, gl/string.in.h, gl/sys_select.in.h,
7036 gl/sys_socket.in.h, gl/sys_stat.in.h, gl/sys_time.in.h,
7037 gl/tests/.gitignore, gl/tests/Makefile.am, gl/tests/binary-io.h,
7038 gl/tests/dummy.c, gl/tests/fcntl.in.h, gl/tests/getpagesize.c,
7039 gl/tests/init.sh, gl/tests/ioctl.c, gl/tests/macros.h,
7040 gl/tests/signature.h, gl/tests/sys_ioctl.in.h,
7041 gl/tests/test-alignof.c, gl/tests/test-alloca-opt.c,
7042 gl/tests/test-arpa_inet.c, gl/tests/test-binary-io.c,
7043 gl/tests/test-c-ctype.c, gl/tests/test-errno.c,
7044 gl/tests/test-fcntl-h.c, gl/tests/test-fseeko.c,
7045 gl/tests/test-ftello.c, gl/tests/test-ftello3.c,
7046 gl/tests/test-getaddrinfo.c, gl/tests/test-getdelim.c,
7047 gl/tests/test-getline.c, gl/tests/test-gettimeofday.c,
7048 gl/tests/test-inet_ntop.c, gl/tests/test-inet_pton.c,
7049 gl/tests/test-lseek.c, gl/tests/test-lseek.sh,
7050 gl/tests/test-memchr.c, gl/tests/test-netdb.c,
7051 gl/tests/test-netinet_in.c, gl/tests/test-perror.c,
7052 gl/tests/test-perror.sh, gl/tests/test-read-file.c,
7053 gl/tests/test-select-fd.c, gl/tests/test-select-in.sh,
7054 gl/tests/test-select-out.sh, gl/tests/test-select-stdin.c,
7055 gl/tests/test-select.c, gl/tests/test-snprintf.c,
7056 gl/tests/test-sockets.c, gl/tests/test-stdbool.c,
7057 gl/tests/test-stddef.c, gl/tests/test-stdint.c,
7058 gl/tests/test-stdio.c, gl/tests/test-stdlib.c,
7059 gl/tests/test-strerror.c, gl/tests/test-string.c,
7060 gl/tests/test-sys_ioctl.c, gl/tests/test-sys_select.c,
7061 gl/tests/test-sys_socket.c, gl/tests/test-sys_stat.c,
7062 gl/tests/test-sys_time.c, gl/tests/test-sys_wait.h,
7063 gl/tests/test-time.c, gl/tests/test-unistd.c,
7064 gl/tests/test-update-copyright.sh, gl/tests/test-vasnprintf.c,
7065 gl/tests/test-vc-list-files-cvs.sh,
7066 gl/tests/test-vc-list-files-git.sh, gl/tests/test-verify.c,
7067 gl/tests/test-version-etc.c, gl/tests/test-version-etc.sh,
7068 gl/tests/test-wchar.c, gl/tests/w32sock.h, gl/tests/zerosize-ptr.h,
7069 gl/time.in.h, gl/timespec.h, gl/unistd.in.h, gl/vasnprintf.c,
7070 gl/vasnprintf.h, gl/verify.h, gl/version-etc-fsf.c,
7071 gl/version-etc.c, gl/version-etc.h, gl/w32sock.h, gl/wchar.in.h,
7072 gl/xsize.h, guile/src/Makefile.am, lib/Makefile.am,
7073 lib/configure.ac, lib/gcrypt/Makefile.am, lib/gl/Makefile.am,
7074 lib/gl/alignof.h, lib/gl/alloca.in.h, lib/gl/asnprintf.c,
7075 lib/gl/asprintf.c, lib/gl/byteswap.in.h, lib/gl/c-ctype.c,
7076 lib/gl/c-ctype.h, lib/gl/close-hook.c, lib/gl/close-hook.h,
7077 lib/gl/errno.in.h, lib/gl/float+.h, lib/gl/float.in.h,
7078 lib/gl/fseeko.c, lib/gl/ftello.c, lib/gl/gettext.h, lib/gl/lseek.c,
7079 lib/gl/m4/00gnulib.m4, lib/gl/m4/alloca.m4,
7080 lib/gl/m4/asm-underscore.m4, lib/gl/m4/byteswap.m4,
7081 lib/gl/m4/codeset.m4, lib/gl/m4/errno_h.m4,
7082 lib/gl/m4/extensions.m4, lib/gl/m4/fcntl-o.m4,
7083 lib/gl/m4/float_h.m4, lib/gl/m4/fseeko.m4, lib/gl/m4/ftello.m4,
7084 lib/gl/m4/func.m4, lib/gl/m4/getpagesize.m4, lib/gl/m4/gettext.m4,
7085 lib/gl/m4/glibc2.m4, lib/gl/m4/glibc21.m4,
7086 lib/gl/m4/gnulib-cache.m4, lib/gl/m4/gnulib-common.m4,
7087 lib/gl/m4/gnulib-comp.m4, lib/gl/m4/gnulib-tool.m4,
7088 lib/gl/m4/iconv.m4, lib/gl/m4/include_next.m4,
7089 lib/gl/m4/intdiv0.m4, lib/gl/m4/intl.m4, lib/gl/m4/intldir.m4,
7090 lib/gl/m4/intlmacosx.m4, lib/gl/m4/intmax.m4,
7091 lib/gl/m4/intmax_t.m4, lib/gl/m4/inttypes-pri.m4,
7092 lib/gl/m4/inttypes_h.m4, lib/gl/m4/lcmessage.m4,
7093 lib/gl/m4/ld-output-def.m4, lib/gl/m4/ld-version-script.m4,
7094 lib/gl/m4/lib-ld.m4, lib/gl/m4/lib-link.m4,
7095 lib/gl/m4/lib-prefix.m4, lib/gl/m4/lock.m4, lib/gl/m4/longlong.m4,
7096 lib/gl/m4/lseek.m4, lib/gl/m4/malloc.m4, lib/gl/m4/memchr.m4,
7097 lib/gl/m4/memmem.m4, lib/gl/m4/minmax.m4, lib/gl/m4/mmap-anon.m4,
7098 lib/gl/m4/multiarch.m4, lib/gl/m4/netdb_h.m4, lib/gl/m4/nls.m4,
7099 lib/gl/m4/po.m4, lib/gl/m4/printf-posix.m4, lib/gl/m4/printf.m4,
7100 lib/gl/m4/progtest.m4, lib/gl/m4/read-file.m4,
7101 lib/gl/m4/realloc.m4, lib/gl/m4/size_max.m4, lib/gl/m4/snprintf.m4,
7102 lib/gl/m4/socketlib.m4, lib/gl/m4/sockets.m4, lib/gl/m4/socklen.m4,
7103 lib/gl/m4/sockpfaf.m4, lib/gl/m4/stdbool.m4, lib/gl/m4/stddef_h.m4,
7104 lib/gl/m4/stdint.m4, lib/gl/m4/stdint_h.m4, lib/gl/m4/stdio_h.m4,
7105 lib/gl/m4/stdlib_h.m4, lib/gl/m4/strcase.m4, lib/gl/m4/string_h.m4,
7106 lib/gl/m4/strings_h.m4, lib/gl/m4/strverscmp.m4,
7107 lib/gl/m4/sys_socket_h.m4, lib/gl/m4/sys_stat_h.m4,
7108 lib/gl/m4/threadlib.m4, lib/gl/m4/time_h.m4, lib/gl/m4/time_r.m4,
7109 lib/gl/m4/uintmax_t.m4, lib/gl/m4/ungetc.m4, lib/gl/m4/unistd_h.m4,
7110 lib/gl/m4/vasnprintf.m4, lib/gl/m4/vasprintf.m4,
7111 lib/gl/m4/visibility.m4, lib/gl/m4/vsnprintf.m4,
7112 lib/gl/m4/warn-on-use.m4, lib/gl/m4/wchar_h.m4,
7113 lib/gl/m4/wchar_t.m4, lib/gl/m4/wint_t.m4, lib/gl/m4/xsize.m4,
7114 lib/gl/malloc.c, lib/gl/memchr.c, lib/gl/memchr.valgrind,
7115 lib/gl/memmem.c, lib/gl/minmax.h, lib/gl/netdb.in.h,
7116 lib/gl/override/lib/gc-libgcrypt.c.diff,
7117 lib/gl/override/lib/gettext.h.diff, lib/gl/printf-args.c,
7118 lib/gl/printf-args.h, lib/gl/printf-parse.c, lib/gl/printf-parse.h,
7119 lib/gl/read-file.c, lib/gl/read-file.h, lib/gl/realloc.c,
7120 lib/gl/size_max.h, lib/gl/snprintf.c, lib/gl/sockets.c,
7121 lib/gl/sockets.h, lib/gl/stdbool.in.h, lib/gl/stddef.in.h,
7122 lib/gl/stdint.in.h, lib/gl/stdio-impl.h, lib/gl/stdio-write.c,
7123 lib/gl/stdio.in.h, lib/gl/stdlib.in.h, lib/gl/str-two-way.h,
7124 lib/gl/strcasecmp.c, lib/gl/string.in.h, lib/gl/strings.in.h,
7125 lib/gl/strncasecmp.c, lib/gl/strverscmp.c, lib/gl/sys_socket.in.h,
7126 lib/gl/sys_stat.in.h, lib/gl/tests/Makefile.am,
7127 lib/gl/tests/binary-io.h, lib/gl/tests/dummy.c,
7128 lib/gl/tests/getpagesize.c, lib/gl/tests/init.sh,
7129 lib/gl/tests/intprops.h, lib/gl/tests/macros.h,
7130 lib/gl/tests/signature.h, lib/gl/tests/test-alloca-opt.c,
7131 lib/gl/tests/test-binary-io.c, lib/gl/tests/test-binary-io.sh,
7132 lib/gl/tests/test-byteswap.c, lib/gl/tests/test-c-ctype.c,
7133 lib/gl/tests/test-errno.c, lib/gl/tests/test-fseeko.c,
7134 lib/gl/tests/test-fseeko.sh, lib/gl/tests/test-fseeko2.sh,
7135 lib/gl/tests/test-ftello.c, lib/gl/tests/test-ftello.sh,
7136 lib/gl/tests/test-ftello2.sh, lib/gl/tests/test-ftello3.c,
7137 lib/gl/tests/test-func.c, lib/gl/tests/test-memchr.c,
7138 lib/gl/tests/test-netdb.c, lib/gl/tests/test-read-file.c,
7139 lib/gl/tests/test-snprintf.c, lib/gl/tests/test-sockets.c,
7140 lib/gl/tests/test-stdbool.c, lib/gl/tests/test-stddef.c,
7141 lib/gl/tests/test-stdint.c, lib/gl/tests/test-stdio.c,
7142 lib/gl/tests/test-stdlib.c, lib/gl/tests/test-string.c,
7143 lib/gl/tests/test-strings.c, lib/gl/tests/test-strverscmp.c,
7144 lib/gl/tests/test-sys_socket.c, lib/gl/tests/test-sys_stat.c,
7145 lib/gl/tests/test-sys_wait.h, lib/gl/tests/test-time.c,
7146 lib/gl/tests/test-unistd.c, lib/gl/tests/test-vasnprintf.c,
7147 lib/gl/tests/test-vasprintf.c, lib/gl/tests/test-verify.c,
7148 lib/gl/tests/test-verify.sh, lib/gl/tests/test-vsnprintf.c,
7149 lib/gl/tests/test-wchar.c, lib/gl/tests/zerosize-ptr.h,
7150 lib/gl/time.in.h, lib/gl/time_r.c, lib/gl/unistd.in.h,
7151 lib/gl/vasnprintf.c, lib/gl/vasnprintf.h, lib/gl/vasprintf.c,
7152 lib/gl/verify.h, lib/gl/vsnprintf.c, lib/gl/w32sock.h,
7153 lib/gl/wchar.in.h, lib/gl/xsize.h, lib/gnutls_int.h,
7154 lib/m4/hooks.m4, lib/minitasn1/Makefile.am, lib/nettle/Makefile.am,
7155 lib/opencdk/Makefile.am, lib/openpgp/Makefile.am, lib/po/LINGUAS,
7156 lib/po/Makevars, lib/po/POTFILES.in, lib/po/cs.po.in,
7157 lib/po/de.po.in, lib/po/fr.po.in, lib/po/it.po.in, lib/po/ms.po.in,
7158 lib/po/nl.po.in, lib/po/pl.po.in, lib/po/sv.po.in, lib/po/vi.po.in,
7159 lib/po/zh_CN.po.in, lib/x509/Makefile.am, libextra/Makefile.am,
7160 libextra/configure.ac, libextra/gl/Makefile.am,
7161 libextra/gl/gnulib.mk, libextra/gl/hmac-md5.c, libextra/gl/hmac.h,
7162 libextra/gl/m4/00gnulib.m4, libextra/gl/m4/extensions.m4,
7163 libextra/gl/m4/gnulib-cache.m4, libextra/gl/m4/gnulib-common.m4,
7164 libextra/gl/m4/gnulib-comp.m4, libextra/gl/m4/gnulib-tool.m4,
7165 libextra/gl/m4/hmac-md5.m4, libextra/gl/m4/ld-output-def.m4,
7166 libextra/gl/m4/ld-version-script.m4, libextra/gl/m4/lib-ld.m4,
7167 libextra/gl/m4/lib-link.m4, libextra/gl/m4/lib-prefix.m4,
7168 libextra/gl/m4/md5.m4, libextra/gl/m4/memxor.m4, libextra/gl/md5.c,
7169 libextra/gl/md5.h, libextra/gl/memxor.c, libextra/gl/memxor.h,
7170 libextra/gl/override/lib/md5.c.diff, libextra/m4/hooks.m4,
7171 m4/hooks.m4, po/LINGUAS, po/Makevars, po/POTFILES.in, po/cs.po.in,
7172 po/de.po.in, po/fr.po.in, po/it.po.in, po/ms.po.in, po/nl.po.in,
7173 po/pl.po.in, po/sv.po.in, po/vi.po.in, po/zh_CN.po.in,
7174 src/Makefile.am, tests/suite/Makefile.in: Use a single configure.ac.
7175 This speed ups compilation and reduces duplication of code (multiple
7176 gl/ libraries etc.). This saves about 2mb in distributed size
7179 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7181 * src/certtool-cfg.c: Avoid using readline.
