From 7d9c8ac8e7225d149d56756f9af5b0873eeab49a Mon Sep 17 00:00:00 2001 From: Nikos Mavrogiannopoulos Date: Fri, 22 Apr 2011 13:52:40 +0200 Subject: [PATCH] updated changelog. --- ChangeLog | 55451 ++++++++++++------------------------------------------------ cfg.mk | 2 +- 2 files changed, 11031 insertions(+), 44422 deletions(-) rewrite ChangeLog (76%) diff --git a/ChangeLog b/ChangeLog dissimilarity index 76% index f46075367..2c75b3570 100644 --- a/ChangeLog +++ b/ChangeLog @@ -1,44421 +1,11030 @@ -2010-12-07 Simon Josefsson - - * configure.ac, lib/configure.ac, lib/m4/hooks.m4, - libextra/configure.ac: Bump versions. - -2010-12-06 Simon Josefsson - - * ChangeLog: Generated. - -2010-12-06 Simon Josefsson - - * tests/Makefile.am: Don't fail on 'make distcheck'. - -2010-12-06 Simon Josefsson - - * NEWS: Version 2.11.6. - -2010-12-06 Simon Josefsson - - * lib/gnutls_str.c: Indent. - -2010-12-06 Nikos Mavrogiannopoulos - - * NEWS: documented SSL 3.0 record version change. - -2010-12-06 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_priority.c: - SSL3_RECORD_VERSION priority option is now the default. That is in - order to not confuse non TLS 1.2 compliant implementations that - don't like a TLS 1.2 record. - -2010-12-06 Nikos Mavrogiannopoulos - - * lib/gnutls_str.c: simplified escape and unescape. - -2010-12-05 Nikos Mavrogiannopoulos - - * THANKS: Added Michael. - -2010-12-06 Simon Josefsson - - * cfg.mk, lib/gnutls_priority.c, lib/gnutls_state.c, - lib/includes/gnutls/compat.h, lib/includes/gnutls/gnutls.h.in, - lib/includes/gnutls/pkcs11.h, lib/nettle/rnd.c, lib/pkcs11.c, - lib/pkcs11_int.h, lib/pkcs11_secret.c, lib/pkcs11_write.c, - lib/x509/verify.c, src/certtool-common.c, src/certtool-common.h, - src/certtool.c, src/cli.c, src/common.c, src/p11tool.c, - src/p11tool.h, src/pkcs11.c, src/serv.c, tests/chainverify.c, - tests/openpgp-auth.c: Indent code. - -2010-12-06 Simon Josefsson - - * maint.mk: Update gnulib files. - -2010-12-06 Simon Josefsson - - * gl/override/top/maint.mk.diff: Remove. - -2010-12-06 Simon Josefsson - - * .gitignore: Update. - -2010-12-06 Simon Josefsson - - * lib/gnutls_priority.c, lib/pkcs11_secret.c, src/p11tool.c, - src/p11tool.gaa: Fix syntax-check nits. - -2010-12-06 Simon Josefsson - - * .x-sc_bindtextdomain: Ignore more. - -2010-12-06 Simon Josefsson - - * GNUmakefile, build-aux/gendocs.sh, build-aux/pmccabe.css, - build-aux/pmccabe2html, gl/Makefile.am, gl/arpa_inet.in.h, - gl/float+.h, gl/gettext.h, gl/inet_ntop.c, gl/intprops.h, - gl/m4/alloca.m4, gl/m4/arpa_inet_h.m4, gl/m4/getdelim.m4, - gl/m4/getline.m4, gl/m4/getpass.m4, gl/m4/gnulib-common.m4, - gl/m4/gnulib-comp.m4, gl/m4/mmap-anon.m4, gl/m4/printf.m4, - gl/m4/readline.m4, gl/m4/string_h.m4, gl/m4/sys_ioctl_h.m4, - gl/m4/sys_select_h.m4, gl/m4/sys_socket_h.m4, gl/m4/unistd_h.m4, - gl/m4/vasnprintf.m4, gl/m4/wchar_h.m4, gl/printf-parse.c, - gl/printf-parse.h, gl/stdint.in.h, gl/stdio.in.h, gl/stdlib.in.h, - gl/string.in.h, gl/sys_select.in.h, gl/sys_socket.in.h, - gl/tests/Makefile.am, gl/tests/init.sh, - gl/tests/test-select-stdin.c, gl/tests/test-select.c, - gl/tests/test-update-copyright.sh, gl/tests/verify.h, gl/time.in.h, - gl/unistd.in.h, gl/vasnprintf.c, gl/verify.h, gl/wchar.in.h, - lib/gl/Makefile.am, lib/gl/float+.h, lib/gl/gettext.h, - lib/gl/m4/alloca.m4, lib/gl/m4/glibc2.m4, lib/gl/m4/glibc21.m4, - lib/gl/m4/gnulib-common.m4, lib/gl/m4/gnulib-comp.m4, - lib/gl/m4/iconv.m4, lib/gl/m4/memmem.m4, lib/gl/m4/mmap-anon.m4, - lib/gl/m4/printf.m4, lib/gl/m4/string_h.m4, - lib/gl/m4/sys_socket_h.m4, lib/gl/m4/unistd_h.m4, - lib/gl/m4/vasnprintf.m4, lib/gl/m4/wchar_h.m4, - lib/gl/printf-parse.c, lib/gl/printf-parse.h, lib/gl/stdint.in.h, - lib/gl/stdio.in.h, lib/gl/stdlib.in.h, lib/gl/string.in.h, - lib/gl/sys_socket.in.h, lib/gl/tests/Makefile.am, - lib/gl/tests/init.sh, lib/gl/tests/intprops.h, - lib/gl/tests/verify.h, lib/gl/time.in.h, lib/gl/unistd.in.h, - lib/gl/vasnprintf.c, lib/gl/verify.h, lib/gl/wchar.in.h, - libextra/gl/m4/gnulib-common.m4, maint.mk: Update gnulib files. - -2010-12-05 Nikos Mavrogiannopoulos - - * tests/Makefile.am: Temporarily remove gendh test. It takes - extremely long time under valgrind. - -2010-12-05 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_sig.c, lib/x509/common.c, lib/x509/common.h, - lib/x509/mpi.c, lib/x509/sign.c, lib/x509/verify.c: Use ASN1_NULL - when writing parameters for RSA signatures. This makes us comply - with RFC3279. Reported by Michael Rommel. - -2010-12-05 Nikos Mavrogiannopoulos - - * NEWS, src/serv.c: Corrected buffer overflow in gnutls-serv by - Tomas Mraz. The gnutls-serv uses fixed allocated buffer for the response which - can be pretty long if a client certificate is presented to it and - the http header is large. This causes buffer overflow and heap - corruption which then leads to random segfaults or aborts. It was reported originally here: - https://bugzilla.redhat.com/show_bug.cgi?id=659259 The attached patch changes sprintf calls in peer_print_info() to - snprintf so the buffer is never overflowed. - -2010-12-01 Nikos Mavrogiannopoulos - - * lib/m4/hooks.m4: increased revision - -2010-12-01 Nikos Mavrogiannopoulos - - * src/Makefile.am: Added p11tool.h - -2010-12-01 Nikos Mavrogiannopoulos - - * NEWS: released 2.11.5 - -2010-12-01 Nikos Mavrogiannopoulos - - * doc/cha-internals.texi: escaped chars. - -2010-12-01 Nikos Mavrogiannopoulos - - * doc/cha-internals.texi: Updated extension writing code. Still not - clear enough. - -2010-12-01 Nikos Mavrogiannopoulos - - * doc/cha-cert-auth.texi: PKCS #11 fixes - -2010-12-01 Nikos Mavrogiannopoulos - - * doc/examples/ex-cert-select-pkcs11.c: Corrected pkcs11 example - URLs - -2010-11-30 Nikos Mavrogiannopoulos - - * src/pkcs11.c: Prefix mechanism number with 0x. - -2010-11-30 Nikos Mavrogiannopoulos - - * lib/pakchois/pakchois11.h, src/pkcs11.c: Added camellia and - SHA224. - -2010-11-27 Nikos Mavrogiannopoulos - - * configure.ac, lib/configure.ac, lib/nettle/rnd.c: Use rusage if - present. Moved check to correct config and included resource.h - header. - -2010-11-27 Nikos Mavrogiannopoulos - - * lib/nettle/rnd.c: More details on the text - -2010-11-27 Nikos Mavrogiannopoulos - - * lib/pkcs11.c: Corrected copyright statement - -2010-11-27 Nikos Mavrogiannopoulos - - * lib/nettle/rnd.c: Corrected copyright header. Added Niels. - -2010-11-26 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_cert.c, lib/includes/gnutls/x509.h, - lib/x509/verify.c, src/certtool.c, src/cli.c, tests/chainverify.c: - Reverted default behavior for verification and introduced - GNUTLS_VERIFY_DO_NOT_ALLOW_X509_V1_CA_CRT. Thus by default V1 - trusted CAs are allowed, unless the new flag is specified. - -2010-11-25 Simon Josefsson - - * NEWS: Typo. - -2010-11-25 Simon Josefsson - - * tests/suite/Makefile.in: Remove, it is generated. - -2010-11-25 Simon Josefsson - - * README: No space at eol. - -2010-11-25 Simon Josefsson - - * tests/safe-renegotiation/Makefile.am: Fix syntax-check warning. - -2010-11-25 Simon Josefsson - - * cfg.mk: Ignore tests/suite for syntax-checks, not our code. - -2010-11-25 Simon Josefsson - - * README: Recommend git format-patch rather than git diff. - -2010-11-24 Jeffrey Walton - - * README: Attached is a proposed modification to the README file, - including recent comments by Simon. - -2010-11-23 Simon Josefsson - - * guile/src/Makefile.am: Fix dependencies, fixes parallel builds. Tiny patch from Graham Gower . - -2010-11-19 Simon Josefsson - - * doc/Makefile.am: Remove file. - -2010-11-19 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2010-11-19 Nikos Mavrogiannopoulos - - * configure.ac, tests/suite/Makefile.in: Create Makefile in - tests/suite/ - -2010-11-19 Nikos Mavrogiannopoulos - - * src/cli.c, src/psk-gaa.c, src/psk-gaa.h, src/psk.c, src/psk.gaa, - tests/Makefile.am, tests/netconf-psk.c: Deprecate the netconf - password and use a key only. - -2010-11-19 Nikos Mavrogiannopoulos - - * doc/credentials/gnutls-http-serv: correctly set psk params. - -2010-11-16 Nikos Mavrogiannopoulos - - * NEWS: added info - -2010-11-16 Nikos Mavrogiannopoulos - - * lib/x509/privkey_pkcs8.c: Correctly write DSA public key in ASN.1 - (add leading zero). Reported by Jeffrey Walton. - -2010-11-16 Nikos Mavrogiannopoulos - - * lib/x509/mpi.c: cleanups - -2010-11-16 Nikos Mavrogiannopoulos - - * doc/cha-auth.texi, lib/includes/gnutls/compat.h, - lib/includes/gnutls/gnutls.h.in: Deprecated the key derivation - method from netconf. The published RFC does not include this method - and it is not known whether it has been used at all in practice. No - need to support it. - -2010-11-16 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_priority.c: Added SIGN-ALL, CTYPE-ALL, COMP-ALL, - and VERS-TLS-ALL priority strings. - -2010-11-11 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c: Removed redundant error check. Reported by - Nicolas Kaiser. - -2010-11-11 Nikos Mavrogiannopoulos - - * lib/includes/gnutls/pkcs11.h, lib/libgnutls.map, lib/pkcs11.c, - src/p11tool-gaa.c, src/p11tool-gaa.h, src/p11tool.c, - src/p11tool.gaa, src/p11tool.h, src/pkcs11.c: Added - --list-mechanisms option to p11tool. Lists all mechanisms supported - by a token. - -2010-11-11 Nikos Mavrogiannopoulos - - * doc/manpages/Makefile.am, doc/manpages/p11tool.1: Added manpage - for p11tool. - -2010-11-11 Nikos Mavrogiannopoulos - - * doc/manpages/certtool.1, doc/manpages/gnutls-cli.1, - doc/manpages/gnutls-serv.1, doc/manpages/srptool.1: Corrected my - name. - -2010-11-11 Nikos Mavrogiannopoulos - - * src/p11tool-gaa.c, src/p11tool.gaa: In p11tool --url was renamed - to --export. - -2010-11-11 Nikos Mavrogiannopoulos - - * src/p11tool-gaa.c, src/p11tool-gaa.h, src/p11tool.gaa, - src/pkcs11.c: Corrected bug in secret key copy. Rationalized the - --help of p11tool. - -2010-11-11 Nikos Mavrogiannopoulos - - * lib/pkcs11.c, lib/pkcs11_secret.c: * Corrected flag conversion to internal representation. * When generating secret keys include a generic key type and a - random ID. - -2010-11-11 Nikos Mavrogiannopoulos - - * src/p11tool-gaa.c, src/p11tool-gaa.h, src/p11tool.gaa: Added - option --no-detailed-url to p11tool. More detailed url is the - default now. - -2010-11-07 Nikos Mavrogiannopoulos - - * NEWS, lib/Makefile.am, lib/includes/gnutls/pkcs11.h, - lib/libgnutls.map, lib/pkcs11.c, lib/pkcs11_int.h, - lib/pkcs11_secret.c, lib/pkcs11_write.c, src/pkcs11.c: Added - gnutls_pkcs11_token_set_pin() and gnutls_pkcs11_token_init() to - enable manipulating tokens purely from PKCS #11. - -2010-11-07 Nikos Mavrogiannopoulos - - * doc/README.gaa: Removed README.gaa. - -2010-11-07 Nikos Mavrogiannopoulos - - * .gitignore, src/Makefile.am, src/certtool-common.c, - src/certtool-common.h, src/certtool-gaa.c, src/certtool-gaa.h, - src/certtool.c, src/certtool.gaa, src/p11tool-gaa.c, - src/p11tool-gaa.h, src/p11tool.c, src/p11tool.gaa, src/p11tool.h, - src/pkcs11.c: Introduced p11tool to separate PKCS #11 functionality - from certtool. - -2010-11-07 Nikos Mavrogiannopoulos - - * tests/Makefile.am, tests/finished.c: Removed check on deprecated - feature (finished). - -2010-11-04 Nikos Mavrogiannopoulos - - * lib/includes/gnutls/compat.h, lib/includes/gnutls/gnutls.h.in: - Deprecated old functions. - -2010-11-01 Nikos Mavrogiannopoulos - - * doc/cha-intro-tls.texi: use @code for SAFE_RENEGOTIATION string. - -2010-06-07 Simon Josefsson - - * lib/gnutls_priority.c: Doc fix. - -2010-10-16 Simon Josefsson - - * .gitignore: Add. - -2010-10-16 Nikos Mavrogiannopoulos - - * tests/Makefile.am, tests/safe-renegotiation/Makefile.am, - tests/safe-renegotiation/params.dh, - tests/safe-renegotiation/testsrn, tests/suite/Makefile.am, - tests/suite/README, tests/suite/eagain, - tests/suite/ecore/eina_config.h, - tests/suite/ecore/src/include/Eina.h, - tests/suite/ecore/src/include/eina_accessor.h, - tests/suite/ecore/src/include/eina_array.h, - tests/suite/ecore/src/include/eina_benchmark.h, - tests/suite/ecore/src/include/eina_binshare.h, - tests/suite/ecore/src/include/eina_config.h, - tests/suite/ecore/src/include/eina_convert.h, - tests/suite/ecore/src/include/eina_counter.h, - tests/suite/ecore/src/include/eina_cpu.h, - tests/suite/ecore/src/include/eina_error.h, - tests/suite/ecore/src/include/eina_file.h, - tests/suite/ecore/src/include/eina_fp.h, - tests/suite/ecore/src/include/eina_hamster.h, - tests/suite/ecore/src/include/eina_hash.h, - tests/suite/ecore/src/include/eina_inline_array.x, - tests/suite/ecore/src/include/eina_inline_f16p16.x, - tests/suite/ecore/src/include/eina_inline_f32p32.x, - tests/suite/ecore/src/include/eina_inline_f8p24.x, - tests/suite/ecore/src/include/eina_inline_fp.x, - tests/suite/ecore/src/include/eina_inline_hash.x, - tests/suite/ecore/src/include/eina_inline_list.x, - tests/suite/ecore/src/include/eina_inline_log.x, - tests/suite/ecore/src/include/eina_inline_mempool.x, - tests/suite/ecore/src/include/eina_inline_rbtree.x, - tests/suite/ecore/src/include/eina_inline_rectangle.x, - tests/suite/ecore/src/include/eina_inline_str.x, - tests/suite/ecore/src/include/eina_inline_stringshare.x, - tests/suite/ecore/src/include/eina_inline_tiler.x, - tests/suite/ecore/src/include/eina_inline_trash.x, - tests/suite/ecore/src/include/eina_inline_ustringshare.x, - tests/suite/ecore/src/include/eina_inlist.h, - tests/suite/ecore/src/include/eina_iterator.h, - tests/suite/ecore/src/include/eina_lalloc.h, - tests/suite/ecore/src/include/eina_list.h, - tests/suite/ecore/src/include/eina_log.h, - tests/suite/ecore/src/include/eina_magic.h, - tests/suite/ecore/src/include/eina_main.h, - tests/suite/ecore/src/include/eina_matrixsparse.h, - tests/suite/ecore/src/include/eina_mempool.h, - tests/suite/ecore/src/include/eina_module.h, - tests/suite/ecore/src/include/eina_quadtree.h, - tests/suite/ecore/src/include/eina_rbtree.h, - tests/suite/ecore/src/include/eina_rectangle.h, - tests/suite/ecore/src/include/eina_safety_checks.h, - tests/suite/ecore/src/include/eina_sched.h, - tests/suite/ecore/src/include/eina_str.h, - tests/suite/ecore/src/include/eina_strbuf.h, - tests/suite/ecore/src/include/eina_stringshare.h, - tests/suite/ecore/src/include/eina_tiler.h, - tests/suite/ecore/src/include/eina_trash.h, - tests/suite/ecore/src/include/eina_types.h, - tests/suite/ecore/src/include/eina_unicode.h, - tests/suite/ecore/src/include/eina_ustrbuf.h, - tests/suite/ecore/src/include/eina_ustringshare.h, - tests/suite/ecore/src/lib/Ecore.h, - tests/suite/ecore/src/lib/Ecore_Getopt.h, - tests/suite/ecore/src/lib/ecore.c, - tests/suite/ecore/src/lib/ecore_anim.c, - tests/suite/ecore/src/lib/ecore_app.c, - tests/suite/ecore/src/lib/ecore_events.c, - tests/suite/ecore/src/lib/ecore_exe.c, - tests/suite/ecore/src/lib/ecore_getopt.c, - tests/suite/ecore/src/lib/ecore_glib.c, - tests/suite/ecore/src/lib/ecore_idle_enterer.c, - tests/suite/ecore/src/lib/ecore_idle_exiter.c, - tests/suite/ecore/src/lib/ecore_idler.c, - tests/suite/ecore/src/lib/ecore_job.c, - tests/suite/ecore/src/lib/ecore_main.c, - tests/suite/ecore/src/lib/ecore_pipe.c, - tests/suite/ecore/src/lib/ecore_poll.c, - tests/suite/ecore/src/lib/ecore_private.h, - tests/suite/ecore/src/lib/ecore_signal.c, - tests/suite/ecore/src/lib/ecore_thread.c, - tests/suite/ecore/src/lib/ecore_time.c, - tests/suite/ecore/src/lib/ecore_timer.c, - tests/suite/ecore/src/lib/eina_accessor.c, - tests/suite/ecore/src/lib/eina_array.c, - tests/suite/ecore/src/lib/eina_benchmark.c, - tests/suite/ecore/src/lib/eina_binshare.c, - tests/suite/ecore/src/lib/eina_chained_mempool.c, - tests/suite/ecore/src/lib/eina_convert.c, - tests/suite/ecore/src/lib/eina_counter.c, - tests/suite/ecore/src/lib/eina_cpu.c, - tests/suite/ecore/src/lib/eina_error.c, - tests/suite/ecore/src/lib/eina_file.c, - tests/suite/ecore/src/lib/eina_fp.c, - tests/suite/ecore/src/lib/eina_hamster.c, - tests/suite/ecore/src/lib/eina_hash.c, - tests/suite/ecore/src/lib/eina_inlist.c, - tests/suite/ecore/src/lib/eina_iterator.c, - tests/suite/ecore/src/lib/eina_lalloc.c, - tests/suite/ecore/src/lib/eina_list.c, - tests/suite/ecore/src/lib/eina_log.c, - tests/suite/ecore/src/lib/eina_magic.c, - tests/suite/ecore/src/lib/eina_main.c, - tests/suite/ecore/src/lib/eina_matrixsparse.c, - tests/suite/ecore/src/lib/eina_mempool.c, - tests/suite/ecore/src/lib/eina_module.c, - tests/suite/ecore/src/lib/eina_private.h, - tests/suite/ecore/src/lib/eina_quadtree.c, - tests/suite/ecore/src/lib/eina_rbtree.c, - tests/suite/ecore/src/lib/eina_rectangle.c, - tests/suite/ecore/src/lib/eina_safety_checks.c, - tests/suite/ecore/src/lib/eina_sched.c, - tests/suite/ecore/src/lib/eina_share_common.c, - tests/suite/ecore/src/lib/eina_share_common.h, - tests/suite/ecore/src/lib/eina_str.c, - tests/suite/ecore/src/lib/eina_strbuf.c, - tests/suite/ecore/src/lib/eina_strbuf_common.c, - tests/suite/ecore/src/lib/eina_strbuf_common.h, - tests/suite/ecore/src/lib/eina_strbuf_template_c.x, - tests/suite/ecore/src/lib/eina_stringshare.c, - tests/suite/ecore/src/lib/eina_tiler.c, - tests/suite/ecore/src/lib/eina_unicode.c, - tests/suite/ecore/src/lib/eina_ustrbuf.c, - tests/suite/ecore/src/lib/eina_ustringshare.c, - tests/suite/ecore/src/lib/eina_value.c, tests/suite/mini-eagain2.c, - tests/suite/params.dh, tests/suite/testsrn: Added tests/suite which - contains tests to be executed during development time and will not - be distributed (not included in make dist). Added "ecore" and a new - mini-eagain to test EAGAIN behavior. - -2010-10-16 Nikos Mavrogiannopoulos - - * .gitignore: updated .gitignore. - -2010-10-16 Simon Josefsson - - * NEWS, src/common.c: gnutls-cli: Print channel binding only in - verbose mode. Before it printed it after the 'Compression:' output, thus breaking - Emacs starttls.el string searches. - -2010-10-15 Simon Josefsson - - * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, - libextra/configure.ac: Bump versions. - -2010-10-15 Simon Josefsson - - * ChangeLog: Generated. - -2010-10-15 Simon Josefsson - - * NEWS: Version 2.11.4. - -2010-10-15 Simon Josefsson - - * lib/libgnutls.map: Rename new symbol prefix after next stable - branch instead of development branch. - -2010-10-15 Simon Josefsson - - * NEWS: Add. - -2010-10-15 Simon Josefsson - - * NEWS, doc/cha-bib.texi, doc/cha-gtls-app.texi: Document channel - binding API. - -2010-10-15 Simon Josefsson - - * lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_state.c, - src/common.c: Implement RFC 5929 tls-unique channel binding. - -2010-10-14 Simon Josefsson - - * NEWS, doc/manpages/Makefile.am, lib/gnutls_errors.c, - lib/gnutls_state.c, lib/includes/gnutls/gnutls.h.in, - lib/libgnutls.map: Add gnutls_session_channel_binding API. - -2010-10-14 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2010-10-14 Simon Josefsson - - * NEWS: Add. - -2010-10-14 Simon Josefsson - - * tests/Makefile.am, tests/gendh.c: Add self test gendh to check DH - generation. - -2010-10-14 Simon Josefsson - - * tests/openpgp-auth.c: Fix compiler warnings. - -2010-10-14 Simon Josefsson - - * guile/tests/Makefile.am, guile/tests/anonymous-auth.scm, - guile/tests/dh-parameters.pem, guile/tests/openpgp-auth.scm, - guile/tests/pkcs-import-export.scm, - guile/tests/session-record-port.scm, guile/tests/x509-auth.scm: - Don't generate DH primes in Guile self checks (for speed). - -2010-10-14 Simon Josefsson - - * tests/userid/userid: Cleanup, fixing distcheck. - -2010-10-14 Simon Josefsson - - * tests/openpgp-auth.c: Make it work with srcdir != objdir. - -2010-10-14 Simon Josefsson - - * doc/reference/gnutls-docs.sgml: Improve GTK-DOC manual. - -2010-10-14 Simon Josefsson - - * NEWS: Add. - -2010-10-14 Simon Josefsson - - * .x-sc_two_space_separator_in_usage, lib/cryptodev.c, - lib/m4/hooks.m4, lib/pakchois/pakchois11.h: Fix syntax-check - warning. - -2010-10-14 Simon Josefsson - - * build-aux/gendocs.sh, build-aux/pmccabe2html, doc/fdl-1.3.texi, - gl/Makefile.am, gl/arpa_inet.in.h, gl/errno.in.h, gl/float.in.h, - gl/ftello.c, gl/getaddrinfo.c, gl/m4/errno_h.m4, gl/m4/error.m4, - gl/m4/float_h.m4, gl/m4/ftello.m4, gl/m4/getpagesize.m4, - gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/hostent.m4, - gl/m4/include_next.m4, gl/m4/intmax_t.m4, gl/m4/inttypes_h.m4, - gl/m4/lib-ld.m4, gl/m4/lib-link.m4, gl/m4/lseek.m4, - gl/m4/malloc.m4, gl/m4/memchr.m4, gl/m4/minmax.m4, gl/m4/printf.m4, - gl/m4/realloc.m4, gl/m4/servent.m4, gl/m4/size_max.m4, - gl/m4/socketlib.m4, gl/m4/sockets.m4, gl/m4/socklen.m4, - gl/m4/sockpfaf.m4, gl/m4/stdarg.m4, gl/m4/stdbool.m4, - gl/m4/stdint.m4, gl/m4/stdint_h.m4, gl/m4/stdlib_h.m4, - gl/m4/time_h.m4, gl/m4/wchar_t.m4, gl/m4/wint_t.m4, gl/malloc.c, - gl/netdb.in.h, gl/netinet_in.in.h, gl/read-file.c, gl/realloc.c, - gl/select.c, gl/stdarg.in.h, gl/stddef.in.h, gl/stdint.in.h, - gl/stdio.in.h, gl/stdlib.in.h, gl/strerror.c, gl/string.in.h, - gl/sys_select.in.h, gl/sys_socket.in.h, gl/sys_stat.in.h, - gl/sys_time.in.h, gl/tests/Makefile.am, gl/tests/binary-io.h, - gl/tests/getpagesize.c, gl/tests/init.sh, gl/tests/sys_ioctl.in.h, - gl/tests/test-binary-io.c, gl/tests/test-binary-io.sh, - gl/tests/test-ftello.c, gl/tests/test-ftello.sh, - gl/tests/test-ftello2.sh, gl/tests/test-ftello3.c, - gl/tests/test-getaddrinfo.c, gl/tests/test-memchr.c, - gl/tests/test-netdb.c, gl/tests/test-read-file.c, - gl/tests/test-stdbool.c, gl/tests/test-stddef.c, - gl/tests/test-stdlib.c, gl/tests/test-sys_socket.c, - gl/tests/test-sys_wait.h, gl/tests/test-update-copyright.sh, - gl/tests/test-vc-list-files-cvs.sh, - gl/tests/test-vc-list-files-git.sh, gl/tests/test-verify.c, - gl/time.in.h, gl/timespec.h, gl/unistd.in.h, gl/wchar.in.h, - lib/build-aux/config.rpath, lib/gl/Makefile.am, lib/gl/errno.in.h, - lib/gl/float.in.h, lib/gl/ftello.c, lib/gl/m4/codeset.m4, - lib/gl/m4/errno_h.m4, lib/gl/m4/fcntl-o.m4, lib/gl/m4/float_h.m4, - lib/gl/m4/ftello.m4, lib/gl/m4/getpagesize.m4, - lib/gl/m4/gettext.m4, lib/gl/m4/gnulib-cache.m4, - lib/gl/m4/gnulib-comp.m4, lib/gl/m4/iconv.m4, - lib/gl/m4/include_next.m4, lib/gl/m4/intdiv0.m4, lib/gl/m4/intl.m4, - lib/gl/m4/intlmacosx.m4, lib/gl/m4/intmax.m4, - lib/gl/m4/intmax_t.m4, lib/gl/m4/inttypes-pri.m4, - lib/gl/m4/inttypes_h.m4, lib/gl/m4/lcmessage.m4, - lib/gl/m4/ld-version-script.m4, lib/gl/m4/lib-ld.m4, - lib/gl/m4/lib-link.m4, lib/gl/m4/lock.m4, lib/gl/m4/lseek.m4, - lib/gl/m4/malloc.m4, lib/gl/m4/memchr.m4, lib/gl/m4/memmem.m4, - lib/gl/m4/minmax.m4, lib/gl/m4/printf-posix.m4, - lib/gl/m4/printf.m4, lib/gl/m4/progtest.m4, lib/gl/m4/realloc.m4, - lib/gl/m4/size_max.m4, lib/gl/m4/socketlib.m4, - lib/gl/m4/sockets.m4, lib/gl/m4/socklen.m4, lib/gl/m4/sockpfaf.m4, - lib/gl/m4/stdbool.m4, lib/gl/m4/stdint.m4, lib/gl/m4/stdint_h.m4, - lib/gl/m4/stdlib_h.m4, lib/gl/m4/threadlib.m4, lib/gl/m4/time_h.m4, - lib/gl/m4/visibility.m4, lib/gl/m4/wchar_t.m4, lib/gl/m4/wint_t.m4, - lib/gl/malloc.c, lib/gl/netdb.in.h, lib/gl/read-file.c, - lib/gl/realloc.c, lib/gl/stddef.in.h, lib/gl/stdint.in.h, - lib/gl/stdio.in.h, lib/gl/stdlib.in.h, lib/gl/str-two-way.h, - lib/gl/string.in.h, lib/gl/strings.in.h, lib/gl/sys_socket.in.h, - lib/gl/sys_stat.in.h, lib/gl/tests/Makefile.am, - lib/gl/tests/binary-io.h, lib/gl/tests/getpagesize.c, - lib/gl/tests/init.sh, lib/gl/tests/test-binary-io.c, - lib/gl/tests/test-binary-io.sh, lib/gl/tests/test-ftello.c, - lib/gl/tests/test-ftello.sh, lib/gl/tests/test-ftello2.sh, - lib/gl/tests/test-ftello3.c, lib/gl/tests/test-memchr.c, - lib/gl/tests/test-netdb.c, lib/gl/tests/test-read-file.c, - lib/gl/tests/test-stdbool.c, lib/gl/tests/test-stddef.c, - lib/gl/tests/test-stdlib.c, lib/gl/tests/test-sys_socket.c, - lib/gl/tests/test-sys_wait.h, lib/gl/tests/test-verify.c, - lib/gl/time.in.h, lib/gl/unistd.in.h, lib/gl/wchar.in.h, - libextra/gl/gnulib.mk, libextra/gl/m4/gnulib-cache.m4, - libextra/gl/m4/gnulib-comp.m4, libextra/gl/m4/ld-version-script.m4, - libextra/gl/m4/lib-ld.m4, libextra/gl/m4/lib-link.m4, maint.mk: - Update gnulib files. - -2010-10-14 Simon Josefsson - - * cfg.mk: Don't assume chmod +x on gendocs.sh. - -2010-10-14 Simon Josefsson - - * cfg.mk: Use gnulib --add-import. - -2010-10-14 Simon Josefsson - - * .gitignore: Sort and update. - -2010-10-14 Simon Josefsson - - * lib/po/nl.po.in: Sync with TP. - -2010-10-14 Simon Josefsson - - * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, - libextra/configure.ac: Bump versions. - -2010-10-14 Simon Josefsson - - * ChangeLog: Generated. - -2010-10-14 Simon Josefsson - - * NEWS: Version 2.11.3. - -2010-10-14 Simon