1 2012-01-20 Simon Josefsson <simon@josefsson.org>
3 * NEWS, configure.ac: Version 3.0.12.
5 2012-01-20 Simon Josefsson <simon@josefsson.org>
7 * cfg.mk, po/POTFILES.in: Fix syntax-check rules.
9 2012-01-20 Simon Josefsson <simon@josefsson.org>
11 * .gitignore, NEWS, configure.ac, doc/Makefile.am,
12 doc/cha-bib.texi, doc/cha-cert-auth2.texi, doc/cha-functions.texi,
13 doc/cha-gtls-examples.texi, doc/examples/Makefile.am,
14 doc/examples/ex-ocsp-client.c, doc/examples/ex-ocsp-verify.c,
15 doc/manpages/Makefile.am, doc/reference/gnutls-docs.sgml,
16 lib/includes/Makefile.am, lib/includes/gnutls/ocsp.h,
17 lib/libgnutls.map, lib/pkix.asn, lib/pkix_asn1_tab.c,
18 lib/x509/Makefile.am, lib/x509/ocsp.c, lib/x509/ocsp_output.c,
19 m4/hooks.m4, src/Makefile.am, src/ocsptool-common.h,
20 src/ocsptool.c, src/ocsptool.gaa, tests/Makefile.am, tests/ocsp.c:
21 Add OCSP functionality.
23 2012-01-20 Simon Josefsson <simon@josefsson.org>
25 * lib/x509/verify-high.c, lib/x509/verify-high.h: Fix semantics of
26 (unused) _gnutls_trustlist_inlist.
28 2012-01-20 Simon Josefsson <simon@josefsson.org>
30 * doc/manpages/Makefile.am: Bump copyright year on manpages.
32 2012-01-20 Simon Josefsson <simon@josefsson.org>
34 * lib/x509/x509.c: Fix mem leak.
36 2012-01-20 Simon Josefsson <simon@josefsson.org>
38 * doc/manpages/Makefile.am: Cosmetic improvement of build output.
40 2012-01-19 Simon Josefsson <simon@josefsson.org>
42 * guile/tests/Makefile.am: Print detailed guile warnings (for
45 2012-01-18 Simon Josefsson <simon@josefsson.org>
47 * doc/Makefile.am: Fix doc/enums/ generation to work with 'make
50 2012-01-18 Simon Josefsson <simon@josefsson.org>
52 * guile/pre-inst-guile.in: Fix builddir != srcdir builds.
54 2012-01-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
56 * doc/cha-gtls-app.texi: doc fix
58 2012-01-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
60 * NEWS, lib/gnutls_errors.c, lib/gnutls_priority.c, src/cli.c:
61 GNUTLS_E_NO_PRIORITIES_WERE_SET is also returned by
62 gnutls_priority_set_* This allows to warn when an incomplete set of
63 priorities is specified. Reported by Yaroslav Stavnichiy.
65 2012-01-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
67 * lib/gnutls_errors.c, lib/gnutls_handshake.c,
68 lib/includes/gnutls/gnutls.h.in: introduced
69 GNUTLS_E_NO_PRIORITIES_WERE_SET.
71 2012-01-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
73 * doc/cha-gtls-app.texi, doc/texinfo.css: more documentation
76 2012-01-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
78 * doc/cha-internals.texi: added more information to internals''
80 2012-01-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
82 * doc/printlist.c: better print supported algorithms.
84 2012-01-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
86 * doc/examples/ex-client-x509.c: Added
87 gnutls_certificate_set_x509_key_file in a comment.
89 2012-01-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
91 * doc/examples/ex-pkcs11-list.c, doc/examples/print-ciphersuites.c:
94 2012-01-17 Ludovic Courtès <ludo@gnu.org>
96 * guile/pre-inst-guile.in: Fix $(srcdir) != $(builddir) for Guile. Now that modules/gnutls.scm is generated, $(builddir) must be in the
99 2012-01-16 Simon Josefsson <simon@josefsson.org>
101 * tests/ecdsa/ecdsa: Fix srcdir != builddir builds. Tiny patch from Elias Pipping <pipping@lavabit.com>.
103 2012-01-16 Simon Josefsson <simon@josefsson.org>
105 * lib/includes/gnutls/gnutls.h.in, lib/nettle/ecc_mulmod.c: GTK-DOC
108 2012-01-16 Simon Josefsson <simon@josefsson.org>
110 * doc/manpages/Makefile.am: Generated.
112 2012-01-16 Simon Josefsson <simon@josefsson.org>
114 * doc/cha-programs.texi: Fix sc_space_tab syntax-check nit.
116 2012-01-16 Simon Josefsson <simon@josefsson.org>
118 * .clcopying, AUTHORS, cfg.mk, doc/Makefile.am,
119 doc/alert-printlist.c, doc/credentials/Makefile.am, doc/errcodes.c,
120 doc/examples/Makefile.am, doc/extract-guile-c-doc.scm,
121 doc/fdl-1.3.texi, doc/gpl-3.0.texi, doc/lgpl-2.1.texi,
122 doc/printlist.c, extra/Makefile.am, extra/gnutls_openssl.c,
123 extra/includes/Makefile.am, extra/includes/gnutls/openssl.h,
124 extra/openssl_compat.c, extra/openssl_compat.h, guile/Makefile.am,
125 guile/modules/Makefile.am, guile/modules/gnutls.in,
126 guile/modules/gnutls/build/enums.scm,
127 guile/modules/gnutls/build/priorities.scm,
128 guile/modules/gnutls/build/smobs.scm,
129 guile/modules/gnutls/build/utils.scm,
130 guile/modules/gnutls/extra.scm,
131 guile/modules/system/documentation/c-snarf.scm,
132 guile/modules/system/documentation/output.scm,
133 guile/pre-inst-guile.in, guile/src/errors.c, guile/src/utils.c,
134 guile/tests/anonymous-auth.scm, guile/tests/errors.scm,
135 guile/tests/openpgp-auth.scm, guile/tests/openpgp-keyring.scm,
136 guile/tests/openpgp-keys.scm, guile/tests/pkcs-import-export.scm,
137 guile/tests/session-record-port.scm, guile/tests/srp-base64.scm,
138 guile/tests/x509-auth.scm, guile/tests/x509-certificates.scm,
139 lib/auth/anon.c, lib/auth/anon_ecdh.c, lib/auth/dh_common.c,
140 lib/auth/dhe.c, lib/auth/dhe_psk.c, lib/auth/psk.c,
141 lib/auth/psk_passwd.c, lib/auth/rsa.c, lib/auth/rsa_export.c,
142 lib/auth/srp_passwd.c, lib/auth/srp_rsa.c, lib/auth/srp_sb64.c:
143 Collapse and cleanup copyright information.
145 2012-01-16 Simon Josefsson <simon@josefsson.org>
147 * .clcopying, AUTHORS, ChangeLog, ChangeLog.1, Makefile.am, NEWS,
148 README, README-alpha, THANKS, configure.ac, doc/Makefile.am,
149 doc/alert-printlist.c, doc/credentials/Makefile.am,
150 doc/cyclo/Makefile.am, doc/errcodes.c, doc/examples/Makefile.am,
151 doc/extract-guile-c-doc.scm, doc/fdl-1.3.texi,
152 doc/gnutls-guile.texi, doc/gnutls.texi, doc/gpl-3.0.texi,
153 doc/lgpl-2.1.texi, doc/manpages/Makefile.am, doc/printlist.c,
154 extra/Makefile.am, extra/gnutls_openssl.c,
155 extra/includes/Makefile.am, extra/includes/gnutls/openssl.h,
156 extra/openssl_compat.c, extra/openssl_compat.h, guile/Makefile.am,
157 guile/modules/Makefile.am, guile/modules/gnutls.in,
158 guile/modules/gnutls/build/enums.scm,
159 guile/modules/gnutls/build/priorities.scm,
160 guile/modules/gnutls/build/smobs.scm,
161 guile/modules/gnutls/build/tests.scm,
162 guile/modules/gnutls/build/utils.scm,
163 guile/modules/gnutls/extra.scm,
164 guile/modules/system/documentation/c-snarf.scm,
165 guile/modules/system/documentation/output.scm,
166 guile/pre-inst-guile.in, guile/src/Makefile.am, guile/src/core.c,
167 guile/src/errors.c, guile/src/errors.h,
168 guile/src/make-enum-header.scm, guile/src/make-enum-map.scm,
169 guile/src/make-session-priorities.scm,
170 guile/src/make-smob-header.scm, guile/src/make-smob-types.scm,
171 guile/src/utils.c, guile/src/utils.h, guile/tests/Makefile.am,
172 guile/tests/anonymous-auth.scm, guile/tests/errors.scm,
173 guile/tests/openpgp-auth.scm, guile/tests/openpgp-keyring.scm,
174 guile/tests/openpgp-keys.scm, guile/tests/pkcs-import-export.scm,
175 guile/tests/priorities.scm, guile/tests/session-record-port.scm,
176 guile/tests/srp-base64.scm, guile/tests/x509-auth.scm,
177 guile/tests/x509-certificates.scm, lib/Makefile.am,
178 lib/accelerated/Makefile.am, lib/accelerated/accelerated.c,
179 lib/accelerated/cryptodev.c, lib/accelerated/x86/Makefile.am,
180 lib/accelerated/x86/aes-gcm-padlock.c,
181 lib/accelerated/x86/aes-gcm-x86.c,
182 lib/accelerated/x86/aes-padlock.c, lib/accelerated/x86/aes-x86.c,
183 lib/accelerated/x86/asm-coff/cpuid-x86-64-coff.s,
184 lib/accelerated/x86/asm-coff/cpuid-x86-coff.s,
185 lib/accelerated/x86/asm/cpuid-x86-64.s,
186 lib/accelerated/x86/asm/cpuid-x86.s,
187 lib/accelerated/x86/hmac-padlock.c,
188 lib/accelerated/x86/sha-padlock.c, lib/accelerated/x86/x86.h,
189 lib/algorithms.h, lib/algorithms/Makefile.am,
190 lib/algorithms/cert_types.c, lib/algorithms/ciphers.c,
191 lib/algorithms/ciphersuites.c, lib/algorithms/ecc.c,
192 lib/algorithms/kx.c, lib/algorithms/mac.c,
193 lib/algorithms/protocols.c, lib/algorithms/publickey.c,
194 lib/algorithms/secparams.c, lib/algorithms/sign.c,
195 lib/auth/Makefile.am, lib/auth/anon.c, lib/auth/anon.h,
196 lib/auth/anon_ecdh.c, lib/auth/cert.c, lib/auth/cert.h,
197 lib/auth/dh_common.c, lib/auth/dh_common.h, lib/auth/dhe.c,
198 lib/auth/dhe_psk.c, lib/auth/ecdh_common.c, lib/auth/ecdh_common.h,
199 lib/auth/psk.c, lib/auth/psk.h, lib/auth/psk_passwd.c,
200 lib/auth/psk_passwd.h, lib/auth/rsa.c, lib/auth/rsa_export.c,
201 lib/auth/srp.c, lib/auth/srp.h, lib/auth/srp_passwd.c,
202 lib/auth/srp_passwd.h, lib/auth/srp_rsa.c, lib/auth/srp_sb64.c,
203 lib/crypto-api.c, lib/crypto-backend.c, lib/crypto-backend.h,
204 lib/crypto.h, lib/debug.c, lib/debug.h, lib/ext/Makefile.am,
205 lib/ext/cert_type.c, lib/ext/cert_type.h, lib/ext/ecc.c,
206 lib/ext/ecc.h, lib/ext/max_record.c, lib/ext/max_record.h,
207 lib/ext/safe_renegotiation.c, lib/ext/safe_renegotiation.h,
208 lib/ext/server_name.c, lib/ext/server_name.h,
209 lib/ext/session_ticket.c, lib/ext/session_ticket.h,
210 lib/ext/signature.c, lib/ext/signature.h, lib/ext/srp.c,
211 lib/ext/srp.h, lib/extras/Makefile.am, lib/gnutls.pc.in,
212 lib/gnutls_alert.c, lib/gnutls_anon_cred.c, lib/gnutls_auth.c,
213 lib/gnutls_auth.h, lib/gnutls_buffers.c, lib/gnutls_buffers.h,
214 lib/gnutls_cert.c, lib/gnutls_cipher.c, lib/gnutls_cipher.h,
215 lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h,
216 lib/gnutls_compress.c, lib/gnutls_compress.h,
217 lib/gnutls_constate.c, lib/gnutls_constate.h, lib/gnutls_datum.c,
218 lib/gnutls_datum.h, lib/gnutls_db.c, lib/gnutls_db.h,
219 lib/gnutls_dh.c, lib/gnutls_dh.h, lib/gnutls_dh_primes.c,
220 lib/gnutls_dtls.h, lib/gnutls_ecc.c, lib/gnutls_errors.c,
221 lib/gnutls_errors.h, lib/gnutls_extensions.c,
222 lib/gnutls_extensions.h, lib/gnutls_global.c, lib/gnutls_global.h,
223 lib/gnutls_handshake.c, lib/gnutls_handshake.h,
224 lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_helper.c,
225 lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_kx.h,
226 lib/gnutls_mbuffers.h, lib/gnutls_mem.c, lib/gnutls_mem.h,
227 lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_num.c,
228 lib/gnutls_num.h, lib/gnutls_pcert.c, lib/gnutls_pk.h,
229 lib/gnutls_priority.c, lib/gnutls_psk.c, lib/gnutls_record.c,
230 lib/gnutls_record.h, lib/gnutls_rsa_export.c,
231 lib/gnutls_rsa_export.h, lib/gnutls_session.c,
232 lib/gnutls_session_pack.c, lib/gnutls_session_pack.h,
233 lib/gnutls_sig.c, lib/gnutls_sig.h, lib/gnutls_srp.c,
234 lib/gnutls_srp.h, lib/gnutls_state.h, lib/gnutls_str.c,
235 lib/gnutls_str.h, lib/gnutls_str_array.h,
236 lib/gnutls_supplemental.c, lib/gnutls_supplemental.h,
237 lib/gnutls_ui.c, lib/gnutls_v2_compat.c, lib/gnutls_v2_compat.h,
238 lib/gnutls_x509.c, lib/gnutls_x509.h, lib/hash.c,
239 lib/includes/Makefile.am, lib/includes/gnutls/abstract.h,
240 lib/includes/gnutls/compat.h, lib/includes/gnutls/crypto.h,
241 lib/includes/gnutls/dtls.h, lib/includes/gnutls/gnutlsxx.h,
242 lib/includes/gnutls/openpgp.h, lib/includes/gnutls/pkcs11.h,
243 lib/includes/gnutls/pkcs12.h, lib/includes/gnutls/x509.h,
244 lib/libgnutls.map, lib/libgnutlsxx.map, lib/locks.c,
245 lib/minitasn1/Makefile.am, lib/minitasn1/coding.c,
246 lib/minitasn1/decoding.c, lib/minitasn1/element.c,
247 lib/minitasn1/element.h, lib/minitasn1/errors.c,
248 lib/minitasn1/gstr.c, lib/minitasn1/gstr.h, lib/minitasn1/int.h,
249 lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c,
250 lib/minitasn1/parser_aux.h, lib/minitasn1/structure.c,
251 lib/minitasn1/structure.h, lib/minitasn1/version.c,
252 lib/nettle/Makefile.am, lib/nettle/cipher.c, lib/nettle/ecc_free.c,
253 lib/nettle/ecc_make_key.c, lib/nettle/ecc_map.c,
254 lib/nettle/ecc_mulmod.c, lib/nettle/ecc_mulmod_timing.c,
255 lib/nettle/ecc_points.c, lib/nettle/ecc_projective_add_point.c,
256 lib/nettle/ecc_projective_check_point.c,
257 lib/nettle/ecc_projective_dbl_point_3.c,
258 lib/nettle/ecc_shared_secret.c, lib/nettle/ecc_sign_hash.c,
259 lib/nettle/ecc_verify_hash.c, lib/nettle/egd.c, lib/nettle/init.c,
260 lib/nettle/mac.c, lib/nettle/mpi.c, lib/nettle/pk.c,
261 lib/nettle/rnd.c, lib/opencdk/Makefile.am, lib/opencdk/armor.c,
262 lib/opencdk/context.h, lib/opencdk/filters.h, lib/opencdk/hash.c,
263 lib/opencdk/kbnode.c, lib/opencdk/keydb.c, lib/opencdk/literal.c,
264 lib/opencdk/main.h, lib/opencdk/misc.c, lib/opencdk/new-packet.c,
265 lib/opencdk/opencdk.h, lib/opencdk/packet.h, lib/opencdk/pubkey.c,
266 lib/opencdk/read-packet.c, lib/opencdk/seskey.c,
267 lib/opencdk/sig-check.c, lib/opencdk/stream.c,
268 lib/opencdk/stream.h, lib/opencdk/types.h,
269 lib/opencdk/write-packet.c, lib/openpgp/Makefile.am,
270 lib/openpgp/compat.c, lib/openpgp/extras.c,
271 lib/openpgp/gnutls_openpgp.c, lib/openpgp/output.c,
272 lib/openpgp/pgp.c, lib/openpgp/pgpverify.c, lib/openpgp/privkey.c,
273 lib/random.c, lib/random.h, lib/system.c, lib/system_override.c,
274 lib/x509/Makefile.am, lib/x509/common.c, lib/x509/common.h,
275 lib/x509/crl.c, lib/x509/crl_write.c, lib/x509/crq.c,
276 lib/x509/dn.c, lib/x509/extensions.c, lib/x509/key_decode.c,
277 lib/x509/key_encode.c, lib/x509/mpi.c, lib/x509/output.c,
278 lib/x509/pbkdf2-sha1.c, lib/x509/pkcs12.c, lib/x509/pkcs12_bag.c,
279 lib/x509/pkcs12_encr.c, lib/x509/pkcs7.c, lib/x509/privkey.c,
280 lib/x509/privkey_pkcs8.c, lib/x509/rfc2818_hostname.c,
281 lib/x509/sign.c, lib/x509/verify-high.c, lib/x509/verify-high.h,
282 lib/x509/x509_int.h, lib/x509/x509_write.c, lib/x509_b64.c,
283 lib/x509_b64.h, m4/gcc.m4, m4/guile.m4, m4/hooks.m4, po/cs.po.in,
284 po/de.po.in, po/fr.po.in, po/it.po.in, po/ms.po.in, po/nl.po.in,
285 po/pl.po.in, po/sv.po.in, po/uk.po.in, po/zh_CN.po.in,
286 src/Makefile.am, src/benchmark-cipher.c, src/benchmark-tls.c,
287 src/benchmark.c, src/certtool-cfg.c, src/certtool-common.c,
288 src/certtool.c, src/cli.c, src/common.c, src/crywrap/Makefile.am,
289 src/dh.c, src/p11common.c, src/p11tool.c, src/pkcs11.c, src/psk.c,
290 src/serv.c, src/srptool.c, src/tests.c, src/tls_test.c,
291 src/udp-serv.c, tests/Makefile.am, tests/anonself.c,
292 tests/certder.c, tests/certificate_set_x509_crl.c,
293 tests/certuniqueid.c, tests/chainverify.c, tests/crq_apis.c,
294 tests/crq_key_id.c, tests/cve-2008-4989.c, tests/cve-2009-1415.c,
295 tests/cve-2009-1416.c, tests/dhepskself.c, tests/dn.c, tests/dn2.c,
296 tests/dsa/Makefile.am, tests/dsa/testdsa, tests/ecdsa/Makefile.am,
297 tests/ecdsa/ecdsa, tests/gc.c, tests/hostname-check.c,
298 tests/infoaccess.c, tests/init_roundtrip.c,
299 tests/key-id/Makefile.am, tests/key-id/README, tests/key-id/key-id,
300 tests/mini-deflate.c, tests/mini-eagain-dtls.c,
301 tests/mini-eagain.c, tests/mini-x509-rehandshake.c,
302 tests/mini-x509.c, tests/mini.c, tests/moredn.c, tests/mpi.c,
303 tests/nist-pkits/pkits, tests/nist-pkits/pkits_crl,
304 tests/nist-pkits/pkits_crt, tests/nist-pkits/pkits_pkcs12,
305 tests/nist-pkits/pkits_smime, tests/nul-in-x509-names.c,
306 tests/openpgp-certs/Makefile.am, tests/openpgp-certs/testcerts,
307 tests/openpgp-certs/testselfsigs, tests/openpgp-keyring.c,
308 tests/openpgpself.c, tests/openssl.c, tests/parse_ca.c,
309 tests/pathlen/Makefile.am, tests/pathlen/pathlen,
310 tests/pgps2kgnu.c, tests/pkcs1-padding/Makefile.am,
311 tests/pkcs1-padding/pkcs1-pad, tests/pkcs12-decode/Makefile.am,
312 tests/pkcs12-decode/pkcs12, tests/pkcs12_encode.c,
313 tests/pkcs12_s2k.c, tests/pkcs12_s2k_pem.c,
314 tests/pkcs8-decode/Makefile.am, tests/pkcs8-decode/pkcs8,
315 tests/pskself.c, tests/resume.c, tests/rfc2253-escape-test,
316 tests/rng-fork.c, tests/rsa-encrypt-decrypt.c,
317 tests/rsa-md5-collision/Makefile.am,
318 tests/rsa-md5-collision/README,
319 tests/rsa-md5-collision/rsa-md5-collision,
320 tests/safe-renegotiation/Makefile.am,
321 tests/safe-renegotiation/srn0.c, tests/safe-renegotiation/srn1.c,
322 tests/safe-renegotiation/srn2.c, tests/safe-renegotiation/srn3.c,
323 tests/safe-renegotiation/srn4.c, tests/safe-renegotiation/srn5.c,
324 tests/scripts/Makefile.am, tests/set_pkcs12_cred.c,
325 tests/setcredcrash.c, tests/sha2/Makefile.am, tests/sha2/sha2,
326 tests/sha2/sha2-dsa, tests/simple.c, tests/slow/Makefile.am,
327 tests/slow/gendh.c, tests/slow/keygen.c, tests/suite/Makefile.am,
328 tests/suite/chain, tests/suite/eagain, tests/suite/testcompat,
329 tests/suite/testcompat-main, tests/suite/testsrn,
330 tests/suppressions.valgrind, tests/userid/Makefile.am,
331 tests/userid/userid, tests/userid/userid.pem, tests/utils.c,
332 tests/utils.h, tests/x509_altname.c, tests/x509cert-tl.c,
333 tests/x509cert.c, tests/x509dn.c, tests/x509self.c,
334 tests/x509sign-verify.c: Run 'make update-copyright'.
336 2012-01-16 Simon Josefsson <simon@josefsson.org>
338 * cfg.mk: Ignore pkg.m4. Copyright fixes.
340 2012-01-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
342 * lib/gnutls_x509.c: improved doc
344 2012-01-14 Simon Josefsson <simon@josefsson.org>
346 * lib/gnutls_pk.c: Fix memory leak.
348 2012-01-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
350 * doc/cha-cert-auth.texi, doc/cha-gtls-app.texi,
351 doc/cha-intro-tls.texi: properly spread authentication and
354 2012-01-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
356 * doc/cha-gtls-app.texi: updated text
358 2012-01-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
360 * cfg.mk: no longer use texi2html. makeinfo --html has decent
363 2012-01-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
365 * doc/errcodes.c: print numeric error codes everywhere.
367 2012-01-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
369 * doc/cha-programs.texi: SECURE256 -> SECURE192
371 2012-01-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
373 * doc/alert-printlist.c, doc/scripts/gdoc,
374 doc/scripts/split-texi.pl, doc/texinfo.css: updated css for better
377 2012-01-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
379 * lib/includes/gnutls/gnutls.h.in: better indent
380 gnutls_certificate_set_x509_simple_pkcs12_file to allow them being
383 2012-01-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
385 * doc/gnutls.texi, doc/scripts/gdoc, doc/scripts/split-texi.pl:
386 caption is set on enumerations in texinfo. Unfortunately they are
387 not visible to the pdf output due to a probable bug in texinfo.
389 2012-01-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
391 * doc/cha-cert-auth2.texi: Added pkcs12_simple function.
393 2012-01-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
395 * .gitignore: more files to ignore
397 2012-01-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
399 * gl/Makefile.am, gl/argp-parse.c, gl/inet_ntop.c,
400 gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4,
401 gl/m4/ld-version-script.m4, gl/m4/printf.m4, gl/m4/stdlib_h.m4,
402 gl/m4/usleep.m4, gl/select.c, gl/stdlib.in.h, gl/tests/Makefile.am,
403 gl/tests/ignore-value.h, gl/tests/pipe.c, gl/tests/test-init.sh,
404 gl/tests/test-usleep.c, gl/usleep.c, maint.mk, src/udp-serv.c:
405 usleep() is no longer used.
407 2012-01-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
409 * doc/cha-intro-tls.texi, doc/errcodes.c: documentation updates
411 2012-01-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
413 * doc/scripts/gdoc: improved gdoc output for function parameters.
415 2012-01-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
417 * lib/algorithms/ciphers.c, lib/algorithms/mac.c,
418 lib/crypto-backend.h, lib/gnutls_cipher_int.c,
419 lib/gnutls_cipher_int.h, lib/gnutls_hash_int.c,
420 lib/gnutls_hash_int.h, lib/nettle/cipher.c, lib/nettle/mac.c: Only
421 list algorithms if they are implemented.
423 2012-01-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
425 * lib/algorithms/ciphers.c: reordered ciphers to place on top the
428 2012-01-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
430 * .gitignore, doc/cha-gtls-app.texi, doc/cha-gtls-examples.texi,
431 doc/cha-programs.texi, doc/examples/Makefile.am,
432 doc/examples/print-ciphersuites.c: Documented ways to list the
433 enabled ciphersuites.
435 2012-01-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
437 * doc/cha-gtls-app.texi: updated
439 2012-01-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
441 * doc/cha-gtls-app.texi: documentation update
443 2012-01-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
445 * NEWS, lib/gnutls_handshake.c, lib/gnutls_int.h,
446 lib/gnutls_state.c, lib/includes/gnutls/gnutls.h.in,
447 lib/libgnutls.map: Added gnutls_session_resumption_requested().
449 2012-01-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
453 2012-01-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
455 * lib/auth/ecdh_common.c: avoid allocating a privkey param for the
458 2012-01-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
460 * lib/nettle/ecc_shared_secret.c: corrected issue in ECDH key
461 generation. This issue prevented an ECDH key that was smaller than
462 the prime from being correctly aligned.
464 2012-01-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
466 * lib/gnutls_alert.c: better handle alert for
467 GNUTLS_E_PREMATURE_TERMINATION
469 2012-01-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
471 * lib/gnutls_record.c: do not absorb error message
473 2012-01-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
475 * NEWS, lib/nettle/ecc_projective_check_point.c: Eliminated memory
476 leak in ecc_projective_check_point().
478 2012-01-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
482 2012-01-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
484 * lib/includes/gnutls/x509.h, lib/x509/common.c, lib/x509/dn.c:
485 gnutls_x509_dn_oid_name() was extended with a flags option that
486 accepts currently GNUTLS_X509_DN_OID_RETURN_OID or 0.
488 2012-01-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
490 * doc/cha-bib.texi, doc/cha-cert-auth.texi, doc/latex/gnutls.bib,
491 lib/includes/gnutls/compat.h, lib/x509/crl.c, lib/x509/dn.c,
492 lib/x509/x509.c: Added discussion of distinguished names.
494 2012-01-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
496 * doc/cha-cert-auth2.texi: describe gnutls_privkey_import_ext in
499 2012-01-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
501 * NEWS, lib/includes/gnutls/x509.h, lib/libgnutls.map,
502 lib/x509/common.c, lib/x509/common.h, lib/x509/dn.c: Added
503 gnutls_x509_dn_oid_name().
505 2012-01-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
507 * doc/cha-cert-auth2.texi, doc/cha-gtls-app.texi: discuss the change
508 in Diffie-Hellman parameters.
510 2012-01-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
512 * doc/cha-gtls-app.texi, lib/gnutls_priority.c: Defined more
513 precisely the SECURE levels.
515 2012-01-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
517 * doc/cha-cert-auth2.texi, doc/cha-gtls-app.texi: updated for
518 pkg-config autoconf macro and added gnutls_pubkey_encrypt_data.
520 2012-01-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
522 * lib/x509/x509.c: updated descriptions
524 2012-01-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
526 * lib/x509/x509.c: removed not applicable comments.
528 2012-01-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
530 * NEWS, lib/gnutls_pubkey.c, lib/includes/gnutls/abstract.h,
531 lib/libgnutls.map, tests/Makefile.am, tests/rsa-encrypt-decrypt.c:
532 Added gnutls_pubkey_encrypt_data().
534 2012-01-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
536 * configure.ac: more gcc warnings to ignore
538 2012-01-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
540 * src/serv.c, src/udp-serv.c, src/udp-serv.h: tcp and udp server are
543 2012-01-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
545 * NEWS, src/certtool.c: --outder option works for public keys.
547 2012-01-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
549 * NEWS, src/certtool.c: certtool --outder option now works for
550 private keys as well.
552 2012-01-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
554 * lib/accelerated/x86/Makefile.am: removed trailing slash.
556 2012-01-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
558 * THANKS: updated thanks
560 2012-01-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
562 * tests/slow/Makefile.am: remove trailing slash.
564 2012-01-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
566 * GNUmakefile, build-aux/config.rpath, build-aux/pmccabe2html,
567 build-aux/snippet/arg-nonnull.h, build-aux/snippet/c++defs.h,
568 build-aux/snippet/warn-on-use.h, build-aux/useless-if-before-free,
569 build-aux/vc-list-files, gl/Makefile.am, gl/accept.c, gl/alloca.c,
570 gl/alloca.in.h, gl/alphasort.c, gl/argp-ba.c, gl/argp-eexst.c,
571 gl/argp-fmtstream.c, gl/argp-fmtstream.h, gl/argp-fs-xinl.c,
572 gl/argp-help.c, gl/argp-namefrob.h, gl/argp-parse.c, gl/argp-pin.c,
573 gl/argp-pv.c, gl/argp-pvh.c, gl/argp-xinl.c, gl/argp.h,
574 gl/arpa_inet.in.h, gl/asnprintf.c, gl/asprintf.c,
575 gl/basename-lgpl.c, gl/bind.c, gl/byteswap.in.h, gl/c-ctype.c,
576 gl/c-ctype.h, gl/close.c, gl/closedir.c, gl/connect.c,
577 gl/dirent-private.h, gl/dirent.in.h, gl/dirname-lgpl.c,
578 gl/dirname.h, gl/dosname.h, gl/errno.in.h, gl/error.c, gl/error.h,
579 gl/fd-hook.c, gl/fd-hook.h, gl/filename.h, gl/float+.h, gl/float.c,
580 gl/float.in.h, gl/fpucw.h, gl/frexp.c, gl/frexpl.c, gl/fseek.c,
581 gl/fseeko.c, gl/fseterr.c, gl/fseterr.h, gl/fstat.c, gl/ftell.c,
582 gl/ftello.c, gl/gai_strerror.c, gl/getaddrinfo.c, gl/getdelim.c,
583 gl/getline.c, gl/getopt.c, gl/getopt.in.h, gl/getopt1.c,
584 gl/getopt_int.h, gl/getpass.c, gl/getpass.h, gl/getpeername.c,
585 gl/getsubopt.c, gl/gettext.h, gl/gettime.c, gl/gettimeofday.c,
586 gl/inet_ntop.c, gl/inet_pton.c, gl/intprops.h, gl/isnan.c,
587 gl/isnand-nolibm.h, gl/isnand.c, gl/isnanf-nolibm.h, gl/isnanf.c,
588 gl/isnanl-nolibm.h, gl/isnanl.c, gl/itold.c, gl/listen.c,
589 gl/lseek.c, gl/m4/00gnulib.m4, gl/m4/alloca.m4, gl/m4/alphasort.m4,
590 gl/m4/argp.m4, gl/m4/arpa_inet_h.m4, gl/m4/byteswap.m4,
591 gl/m4/clock_time.m4, gl/m4/close.m4, gl/m4/closedir.m4,
592 gl/m4/codeset.m4, gl/m4/dirent_h.m4, gl/m4/dirname.m4,
593 gl/m4/double-slash-root.m4, gl/m4/dup2.m4, gl/m4/eealloc.m4,
594 gl/m4/environ.m4, gl/m4/errno_h.m4, gl/m4/error.m4,
595 gl/m4/exponentd.m4, gl/m4/exponentf.m4, gl/m4/exponentl.m4,
596 gl/m4/extensions.m4, gl/m4/fcntl-o.m4, gl/m4/fcntl_h.m4,
597 gl/m4/fdopen.m4, gl/m4/float_h.m4, gl/m4/fpieee.m4, gl/m4/frexp.m4,
598 gl/m4/frexpl.m4, gl/m4/fseek.m4, gl/m4/fseeko.m4, gl/m4/fstat.m4,
599 gl/m4/ftell.m4, gl/m4/ftello.m4, gl/m4/ftruncate.m4, gl/m4/func.m4,
600 gl/m4/getaddrinfo.m4, gl/m4/getcwd.m4, gl/m4/getdelim.m4,
601 gl/m4/getline.m4, gl/m4/getopt.m4, gl/m4/getpagesize.m4,
602 gl/m4/getpass.m4, gl/m4/getsubopt.m4, gl/m4/gettext.m4,
603 gl/m4/gettime.m4, gl/m4/gettimeofday.m4, gl/m4/glibc2.m4,
604 gl/m4/glibc21.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-common.m4,
605 gl/m4/gnulib-comp.m4, gl/m4/gnulib-tool.m4, gl/m4/hostent.m4,
606 gl/m4/iconv.m4, gl/m4/include_next.m4, gl/m4/inet_ntop.m4,
607 gl/m4/inet_pton.m4, gl/m4/intdiv0.m4, gl/m4/intl.m4,
608 gl/m4/intldir.m4, gl/m4/intlmacosx.m4, gl/m4/intmax.m4,
609 gl/m4/intmax_t.m4, gl/m4/inttypes-pri.m4, gl/m4/inttypes.m4,
610 gl/m4/inttypes_h.m4, gl/m4/ioctl.m4, gl/m4/isnand.m4,
611 gl/m4/isnanf.m4, gl/m4/isnanl.m4, gl/m4/largefile.m4,
612 gl/m4/lcmessage.m4, gl/m4/ld-output-def.m4,
613 gl/m4/ld-version-script.m4, gl/m4/ldexpl.m4, gl/m4/lib-ld.m4,
614 gl/m4/lib-link.m4, gl/m4/lib-prefix.m4, gl/m4/lock.m4,
615 gl/m4/longlong.m4, gl/m4/lseek.m4, gl/m4/lstat.m4, gl/m4/malloc.m4,
616 gl/m4/malloca.m4, gl/m4/manywarnings.m4, gl/m4/math_h.m4,
617 gl/m4/memchr.m4, gl/m4/memmem.m4, gl/m4/mempcpy.m4,
618 gl/m4/minmax.m4, gl/m4/mmap-anon.m4, gl/m4/mode_t.m4,
619 gl/m4/msvc-inval.m4, gl/m4/msvc-nothrow.m4, gl/m4/multiarch.m4,
620 gl/m4/netdb_h.m4, gl/m4/netinet_in_h.m4, gl/m4/nls.m4,
621 gl/m4/nocrash.m4, gl/m4/open.m4, gl/m4/opendir.m4,
622 gl/m4/pathmax.m4, gl/m4/perror.m4, gl/m4/pipe.m4, gl/m4/po.m4,
623 gl/m4/printf-frexp.m4, gl/m4/printf-frexpl.m4,
624 gl/m4/printf-posix.m4, gl/m4/printf.m4, gl/m4/progtest.m4,
625 gl/m4/putenv.m4, gl/m4/rawmemchr.m4, gl/m4/read-file.m4,
626 gl/m4/readdir.m4, gl/m4/realloc.m4, gl/m4/scandir.m4,
627 gl/m4/select.m4, gl/m4/servent.m4, gl/m4/setenv.m4,
628 gl/m4/signal_h.m4, gl/m4/signbit.m4, gl/m4/size_max.m4,
629 gl/m4/sleep.m4, gl/m4/snprintf.m4, gl/m4/socketlib.m4,
630 gl/m4/sockets.m4, gl/m4/socklen.m4, gl/m4/sockpfaf.m4,
631 gl/m4/ssize_t.m4, gl/m4/stat.m4, gl/m4/stdalign.m4,
632 gl/m4/stdarg.m4, gl/m4/stdbool.m4, gl/m4/stddef_h.m4,
633 gl/m4/stdint.m4, gl/m4/stdint_h.m4, gl/m4/stdio_h.m4,
634 gl/m4/stdlib_h.m4, gl/m4/strcase.m4, gl/m4/strchrnul.m4,
635 gl/m4/strdup.m4, gl/m4/strerror.m4, gl/m4/strerror_r.m4,
636 gl/m4/string_h.m4, gl/m4/strings_h.m4, gl/m4/strndup.m4,
637 gl/m4/strnlen.m4, gl/m4/strverscmp.m4, gl/m4/symlink.m4,
638 gl/m4/sys_ioctl_h.m4, gl/m4/sys_select_h.m4, gl/m4/sys_socket_h.m4,
639 gl/m4/sys_stat_h.m4, gl/m4/sys_time_h.m4, gl/m4/sys_types_h.m4,
640 gl/m4/sys_uio_h.m4, gl/m4/sysexits.m4, gl/m4/thread.m4,
641 gl/m4/threadlib.m4, gl/m4/time_h.m4, gl/m4/time_r.m4,
642 gl/m4/timespec.m4, gl/m4/uintmax_t.m4, gl/m4/ungetc.m4,
643 gl/m4/unistd_h.m4, gl/m4/usleep.m4, gl/m4/valgrind-tests.m4,
644 gl/m4/vasnprintf.m4, gl/m4/vasprintf.m4, gl/m4/version-etc.m4,
645 gl/m4/vfprintf-posix.m4, gl/m4/visibility.m4,
646 gl/m4/vprintf-posix.m4, gl/m4/vsnprintf.m4, gl/m4/warn-on-use.m4,
647 gl/m4/warnings.m4, gl/m4/wchar_h.m4, gl/m4/wchar_t.m4,
648 gl/m4/wint_t.m4, gl/m4/xsize.m4, gl/m4/yield.m4, gl/malloc.c,
649 gl/math.in.h, gl/memchr.c, gl/memmem.c, gl/mempcpy.c, gl/minmax.h,
650 gl/msvc-inval.c, gl/msvc-inval.h, gl/msvc-nothrow.c,
651 gl/msvc-nothrow.h, gl/netdb.in.h, gl/netinet_in.in.h, gl/opendir.c,
652 gl/override/m4/valgrind-tests.m4.diff, gl/printf-args.c,
653 gl/printf-args.h, gl/printf-frexp.c, gl/printf-frexp.h,
654 gl/printf-frexpl.c, gl/printf-frexpl.h, gl/printf-parse.c,
655 gl/printf-parse.h, gl/progname.c, gl/progname.h, gl/rawmemchr.c,
656 gl/read-file.c, gl/read-file.h, gl/readdir.c, gl/realloc.c,
657 gl/recv.c, gl/recvfrom.c, gl/scandir.c, gl/select.c, gl/send.c,
658 gl/sendto.c, gl/setsockopt.c, gl/shutdown.c, gl/signal.in.h,
659 gl/signbitd.c, gl/signbitf.c, gl/signbitl.c, gl/size_max.h,
660 gl/sleep.c, gl/snprintf.c, gl/socket.c, gl/sockets.c, gl/sockets.h,
661 gl/stdalign.in.h, gl/stdarg.in.h, gl/stdbool.in.h, gl/stddef.in.h,
662 gl/stdint.in.h, gl/stdio-impl.h, gl/stdio.in.h, gl/stdlib.in.h,
663 gl/str-two-way.h, gl/strcasecmp.c, gl/strchrnul.c, gl/strdup.c,
664 gl/strerror-override.c, gl/strerror-override.h, gl/strerror.c,
665 gl/string.in.h, gl/strings.in.h, gl/stripslash.c, gl/strncasecmp.c,
666 gl/strndup.c, gl/strnlen.c, gl/strverscmp.c, gl/sys_select.in.h,
667 gl/sys_socket.in.h, gl/sys_stat.in.h, gl/sys_time.in.h,
668 gl/sys_types.in.h, gl/sys_uio.in.h, gl/sysexits.in.h,
669 gl/tests/Makefile.am, gl/tests/binary-io.h, gl/tests/dup2.c,
670 gl/tests/fcntl.in.h, gl/tests/fdopen.c, gl/tests/getcwd-lgpl.c,
671 gl/tests/getpagesize.c, gl/tests/glthread/lock.c,
672 gl/tests/glthread/lock.h, gl/tests/glthread/thread.c,
673 gl/tests/glthread/thread.h, gl/tests/glthread/threadlib.c,
674 gl/tests/glthread/yield.h, gl/tests/ignore-value.h,
675 gl/tests/infinity.h, gl/tests/init.sh, gl/tests/inttypes.in.h,
676 gl/tests/ioctl.c, gl/tests/lstat.c, gl/tests/macros.h,
677 gl/tests/malloca.c, gl/tests/malloca.h, gl/tests/minus-zero.h,
678 gl/tests/nan.h, gl/tests/open.c, gl/tests/pathmax.h,
679 gl/tests/perror.c, gl/tests/pipe.c, gl/tests/putenv.c,
680 gl/tests/same-inode.h, gl/tests/setenv.c, gl/tests/signature.h,
681 gl/tests/stat.c, gl/tests/strerror_r.c, gl/tests/symlink.c,
682 gl/tests/sys_ioctl.in.h, gl/tests/test-accept.c,
683 gl/tests/test-alloca-opt.c, gl/tests/test-argp-2.sh,
684 gl/tests/test-argp.c, gl/tests/test-arpa_inet.c,
685 gl/tests/test-binary-io.c, gl/tests/test-binary-io.sh,
686 gl/tests/test-bind.c, gl/tests/test-byteswap.c,
687 gl/tests/test-c-ctype.c, gl/tests/test-close.c,
688 gl/tests/test-connect.c, gl/tests/test-dirent.c,
689 gl/tests/test-dup2.c, gl/tests/test-environ.c,
690 gl/tests/test-errno.c, gl/tests/test-fcntl-h.c,
691 gl/tests/test-fdopen.c, gl/tests/test-fgetc.c,
692 gl/tests/test-float.c, gl/tests/test-fprintf-posix.h,
693 gl/tests/test-fputc.c, gl/tests/test-fread.c,
694 gl/tests/test-frexp.c, gl/tests/test-frexpl.c,
695 gl/tests/test-fseek.c, gl/tests/test-fseeko.c,
696 gl/tests/test-fseeko3.c, gl/tests/test-fseeko4.c,
697 gl/tests/test-fseterr.c, gl/tests/test-fstat.c,
698 gl/tests/test-ftell.c, gl/tests/test-ftell3.c,
699 gl/tests/test-ftello.c, gl/tests/test-ftello3.c,
700 gl/tests/test-ftello4.c, gl/tests/test-ftruncate.c,
701 gl/tests/test-func.c, gl/tests/test-fwrite.c,
702 gl/tests/test-getaddrinfo.c, gl/tests/test-getcwd-lgpl.c,
703 gl/tests/test-getdelim.c, gl/tests/test-getline.c,
704 gl/tests/test-getopt.c, gl/tests/test-getopt.h,
705 gl/tests/test-getopt_long.h, gl/tests/test-getpeername.c,
706 gl/tests/test-gettimeofday.c, gl/tests/test-ignore-value.c,
707 gl/tests/test-inet_ntop.c, gl/tests/test-inet_pton.c,
708 gl/tests/test-init.sh, gl/tests/test-intprops.c,
709 gl/tests/test-inttypes.c, gl/tests/test-ioctl.c,
710 gl/tests/test-isnand-nolibm.c, gl/tests/test-isnand.h,
711 gl/tests/test-isnanf-nolibm.c, gl/tests/test-isnanf.h,
712 gl/tests/test-isnanl-nolibm.c, gl/tests/test-isnanl.h,
713 gl/tests/test-listen.c, gl/tests/test-lock.c,
714 gl/tests/test-lstat.c, gl/tests/test-lstat.h,
715 gl/tests/test-malloc-gnu.c, gl/tests/test-malloca.c,
716 gl/tests/test-math.c, gl/tests/test-memchr.c,
717 gl/tests/test-netdb.c, gl/tests/test-netinet_in.c,
718 gl/tests/test-open.c, gl/tests/test-open.h,
719 gl/tests/test-pathmax.c, gl/tests/test-perror.c,
720 gl/tests/test-perror2.c, gl/tests/test-pipe.c,
721 gl/tests/test-printf-frexp.c, gl/tests/test-printf-frexpl.c,
722 gl/tests/test-printf-posix.h, gl/tests/test-rawmemchr.c,
723 gl/tests/test-read-file.c, gl/tests/test-recv.c,
724 gl/tests/test-recvfrom.c, gl/tests/test-select-fd.c,
725 gl/tests/test-select-stdin.c, gl/tests/test-select.c,
726 gl/tests/test-select.h, gl/tests/test-send.c,
727 gl/tests/test-sendto.c, gl/tests/test-setenv.c,
728 gl/tests/test-setsockopt.c, gl/tests/test-shutdown.c,
729 gl/tests/test-signal-h.c, gl/tests/test-signbit.c,
730 gl/tests/test-sleep.c, gl/tests/test-snprintf.c,
731 gl/tests/test-sockets.c, gl/tests/test-stat.c,
732 gl/tests/test-stat.h, gl/tests/test-stdalign.c,
733 gl/tests/test-stdbool.c, gl/tests/test-stddef.c,
734 gl/tests/test-stdint.c, gl/tests/test-stdio.c,
735 gl/tests/test-stdlib.c, gl/tests/test-strchrnul.c,
736 gl/tests/test-strerror.c, gl/tests/test-strerror_r.c,
737 gl/tests/test-string.c, gl/tests/test-strings.c,
738 gl/tests/test-strnlen.c, gl/tests/test-strverscmp.c,
739 gl/tests/test-symlink.c, gl/tests/test-symlink.h,
740 gl/tests/test-sys_ioctl.c, gl/tests/test-sys_select.c,
741 gl/tests/test-sys_socket.c, gl/tests/test-sys_stat.c,
742 gl/tests/test-sys_time.c, gl/tests/test-sys_types.c,
743 gl/tests/test-sys_uio.c, gl/tests/test-sys_wait.h,
744 gl/tests/test-sysexits.c, gl/tests/test-thread_create.c,
745 gl/tests/test-thread_self.c, gl/tests/test-time.c,
746 gl/tests/test-u64.c, gl/tests/test-unistd.c,
747 gl/tests/test-unsetenv.c, gl/tests/test-usleep.c,
748 gl/tests/test-vasnprintf.c, gl/tests/test-vasprintf.c,
749 gl/tests/test-vc-list-files-cvs.sh,
750 gl/tests/test-vc-list-files-git.sh, gl/tests/test-verify.c,
751 gl/tests/test-version-etc.c, gl/tests/test-version-etc.sh,
752 gl/tests/test-vfprintf-posix.c, gl/tests/test-vprintf-posix.c,
753 gl/tests/test-vsnprintf.c, gl/tests/test-wchar.c,
754 gl/tests/unsetenv.c, gl/tests/w32sock.h, gl/tests/zerosize-ptr.h,
755 gl/time.in.h, gl/time_r.c, gl/timespec.h, gl/u64.h, gl/unistd.in.h,
756 gl/usleep.c, gl/vasnprintf.c, gl/vasnprintf.h, gl/vasprintf.c,
757 gl/verify.h, gl/version-etc-fsf.c, gl/version-etc.c,
758 gl/version-etc.h, gl/vfprintf.c, gl/vprintf.c, gl/vsnprintf.c,
759 gl/w32sock.h, gl/wchar.in.h, gl/xsize.h, maint.mk: Updated gnulib
760 and added usleep and getaddrinfo modules.
762 2012-01-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
764 * lib/x509/output.c: Authority information access information ->
765 Authority information access
767 2012-01-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
769 * lib/auth/cert.c, lib/auth/cert.h, lib/auth/dhe.c, lib/auth/rsa.c,
770 lib/auth/rsa_export.c, lib/auth/srp_rsa.c:
771 _gnutls_proc_cert_client_certificate and
772 _gnutls_proc_cert_server_certificate renamed to
773 _gnutls_proc_certificate.
775 2012-01-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
779 2012-01-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
781 * lib/gnutls_dh_primes.c: gnutls_dh_params_cpy() copies the
784 2012-01-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
786 * tests/slow/gendh.c: properly deinitialize.
788 2012-01-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
790 * lib/nettle/mpi.c: corrected leak in DH parameter generation.
792 2012-01-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
794 * ChangeLog: updated changelog
796 2012-01-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
798 * lib/nettle/mpi.c: removed old comment
800 2012-01-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
802 * ChangeLog, NEWS: updated changelog and news for release
804 2012-01-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
806 * lib/gnutls_cipher.c: corrected typo
808 2012-01-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
810 * NEWS, configure.ac, m4/hooks.m4: bumped version
812 2012-01-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
814 * lib/gnutls_buffers.c: Corrected functionality of
815 gnutls_record_get_direction(). Reported by Philip Allison.
817 2012-01-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
819 * NEWS, lib/gnutls_cipher.c: provide less timing information when
820 decoding packets. Patch by Nadhem Alfardan.
822 2012-01-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
824 * src/serv.c: use AI_ADDRCONFIG if available.
826 2012-01-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
828 * configure.ac: prevent building of crywrap in windows
830 2012-01-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
834 2012-01-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
838 2012-01-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
840 * lib/extras/Makefile.am: added missing file
842 2012-01-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
844 * NEWS, configure.ac, m4/hooks.m4: bumped version
846 2012-01-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
848 * src/certtool-gaa.c, src/certtool-gaa.h, src/p11tool-gaa.c: Updated
851 2012-01-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
853 * doc/latex/.gitignore, doc/latex/cover.tex: added missing file
855 2012-01-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
857 * src/benchmark-tls.c: print the RSA and DH bits as well as EC bits
860 2012-01-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
862 * src/benchmark-tls.c: use 1840 bit DH and RSA to compare with 192
865 2012-01-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
867 * lib/algorithms/publickey.c, lib/algorithms/secparams.c,
868 lib/algorithms/sign.c, lib/auth/cert.c, lib/auth/ecdh_common.c,
869 lib/gnutls_privkey.c, lib/gnutls_pubkey.c, lib/gnutls_sig.c,
870 lib/includes/gnutls/gnutls.h.in, lib/nettle/pk.c, lib/pkcs11_int.h,
871 lib/pkcs11_privkey.c, lib/pkcs11_write.c, lib/x509/key_decode.c,
872 lib/x509/key_encode.c, lib/x509/output.c, lib/x509/privkey.c,
873 lib/x509/privkey_pkcs8.c, lib/x509/verify.c, src/certtool.c,
874 src/p11tool.gaa, tests/slow/keygen.c: GNUTLS_PK_ECC -> GNUTLS_PK_EC
876 2011-12-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
878 * lib/openpgp/gnutls_openpgp.c: CDK_EOF error code now returns
879 GNUTLS_E_PARSING_ERROR
881 2011-12-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
883 * lib/opencdk/armor.c, lib/opencdk/opencdk.h: removed
884 cdk_armor_filter_use()
886 2011-12-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
888 * src/certtool.c: correctly report 0 keys on a keyring
890 2011-12-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
892 * lib/opencdk/kbnode.c, lib/opencdk/opencdk.h,
893 lib/openpgp/gnutls_openpgp.c, lib/openpgp/pgp.c,
894 lib/openpgp/privkey.c: more opencdk simplifications
896 2011-12-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
898 * tests/openpgp-certs/testselfsigs: specify key type (raw) to
901 2011-12-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
903 * lib/opencdk/Makefile.am, lib/opencdk/armor.c,
904 lib/opencdk/keydb.c, lib/opencdk/main.c, lib/opencdk/opencdk.h,
905 lib/openpgp/extras.c, lib/openpgp/gnutls_openpgp.c: Removed unneeded
906 opencdk functionality.
908 2011-12-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
910 * cross.mk: verify signatures on download
912 2011-12-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
914 * lib/gnutls_global.c, lib/gnutls_mem.c: _gnutls_is_secure_memory is
917 2011-12-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
919 * NEWS, src/cli.c: gnutls-cli can now read input from win32.
921 2011-12-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
923 * NEWS, lib/openpgp/pgp.c, lib/openpgp/privkey.c: Avoid using base64
924 armor auto-detection which causes decoding errors in win32. For
925 some reason reading from the stream modifies the stream and this
926 work-around avoids that issue.
928 2011-12-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
930 * tests/pgps2kgnu.c: enable debugging in pgps2kgnu
932 2011-12-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
934 * tests/Makefile.am, tests/openpgp-auth2.c: do not use valgrind in
937 2011-12-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
939 * cross.mk: gmp is compiled with --enable-fat.
941 2011-12-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
943 * tests/Makefile.am: link libutils with libgnu.
945 2011-12-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
947 * .gitignore: more files to ignore
949 2011-12-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
951 * doc/manpages/Makefile.am: Added missing function names.
953 2011-12-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
955 * cross.mk: Added a preliminary win32 compilation makefile.
957 2011-12-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
959 * doc/Makefile.am: win32 fixes
961 2011-12-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
963 * configure.ac: do not build crywrap on win32
965 2011-12-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
967 * extra/includes/gnutls/openssl.h: undefine possible system macros.
969 2011-12-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
971 * doc/examples/ex-serv-dtls.c: updated DTLS example
973 2011-12-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
975 * doc/cha-cert-auth.texi, doc/cha-cert-auth2.texi,
976 doc/cha-programs.texi: more updates
978 2011-12-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
980 * doc/cha-ciphersuites.texi, doc/cha-copying.texi,
981 doc/cha-gtls-app.texi, doc/cha-gtls-examples.texi,
982 doc/cha-internals.texi, doc/cha-library.texi,
983 doc/cha-shared-key.texi, doc/gnutls.texi: Small improvements in
986 2011-12-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
988 * NEWS, lib/x509/privkey.c: corrected bug in DSA private key
991 2011-12-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
993 * src/certtool.gaa: Added --rsa option which is a no-op for now.
995 2011-12-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
997 * lib/extras/randomart.c, lib/extras/randomart.h, lib/gnutls_ui.c,
998 lib/openpgp/output.c, lib/x509/output.c,
999 tests/pathlen/ca-no-pathlen.pem, tests/pathlen/no-ca-or-pathlen.pem:
1000 Allow the insertion of characters to align the randomart.
1002 2011-12-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1004 * src/certtool.c: Print the fingerprint of PGP keys and not only the
1007 2011-12-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1009 * tests/pathlen/ca-no-pathlen.pem,
1010 tests/pathlen/no-ca-or-pathlen.pem: Add random art to keys.
1012 2011-12-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1014 * tests/mini-deflate.c: Skip deflate test if libz is not available.
1016 2011-12-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1018 * lib/openpgp/output.c, lib/x509/output.c, src/certtool.c: updated
1019 random art's messages.
1021 2011-12-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1023 * src/certtool.c: Print the pgp key's randomart as well.
1025 2011-12-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1027 * lib/openpgp/output.c, lib/x509/output.c: Print the randomart on
1028 the key ID and not the fingerprint.
1030 2011-12-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1032 * lib/gnutls_errors.c: Updated GNUTLS_E_NO_CERTIFICATE_FOUND
1035 2011-12-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1037 * .gitignore: more files to ignore
1039 2011-12-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1041 * lib/extras/randomart.c, lib/extras/randomart.h, lib/gnutls_ui.c,
1042 lib/openpgp/output.c, lib/x509/output.c, src/certtool.c: print
1043 randomart for private keys as well.
1045 2011-12-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1047 * lib/extras/randomart.c, lib/system.c, lib/system.h,
1048 lib/x509/output.c: gnutls_atfork was no longer in use.
1050 2011-12-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1052 * NEWS, configure.ac, lib/Makefile.am, lib/extras/Makefile.am,
1053 lib/extras/randomart.c, lib/extras/randomart.h, lib/gnutls_ui.c,
1054 lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map,
1055 lib/openpgp/output.c, lib/x509/output.c: Added function
1056 gnutls_random_art() to convert fingerprints to images (currently
1059 2011-12-28 Patrick Pelletier <code@funwithsoftware.org>
1061 * doc/cha-gtls-app.texi, doc/cha-gtls-examples.texi,
1062 doc/cha-internals.texi, lib/algorithms/ciphers.c,
1063 lib/algorithms/protocols.c, lib/algorithms/secparams.c,
1064 lib/gnutls_cert.c, lib/gnutls_cipher.c, lib/gnutls_db.c,
1065 lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_priority.c,
1066 lib/gnutls_state.c, lib/gnutls_ui.c, lib/nettle/rnd.c: minor doc and
1067 comment fixes Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
1069 2011-12-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1071 * doc/Makefile.am, doc/cha-gtls-app.texi,
1072 doc/cha-gtls-examples.texi, doc/cha-intro-tls.texi,
1073 doc/examples/Makefile.am, doc/examples/ex-client-anon.c,
1074 doc/examples/ex-client-dtls.c, doc/examples/ex-client-psk.c,
1075 doc/examples/ex-client-resume.c, doc/examples/ex-client-srp.c,
1076 doc/examples/ex-client-udp.c, doc/examples/ex-client-x509.c,
1077 doc/examples/ex-client1.c, doc/examples/ex-rfc2818.c,
1078 doc/examples/ex-serv-anon.c, doc/examples/ex-serv-srp.c,
1079 doc/examples/ex-serv-x509.c, doc/examples/ex-serv1.c: updated
1080 examples and added new "handling alerts" section.
1082 2011-12-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1084 * doc/cha-gtls-examples.texi, doc/examples/udp.c: updated and
1085 included in the documentation the udp code.
1087 2011-12-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1089 * NEWS, src/cli.c, src/serv.c: Set don't fragment bit in Linux as
1090 well as in BSD variants.
1092 2011-12-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1094 * .gitignore, doc/examples/ex-serv-dtls.c, doc/examples/ex-serv1.c:
1095 updated server examples
1097 2011-12-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1099 * doc/cha-cert-auth.texi, doc/cha-cert-auth2.texi,
1100 doc/cha-gtls-app.texi, doc/cha-programs.texi,
1101 doc/cha-shared-key.texi: smallexample is no longer used. It is
1102 intended only for typesetting with smaller pages and had no relation
1105 2011-12-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1107 * src/serv.c: prepend UDP to server application name when in UDP
1110 2011-12-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1112 * doc/cha-gtls-app.texi, doc/cha-gtls-examples.texi,
1113 doc/examples/Makefile.am, doc/examples/ex-serv-dtls.c,
1114 doc/examples/ex-serv1.c: Added DTLS server example.
1116 2011-12-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1118 * src/udp-serv.c: corrected a leak
1120 2011-12-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1122 * doc/cha-gtls-app.texi: Added SECP192R1 curve.
1124 2011-12-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1126 * lib/includes/gnutls/abstract.h, lib/includes/gnutls/pkcs11.h:
1127 pkcs11.h and abstract.h use extern C idiom for C++.
1129 2011-12-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1131 * NEWS, lib/algorithms/ciphersuites.c: Added ciphersuites:
1132 GNUTLS_PSK_WITH_AES_256_GCM_SHA384 and
1133 GNUTLS_DHE_PSK_WITH_AES_256_GCM_SHA384.
1135 2011-12-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1137 * NEWS, lib/algorithms/ciphersuites.c: Corrected ciphersuite
1138 GNUTLS_ECDHE_PSK_AES_256_CBC_SHA384
1140 2011-12-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1142 * src/serv.c: Only use configured interfaces. Patch by Pino Toscano.
1144 2011-12-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1146 * lib/algorithms/protocols.c: better comments.
1148 2011-12-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1150 * lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_state.c:
1151 gnutls_protocol_get_version() and _gnutls_set_current_version() are
1152 now inline functions
1154 2011-12-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1156 * lib/algorithms/ciphersuites.c: documented
1157 _gnutls_supported_ciphersuites()
1159 2011-12-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1161 * lib/algorithms/ciphersuites.c: renamed the _SHA ciphersuites to
1164 2011-12-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1166 * lib/nettle/mpi.c: correctly set the odd bits.
1168 2011-12-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1170 * ChangeLog, Makefile.am, cfg.mk: make dist forces regeneration of
1171 ChangeLog and manpages.
1173 2011-12-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1175 * doc/Makefile.am: Added missing file
1177 2011-12-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1179 * NEWS, configure.ac, m4/hooks.m4: bumped version
1181 2011-12-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1183 * doc/cha-gtls-app.texi: documented new priority strings.
1185 2011-12-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1187 * lib/gnutls_handshake.c: server precedence also used in compression
1190 2011-12-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1192 * lib/algorithms.h, lib/algorithms/ciphersuites.c,
1193 lib/auth/dh_common.c, lib/auth/rsa.c, lib/auth/rsa_export.c,
1194 lib/gnutls_auth.c, lib/gnutls_constate.c, lib/gnutls_constate.h,
1195 lib/gnutls_handshake.c, lib/gnutls_int.h,
1196 lib/gnutls_session_pack.c, lib/gnutls_state.c,
1197 lib/gnutls_v2_compat.c: cipher_suite_st is no longer used
1198 internally. We only use a point to 2 bytes.
1200 2011-12-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1202 * NEWS, lib/gnutls_handshake.c, lib/gnutls_int.h,
1203 lib/gnutls_priority.c: Added new priority string %SERVER_PRECEDENCE.
1205 2011-12-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1207 * lib/gnutls_priority.c: Removed 128-bit ciphers from secure192, but
1208 added SHA256 (or no ciphersuites are there).