7183 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7185 * lib/gnutls_buffers.c: initialized ret in _gnutls_writev_emu().
7187 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7189 * lib/includes/gnutls/x509.h: doc fix
7191 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7193 * lib/system.c: removed unneeded variable.
7195 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7197 * lib/auth_cert.c: Corrected check for an unknown sign algorithm.
7200 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7202 * lib/openpgp/output.c: Do not use %e in strftime. Use %d instead
7203 which is identically available in windows as well. Based on patch
7206 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7208 * lib/x509/output.c, tests/certuniqueid.c: Fixed mismatch in size_t
7211 2011-04-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7213 * lib/system.c, lib/system_override.c: Correctly set errno in win32
7214 using gnutls_transport_set_global_errno(). Based on patch by LRN.
7216 2011-04-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7218 * tests/eagain-common.h, tests/mini-eagain-dtls.c,
7219 tests/mini-eagain.c, tests/mini.c: Avoid using
7220 gnutls_transport_set_global_errno() and use
7221 gnutls_transport_set_errno() instead.
7223 2011-04-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7225 * lib/system_override.c: win32 fixes for set_global_errno().
7228 2011-04-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7230 * src/benchmark.c: Win32 changes for benchmark. Patch by LRN.
7232 2011-04-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7234 * tests/anonself.c, tests/dhepskself.c, tests/openpgpself.c,
7235 tests/pskself.c, tests/resume.c, tests/rng-fork.c, tests/x509dn.c,
7236 tests/x509self.c: win32 fixes. Patch by LRN.
7238 2011-04-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7240 * lib/gnutls_buffers.c: minor modification in write_emu().
7242 2011-04-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7244 * lib/opencdk/literal.c, lib/opencdk/main.h, lib/opencdk/misc.c:
7245 simplified cdk_trim_string() to make it safer to use.
7247 2011-04-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7249 * lib/x509/privkey_pkcs8.c: correctly reset params.
7251 2011-04-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7253 * lib/x509/crl.c, lib/x509/x509.c: use correct pointer size.
7255 2011-04-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7257 * lib/gnutls_algorithms.c: correctly compare sign algorithm_st.
7259 2011-04-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7261 * lib/opencdk/Makefile.am, lib/opencdk/context.h,
7262 lib/opencdk/main.c, lib/opencdk/main.h, lib/opencdk/opencdk.h,
7263 lib/opencdk/verify.c: removed unused code
7265 2011-04-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7267 * lib/opencdk/armor.c: null terminate the armored string
7269 2011-04-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7271 * src/cli.c: properly null terminate string.
7273 2011-04-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7275 * src/common.c, src/pkcs11.c: check PIN size.
7277 2011-04-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7279 * src/srptool.c: check salt size.
7281 2011-04-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7283 * lib/opencdk/read-packet.c: more clear bounds checking
7285 2011-04-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7287 * lib/x509/privkey.c: initialize e and d.
7289 2011-04-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7291 * lib/pkcs11_write.c: deinitialize pks variable only when needed.
7293 2011-04-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7295 * lib/openpgp/pgpverify.c: Initialize verify.
7297 2011-04-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7299 * src/cli.c: initialize session_id_size.
7301 2011-04-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7303 * lib/opencdk/misc.c, lib/opencdk/opencdk.h: removed unneeded
7306 2011-04-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7308 * lib/pakchois/pakchois.c: correctly traverse slots
7310 2011-04-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7312 * guile/src/core.c: avoid using a freed pointer.
7314 2011-04-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7316 * lib/pkcs11.c: Initialize tinfo using the initially available
7319 2011-04-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7321 * lib/gnutls_dtls.c: corrected debugging info.
7323 2011-04-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7325 * tests/eagain-common.h, tests/mini-eagain-dtls.c,
7326 tests/mini-eagain.c, tests/mini.c: The mini-* programs were
7329 2011-04-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7331 * lib/gnutls_record.c: Do not cleanup bufel after it has been
7332 inserted into buffer.
7334 2011-04-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7336 * lib/gnutls_mbuffers.c: Combined dequeue with remove_front() and
7339 2011-04-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7341 * doc/examples/Makefile.am: Compile ex-cert-select-pkcs11 as a
7344 2011-04-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7346 * .gitignore, lib/gnutls_buffers.c, lib/gnutls_dtls.c,
7347 lib/gnutls_int.h, lib/gnutls_state.c,
7348 lib/includes/gnutls/gnutls.h.in, lib/system.h, tests/Makefile.am,
7349 tests/eagain-common.h, tests/mini-eagain-dtls.c,
7350 tests/mini-eagain.c, tests/utils.c: Added support for non-blocking
7351 DTLS. Added mini-eagain-dtls to test its operation. Improved
7354 2011-04-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7356 * lib/nettle/init.c: gcrypt.h is not really needed. Reported by
7359 2011-04-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7361 * src/srptool.c: corrected header inclusion.
7363 2011-04-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7365 * src/Makefile.am, src/crypt-gaa.c, src/crypt-gaa.h, src/crypt.c,
7366 src/crypt.gaa, src/srptool-gaa.c, src/srptool-gaa.h, src/srptool.c,
7367 src/srptool.gaa: crypt.* renamed to srptool.*.
7369 2011-04-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7371 * lib/gnutls_srp.c: Corrected bug in gnutls_srp_verifier() that
7372 prevented the allocation of a verifier. Reported by Andrew Wiseman.
7374 2011-04-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7376 * src/crypt-gaa.c, src/crypt-gaa.h, src/crypt.c, src/crypt.gaa:
7377 Added debug option to srptool.
7379 2011-04-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7381 * doc/cha-cert-auth.texi: Documented p11-kit.
7383 2011-04-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7385 * doc/cha-library.texi: corrected typo
7387 2011-03-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7389 * tests/scripts/common.sh: Added copyright.
7391 2011-03-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7393 * configure.ac, tests/Makefile.am, tests/dsa/testdsa,
7394 tests/openpgp-certs/testcerts, tests/scripts/Makefile.am,
7395 tests/scripts/common.sh: Reorganized scripts that use test servers,
7396 based on patch by Cedric Arbogast.
7398 2011-03-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7400 * src/certtool-gaa.c, src/certtool.gaa: Create certificate request
7401 with stricter permissions. Reported by Luca Capello.
7403 2011-03-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7405 * tests/openpgp-certs/Makefile.am: enabled testcerts.
7407 2011-03-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7409 * tests/openpgp-certs/testcerts: made more silent.
7411 2011-03-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7413 * tests/dsa/testdsa, tests/openpgp-certs/testcerts: Made scripts
7414 bourne shell compliant and not bash.
7416 2011-03-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7418 * THANKS: e-mail addresses are not directly recognizable.
7420 2011-03-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7422 * lib/opencdk/stream.c: Corrected access to freed memory location.
7423 Reported by Vitaly Kruglikov.
7425 2011-03-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7427 * THANKS: added Mark and Vitaly to THANKS.
7429 2011-03-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7431 * lib/system.c: Corrected windows system_errno() function. Reported
7432 and patch by Mark Brand.
7434 2011-03-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7436 * lib/includes/gnutls/compat.h: C++ compatibility fix for compat.h.
7437 Suggested by Mark Brand.
7439 2011-03-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7441 * lib/opencdk/verify.c: Corrected uninitialized var deinitiation.
7442 Reported by Vitaly Kruglikov.
7444 2011-03-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7446 * lib/gnutls_sig.c: eliminate compiler warning. Reported by Andreas
7449 2011-03-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7451 * lib/includes/gnutls/openpgp.h, lib/openpgp/gnutls_openpgp.c,
7452 lib/openpgp/pgp.c, lib/openpgp/privkey.c: Fix size of
7453 gnutls_openpgp_keyid_t by using the GNUTLS_OPENPGP_KEYID_SIZE
7454 definition. Reported by Andreas Metzler.
7456 2011-03-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7458 * NEWS: included news of 2.12.0
7460 2011-03-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7462 * guile/tests/Makefile.am: added missing files.
7464 2011-03-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7466 * lib/includes/gnutls/abstract.h, lib/includes/gnutls/gnutls.h.in,
7467 lib/includes/gnutls/pkcs11.h, lib/includes/gnutls/x509.h,
7468 lib/pkcs11.c, lib/x509/crl.c: documentation fixes.
7470 2011-03-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7472 * tests/dsa/testdsa: Added DSA tests for client certificates as
7475 2011-03-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7477 * lib/ext_signature.c, lib/ext_signature.h, lib/gnutls_handshake.c,
7478 lib/gnutls_sig.c, lib/includes/gnutls/abstract.h, lib/x509/verify.c:
7479 Simplified signature algorithm selection.
7481 2011-03-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7483 * src/cli.c: The processed messages go to stdout.
7485 2011-03-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7487 * lib/gnutls_privkey.c: updated documentation
7489 2011-03-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7491 * lib/gnutls_algorithms.c, lib/gnutls_int.h,
7492 lib/includes/gnutls/gnutls.h.in: Increased GNUTLS_MAX_ALGORITHM_NUM
7493 to 32. The gnutls_*_list() functions generate the list of algorithm
7494 on the spot and no longer require a static duplicate list of
7495 algorithms. This comes at a cost of not being thread safe (which is
7496 not significant since those functions are only used for special
7499 2011-03-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7501 * lib/gnutls_privkey.c: corrected parameter.
7503 2011-03-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7505 * lib/gnutls_pubkey.c, lib/includes/gnutls/pkcs11.h, lib/pkcs11.c,
7506 lib/pkcs11_privkey.c, lib/pkcs11_secret.c, lib/x509/privkey.c:
7507 Documentation fixes and cleanups.
7509 2011-03-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7511 * src/cli.c: define variable locally
7513 2011-03-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7515 * src/cli.c, src/serv.c: use IP_DONTFRAG if it is defined.
7517 2011-03-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7519 * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_dtls.c,
7520 lib/gnutls_dtls.h, lib/gnutls_handshake.c, lib/gnutls_handshake.h,
7521 lib/gnutls_int.h, lib/gnutls_record.c,
7522 lib/includes/gnutls/gnutls.h.in, lib/system.c, lib/system.h,
7523 src/cli.c, src/common.h, src/serv.c, src/udp-serv.c: Avoided waiting
7524 for peer's retransmission to ensure receipt of finished messages,
7525 and used a 'timer'-like to retransmit packets.
7527 2011-03-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7529 * lib/gnutls_dtls.c, lib/includes/gnutls/dtls.h, lib/libgnutls.map:
7530 added gnutls_dtls_get_data_mtu().
7532 2011-03-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7534 * tests/dsa/testdsa: make gnutls-cli more quiet.
7536 2011-03-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7538 * configure.ac, tests/Makefile.am, tests/dsa/Makefile.am,
7539 tests/dsa/cert.dsa.1024.pem, tests/dsa/cert.dsa.2048.pem,
7540 tests/dsa/cert.dsa.3072.pem, tests/dsa/dsa.1024.pem,
7541 tests/dsa/dsa.2048.pem, tests/dsa/dsa.3072.pem, tests/dsa/testdsa,
7542 tests/suite/Makefile.in: Added test to verify connections with DSA
7543 keys of various sizes.
7545 2011-03-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7547 * src/certtool.c: warn on generation of DSA keys of over 1024 bits.
7549 2011-03-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7551 * lib/gnutls_alert.c, lib/gnutls_errors.c, lib/gnutls_sig.c,
7552 lib/includes/gnutls/gnutls.h.in: Return a special error code if DSA
7553 keys with over 1024 are being used with TLS 1.x, x<2.
7555 2011-03-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7557 * lib/nettle/pk.c: truncate hash size when asking to sign or verify
7558 DSA with a longer hash.
7560 2011-03-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7562 * lib/gnutls_buffers.c, lib/system.c: Check for rejected connections
7563 in system_recv_timeout().
7565 2011-03-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7567 * lib/system_override.c: quickly discuss callback format.
7569 2011-03-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7571 * lib/gnutls_dtls.c: When sending multiple cookies due to
7572 verification errors do not increase the handshake sequence number
7573 only the record sequence.
7575 2011-03-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7577 * AUTHORS: updated Jonathan
7579 2011-03-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7581 * tests/openpgp-auth.c: Added check for RSA ciphersuite in openpgp
7584 2011-03-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7586 * lib/openpgp/privkey.c: read correct algorithm when decrypting data
7587 and use correct number of private parameters.
7589 2011-03-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7591 * libextra/gnutls_extra.c: added missing ret.
7593 2011-03-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7595 * lib/auth_cert.c: Set type when sending empty openpgp key.
7597 2011-03-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7599 * lib/nettle/rnd.c, tests/Makefile.am, tests/rng-fork.c: Corrected
7600 nettle's RNG behavior on fork and added a test case.
7602 2011-03-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7604 * guile/tests/openpgp-auth.scm: enabled RSA and removed debugging.
7606 2011-03-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7608 * lib/gnutls_privkey.c, lib/gnutls_pubkey.c,
7609 lib/includes/gnutls/abstract.h, lib/openpgp/gnutls_openpgp.c,
7610 tests/openpgp-auth.c, tests/openpgp-auth2.c: gnutls_pubkey_t and
7611 gnutls_privkey_t can import either an openpgp subkey or a master
7614 2011-03-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7616 * guile/tests/openpgp-auth.scm, guile/tests/openpgp-elg-pub.asc,
7617 guile/tests/openpgp-elg-sec.asc, guile/tests/openpgp-keys.scm,
7618 guile/tests/openpgp-pub.asc, guile/tests/openpgp-sec.asc: split the
7619 pgp keys to elgamal and dsa.
7621 2011-03-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7623 * lib/gnutls_errors.c, lib/includes/gnutls/gnutls.h.in,
7624 lib/openpgp/pgp.c, lib/openpgp/privkey.c: introduced
7625 GNUTLS_E_OPENPGP_PREFERRED_KEY_ERROR
7627 2011-03-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7629 * lib/gnutls_algorithms.c: On unknown public key algorithms return
7632 2011-03-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7634 * lib/gnutls_privkey.c: Read the public key algorithm from the
7635 selected subkey and not the master key when importing to a
7638 2011-03-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7640 * lib/openpgp/gnutls_openpgp.c, tests/openpgpself.c: Documentation
7641 fixed. Added fresh keys to test.