Josefsson - - * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, - libextra/configure.ac: Bump versions. - -2010-10-14 Simon Josefsson - - * doc/errcodes.c, doc/examples/ex-alert.c, - doc/examples/ex-cert-select-pkcs11.c, - doc/examples/ex-cert-select.c, doc/examples/ex-client-psk.c, - doc/examples/ex-client-resume.c, doc/examples/ex-client-srp.c, - doc/examples/ex-client-tlsia.c, doc/examples/ex-client1.c, - doc/examples/ex-client2.c, doc/examples/ex-crq.c, - doc/examples/ex-pkcs12.c, doc/examples/ex-rfc2818.c, - doc/examples/ex-serv-anon.c, doc/examples/ex-serv-pgp.c, - doc/examples/ex-serv-psk.c, doc/examples/ex-serv-srp.c, - doc/examples/ex-serv1.c, doc/examples/ex-session-info.c, - doc/examples/ex-verify.c, doc/examples/ex-x509-info.c, - doc/examples/examples.h, doc/examples/tcp.c, guile/src/core.c, - guile/src/errors.c, guile/src/extra.c, guile/src/utils.c, - guile/src/utils.h, lib/auth_cert.c, lib/auth_cert.h, - lib/auth_dh_common.c, lib/auth_dh_common.h, lib/auth_psk.h, - lib/auth_rsa.c, lib/auth_rsa_export.c, lib/auth_srp.c, - lib/auth_srp.h, lib/crypto-api.c, lib/crypto.h, lib/cryptodev.c, - lib/debug.c, lib/debug.h, lib/ext_cert_type.c, - lib/ext_max_record.c, lib/ext_safe_renegotiation.c, - lib/ext_safe_renegotiation.h, lib/ext_server_name.c, - lib/ext_server_name.h, lib/ext_session_ticket.c, - lib/ext_session_ticket.h, lib/ext_signature.c, lib/ext_signature.h, - lib/ext_srp.c, lib/ext_srp.h, lib/gcrypt/init.c, lib/gcrypt/mpi.c, - lib/gcrypt/pk.c, lib/gnutls_alert.c, lib/gnutls_algorithms.c, - lib/gnutls_algorithms.h, lib/gnutls_auth.h, lib/gnutls_buffers.c, - lib/gnutls_buffers.h, lib/gnutls_cert.c, lib/gnutls_cert.h, - lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_cipher_int.c, - lib/gnutls_cipher_int.h, lib/gnutls_compress.c, - lib/gnutls_compress.h, lib/gnutls_constate.c, - lib/gnutls_constate.h, lib/gnutls_datum.h, lib/gnutls_dh.h, - lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_extensions.c, - lib/gnutls_extensions.h, lib/gnutls_global.c, lib/gnutls_global.h, - lib/gnutls_handshake.c, lib/gnutls_handshake.h, - lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, - lib/gnutls_kx.c, lib/gnutls_mbuffers.c, lib/gnutls_mbuffers.h, - lib/gnutls_mem.h, lib/gnutls_mpi.h, lib/gnutls_num.h, - lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_priority.c, - lib/gnutls_privkey.c, lib/gnutls_pubkey.c, lib/gnutls_record.c, - lib/gnutls_record.h, lib/gnutls_session_pack.c, lib/gnutls_sig.c, - lib/gnutls_sig.h, lib/gnutls_srp.c, lib/gnutls_state.c, - lib/gnutls_state.h, lib/gnutls_str.c, lib/gnutls_str.h, - lib/gnutls_supplemental.c, lib/gnutls_supplemental.h, - lib/gnutls_x509.c, lib/includes/gnutls/abstract.h, - lib/includes/gnutls/compat.h, lib/includes/gnutls/crypto.h, - lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/gnutlsxx.h, - lib/includes/gnutls/openpgp.h, lib/includes/gnutls/pkcs11.h, - lib/includes/gnutls/pkcs12.h, lib/includes/gnutls/x509.h, - lib/locks.c, lib/locks.h, lib/nettle/cipher.c, lib/nettle/egd.c, - lib/nettle/egd.h, lib/nettle/init.c, lib/nettle/mac.c, - lib/nettle/mpi.c, lib/nettle/pk.c, lib/nettle/rnd.c, - lib/opencdk/armor.c, lib/opencdk/hash.c, lib/opencdk/kbnode.c, - lib/opencdk/keydb.c, lib/opencdk/literal.c, lib/opencdk/main.c, - lib/opencdk/misc.c, lib/opencdk/new-packet.c, lib/opencdk/pubkey.c, - lib/opencdk/read-packet.c, lib/opencdk/seskey.c, - lib/opencdk/sig-check.c, lib/opencdk/stream.c, lib/opencdk/types.h, - lib/opencdk/verify.c, lib/openpgp/gnutls_openpgp.c, - lib/openpgp/openpgp_int.h, lib/openpgp/output.c, lib/openpgp/pgp.c, - lib/openpgp/privkey.c, lib/pakchois/dlopen.c, - lib/pakchois/dlopen.h, lib/pakchois/errors.c, - lib/pakchois/pakchois.c, lib/pakchois/pakchois.h, - lib/pakchois/pakchois11.h, lib/pkcs11.c, lib/pkcs11_int.h, - lib/pkcs11_privkey.c, lib/pkcs11_write.c, lib/random.c, - lib/random.h, lib/system.c, lib/system.h, lib/x509/common.c, - lib/x509/common.h, lib/x509/crl_write.c, lib/x509/crq.c, - lib/x509/dn.c, lib/x509/mpi.c, lib/x509/output.c, - lib/x509/privkey.c, lib/x509/sign.c, lib/x509/sign.h, - lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509_int.h, - lib/x509/x509_write.c, lib/x509_b64.c, - libextra/ext_inner_application.c, libextra/ext_inner_application.h, - libextra/gnutls_extra.c, libextra/gnutls_ia.c, - libextra/includes/gnutls/extra.h, libextra/openssl_compat.h, - src/benchmark.c, src/certtool-cfg.h, src/certtool-common.h, - src/certtool.c, src/cli.c, src/common.c, src/common.h, src/crypt.c, - src/pkcs11.c, src/prime.c, src/psk.c, src/serv.c, src/tests.c, - tests/anonself.c, tests/certder.c, - tests/certificate_set_x509_crl.c, tests/certuniqueid.c, - tests/chainverify.c, tests/crq_apis.c, tests/crq_key_id.c, - tests/crypto_rng.c, tests/cve-2008-4989.c, tests/cve-2009-1415.c, - tests/cve-2009-1416.c, tests/dhepskself.c, tests/dn.c, tests/dn2.c, - tests/finished.c, tests/gc.c, tests/hostname-check.c, - tests/init_roundtrip.c, tests/mini-eagain.c, - tests/mini-x509-rehandshake.c, tests/mini-x509.c, tests/mini.c, - tests/moredn.c, tests/mpi.c, tests/netconf-psk.c, - tests/nul-in-x509-names.c, tests/openpgp-auth.c, - tests/openpgp-keyring.c, tests/openpgpself.c, tests/openssl.c, - tests/parse_ca.c, tests/pgps2kgnu.c, tests/pkcs12_encode.c, - tests/pkcs12_s2k.c, tests/pkcs12_s2k_pem.c, tests/pskself.c, - tests/resume.c, tests/safe-renegotiation/srn0.c, - tests/safe-renegotiation/srn1.c, tests/safe-renegotiation/srn2.c, - tests/safe-renegotiation/srn3.c, tests/safe-renegotiation/srn4.c, - tests/safe-renegotiation/srn5.c, tests/set_pkcs12_cred.c, - tests/setcredcrash.c, tests/simple.c, tests/tlsia.c, tests/utils.c, - tests/utils.h, tests/x509_altname.c, tests/x509dn.c, - tests/x509self.c, tests/x509sign-verify.c: Indent (using GNU indent - 2.2.11). - -2010-10-08 Nikos Mavrogiannopoulos - - * NEWS, configure.ac, lib/m4/hooks.m4: bumped version - -2010-10-08 Nikos Mavrogiannopoulos - - * src/certtool.c: Revert "Applied last patch of Micah Anderson on - IKE status." This reverts commit a6b2f5ce7316b4774649ee9b421da2ee7fef461f. - -2010-10-08 Nikos Mavrogiannopoulos - - * libextra/fipsmd5.c: removed unneeded code. - -2010-10-08 Nikos Mavrogiannopoulos - - * src/certtool.c: Applied last patch of Micah Anderson on IKE - status. - -2010-10-02 Nikos Mavrogiannopoulos - - * src/certtool.c: Applied patch on IKE extension by Micah Anderson - -2010-10-02 Nikos Mavrogiannopoulos - - * lib/cryptodev.c, lib/gcrypt/mac.c, lib/gnutls_hash_int.c, - lib/includes/gnutls/crypto.h, lib/nettle/mac.c: Updated cryptodev - code to support the linux cryptodev extensions. Removed the clone() - capability from HMAC. It was never used and having it prevents using - it with hardware accelerators that might not have this capability. - -2010-09-29 Nikos Mavrogiannopoulos - - * THANKS: Added Micah - -2010-10-01 Simon Josefsson - - * doc/cha-cert-auth.texi, doc/cha-internals.texi, - doc/cha-library.texi, lib/ext_safe_renegotiation.c, - lib/ext_server_name.c, lib/gcrypt/init.c, lib/gnutls_record.c, - lib/gnutls_str.c, lib/locks.c, lib/nettle/egd.c, lib/nettle/init.c, - lib/system.c, lib/system.h, libextra/ext_inner_application.c, - src/certtool-common.h, src/common.c, src/pkcs11.c: Fix some - syntax-check errors. - -2010-10-01 Simon Josefsson - - * lib/gnutls_int.h, lib/includes/gnutls/gnutls.h.in, - lib/includes/gnutls/pkcs11.h: Fix compiler warnings. - -2010-10-01 Simon Josefsson - - * NEWS, doc/manpages/Makefile.am: Mention new APIs. - -2010-09-30 Simon Josefsson - - * tests/openpgp-certs/testselfsigs: Avoid bashism. Reported by m.drochner@fz-juelich.de in - . - -2010-09-30 Simon Josefsson - - * lib/crypto-api.c: Don't return from void functions. Reported by Dagobert Michelsen in - - . - -2010-09-30 Simon Josefsson - - * lib/includes/gnutls/gnutls.h.in: Remove spurious comma. - -2010-09-30 Simon Josefsson - - * lib/includes/gnutls/x509.h: Remove spurious comma. - -2010-09-30 Simon Josefsson - - * tests/pkcs8-decode/Makefile.am, tests/pkcs8-decode/pkcs8: Make - pkcs8-decode test work on Windows. - -2010-09-29 Nikos Mavrogiannopoulos - - * NEWS: updated - -2010-09-29 Nikos Mavrogiannopoulos - - * lib/ext_session_ticket.c: treat absence of parameters the same as - having them disabled. - -2010-09-29 Nikos Mavrogiannopoulos - - * tests/resume.c: Corrected behavior on failure (don't crash). - -2010-09-29 Nikos Mavrogiannopoulos - - * lib/ext_session_ticket.c, lib/gnutls_extensions.c: Corrected bugs - when restoring extensions during session resumtion. - -2010-09-29 Nikos Mavrogiannopoulos - - * lib/gnutls_extensions.c: Use more informative logging for - extensions. - -2010-09-29 Micah Anderson - - * NEWS, doc/certtool.cfg, doc/cha-programs.texi, - lib/includes/gnutls/x509.h, lib/x509/output.c, src/certtool-cfg.c, - src/certtool-cfg.h, src/certtool.c: Add new extended key usage - ipsecIKE According to RFC 4945 § 5.1.3.12 section title - "ExtendedKeyUsage"[0] the following extended key usage has been - added: ... this document defines an ExtendedKeyUsage keyPurposeID that MAY - be used to limit a certificate's use: id-kp-ipsecIKE OBJECT IDENTIFIER ::= { id-kp 17 } where id-kp is defined in RFC 3280 [5]. If a certificate is - intended to be used with both IKE and other applications, and one - of the other applications requires use of an EKU value, then such - certificates MUST contain either the keyPurposeID id-kp-ipsecIKE or anyExtendedKeyUsage [5], as well as the keyPurposeID values associated with the other applications. Similarly, if a CA - issues multiple otherwise-similar certificates for multiple - applications including IKE, and it is intended that the IKE - certificate NOT be used with another application, the IKE - certificate MAY contain an EKU extension listing a keyPurposeID of - id-kp-ipsecIKE to discourage its use with the other application. - Recall, however, that EKU extensions in certificates meant for use - in IKE are NOT RECOMMENDED. Conforming IKE implementations are not required to support EKU. - If a critical EKU extension appears in a certificate and EKU is - not supported by the implementation, then RFC 3280 requires that the certificate be rejected. Implementations that do support EKU - MUST support the following logic for certificate validation: o If no EKU extension, continue. o If EKU present AND contains either id-kp-ipsecIKE or anyExtendedKeyUsage, continue. o Otherwise, reject cert. Signed-off-by: Nikos Mavrogiannopoulos - -2010-09-27 Nikos Mavrogiannopoulos - - * NEWS, src/certtool-gaa.c, src/certtool.gaa: --pkcs11-* in certtool - was renamed to --p11-*. - -2010-09-25 Nikos Mavrogiannopoulos - - * lib/ext_session_ticket.c: Added some comments and removed unused - code. - -2010-09-25 Nikos Mavrogiannopoulos - - * NEWS, lib/ext_session_ticket.c: Corrected advertizing issue for - session tickets. - -2010-09-24 Nikos Mavrogiannopoulos - - * doc/TODO: cleanup of TODO list. Removed very old entries, entries - already fixed and added new ones. - -2010-09-24 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c: IMED_RET parameters are easier to grasp. - -2010-09-24 Nikos Mavrogiannopoulos - - * lib/crypto.c, lib/gcrypt/cipher.c, lib/gcrypt/mac.c, - lib/nettle/cipher.c, lib/nettle/mac.c: cipher,mac and digest - priorities moved to crypto.c - -2010-09-23 Nikos Mavrogiannopoulos - - * lib/gnutls_errors.c: changed the fatality level of some errors. - -2010-09-23 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c: No longer use is_fatal() during handshake. - Explicitely treat EAGAIN and INTERRUPTED as non-fatal during - handshake. If the check_fatal flag is set then - GNUTLS_E_WARNING_ALERT_RECEIVED could interrupt a handshake as well. - -2010-09-23 Nikos Mavrogiannopoulos - - * src/cli.c: fflush stdout and stderr before the call to setbuf. - This fixes issue in solaris where lines dissappeared from output. - Reported and suggested fix by Knut Anders Hatlen. - -2010-09-20 Nikos Mavrogiannopoulos - - * NEWS: documented change - -2010-09-19 Nikos Mavrogiannopoulos - - * lib/nettle/pk.c: Corrected bug in wrap_nettle_pk_fixup that was - importing DSA keys are RSA ones. - -2010-09-19 Nikos Mavrogiannopoulos - - * lib/nettle/pk.c, lib/openpgp/privkey.c: indented some code - -2010-09-19 Nikos Mavrogiannopoulos - - * lib/m4/hooks.m4: updated revision - -2010-09-18 Ludovic Courtès - - * .gitignore, tests/Makefile.am, tests/openpgp-auth.c: Add an - OpenPGP authentication unit test. * tests/Makefile.am (ctests)[ENABLE_OPENPGP]: Add `openpgp-auth'. (TESTS_ENVIRONMENT): Add `srcdir'. * tests/openpgp-auth.c: New file. Signed-off-by: Nikos Mavrogiannopoulos - -2010-09-16 Jonathan Bastien-Filiatrault - - * lib/ext_session_ticket.c, lib/gnutls_alert.c, - lib/gnutls_buffers.c, lib/gnutls_cipher.c, lib/gnutls_cipher.h, - lib/gnutls_compress.c, lib/gnutls_compress.h, - lib/gnutls_constate.c, lib/gnutls_constate.h, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_num.h, - lib/gnutls_record.c, lib/gnutls_record.h, - lib/gnutls_session_pack.c, lib/gnutls_state.c, libextra/gnutls_ia.c: - Explicit symmetric cipher state versionning. This introduces the concept of a "cipher epoch". The epoch number is - the number of successful handshakes and is incremented by one each - time. This concept is native to DTLS and this patch makes the - symmetric cipher state explicit for TLS in preparation for DTLS. - This concept was implicit in plain TLS and ChangeCipherSpec messages - triggered a "pending state copy". Now, we the current epoch number - is simply incremented to the parameters negotiated by the handshake. The main side effects of this patch is a slightly more abstract - internal API and, in some cases, simpler code. The session blob - format is also changed a bit since this patch avoids storing - information that is now redundant. If this breaks library users' - expectations, this side effect can be negated. The cipher_specs structure has been removed. The conn_state has - become record_state_st. Only symmetric cipher information is - versioned. Things such as key exchange algorithm and the master - secret are not versioned and their handling is unchanged. I have tested this patch as much as I could. It introduces no test - suite regressions on my x64 Debian GNU/Linux system. Do not hesitate to point out shortcomings or suggest changes. Since - this is a big diff, I am expecting this to be an iterative process. Signed-off-by: Jonathan Bastien-Filiatrault - Signed-off-by: Nikos Mavrogiannopoulos - -2010-09-16 Jonathan Bastien-Filiatrault - - * lib/gnutls_errors.h: Add gnutls_assert_val idiom. This warrants being made in an inline function or macro since it is used throughout the code. This converts 4 line repetitive blocks - into 1 line. Signed-off-by: Jonathan Bastien-Filiatrault - Signed-off-by: Nikos Mavrogiannopoulos - -2010-09-14 Nikos Mavrogiannopoulos - - * AUTHORS, NEWS, configure.ac: updated for 2.11.1 - -2010-09-10 Nikos Mavrogiannopoulos - - * lib/includes/gnutls/pkcs11.h, lib/pkcs11.c, lib/pkcs11_int.h, - lib/pkcs11_privkey.c, src/certtool-gaa.c, src/certtool-gaa.h, - src/certtool.gaa, src/pkcs11.c: Added 3 levels of details in PKCS - #11 URLs. 1st level: Token level. Object is unique up to token. - 2nd level: Object is unique up to token and module used to access - it. 3rd level: Object is unique up to token and module and version - of module used to access it. - -2010-09-10 Nikos Mavrogiannopoulos - - * NEWS: Documented changes. - -2010-09-10 Nikos Mavrogiannopoulos - - * lib/x509_b64.c: Be liberal in the PEM decoding. That is spaces and - tabs are being skipped. - -2010-09-08 Jonathan Bastien-Filiatrault - - * lib/gnutls_buffers.c: Fully mbufferize _gnutls_read and - _gnutls_read_buffered. Signed-off-by: Jonathan Bastien-Filiatrault - Signed-off-by: Nikos Mavrogiannopoulos - -2010-09-08 Jonathan Bastien-Filiatrault - - * lib/gnutls_mbuffers.h: mbuffers: Add _mbuffer_xfree operation. Signed-off-by: Jonathan Bastien-Filiatrault - Signed-off-by: Nikos Mavrogiannopoulos - -2010-09-08 Jonathan Bastien-Filiatrault - - * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_int.h, - lib/gnutls_record.c, lib/gnutls_state.c: mbuffers: make - _gnutls_io_read_buffered use mbuffers. This will be needed by the DTLS code to make sure reads are stored - in segments that correspond to datagram boundaries. Signed-off-by: Jonathan Bastien-Filiatrault - Signed-off-by: Nikos Mavrogiannopoulos - -2010-09-08 Jonathan Bastien-Filiatrault - - * lib/gnutls_int.h: Parenthesize size calculations. This is standard practice and the DTLS code got bit by this. Signed-off-by: Jonathan Bastien-Filiatrault - Signed-off-by: Nikos Mavrogiannopoulos - -2010-09-08 Jonathan Bastien-Filiatrault - - * lib/gnutls_mbuffers.c, lib/gnutls_mbuffers.h: mbuffers: Add - mbuffer_linearize. Signed-off-by: Jonathan Bastien-Filiatrault - Signed-off-by: Nikos Mavrogiannopoulos - -2010-09-08 Jonathan Bastien-Filiatrault - - * lib/gnutls_mbuffers.c: mbuffers: fix wrong size calculation. maximum_size is the maximum size of the payload, not including - overhead. Signed-off-by: Jonathan Bastien-Filiatrault - Signed-off-by: Nikos Mavrogiannopoulos - -2010-09-08 Jonathan Bastien-Filiatrault - - * lib/gnutls_mbuffers.c: mbuffers: Make _mbuffer_remove_bytes return - a meaningful error code. Signed-off-by: Jonathan Bastien-Filiatrault - Signed-off-by: Nikos Mavrogiannopoulos - -2010-09-08 Jonathan Bastien-Filiatrault - - * lib/gnutls_mbuffers.c: mbuffers: Document the internal mbuffer - API. After a year of not hacking GnuTLS, I needed to look at the code to - know how mbuffers work. This will make it much easier for anybody - not familiar with this code. Signed-off-by: Jonathan Bastien-Filiatrault - Signed-off-by: Nikos Mavrogiannopoulos - -2010-09-08 Nikos Mavrogiannopoulos - - * NEWS: updated NEWS. - -2010-09-08 Nikos Mavrogiannopoulos - - * lib/includes/gnutls/pkcs11.h, lib/pkcs11.c, lib/pkcs11_int.h, - lib/pkcs11_privkey.c, lib/pkcs11_write.c, src/certtool-common.h, - src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, - src/certtool.gaa, src/pkcs11.c: PKCS#11 URL support updated to - conform to draft-pechanec-pkcs11uri-02. Now in the URL the pkcs11 - provider library (module) can be specified thus restricting objects - within a single provider. - -2010-09-01 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_int.h, lib/gnutls_priority.c, - lib/gnutls_record.c: When the %COMPAT flag is specified, larger - records that would otherwise violate the TLS spec, are accepted. - -2010-08-28 Brad Hards - - * src/certtool.c, src/pkcs11.c: Show which option is the default for - command line tools. We use "y/N" is most places - this just adapts two places that use - "Y/N" to match the behavior of read_yesno(). Signed-off-by: Nikos Mavrogiannopoulos - -2010-08-20 Nikos Mavrogiannopoulos - - * lib/x509/x509.c: prevent a memory leak in the unique_id functions. - -2010-08-20 Brad Hards - - * lib/includes/gnutls/x509.h, lib/libgnutls.map, lib/x509/output.c, - lib/x509/x509.c, tests/Makefile.am, tests/certuniqueid.c: As - identified in a previous mail, I've added support for accessing / - displaying the subjectUniqueID and issuerUniqueID fields within an - X.509 certificate. This is provided (along with a test case) in the - attached patch. Signed-off-by: Nikos Mavrogiannopoulos - -2010-08-20 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_int.h: By default lowat is set to zero. - -2010-08-19 Nikos Mavrogiannopoulos - - * lib/pkcs11.c: Revert "When scanning for terminator character for - PKCS #11 URLs ignore escaped \;." This reverts commit 583fad076506421c9007a3349784496e2927dcd1. - -2010-08-18 Nikos Mavrogiannopoulos - - * THANKS: Added Sjoerd. - -2010-08-18 Nikos Mavrogiannopoulos - - * NEWS, lib/m4/hooks.m4: libnettle is the default crypto library. - -2010-08-18 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c: oldstate var removed. - -2010-08-17 Nikos Mavrogiannopoulos - - * tests/mini-eagain.c: mini-eagain will fail with EAGAIN error one - every two attempts. That is to remove probabilities. - -2010-08-11 Sjoerd Simons - - * lib/gnutls_int.h, lib/gnutls_record.c: Remember the amount of user - data we're sending out Partially reverts 3ef62950845f551ebc629e50d5ddf75f71b84294. - gnutls_record_send needs to return the amount of user-data we sent, - so we need to keep this information somewhere to return it when we - succeed in sending that data. Signed-off-by: Nikos Mavrogiannopoulos - -2010-08-11 Sjoerd Simons - - * lib/gnutls_handshake.c: Check whether the error is fatal in more - cases When stressing the async API of gnutls a lot of internal errors are - hit as IMED_RET clears the handshake hash buffers as a result of - -EAGAIN even though it would never be re-initialized at that point, - but is still needed in later stages. Signed-off-by: Nikos Mavrogiannopoulos - -2010-08-11 Sjoerd Simons - - * lib/gnutls_handshake.c, lib/gnutls_int.h: Add state for flushing - the handshake buffer A seperate state is needed between flushing the handshake buffers - and sending the chipher spec change otherwise it's impossible to - determine whether _gnutls_send_change_cipher_spec is called for the - first time or again. Signed-off-by: Nikos Mavrogiannopoulos - -2010-08-01 Simon Josefsson - - * lib/nettle/mpi.c: Fix warning. - -2010-07-29 Nikos Mavrogiannopoulos - - * lib/m4/hooks.m4: Define HAVE_GCRYPT when using gcrypt. nettle is - no longer marked as unsupported. - -2010-07-29 Nikos Mavrogiannopoulos - - * NEWS, doc/manpages/Makefile.am, lib/gnutls_extensions.c, - lib/m4/hooks.m4, lib/nettle/cipher.c, lib/nettle/mac.c, - lib/nettle/pk.c, libextra/gnutls_extra.c: Added Camellia-128/256, - SHA-224/384/512 and support for DSA2 when using nettle. - -2010-07-28 Nikos Mavrogiannopoulos - - * lib/pkcs11.c: When scanning for terminator character for PKCS #11 - URLs ignore escaped \;. - -2010-07-26 Nikos Mavrogiannopoulos - - * lib/gnutls_priority.c: Modified the example to work in TLS 1.2. - -2010-07-26 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_algorithms.c: Added RSA_NULL_SHA1 and SHA256 - ciphersuites. - -2010-07-26 Nikos Mavrogiannopoulos - - * lib/ext_signature.c: When signature algorithms extension is not - received allow SHA1 and SHA256. - -2010-07-26 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c: NULL MAC renamed to MAC-NULL - -2010-07-25 Simon Josefsson - - * src/common.c: Avoid fixed size buffers (now handles the big >100 - SAN cert). - -2010-07-25 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2010-07-25 Simon Josefsson - - * NEWS: Re-add old NEWS entries. - -2010-07-25 Simon Josefsson - - * lib/gnutls_buffers.c: Doc fix. - -2010-07-24 Nikos Mavrogiannopoulos - - * lib/x509/privkey.c: Do not trust fbase64_decode to return 0 on - success. - -2010-07-24 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_x509.c, lib/x509/privkey.c, src/certtool.c: - gnutls_x509_privkey_import() will fallback to - gnutls_x509_privkey_import_pkcs8() without a password, if it is - unable to decode the key. - -2010-07-24 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, - lib/includes/gnutls/gnutls.h.in, lib/nettle/mpi.c, src/prime.c: - Added GNUTLS_PK_DH to differentiate in the generation of parameters - with PK_DSA that requires special treatment. - -2010-07-24 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c: Corrected wrong descriptions of security - levels. - -2010-07-24 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c: use RSA-SHA1 as an indicator of RSA - certificates. - -2010-07-24 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c: Fix DSA key values to avoid generating - normal and reporting them as low. - -2010-07-23 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, - lib/includes/gnutls/openpgp.h, lib/includes/gnutls/x509.h, - lib/libgnutls.map, lib/nettle/mpi.c, lib/openpgp/privkey.c, - lib/x509/privkey.c, src/certtool.c, - tests/pathlen/no-ca-or-pathlen.pem: Better handling of security - parameters to key sizes matching (via a single table). Added - functions to return the security parameter of a private key. - -2010-07-23 Nikos Mavrogiannopoulos - - * doc/cha-intro-tls.texi: Simplified documentation. - -2010-07-23 Nikos Mavrogiannopoulos - - * lib/nettle/mpi.c: Follow ECRYPT II recommendations. - -2010-07-23 Nikos Mavrogiannopoulos - - * NEWS, doc/cha-bib.texi, doc/cha-intro-tls.texi, - lib/gnutls_algorithms.c: Updated documentation and - gnutls_pk_params_t mappings to ECRYPT II recommendations. - -2010-07-23 Nikos Mavrogiannopoulos - - * lib/gnutls_priority.c: HMAC-MD5 deprecated according to ECRYPT II - yearly report (2009-2010) recommendations. - -2010-07-23 Nikos Mavrogiannopoulos - - * tests/sha2/Makefile.am: added missing file key-subca-dsa.pem - -2010-07-22 Nikos Mavrogiannopoulos - - * gtk-doc.make: ignore html errors otherwise make dist doesn't work. - -2010-07-22 Nikos Mavrogiannopoulos - - * NEWS: updated NEWS - -2010-07-22 Nikos Mavrogiannopoulos - - * src/certtool-common.h, src/certtool-gaa.c, src/certtool-gaa.h, - src/certtool.c, src/certtool.gaa: Added option for certtool to print - certificate public key. - -2010-07-21 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c: Added SIG_RSA_MD5_OID as an indicator of - RSA. Some microsoft products were using it. Reported by Mads - Kiilerich. - -2010-07-19 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c, lib/x509/common.h: Added RSA with SHA224. - -2010-07-17 Nikos Mavrogiannopoulos - - * lib/nettle/pk.c: Added blinding to RSA decryption AND signing. - Will stay there until it is moved to nettle itself. - -2010-07-11 Nikos Mavrogiannopoulos - - * lib/system.h: fixed - -2010-07-11 Nikos Mavrogiannopoulos - - * NEWS, lib/nettle/Makefile.am, lib/nettle/egd.c, lib/nettle/egd.h, - lib/nettle/rnd.c: Added support for EGD daemon in nettle's RNG. It - is used if /dev/urandom is not present. - -2010-07-11 Nikos Mavrogiannopoulos - - * lib/gnutls_buffers.c, lib/system.c, lib/system.h: Corrected the - lowat behavior. Documented that it will be deprecated in later - versions. - -2010-07-11 Nikos Mavrogiannopoulos - - * src/serv.c: gnutls-serv: Do not print CR/LF if received, but - instead print LF only. - -2010-07-10 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/gnutls_buffers.c, lib/gnutls_state.c, - lib/locks.c, lib/locks.h, lib/pakchois/pakchois.c, lib/system.c, - lib/system.h: system specific functions were moved to system.c - -2010-07-10 Nikos Mavrogiannopoulos - - * NEWS, configure.ac, lib/gnutls_alert.c, lib/gnutls_buffers.c, - lib/gnutls_buffers.h, lib/gnutls_global.c, lib/gnutls_handshake.c, - lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_mbuffers.c, - lib/gnutls_mbuffers.h, lib/gnutls_record.c, lib/gnutls_record.h, - lib/gnutls_state.c, lib/includes/gnutls/gnutls.h.in, - lib/libgnutls.map, libextra/gnutls_ia.c: Support scattered write - using writev(). This takes advantage of the new buffering layer and - allows queuing of packets and flushing them. This is currently used - for handshake messages only. Performance-wise the difference of - packing several TLS records in a single write doesn't seem to offer - anything over ethernet (that my tests were on). Probably on links - with higher latency there would be a benefit. - -2010-07-08 Nikos Mavrogiannopoulos - - * doc/cha-gtls-app.texi: Removed old reference. - -2010-07-08 Nikos Mavrogiannopoulos - - * doc/cha-gtls-app.texi, doc/examples/Makefile.am, - doc/examples/ex-rfc2818.c: ex-rfc2818 is now a functional program - demonstrating the verification procedure. - -2010-07-08 Nikos Mavrogiannopoulos - - * doc/Makefile.am, doc/cha-gtls-app.texi, doc/examples/Makefile.am, - doc/examples/ex-serv-export.c: Example with export ciphersuites was - removed. - -2010-07-08 Nikos Mavrogiannopoulos - - * lib/gnutls_pubkey.c: corrected typo - -2010-07-07 Nikos Mavrogiannopoulos - - * lib/nettle/pk.c: Use the same "e" for RSA as libgcrypt. It's the - fastest choice. - -2010-07-05 Nikos Mavrogiannopoulos - - * src/certtool-cfg.c: Do not crash if input is redirected from - /dev/null. - -2010-07-05 Nikos Mavrogiannopoulos - - * NEWS, src/certtool-gaa.c, src/certtool.c, src/certtool.gaa: - Changed the default pkcs-cipher to AES-128. Allowed specifying the - 3des-pkcs12 cipher with the --pkcs-cipher option. - -2010-07-04 Nikos Mavrogiannopoulos - - * src/benchmark.c: Use double to count bytes. - -2010-07-04 Nikos Mavrogiannopoulos - - * lib/nettle/rnd.c: Added a windows version of the RNG. - -2010-07-04 Nikos Mavrogiannopoulos - - * lib/nettle/rnd.c: Corrected locking usage in nettle's random - subsystem. - -2010-07-03 Nikos Mavrogiannopoulos - - * lib/gcrypt/Makefile.am, lib/gnutls_privkey.c, - lib/gnutls_pubkey.c, lib/nettle/Makefile.am, lib/pakchois/dlopen.h: - Fixed to compile under mingw32. - -2010-07-03 Nikos Mavrogiannopoulos - - * lib/m4/hooks.m4: only warn if dlopen or pthreads are not found. - -2010-07-03 Nikos Mavrogiannopoulos - - * lib/gcrypt/init.c, lib/includes/gnutls/gnutls.h.in, lib/locks.c, - lib/pakchois/pakchois.c: Locks were converted to be in align with - posix locks to easier wrap around them. - -2010-07-03 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/locks.c, lib/locks.h, lib/pakchois/dlopen.c, - lib/pakchois/dlopen.h, lib/pakchois/pakchois.c: The included - pakchois will use gnutls locks and will use a portable dlopen() to - allow compilation in win32 (untested). - -2010-07-03 Nikos Mavrogiannopoulos - - * lib/nettle/rnd.c: Read from /dev/urandom every 20 minutes. - -2010-07-03 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/x509/Makefile.am: Added missing files - -2010-07-03 Nikos Mavrogiannopoulos - - * lib/crypto-api.c, lib/gnutls_cipher_int.c, - lib/gnutls_cipher_int.h, lib/includes/gnutls/crypto.h, - lib/libgnutls.map: Allow encryption and decryption that are not - in-place only. - -2010-07-03 Nikos Mavrogiannopoulos - - * src/benchmark.c: Print values in a human-readable format and do - the calculations in fixed time to prevent stalling in slow systems. - -2010-07-02 Nikos Mavrogiannopoulos - - * lib/m4/hooks.m4: corrected library version - -2010-07-02 Nikos Mavrogiannopoulos - - * doc/examples/ex-cert-select-pkcs11.c, - lib/includes/gnutls/pkcs11.h, lib/pkcs11.c, lib/pkcs11_int.h, - src/common.c, src/pkcs11.c: PIN callback supplies the token URL. The - callback function in common.c will cache PIN if requested for second - time. - -2010-07-02 Nikos Mavrogiannopoulos - - * lib/gnutls_errors.c, lib/includes/gnutls/gnutls.h.in, - lib/pkcs11.c, lib/pkcs11_int.h, lib/pkcs11_privkey.c, - lib/pkcs11_write.c, src/common.c: Reverted the SAVE_PIN approach in - PIN callback. The new approach will be to provide enough information - for the callback to save the PIN itself. - -2010-07-02 Nikos Mavrogiannopoulos - - * lib/gcrypt/init.c: removed unneeded function. - -2010-07-02 Nikos Mavrogiannopoulos - - * lib/gnutls_cert.c: More uses of gnutls_certificate_free_ca_names - -2010-07-02 Nikos Mavrogiannopoulos - - * lib/locks.c: Do not allow setting NULL lock functions - -2010-07-02 Nikos Mavrogiannopoulos - - * lib/nettle/rnd.c: corrected lock usage. - -2010-07-02 Nikos Mavrogiannopoulos - - * lib/m4/hooks.m4: bumped library version - -2010-07-01 Nikos Mavrogiannopoulos - - * lib/includes/Makefile.am: Include abstract.h in releases. - -2010-06-30 Nikos Mavrogiannopoulos - - * lib/crypto-api.c: Correctly deinitialize crypto API handles. - -2010-06-29 Nikos Mavrogiannopoulos - - * lib/gnutls_int.h: commented obscure HANDSHAKE_MAC_TYPE_10 and - HANDSHAKE_MAC_TYPE_12. - -2010-06-29 Nikos Mavrogiannopoulos - - * lib/locks.c, lib/locks.h, lib/nettle/rnd.c: simplified locking - code. Locking functions always exist but are dummies if no locks - have been set. - -2010-06-29 Nikos Mavrogiannopoulos - - * lib/gcrypt/Makefile.am, lib/gcrypt/init.c, lib/gnutls_errors.c, - lib/gnutls_global.c, lib/gnutls_global.h, - lib/includes/gnutls/gnutls.h.in, lib/locks.c, lib/locks.h, - lib/nettle/Makefile.am, lib/nettle/init.c, lib/nettle/rnd.c: - Initialization of crypto libraries moved outside main gnutls code. - -2010-06-29 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/gnutls_global.c, lib/gnutls_global.h, - lib/locks.c, lib/locks.h: Moved locking code to special file. - -2010-06-29 Simon Josefsson - - * doc/Makefile.am, doc/pkcs11-vision.eps: Add pkcs11-vision rules. - -2010-06-29 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2010-06-28 Nikos Mavrogiannopoulos - - * lib/includes/gnutls/pkcs11.h, lib/pkcs11_write.c, src/pkcs11.c: - When copying a private key the sensitive flag can be set or not. - This allows copying private keys that can be exported. - -2010-06-28 Nikos Mavrogiannopoulos - - * lib/includes/gnutls/pkcs11.h, lib/pkcs11.c, lib/pkcs11_int.h, - lib/pkcs11_write.c, src/certtool-common.h, src/certtool.c, - src/pkcs11.c: Combined object flags. No implicit login any more. - Login has to be specified with a flag on every call that could use - it. - -2010-06-28 Nikos Mavrogiannopoulos - - * lib/gnutls_privkey.c, lib/gnutls_pubkey.c, lib/pkcs11.c, - lib/pkcs11_int.h, lib/pkcs11_privkey.c, lib/pkcs11_write.c: Indented - code. - -2010-06-28 Nikos Mavrogiannopoulos - - * doc/examples/ex-cert-select-pkcs11.c, lib/gnutls_pubkey.c, - lib/gnutls_x509.c, lib/includes/gnutls/abstract.h, - lib/includes/gnutls/pkcs11.h, lib/pkcs11.c, lib/pkcs11_write.c, - src/certtool-common.h, src/certtool-gaa.c, src/certtool-gaa.h, - src/certtool.c, src/certtool.gaa, src/cli.c, src/pkcs11.c: Allow - flags when importing objects from PKCS11 URLs. The only flag - supported now is the PKCS11_OBJ_FLAG_LOGIN, which forces login - before accessing object on a token. The reason is that some tokens - do not allow access of any data without login. - -2010-06-27 Nikos Mavrogiannopoulos - - * src/tests.c: Added AES-128 to block ciphers. - -2010-06-27 Nikos Mavrogiannopoulos - - * lib/gnutls_session_pack.c: Corrected writing and reading order of - security parameters. - -2010-06-27 Nikos Mavrogiannopoulos - - * lib/configure.ac, libextra/configure.ac: use 2.11.0 everywhere - -2010-06-27 Nikos Mavrogiannopoulos - - * NEWS, doc/cha-gtls-app.texi, lib/configure.ac, - lib/gnutls_errors.c, lib/gnutls_global.c, lib/gnutls_global.h, - lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, - lib/nettle/rnd.c, lib/pkcs11.c: Added gnutls_global_set_mutex() to - allow setting alternative locking procedures. By default the system - available locking is used. In *NIX pthreads are used and in windows - the critical section API. As a side effect this change avoids any API dependance on libgcrypt - even if threads are used. - -2010-06-27 Nikos Mavrogiannopoulos - - * tests/chainverify.c: Modified the cacertrsamd5 short-cut. The test - was checking whether verification using a trusted insecurely signed - self signed certificate will fail against a chain that has this as - intermediate. However this test should have succeeded since the - insecure certificate is trusted. This isn't the purpose of this test however. It should have checked - whether using the same certificate as trusted and to be verified and - the GNUTLS_VERIFY_DO_NOT_ALLOW_SAME flag should return an error. - -2010-06-27 Nikos Mavrogiannopoulos - - * tests/chainverify.c: Fail on error. - -2010-06-26 Nikos Mavrogiannopoulos - - * src/certtool.c: When generating private key allow usage of - --pkcs-cipher flag. - -2010-06-22 Nikos Mavrogiannopoulos - - * lib/auth_dhe_psk.c, lib/auth_psk.c, lib/auth_psk.h, - lib/auth_srp.c, lib/auth_srp.h, lib/ext_srp.c, lib/gnutls_int.h: - MAX_SRP_USERNAME -> MAX_USERNAME_SIZE - -2010-06-24 Simon Josefsson - - * README-alpha: We also require GNU make. - -2010-06-24 Simon Josefsson - - * THANKS, configure.ac, lib/configure.ac, libextra/configure.ac: Use - silent build rules. Suggested by Vincent Torri in - - . - -2010-06-22 Nikos Mavrogiannopoulos - - * lib/includes/gnutls/gnutls.h.in: removed OPRFI extension - functions. - -2010-06-22 Nikos Mavrogiannopoulos - - * lib/Makefile.am: removed OPRFI from makefile. - -2010-06-21 Nikos Mavrogiannopoulos - - * lib/x509/verify.c: When verifying certificates use the same - algorithm whether the DO_NOT_ALLOW_SAME flag is set or not. Before - we were shortening certificate list if the flag was not set by the - size of the first certificate found in the trusted list, and keep - the list intact otherwise. Now we shorten the list in the latter - case as well, except for the first certificate. - -2010-06-19 Nikos Mavrogiannopoulos - - * NEWS: Added news entry for EV-certificates. - -2010-06-19 Nikos Mavrogiannopoulos - - * src/tests.c, src/tests.h, src/tls_test.c: Corrected some tests. - Added test to check whether the %COMPAT option is required for this - server. - -2010-06-19 Nikos Mavrogiannopoulos - - * lib/gnutls_extensions.c, lib/gnutls_session_pack.c: Corrections in - the new session packing code. Saving absolute positions in buffers - is no longer done. Now we store only and offset to allow - reallocating the buffer and still do the correct reference. - -2010-06-19 Nikos Mavrogiannopoulos - - * lib/ext_safe_renegotiation.c, lib/ext_safe_renegotiation.h, - lib/ext_signature.c, lib/gnutls_handshake.c: Fixes in new extensions - code that relate to SSL 3.0. - -2010-06-19 Nikos Mavrogiannopoulos - - * configure.ac: version is 2.11.0 - -2010-06-19 Nikos Mavrogiannopoulos - - * doc/cha-cert-auth.texi: Some updates in the PKCS11 text. - -2010-06-19 Nikos Mavrogiannopoulos - - * doc/cha-intro-tls.texi: Some updates on renegotiation text - -2010-06-19 Nikos Mavrogiannopoulos - - * doc/cha-intro-tls.texi: Removed links for discussion of the COMPAT - topic. I don't think they should be in the documentation. - -2010-06-19 Nikos Mavrogiannopoulos - - * doc/cha-intro-tls.texi: Corrected example with %COMPAT. - -2010-06-19 Nikos Mavrogiannopoulos - - * doc/cha-intro-tls.texi: Added gnutls_sec_param_to_pk_bits() - discussion. - -2010-06-19 Nikos Mavrogiannopoulos - - * doc/cha-intro-tls.texi: corrected text on AES - -2010-06-19 Nikos Mavrogiannopoulos - - * lib/pkcs11.c: Only save PIN if login was successful. - -2010-06-19 Nikos Mavrogiannopoulos - - * doc/cha-auth.texi, lib/ext_signature.c: Applied patch by Andreas - Metzler - -2010-06-19 Nikos Mavrogiannopoulos - - * src/benchmark.c: Allow setting debug level via cmd. - -2010-06-19 Nikos Mavrogiannopoulos - - * lib/cryptodev.c: Explicitely terminate cryptodev sessions. - -2010-06-19 Nikos Mavrogiannopoulos - - * lib/gnutls_hash_int.c, lib/gnutls_hash_int.h: Removed the no - longer needed "active" variable. - -2010-06-18 Nikos Mavrogiannopoulos - - * NEWS: documented some of the changes - -2010-06-18 Nikos Mavrogiannopoulos - - * lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, - lib/gnutls_hash_int.c, lib/gnutls_hash_int.h: Greatly simplified the - internal hash/hmac and cipher functions. - -2010-06-18 Nikos Mavrogiannopoulos - - * lib/includes/gnutls/pkcs11.h, lib/pkcs11.c, - src/certtool-common.h, src/certtool-gaa.c, src/certtool-gaa.h, - src/certtool.gaa, src/pkcs11.c: Allow listing of private keys only. - Certtool has now the --pkcs11-list-privkeya option. - -2010-06-18 Nikos Mavrogiannopoulos - - * lib/pkcs11_privkey.c: Send correct token name to callback. - -2010-06-18 Nikos Mavrogiannopoulos - - * lib/gnutls_errors.c, lib/includes/gnutls/gnutls.h.in, - lib/pkcs11.c, lib/pkcs11_int.h, lib/pkcs11_privkey.c, - lib/pkcs11_write.c: Added more gnutls errors to map closer to PKCS11 - actual errors. - -2010-06-17 Nikos Mavrogiannopoulos - - * lib/gnutls_errors.c, lib/includes/gnutls/gnutls.h.in, - lib/includes/gnutls/pkcs11.h, lib/pkcs11.c, lib/pkcs11_int.h, - lib/pkcs11_privkey.c, lib/pkcs11_write.c, src/cli.c, src/common.c: - Added option to the PKCS11 PIN callback to save PIN if the token is - being used with a single pkcs11_privkey structure. - -2010-06-17 Nikos Mavrogiannopoulos - - * lib/pkcs11_privkey.c: For Private key operations new sessions are - opened when are needed. This makes the usage of the PKCS11 API - thread safe. The only drawback is the requirement to enter PIN on - every operation. - -2010-06-15 Simon Josefsson - - * src/cli.c: gnutls-cli: Make --starttls work again. Problem introduced in patch to use read() instead of fgets() - committed on 2010-01-27. - -2010-06-14 Nikos Mavrogiannopoulos - - * src/certtool.c, tests/sha2/key-ca-dsa.pem, - tests/sha2/key-subca-dsa.pem, tests/sha2/sha2, tests/sha2/sha2-dsa: - Allow SHA224 hash in certtool. Added tests for SHA-256 and SHA-224 - for DSA. - -2010-06-14 Nikos Mavrogiannopoulos - - * src/certtool.c: Do not warn multiple times for the deprecation of - --bits. - -2010-06-14 Nikos Mavrogiannopoulos - - * lib/ext_session_ticket.c, lib/gnutls_handshake.c, - lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_mbuffers.c, - lib/gnutls_mbuffers.h, lib/gnutls_record.c: Appending data in - mbuffers is now cheaper by avoiding realloc, at the cost of - requiring to specify a maximum mbuffer size at creation. - -2010-06-13 Nikos Mavrogiannopoulos - - * lib/ext_safe_renegotiation.c: Removed unused functions. - -2010-06-13 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c, lib/gnutls_int.h: Combined the max ticket - length with the maximum extension data length. - -2010-06-11 Nikos Mavrogiannopoulos - - * NEWS, doc/cha-gtls-app.texi, lib/auth_srp.c, lib/ext_cert_type.c, - lib/ext_cert_type.h, lib/ext_max_record.c, lib/ext_max_record.h, - lib/ext_oprfi.c, lib/ext_oprfi.h, lib/ext_safe_renegotiation.c, - lib/ext_safe_renegotiation.h, lib/ext_server_name.c, - lib/ext_server_name.h, lib/ext_session_ticket.c, - lib/ext_session_ticket.h, lib/ext_signature.c, lib/ext_signature.h, - lib/ext_srp.c, lib/ext_srp.h, lib/gnutls_buffers.c, - lib/gnutls_constate.c, lib/gnutls_extensions.c, - lib/gnutls_extensions.h, lib/gnutls_handshake.c, lib/gnutls_int.h, - lib/gnutls_kx.c, lib/gnutls_mbuffers.c, lib/gnutls_mbuffers.h, - lib/gnutls_record.c, lib/gnutls_session_pack.c, lib/gnutls_state.c, - lib/gnutls_str.c, lib/gnutls_str.h, lib/includes/gnutls/compat.h, - lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, lib/pkcs11.c, - lib/x509/dn.c, libextra/ext_inner_application.c, - libextra/ext_inner_application.h, libextra/gnutls_extra.c, - libextra/gnutls_ia.c, src/cli.c, src/serv.c, tests/Makefile.am, - tests/oprfi.c, tests/tlsia.c: Simplified and made more safe the - packing of data for session storage. Extensions use the internal API - to store/retrieve during resumption. Removed OPRFI since it was never standardized and was never actually - included in gnutls since it was in inactive ifdef. This was instead - of rewriting it to use the new API. - -2010-06-11 Nikos Mavrogiannopoulos - - * lib/gnutls_buffers.c, lib/gnutls_handshake.c, lib/gnutls_int.h, - lib/gnutls_str.c, lib/gnutls_str.h, lib/gnutls_supplemental.c, - lib/gnutls_supplemental.h, lib/openpgp/output.c, lib/pkcs11.c, - lib/x509/dn.c, lib/x509/output.c: The gnutls_string code was - simplified and integrated with the buffer to avoid having two named - for the same thing. - -2010-06-11 Nikos Mavrogiannopoulos - - * lib/pakchois/pakchois.c: Properly handle fork() case. - -2010-06-09 Nikos Mavrogiannopoulos - - * libextra/gnutls_extra.c: Register the md5 handler if gcrypt is in - fips mode once gnutls_global_init_extra() is called. - -2010-06-09 Nikos Mavrogiannopoulos - - * src/tests.c: corrected tests. - -2010-06-09 Nikos Mavrogiannopoulos - - * lib/pakchois/pakchois.c, lib/pakchois/pakchois.h, lib/pkcs11.c: - Added new calls to pakchois to open an absolute filename. - -2010-06-07 Nikos Mavrogiannopoulos - - * lib/includes/gnutls/pkcs11.h: Removed several comments that - pointed to Alon's implementation comments. We use inline C comments - to generate documentation (not doxygen). - -2010-06-04 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/ext_session_ticket.c, - lib/gnutls_algorithms.c, lib/gnutls_buffers.c, - lib/gnutls_buffers.h, lib/gnutls_handshake.c, - lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_kx.c, - lib/gnutls_mbuffers.c, lib/gnutls_record.c, lib/gnutls_state.c: More - fixes for the rebase. - -2010-06-04 Nikos Mavrogiannopoulos - - * AUTHORS: Added Jonathan. - -2010-06-04 Nikos Mavrogiannopoulos - - * lib/pakchois/pakchois.c: Provider unref must be done after all - sessions have been closed. - -2010-06-03 Nikos Mavrogiannopoulos - - * lib/Makefile.am: Several fixes for the broken rebase. - -2010-06-03 Nikos Mavrogiannopoulos - - * doc/cha-intro-tls.texi: Merged with master. - -2010-06-03 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c, lib/gnutls_mbuffers.h, - lib/gnutls_record.c: Some other changes to mbuffers to make gnutls - (a bit more) agnostic on their internal structure. - -2010-06-03 Nikos Mavrogiannopoulos - - * lib/x509/verify.c: Corrected prefered hash algorithm return value - on RSA. - -2010-06-03 Nikos Mavrogiannopoulos - - * lib/gnutls_global.c: Use GCRYCTL_ENABLE_QUICK_RANDOM when using - libgcrypt. - -2010-05-31 Nikos Mavrogiannopoulos - - * .gitignore: Ignore more files. - -2010-05-31 Nikos Mavrogiannopoulos - - * tests/sha2/sha2-dsa: Remove the correct file - -2010-05-31 Nikos Mavrogiannopoulos - - * tests/sha2/key-ca-dsa.pem, tests/sha2/key-dsa.pem: Added missing - files. - -2010-05-31 Nikos Mavrogiannopoulos - - * lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_pubkey.c, - lib/includes/gnutls/abstract.h, lib/includes/gnutls/x509.h, - lib/x509/crq.c, lib/x509/x509.c, src/certtool.c: The - get_preferred_hash_algorithm() functions have now an extra argument - to indicate whether it is mandatory to use this algorithm. - -2010-05-31 Nikos Mavrogiannopoulos - - * doc/examples/ex-crq.c, lib/includes/gnutls/x509.h, - lib/libgnutls.map, lib/x509/crq.c: Added - gnutls_x509_crq_get_preferred_hash_algorithm(). - -2010-05-31 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_pubkey.c, lib/includes/gnutls/abstract.h, - lib/includes/gnutls/x509.h, lib/libgnutls.map, lib/x509/privkey.c, - lib/x509/verify.c, lib/x509/x509.c, src/certtool.c: Added - gnutls_pubkey_get_preferred_hash_algorithm() and - gnutls_x509_crt_get_preferred_hash_algorithm() to allow determining - the hash algorithm to use during signing. This is needed in the case - of DSA that uses specific versions of SHA depending on the size of - the parameters. - -2010-05-31 Nikos Mavrogiannopoulos - - * doc/gnutls.texi, lib/Makefile.am, lib/build-aux/config.rpath, - lib/gcrypt/pk.c, lib/gnutls_privkey.c, lib/pkcs11.c, - lib/pkcs11_privkey.c, lib/x509/privkey.c, lib/x509/sign.c, - lib/x509/sign.h, lib/x509/verify.c, lib/x509/x509.c, src/pkcs11.c: - Several fixes after big rebase. - -2010-05-30 Nikos Mavrogiannopoulos - - * tests/sha2/Makefile.am, tests/sha2/sha2-dsa: Test the DSA with - SHA256 as well. - -2010-05-30 Nikos Mavrogiannopoulos - - * lib/x509/mpi.c: Print debugging information on error. - -2010-05-30 Nikos Mavrogiannopoulos - - * NEWS, lib/gcrypt/pk.c, lib/gnutls_pk.c, lib/gnutls_sig.c, - lib/nettle/mpi.c, lib/nettle/pk.c, lib/opencdk/pubkey.c, - lib/opencdk/sig-check.c, lib/opencdk/verify.c, - lib/openpgp/gnutls_openpgp.c, lib/openpgp/pgp.c, - lib/openpgp/privkey.c, lib/pkcs11_privkey.c, lib/x509/privkey.c, - lib/x509/x509_int.h: Nettle library can now parse the PGP integers. - Except for SHA-224/384/512 nettle seems to be fully working now. - -2010-05-30 Nikos Mavrogiannopoulos - - * src/certtool.c: use --sec-param to generate privkey. - -2010-05-30 Nikos Mavrogiannopoulos - - * tests/openpgpself.c: reduced log level to a sane one - -2010-05-30 Nikos Mavrogiannopoulos - - * tests/pathlen/ca-no-pathlen.pem, - tests/pathlen/no-ca-or-pathlen.pem: Corrected for new output of - --print-certificate-info - -2010-05-30 Nikos Mavrogiannopoulos - - * tests/sha2/sha2: Print information on failure. - -2010-05-30 Nikos Mavrogiannopoulos - - * lib/libgnutls.map, src/certtool.c: Print exp1 and exp2 if they are - available. - -2010-05-30 Nikos Mavrogiannopoulos - - * tests/pkcs1-padding/pkcs1-pad, tests/pkcs12-decode/pkcs12, - tests/pkcs8-decode/pkcs8, tests/userid/userid: Only print output if - something fails - -2010-05-30 Nikos Mavrogiannopoulos - - * lib/m4/hooks.m4, lib/pakchois/pakchois.c: Some pakchois fixes. - -2010-05-30 Nikos Mavrogiannopoulos - - * lib/gnutls_global.c: Fixup to compile with nettle - -2010-05-29 Nikos Mavrogiannopoulos - - * lib/m4/hooks.m4: Do not bother with MODPATH. We don't use it. - -2010-05-29 Nikos Mavrogiannopoulos - - * lib/debug.c, lib/debug.h: Added again _gnutls_dump_mpi() to assist - in debugging. - -2010-05-29 Nikos Mavrogiannopoulos - - * tests/pkcs12_encode.c: Added debugging - -2010-05-29 Nikos Mavrogiannopoulos - - * lib/gnutls_sig.c: Allow DSA with other than SHA1 algorithms in - TLS. - -2010-05-29 Nikos Mavrogiannopoulos - - * lib/pkix_asn1_tab.c: removed more stuff. - -2010-05-29 Nikos Mavrogiannopoulos - - * lib/pkix.asn, lib/x509/common.c: LocalKeyId and XmppAddr were - incorporated. - -2010-05-29 Nikos Mavrogiannopoulos - - * lib/pkix.asn, lib/pkix_asn1_tab.c: No need for those OIDs any - more. - -2010-05-29 