1210 2011-12-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1212 * NEWS, src/Makefile.am, src/certtool-common.h, src/certtool-gaa.c,
1213 src/certtool-gaa.h, src/certtool.c, src/certtool.gaa, src/dh.c,
1214 src/prime.c: Added the --dh-info parameter to certtool.
1216 2011-12-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1218 * NEWS, doc/manpages/Makefile.am, lib/algorithms/ciphersuites.c,
1219 lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, src/common.c:
1220 gnutls_priority_get_cipher_suite was renamed to
1221 gnutls_priority_get_cipher_suite_index. This makes a more
1222 consistent API at the cost of requiring
1223 gnutls_get_cipher_suite_info(). An advantage however is that more
1224 information can now be accessed.
1226 2011-12-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1228 * NEWS, lib/auth/anon.c, lib/auth/dh_common.c,
1229 lib/auth/dh_common.h, lib/auth/dhe.c, lib/auth/dhe_psk.c,
1230 lib/crypto-backend.h, lib/gnutls_dh.c, lib/gnutls_dh.h,
1231 lib/gnutls_dh_primes.c, lib/gnutls_int.h, lib/nettle/mpi.c,
1232 src/benchmark-tls.c, src/benchmark.c, src/prime.c: Diffie Hellman
1233 PKCS #3 parameters now contain the recommended private key size. By
1234 using the recommended key size the calculations for the server side
1235 are reduced, giving a 50% increase in DH calculations.
1237 2011-12-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1239 * lib/nettle/mpi.c: small cleanups.
1241 2011-12-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1243 * lib/auth/psk_passwd.c, lib/auth/rsa.c, lib/auth/rsa_export.c,
1244 lib/auth/srp_passwd.c, lib/crypto-api.c, lib/ext/session_ticket.c,
1245 lib/gnutls_cipher.c, lib/gnutls_handshake.c, lib/gnutls_mpi.c,
1246 lib/gnutls_pk.c, lib/nettle/gnettle.h, lib/nettle/mpi.c,
1247 lib/nettle/pk.c, lib/nettle/rnd.c, lib/opencdk/misc.c,
1248 lib/pkcs11_secret.c, lib/random.c, lib/random.h, lib/x509/pkcs12.c,
1249 lib/x509/privkey_pkcs8.c: Optimizations in DH parameter generation. The larger prime is find first and the big loop needs to find a
1250 smaller prime, increasing performance. The _gnutls_rnd() function
1251 is now inline and GNUTLS_RND_NONCE doesn't update random generator
1254 2011-12-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1258 2011-12-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1260 * lib/ext/session_ticket.c, lib/gnutls_handshake.c,
1261 lib/gnutls_int.h: If a ticket is sent to client then don't store the
1262 session information in the session cache.
1264 2011-12-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1266 * NEWS, lib/algorithms/ciphersuites.c,
1267 lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, src/cli-gaa.c,
1268 src/cli.gaa, src/common.c, src/common.h, src/serv-gaa.c,
1269 src/serv.gaa: Added gnutls_priority_get_cipher_suite(). This allows
1270 listing the ciphersuites enabled in a priority structure. The
1271 certtool -l option was overloaded so if combined with --priority it
1272 will only list the ciphersuites that are enabled by the given
1275 2011-12-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1277 * lib/nettle/ecc_mulmod.c: removed unused variables.
1279 2011-12-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1281 * lib/gnutls_priority.c: Added 192-bit curve in normal priorities.
1283 2011-12-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1285 * NEWS: documented updates
1287 2011-12-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1289 * src/common.c: Print ephemeral information after certificate
1292 2011-12-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1294 * lib/algorithms.h, lib/algorithms/ciphersuites.c,
1295 lib/gnutls_handshake.c: Optimized ciphersuite sorting.
1297 2011-12-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1299 * src/benchmark-tls.c: modified the test to a level of 80bits of
1302 2011-12-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1304 * lib/algorithms/ecc.c, lib/includes/gnutls/gnutls.h.in: Added
1307 2011-12-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1309 * tests/x509cert.c: be less verbose.
1311 2011-12-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1313 * NEWS: documented fix
1315 2011-12-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1317 * src/benchmark-tls.c: Added ECDHE-ECDSA test.
1319 2011-12-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1321 * lib/nettle/Makefile.am, lib/nettle/ecc.h,
1322 lib/nettle/ecc_make_key.c, lib/nettle/ecc_mulmod.c,
1323 lib/nettle/ecc_mulmod_timing.c, lib/nettle/ecc_sign_hash.c: The
1324 timing resistant ecc_mulmod() is only used when signing using the
1325 ECDSA private key. This improves performance in all other cases that
1326 do not require timing resistance.
1328 2011-12-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1330 * lib/accelerated/x86/x86.h: corrected have_cpuid for x86-64.
1332 2011-12-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1334 * doc/Makefile.am, doc/cha-cert-auth2.texi: renamed hardware tokens
1335 to security modules.
1337 2011-12-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1339 * doc/cha-cert-auth2.texi: Added section 'Managing encrypted keys'
1340 to include PKCS 12 structures.
1342 2011-12-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1344 * src/benchmark-tls.c: Added RSA key exchange to comparison.
1346 2011-12-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1348 * devel/perlasm/cpuid-x86.pl, devel/perlasm/cpuid-x86_64.pl,
1349 lib/accelerated/accelerated.c, lib/accelerated/x86/aes-padlock.c,
1350 lib/accelerated/x86/aes-x86.c,
1351 lib/accelerated/x86/asm-coff/cpuid-x86-64-coff.s,
1352 lib/accelerated/x86/asm-coff/cpuid-x86-coff.s,
1353 lib/accelerated/x86/asm/cpuid-x86-64.s,
1354 lib/accelerated/x86/asm/cpuid-x86.s, lib/accelerated/x86/x86.h:
1355 Exported gnutls_cpuid() and gnutls_have_cpuid().
1357 2011-12-06 Simon Josefsson <simon@josefsson.org>
1359 * doc/Makefile.am: Fix descriptive text.
1361 2011-12-06 Simon Josefsson <simon@josefsson.org>
1363 * doc/manpages/Makefile.am, doc/scripts/getfuncs.pl: Fix getfuncs.pl
1364 parse bug; require non-empty list of function parameters. Otherwise it would detect a comment like '* foo()' as another
1367 2011-12-06 Simon Josefsson <simon@josefsson.org>
1369 * doc/manpages/gnutls_init.3,
1370 doc/manpages/gnutls_pk_algorithm_get_name.3: Really remove manpages.
1372 2011-12-06 Simon Josefsson <simon@josefsson.org>
1374 * .gitignore, doc/manpages/Makefile.am: Fix whitespace in last
1377 2011-12-06 Simon Josefsson <simon@josefsson.org>
1379 * doc/manpages/Makefile.am: Don't rebuild man pages on every 'make'
1382 2011-12-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
1384 * doc/manpages/Makefile.am, doc/manpages/gnutls_alert_get.3,
1385 doc/manpages/gnutls_alert_get_name.3,
1386 doc/manpages/gnutls_alert_get_strname.3,
1387 doc/manpages/gnutls_alert_send.3,
1388 doc/manpages/gnutls_alert_send_appropriate.3,
1389 doc/manpages/gnutls_anon_allocate_client_credentials.3,
1390 doc/manpages/gnutls_anon_allocate_server_credentials.3,
1391 doc/manpages/gnutls_anon_free_client_credentials.3,
1392 doc/manpages/gnutls_anon_free_server_credentials.3,
1393 doc/manpages/gnutls_anon_set_params_function.3,
1394 doc/manpages/gnutls_anon_set_server_dh_params.3,
1395 doc/manpages/gnutls_anon_set_server_params_function.3,
1396 doc/manpages/gnutls_auth_client_get_type.3,
1397 doc/manpages/gnutls_auth_get_type.3,
1398 doc/manpages/gnutls_auth_server_get_type.3,
1399 doc/manpages/gnutls_bye.3,
1400 doc/manpages/gnutls_certificate_activation_time_peers.3,
1401 doc/manpages/gnutls_certificate_allocate_credentials.3,
1402 doc/manpages/gnutls_certificate_client_get_request_status.3,
1403 doc/manpages/gnutls_certificate_expiration_time_peers.3,
1404 doc/manpages/gnutls_certificate_free_ca_names.3,
1405 doc/manpages/gnutls_certificate_free_cas.3,
1406 doc/manpages/gnutls_certificate_free_credentials.3,
1407 doc/manpages/gnutls_certificate_free_crls.3,
1408 doc/manpages/gnutls_certificate_free_keys.3,
1409 doc/manpages/gnutls_certificate_get_issuer.3,
1410 doc/manpages/gnutls_certificate_get_openpgp_keyring.3,
1411 doc/manpages/gnutls_certificate_get_ours.3,
1412 doc/manpages/gnutls_certificate_get_peers.3,
1413 doc/manpages/gnutls_certificate_send_x509_rdn_sequence.3,
1414 doc/manpages/gnutls_certificate_server_set_request.3,
1415 doc/manpages/gnutls_certificate_set_dh_params.3,
1416 doc/manpages/gnutls_certificate_set_key.3,
1417 doc/manpages/gnutls_certificate_set_openpgp_key.3,
1418 doc/manpages/gnutls_certificate_set_openpgp_key_file.3,
1419 doc/manpages/gnutls_certificate_set_openpgp_key_file2.3,
1420 doc/manpages/gnutls_certificate_set_openpgp_key_mem.3,
1421 doc/manpages/gnutls_certificate_set_openpgp_key_mem2.3,
1422 doc/manpages/gnutls_certificate_set_params_function.3,
1423 doc/manpages/gnutls_certificate_set_rsa_export_params.3,
1424 doc/manpages/gnutls_certificate_set_verify_flags.3,
1425 doc/manpages/gnutls_certificate_set_verify_function.3,
1426 doc/manpages/gnutls_certificate_set_verify_limits.3,
1427 doc/manpages/gnutls_certificate_set_x509_crl.3,
1428 doc/manpages/gnutls_certificate_set_x509_crl_file.3,
1429 doc/manpages/gnutls_certificate_set_x509_crl_mem.3,
1430 doc/manpages/gnutls_certificate_set_x509_key.3,
1431 doc/manpages/gnutls_certificate_set_x509_key_file.3,
1432 doc/manpages/gnutls_certificate_set_x509_key_mem.3,
1433 doc/manpages/gnutls_certificate_set_x509_trust.3,
1434 doc/manpages/gnutls_certificate_set_x509_trust_file.3,
1435 doc/manpages/gnutls_certificate_set_x509_trust_mem.3,
1436 doc/manpages/gnutls_certificate_type_get.3,
1437 doc/manpages/gnutls_certificate_type_get_id.3,
1438 doc/manpages/gnutls_certificate_type_get_name.3,
1439 doc/manpages/gnutls_certificate_type_list.3,
1440 doc/manpages/gnutls_certificate_type_set_priority.3,
1441 doc/manpages/gnutls_certificate_verify_peers2.3,
1442 doc/manpages/gnutls_check_version.3,
1443 doc/manpages/gnutls_cipher_add_auth.3,
1444 doc/manpages/gnutls_cipher_decrypt.3,
1445 doc/manpages/gnutls_cipher_decrypt2.3,
1446 doc/manpages/gnutls_cipher_deinit.3,
1447 doc/manpages/gnutls_cipher_encrypt.3,
1448 doc/manpages/gnutls_cipher_encrypt2.3,
1449 doc/manpages/gnutls_cipher_get.3,
1450 doc/manpages/gnutls_cipher_get_block_size.3,
1451 doc/manpages/gnutls_cipher_get_id.3,
1452 doc/manpages/gnutls_cipher_get_key_size.3,
1453 doc/manpages/gnutls_cipher_get_name.3,
1454 doc/manpages/gnutls_cipher_init.3,
1455 doc/manpages/gnutls_cipher_list.3,
1456 doc/manpages/gnutls_cipher_set_iv.3,
1457 doc/manpages/gnutls_cipher_set_priority.3,
1458 doc/manpages/gnutls_cipher_suite_get_name.3,
1459 doc/manpages/gnutls_cipher_suite_info.3,
1460 doc/manpages/gnutls_cipher_tag.3,
1461 doc/manpages/gnutls_compression_get.3,
1462 doc/manpages/gnutls_compression_get_id.3,
1463 doc/manpages/gnutls_compression_get_name.3,
1464 doc/manpages/gnutls_compression_list.3,
1465 doc/manpages/gnutls_compression_set_priority.3,
1466 doc/manpages/gnutls_credentials_clear.3,
1467 doc/manpages/gnutls_credentials_set.3,
1468 doc/manpages/gnutls_db_check_entry.3,
1469 doc/manpages/gnutls_db_get_ptr.3,
1470 doc/manpages/gnutls_db_remove_session.3,
1471 doc/manpages/gnutls_db_set_cache_expiration.3,
1472 doc/manpages/gnutls_db_set_ptr.3,
1473 doc/manpages/gnutls_db_set_remove_function.3,
1474 doc/manpages/gnutls_db_set_retrieve_function.3,
1475 doc/manpages/gnutls_db_set_store_function.3,
1476 doc/manpages/gnutls_deinit.3, doc/manpages/gnutls_dh_get_group.3,
1477 doc/manpages/gnutls_dh_get_peers_public_bits.3,
1478 doc/manpages/gnutls_dh_get_prime_bits.3,
1479 doc/manpages/gnutls_dh_get_pubkey.3,
1480 doc/manpages/gnutls_dh_get_secret_bits.3,
1481 doc/manpages/gnutls_dh_params_cpy.3,
1482 doc/manpages/gnutls_dh_params_deinit.3,
1483 doc/manpages/gnutls_dh_params_export_pkcs3.3,
1484 doc/manpages/gnutls_dh_params_export_raw.3,
1485 doc/manpages/gnutls_dh_params_generate2.3,
1486 doc/manpages/gnutls_dh_params_import_pkcs3.3,
1487 doc/manpages/gnutls_dh_params_import_raw.3,
1488 doc/manpages/gnutls_dh_params_init.3,
1489 doc/manpages/gnutls_dh_set_prime_bits.3,
1490 doc/manpages/gnutls_dtls_cookie_send.3,
1491 doc/manpages/gnutls_dtls_cookie_verify.3,
1492 doc/manpages/gnutls_dtls_get_data_mtu.3,
1493 doc/manpages/gnutls_dtls_get_mtu.3,
1494 doc/manpages/gnutls_dtls_prestate_set.3,
1495 doc/manpages/gnutls_dtls_set_mtu.3,
1496 doc/manpages/gnutls_dtls_set_timeouts.3,
1497 doc/manpages/gnutls_ecc_curve_get.3,
1498 doc/manpages/gnutls_ecc_curve_get_name.3,
1499 doc/manpages/gnutls_ecc_curve_get_size.3,
1500 doc/manpages/gnutls_error_is_fatal.3,
1501 doc/manpages/gnutls_error_to_alert.3,
1502 doc/manpages/gnutls_fingerprint.3,
1503 doc/manpages/gnutls_global_deinit.3,
1504 doc/manpages/gnutls_global_init.3,
1505 doc/manpages/gnutls_global_set_audit_log_function.3,
1506 doc/manpages/gnutls_global_set_log_function.3,
1507 doc/manpages/gnutls_global_set_log_level.3,
1508 doc/manpages/gnutls_global_set_mem_functions.3,
1509 doc/manpages/gnutls_global_set_mutex.3,
1510 doc/manpages/gnutls_global_set_time_function.3,
1511 doc/manpages/gnutls_handshake.3,
1512 doc/manpages/gnutls_handshake_get_last_in.3,
1513 doc/manpages/gnutls_handshake_get_last_out.3,
1514 doc/manpages/gnutls_handshake_set_max_packet_length.3,
1515 doc/manpages/gnutls_handshake_set_post_client_hello_function.3,
1516 doc/manpages/gnutls_handshake_set_private_extensions.3,
1517 doc/manpages/gnutls_hash.3, doc/manpages/gnutls_hash_deinit.3,
1518 doc/manpages/gnutls_hash_fast.3,
1519 doc/manpages/gnutls_hash_get_len.3,
1520 doc/manpages/gnutls_hash_init.3, doc/manpages/gnutls_hash_output.3,
1521 doc/manpages/gnutls_hex2bin.3, doc/manpages/gnutls_hex_decode.3,
1522 doc/manpages/gnutls_hex_encode.3, doc/manpages/gnutls_hmac.3,
1523 doc/manpages/gnutls_hmac_deinit.3, doc/manpages/gnutls_hmac_fast.3,
1524 doc/manpages/gnutls_hmac_get_len.3,
1525 doc/manpages/gnutls_hmac_init.3, doc/manpages/gnutls_hmac_output.3,
1526 doc/manpages/gnutls_init.3, doc/manpages/gnutls_key_generate.3,
1527 doc/manpages/gnutls_kx_get.3, doc/manpages/gnutls_kx_get_id.3,
1528 doc/manpages/gnutls_kx_get_name.3, doc/manpages/gnutls_kx_list.3,
1529 doc/manpages/gnutls_kx_set_priority.3,
1530 doc/manpages/gnutls_mac_get.3, doc/manpages/gnutls_mac_get_id.3,
1531 doc/manpages/gnutls_mac_get_key_size.3,
1532 doc/manpages/gnutls_mac_get_name.3, doc/manpages/gnutls_mac_list.3,
1533 doc/manpages/gnutls_mac_set_priority.3,
1534 doc/manpages/gnutls_openpgp_crt_check_hostname.3,
1535 doc/manpages/gnutls_openpgp_crt_deinit.3,
1536 doc/manpages/gnutls_openpgp_crt_export.3,
1537 doc/manpages/gnutls_openpgp_crt_get_auth_subkey.3,
1538 doc/manpages/gnutls_openpgp_crt_get_creation_time.3,
1539 doc/manpages/gnutls_openpgp_crt_get_expiration_time.3,
1540 doc/manpages/gnutls_openpgp_crt_get_fingerprint.3,
1541 doc/manpages/gnutls_openpgp_crt_get_key_id.3,
1542 doc/manpages/gnutls_openpgp_crt_get_key_usage.3,
1543 doc/manpages/gnutls_openpgp_crt_get_name.3,
1544 doc/manpages/gnutls_openpgp_crt_get_pk_algorithm.3,
1545 doc/manpages/gnutls_openpgp_crt_get_pk_dsa_raw.3,
1546 doc/manpages/gnutls_openpgp_crt_get_pk_rsa_raw.3,
1547 doc/manpages/gnutls_openpgp_crt_get_preferred_key_id.3,
1548 doc/manpages/gnutls_openpgp_crt_get_revoked_status.3,
1549 doc/manpages/gnutls_openpgp_crt_get_subkey_count.3,
1550 doc/manpages/gnutls_openpgp_crt_get_subkey_creation_time.3,
1551 doc/manpages/gnutls_openpgp_crt_get_subkey_expiration_time.3,
1552 doc/manpages/gnutls_openpgp_crt_get_subkey_fingerprint.3,
1553 doc/manpages/gnutls_openpgp_crt_get_subkey_id.3,
1554 doc/manpages/gnutls_openpgp_crt_get_subkey_idx.3,
1555 doc/manpages/gnutls_openpgp_crt_get_subkey_pk_algorithm.3,
1556 doc/manpages/gnutls_openpgp_crt_get_subkey_pk_dsa_raw.3,
1557 doc/manpages/gnutls_openpgp_crt_get_subkey_pk_rsa_raw.3,
1558 doc/manpages/gnutls_openpgp_crt_get_subkey_revoked_status.3,
1559 doc/manpages/gnutls_openpgp_crt_get_subkey_usage.3,
1560 doc/manpages/gnutls_openpgp_crt_get_version.3,
1561 doc/manpages/gnutls_openpgp_crt_import.3,
1562 doc/manpages/gnutls_openpgp_crt_init.3,
1563 doc/manpages/gnutls_openpgp_crt_print.3,
1564 doc/manpages/gnutls_openpgp_crt_set_preferred_key_id.3,
1565 doc/manpages/gnutls_openpgp_crt_verify_ring.3,
1566 doc/manpages/gnutls_openpgp_crt_verify_self.3,
1567 doc/manpages/gnutls_openpgp_keyring_check_id.3,
1568 doc/manpages/gnutls_openpgp_keyring_deinit.3,
1569 doc/manpages/gnutls_openpgp_keyring_get_crt.3,
1570 doc/manpages/gnutls_openpgp_keyring_get_crt_count.3,
1571 doc/manpages/gnutls_openpgp_keyring_import.3,
1572 doc/manpages/gnutls_openpgp_keyring_init.3,
1573 doc/manpages/gnutls_openpgp_privkey_deinit.3,
1574 doc/manpages/gnutls_openpgp_privkey_export.3,
1575 doc/manpages/gnutls_openpgp_privkey_export_dsa_raw.3,
1576 doc/manpages/gnutls_openpgp_privkey_export_rsa_raw.3,
1577 doc/manpages/gnutls_openpgp_privkey_export_subkey_dsa_raw.3,
1578 doc/manpages/gnutls_openpgp_privkey_export_subkey_rsa_raw.3,
1579 doc/manpages/gnutls_openpgp_privkey_get_fingerprint.3,
1580 doc/manpages/gnutls_openpgp_privkey_get_key_id.3,
1581 doc/manpages/gnutls_openpgp_privkey_get_pk_algorithm.3,
1582 doc/manpages/gnutls_openpgp_privkey_get_preferred_key_id.3,
1583 doc/manpages/gnutls_openpgp_privkey_get_revoked_status.3,
1584 doc/manpages/gnutls_openpgp_privkey_get_subkey_count.3,
1585 doc/manpages/gnutls_openpgp_privkey_get_subkey_creation_time.3,
1586 doc/manpages/gnutls_openpgp_privkey_get_subkey_fingerprint.3,
1587 doc/manpages/gnutls_openpgp_privkey_get_subkey_id.3,
1588 doc/manpages/gnutls_openpgp_privkey_get_subkey_idx.3,
1589 doc/manpages/gnutls_openpgp_privkey_get_subkey_pk_algorithm.3,
1590 doc/manpages/gnutls_openpgp_privkey_get_subkey_revoked_status.3,
1591 doc/manpages/gnutls_openpgp_privkey_import.3,
1592 doc/manpages/gnutls_openpgp_privkey_init.3,
1593 doc/manpages/gnutls_openpgp_privkey_sec_param.3,
1594 doc/manpages/gnutls_openpgp_privkey_set_preferred_key_id.3,
1595 doc/manpages/gnutls_openpgp_privkey_sign_hash.3,
1596 doc/manpages/gnutls_openpgp_send_cert.3,
1597 doc/manpages/gnutls_openpgp_set_recv_key_function.3,
1598 doc/manpages/gnutls_pcert_deinit.3,
1599 doc/manpages/gnutls_pcert_import_openpgp.3,
1600 doc/manpages/gnutls_pcert_import_openpgp_raw.3,
1601 doc/manpages/gnutls_pcert_import_x509.3,
1602 doc/manpages/gnutls_pcert_import_x509_raw.3,
1603 doc/manpages/gnutls_pcert_list_import_x509_raw.3,
1604 doc/manpages/gnutls_pem_base64_decode.3,
1605 doc/manpages/gnutls_pem_base64_decode_alloc.3,
1606 doc/manpages/gnutls_pem_base64_encode.3,
1607 doc/manpages/gnutls_pem_base64_encode_alloc.3,
1608 doc/manpages/gnutls_perror.3,
1609 doc/manpages/gnutls_pk_algorithm_get_name.3,
1610 doc/manpages/gnutls_pk_bits_to_sec_param.3,
1611 doc/manpages/gnutls_pk_get_id.3, doc/manpages/gnutls_pk_get_name.3,
1612 doc/manpages/gnutls_pk_list.3,
1613 doc/manpages/gnutls_pkcs11_add_provider.3,
1614 doc/manpages/gnutls_pkcs11_copy_secret_key.3,
1615 doc/manpages/gnutls_pkcs11_copy_x509_crt.3,
1616 doc/manpages/gnutls_pkcs11_copy_x509_privkey.3,
1617 doc/manpages/gnutls_pkcs11_deinit.3,
1618 doc/manpages/gnutls_pkcs11_delete_url.3,
1619 doc/manpages/gnutls_pkcs11_init.3,
1620 doc/manpages/gnutls_pkcs11_obj_deinit.3,
1621 doc/manpages/gnutls_pkcs11_obj_export.3,
1622 doc/manpages/gnutls_pkcs11_obj_export_url.3,
1623 doc/manpages/gnutls_pkcs11_obj_get_info.3,
1624 doc/manpages/gnutls_pkcs11_obj_get_type.3,
1625 doc/manpages/gnutls_pkcs11_obj_import_url.3,
1626 doc/manpages/gnutls_pkcs11_obj_init.3,
1627 doc/manpages/gnutls_pkcs11_obj_list_import_url.3,
1628 doc/manpages/gnutls_pkcs11_privkey_deinit.3,
1629 doc/manpages/gnutls_pkcs11_privkey_export_url.3,
1630 doc/manpages/gnutls_pkcs11_privkey_generate.3,
1631 doc/manpages/gnutls_pkcs11_privkey_get_info.3,
1632 doc/manpages/gnutls_pkcs11_privkey_get_pk_algorithm.3,
1633 doc/manpages/gnutls_pkcs11_privkey_import_url.3,
1634 doc/manpages/gnutls_pkcs11_privkey_init.3,
1635 doc/manpages/gnutls_pkcs11_set_pin_function.3,
1636 doc/manpages/gnutls_pkcs11_set_token_function.3,
1637 doc/manpages/gnutls_pkcs11_token_get_flags.3,
1638 doc/manpages/gnutls_pkcs11_token_get_info.3,
1639 doc/manpages/gnutls_pkcs11_token_get_mechanism.3,
1640 doc/manpages/gnutls_pkcs11_token_get_url.3,
1641 doc/manpages/gnutls_pkcs11_token_init.3,
1642 doc/manpages/gnutls_pkcs11_token_set_pin.3,
1643 doc/manpages/gnutls_pkcs11_type_get_name.3,
1644 doc/manpages/gnutls_pkcs12_bag_decrypt.3,
1645 doc/manpages/gnutls_pkcs12_bag_deinit.3,
1646 doc/manpages/gnutls_pkcs12_bag_encrypt.3,
1647 doc/manpages/gnutls_pkcs12_bag_get_count.3,
1648 doc/manpages/gnutls_pkcs12_bag_get_data.3,
1649 doc/manpages/gnutls_pkcs12_bag_get_friendly_name.3,
1650 doc/manpages/gnutls_pkcs12_bag_get_key_id.3,
1651 doc/manpages/gnutls_pkcs12_bag_get_type.3,
1652 doc/manpages/gnutls_pkcs12_bag_init.3,
1653 doc/manpages/gnutls_pkcs12_bag_set_crl.3,
1654 doc/manpages/gnutls_pkcs12_bag_set_crt.3,
1655 doc/manpages/gnutls_pkcs12_bag_set_data.3,
1656 doc/manpages/gnutls_pkcs12_bag_set_friendly_name.3,
1657 doc/manpages/gnutls_pkcs12_bag_set_key_id.3,
1658 doc/manpages/gnutls_pkcs12_deinit.3,
1659 doc/manpages/gnutls_pkcs12_export.3,
1660 doc/manpages/gnutls_pkcs12_generate_mac.3,
1661 doc/manpages/gnutls_pkcs12_get_bag.3,
1662 doc/manpages/gnutls_pkcs12_import.3,
1663 doc/manpages/gnutls_pkcs12_init.3,
1664 doc/manpages/gnutls_pkcs12_set_bag.3,
1665 doc/manpages/gnutls_pkcs12_verify_mac.3,
1666 doc/manpages/gnutls_pkcs7_deinit.3,
1667 doc/manpages/gnutls_pkcs7_delete_crl.3,
1668 doc/manpages/gnutls_pkcs7_delete_crt.3,
1669 doc/manpages/gnutls_pkcs7_export.3,
1670 doc/manpages/gnutls_pkcs7_get_crl_count.3,
1671 doc/manpages/gnutls_pkcs7_get_crl_raw.3,
1672 doc/manpages/gnutls_pkcs7_get_crt_count.3,
1673 doc/manpages/gnutls_pkcs7_get_crt_raw.3,
1674 doc/manpages/gnutls_pkcs7_import.3,
1675 doc/manpages/gnutls_pkcs7_init.3,
1676 doc/manpages/gnutls_pkcs7_set_crl.3,
1677 doc/manpages/gnutls_pkcs7_set_crl_raw.3,
1678 doc/manpages/gnutls_pkcs7_set_crt.3,
1679 doc/manpages/gnutls_pkcs7_set_crt_raw.3, doc/manpages/gnutls_prf.3,
1680 doc/manpages/gnutls_prf_raw.3,
1681 doc/manpages/gnutls_priority_deinit.3,
1682 doc/manpages/gnutls_priority_init.3,
1683 doc/manpages/gnutls_priority_set.3,
1684 doc/manpages/gnutls_priority_set_direct.3,
1685 doc/manpages/gnutls_privkey_decrypt_data.3,
1686 doc/manpages/gnutls_privkey_deinit.3,
1687 doc/manpages/gnutls_privkey_get_pk_algorithm.3,
1688 doc/manpages/gnutls_privkey_get_type.3,
1689 doc/manpages/gnutls_privkey_import_ext.3,
1690 doc/manpages/gnutls_privkey_import_openpgp.3,
1691 doc/manpages/gnutls_privkey_import_pkcs11.3,
1692 doc/manpages/gnutls_privkey_import_x509.3,
1693 doc/manpages/gnutls_privkey_init.3,
1694 doc/manpages/gnutls_privkey_sign_data.3,
1695 doc/manpages/gnutls_privkey_sign_hash.3,
1696 doc/manpages/gnutls_protocol_get_id.3,
1697 doc/manpages/gnutls_protocol_get_name.3,
1698 doc/manpages/gnutls_protocol_get_version.3,
1699 doc/manpages/gnutls_protocol_list.3,
1700 doc/manpages/gnutls_protocol_set_priority.3,
1701 doc/manpages/gnutls_psk_allocate_client_credentials.3,
1702 doc/manpages/gnutls_psk_allocate_server_credentials.3,
1703 doc/manpages/gnutls_psk_client_get_hint.3,
1704 doc/manpages/gnutls_psk_free_client_credentials.3,
1705 doc/manpages/gnutls_psk_free_server_credentials.3,
1706 doc/manpages/gnutls_psk_server_get_username.3,
1707 doc/manpages/gnutls_psk_set_client_credentials.3,
1708 doc/manpages/gnutls_psk_set_params_function.3,
1709 doc/manpages/gnutls_psk_set_server_credentials_file.3,
1710 doc/manpages/gnutls_psk_set_server_credentials_hint.3,
1711 doc/manpages/gnutls_psk_set_server_dh_params.3,
1712 doc/manpages/gnutls_psk_set_server_params_function.3,
1713 doc/manpages/gnutls_pubkey_deinit.3,
1714 doc/manpages/gnutls_pubkey_export.3,
1715 doc/manpages/gnutls_pubkey_get_key_id.3,
1716 doc/manpages/gnutls_pubkey_get_key_usage.3,
1717 doc/manpages/gnutls_pubkey_get_openpgp_key_id.3,
1718 doc/manpages/gnutls_pubkey_get_pk_algorithm.3,
1719 doc/manpages/gnutls_pubkey_get_pk_dsa_raw.3,
1720 doc/manpages/gnutls_pubkey_get_pk_ecc_raw.3,
1721 doc/manpages/gnutls_pubkey_get_pk_ecc_x962.3,
1722 doc/manpages/gnutls_pubkey_get_pk_rsa_raw.3,
1723 doc/manpages/gnutls_pubkey_get_preferred_hash_algorithm.3,
1724 doc/manpages/gnutls_pubkey_get_verify_algorithm.3,
1725 doc/manpages/gnutls_pubkey_import.3,
1726 doc/manpages/gnutls_pubkey_import_dsa_raw.3,
1727 doc/manpages/gnutls_pubkey_import_ecc_raw.3,
1728 doc/manpages/gnutls_pubkey_import_ecc_x962.3,
1729 doc/manpages/gnutls_pubkey_import_openpgp.3,
1730 doc/manpages/gnutls_pubkey_import_pkcs11.3,
1731 doc/manpages/gnutls_pubkey_import_pkcs11_url.3,
1732 doc/manpages/gnutls_pubkey_import_privkey.3,
1733 doc/manpages/gnutls_pubkey_import_rsa_raw.3,
1734 doc/manpages/gnutls_pubkey_import_x509.3,
1735 doc/manpages/gnutls_pubkey_init.3,
1736 doc/manpages/gnutls_pubkey_set_key_usage.3,
1737 doc/manpages/gnutls_pubkey_verify_data.3,
1738 doc/manpages/gnutls_pubkey_verify_data2.3,
1739 doc/manpages/gnutls_pubkey_verify_hash.3,
1740 doc/manpages/gnutls_record_check_pending.3,
1741 doc/manpages/gnutls_record_disable_padding.3,
1742 doc/manpages/gnutls_record_get_direction.3,
1743 doc/manpages/gnutls_record_get_discarded.3,
1744 doc/manpages/gnutls_record_get_max_size.3,
1745 doc/manpages/gnutls_record_recv.3,
1746 doc/manpages/gnutls_record_recv_seq.3,
1747 doc/manpages/gnutls_record_send.3,
1748 doc/manpages/gnutls_record_set_max_size.3,
1749 doc/manpages/gnutls_rehandshake.3, doc/manpages/gnutls_rnd.3,
1750 doc/manpages/gnutls_rsa_export_get_modulus_bits.3,
1751 doc/manpages/gnutls_rsa_export_get_pubkey.3,
1752 doc/manpages/gnutls_rsa_params_cpy.3,
1753 doc/manpages/gnutls_rsa_params_deinit.3,
1754 doc/manpages/gnutls_rsa_params_export_pkcs1.3,
1755 doc/manpages/gnutls_rsa_params_export_raw.3,
1756 doc/manpages/gnutls_rsa_params_generate2.3,
1757 doc/manpages/gnutls_rsa_params_import_pkcs1.3,
1758 doc/manpages/gnutls_rsa_params_import_raw.3,
1759 doc/manpages/gnutls_rsa_params_init.3,
1760 doc/manpages/gnutls_safe_renegotiation_status.3,
1761 doc/manpages/gnutls_sec_param_get_name.3,
1762 doc/manpages/gnutls_sec_param_to_pk_bits.3,
1763 doc/manpages/gnutls_server_name_get.3,
1764 doc/manpages/gnutls_server_name_set.3,
1765 doc/manpages/gnutls_session_channel_binding.3,
1766 doc/manpages/gnutls_session_enable_compatibility_mode.3,
1767 doc/manpages/gnutls_session_get_data.3,
1768 doc/manpages/gnutls_session_get_data2.3,
1769 doc/manpages/gnutls_session_get_id.3,
1770 doc/manpages/gnutls_session_get_ptr.3,
1771 doc/manpages/gnutls_session_is_resumed.3,
1772 doc/manpages/gnutls_session_set_data.3,
1773 doc/manpages/gnutls_session_set_ptr.3,
1774 doc/manpages/gnutls_session_ticket_enable_client.3,
1775 doc/manpages/gnutls_session_ticket_enable_server.3,
1776 doc/manpages/gnutls_session_ticket_key_generate.3,
1777 doc/manpages/gnutls_set_default_export_priority.3,
1778 doc/manpages/gnutls_set_default_priority.3,
1779 doc/manpages/gnutls_sign_algorithm_get_requested.3,
1780 doc/manpages/gnutls_sign_callback_get.3,
1781 doc/manpages/gnutls_sign_callback_set.3,
1782 doc/manpages/gnutls_sign_get_id.3,
1783 doc/manpages/gnutls_sign_get_name.3,
1784 doc/manpages/gnutls_sign_list.3,
1785 doc/manpages/gnutls_srp_allocate_client_credentials.3,
1786 doc/manpages/gnutls_srp_allocate_server_credentials.3,
1787 doc/manpages/gnutls_srp_base64_decode.3,
1788 doc/manpages/gnutls_srp_base64_decode_alloc.3,
1789 doc/manpages/gnutls_srp_base64_encode.3,
1790 doc/manpages/gnutls_srp_base64_encode_alloc.3,
1791 doc/manpages/gnutls_srp_free_client_credentials.3,
1792 doc/manpages/gnutls_srp_free_server_credentials.3,
1793 doc/manpages/gnutls_srp_server_get_username.3,
1794 doc/manpages/gnutls_srp_set_client_credentials.3,
1795 doc/manpages/gnutls_srp_set_prime_bits.3,
1796 doc/manpages/gnutls_srp_set_server_credentials_file.3,
1797 doc/manpages/gnutls_srp_verifier.3, doc/manpages/gnutls_strerror.3,
1798 doc/manpages/gnutls_strerror_name.3,
1799 doc/manpages/gnutls_supplemental_get_name.3,
1800 doc/manpages/gnutls_transport_get_ptr.3,
1801 doc/manpages/gnutls_transport_get_ptr2.3,
1802 doc/manpages/gnutls_transport_set_errno.3,
1803 doc/manpages/gnutls_transport_set_errno_function.3,
1804 doc/manpages/gnutls_transport_set_ptr.3,
1805 doc/manpages/gnutls_transport_set_ptr2.3,
1806 doc/manpages/gnutls_transport_set_pull_function.3,
1807 doc/manpages/gnutls_transport_set_pull_timeout_function.3,
1808 doc/manpages/gnutls_transport_set_push_function.3,
1809 doc/manpages/gnutls_transport_set_vec_push_function.3,
1810 doc/manpages/gnutls_x509_crl_check_issuer.3,
1811 doc/manpages/gnutls_x509_crl_deinit.3,
1812 doc/manpages/gnutls_x509_crl_export.3,
1813 doc/manpages/gnutls_x509_crl_get_authority_key_id.3,
1814 doc/manpages/gnutls_x509_crl_get_crt_count.3,
1815 doc/manpages/gnutls_x509_crl_get_crt_serial.3,
1816 doc/manpages/gnutls_x509_crl_get_dn_oid.3,
1817 doc/manpages/gnutls_x509_crl_get_extension_data.3,
1818 doc/manpages/gnutls_x509_crl_get_extension_info.3,
1819 doc/manpages/gnutls_x509_crl_get_extension_oid.3,
1820 doc/manpages/gnutls_x509_crl_get_issuer_dn.3,
1821 doc/manpages/gnutls_x509_crl_get_issuer_dn_by_oid.3,
1822 doc/manpages/gnutls_x509_crl_get_next_update.3,
1823 doc/manpages/gnutls_x509_crl_get_number.3,
1824 doc/manpages/gnutls_x509_crl_get_raw_issuer_dn.3,
1825 doc/manpages/gnutls_x509_crl_get_signature.3,
1826 doc/manpages/gnutls_x509_crl_get_signature_algorithm.3,
1827 doc/manpages/gnutls_x509_crl_get_this_update.3,
1828 doc/manpages/gnutls_x509_crl_get_version.3,
1829 doc/manpages/gnutls_x509_crl_import.3,
1830 doc/manpages/gnutls_x509_crl_init.3,
1831 doc/manpages/gnutls_x509_crl_list_import.3,
1832 doc/manpages/gnutls_x509_crl_list_import2.3,
1833 doc/manpages/gnutls_x509_crl_print.3,
1834 doc/manpages/gnutls_x509_crl_privkey_sign.3,
1835 doc/manpages/gnutls_x509_crl_set_authority_key_id.3,
1836 doc/manpages/gnutls_x509_crl_set_crt.3,
1837 doc/manpages/gnutls_x509_crl_set_crt_serial.3,
1838 doc/manpages/gnutls_x509_crl_set_next_update.3,
1839 doc/manpages/gnutls_x509_crl_set_number.3,
1840 doc/manpages/gnutls_x509_crl_set_this_update.3,
1841 doc/manpages/gnutls_x509_crl_set_version.3,
1842 doc/manpages/gnutls_x509_crl_sign.3,
1843 doc/manpages/gnutls_x509_crl_sign2.3,
1844 doc/manpages/gnutls_x509_crl_verify.3,
1845 doc/manpages/gnutls_x509_crq_deinit.3,
1846 doc/manpages/gnutls_x509_crq_export.3,
1847 doc/manpages/gnutls_x509_crq_get_attribute_by_oid.3,
1848 doc/manpages/gnutls_x509_crq_get_attribute_data.3,
1849 doc/manpages/gnutls_x509_crq_get_attribute_info.3,
1850 doc/manpages/gnutls_x509_crq_get_basic_constraints.3,
1851 doc/manpages/gnutls_x509_crq_get_challenge_password.3,
1852 doc/manpages/gnutls_x509_crq_get_dn.3,
1853 doc/manpages/gnutls_x509_crq_get_dn_by_oid.3,
1854 doc/manpages/gnutls_x509_crq_get_dn_oid.3,
1855 doc/manpages/gnutls_x509_crq_get_extension_by_oid.3,
1856 doc/manpages/gnutls_x509_crq_get_extension_data.3,
1857 doc/manpages/gnutls_x509_crq_get_extension_info.3,
1858 doc/manpages/gnutls_x509_crq_get_key_id.3,
1859 doc/manpages/gnutls_x509_crq_get_key_purpose_oid.3,
1860 doc/manpages/gnutls_x509_crq_get_key_rsa_raw.3,
1861 doc/manpages/gnutls_x509_crq_get_key_usage.3,
1862 doc/manpages/gnutls_x509_crq_get_pk_algorithm.3,
1863 doc/manpages/gnutls_x509_crq_get_subject_alt_name.3,
1864 doc/manpages/gnutls_x509_crq_get_subject_alt_othername_oid.3,
1865 doc/manpages/gnutls_x509_crq_get_version.3,
1866 doc/manpages/gnutls_x509_crq_import.3,
1867 doc/manpages/gnutls_x509_crq_init.3,
1868 doc/manpages/gnutls_x509_crq_print.3,
1869 doc/manpages/gnutls_x509_crq_privkey_sign.3,
1870 doc/manpages/gnutls_x509_crq_set_attribute_by_oid.3,
1871 doc/manpages/gnutls_x509_crq_set_basic_constraints.3,
1872 doc/manpages/gnutls_x509_crq_set_challenge_password.3,
1873 doc/manpages/gnutls_x509_crq_set_dn_by_oid.3,
1874 doc/manpages/gnutls_x509_crq_set_key.3,
1875 doc/manpages/gnutls_x509_crq_set_key_purpose_oid.3,
1876 doc/manpages/gnutls_x509_crq_set_key_rsa_raw.3,
1877 doc/manpages/gnutls_x509_crq_set_key_usage.3,
1878 doc/manpages/gnutls_x509_crq_set_pubkey.3,
1879 doc/manpages/gnutls_x509_crq_set_subject_alt_name.3,
1880 doc/manpages/gnutls_x509_crq_set_version.3,
1881 doc/manpages/gnutls_x509_crq_sign.3,
1882 doc/manpages/gnutls_x509_crq_sign2.3,
1883 doc/manpages/gnutls_x509_crq_verify.3,
1884 doc/manpages/gnutls_x509_crt_check_hostname.3,
1885 doc/manpages/gnutls_x509_crt_check_issuer.3,
1886 doc/manpages/gnutls_x509_crt_check_revocation.3,
1887 doc/manpages/gnutls_x509_crt_cpy_crl_dist_points.3,
1888 doc/manpages/gnutls_x509_crt_deinit.3,
1889 doc/manpages/gnutls_x509_crt_export.3,
1890 doc/manpages/gnutls_x509_crt_get_activation_time.3,
1891 doc/manpages/gnutls_x509_crt_get_authority_info_access.3,
1892 doc/manpages/gnutls_x509_crt_get_authority_key_id.3,
1893 doc/manpages/gnutls_x509_crt_get_basic_constraints.3,
1894 doc/manpages/gnutls_x509_crt_get_ca_status.3,
1895 doc/manpages/gnutls_x509_crt_get_crl_dist_points.3,
1896 doc/manpages/gnutls_x509_crt_get_dn.3,
1897 doc/manpages/gnutls_x509_crt_get_dn_by_oid.3,
1898 doc/manpages/gnutls_x509_crt_get_dn_oid.3,
1899 doc/manpages/gnutls_x509_crt_get_expiration_time.3,
1900 doc/manpages/gnutls_x509_crt_get_extension_by_oid.3,
1901 doc/manpages/gnutls_x509_crt_get_extension_data.3,
1902 doc/manpages/gnutls_x509_crt_get_extension_info.3,
1903 doc/manpages/gnutls_x509_crt_get_extension_oid.3,
1904 doc/manpages/gnutls_x509_crt_get_fingerprint.3,
1905 doc/manpages/gnutls_x509_crt_get_issuer.3,
1906 doc/manpages/gnutls_x509_crt_get_issuer_alt_name.3,
1907 doc/manpages/gnutls_x509_crt_get_issuer_alt_name2.3,
1908 doc/manpages/gnutls_x509_crt_get_issuer_alt_othername_oid.3,
1909 doc/manpages/gnutls_x509_crt_get_issuer_dn.3,
1910 doc/manpages/gnutls_x509_crt_get_issuer_dn_by_oid.3,
1911 doc/manpages/gnutls_x509_crt_get_issuer_dn_oid.3,
1912 doc/manpages/gnutls_x509_crt_get_issuer_unique_id.3,
1913 doc/manpages/gnutls_x509_crt_get_key_id.3,
1914 doc/manpages/gnutls_x509_crt_get_key_purpose_oid.3,
1915 doc/manpages/gnutls_x509_crt_get_key_usage.3,
1916 doc/manpages/gnutls_x509_crt_get_pk_algorithm.3,
1917 doc/manpages/gnutls_x509_crt_get_pk_dsa_raw.3,
1918 doc/manpages/gnutls_x509_crt_get_pk_rsa_raw.3,
1919 doc/manpages/gnutls_x509_crt_get_preferred_hash_algorithm.3,
1920 doc/manpages/gnutls_x509_crt_get_proxy.3,
1921 doc/manpages/gnutls_x509_crt_get_raw_dn.3,
1922 doc/manpages/gnutls_x509_crt_get_raw_issuer_dn.3,
1923 doc/manpages/gnutls_x509_crt_get_serial.3,
1924 doc/manpages/gnutls_x509_crt_get_signature.3,
1925 doc/manpages/gnutls_x509_crt_get_signature_algorithm.3,
1926 doc/manpages/gnutls_x509_crt_get_subject.3,
1927 doc/manpages/gnutls_x509_crt_get_subject_alt_name.3,
1928 doc/manpages/gnutls_x509_crt_get_subject_alt_name2.3,
1929 doc/manpages/gnutls_x509_crt_get_subject_alt_othername_oid.3,
1930 doc/manpages/gnutls_x509_crt_get_subject_key_id.3,
1931 doc/manpages/gnutls_x509_crt_get_subject_unique_id.3,
1932 doc/manpages/gnutls_x509_crt_get_verify_algorithm.3,
1933 doc/manpages/gnutls_x509_crt_get_version.3,
1934 doc/manpages/gnutls_x509_crt_import.3,
1935 doc/manpages/gnutls_x509_crt_import_pkcs11.3,
1936 doc/manpages/gnutls_x509_crt_import_pkcs11_url.3,
1937 doc/manpages/gnutls_x509_crt_init.3,
1938 doc/manpages/gnutls_x509_crt_list_import.3,
1939 doc/manpages/gnutls_x509_crt_list_import2.3,
1940 doc/manpages/gnutls_x509_crt_list_import_pkcs11.3,
1941 doc/manpages/gnutls_x509_crt_list_verify.3,
1942 doc/manpages/gnutls_x509_crt_print.3,
1943 doc/manpages/gnutls_x509_crt_privkey_sign.3,
1944 doc/manpages/gnutls_x509_crt_set_activation_time.3,
1945 doc/manpages/gnutls_x509_crt_set_authority_key_id.3,
1946 doc/manpages/gnutls_x509_crt_set_basic_constraints.3,
1947 doc/manpages/gnutls_x509_crt_set_ca_status.3,
1948 doc/manpages/gnutls_x509_crt_set_crl_dist_points.3,
1949 doc/manpages/gnutls_x509_crt_set_crl_dist_points2.3,
1950 doc/manpages/gnutls_x509_crt_set_crq.3,
1951 doc/manpages/gnutls_x509_crt_set_crq_extensions.3,
1952 doc/manpages/gnutls_x509_crt_set_dn_by_oid.3,
1953 doc/manpages/gnutls_x509_crt_set_expiration_time.3,
1954 doc/manpages/gnutls_x509_crt_set_extension_by_oid.3,
1955 doc/manpages/gnutls_x509_crt_set_issuer_dn_by_oid.3,
1956 doc/manpages/gnutls_x509_crt_set_key.3,
1957 doc/manpages/gnutls_x509_crt_set_key_purpose_oid.3,
1958 doc/manpages/gnutls_x509_crt_set_key_usage.3,
1959 doc/manpages/gnutls_x509_crt_set_proxy.3,
1960 doc/manpages/gnutls_x509_crt_set_proxy_dn.3,
1961 doc/manpages/gnutls_x509_crt_set_pubkey.3,
1962 doc/manpages/gnutls_x509_crt_set_serial.3,
1963 doc/manpages/gnutls_x509_crt_set_subject_alt_name.3,
1964 doc/manpages/gnutls_x509_crt_set_subject_alternative_name.3,
1965 doc/manpages/gnutls_x509_crt_set_subject_key_id.3,
1966 doc/manpages/gnutls_x509_crt_set_version.3,
1967 doc/manpages/gnutls_x509_crt_sign.3,
1968 doc/manpages/gnutls_x509_crt_sign2.3,
1969 doc/manpages/gnutls_x509_crt_verify.3,
1970 doc/manpages/gnutls_x509_crt_verify_data.3,
1971 doc/manpages/gnutls_x509_crt_verify_hash.3,
1972 doc/manpages/gnutls_x509_dn_deinit.3,
1973 doc/manpages/gnutls_x509_dn_export.3,
1974 doc/manpages/gnutls_x509_dn_get_rdn_ava.3,
1975 doc/manpages/gnutls_x509_dn_import.3,
1976 doc/manpages/gnutls_x509_dn_init.3,
1977 doc/manpages/gnutls_x509_dn_oid_known.3,
1978 doc/manpages/gnutls_x509_privkey_cpy.3,
1979 doc/manpages/gnutls_x509_privkey_deinit.3,
1980 doc/manpages/gnutls_x509_privkey_export.3,
1981 doc/manpages/gnutls_x509_privkey_export_dsa_raw.3,
1982 doc/manpages/gnutls_x509_privkey_export_ecc_raw.3,
1983 doc/manpages/gnutls_x509_privkey_export_pkcs8.3,
1984 doc/manpages/gnutls_x509_privkey_export_rsa_raw.3,
1985 doc/manpages/gnutls_x509_privkey_export_rsa_raw2.3,
1986 doc/manpages/gnutls_x509_privkey_fix.3,
1987 doc/manpages/gnutls_x509_privkey_generate.3,
1988 doc/manpages/gnutls_x509_privkey_get_key_id.3,
1989 doc/manpages/gnutls_x509_privkey_get_pk_algorithm.3,
1990 doc/manpages/gnutls_x509_privkey_import.3,
1991 doc/manpages/gnutls_x509_privkey_import_dsa_raw.3,
1992 doc/manpages/gnutls_x509_privkey_import_ecc_raw.3,
1993 doc/manpages/gnutls_x509_privkey_import_pkcs8.3,
1994 doc/manpages/gnutls_x509_privkey_import_rsa_raw.3,
1995 doc/manpages/gnutls_x509_privkey_import_rsa_raw2.3,
1996 doc/manpages/gnutls_x509_privkey_init.3,
1997 doc/manpages/gnutls_x509_privkey_sec_param.3,
1998 doc/manpages/gnutls_x509_privkey_sign_data.3,
1999 doc/manpages/gnutls_x509_privkey_sign_hash.3,
2000 doc/manpages/gnutls_x509_privkey_verify_params.3,
2001 doc/manpages/gnutls_x509_rdn_get.3,
2002 doc/manpages/gnutls_x509_rdn_get_by_oid.3,
2003 doc/manpages/gnutls_x509_rdn_get_oid.3,
2004 doc/manpages/gnutls_x509_trust_list_add_cas.3,
2005 doc/manpages/gnutls_x509_trust_list_add_crls.3,
2006 doc/manpages/gnutls_x509_trust_list_add_named_crt.3,
2007 doc/manpages/gnutls_x509_trust_list_deinit.3,
2008 doc/manpages/gnutls_x509_trust_list_get_issuer.3,
2009 doc/manpages/gnutls_x509_trust_list_init.3,
2010 doc/manpages/gnutls_x509_trust_list_verify_crt.3,
2011 doc/manpages/gnutls_x509_trust_list_verify_named_crt.3: manpages
2012 don't need to be in the repository.
2014 2011-12-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2016 * tests/Makefile.am, tests/cipher-test.c, tests/slow/Makefile.am,
2017 tests/slow/cipher-test.c: cipher-test is now run without valgrind
2019 2011-11-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2021 * lib/gnutls_errors.h: removed superfluous check.
2023 2011-11-29 Simon Josefsson <simon@josefsson.org>
2025 * cfg.mk, tests/suite/chain: Fix syntax-check nits.
2027 2011-11-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2029 * doc/cha-gtls-app.texi, doc/cha-intro-tls.texi,
2030 doc/scripts/mytexi2latex: documentation updates.
2032 2011-11-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2034 * doc/gnutls.texi: use emph instead of cite since cite produces bad
2035 output in texi2html.
2037 2011-11-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2039 * doc/cha-cert-auth2.texi, doc/scripts/mytexi2latex: updates in
2040 sectioning. Subheading was used instead of subsection in few cases.
2042 2011-11-25 Ludovic Courtès <ludo@gnu.org>
2044 * guile/modules/system/documentation/output.scm: guile: Fix the
2045 (unused) `output-procedure-texi-documentation-from-c-file'. Reported by Mike Gran <spk121@yahoo.com>.
2047 2011-11-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2049 * cfg.mk: copy images to html_node
2051 2011-11-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2053 * doc/cha-cert-auth2.texi: added missing node
2055 2011-11-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2057 * doc/cha-cert-auth2.texi, doc/cha-gtls-app.texi,
2058 doc/cha-internals.texi, doc/cha-intro-tls.texi,
2059 doc/cha-library.texi, doc/cha-programs.texi, doc/scripts/gdoc,
2060 doc/scripts/mytexi2latex: updates in texi and tex documentation.
2062 2011-11-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2064 * lib/opencdk/Makefile.am, lib/opencdk/dummy.c, lib/opencdk/main.h:
2065 dropped unneeded function.
2067 2011-11-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2069 * .gitignore, doc/Makefile.am, doc/cha-functions.texi,
2070 doc/cha-gtls-app.texi, doc/gnutls.texi, doc/scripts/gdoc,
2071 lib/gnutls_state.c, lib/includes/gnutls/gnutls.h.in,
2072 lib/includes/gnutls/openpgp.h: Separated API reference to header
2073 files in the texi manual.
2075 2011-11-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2077 * doc/cha-gtls-examples.texi: removed text for tcp functions.