7643 2011-03-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7645 * tests/openpgpself.c: Test openpgp authentication with DSA-2048 bit
7648 2011-03-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7650 * lib/openpgp/pgp.c: gnutls_openpgp_crt_get_auth_subkey() will no
7651 longer return an unsupported subkey.
7653 2011-03-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7655 * lib/x509/verify.c: Corrected verification of DSA-2048 keys.
7656 Reported by teddy@fukt.bsnet.se.
7658 2011-03-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7660 * doc/cha-intro-tls.texi: Added
7661 gnutls_transport_set_vec_push_function().
7663 2011-03-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7665 * lib/gnutls_dtls.c, lib/includes/gnutls/dtls.h, lib/libgnutls.map,
7666 src/udp-serv.c: updated cookie negotiation to use only a prestate
7667 structure and avoids setting data to cookie.
7669 2011-03-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7671 * lib/gnutls_handshake.c: Use DTLS 1.0 instead of SSL 3.0 headers on
7672 client hello in DTLS.
7674 2011-03-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7676 * lib/gnutls_dtls.c, lib/gnutls_errors.c,
7677 lib/includes/gnutls/dtls.h, lib/libgnutls.map, src/udp-serv.c: Added
7678 photuris-like resource protection on the server. Added
7679 gnutls_dtls_cookie_send(), gnutls_dtls_cookie_verify() and
7680 gnutls_dtls_cookie_set() to avoid initializing a session before
7683 2011-03-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7685 * lib/crypto-api.c, lib/ext_session_ticket.c,
7686 lib/includes/gnutls/gnutls.h.in: added gnutls_key_generate() to API.
7688 2011-03-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7690 * lib/ext_session_ticket.c: Avoid the usage of structures where the
7691 attribute packed is assumed.
7693 2011-03-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7695 * lib/gnutls_buffers.c, lib/gnutls_buffers.h,
7696 lib/gnutls_handshake.c: renamed gnutls_handshake_buffer_* functions
7697 to gnutls_handshake_hash_buffer_* to separate from new API functions
7698 and corrected its usage.
7700 2011-03-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7702 * lib/gnutls_algorithms.c: Added DSA-SHA256, DSA-SHA224 and
7703 RSA-SHA224 to the supported signature algorithms list. Suggested by
7706 2011-03-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7708 * lib/gnutls_constate.c, lib/gnutls_constate.h,
7709 lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_v2_compat.c:
7710 session->internals.compression_method was removed. It was no longer
7711 required since the new compression algorithm was stored to next
7714 2011-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7716 * lib/gnutls_buffers.c, lib/gnutls_cipher.c, lib/gnutls_constate.c,
7717 lib/gnutls_handshake.c, lib/gnutls_record.c, lib/gnutls_state.h:
7718 _gnutls_is_dtls() is no more. IS_DTLS() is being used instead.
7720 2011-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7722 * lib/ext_session_ticket.c: do not print debugging output on
7725 2011-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7727 * lib/ext_session_ticket.c, lib/gnutls_cipher.c,
7728 lib/gnutls_cipher_int.c, lib/gnutls_constate.c,
7729 lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_record.c:
7730 Properly reset the SSL 3.0 MAC algorithm.
7732 2011-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7734 * lib/gnutls_buffers.c, lib/gnutls_errors.h,
7735 lib/gnutls_handshake.c, lib/x509/verify-high.c: cleanups. Introduced
7736 gnutls_assert_val_fatal() that only prints debugging messages on
7739 2011-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7741 * lib/gnutls_alert.c: Added string for GNUTLS_A_SSL3_NO_CERTIFICATE.
7743 2011-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7745 * lib/gnutls_algorithms.c, lib/gnutls_algorithms.h:
7746 gnutls_version_has_variable_padding is not really needed. A check
7747 for SSL3.0 is more clear.
7749 2011-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7751 * lib/debug.c, lib/gnutls_buffers.c, lib/gnutls_constate.c,
7752 lib/gnutls_handshake.c, lib/gnutls_record.c, lib/gnutls_v2_compat.c:
7753 Corrected SSL2 client hello handling.
7755 2011-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7757 * lib/gnutls_record.c: do not set default record version (i.e. SSL
7758 3.0) during a re-handshake.
7760 2011-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7762 * lib/gnutls_priority.c: default behavior is to send SSL3.0 client
7765 2011-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7767 * lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_priority.c:
7768 corrected ssl3 record version sending in client hello.
7770 2011-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7772 * NEWS, doc/cha-intro-tls.texi, lib/gnutls_buffers.c,
7773 lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_state.c,
7774 lib/includes/gnutls/compat.h, lib/includes/gnutls/gnutls.h.in,
7775 lib/libgnutls.map: gnutls_transport_set_lowat() is no more.
7777 2011-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7779 * lib/gnutls_buffers.c, lib/gnutls_record.c: some cleanups
7781 2011-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7783 * lib/x509/common.h, lib/x509/verify-high.c, lib/x509/verify.c:
7784 gnutls_x509_trust_list_verify_crt shortens the provided certificate
7785 list based on the existing trusted CAs.
7787 2011-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7789 * lib/gnutls_int.h, lib/gnutls_state.c, lib/gnutlsxx.cpp,
7790 lib/includes/gnutls/compat.h, lib/includes/gnutls/dtls.h,
7791 lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/gnutlsxx.h,
7792 lib/libgnutls.map, libextra/includes/gnutls/openssl.h, src/cli.c,
7793 src/serv.c: gnutls_init_dtls() was made redundant. The same for
7794 gnutls_end_connection_t which was replaced by a flags integer..
7796 2011-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7798 * lib/auth_psk.c, lib/auth_psk.h, lib/ext_session_ticket.c,
7799 lib/ext_srp.c, lib/gnutls_sig.c, lib/gnutls_x509.c,
7800 lib/pkcs11_int.h, lib/system.c, lib/system.h, lib/x509/mpi.c,
7801 lib/x509/verify.c, src/certtool-common.h, src/certtool.c,
7802 src/common.c, src/pkcs11.c, src/udp-serv.c: Corrected types.
7804 2011-03-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7806 * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa,
7807 src/serv-gaa.c, src/serv-gaa.h, src/serv.c, src/serv.gaa,
7808 src/udp-serv.c, src/udp-serv.h: Added --mtu option.
7810 2011-03-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7812 * lib/gnutls_buffers.c: properly re-generate headers of fragmented
7815 2011-03-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7817 * lib/gnutls_state.c: increased initial retransmission time to 1
7820 2011-03-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7822 * lib/gnutls_handshake.c: In DTLS do not hash messages that
7823 shouldn't be hashed (i.e. hello verify request).
7825 2011-03-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7827 * lib/gnutls_cipher.c: Corrected size check in block encrypted
7830 2011-03-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7832 * lib/gnutls_buffers.c, lib/gnutls_handshake.c: Corrected behavior
7833 in normal TLS handshake.
7835 2011-03-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7837 * libextra/Makefile.am: link libgnutls-extra against libgcrypt if
7838 required. Based on patch by Andreas Metzler
7839 <ametzler@downhill.at.eu.org>
7841 2011-03-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7843 * NEWS, lib/m4/hooks.m4, libextra/Makefile.am: increased the so
7844 version of libgnutls-openssl.
7846 2011-03-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7848 * lib/ext_session_ticket.c, lib/gnutls_buffers.c,
7849 lib/gnutls_buffers.h, lib/gnutls_cipher.c, lib/gnutls_dtls.c,
7850 lib/gnutls_errors.c, lib/gnutls_handshake.c,
7851 lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_kx.c,
7852 lib/gnutls_mbuffers.c, lib/gnutls_mbuffers.h, lib/gnutls_record.c,
7853 lib/gnutls_state.c, lib/gnutls_str.c, lib/gnutls_v2_compat.c,
7854 lib/includes/gnutls/gnutls.h.in: Added intermediate handshake layer
7855 that will order handshake packets and drop duplicates.
7857 2011-03-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7859 * lib/gnutls_record.c: handle non fatal errors when receiving record
7862 2011-03-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7864 * lib/gnutls_cipher.c: memcpy -> memmove.
7866 2011-03-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7868 * lib/gnutls_buffers.c, lib/gnutls_int.h: removed GMAX
7870 2011-03-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7872 * src/certtool.c: Allow providing no password for PKCS #12 structure
7873 generation. Reported by Daniel Kahn Gillmor.
7875 2011-03-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7877 * src/certtool-cfg.c: consistently print all interactive questions
7878 to stderr. Reported by Daniel Kahn Gillmor.
7880 2011-02-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7882 * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_dtls.c,
7883 lib/gnutls_int.h, lib/gnutls_mbuffers.c, lib/gnutls_mbuffers.h,
7884 lib/gnutls_record.c, lib/gnutls_state.c: combined all the record
7887 2011-02-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7889 * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_dtls.c,
7890 lib/gnutls_int.h, lib/gnutls_mbuffers.c, lib/gnutls_mbuffers.h,
7891 lib/gnutls_record.c, lib/gnutls_record.h, lib/gnutls_state.c:
7892 internal buffering for record and handshake data changed from
7893 gnutls_buffers to gnutls_mbuffers.
7895 2011-02-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7897 * lib/debug.c, lib/gnutls_buffers.c, lib/gnutls_int.h,
7898 lib/gnutls_record.c, lib/gnutls_state.c,
7899 lib/includes/gnutls/gnutls.h.in: Removed last pieces of inner
7902 2011-02-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7904 * lib/gnutls_record.c: some cleanups
7906 2011-03-01 Ludovic Courtès <ludo@gnu.org>
7908 * guile/tests/anonymous-auth.scm, guile/tests/openpgp-auth.scm,
7909 guile/tests/x509-auth.scm: guile: Change tests to use priority
7912 2011-03-01 Ludovic Courtès <ludo@gnu.org>
7914 * src/Makefile.am: Add `udp-serv.h' to the distribution.
7916 2011-02-28 Andreas Metzler <ametzler@downhill.at.eu.org>
7918 * lib/libgnutls.map: fix duplicate symbols in version script These three symbols are listed both in the GNUTLS_2_8 and the
7919 GNUTLS_2_10 section. binutils uses the first occurence, drop the
7920 second one. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
7922 2011-02-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7924 * doc/cha-intro-tls.texi: updates on -ALL priorities.
7926 2011-02-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7928 * lib/ext_signature.c: Restrict the signature algorithms we
7929 advertize to SHA1 and SHA256.
7931 2011-02-28 Ludovic Courtès <ludo@gnu.org>
7933 * lib/includes/Makefile.am: Add `gnutls/dtls.h' to the distribution.
7935 2011-02-27 Ludovic Courtès <ludo@gnu.org>
7937 * guile/modules/system/documentation/c-snarf.scm: guile: Fix
7938 docstring extraction with CPP 4.5+.
7940 2011-02-27 Ludovic Courtès <ludo@gnu.org>
7942 * doc/Makefile.am: Pass the right CPPFLAGS when building Guile doc.
7944 2011-02-27 Ludovic Courtès <ludo@gnu.org>
7946 * doc/cha-intro-tls.texi, guile/src/core.c: Add nodes for the
7947 subsections of "The TLS Handshake Protocol".
7949 2011-02-27 Ludovic Courtès <ludo@gnu.org>
7951 * lib/Makefile.am: Add `lib/gnutls_dtls.h' to the distribution.
7953 2011-02-27 Ludovic Courtès <ludo@gnu.org>
7955 * guile/modules/gnutls.scm, guile/modules/gnutls/build/enums.scm,
7956 guile/modules/gnutls/build/priorities.scm, guile/src/core.c,
7957 guile/src/errors.c, guile/src/errors.h, guile/tests/Makefile.am,
7958 guile/tests/priorities.scm: guile: Wrap
7959 `gnutls_priority_set_direct'; deprecate the old method.
7961 2011-02-27 Ludovic Courtès <ludo@gnu.org>
7963 * doc/scripts/gdoc, doc/scripts/sort2.pl: Avoid hard-coded
7964 /usr/bin/perl (trick taken from Gnulib.)
7966 2011-02-27 Ludovic Courtès <ludo@gnu.org>
7968 * libextra/gnutls_extra.c: Fix LZO-enabled builds.
7970 2011-02-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7972 * lib/nettle/rnd.c: Detect fork() in the random number generator and
7975 2011-02-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7977 * lib/gnutls_dtls.c, lib/gnutls_state.c: use timeouts closer to DTLS
7980 2011-02-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7982 * lib/gnutls_state.c, lib/includes/gnutls/gnutls.h.in,
7983 lib/libgnutls.map, lib/system_override.c: Renamed
7984 gnutls_transport_set_push_function2() to
7985 gnutls_transport_set_vec_push_function().
7987 2011-02-20 Simon Josefsson <simon@josefsson.org>
7989 * NEWS, doc/manpages/Makefile.am, lib/includes/gnutls/compat.h,
7990 lib/libgnutls.map, lib/x509/crq.c: Remove
7991 gnutls_x509_crq_get_preferred_hash_algorithm.
7993 2011-02-20 Simon Josefsson <simon@josefsson.org>
7995 * lib/libgnutls.map: Remove dropped functions.
7997 2011-02-20 Simon Josefsson <simon@josefsson.org>
7999 * lib/x509/crl_write.c: Add deprecated docstring.
8001 2011-02-20 Simon Josefsson <simon@josefsson.org>
8003 * lib/x509/crq.c: Fix deprecated docstring.
8005 2011-02-20 Simon Josefsson <simon@josefsson.org>
8007 * lib/x509/privkey.c: Fix docstring.
8009 2011-02-20 Simon Josefsson <simon@josefsson.org>
8011 * lib/gnutls_pubkey.c: Fix docstring of new function.
8013 2011-02-20 Simon Josefsson <simon@josefsson.org>
8015 * lib/gnutls_cert.c: Fix docstring for deprecated functions.
8017 2011-02-20 Simon Josefsson <simon@josefsson.org>
8019 * lib/gnutls_sig.c: Make it build.
8021 2011-02-20 Simon Josefsson <simon@josefsson.org>
8023 * lib/openpgp/privkey.c: Fix docstring of deprecated function.
8025 2011-02-20 Simon Josefsson <simon@josefsson.org>
8027 * lib/gnutls_pubkey.c: Fix docstrinf of new function.