Nikos Mavrogiannopoulos - - * tests/dn2.c: Corrected to support new EV_ values. - -2010-05-29 Nikos Mavrogiannopoulos - - * tests/crq_key_id.c, tests/cve-2009-1416.c, tests/pkcs12_s2k_pem.c: - avoid calling gcrypt directly. - -2010-05-29 Nikos Mavrogiannopoulos - - * NEWS, lib/includes/gnutls/crypto.h, lib/libgnutls.map, - lib/random.c, lib/random.h, src/crypt.c, src/psk.c, - tests/mini-eagain.c: exported gnutls_rnd(). - -2010-05-29 Nikos Mavrogiannopoulos - - * lib/x509/common.c, lib/x509/common.h, lib/x509/dn.c: The - recognition of DN elements is now self contained. It does not need - entries in pkix.asn. - -2010-05-29 Nikos Mavrogiannopoulos - - * lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509/common.c: Added - support for EV certificate attributes. - -2010-05-29 Nikos Mavrogiannopoulos - - * lib/m4/hooks.m4, lib/nettle/cipher.c: Fixed nettle detection and - AES. - -2010-05-29 Nikos Mavrogiannopoulos - - * lib/gnutls_dh_primes.c: documentation updates - -2010-05-29 Nikos Mavrogiannopoulos - - * src/certtool-common.h, src/certtool.c, src/prime.c: Generate - dh-params also used --sec-param. - -2010-05-29 Nikos Mavrogiannopoulos - - * lib/nettle/mpi.c: Document that the generator is the generator of - the subgroup and not the group. - -2010-05-29 Nikos Mavrogiannopoulos - - * src/cli.c: Corrected certificate callback. - -2010-05-28 Nikos Mavrogiannopoulos - - * lib/gcrypt/Makefile.am, lib/nettle/Makefile.am, - lib/nettle/cipher.c: More AES stuff (still doesn't work). - -2010-05-28 Nikos Mavrogiannopoulos - - * lib/nettle/pk.c: Correction in RSA encryption. - -2010-05-28 Nikos Mavrogiannopoulos - - * lib/nettle/cipher.c: Fixed issue with AES. - -2010-05-28 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_algorithms.c, lib/includes/gnutls/gnutls.h.in, - lib/libgnutls.map, lib/openpgp/output.c, lib/x509/output.c, - lib/x509/privkey.c, src/certtool-gaa.c, src/certtool-gaa.h, - src/certtool.c, src/certtool.gaa: Added - gnutls_sec_param_to_pk_bits() et al. to allow select bit sizes for - private keys using a human understandable scale. - -2010-05-28 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_algorithms.c, lib/includes/gnutls/gnutls.h.in, - lib/x509/common.h: Added support for SHA224 and SHA256 in DSA. - -2010-05-28 Nikos Mavrogiannopoulos - - * lib/m4/hooks.m4: Always use included pakchois. - -2010-05-27 Nikos Mavrogiannopoulos - - * doc/examples/ex-cert-select-pkcs11.c: make sure all lines fit in - page. - -2010-05-26 Nikos Mavrogiannopoulos - - * doc/cha-cert-auth.texi: make example more compact by removing - error checking. - -2010-05-26 Nikos Mavrogiannopoulos - - * doc/cha-bib.texi, doc/cha-cert-auth.texi: Added bibliographic - reference to PKCS #11. - -2010-05-26 Nikos Mavrogiannopoulos - - * doc/cha-cert-auth.texi: Added sketch for PKCS #11 usage. - -2010-05-26 Nikos Mavrogiannopoulos - - * doc/credentials/x509-server-dsa.pem, - doc/credentials/x509-server-key-dsa.pem: Added 2048 bit DSA key - -2010-05-26 Nikos Mavrogiannopoulos - - * lib/opencdk/armor.c, lib/opencdk/read-packet.c, - lib/opencdk/stream.c, lib/opencdk/write-packet.c: Increased log - level of several messages. - -2010-05-25 Nikos Mavrogiannopoulos - - * doc/credentials/x509/key.pem: Corrected coefficient and exp[12] - values in key. - -2010-05-25 Nikos Mavrogiannopoulos - - * lib/nettle/pk.c: Added blinding in RSA. Correct broken private - keys on import. Nettle uses more values than gcrypt does from RSA - decryption and it seemed that some values in our stored private keys - were messy (generated by very old gnutls). - -2010-05-24 Nikos Mavrogiannopoulos - - * doc/examples/ex-cert-select-pkcs11.c, lib/gnutls_x509.c, - lib/includes/gnutls/pkcs11.h, lib/pkcs11.c, lib/pkcs11_int.h, - lib/pkcs11_privkey.c, lib/pkcs11_write.c, src/cli.c: Simplified - internal API. The only question that remains now is how to handle - the gnutls_pkcs11_privkey_t. Currently it opens a session and - maintains a handle to the object. This will require locks to be - added on operations. Alternatively new sessions may be opened for - each operation performed. This is guarranteed by PKCS #11 to be - thread safe but will of course require to ask for the PIN again. - -2010-05-24 Nikos Mavrogiannopoulos - - * lib/pakchois/pakchois.c: Removed debugging print. - -2010-05-24 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/configure.ac, lib/m4/hooks.m4, - lib/pakchois/errors.c, lib/pakchois/pakchois.c, - lib/pakchois/pakchois.h, lib/pakchois/pakchois11.h: Added a modified - pakchois library (to open arbitrary pkcs11 modules). Current gnutls - works only with this one. - -2010-05-24 Nikos Mavrogiannopoulos - - * doc/cha-gtls-app.texi: Added missing file. - -2010-05-24 Nikos Mavrogiannopoulos - - * doc/TODO: Removed finished items. - -2010-05-24 Nikos Mavrogiannopoulos - - * lib/pkcs11_write.c: Noted that there things to be done. - -2010-05-24 Nikos Mavrogiannopoulos - - * doc/Makefile.am, doc/cha-cert-auth.texi: Added documentation on - abstract types. - -2010-05-23 Nikos Mavrogiannopoulos - - * lib/gcrypt/pk.c, lib/gnutls_pk.c, lib/gnutls_pk.h, - lib/opencdk/pubkey.c, lib/openpgp/privkey.c, lib/x509/privkey.c: - Common code for calculation of RSA exp1 and exp2. Also update the - openpgp code to calculate those values. - -2010-05-23 Nikos Mavrogiannopoulos - - * lib/auth_dh_common.c, lib/gnutls_dh_primes.c, lib/x509/privkey.c: - More fixes. - -2010-05-23 Nikos Mavrogiannopoulos - - * lib/auth_dh_common.c, lib/gcrypt/mpi.c, lib/gnutls_mpi.c: - Corrected nicely hidden bug that caused accesses to uninitialized - variables if the gcry_mpi_print() functions were pessimists and - returned more size than actually needed for the print. - -2010-05-23 Nikos Mavrogiannopoulos - - * lib/gcrypt/pk.c: Added some sanity checks. - -2010-05-23 Nikos Mavrogiannopoulos - - * NEWS, doc/cha-auth.texi, doc/cha-bib.texi, - doc/cha-cert-auth.texi, doc/cha-ciphersuites.texi, - doc/cha-copying.texi, doc/cha-functions.texi, - doc/cha-internals.texi, doc/cha-intro-tls.texi, - doc/cha-library.texi, doc/cha-preface.texi, doc/cha-programs.texi, - doc/cha-tls-app.texi, doc/gnutls.texi, - lib/includes/gnutls/pkcs11.h, lib/libgnutls.map, lib/pkcs11.c: - Documentation updates. Separated big gnutls.texi to chapter to allow - easier maintainance. - -2010-05-23 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/gcrypt/mpi.c, lib/gcrypt/pk.c, - lib/includes/gnutls/crypto.h, lib/includes/gnutls/pkcs11.h, - lib/includes/gnutls/x509.h, lib/libgnutls.map, lib/nettle/pk.c, - lib/pkcs11.c, lib/pkcs11_int.h, lib/pkcs11_privkey.c, - lib/pkcs11_write.c, lib/x509/privkey.c, lib/x509/x509_int.h, - src/certtool-common.h, src/certtool-gaa.c, src/certtool-gaa.h, - src/certtool.c, src/certtool.gaa, src/crypt-gaa.c, src/pkcs11.c: - Added support to copy certificates and private keys to tokens. New - functions: gnutls_pkcs11_copy_x509_crt() - gnutls_pkcs11_copy_x509_privkey() gnutls_pkcs11_delete_url() Certtool was updated to allow copying certificates and private keys - to tokens. Deleting an object has issues (segfault) but it seems to - be related with libopensc and its pkcs11 API. - -2010-05-22 Nikos Mavrogiannopoulos - - * lib/x509/verify.c: Added gnutls_pubkey_verify_hash(), - gnutls_pubkey_get_verify_algorithm(). - -2010-05-22 Nikos Mavrogiannopoulos - - * lib/pkcs11.c, src/pkcs11.c: Added gnutls_pubkey_import_pkcs11(), - gnutls_pubkey_import_rsa_raw(), gnutls_pubkey_import_dsa_raw(), - gnutls_pkcs11_obj_export(). - -2010-05-22 Nikos Mavrogiannopoulos - - * NEWS: Tried to document recent changes. - -2010-05-22 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c, lib/pkcs11.c, lib/pkcs11_int.h, - src/certtool-gaa.c, src/certtool.gaa, src/pkcs11.c: Added - gnutls_pubkey_t abstract type to handle public keys. It can - currently import/export public keys from existing certificate types - as well as from PKCS #11 URL. This allows generating a certificate - or certificate request from a given public key (currently one could - only generate them from a given private key). PKCS#11 API augmented to allow reading arbitrary objects instead of - just certificates. Certtool updated to list those objects. - -2010-05-22 Nikos Mavrogiannopoulos - - * lib/pkcs11.c: Added gnutls_pkcs11_token_get_flags() to distinguish - between hardware and soft tokens. - -2010-05-21 Nikos Mavrogiannopoulos - - * lib/Makefile.am: Added support for libnettle backend. This uses - gmp for big number operations. It is not currently completed. It - lacks RSA blinding as well as optimizations. - -2010-05-18 Nikos Mavrogiannopoulos - - * lib/x509/sign.c: Corrected bug in DSA signature generation. - -2010-05-18 Nikos Mavrogiannopoulos - - * lib/x509/x509_int.h: Added operations to sign CRLs, certificates - and requests with an abstract key and thus with a PKCS #11 key as - well. - -2010-05-18 Nikos Mavrogiannopoulos - - * lib/includes/gnutls/privkey.h: privkey.h -> abstract.h - -2010-05-18 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c: The gnutls-cli --x509cafile can now be a PKCS - #11 URL. It can read gnome-keyring's certificates and use them in - the trusted list. - -2010-05-16 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c: Corrections in openpgp private key usage. - -2010-05-16 Nikos Mavrogiannopoulos - - * tests/x509self.c: Updated self tests and examples to avoid using - deprecated functions such as - gnutls_certificate_server_set_retrieve_function and the sign - callback. - -2010-05-16 Nikos Mavrogiannopoulos - - * lib/includes/gnutls/privkey.h, lib/pkcs11_int.h: Added - documentation for most of the new functions. - -2010-05-16 Nikos Mavrogiannopoulos - - * lib/pkcs11.c: Documented that it was initially based on neon - pkcs11 and got ideas from pkcs11-helper library. - -2010-05-15 Nikos Mavrogiannopoulos - - * lib/pkcs11.c: Corrections to properly handle token removal and - insert. - -2010-05-15 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/gnutls_x509.c, lib/includes/gnutls/pkcs11.h, - lib/includes/gnutls/privkey.h, lib/pkcs11.c, lib/x509/sign.c: Added - gnutls_pkcs11_privkey_t and gnutls_privkey_t types. Those are an - abstract private key type that can be used to sign/encrypt any - private key of pkcs11,x509 or openpgp types. Added support for - PKCS11 in gnutls-cli/gnutls-serv. - -2010-05-10 Nikos Mavrogiannopoulos - - * src/certtool.c, src/pkcs11.c: Added several helper functions, to - allow printing of tokens. - -2010-05-10 Nikos Mavrogiannopoulos - - * lib/pkcs11.c, src/certtool-gaa.c, src/certtool.c, - src/certtool.gaa, src/pkcs11.c: Added ability to export certificates - from PKCS #11 tokens. Added ability to list trusted certificates, - or only certificates with a corresponding private key or just all. - -2010-05-09 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/configure.ac, lib/includes/gnutls/pkcs11.h, - lib/pkcs11.c, src/certtool-gaa.c, src/certtool-gaa.h, - src/certtool.gaa, src/pkcs11.c: Added initial PKCS #11 support. - Certtool can now print lists of certificates available in system. - -2010-05-22 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_pubkey.c, lib/includes/gnutls/abstract.h, - lib/libgnutls.map, lib/x509/common.h, lib/x509/verify.c, - lib/x509/x509.c, lib/x509/x509_int.h: Added - gnutls_pubkey_verify_hash(), gnutls_pubkey_get_verify_algorithm(). - -2010-05-22 Nikos Mavrogiannopoulos - - * NEWS, configure.ac, lib/gnutls_pubkey.c, - lib/includes/gnutls/abstract.h, lib/includes/gnutls/pkcs11.h, - lib/libgnutls.map, lib/pkcs11.c, lib/pkcs11_int.h, lib/x509/x509.c, - src/pkcs11.c: Added gnutls_pubkey_import_pkcs11(), - gnutls_pubkey_import_rsa_raw(), gnutls_pubkey_import_dsa_raw(), - gnutls_pkcs11_obj_export(). - -2010-05-22 Nikos Mavrogiannopoulos - - * .gitignore: Ignore files that should be ignored. - -2010-05-22 Nikos Mavrogiannopoulos - - * NEWS, src/certtool-gaa.c, src/certtool.gaa: Tried to document - recent changes. - -2010-05-22 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/gnutls_pubkey.c, lib/gnutls_x509.c, - lib/includes/gnutls/abstract.h, lib/includes/gnutls/pkcs11.h, - lib/libgnutls.map, lib/pkcs11.c, lib/pkcs11_int.h, - lib/pkcs11_privkey.c, lib/x509/common.c, lib/x509/common.h, - lib/x509/mpi.c, lib/x509/x509.c, lib/x509/x509_int.h, - src/certtool-common.h, src/certtool-gaa.c, src/certtool-gaa.h, - src/certtool.c, src/certtool.gaa, src/pkcs11.c: Added - gnutls_pubkey_t abstract type to handle public keys. It can - currently import/export public keys from existing certificate types - as well as from PKCS #11 URL. This allows generating a certificate - or certificate request from a given public key (currently one could - only generate them from a given private key). PKCS#11 API augmented to allow reading arbitrary objects instead of - just certificates. Certtool updated to list those objects. - -2010-05-22 Nikos Mavrogiannopoulos - - * lib/includes/gnutls/pkcs11.h, lib/pkcs11.c: Added - gnutls_pkcs11_token_get_flags() to distinguish between hardware and - soft tokens. - -2010-05-22 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/libgnutlsxx.map, lib/m4/hooks.m4: Export all - symbols from C++ library. This library doesn't contain any internal - symbols anyway and there is no reason to mess with the C++ ABI that - hasn't got the problems of C. - -2010-05-21 Nikos Mavrogiannopoulos - - * configure.ac, doc/examples/ex-serv-export.c, - doc/examples/ex-serv-psk.c, doc/examples/ex-serv1.c, - lib/Makefile.am, lib/auth_srp.c, lib/cipher-libgcrypt.c, - lib/configure.ac, lib/gcrypt/Makefile.am, lib/gcrypt/cipher.c, - lib/gcrypt/mac.c, lib/gcrypt/mpi.c, lib/gcrypt/pk.c, - lib/gcrypt/rnd.c, lib/gnutls_global.c, lib/gnutls_mpi.c, - lib/gnutls_srp.c, lib/m4/hooks.m4, lib/mac-libgcrypt.c, - lib/mpi-libgcrypt.c, lib/nettle/Makefile.am, lib/nettle/cipher.c, - lib/nettle/mac.c, lib/nettle/mpi.c, lib/nettle/pk.c, - lib/nettle/rnd.c, lib/pk-libgcrypt.c, lib/rnd-libgcrypt.c, - src/certtool.c, src/cli.c, src/serv.c, tests/chainverify.c: Added - support for libnettle backend. This uses gmp for big number - operations. It is not currently completed. It lacks RSA blinding as - well as optimizations. - -2010-05-18 Nikos Mavrogiannopoulos - - * doc/manpages/gnutls-cli.1, src/cli-gaa.c, src/cli.gaa, - src/serv-gaa.c, src/serv.gaa: Documented that the --file options in - gnutls-cli and gnutls-serv can accept a PKCS #11 URL. - -2010-05-18 Nikos Mavrogiannopoulos - - * lib/x509/sign.c: Corrected bug in DSA signature generation. - -2010-05-18 Nikos Mavrogiannopoulos - - * lib/gnutls_privkey.c, lib/includes/gnutls/abstract.h, - lib/libgnutls.map, lib/x509/crl_write.c, lib/x509/crq.c, - lib/x509/mpi.c, lib/x509/sign.c, lib/x509/x509_int.h, - lib/x509/x509_write.c: Added operations to sign CRLs, certificates - and requests with an abstract key and thus with a PKCS #11 key as - well. - -2010-05-18 Nikos Mavrogiannopoulos - - * lib/auth_cert.c, lib/auth_cert.h, lib/gnutls_privkey.c, - lib/gnutls_sig.h, lib/gnutls_x509.h, - lib/includes/gnutls/abstract.h, lib/includes/gnutls/privkey.h, - lib/openpgp/gnutls_openpgp.h: privkey.h -> abstract.h - -2010-05-18 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/configure.ac, lib/gnutls_x509.c, src/cli.c: - The gnutls-cli --x509cafile can now be a PKCS #11 URL. It can read - gnome-keyring's certificates and use them in the trusted list. - -2010-05-16 Nikos Mavrogiannopoulos - - * lib/pkcs11.c: Documented that gnutls_global_init calls - gnutls_pkcs11_init. - -2010-05-16 Nikos Mavrogiannopoulos - - * src/cli.c: Only send termination request to avoid stalling on - servers that do not reply. - -2010-05-16 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c, lib/gnutls_state.c, lib/gnutls_state.h: - Corrected issue on the %SSL3_RECORD_VERSION priority string. It now - works even when resuming a session. - -2010-05-16 Nikos Mavrogiannopoulos - - * doc/examples/Makefile.am, doc/examples/ex-cert-select-pkcs11.c, - doc/gnutls.texi: Added initial example. - -2010-05-16 Nikos Mavrogiannopoulos - - * lib/auth_cert.h, lib/gnutls_x509.c, lib/openpgp/gnutls_openpgp.c: - Corrections in openpgp private key usage. - -2010-05-16 Nikos Mavrogiannopoulos - - * doc/examples/ex-cert-select.c, tests/Makefile.am, - tests/pkcs12_s2k.c, tests/x509dn.c, tests/x509signself.c: Updated - self tests and examples to avoid using deprecated functions such as - gnutls_certificate_server_set_retrieve_function and the sign - callback. - -2010-05-16 Nikos Mavrogiannopoulos - - * lib/gnutlsxx.cpp, lib/includes/gnutls/gnutlsxx.h, src/tests.c: Use - the new callback function. - -2010-05-16 Nikos Mavrogiannopoulos - - * lib/gnutls_privkey.c, lib/includes/gnutls/pkcs11.h, - lib/includes/gnutls/privkey.h, lib/libgnutls.map, lib/pkcs11.c, - lib/pkcs11_int.h, lib/pkcs11_privkey.c, lib/x509/privkey.c: Added - documentation for most of the new functions. - -2010-05-16 Nikos Mavrogiannopoulos - - * lib/pkcs11.c: Documented that it was initially based on neon - pkcs11 and got ideas from pkcs11-helper library. - -2010-05-15 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c, lib/libgnutls.map, lib/pkcs11.c, - lib/pkcs11_int.h, lib/pkcs11_privkey.c, src/common.c: Corrections to - properly handle token removal and insert. - -2010-05-15 Nikos Mavrogiannopoulos - - * lib/includes/gnutls/compat.h, lib/includes/gnutls/gnutls.h.in: - Deprecated the sign callback. - -2010-05-15 Nikos Mavrogiannopoulos - - * doc/manpages/Makefile.am, lib/Makefile.am, lib/auth_cert.c, - lib/auth_cert.h, lib/auth_dhe.c, lib/auth_rsa.c, - lib/auth_rsa_export.c, lib/auth_srp_rsa.c, lib/gnutls_cert.c, - lib/gnutls_cert.h, lib/gnutls_global.c, lib/gnutls_int.h, - lib/gnutls_privkey.c, lib/gnutls_sig.c, lib/gnutls_sig.h, - lib/gnutls_state.c, lib/gnutls_str.c, lib/gnutls_x509.c, - lib/gnutls_x509.h, lib/includes/gnutls/compat.h, - lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/openpgp.h, - lib/includes/gnutls/pkcs11.h, lib/includes/gnutls/privkey.h, - lib/includes/gnutls/x509.h, lib/libgnutls.map, - lib/openpgp/gnutls_openpgp.c, lib/openpgp/gnutls_openpgp.h, - lib/openpgp/openpgp_int.h, lib/pkcs11.c, lib/pkcs11_int.h, - lib/pkcs11_privkey.c, lib/x509/privkey.c, lib/x509/sign.c, - lib/x509/sign.h, lib/x509/x509_int.h, src/cli.c, src/common.c, - src/common.h, src/pkcs11.c, src/serv.c: Added - gnutls_pkcs11_privkey_t and gnutls_privkey_t types. Those are an - abstract private key type that can be used to sign/encrypt any - private key of pkcs11,x509 or openpgp types. Added support for - PKCS11 in gnutls-cli/gnutls-serv. - -2010-05-15 Nikos Mavrogiannopoulos - - * .gitignore: ignore unrelated to gnutls files. - -2010-05-10 Nikos Mavrogiannopoulos - - * lib/includes/gnutls/pkcs11.h, lib/libgnutls.map, lib/pkcs11.c, - src/certtool-common.h, src/certtool-gaa.c, src/certtool-gaa.h, - src/certtool.c, src/certtool.gaa, src/pkcs11.c: Added several helper - functions, to allow printing of tokens. - -2010-05-10 Nikos Mavrogiannopoulos - - * lib/gnutls_errors.c, lib/gnutls_str.c, - lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/pkcs11.h, - lib/pkcs11.c, src/certtool-common.h, src/certtool-gaa.c, - src/certtool-gaa.h, src/certtool.c, src/certtool.gaa, src/pkcs11.c: - Added ability to export certificates from PKCS #11 tokens. Added - ability to list trusted certificates, or only certificates with a - corresponding private key or just all. - -2010-05-09 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/auth_srp.c, lib/configure.ac, - lib/gnutls.pc.in, lib/gnutls_constate.c, lib/gnutls_errors.c, - lib/gnutls_handshake.c, lib/gnutls_kx.c, lib/gnutls_psk.c, - lib/gnutls_str.c, lib/gnutls_str.h, lib/includes/Makefile.am, - lib/includes/gnutls/pkcs11.h, lib/libgnutls.map, - lib/openpgp/gnutls_openpgp.c, lib/pkcs11.c, lib/x509/common.c, - lib/x509/dn.c, src/Makefile.am, src/certtool-common.h, - src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, - src/certtool.gaa, src/pkcs11.c: Added initial PKCS #11 support. - Certtool can now print lists of certificates available in system. - -2010-03-07 Nikos Mavrogiannopoulos - - * lib/x509/verify.c: Optimized the check_if_same(). - -2010-02-24 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c, lib/x509/common.c, lib/x509/common.h: - Added a forgoten by god OID for RSA. Warn using the actual OID on - unknown public key algorithms. - -2009-12-09 Jonathan Bastien-Filiatrault - - * lib/ext_session_ticket.c: Adapt session ticket support to mbuffer - API. - -2009-08-16 Jonathan Bastien-Filiatrault - - * lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_kx.c, - lib/gnutls_mbuffers.c, lib/gnutls_mbuffers.h: Use mbuffers for - handshake synthesis. - -2009-08-15 Jonathan Bastien-Filiatrault - - * lib/gnutls_buffers.c, lib/gnutls_buffers.h, - lib/gnutls_handshake.c: Make _gnutls_handshake_io_send_int accept a - mbuffer_st. - -2009-08-15 Jonathan Bastien-Filiatrault - - * lib/gnutls_buffers.c, lib/gnutls_buffers.h, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_state.c: - Simplify handshake send buffer logic. - -2009-08-15 Jonathan Bastien-Filiatrault - - * lib/gnutls_buffers.c: Fix interrupted write braino. - -2009-08-15 Jonathan Bastien-Filiatrault - - * lib/gnutls_mbuffers.c: Avoid pointer warning. - -2009-08-15 Jonathan Bastien-Filiatrault - - * lib/gnutls_buffers.c, lib/gnutls_mbuffers.c, - lib/gnutls_mbuffers.h: Remove now useless - _gnutls_mbuffer_enqueue{,copy} functions. - -2009-08-15 Jonathan Bastien-Filiatrault - - * lib/gnutls_buffers.c, lib/gnutls_buffers.h, - lib/gnutls_mbuffers.c, lib/gnutls_record.c: Allocate data buffer - with mbuffer_st structure as suggested by Nikos. - -2009-08-15 Jonathan Bastien-Filiatrault - - * lib/gnutls_mbuffers.c, lib/gnutls_mbuffers.h: Prepare for mbuffer - allocation by the caller. - -2009-08-15 Jonathan Bastien-Filiatrault - - * lib/gnutls_buffers.c: GNUify some missed GNUification. - -2009-08-15 Jonathan Bastien-Filiatrault - - * lib/gnutls_buffers.c: Harmonize read and write function names. - -2009-08-15 Jonathan Bastien-Filiatrault - - * lib/gnutls_buffers.c: Now that LEVEL and LEVEL_EQ are fixed, use - less lines. - -2009-08-15 Jonathan Bastien-Filiatrault - - * lib/gnutls_errors.h: Make LEVEL and LEVEL_EQ macros safer. Once again, I got bit by this pretty hard. - -2009-08-09 Jonathan Bastien-Filiatrault - - * lib/gnutls_record.c: Use a datum for ciphered data in - _gnutls_send_int. - -2009-08-09 Jonathan Bastien-Filiatrault - - * lib/gnutls_buffers.h: Remove the prototype for the non-existant - function _gnutls_io_write_buffered2. - -2009-08-09 Jonathan Bastien-Filiatrault - - * lib/gnutls_int.h, lib/gnutls_record.c: Cleanup of the remaining - internals.record_send_buffer mess. - -2009-08-09 Jonathan Bastien-Filiatrault - - * lib/gnutls_buffers.c: Remove yet another !@#$% instance of - redundant hexadecimal dumping. - -2009-08-09 Jonathan Bastien-Filiatrault - - * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_record.c: - Modify slightly the contract of _gnutls_io_write_buffered as - suggested by Nikos Mavrogiannopoulos. - -2009-08-09 Jonathan Bastien-Filiatrault - - * lib/gnutls_buffers.c, lib/gnutls_mbuffers.c, - lib/gnutls_mbuffers.h: Pass datums to mbuffers by address instead of - by value. - -2009-08-08 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c, lib/gnutls_record.c: Corrected case where - handshake data were received during a session. It now stores them - for future use by a gnutls_handshake(). Reported by Peter - Hendrickson . - -2009-08-06 Jonathan Bastien-Filiatrault - - * lib/gnutls_buffers.c: Simplify _gnutls_io_write_buffered and - _gnutls_io_write_flush with mbuffers. - -2009-08-06 Jonathan Bastien-Filiatrault - - * lib/gnutls_int.h, lib/gnutls_state.c: Change type of - internals.record_send_buffer to a mbuffer. - -2009-08-06 Jonathan Bastien-Filiatrault - - * lib/gnutls_buffers.c: Extract a simple_write function from - _gnutls_io_write_buffered. - -2009-08-06 Jonathan Bastien-Filiatrault - - * lib/gnutls_buffers.c: Add dump_bytes function. - -2009-08-06 Jonathan Bastien-Filiatrault - - * lib/Makefile.am, lib/gnutls_int.h, lib/gnutls_mbuffers.c, - lib/gnutls_mbuffers.h: Add gnutls_mbuffers.