2079 2011-11-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2081 * NEWS, cfg.mk, doc/manpages/Makefile.am,
2082 doc/manpages/gnutls_alert_get.3,
2083 doc/manpages/gnutls_alert_get_name.3,
2084 doc/manpages/gnutls_alert_get_strname.3,
2085 doc/manpages/gnutls_alert_send.3,
2086 doc/manpages/gnutls_alert_send_appropriate.3,
2087 doc/manpages/gnutls_anon_allocate_client_credentials.3,
2088 doc/manpages/gnutls_anon_allocate_server_credentials.3,
2089 doc/manpages/gnutls_anon_free_client_credentials.3,
2090 doc/manpages/gnutls_anon_free_server_credentials.3,
2091 doc/manpages/gnutls_anon_set_params_function.3,
2092 doc/manpages/gnutls_anon_set_server_dh_params.3,
2093 doc/manpages/gnutls_anon_set_server_params_function.3,
2094 doc/manpages/gnutls_auth_client_get_type.3,
2095 doc/manpages/gnutls_auth_get_type.3,
2096 doc/manpages/gnutls_auth_server_get_type.3,
2097 doc/manpages/gnutls_bye.3,
2098 doc/manpages/gnutls_certificate_activation_time_peers.3,
2099 doc/manpages/gnutls_certificate_allocate_credentials.3,
2100 doc/manpages/gnutls_certificate_client_get_request_status.3,
2101 doc/manpages/gnutls_certificate_expiration_time_peers.3,
2102 doc/manpages/gnutls_certificate_free_ca_names.3,
2103 doc/manpages/gnutls_certificate_free_cas.3,
2104 doc/manpages/gnutls_certificate_free_credentials.3,
2105 doc/manpages/gnutls_certificate_free_crls.3,
2106 doc/manpages/gnutls_certificate_free_keys.3,
2107 doc/manpages/gnutls_certificate_get_issuer.3,
2108 doc/manpages/gnutls_certificate_get_openpgp_keyring.3,
2109 doc/manpages/gnutls_certificate_get_ours.3,
2110 doc/manpages/gnutls_certificate_get_peers.3,
2111 doc/manpages/gnutls_certificate_send_x509_rdn_sequence.3,
2112 doc/manpages/gnutls_certificate_server_set_request.3,
2113 doc/manpages/gnutls_certificate_set_dh_params.3,
2114 doc/manpages/gnutls_certificate_set_key.3,
2115 doc/manpages/gnutls_certificate_set_openpgp_key.3,
2116 doc/manpages/gnutls_certificate_set_openpgp_key_file.3,
2117 doc/manpages/gnutls_certificate_set_openpgp_key_file2.3,
2118 doc/manpages/gnutls_certificate_set_openpgp_key_mem.3,
2119 doc/manpages/gnutls_certificate_set_openpgp_key_mem2.3,
2120 doc/manpages/gnutls_certificate_set_params_function.3,
2121 doc/manpages/gnutls_certificate_set_rsa_export_params.3,
2122 doc/manpages/gnutls_certificate_set_verify_flags.3,
2123 doc/manpages/gnutls_certificate_set_verify_function.3,
2124 doc/manpages/gnutls_certificate_set_verify_limits.3,
2125 doc/manpages/gnutls_certificate_set_x509_crl.3,
2126 doc/manpages/gnutls_certificate_set_x509_crl_file.3,
2127 doc/manpages/gnutls_certificate_set_x509_crl_mem.3,
2128 doc/manpages/gnutls_certificate_set_x509_key.3,
2129 doc/manpages/gnutls_certificate_set_x509_key_file.3,
2130 doc/manpages/gnutls_certificate_set_x509_key_mem.3,
2131 doc/manpages/gnutls_certificate_set_x509_trust.3,
2132 doc/manpages/gnutls_certificate_set_x509_trust_file.3,
2133 doc/manpages/gnutls_certificate_set_x509_trust_mem.3,
2134 doc/manpages/gnutls_certificate_type_get.3,
2135 doc/manpages/gnutls_certificate_type_get_id.3,
2136 doc/manpages/gnutls_certificate_type_get_name.3,
2137 doc/manpages/gnutls_certificate_type_list.3,
2138 doc/manpages/gnutls_certificate_type_set_priority.3,
2139 doc/manpages/gnutls_certificate_verify_peers2.3,
2140 doc/manpages/gnutls_check_version.3,
2141 doc/manpages/gnutls_cipher_add_auth.3,
2142 doc/manpages/gnutls_cipher_decrypt.3,
2143 doc/manpages/gnutls_cipher_decrypt2.3,
2144 doc/manpages/gnutls_cipher_deinit.3,
2145 doc/manpages/gnutls_cipher_encrypt.3,
2146 doc/manpages/gnutls_cipher_encrypt2.3,
2147 doc/manpages/gnutls_cipher_get.3,
2148 doc/manpages/gnutls_cipher_get_block_size.3,
2149 doc/manpages/gnutls_cipher_get_id.3,
2150 doc/manpages/gnutls_cipher_get_key_size.3,
2151 doc/manpages/gnutls_cipher_get_name.3,
2152 doc/manpages/gnutls_cipher_init.3,
2153 doc/manpages/gnutls_cipher_list.3,
2154 doc/manpages/gnutls_cipher_set_iv.3,
2155 doc/manpages/gnutls_cipher_set_priority.3,
2156 doc/manpages/gnutls_cipher_suite_get_name.3,
2157 doc/manpages/gnutls_cipher_suite_info.3,
2158 doc/manpages/gnutls_cipher_tag.3,
2159 doc/manpages/gnutls_compression_get.3,
2160 doc/manpages/gnutls_compression_get_id.3,
2161 doc/manpages/gnutls_compression_get_name.3,
2162 doc/manpages/gnutls_compression_list.3,
2163 doc/manpages/gnutls_compression_set_priority.3,
2164 doc/manpages/gnutls_credentials_clear.3,
2165 doc/manpages/gnutls_credentials_set.3,
2166 doc/manpages/gnutls_db_check_entry.3,
2167 doc/manpages/gnutls_db_get_ptr.3,
2168 doc/manpages/gnutls_db_remove_session.3,
2169 doc/manpages/gnutls_db_set_cache_expiration.3,
2170 doc/manpages/gnutls_db_set_ptr.3,
2171 doc/manpages/gnutls_db_set_remove_function.3,
2172 doc/manpages/gnutls_db_set_retrieve_function.3,
2173 doc/manpages/gnutls_db_set_store_function.3,
2174 doc/manpages/gnutls_deinit.3, doc/manpages/gnutls_dh_get_group.3,
2175 doc/manpages/gnutls_dh_get_peers_public_bits.3,
2176 doc/manpages/gnutls_dh_get_prime_bits.3,
2177 doc/manpages/gnutls_dh_get_pubkey.3,
2178 doc/manpages/gnutls_dh_get_secret_bits.3,
2179 doc/manpages/gnutls_dh_params_cpy.3,
2180 doc/manpages/gnutls_dh_params_deinit.3,
2181 doc/manpages/gnutls_dh_params_export_pkcs3.3,
2182 doc/manpages/gnutls_dh_params_export_raw.3,
2183 doc/manpages/gnutls_dh_params_generate2.3,
2184 doc/manpages/gnutls_dh_params_import_pkcs3.3,
2185 doc/manpages/gnutls_dh_params_import_raw.3,
2186 doc/manpages/gnutls_dh_params_init.3,
2187 doc/manpages/gnutls_dh_set_prime_bits.3,
2188 doc/manpages/gnutls_dtls_cookie_send.3,
2189 doc/manpages/gnutls_dtls_cookie_verify.3,
2190 doc/manpages/gnutls_dtls_get_data_mtu.3,
2191 doc/manpages/gnutls_dtls_get_mtu.3,
2192 doc/manpages/gnutls_dtls_prestate_set.3,
2193 doc/manpages/gnutls_dtls_set_mtu.3,
2194 doc/manpages/gnutls_dtls_set_timeouts.3,
2195 doc/manpages/gnutls_ecc_curve_get.3,
2196 doc/manpages/gnutls_ecc_curve_get_name.3,
2197 doc/manpages/gnutls_ecc_curve_get_size.3,
2198 doc/manpages/gnutls_error_is_fatal.3,
2199 doc/manpages/gnutls_error_to_alert.3,
2200 doc/manpages/gnutls_fingerprint.3,
2201 doc/manpages/gnutls_global_deinit.3,
2202 doc/manpages/gnutls_global_init.3,
2203 doc/manpages/gnutls_global_set_audit_log_function.3,
2204 doc/manpages/gnutls_global_set_log_function.3,
2205 doc/manpages/gnutls_global_set_log_level.3,
2206 doc/manpages/gnutls_global_set_mem_functions.3,
2207 doc/manpages/gnutls_global_set_mutex.3,
2208 doc/manpages/gnutls_global_set_time_function.3,
2209 doc/manpages/gnutls_handshake.3,
2210 doc/manpages/gnutls_handshake_get_last_in.3,
2211 doc/manpages/gnutls_handshake_get_last_out.3,
2212 doc/manpages/gnutls_handshake_set_max_packet_length.3,
2213 doc/manpages/gnutls_handshake_set_post_client_hello_function.3,
2214 doc/manpages/gnutls_handshake_set_private_extensions.3,
2215 doc/manpages/gnutls_hash.3, doc/manpages/gnutls_hash_deinit.3,
2216 doc/manpages/gnutls_hash_fast.3,
2217 doc/manpages/gnutls_hash_get_len.3,
2218 doc/manpages/gnutls_hash_init.3, doc/manpages/gnutls_hash_output.3,
2219 doc/manpages/gnutls_hex2bin.3, doc/manpages/gnutls_hex_decode.3,
2220 doc/manpages/gnutls_hex_encode.3, doc/manpages/gnutls_hmac.3,
2221 doc/manpages/gnutls_hmac_deinit.3, doc/manpages/gnutls_hmac_fast.3,
2222 doc/manpages/gnutls_hmac_get_len.3,
2223 doc/manpages/gnutls_hmac_init.3, doc/manpages/gnutls_hmac_output.3,
2224 doc/manpages/gnutls_init.3, doc/manpages/gnutls_key_generate.3,
2225 doc/manpages/gnutls_kx_get.3, doc/manpages/gnutls_kx_get_id.3,
2226 doc/manpages/gnutls_kx_get_name.3, doc/manpages/gnutls_kx_list.3,
2227 doc/manpages/gnutls_kx_set_priority.3,
2228 doc/manpages/gnutls_mac_get.3, doc/manpages/gnutls_mac_get_id.3,
2229 doc/manpages/gnutls_mac_get_key_size.3,
2230 doc/manpages/gnutls_mac_get_name.3, doc/manpages/gnutls_mac_list.3,
2231 doc/manpages/gnutls_mac_set_priority.3,
2232 doc/manpages/gnutls_openpgp_crt_check_hostname.3,
2233 doc/manpages/gnutls_openpgp_crt_deinit.3,
2234 doc/manpages/gnutls_openpgp_crt_export.3,
2235 doc/manpages/gnutls_openpgp_crt_get_auth_subkey.3,
2236 doc/manpages/gnutls_openpgp_crt_get_creation_time.3,
2237 doc/manpages/gnutls_openpgp_crt_get_expiration_time.3,
2238 doc/manpages/gnutls_openpgp_crt_get_fingerprint.3,
2239 doc/manpages/gnutls_openpgp_crt_get_key_id.3,
2240 doc/manpages/gnutls_openpgp_crt_get_key_usage.3,
2241 doc/manpages/gnutls_openpgp_crt_get_name.3,
2242 doc/manpages/gnutls_openpgp_crt_get_pk_algorithm.3,
2243 doc/manpages/gnutls_openpgp_crt_get_pk_dsa_raw.3,
2244 doc/manpages/gnutls_openpgp_crt_get_pk_rsa_raw.3,
2245 doc/manpages/gnutls_openpgp_crt_get_preferred_key_id.3,
2246 doc/manpages/gnutls_openpgp_crt_get_revoked_status.3,
2247 doc/manpages/gnutls_openpgp_crt_get_subkey_count.3,
2248 doc/manpages/gnutls_openpgp_crt_get_subkey_creation_time.3,
2249 doc/manpages/gnutls_openpgp_crt_get_subkey_expiration_time.3,
2250 doc/manpages/gnutls_openpgp_crt_get_subkey_fingerprint.3,
2251 doc/manpages/gnutls_openpgp_crt_get_subkey_id.3,
2252 doc/manpages/gnutls_openpgp_crt_get_subkey_idx.3,
2253 doc/manpages/gnutls_openpgp_crt_get_subkey_pk_algorithm.3,
2254 doc/manpages/gnutls_openpgp_crt_get_subkey_pk_dsa_raw.3,
2255 doc/manpages/gnutls_openpgp_crt_get_subkey_pk_rsa_raw.3,
2256 doc/manpages/gnutls_openpgp_crt_get_subkey_revoked_status.3,
2257 doc/manpages/gnutls_openpgp_crt_get_subkey_usage.3,
2258 doc/manpages/gnutls_openpgp_crt_get_version.3,
2259 doc/manpages/gnutls_openpgp_crt_import.3,
2260 doc/manpages/gnutls_openpgp_crt_init.3,
2261 doc/manpages/gnutls_openpgp_crt_print.3,
2262 doc/manpages/gnutls_openpgp_crt_set_preferred_key_id.3,
2263 doc/manpages/gnutls_openpgp_crt_verify_ring.3,
2264 doc/manpages/gnutls_openpgp_crt_verify_self.3,
2265 doc/manpages/gnutls_openpgp_keyring_check_id.3,
2266 doc/manpages/gnutls_openpgp_keyring_deinit.3,
2267 doc/manpages/gnutls_openpgp_keyring_get_crt.3,
2268 doc/manpages/gnutls_openpgp_keyring_get_crt_count.3,
2269 doc/manpages/gnutls_openpgp_keyring_import.3,
2270 doc/manpages/gnutls_openpgp_keyring_init.3,
2271 doc/manpages/gnutls_openpgp_privkey_deinit.3,
2272 doc/manpages/gnutls_openpgp_privkey_export.3,
2273 doc/manpages/gnutls_openpgp_privkey_export_dsa_raw.3,
2274 doc/manpages/gnutls_openpgp_privkey_export_rsa_raw.3,
2275 doc/manpages/gnutls_openpgp_privkey_export_subkey_dsa_raw.3,
2276 doc/manpages/gnutls_openpgp_privkey_export_subkey_rsa_raw.3,
2277 doc/manpages/gnutls_openpgp_privkey_get_fingerprint.3,
2278 doc/manpages/gnutls_openpgp_privkey_get_key_id.3,
2279 doc/manpages/gnutls_openpgp_privkey_get_pk_algorithm.3,
2280 doc/manpages/gnutls_openpgp_privkey_get_preferred_key_id.3,
2281 doc/manpages/gnutls_openpgp_privkey_get_revoked_status.3,
2282 doc/manpages/gnutls_openpgp_privkey_get_subkey_count.3,
2283 doc/manpages/gnutls_openpgp_privkey_get_subkey_creation_time.3,
2284 doc/manpages/gnutls_openpgp_privkey_get_subkey_fingerprint.3,
2285 doc/manpages/gnutls_openpgp_privkey_get_subkey_id.3,
2286 doc/manpages/gnutls_openpgp_privkey_get_subkey_idx.3,
2287 doc/manpages/gnutls_openpgp_privkey_get_subkey_pk_algorithm.3,
2288 doc/manpages/gnutls_openpgp_privkey_get_subkey_revoked_status.3,
2289 doc/manpages/gnutls_openpgp_privkey_import.3,
2290 doc/manpages/gnutls_openpgp_privkey_init.3,
2291 doc/manpages/gnutls_openpgp_privkey_sec_param.3,
2292 doc/manpages/gnutls_openpgp_privkey_set_preferred_key_id.3,
2293 doc/manpages/gnutls_openpgp_privkey_sign_hash.3,
2294 doc/manpages/gnutls_openpgp_send_cert.3,
2295 doc/manpages/gnutls_openpgp_set_recv_key_function.3,
2296 doc/manpages/gnutls_pcert_deinit.3,
2297 doc/manpages/gnutls_pcert_import_openpgp.3,
2298 doc/manpages/gnutls_pcert_import_openpgp_raw.3,
2299 doc/manpages/gnutls_pcert_import_x509.3,
2300 doc/manpages/gnutls_pcert_import_x509_raw.3,
2301 doc/manpages/gnutls_pcert_list_import_x509_raw.3,
2302 doc/manpages/gnutls_pem_base64_decode.3,
2303 doc/manpages/gnutls_pem_base64_decode_alloc.3,
2304 doc/manpages/gnutls_pem_base64_encode.3,
2305 doc/manpages/gnutls_pem_base64_encode_alloc.3,
2306 doc/manpages/gnutls_perror.3,
2307 doc/manpages/gnutls_pk_algorithm_get_name.3,
2308 doc/manpages/gnutls_pk_bits_to_sec_param.3,
2309 doc/manpages/gnutls_pk_get_id.3, doc/manpages/gnutls_pk_get_name.3,
2310 doc/manpages/gnutls_pk_list.3,
2311 doc/manpages/gnutls_pkcs11_add_provider.3,
2312 doc/manpages/gnutls_pkcs11_copy_secret_key.3,
2313 doc/manpages/gnutls_pkcs11_copy_x509_crt.3,
2314 doc/manpages/gnutls_pkcs11_copy_x509_privkey.3,
2315 doc/manpages/gnutls_pkcs11_deinit.3,
2316 doc/manpages/gnutls_pkcs11_delete_url.3,
2317 doc/manpages/gnutls_pkcs11_init.3,
2318 doc/manpages/gnutls_pkcs11_obj_deinit.3,
2319 doc/manpages/gnutls_pkcs11_obj_export.3,
2320 doc/manpages/gnutls_pkcs11_obj_export_url.3,
2321 doc/manpages/gnutls_pkcs11_obj_get_info.3,
2322 doc/manpages/gnutls_pkcs11_obj_get_type.3,
2323 doc/manpages/gnutls_pkcs11_obj_import_url.3,
2324 doc/manpages/gnutls_pkcs11_obj_init.3,
2325 doc/manpages/gnutls_pkcs11_obj_list_import_url.3,
2326 doc/manpages/gnutls_pkcs11_privkey_deinit.3,
2327 doc/manpages/gnutls_pkcs11_privkey_export_url.3,
2328 doc/manpages/gnutls_pkcs11_privkey_generate.3,
2329 doc/manpages/gnutls_pkcs11_privkey_get_info.3,
2330 doc/manpages/gnutls_pkcs11_privkey_get_pk_algorithm.3,
2331 doc/manpages/gnutls_pkcs11_privkey_import_url.3,
2332 doc/manpages/gnutls_pkcs11_privkey_init.3,
2333 doc/manpages/gnutls_pkcs11_set_pin_function.3,
2334 doc/manpages/gnutls_pkcs11_set_token_function.3,
2335 doc/manpages/gnutls_pkcs11_token_get_flags.3,
2336 doc/manpages/gnutls_pkcs11_token_get_info.3,
2337 doc/manpages/gnutls_pkcs11_token_get_mechanism.3,
2338 doc/manpages/gnutls_pkcs11_token_get_url.3,
2339 doc/manpages/gnutls_pkcs11_token_init.3,
2340 doc/manpages/gnutls_pkcs11_token_set_pin.3,
2341 doc/manpages/gnutls_pkcs11_type_get_name.3,
2342 doc/manpages/gnutls_pkcs12_bag_decrypt.3,
2343 doc/manpages/gnutls_pkcs12_bag_deinit.3,
2344 doc/manpages/gnutls_pkcs12_bag_encrypt.3,
2345 doc/manpages/gnutls_pkcs12_bag_get_count.3,
2346 doc/manpages/gnutls_pkcs12_bag_get_data.3,
2347 doc/manpages/gnutls_pkcs12_bag_get_friendly_name.3,
2348 doc/manpages/gnutls_pkcs12_bag_get_key_id.3,
2349 doc/manpages/gnutls_pkcs12_bag_get_type.3,
2350 doc/manpages/gnutls_pkcs12_bag_init.3,
2351 doc/manpages/gnutls_pkcs12_bag_set_crl.3,
2352 doc/manpages/gnutls_pkcs12_bag_set_crt.3,
2353 doc/manpages/gnutls_pkcs12_bag_set_data.3,
2354 doc/manpages/gnutls_pkcs12_bag_set_friendly_name.3,
2355 doc/manpages/gnutls_pkcs12_bag_set_key_id.3,
2356 doc/manpages/gnutls_pkcs12_deinit.3,
2357 doc/manpages/gnutls_pkcs12_export.3,
2358 doc/manpages/gnutls_pkcs12_generate_mac.3,
2359 doc/manpages/gnutls_pkcs12_get_bag.3,
2360 doc/manpages/gnutls_pkcs12_import.3,
2361 doc/manpages/gnutls_pkcs12_init.3,
2362 doc/manpages/gnutls_pkcs12_set_bag.3,
2363 doc/manpages/gnutls_pkcs12_verify_mac.3,
2364 doc/manpages/gnutls_pkcs7_deinit.3,
2365 doc/manpages/gnutls_pkcs7_delete_crl.3,
2366 doc/manpages/gnutls_pkcs7_delete_crt.3,
2367 doc/manpages/gnutls_pkcs7_export.3,
2368 doc/manpages/gnutls_pkcs7_get_crl_count.3,
2369 doc/manpages/gnutls_pkcs7_get_crl_raw.3,
2370 doc/manpages/gnutls_pkcs7_get_crt_count.3,
2371 doc/manpages/gnutls_pkcs7_get_crt_raw.3,
2372 doc/manpages/gnutls_pkcs7_import.3,
2373 doc/manpages/gnutls_pkcs7_init.3,
2374 doc/manpages/gnutls_pkcs7_set_crl.3,
2375 doc/manpages/gnutls_pkcs7_set_crl_raw.3,
2376 doc/manpages/gnutls_pkcs7_set_crt.3,
2377 doc/manpages/gnutls_pkcs7_set_crt_raw.3, doc/manpages/gnutls_prf.3,
2378 doc/manpages/gnutls_prf_raw.3,
2379 doc/manpages/gnutls_priority_deinit.3,
2380 doc/manpages/gnutls_priority_init.3,
2381 doc/manpages/gnutls_priority_set.3,
2382 doc/manpages/gnutls_priority_set_direct.3,
2383 doc/manpages/gnutls_privkey_decrypt_data.3,
2384 doc/manpages/gnutls_privkey_deinit.3,
2385 doc/manpages/gnutls_privkey_get_pk_algorithm.3,
2386 doc/manpages/gnutls_privkey_get_type.3,
2387 doc/manpages/gnutls_privkey_import_ext.3,
2388 doc/manpages/gnutls_privkey_import_openpgp.3,
2389 doc/manpages/gnutls_privkey_import_pkcs11.3,
2390 doc/manpages/gnutls_privkey_import_x509.3,
2391 doc/manpages/gnutls_privkey_init.3,
2392 doc/manpages/gnutls_privkey_sign_data.3,
2393 doc/manpages/gnutls_privkey_sign_hash.3,
2394 doc/manpages/gnutls_protocol_get_id.3,
2395 doc/manpages/gnutls_protocol_get_name.3,
2396 doc/manpages/gnutls_protocol_get_version.3,
2397 doc/manpages/gnutls_protocol_list.3,
2398 doc/manpages/gnutls_protocol_set_priority.3,
2399 doc/manpages/gnutls_psk_allocate_client_credentials.3,
2400 doc/manpages/gnutls_psk_allocate_server_credentials.3,
2401 doc/manpages/gnutls_psk_client_get_hint.3,
2402 doc/manpages/gnutls_psk_free_client_credentials.3,
2403 doc/manpages/gnutls_psk_free_server_credentials.3,
2404 doc/manpages/gnutls_psk_server_get_username.3,
2405 doc/manpages/gnutls_psk_set_client_credentials.3,
2406 doc/manpages/gnutls_psk_set_params_function.3,
2407 doc/manpages/gnutls_psk_set_server_credentials_file.3,
2408 doc/manpages/gnutls_psk_set_server_credentials_hint.3,
2409 doc/manpages/gnutls_psk_set_server_dh_params.3,
2410 doc/manpages/gnutls_psk_set_server_params_function.3,
2411 doc/manpages/gnutls_pubkey_deinit.3,
2412 doc/manpages/gnutls_pubkey_export.3,
2413 doc/manpages/gnutls_pubkey_get_key_id.3,
2414 doc/manpages/gnutls_pubkey_get_key_usage.3,
2415 doc/manpages/gnutls_pubkey_get_openpgp_key_id.3,
2416 doc/manpages/gnutls_pubkey_get_pk_algorithm.3,
2417 doc/manpages/gnutls_pubkey_get_pk_dsa_raw.3,
2418 doc/manpages/gnutls_pubkey_get_pk_ecc_raw.3,
2419 doc/manpages/gnutls_pubkey_get_pk_ecc_x962.3,
2420 doc/manpages/gnutls_pubkey_get_pk_rsa_raw.3,
2421 doc/manpages/gnutls_pubkey_get_preferred_hash_algorithm.3,
2422 doc/manpages/gnutls_pubkey_get_verify_algorithm.3,
2423 doc/manpages/gnutls_pubkey_import.3,
2424 doc/manpages/gnutls_pubkey_import_dsa_raw.3,
2425 doc/manpages/gnutls_pubkey_import_ecc_raw.3,
2426 doc/manpages/gnutls_pubkey_import_ecc_x962.3,
2427 doc/manpages/gnutls_pubkey_import_openpgp.3,
2428 doc/manpages/gnutls_pubkey_import_pkcs11.3,
2429 doc/manpages/gnutls_pubkey_import_pkcs11_url.3,
2430 doc/manpages/gnutls_pubkey_import_privkey.3,
2431 doc/manpages/gnutls_pubkey_import_rsa_raw.3,
2432 doc/manpages/gnutls_pubkey_import_x509.3,
2433 doc/manpages/gnutls_pubkey_init.3,
2434 doc/manpages/gnutls_pubkey_set_key_usage.3,
2435 doc/manpages/gnutls_pubkey_verify_data.3,
2436 doc/manpages/gnutls_pubkey_verify_data2.3,
2437 doc/manpages/gnutls_pubkey_verify_hash.3,
2438 doc/manpages/gnutls_record_check_pending.3,
2439 doc/manpages/gnutls_record_disable_padding.3,
2440 doc/manpages/gnutls_record_get_direction.3,
2441 doc/manpages/gnutls_record_get_discarded.3,
2442 doc/manpages/gnutls_record_get_max_size.3,
2443 doc/manpages/gnutls_record_recv.3,
2444 doc/manpages/gnutls_record_recv_seq.3,
2445 doc/manpages/gnutls_record_send.3,
2446 doc/manpages/gnutls_record_set_max_size.3,
2447 doc/manpages/gnutls_rehandshake.3, doc/manpages/gnutls_rnd.3,
2448 doc/manpages/gnutls_rsa_export_get_modulus_bits.3,
2449 doc/manpages/gnutls_rsa_export_get_pubkey.3,
2450 doc/manpages/gnutls_rsa_params_cpy.3,
2451 doc/manpages/gnutls_rsa_params_deinit.3,
2452 doc/manpages/gnutls_rsa_params_export_pkcs1.3,
2453 doc/manpages/gnutls_rsa_params_export_raw.3,
2454 doc/manpages/gnutls_rsa_params_generate2.3,
2455 doc/manpages/gnutls_rsa_params_import_pkcs1.3,
2456 doc/manpages/gnutls_rsa_params_import_raw.3,
2457 doc/manpages/gnutls_rsa_params_init.3,
2458 doc/manpages/gnutls_safe_renegotiation_status.3,
2459 doc/manpages/gnutls_sec_param_get_name.3,
2460 doc/manpages/gnutls_sec_param_to_pk_bits.3,
2461 doc/manpages/gnutls_server_name_get.3,
2462 doc/manpages/gnutls_server_name_set.3,
2463 doc/manpages/gnutls_session_channel_binding.3,
2464 doc/manpages/gnutls_session_enable_compatibility_mode.3,
2465 doc/manpages/gnutls_session_get_data.3,
2466 doc/manpages/gnutls_session_get_data2.3,
2467 doc/manpages/gnutls_session_get_id.3,
2468 doc/manpages/gnutls_session_get_ptr.3,
2469 doc/manpages/gnutls_session_is_resumed.3,
2470 doc/manpages/gnutls_session_set_data.3,
2471 doc/manpages/gnutls_session_set_ptr.3,
2472 doc/manpages/gnutls_session_ticket_enable_client.3,
2473 doc/manpages/gnutls_session_ticket_enable_server.3,
2474 doc/manpages/gnutls_session_ticket_key_generate.3,
2475 doc/manpages/gnutls_set_default_export_priority.3,
2476 doc/manpages/gnutls_set_default_priority.3,
2477 doc/manpages/gnutls_sign_algorithm_get_requested.3,
2478 doc/manpages/gnutls_sign_callback_get.3,
2479 doc/manpages/gnutls_sign_callback_set.3,
2480 doc/manpages/gnutls_sign_get_id.3,
2481 doc/manpages/gnutls_sign_get_name.3,
2482 doc/manpages/gnutls_sign_list.3,
2483 doc/manpages/gnutls_srp_allocate_client_credentials.3,
2484 doc/manpages/gnutls_srp_allocate_server_credentials.3,
2485 doc/manpages/gnutls_srp_base64_decode.3,
2486 doc/manpages/gnutls_srp_base64_decode_alloc.3,
2487 doc/manpages/gnutls_srp_base64_encode.3,
2488 doc/manpages/gnutls_srp_base64_encode_alloc.3,
2489 doc/manpages/gnutls_srp_free_client_credentials.3,
2490 doc/manpages/gnutls_srp_free_server_credentials.3,
2491 doc/manpages/gnutls_srp_server_get_username.3,
2492 doc/manpages/gnutls_srp_set_client_credentials.3,
2493 doc/manpages/gnutls_srp_set_prime_bits.3,
2494 doc/manpages/gnutls_srp_set_server_credentials_file.3,
2495 doc/manpages/gnutls_srp_verifier.3, doc/manpages/gnutls_strerror.3,
2496 doc/manpages/gnutls_strerror_name.3,
2497 doc/manpages/gnutls_supplemental_get_name.3,
2498 doc/manpages/gnutls_transport_get_ptr.3,
2499 doc/manpages/gnutls_transport_get_ptr2.3,
2500 doc/manpages/gnutls_transport_set_errno.3,
2501 doc/manpages/gnutls_transport_set_errno_function.3,
2502 doc/manpages/gnutls_transport_set_ptr.3,
2503 doc/manpages/gnutls_transport_set_ptr2.3,
2504 doc/manpages/gnutls_transport_set_pull_function.3,
2505 doc/manpages/gnutls_transport_set_pull_timeout_function.3,
2506 doc/manpages/gnutls_transport_set_push_function.3,
2507 doc/manpages/gnutls_transport_set_vec_push_function.3,
2508 doc/manpages/gnutls_x509_crl_check_issuer.3,
2509 doc/manpages/gnutls_x509_crl_deinit.3,
2510 doc/manpages/gnutls_x509_crl_export.3,
2511 doc/manpages/gnutls_x509_crl_get_authority_key_id.3,
2512 doc/manpages/gnutls_x509_crl_get_crt_count.3,
2513 doc/manpages/gnutls_x509_crl_get_crt_serial.3,
2514 doc/manpages/gnutls_x509_crl_get_dn_oid.3,
2515 doc/manpages/gnutls_x509_crl_get_extension_data.3,
2516 doc/manpages/gnutls_x509_crl_get_extension_info.3,
2517 doc/manpages/gnutls_x509_crl_get_extension_oid.3,
2518 doc/manpages/gnutls_x509_crl_get_issuer_dn.3,
2519 doc/manpages/gnutls_x509_crl_get_issuer_dn_by_oid.3,
2520 doc/manpages/gnutls_x509_crl_get_next_update.3,
2521 doc/manpages/gnutls_x509_crl_get_number.3,
2522 doc/manpages/gnutls_x509_crl_get_raw_issuer_dn.3,
2523 doc/manpages/gnutls_x509_crl_get_signature.3,
2524 doc/manpages/gnutls_x509_crl_get_signature_algorithm.3,
2525 doc/manpages/gnutls_x509_crl_get_this_update.3,
2526 doc/manpages/gnutls_x509_crl_get_version.3,
2527 doc/manpages/gnutls_x509_crl_import.3,
2528 doc/manpages/gnutls_x509_crl_init.3,
2529 doc/manpages/gnutls_x509_crl_list_import.3,
2530 doc/manpages/gnutls_x509_crl_list_import2.3,
2531 doc/manpages/gnutls_x509_crl_print.3,
2532 doc/manpages/gnutls_x509_crl_privkey_sign.3,
2533 doc/manpages/gnutls_x509_crl_set_authority_key_id.3,
2534 doc/manpages/gnutls_x509_crl_set_crt.3,
2535 doc/manpages/gnutls_x509_crl_set_crt_serial.3,
2536 doc/manpages/gnutls_x509_crl_set_next_update.3,
2537 doc/manpages/gnutls_x509_crl_set_number.3,
2538 doc/manpages/gnutls_x509_crl_set_this_update.3,
2539 doc/manpages/gnutls_x509_crl_set_version.3,
2540 doc/manpages/gnutls_x509_crl_sign.3,
2541 doc/manpages/gnutls_x509_crl_sign2.3,
2542 doc/manpages/gnutls_x509_crl_verify.3,
2543 doc/manpages/gnutls_x509_crq_deinit.3,
2544 doc/manpages/gnutls_x509_crq_export.3,
2545 doc/manpages/gnutls_x509_crq_get_attribute_by_oid.3,
2546 doc/manpages/gnutls_x509_crq_get_attribute_data.3,
2547 doc/manpages/gnutls_x509_crq_get_attribute_info.3,
2548 doc/manpages/gnutls_x509_crq_get_basic_constraints.3,
2549 doc/manpages/gnutls_x509_crq_get_challenge_password.3,
2550 doc/manpages/gnutls_x509_crq_get_dn.3,
2551 doc/manpages/gnutls_x509_crq_get_dn_by_oid.3,
2552 doc/manpages/gnutls_x509_crq_get_dn_oid.3,
2553 doc/manpages/gnutls_x509_crq_get_extension_by_oid.3,
2554 doc/manpages/gnutls_x509_crq_get_extension_data.3,
2555 doc/manpages/gnutls_x509_crq_get_extension_info.3,
2556 doc/manpages/gnutls_x509_crq_get_key_id.3,
2557 doc/manpages/gnutls_x509_crq_get_key_purpose_oid.3,
2558 doc/manpages/gnutls_x509_crq_get_key_rsa_raw.3,
2559 doc/manpages/gnutls_x509_crq_get_key_usage.3,
2560 doc/manpages/gnutls_x509_crq_get_pk_algorithm.3,
2561 doc/manpages/gnutls_x509_crq_get_subject_alt_name.3,
2562 doc/manpages/gnutls_x509_crq_get_subject_alt_othername_oid.3,
2563 doc/manpages/gnutls_x509_crq_get_version.3,
2564 doc/manpages/gnutls_x509_crq_import.3,
2565 doc/manpages/gnutls_x509_crq_init.3,
2566 doc/manpages/gnutls_x509_crq_print.3,
2567 doc/manpages/gnutls_x509_crq_privkey_sign.3,
2568 doc/manpages/gnutls_x509_crq_set_attribute_by_oid.3,
2569 doc/manpages/gnutls_x509_crq_set_basic_constraints.3,
2570 doc/manpages/gnutls_x509_crq_set_challenge_password.3,
2571 doc/manpages/gnutls_x509_crq_set_dn_by_oid.3,
2572 doc/manpages/gnutls_x509_crq_set_key.3,
2573 doc/manpages/gnutls_x509_crq_set_key_purpose_oid.3,
2574 doc/manpages/gnutls_x509_crq_set_key_rsa_raw.3,
2575 doc/manpages/gnutls_x509_crq_set_key_usage.3,
2576 doc/manpages/gnutls_x509_crq_set_pubkey.3,
2577 doc/manpages/gnutls_x509_crq_set_subject_alt_name.3,
2578 doc/manpages/gnutls_x509_crq_set_version.3,
2579 doc/manpages/gnutls_x509_crq_sign.3,
2580 doc/manpages/gnutls_x509_crq_sign2.3,
2581 doc/manpages/gnutls_x509_crq_verify.3,
2582 doc/manpages/gnutls_x509_crt_check_hostname.3,
2583 doc/manpages/gnutls_x509_crt_check_issuer.3,
2584 doc/manpages/gnutls_x509_crt_check_revocation.3,
2585 doc/manpages/gnutls_x509_crt_cpy_crl_dist_points.3,
2586 doc/manpages/gnutls_x509_crt_deinit.3,
2587 doc/manpages/gnutls_x509_crt_export.3,
2588 doc/manpages/gnutls_x509_crt_get_activation_time.3,
2589 doc/manpages/gnutls_x509_crt_get_authority_info_access.3,
2590 doc/manpages/gnutls_x509_crt_get_authority_key_id.3,
2591 doc/manpages/gnutls_x509_crt_get_basic_constraints.3,
2592 doc/manpages/gnutls_x509_crt_get_ca_status.3,
2593 doc/manpages/gnutls_x509_crt_get_crl_dist_points.3,
2594 doc/manpages/gnutls_x509_crt_get_dn.3,
2595 doc/manpages/gnutls_x509_crt_get_dn_by_oid.3,
2596 doc/manpages/gnutls_x509_crt_get_dn_oid.3,
2597 doc/manpages/gnutls_x509_crt_get_expiration_time.3,
2598 doc/manpages/gnutls_x509_crt_get_extension_by_oid.3,
2599 doc/manpages/gnutls_x509_crt_get_extension_data.3,
2600 doc/manpages/gnutls_x509_crt_get_extension_info.3,
2601 doc/manpages/gnutls_x509_crt_get_extension_oid.3,
2602 doc/manpages/gnutls_x509_crt_get_fingerprint.3,
2603 doc/manpages/gnutls_x509_crt_get_issuer.3,
2604 doc/manpages/gnutls_x509_crt_get_issuer_alt_name.3,
2605 doc/manpages/gnutls_x509_crt_get_issuer_alt_name2.3,
2606 doc/manpages/gnutls_x509_crt_get_issuer_alt_othername_oid.3,
2607 doc/manpages/gnutls_x509_crt_get_issuer_dn.3,
2608 doc/manpages/gnutls_x509_crt_get_issuer_dn_by_oid.3,
2609 doc/manpages/gnutls_x509_crt_get_issuer_dn_oid.3,
2610 doc/manpages/gnutls_x509_crt_get_issuer_unique_id.3,
2611 doc/manpages/gnutls_x509_crt_get_key_id.3,
2612 doc/manpages/gnutls_x509_crt_get_key_purpose_oid.3,
2613 doc/manpages/gnutls_x509_crt_get_key_usage.3,
2614 doc/manpages/gnutls_x509_crt_get_pk_algorithm.3,
2615 doc/manpages/gnutls_x509_crt_get_pk_dsa_raw.3,
2616 doc/manpages/gnutls_x509_crt_get_pk_rsa_raw.3,
2617 doc/manpages/gnutls_x509_crt_get_preferred_hash_algorithm.3,
2618 doc/manpages/gnutls_x509_crt_get_proxy.3,
2619 doc/manpages/gnutls_x509_crt_get_raw_dn.3,
2620 doc/manpages/gnutls_x509_crt_get_raw_issuer_dn.3,
2621 doc/manpages/gnutls_x509_crt_get_serial.3,
2622 doc/manpages/gnutls_x509_crt_get_signature.3,
2623 doc/manpages/gnutls_x509_crt_get_signature_algorithm.3,
2624 doc/manpages/gnutls_x509_crt_get_subject.3,
2625 doc/manpages/gnutls_x509_crt_get_subject_alt_name.3,
2626 doc/manpages/gnutls_x509_crt_get_subject_alt_name2.3,
2627 doc/manpages/gnutls_x509_crt_get_subject_alt_othername_oid.3,
2628 doc/manpages/gnutls_x509_crt_get_subject_key_id.3,
2629 doc/manpages/gnutls_x509_crt_get_subject_unique_id.3,
2630 doc/manpages/gnutls_x509_crt_get_verify_algorithm.3,
2631 doc/manpages/gnutls_x509_crt_get_version.3,
2632 doc/manpages/gnutls_x509_crt_import.3,
2633 doc/manpages/gnutls_x509_crt_import_pkcs11.3,
2634 doc/manpages/gnutls_x509_crt_import_pkcs11_url.3,
2635 doc/manpages/gnutls_x509_crt_init.3,
2636 doc/manpages/gnutls_x509_crt_list_import.3,
2637 doc/manpages/gnutls_x509_crt_list_import2.3,
2638 doc/manpages/gnutls_x509_crt_list_import_pkcs11.3,
2639 doc/manpages/gnutls_x509_crt_list_verify.3,
2640 doc/manpages/gnutls_x509_crt_print.3,
2641 doc/manpages/gnutls_x509_crt_privkey_sign.3,
2642 doc/manpages/gnutls_x509_crt_set_activation_time.3,
2643 doc/manpages/gnutls_x509_crt_set_authority_key_id.3,
2644 doc/manpages/gnutls_x509_crt_set_basic_constraints.3,
2645 doc/manpages/gnutls_x509_crt_set_ca_status.3,
2646 doc/manpages/gnutls_x509_crt_set_crl_dist_points.3,
2647 doc/manpages/gnutls_x509_crt_set_crl_dist_points2.3,
2648 doc/manpages/gnutls_x509_crt_set_crq.3,
2649 doc/manpages/gnutls_x509_crt_set_crq_extensions.3,
2650 doc/manpages/gnutls_x509_crt_set_dn_by_oid.3,
2651 doc/manpages/gnutls_x509_crt_set_expiration_time.3,
2652 doc/manpages/gnutls_x509_crt_set_extension_by_oid.3,
2653 doc/manpages/gnutls_x509_crt_set_issuer_dn_by_oid.3,
2654 doc/manpages/gnutls_x509_crt_set_key.3,
2655 doc/manpages/gnutls_x509_crt_set_key_purpose_oid.3,
2656 doc/manpages/gnutls_x509_crt_set_key_usage.3,
2657 doc/manpages/gnutls_x509_crt_set_proxy.3,
2658 doc/manpages/gnutls_x509_crt_set_proxy_dn.3,
2659 doc/manpages/gnutls_x509_crt_set_pubkey.3,
2660 doc/manpages/gnutls_x509_crt_set_serial.3,
2661 doc/manpages/gnutls_x509_crt_set_subject_alt_name.3,
2662 doc/manpages/gnutls_x509_crt_set_subject_alternative_name.3,
2663 doc/manpages/gnutls_x509_crt_set_subject_key_id.3,
2664 doc/manpages/gnutls_x509_crt_set_version.3,
2665 doc/manpages/gnutls_x509_crt_sign.3,
2666 doc/manpages/gnutls_x509_crt_sign2.3,
2667 doc/manpages/gnutls_x509_crt_verify.3,
2668 doc/manpages/gnutls_x509_crt_verify_data.3,
2669 doc/manpages/gnutls_x509_crt_verify_hash.3,
2670 doc/manpages/gnutls_x509_dn_deinit.3,
2671 doc/manpages/gnutls_x509_dn_export.3,
2672 doc/manpages/gnutls_x509_dn_get_rdn_ava.3,
2673 doc/manpages/gnutls_x509_dn_import.3,
2674 doc/manpages/gnutls_x509_dn_init.3,
2675 doc/manpages/gnutls_x509_dn_oid_known.3,
2676 doc/manpages/gnutls_x509_privkey_cpy.3,
2677 doc/manpages/gnutls_x509_privkey_deinit.3,
2678 doc/manpages/gnutls_x509_privkey_export.3,
2679 doc/manpages/gnutls_x509_privkey_export_dsa_raw.3,
2680 doc/manpages/gnutls_x509_privkey_export_ecc_raw.3,
2681 doc/manpages/gnutls_x509_privkey_export_pkcs8.3,
2682 doc/manpages/gnutls_x509_privkey_export_rsa_raw.3,
2683 doc/manpages/gnutls_x509_privkey_export_rsa_raw2.3,
2684 doc/manpages/gnutls_x509_privkey_fix.3,
2685 doc/manpages/gnutls_x509_privkey_generate.3,
2686 doc/manpages/gnutls_x509_privkey_get_key_id.3,
2687 doc/manpages/gnutls_x509_privkey_get_pk_algorithm.3,
2688 doc/manpages/gnutls_x509_privkey_import.3,
2689 doc/manpages/gnutls_x509_privkey_import_dsa_raw.3,
2690 doc/manpages/gnutls_x509_privkey_import_ecc_raw.3,
2691 doc/manpages/gnutls_x509_privkey_import_pkcs8.3,
2692 doc/manpages/gnutls_x509_privkey_import_rsa_raw.3,
2693 doc/manpages/gnutls_x509_privkey_import_rsa_raw2.3,
2694 doc/manpages/gnutls_x509_privkey_init.3,
2695 doc/manpages/gnutls_x509_privkey_sec_param.3,
2696 doc/manpages/gnutls_x509_privkey_sign_data.3,
2697 doc/manpages/gnutls_x509_privkey_sign_hash.3,
2698 doc/manpages/gnutls_x509_privkey_verify_params.3,
2699 doc/manpages/gnutls_x509_rdn_get.3,
2700 doc/manpages/gnutls_x509_rdn_get_by_oid.3,
2701 doc/manpages/gnutls_x509_rdn_get_oid.3,
2702 doc/manpages/gnutls_x509_trust_list_add_cas.3,
2703 doc/manpages/gnutls_x509_trust_list_add_crls.3,
2704 doc/manpages/gnutls_x509_trust_list_add_named_crt.3,
2705 doc/manpages/gnutls_x509_trust_list_deinit.3,
2706 doc/manpages/gnutls_x509_trust_list_get_issuer.3,
2707 doc/manpages/gnutls_x509_trust_list_init.3,
2708 doc/manpages/gnutls_x509_trust_list_verify_crt.3,
2709 doc/manpages/gnutls_x509_trust_list_verify_named_crt.3,
2710 doc/scripts/getfuncs.pl, lib/gnutls_cert.c, lib/gnutls_str.c: Added
2711 a more robust manpage generation method.
2713 2011-11-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2715 * doc/examples/ex-serv-psk.c, doc/examples/ex-serv-srp.c:
2716 updated/fixed SRP and PSK examples.
2718 2011-11-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2720 * lib/auth/cert.c: updated client certificate signature algorithm
2721 indication, to allow holding 3 algorithms.
2723 2011-11-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2725 * cfg.mk: use texi2html to generate documentation
2727 2011-11-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2729 * doc/scripts/gdoc: corrected texinfo and manpage generation of
2732 2011-11-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2734 * lib/gnutls_record.c: count all discarded packets as dropped.
2736 2011-11-15 Martin Storsjo <martin@martin.st>
2738 * extra/Makefile.am, lib/Makefile.am: Add dependencies from the def
2739 files to the libraries that generate them This avoids build failures in parallel builds, where builds could
2740 fail with this error message: make[2]: *** No rule to make target `libgnutls-26.def', needed by
2741 `all-am'. Stop. There is no direct rules that generate it, but it is generated as a
2742 byproduct when building libgnutls.la. By marking the la file as a
2743 dependency, make won't bail out by not finding the file until that
2744 dependency is built, and at that point, the def file exists. Signed-off-by: Simon Josefsson <simon@josefsson.org>
2746 2011-11-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2748 * doc/Makefile.am, doc/cha-auth.texi, doc/cha-cert-auth.texi,
2749 doc/cha-cert-auth2.texi, doc/cha-gtls-app.texi,
2750 doc/cha-gtls-examples.texi, doc/cha-intro-tls.texi,
2751 doc/cha-library.texi, doc/cha-shared-key.texi, doc/gnutls.texi,
2752 doc/latex/.gitignore, doc/latex/Makefile.am, doc/latex/gnutls.tex,
2753 doc/scripts/mytexi2latex: reorganized documentation
2755 2011-11-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2757 * lib/accelerated/x86/asm-coff/appro-aes-x86-coff.s,
2758 lib/accelerated/x86/asm-coff/cpuid-x86-64-coff.s,
2759 lib/accelerated/x86/asm-coff/cpuid-x86-coff.s,
2760 lib/accelerated/x86/asm-coff/padlock-x86-coff.s,
2761 lib/accelerated/x86/asm/appro-aes-gcm-x86-64.s,
2762 lib/accelerated/x86/asm/appro-aes-x86-64.s,
2763 lib/accelerated/x86/asm/appro-aes-x86.s,
2764 lib/accelerated/x86/asm/cpuid-x86-64.s,
2765 lib/accelerated/x86/asm/cpuid-x86.s,
2766 lib/accelerated/x86/asm/padlock-x86-64.s,
2767 lib/accelerated/x86/asm/padlock-x86.s: Commited new assembler files.
2769 2011-11-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2771 * cfg.mk, devel/perlasm/aesni-x86.pl,
2772 devel/perlasm/aesni-x86_64.pl, devel/perlasm/cbc.pl,
2773 devel/perlasm/cpuid-x86.pl, devel/perlasm/cpuid-x86_64.pl,
2774 devel/perlasm/e_padlock-x86.pl, devel/perlasm/e_padlock-x86_64.pl,
2775 devel/perlasm/ghash-x86.pl, devel/perlasm/ghash-x86_64.pl,
2776 devel/perlasm/license-gnutls.txt, devel/perlasm/license.txt,
2777 devel/perlasm/ppc-xlate.pl, devel/perlasm/readme,
2778 devel/perlasm/x86_64-xlate.pl, devel/perlasm/x86asm.pl,
2779 devel/perlasm/x86gas.pl, devel/perlasm/x86masm.pl,
2780 devel/perlasm/x86nasm.pl: Added rules to auto-generate the assembler
2783 2011-11-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2785 * .gitignore: more files to ignore
2787 2011-11-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2789 * doc/cha-cert-auth.texi: updated
2791 2011-11-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2793 * doc/cha-auth.texi, doc/cha-cert-auth.texi, doc/cha-programs.texi,
2794 doc/gnutls.texi: Tools are discussed in the relevant chapters and
2797 2011-11-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2799 * NEWS: released 3.0.8
2801 2011-11-12 Simon Josefsson <simon@josefsson.org>
2803 * configure.ac: Add tests/slow/Makfile and sort config files.
2805 2011-11-12 Simon Josefsson <simon@josefsson.org>
2807 * cfg.mk: Fix wordwrap.
2809 2011-11-12 Simon Josefsson <simon@josefsson.org>
2811 * lib/x509/verify-high.c, lib/x509/verify-high.h: Don't export
2812 verify-high structs internally.
2814 2011-11-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2816 * cfg.mk: document the gpl modules used by gnulib
2818 2011-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2820 * tests/Makefile.am, tests/gendh.c, tests/keygen.c,
2821 tests/slow/Makefile.am, tests/slow/README, tests/slow/gendh.c,
2822 tests/slow/keygen.c: slow tests are not being run using valgrind
2824 2011-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2826 * tests/ecdsa/Makefile.am: distribute pem file
2828 2011-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2830 * tests/ecdsa/bad-key.pem, tests/ecdsa/ecdsa: Added test to detect a
2833 2011-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2835 * lib/gnutls_errors.h, lib/gnutls_int.h: define likely() and
2836 unlikely() and use them to prevent debugging code from being
2837 prioritized in branch prediction.
2839 2011-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2841 * .gitignore: more files to ignore
2843 2011-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2845 * NEWS, m4/hooks.m4: bumped library version and documented updates.
2847 2011-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2849 * lib/crypto-backend.h, lib/gnutls_errors.c, lib/gnutls_pk.c,
2850 lib/gnutls_pk.h, lib/includes/gnutls/gnutls.h.in,
2851 lib/includes/gnutls/x509.h, lib/libgnutls.map, lib/nettle/pk.c,
2852 lib/x509/privkey.c, src/certtool.c, tests/Makefile.am,
2853 tests/keygen.c: Added gnutls_x509_privkey_verify_params() which
2854 verifies the parameters of a private key. Added test case for
2855 private key generation.
2857 2011-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2859 * src/certtool-cfg.c, src/certtool-common.c, src/certtool.c,
2860 src/psk.c, src/srptool.c, src/tests.c, src/tls_test.c: simplified
2863 2011-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2865 * configure.ac, m4/hooks.m4: bumped library versions
2867 2011-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2869 * doc/cha-cert-auth.texi, doc/scripts/mytexi2latex,
2870 lib/x509/crl_write.c: Added documentation on revocation lists.
2872 2011-11-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2874 * tests/suite/chain: account for error code 1 in certtool.
2876 2011-11-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2878 * NEWS: document updates
2880 2011-11-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2882 * lib/gnutls_cipher.c: Reduce pad.
2884 2011-11-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2886 * configure.ac: added missing dir
2888 2011-11-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2890 * lib/gnutls_int.h, lib/gnutls_record.c: Revert "periodically print
2891 messages that might be used in timing attacks." This reverts commit a333d71762903ff5b716d1e3967017b1baf61bd2.
2893 2011-11-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2895 * lib/gnutls_state.c: Revert "dropped packets are also reported on
2896 gnutls_deinit() to ensure that they are not lost." This reverts commit 41a73fb4a147dc4773d4b546d5d8b5cfdae255d9.
2898 2011-11-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2902 2011-11-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2904 * lib/gnutls_cipher.c: provide less timing information during packet
2907 2011-11-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2909 * tests/ecdsa/ecdsa: silence test
2911 2011-11-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2913 * lib/crypto-backend.h, lib/gnutls_ecc.c, lib/gnutls_pubkey.c,
2914 lib/nettle/pk.c, lib/pkcs11_write.c, lib/x509/key_decode.c,
2915 lib/x509/key_encode.c, lib/x509/privkey.c: Corrected ECC key
2918 2011-11-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2920 * src/certtool.c: fail on certificate verification
2922 2011-11-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2924 * tests/Makefile.am, tests/ecdsa/Makefile.am, tests/ecdsa/ecdsa:
2925 Added ECDSA key generation, signing and verification tests.
2927 2011-11-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2929 * src/certtool.c: verify the self signature of a CRQ when --crq-info
2932 2011-11-10 Simon Josefsson <simon@josefsson.org>
2934 * lib/x509/verify-high.h: Add verify-high.h, to export some structs
2937 2011-11-10 Simon Josefsson <simon@josefsson.org>
2939 * lib/algorithms.h, lib/algorithms/mac.c: Add explicit digest
2940 mapping functions (for OCSP).
2942 2011-11-10 Simon Josefsson <simon@josefsson.org>
2944 * lib/x509/Makefile.am, lib/x509/verify-high.c: Make verify-high
2945 structures internally accessible (for OCSP).
2947 2011-11-10 Simon Josefsson <simon@josefsson.org>
2949 * lib/libgnutls.map: Indent.
2951 2011-11-10 Simon Josefsson <simon@josefsson.org>
2953 * lib/x509/common.c, lib/x509/common.h, lib/x509/extensions.c: Make
2954 more functions available internally (for OCSP).
2956 2011-11-10 Simon Josefsson <simon@josefsson.org>
2958 * lib/gnutls_str.c, lib/gnutls_str.h, lib/x509/output.c: Make
2959 asciiprint a globally available function.
2961 2011-11-10 Simon Josefsson <simon@josefsson.org>
2965 2011-11-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2967 * lib/gnutls_state.c: dropped packets are also reported on
2968 gnutls_deinit() to ensure that they are not lost.
2970 2011-11-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2972 * lib/gnutls_int.h, lib/gnutls_record.c: periodically print messages
2973 that might be used in timing attacks.
2975 2011-11-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2977 * COPYING.LESSER, lib/COPYING: LGPLv3 license was moved to root.
2979 2011-11-09 Simon Josefsson <simon@josefsson.org>
2981 * configure.ac, doc/reference/gnutls-docs.sgml,
2982 doc/reference/version.xml.in: Update gtk-doc template.
2984 2011-11-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
2986 * doc/cha-gtls-app.texi: updated
2988 2011-11-09 Simon Josefsson <simon@josefsson.org>
2990 * lib/includes/gnutls/pkcs11.h: Remove redundant const keyword in
2991 (confuses gtk-doc parser).
2993 2011-11-09 Simon Josefsson <simon@josefsson.org>
2995 * README-alpha: Mention libidn dependency for crywrap.
2997 2011-11-09 Simon Josefsson <simon@josefsson.org>
2999 * lib/gnutls_pubkey.c: Don't crash if gnutls_pubkey_deinit is given
3002 2011-11-09 Simon Josefsson <simon@josefsson.org>
3004 * lib/x509_b64.c, lib/x509_b64.h: Remove dead code and use more
3007 2011-11-09 Simon Josefsson <simon@josefsson.org>
3009 * cfg.mk: Fix code coverage rules.
3011 2011-11-09 Simon Josefsson <simon@josefsson.org>
3013 * .gitignore: Ignore coverage related stuff.
3015 2011-11-09 Simon Josefsson <simon@josefsson.org>
3017 * configure.ac, lib/Makefile.am: Don't add p11-kit to CFLAGS/LIBS
3018 globally, just where it is needed.
3020 2011-11-09 Simon Josefsson <simon@josefsson.org>
3022 * doc/cyclo/Makefile.am: The build rule didn't really work before,
3023 now fixed. Update copyright years.
3025 2011-11-09 Simon Josefsson <simon@josefsson.org>
3027 * .gitignore: Remove unneeded stuff.
3029 2011-11-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3031 * lib/debug.c: enable _gnutls_dump_mpi() when debugging.
3033 2011-11-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3035 * lib/debug.c, lib/debug.h: Revert "Remove dead code." This reverts commit e5d8a79fcc429902e8fb9b7cec91d66b965df5bb.
3037 2011-11-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3039 * configure.ac, lib/Makefile.am, lib/gcrypt/Makefile.am,
3040 lib/gcrypt/cipher.c, lib/gcrypt/init.c, lib/gcrypt/mac.c,
3041 lib/gcrypt/mpi.c, lib/gcrypt/pk.c, lib/gcrypt/rnd.c: No need to
3042 distribute the libgcrypt backend (which cannot even be compiled).
3044 2011-11-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3046 * lib/accelerated/x86/README: updated to include padlock.
3048 2011-11-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3050 * lib/nettle/cipher.c, lib/nettle/mac.c: release allocated memory on
3051 a cipher or mac failure to initialize.
3053 2011-11-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3055 * doc/cha-gtls-app.texi: clarified usage of
3056 gnutls_record_check_pending().
3058 2011-11-09 Simon Josefsson <simon@josefsson.org>
3060 * lib/debug.c, lib/debug.h: Remove dead code.
3062 2011-11-09 Simon Josefsson <simon@josefsson.org>
3064 * .gitignore: Sort and add.
3066 2011-11-09 Simon Josefsson <simon@josefsson.org>
3068 * lib/gnutls_db.c, lib/gnutls_db.h: Remove some redundant prototypes
3069 and use more static.
3071 2011-11-09 Simon Josefsson <simon@josefsson.org>
3073 * lib/gnutls_db.c, lib/gnutls_db.h: Simplify redundant code.
3075 2011-11-09 Simon Josefsson <simon@josefsson.org>
3077 * build-aux/pmccabe2html, gl/Makefile.am, gl/m4/gnulib-cache.m4,
3078 gl/m4/gnulib-comp.m4: Add pmccabe2html gnulib module.
3080 2011-11-09 Simon Josefsson <simon@josefsson.org>
3082 * gl/override/lib/hmac-md5.c.diff, gl/override/lib/memxor.c.diff,
3083 gl/override/lib/memxor.h.diff: Remove obsolete files.
3085 2011-11-09 Simon Josefsson <simon@josefsson.org>
3087 * configure.ac, gl/override/lib/read-file.c.diff,
3088 gl/override/lib/read-file.h.diff,
3089 gl/override/tests/test-read-file.c.diff, gl/read-file.c,
3090 gl/read-file.h, gl/tests/test-read-file.c, lib/gnutls_x509.c,
3091 lib/openpgp/gnutls_openpgp.c, src/certtool-common.c,
3092 src/certtool.c, src/cli.c, src/crywrap/crywrap.c: Simplify static
3093 library renaming hack.
3095 2011-11-09 Simon Josefsson <simon@josefsson.org>
3097 * tests/suite/Makefile.am: Cleanup and fix authorship notice (I
3098 didn't write this file).
3100 2011-11-09 Simon Josefsson <simon@josefsson.org>
3102 * tests/dsa/testdsa, tests/openpgp-certs/testcerts,
3103 tests/suite/testcompat-main, tests/suite/testsrn: Fix
3104 srcdir!=builddir builds.
3106 2011-11-09 Simon Josefsson <simon@josefsson.org>
3108 * Makefile.am: Allow distcheck to work, the suppressions.valgrind
3109 file caused problems.
3111 2011-11-08 Simon Josefsson <simon@josefsson.org>
3113 * doc/Makefile.am: enums.texi: Look in builddir too for gnutls.h.
3115 2011-11-08 Simon Josefsson <simon@josefsson.org>
3117 * NEWS, doc/manpages/Makefile.am: doc: man pages for API functions
3120 2011-11-08 Simon Josefsson <simon@josefsson.org>
3122 * GNUmakefile, gl/Makefile.am, gl/alignof.h, gl/argp-parse.c,
3123 gl/closedir.c, gl/m4/gnulib-comp.m4, gl/m4/math_h.m4,
3124 gl/m4/stdalign.m4, gl/math.in.h, gl/stdalign.in.h, gl/stdlib.in.h,
3125 gl/sys_socket.in.h, gl/tests/Makefile.am, gl/tests/putenv.c,
3126 gl/tests/test-stdalign.c, maint.mk: Update gnulib files.
3128 2011-11-08 Simon Josefsson <simon@josefsson.org>
3130 * cfg.mk: Improve syntax-check rules.
3132 2011-11-08 Simon Josefsson <simon@josefsson.org>
3134 * tests/Makefile.am: Re-indent.
3136 2011-11-08 Simon Josefsson <simon@josefsson.org>
3138 * doc/Makefile.am: Fix syntax-check whitespace nit.
3140 2011-11-08 Simon Josefsson <simon@josefsson.org>
3142 * configure.ac: Fix portability quirk.
3144 2011-11-08 Simon Josefsson <simon@josefsson.org>
3146 * tests/rsa-md5-collision/README: Fix 'the the' double use.
3148 2011-11-08 Simon Josefsson <simon@josefsson.org>
3150 * lib/accelerated/x86/hmac-padlock.c: Remove unneeded assert.h
3153 2011-11-08 Simon Josefsson <simon@josefsson.org>
3155 * .gitattributes: Drop unneeded .gitattributes.
3157 2011-11-08 Simon Josefsson <simon@josefsson.org>
3159 * doc/reference/Makefile.am, gtk-doc.make: Update gtk-doc files.
3161 2011-11-08 Simon Josefsson <simon@josefsson.org>
3163 * doc/reference/gnutls-docs.sgml: Drop openssl API from GnuTLS API
3164 manual to avoid build errors.
3166 2011-11-08 Simon Josefsson <simon@josefsson.org>
3168 * doc/reference/Makefile.am: Drop more extra stuff.
3170 2011-11-08 Simon Josefsson <simon@josefsson.org>
3172 * extra/gnutls-extra.pc.in, extra/libgnutls-extra.map: Remove
3173 obsolete libgnutls-extra stuff.
3175 2011-11-08 Simon Josefsson <simon@josefsson.org>
3177 * doc/examples/verify.c: Include examples.h to get
3178 verify_certificate_callback prototype.
3180 2011-11-08 Simon Josefsson <simon@josefsson.org>
3182 * doc/reference/Makefile.am: Improve header ignoring.
3184 2011-11-08 Simon Josefsson <simon@josefsson.org>
3186 * configure.ac: Use gettext 0.18 to avoid build error.
3188 2011-11-08 Simon Josefsson <simon@josefsson.org>
3190 * lib/nettle/ecc_mulmod.c: Fix compile warnings.
3192 2011-11-08 Simon Josefsson <simon@josefsson.org>
3194 * po/it.po.in: Sync with TP.
3196 2011-11-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3198 * NEWS, configure.ac, m4/hooks.m4: released 3.0.7
3200 2011-11-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3202 * lib/algorithms/ciphersuites.c: Corrected ciphersuite
3203 GNUTLS_ECDHE_RSA_AES_128_CBC_SHA256. Reported by Fabrice Gautier.
3205 2011-11-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3207 * lib/gnutls_session.c: bug fix in gnutls_session_get_data().
3209 2011-11-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3211 * NEWS, configure.ac, m4/hooks.m4: bumped version
3213 2011-11-07 Alban Crequy <alban.crequy@collabora.co.uk>
3215 * lib/gnutls_session.c: gnutls_session_get_data: fix possible buffer
3216 overflow The test to avoid the buffer overflow was always false because
3217 session_data_size was set at the wrong place. This problem has been
3218 introduced by this commit: |commit ad4ed44c65e753e6d3a00104c049dd81826ccbf3 |Author: Nikos
3219 Mavrogiannopoulos <nmav@gnutls.org> |Date: Mon Nov 7 22:24:48 2005
3220 +0000 | | This is the initial commit in the 1.3 branch. Ported
3221 from the PSK branch: | * PSK ciphersuites have been added. |
3222 * The session resumption data are now system independent. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
3224 2011-11-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3226 * NEWS: documented changes.
3228 2011-11-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3230 * lib/auth/ecdh_common.c, lib/crypto-backend.h, lib/gnutls_ecc.c,
3231 lib/gnutls_privkey.c, lib/gnutls_pubkey.c, lib/nettle/Makefile.am,
3232 lib/nettle/ecc.h, lib/nettle/ecc_free.c, lib/nettle/ecc_make_key.c,
3233 lib/nettle/ecc_projective_check_point.c,
3234 lib/nettle/ecc_projective_dbl_point.c, lib/nettle/ecc_sign_hash.c,
3235 lib/nettle/pk.c, lib/pkcs11_write.c, lib/x509/key_decode.c,
3236 lib/x509/key_encode.c, lib/x509/mpi.c, lib/x509/privkey.c,
3237 lib/x509/x509_int.h: Verify that received ECDH public key lies on
3240 2011-11-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3242 * lib/gnutls_priority.c: ECDHE ciphersuites take precendence to
3245 2011-11-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3247 * NEWS, THANKS: documented fixes
3249 2011-11-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3251 * lib/nettle/ecc_test.c: re-removed file
3253 2011-11-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3255 * lib/x509/privkey_pkcs8.c: Report correct error on ECC key parsing
3258 2011-11-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3260 * lib/nettle/ecc.h, lib/nettle/ecc_mulmod.c,
3261 lib/nettle/ecc_projective_add_point.c,
3262 lib/nettle/ecc_projective_dbl_point.c,
3263 lib/nettle/ecc_projective_dbl_point_3.c, lib/nettle/ecc_test.c:
3264 converted more things to native gmp. This solves issue noticed in
3265 mips64 by Joseph Graham.
3267 2011-11-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3269 * tests/suite/testcompat-main: Added tests for null ciphersuites.
3271 2011-11-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3273 * NEWS: documented fix
3275 2011-11-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3277 * doc/Makefile.am, doc/cha-gtls-app.texi, doc/examples/Makefile.am,
3278 doc/examples/ex-client-udp.c, doc/examples/ex-client2.c,
3279 doc/examples/ex-rfc2818.c, doc/examples/examples.h,
3280 doc/examples/verify.c: Include only a single example with X.509
3281 client. This example includes certificate verification.
3283 2011-11-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3285 * doc/latex/Makefile.am: no libextra in doc
3287 2011-11-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3289 * lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h: corrected NULL
3290 cipher encryption. Reported by Fabrice Gautier.
3292 2011-11-04 Ludovic Courtès <ludo@gnu.org>
3294 * configure.ac, guile/modules/gnutls.in, guile/pre-inst-guile.in,
3295 guile/src/Makefile.am: guile: Rename `libguile-gnutls-v-2.la' to
3296 `guile-gnutls-v-2.la'.
3298 2011-11-04 Ludovic Courtès <ludo@gnu.org>
3300 * .gitignore, configure.ac, guile/modules/Makefile.am,
3301 guile/modules/gnutls.in, guile/modules/gnutls.scm,
3302 guile/pre-inst-guile.in, guile/src/Makefile.am: guile: Install
3303 libguile-gnutls under $(libdir)/guile/X.Y.