8029 2011-02-20 Simon Josefsson <simon@josefsson.org>
8031 * doc/reference/gnutls-docs.sgml: Fix typo.
8033 2011-02-20 Simon Josefsson <simon@josefsson.org>
8035 * doc/reference/gnutls-docs.sgml: Improve text.
8037 2011-02-20 Simon Josefsson <simon@josefsson.org>
8039 * lib/x509/crl.c: Doc fix of new function.
8041 2011-02-20 Simon Josefsson <simon@josefsson.org>
8043 * lib/gnutls_cert.c, lib/gnutls_privkey.c, lib/x509/privkey.c: Fix
8044 docstring of deprecated functions.
8046 2011-02-20 Simon Josefsson <simon@josefsson.org>
8048 * NEWS, lib/gnutls_privkey.c, lib/includes/gnutls/abstract.h,
8049 lib/includes/gnutls/compat.h, lib/libgnutls.map, lib/x509/crq.c,
8050 lib/x509/sign.c, tests/x509sign-verify.c: Rename
8051 gnutls_privkey_sign_data2 to gnutls_privkey_sign_data and
8052 gnutls_privkey_sign_hash2 to gnutls_privkey_sign_hash. These were added during the 2.11 cycle where we don't promise ABI
8055 2011-02-20 Simon Josefsson <simon@josefsson.org>
8057 * doc/gnutls-crypto-layers.eps: Add doc/gnutls-crypto-layers.eps.
8059 2011-02-20 Simon Josefsson <simon@josefsson.org>
8061 * doc/Makefile.am: Dist gnutls-crypto-layers.*.
8063 2011-02-20 Simon Josefsson <simon@josefsson.org>
8065 * lib/Makefile.am: Add abstract_int.h.
8067 2011-02-20 Simon Josefsson <simon@josefsson.org>
8069 * .gitignore: Ignore more.
8071 2011-02-20 Simon Josefsson <simon@josefsson.org>
8073 * lib/Makefile.am: Link with -lnettle too.
8075 2011-02-20 Simon Josefsson <simon@josefsson.org>
8077 * doc/Makefile.am, doc/cha-programs.texi, lib/gnutls_privkey.c,
8078 lib/includes/gnutls/compat.h, lib/includes/gnutls/x509.h,
8079 lib/openpgp/pgp.c: Fix syntax-check warnings.
8081 2011-02-22 Ludovic Courtès <ludo@gnu.org>
8083 * guile/modules/gnutls/build/enums.scm: guile: Remove
8084 GNUTLS_A_INNER_APPLICATION_FAILURE and
8085 GNUTLS_A_INNER_APPLICATION_VERIFICATION.
8087 2011-02-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8089 * lib/gnutls_session_pack.c: store entities as numbers to avoid
8090 issues in big-little endian machines.
8092 2011-02-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8094 * lib/gnutls_record.c: documented the DTLS sequence particularities.
8096 2011-02-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8098 * lib/gnutls_buffers.c, lib/gnutls_handshake.c,
8099 lib/gnutls_record.c, lib/gnutls_record.h,
8100 lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, src/udp-serv.c:
8101 Added gnutls_record_recv_seq() that can return the sequence number
8102 of the record packet, in addition to data.
8104 2011-02-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8106 * lib/gnutls_record.c: reorganized and simplified gnutls_recv_int().
8107 It will discard invalid DTLS packets.
8109 2011-02-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8111 * lib/gnutls_constate.h, lib/gnutls_record.c: Discard messages that
8112 contain a different epoch than the current one.
8114 2011-02-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8116 * lib/gnutls_record.c: renamed internal function to reflect
8119 2011-02-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8121 * lib/gnutls_buffers.c, lib/gnutls_dtls.c, lib/gnutls_dtls.h,
8122 lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_state.c:
8123 Implemented a sliding window-like thing to discard replayed packets.
8125 2011-02-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8127 * src/cli.c: gnutls-cli shouldn't print errors on EAGAIN and
8130 2011-02-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8132 * lib/gnutls_num.c: corrected uint48pp.
8134 2011-02-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8136 * lib/gnutls_constate.c, lib/gnutls_mbuffers.c, lib/gnutls_state.c:
8137 Epoch garbage collector is being run when handshake is being cleaned
8140 2011-02-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8142 * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_dtls.c,
8143 lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_num.c,
8144 lib/gnutls_state.c: skip replays in handshake packets.
8146 2011-02-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8148 * lib/gnutls_record.c: Forbid SSL v.2 client hello in DTLS.
8150 2011-02-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8152 * lib/gnutls_buffers.c, lib/gnutls_int.h: removed unneeded
8155 2011-02-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8157 * lib/gnutls_buffers.c, lib/gnutls_constate.h, lib/gnutls_dtls.c,
8158 lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_mbuffers.c:
8159 Cleanups in combination of DTLS and TLS buffers.
8161 2011-02-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8163 * lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c,
8164 lib/auth_srp.c, lib/gnutls_algorithms.c, lib/gnutls_dh_primes.c,
8165 lib/gnutls_errors.h, lib/gnutls_handshake.c, lib/gnutls_sig.c,
8166 lib/opencdk/main.h, lib/openpgp/pgp.c, lib/openpgp/pgpverify.c,
8167 lib/openpgp/privkey.c, lib/x509/common.c, lib/x509/dn.c,
8168 lib/x509/pkcs12.c, lib/x509/pkcs7.c, lib/x509/privkey_pkcs8.c,
8169 lib/x509/verify.c, lib/x509/x509_write.c, lib/x509_b64.c:
8170 gnutls_x509_log replaced with gnutls_audit_log.
8172 2011-02-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8174 * lib/gnutls_algorithms.h, lib/gnutls_cipher.c, lib/gnutls_dtls.c,
8175 lib/gnutls_int.h, lib/gnutls_state.c, lib/gnutls_state.h: Return a
8176 more precise mtu unit to applications.
8178 2011-02-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8180 * src/udp-serv.c: restart handshake on signals.
8182 2011-02-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8184 * lib/gnutls_buffers.c, lib/gnutls_constate.h, lib/gnutls_dtls.c:
8185 reference counting in epochs is being done using functions.
8187 2011-02-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8189 * lib/gnutls_cipher.c, lib/gnutls_compress.c, lib/gnutls_dtls.c,
8190 lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_state.c,
8191 lib/includes/gnutls/dtls.h, lib/libgnutls.map: Added
8192 gnutls_dtls_g/set_mtu() to allow setting and getting the DTLS mtu
8195 2011-02-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8197 * lib/gnutls_buffers.c, lib/gnutls_dtls.c, lib/gnutls_dtls.h,
8198 lib/gnutls_int.h, lib/gnutls_state.c: Combined DTLS buffers and
8201 2011-02-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8203 * lib/Makefile.am, lib/ext_session_ticket.c, lib/gnutls_buffers.c,
8204 lib/gnutls_buffers.h, lib/gnutls_constate.c, lib/gnutls_dtls.c,
8205 lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_state.c,
8206 lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, lib/system.c,
8207 lib/system.h, lib/system_override.c, src/Makefile.am,
8208 src/serv-gaa.c, src/serv-gaa.h, src/serv.c, src/serv.gaa,
8209 src/udp-serv.c, src/udp-serv.h: Changes to allow DTLS server side to
8210 operate. Added a simple UDP server on gnutls-serv. Server other
8213 2011-02-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8215 * lib/gnutls_dtls.c, lib/gnutls_errors.c, lib/gnutls_int.h,
8216 lib/gnutls_state.c, lib/includes/gnutls/dtls.h,
8217 lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, src/cli.c: Allow
8218 setting the DTLS timeouts explicitly.
8220 2011-02-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8222 * doc/TODO: updated.
8224 2011-02-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8226 * lib/auth_cert.c, lib/debug.c, lib/gnutls_algorithms.c,
8227 lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cipher.c,
8228 lib/gnutls_cipher.h, lib/gnutls_dtls.c, lib/gnutls_dtls.h,
8229 lib/gnutls_errors.h, lib/gnutls_handshake.c, lib/gnutls_int.h,
8230 lib/gnutls_mbuffers.h, lib/gnutls_num.c, lib/gnutls_num.h,
8231 lib/gnutls_record.c, lib/gnutls_record.h, lib/gnutls_state.c,
8232 lib/includes/gnutls/gnutls.h.in, lib/system.c, lib/system.h,
8233 src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa: Several
8234 updates for DTLS (client side only) to work.
8236 2011-02-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8238 * lib/opencdk/main.h: Increased level of opencdk debug messages.
8240 2011-02-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8242 * lib/gnutls_sig.c: DSA keys in TLS 1.x, x<2 and SSL 3.0 use SHA-1
8243 as hash. That is we reverted to previous gnutls behavior. That
8244 violates DSS but all implementations handle it like that.
8246 2011-02-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8248 * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_dtls.c,
8249 lib/gnutls_dtls.h, lib/gnutls_handshake.c, lib/gnutls_int.h: use
8250 similar API when caching messages in DTLS or TLS.
8252 2011-02-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8254 * lib/gnutls_algorithms.c: corrected is_version_supported().
8256 2011-02-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8258 * lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_kx.c:
8259 Simplified _gnutls_recv_handshake().
8261 2011-02-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8263 * lib/gnutls_algorithms.c, lib/gnutls_algorithms.h,
8264 lib/gnutls_dtls.c, lib/gnutls_handshake.c: ciphersuites have a bit
8265 that indicates whether they are usable with DTLS or not.
8267 2011-02-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8269 * lib/auth_dhe.c, lib/gnutls_algorithms.c, lib/gnutls_cipher.c: fix
8272 2010-10-02 Jonathan Bastien-Filiatrault <joe@x2a.org>
8274 * lib/gnutls_dtls.c, lib/gnutls_dtls.h, lib/gnutls_num.c,
8275 lib/gnutls_num.h: dtls: Add uint48 handling functions. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
8277 2010-10-02 Jonathan Bastien-Filiatrault <joe@x2a.org>
8279 * lib/gnutls_record.c: dtls: Bring epoch choice on receive closer to
8280 the first usage. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
8282 2010-09-24 Jonathan Bastien-Filiatrault <joe@x2a.org>
8284 * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa: Add DTLS
8285 support to command-line client. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
8287 2010-09-17 Jonathan Bastien-Filiatrault <joe@x2a.org>
8289 * lib/gnutls_constate.c: dtls: Write epoch to sequence number. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
8291 2010-09-06 Jonathan Bastien-Filiatrault <joe@x2a.org>
8293 * lib/gnutls_handshake.c: dtls: Send consistent a client_random. This is necessary when challenged by HelloVerifiyRequest as we MUST
8294 send the same client parameters. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
8296 2010-09-05 Jonathan Bastien-Filiatrault <joe@x2a.org>
8298 * lib/gnutls_handshake.c, lib/gnutls_int.h: dtls: Limit the number
8299 of HelloVerifyRequest round trips. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
8301 2010-09-05 Jonathan Bastien-Filiatrault <joe@x2a.org>
8303 * lib/gnutls_dtls.c, lib/gnutls_handshake.c: dtls: TEMP: Sprinkle
8304 transmits. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
8306 2010-09-05 Jonathan Bastien-Filiatrault <joe@x2a.org>
8308 * lib/gnutls_handshake.c, lib/gnutls_int.h: dtls: Do
8309 HANDSHAKE_HELLO_VERIFY_REQUEST processing. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
8311 2010-09-05 Jonathan Bastien-Filiatrault <joe@x2a.org>
8313 * lib/gnutls_handshake.c: dtls: Add
8314 _gnutls_recv_hello_verify_request. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
8316 2010-09-05 Jonathan Bastien-Filiatrault <joe@x2a.org>
8318 * lib/gnutls_record.c: Decrypt using the proper sequence number. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
8320 2010-09-05 Jonathan Bastien-Filiatrault <joe@x2a.org>
8322 * lib/gnutls_cipher.c, lib/gnutls_cipher.h: dtls: Use proper record
8323 sequence for DTLS decrypt. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
8325 2011-02-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8327 * lib/gnutls_handshake.c: corrected extdatalen
8329 2010-09-05 Jonathan Bastien-Filiatrault <joe@x2a.org>
8331 * lib/gnutls_buffers.c: dtls: Read whole datagrams. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
8333 2009-08-03 Jonathan Bastien-Filiatrault <joe@x2a.org>
8335 * lib/gnutls_handshake.c: dtls: Queue outgoing handshake messages in
8336 the retransmission layer. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
8338 2009-08-03 Jonathan Bastien-Filiatrault <joe@x2a.org>
8340 * lib/gnutls_dtls.c, lib/gnutls_dtls.h: Add outgoing flight buffer
8341 handling code. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
8343 2009-08-03 Jonathan Bastien-Filiatrault <joe@x2a.org>
8345 * lib/gnutls_errors.h: Define _gnutls_dtls_log for DTLS. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
8347 2009-08-03 Jonathan Bastien-Filiatrault <joe@x2a.org>
8349 * lib/gnutls_int.h, lib/gnutls_state.c: Add structures for the
8350 buffered outgoing flight. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
8352 2009-08-03 Jonathan Bastien-Filiatrault <joe@x2a.org>
8354 * lib/gnutls_int.h, lib/gnutls_state.c: Add state for handshake mtu. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
8356 2009-08-03 Jonathan Bastien-Filiatrault <joe@x2a.org>
8358 * lib/gnutls_handshake.c: dtls: Fixup outgoing ClientHello hashing. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
8360 2009-08-03 Jonathan Bastien-Filiatrault <joe@x2a.org>
8362 * lib/gnutls_handshake.c, lib/gnutls_int.h: Add proper handshake
8363 outgoing sequence number. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
8365 2009-08-03 Jonathan Bastien-Filiatrault <joe@x2a.org>
8367 * lib/Makefile.am, lib/gnutls_dtls.c, lib/gnutls_dtls.h: Add
8368 gnutls_dtls.{c,h}. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
8370 2009-08-02 Jonathan Bastien-Filiatrault <joe@x2a.org>
8372 * lib/gnutls_handshake.c: dtls: Remove unsuitable ciphers. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
8374 2009-07-28 Jonathan Bastien-Filiatrault <joe@x2a.org>
8376 * lib/debug.c, lib/gnutls_handshake.c,
8377 lib/includes/gnutls/gnutls.h.in: dtls: Add hanshake fragment headers
8378 when sending handshake. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
8380 2009-07-28 Jonathan Bastien-Filiatrault <joe@x2a.org>
8382 * lib/gnutls_cipher.c, lib/gnutls_int.h, lib/gnutls_record.c: dtls:
8383 Add epoch and sequence number to DTLS packets. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
8385 2009-07-28 Jonathan Bastien-Filiatrault <joe@x2a.org>
8387 * lib/gnutls_record.c: Use increment functions for sequence number. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
8389 2009-07-27 Jonathan Bastien-Filiatrault <joe@x2a.org>
8391 * lib/gnutls_int.h, lib/gnutls_num.c, lib/gnutls_num.h,
8392 lib/gnutls_record.c: dtls: Add types and operations required for the
8393 DTLS epoch and sequence. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
8395 2009-07-29 Jonathan Bastien-Filiatrault <joe@x2a.org>
8397 * lib/gnutls_algorithms.c, lib/gnutls_priority.c: Make version
8398 lookup transport dependent. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
8400 2009-08-03 Jonathan Bastien-Filiatrault <joe@x2a.org>
8402 * lib/gnutls_state.h: dtls: Add _gnutls_is_dtls to check if a
8403 session uses DTLS. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
8405 2009-07-25 Jonathan Bastien-Filiatrault <joe@x2a.org>
8407 * lib/gnutls_int.h, lib/gnutls_state.c,
8408 lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map: Add
8409 gnutls_init_dtls function. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
8411 2009-07-25 Jonathan Bastien-Filiatrault <joe@x2a.org>
8413 * lib/gnutls_int.h: Add DTLS state. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
8415 2009-07-15 Jonathan Bastien-Filiatrault <joe@x2a.org>
8417 * lib/gnutls_algorithms.c, lib/includes/gnutls/gnutls.h.in: Add
8418 DTLS1.0 protocol entry. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
8420 2010-09-17 Jonathan Bastien-Filiatrault <joe@x2a.org>
8422 * lib/ext_session_ticket.c, lib/gnutls_handshake.c,
8423 lib/gnutls_kx.c, lib/gnutls_mbuffers.h: Allocate session buffers of
8424 size, depending on type of session. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
8426 2010-09-25 Jonathan Bastien-Filiatrault <joe@x2a.org>
8428 * lib/gnutls_constate.c: Harmonize "d" argument between constate.c
8429 and compress.c. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
8431 2010-09-24 Jonathan Bastien-Filiatrault <joe@x2a.org>
8433 * src/cli-gaa.c, src/cli.gaa: Fix typo. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
8435 2010-09-21 Jonathan Bastien-Filiatrault <joe@x2a.org>
8437 * lib/gnutls_num.h: Parenthesize UINT64DATA again. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
8439 2011-02-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8441 * doc/cha-intro-tls.texi: reorganization of ciphersuite discussion.