{c,h} with some basic - mbuffer operations. - -2009-08-01 Jonathan Bastien-Filiatrault - - * lib/gnutls_algorithms.c: Do not rely on version ordering; use - switch..case instead. - -2009-08-01 Jonathan Bastien-Filiatrault - - * lib/auth_cert.c: Remove hardcoded version checks in auth_cert.c. - -2009-08-01 Jonathan Bastien-Filiatrault - - * lib/gnutls_state.c: Remove hardcoded version check in - gnutls_state.c. - -2009-08-01 Jonathan Bastien-Filiatrault - - * lib/gnutls_cipher.c: Remove hardcoded version checks in - gnutls_cipher.c. - -2009-08-01 Jonathan Bastien-Filiatrault - - * lib/gnutls_sig.c: Remove hardcoded version checks in gnutls_sig.c. - -2009-08-01 Jonathan Bastien-Filiatrault - - * lib/gnutls_handshake.c: Remove hardcoded version checks in - gnutls_handshake.c. - -2009-08-01 Jonathan Bastien-Filiatrault - - * lib/gnutls_algorithms.c: Add version check function for selectable - signature/hash certificate algorithms. - -2009-08-01 Jonathan Bastien-Filiatrault - - * lib/gnutls_algorithms.c: Add version check functions for - non-minimal padding. - -2009-08-01 Jonathan Bastien-Filiatrault - - * lib/gnutls_algorithms.c, lib/gnutls_algorithms.h: Add version - check function for explicit IV. - -2009-08-01 Jonathan Bastien-Filiatrault - - * lib/gnutls_algorithms.h: Add version check functions for - selectable PRF and extension handling. - -2010-06-01 Nikos Mavrogiannopoulos - - * doc/announce.txt, doc/gnutls.texi, doc/manpages/gnutls-cli.1, - doc/manpages/gnutls-serv.1, lib/ext_safe_renegotiation.c, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_priority.c, - lib/gnutls_state.c, tests/safe-renegotiation/srn1.c, - tests/safe-renegotiation/srn5.c, tests/safe-renegotiation/testsrn: - Splitted safe renegotiation capabilities to %SAFE_RENEGOTIATION: will enable safe renegotiation. This is the - most secure and recommended option for clients. However this will - prevent from connecting to legacy servers. %PARTIAL_RENEGOTIATION: Prevents renegotiation with clients and - servers not supporting the safe renegotiation extension. (this is - the default) %UNSAFE_RENEGOTIATION: Permits (re-)handshakes even unsafe ones. - -2010-05-31 Simon Josefsson - - * doc/gnutls.texi: Minor fix. - -2010-05-31 Simon Josefsson - - * GNUmakefile, maint.mk: Update gnulib files. - -2010-05-29 Nikos Mavrogiannopoulos - - * doc/gnutls.texi: Documented the defaults. - -2010-05-28 Nikos Mavrogiannopoulos - - * doc/gnutls.texi: Added INITIAL_SAFE_RENEGOTIATION and other small - updates. - -2010-05-28 Simon Josefsson - - * doc/gnutls.texi: Update. - -2010-05-28 Simon Josefsson - - * tests/safe-renegotiation/README: Add. - -2010-05-28 Simon Josefsson - - * .x-sc_prohibit_strings_without_use, build-aux/c++defs.h, - build-aux/gendocs.sh, build-aux/gnupload, build-aux/vc-list-files, - configure.ac, doc/gendocs_template, gl/Makefile.am, gl/error.c, - gl/m4/asm-underscore.m4, gl/m4/gnulib-cache.m4, - gl/m4/gnulib-common.m4, gl/m4/gnulib-comp.m4, gl/m4/netdb_h.m4, - gl/m4/stdio_h.m4, gl/m4/unistd_h.m4, gl/m4/valgrind-tests.m4, - gl/netdb.in.h, gl/stdio-write.c, gl/stdio.in.h, - gl/tests/Makefile.am, gl/tests/init.sh, gl/tests/test-lseek.sh, - gl/tests/test-vc-list-files-cvs.sh, - gl/tests/test-vc-list-files-git.sh, gl/tests/test-verify.c, - gl/tests/test-verify.sh, gl/tests/verify.h, gl/unistd.in.h, - gl/vasnprintf.c, gl/wchar.in.h, gtk-doc.make, - lib/build-aux/c++defs.h, lib/gl/Makefile.am, - lib/gl/m4/asm-underscore.m4, lib/gl/m4/fcntl-o.m4, - lib/gl/m4/gettext.m4, lib/gl/m4/gnulib-common.m4, - lib/gl/m4/gnulib-comp.m4, lib/gl/m4/iconv.m4, lib/gl/m4/intl.m4, - lib/gl/m4/netdb_h.m4, lib/gl/m4/po.m4, lib/gl/m4/stdio_h.m4, - lib/gl/m4/unistd_h.m4, lib/gl/netdb.in.h, lib/gl/stdio-write.c, - lib/gl/stdio.in.h, lib/gl/tests/Makefile.am, lib/gl/tests/init.sh, - lib/gl/tests/test-vasprintf.c, lib/gl/tests/test-verify.c, - lib/gl/tests/test-verify.sh, lib/gl/tests/verify.h, - lib/gl/unistd.in.h, lib/gl/vasnprintf.c, lib/gl/wchar.in.h, - libextra/gl/m4/gnulib-common.m4, m4/valgrind.m4, maint.mk: Update - gnulib files, use valgrind-tests module, fix syntax-check problems. - -2010-05-28 Simon Josefsson - - * doc/announce.txt: Doc fix. - -2010-05-25 Nikos Mavrogiannopoulos - - * lib/x509/common.h, lib/x509/privkey.c, lib/x509/sign.c, - lib/x509/verify.c: Use correct hashing algorithms for DSA with q - over 160 bits. - -2010-05-24 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c: Better checks in loops. - -2010-05-22 Simon Josefsson - - * lib/x509/crl.c: Doc fix. - -2010-05-22 Simon Josefsson - - * NEWS: Add. - -2010-05-22 Simon Josefsson - - * NEWS: Add. - -2010-05-22 Simon Josefsson - - * doc/reference/Makefile.am, gtk-doc.make, m4/gtk-doc.m4: Support - GTK-DOC PDF file. - -2010-05-22 Simon Josefsson - - * cfg.mk: Also build PDF manual. - -2010-05-22 Simon Josefsson - - * doc/gnutls.texi: Fix node/section usage. - -2010-05-22 Simon Josefsson - - * tests/safe-renegotiation/srn5.c: Fix self test. - -2010-05-22 Simon Josefsson - - * lib/gnutls_handshake.c: Readd lost fix from Nikos. - -2010-05-22 Simon Josefsson - - * lib/ext_safe_renegotiation.c: Readd lost fix from Nikos. - -2010-05-22 Simon Josefsson - - * NEWS: Add. - -2010-05-22 Simon Josefsson - - * lib/gnutls_errors.c, libextra/includes/gnutls/openssl.h, - libextra/openssl_compat.c: Doc fixes. - -2010-05-22 Simon Josefsson - - * lib/x509/x509.c: Doc fix. - -2010-05-22 Simon Josefsson - - * Makefile.am, NEWS, README, cfg.mk, configure.ac, doc/Makefile.am, - doc/credentials/Makefile.am, doc/cyclo/Makefile.am, doc/errcodes.c, - doc/examples/Makefile.am, doc/examples/ex-client-srp.c, - doc/examples/ex-serv-anon.c, doc/examples/ex-serv-pgp.c, - doc/examples/ex-serv-psk.c, doc/examples/ex-serv-srp.c, - doc/examples/ex-serv1.c, doc/gnutls.texi, doc/manpages/Makefile.am, - doc/printlist.c, guile/Makefile.am, guile/modules/Makefile.am, - guile/modules/gnutls.scm, guile/modules/gnutls/build/enums.scm, - guile/modules/gnutls/build/priorities.scm, - guile/modules/gnutls/build/smobs.scm, - guile/modules/gnutls/build/utils.scm, - guile/modules/gnutls/extra.scm, guile/src/Makefile.am, - guile/src/core.c, guile/src/errors.c, guile/src/errors.h, - guile/src/extra.c, guile/src/make-enum-header.scm, - guile/src/make-enum-map.scm, guile/src/make-session-priorities.scm, - guile/src/make-smob-header.scm, guile/src/make-smob-types.scm, - guile/src/utils.c, guile/src/utils.h, guile/tests/Makefile.am, - guile/tests/anonymous-auth.scm, guile/tests/errors.scm, - guile/tests/openpgp-auth.scm, guile/tests/openpgp-keyring.scm, - guile/tests/openpgp-keys.scm, guile/tests/pkcs-import-export.scm, - guile/tests/session-record-port.scm, guile/tests/srp-base64.scm, - guile/tests/x509-auth.scm, guile/tests/x509-certificates.scm, - lib/Makefile.am, lib/auth_anon.c, lib/auth_anon.h, lib/auth_cert.c, - lib/auth_cert.h, lib/auth_dh_common.c, lib/auth_dh_common.h, - lib/auth_dhe.c, lib/auth_dhe_psk.c, lib/auth_psk.c, lib/auth_psk.h, - lib/auth_psk_passwd.c, lib/auth_psk_passwd.h, lib/auth_rsa.c, - lib/auth_rsa_export.c, lib/auth_srp.c, lib/auth_srp.h, - lib/auth_srp_passwd.c, lib/auth_srp_passwd.h, lib/auth_srp_rsa.c, - lib/auth_srp_sb64.c, lib/cipher-libgcrypt.c, lib/configure.ac, - lib/crypto-api.c, lib/crypto.c, lib/crypto.h, lib/cryptodev.c, - lib/debug.c, lib/debug.h, lib/ext_cert_type.c, lib/ext_cert_type.h, - lib/ext_max_record.c, lib/ext_max_record.h, lib/ext_oprfi.c, - lib/ext_oprfi.h, lib/ext_safe_renegotiation.c, - lib/ext_safe_renegotiation.h, lib/ext_server_name.c, - lib/ext_server_name.h, lib/ext_session_ticket.c, - lib/ext_session_ticket.h, lib/ext_signature.c, lib/ext_signature.h, - lib/ext_srp.c, lib/ext_srp.h, lib/gnutls_alert.c, - lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, - lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_auth.h, - lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cert.c, - lib/gnutls_cert.h, lib/gnutls_cipher.c, lib/gnutls_cipher.h, - lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, - lib/gnutls_compress.c, lib/gnutls_compress.h, - lib/gnutls_constate.c, lib/gnutls_constate.h, lib/gnutls_datum.c, - lib/gnutls_datum.h, lib/gnutls_db.c, lib/gnutls_db.h, - lib/gnutls_dh.c, lib/gnutls_dh.h, lib/gnutls_dh_primes.c, - lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_extensions.c, - lib/gnutls_extensions.h, lib/gnutls_global.c, lib/gnutls_global.h, - lib/gnutls_handshake.c, lib/gnutls_handshake.h, - lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_helper.c, - lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_kx.h, - lib/gnutls_mem.c, lib/gnutls_mem.h, lib/gnutls_mpi.c, - lib/gnutls_mpi.h, lib/gnutls_num.c, lib/gnutls_num.h, - lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_priority.c, - lib/gnutls_psk.c, lib/gnutls_psk_netconf.c, lib/gnutls_record.c, - lib/gnutls_record.h, lib/gnutls_rsa_export.c, - lib/gnutls_rsa_export.h, lib/gnutls_session.c, - lib/gnutls_session_pack.c, lib/gnutls_session_pack.h, - lib/gnutls_sig.c, lib/gnutls_sig.h, lib/gnutls_srp.c, - lib/gnutls_srp.h, lib/gnutls_state.c, lib/gnutls_state.h, - lib/gnutls_str.c, lib/gnutls_str.h, lib/gnutls_supplemental.c, - lib/gnutls_supplemental.h, lib/gnutls_ui.c, lib/gnutls_v2_compat.c, - lib/gnutls_v2_compat.h, lib/gnutls_x509.c, lib/gnutls_x509.h, - lib/includes/Makefile.am, lib/includes/gnutls/crypto.h, - lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/openpgp.h, - lib/includes/gnutls/pkcs12.h, lib/includes/gnutls/x509.h, - lib/libgnutls.map, lib/libgnutlsxx.map, lib/m4/hooks.m4, - lib/mac-libgcrypt.c, lib/minitasn1/Makefile.am, - lib/mpi-libgcrypt.c, lib/opencdk/Makefile.am, - lib/openpgp/Makefile.am, lib/openpgp/compat.c, - lib/openpgp/extras.c, lib/openpgp/gnutls_openpgp.c, - lib/openpgp/output.c, lib/openpgp/pgp.c, lib/openpgp/pgpverify.c, - lib/openpgp/privkey.c, lib/pk-libgcrypt.c, lib/random.c, - lib/random.h, lib/rnd-libgcrypt.c, lib/x509/Makefile.am, - lib/x509/common.c, lib/x509/common.h, lib/x509/crl.c, - lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/dn.c, - lib/x509/extensions.c, lib/x509/mpi.c, lib/x509/output.c, - lib/x509/pkcs12.c, lib/x509/pkcs12_bag.c, lib/x509/pkcs12_encr.c, - lib/x509/pkcs7.c, lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, - lib/x509/rfc2818_hostname.c, lib/x509/sign.c, lib/x509/verify.c, - lib/x509/x509.c, lib/x509/x509_int.h, lib/x509/x509_write.c, - lib/x509_b64.c, lib/x509_b64.h, libextra/Makefile.am, - libextra/configure.ac, libextra/ext_inner_application.c, - libextra/ext_inner_application.h, libextra/fipsmd5.c, - libextra/gl/Makefile.am, libextra/gnutls_extra.c, - libextra/gnutls_ia.c, libextra/gnutls_openssl.c, - libextra/includes/Makefile.am, libextra/includes/gnutls/extra.h, - libextra/includes/gnutls/openssl.h, libextra/libgnutls-extra.map, - libextra/m4/hooks.m4, libextra/openssl_compat.c, - libextra/openssl_compat.h, src/Makefile.am, src/benchmark.c, - src/certtool-cfg.c, src/certtool.c, src/cli.c, src/common.c, - src/crypt.c, src/list.h, src/prime.c, src/psk.c, src/serv.c, - src/tests.c, src/tls_test.c, tests/Makefile.am, tests/anonself.c, - tests/certder.c, tests/certificate_set_x509_crl.c, - tests/chainverify.c, tests/crq_apis.c, tests/crq_key_id.c, - tests/crypto_rng.c, tests/cve-2008-4989.c, tests/cve-2009-1415.c, - tests/cve-2009-1416.c, tests/dhepskself.c, tests/dn.c, tests/dn2.c, - tests/finished.c, tests/gc.c, tests/hostname-check.c, - tests/init_roundtrip.c, tests/key-id/Makefile.am, - tests/key-id/key-id, tests/mini-eagain.c, - tests/mini-x509-rehandshake.c, tests/mini-x509.c, tests/mini.c, - tests/moredn.c, tests/mpi.c, tests/netconf-psk.c, - tests/nist-pkits/pkits, tests/nist-pkits/pkits_crl, - tests/nist-pkits/pkits_crt, tests/nist-pkits/pkits_pkcs12, - tests/nist-pkits/pkits_smime, tests/nul-in-x509-names.c, - tests/openpgp-certs/Makefile.am, tests/openpgp-certs/testcerts, - tests/openpgp-certs/testselfsigs, tests/openpgp-keyring.c, - tests/openpgpself.c, tests/openssl.c, tests/oprfi.c, - tests/parse_ca.c, tests/pathlen/Makefile.am, tests/pathlen/pathlen, - tests/pgps2kgnu.c, tests/pkcs1-padding/Makefile.am, - tests/pkcs1-padding/pkcs1-pad, tests/pkcs12-decode/Makefile.am, - tests/pkcs12-decode/pkcs12, tests/pkcs12_encode.c, - tests/pkcs12_s2k.c, tests/pkcs12_s2k_pem.c, - tests/pkcs8-decode/Makefile.am, tests/pkcs8-decode/pkcs8, - tests/pskself.c, tests/resume.c, tests/rfc2253-escape-test, - tests/rsa-md5-collision/Makefile.am, - tests/rsa-md5-collision/rsa-md5-collision, - tests/safe-renegotiation/Makefile.am, - tests/safe-renegotiation/srn0.c, tests/safe-renegotiation/srn1.c, - tests/safe-renegotiation/srn2.c, tests/safe-renegotiation/srn3.c, - tests/safe-renegotiation/srn4.c, tests/safe-renegotiation/srn5.c, - tests/safe-renegotiation/testsrn, tests/set_pkcs12_cred.c, - tests/setcredcrash.c, tests/sha2/Makefile.am, tests/sha2/sha2, - tests/simple.c, tests/tlsia.c, tests/userid/Makefile.am, - tests/userid/userid, tests/utils.c, tests/utils.h, - tests/x509_altname.c, tests/x509dn.c, tests/x509paths/chain, - tests/x509self.c, tests/x509sign-verify.c, tests/x509signself.c: - Change GNUTLS into GnuTLS. - -2010-05-22 Simon Josefsson - - * AUTHORS, ChangeLog.1, NEWS, README, README-alpha, THANKS, - doc/gnutls.texi, doc/manpages/gnutls-cli-debug.1, - doc/manpages/gnutls-cli.1, doc/manpages/gnutls-serv.1, - doc/manpages/srptool.1, doc/reference/gnutls-docs.sgml, - lib/ext_safe_renegotiation.c, lib/gnutls_handshake.c, - src/cli-gaa.c, src/cli.gaa, src/serv-gaa.c, src/serv.gaa, - src/tls_test-gaa.c, src/tls_test.gaa: Change GNU TLS into GnuTLS. - -2010-05-22 Nikos Mavrogiannopoulos - - * lib/ext_safe_renegotiation.c, lib/gnutls_handshake.c: Ignore - parsing of ciphersuite or extensions when safe renegotiation is - disabled. - -2010-05-22 Simon Josefsson - - * tests/safe-renegotiation/Makefile.am, - tests/safe-renegotiation/srn5.c: Add test of self renegotiation - APIs. - -2010-05-22 Simon Josefsson - - * tests/safe-renegotiation/Makefile.am, - tests/safe-renegotiation/README, tests/safe-renegotiation/srn4.c: - Add more rengotiation self tests. - -2010-05-22 Simon Josefsson - - * tests/safe-renegotiation/Makefile.am, - tests/safe-renegotiation/README, tests/safe-renegotiation/srn0.c: - Add more safe renegotiation self test. - -2010-05-21 Simon Josefsson - - * NEWS, doc/announce.txt, doc/gnutls.texi, - doc/manpages/Makefile.am, lib/ext_safe_renegotiation.c, - lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, - tests/safe-renegotiation/srn2.c: Remove - gnutls_safe_negotiation_set_initial and - gnutls_safe_renegotiation_set. - -2010-05-18 Nikos Mavrogiannopoulos - - * lib/gnutls_priority.c: Documented behavioral change. - -2010-05-18 Nikos Mavrogiannopoulos - - * lib/gnutls_int.h, lib/gnutls_priority.c: Because we want to - differentiate the behavior of server and client with regards to safe - renegotiation. If a server didn't have either SAFE_RENEGOTIATION or - UNSAFE_RENEGOTIATION set the safe renegotiation will be the default. - This (as well as the safe_renegotiation_set flag) has to be removed - once safe renegotiation is default in both server and client side. - -2010-05-18 Nikos Mavrogiannopoulos - - * lib/gnutls_state.c: Emulate old gnutls behavior regarding safe - renegotiation if the priority_* functions are not called. - -2010-05-11 Nikos Mavrogiannopoulos - - * lib/includes/gnutls/x509.h: Corrected typo. Reported by Clint - Adams. - -2010-05-03 Simon Josefsson - - * tests/safe-renegotiation/Makefile.am, - tests/safe-renegotiation/srn1.c, tests/safe-renegotiation/srn3.c: - tests: Add srn3 to test inverse of what srn1 is testing. - -2010-05-03 Simon Josefsson - - * tests/safe-renegotiation/Makefile.am, - tests/safe-renegotiation/srn2.c: tests: Add another safe - renegotiation self tests. - -2010-05-03 Simon Josefsson - - * tests/safe-renegotiation/srn1.c: Also test - gnutls_safe_renegotiation_status API. - -2010-05-03 Simon Josefsson - - * tests/safe-renegotiation/Makefile.am, - tests/safe-renegotiation/srn1.c: tests: Add first self-test of safe - renegotiation extension. - -2010-05-03 Simon Josefsson - - * tests/Makefile.am, tests/mini-x509-rehandshake.c: tests: Add small - X.509 rehandshake test. - -2010-05-03 Simon Josefsson - - * tests/mini-x509.c: Protect against infloops. - -2010-05-03 Simon Josefsson - - * tests/Makefile.am, tests/mini-x509.c: tests: Add mini-x509 - self-test. - -2010-04-30 Simon Josefsson - - * doc/gnutls.texi: Improve text, based on suggestions from Tomas - Hoger . - -2010-04-29 Simon Josefsson - - * lib/gnutls_handshake.c: Fix typo. - -2010-04-29 Simon Josefsson - - * lib/gnutls_handshake.c: Improve renegotiation debug messages. - -2010-04-29 Simon Josefsson - - * doc/announce.txt: Add. - -2010-04-29 Simon Josefsson - - * .gitignore: Add. - -2010-04-29 Simon Josefsson - - * doc/gnutls.texi: Add section on safe renegotiation. - -2010-04-29 Simon Josefsson - - * lib/gnutls_record.c: Remove debug code. - -2010-04-25 Simon Josefsson - - * doc/gnutls.texi: Mention shared library map file and GTK-DOC - guidelines. - -2010-04-22 Simon Josefsson - - * doc/announce.txt: Update URL. - -2010-04-22 Simon Josefsson - - * AUTHORS: Update my OpenPGP key. - -2010-04-22 Simon Josefsson - - * doc/announce.txt: Update my key. - -2010-04-22 Simon Josefsson - - * doc/announcement-template.txt: Remove. - -2010-04-22 Simon Josefsson - - * doc/ANNOUNCE, doc/announce.txt: Prepare 2.10.0 release notes. - -2010-04-22 Simon Josefsson - - * NEWS: Add 2.8.x NEWS entries. - -2010-04-22 Simon Josefsson - - * libextra/configure.ac: Also bump libgnutls-extra version. - -2010-04-22 Simon Josefsson - - * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4: Bump - versions. - -2010-04-22 Simon Josefsson - - * build-aux/gendocs.sh: Chmod +x. - -2010-04-22 Simon Josefsson - - * ChangeLog: Generated. - -2010-04-22 Simon Josefsson - - * NEWS: Version 2.9.10. - -2010-04-21 Simon Josefsson - - * NEWS, lib/minitasn1/Makefile.am, lib/minitasn1/coding.c, - lib/minitasn1/decoding.c, lib/minitasn1/element.h, - lib/minitasn1/gstr.h, lib/minitasn1/libtasn1.h, - lib/minitasn1/parser_aux.c, lib/minitasn1/parser_aux.h, - lib/minitasn1/structure.h, lib/minitasn1/version.c: Upgrade to - libtasn1 version 2.6. - -2010-04-21 Simon Josefsson - - * gl/Makefile.am, gl/m4/gnulib-comp.m4, gl/m4/ioctl.m4, - gl/m4/netdb_h.m4, gl/stdbool.in.h, gl/tests/test-lseek.sh, - gl/tests/test-select-in.sh, gl/tests/test-stdbool.c, - gl/tests/test-stdint.c, lib/gl/Makefile.am, lib/gl/m4/netdb_h.m4, - lib/gl/m4/visibility.m4, lib/gl/stdbool.in.h, - lib/gl/tests/test-stdbool.c, lib/gl/tests/test-stdint.c, - lib/gl/tests/test-vasprintf.c, maint.mk: Update gnulib files. - -2010-04-21 Simon Josefsson - - * configure.ac: Structure fork check together. - -2010-04-15 Simon Josefsson - - * lib/gnutls_priority.c: Fix compiler warning. - -2010-04-15 Simon Josefsson - - * gl/override/top/maint.mk.diff, libextra/gl/hmac-md5.c, - libextra/gl/md5.c, maint.mk: Update gnulib files. - -2010-04-15 Simon Josefsson - - * lib/crypto-api.c, lib/gnutls_priority.c: Indent code. - -2010-04-14 Nikos Mavrogiannopoulos - - * lib/crypto-api.c, lib/includes/gnutls/crypto.h: Use size_t instead - of int for input variables that represent sizes. - -2010-04-02 Nikos Mavrogiannopoulos - - * lib/gnutls_priority.c: Free the priority structure on error. - Reported by Paul Aurich. - -2010-04-02 Nikos Mavrogiannopoulos - - * lib/gnutls_priority.c: The string is colon separated. Reported by - Paul Aurich. - -2010-04-14 Simon Josefsson - - * lib/includes/gnutls/gnutls.h.in: Fix indent bug. - -2010-04-14 Simon Josefsson - - * cfg.mk, doc/examples/examples.h, guile/src/errors.h, - guile/src/utils.h, lib/auth_cert.h, lib/auth_dh_common.h, - lib/crypto.h, lib/ext_oprfi.h, lib/ext_safe_renegotiation.h, - lib/ext_session_ticket.h, lib/ext_signature.h, - lib/gnutls_algorithms.h, lib/gnutls_cipher_int.h, - lib/gnutls_compress.h, lib/gnutls_cryptodev.h, lib/gnutls_errors.h, - lib/gnutls_extensions.h, lib/gnutls_hash_int.h, lib/gnutls_int.h, - lib/gnutls_mpi.h, lib/gnutls_pk.h, lib/gnutls_sig.h, - lib/gnutls_srp.h, lib/gnutls_state.h, lib/gnutls_str.h, - lib/gnutls_supplemental.h, lib/includes/gnutls/crypto.h, - lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/openpgp.h, - lib/includes/gnutls/pkcs12.h, lib/includes/gnutls/x509.h, - lib/opencdk/context.h, lib/opencdk/filters.h, lib/opencdk/keydb.h, - lib/opencdk/main.h, lib/opencdk/opencdk.h, lib/opencdk/packet.h, - lib/opencdk/stream.h, lib/opencdk/types.h, - lib/openpgp/gnutls_openpgp.h, lib/openpgp/openpgp_int.h, - lib/x509/pbkdf2-sha1.h, lib/x509/x509_int.h, - libextra/includes/gnutls/extra.h, - libextra/includes/gnutls/openssl.h, src/certtool-cfg.h, - src/certtool-common.h, src/common.h: More indentation. - -2010-04-14 Simon Josefsson - - * NEWS: Add. - -2010-04-14 Simon Josefsson - - * NEWS: Add. - -2010-04-14 Simon Josefsson - - * NEWS: Add. - -2010-04-14 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2010-04-14 Simon Josefsson - - * doc/examples/ex-client-tlsia.c, doc/examples/ex-verify.c, - doc/examples/ex-x509-info.c, lib/auth_cert.c, lib/auth_rsa.c, - lib/ext_cert_type.c, lib/ext_max_record.c, lib/ext_oprfi.c, - lib/ext_safe_renegotiation.c, lib/ext_server_name.c, - lib/ext_session_ticket.c, lib/ext_signature.c, - lib/gnutls_algorithms.c, lib/gnutls_auth.c, lib/gnutls_buffers.c, - lib/gnutls_cert.c, lib/gnutls_cipher.c, lib/gnutls_compress.c, - lib/gnutls_constate.c, lib/gnutls_extensions.c, - lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_kx.c, - lib/gnutls_priority.c, lib/gnutls_record.c, - lib/gnutls_session_pack.c, lib/gnutls_sig.c, lib/gnutls_state.c, - lib/gnutls_v2_compat.c, lib/gnutls_x509.c, - lib/minitasn1/decoding.c, lib/opencdk/read-packet.c, - lib/opencdk/sig-check.c, lib/x509/pkcs12.c, lib/x509/verify.c, - libextra/gl/hmac-md5.c, libextra/gl/md5.c, src/benchmark.c, - src/certtool.c, src/cli.c, src/serv.c, src/tests.c, src/tls_test.c, - tests/anonself.c, tests/certder.c, tests/chainverify.c, - tests/crq_apis.c, tests/crq_key_id.c, tests/cve-2008-4989.c, - tests/dhepskself.c, tests/dn.c, tests/dn2.c, tests/finished.c, - tests/gc.c, tests/hostname-check.c, tests/init_roundtrip.c, - tests/mini-eagain.c, tests/mini.c, tests/netconf-psk.c, - tests/nul-in-x509-names.c, tests/openpgp-keyring.c, - tests/openpgpself.c, tests/parse_ca.c, tests/pkcs12_encode.c, - tests/pkcs12_s2k.c, tests/pkcs12_s2k_pem.c, tests/pskself.c, - tests/resume.c, tests/set_pkcs12_cred.c, tests/simple.c, - tests/tlsia.c, tests/utils.c, tests/x509_altname.c, tests/x509dn.c, - tests/x509self.c, tests/x509sign-verify.c, tests/x509signself.c: - Indent code. - -2010-04-14 Simon Josefsson - - * NEWS, lib/crypto-api.c, lib/ext_safe_renegotiation.c, - lib/gnutls_algorithms.c, lib/gnutls_cert.c, lib/libgnutls.map, - lib/x509/x509.c: Export new ABIs. Doc fixes for new APIs. - -2010-04-14 Simon Josefsson - - * tests/safe-renegotiation/Makefile.am: Disable self-test - temporarily until we make it work cross-platform. - -2010-04-13 Simon Josefsson - - * NEWS, lib/ext_safe_renegotiation.c, lib/gnutls_algorithms.c, - lib/includes/gnutls/gnutls.h.in: Doc fixes. - -2010-04-13 Simon Josefsson - - * doc/manpages/Makefile.am, src/certtool-gaa.c: Generated. - -2010-04-13 Simon Josefsson - - * doc/reference/Makefile.am: Ignore c++defs.h. - -2010-04-13 Simon Josefsson - - * .x-sc_prohibit_empty_lines_at_EOF, GNUmakefile, - build-aux/c++defs.h, build-aux/warn-on-use.h, doc/certtool.cfg, - doc/credentials/gnutls-http-serv, doc/credentials/params.pem, - doc/credentials/x509/Makefile.am, doc/credentials/x509/cert.pem, - doc/credentials/x509/clicert-dsa.pem, gl/Makefile.am, gl/fseeko.c, - gl/m4/fseeko.m4, gl/m4/gnulib-common.m4, gl/m4/gnulib-comp.m4, - gl/m4/lib-link.m4, gl/m4/memchr.m4, gl/m4/stdio_h.m4, - gl/m4/stdlib_h.m4, gl/m4/string_h.m4, gl/m4/time_h.m4, - gl/m4/unistd_h.m4, gl/m4/vasnprintf.m4, gl/stdio-impl.h, - gl/stdio.in.h, gl/stdlib.in.h, gl/string.in.h, gl/sys_socket.in.h, - gl/sys_stat.in.h, gl/sys_time.in.h, gl/tests/Makefile.am, - gl/tests/ioctl.c, gl/tests/sys_ioctl.in.h, - gl/tests/test-vasnprintf.c, gl/time.in.h, gl/unistd.in.h, - gl/vasnprintf.c, gl/wchar.in.h, guile/modules/gnutls/extra.scm, - guile/tests/x509-auth.scm, guile/tests/x509-certificate.pem, - lib/build-aux/c++defs.h, lib/build-aux/warn-on-use.h, - lib/ext_cert_type.h, lib/gl/Makefile.am, lib/gl/fseeko.c, - lib/gl/m4/fseeko.m4, lib/gl/m4/gnulib-common.m4, - lib/gl/m4/gnulib-comp.m4, lib/gl/m4/lib-link.m4, - lib/gl/m4/memchr.m4, lib/gl/m4/stdio_h.m4, lib/gl/m4/stdlib_h.m4, - lib/gl/m4/string_h.m4, lib/gl/m4/threadlib.m4, lib/gl/m4/time_h.m4, - lib/gl/m4/time_r.m4, lib/gl/m4/unistd_h.m4, - lib/gl/m4/vasnprintf.m4, lib/gl/stdio-impl.h, lib/gl/stdio.in.h, - lib/gl/stdlib.in.h, lib/gl/string.in.h, lib/gl/sys_socket.in.h, - lib/gl/sys_stat.in.h, lib/gl/tests/Makefile.am, - lib/gl/tests/test-vasnprintf.c, lib/gl/time.in.h, lib/gl/time_r.c, - lib/gl/unistd.in.h, lib/gl/vasnprintf.c, lib/gl/wchar.in.h, - lib/minitasn1/Makefile.am, lib/minitasn1/README, - lib/opencdk/keydb.h, lib/opencdk/packet.h, - libextra/gl/m4/gnulib-common.m4, libextra/gl/m4/gnulib-comp.m4, - libextra/gl/m4/lib-link.m4, maint.mk, src/certtool.gaa, - src/cfg/Makefile.am, src/crypt.gaa, src/tls_test.gaa, - tests/key-id/ca-gnutls-keyid.pem, tests/key-id/ca-no-keyid.pem, - tests/key-id/ca-weird-keyid.pem, - tests/pkcs1-padding/pkcs1-pad-broken.pem, - tests/pkcs1-padding/pkcs1-pad-broken2.pem, - tests/pkcs1-padding/pkcs1-pad-broken3.pem, - tests/pkcs1-padding/pkcs1-pad-ok.pem, - tests/pkcs1-padding/pkcs1-pad-ok2.pem, - tests/safe-renegotiation/Makefile.am, tests/test25.pem: Update - gnulib files, fix syntax-check warnings. - -2010-03-31 Simon Josefsson - - * .gitignore, gl/m4/wchar_h.m4, lib/gl/m4/wchar_h.m4: Add forgotten - gnulib files, and fix .gitignore. - -2010-03-31 Simon Josefsson - - * NEWS: Add. - -2010-03-31 Simon Josefsson - - * lib/po/LINGUAS, lib/po/it.po.in, lib/po/nl.po.in: Sync with TP. - -2010-03-31 Simon Josefsson - - * .x-sc_program_name, .x-sc_the_the, cfg.mk, - lib/ext_safe_renegotiation.c, lib/gnutls_handshake.c, - lib/m4/hooks.m4, lib/opencdk/sig-check.c, src/certtool.c, - src/serv.c, tests/dn.c, tests/mini.c: Update gnulib files. Fix - syntax-check warnings. - -2010-03-31 Simon Josefsson - - * build-aux/c++defs.h, build-aux/vc-list-files, - build-aux/warn-on-use.h, gl/Makefile.am, gl/accept.c, - gl/arpa_inet.in.h, gl/bind.c, gl/connect.c, gl/getaddrinfo.c, - gl/gettext.h, gl/gettimeofday.c, gl/m4/arpa_inet_h.m4, - gl/m4/getaddrinfo.m4, gl/m4/gettimeofday.m4, - gl/m4/gnulib-common.m4, gl/m4/gnulib-comp.m4, gl/m4/inet_ntop.m4, - gl/m4/inet_pton.m4, gl/m4/lseek.m4, gl/m4/netdb_h.m4, - gl/m4/stddef_h.m4, gl/m4/stdio_h.m4, gl/m4/stdlib_h.m4, - gl/m4/string_h.m4, gl/m4/sys_ioctl_h.m4, gl/m4/sys_select_h.m4, - gl/m4/sys_socket_h.m4, gl/m4/sys_stat_h.m4, gl/m4/sys_time_h.m4, - gl/m4/time_h.m4, gl/m4/unistd_h.m4, gl/m4/warn-on-use.m4, - gl/m4/wchar.m4, gl/netdb.in.h, gl/netinet_in.in.h, gl/recv.c, - gl/select.c, gl/send.c, gl/stdint.in.h, gl/stdio.in.h, - gl/stdlib.in.h, gl/string.in.h, gl/sys_select.in.h, - gl/sys_socket.in.h, gl/sys_stat.in.h, gl/sys_time.in.h, - gl/tests/Makefile.am, gl/tests/ioctl.c, gl/tests/sys_ioctl.in.h, - gl/tests/test-vc-list-files-git.sh, gl/time.in.h, gl/unistd.in.h, - gl/wchar.in.h, lib/build-aux/c++defs.h, - lib/build-aux/warn-on-use.h, lib/gl/Makefile.am, lib/gl/gettext.h, - lib/gl/m4/gnulib-common.m4, lib/gl/m4/gnulib-comp.m4, - lib/gl/m4/intldir.m4, lib/gl/m4/lseek.m4, lib/gl/m4/netdb_h.m4, - lib/gl/m4/printf-posix.m4, lib/gl/m4/stddef_h.m4, - lib/gl/m4/stdio_h.m4, lib/gl/m4/stdlib_h.m4, lib/gl/m4/string_h.m4, - lib/gl/m4/strings_h.m4, lib/gl/m4/sys_socket_h.m4, - lib/gl/m4/sys_stat_h.m4, lib/gl/m4/time_h.m4, - lib/gl/m4/unistd_h.m4, lib/gl/m4/visibility.m4, - lib/gl/m4/warn-on-use.m4, lib/gl/m4/wchar.m4, lib/gl/netdb.in.h, - lib/gl/stdint.in.h, lib/gl/stdio.in.h, lib/gl/stdlib.in.h, - lib/gl/string.in.h, lib/gl/sys_socket.in.h, lib/gl/sys_stat.in.h, - lib/gl/tests/Makefile.am, lib/gl/time.in.h, lib/gl/unistd.in.h, - lib/gl/wchar.in.h, libextra/gl/m4/gnulib-common.m4, - libextra/gl/m4/gnulib-comp.m4, maint.mk: Update gnulib files. - -2010-03-30 Simon Josefsson - - * m4/valgrind.m4: Check for what we use. Bump serial. - -2010-03-30 Nikos Mavrogiannopoulos - - * m4/valgrind.m4, tests/Makefile.am: Valgrind -q is now set by the - valgrind detection script to avoid issue when running tests without - valgrind. - -2010-03-27 Nikos Mavrogiannopoulos - - * lib/gnutls_cert.c: increased small value for certificates. Typical - certificates are much longer than that. - -2010-03-20 Nikos Mavrogiannopoulos - - * configure.ac, tests/Makefile.am, tests/anonself.c, - tests/certder.c, tests/chainverify.c, tests/crq_apis.c, - tests/crq_key_id.c, tests/cve-2009-1415.c, tests/dhepskself.c, - tests/dn.c, tests/dn2.c, tests/finished.c, tests/gc.c, - tests/hostname-check.c, tests/init_roundtrip.c, - tests/mini-eagain.c, tests/mini.c, tests/moredn.c, tests/mpi.c, - tests/netconf-psk.c, tests/nul-in-x509-names.c, - tests/openpgp-keyring.c, tests/openpgpself.c, tests/openssl.c, - tests/parse_ca.c, tests/pkcs12_encode.c, tests/pkcs12_s2k.c, - tests/pskself.c, tests/resume.c, tests/set_pkcs12_cred.c, - tests/sha2/sha2, tests/simple.c, tests/tlsia.c, - tests/x509_altname.c, tests/x509dn.c, tests/x509self.c, - tests/x509sign-verify.c, tests/x509signself.c: Reduced several - unneeded messages during the make check procedure. Verbose messages - can be obtained with --verbose. - -2010-03-20 Nikos Mavrogiannopoulos - - * doc/Makefile.am: use mv -f to avoid interactiveness. - -2010-03-20 Nikos Mavrogiannopoulos - - * tests/dn2.c: Modified to account for postalcode. - -2010-03-20 Nikos Mavrogiannopoulos - - * NEWS: added news entry for postalcode. - -2010-03-20 Nikos Mavrogiannopoulos - - * lib/includes/gnutls/x509.h, lib/pkix.asn, lib/pkix_asn1_tab.c, - lib/x509/common.c: Display postalCode and Name X.509 DN attributes - correctly. Based on patch by Pavan Konjarla. - -2010-03-20 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, - lib/includes/gnutls/gnutls.h.in, src/serv-gaa.c, src/serv.gaa: Each - ciphersuite is now tight with a minimum TLS version and a maximum - one. It is valid if it is between (and including) those. This was - added to deprecate TLS_RSA_EXPORT_WITH_RC4_40_MD5 which is not - available with TLS 1.1. Reported by Adrian F. Dimcev. - -2010-03-20 Nikos Mavrogiannopoulos - - * .gitignore: Ignore more files. - -2010-03-17 Nikos Mavrogiannopoulos - - * NEWS, lib/auth_cert.c, lib/auth_cert.h, lib/gnutls_alert.c, - lib/gnutls_cert.c, lib/includes/gnutls/gnutls.h.in, - lib/libgnutls.map, src/cli.c: Added - gnutls_certificate_set_verify_function() to allow checking - (verifying) certificate before the handshake is completed. - -2010-03-17 Nikos Mavrogiannopoulos - - * doc/examples/ex-rfc2818.c, doc/examples/ex-verify.c: Use the flags - for expiration instead of getting the time of each certificate. - -2010-03-17 Simon Josefsson - - * README-alpha: Mention datefudge. - -2010-03-17 Simon Josefsson - - * tests/pkcs1-padding/pkcs1-pad: Skip test if datefudge is not - available. - -2010-03-17 Nikos Mavrogiannopoulos - - * lib/gnutls_priority.c: INITIAL_SAFE_RENEGOTIATION implies - SAFE_RENEGOTIATION. - -2010-03-16 Nikos Mavrogiannopoulos - - * lib/includes/gnutls/gnutls.h.in: Added missing prototype. - -2010-03-16 Nikos Mavrogiannopoulos - - * tests/safe-renegotiation/testsrn: made SAFE_RENEGOTIATION flags - explicit. - -2010-03-16 Nikos Mavrogiannopoulos - - * lib/x509/verify.c, src/certtool.c: gnutls_x509_crt_verify() and - gnutls_x509_crt_list_verify() behave identically. That means that - gnutls_x509_crt_verify() will now check dates as well. Certool --verify-chain will use the GNUTLS_VERIFY_DO_NOT_ALLOW_SAME - flag to gnutls_x509_crt_verify() to force verification even if - certificates are the same. The only exception is at the final - certificate (self-checking) where the extra flag - GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT is specified to allow for v1 CA - certificates. - -2010-03-16 Nikos Mavrogiannopoulos - - * lib/x509/common.c: Handle dates before 1-1-1970 (handle as being - equal to 1-1-1970). - -2010-03-16 Nikos Mavrogiannopoulos - - * tests/pkcs1-padding/pkcs1-pad: Fail if required programs are not - found. - -2010-03-15 Nikos Mavrogiannopoulos - - * NEWS, doc/manpages/gnutls-cli.1, doc/manpages/gnutls-serv.1, - lib/ext_safe_renegotiation.c, lib/gnutls_priority.c, - lib/gnutls_record.c: Safe renegotiation is not enabled by default in - client side. - -2010-03-15 Nikos Mavrogiannopoulos - - * doc/manpages/gnutls-cli.1, lib/gnutls_priority.c: better - documentation for %INITIAL_SAFE_RENEGOTIATION - -2010-03-15 Simon Josefsson - - * NEWS: Fix. - -2010-03-15 Simon Josefsson - - * tests/openpgp-certs/Makefile.am, tests/openpgp-certs/testselfsigs: - Rewrite tests/openpgp-certs/testselfsigs portably for Solaris. Fix - EXTRA_DIST. - -2010-03-15 Nikos Mavrogiannopoulos - - * tests/safe-renegotiation/testsrn: localhost -> 127.0.0.1 to work - in places where localhost does not resolve. - -2010-03-14 Nikos Mavrogiannopoulos - - * NEWS, lib/includes/gnutls/x509.h, lib/x509/verify.c: Extended time - verification to trusted certificate list as well. Introduced the - flag GNUTLS_VERIFY_DISABLE_TRUSTED_TIME_CHECKS that will prevent the - trusted certificate list verification. - -2010-03-11 Nikos Mavrogiannopoulos - - * src/tests.c, src/tests.h, src/tls_test.c: Added tests for safe - renegotiation. Removed old tests for obsolete features (lzo) and - tests that were not actually working (srp). - -2010-03-11 Nikos Mavrogiannopoulos - - * lib/gnutls_extensions.c, lib/gnutls_extensions.h, - lib/gnutls_handshake.c, lib/includes/gnutls/gnutls.h.in, - tests/safe-renegotiation/testsrn: Extension generation in SSL 3.0 - (as a reply to SCSV) is not using common code with normal extension - generation. Solve issue reported by Tomas Mraz that caused SSL 3.0 - renegotiation fail. - -2010-03-07 Nikos Mavrogiannopoulos - - * lib/x509/verify.c: Removed artificial constrained that prevented - end-user certificates, being added to the trusted list, treated as - trusted. Suggestion and patch by Tomas Mraz. - -2010-03-07 Nikos Mavrogiannopoulos - - * doc/manpages/gnutls-cli.1: Documented that - initial_safe_renegotiation is the default. - -2010-03-03 Nikos Mavrogiannopoulos - - * src/serv.c: gnutls-serv will terminate connection on rehandshake - errors. - -2010-03-03 Nikos Mavrogiannopoulos - - * lib/gnutls_alert.c, lib/gnutls_errors.c, lib/gnutls_handshake.c, - lib/includes/gnutls/gnutls.h.in: Avoid sending alerts during - handshake. Alerts might be interrupted and return a non-fatal error - which will propagate and in many cases it shouldn't. Avoid sending no renegotiation alert when a client connects to an - unsafe server. Thanks to Tomas Hoger for the report. - -2010-02-26 Nikos Mavrogiannopoulos - - * src/cli.c: On handshake error send appropriate alert and terminate - stream. - -2010-02-18 Simon Josefsson - - * doc/reference/gnutls-docs.sgml: Add id's to chapters. - -2010-02-18 Simon Josefsson - - * .gitignore: Update. - -2010-02-18 Simon Josefsson - - * lib/po/zh_CN.po: Remove. - -2010-02-18 Simon Josefsson - - * src/Makefile.am: Fix -lrt usage. - -2010-02-18 Simon Josefsson - - * src/benchmark.c: Use gnulib gettime module. Indent. - -2010-02-18 Simon Josefsson - - * lib/po/zh_CN.po: Add. - -2010-02-18 Simon Josefsson - - * lib/gl/netdb.in.h: Update gnulib files. - -2010-02-18 Simon Josefsson - - * gl/Makefile.am, gl/gettime.c, gl/gettimeofday.c, - gl/m4/clock_time.m4, gl/m4/gettime.m4, gl/m4/gnulib-cache.m4, - gl/m4/gnulib-comp.m4, gl/m4/timespec.m4, gl/netdb.in.h, - gl/tests/Makefile.am, gl/tests/gettimeofday.c, gl/timespec.h: Update - gnulib files. - -2010-02-17 Simon Josefsson - - * lib/cryptodev.c: Indent. Don't include fcntl.h and sys/ioctl.h on - (for example) Windows. - -2010-02-17 Simon Josefsson - - * tests/safe-renegotiation/testsrn: Fix objdir != srcdir. - -2010-02-17 Simon Josefsson - - * tests/safe-renegotiation/testsrn: Drop bashism. Make it work on - Windows. - -2010-02-17 Simon Josefsson - - * NEWS: Fix. - -2010-02-17 Simon Josefsson - - * NEWS: Add. - -2010-02-17 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2010-02-17 Simon Josefsson - - * doc/reference/Makefile.am, doc/reference/gnutls-docs.sgml, - lib/ext_safe_renegotiation.c, lib/ext_signature.c, - lib/gnutls_supplemental.c: More GTK-DOC fixes. - -2010-02-17 Simon Josefsson - - * lib/gnutls_db.c: Doc fix. - -2010-02-17 Simon Josefsson - - * lib/openpgp/gnutls_openpgp.c: Doc fix. - -2010-02-17 Simon Josefsson - - * lib/includes/gnutls/gnutls.h.in: Doc fix. - -2010-02-17 Simon Josefsson - - * lib/includes/gnutls/gnutls.h.in: Fix enum doc. - -2010-02-17 Simon Josefsson - - * lib/includes/gnutls/gnutls.h.in: More enum docs. - -2010-02-17 Simon Josefsson - - * lib/includes/gnutls/crypto.h: More enum documentation. - -2010-02-17 Simon Josefsson - - * libextra/gnutls_ia.c: Doc fix. - -2010-02-17 Simon Josefsson - - * lib/includes/gnutls/x509.h: More enum documentation. - -2010-02-17 Simon Josefsson - - * libextra/includes/gnutls/extra.h: Document more. - -2010-02-17 Simon Josefsson - - * lib/includes/gnutls/openpgp.h: Document more. - -2010-02-17 Simon Josefsson - - * lib/includes/gnutls/pkcs12.h: Document enum. - -2010-02-17 Simon Josefsson - - * lib/includes/gnutls/gnutls.h.in: More enum. - -2010-02-17 Simon Josefsson - - * lib/includes/gnutls/gnutls.h.in: Fix typo. - -2010-02-17 Simon Josefsson - - * lib/includes/gnutls/gnutls.h.in: More GTK-DOC documentation. - -2010-02-17 Simon Josefsson - - * lib/includes/gnutls/gnutls.h.in: Improve GTK-DOC coverage. - -2010-02-17 Simon Josefsson - - * lib/includes/gnutls/crypto.h: Fix comments, for GTK-DOC. - -2010-02-17 Simon Josefsson - - * doc/reference/Makefile.am: Ignore more headers. - -2010-02-17 Simon Josefsson - - * lib/x509/crl.c: Doc fix. - -2010-02-17 Simon Josefsson - - * lib/includes/gnutls/crypto.h: Fix for GTK-DOC parse breakage. - -2010-02-17 Simon Josefsson - - * doc/reference/Makefile.am: Ignore gnutlsxx.h too, GTK-DOC doesn't - handle C++. - -2010-02-17 Simon Josefsson - - * doc/reference/Makefile.am: Need crypto.h too. - -2010-02-17 Simon Josefsson - - * doc/reference/Makefile.am: Improve header ignores. - -2010-02-17 Simon Josefsson - - * lib/minitasn1/coding.c, lib/minitasn1/decoding.c, - lib/minitasn1/element.c, lib/minitasn1/errors.c, - lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, - lib/minitasn1/structure.c: Upgrade to libtasn1 2.5 snapshot, for - GTK-DOC comments. - -2010-02-17 Simon Josefsson - - * lib/includes/gnutls/openpgp.h: Another GTK-DOC fix. - -2010-02-17 Simon Josefsson - - * lib/auth_srp_sb64.c, lib/crypto-api.c, lib/crypto.c, - lib/ext_safe_renegotiation.c, lib/ext_server_name.c, - lib/ext_signature.c, lib/gnutls_alert.c, lib/gnutls_algorithms.c, - lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_buffers.c, - lib/gnutls_cert.c, lib/gnutls_compress.c, lib/gnutls_db.c, - lib/gnutls_dh_primes.c, lib/gnutls_errors.c, - lib/gnutls_extensions.c, lib/gnutls_global.c, - lib/gnutls_handshake.c, lib/gnutls_mem.c, lib/gnutls_priority.c, - lib/gnutls_psk.c, lib/gnutls_psk_netconf.c, lib/gnutls_record.c, - lib/gnutls_rsa_export.c, lib/gnutls_session.c, lib/gnutls_srp.c, - lib/gnutls_state.c, lib/gnutls_str.c, lib/gnutls_ui.c, - lib/gnutls_x509.c, lib/includes/gnutls/crypto.h, - lib/opencdk/stream.c, lib/openpgp/compat.c, lib/openpgp/extras.c, - lib/openpgp/gnutls_openpgp.c, lib/openpgp/output.c, - lib/openpgp/pgp.c, lib/openpgp/pgpverify.c, lib/openpgp/privkey.c, - lib/x509/common.c, lib/x509/crl.c, lib/x509/crl_write.c, - lib/x509/crq.c, lib/x509/dn.c, lib/x509/output.c, - lib/x509/pkcs12.c, lib/x509/pkcs12_bag.c, lib/x509/pkcs7.c, - lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, - lib/x509/rfc2818_hostname.c, lib/x509/verify.c, lib/x509/x509.c, - lib/x509/x509_write.c, lib/x509_b64.c, libextra/gnutls_extra.c, - libextra/gnutls_ia.c, libextra/openssl_compat.c: Fix GTK-DOC syntax. - Unfortunately this looses some information. - -2010-02-17 Simon Josefsson - - * lib/auth_srp_sb64.c, lib/crypto-api.c, - lib/ext_safe_renegotiation.c, lib/gnutls_anon_cred.c, - lib/gnutls_auth.c, lib/gnutls_cert.c, lib/gnutls_db.c, - lib/gnutls_dh.c, lib/gnutls_handshake.c, lib/gnutls_mem.c, - lib/gnutls_priority.c, lib/gnutls_psk.c, lib/gnutls_record.c, - lib/gnutls_session.c, lib/gnutls_srp.c, lib/gnutls_state.c, - lib/gnutls_x509.c, lib/x509/crl.c, lib/x509/crl_write.c, - lib/x509/pkcs12.c, lib/x509/pkcs12_bag.c, lib/x509/pkcs7.c, - lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, lib/x509/sign.c, - lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509_write.c, - libextra/openssl_compat.c: Align indentation of GTK-DOC comments. - -2010-02-17 Simon Josefsson - - * lib/po/vi.po.in: Sync with TP. - -2010-02-17 Simon Josefsson - - * doc/examples/Makefile.am: Silence gnulib warning about fseek. - -2010-02-17 Simon Josefsson - - * build-aux/gendocs.sh, build-aux/gnupload, gl/Makefile.am, - gl/m4/getdelim.m4, gl/m4/getline.m4, gl/m4/gettimeofday.m4, - gl/m4/gnulib-comp.m4, gl/m4/stdio_h.m4, gl/m4/sys_time_h.m4, - gl/netdb.in.h, gl/stdio.in.h, gl/sys_time.in.h, - gl/tests/test-getdelim.c, gl/tests/test-getline.c, - gl/tests/test-gettimeofday.c, lib/gl/Makefile.am, - lib/gl/m4/stdio_h.m4, lib/gl/netdb.in.h, lib/gl/stdio.in.h, - maint.mk: Update gnulib files. - -2010-02-05 Nikos Mavrogiannopoulos - - * lib/gnutls_session_pack.c: Corrected calculation of session data - for PSK ciphersuites. Solves issue #107256 reported by Wolfgang - Glas. - -2010-02-03 Simon Josefsson - - * doc/ANNOUNCE: Add announcement message. - -2010-01-27 Simon Josefsson - - * NEWS: Fix. - -2010-01-27 Simon Josefsson - - * NEWS: Add. - -2010-01-27 Simon Josefsson - - * lib/po/LINGUAS, lib/po/cs.po.in, lib/po/de.po.in, - lib/po/fr.po.in, lib/po/ms.po.in, lib/po/nl.po.in, lib/po/pl.po.in, - lib/po/sv.po.in, lib/po/zh_CN.po.in: Sync with TP. - -2010-01-27 Simon Josefsson - - * build-aux/gnupload, doc/gendocs_template, - gl/tests/test-gettimeofday.c, gl/tests/test-memchr.c, - gl/tests/test-read-file.c, gl/tests/test-sockets.c, - lib/gl/tests/test-memchr.c, lib/gl/tests/test-read-file.c, - lib/gl/tests/test-sockets.c: Update gnulib files. - -2010-01-27 Simon Josefsson - - * AUTHORS: Add. - -2010-01-27 Simon Josefsson - - * NEWS, lib/minitasn1/coding.c, lib/minitasn1/decoding.c, - lib/minitasn1/element.c, lib/minitasn1/errors.c, - lib/minitasn1/gstr.c, lib/minitasn1/int.h, - lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, - lib/minitasn1/structure.c: Use libtasn1 v2.4. - -2010-01-27 Simon Josefsson - - * lib/gnutls.pc.in: Fix license. - -2010-01-27 Simon Josefsson - - * .clcopying: Fix license. - -2010-01-27 Simon Josefsson - - * AUTHORS: Fix license. - -2010-01-27 Simon Josefsson - - * tests/key-id/README, tests/libgcrypt.supp, - tests/rsa-md5-collision/Makefile.am, - tests/rsa-md5-collision/README, tests/rsa-md5-collision/mbox, - tests/userid/userid.pem: License fix. - -2010-01-27 Simon Josefsson - - * ChangeLog, cfg.mk, configure.ac, doc/Makefile.am, - doc/credentials/Makefile.am, doc/cyclo/Makefile.am, doc/errcodes.c, - doc/examples/Makefile.am, doc/extract-guile-c-doc.scm, - doc/gendocs_template, doc/manpages/Makefile.am, doc/printlist.c, - gl/gnulib.mk, gl/m4/onceonly_2_57.m4, gl/tests/gnulib.mk, - guile/Makefile.am, guile/modules/Makefile.am, - guile/modules/gnutls.scm, guile/modules/gnutls/build/enums.scm, - guile/modules/gnutls/build/priorities.scm, - guile/modules/gnutls/build/smobs.scm, - guile/modules/gnutls/build/utils.scm, - guile/modules/gnutls/extra.scm, - guile/modules/system/documentation/c-snarf.scm, - guile/modules/system/documentation/output.scm, - guile/pre-inst-guile.in, guile/src/Makefile.am, guile/src/core.c, - guile/src/errors.c, guile/src/errors.h, guile/src/extra.c, - guile/src/make-enum-header.scm, guile/src/make-enum-map.scm, - guile/src/make-session-priorities.scm, - guile/src/make-smob-header.scm, guile/src/make-smob-types.scm, - guile/src/utils.c, guile/src/utils.h, guile/tests/Makefile.am, - guile/tests/anonymous-auth.scm, guile/tests/errors.scm, - guile/tests/openpgp-auth.scm, guile/tests/openpgp-keyring.scm, - guile/tests/openpgp-keys.scm, guile/tests/pkcs-import-export.scm, - guile/tests/session-record-port.scm, guile/tests/srp-base64.scm, - guile/tests/x509-auth.scm, guile/tests/x509-certificates.scm, - lib/Makefile.am, lib/auth_anon.c, lib/auth_anon.h, lib/auth_cert.c, - lib/auth_cert.h, lib/auth_dh_common.c, lib/auth_dh_common.h, - lib/auth_dhe.c, lib/auth_dhe_psk.c, lib/auth_psk.c, lib/auth_psk.h, - lib/auth_psk_passwd.c, lib/auth_psk_passwd.h, lib/auth_rsa.c, - lib/auth_rsa_export.c, lib/auth_srp.c, lib/auth_srp.h, - lib/auth_srp_passwd.c, lib/auth_srp_passwd.h, lib/auth_srp_rsa.c, - lib/auth_srp_sb64.c, lib/cipher-libgcrypt.c, lib/configure.ac, - lib/crypto-api.c, lib/crypto.c, lib/crypto.h, lib/cryptodev.c, - lib/debug.c, lib/debug.h, lib/ext_cert_type.c, lib/ext_cert_type.h, - lib/ext_max_record.c, lib/ext_max_record.h, lib/ext_oprfi.c, - lib/ext_oprfi.h, lib/ext_safe_renegotiation.c, - lib/ext_safe_renegotiation.h, lib/ext_server_name.c, - lib/ext_server_name.h, lib/ext_session_ticket.c, - lib/ext_session_ticket.h, lib/ext_signature.c, lib/ext_signature.h, - lib/ext_srp.c, lib/ext_srp.h, lib/gnutls_alert.c, - lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, - lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_auth.h, - lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cert.c, - lib/gnutls_cert.h, lib/gnutls_cipher.c, lib/gnutls_cipher.h, - lib/gnutls_cipher_int.h, lib/gnutls_compress.c, - lib/gnutls_compress.h, lib/gnutls_constate.c, - lib/gnutls_constate.h, lib/gnutls_datum.c, lib/gnutls_datum.h, - lib/gnutls_db.c, lib/gnutls_db.h, lib/gnutls_dh.c, lib/gnutls_dh.h, - lib/gnutls_dh_primes.c, lib/gnutls_errors.c, lib/gnutls_errors.h, - lib/gnutls_extensions.c, lib/gnutls_extensions.h, - lib/gnutls_global.c, lib/gnutls_global.h, lib/gnutls_handshake.c, - lib/gnutls_handshake.h, lib/gnutls_hash_int.c, - lib/gnutls_hash_int.h, lib/gnutls_helper.c, lib/gnutls_int.h, - lib/gnutls_kx.c, lib/gnutls_kx.h, lib/gnutls_mem.c, - lib/gnutls_mem.