3305 2011-11-03 Ludovic Courtès <ludo@gnu.org>
3307 * guile/modules/gnutls.scm, guile/pre-inst-guile.in,
3308 guile/src/Makefile.am: guile: Rename to `libguile-gnutls-v-2'.
3310 2011-11-03 Ludovic Courtès <ludo@gnu.org>
3312 * doc/gnutls-guile.texi: doc: Make it clear that both Guile 1.8 and
3315 2011-11-03 Ludovic Courtès <ludo@gnu.org>
3317 * doc/Makefile.am, doc/gnutls-guile.texi: guile: Update doc to
3318 reflect the removal of (gnutls extra).
3320 2011-11-03 Ludovic Courtès <ludo@gnu.org>
3322 * guile/tests/openpgp-auth.scm, guile/tests/openpgp-keyring.scm,
3323 guile/tests/openpgp-keys.scm: guile: Remove uses of (gnutls extra)
3326 2011-11-03 Ludovic Courtès <ludo@gnu.org>
3328 * guile/modules/gnutls.scm, guile/modules/gnutls/build/enums.scm,
3329 guile/modules/gnutls/build/smobs.scm,
3330 guile/modules/gnutls/extra.scm, guile/pre-inst-guile.in,
3331 guile/src/Makefile.am, guile/src/core.c, guile/src/extra.c,
3332 guile/src/make-enum-header.scm, guile/src/make-enum-map.scm,
3333 guile/src/make-smob-header.scm, guile/src/make-smob-types.scm:
3334 guile: Merge the (gnutls extra) module in (gnutls); deprecate it.
3336 2011-11-03 Ludovic Courtès <ludo@gnu.org>
3338 * guile/pre-inst-guile.in, guile/src/Makefile.am: Reverting "Drop
3339 guile libgnutls-extra stuff."
3341 2011-11-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3343 * lib/gnutls_str.c, lib/gnutls_str.h, lib/openpgp/output.c,
3344 lib/x509/output.c: removed duplicate code.
3346 2011-11-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3348 * guile/modules/gnutls/build/enums.scm: removed enumerations that
3351 2011-11-02 Simon Josefsson <simon@josefsson.org>
3353 * lib/auth/srp.c: Fix typo.
3355 2011-11-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3357 * gl/Makefile.am, gl/hmac-md5.c, gl/hmac.h, gl/m4/gnulib-cache.m4,
3358 gl/m4/gnulib-comp.m4, gl/m4/md5.m4, gl/m4/memxor.m4, gl/md5.c,
3359 gl/md5.h, gl/memxor.c, gl/memxor.h, gl/tests/Makefile.am,
3360 gl/tests/test-hmac-md5.c, gl/tests/test-md5.c: hmac-md5 gnulib
3361 module was removed (it was no longer used)
3363 2011-11-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3365 * .gitignore: more files to ignore
3367 2011-11-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3369 * src/srptool.c: print all groups.
3371 2011-11-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3373 * lib/auth/srp.c, lib/auth/srp_passwd.c,
3374 lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, src/prime.c,
3375 src/srptool.c: Added 3072 and 4096-bit groups from RFC5054.
3377 2011-11-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3379 * lib/gnutls_x509.c, lib/openpgp/gnutls_openpgp.c,
3380 src/certtool-common.c, src/certtool.c, src/cli.c,
3381 src/crywrap/crywrap.c: read_file() and friends are accessed as
3384 2011-11-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3386 * gl/override/lib/read-file.c.diff,
3387 gl/override/lib/read-file.h.diff,
3388 gl/override/tests/test-read-file.c.diff, gl/read-file.c,
3389 gl/read-file.h, gl/tests/test-read-file.c: read_file and friends
3390 were renamed to gl_read_file.
3392 2011-10-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3394 * THANKS: added David
3396 2011-10-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3398 * NEWS: documented fix
3400 2011-10-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3402 * doc/Makefile.am: errcodes printlist and alert-printlist become
3403 EXTRA_PROGRAMS so they are not built by default.
3405 2011-10-28 Simon Josefsson <simon@josefsson.org>
3407 * cfg.mk: Fix bootstrap rule to avoid duplicate gettext files.
3409 2011-10-28 Simon Josefsson <simon@josefsson.org>
3411 * cfg.mk: Remove old hack.
3413 2011-10-28 Simon Josefsson <simon@josefsson.org>
3415 * guile/pre-inst-guile.in, guile/src/Makefile.am: Drop guile
3416 libgnutls-extra stuff.
3418 2011-10-28 Simon Josefsson <simon@josefsson.org>
3420 * doc/gnutls.texi: Avoid line wrapping copyright line.
3422 2011-10-28 Simon Josefsson <simon@josefsson.org>
3424 * build-aux/config.rpath: Update config.rpath from gnulib.
3426 2011-10-28 Simon Josefsson <simon@josefsson.org>
3428 * doc/manpages/Makefile.am, doc/reference/gnutls-docs.sgml: Drop
3429 more libgnutls-extra related stuff.
3431 2011-10-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3433 * NEWS, configure.ac, m4/hooks.m4: released 3.0.5
3435 2011-10-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3437 * tests/utils.c: added stdarg.h for vsnprintf.
3439 2011-10-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3441 * src/benchmark.c, src/benchmark.h: win32 fixes by David Hoyt.
3443 2011-10-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3445 * doc/examples/Makefile.am: more builddir fixes.
3447 2011-10-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3449 * build-aux/config.rpath, gl/Makefile.am, gl/connect.c,
3450 gl/inet_ntop.c, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4,
3451 gl/m4/inet_ntop.m4, gl/recv.c, gl/send.c, gl/tests/Makefile.am,
3452 gl/tests/connect.c, gl/tests/test-inet_ntop.c,
3453 gl/tests/test-recv.c, gl/tests/test-send.c: Added recv(), send(),
3454 connect() and inet_ntop() gnulib modules.
3456 2011-10-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3458 * lib/gnutls_int.h, lib/opencdk/opencdk.h: do not unconditionally
3459 include sys/socket.h.
3461 2011-10-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3463 * gl/Makefile.am, gl/close.c, gl/m4/gnulib-cache.m4,
3464 gl/m4/gnulib-comp.m4, gl/tests/Makefile.am, gl/tests/close.c: Added
3465 gnulib close module.
3467 2011-10-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3469 * lib/nettle/rnd.c: do not use NULL for device_fd in windows.
3471 2011-10-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3473 * lib/opencdk/main.c: no need to include windows.h here.
3475 2011-10-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3477 * .gitignore: more files to ignore
3479 2011-10-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3481 * src/certtool-cfg.c, src/cli.c, src/tls_test.c, src/udp-serv.c:
3484 2011-10-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3486 * gl/Makefile.am, gl/arpa_inet.in.h, gl/errno.in.h, gl/inet_pton.c,
3487 gl/m4/ftruncate.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4,
3488 gl/m4/ioctl.m4, gl/m4/perror.m4, gl/m4/pipe.m4, gl/m4/select.m4,
3489 gl/m4/signal_h.m4, gl/m4/strerror_r.m4, gl/m4/sys_ioctl_h.m4,
3490 gl/m4/sys_select_h.m4, gl/m4/thread.m4, gl/m4/yield.m4,
3491 gl/math.in.h, gl/select.c, gl/signal.in.h, gl/strerror-override.c,
3492 gl/strerror-override.h, gl/sys_select.in.h, gl/tests/Makefile.am,
3493 gl/tests/arpa_inet.in.h, gl/tests/connect.c, gl/tests/ftruncate.c,
3494 gl/tests/glthread/lock.c, gl/tests/glthread/lock.h,
3495 gl/tests/glthread/thread.c, gl/tests/glthread/thread.h,
3496 gl/tests/glthread/threadlib.c, gl/tests/glthread/yield.h,
3497 gl/tests/inet_pton.c, gl/tests/ioctl.c, gl/tests/perror.c,
3498 gl/tests/pipe.c, gl/tests/strerror_r.c, gl/tests/sys_ioctl.in.h,
3499 gl/tests/test-connect.c, gl/tests/test-ftruncate.c,
3500 gl/tests/test-ftruncate.sh, gl/tests/test-ioctl.c,
3501 gl/tests/test-lock.c, gl/tests/test-perror.c,
3502 gl/tests/test-perror.sh, gl/tests/test-perror2.c,
3503 gl/tests/test-pipe.c, gl/tests/test-select-fd.c,
3504 gl/tests/test-select-in.sh, gl/tests/test-select-out.sh,
3505 gl/tests/test-select-stdin.c, gl/tests/test-select.c,
3506 gl/tests/test-select.h, gl/tests/test-signal-h.c,
3507 gl/tests/test-strerror_r.c, gl/tests/test-sys_ioctl.c,
3508 gl/tests/test-sys_select.c, gl/tests/test-thread_create.c,
3509 gl/tests/test-thread_self.c, gl/tests/w32sock.h, gl/w32sock.h,
3510 maint.mk: new gnulib + added select + inet_pton.
3512 2011-10-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3514 * src/common.h, src/udp-serv.c: netinet headers were put on an
3517 2011-10-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3519 * doc/cha-gtls-app.texi: more libextra doc fixes.
3521 2011-10-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3523 * doc/cha-functions.texi: extra-api is no more
3525 2011-10-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3527 * lib/accelerated/x86/asm-coff/cpuid-x86-64-coff.s,
3528 lib/accelerated/x86/asm-coff/cpuid-x86-coff.s: corrected symbols for
3531 2011-10-25 Simon Josefsson <simon@josefsson.org>
3533 * NEWS, lib/minitasn1/decoding.c, lib/minitasn1/element.c,
3534 lib/minitasn1/element.h, lib/minitasn1/errors.c,
3535 lib/minitasn1/gstr.c, lib/minitasn1/gstr.h, lib/minitasn1/int.h,
3536 lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c,
3537 lib/minitasn1/parser_aux.h, lib/minitasn1/structure.c,
3538 lib/minitasn1/structure.h, lib/minitasn1/version.c: Update to
3541 2011-10-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3543 * configure.ac: changed mingw32 detection
3545 2011-10-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3547 * configure.ac, lib/accelerated/x86/Makefile.am,
3548 lib/accelerated/x86/asm-coff/appro-aes-gcm-x86-64-coff.s,
3549 lib/accelerated/x86/asm-coff/appro-aes-x86-64-coff.s,
3550 lib/accelerated/x86/asm-coff/cpuid-x86-64-coff.s,
3551 lib/accelerated/x86/asm-coff/padlock-x86-64-coff.s: added coff files
3554 2011-10-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3556 * lib/accelerated/x86/Makefile.am,
3557 lib/accelerated/x86/asm-coff/appro-aes-x86-coff.s,
3558 lib/accelerated/x86/asm-coff/cpuid-x86-coff.s,
3559 lib/accelerated/x86/asm-coff/padlock-x86-coff.s,
3560 lib/accelerated/x86/coff/appro-aes-x86-coff.s,
3561 lib/accelerated/x86/coff/padlock-x86-coff.s: Added coff version of
3564 2011-10-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3566 * .gitignore: more files to ignore
3568 2011-10-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3570 * configure.ac, lib/accelerated/x86/Makefile.am,
3571 lib/accelerated/x86/coff/appro-aes-x86-coff.s,
3572 lib/accelerated/x86/coff/padlock-x86-coff.s: Added COFF versions of
3575 2011-10-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3577 * THANKS: Added Jan.
3579 2011-10-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3581 * lib/minitasn1/coding.c: use coding.c from libtasn1 git, to avoid
3582 issue when compiled with gcc-4.6.
3584 2011-10-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3586 * lib/accelerated/x86/aes-padlock.c: Corrected PHE-partial test.
3588 2011-10-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3590 * NEWS: documented fixes
3592 2011-10-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3594 * lib/gnutls_global.c: library mismatch error is no longer used
3596 2011-10-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3598 * lib/accelerated/x86/Makefile.am,
3599 lib/accelerated/x86/aes-padlock.c,
3600 lib/accelerated/x86/aes-padlock.h,
3601 lib/accelerated/x86/asm/padlock-common.s,
3602 lib/accelerated/x86/sha-padlock.h: PHE-partial detection is not
3603 being done, instead of checking for VIA nano.
3605 2011-10-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3607 * lib/accelerated/x86/Makefile.am,
3608 lib/accelerated/x86/aes-padlock.h,
3609 lib/accelerated/x86/asm/padlock-common.s: No need to check for
3610 padlock nano in 32-bit systems, so simplify things.
3612 2011-10-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3614 * lib/gnutls_hash_int.c: initialize only a fully available hash
3616 2011-10-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3618 * lib/accelerated/x86/asm/padlock-common.s: is_padlock_nano is
3619 behaving properly and saving registers.
3621 2011-10-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3623 * lib/gnutls_errors.c: removed libextra error codes.
3625 2011-10-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3627 * guile/modules/gnutls.scm, guile/src/make-enum-header.scm: removed
3628 extra.h header from guile code.
3630 2011-10-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3632 * lib/includes/gnutls/gnutls.h.in: removed libextra errors.
3634 2011-10-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3636 * src/serv.c, src/udp-serv.c: added extra headers.
3638 2011-10-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3640 * .gitignore, doc/latex/.gitignore, gl/Makefile.am, gl/accept.c,
3641 gl/bind.c, gl/frexp.c, gl/frexpl.c, gl/getpeername.c, gl/gettext.h,
3642 gl/isnan.c, gl/listen.c, gl/m4/arpa_inet_h.m4, gl/m4/frexp.m4,
3643 gl/m4/frexpl.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4,
3644 gl/m4/include_next.m4, gl/m4/inet_pton.m4, gl/m4/isnand.m4,
3645 gl/m4/isnanl.m4, gl/m4/ldexpl.m4, gl/m4/math_h.m4,
3646 gl/m4/printf-frexpl.m4, gl/m4/printf.m4, gl/m4/stdlib_h.m4,
3647 gl/m4/vasnprintf.m4, gl/math.in.h, gl/override/lib/gettext.h.diff,
3648 gl/printf-frexp.c, gl/printf-frexpl.c, gl/recvfrom.c, gl/sendto.c,
3649 gl/setsockopt.c, gl/shutdown.c, gl/socket.c, gl/stdlib.in.h,
3650 gl/tests/Makefile.am, gl/tests/arpa_inet.in.h,
3651 gl/tests/inet_pton.c, gl/tests/test-accept.c,
3652 gl/tests/test-arpa_inet.c, gl/tests/test-bind.c,
3653 gl/tests/test-getpeername.c, gl/tests/test-inet_pton.c,
3654 gl/tests/test-isnanl.h, gl/tests/test-listen.c,
3655 gl/tests/test-recvfrom.c, gl/tests/test-sendto.c,
3656 gl/tests/test-setsockopt.c, gl/tests/test-shutdown.c,
3657 gl/vasnprintf.c, maint.mk: added new gnulib and modules.
3659 2011-10-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3661 * extra/Makefile.am, lib/Makefile.am, lib/accelerated/Makefile.am,
3662 lib/accelerated/x86/Makefile.am, lib/algorithms/Makefile.am,
3663 lib/auth/Makefile.am, lib/ext/Makefile.am, lib/nettle/Makefile.am,
3664 lib/opencdk/Makefile.am, lib/openpgp/Makefile.am, src/Makefile.am:
3665 more builddir fixes by David Hoyt.
3667 2011-10-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3669 * lib/Makefile.am: Added includes in Makefile.am
3671 2011-10-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3673 * lib/accelerated/Makefile.am, lib/algorithms/Makefile.am,
3674 lib/auth/Makefile.am, lib/ext/Makefile.am,
3675 lib/minitasn1/Makefile.am, lib/nettle/Makefile.am,
3676 lib/opencdk/Makefile.am, lib/openpgp/Makefile.am: Added
3677 -I$(builddir)/../../gl to CFLAGS.
3679 2011-10-21 Simon Josefsson <simon@josefsson.org>
3681 * lib/accelerated/x86/Makefile.am: Add -I to fix building. Reported by "Hoyt, David" <hoyt6@llnl.gov>.
3683 2011-10-21 Simon Josefsson <simon@josefsson.org>
3685 * lib/Makefile.am, lib/x509/Makefile.am: Also add -I's for gnulib's
3686 build directory, for mingw. Reported by "Hoyt, David" <hoyt6@llnl.gov>.
3688 2011-10-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3690 * NEWS, extra/gnutls_extra.c, guile/src/extra.c,
3691 lib/auth/srp_passwd.c, lib/gnutls_srp.c: removed more extra.h
3694 2011-10-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3696 * lib/accelerated/x86/asm/appro-aes-gcm-x86-64.s,
3697 lib/accelerated/x86/asm/appro-aes-x86-64.s,
3698 lib/accelerated/x86/asm/appro-aes-x86.s,
3699 lib/accelerated/x86/asm/cpuid-x86-64.s,
3700 lib/accelerated/x86/asm/cpuid-x86.s,
3701 lib/accelerated/x86/asm/padlock-common.s,
3702 lib/accelerated/x86/asm/padlock-x86-64.s,
3703 lib/accelerated/x86/asm/padlock-x86.s: updated gnustack note.
3705 2011-10-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3707 * src/certtool-common.c, src/pkcs11.c, src/psk.c, src/srptool.c,
3708 src/tests.c, src/tls_test.c: extra.h is no more.
3710 2011-10-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3712 * Makefile.am, NEWS, README, configure.ac, doc/Makefile.am,
3713 doc/cha-internals.texi, doc/examples/Makefile.am,
3714 doc/manpages/Makefile.am, doc/reference/Makefile.am,
3715 extra/Makefile.am, extra/gnutls-extra.pc.in, extra/gnutls_extra.c,
3716 extra/gnutls_openssl.c, extra/includes/Makefile.am,
3717 extra/includes/gnutls/openssl.h, extra/libgnutls-extra.map,
3718 extra/openssl_compat.c, extra/openssl_compat.h,
3719 guile/src/Makefile.am, libextra/Makefile.am,
3720 libextra/gnutls-extra.pc.in, libextra/gnutls_extra.c,
3721 libextra/gnutls_openssl.c, libextra/includes/Makefile.am,
3722 libextra/includes/gnutls/extra.h,
3723 libextra/includes/gnutls/openssl.h, libextra/libgnutls-extra.map,
3724 libextra/openssl_compat.c, libextra/openssl_compat.h,
3725 src/Makefile.am, tests/Makefile.am, tests/openpgp-keyring.c,
3726 tests/suite/Makefile.am: libgnutls-extra is no more.
3728 2011-10-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3730 * lib/pkcs11.c, lib/pkcs11_privkey.c, lib/pkcs11_secret.c,
3731 lib/pkcs11_write.c: Added Stef to authors of pkcs11.
3733 2011-10-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3735 * NEWS, THANKS: documented fix
3737 2011-10-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3739 * lib/x509/common.c: Corrected bug in gnutls_x509_data2hex. Report
3740 and fix by Vincent Untz.
3742 2011-10-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3744 * NEWS: updated for register_md5_handler().
3746 2011-10-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3748 * libextra/includes/gnutls/extra.h, libextra/libgnutls-extra.map:
3749 completely drop gnutls_register_md5_handler()
3751 2011-10-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3753 * lib/accelerated/x86/asm/padlock-common.s: Added gnu-stack note.
3755 2011-10-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3757 * NEWS, doc/scripts/Makefile.am: released 3.0.4
3759 2011-10-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3761 * tests/pathlen/ca-no-pathlen.pem,
3762 tests/pathlen/no-ca-or-pathlen.pem: updated tests for new key ID
3764 2011-10-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3766 * lib/x509/privkey.c: key id is being calculated the same way in
3767 private keys as in public keys.
3769 2011-10-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3771 * doc/Makefile.am, doc/cha-intro-tls.texi, doc/cha-tls-app.texi,
3772 doc/gnutls.texi, doc/latex/Makefile.am, doc/latex/gnutls.tex,
3773 doc/scripts/gdoc, doc/scripts/mytexi2latex, doc/scripts/sort1.pl,
3774 doc/scripts/split-texi.pl, doc/scripts/split.pl,
3775 doc/sec-tls-app.texi, tests/nist-pkits/build-chain: 'How to use TLS
3776 in application protocols' section was moved to introduction to TLS.
3779 2011-10-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3781 * src/tests.c, src/tests.h, src/tls_test.c: Added a test for servers
3782 not accepting small records.
3784 2011-10-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3786 * lib/accelerated/x86/asm/padlock-x86-64.s,
3787 lib/accelerated/x86/asm/padlock-x86.s: new version of padlock by
3790 2011-10-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3792 * NEWS, configure.ac, m4/hooks.m4: bumped versions
3794 2011-10-12 Simon Josefsson <simon@josefsson.org>
3796 * .gitignore: Add and sort.
3798 2011-10-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3800 * doc/cha-intro-tls.texi: updated text
3802 2011-10-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3804 * m4/hooks.m4: check for nettle 2.4 or later
3806 2011-10-10 Simon Josefsson <simon@josefsson.org>
3808 * src/cli.c: Fix type of keyid (finally!).
3810 2011-10-10 Simon Josefsson <simon@josefsson.org>
3812 * doc/manpages/Makefile.am, lib/includes/gnutls/abstract.h: More doc
3815 2011-10-10 Simon Josefsson <simon@josefsson.org>
3817 * lib/gnutls_x509.c: GTK-DOC doc fix.
3819 2011-10-10 Simon Josefsson <simon@josefsson.org>
3821 * src/cli.c: Use gnutls_openpgp_keyid_t type for keyid variable.
3823 2011-10-10 Simon Josefsson <simon@josefsson.org>
3825 * src/cli.c: Include stdint.h to get uint8_t.
3827 2011-10-10 Simon Josefsson <simon@josefsson.org>
3829 * src/cli.c: Revert "avoid usage of C99 constructs." This reverts commit 643ebdf12b415fc3edd3b7bc12654bc92d3aed24.
3831 2011-10-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3833 * lib/accelerated/x86/asm/padlock-x86-64.s,
3834 lib/accelerated/x86/asm/padlock-x86.s: updated Andy's code.
3835 padlock_shax_blocks does not require any more, the state to be of
3838 2011-10-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3840 * src/tests.c: Corrected check for AES-GCM
3842 2011-10-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3844 * src/tests.c, src/tests.h, src/tls_test.c: test for camellia
3846 2011-10-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3848 * src/cli.c: avoid usage of C99 constructs.
3850 2011-10-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3852 * lib/accelerated/x86/Makefile.am,
3853 lib/accelerated/x86/asm/padlock-common.s,
3854 lib/accelerated/x86/asm/padlock-x86-64.s,
3855 lib/accelerated/x86/asm/padlock-x86.s: is_padlock_nano moved to
3856 padlock-common.s to allow easier upgrade to Andy's newer code.
3858 2011-10-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3860 * tests/cipher-test.c: Added more elaborate test of hash functions.
3862 2011-10-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3864 * lib/gnutls_int.h, lib/x509/mpi.c: HASH2MAC macro is no more.
3866 2011-10-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3868 * NEWS, lib/gnutls_ui.c, lib/x509/common.c, lib/x509/common.h,
3869 lib/x509/crq.c, lib/x509/output.c, lib/x509/x509.c, src/certtool.c:
3870 Key ID calculation is now consistent on all structures. It is a SHA1
3871 hash of the subjectPublicKeyInfo structures.
3873 2011-10-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3875 * doc/cha-library.texi: simplified documentation
3877 2011-10-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3879 * NEWS, doc/cha-intro-tls.texi: documentation update
3881 2011-10-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3883 * src/tests.c, src/tests.h, src/tls_test.c: Added tests for ECDHE,
3886 2011-10-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3888 * NEWS, lib/gnutls_sig.c: fixes to enable the external signing
3889 callback to operate with TLS 1.2
3891 2011-10-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3893 * NEWS, doc/cha-auth.texi, doc/cha-cert-auth.texi, lib/auth/cert.c,
3894 lib/gnutls_cert.c, lib/gnutls_privkey.c, lib/gnutls_x509.c,
3895 lib/includes/gnutls/abstract.h, lib/includes/gnutls/compat.h,
3896 lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map: Added new
3897 signing callback in gnutls_privkey_t.
3899 2011-10-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3901 * gl/Makefile.am, gl/m4/math_h.m4, gl/math.in.h: updated gnulib.
3903 2011-10-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3905 * NEWS: documented fix
3907 2011-10-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3909 * lib/x509/x509.c: corrected bug in key id extraction. Reported by
3912 2011-10-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3914 * lib/accelerated/x86/aes-padlock.c,
3915 lib/accelerated/x86/aes-padlock.h,
3916 lib/accelerated/x86/asm/padlock-x86-64.s,
3917 lib/accelerated/x86/asm/padlock-x86.s,
3918 lib/accelerated/x86/hmac-padlock.c,
3919 lib/accelerated/x86/sha-padlock.c, src/benchmark-cipher.c: better
3920 detection of padlock PHE.
3922 2011-10-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3924 * .gitignore, NEWS, lib/accelerated/Makefile.am,
3925 lib/accelerated/accelerated.c, lib/accelerated/x86/Makefile.am,
3926 lib/accelerated/x86/aes-padlock.c,
3927 lib/accelerated/x86/aes-padlock.h,
3928 lib/accelerated/x86/hmac-padlock.c,
3929 lib/accelerated/x86/sha-padlock.c,
3930 lib/accelerated/x86/sha-padlock.h, lib/accelerated/x86/x86.h,
3931 lib/nettle/mac.c, tests/cipher-test.c: Updates for padlock hashes in
3932 C7 nano. Requires a part of nettle to be included.
3934 2011-10-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3936 * lib/accelerated/x86/aes-gcm-padlock.c: Always use encryption
3939 2011-10-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3941 * src/Makefile.am, src/serv.c: libextra is not needed for neither
3944 2011-10-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3946 * configure.ac: corrected path
3948 2011-10-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3950 * lib/accelerated/x86/asm/padlock-x86-64.s,
3951 lib/accelerated/x86/asm/padlock-x86.s: updated padlock code.
3953 2011-10-04 Nikos Mavrogiannopoulos <nikos@thingfish.esat.kuleuven.be>
3955 * lib/gnutls_str_array.h, lib/nettle/rnd.c, lib/system.c: fixes in
3956 headers. Suggested by Bjorn Christensen.
3958 2011-10-04 Nikos Mavrogiannopoulos <nikos@thingfish.esat.kuleuven.be>
3960 * lib/accelerated/Makefile.am, lib/accelerated/intel/.gitignore,
3961 lib/accelerated/intel/Makefile.am, lib/accelerated/intel/README,
3962 lib/accelerated/intel/aes-gcm-padlock.c,
3963 lib/accelerated/intel/aes-gcm-x86.c,
3964 lib/accelerated/intel/aes-padlock.c,
3965 lib/accelerated/intel/aes-padlock.h,
3966 lib/accelerated/intel/aes-x86.c, lib/accelerated/intel/aes-x86.h,
3967 lib/accelerated/intel/asm/appro-aes-gcm-x86-64.s,
3968 lib/accelerated/intel/asm/appro-aes-x86-64.s,
3969 lib/accelerated/intel/asm/appro-aes-x86.s,
3970 lib/accelerated/intel/asm/cpuid-x86-64.s,
3971 lib/accelerated/intel/asm/cpuid-x86.s,
3972 lib/accelerated/intel/asm/padlock-x86-64.s,
3973 lib/accelerated/intel/asm/padlock-x86.s,
3974 lib/accelerated/intel/license.txt,
3975 lib/accelerated/intel/sha-padlock.c, lib/accelerated/intel/x86.h,
3976 lib/accelerated/x86/.gitignore, lib/accelerated/x86/Makefile.am,
3977 lib/accelerated/x86/README, lib/accelerated/x86/aes-gcm-padlock.c,
3978 lib/accelerated/x86/aes-gcm-x86.c,
3979 lib/accelerated/x86/aes-padlock.c,
3980 lib/accelerated/x86/aes-padlock.h, lib/accelerated/x86/aes-x86.c,
3981 lib/accelerated/x86/aes-x86.h,
3982 lib/accelerated/x86/asm/appro-aes-gcm-x86-64.s,
3983 lib/accelerated/x86/asm/appro-aes-x86-64.s,
3984 lib/accelerated/x86/asm/appro-aes-x86.s,
3985 lib/accelerated/x86/asm/cpuid-x86-64.s,
3986 lib/accelerated/x86/asm/cpuid-x86.s,
3987 lib/accelerated/x86/asm/padlock-x86-64.s,
3988 lib/accelerated/x86/asm/padlock-x86.s,
3989 lib/accelerated/x86/license.txt, lib/accelerated/x86/sha-padlock.c,
3990 lib/accelerated/x86/x86.h: intel directory renamed to x86.
3992 2011-10-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3996 2011-10-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
3998 * .gitignore, gl/Makefile.am, gl/error.c, gl/float.c,
3999 gl/float.in.h, gl/fstat.c, gl/itold.c, gl/lseek.c, gl/m4/close.m4,
4000 gl/m4/dup2.m4, gl/m4/fdopen.m4, gl/m4/float_h.m4, gl/m4/fstat.m4,
4001 gl/m4/gnulib-cache.m4, gl/m4/gnulib-common.m4,
4002 gl/m4/gnulib-comp.m4, gl/m4/msvc-nothrow.m4, gl/m4/pathmax.m4,
4003 gl/m4/stdio_h.m4, gl/m4/sys_stat_h.m4, gl/m4/unistd_h.m4,
4004 gl/math.in.h, gl/msvc-inval.c, gl/msvc-inval.h, gl/msvc-nothrow.c,
4005 gl/msvc-nothrow.h, gl/opendir.c, gl/sockets.c, gl/sockets.h,
4006 gl/stdio.in.h, gl/strings.in.h, gl/sys_stat.in.h,
4007 gl/tests/Makefile.am, gl/tests/close.c, gl/tests/dup2.c,
4008 gl/tests/fdopen.c, gl/tests/msvc-inval.c, gl/tests/msvc-inval.h,
4009 gl/tests/test-close.c, gl/tests/test-dup2.c, gl/tests/test-fgetc.c,
4010 gl/tests/test-fputc.c, gl/tests/test-fread.c,
4011 gl/tests/test-fwrite.c, gl/unistd.in.h, gl/w32sock.h, maint.mk:
4014 2011-10-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4016 * lib/gnutls_sig.c: added an assert
4018 2011-10-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4020 * doc/cha-gtls-app.texi: doc fixes
4022 2011-10-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4024 * lib/gnutls_dtls.c: replaced uint type.
4026 2011-10-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4028 * lib/nettle/egd.c, lib/nettle/rnd.c: fix compilation in windows
4030 2011-10-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4032 * doc/cha-library.texi: updated text.
4034 2011-10-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4036 * lib/accelerated/intel/Makefile.am,
4037 lib/accelerated/intel/aes-padlock.c,
4038 lib/accelerated/intel/aes-padlock.h,
4039 lib/accelerated/intel/sha-padlock.c, lib/gnutls_str.h: Added ability
4040 to hash and hmac with VIA padlock.
4042 2011-10-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4044 * NEWS: documented updates
4046 2011-10-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4048 * lib/nettle/mac.c: optimizations in hmac.
4050 2011-10-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4052 * lib/crypto-backend.h, lib/gnutls_cipher_int.h,
4053 lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_mpi.h,
4054 lib/gnutls_pk.h, lib/nettle/cipher.c, lib/nettle/mac.c,
4055 lib/nettle/mpi.c, lib/nettle/pk.c, lib/nettle/rnd.c,
4056 libextra/Makefile.am, libextra/fipsmd5.c, libextra/gnutls_extra.c:
4057 The hash_fast() and hmac_fast() functions can be registered as well
4058 to allow backends with optimized (hw) implementations. In the nettle
4059 backend the different is one memory allocation less.
4061 2011-09-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4063 * lib/gnutls_cipher_int.h, lib/gnutls_hash_int.h, lib/gnutls_mpi.h,
4064 lib/gnutls_pk.h, lib/nettle/cipher.c, lib/nettle/mac.c,
4065 lib/nettle/mpi.c, lib/nettle/pk.c, lib/nettle/rnd.c: operations
4066 structures were made constants.
4068 2011-09-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4070 * lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_state.c:
4071 simplified usage of resume_true and resume_false.
4073 2011-09-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4075 * lib/gnutls_constate.c: simplified assignment of server_write and
4078 2011-09-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4080 * lib/accelerated/intel/aes-padlock.c,
4081 lib/accelerated/intel/asm/padlock-x86.s: movdqa replaced with movaps
4082 (C3 doesn't support SSE2 but only SSE)
4084 2011-09-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4086 * lib/accelerated/intel/aes-padlock.c: manually keep the IV.
4088 2011-09-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4090 * lib/accelerated/intel/asm/padlock-x86.s: re-added ecb
4092 2011-09-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4094 * lib/accelerated/intel/asm/padlock-x86-64.s,
4095 lib/accelerated/intel/asm/padlock-x86.s: removed unused modes.
4097 2011-09-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4099 * src/benchmark-cipher.c, src/benchmark.h, src/cli-gaa.c,
4100 src/cli-gaa.h, src/cli.gaa: Allow benchmarking the software version
4103 2011-09-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4105 * configure.ac, src/p11common.c: fixed compilation without p11-kit
4107 2011-09-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4109 * lib/accelerated/intel/aes-padlock.c: enabled VIA acceleration.
4111 2011-09-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4113 * src/benchmark.c: small update
4115 2011-09-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4117 * THANKS: more people to thank
4119 2011-09-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4121 * doc/examples/ex-pkcs11-list.c, src/benchmark.c, src/udp-serv.c:
4122 include config.h where needed.
4124 2011-09-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4126 * tests/suite/testcompat-main: worked around openssl 1.0.0e bug
4129 2011-09-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4131 * src/udp-serv.c: udp-serv includes config.h.
4133 2011-09-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4135 * lib/opencdk/read-packet.c, lib/opencdk/stream.c: corrections in
4138 2011-09-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4140 * configure.ac, lib/accelerated/Makefile.am,
4141 lib/accelerated/accelerated.c, lib/accelerated/intel/Makefile.am,
4142 lib/accelerated/intel/x86.h, lib/accelerated/x86.h: Better usage of
4143 X86 conditionals to simplify and avoid an undefined warning in
4146 2011-09-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4148 * lib/nettle/egd.c: a hack to allow compilation on systems without
4151 2011-09-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4153 * lib/gnutls_pcert.c: Disable openpgp code when not requested.
4154 Reported by Bjorn Christensen.
4156 2011-09-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4158 * tests/cve-2009-1416.c, tests/mpi.c, tests/rng-fork.c,
4159 tests/x509cert-tl.c, tests/x509cert.c: more silent tests.
4161 2011-09-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4163 * NEWS, gl/m4/valgrind-tests.m4,
4164 gl/override/m4/valgrind-tests.m4.diff, lib/gnutls_cipher.c,
4165 lib/gnutls_compress.c, lib/gnutls_compress.h,
4166 lib/gnutls_constate.c, lib/gnutls_int.h, tests/Makefile.am,
4167 tests/libgcrypt.supp, tests/safe-renegotiation/Makefile.am,
4168 tests/safe-renegotiation/suppressions.valgrind,
4169 tests/suppressions.valgrind: Further optimizations in the
4170 compression code. Re-enabled the test program by suppressing the
4173 2011-09-23 Simon Josefsson <simon@josefsson.org>
4175 * tests/utils.c: Redeuce self-test noise.
4177 2011-09-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4179 * .gitignore: more files to ignore
4181 2011-09-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4183 * configure.ac, doc/latex/Makefile.am, doc/latex/cover-epub.tex,
4184 doc/latex/cover.tex.in, doc/latex/epub.tex,
4185 doc/latex/macros-epub.tex: Added epub version of manual
4187 2011-09-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4189 * doc/latex/gnutls.bib: corrected typos
4191 2011-09-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4193 * doc/latex/gnutls.tex, doc/scripts/mytexi2latex: pdf is the image
4196 2011-09-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4198 * tests/Makefile.am: deflate test moved out
4200 2011-09-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4202 * lib/gnutls_compress.c: removed uneeded vars
4204 2011-09-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4206 * lib/gnutls_cipher.c, lib/gnutls_compress.c,
4207 lib/gnutls_compress.h, lib/gnutls_record.c, tests/Makefile.am,
4208 tests/eagain-common.h, tests/mini-deflate.c: Simplified and
4209 corrected decompression and compression. Added test program.
4211 2011-09-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4213 * src/common.c: print session ID
4215 2011-09-21 Simon Josefsson <simon@josefsson.org>
4217 * .gitignore, NEWS, lib/includes/gnutls/x509.h, lib/x509/output.c,
4218 lib/x509/x509.c, tests/infoaccess.c: libgnutls:
4219 gnutls_x509_crt_print supports printing AIA fields. Support
4222 2011-09-21 Simon Josefsson <simon@josefsson.org>
4224 * lib/includes/gnutls/x509.h: Improve gnutls_info_access_what_t
4227 2011-09-21 Simon Josefsson <simon@josefsson.org>
4229 * configure.ac, doc/scripts/gdoc, lib/auth/cert.c: Fix syntax-check
4232 2011-09-21 Simon Josefsson <simon@josefsson.org>
4234 * gl/Makefile.am, gl/closedir.c, gl/dirent-private.h,
4235 gl/dirent.in.h, gl/filename.h, gl/isnan.c, gl/m4/argp.m4,
4236 gl/m4/closedir.m4, gl/m4/dirent_h.m4, gl/m4/environ.m4,
4237 gl/m4/fcntl-o.m4, gl/m4/fcntl_h.m4, gl/m4/frexp.m4,
4238 gl/m4/frexpl.m4, gl/m4/getcwd.m4, gl/m4/getpass.m4,
4239 gl/m4/gnulib-comp.m4, gl/m4/iconv.m4, gl/m4/include_next.m4,
4240 gl/m4/ldexpl.m4, gl/m4/lseek.m4, gl/m4/msvc-inval.m4,
4241 gl/m4/nocrash.m4, gl/m4/opendir.m4, gl/m4/pathmax.m4,
4242 gl/m4/printf-frexpl.m4, gl/m4/printf.m4, gl/m4/readdir.m4,
4243 gl/m4/setenv.m4, gl/m4/signbit.m4, gl/m4/sleep.m4,
4244 gl/m4/ssize_t.m4, gl/m4/stdint.m4, gl/m4/stdio_h.m4,
4245 gl/m4/strings_h.m4, gl/m4/sys_stat_h.m4, gl/m4/sys_time_h.m4,
4246 gl/m4/sys_types_h.m4, gl/m4/time_h.m4, gl/m4/unistd_h.m4,
4247 gl/m4/vasnprintf.m4, gl/math.in.h, gl/opendir.c, gl/readdir.c,
4248 gl/stdio.in.h, gl/strings.in.h, gl/sys_stat.in.h, gl/sys_time.in.h,
4249 gl/sys_types.in.h, gl/sys_uio.in.h, gl/tests/Makefile.am,
4250 gl/tests/dup2.c, gl/tests/infinity.h, gl/tests/init.sh,
4251 gl/tests/msvc-inval.c, gl/tests/msvc-inval.h, gl/tests/nan.h,
4252 gl/tests/pathmax.h, gl/tests/putenv.c, gl/tests/stat.c,
4253 gl/tests/test-dup2.c, gl/tests/test-fcntl-h.c,
4254 gl/tests/test-fdopen.c, gl/tests/test-fgetc.c,
4255 gl/tests/test-fprintf-posix.h, gl/tests/test-frexp.c,
4256 gl/tests/test-frexpl.c, gl/tests/test-fseeko4.c,
4257 gl/tests/test-fseeko4.sh, gl/tests/test-fstat.c,
4258 gl/tests/test-ftello4.c, gl/tests/test-ftello4.sh,
4259 gl/tests/test-isnand.h, gl/tests/test-isnanf.h,
4260 gl/tests/test-isnanl.h, gl/tests/test-pathmax.c,
4261 gl/tests/test-printf-posix.h, gl/tests/test-signbit.c,
4262 gl/tests/test-sys_socket.c, gl/tests/test-sys_stat.c,
4263 gl/tests/test-sys_types.c, gl/tests/test-time.c, gl/unistd.in.h,
4264 gl/wchar.in.h, maint.mk: Update gnulib files.
4266 2011-09-21 Simon Josefsson <simon@josefsson.org>
4268 * lib/gnutls_dtls.c, lib/pkcs11_privkey.c, lib/x509/x509.c: Fix
4269 gtk-doc Since: tags.
4271 2011-09-21 Simon Josefsson <simon@josefsson.org>
4273 * doc/manpages/Makefile.am: Generated.
4275 2011-09-21 Simon Josefsson <simon@josefsson.org>
4277 * NEWS, doc/manpages/Makefile.am, lib/includes/gnutls/x509.h,
4278 lib/libgnutls.map, lib/pkix.asn, lib/pkix_asn1_tab.c,
4279 lib/x509/x509.c, tests/Makefile.am, tests/infoaccess.c: Added
4280 gnutls_x509_crt_get_authority_info_access.
4282 2011-09-21 Simon Josefsson <simon@josefsson.org>
4284 * lib/accelerated/intel/aes-padlock.c: Make it build with -Wunused.
4286 2011-09-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4288 * src/serv.c: do not trust getaddrinfo if IPv6 is not enabled. Patch
4291 2011-09-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4293 * .gitignore, doc/scripts/split-texi.pl: Added missing files
4295 2011-09-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4297 * configure.ac, lib/gnutls_privkey.c, lib/pkcs11.c, src/cli.c:
4298 Compilation fixes when pkcs11 is not enabled.
4300 2011-09-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4302 * doc/Makefile.am, doc/gnutls.texi, doc/scripts/gdoc: enumerations
4303 are visible in the texinfo output.
4305 2011-09-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4307 * NEWS: released 3.0.3
4309 2011-09-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4311 * lib/accelerated/intel/Makefile.am: Added missing file.
4313 2011-09-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4315 * doc/gnutls.texi, doc/latex/Makefile.am: doc fixes
4317 2011-09-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4319 * NEWS, lib/accelerated/intel/aes-padlock.c: VIA is disabled by
4322 2011-09-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4324 * configure.ac, m4/hooks.m4: bumped version
4326 2011-09-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4328 * NEWS, lib/auth/cert.c: Corrected memory leak in privkey
4329 deinitialization. Reported by Dan Winship.
4331 2011-09-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4333 * lib/accelerated/accelerated.c, lib/accelerated/intel/Makefile.am,
4334 lib/accelerated/intel/aes-padlock.c,
4335 lib/accelerated/intel/aes-x86.c,
4336 lib/accelerated/intel/asm/cpuid-x86-64.s,
4337 lib/accelerated/intel/asm/cpuid-x86.s, lib/accelerated/x86.h:
4338 eliminated inline assembly.
4340 2011-09-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4342 * NEWS, lib/gnutls_dtls.c, lib/gnutls_int.h, lib/gnutls_record.c,
4343 lib/includes/gnutls/dtls.h, lib/libgnutls.map: Added
4344 gnutls_record_get_discarded() to return the number of discarded
4345 record packets in a DTLS session.
4347 2011-09-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4349 * configure.ac, lib/accelerated/Makefile.am,
4350 lib/accelerated/accelerated.c, lib/accelerated/x86.h: Added better
4351 detection of capabilities in 386. If cpuid doesn't exist don't try
4354 2011-09-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4356 * doc/cha-auth.texi, doc/scripts/mytexi2latex: updates on SRP
4359 2011-09-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4361 * src/benchmark.c: stress that values are bytes and not bits
4363 2011-09-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4365 * src/serv-gaa.c: new gaa
4367 2011-09-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4369 * doc/latex/macros.tex: removed unused macro
4371 2011-09-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4373 * doc/cha-library.texi: corrected name of gnutls_global_set_mutex.
4375 2011-09-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4377 * lib/includes/gnutls/compat.h, lib/includes/gnutls/gnutls.h.in:
4378 Functions for RSA-EXPORT were marked as deprecated.
4380 2011-09-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4382 * doc/cha-gtls-app.texi, lib/gnutls_errors.c: documentation update
4384 2011-09-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4386 * doc/cha-internals.texi: doc updates
4388 2011-09-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4390 * doc/cha-library.texi, doc/cha-support.texi: Downloading and
4391 installing moved to main document
4393 2011-09-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4395 * doc/latex/gnutls.tex: corrected page numbers.
4397 2011-09-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4399 * lib/accelerated/intel/aes-padlock.c: Do not prefer GCM in padlock
4402 2011-09-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4406 2011-09-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4408 * doc/scripts/gdoc: functions and enumerations are being added in
4411 2011-09-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4413 * doc/Makefile.am, doc/cha-gtls-app.texi, doc/cha-internals.texi,
4414 doc/gnutls-objects.eps: removed gnutls-objects.
4416 2011-09-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4418 * doc/cha-gtls-app.texi: updated
4420 2011-09-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4422 * lib/gnutls_buffers.c, lib/gnutls_record.c: clarified format of
4423 sequence number in gnutls_record_recv_seq.
4425 2011-09-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4427 * doc/cha-cert-auth.texi: Added a paragraph on opensc and trousers
4430 2011-09-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4432 * lib/accelerated/x86.h: added license
4434 2011-09-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4436 * NEWS, doc/cha-auth.texi, doc/cha-cert-auth.texi,
4437 doc/cha-gtls-app.texi, doc/cha-intro-tls.texi,
4438 doc/latex/gnutls.tex, doc/latex/macros.tex,
4439 doc/scripts/mytexi2latex, lib/includes/gnutls/gnutls.h.in: updated
4440 documentation. The function descriptions were converted to floats.
4442 2011-09-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4444 * NEWS, lib/accelerated/intel/aes-padlock.c: disable the 64-bit
4445 padlock until it is tested.
4447 2011-09-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4449 * lib/accelerated/x86.h: corrected typo in cpuid for 386.
4451 2011-09-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4453 * doc/scripts/mytexi2latex: fix on double arguments
4455 2011-09-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4457 * .gitignore, doc/cha-cert-auth.texi, doc/cha-intro-tls.texi,
4458 doc/gnutls.texi, doc/latex/Makefile.am, doc/latex/gnutls.tex,
4459 doc/latex/macros.tex, doc/scripts/gdoc, doc/scripts/mytexi2latex,
4460 doc/scripts/split.pl, lib/includes/gnutls/dtls.h,
4461 lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/pkcs12.h,
4462 lib/includes/gnutls/x509.h: Modified gdoc to be able to handle
4463 enumerations. Only valid to latex.
4465 2011-09-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4467 * NEWS, lib/auth/ecdh_common.c, lib/nettle/ecc_free.c,
4468 lib/nettle/pk.c, lib/x509/verify-high.c, tests/x509cert-tl.c,
4469 tests/x509cert.c: Memory leak fixes in ECC ciphersuites and the
4472 2011-09-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4474 * lib/accelerated/intel/aes-gcm-padlock.c,
4475 lib/accelerated/intel/aes-padlock.c,
4476 lib/accelerated/intel/aes-padlock.h: simplified ecb encryption.
4478 2011-09-09 Simon Josefsson <simon@josefsson.org>
4480 * src/prime.c: Fix build warnings.
4482 2011-09-09 Simon Josefsson <simon@josefsson.org>
4484 * lib/pkcs11_write.c: Fix possible infloop and build warning about
4485 uninitialied variable.
4487 2011-09-09 Simon Josefsson <simon@josefsson.org>
4489 * lib/accelerated/intel/aes-gcm-padlock.c,
4490 lib/accelerated/intel/aes-padlock.c,
4491 lib/accelerated/intel/aes-padlock.h, lib/gnutls_sig.c,
4492 lib/gnutls_state.c, lib/gnutls_ui.c,
4493 lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/openpgp.h,
4494 lib/includes/gnutls/x509.h, lib/openpgp/gnutls_openpgp.c,
4495 lib/pkcs11_privkey.c: Fix build errors.
4497 2011-09-09 Simon Josefsson <simon@josefsson.org>
4499 * doc/manpages/Makefile.am: Generated.
4501 2011-09-09 Simon Josefsson <simon@josefsson.org>
4503 * gl/m4/getcwd.m4, gl/m4/gnulib-common.m4, gl/m4/largefile.m4,
4504 gl/tests/init.sh, gl/tests/lstat.c, gl/tests/open.c,
4505 gl/tests/stat.c, gl/tests/test-float.c, gl/unistd.in.h, maint.mk:
4506 Update gnulib files.
4508 2011-09-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4510 * lib/gnutls_handshake.c, lib/gnutls_sig.c, lib/gnutls_srp.c,
4511 lib/gnutls_state.c, lib/gnutls_ui.c, lib/nettle/mac.c: converted
4512 quick data hashes to _gnutls_hash_fast and the hmac equivalent.
4514 2011-09-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4516 * lib/accelerated/intel/Makefile.am,
4517 lib/accelerated/intel/aes-gcm-padlock.c,
4518 lib/accelerated/intel/aes-padlock.c,
4519 lib/accelerated/intel/aes-padlock.h,
4520 lib/accelerated/intel/aes-x86.h, lib/accelerated/intel/padlock.c:
4521 Added padlock support to GCM ciphers.
4523 2011-09-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4525 * lib/gnutls_extensions.c: do not reset length
4527 2011-09-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4529 * NEWS, lib/gnutls_extensions.c: Do not send an empty extension
4530 structure in server hello. This affects old implementations that do
4531 not support extensions. Reported by J. Cameijo Cerdeira.
4533 2011-09-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4535 * lib/gnutls_x509.c: Corrected documentation for
4536 gnutls_certificate_set_x509_trust. Reported by Stephen Lynch.
4538 2011-09-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4540 * doc/cha-internals.texi: minimized example
4542 2011-09-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4544 * lib/accelerated/intel/asm/padlock-x86-64.s,
4545 lib/accelerated/intel/asm/padlock-x86.s: Added gnustack flag
4547 2011-09-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4549 * lib/accelerated/intel/aes-gcm-x86.c,
4550 lib/accelerated/intel/aes-x86.c, lib/accelerated/intel/padlock.c,
4551 lib/crypto-api.c, lib/crypto-backend.h, lib/ext/session_ticket.c,
4552 lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h,
4553 lib/gnutls_constate.c, lib/includes/gnutls/crypto.h,
4554 lib/nettle/cipher.c, lib/x509/privkey_pkcs8.c: Added encryption flag
4555 to simplify and optimize key expansion.
4557 2011-09-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4559 * AUTHORS, lib/accelerated/accelerated.c,
4560 lib/accelerated/intel/Makefile.am,
4561 lib/accelerated/intel/aes-gcm-x86.c,
4562 lib/accelerated/intel/aes-x86.c, lib/accelerated/intel/aes-x86.h,
4563 lib/accelerated/intel/asm/padlock-x86-64.s,
4564 lib/accelerated/intel/asm/padlock-x86.s,
4565 lib/accelerated/intel/padlock.c: Added support for VIA padlock based
4566 on Andy's code (untested).
4568 2011-09-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4570 * lib/accelerated/intel/aes-x86.c, lib/accelerated/intel/aes-x86.h:
4571 corrected AES-NI code.
4573 2011-09-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4575 * lib/gnutls_x509.c: simplified
4576 gnutls_certificate_set_x509_trust_file. It uses
4577 gnutls_certificate_set_x509_trust_mem.
4579 2011-09-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4581 * lib/gnutls_x509.c, lib/x509/x509.c: Modified fix of "Allow CA
4582 importing of 0 certificates to succeed".
4583 gnutls_x509_crt_list_import() is still failing when no certificates
4584 are found and only gnutls_certificate_set_x509_trust_mem() returns
4585 zero when no certificates are found.
4587 2011-09-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4589 * NEWS, lib/gnutls_pubkey.c, lib/includes/gnutls/abstract.h,
4590 lib/libgnutls.map, lib/pkcs11.c, lib/pkcs11_int.h,
4591 lib/pkcs11_privkey.c, lib/pkcs11_write.c, lib/x509/key_decode.c,
4592 lib/x509/key_encode.c, lib/x509/privkey.c, lib/x509/x509_int.h,
4593 src/certtool-common.h, src/certtool.c, src/pkcs11.c, src/prime.c:
4594 Added support to read elliptic curve public keys from PKCS #11
4597 2011-09-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4599 * NEWS, lib/includes/gnutls/pkcs11.h, lib/libgnutls.map,
4600 lib/pkcs11.c, lib/pkcs11_int.h, lib/pkcs11_privkey.c,
4601 lib/pkcs11_write.c, src/certtool-common.c, src/certtool-common.h,
4602 src/certtool-gaa.c, src/certtool.c, src/certtool.gaa,
4603 src/p11common.c, src/p11tool-gaa.c, src/p11tool-gaa.h,
4604 src/p11tool.c, src/p11tool.gaa, src/p11tool.h, src/pkcs11.c: Added
4605 gnutls_pkcs11_privkey_generate(). p11tool can be used to generate
4608 2011-09-06 Simon Josefsson <simon@josefsson.org>
4610 * NEWS, lib/x509/x509.c, tests/parse_ca.c: libgnutls: Allow CA
4611 importing of 0 certificates to succeed. Reported by Jonathan Nieder <jrnieder@gmail.com> in
4612 <http://bugs.debian.org/640639>.
4614 2011-09-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4616 * ChangeLog: updated changelog
4618 2011-09-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4620 * README, README-alpha: simplified README
4622 2011-09-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4624 * lib/accelerated/intel/aes-x86.h: documented extra alignment
4626 2011-09-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4628 * lib/gnutls_record.c: cleaned-up code
4630 2011-09-04 Andreas Metzler <ametzler@downhill.at.eu.org>
4632 * configure.ac: Add p11-kit-1 to gnutls.pc Requires.private. If building with PKCS#11 support append p11-kit-1 to gnutls.pc
4633 Requires.private. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
4635 2011-09-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4637 * .gitignore: more files to ignore
4639 2011-09-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4641 * doc/cha-gtls-app.texi: documentation updates
4643 2011-09-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4645 * lib/gnutlsxx.cpp: updated for lowat
4647 2011-09-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4649 * doc/cha-auth.texi, doc/cha-cert-auth.texi,
4650 doc/cha-functions.texi, doc/cha-gtls-app.texi,
4651 doc/cha-intro-tls.texi: documentation updates. @acronym was removed
4654 2011-09-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4656 * lib/includes/gnutls/compat.h: set_lowat was removed as a macro.
4658 2011-09-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4660 * doc/cha-programs.texi: simplified examples
4662 2011-09-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4664 * doc/examples/ex-serv-pgp.c, tests/openpgp-certs/testcerts:
4665 explicitly enable openpgp certtype in tests.
4667 2011-09-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4671 2011-09-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4673 * configure.ac, m4/hooks.m4: bumped version
4675 2011-09-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4677 * doc/cha-bib.texi, doc/cha-gtls-app.texi, doc/latex/gnutls.bib:
4680 2011-09-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4682 * tests/openpgpself.c: explicitly enable openpgp certtype in tests.
4684 2011-09-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4686 * doc/cha-gtls-app.texi, lib/system_override.c: Added documentation
4687 on asynchronous operation.
4689 2011-08-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4691 * configure.ac: do not exit configure if p11-kit is not found.
4693 2011-08-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4695 * NEWS, lib/gnutls_priority.c: OpenPGP certificate type priority is
4696 not enabled by default.
4698 2011-08-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4700 * NEWS, doc/cha-gtls-app.texi, lib/gnutls_handshake.c,
4701 lib/gnutls_int.h, lib/gnutls_priority.c: Added %NO_EXTENSIONS
4704 2011-08-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4706 * doc/printlist.c: doc fixes
4708 2011-08-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4710 * tests/suite/testcompat-main: disabled test
4712 2011-08-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4714 * libextra/openssl_compat.c, libextra/openssl_compat.h: removed old
4715 and unused compatibility functions.
4717 2011-08-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4719 * lib/includes/gnutls/x509.h, lib/x509/crl.c, lib/x509/crq.c,
4720 lib/x509/extensions.c, lib/x509/key_decode.c, lib/x509/output.c,
4721 lib/x509/privkey.c, lib/x509/x509.c, lib/x509/x509_int.h,
4722 libextra/gnutls_openssl.c, src/crywrap/crywrap.c: corrected sign
4723 type errors for integers.
4725 2011-08-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4727 * lib/gnutls_record.c: Corrected error checking in
4730 2011-08-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4732 * doc/cha-gtls-app.texi: doc updates
4734 2011-08-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4736 * NEWS, src/certtool-cfg.c, src/common.h: removed unneeded header.
4739 2011-08-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4741 * lib/nettle/ecc.h, lib/nettle/ecc_free.c,
4742 lib/nettle/ecc_make_key.c, lib/nettle/ecc_map.c,
4743 lib/nettle/ecc_mulmod.c, lib/nettle/ecc_projective_add_point.c,
4744 lib/nettle/ecc_projective_dbl_point.c,
4745 lib/nettle/ecc_projective_dbl_point_3.c,
4746 lib/nettle/ecc_shared_secret.c, lib/nettle/ecc_sign_hash.c,
4747 lib/nettle/ecc_verify_hash.c: Avoid assert() and do not include
4750 2011-08-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4752 * tests/suite/testcompat: skip if datefudge is not available
4754 2011-08-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4756 * lib/accelerated/x86.h: Modified cpuid for 32-bit x86 to avoid a
4757 gcc issue (not finding a register).
4759 2011-08-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4761 * NEWS, src/Makefile.am, src/benchmark-cipher.c,
4762 src/benchmark-tls.c, src/benchmark.h, src/cli-gaa.c, src/cli-gaa.h,
4763 src/cli.gaa: Benchmark applications were incorporated to gnutls-cli
4765 2011-08-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4767 * lib/algorithms/ciphersuites.c: Corrected DH-ANON ciphersuite
4770 2011-08-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4772 * doc/cha-cert-auth.texi, doc/gnutls-pgp.eps, doc/gnutls-x509.eps:
4775 2011-08-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4777 * NEWS, lib/x509/x509.c: XmppAddr -> UTF8String
4779 2011-08-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4781 * lib/openpgp/gnutls_openpgp.c, lib/openpgp/privkey.c,
4782 lib/x509/x509.c: more updates in private key copy.
4784 2011-08-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4786 * lib/accelerated/intel/aes-x86.h: removed unused variable.
4788 2011-08-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4790 * NEWS, lib/gnutls_privkey.c, lib/gnutls_x509.c,
4791 lib/includes/gnutls/abstract.h, lib/openpgp/gnutls_openpgp.c,
4792 lib/openpgp/gnutls_openpgp.h, lib/openpgp/privkey.c,
4793 lib/x509/x509.c: gnutls_certificate_set_x509_key() and
4794 gnutls_certificate_set_openpgp_key() operate as in gnutls 2.10.x and
4795 do not require to hold the structures.
4797 2011-08-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4799 * lib/accelerated/intel/aes-gcm-x86.c,
4800 lib/accelerated/intel/aes-x86.c: removed unused variables.
4802 2011-08-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4804 * lib/gnutls_record.c: Allow out-of-order change_cipher_spec in
4807 2011-08-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4809 * doc/cha-auth.texi, doc/cha-cert-auth.texi, doc/cha-gtls-app.texi,
4810 doc/cha-intro-tls.texi, doc/examples/ex-cert-select-pkcs11.c,
4811 lib/gnutls_buffers.c, lib/gnutls_pubkey.c, lib/gnutls_record.c:
4812 documentation changes.
4814 2011-08-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4816 * doc/examples/ex-client-srp.c, doc/examples/ex-serv-srp.c:
4817 gnutls/extra.h is not required for SRP.
4819 2011-08-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4821 * doc/latex/gnutls.tex: leave an empty page
4823 2011-08-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4825 * doc/cha-auth.texi, doc/cha-bib.texi, doc/cha-cert-auth.texi,
4826 doc/cha-gtls-app.texi, doc/cha-intro-tls.texi,
4827 doc/latex/gnutls.bib, doc/latex/gnutls.tex: documentation updates
4829 2011-08-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4831 * lib/nettle/rnd.c: unlock rnd mutex on error.
4833 2011-08-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4835 * doc/cha-bib.texi, doc/latex/gnutls.bib: bibliography updated
4837 2011-08-22 Andreas Metzler <ametzler@debian.org>
4839 * lib/libgnutls.map: Export export_gnutls_openpgp_privkey_sign_hash. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
4841 2011-08-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4843 * lib/gnutls_buffers.c, lib/system.c: AIX check moved to system.c.
4845 2011-08-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4847 * src/crywrap/crywrap.c: Handle memory allocation errors.
4849 2011-08-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4851 * doc/manpages/Makefile.am, doc/manpages/crywrap.8: The crywrap
4852 manpage was removed due to license reasons.
4854 2011-08-22 Ludovic Courtès <ludo@gnu.org>
4856 * guile/tests/priorities.scm: guile: Fix `priorities' test to use
4857 `run-test'. This is a followup to commit
4858 cd7b8102316cd4151356c4b2b7909c7435593890 ("guile: Fix tests to match
4859 the `exit' behavior introduced in Guile 2.0.1.").
4861 2011-08-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4863 * src/crywrap/Makefile.am: include README to distribution.
4865 2011-08-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4867 * lib/gnutls_ui.c: documentation fixes.
4869 2011-08-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4871 * doc/cha-cert-auth.texi, doc/cha-internals.texi,
4872 doc/cha-intro-tls.texi, doc/cha-library.texi,
4873 doc/scripts/mytexi2latex: Use texinfo's word break.
4875 2011-08-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4877 * NEWS, m4/hooks.m4: updated for release
4879 2011-08-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4881 * src/crywrap/Makefile.am: Added missing file
4883 2011-08-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4885 * po/cs.po.in, po/fi.po.in, po/nl.po.in, po/pl.po.in, po/sv.po.in,
4886 po/uk.po.in: Sync with TP.