8443 2011-02-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8445 * lib/gnutls_priority.c: Allow using the minus "-" in the -ALL
8448 2011-02-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8450 * lib/gnutls_algorithms.c: Added fixme note on TLS 1.2 PRF per
8453 2011-02-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8455 * lib/gnutls_algorithms.c: The safe renegotiation ciphersuite is not
8456 required to be registered.
8458 2011-02-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8460 * lib/auth_dhe_psk.c: Corrected bug in DHE-PSK in freeing
8463 2011-02-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8465 * lib/gnutls_algorithms.c: Added ciphersuites (from RFC5487):
8466 TLS_PSK_WITH_AES_128_GCM_SHA256 TLS_DHE_PSK_WITH_AES_128_GCM_SHA256
8467 TLS_PSK_WITH_AES_128_CBC_SHA256 TLS_DHE_PSK_WITH_AES_128_CBC_SHA256
8468 TLS_PSK_WITH_NULL_SHA256 TLS_DHE_PSK_WITH_NULL_SHA256
8470 2011-02-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8472 * NEWS, lib/gnutls_extensions.c, lib/gnutls_sig.c: Corrected
8473 signature generation and verification in the Certificate Verify
8474 message when in TLS 1.2. Reported by Todd A. Ouska.
8476 2011-02-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8478 * lib/gnutls_state.c: removed duplicate assignments.
8480 2011-02-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8482 * lib/nettle/cipher.c: upgraded to nettle's new GCM API.
8484 2011-02-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8486 * lib/m4/hooks.m4: increased the C++ library current version.
8488 2011-02-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8490 * NEWS, lib/gnutlsxx.cpp: The C++ interface returns exception on
8491 every error and not only on fatal ones. This allows easier handling
8494 2011-02-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8496 * lib/gnutlsxx.cpp, lib/includes/gnutls/gnutlsxx.h: removed the old
8497 set_priority functions.
8499 2011-02-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8501 * src/cli.c, src/serv.c: removed more deprecated stuff.
8503 2011-02-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8505 * libextra/gnutls_openssl.c, libextra/includes/gnutls/openssl.h:
8506 updated openssl layer to new priority functions (untested).
8508 2011-02-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8510 * lib/gnutls_sig.c: removed unused variable.
8512 2011-02-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8514 * NEWS, lib/gnutls_sig.c: Allow DSA2 even in protocols before TLS
8517 2011-02-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8519 * src/cli.c: set the psk callback only if username/key were not
8520 supplied at command line.
8522 2011-02-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8524 * lib/ext_signature.c, lib/ext_signature.h, lib/gnutls_pk.c,
8525 lib/gnutls_sig.c: In TLS 1.2 under DSS use the hash algorithm
8528 2011-02-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8530 * tests/Makefile.am, tests/openpgp-auth.c, tests/openpgp-auth2.c:
8531 Added new test openpgp-auth2.c that tests openpgp under TLS1.2 and
8534 2011-02-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8536 * tests/anonself.c, tests/dhepskself.c, tests/mini-eagain.c,
8537 tests/mini.c, tests/openpgp-auth.c, tests/pskself.c, tests/resume.c:
8538 Modernized the test applications that now use the
8539 gnutls_priority_set_direct().
8541 2011-02-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8543 * lib/includes/gnutls/compat.h, lib/includes/gnutls/gnutls.h.in:
8544 deprecated gnutls_*_set_priority().
8546 2011-02-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8548 * lib/auth_cert.c, lib/ext_cert_type.c, lib/ext_max_record.c,
8549 lib/ext_safe_renegotiation.c, lib/ext_server_name.c,
8550 lib/ext_session_ticket.c, lib/ext_signature.c, lib/ext_srp.c,
8551 lib/gnutls_extensions.c, lib/gnutls_extensions.h,
8552 lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_pk.c,
8553 lib/gnutls_sig.c, lib/gnutls_state.c,
8554 lib/includes/gnutls/gnutls.h.in, lib/nettle/pk.c: The extensions
8555 code is now using the gnutls_buffer_st.
8557 2011-02-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8559 * lib/gnutls_algorithms.c, lib/x509/x509_int.h: Added sha224 to the
8562 2011-02-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8564 * lib/gnutls_priority.c: The PSK and SRP key exchange algorithms are
8565 not included in the preset priority strings.
8567 2011-02-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8569 * lib/auth_dh_common.c, lib/auth_dh_common.h, lib/auth_dhe_psk.c,
8570 lib/auth_psk.c, lib/auth_psk.h: Callback function is being called in
8571 both PSK-DHE and PSK. Using the callback function will not
8572 overwrite the credentials, which were wrongly being overwritten
8573 using the retrieved username/key. The credentials structure is now
8574 accessed for reading only, as it should have been.
8576 2011-02-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8578 * configure.ac: bumped version.
8580 2011-02-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8582 * doc/cha-programs.texi: Added documentation on p11tool.
8584 2011-02-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8586 * doc/cha-intro-tls.texi, doc/cha-library.texi,
8587 doc/manpages/gnutls-cli.1, doc/manpages/gnutls-serv.1,
8588 lib/gnutls_priority.c, src/common.c: Moved documentation of priority
8589 strings to manual and removed information from manpages and function
8590 pages that now reference the manual section.
8592 2011-02-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8594 * lib/auth_anon.c, lib/auth_cert.c, lib/auth_cert.h,
8595 lib/auth_dh_common.c, lib/auth_dh_common.h, lib/auth_dhe.c,
8596 lib/auth_dhe_psk.c, lib/auth_psk.c, lib/auth_rsa.c,
8597 lib/auth_rsa_export.c, lib/auth_srp.c, lib/auth_srp.h,
8598 lib/auth_srp_rsa.c, lib/gnutls_auth.h, lib/gnutls_kx.c,
8599 lib/gnutls_str.c, lib/gnutls_str.h: Simplified code in
8600 authentication methods by using gnutls_buffer_st instead of
8603 2011-02-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8605 * lib/gnutls_algorithms.c, lib/includes/gnutls/gnutls.h.in: Combined
8608 2011-02-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8610 * lib/auth_cert.c, lib/auth_dhe.c, lib/ext_signature.c,
8611 lib/gnutls_algorithms.c, lib/gnutls_algorithms.h: Several updates in
8612 signature algorithms parsing and sending to avoid sending invalid
8613 signature algorithms.
8615 2011-02-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8617 * lib/gnutls_algorithms.c: Removed unused debugging code.
8619 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8621 * lib/nettle/cipher.c: Removed unneeded initialization.
8623 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8625 * NEWS, doc/cha-auth.texi, doc/cha-programs.texi, lib/Makefile.am,
8626 lib/gnutls_psk_netconf.c, lib/includes/gnutls/compat.h: Removed
8627 gnutls_psk_netconf_derive_key.
8629 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8631 * NEWS, lib/gnutls_cert.c, lib/includes/gnutls/compat.h: Removed
8632 gnutls_certificate_verify_peers.
8634 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8636 * NEWS, lib/gnutls_handshake.c, lib/gnutls_int.h,
8637 lib/gnutls_state.c, lib/includes/gnutls/compat.h: Removed
8638 gnutls_session_set_finished_function().
8640 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8642 * lib/gnutls_alert.c, lib/includes/gnutls/gnutls.h.in: Removed
8643 remaining TLS/IA stuff.
8645 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8647 * src/cli-gaa.c, src/cli-gaa.h, src/cli.gaa, src/serv-gaa.c,
8648 src/serv-gaa.h, src/serv.gaa: Removed more leftovers from opaque PRF
8651 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8653 * lib/gnutls_record.c: Corrected return message from
8656 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8658 * lib/nettle/mac.c: Removed upper limit on MAC algorithm key.
8660 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8662 * lib/gnutls_errors.c: improved premature_termination error message
8664 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8666 * doc/reference/Makefile.am, lib/libgnutls.map: Removed leftovers
8667 from OPRFI extension.
8669 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8671 * NEWS, lib/gnutls_errors.c, lib/gnutls_record.c,
8672 lib/includes/gnutls/gnutls.h.in: gnutls_recv() returns
8673 GNUTLS_E_PREMATURE_TERMINATION on EOF.
8675 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8677 * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa,
8678 src/common.c, src/common.h, src/serv-gaa.c, src/serv-gaa.h,
8679 src/serv.c, src/serv.gaa: Removed deprecated option such as
8680 --protocols, ciphers etc.
8682 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8684 * NEWS: not untested.
8686 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8688 * src/benchmark.c: Set correct iv in GCM.
8690 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8692 * lib/gnutls_cipher.c, lib/gnutls_int.h: Cleanups and moved
8693 definitions to gnutls_int.h. AEAD modes now use the record packet
8696 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8698 * lib/nettle/cipher.c: Reset GCM mode when setting IV.
8700 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8702 * lib/gnutls_algorithms.c: Added more GCM ciphersuites (DHE-* and
8705 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8707 * lib/gnutls_priority.c: updated priorities. Removed ARCFOUR from
8708 the secure ciphersuites and moved GCM to bottom of the ciphers in
8711 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8713 * NEWS, lib/crypto-api.c, lib/gnutls_algorithms.c,
8714 lib/gnutls_algorithms.h, lib/gnutls_cipher_int.c,
8715 lib/gnutls_cipher_int.h, lib/includes/gnutls/crypto.h,
8716 lib/libgnutls.map, src/benchmark.c: Added gnutls_cipher_add_auth()
8717 gnutls_cipher_tag() to export the GCM interface. Updated the
8720 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8722 * lib/gnutls_cert.c: removed
8723 gnutls_certificate_get_openpgp_keyring().
8725 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8727 * lib/gnutls_hash_int.c: minor optimizations.
8729 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8731 * lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h,
8732 lib/gnutls_hash_int.c, lib/gnutls_hash_int.h: inlined several small
8735 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8737 * lib/gnutls_cipher.c, lib/gnutls_cipher_int.c,
8738 lib/gnutls_cipher_int.h, lib/gnutls_handshake.c,
8739 lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_sig.c:
8740 Better error checking on SSL3.
8742 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8744 * lib/gnutls_cipher.c: calculation for c_length occurs in a single
8747 2011-02-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8749 * NEWS: unstable -> untested.
8751 2011-02-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8753 * lib/nettle/mac.c: Increase the maximum HMAC key to account for
8754 anonymous ciphersuites.
8756 2011-02-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8758 * lib/gnutls_hash_int.c: check the error of hash set_key.
8760 2011-02-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8762 * lib/gnutls_kx.c: do not use strlen for fixed string.
8764 2011-02-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8766 * NEWS: updated NEWS on GCM mode.
8768 2011-02-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8770 * lib/nettle/cipher.c: Use nettle's new API for GCM.
8772 2011-02-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8774 * src/cli.c: removed old comment
8776 2011-02-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8778 * NEWS, doc/Makefile.am, doc/cha-functions.texi,
8779 doc/cha-gtls-app.texi, doc/examples/Makefile.am,
8780 doc/examples/ex-client-tlsia.c, lib/gnutls_kx.c,
8781 libextra/Makefile.am, libextra/ext_inner_application.c,
8782 libextra/ext_inner_application.h, libextra/gnutls_extra.c,
8783 libextra/gnutls_ia.c, libextra/libgnutls-extra.map,
8784 tests/Makefile.am, tests/tlsia.c: Removed inner application
8787 2011-02-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8789 * lib/includes/gnutls/compat.h, lib/includes/gnutls/gnutls.h.in:
8790 gnutls_certificate_verify_peers is deprecated.
8792 2011-02-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8794 * lib/gcrypt/mac.c, lib/gnutls_algorithms.c,
8795 lib/gnutls_algorithms.h, lib/gnutls_cipher.c, lib/gnutls_cipher.h,
8796 lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h,
8797 lib/gnutls_constate.c, lib/gnutls_hash_int.c,
8798 lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_priority.c,
8799 lib/includes/gnutls/crypto.h, lib/includes/gnutls/gnutls.h.in,
8800 lib/m4/hooks.m4, lib/nettle/cipher.c, lib/nettle/mac.c: Added
8801 support for GCM ciphersuites (not tested with other implementation).
8803 2011-02-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8805 * lib/gnutls_int.h: Added missing definitions (GNUTLS_MASTER_SIZE
8808 2011-02-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8810 * NEWS, lib/gnutls_state.c, lib/includes/gnutls/compat.h: Removed:
8811 gnutls_session_get_server_random, gnutls_session_get_client_random,
8812 gnutls_session_get_master_secret
8814 2011-02-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8816 * lib/build-aux/config.rpath, tests/suite/Makefile.in: updated.
8818 2011-02-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8820 * lib/Makefile.am, lib/gnutls.pc.in, lib/m4/hooks.m4: Add the nettle
8821 libs into gnutls.pc.
8823 2011-02-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8825 * NEWS, lib/gnutls_cert.c, lib/gnutls_extensions.c,
8826 lib/includes/gnutls/compat.h, lib/m4/hooks.m4: Removed functions:
8827 gnutls_ext_register, gnutls_certificate_get_x509_crls,
8828 gnutls_certificate_get_x509_cas and bumped library version number.
8830 2011-02-05 Andreas Metzler <ametzler@downhill.at.eu.org>
8832 * lib/configure.ac, lib/gnutls.pc.in, lib/m4/hooks.m4: [PATCH 1/4]
8833 adapt pkg-config file for switch from AM_PATH_LIBGCRYPT to
8834 AC_LIB_HAVE_LINKFLAGS [PATCH 2/4] pkg-config: Move libtasn1 from
8835 Libs.private to Requires.private since libtasn1 provides a .pc file.
8836 [PATCH 3/4] pkg-config: drop @LIBGNUTLS_LIBS@ from Libs.private.
8837 This library only contains gnutls itself nowadays, which is in Libs
8838 already. [PATCH 4/4] pkg-config: If gnutls is built with zlib
8839 support list zlib in Requires.private.
8841 2011-02-04 Simon Josefsson <simon@josefsson.org>
8843 * doc/cha-ciphersuites.texi, doc/signatures.texi: Fix MD2
8844 documentation. Suggested by "brian m. carlson" <sandals@crustytoothpaste.net> in
8847 2011-02-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8849 * doc/README.CODING_STYLE: updated coding style.
8851 2011-02-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8853 * NEWS: documented gnutls_session_get_* deprecated functions.
8855 2011-02-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8857 * tests/x509paths/README: updated README on certificate
8858 verifications that fail.
8860 2011-02-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8862 * NEWS, src/certtool-common.h, src/certtool-gaa.c,
8863 src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: Added new
8864 functionality to certtool, and can verify certificates against a
8865 list of CAs using the --verify option.
8867 2011-02-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8869 * lib/x509/verify.c, tests/chainverify.c: Time checks were moved to
8870 _gnutls_verify_certificate2(). This allows for straightforward
8871 chain verification, and thus better printing of the chain output,
8872 although some checks might be performed in duplicate. As a
8873 side-effect better errors are returned (or precisely more
8874 combinations of verification errors), thus chainverify test was
8877 2011-02-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8879 * lib/x509/verify-high.c: Set memory to zero on allocation.
8881 2011-02-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8883 * doc/cha-gtls-app.texi: fix in contents.
8885 2011-02-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8887 * doc/examples/examples.h: prototype fix.
8889 2011-02-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8891 * doc/examples/ex-verify.c, lib/gnutls_cert.c,
8892 lib/includes/gnutls/x509.h, lib/x509/verify-high.c, src/certtool.c:
8893 gnutls_x509_trust_list_init() has an extra argument that allows
8894 fine-tuning of the used memory.
8896 2011-02-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8898 * doc/cha-bib.texi: Updated references of rfc5081 to rfc6091.
8900 2011-02-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8902 * doc/cha-cert-auth.texi, doc/cha-gtls-app.texi,
8903 doc/examples/ex-verify.c: Documented the new verification functions.
8905 2011-01-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8907 * src/certtool.c, tests/sha2/sha2: Modified output to not confuse
8910 2011-01-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8912 * lib/x509/verify.c: Better output when removing certificates from
8915 2011-01-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8917 * tests/pkcs1-padding/pkcs1-pad: Modified to work on new certtool -e
8920 2011-01-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8922 * NEWS, doc/examples/ex-verify.c, lib/auth_cert.h,
8923 lib/gnutls_cert.c, lib/gnutls_x509.c, lib/includes/gnutls/compat.h,
8924 lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/x509.h,
8925 lib/libgnutls.map, lib/x509/crl.c, lib/x509/x509.c, src/certtool.c,
8926 tests/certificate_set_x509_crl.c: The internal subsystem uses the
8927 new certificate verification functions. This has the side effect of
8928 deprecating gnutls_certificate_get_x509_crls() and
8929 gnutls_certificate_get_x509_cas() that can no longer operation since
8930 they relied on internal structures.
8932 2011-01-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8934 * NEWS, doc/cha-gtls-app.texi, doc/examples/ex-verify.c,
8935 lib/Makefile.am, lib/hash.c, lib/hash.h,
8936 lib/includes/gnutls/x509.h, lib/libgnutls.map,
8937 lib/x509/Makefile.am, lib/x509/crl.c, lib/x509/verify-high.c,
8938 lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509_int.h,
8939 src/certtool.c: Added a new API to verify certificates. It is more
8940 efficient and can be used to get details about the verification
8943 2011-01-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8945 * tests/x509paths/chain: better output in chain output.
8947 2011-01-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8949 * NEWS, lib/includes/gnutls/x509.h, lib/x509/crl.c,
8950 lib/x509/verify.c, lib/x509/x509.c: exported
8951 gnutls_x509_crl_get_raw_issuer_dn()
8953 2011-01-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8955 * lib/x509/x509.c: corrected typos
8957 2011-01-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8959 * lib/pakchois/pakchois.c: CKR_CRYPTOKI_ALREADY_INITIALIZED is not
8960 treated as an error, and Finalize is not called in that case.
8962 2011-01-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8964 * NEWS, lib/gnutls_privkey.c, lib/includes/gnutls/compat.h,
8965 lib/openpgp/privkey.c: Reverted removal of
8966 gnutls_openpgp_privkey_sign_hash() to retain compatibility with
8967 2.10.x. That function is now deprecated instead.
8969 2011-01-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8971 * lib/gnutls_privkey.c: Added checks before importing keys and
8972 updated documentation.
8974 2011-01-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8976 * tests/suite/Makefile.in: updated Makefile.in
8978 2011-01-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8980 * doc/examples/ex-crq.c, lib/configure.ac,
8981 lib/includes/gnutls/compat.h, lib/includes/gnutls/gnutls.h.in,
8982 lib/includes/gnutls/x509.h, src/certtool.c, tests/crq_key_id.c:
8983 fixes in internal build with the new deprecated functions. We allow
8984 them to be used since they are inter-dependent.
8986 2011-01-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8988 * lib/x509/x509_int.h: replaced old gnutls_pk_algorithm.
8990 2011-01-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8992 * lib/includes/gnutls/compat.h: depends on gnutls/x509.h to compile.
8994 2011-01-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8996 * NEWS, lib/includes/gnutls/compat.h, lib/includes/gnutls/x509.h,
8997 lib/x509/crl_write.c: deprecated gnutls_x509_crl_sign(),
8998 gnutls_x509_crl_sign2() and
8999 gnutls_x509_crq_get_preferred_hash_algorithm().
9001 2011-01-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9003 * NEWS, lib/includes/gnutls/compat.h, lib/includes/gnutls/x509.h,
9004 lib/x509/crq.c: Deprecated gnutls_x509_crq_sign2() and
9005 gnutls_x509_crq_sign() in favor for gnutls_x509_crq_privkey_sign().
9007 2011-01-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9009 * NEWS, lib/libgnutls.map: minor fixes.
9011 2011-01-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9013 * NEWS, lib/includes/gnutls/compat.h, lib/includes/gnutls/x509.h,
9014 lib/libgnutls.map, lib/x509/privkey.c, lib/x509/x509.c,
9015 src/certtool.c, tests/cve-2009-1415.c, tests/x509sign-verify.c:
9016 gnutls_x509_crt_verify_hash: DEPRECATED gnutls_x509_crt_verify_data:
9017 DEPRECATED gnutls_x509_crt_get_verify_algorithm: DEPRECATED
9018 gnutls_x509_crt_get_preferred_hash_algorithm: DEPRECATED Removed the
9019 new gnutls_x509_privkey_sign_data2() and
9020 gnutls_x509_privkey_sign_hash2(). That functionality will be only in the abstract.h pubkey and privkey
9021 structures, to avoid duplication for every certificate type.
9023 2011-01-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9025 * src/serv.c: Simplified macro to snprintf() in order to prevent
9026 issues caused when snprintf() is a macro itself. Reported and
9027 initial patch by Camillo Lugaresi.
9029 2011-01-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9031 * tests/suite/Makefile.in: Revert "Remove, it is generated." This reverts commit de3a601e502b24f047412a161085f7fbd898b3f3 because
9032 this file is not automatically generated (not included in top
9035 2011-01-02 Simon Josefsson <simon@josefsson.org>
9037 * lib/m4/hooks.m4: Specify minimum libgcrypt version.
9039 2010-12-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9041 * doc/cha-internals.texi: Added discussion on crypto backend for
9042 crypto libraries and /dev/crypto.
9044 2010-12-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9046 * NEWS, lib/gnutls_privkey.c, lib/includes/gnutls/abstract.h,
9047 lib/includes/gnutls/compat.h, lib/includes/gnutls/x509.h,
9048 lib/x509/crq.c, lib/x509/privkey.c, lib/x509/sign.c: Renamed
9049 gnutls_privkey_sign_data() to gnutls_privkey_sign_data2() to match
9050 the similar function gnutls_x509_privkey_sign_data2().
9051 gnutls_x509_privkey_sign_data() was deprecated.
9053 2010-12-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9055 * lib/gnutls_str.c: Extra sanity check.
9057 2010-12-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9059 * lib/auth_srp_passwd.c: Use snprintf() to print an integer.
9061 2010-12-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9063 * lib/x509/output.c: Use snprintf() to print IPs. There was a check
9064 just before that, but be safe, just in case.
9066 2010-12-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9068 * doc/cha-auth.texi: Use SRP for password authentication.
9070 2010-12-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9072 * doc/cha-auth.texi, lib/gnutls_cert.c, lib/gnutls_extensions.c,
9073 lib/gnutls_psk_netconf.c, lib/gnutls_state.c,
9074 lib/includes/gnutls/compat.h, lib/x509/privkey.c: Do not include
9075 deprecated functions to library documentation.
9077 2010-12-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9079 * NEWS, lib/includes/gnutls/compat.h, lib/includes/gnutls/x509.h,
9080 lib/x509/privkey.c: gnutls_x509_privkey_verify_data() was
9083 2010-12-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9085 * lib/gnutls_pubkey.c: Documented key usage of pubkey.
9087 2010-12-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9089 * lib/gnutls_pubkey.c: Set public key bits on all import functions.
9090 Issue reported by Murray Kucheawy.
9092 2010-12-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9094 * NEWS, lib/gnutls_privkey.c, lib/includes/gnutls/pkcs11.h,
9095 lib/pkcs11_int.h, lib/pkcs11_privkey.c:
9096 gnutls_pkcs11_privkey_sign_data(),
9097 gnutls_pkcs11_privkey_sign_hash2() and
9098 gnutls_pkcs11_privkey_decrypt_data() were removed. The abstract.h
9099 functions should be used instead.
9101 2010-12-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9103 * NEWS, lib/gnutls_privkey.c, lib/includes/gnutls/openpgp.h,
9104 lib/openpgp/gnutls_openpgp.h, lib/openpgp/pgp.c,
9105 lib/openpgp/privkey.c: Removed the newly added functions:
9106 gnutls_openpgp_privkey_sign_hash2(),
9107 gnutls_openpgp_privkey_sign_data2(),
9108 gnutls_openpgp_crt_verify_hash() That way the operations in
9109 abstract.h should be used to get the same functionality, and API
9110 will be kept simple and easier to maintain. The corresponding
9111 gnutls_x509_* are kept for backwards compatibility.
9113 2010-12-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9115 * lib/gnutls_sig.c: Do not be strict on RSA hash algorithm selection
9118 2010-12-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9120 * lib/gnutls_cert.h, lib/gnutls_sig.c, lib/gnutls_x509.c: Removed
9121 unneeded definitions, and more careful deinitializations in
9122 parse_der_cert_mem().
9124 2010-12-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9126 * tests/pathlen/ca-no-pathlen.pem,
9127 tests/pathlen/no-ca-or-pathlen.pem: updated certificates to account
9128 for extra null byte added in negative numbers.
9130 2010-12-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9132 * tests/cve-2009-1415.c: Account for GNUTLS_E_PK_SIG_VERIFY_FAILED.
9134 2010-12-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9136 * lib/gnutls_privkey.c: Corrected bug in gnutls_privkey_sign_data().
9138 2010-12-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9140 * lib/gnutls_sig.c: some fixes in pk_prepare_hash().
9142 2010-12-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9144 * NEWS, lib/gnutls_pubkey.c, lib/openpgp/pgp.c, lib/x509/privkey.c,
9145 lib/x509/verify.c, lib/x509/x509.c, tests/x509sign-verify.c: The
9146 verification functions now return a GNUTLS_E_PK_SIG_VERIFY_FAILED on
9147 signature verification error.
9149 2010-12-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9151 * src/p11tool-gaa.c, src/p11tool.gaa: The default input format for
9154 2010-12-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9156 * lib/gnutls_pubkey.c: importing a pubkey from raw params will set
9157 the bits field correctly.