4888 2011-08-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4890 * lib/Makefile.am: corrected typo
4892 2011-08-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4894 * lib/gnutls_buffers.c: Added hack for AIX systems that may not set
4895 errno property on EAGAIN.
4897 2011-08-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4899 * doc/examples/ex-cert-select-pkcs11.c: simplified PKCS #11 token
4902 2011-08-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4904 * doc/cha-gtls-app.texi, doc/cha-intro-tls.texi,
4905 lib/gnutls_record.c, lib/system_override.c: documentation updates
4907 2011-08-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4909 * .gitignore: updated ignored files.
4911 2011-08-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4913 * tests/resume.c: Corrected session resumption test.
4915 2011-08-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4917 * tests/utils.c: Avoid using vfprintf() and use a combination of
4918 vsnprintf and fputs instead. My gnulib has issues with them.
4920 2011-08-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4922 * gl/Makefile.am, gl/m4/gnulib-cache.m4: added vfprintf-posix
4925 2011-08-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4927 * configure.ac: depend on p11-kit 0.4+.
4929 2011-08-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4931 * NEWS, lib/Makefile.am, lib/auth/cert.c, lib/auth/cert.h,
4932 lib/gnutls_cert.c, lib/gnutls_str_array.h, lib/gnutls_x509.c,
4933 lib/openpgp/gnutls_openpgp.c: Removed the limitation of one name per
4936 2011-08-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4938 * doc/cha-auth.texi: rephrased text on anonymous authentication.
4940 2011-08-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4942 * doc/cha-programs.texi: small update in psktool
4944 2011-08-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4946 * NEWS: updated crywrap
4948 2011-08-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4950 * NEWS: documented changes
4952 2011-08-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4954 * lib/auth/cert.c, lib/auth/cert.h, lib/gnutls_cert.c,
4955 lib/gnutls_state.c, lib/gnutls_ui.c, lib/gnutls_x509.c,
4956 lib/openpgp/gnutls_openpgp.c: gnutls_certificate_set_x509_key_file()
4957 and friends support server name indication. If multiple
4958 certificates are set using this function the proper one will be
4959 selected during a handshake, with the limitation of a single name
4962 2011-08-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4964 * lib/x509/x509.c: Documentation fixes.
4966 2011-08-17 Simon Josefsson <simon@josefsson.org>
4968 * cfg.mk, src/crywrap/crywrap.c: Fix syntax-check nits.
4970 2011-08-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4972 * NEWS, lib/algorithms/ciphers.c: Added AES-256-GCM. Reported by
4975 2011-08-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4977 * NEWS: documented fix
4979 2011-08-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4981 * lib/includes/gnutls/pkcs11.h, lib/pkcs11.c, src/p11common.c:
4982 Introduced GNUTLS_PKCS11_PIN_WRONG flag to indicate the previously
4985 2011-08-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4987 * NEWS: documented fix
4989 2011-08-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4991 * doc/cha-programs.texi: some discussion on tokens.
4993 2011-08-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4995 * lib/pkcs11.c: Corrected issue when asking multiple times for PIN.
4997 2011-08-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
4999 * configure.ac: corrected configure test
5001 2011-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5003 * src/crywrap/crywrap.c: dhparams have now the 'r' option.
5005 2011-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5007 * src/crywrap/crywrap.c: use audit_log
5009 2011-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5011 * src/crywrap/crywrap.c, src/crywrap/crywrap.h: removed unneeded
5014 2011-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5016 * src/cli.c: unload_file was modified to accept a pointer.
5018 2011-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5020 * NEWS, src/crywrap/Makefile.am, src/crywrap/crywrap.c: corrected
5021 child process cleanup and added option to specify diffie hellman
5024 2011-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5026 * .gitignore: more files to ignore
5028 2011-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5030 * doc/manpages/crywrap.8, src/crywrap/crywrap.c,
5031 src/crywrap/crywrap.h: Corrected crywrap's verification procedure.
5033 2011-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5035 * src/serv.c: use gnutls_sec_param_to_pk_bits() for DH parameter
5038 2011-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5040 * .gitignore, configure.ac, doc/manpages/Makefile.am,
5041 doc/manpages/crywrap.8, gl/Makefile.am, gl/alphasort.c,
5042 gl/argp-ba.c, gl/argp-eexst.c, gl/argp-fmtstream.c,
5043 gl/argp-fmtstream.h, gl/argp-fs-xinl.c, gl/argp-help.c,
5044 gl/argp-namefrob.h, gl/argp-parse.c, gl/argp-pin.c, gl/argp-pv.c,
5045 gl/argp-pvh.c, gl/argp-xinl.c, gl/argp.h, gl/basename-lgpl.c,
5046 gl/dirent.in.h, gl/dirname-lgpl.c, gl/dirname.h, gl/dosname.h,
5047 gl/fpucw.h, gl/frexp.c, gl/frexpl.c, gl/fseeko.c, gl/fseterr.c,
5048 gl/fseterr.h, gl/getopt.c, gl/getopt.in.h, gl/getopt1.c,
5049 gl/getopt_int.h, gl/getsubopt.c, gl/isnan.c, gl/isnand-nolibm.h,
5050 gl/isnand.c, gl/isnanf-nolibm.h, gl/isnanf.c, gl/isnanl-nolibm.h,
5051 gl/isnanl.c, gl/m4/alphasort.m4, gl/m4/argp.m4, gl/m4/dirent_h.m4,
5052 gl/m4/dirname.m4, gl/m4/double-slash-root.m4, gl/m4/dup2.m4,
5053 gl/m4/eealloc.m4, gl/m4/environ.m4, gl/m4/exponentd.m4,
5054 gl/m4/exponentf.m4, gl/m4/exponentl.m4, gl/m4/frexp.m4,
5055 gl/m4/frexpl.m4, gl/m4/getcwd.m4, gl/m4/getopt.m4,
5056 gl/m4/getsubopt.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4,
5057 gl/m4/isnand.m4, gl/m4/isnanf.m4, gl/m4/isnanl.m4, gl/m4/ldexpl.m4,
5058 gl/m4/lstat.m4, gl/m4/malloca.m4, gl/m4/math_h.m4,
5059 gl/m4/mempcpy.m4, gl/m4/mode_t.m4, gl/m4/nocrash.m4, gl/m4/open.m4,
5060 gl/m4/printf-frexp.m4, gl/m4/printf-frexpl.m4, gl/m4/putenv.m4,
5061 gl/m4/rawmemchr.m4, gl/m4/scandir.m4, gl/m4/setenv.m4,
5062 gl/m4/signbit.m4, gl/m4/sleep.m4, gl/m4/stat.m4,
5063 gl/m4/strchrnul.m4, gl/m4/strndup.m4, gl/m4/strnlen.m4,
5064 gl/m4/symlink.m4, gl/m4/sysexits.m4, gl/m4/vfprintf-posix.m4,
5065 gl/m4/vprintf-posix.m4, gl/math.in.h, gl/mempcpy.c,
5066 gl/printf-frexp.c, gl/printf-frexp.h, gl/printf-frexpl.c,
5067 gl/printf-frexpl.h, gl/rawmemchr.c, gl/rawmemchr.valgrind,
5068 gl/scandir.c, gl/signbitd.c, gl/signbitf.c, gl/signbitl.c,
5069 gl/sleep.c, gl/strchrnul.c, gl/strchrnul.valgrind, gl/stripslash.c,
5070 gl/strndup.c, gl/strnlen.c, gl/sysexits.in.h, gl/tests/Makefile.am,
5071 gl/tests/dummy.c, gl/tests/dup2.c, gl/tests/fpucw.h,
5072 gl/tests/getcwd-lgpl.c, gl/tests/ignore-value.h, gl/tests/lstat.c,
5073 gl/tests/malloca.c, gl/tests/malloca.h, gl/tests/malloca.valgrind,
5074 gl/tests/minus-zero.h, gl/tests/nan.h, gl/tests/open.c,
5075 gl/tests/putenv.c, gl/tests/same-inode.h, gl/tests/setenv.c,
5076 gl/tests/stat.c, gl/tests/symlink.c, gl/tests/test-argp-2.sh,
5077 gl/tests/test-argp.c, gl/tests/test-dirent.c, gl/tests/test-dup2.c,
5078 gl/tests/test-environ.c, gl/tests/test-fprintf-posix.h,
5079 gl/tests/test-frexp.c, gl/tests/test-frexpl.c,
5080 gl/tests/test-fseeko3.c, gl/tests/test-fseeko3.sh,
5081 gl/tests/test-fseterr.c, gl/tests/test-getcwd-lgpl.c,
5082 gl/tests/test-getopt.c, gl/tests/test-getopt.h,
5083 gl/tests/test-getopt_long.h, gl/tests/test-ignore-value.c,
5084 gl/tests/test-isnand-nolibm.c, gl/tests/test-isnand.h,
5085 gl/tests/test-isnanf-nolibm.c, gl/tests/test-isnanf.h,
5086 gl/tests/test-isnanl-nolibm.c, gl/tests/test-isnanl.h,
5087 gl/tests/test-lstat.c, gl/tests/test-lstat.h,
5088 gl/tests/test-malloc-gnu.c, gl/tests/test-malloca.c,
5089 gl/tests/test-math.c, gl/tests/test-open.c, gl/tests/test-open.h,
5090 gl/tests/test-printf-frexp.c, gl/tests/test-printf-frexpl.c,
5091 gl/tests/test-printf-posix.h, gl/tests/test-printf-posix.output,
5092 gl/tests/test-rawmemchr.c, gl/tests/test-setenv.c,
5093 gl/tests/test-signbit.c, gl/tests/test-sleep.c,
5094 gl/tests/test-stat.c, gl/tests/test-stat.h,
5095 gl/tests/test-strchrnul.c, gl/tests/test-strnlen.c,
5096 gl/tests/test-symlink.c, gl/tests/test-symlink.h,
5097 gl/tests/test-sysexits.c, gl/tests/test-unsetenv.c,
5098 gl/tests/test-vfprintf-posix.c, gl/tests/test-vfprintf-posix.sh,
5099 gl/tests/test-vprintf-posix.c, gl/tests/test-vprintf-posix.sh,
5100 gl/tests/unsetenv.c, gl/vfprintf.c, gl/vprintf.c, m4/hooks.m4,
5101 src/Makefile.am, src/crywrap/Makefile.am, src/crywrap/README,
5102 src/crywrap/crywrap.c, src/crywrap/crywrap.h, src/crywrap/primes.h:
5103 Added crywrap to the distributed programs.
5105 2011-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5107 * lib/accelerated/intel/.gitignore: files to ignore
5109 2011-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5111 * doc/cha-internals.texi: doc updates
5113 2011-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5115 * doc/cha-auth.texi, doc/cha-cert-auth.texi,
5116 doc/cha-ciphersuites.texi, doc/cha-errors.texi,
5117 doc/cha-functions.texi, doc/cha-gtls-app.texi,
5118 doc/cha-internals.texi, doc/cha-intro-tls.texi,
5119 doc/cha-library.texi, doc/cha-support.texi: do not use capitals in
5122 2011-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5124 * .gitignore, doc/latex/.gitignore: more files to ignore.
5126 2011-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5128 * NEWS, lib/pkcs11.c: If a module is dlopened twice, then
5129 deinitialize the second load.
5131 2011-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5133 * doc/cha-gtls-app.texi, doc/cha-intro-tls.texi,
5134 doc/cha-library.texi, lib/gnutls_buffers.c, lib/gnutls_record.c:
5135 documentation updates
5137 2011-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5139 * doc/cha-library.texi: memory handling section is no longer
5142 2011-08-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5144 * doc/cha-gtls-app.texi: Added discussion on DTLS functionality
5146 2011-08-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5148 * doc/cha-programs.texi, doc/cha-support.texi, doc/cha-tls-app.texi:
5151 2011-08-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5153 * doc/cha-gtls-app.texi: updated openssl text
5155 2011-08-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5157 * doc/cha-gtls-app.texi: correct typos
5159 2011-08-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5161 * doc/manpages/gnutls-cli.1: do not escape \#
5163 2011-08-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5165 * doc/cha-cert-auth.texi, doc/cha-intro-tls.texi: more updates
5167 2011-08-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5169 * doc/cha-bib.texi, doc/cha-preface.texi, doc/latex/gnutls.bib:
5170 Added reference to anderson's book
5172 2011-08-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5174 * doc/Makefile.am, doc/cha-cert-auth.texi, doc/cha-internals.texi,
5175 doc/gnutls-certificate-user-use-case.eps,
5176 doc/gnutls-extensions.eps, doc/gnutls.texi,
5177 doc/scripts/mytexi2latex, lib/x509/crl_write.c, lib/x509/crq.c,
5178 lib/x509/pkcs12.c, lib/x509/privkey_pkcs8.c, lib/x509/x509.c:
5179 Internals section updated.
5181 2011-08-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5183 * doc/cha-auth.texi, doc/cha-cert-auth.texi, doc/examples/ex-crq.c,
5184 lib/gnutls_pubkey.c, lib/includes/gnutls/compat.h,
5185 lib/includes/gnutls/x509.h, lib/pkcs11.c, lib/pkcs11_write.c,
5186 lib/x509/crq.c: Documentation updates. gnutls_x509_crq_sign2() and
5187 gnutls_x509_crl_sign2() were removed from the deprecate list to ease
5188 generation of crl and crq structures.
5190 2011-08-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5192 * doc/alert-printlist.c, doc/cha-intro-tls.texi,
5193 doc/cha-library.texi, doc/cha-programs.texi, doc/errcodes.c,
5194 doc/printlist.c: updates
5196 2011-08-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5198 * doc/latex/gnutls.tex: changed paper size.
5200 2011-08-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5202 * lib/gnutls_global.c: doc update
5204 2011-08-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5206 * doc/alert-printlist.c, doc/errcodes.c, doc/printlist.c: reduced
5207 space taken by descriptions.
5209 2011-08-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5211 * doc/cha-gtls-app.texi, doc/cha-intro-tls.texi: more updates.
5213 2011-08-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5215 * NEWS: documented fixes
5217 2011-08-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5219 * lib/accelerated/intel/aes-x86.c, lib/accelerated/intel/aes-x86.h:
5220 Force alignment for AES-NI to the runtime rather than on the
5221 structures. Corrects issue on some systems (reported by Andreas
5224 2011-08-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5226 * doc/cha-gtls-app.texi, doc/cha-intro-tls.texi,
5227 doc/cha-library.texi, lib/system_override.c: Added session
5228 initialization discussion
5230 2011-08-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5232 * doc/cha-cert-auth.texi: more updates
5234 2011-08-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5236 * doc/cha-auth.texi, doc/cha-gtls-app.texi, lib/gnutls_psk.c,
5237 lib/gnutls_x509.c, lib/openpgp/gnutls_openpgp.c: updated
5240 2011-08-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5242 * lib/pkcs11.c: document flags
5244 2011-08-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5246 * NEWS: corrected typo
5248 2011-08-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5250 * lib/README: removed reference to pakchois
5252 2011-08-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5254 * lib/pkcs11.c: Prevent from loading twice the same module.
5256 2011-08-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5258 * lib/accelerated/intel/asm/appro-aes-gcm-x86-64.s,
5259 lib/accelerated/intel/asm/appro-aes-x86-64.s,
5260 lib/accelerated/intel/asm/appro-aes-x86.s: Added note.GNU-stack to
5261 prevent marking the library as using an executable stack. Reported
5264 2011-08-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5266 * configure.ac: bumped version
5268 2011-08-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5270 * lib/accelerated/intel/asm/appro-aes-x86-64.s,
5271 lib/accelerated/intel/asm/appro-aes-x86.s: Included appro's updates
5274 2011-08-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5276 * lib/auth/cert.c: better placement of ifdefs.
5278 2011-08-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5280 * doc/Makefile.am, doc/cha-gtls-app.texi, doc/cha-internals.texi,
5281 doc/gnutls-extensions.eps, doc/gnutls-extensions_st.eps,
5282 doc/gnutls-mod_auth_st.eps, doc/gnutls-modauth.eps,
5283 doc/latex/Makefile.am, doc/latex/gnutls.tex,
5284 doc/scripts/mytexi2latex: Added discussion of the provided
5285 cryptographic functions. Internals is now included in the latex
5286 document (needs rewrite though)
5288 2011-08-03 Simon Josefsson <simon@josefsson.org>
5290 * lib/Makefile.am, lib/accelerated/Makefile.am,
5291 lib/accelerated/accelerated.c, lib/accelerated/cryptodev.c,
5292 lib/accelerated/intel/Makefile.am,
5293 lib/accelerated/intel/aes-gcm-x86.c,
5294 lib/accelerated/intel/aes-x86.c, lib/algorithms.h,
5295 lib/algorithms/Makefile.am, lib/algorithms/cert_types.c,
5296 lib/algorithms/ciphers.c, lib/algorithms/ciphersuites.c,
5297 lib/algorithms/ecc.c, lib/algorithms/kx.c, lib/algorithms/mac.c,
5298 lib/algorithms/protocols.c, lib/algorithms/publickey.c,
5299 lib/algorithms/secparams.c, lib/algorithms/sign.c,
5300 lib/auth/Makefile.am, lib/auth/anon.c, lib/auth/anon.h,
5301 lib/auth/anon_ecdh.c, lib/auth/cert.c, lib/auth/cert.h,
5302 lib/auth/dh_common.c, lib/auth/dh_common.h, lib/auth/dhe.c,
5303 lib/auth/dhe_psk.c, lib/auth/ecdh_common.c, lib/auth/ecdh_common.h,
5304 lib/auth/psk.c, lib/auth/psk.h, lib/auth/psk_passwd.c,
5305 lib/auth/psk_passwd.h, lib/auth/rsa.c, lib/auth/rsa_export.c,
5306 lib/auth/srp.c, lib/auth/srp.h, lib/auth/srp_passwd.c,
5307 lib/auth/srp_passwd.h, lib/auth/srp_rsa.c, lib/auth/srp_sb64.c,
5308 lib/crypto-api.c, lib/crypto-backend.c, lib/crypto-backend.h,
5309 lib/crypto.h, lib/debug.c, lib/debug.h, lib/ext/Makefile.am,
5310 lib/ext/cert_type.c, lib/ext/cert_type.h, lib/ext/ecc.c,
5311 lib/ext/ecc.h, lib/ext/max_record.c, lib/ext/max_record.h,
5312 lib/ext/safe_renegotiation.c, lib/ext/safe_renegotiation.h,
5313 lib/ext/server_name.c, lib/ext/server_name.h,
5314 lib/ext/session_ticket.c, lib/ext/session_ticket.h,
5315 lib/ext/signature.c, lib/ext/signature.h, lib/ext/srp.c,
5316 lib/ext/srp.h, lib/gcrypt/Makefile.am, lib/gcrypt/cipher.c,
5317 lib/gcrypt/init.c, lib/gcrypt/mac.c, lib/gcrypt/mpi.c,
5318 lib/gcrypt/pk.c, lib/gcrypt/rnd.c, lib/gnutls_alert.c,
5319 lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_auth.h,
5320 lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cert.c,
5321 lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_cipher_int.c,
5322 lib/gnutls_cipher_int.h, lib/gnutls_compress.c,
5323 lib/gnutls_compress.h, lib/gnutls_constate.c,
5324 lib/gnutls_constate.h, lib/gnutls_datum.c, lib/gnutls_datum.h,
5325 lib/gnutls_db.c, lib/gnutls_db.h, lib/gnutls_dh.c, lib/gnutls_dh.h,
5326 lib/gnutls_dh_primes.c, lib/gnutls_dtls.c, lib/gnutls_dtls.h,
5327 lib/gnutls_ecc.c, lib/gnutls_errors.c, lib/gnutls_errors.h,
5328 lib/gnutls_extensions.c, lib/gnutls_extensions.h,
5329 lib/gnutls_global.c, lib/gnutls_global.h, lib/gnutls_handshake.c,
5330 lib/gnutls_handshake.h, lib/gnutls_hash_int.c,
5331 lib/gnutls_hash_int.h, lib/gnutls_helper.c, lib/gnutls_int.h,
5332 lib/gnutls_kx.c, lib/gnutls_kx.h, lib/gnutls_mbuffers.c,
5333 lib/gnutls_mbuffers.h, lib/gnutls_mem.c, lib/gnutls_mem.h,
5334 lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_num.c,
5335 lib/gnutls_num.h, lib/gnutls_pcert.c, lib/gnutls_pk.c,
5336 lib/gnutls_pk.h, lib/gnutls_priority.c, lib/gnutls_privkey.c,
5337 lib/gnutls_psk.c, lib/gnutls_pubkey.c, lib/gnutls_record.c,
5338 lib/gnutls_record.h, lib/gnutls_rsa_export.c,
5339 lib/gnutls_rsa_export.h, lib/gnutls_session.c,
5340 lib/gnutls_session_pack.c, lib/gnutls_session_pack.h,
5341 lib/gnutls_sig.c, lib/gnutls_sig.h, lib/gnutls_srp.c,
5342 lib/gnutls_srp.h, lib/gnutls_state.c, lib/gnutls_state.h,
5343 lib/gnutls_str.c, lib/gnutls_str.h, lib/gnutls_supplemental.c,
5344 lib/gnutls_supplemental.h, lib/gnutls_ui.c, lib/gnutls_v2_compat.c,
5345 lib/gnutls_v2_compat.h, lib/gnutls_x509.c, lib/gnutls_x509.h,
5346 lib/hash.c, lib/includes/Makefile.am,
5347 lib/includes/gnutls/abstract.h, lib/includes/gnutls/compat.h,
5348 lib/includes/gnutls/crypto.h, lib/includes/gnutls/dtls.h,
5349 lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/gnutlsxx.h,
5350 lib/includes/gnutls/openpgp.h, lib/includes/gnutls/pkcs11.h,
5351 lib/includes/gnutls/pkcs12.h, lib/includes/gnutls/x509.h,
5352 lib/libgnutls.map, lib/libgnutlsxx.map, lib/locks.c,
5353 lib/nettle/Makefile.am, lib/nettle/cipher.c, lib/nettle/ecc_free.c,
5354 lib/nettle/ecc_make_key.c, lib/nettle/ecc_map.c,
5355 lib/nettle/ecc_mulmod.c, lib/nettle/ecc_points.c,
5356 lib/nettle/ecc_projective_add_point.c,
5357 lib/nettle/ecc_projective_dbl_point.c,
5358 lib/nettle/ecc_projective_dbl_point_3.c,
5359 lib/nettle/ecc_shared_secret.c, lib/nettle/ecc_sign_hash.c,
5360 lib/nettle/ecc_verify_hash.c, lib/nettle/egd.c, lib/nettle/init.c,
5361 lib/nettle/mac.c, lib/nettle/mpi.c, lib/nettle/pk.c,
5362 lib/nettle/rnd.c, lib/opencdk/Makefile.am, lib/opencdk/armor.c,
5363 lib/opencdk/context.h, lib/opencdk/filters.h, lib/opencdk/hash.c,
5364 lib/opencdk/kbnode.c, lib/opencdk/keydb.c, lib/opencdk/literal.c,
5365 lib/opencdk/main.c, lib/opencdk/main.h, lib/opencdk/misc.c,
5366 lib/opencdk/new-packet.c, lib/opencdk/opencdk.h,
5367 lib/opencdk/packet.h, lib/opencdk/pubkey.c,
5368 lib/opencdk/read-packet.c, lib/opencdk/seskey.c,
5369 lib/opencdk/sig-check.c, lib/opencdk/stream.c,
5370 lib/opencdk/stream.h, lib/opencdk/types.h,
5371 lib/opencdk/write-packet.c, lib/openpgp/Makefile.am,
5372 lib/openpgp/compat.c, lib/openpgp/extras.c,
5373 lib/openpgp/gnutls_openpgp.c, lib/openpgp/output.c,
5374 lib/openpgp/pgp.c, lib/openpgp/pgpverify.c, lib/openpgp/privkey.c,
5375 lib/pkcs11.c, lib/pkcs11_privkey.c, lib/pkcs11_secret.c,
5376 lib/pkcs11_write.c, lib/random.c, lib/random.h, lib/system.c,
5377 lib/system_override.c, lib/x509/Makefile.am, lib/x509/common.c,
5378 lib/x509/common.h, lib/x509/crl.c, lib/x509/crl_write.c,
5379 lib/x509/crq.c, lib/x509/dn.c, lib/x509/extensions.c,
5380 lib/x509/key_decode.c, lib/x509/key_encode.c, lib/x509/mpi.c,
5381 lib/x509/output.c, lib/x509/pbkdf2-sha1.c, lib/x509/pkcs12.c,
5382 lib/x509/pkcs12_bag.c, lib/x509/pkcs12_encr.c, lib/x509/pkcs7.c,
5383 lib/x509/privkey.c, lib/x509/privkey_pkcs8.c,
5384 lib/x509/rfc2818_hostname.c, lib/x509/sign.c,
5385 lib/x509/verify-high.c, lib/x509/verify.c, lib/x509/x509.c,
5386 lib/x509/x509_int.h, lib/x509/x509_write.c, lib/x509_b64.c,
5387 lib/x509_b64.h: Clarify license and copyright.
5389 2011-08-03 Simon Josefsson <simon@josefsson.org>
5391 * README: Clarify licensing.
5393 2011-08-03 Simon Josefsson <simon@josefsson.org>
5395 * lib/AUTHORS, lib/ChangeLog, lib/NEWS, lib/autogen.sh,
5396 lib/build-aux/arg-nonnull.h, lib/build-aux/c++defs.h,
5397 lib/build-aux/config.rpath, lib/build-aux/warn-on-use.h,
5398 libextra/AUTHORS, libextra/COPYING, libextra/ChangeLog,
5399 libextra/NEWS, libextra/README, libextra/build-aux/config.rpath:
5400 Remove unused files.
5402 2011-08-03 Simon Josefsson <simon@josefsson.org>
5404 * libextra/includes/gnutls/extra.h: Finish removal of inner
5405 application extension support.
5407 2011-08-03 Simon Josefsson <simon@josefsson.org>
5409 * lib/includes/gnutls/abstract.h, lib/includes/gnutls/dtls.h: More
5412 2011-08-03 Simon Josefsson <simon@josefsson.org>
5414 * .x-sc_GPL_version, .x-sc_avoid_if_before_free,
5415 .x-sc_bindtextdomain, .x-sc_cast_of_alloca_return_value,
5416 .x-sc_cast_of_argument_to_free, .x-sc_file_system,
5417 .x-sc_m4_quote_check, .x-sc_makefile_check, .x-sc_program_name,
5418 .x-sc_prohibit_HAVE_MBRTOWC, .x-sc_prohibit_S_IS_definition,
5419 .x-sc_prohibit_empty_lines_at_EOF,
5420 .x-sc_prohibit_strings_without_use, .x-sc_space_tab, .x-sc_the_the,
5421 .x-sc_two_space_separator_in_usage, .x-sc_useless_cpp_parens,
5422 GNUmakefile, THANKS, build-aux/arg-nonnull.h, build-aux/c++defs.h,
5423 build-aux/config.rpath, build-aux/snippet/_Noreturn.h,
5424 build-aux/snippet/arg-nonnull.h, build-aux/snippet/c++defs.h,
5425 build-aux/snippet/warn-on-use.h, build-aux/useless-if-before-free,
5426 build-aux/vc-list-files, build-aux/warn-on-use.h, cfg.mk,
5427 configure.ac, doc/Makefile.am, gl/Makefile.am, gl/alignof.h,
5428 gl/alloca.c, gl/errno.in.h, gl/error.c, gl/float.c, gl/float.in.h,
5429 gl/fseek.c, gl/fseeko.c, gl/ftell.c, gl/intprops.h,
5430 gl/m4/alloca.m4, gl/m4/errno_h.m4, gl/m4/error.m4,
5431 gl/m4/extensions.m4, gl/m4/float_h.m4, gl/m4/fpieee.m4,
5432 gl/m4/fseek.m4, gl/m4/fseeko.m4, gl/m4/ftell.m4, gl/m4/ftello.m4,
5433 gl/m4/getdelim.m4, gl/m4/getline.m4, gl/m4/getpagesize.m4,
5434 gl/m4/getpass.m4, gl/m4/gettime.m4, gl/m4/gettimeofday.m4,
5435 gl/m4/gnulib-cache.m4, gl/m4/gnulib-common.m4,
5436 gl/m4/gnulib-comp.m4, gl/m4/hmac-md5.m4, gl/m4/include_next.m4,
5437 gl/m4/largefile.m4, gl/m4/lseek.m4, gl/m4/malloc.m4, gl/m4/md5.m4,
5438 gl/m4/memchr.m4, gl/m4/memmem.m4, gl/m4/memxor.m4,
5439 gl/m4/mmap-anon.m4, gl/m4/po.m4, gl/m4/printf.m4,
5440 gl/m4/read-file.m4, gl/m4/realloc.m4, gl/m4/snprintf.m4,
5441 gl/m4/strcase.m4, gl/m4/strdup.m4, gl/m4/strerror.m4,
5442 gl/m4/string_h.m4, gl/m4/strings_h.m4, gl/m4/strverscmp.m4,
5443 gl/m4/time_r.m4, gl/m4/vsnprintf.m4, gl/m4/warn-on-use.m4,
5444 gl/m4/warnings.m4, gl/netdb.in.h, gl/netinet_in.in.h,
5445 gl/stdarg.in.h, gl/stddef.in.h, gl/stdint.in.h, gl/stdio.in.h,
5446 gl/stdlib.in.h, gl/strerror-override.c, gl/strerror-override.h,
5447 gl/strerror.c, gl/string.in.h, gl/strings.in.h, gl/sys_socket.in.h,
5448 gl/sys_stat.in.h, gl/sys_time.in.h, gl/sys_uio.in.h,
5449 gl/tests/Makefile.am, gl/tests/fcntl.in.h, gl/tests/fpucw.h,
5450 gl/tests/init.sh, gl/tests/macros.h, gl/tests/test-float.c,
5451 gl/tests/test-fseek.c, gl/tests/test-fseek.sh,
5452 gl/tests/test-fseek2.sh, gl/tests/test-ftell.c,
5453 gl/tests/test-ftell.sh, gl/tests/test-ftell2.sh,
5454 gl/tests/test-ftell3.c, gl/tests/test-intprops.c,
5455 gl/tests/test-snprintf.c, gl/tests/test-strerror.c,
5456 gl/tests/test-vc-list-files-cvs.sh,
5457 gl/tests/test-vc-list-files-git.sh, gl/tests/test-verify.c,
5458 gl/tests/test-vsnprintf.c, gl/time.in.h, gl/timespec.h,
5459 gl/unistd.in.h, gl/verify.h, gl/wchar.in.h, lib/Makefile.am,
5460 lib/hash.c, lib/pkcs11_privkey.c, maint.mk, src/benchmark-cipher.c,
5461 src/certtool.c, src/cli.c, src/serv.c, tests/Makefile.am,
5462 tests/scripts/common.sh: Update gnulib files. Fix syntax-check
5465 2011-08-03 Simon Josefsson <simon@josefsson.org>
5467 * NEWS, README: Add NEWS entries. Use copyright ranges (now
5470 2011-08-03 Simon Josefsson <simon@josefsson.org>
5472 * po/LINGUAS, po/cs.po.in, po/fi.po.in, po/nl.po.in, po/pl.po.in,
5473 po/sv.po.in, po/uk.po.in: Sync with TP.
5475 2011-08-02 Simon Josefsson <simon@josefsson.org>
5477 * doc/manpages/Makefile.am, doc/reference/Makefile.am,
5478 doc/reference/gnutls-docs.sgml, lib/algorithms/secparams.c,
5479 lib/crypto-api.c, lib/gnutls_cert.c, lib/gnutls_db.c,
5480 lib/gnutls_global.c, lib/gnutls_privkey.c, lib/gnutls_pubkey.c,
5481 lib/includes/gnutls/abstract.h, lib/includes/gnutls/gnutls.h.in,
5482 lib/includes/gnutls/pkcs11.h, lib/locks.c, lib/openpgp/privkey.c,
5483 lib/pkcs11.c, lib/pkcs11_secret.c, lib/pkcs11_write.c,
5484 lib/random.c, lib/system_override.c, lib/x509/crl_write.c,
5485 lib/x509/crq.c, lib/x509/privkey.c, lib/x509/x509.c: More GTK-DOC
5488 2011-08-02 Simon Josefsson <simon@josefsson.org>
5490 * doc/reference/Makefile.am: Simplify GTK-DOC makefile
5493 2011-08-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5495 * lib/includes/gnutls/gnutls.h.in: updated
5497 2011-08-02 Simon Josefsson <simon@josefsson.org>
5499 * lib/algorithms/sign.c, lib/gnutls_dtls.c, lib/gnutls_pubkey.c,
5500 lib/gnutls_record.c, lib/includes/gnutls/abstract.h,
5501 lib/includes/gnutls/crypto.h, lib/includes/gnutls/dtls.h,
5502 lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/openpgp.h,
5503 lib/includes/gnutls/pkcs11.h, lib/nettle/ecc_free.c,
5504 lib/nettle/ecc_make_key.c, lib/nettle/ecc_map.c,
5505 lib/nettle/ecc_mulmod.c, lib/nettle/ecc_points.c,
5506 lib/nettle/ecc_projective_add_point.c,
5507 lib/nettle/ecc_projective_dbl_point.c,
5508 lib/nettle/ecc_projective_dbl_point_3.c,
5509 lib/nettle/ecc_shared_secret.c, lib/nettle/ecc_sign_hash.c,
5510 lib/nettle/ecc_verify_hash.c, lib/pkcs11.c: Fix GTK-DOC manual.
5512 2011-08-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5514 * lib/gnutls_record.c: detect premature termination of connection
5516 2011-08-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5518 * NEWS, lib/includes/gnutls/pkcs11.h, lib/pkcs11.c: the
5519 deprecated_config_file from 2.12.x was incorporated.
5521 2011-08-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5523 * lib/pkcs11.c: documentation update
5525 2011-08-02 Simon Josefsson <simon@josefsson.org>
5527 * doc/manpages/Makefile.am, doc/reference/gnutls-docs.sgml,
5528 lib/algorithms/ecc.c, lib/crypto-api.c, lib/gnutls_alert.c,
5529 lib/gnutls_cert.c, lib/gnutls_dtls.c, lib/gnutls_global.c,
5530 lib/gnutls_pcert.c, lib/gnutls_pubkey.c, lib/gnutls_record.c,
5531 lib/gnutls_state.c, lib/system_override.c, lib/x509/crl.c,
5532 lib/x509/privkey.c, lib/x509/verify-high.c, lib/x509/x509.c: Add
5533 GTK-DOC Since: tags for 3.0.0 additions.
5535 2011-08-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5537 * lib/pkcs11_privkey.c: added asserts.
5539 2011-08-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5541 * README, README-alpha: Refer to nettle alone and p11-kit.
5543 2011-08-01 Stef Walter <stefw@collabora.co.uk>
5545 * lib/pkcs11.c: Don't try to do PKCS#11 login if session is already
5546 logged in. * It is possible for new PKCS#11 sessions to be logged in if another logged in session already exists. * In these cases, don't log in, but detect the condition and return success. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
5548 2011-08-01 Stef Walter <stefw@collabora.co.uk>
5550 * lib/pkcs11_privkey.c: When finding private keys fail, return error
5551 code. * Previously this would result in an endless loop. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
5553 2011-08-01 Stef Walter <stefw@collabora.co.uk>
5555 * lib/includes/gnutls/pkcs11.h, lib/pkcs11.c: Mark the config
5556 argument of gnutls_pkcs11_init() as unused * Since its no longer used. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
5558 2011-07-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5560 * NEWS, lib/gnutls_str.h, lib/gnutls_x509.c,
5561 lib/includes/gnutls/x509.h, lib/x509/x509.c, tests/x509cert.c: Added
5562 GNUTLS_X509_CRT_LIST_FAIL_IF_UNSORTED flag for
5563 gnutls_x509_crt_list_import. It checks whether the list to be
5564 imported is properly sorted.
5566 2011-07-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5568 * NEWS, lib/gnutls_errors.c, lib/gnutls_x509.c,
5569 lib/includes/gnutls/gnutls.h.in: Added
5570 GNUTLS_E_CERTIFICATE_LIST_UNSORTED. If a certificate list is loaded
5571 then verify that it is sorted with order to starts with the subject
5572 and finished with the trusted root. That way we make sure we don't
5573 send data that violate the TLS protocol.
5575 2011-07-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5577 * doc/cha-cert-auth.texi, doc/latex/macros.tex: documentation
5580 2011-07-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5582 * ChangeLog: updated changelog
5584 2011-07-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5586 * NEWS: released 3.0.0
5588 2011-07-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5590 * configure.ac: updated version
5592 2011-07-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5594 * src/certtool-gaa.c, src/certtool.gaa: Corrected typo.
5596 2011-07-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5598 * NEWS: documented updates.
5600 2011-07-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5602 * THANKS: Added Petr.
5604 2011-07-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5606 * lib/gnutls_pcert.c, lib/gnutls_privkey.c,
5607 lib/includes/gnutls/abstract.h, lib/libgnutls.map: Added
5608 gnutls_pcert_list_import_x509_raw() and few doc fixes.
5610 2011-07-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5612 * lib/gnutls.pc.in: corrected for libnettle.
5614 2011-06-24 Andreas Metzler <ametzler@downhill.at.eu.org>
5616 * configure.ac: fix zlib handling in gnutls.pc Only add zlib to gnutls.pc's Requies.private if zlib ships a
5617 pkg-config file. Ancient (<< 1.2.3.1) versions don't. Otherwise add
5618 -lz to Libs.private. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
5620 2011-07-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5622 * doc/examples/ex-client-srp.c, doc/examples/ex-serv-srp.c:
5623 gnutls_global_init_extra() is not needed for SRP.
5625 2011-07-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5627 * NEWS: documented changes.
5629 2011-07-25 Sjoerd Simons <sjoerd.simons@collabora.co.uk>
5631 * lib/gnutls_buffers.c: writev_emu: stop on the first incomplete
5632 write Just like standard writev, we should only move on to the next block
5633 if all the previous ones have been successfully written out.
5634 Otherwise there is a potential for data loss and/or confusing push
5635 functions. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
5637 2011-07-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5639 * doc/latex/fdl.tex: increased size of fdl.
5641 2011-07-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5643 * lib/pkcs11.c: Added debug message to indicate usage of
5644 compatibility mode for /etc/gnutls/pkcs11.conf
5646 2011-07-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5648 * AUTHORS: removed pgp key from authors file.
5650 2011-07-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5652 * ChangeLog: updated changelog.
5654 2011-07-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5656 * NEWS, configure.ac, doc/announce.txt, m4/hooks.m4: released 2.99.4
5658 2011-06-29 Petr Písař <petr.pisar@atlas.cz>
5660 * lib/gnutls_privkey.c: Honor uninitialized private key in
5661 destructor Fixes bug #107730. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
5663 2011-07-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5665 * src/certtool.c: Corrected initialization of key when generating
5666 request. Reported by Petr Pisar.
5668 2011-07-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5672 2011-07-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5674 * lib/gnutls_rsa_export.c, lib/x509/privkey.c,
5675 lib/x509/privkey_pkcs8.c, lib/x509/x509_int.h: The crippled status
5676 of an gnutls_x509_privkey_t was removed.
5678 2011-07-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5680 * doc/examples/ex-pkcs11-list.c: Example compilation fix.
5682 2011-07-07 Stef Walter <stefw@collabora.co.uk>
5684 * configure.ac, lib/includes/gnutls/pkcs11.h, lib/pkcs11.c,
5685 lib/pkcs11_int.h, lib/pkcs11_privkey.c, lib/pkcs11_write.c: pkcs11:
5686 Use p11_kit_pin_xxx() functionality when 'pinfile' is in uris. * This allows other apps to register a handler for a specific
5687 pinfile and then that application will be able to provide the PIN
5688 for those URIs. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
5690 2011-07-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5692 * lib/pkcs11.c: Added compatibility mode with
5693 /etc/gnutls/pkcs11.conf
5695 2011-07-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5697 * doc/cha-tls-app.texi: Updates in upward negotiation section.
5699 2011-07-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5701 * doc/latex/gnutls.bib: Corrected bibliography
5703 2011-07-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5705 * doc/cha-auth.texi, doc/cha-cert-auth.texi, doc/cha-gtls-app.texi,
5706 doc/cha-intro-tls.texi, doc/cha-library.texi,
5707 doc/cha-programs.texi, doc/cha-tls-app.texi: corrected section
5710 2011-07-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5712 * doc/cha-library.texi, doc/cha-support.texi, lib/gnutls_errors.c,
5713 lib/gnutls_srp.c: Updated information on required libraries.
5715 2011-07-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5717 * doc/cha-cert-auth.texi, doc/cha-gtls-app.texi,
5718 doc/cha-intro-tls.texi, doc/cha-library.texi, doc/cha-preface.texi:
5721 2011-06-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5723 * doc/.gitignore, doc/Makefile.am, doc/alert-printlist.c,
5724 doc/cha-auth.texi, doc/cha-cert-auth.texi, doc/cha-gtls-app.texi,
5725 doc/cha-intro-tls.texi, doc/cha-library.texi, doc/gnutls.texi,
5726 doc/latex/Makefile.am, doc/latex/gnutls.tex, doc/latex/macros.tex,
5727 doc/scripts/gdoc, doc/scripts/mytexi2latex, doc/scripts/sort1.pl,
5728 doc/scripts/split.pl, lib/gnutls_x509.c: updated function listing.
5730 2011-06-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5732 * lib/gnutls_alert.c, lib/includes/gnutls/gnutls.h.in,
5733 lib/libgnutls.map: Added gnutls_alert_get_strname().
5735 2011-06-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5737 * lib/algorithms/cert_types.c, lib/algorithms/ciphers.c,
5738 lib/algorithms/ecc.c, lib/algorithms/kx.c, lib/algorithms/mac.c,
5739 lib/algorithms/protocols.c, lib/algorithms/publickey.c,
5740 lib/algorithms/secparams.c, lib/algorithms/sign.c, lib/auth/cert.c,
5741 lib/auth/psk.c, lib/auth/rsa_export.c, lib/crypto-api.c,
5742 lib/crypto-backend.c, lib/ext/max_record.c,
5743 lib/ext/safe_renegotiation.c, lib/ext/server_name.c,
5744 lib/ext/session_ticket.c, lib/gcrypt/mpi.c, lib/gnutls_alert.c,
5745 lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_buffers.c,
5746 lib/gnutls_cert.c, lib/gnutls_dh_primes.c, lib/gnutls_dtls.c,
5747 lib/gnutls_errors.c, lib/gnutls_global.c, lib/gnutls_handshake.c,
5748 lib/gnutls_mpi.c, lib/gnutls_pcert.c, lib/gnutls_priority.c,
5749 lib/gnutls_privkey.c, lib/gnutls_psk.c, lib/gnutls_pubkey.c,
5750 lib/gnutls_record.c, lib/gnutls_sig.c, lib/gnutls_state.c,
5751 lib/gnutls_str.c, lib/gnutls_ui.c, lib/gnutls_x509.c,
5752 lib/minitasn1/decoding.c, lib/minitasn1/errors.c,
5753 lib/nettle/ecc_verify_hash.c, lib/opencdk/kbnode.c,
5754 lib/opencdk/sig-check.c, lib/openpgp/extras.c,
5755 lib/openpgp/gnutls_openpgp.c, lib/openpgp/output.c,
5756 lib/openpgp/pgp.c, lib/openpgp/privkey.c, lib/pkcs11.c,
5757 lib/pkcs11_privkey.c, lib/pkcs11_secret.c, lib/pkcs11_write.c,
5758 lib/random.c, lib/x509/common.c, lib/x509/crl.c,
5759 lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/dn.c,
5760 lib/x509/extensions.c, lib/x509/output.c, lib/x509/pkcs12.c,
5761 lib/x509/pkcs12_bag.c, lib/x509/pkcs12_encr.c, lib/x509/pkcs7.c,
5762 lib/x509/privkey.c, lib/x509/privkey_pkcs8.c,
5763 lib/x509/rfc2818_hostname.c, lib/x509/sign.c,
5764 lib/x509/verify-high.c, lib/x509/verify.c, lib/x509/x509.c,
5765 lib/x509/x509_write.c: documentation fixes
5767 2011-06-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5769 * NEWS, lib/COPYING, lib/accelerated/accelerated.c,
5770 lib/accelerated/cryptodev.c, lib/auth/anon.c, lib/auth/anon_ecdh.c,
5771 lib/auth/cert.c, lib/auth/dh_common.c, lib/auth/dhe.c,
5772 lib/auth/dhe_psk.c, lib/auth/ecdh_common.c, lib/auth/psk.c,
5773 lib/auth/psk_passwd.c, lib/auth/rsa.c, lib/auth/rsa_export.c,
5774 lib/auth/srp.c, lib/auth/srp_passwd.c, lib/auth/srp_rsa.c,
5775 lib/auth/srp_sb64.c, lib/crypto-api.c, lib/crypto-backend.c,
5776 lib/debug.c, lib/ext/cert_type.c, lib/ext/ecc.c,
5777 lib/ext/max_record.c, lib/ext/safe_renegotiation.c,
5778 lib/ext/server_name.c, lib/ext/session_ticket.c,
5779 lib/ext/signature.c, lib/ext/srp.c, lib/gnutls_alert.c,
5780 lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_buffers.c,
5781 lib/gnutls_cert.c, lib/gnutls_cipher.c, lib/gnutls_cipher_int.c,
5782 lib/gnutls_compress.c, lib/gnutls_constate.c, lib/gnutls_datum.c,
5783 lib/gnutls_db.c, lib/gnutls_dh.c, lib/gnutls_dh_primes.c,
5784 lib/gnutls_dtls.c, lib/gnutls_ecc.c, lib/gnutls_errors.c,
5785 lib/gnutls_extensions.c, lib/gnutls_global.c,
5786 lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_helper.c,
5787 lib/gnutls_kx.c, lib/gnutls_mbuffers.c, lib/gnutls_mem.c,
5788 lib/gnutls_mpi.c, lib/gnutls_num.c, lib/gnutls_pcert.c,
5789 lib/gnutls_pk.c, lib/gnutls_priority.c, lib/gnutls_privkey.c,
5790 lib/gnutls_psk.c, lib/gnutls_pubkey.c, lib/gnutls_record.c,
5791 lib/gnutls_rsa_export.c, lib/gnutls_session.c,
5792 lib/gnutls_session_pack.c, lib/gnutls_sig.c, lib/gnutls_srp.c,
5793 lib/gnutls_state.c, lib/gnutls_str.c, lib/gnutls_supplemental.c,
5794 lib/gnutls_ui.c, lib/gnutls_v2_compat.c, lib/gnutls_x509.c,
5795 lib/hash.c, lib/locks.c, lib/nettle/cipher.c,
5796 lib/nettle/ecc_free.c, lib/nettle/ecc_make_key.c,
5797 lib/nettle/ecc_map.c, lib/nettle/ecc_mulmod.c,
5798 lib/nettle/ecc_points.c, lib/nettle/ecc_projective_add_point.c,
5799 lib/nettle/ecc_projective_dbl_point.c,
5800 lib/nettle/ecc_projective_dbl_point_3.c,
5801 lib/nettle/ecc_shared_secret.c, lib/nettle/ecc_sign_hash.c,
5802 lib/nettle/ecc_verify_hash.c, lib/nettle/egd.c, lib/nettle/init.c,
5803 lib/nettle/mac.c, lib/nettle/mpi.c, lib/nettle/pk.c,
5804 lib/nettle/rnd.c, lib/opencdk/armor.c, lib/opencdk/hash.c,
5805 lib/opencdk/kbnode.c, lib/opencdk/keydb.c, lib/opencdk/literal.c,
5806 lib/opencdk/main.c, lib/opencdk/misc.c, lib/opencdk/new-packet.c,
5807 lib/opencdk/pubkey.c, lib/opencdk/read-packet.c,
5808 lib/opencdk/seskey.c, lib/opencdk/sig-check.c,
5809 lib/opencdk/stream.c, lib/opencdk/write-packet.c,
5810 lib/openpgp/compat.c, lib/openpgp/extras.c,
5811 lib/openpgp/gnutls_openpgp.c, lib/openpgp/output.c,
5812 lib/openpgp/pgp.c, lib/openpgp/pgpverify.c, lib/openpgp/privkey.c,
5813 lib/pkcs11.c, lib/pkcs11_privkey.c, lib/pkcs11_secret.c,
5814 lib/pkcs11_write.c, lib/random.c, lib/system.c,
5815 lib/system_override.c, lib/x509/common.c, lib/x509/crl.c,
5816 lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/dn.c,
5817 lib/x509/extensions.c, lib/x509/key_decode.c,
5818 lib/x509/key_encode.c, lib/x509/mpi.c, lib/x509/output.c,
5819 lib/x509/pbkdf2-sha1.c, lib/x509/pkcs12.c, lib/x509/pkcs12_bag.c,
5820 lib/x509/pkcs12_encr.c, lib/x509/pkcs7.c, lib/x509/privkey.c,
5821 lib/x509/privkey_pkcs8.c, lib/x509/rfc2818_hostname.c,
5822 lib/x509/sign.c, lib/x509/verify-high.c, lib/x509/verify.c,
5823 lib/x509/x509.c, lib/x509/x509_write.c, lib/x509_b64.c: Upgraded to
5826 2011-06-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5828 * doc/latex/cover.tex.in: updated cover.
5830 2011-06-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5832 * doc/latex/fdl.tex: improvements on fdl.
5834 2011-06-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5836 * AUTHORS: Added LRN.
5838 2011-06-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5840 * doc/cha-auth.texi, doc/cha-cert-auth.texi, doc/cha-gtls-app.texi,
5841 doc/cha-intro-tls.texi, doc/cha-library.texi,
5842 doc/cha-programs.texi, doc/scripts/mytexi2latex: documentation
5845 2011-06-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5847 * NEWS, lib/gnutls_srp.c, lib/gnutls_srp.h: gnutls_srp_verifier()
5848 returns data allocated with gnutls_malloc() for consistency.
5850 2011-06-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5852 * lib/gnutls_errors.c: reduced error message.
5854 2011-06-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5856 * doc/cha-intro-tls.texi: simplified text.
5858 2011-06-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5860 * doc/latex/fdl.tex, doc/latex/gnutls.tex: FDL is now included using
5863 2011-06-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5865 * doc/cha-auth.texi, doc/cha-intro-tls.texi,
5866 doc/examples/ex-client1.c, doc/scripts/mytexi2latex: Tables were
5869 2011-06-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5871 * doc/cha-cert-auth.texi, doc/cha-internals.texi,
5872 doc/cha-intro-tls.texi, doc/cha-library.texi,
5873 doc/scripts/mytexi2latex: figures were made floating.
5875 2011-06-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5877 * doc/latex/cover.tex.in, doc/scripts/mytexi2latex: Added
5878 high-quality pdf images.
5880 2011-06-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5882 * .gitignore, doc/latex/.gitignore: more files to ignore
5884 2011-06-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5886 * configure.ac, doc/Makefile.am, doc/cha-auth.texi,
5887 doc/cha-bib.texi, doc/cha-cert-auth.texi,
5888 doc/cha-ciphersuites.texi, doc/cha-errors.texi,
5889 doc/cha-functions.texi, doc/cha-gtls-app.texi,
5890 doc/cha-internals.texi, doc/cha-intro-tls.texi,
5891 doc/cha-library.texi, doc/cha-preface.texi, doc/cha-programs.texi,
5892 doc/cha-support.texi, doc/cha-tls-app.texi, doc/errcodes.c,
5893 doc/examples/ex-client1.c, doc/examples/ex-pkcs11-list.c,
5894 doc/examples/ex-serv-anon.c, doc/gnutls.texi,
5895 doc/latex/Makefile.am, doc/latex/cover.tex.in, doc/latex/fdl.tex,
5896 doc/latex/gnutls.bib, doc/latex/gnutls.tex, doc/latex/macros.tex,
5897 doc/printlist.c, doc/scripts/mytexi2latex, doc/scripts/sort1.pl,
5898 doc/signatures.texi: updated documentation to allow latex output.
5900 2011-06-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5902 * lib/gnutls_record.c, lib/x509/crq.c, lib/x509/x509.c,
5903 lib/x509/x509_write.c: corrected typos
5905 2011-06-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5907 * doc/cha-cert-auth.texi, doc/examples/Makefile.am,
5908 doc/examples/ex-cert-select.c, doc/examples/ex-client-udp.c,
5909 doc/examples/ex-crq.c, doc/examples/ex-pkcs11-list.c,
5910 doc/examples/ex-session-info.c, doc/examples/ex-verify.c: indented
5911 code. Corrected PKCS #11 example.
5913 2011-06-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5915 * doc/Makefile.am: added missing file.
5917 2011-06-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5919 * AUTHORS, NEWS, lib/includes/gnutls/gnutls.h.in, m4/hooks.m4:
5922 2011-06-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5924 * NEWS, lib/gnutls_errors.c, lib/includes/gnutls/pkcs11.h,
5925 lib/pkcs11.c, lib/pkcs11_write.c, src/p11tool-gaa.c,
5926 src/p11tool-gaa.h, src/p11tool.c, src/p11tool.gaa, src/p11tool.h,
5927 src/pkcs11.c: Added new PKCS #11 flags to force an object being
5928 private or not. Those are GNUTLS_PKCS11_OBJ_FLAG_MARK_PRIVATE and
5929 GNUTLS_PKCS11_OBJ_FLAG_MARK_NOT_PRIVATE. p11tool supports now the
5930 --no-private and --private options.
5932 2011-06-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5934 * src/p11common.c: Limit the number of attempts with the same PIN,
5935 to avoid attempting again and again with a wrong PIN.
5937 2011-06-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5939 * lib/pkcs11_write.c: When writing an object with CKA_TRUSTED set
5940 CKA_PRIVATE explicitly to FALSE, to allow the SO to write it.
5941 Reported by Rickard Bellgrim.
5943 2011-06-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5947 2011-06-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5949 * src/pkcs11.c: removed unneeded test.
5951 2011-06-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5953 * lib/pkcs11.c: Enforce the GNUTLS_PKCS11_OBJ_FLAG_LOGIN_SO even if
5954 GNUTLS_PKCS11_OBJ_FLAG_LOGIN is specified.
5956 2011-06-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5958 * src/Makefile.am, src/p11common.c, src/pkcs11.c: Use common code
5959 for PKCS #11 callbacks across clients. Require SO login to write a
5962 2011-06-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5964 * lib/algorithms/ciphersuites.c, lib/ext/safe_renegotiation.h: bit
5965 fields changed to unsigned.
5967 2011-06-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5969 * lib/gnutls_pubkey.c, lib/x509/privkey.c: Moved null check before
5972 2011-06-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5974 * lib/opencdk/keydb.c: removed unreachable code warning
5976 2011-06-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5978 * lib/opencdk/hash.c, lib/opencdk/main.h, lib/opencdk/stream.c,
5979 lib/opencdk/write-packet.c: eliminated wipemem().
5981 2011-06-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5983 * lib/gnutls_pk.c: corrected uninitialized variable warning.
5985 2011-06-16 Rickard Bellgrim <rickard@opendnssec.org>
5987 * lib/pkcs11_write.c: The CKA_SUBJECT must be specified for a
5988 certificate. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
5990 2011-06-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5992 * lib/includes/gnutls/pkcs11.h, lib/pkcs11.c, src/pkcs11.c: When
5993 setting the TRUSTED flag login as security officer.
5995 2011-06-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
5997 * lib/pkcs11_write.c: write label in PKCS #11 privkey.
5999 2011-06-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6001 * lib/gnutls_privkey.c, lib/gnutls_pubkey.c, lib/pkcs11.c,
6002 lib/pkcs11_int.h, lib/pkcs11_privkey.c, lib/pkcs11_secret.c,
6003 lib/pkcs11_write.c: define ck_bool_t to be compatible with PKCS #11
6006 2011-06-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6008 * configure.ac: ignore more warnings.
6010 2011-06-09 Stef Walter <stefw@collabora.co.uk>
6012 * lib/Makefile.am, lib/pkcs11_int.h, lib/pkcs11_spec.h: Use pkcs11.h
6013 specification file from p11-kit. * Remove one included briefly in gnutls. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
6015 2011-06-09 Stef Walter <stefw@collabora.co.uk>
6017 * lib/pkcs11.c, src/cli.c, src/p11common.c, src/pkcs11.c,
6018 tests/suite/mini-eagain2.c: Fix up compiler warnings. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
6020 2011-06-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6022 * lib/pkcs11_spec.h: Added missing file
6024 2011-06-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6026 * doc/cha-cert-auth.texi: document new config file format and path.
6028 2011-06-07 Stef Walter <stefw@collabora.co.uk>
6030 * configure.ac, doc/examples/Makefile.am, lib/Makefile.am,
6031 lib/auth/cert.c, lib/gnutls_global.c, lib/gnutls_privkey.c,
6032 lib/gnutls_pubkey.c, lib/gnutls_x509.c, lib/pakchois/README,
6033 lib/pakchois/dlopen.c, lib/pakchois/dlopen.h,
6034 lib/pakchois/errors.c, lib/pakchois/pakchois.c,
6035 lib/pakchois/pakchois.h, lib/pakchois/pakchois11.h, lib/pkcs11.c,
6036 lib/pkcs11_int.h, lib/pkcs11_privkey.c, lib/pkcs11_secret.c,
6037 lib/pkcs11_write.c, src/Makefile.am, src/certtool-common.c,
6038 src/certtool.c, src/cli.c, src/p11tool.c, src/serv.c: The attached
6039 patch ports gnutls to p11-kit. p11-kit is added as a dependency.
6040 p11-kit itself has no dependencies outside of basic libc stuff. The
6041 source code for p11-kit is available both in git and tarball form.
6042 [3] If the gnutls dependency on p11-kit is disabled (via a configure
6043 option) then the PKCS#11 support is disabled. This is useful in bare
6044 bones embedded systems or places where very minimal dependencies are
6047 2011-06-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6049 * doc/manpages/Makefile.am: updated
6051 2011-06-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6053 * lib/pkcs11.c, lib/pkcs11_privkey.c: Return error code when an
6054 object is not found. Only request for token insertion if the
6055 expected data is not found. Based on patch by Stef Walter.
6057 2011-06-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6059 * configure.ac: Depend on automake 1.11.
6061 2011-06-06 Stef Walter <stefw@collabora.co.uk>
6063 * tests/suite/Makefile.am: tests: Build eagain-cli with correct
6064 libraries * Add -ldl -lpthread to linker flags Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
6066 2011-05-30 Stef Walter <stefw@collabora.co.uk>
6068 * src/cli.c: gnutls-cli: Fix uninitialized variable when PKCS#11
6069 uris in use. * When PKCS#11 URIs are in use previously tried to free
6070 uninitialized memory. Initialize to zero. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
6072 2011-05-30 Stef Walter <stefw@collabora.co.uk>
6074 * lib/pkcs11.c: pkcs11: Accept CKR_USER_ALREADY_LOGGED_IN as
6075 successful result for PAP Login * When doing CKF_PROTECTED_AUTHENTICATION_PATH login, accept CKR_USER_ALREADY_LOGGED_IN as a successful result. * Another code path, or another consumer of the same PKCS#11 module may have already logged in. * This is what the non PAP code path already does. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
6077 2011-06-06 Stef Walter <stefw@collabora.co.uk>
6079 * lib/auth/srp.c, lib/auth/srp_rsa.c, lib/ext/session_ticket.c,
6080 lib/gnutls_compress.c, lib/hash.c, lib/nettle/ecc_mulmod.c,
6081 lib/x509/common.c: Remove unused variables * GCC 4.6.0 prints a warning, and build failes with -Wunused Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
6083 2011-06-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6085 * lib/nettle/rnd.c: use gnutls_assert_val() in EGD errors.
6087 2011-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6089 * tests/dsa/testdsa, tests/openpgp-certs/testcerts,
6090 tests/scripts/common.sh, tests/suite/testcompat-main,
6091 tests/suite/testsrn: Corrected fail() shell function. Reported by
6094 2011-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6096 * tests/dsa/testdsa: Corrected typo. Reported by Andreas Metzler.
6098 2011-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6100 * doc/manpages/Makefile.am: regenerated makefile.
6102 2011-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6104 * lib/x509/common.c: documentation fix.
6106 2011-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6108 * lib/accelerated/intel/Makefile.am,
6109 lib/accelerated/intel/aes-x86.c,
6110 lib/accelerated/intel/asm/appro-aes-gcm-x86.s: pclmul is not used on
6111 intel 32-bit systems.
6113 2011-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6115 * lib/accelerated/intel/aes-x86.c, lib/gnutls_global.h,
6116 lib/gnutls_priority.c: When AES and GCM acceleration is available
6117 increase the priority of AES-GCM ciphersuites in performance and
6120 2011-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6122 * lib/gcrypt/cipher.c, lib/gcrypt/pk.c: prevent compilation of
6123 gcrypt support since it is incomplete.
6125 2011-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6127 * lib/Makefile.am, lib/algorithms/ciphers.c,
6128 lib/algorithms/ciphersuites.c, lib/gcrypt/cipher.c,
6129 lib/nettle/cipher.c, m4/hooks.m4: do not use NETTLE_LIBS to include
6130 hogweed and gmp. removed ENABLE_CAMELLIA and NETTLE_GCM.
6132 2011-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6134 * src/benchmark-tls.c: improved benchmark.