9159 2010-12-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9161 * NEWS: Documented the addtion of gnutls_pubkey_import_privkey() and
9162 gnutls_pubkey_verify_data()
9164 2010-12-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9166 * lib/gnutls_pubkey.c, lib/includes/gnutls/abstract.h,
9167 lib/libgnutls.map, lib/x509/verify.c, tests/x509sign-verify.c: Added
9168 gnutls_pubkey_verify_data and test vectors.
9170 2010-12-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9172 * doc/errcodes.c, doc/examples/ex-alert.c,
9173 doc/examples/ex-cert-select-pkcs11.c,
9174 doc/examples/ex-cert-select.c, doc/examples/ex-client-psk.c,
9175 doc/examples/ex-client-resume.c, doc/examples/ex-client-srp.c,
9176 doc/examples/ex-client-tlsia.c, doc/examples/ex-client1.c,
9177 doc/examples/ex-client2.c, doc/examples/ex-crq.c,
9178 doc/examples/ex-pkcs12.c, doc/examples/ex-rfc2818.c,
9179 doc/examples/ex-serv-anon.c, doc/examples/ex-serv-pgp.c,
9180 doc/examples/ex-serv-psk.c, doc/examples/ex-serv-srp.c,
9181 doc/examples/ex-serv1.c, doc/examples/ex-session-info.c,
9182 doc/examples/ex-verify.c, doc/examples/ex-x509-info.c,
9183 doc/examples/examples.h, doc/examples/tcp.c, doc/printlist.c,
9184 guile/src/core.c, guile/src/extra.c, guile/src/utils.h,
9185 lib/abstract_int.h, lib/auth_anon.c, lib/auth_cert.c,
9186 lib/auth_cert.h, lib/auth_dh_common.c, lib/auth_dh_common.h,
9187 lib/auth_dhe.c, lib/auth_dhe_psk.c, lib/auth_psk.c,
9188 lib/auth_psk_passwd.c, lib/auth_psk_passwd.h, lib/auth_rsa.c,
9189 lib/auth_rsa_export.c, lib/auth_srp.c, lib/auth_srp.h,
9190 lib/auth_srp_passwd.c, lib/auth_srp_passwd.h, lib/auth_srp_rsa.c,
9191 lib/auth_srp_sb64.c, lib/crypto-api.c, lib/crypto.c, lib/crypto.h,
9192 lib/cryptodev.c, lib/debug.c, lib/ext_cert_type.c,
9193 lib/ext_max_record.c, lib/ext_safe_renegotiation.c,
9194 lib/ext_safe_renegotiation.h, lib/ext_server_name.c,
9195 lib/ext_session_ticket.c, lib/ext_signature.c, lib/ext_signature.h,
9196 lib/ext_srp.c, lib/gcrypt/cipher.c, lib/gcrypt/init.c,
9197 lib/gcrypt/mac.c, lib/gcrypt/mpi.c, lib/gcrypt/pk.c,
9198 lib/gnutls_alert.c, lib/gnutls_algorithms.c,
9199 lib/gnutls_algorithms.h, lib/gnutls_anon_cred.c, lib/gnutls_auth.c,
9200 lib/gnutls_auth.h, lib/gnutls_buffers.c, lib/gnutls_buffers.h,
9201 lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_cipher.c,
9202 lib/gnutls_cipher.h, lib/gnutls_cipher_int.c,
9203 lib/gnutls_cipher_int.h, lib/gnutls_compress.c,
9204 lib/gnutls_compress.h, lib/gnutls_constate.c,
9205 lib/gnutls_constate.h, lib/gnutls_datum.c, lib/gnutls_datum.h,
9206 lib/gnutls_db.c, lib/gnutls_db.h, lib/gnutls_dh.c, lib/gnutls_dh.h,
9207 lib/gnutls_dh_primes.c, lib/gnutls_errors.c,
9208 lib/gnutls_extensions.c, lib/gnutls_extensions.h,
9209 lib/gnutls_global.c, lib/gnutls_handshake.c,
9210 lib/gnutls_handshake.h, lib/gnutls_hash_int.c,
9211 lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_kx.c,
9212 lib/gnutls_kx.h, lib/gnutls_mbuffers.c, lib/gnutls_mbuffers.h,
9213 lib/gnutls_mem.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h,
9214 lib/gnutls_num.c, lib/gnutls_pk.c, lib/gnutls_pk.h,
9215 lib/gnutls_priority.c, lib/gnutls_privkey.c, lib/gnutls_psk.c,
9216 lib/gnutls_psk_netconf.c, lib/gnutls_pubkey.c, lib/gnutls_record.c,
9217 lib/gnutls_record.h, lib/gnutls_rsa_export.c, lib/gnutls_session.c,
9218 lib/gnutls_session_pack.c, lib/gnutls_session_pack.h,
9219 lib/gnutls_sig.c, lib/gnutls_sig.h, lib/gnutls_srp.c,
9220 lib/gnutls_srp.h, lib/gnutls_state.c, lib/gnutls_state.h,
9221 lib/gnutls_str.c, lib/gnutls_str.h, lib/gnutls_supplemental.c,
9222 lib/gnutls_supplemental.h, lib/gnutls_ui.c, lib/gnutls_v2_compat.c,
9223 lib/gnutls_v2_compat.h, lib/gnutls_x509.c, lib/gnutls_x509.h,
9224 lib/includes/gnutls/abstract.h, lib/includes/gnutls/compat.h,
9225 lib/includes/gnutls/crypto.h, lib/includes/gnutls/gnutls.h.in,
9226 lib/includes/gnutls/gnutlsxx.h, lib/includes/gnutls/openpgp.h,
9227 lib/includes/gnutls/pkcs11.h, lib/includes/gnutls/pkcs12.h,
9228 lib/includes/gnutls/x509.h, lib/locks.c, lib/nettle/cipher.c,
9229 lib/nettle/egd.c, lib/nettle/mpi.c, lib/nettle/pk.c,
9230 lib/nettle/rnd.c, lib/opencdk/armor.c, lib/opencdk/context.h,
9231 lib/opencdk/dummy.c, lib/opencdk/filters.h, lib/opencdk/hash.c,
9232 lib/opencdk/kbnode.c, lib/opencdk/keydb.c, lib/opencdk/keydb.h,
9233 lib/opencdk/literal.c, lib/opencdk/main.c, lib/opencdk/main.h,
9234 lib/opencdk/misc.c, lib/opencdk/new-packet.c,
9235 lib/opencdk/opencdk.h, lib/opencdk/packet.h, lib/opencdk/pubkey.c,
9236 lib/opencdk/read-packet.c, lib/opencdk/seskey.c,
9237 lib/opencdk/sig-check.c, lib/opencdk/stream.c,
9238 lib/opencdk/stream.h, lib/opencdk/verify.c,
9239 lib/opencdk/write-packet.c, lib/openpgp/compat.c,
9240 lib/openpgp/extras.c, lib/openpgp/gnutls_openpgp.c,
9241 lib/openpgp/gnutls_openpgp.h, lib/openpgp/openpgp_int.h,
9242 lib/openpgp/output.c, lib/openpgp/pgp.c, lib/openpgp/pgpverify.c,
9243 lib/openpgp/privkey.c, lib/pakchois/pakchois.c,
9244 lib/pakchois/pakchois.h, lib/pakchois/pakchois11.h, lib/pkcs11.c,
9245 lib/pkcs11_int.h, lib/pkcs11_privkey.c, lib/pkcs11_secret.c,
9246 lib/pkcs11_write.c, lib/random.c, lib/system.c, lib/system.h,
9247 lib/x509/common.c, lib/x509/common.h, lib/x509/crl.c,
9248 lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/dn.c,
9249 lib/x509/extensions.c, lib/x509/mpi.c, lib/x509/output.c,
9250 lib/x509/pbkdf2-sha1.c, lib/x509/pbkdf2-sha1.h, lib/x509/pkcs12.c,
9251 lib/x509/pkcs12_bag.c, lib/x509/pkcs12_encr.c, lib/x509/pkcs7.c,
9252 lib/x509/privkey.c, lib/x509/privkey_pkcs8.c,
9253 lib/x509/rfc2818_hostname.c, lib/x509/sign.c, lib/x509/verify.c,
9254 lib/x509/x509.c, lib/x509/x509_int.h, lib/x509/x509_write.c,
9255 lib/x509_b64.c, lib/x509_b64.h, libextra/ext_inner_application.c,
9256 libextra/ext_inner_application.h, libextra/gnutls_extra.c,
9257 libextra/gnutls_ia.c, libextra/gnutls_openssl.c,
9258 libextra/includes/gnutls/extra.h,
9259 libextra/includes/gnutls/openssl.h, libextra/openssl_compat.c,
9260 libextra/openssl_compat.h, maint.mk, src/benchmark.c,
9261 src/certtool-cfg.c, src/certtool-cfg.h, src/certtool-common.c,
9262 src/certtool-common.h, src/certtool.c, src/cli.c, src/common.c,
9263 src/common.h, src/crypt.c, src/p11tool.c, src/p11tool.h,
9264 src/pkcs11.c, src/prime.c, src/psk.c, src/serv.c, src/tests.c,
9265 src/tests.h, src/tls_test.c, tests/anonself.c,
9266 tests/certificate_set_x509_crl.c, tests/chainverify.c,
9267 tests/crq_apis.c, tests/crq_key_id.c, tests/cve-2008-4989.c,
9268 tests/dhepskself.c, tests/dn.c, tests/dn2.c, tests/gc.c,
9269 tests/mini-eagain.c, tests/mini-x509-rehandshake.c,
9270 tests/mini-x509.c, tests/mini.c, tests/mpi.c,
9271 tests/nul-in-x509-names.c, tests/openpgp-auth.c,
9272 tests/openpgp-keyring.c, tests/openpgp_test.c, tests/openpgpself.c,
9273 tests/openssl.c, tests/pgps2kgnu.c, tests/pkcs12_encode.c,
9274 tests/pkcs12_s2k.c, tests/pkcs12_s2k_pem.c, tests/pskself.c,
9275 tests/resume.c, tests/safe-renegotiation/srn0.c,
9276 tests/safe-renegotiation/srn1.c, tests/safe-renegotiation/srn2.c,
9277 tests/safe-renegotiation/srn3.c, tests/safe-renegotiation/srn4.c,
9278 tests/safe-renegotiation/srn5.c, tests/set_pkcs12_cred.c,
9279 tests/simple.c, tests/tlsia.c, tests/utils.c, tests/utils.h,
9280 tests/x509_altname.c, tests/x509_test.c, tests/x509dn.c,
9281 tests/x509self.c, tests/x509sign-verify.c: Indented code. Use same
9282 indentation but with -nut to avoid usage of tabs. In several editors
9283 tabs can be configured not to be 8 spaces and this produces
9284 artifacts with the current indentation that is a mixture of tabs and
9287 2010-12-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9289 * lib/gnutls_privkey.c: _gnutls_privkey_get_public_mpis() handles
9292 2010-12-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9294 * lib/abstract_int.h, lib/gnutls_privkey.c, lib/gnutls_pubkey.c,
9295 lib/includes/gnutls/abstract.h, lib/libgnutls.map: Added
9296 gnutls_pubkey_import_privkey(), that will copy the public key from a
9297 gnutls_privkey_t structure.
9299 2010-12-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9301 * NEWS, lib/libgnutls.map: Do not export the non-existant symbols
9302 gnutls_pkcs11_privkey_sign_hash and gnutls_privkey_sign_hash.
9304 2010-12-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9306 * NEWS: documented new functions
9308 2010-12-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9310 * NEWS: Added new functions.
9312 2010-12-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9314 * lib/libgnutls.map: Added new functions.
9316 2010-12-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9318 * lib/includes/gnutls/compat.h, lib/includes/gnutls/x509.h:
9319 de-deprecated gnutls_x509_crt_verify_hash()
9321 2010-12-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9323 * lib/includes/gnutls/openpgp.h, lib/libgnutls.map,
9324 lib/openpgp/pgp.c, tests/x509sign-verify.c: Added
9325 gnutls_openpgp_crt_verify_hash().
9327 2010-12-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9329 * lib/includes/gnutls/pkcs11.h, lib/pkcs11_privkey.c: added
9330 gnutls_privkey_sign_hash2()
9332 2010-12-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9334 * lib/gnutls_privkey.c, lib/gnutls_sig.c, lib/gnutls_sig.h,
9335 lib/openpgp/privkey.c, lib/pkcs11_privkey.c, lib/x509/privkey.c:
9336 Simplified preparation of signing code.
9338 2010-12-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9340 * lib/gnutls_privkey.c, lib/gnutls_pubkey.c, lib/gnutls_sig.c,
9341 lib/gnutls_sig.h, lib/openpgp/gnutls_openpgp.h,
9342 lib/openpgp/privkey.c, lib/pkcs11_int.h, lib/pkcs11_privkey.c,
9343 lib/x509/Makefile.am, lib/x509/privkey.c, lib/x509/sign.c,
9344 lib/x509/sign.h: deprecated x509/sign.h and moved functionality of
9347 2010-12-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9349 * lib/x509/sign.c: pk_hash_data() will fail unless DSA or RSA are
9352 2010-12-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9354 * lib/x509/privkey.c: better comments
9356 2010-12-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9358 * lib/openpgp/gnutls_openpgp.c, lib/openpgp/privkey.c:
9359 reorganization of the privkey_ functions().
9361 2010-12-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9363 * lib/gnutls_privkey.c, lib/includes/gnutls/abstract.h,
9364 lib/includes/gnutls/compat.h, lib/includes/gnutls/openpgp.h,
9365 lib/includes/gnutls/x509.h, lib/libgnutls.map,
9366 lib/openpgp/gnutls_openpgp.c, lib/x509/privkey.c: Introduced
9367 gnutls_*_privkey_sign_hash2() that is a high level function to
9370 2010-12-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9372 * lib/gnutls_privkey.c, lib/pkcs11_privkey.c, lib/x509/privkey.c,
9373 lib/x509/sign.c, lib/x509/sign.h: Separated the sign_data functions
9374 to a hashing phase, a preparing phase, and the actual signing.
9376 2010-12-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9378 * NEWS: documented deprecated functions.
9380 2010-12-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9382 * lib/includes/gnutls/compat.h, lib/includes/gnutls/openpgp.h,
9383 lib/includes/gnutls/pkcs11.h: All the sign hash functions were
9386 2010-12-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9388 * lib/includes/gnutls/compat.h, lib/includes/gnutls/x509.h:
9389 gnutls_x509_privkey_sign_hash() is dangerous and was deprecated.