6136 2011-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6138 * doc/Makefile.am, doc/cha-cert-auth.texi, doc/cha-internals.texi,
6139 doc/cha-intro-tls.texi, doc/cha-library.texi,
6140 doc/cha-programs.texi, doc/examples/ex-session-info.c,
6141 doc/gnutls-certificate-user-use-case.pdf,
6142 doc/gnutls-client-server-use-case.pdf,
6143 doc/gnutls-extensions_st.pdf, doc/gnutls-handshake-sequence.pdf,
6144 doc/gnutls-handshake-state.pdf, doc/gnutls-internals.pdf,
6145 doc/gnutls-layers.pdf, doc/gnutls-logo.pdf,
6146 doc/gnutls-mod_auth_st.pdf, doc/gnutls-objects.pdf,
6147 doc/gnutls-pgp.pdf, doc/gnutls-x509.pdf, doc/gnutls.texi: Updated
6148 documentation. Removed all .pdf files. They were not needed.
6150 2011-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6152 * lib/algorithms.h, lib/algorithms/ciphersuites.c,
6153 lib/gnutls_handshake.c: Avoid memory allocations when requesting the
6154 supported ciphersuites.
6156 2011-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6158 * lib/accelerated/intel/aes-x86.c: more verbose if the PCLMUL
6159 instruction is detected.
6161 2011-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6163 * tests/cipher-test.c: Added debugging ability to cipher-test.
6165 2011-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6167 * doc/TODO: more cleanup.
6169 2011-06-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6171 * doc/TODO: Added new TODO items.
6173 2011-06-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6175 * doc/TODO: removed completed items from todo list
6177 2011-06-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6179 * lib/gnutls_priority.c: reinstated MAC-ALL semantics.
6181 2011-06-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6183 * .gitignore: more files to ignore.
6185 2011-06-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6187 * lib/gnutls_session_pack.c: store the ECC curve in the session
6188 resumption parameters.
6190 2011-06-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6192 * NEWS, doc/cha-cert-auth.texi, doc/examples/ex-verify.c,
6193 lib/gnutls_cert.c, lib/includes/gnutls/x509.h, lib/libgnutls.map,
6194 lib/x509/verify-high.c, tests/Makefile.am, tests/x509cert-tl.c:
6195 Added gnutls_x509_trust_list_add_named_crt() and
6196 gnutls_x509_trust_list_verify_named_crt() that allow having a list
6197 of certificates in the trusted list that will be associated with a
6198 name (e.g. server name) and will not be used as CAs.
6200 2011-06-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6202 * NEWS, doc/cha-intro-tls.texi,
6203 lib/accelerated/intel/aes-gcm-x86.c,
6204 lib/accelerated/intel/aes-x86.c, lib/algorithms/ciphersuites.c,
6205 lib/gnutls_priority.c, lib/includes/gnutls/gnutls.h.in,
6206 lib/nettle/cipher.c: Added SuiteB ciphersuites. Added SUITEB128 and
6207 SUITEB192 priority strings. SECURE256 was renamed to SECURE192
6208 (because TLS ciphersuite's security level was not enough to justify
6211 2011-06-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6213 * NEWS, lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map:
6214 gnutls_ecc_curve_get() was added.
6216 2011-06-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6218 * lib/gnutls_state.c: The PRF is now read from the ciphersuite
6221 2011-06-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6223 * src/common.c: Print information on elliptic curve sessions.
6225 2011-06-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6227 * lib/abstract_int.h, lib/gnutls_pubkey.c, lib/gnutls_sig.c,
6228 lib/gnutls_sig.h, lib/includes/gnutls/abstract.h,
6229 lib/includes/gnutls/compat.h, lib/libgnutls.map, lib/x509/common.c,
6230 lib/x509/common.h, lib/x509/crq.c, lib/x509/privkey.c,
6231 lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509_int.h: Split
6232 pubkey_verify_sig() to pubkey_verify_hashed_data() and
6233 pubkey_verify_data(). Added gnutls_pubkey_verify_data2() to allow
6234 verification of a signature when the signature algorithm cannot be
6235 determined by the signature and the public key only.
6237 2011-06-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6239 * lib/gnutls_hash_int.h, lib/gnutls_sig.c: Allow all SHA algorithms
6242 2011-06-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6244 * lib/x509/verify.c: fixes for
6245 http://tools.ietf.org/html/draft-mavrogiannopoulos-tls-dss-00
6247 2011-06-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6249 * lib/auth/cert.h, lib/gnutls_cert.c, lib/gnutls_handshake.c:
6250 simplified _gnutls_selected_cert_supported_kx().
6252 2011-06-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6254 * lib/gnutls_pubkey.c, lib/nettle/pk.c, lib/x509/verify.c:
6255 Truncation of ECDSA and DSA signatures moved to
6256 _wrap_nettle_pk_sign() and _wrap_nettle_pk_verify().
6258 2011-06-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6260 * lib/algorithms.h, lib/algorithms/ciphersuites.c,
6261 lib/algorithms/sign.c, lib/ext/signature.c, lib/gnutls_buffers.c,
6262 lib/gnutls_buffers.h, lib/gnutls_handshake.c, lib/gnutls_int.h,
6263 lib/gnutls_sig.c, lib/nettle/pk.c: Simplified the handling of
6264 handshake messages to be hashed. Instead of doing a hash during the
6265 handshake process we now keep the data until handshake is over and
6266 hash them on demand. This uses more memory but eliminates issues
6267 with TLS 1.2 and makes the handling simpler.
6269 2011-06-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6271 * lib/ext/signature.c, lib/gnutls_pubkey.c, lib/nettle/pk.c,
6272 lib/x509/common.h, lib/x509/verify.c: Hash algorithms used for DSA
6273 and ECDSA correspond to draft-mavrogiannopoulos-tls-dss-00.txt.
6275 2011-06-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6277 * lib/ext/ecc.c: updated
6279 2011-06-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6281 * doc/cha-internals.texi, doc/gnutls.texi: Added refint macro to
6282 refer to internal -non exported- functions. Used it to reference to
6283 the gnutls_*_register() functions.
6285 2011-06-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6287 * NEWS, lib/Makefile.am, lib/auth/psk_passwd.c, lib/auth/rsa.c,
6288 lib/auth/rsa_export.c, lib/auth/srp_passwd.c, lib/crypto-api.c,
6289 lib/crypto-backend.c, lib/crypto-backend.h, lib/crypto.c,
6290 lib/ext/session_ticket.c, lib/gnutls_cipher.c,
6291 lib/gnutls_cipher_int.h, lib/gnutls_handshake.c,
6292 lib/gnutls_hash_int.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h,
6293 lib/gnutls_pk.c, lib/includes/gnutls/crypto.h, lib/libgnutls.map,
6294 lib/nettle/mpi.c, lib/nettle/pk.c, lib/opencdk/misc.c,
6295 lib/pkcs11_secret.c, lib/random.h, lib/x509/pkcs12.c,
6296 lib/x509/privkey_pkcs8.c, libextra/gnutls_openssl.c, src/psk.c,
6297 src/srptool.c, tests/Makefile.am, tests/crypto_rng.c,
6298 tests/rng-fork.c: gnutls/crypto.h no longer includes functions to
6299 register ciphers. Thus the following functions - gnutls_crypto_bigint_register - gnutls_crypto_cipher_register - gnutls_crypto_digest_register - gnutls_crypto_mac_register - gnutls_crypto_pk_register - gnutls_crypto_rnd_register - gnutls_crypto_single_cipher_register - gnutls_crypto_single_digest_register - gnutls_crypto_single_mac_register are only available internally
6300 via crypto-backend.h.
6302 2011-06-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6304 * build-aux/config.rpath: updated
6306 2011-06-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6308 * lib/accelerated/intel/asm/appro-aes-gcm-x86-64.s,
6309 lib/accelerated/intel/asm/appro-aes-gcm-x86.s,
6310 lib/accelerated/intel/asm/appro-aes-x86-64.s,
6311 lib/accelerated/intel/asm/appro-aes-x86.s: typos and date fix in
6314 2011-06-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6316 * src/benchmark-tls.c: Added benchmark on GCM ciphersuites and
6317 arcfour for comparison.
6319 2011-06-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6321 * lib/gnutls_int.h: corrected typo.
6323 2011-06-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6325 * lib/accelerated/intel/aes-gcm-x86.c,
6326 lib/accelerated/intel/aes-x86.c: indented code
6328 2011-06-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6330 * src/benchmark.c: properly initialize benchmarks.
6332 2011-06-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6334 * configure.ac, m4/hooks.m4: bumped version.
6336 2011-06-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6338 * lib/accelerated/intel/aes-gcm-x86.c: Corrections in encryption and
6339 decryption of incomplete blocks.
6341 2011-06-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6343 * lib/accelerated/intel/aes-gcm-x86.c, lib/gnutls_int.h,
6344 lib/gnutls_state.c: Use nettle's memxor or gnulib's if it doesn't
6347 2011-06-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6349 * NEWS, lib/accelerated/intel/Makefile.am,
6350 lib/accelerated/intel/aes-gcm-x86.c,
6351 lib/accelerated/intel/aes-x86.c, lib/accelerated/intel/aes-x86.h,
6352 lib/accelerated/intel/asm/appro-aes-gcm-x86-64.s,
6353 lib/accelerated/intel/asm/appro-aes-gcm-x86.s, lib/gnutls_num.c,
6354 lib/gnutls_num.h, tests/cipher-test.c: Added AES-GCM optimizations
6355 using the PCLMULQDQ instruction. Uses Andy Polyakov's assembly code.
6357 2011-06-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6359 * lib/crypto-api.c: documented usage of gnutls_cipher_add_auth().
6361 2011-06-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6363 * doc/cha-intro-tls.texi: updates.
6365 2011-05-31 Roman Bogorodskiy <bogorodskiy@gmail.com>
6367 * lib/Makefile.am: Prevent including installed gnutls' headers.
6369 2011-05-31 Roman Bogorodskiy <bogorodskiy@gmail.com>
6371 * src/udp-serv.c: Add missing <netinet/in.h> to get sockaddr_in.
6373 2011-05-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6375 * doc/cha-intro-tls.texi: Compatibility text updated.
6377 2011-05-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6379 * lib/accelerated/intel/asm/appro-aes-x86-64.s,
6380 lib/accelerated/intel/asm/appro-aes-x86.s: Added new AES code by
6383 2011-05-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6385 * doc/credentials/x509/ca-key.pem: Added missing file.
6387 2011-05-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6389 * .gitignore: more files to ignore
6391 2011-05-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6393 * lib/nettle/Makefile.am, lib/nettle/ecc_free.c,
6394 lib/nettle/ecc_make_key.c, lib/nettle/ecc_map.c,
6395 lib/nettle/ecc_mulmod.c, lib/nettle/ecc_points.c,
6396 lib/nettle/ecc_projective_add_point.c,
6397 lib/nettle/ecc_projective_dbl_point_3.c,
6398 lib/nettle/ecc_shared_secret.c, lib/nettle/ecc_sign_hash.c,
6399 lib/nettle/ecc_test.c, lib/nettle/ecc_verify_hash.c: Added FSF
6400 copyright to public domain files.
6402 2011-05-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6404 * configure.ac, lib/accelerated/x86.h: Use cpuid.h if it exists, to
6405 use the x86 CPUID instruction.
6407 2011-05-29 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6409 * THANKS: Added Dash.
6411 2011-05-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6413 * lib/gnutls_compress.c, lib/gnutls_compress.h,
6414 lib/gnutls_handshake.c: simplified
6415 _gnutls_supported_compression_methods().
6417 2011-05-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6419 * lib/gnutls_constate.c, lib/gnutls_handshake.c, lib/gnutls_int.h,
6420 lib/gnutls_session_pack.c, lib/gnutls_v2_compat.c: Correctly set
6421 compression method when resuming sessions. Reported by Dash Shendy.
6423 2011-05-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6425 * lib/gnutls_hash_int.c: digest_length() uses int as input.
6427 2011-05-28 Stef Walter <stefw@collabora.co.uk>
6429 * lib/nettle/cipher.c: Fix warnings with GCC 4.5.2
6431 2011-05-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6433 * doc/credentials/Makefile.am, doc/credentials/x509/Makefile.am:
6434 Corrected EXTRA_DIST
6436 2011-05-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6438 * tests/suite/testcompat-main: updated keys.
6440 2011-05-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6442 * lib/auth/cert.c, lib/auth/cert.h, lib/gnutls_handshake.c,
6443 lib/gnutls_handshake.h: Take into account each and every advertized
6444 public key algorithm when selecting a certificate. Previously we
6445 were assuming only RSA or DSA, or ANY.
6447 2011-05-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6449 * doc/credentials/gnutls-http-serv, src/serv-gaa.c, src/serv-gaa.h,
6450 src/serv.c, src/serv.gaa: Added feature to specify ecc private keys
6453 2011-05-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6455 * lib/algorithms.h, lib/gnutls_handshake.c, lib/gnutls_state.c:
6456 Corrected ECC ciphersuite detection.
6458 2011-05-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6460 * doc/credentials/x509-ca-key.pem, doc/credentials/x509-ca.pem,
6461 doc/credentials/x509-client-key.pem,
6462 doc/credentials/x509-client.pem, doc/credentials/x509-other-ca.pem,
6463 doc/credentials/x509-proxy-key.pem, doc/credentials/x509-proxy.pem,
6464 doc/credentials/x509-server-dsa.pem,
6465 doc/credentials/x509-server-key-dsa.pem,
6466 doc/credentials/x509-server-key.pem,
6467 doc/credentials/x509-server.pem, doc/credentials/x509-trust.pem,
6468 doc/credentials/x509/ca.pem, doc/credentials/x509/cert-dsa.pem,
6469 doc/credentials/x509/cert-ecc.pem,
6470 doc/credentials/x509/cert-rsa.pem, doc/credentials/x509/cert.pem,
6471 doc/credentials/x509/clicert-dsa.pem,
6472 doc/credentials/x509/clicert.pem, doc/credentials/x509/key-dsa.pem,
6473 doc/credentials/x509/key-ecc.pem, doc/credentials/x509/key-rsa.pem,
6474 doc/credentials/x509/key.pem, lib/nettle/pk.c, lib/x509/verify.c:
6475 Laxed verification checks for DSA to allow SHA256 in place of
6476 SHA224. Added new certificate sets in doc/credentials/x509/.
6478 2011-05-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6480 * lib/gnutls_priority.c: ECDHE and ECDSA were added to deafult
6483 2011-05-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6485 * lib/auth/rsa.c, lib/x509/key_encode.c, lib/x509/privkey_pkcs8.c:
6486 gnutls_secure_malloc() is no longer used.
6488 2011-05-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6490 * lib/auth/dhe_psk.c, lib/auth/psk.c: deinitialize PSK key memory.
6492 2011-05-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6494 * lib/auth/psk.c: explicitly request for client key in server side.
6496 2011-05-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6498 * NEWS, lib/algorithms/ciphersuites.c, lib/algorithms/kx.c,
6499 lib/auth/anon.c, lib/auth/anon_ecdh.c, lib/auth/dh_common.c,
6500 lib/auth/dh_common.h, lib/auth/dhe.c, lib/auth/dhe_psk.c,
6501 lib/auth/ecdh_common.c, lib/auth/ecdh_common.h, lib/gnutls_state.c,
6502 lib/includes/gnutls/gnutls.h.in: Added ECDHE-PSK ciphersuites for
6505 2011-05-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6507 * doc/gnutls-guile.texi: Corrections.
6509 2011-05-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6511 * doc/.gitignore: ignore tex files.
6513 2011-05-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6515 * doc/cha-copying.texi: Do not list all licenses in the manual of
6516 gnutls. Just the license of the manual is enough.
6518 2011-05-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6520 * doc/Makefile.am, doc/cha-ciphersuites.texi,
6521 doc/cha-functions.texi, doc/cha-preface.texi,
6522 doc/gnutls-guile.texi, doc/guile.texi, guile/src/core.c: guile
6523 bindings added as a separate document.
6525 2011-05-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6527 * doc/gnutls.texi: reorganization. Removed guile bindings.
6529 2011-05-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6531 * doc/cha-auth.texi, doc/cha-cert-auth.texi, doc/cha-gtls-app.texi,
6532 doc/gnutls.texi: reorganization and added section on parameter
6535 2011-05-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6537 * lib/Makefile.am, lib/auth/Makefile.am, lib/ext/Makefile.am,
6538 lib/nettle/Makefile.am: Added new headers.
6540 2011-05-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6542 * NEWS: document elliptic curves addition.
6544 2011-05-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6546 * m4/hooks.m4: libgcrypt support was removed.
6548 2011-05-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6550 * NEWS: listed newly added functions.
6552 2011-05-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6554 * lib/nettle/Makefile.am, lib/nettle/ecc.h,
6555 lib/nettle/ecc_make_key.c, lib/nettle/ecc_shared_secret.c,
6556 lib/nettle/ecc_sign_hash.c, lib/nettle/ecc_verify_hash.c,
6557 lib/nettle/mp_unsigned_bin.c: Use nettle's functions for integer
6560 2011-05-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6562 * lib/algorithms/publickey.c, lib/gnutls_sig.c: more updates for
6565 2011-05-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6567 * lib/ext/ecc.c: reduced debugging.
6569 2011-05-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6571 * lib/gnutls_pubkey.c, lib/gnutls_sig.c: Changes to allow ECDH-DSA
6572 with client mode certificates.
6574 2011-05-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6576 * tests/certs/ca-cert-ecc.pem, tests/certs/ca-ecc.pem,
6577 tests/certs/cert-ecc.pem, tests/certs/ecc.pem,
6578 tests/suite/testcompat-main: Added server and client mode tests for
6581 2011-05-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6583 * lib/ext/session_ticket.c, lib/gnutls_db.c, lib/gnutls_dtls.c,
6584 lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_int.h,
6585 lib/gnutls_session_pack.c, lib/gnutls_v2_compat.c,
6586 lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map,
6587 lib/nettle/rnd.c, lib/opencdk/keydb.c, lib/opencdk/literal.c,
6588 lib/opencdk/read-packet.c, lib/opencdk/sig-check.c,
6589 lib/openpgp/gnutls_openpgp.c, lib/system.c, lib/system.h,
6590 lib/x509/common.c, lib/x509/verify.c, tests/chainverify.c: Added
6591 gnutls_global_set_time_function() to allow overriding the default
6592 system time() function.
6594 2011-05-25 Giuseppe Scrivano <gscrivano@gnu.org>
6596 * doc/cha-programs.texi: Fix example in the documentation. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
6598 2011-05-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6600 * doc/cha-programs.texi: updated documentation on PSK. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
6602 2011-05-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6604 * lib/nettle/ecc_projective_add_point.c: If Q=-P return the point at
6607 2011-05-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6609 * tests/chainverify.c: Added elliptic curves chain certificate.
6611 2011-05-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6613 * lib/gnutls_buffers.c: do not try to write to a socket when no
6616 2011-05-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6618 * tests/openpgpself.c: increased log level
6620 2011-05-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6622 * lib/gnutls_buffers.h, lib/gnutls_handshake.c:
6623 _gnutls_handshake_hash_buffer_clear was replaced by
6624 _gnutls_buffer_clear();
6626 2011-05-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6628 * lib/nettle/pk.c: Only warn on invalid security level hashes.
6630 2011-05-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6632 * src/certtool.c: SHA256 is the default hash algorithm in certtool.
6634 2011-05-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6636 * lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_privkey.c,
6637 lib/gnutls_sig.c, lib/x509/verify.c: Several updates to allow
6638 generation and signing of an ECC certificate.
6640 2011-05-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6642 * doc/manpages/certtool.1: updated certtool info.
6644 2011-05-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6646 * lib/algorithms/ciphersuites.c: corrected bug in ciphersuite name
6649 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6651 * doc/cha-auth.texi: Discussed the newly added ciphersuites.
6653 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6655 * doc/Makefile.am: Added algorithms/ to function index.
6657 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6659 * lib/algorithms/ciphersuites.c: Added ECC ciphersuites from
6662 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6664 * src/certtool.c: Print the private key after generation. Print ECC
6667 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6669 * lib/algorithms/ecc.c, lib/gnutls_ecc.c,
6670 lib/includes/gnutls/abstract.h, lib/includes/gnutls/x509.h,
6671 lib/libgnutls.map, lib/x509/privkey.c: Added
6672 gnutls_x509_privkey_import_ecc_raw() and
6673 gnutls_x509_privkey_export_ecc_raw().
6675 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6677 * lib/x509/privkey.c: Decode PEM ECC private keys.
6679 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6681 * lib/algorithms.h, lib/algorithms/ecc.c, lib/x509/key_encode.c,
6682 lib/x509/privkey.c, src/certtool-gaa.c, src/certtool-gaa.h,
6683 src/certtool.c, src/certtool.gaa: updates to allow the generation of
6686 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6688 * lib/x509_b64.c: do not crash on null message.
6690 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6692 * .gitignore: updated
6694 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6696 * lib/algorithms/ciphersuites.c, lib/algorithms/kx.c,
6697 lib/auth/cert.c, lib/auth/dhe.c, lib/gnutls_pk.c, lib/gnutls_pk.h,
6698 lib/gnutls_pubkey.c, lib/gnutls_sig.c, lib/gnutls_state.c,
6699 lib/includes/gnutls/gnutls.h.in, lib/nettle/ecc_sign_hash.c,
6700 lib/nettle/pk.c, lib/nettle/rnd.c, lib/nettle/rnd.h,
6701 lib/x509/common.h, lib/x509/verify.c: Added support for verifying
6702 server certificates with ECDSA.
6704 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6706 * lib/ext/ecc.c: Only reply with ECC Packet format extension if we
6707 have negotiated ECC.
6709 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6711 * tests/pathlen/ca-no-pathlen.pem,
6712 tests/pathlen/no-ca-or-pathlen.pem, tests/pkcs12_s2k_pem.c: leak fix
6713 and updates for new formats.
6715 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6717 * tests/suite/testcompat-main: Added ECDHE-RSA tests.
6719 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6721 * lib/algorithms/secparams.c, lib/gnutls_pubkey.c: always put
6722 leading zero to output keys
6724 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6726 * lib/x509/output.c: print the bits together with the security
6729 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6731 * lib/x509/privkey.c, lib/x509/privkey_pkcs8.c: leaks fixes.
6733 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6735 * lib/pkcs11.c: corrected file descriptor leak.
6737 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6739 * libextra/gnutls_extra.c: gnutls_algorithms.h -> algorithms.h
6741 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6743 * lib/x509/key_decode.c, lib/x509/key_encode.c: corrected ECC public
6744 key encoding/decoding.
6746 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6748 * src/certtool-common.c, src/certtool.c: Corrected bug in public key
6749 import. print information on ECC public keys.
6751 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6753 * lib/includes/gnutls/crypto.h, lib/nettle/pk.c,
6754 lib/x509/key_encode.c, lib/x509/x509_int.h: No need to keep Z in
6755 parameters since the pubkey can always be converted to an affine
6758 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6760 * lib/algorithms/secparams.c, lib/gnutls_pubkey.c,
6761 lib/includes/gnutls/abstract.h, lib/libgnutls.map,
6762 lib/x509/common.c, lib/x509/key_decode.c, lib/x509/mpi.c,
6763 lib/x509/output.c: print information on ECC certificates.
6765 2011-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6767 * lib/abstract_int.h, lib/algorithms.h, lib/algorithms/ecc.c,
6768 lib/auth/anon.h, lib/auth/ecdh_common.c, lib/auth/ecdh_common.h,
6769 lib/auth/rsa.c, lib/auth/rsa_export.c, lib/ext/ecc.c,
6770 lib/gnutls.asn, lib/gnutls_asn1_tab.c, lib/gnutls_ecc.c,
6771 lib/gnutls_ecc.h, lib/gnutls_errors.c, lib/gnutls_int.h,
6772 lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_privkey.c,
6773 lib/gnutls_pubkey.c, lib/gnutls_rsa_export.c,
6774 lib/gnutls_rsa_export.h, lib/gnutls_sig.c, lib/gnutls_sig.h,
6775 lib/gnutls_state.c, lib/gnutls_state.h,
6776 lib/includes/gnutls/crypto.h, lib/includes/gnutls/gnutls.h.in,
6777 lib/libgnutls.map, lib/nettle/ecc_test.c, lib/nettle/pk.c,
6778 lib/openpgp/openpgp_int.h, lib/openpgp/pgp.c,
6779 lib/openpgp/privkey.c, lib/x509/Makefile.am, lib/x509/common.c,
6780 lib/x509/common.h, lib/x509/crq.c, lib/x509/key_decode.c,
6781 lib/x509/key_encode.c, lib/x509/mpi.c, lib/x509/privkey.c,
6782 lib/x509/privkey_pkcs8.c, lib/x509/verify.c, lib/x509/x509.c,
6783 lib/x509/x509_int.h, lib/x509/x509_write.c: gnutls_pk_params_st is
6784 used internally to transfer public key parameters. This replaces the
6785 raw bigint_t arrays.
6787 2011-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6789 * lib/algorithms.h, lib/algorithms/ciphersuites.c,
6790 lib/algorithms/ecc.c, lib/auth/ecdh_common.c, lib/ext/ecc.c,
6791 lib/ext/ecc.h: Curve TLS ID is being stored in algorithms/ecc.c.
6793 2011-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6795 * configure.ac, lib/Makefile.am, lib/algorithms.h,
6796 lib/algorithms/Makefile.am, lib/algorithms/cert_types.c,
6797 lib/algorithms/ciphers.c, lib/algorithms/ciphersuites.c,
6798 lib/algorithms/ecc.c, lib/algorithms/kx.c, lib/algorithms/mac.c,
6799 lib/algorithms/protocols.c, lib/algorithms/publickey.c,
6800 lib/algorithms/secparams.c, lib/algorithms/sign.c, lib/auth/cert.c,
6801 lib/auth/dh_common.c, lib/auth/dhe.c, lib/auth/ecdh_common.c,
6802 lib/auth/rsa.c, lib/auth/rsa_export.c, lib/ext/session_ticket.c,
6803 lib/ext/signature.c, lib/ext/srp.c, lib/gnutls_algorithms.c,
6804 lib/gnutls_algorithms.h, lib/gnutls_auth.c, lib/gnutls_cert.c,
6805 lib/gnutls_cipher.c, lib/gnutls_cipher_int.c,
6806 lib/gnutls_compress.c, lib/gnutls_constate.c, lib/gnutls_ecc.c,
6807 lib/gnutls_handshake.c, lib/gnutls_kx.c, lib/gnutls_priority.c,
6808 lib/gnutls_record.c, lib/gnutls_sig.c, lib/gnutls_state.c,
6809 lib/gnutls_v2_compat.c, lib/gnutls_x509.c, lib/nettle/ecc_test.c,
6810 lib/nettle/mpi.c, lib/opencdk/read-packet.c, lib/x509/common.h,
6811 lib/x509/privkey_pkcs8.c: gnutls_algorithms.c was split into
6812 manageable files in algorithms/.
6814 2011-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6816 * lib/gnutls_handshake.c: use the _gnutls_session_is_ecc() to check
6819 2011-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6821 * lib/auth/ecdh_common.c, lib/gnutls_algorithms.c,
6822 lib/includes/gnutls/gnutls.h.in, lib/nettle/pk.c, lib/x509/x509.c:
6823 Added OIDs and definitions for ECDSA signature algorithm.
6825 2011-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6827 * src/benchmark-tls.c: Print purpose of testing.
6829 2011-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6831 * src/benchmark-tls.c: compare ECDH and DH on the same security
6834 2011-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6836 * doc/cha-intro-tls.texi, lib/gnutls_algorithms.c,
6837 lib/gnutls_algorithms.h, lib/gnutls_priority.c: Added ability to
6838 specify curves as priority strings.
6840 2011-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6842 * lib/nettle/ecc.h: removed ecc_is_valid_idx() prototype
6844 2011-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6846 * lib/nettle/ecc.h, lib/nettle/ecc_make_key.c,
6847 lib/nettle/ecc_map.c, lib/nettle/ecc_mulmod.c,
6848 lib/nettle/ecc_points.c, lib/nettle/ecc_projective_add_point.c,
6849 lib/nettle/ecc_projective_dbl_point.c,
6850 lib/nettle/ecc_projective_dbl_point_3.c,
6851 lib/nettle/ecc_shared_secret.c, lib/nettle/ecc_test.c,
6852 lib/nettle/ecc_verify_hash.c, lib/nettle/pk.c: Dropped ltc_ from
6853 function and type names.
6855 2011-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6857 * tests/x509cert.c: corrected memory leak.
6859 2011-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6861 * lib/nettle/cipher.c: use new nettle's name for gcm_aes_auth().
6863 2011-05-21 Simon Josefsson <simon@josefsson.org>
6865 * gl/hmac-md5.c, gl/m4/valgrind-tests.m4, gl/memxor.c, gl/memxor.h,
6866 gl/override/lib/hmac-md5.c.diff, gl/override/lib/memxor.c.diff,
6867 gl/override/lib/memxor.h.diff,
6868 gl/override/m4/valgrind-tests.m4.diff: Override gnulib code with fix
6869 for memxor and valgrind.
6871 2011-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6873 * lib/auth/anon_ecdh.c, lib/auth/dh_common.c, lib/auth/dhe.c,
6874 lib/auth/ecdh_common.c, lib/gnutls_algorithms.c,
6875 lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_state.c,
6876 lib/gnutls_state.h, lib/includes/gnutls/gnutls.h.in: Added support
6877 for ECDHE-RSA ciphersuites.
6879 2011-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6881 * tests/eagain-common.h: inlined function to avoid gcc warnings
6883 2011-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6885 * lib/nettle/Makefile.am, lib/nettle/ecc.h, lib/nettle/ecc_free.c,
6886 lib/nettle/ecc_make_key.c, lib/nettle/ecc_map.c,
6887 lib/nettle/ecc_mulmod.c, lib/nettle/ecc_points.c,
6888 lib/nettle/ecc_projective_add_point.c,
6889 lib/nettle/ecc_projective_dbl_point.c,
6890 lib/nettle/ecc_projective_dbl_point_3.c,
6891 lib/nettle/ecc_shared_secret.c, lib/nettle/ecc_sign_hash.c,
6892 lib/nettle/ecc_test.c, lib/nettle/ecc_verify_hash.c,
6893 lib/nettle/ltc_ecc_map.c, lib/nettle/ltc_ecc_mulmod.c,
6894 lib/nettle/ltc_ecc_points.c,
6895 lib/nettle/ltc_ecc_projective_add_point.c,
6896 lib/nettle/ltc_ecc_projective_dbl_point.c: Added previous code that
6897 was fixed for y^2 = x^3 - 3x + b, because all secg curves have a
6898 fixed to -3. Simplified file naming scheme.
6900 2011-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6902 * lib/gnutls_algorithms.c, lib/gnutls_int.h: Added SECP224R1.
6904 2011-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6906 * src/Makefile.am, src/benchmark-cipher.c, src/benchmark-tls.c,
6907 src/benchmark.c, src/benchmark.h: updates to benchmarks.
6909 2011-05-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6911 * lib/gnutls_algorithms.c, lib/gnutls_int.h, lib/gnutls_priority.c,
6912 lib/nettle/ecc_test.c: Added curve SECP512R1.
6914 2011-05-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6916 * src/benchmark-cipher.c, src/benchmark-common.c, src/benchmark.c:
6917 benchmark ECDH and DH.
6919 2011-05-20 Simon Josefsson <simon@josefsson.org>
6921 * build-aux/config.rpath, gl/Makefile.am, gl/alignof.h,
6922 gl/glthread/lock.c, gl/glthread/lock.h, gl/glthread/threadlib.c,
6923 gl/hmac-md5.c, gl/intprops.h, gl/m4/gnulib-cache.m4,
6924 gl/m4/gnulib-comp.m4, gl/m4/strerror.m4, gl/m4/strerror_r.m4,
6925 gl/m4/thread.m4, gl/m4/valgrind-tests.m4, gl/m4/yield.m4,
6926 gl/memxor.c, gl/memxor.h, gl/stdint.in.h, gl/strerror-impl.h,
6927 gl/strerror.c, gl/strerror_r.c, gl/tests/Makefile.am,
6928 gl/tests/dummy.c, gl/tests/glthread/thread.c,
6929 gl/tests/glthread/thread.h, gl/tests/glthread/yield.h,
6930 gl/tests/test-intprops.c, gl/tests/test-lock.c,
6931 gl/tests/test-strerror.c, gl/tests/test-strerror_r.c: Update gnulib
6934 2011-05-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6936 * lib/auth/ecdh_common.c, lib/gnutls_handshake.c, src/common.c:
6937 client side ECC fixes.
6939 2011-05-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6941 * src/cli.c: corrected debugging.
6943 2011-05-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6945 * lib/auth/ecdh_common.c, lib/gnutls_algorithms.c,
6946 lib/gnutls_algorithms.h, lib/gnutls_global.c,
6947 lib/includes/gnutls/crypto.h, lib/nettle/ecc.h,
6948 lib/nettle/ecc_free.c, lib/nettle/ecc_make_key.c,
6949 lib/nettle/ecc_shared_secret.c, lib/nettle/ecc_sign_hash.c,
6950 lib/nettle/ecc_test.c, lib/nettle/ecc_verify_hash.c,
6951 lib/nettle/ltc_ecc_map.c, lib/nettle/ltc_ecc_mulmod.c,
6952 lib/nettle/ltc_ecc_points.c,
6953 lib/nettle/ltc_ecc_projective_add_point.c,
6954 lib/nettle/ltc_ecc_projective_dbl_point.c, lib/nettle/pk.c,
6955 lib/x509/x509_int.h: Account 'A' in calculations for point doubling.
6957 2011-05-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6959 * gl/Makefile.am, gl/alignof.h, gl/close-hook.c, gl/close-hook.h,
6960 gl/error.c, gl/error.h, gl/fd-hook.c, gl/fd-hook.h,
6961 gl/glthread/lock.c, gl/glthread/lock.h, gl/glthread/threadlib.c,
6962 gl/intprops.h, gl/m4/error.m4, gl/m4/fcntl_h.m4, gl/m4/fseeko.m4,
6963 gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/inttypes.m4,
6964 gl/m4/manywarnings.m4, gl/m4/memchr.m4, gl/m4/netdb_h.m4,
6965 gl/m4/stdint.m4, gl/m4/stdio_h.m4, gl/m4/strerror.m4,
6966 gl/m4/strerror_r.m4, gl/m4/string_h.m4, gl/m4/sys_uio_h.m4,
6967 gl/m4/thread.m4, gl/m4/unistd_h.m4, gl/m4/warnings.m4,
6968 gl/m4/wchar_h.m4, gl/m4/yield.m4, gl/malloc.c, gl/netdb.in.h,
6969 gl/realloc.c, gl/sockets.c, gl/stdint.in.h, gl/stdio.in.h,
6970 gl/stdlib.in.h, gl/strerror-impl.h, gl/strerror.c, gl/strerror_r.c,
6971 gl/string.in.h, gl/sys_socket.in.h, gl/sys_uio.in.h,
6972 gl/tests/Makefile.am, gl/tests/dummy.c, gl/tests/fcntl.in.h,
6973 gl/tests/glthread/thread.c, gl/tests/glthread/thread.h,
6974 gl/tests/glthread/yield.h, gl/tests/intprops.h,
6975 gl/tests/inttypes.in.h, gl/tests/test-fcntl-h.c,
6976 gl/tests/test-intprops.c, gl/tests/test-inttypes.c,
6977 gl/tests/test-lock.c, gl/tests/test-strerror.c,
6978 gl/tests/test-strerror_r.c, gl/tests/test-sys_socket.c,
6979 gl/tests/test-sys_uio.c, gl/unistd.in.h, gl/verify.h, gl/wchar.in.h:
6980 Added new gnulib and error.h.
6982 2011-05-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6984 * lib/gnutls_global.c: removed debugging.
6986 2011-05-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6988 * cfg.mk: added error.h
6990 2011-05-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
6992 * lib/Makefile.am, lib/auth/Makefile.am, lib/auth/anon.h,
6993 lib/auth/anon_ecdh.c, lib/auth/ecdh_common.c,
6994 lib/auth/ecdh_common.h, lib/ext/Makefile.am, lib/ext/ecc.c,
6995 lib/ext/ecc.h, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h,
6996 lib/gnutls_dh.c, lib/gnutls_ecc.c, lib/gnutls_ecc.h,
6997 lib/gnutls_errors.c, lib/gnutls_extensions.c, lib/gnutls_global.c,
6998 lib/gnutls_int.h, lib/gnutls_pk.c, lib/gnutls_pk.h,
6999 lib/gnutls_priority.c, lib/gnutls_state.c, lib/gnutls_state.h,
7000 lib/includes/gnutls/crypto.h, lib/includes/gnutls/gnutls.h.in,
7001 lib/nettle/Makefile.am, lib/nettle/ecc.h, lib/nettle/ecc_free.c,
7002 lib/nettle/ecc_make_key.c, lib/nettle/ecc_shared_secret.c,
7003 lib/nettle/ecc_sign_hash.c, lib/nettle/ecc_test.c,
7004 lib/nettle/ecc_verify_hash.c, lib/nettle/gnettle.h,
7005 lib/nettle/ltc_ecc_map.c, lib/nettle/ltc_ecc_mulmod.c,
7006 lib/nettle/ltc_ecc_points.c,
7007 lib/nettle/ltc_ecc_projective_add_point.c,
7008 lib/nettle/ltc_ecc_projective_dbl_point.c,
7009 lib/nettle/mp_unsigned_bin.c, lib/nettle/mpi.c, lib/nettle/multi.c,
7010 lib/nettle/pk.c, lib/nettle/rnd.c, lib/nettle/rnd.h,
7011 lib/x509/x509_int.h: Initial ecc support. Adds support for anonymous
7014 2011-05-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7016 * src/benchmark-common.c, src/benchmark.h: more win32 fixes.
7018 2011-05-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7020 * src/benchmark-common.c: corrections in win32 version.
7022 2011-05-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7024 * lib/ext/signature.c, lib/gnutls_extensions.c: Some debugging moved
7027 2011-05-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7029 * src/Makefile.am, src/benchmark-common.c, src/benchmark-tls.c,
7030 src/benchmark.c, src/benchmark.h, tests/eagain-common.h: Added
7031 benchmark utility that tests the encryption time in TLS packets.
7033 2011-05-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7035 * src/p11common.c: corrected message reporting.
7037 2011-05-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7039 * src/p11common.c: Corrected PIN caching.
7041 2011-05-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7043 * lib/gnutls_record.c: assign value
7045 2011-05-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7047 * lib/nettle/mpi.c: reduce the repetitions for rabin-miller to a
7050 2011-05-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7052 * doc/cha-intro-tls.texi: discuss missing algorithms.
7054 2011-05-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7058 2011-05-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7060 * lib/gnutls_str.c, lib/gnutls_str.h, lib/pkcs11.c: Correctly import
7061 and export pkcs11-urls with ID field set.
7063 2011-05-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7065 * lib/nettle/egd.c, lib/opencdk/literal.c, lib/opencdk/misc.c,
7066 lib/opencdk/read-packet.c, lib/pkcs11.c, lib/x509/common.c,
7067 lib/x509_b64.c, lib/x509_b64.h: eliminated last instances of
7068 strcpy() and strcat() to keep pendantics happy.
7070 2011-05-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7072 * doc/cha-intro-tls.texi: update on compatibility issues text.
7074 2011-05-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7076 * lib/pkcs11.c: doc update in gnutls_pkcs11_init()
7078 2011-05-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7080 * doc/cha-preface.texi: removed references that produced nothing in
7083 2011-05-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7085 * doc/cha-intro-tls.texi: Added missing nodes.
7087 2011-05-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7089 * doc/cha-intro-tls.texi: Added discussion on compatibility issues.
7091 2011-05-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7093 * libextra/gnutls_openssl.c: undef X509_NAME before including
7096 2011-05-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7098 * NEWS, doc/cha-gtls-app.texi, lib/accelerated/intel/aes-x86.c,
7099 lib/auth/rsa.c, lib/auth/rsa_export.c, lib/auth/srp.c,
7100 lib/gnutls_buffers.c, lib/gnutls_dtls.c, lib/gnutls_errors.c,
7101 lib/gnutls_errors.h, lib/gnutls_global.c, lib/gnutls_global.h,
7102 lib/gnutls_handshake.c, lib/gnutls_record.c,
7103 lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, src/cli.c,
7104 src/serv.c: Added gnutls_global_set_audit_log_function() that allows
7105 associating TLS session with several important issues.
7107 2011-05-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7109 * NEWS, lib/x509/crq.c: updates
7111 2011-05-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7113 * NEWS, lib/includes/gnutls/x509.h, lib/libgnutls.map,
7114 lib/x509/crq.c, lib/x509/x509_write.c, tests/crq_key_id.c: Added
7115 gnutls_x509_crq_verify().
7117 2011-05-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7119 * doc/manpages/certtool.1, src/Makefile.am, src/certtool-common.c,
7120 src/certtool-common.h, src/certtool.c, src/common.c,
7121 src/p11common.c, src/p11common.h, src/pkcs11.c: certtool can now
7122 load private keys and public keys from PKCS #11 tokens (via URLs).
7124 2011-05-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7126 * lib/pkcs11_privkey.c: gnutls_pkcs11_privkey_import_url() will
7127 correctly set algorithm of private key.
7129 2011-05-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7131 * src/Makefile.am, src/certtool.c, src/p11tool.c: No libgnutls-extra
7132 is required for certtool or p11tool.
7134 2011-05-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7136 * tests/rng-fork.c: Do not use /tmp for temporary file. Just use the
7137 local (test) directory.
7139 2011-05-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7141 * tests/hostname-check.c: Added a check to verify that we don't try
7142 forever trying to verify too many wildcards.
7144 2011-05-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7146 * THANKS, lib/gnutls_str.c, lib/gnutls_str.h, lib/openpgp/pgp.c,
7147 lib/x509/rfc2818_hostname.c: _gnutls_hostname_compare() was
7148 incredibly slow when over ten wildcards were present. Set a limit on
7149 6 wildcards to avoid any denial of service attack. Reported by Kalle
7152 2011-05-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7154 * lib/gnutls_str.c, lib/opencdk/misc.c: Use c_toupper to avoid
7155 converting characters non in the english ASCII set. Reported by
7156 Kalle Olavi Niemitalo.
7158 2011-05-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7160 * lib/x509/verify-high.c: use > 0 instead of == 1.
7162 2011-05-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7164 * .gitignore, NEWS, lib/gnutls_cert.c,
7165 lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/x509.h,
7166 lib/libgnutls.map, lib/x509/verify-high.c, tests/Makefile.am,
7167 tests/x509cert.c: Added gnutls_certificate_get_issuer() to allow
7168 getting the issuer a certificate from the certificate credentials
7171 2011-04-30 Andreas Metzler <ametzler@downhill.at.eu.org>
7173 * doc/manpages/p11tool.1: escape dashes in manpage Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
7175 2011-05-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7177 * .gitignore, gl/m4/.gitignore, gl/m4/byteswap.m4,
7178 gl/m4/codeset.m4, gl/m4/fcntl-o.m4, gl/m4/fcntl_h.m4,
7179 gl/m4/func.m4, gl/m4/gettext.m4, gl/m4/glibc2.m4, gl/m4/glibc21.m4,
7180 gl/m4/hmac-md5.m4, gl/m4/iconv.m4, gl/m4/intdiv0.m4, gl/m4/intl.m4,
7181 gl/m4/intldir.m4, gl/m4/intlmacosx.m4, gl/m4/intmax.m4,
7182 gl/m4/inttypes-pri.m4, gl/m4/lcmessage.m4, gl/m4/ld-output-def.m4,
7183 gl/m4/ld-version-script.m4, gl/m4/lock.m4, gl/m4/md5.m4,
7184 gl/m4/memmem.m4, gl/m4/memxor.m4, gl/m4/nls.m4, gl/m4/po.m4,
7185 gl/m4/printf-posix.m4, gl/m4/progtest.m4, gl/m4/strcase.m4,
7186 gl/m4/strdup.m4, gl/m4/strings_h.m4, gl/m4/strverscmp.m4,
7187 gl/m4/threadlib.m4, gl/m4/time_r.m4, gl/m4/uintmax_t.m4,
7188 gl/m4/valgrind-tests.m4, gl/m4/vasprintf.m4, gl/m4/visibility.m4,
7189 gl/m4/vsnprintf.m4, gl/tests/.gitignore, gl/tests/intprops.h,
7190 gl/tests/test-byteswap.c, gl/tests/test-func.c,
7191 gl/tests/test-hmac-md5.c, gl/tests/test-md5.c,
7192 gl/tests/test-strings.c, gl/tests/test-strverscmp.c,
7193 gl/tests/test-u64.c, gl/tests/test-vasprintf.c,
7194 gl/tests/test-vsnprintf.c: Added missing m4 gl files.
7196 2011-05-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7198 * NEWS: documented previous updates.
7200 2011-04-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7202 * tests/suite/testcompat-main: Check for openssl 1.0.x to test DTLS.
7204 2011-04-28 Ludovic Courtès <ludo@gnu.org>
7206 * guile/modules/Makefile.am, guile/modules/gnutls/build/tests.scm,
7207 guile/tests/anonymous-auth.scm, guile/tests/errors.scm,
7208 guile/tests/openpgp-auth.scm, guile/tests/openpgp-keyring.scm,
7209 guile/tests/openpgp-keys.scm, guile/tests/pkcs-import-export.scm,
7210 guile/tests/session-record-port.scm, guile/tests/srp-base64.scm,
7211 guile/tests/x509-auth.scm, guile/tests/x509-certificates.scm: guile:
7212 Fix tests to match the `exit' behavior introduced in Guile 2.0.1. This fix makes tests behave correctly wrt. to the Guile bug fix at
7214 <http://git.sv.gnu.org/cgit/guile.git/commit/?id=e309f3bf9ee910c4772353ca3ff95f6f4ef466b5>.
7216 2011-04-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7218 * lib/gnutls.pc.in: removed pakchois dependency
7220 2011-04-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7222 * NEWS, configure.ac: updated for release
7224 2011-04-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7226 * tests/x509dn.c: added missing header.
7228 2011-04-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7230 * lib/accelerated/intel/Makefile.am: pass tag=CC to libtool. It
7231 seems automake cannot really work with assembler sources.
7233 2011-04-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7235 * lib/gnutls_pcert.c, lib/openpgp/gnutls_openpgp.c: documentation
7238 2011-04-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7240 * cfg.mk: start counting from 2009 for ChangeLog.
7242 2011-04-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7244 * tests/hostname-check.c: Removed incorrect test on IPAddresses (was
7245 relying on IPaddresses encoded as text)
7247 2011-04-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7249 * lib/x509/rfc2818_hostname.c: gnutls_x509_crt_check_hostname() will
7250 never compare against IPaddress. (previous comparison was flawed)
7252 2011-04-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7254 * doc/examples/ex-cert-select.c, lib/auth/cert.c, lib/auth/cert.h,
7255 lib/gnutls_cert.c, lib/includes/gnutls/abstract.h,
7256 lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, src/certtool.c,
7257 src/cli.c, tests/x509dn.c: Added
7258 gnutls_certificate_set_retrieve_function2() to replace
7259 gnutls_certificate_set_retrieve_function(). The new one is a
7260 efficient for busy servers because it eliminates the need for the
7261 server to encode the certificate to DER format.
7263 2011-04-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7265 * lib/gnutls_alert.c, lib/gnutls_errors.c,
7266 lib/includes/gnutls/gnutls.h.in: Added GNUTLS_E_USER_ERROR
7268 2011-04-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7270 * lib/auth/cert.c, lib/ext/signature.c, lib/ext/signature.h,
7271 lib/gnutls_pcert.c, lib/includes/gnutls/abstract.h,
7272 lib/libgnutls.map: Eliminated the need for sign_algo in
7273 gnutls_pcert_st. This means that we don't follow RFC5246 by letter,
7274 but there wasn't any other implementation using the sign_algorithm
7275 part of the certificate selection, and this helps reduce complexity.
7277 2011-04-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7279 * src/cfg/Makefile.am, src/cfg/README: Added readme for libcfg.
7281 2011-04-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7283 * configure.ac: No need to check for -maes and -mpclmul with the
7284 current AES-NI code.
7286 2011-04-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7288 * .gitignore: updated
7290 2011-04-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7292 * lib/Makefile.am, lib/abstract_int.h, lib/auth/cert.c,
7293 lib/auth/cert.h, lib/auth/dhe.c, lib/auth/rsa.c,
7294 lib/auth/rsa_export.c, lib/auth/srp_rsa.c, lib/ext/signature.c,
7295 lib/ext/signature.h, lib/gnutls_algorithms.c, lib/gnutls_cert.c,
7296 lib/gnutls_cert.h, lib/gnutls_handshake.c, lib/gnutls_int.h,
7297 lib/gnutls_mpi.c, lib/gnutls_pcert.c, lib/gnutls_privkey.c,
7298 lib/gnutls_pubkey.c, lib/gnutls_sig.c, lib/gnutls_sig.h,
7299 lib/gnutls_state.c, lib/gnutls_ui.c, lib/gnutls_x509.c,
7300 lib/gnutls_x509.h, lib/includes/gnutls/abstract.h,
7301 lib/opencdk/pubkey.c, lib/openpgp/gnutls_openpgp.c,
7302 lib/openpgp/gnutls_openpgp.h, lib/openpgp/openpgp_int.h,
7303 lib/openpgp/pgp.c, lib/openpgp/pgpverify.c, lib/openpgp/privkey.c,
7304 lib/pkcs11_int.h, lib/x509/common.h, lib/x509/pkcs12_encr.c,
7305 lib/x509/sign.c, lib/x509/verify-high.c, lib/x509/verify.c,
7306 lib/x509/x509.c, lib/x509/x509_int.h: Combined external abstract API
7307 with internal usage of gnutls_cert. This results to a
7308 gnutls_pcert_st struct exported in abstract.h. This change will allow a certificate retrieval callback that does
7309 not require gnutls to decode or encode the provided certificate.
7311 2011-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7313 * NEWS, lib/gnutls_priority.c: Restored HMAC-MD5 for compatibility.
7314 Although considered weak, several sites require it for connection.
7315 It is enabled for "NORMAL" and "PERFORMANCE" priority strings.
7317 2011-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7319 * lib/accelerated/intel/aes-x86.c: Try to detect AES-NI on Intel and
7322 2011-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7324 * NEWS, configure.ac, lib/accelerated/intel/Makefile.am,
7325 lib/accelerated/intel/README, lib/accelerated/intel/aes-x86.c,
7326 lib/accelerated/intel/asm/appro-aes-x86-64.s,
7327 lib/accelerated/intel/asm/appro-aes-x86.s,
7328 lib/accelerated/intel/asm/x64_iaesx64.s,
7329 lib/accelerated/intel/asm/x86_iaesx86.s,
7330 lib/accelerated/intel/iaes_asm_interface.h,
7331 lib/accelerated/intel/iaesni.h, lib/accelerated/intel/license.txt:
7332 Added Andy Polyakov's version of AES-NI optimizations.
7334 2011-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7336 * .gitignore: more files to ignore
7338 2011-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7340 * src/tests.c: COMP-ZLIB -> COMP-DEFLATE
7342 2011-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7344 * lib/Makefile.am, m4/hooks.m4: Link with pthreads.
7346 2011-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7348 * doc/Makefile.am: read API from new directories as well.
7350 2011-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7352 * lib/accelerated/Makefile.am: corrected filename
7354 2011-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7356 * lib/ext/session_ticket.c: removed conditional compilation
7358 2011-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7360 * lib/ext/session_ticket.h: removed conditional compilation.
7362 2011-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7364 * lib/accelerated/cryptodev.c: use correct header.
7366 2011-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7368 * lib/README: documented directories.
7370 2011-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7372 * lib/Makefile.am, lib/accelerated/Makefile.am,
7373 lib/accelerated/cryptodev.c, lib/accelerated/cryptodev.h,
7374 lib/cryptodev.c, lib/gnutls_cryptodev.h, lib/gnutls_global.c: Moved
7375 cryptodev to accelerated/
7377 2011-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7379 * lib/gnutls_extensions.c, lib/gnutls_handshake.c: Session tickets
7380 are included unconditionally.
7382 2011-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7384 * configure.ac, lib/Makefile.am, lib/auth/Makefile.am,
7385 lib/auth/anon.c, lib/auth/anon.h, lib/auth/cert.c, lib/auth/cert.h,
7386 lib/auth/dh_common.c, lib/auth/dh_common.h, lib/auth/dhe.c,
7387 lib/auth/dhe_psk.c, lib/auth/psk.c, lib/auth/psk.h,
7388 lib/auth/psk_passwd.c, lib/auth/psk_passwd.h, lib/auth/rsa.c,
7389 lib/auth/rsa_export.c, lib/auth/srp.c, lib/auth/srp.h,
7390 lib/auth/srp_passwd.c, lib/auth/srp_passwd.h, lib/auth/srp_rsa.c,
7391 lib/auth/srp_sb64.c, lib/auth_anon.c, lib/auth_anon.h,
7392 lib/auth_cert.c, lib/auth_cert.h, lib/auth_dh_common.c,
7393 lib/auth_dh_common.h, lib/auth_dhe.c, lib/auth_dhe_psk.c,
7394 lib/auth_psk.c, lib/auth_psk.h, lib/auth_psk_passwd.c,
7395 lib/auth_psk_passwd.h, lib/auth_rsa.c, lib/auth_rsa_export.c,
7396 lib/auth_srp.c, lib/auth_srp.h, lib/auth_srp_passwd.c,
7397 lib/auth_srp_passwd.h, lib/auth_srp_rsa.c, lib/auth_srp_sb64.c,
7398 lib/ext/Makefile.am, lib/ext/cert_type.c, lib/ext/cert_type.h,
7399 lib/ext/max_record.c, lib/ext/max_record.h,
7400 lib/ext/safe_renegotiation.c, lib/ext/safe_renegotiation.h,
7401 lib/ext/server_name.c, lib/ext/server_name.h,
7402 lib/ext/session_ticket.c, lib/ext/session_ticket.h,
7403 lib/ext/signature.c, lib/ext/signature.h, lib/ext/srp.c,
7404 lib/ext/srp.h, lib/ext_cert_type.c, lib/ext_cert_type.h,
7405 lib/ext_max_record.c, lib/ext_max_record.h,
7406 lib/ext_safe_renegotiation.c, lib/ext_safe_renegotiation.h,
7407 lib/ext_server_name.c, lib/ext_server_name.h,
7408 lib/ext_session_ticket.c, lib/ext_session_ticket.h,
7409 lib/ext_signature.c, lib/ext_signature.h, lib/ext_srp.c,
7410 lib/ext_srp.h, lib/gnutls_anon_cred.c, lib/gnutls_auth.c,
7411 lib/gnutls_cert.c, lib/gnutls_extensions.c, lib/gnutls_handshake.c,
7412 lib/gnutls_psk.c, lib/gnutls_record.c, lib/gnutls_session_pack.c,
7413 lib/gnutls_sig.c, lib/gnutls_srp.c, lib/gnutls_state.c,
7414 lib/gnutls_ui.c, lib/gnutls_x509.c, lib/openpgp/gnutls_openpgp.h,
7415 m4/hooks.m4: The auth_ and ext_ files were moved to respective
7418 2011-04-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7420 * doc/cha-intro-tls.texi: Reorganized sections in documentation.
7422 2011-04-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7424 * doc/examples/ex-cxx.cpp: removed unneeded comment.
7426 2011-04-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7428 * tests/cve-2009-1416.c, tests/pkcs12_s2k_pem.c: Added missing
7431 2011-04-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7433 * tests/suite/Makefile.am, tests/suite/chain, tests/suite/testbig,
7434 tests/suite/testbig-main, tests/suite/testcompat,
7435 tests/suite/testcompat-main, tests/suite/x509paths/.gitignore,
7436 tests/suite/x509paths/README, tests/x509paths/README,
7437 tests/x509paths/chain: x509paths tests moved to suite/.
7439 2011-04-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7441 * tests/certs/cert-rsa-2432.pem, tests/certs/rsa-2432.pem,
7442 tests/scripts/common.sh, tests/suite/Makefile.am,
7443 tests/suite/testbig, tests/suite/testbig-main: Added
7444 interoperability tests with openssl.
7446 2011-04-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7448 * lib/gnutls_buffers.c: Corrected SSLv2 header parsing.
7450 2011-04-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7452 * doc/credentials/x509-server-dsa.pem,
7453 doc/credentials/x509-server-key-dsa.pem: corrected illegal DSA key.
7455 2011-04-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7457 * tests/suite/Makefile.am, tests/suite/testsrn: Enabled the extra
7458 safe renegotiation tests.
7460 2011-04-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7462 * m4/hooks.m4: removed opaque PRF from m4.
7464 2011-04-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7466 * lib/gnutls_buffers.c: removed text about select().
7468 2011-04-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7470 * configure.ac, lib/Makefile.am: check for libdl that pakchois
7473 2011-04-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7475 * lib/Makefile.am, lib/pakchois/README: Added readme about pakchois
7476 and removed checks for pakchois in Makefile.am.
7478 2011-04-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7480 * configure.ac, m4/hooks.m4: Reorganization in configure file.
7481 Pakchois is not longer checked for being present. The included
7482 version is always used.
7484 2011-04-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7486 * gl/.gitignore, gl/asprintf.c, gl/byteswap.in.h, gl/hmac-md5.c,
7487 gl/hmac.h, gl/md5.c, gl/md5.h, gl/memmem.c, gl/memxor.c,
7488 gl/memxor.h, gl/str-two-way.h, gl/strcasecmp.c, gl/strdup.c,
7489 gl/strings.in.h, gl/strncasecmp.c, gl/strverscmp.c, gl/time_r.c,
7490 gl/u64.h, gl/unistd.h, gl/vasprintf.c, gl/vsnprintf.c,
7491 gl/warn-on-use.h, gl/wchar.h: Added missing gnulib files
7493 2011-04-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7495 * lib/crypto-api.c: Added missing const.
7497 2011-04-12 Ludovic Courtès <ludo@gnu.org>
7499 * NEWS, src/certtool-common.c, src/certtool.c, src/p11tool.c,
7500 tests/crq_key_id.c, tests/cve-2009-1416.c, tests/pkcs12_s2k_pem.c:
7501 Don't include <gcrypt.h> when it's not needed.
7503 2011-04-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7505 * doc/cha-internals.texi: fixed and updates in documentation
7507 2011-04-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7509 * doc/gnutls-crypto-layers.eps: Updated crypto layers documentation.
7511 2011-04-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7513 * NEWS, lib/accelerated/intel/Makefile.am,
7514 lib/accelerated/intel/aes-x86.c,
7515 lib/accelerated/intel/asm/x64_do_rdtsc.s,
7516 lib/accelerated/intel/asm/x86_do_rdtsc.s, tests/cipher-test.c:
7517 Updates in the AES-NI accelerator.
7519 2011-04-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7521 * lib/crypto-api.c, lib/includes/gnutls/crypto.h, lib/libgnutls.map:
7522 Added gnutls_cipher_set_iv().
7524 2011-04-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7526 * tests/Makefile.am, tests/cipher-test.c: Added test vectors for
7529 2011-04-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7531 * lib/accelerated/intel/aes-x86.c, lib/crypto.c,
7532 lib/includes/gnutls/crypto.h: Increased priority of CPU assisted
7535 2011-04-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7537 * src/cli.c: Do not rely on lowat being set.
7539 2011-04-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7541 * lib/accelerated/Makefile.am, lib/accelerated/intel/Makefile.am,
7542 lib/accelerated/intel/README: Added README explaining the usage of
7545 2011-04-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7547 * lib/gnutls_buffers.c: Corrected parsing error in TLS, when many
7548 handshake messages were packed in a single record message.
7550 2011-04-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7552 * .gitignore, configure.ac, lib/accelerated/Makefile.am,
7553 lib/accelerated/accelerated.c, lib/accelerated/aes-x86.c,
7554 lib/accelerated/aes-x86.h, lib/accelerated/intel/Makefile.am,
7555 lib/accelerated/intel/aes-x86.c, lib/accelerated/intel/aes-x86.h,
7556 lib/accelerated/intel/asm/x64_do_rdtsc.s,
7557 lib/accelerated/intel/asm/x64_iaesx64.s,
7558 lib/accelerated/intel/asm/x86_do_rdtsc.s,
7559 lib/accelerated/intel/asm/x86_iaesx86.s,
7560 lib/accelerated/intel/iaes_asm_interface.h,
7561 lib/accelerated/intel/iaesni.h, lib/accelerated/intel/license.txt,
7562 m4/gcc.m4: fixes in acceleration detection. Added Intel's library
7563 code for AES-NI acceleration.
7565 2011-04-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7567 * guile/modules/gnutls/build/enums.scm, lib/libgnutls.map,
7568 libextra/Makefile.am: Purged all references of LZO.
7570 2011-04-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7572 * configure.ac: removed duplicate test
7574 2011-04-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7576 * doc/examples/ex-cxx.cpp, gl/time.in.h: No need to under restrict
7577 for C++. Only use config.h.
7579 2011-04-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7581 * NEWS, lib/includes/gnutls/gnutls.h.in, lib/system_override.c:
7582 gnutls_transport_set_global_errno() is no more.
7584 2011-04-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7586 * tests/eagain-common.h, tests/safe-renegotiation/Makefile.am,
7587 tests/safe-renegotiation/srn0.c, tests/safe-renegotiation/srn1.c,
7588 tests/safe-renegotiation/srn2.c, tests/safe-renegotiation/srn3.c,
7589 tests/safe-renegotiation/srn4.c, tests/safe-renegotiation/srn5.c:
7590 Combined the safe renegotiation tests with the again-common lib.
7592 2011-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7594 * NEWS, configure.ac, doc/cha-intro-tls.texi, doc/cha-preface.texi,
7595 doc/cha-programs.texi, lib/gnutls_compress.c, lib/gnutls_errors.c,
7596 lib/gnutls_state.c, lib/includes/gnutls/gnutls.h.in,
7597 lib/libgnutls.map, libextra/gnutls_extra.c, m4/hooks.m4: Support for
7600 2011-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7602 * NEWS, configure.ac: bumped version
7604 2011-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7606 * .gitignore, gl/time.h, gl/time.in.h: updated time.h.in
7608 2011-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7610 * lib/gnutls_algorithms.c, lib/gnutls_dtls.c, lib/gnutls_mem.c,
7611 lib/gnutls_psk.c, lib/gnutls_record.c,
7612 lib/includes/gnutls/gnutls.h.in, lib/pkcs11.c,
7613 lib/pkcs11_privkey.c, lib/x509/verify-high.c, lib/x509/verify.c:
7614 Corrected documentation of several API functions.
7616 2011-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7618 * doc/cha-gtls-app.texi, doc/cha-library.texi: documentation
7621 2011-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7623 * doc/scripts/gdoc, doc/scripts/sort2.pl: remove perl warnings from
7626 2011-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7628 * configure.ac, lib/Makefile.am, lib/accelerated/Makefile.am,
7629 lib/accelerated/accelerated.c, lib/accelerated/accelerated.h,
7630 lib/accelerated/aes-x86.c, lib/accelerated/aes-x86.h,
7631 lib/accelerated/x86.h, lib/gnutls_global.c, m4/gcc.m4: Added support
7632 for x86 intel AES instruction acceleration if detected.
7634 2011-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7636 * gl/time.h, gl/unistd.h, gl/warn-on-use.h, gl/wchar.h: Added gl/
7639 2011-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7641 * cfg.mk: corrected po directory and build-aux paths.
7643 2011-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7645 * doc/examples/Makefile.am: include gnulib files.
7647 2011-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7649 * doc/TODO: updated TODO
7651 2011-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7653 * tests/openpgp-certs/testselfsigs: Use --infile in certtool to
7654 avoid issues with streams in windows. Patch by LRN.
7656 2011-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7658 * lib/opencdk/armor.c: Changes armor.c to be able to handle both LF
7659 and CRLF inputs (output is still either LF-only or CRLF-only
7660 depending on the platform). Patch by LRN. Optimizations in the usage of strlen().
7662 2011-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7664 * src/cli.c, src/psk.c, src/serv.c, src/srptool.c, src/tests.c:
7665 Define variables within the intended scope (not windows). Based on
7668 2011-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7670 * doc/examples/ex-cert-select-pkcs11.c, src/common.c, src/pkcs11.c:
7671 Use getpass.h (from gnulib). Patch by LRN.
7673 2011-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7675 * lib/pakchois/dlopen.c: Return correct value for dlclose() in
7676 windows. Patch by LRN.
7678 2011-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7680 * tests/openpgp-auth.c: Disable openpgp-auth run in windows due to
7681 lack of socketpair(). Patch by LRN.
7683 2011-04-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7685 * Makefile.am: gl before lib or libextra
7687 2011-04-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7689 * ChangeLog: generated
7691 2011-04-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7695 2011-04-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7697 * .gitignore, doc/cha-gtls-app.texi, doc/cha-intro-tls.texi,
7698 doc/examples/Makefile.am, doc/examples/ex-client-udp.c,
7699 doc/examples/udp.c, lib/gnutls_state.c: Added documentation for
7702 2011-04-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7706 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7708 * tests/chainverify.c: disable test in windows.
7710 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7712 * tests/mini-x509-rehandshake.c, tests/openpgp-auth.c,
7713 tests/openpgp-auth2.c: corrected leaks in tests.
7715 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7717 * lib/auth_cert.c, lib/gnutls_pk.c: corrected memory leak on RSA
7720 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7722 * lib/x509/common.c: more leaks fixed in common.c
7724 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7726 * lib/gnutls_pubkey.c: Corrected leaks in gnutls_pubkey_t
7729 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7731 * lib/x509/verify-high.c: fix in trusted_list certificate
7734 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7736 * lib/gnutls_privkey.c: correction in deinitialization of privkey.
7738 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7740 * tests/mini-x509-rehandshake.c, tests/mini-x509.c: combined more
7741 tests with eagain-common.h.
7743 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7745 * lib/auth_dh_common.c, lib/gnutls_privkey.c, lib/gnutls_x509.c,
7746 lib/nettle/pk.c, lib/pakchois/pakchois.c, lib/pakchois/pakchois.h,
7747 lib/pkcs11.c, lib/x509/verify-high.c, tests/mini-x509.c: Corrected
7750 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7752 * build-aux/arg-nonnull.h, build-aux/c++defs.h,
7753 build-aux/config.rpath, build-aux/warn-on-use.h, cfg.mk,
7754 gl/Makefile.am, gl/m4/.gitignore, gl/m4/gnulib-cache.m4,
7755 gl/m4/gnulib-comp.m4: added valgrind from gnulib.
7757 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7759 * tests/dsa/testdsa, tests/openpgp-certs/testcerts: Do not run the
7760 test scripts in win32 environment.
7762 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7764 * cfg.mk: use the system wide gnulib-tool.
7766 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7768 * .gitignore: updated
7770 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7774 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7776 * tests/suite/ecore/src/lib/ecore_exe.c: include priority headers
7779 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7781 * configure.ac, tests/Makefile.am, tests/suite/Makefile.am,
7782 tests/suite/Makefile.in: Better way of not including the tests/suite
7783 directory. Based on discussion with LRN and Vincent Torri.
7785 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7787 * .gitignore, Makefile.am, cfg.mk, configure.ac,
7788 doc/examples/Makefile.am, doc/gendocs_template, gl/.gitignore,
7789 gl/Makefile.am, gl/accept.c, gl/alignof.h, gl/alloca.c,
7790 gl/alloca.in.h, gl/arpa_inet.in.h, gl/asnprintf.c, gl/bind.c,
7791 gl/c-ctype.c, gl/c-ctype.h, gl/close-hook.c, gl/close-hook.h,
7792 gl/close.c, gl/connect.c, gl/errno.in.h, gl/error.c, gl/error.h,
7793 gl/fclose.c, gl/float+.h, gl/float.in.h, gl/fseeko.c, gl/ftello.c,
7794 gl/gai_strerror.c, gl/getaddrinfo.c, gl/getdelim.c, gl/getline.c,
7795 gl/getpass.c, gl/getpass.h, gl/gettext.h, gl/gettime.c,
7796 gl/gettimeofday.c, gl/inet_ntop.c, gl/inet_pton.c, gl/intprops.h,
7797 gl/listen.c, gl/lseek.c, gl/m4/.gitignore, gl/m4/00gnulib.m4,
7798 gl/m4/alloca.m4, gl/m4/arpa_inet_h.m4, gl/m4/asm-underscore.m4,
7799 gl/m4/autobuild.m4, gl/m4/clock_time.m4, gl/m4/close.m4,
7800 gl/m4/errno_h.m4, gl/m4/error.m4, gl/m4/extensions.m4,
7801 gl/m4/fclose.m4, gl/m4/float_h.m4, gl/m4/fseeko.m4,
7802 gl/m4/ftello.m4, gl/m4/getaddrinfo.m4, gl/m4/getdelim.m4,
7803 gl/m4/getline.m4, gl/m4/getpagesize.m4, gl/m4/getpass.m4,
7804 gl/m4/gettime.m4, gl/m4/gettimeofday.m4, gl/m4/gnulib-cache.m4,
7805 gl/m4/gnulib-common.m4, gl/m4/gnulib-comp.m4, gl/m4/gnulib-tool.m4,
7806 gl/m4/hostent.m4, gl/m4/include_next.m4, gl/m4/inet_ntop.m4,
7807 gl/m4/inet_pton.m4, gl/m4/intmax_t.m4, gl/m4/inttypes_h.m4,
7808 gl/m4/ioctl.m4, gl/m4/lib-ld.m4, gl/m4/lib-link.m4,
7809 gl/m4/lib-prefix.m4, gl/m4/longlong.m4, gl/m4/lseek.m4,
7810 gl/m4/malloc.m4, gl/m4/manywarnings.m4, gl/m4/memchr.m4,
7811 gl/m4/minmax.m4, gl/m4/mmap-anon.m4, gl/m4/multiarch.m4,
7812 gl/m4/netdb_h.m4, gl/m4/netinet_in_h.m4, gl/m4/perror.m4,
7813 gl/m4/printf.m4, gl/m4/read-file.m4, gl/m4/readline.m4,
7814 gl/m4/realloc.m4, gl/m4/select.m4, gl/m4/servent.m4,
7815 gl/m4/size_max.m4, gl/m4/snprintf.m4, gl/m4/socketlib.m4,
7816 gl/m4/sockets.m4, gl/m4/socklen.m4, gl/m4/sockpfaf.m4,
7817 gl/m4/stdarg.m4, gl/m4/stdbool.m4, gl/m4/stddef_h.m4,
7818 gl/m4/stdint.m4, gl/m4/stdint_h.m4, gl/m4/stdio_h.m4,
7819 gl/m4/stdlib_h.m4, gl/m4/strerror.m4, gl/m4/string_h.m4,
7820 gl/m4/sys_ioctl_h.m4, gl/m4/sys_select_h.m4, gl/m4/sys_socket_h.m4,
7821 gl/m4/sys_stat_h.m4, gl/m4/sys_time_h.m4, gl/m4/time_h.m4,
7822 gl/m4/timespec.m4, gl/m4/ungetc.m4, gl/m4/unistd_h.m4,
7823 gl/m4/valgrind-tests.m4, gl/m4/vasnprintf.m4, gl/m4/version-etc.m4,
7824 gl/m4/warn-on-use.m4, gl/m4/warnings.m4, gl/m4/wchar_h.m4,
7825 gl/m4/wchar_t.m4, gl/m4/wint_t.m4, gl/m4/xsize.m4, gl/malloc.c,
7826 gl/memchr.c, gl/minmax.h, gl/netdb.in.h, gl/netinet_in.in.h,
7827 gl/perror.c, gl/printf-args.c, gl/printf-args.h, gl/printf-parse.c,
7828 gl/printf-parse.h, gl/progname.c, gl/progname.h, gl/read-file.c,
7829 gl/read-file.h, gl/readline.c, gl/readline.h, gl/realloc.c,
7830 gl/recv.c, gl/select.c, gl/send.c, gl/setsockopt.c, gl/shutdown.c,
7831 gl/size_max.h, gl/snprintf.c, gl/socket.c, gl/sockets.c,
7832 gl/sockets.h, gl/stdarg.in.h, gl/stdbool.in.h, gl/stddef.in.h,
7833 gl/stdint.in.h, gl/stdio-impl.h, gl/stdio-write.c, gl/stdio.in.h,
7834 gl/stdlib.in.h, gl/strerror.c, gl/string.in.h, gl/sys_select.in.h,
7835 gl/sys_socket.in.h, gl/sys_stat.in.h, gl/sys_time.in.h,
7836 gl/tests/.gitignore, gl/tests/Makefile.am, gl/tests/binary-io.h,
7837 gl/tests/dummy.c, gl/tests/fcntl.in.h, gl/tests/getpagesize.c,
7838 gl/tests/init.sh, gl/tests/ioctl.c, gl/tests/macros.h,
7839 gl/tests/signature.h, gl/tests/sys_ioctl.in.h,
7840 gl/tests/test-alignof.c, gl/tests/test-alloca-opt.c,
7841 gl/tests/test-arpa_inet.c, gl/tests/test-binary-io.c,
7842 gl/tests/test-c-ctype.c, gl/tests/test-errno.c,
7843 gl/tests/test-fcntl-h.c, gl/tests/test-fseeko.c,
7844 gl/tests/test-ftello.c, gl/tests/test-ftello3.c,
7845 gl/tests/test-getaddrinfo.c, gl/tests/test-getdelim.c,
7846 gl/tests/test-getline.c, gl/tests/test-gettimeofday.c,
7847 gl/tests/test-inet_ntop.c, gl/tests/test-inet_pton.c,
7848 gl/tests/test-lseek.c, gl/tests/test-lseek.sh,
7849 gl/tests/test-memchr.c, gl/tests/test-netdb.c,
7850 gl/tests/test-netinet_in.c, gl/tests/test-perror.c,
7851 gl/tests/test-perror.sh, gl/tests/test-read-file.c,
7852 gl/tests/test-select-fd.c, gl/tests/test-select-in.sh,
7853 gl/tests/test-select-out.sh, gl/tests/test-select-stdin.c,
7854 gl/tests/test-select.c, gl/tests/test-snprintf.c,
7855 gl/tests/test-sockets.c, gl/tests/test-stdbool.c,
7856 gl/tests/test-stddef.c, gl/tests/test-stdint.c,
7857 gl/tests/test-stdio.c, gl/tests/test-stdlib.c,
7858 gl/tests/test-strerror.c, gl/tests/test-string.c,
7859 gl/tests/test-sys_ioctl.c, gl/tests/test-sys_select.c,
7860 gl/tests/test-sys_socket.c, gl/tests/test-sys_stat.c,
7861 gl/tests/test-sys_time.c, gl/tests/test-sys_wait.h,
7862 gl/tests/test-time.c, gl/tests/test-unistd.c,
7863 gl/tests/test-update-copyright.sh, gl/tests/test-vasnprintf.c,
7864 gl/tests/test-vc-list-files-cvs.sh,
7865 gl/tests/test-vc-list-files-git.sh, gl/tests/test-verify.c,
7866 gl/tests/test-version-etc.c, gl/tests/test-version-etc.sh,
7867 gl/tests/test-wchar.c, gl/tests/w32sock.h, gl/tests/zerosize-ptr.h,
7868 gl/time.in.h, gl/timespec.h, gl/unistd.in.h, gl/vasnprintf.c,
7869 gl/vasnprintf.h, gl/verify.h, gl/version-etc-fsf.c,
7870 gl/version-etc.c, gl/version-etc.h, gl/w32sock.h, gl/wchar.in.h,
7871 gl/xsize.h, guile/src/Makefile.am, lib/Makefile.am,
7872 lib/configure.ac, lib/gcrypt/Makefile.am, lib/gl/Makefile.am,
7873 lib/gl/alignof.h, lib/gl/alloca.in.h, lib/gl/asnprintf.c,
7874 lib/gl/asprintf.c, lib/gl/byteswap.in.h, lib/gl/c-ctype.c,
7875 lib/gl/c-ctype.h, lib/gl/close-hook.c, lib/gl/close-hook.h,
7876 lib/gl/errno.in.h, lib/gl/float+.h, lib/gl/float.in.h,
7877 lib/gl/fseeko.c, lib/gl/ftello.c, lib/gl/gettext.h, lib/gl/lseek.c,
7878 lib/gl/m4/00gnulib.m4, lib/gl/m4/alloca.m4,
7879 lib/gl/m4/asm-underscore.m4, lib/gl/m4/byteswap.m4,
7880 lib/gl/m4/codeset.m4, lib/gl/m4/errno_h.m4,
7881 lib/gl/m4/extensions.m4, lib/gl/m4/fcntl-o.m4,
7882 lib/gl/m4/float_h.m4, lib/gl/m4/fseeko.m4, lib/gl/m4/ftello.m4,
7883 lib/gl/m4/func.m4, lib/gl/m4/getpagesize.m4, lib/gl/m4/gettext.m4,
7884 lib/gl/m4/glibc2.m4, lib/gl/m4/glibc21.m4,
7885 lib/gl/m4/gnulib-cache.m4, lib/gl/m4/gnulib-common.m4,
7886 lib/gl/m4/gnulib-comp.m4, lib/gl/m4/gnulib-tool.m4,
7887 lib/gl/m4/iconv.m4, lib/gl/m4/include_next.m4,
7888 lib/gl/m4/intdiv0.m4, lib/gl/m4/intl.m4, lib/gl/m4/intldir.m4,
7889 lib/gl/m4/intlmacosx.m4, lib/gl/m4/intmax.m4,
7890 lib/gl/m4/intmax_t.m4, lib/gl/m4/inttypes-pri.m4,
7891 lib/gl/m4/inttypes_h.m4, lib/gl/m4/lcmessage.m4,
7892 lib/gl/m4/ld-output-def.m4, lib/gl/m4/ld-version-script.m4,
7893 lib/gl/m4/lib-ld.m4, lib/gl/m4/lib-link.m4,
7894 lib/gl/m4/lib-prefix.m4, lib/gl/m4/lock.m4, lib/gl/m4/longlong.m4,
7895 lib/gl/m4/lseek.m4, lib/gl/m4/malloc.m4, lib/gl/m4/memchr.m4,
7896 lib/gl/m4/memmem.m4, lib/gl/m4/minmax.m4, lib/gl/m4/mmap-anon.m4,
7897 lib/gl/m4/multiarch.m4, lib/gl/m4/netdb_h.m4, lib/gl/m4/nls.m4,
7898 lib/gl/m4/po.m4, lib/gl/m4/printf-posix.m4, lib/gl/m4/printf.m4,
7899 lib/gl/m4/progtest.m4, lib/gl/m4/read-file.m4,
7900 lib/gl/m4/realloc.m4, lib/gl/m4/size_max.m4, lib/gl/m4/snprintf.m4,
7901 lib/gl/m4/socketlib.m4, lib/gl/m4/sockets.m4, lib/gl/m4/socklen.m4,
7902 lib/gl/m4/sockpfaf.m4, lib/gl/m4/stdbool.m4, lib/gl/m4/stddef_h.m4,
7903 lib/gl/m4/stdint.m4, lib/gl/m4/stdint_h.m4, lib/gl/m4/stdio_h.m4,
7904 lib/gl/m4/stdlib_h.m4, lib/gl/m4/strcase.m4, lib/gl/m4/string_h.m4,
7905 lib/gl/m4/strings_h.m4, lib/gl/m4/strverscmp.m4,
7906 lib/gl/m4/sys_socket_h.m4, lib/gl/m4/sys_stat_h.m4,
7907 lib/gl/m4/threadlib.m4, lib/gl/m4/time_h.m4, lib/gl/m4/time_r.m4,
7908 lib/gl/m4/uintmax_t.m4, lib/gl/m4/ungetc.m4, lib/gl/m4/unistd_h.m4,
7909 lib/gl/m4/vasnprintf.m4, lib/gl/m4/vasprintf.m4,
7910 lib/gl/m4/visibility.m4, lib/gl/m4/vsnprintf.m4,
7911 lib/gl/m4/warn-on-use.m4, lib/gl/m4/wchar_h.m4,
7912 lib/gl/m4/wchar_t.m4, lib/gl/m4/wint_t.m4, lib/gl/m4/xsize.m4,
7913 lib/gl/malloc.c, lib/gl/memchr.c, lib/gl/memchr.valgrind,
7914 lib/gl/memmem.c, lib/gl/minmax.h, lib/gl/netdb.in.h,
7915 lib/gl/override/lib/gc-libgcrypt.c.diff,
7916 lib/gl/override/lib/gettext.h.diff, lib/gl/printf-args.c,
7917 lib/gl/printf-args.h, lib/gl/printf-parse.c, lib/gl/printf-parse.h,
7918 lib/gl/read-file.c, lib/gl/read-file.h, lib/gl/realloc.c,
7919 lib/gl/size_max.h, lib/gl/snprintf.c, lib/gl/sockets.c,
7920 lib/gl/sockets.h, lib/gl/stdbool.in.h, lib/gl/stddef.in.h,
7921 lib/gl/stdint.in.h, lib/gl/stdio-impl.h, lib/gl/stdio-write.c,
7922 lib/gl/stdio.in.h, lib/gl/stdlib.in.h, lib/gl/str-two-way.h,
7923 lib/gl/strcasecmp.c, lib/gl/string.in.h, lib/gl/strings.in.h,
7924 lib/gl/strncasecmp.c, lib/gl/strverscmp.c, lib/gl/sys_socket.in.h,
7925 lib/gl/sys_stat.in.h, lib/gl/tests/Makefile.am,
7926 lib/gl/tests/binary-io.h, lib/gl/tests/dummy.c,
7927 lib/gl/tests/getpagesize.c, lib/gl/tests/init.sh,
7928 lib/gl/tests/intprops.h, lib/gl/tests/macros.h,
7929 lib/gl/tests/signature.h, lib/gl/tests/test-alloca-opt.c,
7930 lib/gl/tests/test-binary-io.c, lib/gl/tests/test-binary-io.sh,
7931 lib/gl/tests/test-byteswap.c, lib/gl/tests/test-c-ctype.c,
7932 lib/gl/tests/test-errno.c, lib/gl/tests/test-fseeko.c,
7933 lib/gl/tests/test-fseeko.sh, lib/gl/tests/test-fseeko2.sh,
7934 lib/gl/tests/test-ftello.c, lib/gl/tests/test-ftello.sh,
7935 lib/gl/tests/test-ftello2.sh, lib/gl/tests/test-ftello3.c,
7936 lib/gl/tests/test-func.c, lib/gl/tests/test-memchr.c,
7937 lib/gl/tests/test-netdb.c, lib/gl/tests/test-read-file.c,
7938 lib/gl/tests/test-snprintf.c, lib/gl/tests/test-sockets.c,
7939 lib/gl/tests/test-stdbool.c, lib/gl/tests/test-stddef.c,
7940 lib/gl/tests/test-stdint.c, lib/gl/tests/test-stdio.c,
7941 lib/gl/tests/test-stdlib.c, lib/gl/tests/test-string.c,
7942 lib/gl/tests/test-strings.c, lib/gl/tests/test-strverscmp.c,
7943 lib/gl/tests/test-sys_socket.c, lib/gl/tests/test-sys_stat.c,
7944 lib/gl/tests/test-sys_wait.h, lib/gl/tests/test-time.c,
7945 lib/gl/tests/test-unistd.c, lib/gl/tests/test-vasnprintf.c,
7946 lib/gl/tests/test-vasprintf.c, lib/gl/tests/test-verify.c,
7947 lib/gl/tests/test-verify.sh, lib/gl/tests/test-vsnprintf.c,
7948 lib/gl/tests/test-wchar.c, lib/gl/tests/zerosize-ptr.h,
7949 lib/gl/time.in.h, lib/gl/time_r.c, lib/gl/unistd.in.h,
7950 lib/gl/vasnprintf.c, lib/gl/vasnprintf.h, lib/gl/vasprintf.c,
7951 lib/gl/verify.h, lib/gl/vsnprintf.c, lib/gl/w32sock.h,
7952 lib/gl/wchar.in.h, lib/gl/xsize.h, lib/gnutls_int.h,
7953 lib/m4/hooks.m4, lib/minitasn1/Makefile.am, lib/nettle/Makefile.am,
7954 lib/opencdk/Makefile.am, lib/openpgp/Makefile.am, lib/po/LINGUAS,
7955 lib/po/Makevars, lib/po/POTFILES.in, lib/po/cs.po.in,
7956 lib/po/de.po.in, lib/po/fr.po.in, lib/po/it.po.in, lib/po/ms.po.in,
7957 lib/po/nl.po.in, lib/po/pl.po.in, lib/po/sv.po.in, lib/po/vi.po.in,
7958 lib/po/zh_CN.po.in, lib/x509/Makefile.am, libextra/Makefile.am,
7959 libextra/configure.ac, libextra/gl/Makefile.am,
7960 libextra/gl/gnulib.mk, libextra/gl/hmac-md5.c, libextra/gl/hmac.h,
7961 libextra/gl/m4/00gnulib.m4, libextra/gl/m4/extensions.m4,
7962 libextra/gl/m4/gnulib-cache.m4, libextra/gl/m4/gnulib-common.m4,
7963 libextra/gl/m4/gnulib-comp.m4, libextra/gl/m4/gnulib-tool.m4,
7964 libextra/gl/m4/hmac-md5.m4, libextra/gl/m4/ld-output-def.m4,
7965 libextra/gl/m4/ld-version-script.m4, libextra/gl/m4/lib-ld.m4,
7966 libextra/gl/m4/lib-link.m4, libextra/gl/m4/lib-prefix.m4,
7967 libextra/gl/m4/md5.m4, libextra/gl/m4/memxor.m4, libextra/gl/md5.c,
7968 libextra/gl/md5.h, libextra/gl/memxor.c, libextra/gl/memxor.h,
7969 libextra/gl/override/lib/md5.c.diff, libextra/m4/hooks.m4,
7970 m4/hooks.m4, po/LINGUAS, po/Makevars, po/POTFILES.in, po/cs.po.in,
7971 po/de.po.in, po/fr.po.in, po/it.po.in, po/ms.po.in, po/nl.po.in,
7972 po/pl.po.in, po/sv.po.in, po/vi.po.in, po/zh_CN.po.in,
7973 src/Makefile.am, tests/suite/Makefile.in: Use a single configure.ac.
7974 This speed ups compilation and reduces duplication of code (multiple
7975 gl/ libraries etc.). This saves about 2mb in distributed size
7978 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7980 * src/certtool-cfg.c: Avoid using readline.
7982 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7984 * lib/gnutls_buffers.c: initialized ret in _gnutls_writev_emu().
7986 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7988 * lib/includes/gnutls/x509.h: doc fix
7990 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7992 * lib/system.c: removed unneeded variable.
7994 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
7996 * lib/auth_cert.c: Corrected check for an unknown sign algorithm.
7999 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8001 * lib/openpgp/output.c: Do not use %e in strftime. Use %d instead
8002 which is identically available in windows as well. Based on patch
8005 2011-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8007 * lib/x509/output.c, tests/certuniqueid.c: Fixed mismatch in size_t
8010 2011-04-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8012 * lib/system.c, lib/system_override.c: Correctly set errno in win32
8013 using gnutls_transport_set_global_errno(). Based on patch by LRN.
8015 2011-04-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8017 * tests/eagain-common.h, tests/mini-eagain-dtls.c,
8018 tests/mini-eagain.c, tests/mini.c: Avoid using
8019 gnutls_transport_set_global_errno() and use
8020 gnutls_transport_set_errno() instead.
8022 2011-04-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8024 * lib/system_override.c: win32 fixes for set_global_errno().
8027 2011-04-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8029 * src/benchmark.c: Win32 changes for benchmark. Patch by LRN.
8031 2011-04-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8033 * tests/anonself.c, tests/dhepskself.c, tests/openpgpself.c,
8034 tests/pskself.c, tests/resume.c, tests/rng-fork.c, tests/x509dn.c,
8035 tests/x509self.c: win32 fixes. Patch by LRN.
8037 2011-04-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8039 * lib/gnutls_buffers.c: minor modification in write_emu().
8041 2011-04-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8043 * lib/opencdk/literal.c, lib/opencdk/main.h, lib/opencdk/misc.c:
8044 simplified cdk_trim_string() to make it safer to use.
8046 2011-04-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8048 * lib/x509/privkey_pkcs8.c: correctly reset params.
8050 2011-04-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8052 * lib/x509/crl.c, lib/x509/x509.c: use correct pointer size.
8054 2011-04-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8056 * lib/gnutls_algorithms.c: correctly compare sign algorithm_st.
8058 2011-04-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8060 * lib/opencdk/Makefile.am, lib/opencdk/context.h,
8061 lib/opencdk/main.c, lib/opencdk/main.h, lib/opencdk/opencdk.h,
8062 lib/opencdk/verify.c: removed unused code
8064 2011-04-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8066 * lib/opencdk/armor.c: null terminate the armored string
8068 2011-04-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8070 * src/cli.c: properly null terminate string.
8072 2011-04-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8074 * src/common.c, src/pkcs11.c: check PIN size.
8076 2011-04-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8078 * src/srptool.c: check salt size.
8080 2011-04-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8082 * lib/opencdk/read-packet.c: more clear bounds checking
8084 2011-04-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8086 * lib/x509/privkey.c: initialize e and d.
8088 2011-04-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8090 * lib/pkcs11_write.c: deinitialize pks variable only when needed.
8092 2011-04-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8094 * lib/openpgp/pgpverify.c: Initialize verify.
8096 2011-04-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8098 * src/cli.c: initialize session_id_size.
8100 2011-04-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8102 * lib/opencdk/misc.c, lib/opencdk/opencdk.h: removed unneeded
8105 2011-04-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8107 * lib/pakchois/pakchois.c: correctly traverse slots
8109 2011-04-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8111 * guile/src/core.c: avoid using a freed pointer.
8113 2011-04-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8115 * lib/pkcs11.c: Initialize tinfo using the initially available
8118 2011-04-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8120 * lib/gnutls_dtls.c: corrected debugging info.
8122 2011-04-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8124 * tests/eagain-common.h, tests/mini-eagain-dtls.c,
8125 tests/mini-eagain.c, tests/mini.c: The mini-* programs were
8128 2011-04-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8130 * lib/gnutls_record.c: Do not cleanup bufel after it has been
8131 inserted into buffer.
8133 2011-04-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8135 * lib/gnutls_mbuffers.c: Combined dequeue with remove_front() and
8138 2011-04-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8140 * doc/examples/Makefile.am: Compile ex-cert-select-pkcs11 as a
8143 2011-04-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8145 * .gitignore, lib/gnutls_buffers.c, lib/gnutls_dtls.c,
8146 lib/gnutls_int.h, lib/gnutls_state.c,
8147 lib/includes/gnutls/gnutls.h.in, lib/system.h, tests/Makefile.am,
8148 tests/eagain-common.h, tests/mini-eagain-dtls.c,
8149 tests/mini-eagain.c, tests/utils.c: Added support for non-blocking
8150 DTLS. Added mini-eagain-dtls to test its operation. Improved
8153 2011-04-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8155 * lib/nettle/init.c: gcrypt.h is not really needed. Reported by
8158 2011-04-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8160 * src/srptool.c: corrected header inclusion.
8162 2011-04-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8164 * src/Makefile.am, src/crypt-gaa.c, src/crypt-gaa.h, src/crypt.c,
8165 src/crypt.gaa, src/srptool-gaa.c, src/srptool-gaa.h, src/srptool.c,
8166 src/srptool.gaa: crypt.* renamed to srptool.*.
8168 2011-04-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8170 * lib/gnutls_srp.c: Corrected bug in gnutls_srp_verifier() that
8171 prevented the allocation of a verifier. Reported by Andrew Wiseman.
8173 2011-04-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8175 * src/crypt-gaa.c, src/crypt-gaa.h, src/crypt.c, src/crypt.gaa:
8176 Added debug option to srptool.
8178 2011-04-03 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8180 * doc/cha-cert-auth.texi: Documented p11-kit.
8182 2011-04-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8184 * doc/cha-library.texi: corrected typo
8186 2011-03-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8188 * tests/scripts/common.sh: Added copyright.
8190 2011-03-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8192 * configure.ac, tests/Makefile.am, tests/dsa/testdsa,
8193 tests/openpgp-certs/testcerts, tests/scripts/Makefile.am,
8194 tests/scripts/common.sh: Reorganized scripts that use test servers,
8195 based on patch by Cedric Arbogast.
8197 2011-03-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8199 * src/certtool-gaa.c, src/certtool.gaa: Create certificate request
8200 with stricter permissions. Reported by Luca Capello.
8202 2011-03-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8204 * tests/openpgp-certs/Makefile.am: enabled testcerts.
8206 2011-03-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8208 * tests/openpgp-certs/testcerts: made more silent.
8210 2011-03-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8212 * tests/dsa/testdsa, tests/openpgp-certs/testcerts: Made scripts
8213 bourne shell compliant and not bash.
8215 2011-03-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8217 * THANKS: e-mail addresses are not directly recognizable.
8219 2011-03-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8221 * lib/opencdk/stream.c: Corrected access to freed memory location.
8222 Reported by Vitaly Kruglikov.
8224 2011-03-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8226 * THANKS: added Mark and Vitaly to THANKS.
8228 2011-03-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8230 * lib/system.c: Corrected windows system_errno() function. Reported
8231 and patch by Mark Brand.
8233 2011-03-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8235 * lib/includes/gnutls/compat.h: C++ compatibility fix for compat.h.
8236 Suggested by Mark Brand.
8238 2011-03-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8240 * lib/opencdk/verify.c: Corrected uninitialized var deinitiation.
8241 Reported by Vitaly Kruglikov.
8243 2011-03-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8245 * lib/gnutls_sig.c: eliminate compiler warning. Reported by Andreas
8248 2011-03-25 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8250 * lib/includes/gnutls/openpgp.h, lib/openpgp/gnutls_openpgp.c,
8251 lib/openpgp/pgp.c, lib/openpgp/privkey.c: Fix size of
8252 gnutls_openpgp_keyid_t by using the GNUTLS_OPENPGP_KEYID_SIZE
8253 definition. Reported by Andreas Metzler.
8255 2011-03-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8257 * NEWS: included news of 2.12.0
8259 2011-03-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8261 * guile/tests/Makefile.am: added missing files.
8263 2011-03-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8265 * lib/includes/gnutls/abstract.h, lib/includes/gnutls/gnutls.h.in,
8266 lib/includes/gnutls/pkcs11.h, lib/includes/gnutls/x509.h,
8267 lib/pkcs11.c, lib/x509/crl.c: documentation fixes.
8269 2011-03-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8271 * tests/dsa/testdsa: Added DSA tests for client certificates as
8274 2011-03-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8276 * lib/ext_signature.c, lib/ext_signature.h, lib/gnutls_handshake.c,
8277 lib/gnutls_sig.c, lib/includes/gnutls/abstract.h, lib/x509/verify.c:
8278 Simplified signature algorithm selection.
8280 2011-03-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8282 * src/cli.c: The processed messages go to stdout.
8284 2011-03-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8286 * lib/gnutls_privkey.c: updated documentation
8288 2011-03-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8290 * lib/gnutls_algorithms.c, lib/gnutls_int.h,
8291 lib/includes/gnutls/gnutls.h.in: Increased GNUTLS_MAX_ALGORITHM_NUM
8292 to 32. The gnutls_*_list() functions generate the list of algorithm
8293 on the spot and no longer require a static duplicate list of
8294 algorithms. This comes at a cost of not being thread safe (which is
8295 not significant since those functions are only used for special
8298 2011-03-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8300 * lib/gnutls_privkey.c: corrected parameter.
8302 2011-03-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8304 * lib/gnutls_pubkey.c, lib/includes/gnutls/pkcs11.h, lib/pkcs11.c,
8305 lib/pkcs11_privkey.c, lib/pkcs11_secret.c, lib/x509/privkey.c:
8306 Documentation fixes and cleanups.
8308 2011-03-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8310 * src/cli.c: define variable locally
8312 2011-03-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8314 * src/cli.c, src/serv.c: use IP_DONTFRAG if it is defined.
8316 2011-03-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8318 * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_dtls.c,
8319 lib/gnutls_dtls.h, lib/gnutls_handshake.c, lib/gnutls_handshake.h,
8320 lib/gnutls_int.h, lib/gnutls_record.c,
8321 lib/includes/gnutls/gnutls.h.in, lib/system.c, lib/system.h,
8322 src/cli.c, src/common.h, src/serv.c, src/udp-serv.c: Avoided waiting
8323 for peer's retransmission to ensure receipt of finished messages,
8324 and used a 'timer'-like to retransmit packets.
8326 2011-03-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8328 * lib/gnutls_dtls.c, lib/includes/gnutls/dtls.h, lib/libgnutls.map:
8329 added gnutls_dtls_get_data_mtu().
8331 2011-03-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8333 * tests/dsa/testdsa: make gnutls-cli more quiet.
8335 2011-03-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8337 * configure.ac, tests/Makefile.am, tests/dsa/Makefile.am,
8338 tests/dsa/cert.dsa.1024.pem, tests/dsa/cert.dsa.2048.pem,
8339 tests/dsa/cert.dsa.3072.pem, tests/dsa/dsa.1024.pem,
8340 tests/dsa/dsa.2048.pem, tests/dsa/dsa.3072.pem, tests/dsa/testdsa,
8341 tests/suite/Makefile.in: Added test to verify connections with DSA
8342 keys of various sizes.
8344 2011-03-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8346 * src/certtool.c: warn on generation of DSA keys of over 1024 bits.
8348 2011-03-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8350 * lib/gnutls_alert.c, lib/gnutls_errors.c, lib/gnutls_sig.c,
8351 lib/includes/gnutls/gnutls.h.in: Return a special error code if DSA
8352 keys with over 1024 are being used with TLS 1.x, x<2.
8354 2011-03-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8356 * lib/nettle/pk.c: truncate hash size when asking to sign or verify
8357 DSA with a longer hash.
8359 2011-03-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8361 * lib/gnutls_buffers.c, lib/system.c: Check for rejected connections
8362 in system_recv_timeout().
8364 2011-03-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8366 * lib/system_override.c: quickly discuss callback format.
8368 2011-03-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8370 * lib/gnutls_dtls.c: When sending multiple cookies due to
8371 verification errors do not increase the handshake sequence number
8372 only the record sequence.
8374 2011-03-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8376 * AUTHORS: updated Jonathan
8378 2011-03-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8380 * tests/openpgp-auth.c: Added check for RSA ciphersuite in openpgp
8383 2011-03-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8385 * lib/openpgp/privkey.c: read correct algorithm when decrypting data
8386 and use correct number of private parameters.
8388 2011-03-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8390 * libextra/gnutls_extra.c: added missing ret.
8392 2011-03-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8394 * lib/auth_cert.c: Set type when sending empty openpgp key.
8396 2011-03-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8398 * lib/nettle/rnd.c, tests/Makefile.am, tests/rng-fork.c: Corrected
8399 nettle's RNG behavior on fork and added a test case.
8401 2011-03-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8403 * guile/tests/openpgp-auth.scm: enabled RSA and removed debugging.
8405 2011-03-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8407 * lib/gnutls_privkey.c, lib/gnutls_pubkey.c,
8408 lib/includes/gnutls/abstract.h, lib/openpgp/gnutls_openpgp.c,
8409 tests/openpgp-auth.c, tests/openpgp-auth2.c: gnutls_pubkey_t and
8410 gnutls_privkey_t can import either an openpgp subkey or a master
8413 2011-03-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8415 * guile/tests/openpgp-auth.scm, guile/tests/openpgp-elg-pub.asc,
8416 guile/tests/openpgp-elg-sec.asc, guile/tests/openpgp-keys.scm,
8417 guile/tests/openpgp-pub.asc, guile/tests/openpgp-sec.asc: split the
8418 pgp keys to elgamal and dsa.
8420 2011-03-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8422 * lib/gnutls_errors.c, lib/includes/gnutls/gnutls.h.in,
8423 lib/openpgp/pgp.c, lib/openpgp/privkey.c: introduced
8424 GNUTLS_E_OPENPGP_PREFERRED_KEY_ERROR
8426 2011-03-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8428 * lib/gnutls_algorithms.c: On unknown public key algorithms return
8431 2011-03-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8433 * lib/gnutls_privkey.c: Read the public key algorithm from the
8434 selected subkey and not the master key when importing to a
8437 2011-03-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8439 * lib/openpgp/gnutls_openpgp.c, tests/openpgpself.c: Documentation
8440 fixed. Added fresh keys to test.
8442 2011-03-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8444 * tests/openpgpself.c: Test openpgp authentication with DSA-2048 bit
8447 2011-03-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8449 * lib/openpgp/pgp.c: gnutls_openpgp_crt_get_auth_subkey() will no
8450 longer return an unsupported subkey.
8452 2011-03-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8454 * lib/x509/verify.c: Corrected verification of DSA-2048 keys.
8455 Reported by teddy@fukt.bsnet.se.
8457 2011-03-14 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8459 * doc/cha-intro-tls.texi: Added
8460 gnutls_transport_set_vec_push_function().
8462 2011-03-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8464 * lib/gnutls_dtls.c, lib/includes/gnutls/dtls.h, lib/libgnutls.map,
8465 src/udp-serv.c: updated cookie negotiation to use only a prestate
8466 structure and avoids setting data to cookie.
8468 2011-03-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8470 * lib/gnutls_handshake.c: Use DTLS 1.0 instead of SSL 3.0 headers on
8471 client hello in DTLS.
8473 2011-03-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8475 * lib/gnutls_dtls.c, lib/gnutls_errors.c,
8476 lib/includes/gnutls/dtls.h, lib/libgnutls.map, src/udp-serv.c: Added
8477 photuris-like resource protection on the server. Added
8478 gnutls_dtls_cookie_send(), gnutls_dtls_cookie_verify() and
8479 gnutls_dtls_cookie_set() to avoid initializing a session before
8482 2011-03-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8484 * lib/crypto-api.c, lib/ext_session_ticket.c,
8485 lib/includes/gnutls/gnutls.h.in: added gnutls_key_generate() to API.
8487 2011-03-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8489 * lib/ext_session_ticket.c: Avoid the usage of structures where the
8490 attribute packed is assumed.
8492 2011-03-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8494 * lib/gnutls_buffers.c, lib/gnutls_buffers.h,
8495 lib/gnutls_handshake.c: renamed gnutls_handshake_buffer_* functions
8496 to gnutls_handshake_hash_buffer_* to separate from new API functions
8497 and corrected its usage.
8499 2011-03-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8501 * lib/gnutls_algorithms.c: Added DSA-SHA256, DSA-SHA224 and
8502 RSA-SHA224 to the supported signature algorithms list. Suggested by
8505 2011-03-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8507 * lib/gnutls_constate.c, lib/gnutls_constate.h,
8508 lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_v2_compat.c:
8509 session->internals.compression_method was removed. It was no longer
8510 required since the new compression algorithm was stored to next
8513 2011-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8515 * lib/gnutls_buffers.c, lib/gnutls_cipher.c, lib/gnutls_constate.c,
8516 lib/gnutls_handshake.c, lib/gnutls_record.c, lib/gnutls_state.h:
8517 _gnutls_is_dtls() is no more. IS_DTLS() is being used instead.
8519 2011-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8521 * lib/ext_session_ticket.c: do not print debugging output on
8524 2011-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8526 * lib/ext_session_ticket.c, lib/gnutls_cipher.c,
8527 lib/gnutls_cipher_int.c, lib/gnutls_constate.c,
8528 lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_record.c:
8529 Properly reset the SSL 3.0 MAC algorithm.
8531 2011-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8533 * lib/gnutls_buffers.c, lib/gnutls_errors.h,
8534 lib/gnutls_handshake.c, lib/x509/verify-high.c: cleanups. Introduced
8535 gnutls_assert_val_fatal() that only prints debugging messages on
8538 2011-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8540 * lib/gnutls_alert.c: Added string for GNUTLS_A_SSL3_NO_CERTIFICATE.
8542 2011-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8544 * lib/gnutls_algorithms.c, lib/gnutls_algorithms.h:
8545 gnutls_version_has_variable_padding is not really needed. A check
8546 for SSL3.0 is more clear.
8548 2011-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8550 * lib/debug.c, lib/gnutls_buffers.c, lib/gnutls_constate.c,
8551 lib/gnutls_handshake.c, lib/gnutls_record.c, lib/gnutls_v2_compat.c:
8552 Corrected SSL2 client hello handling.
8554 2011-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8556 * lib/gnutls_record.c: do not set default record version (i.e. SSL
8557 3.0) during a re-handshake.
8559 2011-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8561 * lib/gnutls_priority.c: default behavior is to send SSL3.0 client
8564 2011-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8566 * lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_priority.c:
8567 corrected ssl3 record version sending in client hello.
8569 2011-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8571 * NEWS, doc/cha-intro-tls.texi, lib/gnutls_buffers.c,
8572 lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_state.c,
8573 lib/includes/gnutls/compat.h, lib/includes/gnutls/gnutls.h.in,
8574 lib/libgnutls.map: gnutls_transport_set_lowat() is no more.
8576 2011-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8578 * lib/gnutls_buffers.c, lib/gnutls_record.c: some cleanups
8580 2011-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8582 * lib/x509/common.h, lib/x509/verify-high.c, lib/x509/verify.c:
8583 gnutls_x509_trust_list_verify_crt shortens the provided certificate
8584 list based on the existing trusted CAs.
8586 2011-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8588 * lib/gnutls_int.h, lib/gnutls_state.c, lib/gnutlsxx.cpp,
8589 lib/includes/gnutls/compat.h, lib/includes/gnutls/dtls.h,
8590 lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/gnutlsxx.h,
8591 lib/libgnutls.map, libextra/includes/gnutls/openssl.h, src/cli.c,
8592 src/serv.c: gnutls_init_dtls() was made redundant. The same for
8593 gnutls_end_connection_t which was replaced by a flags integer..
8595 2011-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8597 * lib/auth_psk.c, lib/auth_psk.h, lib/ext_session_ticket.c,
8598 lib/ext_srp.c, lib/gnutls_sig.c, lib/gnutls_x509.c,
8599 lib/pkcs11_int.h, lib/system.c, lib/system.h, lib/x509/mpi.c,
8600 lib/x509/verify.c, src/certtool-common.h, src/certtool.c,
8601 src/common.c, src/pkcs11.c, src/udp-serv.c: Corrected types.
8603 2011-03-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8605 * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa,
8606 src/serv-gaa.c, src/serv-gaa.h, src/serv.c, src/serv.gaa,
8607 src/udp-serv.c, src/udp-serv.h: Added --mtu option.
8609 2011-03-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8611 * lib/gnutls_buffers.c: properly re-generate headers of fragmented
8614 2011-03-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8616 * lib/gnutls_state.c: increased initial retransmission time to 1
8619 2011-03-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8621 * lib/gnutls_handshake.c: In DTLS do not hash messages that
8622 shouldn't be hashed (i.e. hello verify request).
8624 2011-03-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8626 * lib/gnutls_cipher.c: Corrected size check in block encrypted
8629 2011-03-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8631 * lib/gnutls_buffers.c, lib/gnutls_handshake.c: Corrected behavior
8632 in normal TLS handshake.
8634 2011-03-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8636 * libextra/Makefile.am: link libgnutls-extra against libgcrypt if
8637 required. Based on patch by Andreas Metzler
8638 <ametzler@downhill.at.eu.org>
8640 2011-03-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8642 * NEWS, lib/m4/hooks.m4, libextra/Makefile.am: increased the so
8643 version of libgnutls-openssl.
8645 2011-03-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8647 * lib/ext_session_ticket.c, lib/gnutls_buffers.c,
8648 lib/gnutls_buffers.h, lib/gnutls_cipher.c, lib/gnutls_dtls.c,
8649 lib/gnutls_errors.c, lib/gnutls_handshake.c,
8650 lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_kx.c,
8651 lib/gnutls_mbuffers.c, lib/gnutls_mbuffers.h, lib/gnutls_record.c,
8652 lib/gnutls_state.c, lib/gnutls_str.c, lib/gnutls_v2_compat.c,
8653 lib/includes/gnutls/gnutls.h.in: Added intermediate handshake layer
8654 that will order handshake packets and drop duplicates.
8656 2011-03-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8658 * lib/gnutls_record.c: handle non fatal errors when receiving record
8661 2011-03-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8663 * lib/gnutls_cipher.c: memcpy -> memmove.
8665 2011-03-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8667 * lib/gnutls_buffers.c, lib/gnutls_int.h: removed GMAX
8669 2011-03-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8671 * src/certtool.c: Allow providing no password for PKCS #12 structure
8672 generation. Reported by Daniel Kahn Gillmor.
8674 2011-03-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8676 * src/certtool-cfg.c: consistently print all interactive questions
8677 to stderr. Reported by Daniel Kahn Gillmor.
8679 2011-02-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8681 * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_dtls.c,
8682 lib/gnutls_int.h, lib/gnutls_mbuffers.c, lib/gnutls_mbuffers.h,
8683 lib/gnutls_record.c, lib/gnutls_state.c: combined all the record
8686 2011-02-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8688 * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_dtls.c,
8689 lib/gnutls_int.h, lib/gnutls_mbuffers.c, lib/gnutls_mbuffers.h,
8690 lib/gnutls_record.c, lib/gnutls_record.h, lib/gnutls_state.c:
8691 internal buffering for record and handshake data changed from
8692 gnutls_buffers to gnutls_mbuffers.
8694 2011-02-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8696 * lib/debug.c, lib/gnutls_buffers.c, lib/gnutls_int.h,
8697 lib/gnutls_record.c, lib/gnutls_state.c,
8698 lib/includes/gnutls/gnutls.h.in: Removed last pieces of inner
8701 2011-02-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8703 * lib/gnutls_record.c: some cleanups
8705 2011-03-01 Ludovic Courtès <ludo@gnu.org>
8707 * guile/tests/anonymous-auth.scm, guile/tests/openpgp-auth.scm,
8708 guile/tests/x509-auth.scm: guile: Change tests to use priority
8711 2011-03-01 Ludovic Courtès <ludo@gnu.org>
8713 * src/Makefile.am: Add `udp-serv.h' to the distribution.
8715 2011-02-28 Andreas Metzler <ametzler@downhill.at.eu.org>
8717 * lib/libgnutls.map: fix duplicate symbols in version script These three symbols are listed both in the GNUTLS_2_8 and the
8718 GNUTLS_2_10 section. binutils uses the first occurence, drop the
8719 second one. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
8721 2011-02-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8723 * doc/cha-intro-tls.texi: updates on -ALL priorities.
8725 2011-02-28 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8727 * lib/ext_signature.c: Restrict the signature algorithms we
8728 advertize to SHA1 and SHA256.
8730 2011-02-28 Ludovic Courtès <ludo@gnu.org>
8732 * lib/includes/Makefile.am: Add `gnutls/dtls.h' to the distribution.
8734 2011-02-27 Ludovic Courtès <ludo@gnu.org>
8736 * guile/modules/system/documentation/c-snarf.scm: guile: Fix
8737 docstring extraction with CPP 4.5+.
8739 2011-02-27 Ludovic Courtès <ludo@gnu.org>
8741 * doc/Makefile.am: Pass the right CPPFLAGS when building Guile doc.
8743 2011-02-27 Ludovic Courtès <ludo@gnu.org>
8745 * doc/cha-intro-tls.texi, guile/src/core.c: Add nodes for the
8746 subsections of "The TLS Handshake Protocol".
8748 2011-02-27 Ludovic Courtès <ludo@gnu.org>
8750 * lib/Makefile.am: Add `lib/gnutls_dtls.h' to the distribution.
8752 2011-02-27 Ludovic Courtès <ludo@gnu.org>
8754 * guile/modules/gnutls.scm, guile/modules/gnutls/build/enums.scm,
8755 guile/modules/gnutls/build/priorities.scm, guile/src/core.c,
8756 guile/src/errors.c, guile/src/errors.h, guile/tests/Makefile.am,
8757 guile/tests/priorities.scm: guile: Wrap
8758 `gnutls_priority_set_direct'; deprecate the old method.
8760 2011-02-27 Ludovic Courtès <ludo@gnu.org>
8762 * doc/scripts/gdoc, doc/scripts/sort2.pl: Avoid hard-coded
8763 /usr/bin/perl (trick taken from Gnulib.)
8765 2011-02-27 Ludovic Courtès <ludo@gnu.org>
8767 * libextra/gnutls_extra.c: Fix LZO-enabled builds.
8769 2011-02-24 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8771 * lib/nettle/rnd.c: Detect fork() in the random number generator and
8774 2011-02-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8776 * lib/gnutls_dtls.c, lib/gnutls_state.c: use timeouts closer to DTLS
8779 2011-02-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8781 * lib/gnutls_state.c, lib/includes/gnutls/gnutls.h.in,
8782 lib/libgnutls.map, lib/system_override.c: Renamed
8783 gnutls_transport_set_push_function2() to
8784 gnutls_transport_set_vec_push_function().
8786 2011-02-20 Simon Josefsson <simon@josefsson.org>
8788 * NEWS, doc/manpages/Makefile.am, lib/includes/gnutls/compat.h,
8789 lib/libgnutls.map, lib/x509/crq.c: Remove
8790 gnutls_x509_crq_get_preferred_hash_algorithm.
8792 2011-02-20 Simon Josefsson <simon@josefsson.org>
8794 * lib/libgnutls.map: Remove dropped functions.
8796 2011-02-20 Simon Josefsson <simon@josefsson.org>
8798 * lib/x509/crl_write.c: Add deprecated docstring.
8800 2011-02-20 Simon Josefsson <simon@josefsson.org>
8802 * lib/x509/crq.c: Fix deprecated docstring.
8804 2011-02-20 Simon Josefsson <simon@josefsson.org>
8806 * lib/x509/privkey.c: Fix docstring.
8808 2011-02-20 Simon Josefsson <simon@josefsson.org>
8810 * lib/gnutls_pubkey.c: Fix docstring of new function.
8812 2011-02-20 Simon Josefsson <simon@josefsson.org>
8814 * lib/gnutls_cert.c: Fix docstring for deprecated functions.
8816 2011-02-20 Simon Josefsson <simon@josefsson.org>
8818 * lib/gnutls_sig.c: Make it build.
8820 2011-02-20 Simon Josefsson <simon@josefsson.org>
8822 * lib/openpgp/privkey.c: Fix docstring of deprecated function.
8824 2011-02-20 Simon Josefsson <simon@josefsson.org>
8826 * lib/gnutls_pubkey.c: Fix docstrinf of new function.
8828 2011-02-20 Simon Josefsson <simon@josefsson.org>
8830 * doc/reference/gnutls-docs.sgml: Fix typo.
8832 2011-02-20 Simon Josefsson <simon@josefsson.org>
8834 * doc/reference/gnutls-docs.sgml: Improve text.
8836 2011-02-20 Simon Josefsson <simon@josefsson.org>
8838 * lib/x509/crl.c: Doc fix of new function.
8840 2011-02-20 Simon Josefsson <simon@josefsson.org>
8842 * lib/gnutls_cert.c, lib/gnutls_privkey.c, lib/x509/privkey.c: Fix
8843 docstring of deprecated functions.
8845 2011-02-20 Simon Josefsson <simon@josefsson.org>
8847 * NEWS, lib/gnutls_privkey.c, lib/includes/gnutls/abstract.h,
8848 lib/includes/gnutls/compat.h, lib/libgnutls.map, lib/x509/crq.c,
8849 lib/x509/sign.c, tests/x509sign-verify.c: Rename
8850 gnutls_privkey_sign_data2 to gnutls_privkey_sign_data and
8851 gnutls_privkey_sign_hash2 to gnutls_privkey_sign_hash. These were added during the 2.11 cycle where we don't promise ABI
8854 2011-02-20 Simon Josefsson <simon@josefsson.org>
8856 * doc/gnutls-crypto-layers.eps: Add doc/gnutls-crypto-layers.eps.
8858 2011-02-20 Simon Josefsson <simon@josefsson.org>
8860 * doc/Makefile.am: Dist gnutls-crypto-layers.*.
8862 2011-02-20 Simon Josefsson <simon@josefsson.org>
8864 * lib/Makefile.am: Add abstract_int.h.
8866 2011-02-20 Simon Josefsson <simon@josefsson.org>
8868 * .gitignore: Ignore more.
8870 2011-02-20 Simon Josefsson <simon@josefsson.org>
8872 * lib/Makefile.am: Link with -lnettle too.
8874 2011-02-20 Simon Josefsson <simon@josefsson.org>
8876 * doc/Makefile.am, doc/cha-programs.texi, lib/gnutls_privkey.c,
8877 lib/includes/gnutls/compat.h, lib/includes/gnutls/x509.h,
8878 lib/openpgp/pgp.c: Fix syntax-check warnings.
8880 2011-02-22 Ludovic Courtès <ludo@gnu.org>
8882 * guile/modules/gnutls/build/enums.scm: guile: Remove
8883 GNUTLS_A_INNER_APPLICATION_FAILURE and
8884 GNUTLS_A_INNER_APPLICATION_VERIFICATION.
8886 2011-02-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8888 * lib/gnutls_session_pack.c: store entities as numbers to avoid
8889 issues in big-little endian machines.
8891 2011-02-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8893 * lib/gnutls_record.c: documented the DTLS sequence particularities.
8895 2011-02-22 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8897 * lib/gnutls_buffers.c, lib/gnutls_handshake.c,
8898 lib/gnutls_record.c, lib/gnutls_record.h,
8899 lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, src/udp-serv.c:
8900 Added gnutls_record_recv_seq() that can return the sequence number
8901 of the record packet, in addition to data.
8903 2011-02-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8905 * lib/gnutls_record.c: reorganized and simplified gnutls_recv_int().
8906 It will discard invalid DTLS packets.
8908 2011-02-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8910 * lib/gnutls_constate.h, lib/gnutls_record.c: Discard messages that
8911 contain a different epoch than the current one.
8913 2011-02-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8915 * lib/gnutls_record.c: renamed internal function to reflect
8918 2011-02-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8920 * lib/gnutls_buffers.c, lib/gnutls_dtls.c, lib/gnutls_dtls.h,
8921 lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_state.c:
8922 Implemented a sliding window-like thing to discard replayed packets.
8924 2011-02-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8926 * src/cli.c: gnutls-cli shouldn't print errors on EAGAIN and
8929 2011-02-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8931 * lib/gnutls_num.c: corrected uint48pp.
8933 2011-02-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8935 * lib/gnutls_constate.c, lib/gnutls_mbuffers.c, lib/gnutls_state.c:
8936 Epoch garbage collector is being run when handshake is being cleaned
8939 2011-02-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8941 * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_dtls.c,
8942 lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_num.c,
8943 lib/gnutls_state.c: skip replays in handshake packets.
8945 2011-02-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8947 * lib/gnutls_record.c: Forbid SSL v.2 client hello in DTLS.
8949 2011-02-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8951 * lib/gnutls_buffers.c, lib/gnutls_int.h: removed unneeded
8954 2011-02-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8956 * lib/gnutls_buffers.c, lib/gnutls_constate.h, lib/gnutls_dtls.c,
8957 lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_mbuffers.c:
8958 Cleanups in combination of DTLS and TLS buffers.
8960 2011-02-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8962 * lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c,
8963 lib/auth_srp.c, lib/gnutls_algorithms.c, lib/gnutls_dh_primes.c,
8964 lib/gnutls_errors.h, lib/gnutls_handshake.c, lib/gnutls_sig.c,
8965 lib/opencdk/main.h, lib/openpgp/pgp.c, lib/openpgp/pgpverify.c,
8966 lib/openpgp/privkey.c, lib/x509/common.c, lib/x509/dn.c,
8967 lib/x509/pkcs12.c, lib/x509/pkcs7.c, lib/x509/privkey_pkcs8.c,
8968 lib/x509/verify.c, lib/x509/x509_write.c, lib/x509_b64.c:
8969 gnutls_x509_log replaced with gnutls_audit_log.
8971 2011-02-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8973 * lib/gnutls_algorithms.h, lib/gnutls_cipher.c, lib/gnutls_dtls.c,
8974 lib/gnutls_int.h, lib/gnutls_state.c, lib/gnutls_state.h: Return a
8975 more precise mtu unit to applications.
8977 2011-02-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8979 * src/udp-serv.c: restart handshake on signals.
8981 2011-02-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8983 * lib/gnutls_buffers.c, lib/gnutls_constate.h, lib/gnutls_dtls.c:
8984 reference counting in epochs is being done using functions.
8986 2011-02-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8988 * lib/gnutls_cipher.c, lib/gnutls_compress.c, lib/gnutls_dtls.c,
8989 lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_state.c,
8990 lib/includes/gnutls/dtls.h, lib/libgnutls.map: Added
8991 gnutls_dtls_g/set_mtu() to allow setting and getting the DTLS mtu
8994 2011-02-20 Nikos Mavrogiannopoulos <nmav@gnutls.org>
8996 * lib/gnutls_buffers.c, lib/gnutls_dtls.c, lib/gnutls_dtls.h,
8997 lib/gnutls_int.h, lib/gnutls_state.c: Combined DTLS buffers and
9000 2011-02-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9002 * lib/Makefile.am, lib/ext_session_ticket.c, lib/gnutls_buffers.c,
9003 lib/gnutls_buffers.h, lib/gnutls_constate.c, lib/gnutls_dtls.c,
9004 lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_state.c,
9005 lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, lib/system.c,
9006 lib/system.h, lib/system_override.c, src/Makefile.am,
9007 src/serv-gaa.c, src/serv-gaa.h, src/serv.c, src/serv.gaa,
9008 src/udp-serv.c, src/udp-serv.h: Changes to allow DTLS server side to
9009 operate. Added a simple UDP server on gnutls-serv. Server other
9012 2011-02-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9014 * lib/gnutls_dtls.c, lib/gnutls_errors.c, lib/gnutls_int.h,
9015 lib/gnutls_state.c, lib/includes/gnutls/dtls.h,
9016 lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, src/cli.c: Allow
9017 setting the DTLS timeouts explicitly.
9019 2011-02-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9021 * doc/TODO: updated.
9023 2011-02-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9025 * lib/auth_cert.c, lib/debug.c, lib/gnutls_algorithms.c,
9026 lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cipher.c,
9027 lib/gnutls_cipher.h, lib/gnutls_dtls.c, lib/gnutls_dtls.h,
9028 lib/gnutls_errors.h, lib/gnutls_handshake.c, lib/gnutls_int.h,
9029 lib/gnutls_mbuffers.h, lib/gnutls_num.c, lib/gnutls_num.h,
9030 lib/gnutls_record.c, lib/gnutls_record.h, lib/gnutls_state.c,
9031 lib/includes/gnutls/gnutls.h.in, lib/system.c, lib/system.h,
9032 src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa: Several
9033 updates for DTLS (client side only) to work.
9035 2011-02-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9037 * lib/opencdk/main.h: Increased level of opencdk debug messages.
9039 2011-02-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9041 * lib/gnutls_sig.c: DSA keys in TLS 1.x, x<2 and SSL 3.0 use SHA-1
9042 as hash. That is we reverted to previous gnutls behavior. That
9043 violates DSS but all implementations handle it like that.
9045 2011-02-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9047 * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_dtls.c,
9048 lib/gnutls_dtls.h, lib/gnutls_handshake.c, lib/gnutls_int.h: use
9049 similar API when caching messages in DTLS or TLS.
9051 2011-02-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9053 * lib/gnutls_algorithms.c: corrected is_version_supported().