9390 Added some text explaining why some functions were deprecated.
9392 2010-12-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9394 * NEWS: documented previous update.
9396 2010-12-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9398 * lib/x509/privkey.c, lib/x509/x509.c: export_raw() functions now
9399 add leading zero in mpis.
9401 2010-12-07 Simon Josefsson <simon@josefsson.org>
9405 2010-12-07 Simon Josefsson <simon@josefsson.org>
9407 * lib/includes/gnutls/crypto.h: C++ fixes, tiny patch from "Brendan
9408 Doherty" <brendand@gentrack.com>.
9410 2010-12-07 Simon Josefsson <simon@josefsson.org>
9412 * gl/m4/getdelim.m4, gl/m4/getline.m4, gl/m4/memchr.m4,
9413 gl/m4/printf.m4, gl/m4/stdint.m4, lib/gl/m4/fcntl-o.m4,
9414 lib/gl/m4/iconv.m4, lib/gl/m4/intdiv0.m4, lib/gl/m4/memchr.m4,
9415 lib/gl/m4/memmem.m4, lib/gl/m4/printf.m4, lib/gl/m4/stdint.m4:
9416 Update gnulib files.
9418 2010-12-07 Simon Josefsson <simon@josefsson.org>
9420 * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4,
9421 libextra/configure.ac: Bump versions.
9423 2010-12-07 Simon Josefsson <simon@josefsson.org>
9425 * ChangeLog: Generated.
9427 2010-12-07 Simon Josefsson <simon@josefsson.org>
9429 * configure.ac, lib/configure.ac, lib/m4/hooks.m4,
9430 libextra/configure.ac: Bump versions.
9432 2010-12-06 Simon Josefsson <simon@josefsson.org>
9434 * ChangeLog: Generated.
9436 2010-12-06 Simon Josefsson <simon@josefsson.org>
9438 * tests/Makefile.am: Don't fail on 'make distcheck'.
9440 2010-12-06 Simon Josefsson <simon@josefsson.org>
9442 * NEWS: Version 2.11.6.
9444 2010-12-06 Simon Josefsson <simon@josefsson.org>
9446 * lib/gnutls_str.c: Indent.
9448 2010-12-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9450 * NEWS: documented SSL 3.0 record version change.
9452 2010-12-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9454 * lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_priority.c:
9455 SSL3_RECORD_VERSION priority option is now the default. That is in
9456 order to not confuse non TLS 1.2 compliant implementations that
9457 don't like a TLS 1.2 record.
9459 2010-12-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9461 * lib/gnutls_str.c: simplified escape and unescape.
9463 2010-12-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9465 * THANKS: Added Michael.
9467 2010-12-06 Simon Josefsson <simon@josefsson.org>
9469 * cfg.mk, lib/gnutls_priority.c, lib/gnutls_state.c,
9470 lib/includes/gnutls/compat.h, lib/includes/gnutls/gnutls.h.in,
9471 lib/includes/gnutls/pkcs11.h, lib/nettle/rnd.c, lib/pkcs11.c,
9472 lib/pkcs11_int.h, lib/pkcs11_secret.c, lib/pkcs11_write.c,
9473 lib/x509/verify.c, src/certtool-common.c, src/certtool-common.h,
9474 src/certtool.c, src/cli.c, src/common.c, src/p11tool.c,
9475 src/p11tool.h, src/pkcs11.c, src/serv.c, tests/chainverify.c,
9476 tests/openpgp-auth.c: Indent code.
9478 2010-12-06 Simon Josefsson <simon@josefsson.org>
9480 * maint.mk: Update gnulib files.
9482 2010-12-06 Simon Josefsson <simon@josefsson.org>
9484 * gl/override/top/maint.mk.diff: Remove.
9486 2010-12-06 Simon Josefsson <simon@josefsson.org>
9488 * .gitignore: Update.
9490 2010-12-06 Simon Josefsson <simon@josefsson.org>
9492 * lib/gnutls_priority.c, lib/pkcs11_secret.c, src/p11tool.c,
9493 src/p11tool.gaa: Fix syntax-check nits.
9495 2010-12-06 Simon Josefsson <simon@josefsson.org>
9497 * .x-sc_bindtextdomain: Ignore more.
9499 2010-12-06 Simon Josefsson <simon@josefsson.org>
9501 * GNUmakefile, build-aux/gendocs.sh, build-aux/pmccabe.css,
9502 build-aux/pmccabe2html, gl/Makefile.am, gl/arpa_inet.in.h,
9503 gl/float+.h, gl/gettext.h, gl/inet_ntop.c, gl/intprops.h,
9504 gl/m4/alloca.m4, gl/m4/arpa_inet_h.m4, gl/m4/getdelim.m4,
9505 gl/m4/getline.m4, gl/m4/getpass.m4, gl/m4/gnulib-common.m4,
9506 gl/m4/gnulib-comp.m4, gl/m4/mmap-anon.m4, gl/m4/printf.m4,
9507 gl/m4/readline.m4, gl/m4/string_h.m4, gl/m4/sys_ioctl_h.m4,
9508 gl/m4/sys_select_h.m4, gl/m4/sys_socket_h.m4, gl/m4/unistd_h.m4,
9509 gl/m4/vasnprintf.m4, gl/m4/wchar_h.m4, gl/printf-parse.c,
9510 gl/printf-parse.h, gl/stdint.in.h, gl/stdio.in.h, gl/stdlib.in.h,
9511 gl/string.in.h, gl/sys_select.in.h, gl/sys_socket.in.h,
9512 gl/tests/Makefile.am, gl/tests/init.sh,
9513 gl/tests/test-select-stdin.c, gl/tests/test-select.c,
9514 gl/tests/test-update-copyright.sh, gl/tests/verify.h, gl/time.in.h,
9515 gl/unistd.in.h, gl/vasnprintf.c, gl/verify.h, gl/wchar.in.h,
9516 lib/gl/Makefile.am, lib/gl/float+.h, lib/gl/gettext.h,
9517 lib/gl/m4/alloca.m4, lib/gl/m4/glibc2.m4, lib/gl/m4/glibc21.m4,
9518 lib/gl/m4/gnulib-common.m4, lib/gl/m4/gnulib-comp.m4,
9519 lib/gl/m4/iconv.m4, lib/gl/m4/memmem.m4, lib/gl/m4/mmap-anon.m4,
9520 lib/gl/m4/printf.m4, lib/gl/m4/string_h.m4,
9521 lib/gl/m4/sys_socket_h.m4, lib/gl/m4/unistd_h.m4,
9522 lib/gl/m4/vasnprintf.m4, lib/gl/m4/wchar_h.m4,
9523 lib/gl/printf-parse.c, lib/gl/printf-parse.h, lib/gl/stdint.in.h,
9524 lib/gl/stdio.in.h, lib/gl/stdlib.in.h, lib/gl/string.in.h,
9525 lib/gl/sys_socket.in.h, lib/gl/tests/Makefile.am,
9526 lib/gl/tests/init.sh, lib/gl/tests/intprops.h,
9527 lib/gl/tests/verify.h, lib/gl/time.in.h, lib/gl/unistd.in.h,
9528 lib/gl/vasnprintf.c, lib/gl/verify.h, lib/gl/wchar.in.h,
9529 libextra/gl/m4/gnulib-common.m4, maint.mk: Update gnulib files.
9531 2010-12-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9533 * tests/Makefile.am: Temporarily remove gendh test. It takes
9534 extremely long time under valgrind.
9536 2010-12-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9538 * NEWS, lib/gnutls_sig.c, lib/x509/common.c, lib/x509/common.h,
9539 lib/x509/mpi.c, lib/x509/sign.c, lib/x509/verify.c: Use ASN1_NULL
9540 when writing parameters for RSA signatures. This makes us comply
9541 with RFC3279. Reported by Michael Rommel.
9543 2010-12-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9545 * NEWS, src/serv.c: Corrected buffer overflow in gnutls-serv by
9546 Tomas Mraz. The gnutls-serv uses fixed allocated buffer for the response which
9547 can be pretty long if a client certificate is presented to it and
9548 the http header is large. This causes buffer overflow and heap
9549 corruption which then leads to random segfaults or aborts. It was reported originally here:
9550 https://bugzilla.redhat.com/show_bug.cgi?id=659259 The attached patch changes sprintf calls in peer_print_info() to
9551 snprintf so the buffer is never overflowed.
9553 2010-12-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9555 * lib/m4/hooks.m4: increased revision
9557 2010-12-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9559 * src/Makefile.am: Added p11tool.h
9561 2010-12-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9563 * NEWS: released 2.11.5
9565 2010-12-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9567 * doc/cha-internals.texi: escaped chars.
9569 2010-12-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9571 * doc/cha-internals.texi: Updated extension writing code. Still not
9574 2010-12-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9576 * doc/cha-cert-auth.texi: PKCS #11 fixes
9578 2010-12-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9580 * doc/examples/ex-cert-select-pkcs11.c: Corrected pkcs11 example
9583 2010-11-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9585 * src/pkcs11.c: Prefix mechanism number with 0x.
9587 2010-11-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9589 * lib/pakchois/pakchois11.h, src/pkcs11.c: Added camellia and
9592 2010-11-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9594 * configure.ac, lib/configure.ac, lib/nettle/rnd.c: Use rusage if
9595 present. Moved check to correct config and included resource.h
9598 2010-11-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9600 * lib/nettle/rnd.c: More details on the text
9602 2010-11-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9604 * lib/pkcs11.c: Corrected copyright statement
9606 2010-11-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9608 * lib/nettle/rnd.c: Corrected copyright header. Added Niels.
9610 2010-11-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9612 * NEWS, lib/gnutls_cert.c, lib/includes/gnutls/x509.h,
9613 lib/x509/verify.c, src/certtool.c, src/cli.c, tests/chainverify.c:
9614 Reverted default behavior for verification and introduced
9615 GNUTLS_VERIFY_DO_NOT_ALLOW_X509_V1_CA_CRT. Thus by default V1
9616 trusted CAs are allowed, unless the new flag is specified.
9618 2010-11-25 Simon Josefsson <simon@josefsson.org>
9622 2010-11-25 Simon Josefsson <simon@josefsson.org>
9624 * tests/suite/Makefile.in: Remove, it is generated.
9626 2010-11-25 Simon Josefsson <simon@josefsson.org>
9628 * README: No space at eol.
9630 2010-11-25 Simon Josefsson <simon@josefsson.org>
9632 * tests/safe-renegotiation/Makefile.am: Fix syntax-check warning.
9634 2010-11-25 Simon Josefsson <simon@josefsson.org>
9636 * cfg.mk: Ignore tests/suite for syntax-checks, not our code.
9638 2010-11-25 Simon Josefsson <simon@josefsson.org>
9640 * README: Recommend git format-patch rather than git diff.
9642 2010-11-24 Jeffrey Walton <noloader@gmail.com>
9644 * README: Attached is a proposed modification to the README file,
9645 including recent comments by Simon.
9647 2010-11-23 Simon Josefsson <simon@josefsson.org>
9649 * guile/src/Makefile.am: Fix dependencies, fixes parallel builds. Tiny patch from Graham Gower <graham.gower@gmail.com>.
9651 2010-11-19 Simon Josefsson <simon@josefsson.org>
9653 * doc/Makefile.am: Remove file.
9655 2010-11-19 Simon Josefsson <simon@josefsson.org>
9657 * doc/manpages/Makefile.am: Generated.
9659 2010-11-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9661 * configure.ac, tests/suite/Makefile.in: Create Makefile in
9664 2010-11-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9666 * src/cli.c, src/psk-gaa.c, src/psk-gaa.h, src/psk.c, src/psk.gaa,
9667 tests/Makefile.am, tests/netconf-psk.c: Deprecate the netconf
9668 password and use a key only.
9670 2010-11-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9672 * doc/credentials/gnutls-http-serv: correctly set psk params.
9674 2010-11-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9678 2010-11-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9680 * lib/x509/privkey_pkcs8.c: Correctly write DSA public key in ASN.1
9681 (add leading zero). Reported by Jeffrey Walton.
9683 2010-11-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9685 * lib/x509/mpi.c: cleanups
9687 2010-11-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9689 * doc/cha-auth.texi, lib/includes/gnutls/compat.h,
9690 lib/includes/gnutls/gnutls.h.in: Deprecated the key derivation
9691 method from netconf. The published RFC does not include this method
9692 and it is not known whether it has been used at all in practice. No
9695 2010-11-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9697 * NEWS, lib/gnutls_priority.c: Added SIGN-ALL, CTYPE-ALL, COMP-ALL,
9698 and VERS-TLS-ALL priority strings.
9700 2010-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9702 * lib/gnutls_x509.c: Removed redundant error check. Reported by
9705 2010-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9707 * lib/includes/gnutls/pkcs11.h, lib/libgnutls.map, lib/pkcs11.c,
9708 src/p11tool-gaa.c, src/p11tool-gaa.h, src/p11tool.c,
9709 src/p11tool.gaa, src/p11tool.h, src/pkcs11.c: Added
9710 --list-mechanisms option to p11tool. Lists all mechanisms supported
9713 2010-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9715 * doc/manpages/Makefile.am, doc/manpages/p11tool.1: Added manpage
9718 2010-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9720 * doc/manpages/certtool.1, doc/manpages/gnutls-cli.1,
9721 doc/manpages/gnutls-serv.1, doc/manpages/srptool.1: Corrected my
9724 2010-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9726 * src/p11tool-gaa.c, src/p11tool.gaa: In p11tool --url was renamed
9729 2010-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9731 * src/p11tool-gaa.c, src/p11tool-gaa.h, src/p11tool.gaa,
9732 src/pkcs11.c: Corrected bug in secret key copy. Rationalized the
9735 2010-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9737 * lib/pkcs11.c, lib/pkcs11_secret.c: * Corrected flag conversion to internal representation. * When generating secret keys include a generic key type and a
9740 2010-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9742 * Added option --no-detailed-url to p11tool. More detailed url is the
9747 Copyright (C) 2005-2010, 2012 Free Software Foundation, Inc.
9749 Copying and distribution of this file, with or without
9750 modification, are permitted provided the copyright notice
9751 and this notice are preserved.