9055 2011-02-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9057 * lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_kx.c:
9058 Simplified _gnutls_recv_handshake().
9060 2011-02-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9062 * lib/gnutls_algorithms.c, lib/gnutls_algorithms.h,
9063 lib/gnutls_dtls.c, lib/gnutls_handshake.c: ciphersuites have a bit
9064 that indicates whether they are usable with DTLS or not.
9066 2011-02-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9068 * lib/auth_dhe.c, lib/gnutls_algorithms.c, lib/gnutls_cipher.c: fix
9071 2010-10-02 Jonathan Bastien-Filiatrault <joe@x2a.org>
9073 * lib/gnutls_dtls.c, lib/gnutls_dtls.h, lib/gnutls_num.c,
9074 lib/gnutls_num.h: dtls: Add uint48 handling functions. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
9076 2010-10-02 Jonathan Bastien-Filiatrault <joe@x2a.org>
9078 * lib/gnutls_record.c: dtls: Bring epoch choice on receive closer to
9079 the first usage. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
9081 2010-09-24 Jonathan Bastien-Filiatrault <joe@x2a.org>
9083 * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa: Add DTLS
9084 support to command-line client. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
9086 2010-09-17 Jonathan Bastien-Filiatrault <joe@x2a.org>
9088 * lib/gnutls_constate.c: dtls: Write epoch to sequence number. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
9090 2010-09-06 Jonathan Bastien-Filiatrault <joe@x2a.org>
9092 * lib/gnutls_handshake.c: dtls: Send consistent a client_random. This is necessary when challenged by HelloVerifiyRequest as we MUST
9093 send the same client parameters. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
9095 2010-09-05 Jonathan Bastien-Filiatrault <joe@x2a.org>
9097 * lib/gnutls_handshake.c, lib/gnutls_int.h: dtls: Limit the number
9098 of HelloVerifyRequest round trips. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
9100 2010-09-05 Jonathan Bastien-Filiatrault <joe@x2a.org>
9102 * lib/gnutls_dtls.c, lib/gnutls_handshake.c: dtls: TEMP: Sprinkle
9103 transmits. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
9105 2010-09-05 Jonathan Bastien-Filiatrault <joe@x2a.org>
9107 * lib/gnutls_handshake.c, lib/gnutls_int.h: dtls: Do
9108 HANDSHAKE_HELLO_VERIFY_REQUEST processing. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
9110 2010-09-05 Jonathan Bastien-Filiatrault <joe@x2a.org>
9112 * lib/gnutls_handshake.c: dtls: Add
9113 _gnutls_recv_hello_verify_request. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
9115 2010-09-05 Jonathan Bastien-Filiatrault <joe@x2a.org>
9117 * lib/gnutls_record.c: Decrypt using the proper sequence number. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
9119 2010-09-05 Jonathan Bastien-Filiatrault <joe@x2a.org>
9121 * lib/gnutls_cipher.c, lib/gnutls_cipher.h: dtls: Use proper record
9122 sequence for DTLS decrypt. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
9124 2011-02-17 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9126 * lib/gnutls_handshake.c: corrected extdatalen
9128 2010-09-05 Jonathan Bastien-Filiatrault <joe@x2a.org>
9130 * lib/gnutls_buffers.c: dtls: Read whole datagrams. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
9132 2009-08-03 Jonathan Bastien-Filiatrault <joe@x2a.org>
9134 * lib/gnutls_handshake.c: dtls: Queue outgoing handshake messages in
9135 the retransmission layer. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
9137 2009-08-03 Jonathan Bastien-Filiatrault <joe@x2a.org>
9139 * lib/gnutls_dtls.c, lib/gnutls_dtls.h: Add outgoing flight buffer
9140 handling code. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
9142 2009-08-03 Jonathan Bastien-Filiatrault <joe@x2a.org>
9144 * lib/gnutls_errors.h: Define _gnutls_dtls_log for DTLS. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
9146 2009-08-03 Jonathan Bastien-Filiatrault <joe@x2a.org>
9148 * lib/gnutls_int.h, lib/gnutls_state.c: Add structures for the
9149 buffered outgoing flight. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
9151 2009-08-03 Jonathan Bastien-Filiatrault <joe@x2a.org>
9153 * lib/gnutls_int.h, lib/gnutls_state.c: Add state for handshake mtu. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
9155 2009-08-03 Jonathan Bastien-Filiatrault <joe@x2a.org>
9157 * lib/gnutls_handshake.c: dtls: Fixup outgoing ClientHello hashing. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
9159 2009-08-03 Jonathan Bastien-Filiatrault <joe@x2a.org>
9161 * lib/gnutls_handshake.c, lib/gnutls_int.h: Add proper handshake
9162 outgoing sequence number. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
9164 2009-08-03 Jonathan Bastien-Filiatrault <joe@x2a.org>
9166 * lib/Makefile.am, lib/gnutls_dtls.c, lib/gnutls_dtls.h: Add
9167 gnutls_dtls.{c,h}. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
9169 2009-08-02 Jonathan Bastien-Filiatrault <joe@x2a.org>
9171 * lib/gnutls_handshake.c: dtls: Remove unsuitable ciphers. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
9173 2009-07-28 Jonathan Bastien-Filiatrault <joe@x2a.org>
9175 * lib/debug.c, lib/gnutls_handshake.c,
9176 lib/includes/gnutls/gnutls.h.in: dtls: Add hanshake fragment headers
9177 when sending handshake. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
9179 2009-07-28 Jonathan Bastien-Filiatrault <joe@x2a.org>
9181 * lib/gnutls_cipher.c, lib/gnutls_int.h, lib/gnutls_record.c: dtls:
9182 Add epoch and sequence number to DTLS packets. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
9184 2009-07-28 Jonathan Bastien-Filiatrault <joe@x2a.org>
9186 * lib/gnutls_record.c: Use increment functions for sequence number. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
9188 2009-07-27 Jonathan Bastien-Filiatrault <joe@x2a.org>
9190 * lib/gnutls_int.h, lib/gnutls_num.c, lib/gnutls_num.h,
9191 lib/gnutls_record.c: dtls: Add types and operations required for the
9192 DTLS epoch and sequence. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
9194 2009-07-29 Jonathan Bastien-Filiatrault <joe@x2a.org>
9196 * lib/gnutls_algorithms.c, lib/gnutls_priority.c: Make version
9197 lookup transport dependent. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
9199 2009-08-03 Jonathan Bastien-Filiatrault <joe@x2a.org>
9201 * lib/gnutls_state.h: dtls: Add _gnutls_is_dtls to check if a
9202 session uses DTLS. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
9204 2009-07-25 Jonathan Bastien-Filiatrault <joe@x2a.org>
9206 * lib/gnutls_int.h, lib/gnutls_state.c,
9207 lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map: Add
9208 gnutls_init_dtls function. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
9210 2009-07-25 Jonathan Bastien-Filiatrault <joe@x2a.org>
9212 * lib/gnutls_int.h: Add DTLS state. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
9214 2009-07-15 Jonathan Bastien-Filiatrault <joe@x2a.org>
9216 * lib/gnutls_algorithms.c, lib/includes/gnutls/gnutls.h.in: Add
9217 DTLS1.0 protocol entry. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
9219 2010-09-17 Jonathan Bastien-Filiatrault <joe@x2a.org>
9221 * lib/ext_session_ticket.c, lib/gnutls_handshake.c,
9222 lib/gnutls_kx.c, lib/gnutls_mbuffers.h: Allocate session buffers of
9223 size, depending on type of session. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
9225 2010-09-25 Jonathan Bastien-Filiatrault <joe@x2a.org>
9227 * lib/gnutls_constate.c: Harmonize "d" argument between constate.c
9228 and compress.c. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
9230 2010-09-24 Jonathan Bastien-Filiatrault <joe@x2a.org>
9232 * src/cli-gaa.c, src/cli.gaa: Fix typo. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
9234 2010-09-21 Jonathan Bastien-Filiatrault <joe@x2a.org>
9236 * lib/gnutls_num.h: Parenthesize UINT64DATA again. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
9238 2011-02-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9240 * doc/cha-intro-tls.texi: reorganization of ciphersuite discussion.
9242 2011-02-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9244 * lib/gnutls_priority.c: Allow using the minus "-" in the -ALL
9247 2011-02-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9249 * lib/gnutls_algorithms.c: Added fixme note on TLS 1.2 PRF per
9252 2011-02-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9254 * lib/gnutls_algorithms.c: The safe renegotiation ciphersuite is not
9255 required to be registered.
9257 2011-02-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9259 * lib/auth_dhe_psk.c: Corrected bug in DHE-PSK in freeing
9262 2011-02-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9264 * lib/gnutls_algorithms.c: Added ciphersuites (from RFC5487):
9265 TLS_PSK_WITH_AES_128_GCM_SHA256 TLS_DHE_PSK_WITH_AES_128_GCM_SHA256
9266 TLS_PSK_WITH_AES_128_CBC_SHA256 TLS_DHE_PSK_WITH_AES_128_CBC_SHA256
9267 TLS_PSK_WITH_NULL_SHA256 TLS_DHE_PSK_WITH_NULL_SHA256
9269 2011-02-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9271 * NEWS, lib/gnutls_extensions.c, lib/gnutls_sig.c: Corrected
9272 signature generation and verification in the Certificate Verify
9273 message when in TLS 1.2. Reported by Todd A. Ouska.
9275 2011-02-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9277 * lib/gnutls_state.c: removed duplicate assignments.
9279 2011-02-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9281 * lib/nettle/cipher.c: upgraded to nettle's new GCM API.
9283 2011-02-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9285 * lib/m4/hooks.m4: increased the C++ library current version.
9287 2011-02-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9289 * NEWS, lib/gnutlsxx.cpp: The C++ interface returns exception on
9290 every error and not only on fatal ones. This allows easier handling
9293 2011-02-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9295 * lib/gnutlsxx.cpp, lib/includes/gnutls/gnutlsxx.h: removed the old
9296 set_priority functions.
9298 2011-02-10 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9300 * src/cli.c, src/serv.c: removed more deprecated stuff.
9302 2011-02-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9304 * libextra/gnutls_openssl.c, libextra/includes/gnutls/openssl.h:
9305 updated openssl layer to new priority functions (untested).
9307 2011-02-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9309 * lib/gnutls_sig.c: removed unused variable.
9311 2011-02-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9313 * NEWS, lib/gnutls_sig.c: Allow DSA2 even in protocols before TLS
9316 2011-02-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9318 * src/cli.c: set the psk callback only if username/key were not
9319 supplied at command line.
9321 2011-02-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9323 * lib/ext_signature.c, lib/ext_signature.h, lib/gnutls_pk.c,
9324 lib/gnutls_sig.c: In TLS 1.2 under DSS use the hash algorithm
9327 2011-02-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9329 * tests/Makefile.am, tests/openpgp-auth.c, tests/openpgp-auth2.c:
9330 Added new test openpgp-auth2.c that tests openpgp under TLS1.2 and
9333 2011-02-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9335 * tests/anonself.c, tests/dhepskself.c, tests/mini-eagain.c,
9336 tests/mini.c, tests/openpgp-auth.c, tests/pskself.c, tests/resume.c:
9337 Modernized the test applications that now use the
9338 gnutls_priority_set_direct().
9340 2011-02-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9342 * lib/includes/gnutls/compat.h, lib/includes/gnutls/gnutls.h.in:
9343 deprecated gnutls_*_set_priority().
9345 2011-02-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9347 * lib/auth_cert.c, lib/ext_cert_type.c, lib/ext_max_record.c,
9348 lib/ext_safe_renegotiation.c, lib/ext_server_name.c,
9349 lib/ext_session_ticket.c, lib/ext_signature.c, lib/ext_srp.c,
9350 lib/gnutls_extensions.c, lib/gnutls_extensions.h,
9351 lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_pk.c,
9352 lib/gnutls_sig.c, lib/gnutls_state.c,
9353 lib/includes/gnutls/gnutls.h.in, lib/nettle/pk.c: The extensions
9354 code is now using the gnutls_buffer_st.
9356 2011-02-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9358 * lib/gnutls_algorithms.c, lib/x509/x509_int.h: Added sha224 to the
9361 2011-02-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9363 * lib/gnutls_priority.c: The PSK and SRP key exchange algorithms are
9364 not included in the preset priority strings.
9366 2011-02-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9368 * lib/auth_dh_common.c, lib/auth_dh_common.h, lib/auth_dhe_psk.c,
9369 lib/auth_psk.c, lib/auth_psk.h: Callback function is being called in
9370 both PSK-DHE and PSK. Using the callback function will not
9371 overwrite the credentials, which were wrongly being overwritten
9372 using the retrieved username/key. The credentials structure is now
9373 accessed for reading only, as it should have been.
9375 2011-02-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9377 * configure.ac: bumped version.
9379 2011-02-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9381 * doc/cha-programs.texi: Added documentation on p11tool.
9383 2011-02-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9385 * doc/cha-intro-tls.texi, doc/cha-library.texi,
9386 doc/manpages/gnutls-cli.1, doc/manpages/gnutls-serv.1,
9387 lib/gnutls_priority.c, src/common.c: Moved documentation of priority
9388 strings to manual and removed information from manpages and function
9389 pages that now reference the manual section.
9391 2011-02-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9393 * lib/auth_anon.c, lib/auth_cert.c, lib/auth_cert.h,
9394 lib/auth_dh_common.c, lib/auth_dh_common.h, lib/auth_dhe.c,
9395 lib/auth_dhe_psk.c, lib/auth_psk.c, lib/auth_rsa.c,
9396 lib/auth_rsa_export.c, lib/auth_srp.c, lib/auth_srp.h,
9397 lib/auth_srp_rsa.c, lib/gnutls_auth.h, lib/gnutls_kx.c,
9398 lib/gnutls_str.c, lib/gnutls_str.h: Simplified code in
9399 authentication methods by using gnutls_buffer_st instead of
9402 2011-02-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9404 * lib/gnutls_algorithms.c, lib/includes/gnutls/gnutls.h.in: Combined
9407 2011-02-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9409 * lib/auth_cert.c, lib/auth_dhe.c, lib/ext_signature.c,
9410 lib/gnutls_algorithms.c, lib/gnutls_algorithms.h: Several updates in
9411 signature algorithms parsing and sending to avoid sending invalid
9412 signature algorithms.
9414 2011-02-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9416 * lib/gnutls_algorithms.c: Removed unused debugging code.
9418 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9420 * lib/nettle/cipher.c: Removed unneeded initialization.
9422 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9424 * NEWS, doc/cha-auth.texi, doc/cha-programs.texi, lib/Makefile.am,
9425 lib/gnutls_psk_netconf.c, lib/includes/gnutls/compat.h: Removed
9426 gnutls_psk_netconf_derive_key.
9428 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9430 * NEWS, lib/gnutls_cert.c, lib/includes/gnutls/compat.h: Removed
9431 gnutls_certificate_verify_peers.
9433 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9435 * NEWS, lib/gnutls_handshake.c, lib/gnutls_int.h,
9436 lib/gnutls_state.c, lib/includes/gnutls/compat.h: Removed
9437 gnutls_session_set_finished_function().
9439 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9441 * lib/gnutls_alert.c, lib/includes/gnutls/gnutls.h.in: Removed
9442 remaining TLS/IA stuff.
9444 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9446 * src/cli-gaa.c, src/cli-gaa.h, src/cli.gaa, src/serv-gaa.c,
9447 src/serv-gaa.h, src/serv.gaa: Removed more leftovers from opaque PRF
9450 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9452 * lib/gnutls_record.c: Corrected return message from
9455 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9457 * lib/nettle/mac.c: Removed upper limit on MAC algorithm key.
9459 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9461 * lib/gnutls_errors.c: improved premature_termination error message
9463 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9465 * doc/reference/Makefile.am, lib/libgnutls.map: Removed leftovers
9466 from OPRFI extension.
9468 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9470 * NEWS, lib/gnutls_errors.c, lib/gnutls_record.c,
9471 lib/includes/gnutls/gnutls.h.in: gnutls_recv() returns
9472 GNUTLS_E_PREMATURE_TERMINATION on EOF.
9474 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9476 * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa,
9477 src/common.c, src/common.h, src/serv-gaa.c, src/serv-gaa.h,
9478 src/serv.c, src/serv.gaa: Removed deprecated option such as
9479 --protocols, ciphers etc.
9481 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9483 * NEWS: not untested.
9485 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9487 * src/benchmark.c: Set correct iv in GCM.
9489 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9491 * lib/gnutls_cipher.c, lib/gnutls_int.h: Cleanups and moved
9492 definitions to gnutls_int.h. AEAD modes now use the record packet
9495 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9497 * lib/nettle/cipher.c: Reset GCM mode when setting IV.
9499 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9501 * lib/gnutls_algorithms.c: Added more GCM ciphersuites (DHE-* and
9504 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9506 * lib/gnutls_priority.c: updated priorities. Removed ARCFOUR from
9507 the secure ciphersuites and moved GCM to bottom of the ciphers in
9510 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9512 * NEWS, lib/crypto-api.c, lib/gnutls_algorithms.c,
9513 lib/gnutls_algorithms.h, lib/gnutls_cipher_int.c,
9514 lib/gnutls_cipher_int.h, lib/includes/gnutls/crypto.h,
9515 lib/libgnutls.map, src/benchmark.c: Added gnutls_cipher_add_auth()
9516 gnutls_cipher_tag() to export the GCM interface. Updated the
9519 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9521 * lib/gnutls_cert.c: removed
9522 gnutls_certificate_get_openpgp_keyring().
9524 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9526 * lib/gnutls_hash_int.c: minor optimizations.
9528 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9530 * lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h,
9531 lib/gnutls_hash_int.c, lib/gnutls_hash_int.h: inlined several small
9534 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9536 * lib/gnutls_cipher.c, lib/gnutls_cipher_int.c,
9537 lib/gnutls_cipher_int.h, lib/gnutls_handshake.c,
9538 lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_sig.c:
9539 Better error checking on SSL3.
9541 2011-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9543 * lib/gnutls_cipher.c: calculation for c_length occurs in a single
9546 2011-02-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9548 * NEWS: unstable -> untested.
9550 2011-02-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9552 * lib/nettle/mac.c: Increase the maximum HMAC key to account for
9553 anonymous ciphersuites.
9555 2011-02-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9557 * lib/gnutls_hash_int.c: check the error of hash set_key.
9559 2011-02-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9561 * lib/gnutls_kx.c: do not use strlen for fixed string.
9563 2011-02-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9565 * NEWS: updated NEWS on GCM mode.
9567 2011-02-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9569 * lib/nettle/cipher.c: Use nettle's new API for GCM.
9571 2011-02-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9573 * src/cli.c: removed old comment
9575 2011-02-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9577 * NEWS, doc/Makefile.am, doc/cha-functions.texi,
9578 doc/cha-gtls-app.texi, doc/examples/Makefile.am,
9579 doc/examples/ex-client-tlsia.c, lib/gnutls_kx.c,
9580 libextra/Makefile.am, libextra/ext_inner_application.c,
9581 libextra/ext_inner_application.h, libextra/gnutls_extra.c,
9582 libextra/gnutls_ia.c, libextra/libgnutls-extra.map,
9583 tests/Makefile.am, tests/tlsia.c: Removed inner application
9586 2011-02-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9588 * lib/includes/gnutls/compat.h, lib/includes/gnutls/gnutls.h.in:
9589 gnutls_certificate_verify_peers is deprecated.
9591 2011-02-04 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9593 * lib/gcrypt/mac.c, lib/gnutls_algorithms.c,
9594 lib/gnutls_algorithms.h, lib/gnutls_cipher.c, lib/gnutls_cipher.h,
9595 lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h,
9596 lib/gnutls_constate.c, lib/gnutls_hash_int.c,
9597 lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_priority.c,
9598 lib/includes/gnutls/crypto.h, lib/includes/gnutls/gnutls.h.in,
9599 lib/m4/hooks.m4, lib/nettle/cipher.c, lib/nettle/mac.c: Added
9600 support for GCM ciphersuites (not tested with other implementation).
9602 2011-02-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9604 * lib/gnutls_int.h: Added missing definitions (GNUTLS_MASTER_SIZE
9607 2011-02-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9609 * NEWS, lib/gnutls_state.c, lib/includes/gnutls/compat.h: Removed:
9610 gnutls_session_get_server_random, gnutls_session_get_client_random,
9611 gnutls_session_get_master_secret
9613 2011-02-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9615 * lib/build-aux/config.rpath, tests/suite/Makefile.in: updated.
9617 2011-02-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9619 * lib/Makefile.am, lib/gnutls.pc.in, lib/m4/hooks.m4: Add the nettle
9620 libs into gnutls.pc.
9622 2011-02-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9624 * NEWS, lib/gnutls_cert.c, lib/gnutls_extensions.c,
9625 lib/includes/gnutls/compat.h, lib/m4/hooks.m4: Removed functions:
9626 gnutls_ext_register, gnutls_certificate_get_x509_crls,
9627 gnutls_certificate_get_x509_cas and bumped library version number.
9629 2011-02-05 Andreas Metzler <ametzler@downhill.at.eu.org>
9631 * lib/configure.ac, lib/gnutls.pc.in, lib/m4/hooks.m4: [PATCH 1/4]
9632 adapt pkg-config file for switch from AM_PATH_LIBGCRYPT to
9633 AC_LIB_HAVE_LINKFLAGS [PATCH 2/4] pkg-config: Move libtasn1 from
9634 Libs.private to Requires.private since libtasn1 provides a .pc file.
9635 [PATCH 3/4] pkg-config: drop @LIBGNUTLS_LIBS@ from Libs.private.
9636 This library only contains gnutls itself nowadays, which is in Libs
9637 already. [PATCH 4/4] pkg-config: If gnutls is built with zlib
9638 support list zlib in Requires.private.
9640 2011-02-04 Simon Josefsson <simon@josefsson.org>
9642 * doc/cha-ciphersuites.texi, doc/signatures.texi: Fix MD2
9643 documentation. Suggested by "brian m. carlson" <sandals@crustytoothpaste.net> in
9646 2011-02-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9648 * doc/README.CODING_STYLE: updated coding style.
9650 2011-02-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9652 * NEWS: documented gnutls_session_get_* deprecated functions.
9654 2011-02-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9656 * tests/x509paths/README: updated README on certificate
9657 verifications that fail.
9659 2011-02-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9661 * NEWS, src/certtool-common.h, src/certtool-gaa.c,
9662 src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: Added new
9663 functionality to certtool, and can verify certificates against a
9664 list of CAs using the --verify option.
9666 2011-02-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9668 * lib/x509/verify.c, tests/chainverify.c: Time checks were moved to
9669 _gnutls_verify_certificate2(). This allows for straightforward
9670 chain verification, and thus better printing of the chain output,
9671 although some checks might be performed in duplicate. As a
9672 side-effect better errors are returned (or precisely more
9673 combinations of verification errors), thus chainverify test was
9676 2011-02-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9678 * lib/x509/verify-high.c: Set memory to zero on allocation.
9680 2011-02-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9682 * doc/cha-gtls-app.texi: fix in contents.
9684 2011-02-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9686 * doc/examples/examples.h: prototype fix.
9688 2011-02-02 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9690 * doc/examples/ex-verify.c, lib/gnutls_cert.c,
9691 lib/includes/gnutls/x509.h, lib/x509/verify-high.c, src/certtool.c:
9692 gnutls_x509_trust_list_init() has an extra argument that allows
9693 fine-tuning of the used memory.
9695 2011-02-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9697 * doc/cha-bib.texi: Updated references of rfc5081 to rfc6091.
9699 2011-02-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9701 * doc/cha-cert-auth.texi, doc/cha-gtls-app.texi,
9702 doc/examples/ex-verify.c: Documented the new verification functions.
9704 2011-01-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9706 * src/certtool.c, tests/sha2/sha2: Modified output to not confuse
9709 2011-01-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9711 * lib/x509/verify.c: Better output when removing certificates from
9714 2011-01-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9716 * tests/pkcs1-padding/pkcs1-pad: Modified to work on new certtool -e
9719 2011-01-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9721 * NEWS, doc/examples/ex-verify.c, lib/auth_cert.h,
9722 lib/gnutls_cert.c, lib/gnutls_x509.c, lib/includes/gnutls/compat.h,
9723 lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/x509.h,
9724 lib/libgnutls.map, lib/x509/crl.c, lib/x509/x509.c, src/certtool.c,
9725 tests/certificate_set_x509_crl.c: The internal subsystem uses the
9726 new certificate verification functions. This has the side effect of
9727 deprecating gnutls_certificate_get_x509_crls() and
9728 gnutls_certificate_get_x509_cas() that can no longer operation since
9729 they relied on internal structures.
9731 2011-01-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9733 * NEWS, doc/cha-gtls-app.texi, doc/examples/ex-verify.c,
9734 lib/Makefile.am, lib/hash.c, lib/hash.h,
9735 lib/includes/gnutls/x509.h, lib/libgnutls.map,
9736 lib/x509/Makefile.am, lib/x509/crl.c, lib/x509/verify-high.c,
9737 lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509_int.h,
9738 src/certtool.c: Added a new API to verify certificates. It is more
9739 efficient and can be used to get details about the verification
9742 2011-01-31 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9744 * tests/x509paths/chain: better output in chain output.
9746 2011-01-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9748 * NEWS, lib/includes/gnutls/x509.h, lib/x509/crl.c,
9749 lib/x509/verify.c, lib/x509/x509.c: exported
9750 gnutls_x509_crl_get_raw_issuer_dn()
9752 2011-01-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9754 * lib/x509/x509.c: corrected typos
9756 2011-01-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9758 * lib/pakchois/pakchois.c: CKR_CRYPTOKI_ALREADY_INITIALIZED is not
9759 treated as an error, and Finalize is not called in that case.
9761 2011-01-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9763 * NEWS, lib/gnutls_privkey.c, lib/includes/gnutls/compat.h,
9764 lib/openpgp/privkey.c: Reverted removal of
9765 gnutls_openpgp_privkey_sign_hash() to retain compatibility with
9766 2.10.x. That function is now deprecated instead.
9768 2011-01-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9770 * lib/gnutls_privkey.c: Added checks before importing keys and
9771 updated documentation.
9773 2011-01-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9775 * tests/suite/Makefile.in: updated Makefile.in
9777 2011-01-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9779 * doc/examples/ex-crq.c, lib/configure.ac,
9780 lib/includes/gnutls/compat.h, lib/includes/gnutls/gnutls.h.in,
9781 lib/includes/gnutls/x509.h, src/certtool.c, tests/crq_key_id.c:
9782 fixes in internal build with the new deprecated functions. We allow
9783 them to be used since they are inter-dependent.
9785 2011-01-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9787 * lib/x509/x509_int.h: replaced old gnutls_pk_algorithm.
9789 2011-01-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9791 * lib/includes/gnutls/compat.h: depends on gnutls/x509.h to compile.
9793 2011-01-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9795 * NEWS, lib/includes/gnutls/compat.h, lib/includes/gnutls/x509.h,
9796 lib/x509/crl_write.c: deprecated gnutls_x509_crl_sign(),
9797 gnutls_x509_crl_sign2() and
9798 gnutls_x509_crq_get_preferred_hash_algorithm().
9800 2011-01-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9802 * NEWS, lib/includes/gnutls/compat.h, lib/includes/gnutls/x509.h,
9803 lib/x509/crq.c: Deprecated gnutls_x509_crq_sign2() and
9804 gnutls_x509_crq_sign() in favor for gnutls_x509_crq_privkey_sign().
9806 2011-01-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9808 * NEWS, lib/libgnutls.map: minor fixes.
9810 2011-01-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9812 * NEWS, lib/includes/gnutls/compat.h, lib/includes/gnutls/x509.h,
9813 lib/libgnutls.map, lib/x509/privkey.c, lib/x509/x509.c,
9814 src/certtool.c, tests/cve-2009-1415.c, tests/x509sign-verify.c:
9815 gnutls_x509_crt_verify_hash: DEPRECATED gnutls_x509_crt_verify_data:
9816 DEPRECATED gnutls_x509_crt_get_verify_algorithm: DEPRECATED
9817 gnutls_x509_crt_get_preferred_hash_algorithm: DEPRECATED Removed the
9818 new gnutls_x509_privkey_sign_data2() and
9819 gnutls_x509_privkey_sign_hash2(). That functionality will be only in the abstract.h pubkey and privkey
9820 structures, to avoid duplication for every certificate type.
9822 2011-01-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9824 * src/serv.c: Simplified macro to snprintf() in order to prevent
9825 issues caused when snprintf() is a macro itself. Reported and
9826 initial patch by Camillo Lugaresi.
9828 2011-01-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9830 * tests/suite/Makefile.in: Revert "Remove, it is generated." This reverts commit de3a601e502b24f047412a161085f7fbd898b3f3 because
9831 this file is not automatically generated (not included in top
9834 2011-01-02 Simon Josefsson <simon@josefsson.org>
9836 * lib/m4/hooks.m4: Specify minimum libgcrypt version.
9838 2010-12-23 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9840 * doc/cha-internals.texi: Added discussion on crypto backend for
9841 crypto libraries and /dev/crypto.
9843 2010-12-21 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9845 * NEWS, lib/gnutls_privkey.c, lib/includes/gnutls/abstract.h,
9846 lib/includes/gnutls/compat.h, lib/includes/gnutls/x509.h,
9847 lib/x509/crq.c, lib/x509/privkey.c, lib/x509/sign.c: Renamed
9848 gnutls_privkey_sign_data() to gnutls_privkey_sign_data2() to match
9849 the similar function gnutls_x509_privkey_sign_data2().
9850 gnutls_x509_privkey_sign_data() was deprecated.
9852 2010-12-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9854 * lib/gnutls_str.c: Extra sanity check.
9856 2010-12-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9858 * lib/auth_srp_passwd.c: Use snprintf() to print an integer.
9860 2010-12-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9862 * lib/x509/output.c: Use snprintf() to print IPs. There was a check
9863 just before that, but be safe, just in case.
9865 2010-12-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9867 * doc/cha-auth.texi: Use SRP for password authentication.
9869 2010-12-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9871 * doc/cha-auth.texi, lib/gnutls_cert.c, lib/gnutls_extensions.c,
9872 lib/gnutls_psk_netconf.c, lib/gnutls_state.c,
9873 lib/includes/gnutls/compat.h, lib/x509/privkey.c: Do not include
9874 deprecated functions to library documentation.
9876 2010-12-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9878 * NEWS, lib/includes/gnutls/compat.h, lib/includes/gnutls/x509.h,
9879 lib/x509/privkey.c: gnutls_x509_privkey_verify_data() was
9882 2010-12-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9884 * lib/gnutls_pubkey.c: Documented key usage of pubkey.
9886 2010-12-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9888 * lib/gnutls_pubkey.c: Set public key bits on all import functions.
9889 Issue reported by Murray Kucheawy.
9891 2010-12-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9893 * NEWS, lib/gnutls_privkey.c, lib/includes/gnutls/pkcs11.h,
9894 lib/pkcs11_int.h, lib/pkcs11_privkey.c:
9895 gnutls_pkcs11_privkey_sign_data(),
9896 gnutls_pkcs11_privkey_sign_hash2() and
9897 gnutls_pkcs11_privkey_decrypt_data() were removed. The abstract.h
9898 functions should be used instead.
9900 2010-12-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9902 * NEWS, lib/gnutls_privkey.c, lib/includes/gnutls/openpgp.h,
9903 lib/openpgp/gnutls_openpgp.h, lib/openpgp/pgp.c,
9904 lib/openpgp/privkey.c: Removed the newly added functions:
9905 gnutls_openpgp_privkey_sign_hash2(),
9906 gnutls_openpgp_privkey_sign_data2(),
9907 gnutls_openpgp_crt_verify_hash() That way the operations in
9908 abstract.h should be used to get the same functionality, and API
9909 will be kept simple and easier to maintain. The corresponding
9910 gnutls_x509_* are kept for backwards compatibility.
9912 2010-12-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9914 * lib/gnutls_sig.c: Do not be strict on RSA hash algorithm selection
9917 2010-12-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9919 * lib/gnutls_cert.h, lib/gnutls_sig.c, lib/gnutls_x509.c: Removed
9920 unneeded definitions, and more careful deinitializations in
9921 parse_der_cert_mem().
9923 2010-12-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9925 * tests/pathlen/ca-no-pathlen.pem,
9926 tests/pathlen/no-ca-or-pathlen.pem: updated certificates to account
9927 for extra null byte added in negative numbers.
9929 2010-12-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9931 * tests/cve-2009-1415.c: Account for GNUTLS_E_PK_SIG_VERIFY_FAILED.
9933 2010-12-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9935 * lib/gnutls_privkey.c: Corrected bug in gnutls_privkey_sign_data().
9937 2010-12-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9939 * lib/gnutls_sig.c: some fixes in pk_prepare_hash().
9941 2010-12-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9943 * NEWS, lib/gnutls_pubkey.c, lib/openpgp/pgp.c, lib/x509/privkey.c,
9944 lib/x509/verify.c, lib/x509/x509.c, tests/x509sign-verify.c: The
9945 verification functions now return a GNUTLS_E_PK_SIG_VERIFY_FAILED on
9946 signature verification error.
9948 2010-12-18 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9950 * src/p11tool-gaa.c, src/p11tool.gaa: The default input format for
9953 2010-12-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9955 * lib/gnutls_pubkey.c: importing a pubkey from raw params will set
9956 the bits field correctly.
9958 2010-12-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9960 * NEWS: Documented the addtion of gnutls_pubkey_import_privkey() and
9961 gnutls_pubkey_verify_data()
9963 2010-12-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9965 * lib/gnutls_pubkey.c, lib/includes/gnutls/abstract.h,
9966 lib/libgnutls.map, lib/x509/verify.c, tests/x509sign-verify.c: Added
9967 gnutls_pubkey_verify_data and test vectors.
9969 2010-12-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
9971 * doc/errcodes.c, doc/examples/ex-alert.c,
9972 doc/examples/ex-cert-select-pkcs11.c,
9973 doc/examples/ex-cert-select.c, doc/examples/ex-client-psk.c,
9974 doc/examples/ex-client-resume.c, doc/examples/ex-client-srp.c,
9975 doc/examples/ex-client-tlsia.c, doc/examples/ex-client1.c,
9976 doc/examples/ex-client2.c, doc/examples/ex-crq.c,
9977 doc/examples/ex-pkcs12.c, doc/examples/ex-rfc2818.c,
9978 doc/examples/ex-serv-anon.c, doc/examples/ex-serv-pgp.c,
9979 doc/examples/ex-serv-psk.c, doc/examples/ex-serv-srp.c,
9980 doc/examples/ex-serv1.c, doc/examples/ex-session-info.c,
9981 doc/examples/ex-verify.c, doc/examples/ex-x509-info.c,
9982 doc/examples/examples.h, doc/examples/tcp.c, doc/printlist.c,
9983 guile/src/core.c, guile/src/extra.c, guile/src/utils.h,
9984 lib/abstract_int.h, lib/auth_anon.c, lib/auth_cert.c,
9985 lib/auth_cert.h, lib/auth_dh_common.c, lib/auth_dh_common.h,
9986 lib/auth_dhe.c, lib/auth_dhe_psk.c, lib/auth_psk.c,
9987 lib/auth_psk_passwd.c, lib/auth_psk_passwd.h, lib/auth_rsa.c,
9988 lib/auth_rsa_export.c, lib/auth_srp.c, lib/auth_srp.h,
9989 lib/auth_srp_passwd.c, lib/auth_srp_passwd.h, lib/auth_srp_rsa.c,
9990 lib/auth_srp_sb64.c, lib/crypto-api.c, lib/crypto.c, lib/crypto.h,
9991 lib/cryptodev.c, lib/debug.c, lib/ext_cert_type.c,
9992 lib/ext_max_record.c, lib/ext_safe_renegotiation.c,
9993 lib/ext_safe_renegotiation.h, lib/ext_server_name.c,
9994 lib/ext_session_ticket.c, lib/ext_signature.c, lib/ext_signature.h,
9995 lib/ext_srp.c, lib/gcrypt/cipher.c, lib/gcrypt/init.c,
9996 lib/gcrypt/mac.c, lib/gcrypt/mpi.c, lib/gcrypt/pk.c,
9997 lib/gnutls_alert.c, lib/gnutls_algorithms.c,
9998 lib/gnutls_algorithms.h, lib/gnutls_anon_cred.c, lib/gnutls_auth.c,
9999 lib/gnutls_auth.h, lib/gnutls_buffers.c, lib/gnutls_buffers.h,
10000 lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_cipher.c,
10001 lib/gnutls_cipher.h, lib/gnutls_cipher_int.c,
10002 lib/gnutls_cipher_int.h, lib/gnutls_compress.c,
10003 lib/gnutls_compress.h, lib/gnutls_constate.c,
10004 lib/gnutls_constate.h, lib/gnutls_datum.c, lib/gnutls_datum.h,
10005 lib/gnutls_db.c, lib/gnutls_db.h, lib/gnutls_dh.c, lib/gnutls_dh.h,
10006 lib/gnutls_dh_primes.c, lib/gnutls_errors.c,
10007 lib/gnutls_extensions.c, lib/gnutls_extensions.h,
10008 lib/gnutls_global.c, lib/gnutls_handshake.c,
10009 lib/gnutls_handshake.h, lib/gnutls_hash_int.c,
10010 lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_kx.c,
10011 lib/gnutls_kx.h, lib/gnutls_mbuffers.c, lib/gnutls_mbuffers.h,
10012 lib/gnutls_mem.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h,
10013 lib/gnutls_num.c, lib/gnutls_pk.c, lib/gnutls_pk.h,
10014 lib/gnutls_priority.c, lib/gnutls_privkey.c, lib/gnutls_psk.c,
10015 lib/gnutls_psk_netconf.c, lib/gnutls_pubkey.c, lib/gnutls_record.c,
10016 lib/gnutls_record.h, lib/gnutls_rsa_export.c, lib/gnutls_session.c,
10017 lib/gnutls_session_pack.c, lib/gnutls_session_pack.h,
10018 lib/gnutls_sig.c, lib/gnutls_sig.h, lib/gnutls_srp.c,
10019 lib/gnutls_srp.h, lib/gnutls_state.c, lib/gnutls_state.h,
10020 lib/gnutls_str.c, lib/gnutls_str.h, lib/gnutls_supplemental.c,
10021 lib/gnutls_supplemental.h, lib/gnutls_ui.c, lib/gnutls_v2_compat.c,
10022 lib/gnutls_v2_compat.h, lib/gnutls_x509.c, lib/gnutls_x509.h,
10023 lib/includes/gnutls/abstract.h, lib/includes/gnutls/compat.h,
10024 lib/includes/gnutls/crypto.h, lib/includes/gnutls/gnutls.h.in,
10025 lib/includes/gnutls/gnutlsxx.h, lib/includes/gnutls/openpgp.h,
10026 lib/includes/gnutls/pkcs11.h, lib/includes/gnutls/pkcs12.h,
10027 lib/includes/gnutls/x509.h, lib/locks.c, lib/nettle/cipher.c,
10028 lib/nettle/egd.c, lib/nettle/mpi.c, lib/nettle/pk.c,
10029 lib/nettle/rnd.c, lib/opencdk/armor.c, lib/opencdk/context.h,
10030 lib/opencdk/dummy.c, lib/opencdk/filters.h, lib/opencdk/hash.c,
10031 lib/opencdk/kbnode.c, lib/opencdk/keydb.c, lib/opencdk/keydb.h,
10032 lib/opencdk/literal.c, lib/opencdk/main.c, lib/opencdk/main.h,
10033 lib/opencdk/misc.c, lib/opencdk/new-packet.c,
10034 lib/opencdk/opencdk.h, lib/opencdk/packet.h, lib/opencdk/pubkey.c,
10035 lib/opencdk/read-packet.c, lib/opencdk/seskey.c,
10036 lib/opencdk/sig-check.c, lib/opencdk/stream.c,
10037 lib/opencdk/stream.h, lib/opencdk/verify.c,
10038 lib/opencdk/write-packet.c, lib/openpgp/compat.c,
10039 lib/openpgp/extras.c, lib/openpgp/gnutls_openpgp.c,
10040 lib/openpgp/gnutls_openpgp.h, lib/openpgp/openpgp_int.h,
10041 lib/openpgp/output.c, lib/openpgp/pgp.c, lib/openpgp/pgpverify.c,
10042 lib/openpgp/privkey.c, lib/pakchois/pakchois.c,
10043 lib/pakchois/pakchois.h, lib/pakchois/pakchois11.h, lib/pkcs11.c,
10044 lib/pkcs11_int.h, lib/pkcs11_privkey.c, lib/pkcs11_secret.c,
10045 lib/pkcs11_write.c, lib/random.c, lib/system.c, lib/system.h,
10046 lib/x509/common.c, lib/x509/common.h, lib/x509/crl.c,
10047 lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/dn.c,
10048 lib/x509/extensions.c, lib/x509/mpi.c, lib/x509/output.c,
10049 lib/x509/pbkdf2-sha1.c, lib/x509/pbkdf2-sha1.h, lib/x509/pkcs12.c,
10050 lib/x509/pkcs12_bag.c, lib/x509/pkcs12_encr.c, lib/x509/pkcs7.c,
10051 lib/x509/privkey.c, lib/x509/privkey_pkcs8.c,
10052 lib/x509/rfc2818_hostname.c, lib/x509/sign.c, lib/x509/verify.c,
10053 lib/x509/x509.c, lib/x509/x509_int.h, lib/x509/x509_write.c,
10054 lib/x509_b64.c, lib/x509_b64.h, libextra/ext_inner_application.c,
10055 libextra/ext_inner_application.h, libextra/gnutls_extra.c,
10056 libextra/gnutls_ia.c, libextra/gnutls_openssl.c,
10057 libextra/includes/gnutls/extra.h,
10058 libextra/includes/gnutls/openssl.h, libextra/openssl_compat.c,
10059 libextra/openssl_compat.h, maint.mk, src/benchmark.c,
10060 src/certtool-cfg.c, src/certtool-cfg.h, src/certtool-common.c,
10061 src/certtool-common.h, src/certtool.c, src/cli.c, src/common.c,
10062 src/common.h, src/crypt.c, src/p11tool.c, src/p11tool.h,
10063 src/pkcs11.c, src/prime.c, src/psk.c, src/serv.c, src/tests.c,
10064 src/tests.h, src/tls_test.c, tests/anonself.c,
10065 tests/certificate_set_x509_crl.c, tests/chainverify.c,
10066 tests/crq_apis.c, tests/crq_key_id.c, tests/cve-2008-4989.c,
10067 tests/dhepskself.c, tests/dn.c, tests/dn2.c, tests/gc.c,
10068 tests/mini-eagain.c, tests/mini-x509-rehandshake.c,
10069 tests/mini-x509.c, tests/mini.c, tests/mpi.c,
10070 tests/nul-in-x509-names.c, tests/openpgp-auth.c,
10071 tests/openpgp-keyring.c, tests/openpgp_test.c, tests/openpgpself.c,
10072 tests/openssl.c, tests/pgps2kgnu.c, tests/pkcs12_encode.c,
10073 tests/pkcs12_s2k.c, tests/pkcs12_s2k_pem.c, tests/pskself.c,
10074 tests/resume.c, tests/safe-renegotiation/srn0.c,
10075 tests/safe-renegotiation/srn1.c, tests/safe-renegotiation/srn2.c,
10076 tests/safe-renegotiation/srn3.c, tests/safe-renegotiation/srn4.c,
10077 tests/safe-renegotiation/srn5.c, tests/set_pkcs12_cred.c,
10078 tests/simple.c, tests/tlsia.c, tests/utils.c, tests/utils.h,
10079 tests/x509_altname.c, tests/x509_test.c, tests/x509dn.c,
10080 tests/x509self.c, tests/x509sign-verify.c: Indented code. Use same
10081 indentation but with -nut to avoid usage of tabs. In several editors
10082 tabs can be configured not to be 8 spaces and this produces
10083 artifacts with the current indentation that is a mixture of tabs and
10086 2010-12-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10088 * lib/gnutls_privkey.c: _gnutls_privkey_get_public_mpis() handles
10091 2010-12-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10093 * lib/abstract_int.h, lib/gnutls_privkey.c, lib/gnutls_pubkey.c,
10094 lib/includes/gnutls/abstract.h, lib/libgnutls.map: Added
10095 gnutls_pubkey_import_privkey(), that will copy the public key from a
10096 gnutls_privkey_t structure.
10098 2010-12-15 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10100 * NEWS, lib/libgnutls.map: Do not export the non-existant symbols
10101 gnutls_pkcs11_privkey_sign_hash and gnutls_privkey_sign_hash.
10103 2010-12-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10105 * NEWS: documented new functions
10107 2010-12-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10109 * NEWS: Added new functions.
10111 2010-12-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10113 * lib/libgnutls.map: Added new functions.
10115 2010-12-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10117 * lib/includes/gnutls/compat.h, lib/includes/gnutls/x509.h:
10118 de-deprecated gnutls_x509_crt_verify_hash()
10120 2010-12-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10122 * lib/includes/gnutls/openpgp.h, lib/libgnutls.map,
10123 lib/openpgp/pgp.c, tests/x509sign-verify.c: Added
10124 gnutls_openpgp_crt_verify_hash().
10126 2010-12-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10128 * lib/includes/gnutls/pkcs11.h, lib/pkcs11_privkey.c: added
10129 gnutls_privkey_sign_hash2()
10131 2010-12-13 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10133 * lib/gnutls_privkey.c, lib/gnutls_sig.c, lib/gnutls_sig.h,
10134 lib/openpgp/privkey.c, lib/pkcs11_privkey.c, lib/x509/privkey.c:
10135 Simplified preparation of signing code.
10137 2010-12-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10139 * lib/gnutls_privkey.c, lib/gnutls_pubkey.c, lib/gnutls_sig.c,
10140 lib/gnutls_sig.h, lib/openpgp/gnutls_openpgp.h,
10141 lib/openpgp/privkey.c, lib/pkcs11_int.h, lib/pkcs11_privkey.c,
10142 lib/x509/Makefile.am, lib/x509/privkey.c, lib/x509/sign.c,
10143 lib/x509/sign.h: deprecated x509/sign.h and moved functionality of
10144 it in gnutls_sig.h.
10146 2010-12-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10148 * lib/x509/sign.c: pk_hash_data() will fail unless DSA or RSA are
10151 2010-12-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10153 * lib/x509/privkey.c: better comments
10155 2010-12-12 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10157 * lib/openpgp/gnutls_openpgp.c, lib/openpgp/privkey.c:
10158 reorganization of the privkey_ functions().
10160 2010-12-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10162 * lib/gnutls_privkey.c, lib/includes/gnutls/abstract.h,
10163 lib/includes/gnutls/compat.h, lib/includes/gnutls/openpgp.h,
10164 lib/includes/gnutls/x509.h, lib/libgnutls.map,
10165 lib/openpgp/gnutls_openpgp.c, lib/x509/privkey.c: Introduced
10166 gnutls_*_privkey_sign_hash2() that is a high level function to
10167 produce signatures.
10169 2010-12-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10171 * lib/gnutls_privkey.c, lib/pkcs11_privkey.c, lib/x509/privkey.c,
10172 lib/x509/sign.c, lib/x509/sign.h: Separated the sign_data functions
10173 to a hashing phase, a preparing phase, and the actual signing.
10175 2010-12-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10177 * NEWS: documented deprecated functions.
10179 2010-12-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10181 * lib/includes/gnutls/compat.h, lib/includes/gnutls/openpgp.h,
10182 lib/includes/gnutls/pkcs11.h: All the sign hash functions were
10185 2010-12-09 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10187 * lib/includes/gnutls/compat.h, lib/includes/gnutls/x509.h:
10188 gnutls_x509_privkey_sign_hash() is dangerous and was deprecated.
10189 Added some text explaining why some functions were deprecated.
10191 2010-12-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10193 * NEWS: documented previous update.
10195 2010-12-08 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10197 * lib/x509/privkey.c, lib/x509/x509.c: export_raw() functions now
10198 add leading zero in mpis.
10200 2010-12-07 Simon Josefsson <simon@josefsson.org>
10204 2010-12-07 Simon Josefsson <simon@josefsson.org>
10206 * lib/includes/gnutls/crypto.h: C++ fixes, tiny patch from "Brendan
10207 Doherty" <brendand@gentrack.com>.
10209 2010-12-07 Simon Josefsson <simon@josefsson.org>
10211 * gl/m4/getdelim.m4, gl/m4/getline.m4, gl/m4/memchr.m4,
10212 gl/m4/printf.m4, gl/m4/stdint.m4, lib/gl/m4/fcntl-o.m4,
10213 lib/gl/m4/iconv.m4, lib/gl/m4/intdiv0.m4, lib/gl/m4/memchr.m4,
10214 lib/gl/m4/memmem.m4, lib/gl/m4/printf.m4, lib/gl/m4/stdint.m4:
10215 Update gnulib files.
10217 2010-12-07 Simon Josefsson <simon@josefsson.org>
10219 * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4,
10220 libextra/configure.ac: Bump versions.
10222 2010-12-07 Simon Josefsson <simon@josefsson.org>
10224 * ChangeLog: Generated.
10226 2010-12-07 Simon Josefsson <simon@josefsson.org>
10228 * configure.ac, lib/configure.ac, lib/m4/hooks.m4,
10229 libextra/configure.ac: Bump versions.
10231 2010-12-06 Simon Josefsson <simon@josefsson.org>
10233 * ChangeLog: Generated.
10235 2010-12-06 Simon Josefsson <simon@josefsson.org>
10237 * tests/Makefile.am: Don't fail on 'make distcheck'.
10239 2010-12-06 Simon Josefsson <simon@josefsson.org>
10241 * NEWS: Version 2.11.6.
10243 2010-12-06 Simon Josefsson <simon@josefsson.org>
10245 * lib/gnutls_str.c: Indent.
10247 2010-12-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10249 * NEWS: documented SSL 3.0 record version change.
10251 2010-12-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10253 * lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_priority.c:
10254 SSL3_RECORD_VERSION priority option is now the default. That is in
10255 order to not confuse non TLS 1.2 compliant implementations that
10256 don't like a TLS 1.2 record.
10258 2010-12-06 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10260 * lib/gnutls_str.c: simplified escape and unescape.
10262 2010-12-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10264 * THANKS: Added Michael.
10266 2010-12-06 Simon Josefsson <simon@josefsson.org>
10268 * cfg.mk, lib/gnutls_priority.c, lib/gnutls_state.c,
10269 lib/includes/gnutls/compat.h, lib/includes/gnutls/gnutls.h.in,
10270 lib/includes/gnutls/pkcs11.h, lib/nettle/rnd.c, lib/pkcs11.c,
10271 lib/pkcs11_int.h, lib/pkcs11_secret.c, lib/pkcs11_write.c,
10272 lib/x509/verify.c, src/certtool-common.c, src/certtool-common.h,
10273 src/certtool.c, src/cli.c, src/common.c, src/p11tool.c,
10274 src/p11tool.h, src/pkcs11.c, src/serv.c, tests/chainverify.c,
10275 tests/openpgp-auth.c: Indent code.
10277 2010-12-06 Simon Josefsson <simon@josefsson.org>
10279 * maint.mk: Update gnulib files.
10281 2010-12-06 Simon Josefsson <simon@josefsson.org>
10283 * gl/override/top/maint.mk.diff: Remove.
10285 2010-12-06 Simon Josefsson <simon@josefsson.org>
10287 * .gitignore: Update.
10289 2010-12-06 Simon Josefsson <simon@josefsson.org>
10291 * lib/gnutls_priority.c, lib/pkcs11_secret.c, src/p11tool.c,
10292 src/p11tool.gaa: Fix syntax-check nits.
10294 2010-12-06 Simon Josefsson <simon@josefsson.org>
10296 * .x-sc_bindtextdomain: Ignore more.
10298 2010-12-06 Simon Josefsson <simon@josefsson.org>
10300 * GNUmakefile, build-aux/gendocs.sh, build-aux/pmccabe.css,
10301 build-aux/pmccabe2html, gl/Makefile.am, gl/arpa_inet.in.h,
10302 gl/float+.h, gl/gettext.h, gl/inet_ntop.c, gl/intprops.h,
10303 gl/m4/alloca.m4, gl/m4/arpa_inet_h.m4, gl/m4/getdelim.m4,
10304 gl/m4/getline.m4, gl/m4/getpass.m4, gl/m4/gnulib-common.m4,
10305 gl/m4/gnulib-comp.m4, gl/m4/mmap-anon.m4, gl/m4/printf.m4,
10306 gl/m4/readline.m4, gl/m4/string_h.m4, gl/m4/sys_ioctl_h.m4,
10307 gl/m4/sys_select_h.m4, gl/m4/sys_socket_h.m4, gl/m4/unistd_h.m4,
10308 gl/m4/vasnprintf.m4, gl/m4/wchar_h.m4, gl/printf-parse.c,
10309 gl/printf-parse.h, gl/stdint.in.h, gl/stdio.in.h, gl/stdlib.in.h,
10310 gl/string.in.h, gl/sys_select.in.h, gl/sys_socket.in.h,
10311 gl/tests/Makefile.am, gl/tests/init.sh,
10312 gl/tests/test-select-stdin.c, gl/tests/test-select.c,
10313 gl/tests/test-update-copyright.sh, gl/tests/verify.h, gl/time.in.h,
10314 gl/unistd.in.h, gl/vasnprintf.c, gl/verify.h, gl/wchar.in.h,
10315 lib/gl/Makefile.am, lib/gl/float+.h, lib/gl/gettext.h,
10316 lib/gl/m4/alloca.m4, lib/gl/m4/glibc2.m4, lib/gl/m4/glibc21.m4,
10317 lib/gl/m4/gnulib-common.m4, lib/gl/m4/gnulib-comp.m4,
10318 lib/gl/m4/iconv.m4, lib/gl/m4/memmem.m4, lib/gl/m4/mmap-anon.m4,
10319 lib/gl/m4/printf.m4, lib/gl/m4/string_h.m4,
10320 lib/gl/m4/sys_socket_h.m4, lib/gl/m4/unistd_h.m4,
10321 lib/gl/m4/vasnprintf.m4, lib/gl/m4/wchar_h.m4,
10322 lib/gl/printf-parse.c, lib/gl/printf-parse.h, lib/gl/stdint.in.h,
10323 lib/gl/stdio.in.h, lib/gl/stdlib.in.h, lib/gl/string.in.h,
10324 lib/gl/sys_socket.in.h, lib/gl/tests/Makefile.am,
10325 lib/gl/tests/init.sh, lib/gl/tests/intprops.h,
10326 lib/gl/tests/verify.h, lib/gl/time.in.h, lib/gl/unistd.in.h,
10327 lib/gl/vasnprintf.c, lib/gl/verify.h, lib/gl/wchar.in.h,
10328 libextra/gl/m4/gnulib-common.m4, maint.mk: Update gnulib files.
10330 2010-12-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10332 * tests/Makefile.am: Temporarily remove gendh test. It takes
10333 extremely long time under valgrind.
10335 2010-12-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10337 * NEWS, lib/gnutls_sig.c, lib/x509/common.c, lib/x509/common.h,
10338 lib/x509/mpi.c, lib/x509/sign.c, lib/x509/verify.c: Use ASN1_NULL
10339 when writing parameters for RSA signatures. This makes us comply
10340 with RFC3279. Reported by Michael Rommel.
10342 2010-12-05 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10344 * NEWS, src/serv.c: Corrected buffer overflow in gnutls-serv by
10345 Tomas Mraz. The gnutls-serv uses fixed allocated buffer for the response which
10346 can be pretty long if a client certificate is presented to it and
10347 the http header is large. This causes buffer overflow and heap
10348 corruption which then leads to random segfaults or aborts. It was reported originally here:
10349 https://bugzilla.redhat.com/show_bug.cgi?id=659259 The attached patch changes sprintf calls in peer_print_info() to
10350 snprintf so the buffer is never overflowed.
10352 2010-12-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10354 * lib/m4/hooks.m4: increased revision
10356 2010-12-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10358 * src/Makefile.am: Added p11tool.h
10360 2010-12-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10362 * NEWS: released 2.11.5
10364 2010-12-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10366 * doc/cha-internals.texi: escaped chars.
10368 2010-12-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10370 * doc/cha-internals.texi: Updated extension writing code. Still not
10373 2010-12-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10375 * doc/cha-cert-auth.texi: PKCS #11 fixes
10377 2010-12-01 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10379 * doc/examples/ex-cert-select-pkcs11.c: Corrected pkcs11 example
10382 2010-11-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10384 * src/pkcs11.c: Prefix mechanism number with 0x.
10386 2010-11-30 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10388 * lib/pakchois/pakchois11.h, src/pkcs11.c: Added camellia and
10391 2010-11-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10393 * configure.ac, lib/configure.ac, lib/nettle/rnd.c: Use rusage if
10394 present. Moved check to correct config and included resource.h
10397 2010-11-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10399 * lib/nettle/rnd.c: More details on the text
10401 2010-11-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10403 * lib/pkcs11.c: Corrected copyright statement
10405 2010-11-27 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10407 * lib/nettle/rnd.c: Corrected copyright header. Added Niels.
10409 2010-11-26 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10411 * NEWS, lib/gnutls_cert.c, lib/includes/gnutls/x509.h,
10412 lib/x509/verify.c, src/certtool.c, src/cli.c, tests/chainverify.c:
10413 Reverted default behavior for verification and introduced
10414 GNUTLS_VERIFY_DO_NOT_ALLOW_X509_V1_CA_CRT. Thus by default V1
10415 trusted CAs are allowed, unless the new flag is specified.
10417 2010-11-25 Simon Josefsson <simon@josefsson.org>
10421 2010-11-25 Simon Josefsson <simon@josefsson.org>
10423 * tests/suite/Makefile.in: Remove, it is generated.
10425 2010-11-25 Simon Josefsson <simon@josefsson.org>
10427 * README: No space at eol.
10429 2010-11-25 Simon Josefsson <simon@josefsson.org>
10431 * tests/safe-renegotiation/Makefile.am: Fix syntax-check warning.
10433 2010-11-25 Simon Josefsson <simon@josefsson.org>
10435 * cfg.mk: Ignore tests/suite for syntax-checks, not our code.
10437 2010-11-25 Simon Josefsson <simon@josefsson.org>
10439 * README: Recommend git format-patch rather than git diff.
10441 2010-11-24 Jeffrey Walton <noloader@gmail.com>
10443 * README: Attached is a proposed modification to the README file,
10444 including recent comments by Simon.
10446 2010-11-23 Simon Josefsson <simon@josefsson.org>
10448 * guile/src/Makefile.am: Fix dependencies, fixes parallel builds. Tiny patch from Graham Gower <graham.gower@gmail.com>.
10450 2010-11-19 Simon Josefsson <simon@josefsson.org>
10452 * doc/Makefile.am: Remove file.
10454 2010-11-19 Simon Josefsson <simon@josefsson.org>
10456 * doc/manpages/Makefile.am: Generated.
10458 2010-11-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10460 * configure.ac, tests/suite/Makefile.in: Create Makefile in
10463 2010-11-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10465 * src/cli.c, src/psk-gaa.c, src/psk-gaa.h, src/psk.c, src/psk.gaa,
10466 tests/Makefile.am, tests/netconf-psk.c: Deprecate the netconf
10467 password and use a key only.
10469 2010-11-19 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10471 * doc/credentials/gnutls-http-serv: correctly set psk params.
10473 2010-11-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10477 2010-11-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10479 * lib/x509/privkey_pkcs8.c: Correctly write DSA public key in ASN.1
10480 (add leading zero). Reported by Jeffrey Walton.
10482 2010-11-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10484 * lib/x509/mpi.c: cleanups
10486 2010-11-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10488 * doc/cha-auth.texi, lib/includes/gnutls/compat.h,
10489 lib/includes/gnutls/gnutls.h.in: Deprecated the key derivation
10490 method from netconf. The published RFC does not include this method
10491 and it is not known whether it has been used at all in practice. No
10492 need to support it.
10494 2010-11-16 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10496 * NEWS, lib/gnutls_priority.c: Added SIGN-ALL, CTYPE-ALL, COMP-ALL,
10497 and VERS-TLS-ALL priority strings.
10499 2010-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10501 * lib/gnutls_x509.c: Removed redundant error check. Reported by
10504 2010-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10506 * lib/includes/gnutls/pkcs11.h, lib/libgnutls.map, lib/pkcs11.c,
10507 src/p11tool-gaa.c, src/p11tool-gaa.h, src/p11tool.c,
10508 src/p11tool.gaa, src/p11tool.h, src/pkcs11.c: Added
10509 --list-mechanisms option to p11tool. Lists all mechanisms supported
10512 2010-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10514 * doc/manpages/Makefile.am, doc/manpages/p11tool.1: Added manpage
10517 2010-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10519 * doc/manpages/certtool.1, doc/manpages/gnutls-cli.1,
10520 doc/manpages/gnutls-serv.1, doc/manpages/srptool.1: Corrected my
10523 2010-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10525 * src/p11tool-gaa.c, src/p11tool.gaa: In p11tool --url was renamed
10528 2010-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10530 * src/p11tool-gaa.c, src/p11tool-gaa.h, src/p11tool.gaa,
10531 src/pkcs11.c: Corrected bug in secret key copy. Rationalized the
10534 2010-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10536 * lib/pkcs11.c, lib/pkcs11_secret.c: * Corrected flag conversion to internal representation. * When generating secret keys include a generic key type and a
10539 2010-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org>
10541 * Added option --no-detailed-url to p11tool. More detailed url is the
10546 Copyright (C) 2005-2012 Free Software Foundation, Inc.
10548 Copying and distribution of this file, with or without
10549 modification, are permitted provided the copyright notice
10550 and this notice are preserved.