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h, - lib/gnutls_num.c, lib/gnutls_num.h, lib/gnutls_pk.c, - lib/gnutls_pk.h, lib/gnutls_priority.c, lib/gnutls_psk.c, - lib/gnutls_psk_netconf.c, lib/gnutls_record.c, lib/gnutls_record.h, - lib/gnutls_rsa_export.c, lib/gnutls_rsa_export.h, - lib/gnutls_session.c, lib/gnutls_session_pack.c, - lib/gnutls_session_pack.h, lib/gnutls_sig.c, lib/gnutls_sig.h, - lib/gnutls_srp.c, lib/gnutls_srp.h, lib/gnutls_state.c, - lib/gnutls_state.h, lib/gnutls_str.c, lib/gnutls_str.h, - lib/gnutls_supplemental.c, lib/gnutls_supplemental.h, - lib/gnutls_ui.c, lib/gnutls_v2_compat.c, lib/gnutls_v2_compat.h, - lib/gnutls_x509.c, lib/gnutls_x509.h, lib/includes/Makefile.am, - lib/includes/gnutls/crypto.h, lib/includes/gnutls/gnutls.h.in, - lib/includes/gnutls/openpgp.h, lib/includes/gnutls/pkcs12.h, - lib/includes/gnutls/x509.h, lib/libgnutls.map, lib/libgnutlsxx.map, - lib/m4/hooks.m4, lib/mac-libgcrypt.c, lib/minitasn1/Makefile.am, - lib/minitasn1/gstr.c, lib/minitasn1/int.h, - lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, - lib/minitasn1/structure.c, lib/mpi-libgcrypt.c, - lib/opencdk/Makefile.am, lib/opencdk/armor.c, - lib/opencdk/context.h, lib/opencdk/filters.h, lib/opencdk/hash.c, - lib/opencdk/kbnode.c, lib/opencdk/keydb.c, lib/opencdk/literal.c, - lib/opencdk/main.c, lib/opencdk/main.h, lib/opencdk/misc.c, - lib/opencdk/new-packet.c, lib/opencdk/opencdk.h, - lib/opencdk/packet.h, lib/opencdk/pubkey.c, - lib/opencdk/read-packet.c, lib/opencdk/seskey.c, - lib/opencdk/sig-check.c, lib/opencdk/stream.c, - lib/opencdk/stream.h, lib/opencdk/types.h, lib/opencdk/verify.c, - lib/opencdk/write-packet.c, lib/openpgp/Makefile.am, - lib/openpgp/compat.c, lib/openpgp/extras.c, - lib/openpgp/gnutls_openpgp.c, lib/openpgp/output.c, - lib/openpgp/pgp.c, lib/openpgp/pgpverify.c, lib/openpgp/privkey.c, - lib/pk-libgcrypt.c, lib/po/cs.po.in, lib/po/de.po.in, - lib/po/fr.po.in, lib/po/ms.po.in, lib/po/nl.po.in, lib/po/pl.po.in, - lib/po/sv.po.in, lib/random.c, lib/random.h, lib/rnd-libgcrypt.c, - lib/x509/Makefile.am, lib/x509/common.c, lib/x509/common.h, - lib/x509/crl.c, lib/x509/crl_write.c, lib/x509/crq.c, - lib/x509/dn.c, lib/x509/extensions.c, lib/x509/mpi.c, - lib/x509/output.c, lib/x509/pbkdf2-sha1.c, lib/x509/pkcs12.c, - lib/x509/pkcs12_bag.c, lib/x509/pkcs12_encr.c, lib/x509/pkcs7.c, - lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, - lib/x509/rfc2818_hostname.c, lib/x509/sign.c, lib/x509/verify.c, - lib/x509/x509.c, lib/x509/x509_int.h, lib/x509/x509_write.c, - lib/x509_b64.c, lib/x509_b64.h, libextra/Makefile.am, - libextra/configure.ac, libextra/ext_inner_application.c, - libextra/ext_inner_application.h, libextra/fipsmd5.c, - libextra/gl/Makefile.am, libextra/gnutls-extra.pc.in, - libextra/gnutls_extra.c, libextra/gnutls_ia.c, - libextra/gnutls_openssl.c, libextra/includes/Makefile.am, - libextra/includes/gnutls/extra.h, - libextra/includes/gnutls/openssl.h, libextra/libgnutls-extra.map, - libextra/m4/hooks.m4, libextra/openssl_compat.c, - libextra/openssl_compat.h, m4/guile.m4, m4/valgrind.m4, - src/Makefile.am, src/common.c, src/serv.c, tests/Makefile.am, - tests/anonself.c, tests/certder.c, - tests/certificate_set_x509_crl.c, tests/chainverify.c, - tests/crq_apis.c, tests/crq_key_id.c, tests/crypto_rng.c, - tests/cve-2008-4989.c, tests/cve-2009-1415.c, - tests/cve-2009-1416.c, tests/dhepskself.c, tests/dn.c, tests/dn2.c, - tests/finished.c, tests/gc.c, tests/hostname-check.c, - tests/init_roundtrip.c, tests/key-id/Makefile.am, - tests/key-id/key-id, tests/mini-eagain.c, tests/mini.c, - tests/moredn.c, tests/mpi.c, tests/netconf-psk.c, - tests/nist-pkits/pkits, tests/nist-pkits/pkits_crl, - tests/nist-pkits/pkits_crt, tests/nist-pkits/pkits_pkcs12, - tests/nist-pkits/pkits_smime, tests/nul-in-x509-names.c, - tests/openpgp-certs/Makefile.am, tests/openpgp-keyring.c, - tests/openpgpself.c, tests/openssl.c, tests/oprfi.c, - tests/parse_ca.c, tests/pathlen/Makefile.am, tests/pathlen/pathlen, - tests/pgps2kgnu.c, tests/pkcs1-padding/Makefile.am, - tests/pkcs1-padding/pkcs1-pad, tests/pkcs12-decode/Makefile.am, - tests/pkcs12-decode/pkcs12, tests/pkcs12_encode.c, - tests/pkcs12_s2k.c, tests/pkcs12_s2k_pem.c, - tests/pkcs8-decode/Makefile.am, tests/pkcs8-decode/pkcs8, - tests/pskself.c, tests/resume.c, tests/rfc2253-escape-test, - tests/rsa-md5-collision/Makefile.am, - tests/rsa-md5-collision/rsa-md5-collision, tests/set_pkcs12_cred.c, - tests/setcredcrash.c, tests/sha2/Makefile.am, tests/sha2/sha2, - tests/simple.c, tests/tlsia.c, tests/userid/Makefile.am, - tests/userid/userid, tests/utils.c, tests/utils.h, - tests/x509_altname.c, tests/x509dn.c, tests/x509paths/chain, - tests/x509self.c, tests/x509sign-verify.c, tests/x509signself.c: - Update copyright years. - -2010-01-27 Simon Josefsson - - * Makefile.am: Fix license. - -2010-01-27 Simon Josefsson - - * README: Fix license. - -2010-01-27 Simon Josefsson - - * README-alpha: Fix license. - -2010-01-27 Simon Josefsson - - * src/cli.c: Fix license. - -2010-01-27 Simon Josefsson - - * src/crypt.c: Fix license. - -2010-01-27 Simon Josefsson - - * src/tls_test.c: Fix license. - -2010-01-27 Simon Josefsson - - * src/tests.c: Fix license. - -2010-01-27 Simon Josefsson - - * src/psk.c: Fix license. - -2010-01-27 Simon Josefsson - - * src/prime.c: Fix license. - -2010-01-27 Simon Josefsson - - * src/certtool.c: Fix license. - -2010-01-27 Simon Josefsson - - * src/certtool-cfg.c: Fix copyright/license. - -2010-01-27 Simon Josefsson - - * src/benchmark.c: Indent and fix copyright notices. - -2010-01-27 Simon Josefsson - - * build-aux/gnupload, gl/tests/test-gettimeofday.c, - gl/tests/test-memchr.c, gl/tests/test-read-file.c, - gl/tests/test-sockets.c, lib/gl/tests/test-memchr.c, - lib/gl/tests/test-read-file.c, lib/gl/tests/test-sockets.c: Update - gnulib files. - -2010-01-27 Simon Josefsson - - * ChangeLog, ChangeLog.1, THANKS, build-aux/gnupload, cfg.mk, - doc/Makefile.am, doc/credentials/Makefile.am, - doc/cyclo/Makefile.am, doc/errcodes.c, doc/examples/Makefile.am, - doc/extract-guile-c-doc.scm, doc/manpages/Makefile.am, - doc/printlist.c, gl/tests/test-gettimeofday.c, - gl/tests/test-memchr.c, gl/tests/test-read-file.c, - gl/tests/test-sockets.c, guile/Makefile.am, - guile/modules/Makefile.am, guile/modules/gnutls.scm, - guile/modules/gnutls/build/enums.scm, - guile/modules/gnutls/build/priorities.scm, - guile/modules/gnutls/build/smobs.scm, - guile/modules/gnutls/build/utils.scm, - guile/modules/gnutls/extra.scm, - guile/modules/system/documentation/c-snarf.scm, - guile/modules/system/documentation/output.scm, - guile/pre-inst-guile.in, guile/src/errors.h, - guile/src/make-enum-header.scm, guile/src/make-enum-map.scm, - guile/src/make-session-priorities.scm, - guile/src/make-smob-header.scm, guile/src/make-smob-types.scm, - guile/src/utils.h, guile/tests/anonymous-auth.scm, - guile/tests/errors.scm, guile/tests/openpgp-auth.scm, - guile/tests/openpgp-keyring.scm, guile/tests/openpgp-keys.scm, - guile/tests/pkcs-import-export.scm, - guile/tests/session-record-port.scm, guile/tests/srp-base64.scm, - guile/tests/x509-auth.scm, guile/tests/x509-certificates.scm, - lib/Makefile.am, lib/auth_anon.c, lib/auth_anon.h, lib/auth_cert.c, - lib/auth_cert.h, lib/auth_dh_common.c, lib/auth_dh_common.h, - lib/auth_dhe.c, lib/auth_dhe_psk.c, lib/auth_psk.c, lib/auth_psk.h, - lib/auth_psk_passwd.c, lib/auth_psk_passwd.h, lib/auth_rsa.c, - lib/auth_rsa_export.c, lib/auth_srp.c, lib/auth_srp.h, - lib/auth_srp_passwd.c, lib/auth_srp_passwd.h, lib/auth_srp_rsa.c, - lib/auth_srp_sb64.c, lib/cipher-libgcrypt.c, lib/crypto-api.c, - lib/crypto.c, lib/crypto.h, lib/cryptodev.c, lib/debug.c, - lib/debug.h, lib/ext_cert_type.c, lib/ext_cert_type.h, - lib/ext_max_record.c, lib/ext_max_record.h, lib/ext_oprfi.c, - lib/ext_oprfi.h, lib/ext_safe_renegotiation.c, - lib/ext_safe_renegotiation.h, lib/ext_server_name.c, - lib/ext_server_name.h, lib/ext_session_ticket.c, - lib/ext_session_ticket.h, lib/ext_signature.c, lib/ext_signature.h, - lib/ext_srp.c, lib/ext_srp.h, lib/gl/tests/test-memchr.c, - lib/gl/tests/test-read-file.c, lib/gl/tests/test-sockets.c, - lib/gnutls_alert.c, lib/gnutls_algorithms.c, - lib/gnutls_algorithms.h, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, - lib/gnutls_auth.h, lib/gnutls_buffers.c, lib/gnutls_buffers.h, - lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_cipher.c, - lib/gnutls_cipher.h, lib/gnutls_cipher_int.c, - lib/gnutls_cipher_int.h, lib/gnutls_compress.c, - lib/gnutls_compress.h, lib/gnutls_constate.c, - lib/gnutls_constate.h, lib/gnutls_datum.c, lib/gnutls_datum.h, - lib/gnutls_db.c, lib/gnutls_db.h, lib/gnutls_dh.c, lib/gnutls_dh.h, - lib/gnutls_dh_primes.c, lib/gnutls_errors.c, lib/gnutls_errors.h, - lib/gnutls_extensions.c, lib/gnutls_extensions.h, - lib/gnutls_global.c, lib/gnutls_global.h, lib/gnutls_handshake.c, - lib/gnutls_handshake.h, lib/gnutls_hash_int.c, - lib/gnutls_hash_int.h, lib/gnutls_helper.c, lib/gnutls_int.h, - lib/gnutls_kx.c, lib/gnutls_kx.h, lib/gnutls_mem.c, - lib/gnutls_mem.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h, - lib/gnutls_num.c, lib/gnutls_num.h, lib/gnutls_pk.c, - lib/gnutls_pk.h, lib/gnutls_priority.c, lib/gnutls_psk.c, - lib/gnutls_psk_netconf.c, lib/gnutls_record.c, lib/gnutls_record.h, - lib/gnutls_rsa_export.c, lib/gnutls_rsa_export.h, - lib/gnutls_session.c, lib/gnutls_session_pack.c, - lib/gnutls_session_pack.h, lib/gnutls_sig.c, lib/gnutls_sig.h, - lib/gnutls_srp.c, lib/gnutls_srp.h, lib/gnutls_state.c, - lib/gnutls_state.h, lib/gnutls_str.c, lib/gnutls_str.h, - lib/gnutls_supplemental.c, lib/gnutls_supplemental.h, - lib/gnutls_ui.c, lib/gnutls_v2_compat.c, lib/gnutls_v2_compat.h, - lib/gnutls_x509.c, lib/gnutls_x509.h, lib/includes/Makefile.am, - lib/includes/gnutls/crypto.h, lib/includes/gnutls/gnutls.h.in, - lib/includes/gnutls/openpgp.h, lib/includes/gnutls/pkcs12.h, - lib/includes/gnutls/x509.h, lib/libgnutls.map, lib/libgnutlsxx.map, - lib/mac-libgcrypt.c, lib/minitasn1/Makefile.am, - lib/minitasn1/coding.c, lib/minitasn1/decoding.c, - lib/minitasn1/element.c, lib/minitasn1/gstr.c, - lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, - lib/minitasn1/structure.c, lib/mpi-libgcrypt.c, - lib/opencdk/Makefile.am, lib/opencdk/hash.c, - lib/openpgp/Makefile.am, lib/openpgp/compat.c, - lib/openpgp/extras.c, lib/openpgp/gnutls_openpgp.c, - lib/openpgp/output.c, lib/openpgp/pgp.c, lib/openpgp/pgpverify.c, - lib/openpgp/privkey.c, lib/pk-libgcrypt.c, lib/random.c, - lib/random.h, lib/rnd-libgcrypt.c, lib/x509/Makefile.am, - lib/x509/common.c, lib/x509/common.h, lib/x509/crl.c, - lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/dn.c, - lib/x509/extensions.c, lib/x509/mpi.c, lib/x509/output.c, - lib/x509/pkcs12.c, lib/x509/pkcs12_bag.c, lib/x509/pkcs7.c, - lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, - lib/x509/rfc2818_hostname.c, lib/x509/sign.c, lib/x509/verify.c, - lib/x509/x509.c, lib/x509/x509_int.h, lib/x509/x509_write.c, - lib/x509_b64.c, lib/x509_b64.h, libextra/Makefile.am, - libextra/ext_inner_application.c, libextra/ext_inner_application.h, - libextra/fipsmd5.c, libextra/gl/Makefile.am, - libextra/gnutls-extra.pc.in, libextra/gnutls_extra.c, - libextra/gnutls_ia.c, libextra/gnutls_openssl.c, - libextra/includes/Makefile.am, libextra/includes/gnutls/extra.h, - libextra/includes/gnutls/openssl.h, libextra/libgnutls-extra.map, - libextra/openssl_compat.c, libextra/openssl_compat.h, - src/Makefile.am, src/benchmark.c, src/certtool-cfg.c, - src/certtool.c, src/common.c, src/crypt.c, src/prime.c, src/psk.c, - src/serv.c, src/tests.c, src/tls_test.c, tests/Makefile.am, - tests/anonself.c, tests/certder.c, tests/chainverify.c, - tests/crq_apis.c, tests/crq_key_id.c, tests/crypto_rng.c, - tests/cve-2008-4989.c, tests/cve-2009-1415.c, - tests/cve-2009-1416.c, tests/dhepskself.c, tests/dn.c, tests/dn2.c, - tests/finished.c, tests/gc.c, tests/hostname-check.c, - tests/init_roundtrip.c, tests/key-id/Makefile.am, - tests/key-id/key-id, tests/mini-eagain.c, tests/mini.c, - tests/moredn.c, tests/mpi.c, tests/netconf-psk.c, - tests/nist-pkits/pkits, tests/nist-pkits/pkits_crl, - tests/nist-pkits/pkits_crt, tests/nist-pkits/pkits_pkcs12, - tests/nist-pkits/pkits_smime, tests/nul-in-x509-names.c, - tests/openpgp-certs/Makefile.am, tests/openpgp-certs/testcerts, - tests/openpgp-certs/testselfsigs, tests/openpgp-keyring.c, - tests/openpgpself.c, tests/openssl.c, tests/oprfi.c, - tests/parse_ca.c, tests/pathlen/Makefile.am, tests/pathlen/pathlen, - tests/pkcs1-padding/Makefile.am, tests/pkcs1-padding/pkcs1-pad, - tests/pkcs12-decode/Makefile.am, tests/pkcs12-decode/pkcs12, - tests/pkcs12_encode.c, tests/pkcs12_s2k.c, tests/pkcs12_s2k_pem.c, - tests/pkcs8-decode/Makefile.am, tests/pkcs8-decode/pkcs8, - tests/pskself.c, tests/resume.c, tests/rfc2253-escape-test, - tests/rsa-md5-collision/Makefile.am, - tests/rsa-md5-collision/rsa-md5-collision, - tests/safe-renegotiation/Makefile.am, - tests/safe-renegotiation/testsrn, tests/set_pkcs12_cred.c, - tests/setcredcrash.c, tests/sha2/Makefile.am, tests/sha2/sha2, - tests/simple.c, tests/tlsia.c, tests/userid/Makefile.am, - tests/userid/userid, tests/utils.c, tests/utils.h, - tests/x509_altname.c, tests/x509dn.c, tests/x509paths/chain, - tests/x509self.c, tests/x509sign-verify.c, tests/x509signself.c: Fix - FSF copyright notices. - -2010-01-27 Simon Josefsson - - * THANKS, doc/gnutls.texi: doc: Fix pkg-config recommendation. Reported by Claudio Saavedra in - - . - -2010-01-27 Simon Josefsson - - * NEWS, THANKS, src/cli.c: gnutls-cli: Handle reading binary data - from server. Reported by and tiny patch from Vitaly Mayatskikh - in - - . - -2010-01-26 Simon Josefsson - - * build-aux/update-copyright, gl/Makefile.am, - gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/tests/Makefile.am, - gl/tests/test-update-copyright.sh: Update gnulib files. - -2010-01-26 Nikos Mavrogiannopoulos - - * tests/openpgp-certs/testcerts, tests/openpgp-certs/testselfsigs, - tests/safe-renegotiation/testsrn: Added copyright notices! - -2010-01-26 Simon Josefsson - - * NEWS, doc/manpages/Makefile.am: Generated. - -2010-01-26 Simon Josefsson - - * .gitignore: Improve. - -2010-01-26 Simon Josefsson - - * doc/reference/Makefile.am: Ignore more. - -2010-01-26 Simon Josefsson - - * .gitignore, lib/gl/m4/warn-on-use.m4: Update gnulib files. - -2010-01-26 Simon Josefsson - - * gl/m4/warn-on-use.m4, lib/build-aux/arg-nonnull.h, - lib/build-aux/warn-on-use.h: Update gnulib files. - -2010-01-26 Simon Josefsson - - * .gitignore: Fix. - -2010-01-26 Simon Josefsson - - * lib/gl/tests/macros.h, lib/gl/tests/signature.h: Update gnulib - files. - -2010-01-26 Simon Josefsson - - * .gitignore: Fix - -2010-01-26 Simon Josefsson - - * gl/tests/macros.h, gl/tests/signature.h, - gl/tests/test-sys_ioctl.c: Update gnulib files. - -2010-01-26 Simon Josefsson - - * GNUmakefile, build-aux/arg-nonnull.h, build-aux/config.rpath, - build-aux/gendocs.sh, build-aux/gnupload, build-aux/link-warning.h, - build-aux/pmccabe2html, build-aux/useless-if-before-free, - build-aux/vc-list-files, build-aux/warn-on-use.h, gl/Makefile.am, - gl/accept.c, gl/alignof.h, gl/alloca.c, gl/alloca.in.h, - gl/arpa_inet.in.h, gl/asnprintf.c, gl/bind.c, gl/c-ctype.c, - gl/c-ctype.h, gl/close-hook.c, gl/close-hook.h, gl/close.c, - gl/connect.c, gl/errno.in.h, gl/error.c, gl/error.h, gl/fclose.c, - gl/float+.h, gl/float.in.h, gl/fseeko.c, gl/gai_strerror.c, - gl/getaddrinfo.c, gl/getdelim.c, gl/getline.c, gl/getpass.c, - gl/getpass.h, gl/gettext.h, gl/inet_ntop.c, gl/inet_pton.c, - gl/intprops.h, gl/listen.c, gl/lseek.c, gl/m4/00gnulib.m4, - gl/m4/alloca.m4, gl/m4/arpa_inet_h.m4, gl/m4/autobuild.m4, - gl/m4/close.m4, gl/m4/errno_h.m4, gl/m4/error.m4, - gl/m4/extensions.m4, gl/m4/fclose.m4, gl/m4/float_h.m4, - gl/m4/fseeko.m4, gl/m4/getaddrinfo.m4, gl/m4/getdelim.m4, - gl/m4/getline.m4, gl/m4/getpass.m4, gl/m4/gettimeofday.m4, - gl/m4/gnulib-cache.m4, gl/m4/gnulib-common.m4, - gl/m4/gnulib-comp.m4, gl/m4/gnulib-tool.m4, gl/m4/hostent.m4, - gl/m4/include_next.m4, gl/m4/inet_ntop.m4, gl/m4/inet_pton.m4, - gl/m4/intmax_t.m4, gl/m4/inttypes_h.m4, gl/m4/lib-ld.m4, - gl/m4/lib-link.m4, gl/m4/lib-prefix.m4, gl/m4/longlong.m4, - gl/m4/lseek.m4, gl/m4/malloc.m4, gl/m4/manywarnings.m4, - gl/m4/memchr.m4, gl/m4/minmax.m4, gl/m4/mmap-anon.m4, - gl/m4/multiarch.m4, gl/m4/netdb_h.m4, gl/m4/netinet_in_h.m4, - gl/m4/perror.m4, gl/m4/printf.m4, gl/m4/read-file.m4, - gl/m4/readline.m4, gl/m4/realloc.m4, gl/m4/select.m4, - gl/m4/servent.m4, gl/m4/size_max.m4, gl/m4/snprintf.m4, - gl/m4/sockets.m4, gl/m4/socklen.m4, gl/m4/sockpfaf.m4, - gl/m4/stdarg.m4, gl/m4/stdbool.m4, gl/m4/stddef_h.m4, - gl/m4/stdint.m4, gl/m4/stdint_h.m4, gl/m4/stdio_h.m4, - gl/m4/stdlib_h.m4, gl/m4/strerror.m4, gl/m4/string_h.m4, - gl/m4/sys_ioctl_h.m4, gl/m4/sys_select_h.m4, gl/m4/sys_socket_h.m4, - gl/m4/sys_stat_h.m4, gl/m4/sys_time_h.m4, gl/m4/time_h.m4, - gl/m4/ungetc.m4, gl/m4/unistd_h.m4, gl/m4/vasnprintf.m4, - gl/m4/version-etc.m4, gl/m4/warnings.m4, gl/m4/wchar.m4, - gl/m4/wchar_t.m4, gl/m4/wint_t.m4, gl/m4/xsize.m4, gl/memchr.c, - gl/minmax.h, gl/netdb.in.h, gl/netinet_in.in.h, - gl/override/lib/gettext.h.diff, gl/perror.c, gl/printf-args.c, - gl/printf-args.h, gl/printf-parse.c, gl/printf-parse.h, - gl/progname.c, gl/progname.h, gl/read-file.c, gl/read-file.h, - gl/readline.c, gl/readline.h, gl/realloc.c, gl/recv.c, gl/select.c, - gl/send.c, gl/setsockopt.c, gl/shutdown.c, gl/size_max.h, - gl/snprintf.c, gl/socket.c, gl/sockets.c, gl/sockets.h, - gl/stdarg.in.h, gl/stdbool.in.h, gl/stddef.in.h, gl/stdint.in.h, - gl/stdio-impl.h, gl/stdio-write.c, gl/stdio.in.h, gl/stdlib.in.h, - gl/strerror.c, gl/string.in.h, gl/sys_select.in.h, - gl/sys_socket.in.h, gl/sys_stat.in.h, gl/sys_time.in.h, - gl/tests/Makefile.am, gl/tests/dummy.c, gl/tests/gettimeofday.c, - gl/tests/ioctl.c, gl/tests/sys_ioctl.in.h, gl/tests/test-alignof.c, - gl/tests/test-alloca-opt.c, gl/tests/test-arpa_inet.c, - gl/tests/test-c-ctype.c, gl/tests/test-errno.c, - gl/tests/test-fseeko.c, gl/tests/test-getaddrinfo.c, - gl/tests/test-getdelim.c, gl/tests/test-getline.c, - gl/tests/test-gettimeofday.c, gl/tests/test-inet_ntop.c, - gl/tests/test-inet_pton.c, gl/tests/test-lseek.c, - gl/tests/test-memchr.c, gl/tests/test-netdb.c, - gl/tests/test-netinet_in.c, gl/tests/test-perror.c, - gl/tests/test-read-file.c, gl/tests/test-select-fd.c, - gl/tests/test-select-stdin.c, gl/tests/test-select.c, - gl/tests/test-snprintf.c, gl/tests/test-stdbool.c, - gl/tests/test-stddef.c, gl/tests/test-stdint.c, - gl/tests/test-stdio.c, gl/tests/test-stdlib.c, - gl/tests/test-strerror.c, gl/tests/test-string.c, - gl/tests/test-sys_select.c, gl/tests/test-sys_socket.c, - gl/tests/test-sys_stat.c, gl/tests/test-sys_time.c, - gl/tests/test-time.c, gl/tests/test-unistd.c, - gl/tests/test-vasnprintf.c, gl/tests/test-vc-list-files-cvs.sh, - gl/tests/test-vc-list-files-git.sh, gl/tests/test-version-etc.c, - gl/tests/test-version-etc.sh, gl/tests/test-wchar.c, - gl/tests/verify.h, gl/tests/w32sock.h, gl/tests/zerosize-ptr.h, - gl/time.in.h, gl/unistd.in.h, gl/vasnprintf.c, gl/vasnprintf.h, - gl/version-etc-fsf.c, gl/version-etc.c, gl/version-etc.h, - gl/w32sock.h, gl/wchar.in.h, gl/xsize.h, - lib/build-aux/config.rpath, lib/build-aux/link-warning.h, - lib/gl/Makefile.am, lib/gl/alignof.h, lib/gl/alloca.in.h, - lib/gl/asnprintf.c, lib/gl/asprintf.c, lib/gl/byteswap.in.h, - lib/gl/c-ctype.c, lib/gl/c-ctype.h, lib/gl/close-hook.c, - lib/gl/close-hook.h, lib/gl/errno.in.h, lib/gl/float+.h, - lib/gl/float.in.h, lib/gl/fseeko.c, lib/gl/gettext.h, - lib/gl/lseek.c, lib/gl/m4/00gnulib.m4, lib/gl/m4/alloca.m4, - lib/gl/m4/byteswap.m4, lib/gl/m4/codeset.m4, lib/gl/m4/errno_h.m4, - lib/gl/m4/extensions.m4, lib/gl/m4/float_h.m4, lib/gl/m4/fseeko.m4, - lib/gl/m4/func.m4, lib/gl/m4/gettext.m4, lib/gl/m4/glibc2.m4, - lib/gl/m4/glibc21.m4, lib/gl/m4/gnulib-cache.m4, - lib/gl/m4/gnulib-common.m4, lib/gl/m4/gnulib-comp.m4, - lib/gl/m4/gnulib-tool.m4, lib/gl/m4/iconv.m4, - lib/gl/m4/include_next.m4, lib/gl/m4/intdiv0.m4, lib/gl/m4/intl.m4, - lib/gl/m4/intldir.m4, lib/gl/m4/intlmacosx.m4, lib/gl/m4/intmax.m4, - lib/gl/m4/intmax_t.m4, lib/gl/m4/inttypes-pri.m4, - lib/gl/m4/inttypes_h.m4, lib/gl/m4/lcmessage.m4, - lib/gl/m4/ld-output-def.m4, lib/gl/m4/ld-version-script.m4, - lib/gl/m4/lib-ld.m4, lib/gl/m4/lib-link.m4, - lib/gl/m4/lib-prefix.m4, lib/gl/m4/lock.m4, lib/gl/m4/longlong.m4, - lib/gl/m4/lseek.m4, lib/gl/m4/malloc.m4, lib/gl/m4/memchr.m4, - lib/gl/m4/memmem.m4, lib/gl/m4/minmax.m4, lib/gl/m4/mmap-anon.m4, - lib/gl/m4/multiarch.m4, lib/gl/m4/netdb_h.m4, lib/gl/m4/nls.m4, - lib/gl/m4/po.m4, lib/gl/m4/printf-posix.m4, lib/gl/m4/printf.m4, - lib/gl/m4/progtest.m4, lib/gl/m4/read-file.m4, - lib/gl/m4/realloc.m4, lib/gl/m4/size_max.m4, lib/gl/m4/snprintf.m4, - lib/gl/m4/sockets.m4, lib/gl/m4/socklen.m4, lib/gl/m4/sockpfaf.m4, - lib/gl/m4/stdbool.m4, lib/gl/m4/stddef_h.m4, lib/gl/m4/stdint.m4, - lib/gl/m4/stdint_h.m4, lib/gl/m4/stdio_h.m4, lib/gl/m4/stdlib_h.m4, - lib/gl/m4/strcase.m4, lib/gl/m4/string_h.m4, - lib/gl/m4/strings_h.m4, lib/gl/m4/strverscmp.m4, - lib/gl/m4/sys_socket_h.m4, lib/gl/m4/sys_stat_h.m4, - lib/gl/m4/threadlib.m4, lib/gl/m4/time_h.m4, lib/gl/m4/time_r.m4, - lib/gl/m4/uintmax_t.m4, lib/gl/m4/ungetc.m4, lib/gl/m4/unistd_h.m4, - lib/gl/m4/vasnprintf.m4, lib/gl/m4/vasprintf.m4, - lib/gl/m4/visibility.m4, lib/gl/m4/vsnprintf.m4, - lib/gl/m4/wchar.m4, lib/gl/m4/wchar_t.m4, lib/gl/m4/wint_t.m4, - lib/gl/m4/xsize.m4, lib/gl/memchr.c, lib/gl/memmem.c, - lib/gl/minmax.h, lib/gl/netdb.in.h, - lib/gl/override/lib/gettext.h.diff, lib/gl/printf-args.c, - lib/gl/printf-args.h, lib/gl/printf-parse.c, lib/gl/printf-parse.h, - lib/gl/read-file.c, lib/gl/read-file.h, lib/gl/realloc.c, - lib/gl/size_max.h, lib/gl/snprintf.c, lib/gl/sockets.c, - lib/gl/sockets.h, lib/gl/stdbool.in.h, lib/gl/stddef.in.h, - lib/gl/stdint.in.h, lib/gl/stdio-impl.h, lib/gl/stdio-write.c, - lib/gl/stdio.in.h, lib/gl/stdlib.in.h, lib/gl/str-two-way.h, - lib/gl/strcasecmp.c, lib/gl/string.in.h, lib/gl/strings.in.h, - lib/gl/strncasecmp.c, lib/gl/strverscmp.c, lib/gl/sys_socket.in.h, - lib/gl/sys_stat.in.h, lib/gl/tests/Makefile.am, - lib/gl/tests/dummy.c, lib/gl/tests/intprops.h, - lib/gl/tests/test-alloca-opt.c, lib/gl/tests/test-byteswap.c, - lib/gl/tests/test-c-ctype.c, lib/gl/tests/test-errno.c, - lib/gl/tests/test-fseeko.c, lib/gl/tests/test-func.c, - lib/gl/tests/test-memchr.c, lib/gl/tests/test-netdb.c, - lib/gl/tests/test-read-file.c, lib/gl/tests/test-snprintf.c, - lib/gl/tests/test-stdbool.c, lib/gl/tests/test-stddef.c, - lib/gl/tests/test-stdint.c, lib/gl/tests/test-stdio.c, - lib/gl/tests/test-stdlib.c, lib/gl/tests/test-string.c, - lib/gl/tests/test-strings.c, lib/gl/tests/test-strverscmp.c, - lib/gl/tests/test-sys_socket.c, lib/gl/tests/test-sys_stat.c, - lib/gl/tests/test-time.c, lib/gl/tests/test-unistd.c, - lib/gl/tests/test-vasnprintf.c, lib/gl/tests/test-vasprintf.c, - lib/gl/tests/test-vsnprintf.c, lib/gl/tests/test-wchar.c, - lib/gl/tests/verify.h, lib/gl/tests/zerosize-ptr.h, - lib/gl/time.in.h, lib/gl/time_r.c, lib/gl/unistd.in.h, - lib/gl/vasnprintf.c, lib/gl/vasnprintf.h, lib/gl/vasprintf.c, - lib/gl/vsnprintf.c, lib/gl/w32sock.h, lib/gl/wchar.in.h, - lib/gl/xsize.h, libextra/build-aux/config.rpath, - libextra/gl/gnulib.mk, libextra/gl/hmac-md5.c, libextra/gl/hmac.h, - libextra/gl/m4/00gnulib.m4, libextra/gl/m4/extensions.m4, - libextra/gl/m4/gnulib-cache.m4, libextra/gl/m4/gnulib-common.m4, - libextra/gl/m4/gnulib-comp.m4, libextra/gl/m4/gnulib-tool.m4, - libextra/gl/m4/hmac-md5.m4, libextra/gl/m4/ld-output-def.m4, - libextra/gl/m4/ld-version-script.m4, libextra/gl/m4/lib-ld.m4, - libextra/gl/m4/lib-link.m4, libextra/gl/m4/lib-prefix.m4, - libextra/gl/m4/md5.m4, libextra/gl/m4/memxor.m4, libextra/gl/md5.c, - libextra/gl/md5.h, libextra/gl/memxor.c, libextra/gl/memxor.h, - maint.mk: Update gnulib files. - -2010-01-22 Nikos Mavrogiannopoulos - - * NEWS: Documented addition of new priority strings. - -2010-01-22 Nikos Mavrogiannopoulos - - * NEWS: Documented Steve Dispensa's patch addition. - -2010-01-22 Nikos Mavrogiannopoulos - - * tests/safe-renegotiation/testsrn: Added tests for new behaviour of - client. - -2010-01-22 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c: Revert "Always allow initial negotiation. - Disable subsequent unsafe renegotiations." This reverts commit - 1e4981cfbec360a19cfb7470ce96093aaa95b32e. Ah, this was to twart the attack (description by Daniel Kahn - Gilmor): The problem, as i understand it, is that the client is - incapable of telling whether the plaintext prefix injection attack - has already happened. I don't think disabling renegotiation for the - session resolves the problem. For a server which does not announce and enforce safe renegotiation, - what the client sees as an initial connection may unknowingly - actually be renegotiating an existing session that was started by an - attacker. The concern isn't that the (legitimate) client will have their - session re-negotiated by an attacker; it's that the MITM attacker - can trick the server into viewing the client's initial - authentication as a re-negotiation of a TLS session already - underway. for servers which do odd things like apply the credentials of the - post-renegotiation client to the traffic that happened before the - renegotiation (e.g. HTTPS, with client-side certificates required - only for certain subdirectories), a safe-renegotiation-aware client - *should* refuse to connect to servers which do not announce safe - renegotiation if they want to resist this attack. - -2010-01-21 Nikos Mavrogiannopoulos - - * configure.ac: Added safe-renegotiation subdir. - -2010-01-21 Nikos Mavrogiannopoulos - - * lib/ext_safe_renegotiation.c, lib/gnutls_handshake.c, - lib/gnutls_int.h, lib/gnutls_priority.c, tests/Makefile.am, - tests/safe-renegotiation/Makefile.am, - tests/safe-renegotiation/params.dh, - tests/safe-renegotiation/testsrn: Added safe renegotiation test - cases. Added priority string option to completely disable - renegotiation to assist in testing more cases. - -2010-01-21 Nikos Mavrogiannopoulos - - * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa: Added the - --rehandshake option to gnutls-cli to allow connection and immediate - rehandshake. - -2010-01-21 Nikos Mavrogiannopoulos - - * lib/ext_safe_renegotiation.c: More carefull copying of data. Check - for the malicious case where a server does initial unsafe - negotiation and proceeds with a safe renegotiation. - -2010-01-21 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c: Always allow initial negotiation. Disable - subsequent unsafe renegotiations. Signed-off-by: Nikos Mavrogiannopoulos - -2010-01-21 Nikos Mavrogiannopoulos - - * lib/ext_safe_renegotiation.c, lib/gnutls_handshake.c, - lib/gnutls_int.h, lib/gnutls_state.c: Safe renegotiation variable - cleanup. No longer clear variables that should stay across - rehandshakes. - -2010-01-21 Nikos Mavrogiannopoulos - - * lib/crypto-api.c, lib/gnutls_cipher_int.c: Documented the - crypto-api functions and made the API tolerant to NULL IV. - -2010-01-21 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c: Added documentation of rehandshake usage - in gnutls if full-duplex capability is required. - -2010-01-21 Nikos Mavrogiannopoulos - - * lib/gnutls_buffers.c: Reduced asserts to reduce unneeded - printings. - -2010-01-21 Nikos Mavrogiannopoulos - - * src/cli.c, src/serv.c: Removed rehandshake initiation capability - from client and transferred it to the echo server. Once the server - receives a string **REHANDSHAKE** will request a rehandshake. - -2010-01-19 Steve Dispensa - - * lib/gnutls_handshake.c: Here is another patch that fixes an - interoperability problem with safe renegotiation and resumption. In - copying forward the safe renegotiation state across resumptions, I - got a little carried away and copied too much data (new connections - should start with empty RI data). Signed-off-by: Nikos Mavrogiannopoulos - -2010-01-15 Nikos Mavrogiannopoulos - - * lib/ext_oprfi.c, lib/ext_session_ticket.c, lib/gnutls_constate.c, - lib/gnutls_handshake.c, lib/gnutls_int.h: Modified extensions - (session ticket, oprfi) to store internal data in gnutls internal - structure and input data only in the security_parameters extension - structure. Session ticket extension will call the user supplied hello function - on resumption. (the current API to handle that is inexistant. To be revised) - -2010-01-14 Nikos Mavrogiannopoulos - - * lib/ext_session_ticket.c, lib/gnutls_constate.c, - lib/gnutls_int.h, lib/gnutls_session_pack.c: Further cleanup the - extension internal structure. Now if values are not saved and - restored when resumming they will be initialized to zero. - -2010-01-13 Nikos Mavrogiannopoulos - - * tests/chainverify.c, tests/crq_apis.c, tests/crq_key_id.c, - tests/cve-2008-4989.c, tests/dn2.c, tests/finished.c, tests/mini.c, - tests/pkcs12_s2k_pem.c, tests/tlsia.c, tests/x509sign-verify.c: - Tests compile with --enable-gcc-warnings. - -2010-01-13 Nikos Mavrogiannopoulos - - * lib/ext_safe_renegotiation.h, lib/gnutls_constate.c, - lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_int.h, - lib/gnutls_state.c, tests/resume.c, tests/simple.c: Specify in - detail what to be copied when resuming. It seems there are - extensions (like safe renegotiation) that do not need to read the - stored values. Moreover this might overcome any bugs by the - extensions that used to store pointers in the extension structure. - -2010-01-13 Nikos Mavrogiannopoulos - - * lib/ext_safe_renegotiation.c: Initialize the default value to 0. - It seemed to have default value of 0 when non resuming :) - -2010-01-13 Nikos Mavrogiannopoulos - - * doc/examples/ex-client-tlsia.c, tests/utils.c: Removed warnings. - -2010-01-13 Nikos Mavrogiannopoulos - - * configure.ac: Added -Wno-int-to-pointer-cast to enable compilation - when enable-gcc-warnings is given. - -2010-01-13 Steve Dispensa - - * lib/gnutls_handshake.c: Here are two more patches. The first adds - support for renegotiation of resumption. Also, I found a bug in my initial implementation - I was incorrectly - sending the SCSV on all connections, not only those using SSLv3, as - should have been the case. Signed-off-by: Nikos Mavrogiannopoulos - -2010-01-12 Nikos Mavrogiannopoulos - - * NEWS, doc/manpages/gnutls-cli.1, doc/manpages/gnutls-serv.1: - Documentation updates. - -2010-01-12 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c: When denying an initial negotiation due to - missing safe renegotiation extension reply with NO_RENEGOTIATION - alert. - -2010-01-12 Nikos Mavrogiannopoulos - - * lib/gnutls_extensions.c, lib/gnutls_handshake.c, - lib/includes/gnutls/gnutls.h.in, tests/resume.c: When resuming no - extensions were parsed thus the safe renegotiation extension was - ignored as well causing a false detection of unsafe session. - Corrected by making a special class of extensions called RESUMED. - Those are parsed even when resuming (normally we don't do it to - prevent clients overwriting capabilities and credentials). - -2010-01-12 Nikos Mavrogiannopoulos - - * lib/ext_safe_renegotiation.c, lib/ext_safe_renegotiation.h, - lib/gnutls_alert.c, lib/gnutls_algorithms.c, - lib/gnutls_algorithms.h, lib/gnutls_extensions.c, - lib/gnutls_extensions.h, lib/gnutls_handshake.c, lib/gnutls_int.h, - lib/gnutls_priority.c, lib/includes/gnutls/gnutls.h.in: Added Steve - Dispensa's patch for safe renegotiation (with artistic changes). - Effectively reverted my previous patch - 1a338cbaaeec11d958de8da4d1ae036979fccf3e. - -2010-01-12 Nikos Mavrogiannopoulos - - * THANKS: Updated thanks file. - -2010-01-12 Nikos Mavrogiannopoulos - - * NEWS, lib/opencdk/sig-check.c, src/certtool.c, - tests/openpgp-certs/Makefile.am, tests/openpgp-certs/testselfsigs: - When checking self signature also check the signatures of all - subkeys. Ilari Liusvaara noticed and reported the issue and - provided test vectors as well. certtool --pgp-certificate-info will check self signatures. Added self tests for self-sigs. - -2010-01-11 Nikos Mavrogiannopoulos - - * tests/gc.c: hash_fast -> hmac_fast - -2010-01-10 Nikos Mavrogiannopoulos - - * doc/manpages/gnutls-cli.1, doc/manpages/gnutls-serv.1, - lib/Makefile.am, lib/ext_safe_renegotiation.c, - lib/ext_safe_renegotiation.h, lib/gnutls_errors.c, - lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_int.h, - lib/gnutls_priority.c, lib/includes/gnutls/gnutls.h.in, src/cli.c, - src/serv.c: Added safe renegotiation patch from Steve Dispensa, - modified to suit gnutls code style and error checking. Modified to - conform to draft-ietf-tls-renegotiation-03.txt. gnutls-cli will search input for **RENEGOTIATION** to perform a - renegotiation and gnutls-serv will perform one if requested. - -2010-01-10 Nikos Mavrogiannopoulos - - * lib/x509/mpi.c: Corrections for --disable-extra-pki configure flag - to work. Patch by Bill Randle. - -2010-01-04 Andreas Metzler - - * ChangeLog, doc/certtool.cfg, doc/gnutls.texi, lib/gnutls_auth.c, - lib/gnutls_priority.c, lib/gnutls_session.c, lib/openpgp/pgp.c, - lib/openpgp/privkey.c: Typo fixes: successful, precedence, preferred - -2009-12-18 Nikos Mavrogiannopoulos - - * lib/cryptodev.c: define EALG_MAX_BLOCK_LEN if not there. - -2009-12-05 Nikos Mavrogiannopoulos - - * libextra/fipsmd5.c: use C99 initializations - -2009-12-05 Nikos Mavrogiannopoulos - - * NEWS, lib/Makefile.am, lib/compat.c, lib/crypto-api.c, - lib/crypto.c, lib/crypto.h, lib/gnutls_cipher.c, - lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, - lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, - lib/includes/gnutls/crypto.h, lib/includes/gnutls/gnutls.h.in, - lib/libgnutls.map, libextra/fipsmd5.c, src/benchmark.c: Reverted all - previous changes to combine hashes with MAC algorithms. It is now - permissible to register a hash algorithm separately from a MAC. - -2009-12-05 Nikos Mavrogiannopoulos - - * lib/crypto-api.c, lib/crypto.c, lib/crypto.h, - lib/ext_session_ticket.c, lib/gnutls_algorithms.c, - lib/gnutls_algorithms.h, lib/gnutls_cipher.c, - lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, - lib/gnutls_constate.c, lib/gnutls_constate.h, - lib/gnutls_handshake.c, lib/gnutls_hash_int.c, - lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_priority.c, - lib/gnutls_psk_netconf.c, lib/gnutls_sig.c, lib/gnutls_srp.c, - lib/gnutls_state.c, lib/gnutls_ui.c, lib/includes/gnutls/crypto.h, - lib/includes/gnutls/gnutls.h.in, lib/mac-libgcrypt.c, - lib/opencdk/dummy.c, lib/opencdk/filters.h, lib/opencdk/hash.c, - lib/opencdk/kbnode.c, lib/opencdk/main.h, lib/opencdk/opencdk.h, - lib/opencdk/pubkey.c, lib/opencdk/sig-check.c, - lib/opencdk/verify.c, lib/x509/crq.c, lib/x509/pbkdf2-sha1.c, - lib/x509/pkcs12.c, lib/x509/pkcs12_encr.c, lib/x509/privkey.c, - lib/x509/sign.c, lib/x509/verify.c, lib/x509/x509.c, - lib/x509/x509_int.h, libextra/fipsmd5.c, libextra/gnutls_openssl.c: - Revert "Merged the two internal hash API functions, to simplify and - reduce code." This reverts commit bc3e43d5f121e404aa32212dcfcc5027de807056. Conflicts: lib/crypto.c lib/gnutls_cipher.c lib/gnutls_hash_int.c lib/gnutls_hash_int.h lib/includes/gnutls/crypto.h lib/mac-libgcrypt.c - -2009-12-05 Nikos Mavrogiannopoulos - - * lib/gnutls_hash_int.c, lib/includes/gnutls/crypto.h, - lib/mac-libgcrypt.c, libextra/gnutls_openssl.c, tests/gc.c: Revert - "Added plain MD5 hash check and corrected gnutls_hash_fast() usage - in openssl.c" This reverts commit 54486afbfcf3398846d5c20d3094bdb7d0a43ff2. - -2009-12-04 Simon Josefsson - - * doc/examples/ex-x509-info.c: Improve example of printing cert - info. - -2009-12-04 Simon Josefsson - - * doc/gnutls.texi: Typo fix. Reported by Laurence in - - . - -2009-12-04 Nikos Mavrogiannopoulos - - * lib/compat.c, lib/gnutls_algorithms.h: fixes for compilation. - -2009-12-03 Simon Josefsson - - * lib/gnutls_cert.c: Check return value from - gnutls_x509_crt_get_key_usage. - -2009-12-02 Nikos Mavrogiannopoulos - - * NEWS, tests/pathlen/ca-no-pathlen.pem, - tests/pathlen/no-ca-or-pathlen.pem: This is a follow-up to commit - 3d8da5765133c6ced37bf29b5a07f950b8c26cd7, that fixes some issues - with DSA and RSA certificate encoding. Due to that the shown public - key IDs are different than the ones in previous gnutls versions. - -2009-12-02 Nikos Mavrogiannopoulos - - * lib/gnutls_cipher.c: reduced calls to gnutls_hash on - encryption/decryption. Only initialize MAC when needed. - -2009-12-02 Nikos Mavrogiannopoulos - - * lib/gnutls_hash_int.c, lib/includes/gnutls/crypto.h, - lib/mac-libgcrypt.c, libextra/gnutls_openssl.c, tests/gc.c: Added - plain MD5 hash check and corrected gnutls_hash_fast() usage in - openssl.c Corrected new hash API bug that prevented usage of plain - hash functions. - -2009-12-02 Nikos Mavrogiannopoulos - - * NEWS, doc/gnutls.texi, lib/Makefile.am, lib/compat.c, - lib/crypto.c, lib/ext_session_ticket.c, lib/gnutls_algorithms.c, - lib/gnutls_algorithms.h, lib/gnutls_cipher.c, - lib/includes/gnutls/crypto.h, lib/libgnutls.map, - lib/opencdk/read-packet.c, lib/x509/privkey_pkcs8.c, - src/benchmark.c, tests/gc.c: Exported gnutls_cipher_get_block_size() - and all hash functions added to libgnutls.map. Expanded benchmark - with 3DES and ARCFOUR. Corrected test that used non-existing symbol. - -2009-12-02 Nikos Mavrogiannopoulos - - * lib/m4/hooks.m4: Corrected check for cryptodev. Only enable it if - --enable-cryptodev is specified. - -2009-12-01 Nikos Mavrogiannopoulos - - * lib/cryptodev.c, lib/gnutls_cryptodev.h, lib/gnutls_hash_int.c, - lib/gnutls_hash_int.h, lib/mac-libgcrypt.c, lib/x509/mpi.c: - Corrected compilation issues. - -2009-11-30 Nikos Mavrogiannopoulos - - * configure.ac, lib/m4/hooks.m4: Moved cryptodev check to - lib/m4/hooks.m4 and now --enable-cryptodev actually works. - -2009-11-30 Simon Josefsson - - * lib/gnutls_x509.c: Doc fix. - -2009-11-30 Nikos Mavrogiannopoulos - - * lib/cryptodev.c: corrected old type. - -2009-11-30 Nikos Mavrogiannopoulos - - * lib/cryptodev.c: Only include cryptodev.h if cryptodev is there. - -2009-11-29 Nikos Mavrogiannopoulos - - * lib/crypto-api.c, lib/crypto.c, lib/crypto.h, - lib/ext_session_ticket.c, lib/gnutls_algorithms.c, - lib/gnutls_algorithms.h, lib/gnutls_cipher.c, - lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, - lib/gnutls_constate.c, lib/gnutls_constate.h, - lib/gnutls_handshake.c, lib/gnutls_hash_int.c, - lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_priority.c, - lib/gnutls_psk_netconf.c, lib/gnutls_sig.c, lib/gnutls_srp.c, - lib/gnutls_state.c, lib/gnutls_ui.c, lib/includes/gnutls/crypto.h, - lib/includes/gnutls/gnutls.h.in, lib/mac-libgcrypt.c, - lib/opencdk/dummy.c, lib/opencdk/filters.h, lib/opencdk/hash.c, - lib/opencdk/kbnode.c, lib/opencdk/main.h, lib/opencdk/opencdk.h, - lib/opencdk/pubkey.c, lib/opencdk/sig-check.c, - lib/opencdk/verify.c, lib/x509/crq.c, lib/x509/pbkdf2-sha1.c, - lib/x509/pkcs12.c, lib/x509/pkcs12_encr.c, lib/x509/privkey.c, - lib/x509/sign.c, lib/x509/verify.c, lib/x509/x509.c, - lib/x509/x509_int.h, libextra/fipsmd5.c, libextra/gnutls_openssl.c: - Merged the two internal hash API functions, to simplify and reduce - code. gnutls_hmac* and gnutls_hash* were merged to gnutls_hash API. - -2009-11-29 Nikos Mavrogiannopoulos - - * .gitignore, configure.ac, lib/Makefile.am, lib/crypto-api.c, - lib/crypto.c, lib/cryptodev.c, lib/gnutls_cipher_int.c, - lib/gnutls_cryptodev.h, lib/gnutls_errors.c, lib/gnutls_global.c, - lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, - lib/includes/gnutls/crypto.h, lib/includes/gnutls/gnutls.h.in, - lib/libgnutls.map, src/Makefile.am, src/benchmark.c: Added cryptodev - support (/dev/crypto). Tested with - http://www.logix.cz/michal/devel/cryptodev/. Added benchmark - utility for AES. Exported API to access encryption algorithms. - -2009-11-28 Nikos Mavrogiannopoulos - - * NEWS: Documented certtool's certificate request generation fix. - -2009-11-28 Nikos Mavrogiannopoulos - - * lib/x509/mpi.c: Corrected two issues that affected certificate - request generation. 1. Null padding is added on integers (found thanks to Wilankar - Trupti ) 2. In optional SignatureAlgorithm parameters field for DSA keys the - DSA parameters were added. Those were rejected by verisign. Gnutls - no longer adds those parameters there since other implementations - don't do either and having them does not seem to offer anything - (anyway you need the signer's certificate to verify thus public key - will be available). - -2009-11-27 Simon Josefsson - - * doc/manpages/Makefile.am, tests/key-id/key-id, - tests/nist-pkits/gnutls_test_entry, tests/x509paths/chain: More - fixes of grep -q problem. - -2009-11-27 Simon Josefsson - - * NEWS: Add. - -2009-11-24 Nikos Mavrogiannopoulos - - * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, - src/certtool.gaa: Allow exporting of Certificate requests to DER - format. Added option --no-crq-extensions to avoid adding extensions - to a request. - -2009-11-23 Simon Josefsson - - * tests/rfc2253-escape-test: Don't use 'grep -q', to fix portability - to OpenSolaris. Reported by "Dr. David Kirkby" in - - . - -2009-11-16 Simon Josefsson - - * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, - libextra/configure.ac: Bump versions. - -2009-11-15 Simon Josefsson - - * doc/guile.texi: Doc fix. - -2009-11-15 Simon Josefsson - - * gl/Makefile.am, gl/intprops.h, gl/m4/sys_stat_h.m4, - gl/m4/unistd_h.m4, gl/sys_stat.in.h, gl/unistd.in.h, - gl/version-etc.c, lib/gl/Makefile.am, lib/gl/m4/sys_stat_h.m4, - lib/gl/m4/unistd_h.m4, lib/gl/sys_stat.in.h, - lib/gl/tests/intprops.h, lib/gl/unistd.in.h, maint.mk: Update gnulib - files. - -2009-11-09 Simon Josefsson - - * ChangeLog: Generated. - -2009-11-09 Simon Josefsson - - * NEWS: Version 2.9.9. - -2009-11-09 Simon Josefsson - - * build-aux/pmccabe2html, gl/Makefile.am, gl/getpagesize.c, - gl/m4/getpagesize.m4, gl/m4/gnulib-comp.m4, gl/tests/test-fseeko.c, - lib/gl/Makefile.am, lib/gl/getpagesize.c, lib/gl/m4/getpagesize.m4, - lib/gl/m4/gnulib-comp.m4, lib/gl/tests/test-fseeko.c: Update gnulib - files. - -2009-11-09 Simon Josefsson - - * NEWS: Add. - -2009-11-09 Simon Josefsson - - * src/certtool.c: Cleanup header inclusion. - -2009-11-09 Simon Josefsson - - * NEWS: Fix. - -2009-11-06 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c: More dead code removed. Based on - suggestions by Steve Grubb and Tomaz Mraz - -2009-11-06 Simon Josefsson - - * NEWS: Add. - -2009-11-06 Simon Josefsson - - * configure.ac, m4/valgrind.m4: Fix --disable-valgrind-tests. - -2009-11-06 Simon Josefsson - - * gl/tests/Makefile.am: Update gnulib files. - -2009-11-06 Simon Josefsson - - * gl/m4/getaddrinfo.m4, gl/m4/gnulib-comp.m4, maint.mk: Update - gnulib files. - -2009-11-06 Simon Josefsson - - * src/Makefile.am: Link to libgcrypt explicitly when libgcrypt - functions are used. - -2009-11-06 Simon Josefsson - - * src/certtool.c, src/serv.c: Fix libgcrypt usage. - -2009-11-05 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c: Simplified code which was based on older - version of internal structures. Based on observations by Steve - Grubb and Tomas Mraz. - -2009-11-05 Nikos Mavrogiannopoulos - - * NEWS: Corrected bug fix author. - -2009-11-05 Nikos Mavrogiannopoulos - - * NEWS: Documented previous commit. - -2009-11-05 Nikos Mavrogiannopoulos - - * lib/auth_cert.c, lib/gnutls_constate.c, lib/gnutls_sig.c, - libextra/gnutls_openssl.c, src/certtool.c, src/cfg/cfg+.c, - src/cfg/platon/str/strdyn.c, src/serv.c: Cleanups and several bug - fixes found by Tomas Mraz. "I've patched the following problems in the code found by review of - gnutls-2.8.5 code done by Steve Grubb. See the patch attached. The gnutls_constate.c bug might be potentially serious so I've - decided to mail it to you directly, not to the public mailing list. The auth_cert.c change is just cleanup of the code. In gnutls_openssl.c I've just fixed the potential crasher, correct - fix would require using asprintf or precomputed length of the buffer - to allocate a memory. The certtool.c change is again just a cleanup." - -2009-11-05 Simon Josefsson - - * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, - libextra/configure.ac: Bump versions. - -2009-11-05 Simon Josefsson - - * ChangeLog: Generated. - -2009-11-05 Simon Josefsson - - * NEWS: Version 2.9.8. - -2009-11-05 Simon Josefsson - - * lib/gl/tests/test-func.c: Update gnulib files. - -2009-11-05 Simon Josefsson - - * gl/m4/gnulib-comp.m4, gl/m4/inet_ntop.m4, gl/m4/inet_pton.m4, - gl/tests/Makefile.am, gl/tests/test-inet_ntop.c, - gl/tests/test-inet_pton.c, gl/tests/test-sys_socket.c, - lib/gl/tests/test-func.c, lib/gl/tests/test-sys_socket.c, - libextra/gl/md5.c: Update gnulib files. - -2009-11-05 Simon Josefsson - - * lib/m4/hooks.m4: Make sure libgcrypt's dependency on libgpg-error - is known. - -2009-11-05 Simon Josefsson - - * doc/manpages/Makefile.am: Fix API name change. - -2009-11-05 Simon Josefsson - - * doc/gnutls.texi: Fix API name change. - -2009-11-05 Simon Josefsson - - * doc/examples/ex-cert-select.c, doc/examples/ex-client-psk.c, - doc/examples/ex-pkcs12.c, doc/examples/ex-serv-anon.c, - doc/examples/ex-serv-export.c, doc/examples/ex-serv-pgp.c, - doc/examples/ex-serv-psk.c, doc/examples/ex-serv-srp.c, - doc/examples/ex-serv1.c, guile/src/core.c, lib/auth_cert.c, - lib/auth_dhe.c, lib/auth_rsa_export.c, lib/auth_srp.c, - lib/auth_srp_passwd.c, lib/auth_srp_rsa.c, lib/ext_cert_type.c, - lib/ext_server_name.c, lib/ext_session_ticket.c, - lib/ext_signature.c, lib/gnutls_algorithms.c, lib/gnutls_buffers.c, - lib/gnutls_cert.c, lib/gnutls_cipher.c, lib/gnutls_errors.c, - lib/gnutls_extensions.c, lib/gnutls_handshake.c, - lib/gnutls_hash_int.c, lib/gnutls_mpi.c, lib/gnutls_priority.c, - lib/gnutls_psk.c, lib/gnutls_record.c, lib/gnutls_session_pack.c, - lib/gnutls_sig.c, lib/gnutls_state.c, lib/gnutls_str.c, - lib/gnutls_supplemental.c, lib/gnutls_ui.c, lib/gnutls_x509.c, - lib/minitasn1/decoding.c, lib/opencdk/armor.c, lib/opencdk/keydb.c, - lib/opencdk/literal.c, lib/opencdk/misc.c, - lib/opencdk/new-packet.c, lib/opencdk/read-packet.c, - lib/opencdk/sig-check.c, lib/opencdk/stream.c, - lib/opencdk/verify.c, lib/openpgp/gnutls_openpgp.c, - lib/openpgp/output.c, lib/openpgp/pgp.c, lib/x509/crq.c, - lib/x509/dn.c, lib/x509/pkcs12.c, lib/x509/pkcs12_bag.c, - lib/x509/privkey_pkcs8.c, lib/x509/verify.c, lib/x509/x509_write.c, - libextra/gl/md5.c, libextra/gnutls_openssl.c, src/certtool-cfg.c, - src/cli.c, src/common.c, src/crypt.c, src/psk.c, src/serv.c, - tests/anonself.c, tests/chainverify.c, tests/crq_apis.c, - tests/cve-2008-4989.c, tests/cve-2009-1415.c, tests/dhepskself.c, - tests/dn2.c, tests/finished.c, tests/hostname-check.c, - tests/mini-eagain.c, tests/mini.c, tests/nul-in-x509-names.c, - tests/openpgpself.c, tests/oprfi.c, tests/pkcs12_encode.c, - tests/pkcs12_s2k.c, tests/pkcs12_s2k_pem.c, tests/pskself.c, - tests/resume.c, tests/tlsia.c, tests/x509_altname.c, - tests/x509dn.c, tests/x509self.c, tests/x509sign-verify.c, - tests/x509signself.c: Indent code. - -2009-11-05 Simon Josefsson - - * doc/examples/ex-cert-select.c, src/cli.c: Fix API name change. - -2009-11-05 Simon Josefsson - - * NEWS, doc/manpages/Makefile.am, lib/ext_signature.c, - lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map: Fix NEWS blurb. - Shorten new API name. - -2009-11-05 Simon Josefsson - - * lib/ext_signature.c: Doc fix, add Since tag. - -2009-11-05 Simon Josefsson - - * lib/ext_signature.c: Indent code. - -2009-11-05 Simon Josefsson - - * gl/m4/inet_ntop.m4, gl/m4/inet_pton.m4: Fix compile error. Tiny patch by Brad Hards in - - . - -2009-11-05 Simon Josefsson - - * lib/ext_signature.c: Fix compile errors. Tiny patch from Brad Hards in - - . - -2009-11-05 Simon Josefsson - - * lib/auth_cert.c: Fix compile errors. Tiny patch from Brad Hards in - - . - -2009-11-05 Simon Josefsson - - * gl/Makefile.am, gl/m4/stdlib_h.m4, gl/stdlib.in.h, - gl/tests/test-getaddrinfo.c, lib/gl/Makefile.am, - lib/gl/m4/stdlib_h.m4, lib/gl/stdlib.in.h: Update gnulib files. - -2009-11-05 Simon Josefsson - - * NEWS: Add. - -2009-11-05 Simon Josefsson - - * lib/po/vi.po.in: Sync with TP. - -2009-11-03 Simon Josefsson - - * doc/examples/Makefile.am, src/Makefile.am, tests/Makefile.am: Use - INET_NTOP_LIB and INET_PTON_LIB. - -2009-11-03 Simon Josefsson - - * build-aux/pmccabe2html, build-aux/useless-if-before-free, - gl/m4/fseeko.m4, gl/m4/gnulib-comp.m4, gl/m4/inet_ntop.m4, - gl/m4/inet_pton.m4, gl/m4/pmccabe2html.m4, gl/m4/ungetc.m4, - gl/sockets.c, gl/stdio.in.h, gl/sys_stat.in.h, - gl/tests/test-arpa_inet.c, gl/tests/test-getaddrinfo.c, - gl/tests/test-getdelim.c, gl/tests/test-getline.c, - gl/tests/test-gettimeofday.c, gl/tests/test-memchr.c, - gl/tests/test-netinet_in.c, gl/tests/test-select-stdin.c, - gl/tests/test-select.c, gl/tests/test-sockets.c, - gl/tests/test-stddef.c, gl/tests/test-stdint.c, - gl/tests/test-stdio.c, gl/tests/test-stdlib.c, - gl/tests/test-strerror.c, gl/tests/test-string.c, - gl/tests/test-sys_select.c, gl/tests/test-sys_socket.c, - gl/tests/test-sys_stat.c, gl/tests/test-sys_time.c, - gl/tests/test-time.c, gl/tests/test-unistd.c, - gl/tests/test-version-etc.c, gl/tests/test-wchar.c, - lib/gl/m4/fseeko.m4, lib/gl/m4/ungetc.m4, lib/gl/sockets.c, - lib/gl/stdio.in.h, lib/gl/sys_stat.in.h, - lib/gl/tests/test-memchr.c, lib/gl/tests/test-sockets.c, - lib/gl/tests/test-stddef.c, lib/gl/tests/test-stdint.c, - lib/gl/tests/test-stdio.c, lib/gl/tests/test-stdlib.c, - lib/gl/tests/test-string.c, lib/gl/tests/test-strverscmp.c, - lib/gl/tests/test-sys_socket.c, lib/gl/tests/test-sys_stat.c, - lib/gl/tests/test-time.c, lib/gl/tests/test-unistd.c, - lib/gl/tests/test-wchar.c, libextra/gl/md5.c, maint.mk: Update - gnulib files. - -2009-11-02 Simon Josefsson - - * NEWS: Fix. - -2009-11-02 Simon Josefsson - - * tests/chainverify.c: Fix time bomb in chainverify self-test. Reported by Andreas Metzler in - - . - -2009-11-01 Nikos Mavrogiannopoulos - - * NEWS: Documented change for certificate retrieval callbacks. - -2009-11-01 Nikos Mavrogiannopoulos - - * src/cli.c: do not use gnutls_x509_crt_get_signature_algorithm() on - null certificates. - -2009-11-01 Nikos Mavrogiannopoulos - - * lib/auth_cert.c: Do not check signature algorithms for certificate - selection when using openpgp certificates. - -2009-11-01 Nikos Mavrogiannopoulos - - * doc/manpages/gnutls-cli.1: Avoid code duplication by using all the - functions defined in gnutls_algorithms to map from TLS 1.2 signature - algorithm numbers to gnutls signature algorithms. Added minimal documentation for SIGN-* in gnutls-cli priority - strings. Corrected bug in signature algorithm extension generation. - -2009-11-01 Nikos Mavrogiannopoulos - - * lib/auth_cert.c, lib/auth_dhe.c, lib/ext_signature.c, - lib/ext_signature.h, lib/gnutls_algorithms.c, - lib/gnutls_algorithms.h, lib/gnutls_int.h, lib/gnutls_sig.c: Avoid - code duplication by using all the functions defined in - gnutls_algorithms to map from TLS 1.2 signature algorithm numbers to - gnutls signature algorithms. Added minimal documentation for SIGN-* in gnutls-cli priority - strings. Corrected bug in signature algorithm extension generation. - -2009-11-01 Nikos Mavrogiannopoulos - - * lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa_export.c, - lib/auth_srp_rsa.c, lib/gnutls_sig.c, lib/gnutls_sig.h: Rationalized - function names for signature generation and verification during - handshake. _gnutls_tls_sign_hdata -> - _gnutls_handshake_sign_cert_vrfy _gnutls_verify_sig_hdata -> - _gnutls_handshake_verify_cert_vrfy _gnutls_tls_sign_params -> - _gnutls_handshake_sign_data _gnutls_verify_sig_params -> - _gnutls_handshake_verify_data - -2009-11-01 Nikos Mavrogiannopoulos - - * lib/ext_signature.c: Do not output error if a server replies with - a SignatureAlgorithms extension. - -2009-11-01 Nikos Mavrogiannopoulos - - * tests/dn2.c, tests/pathlen/ca-no-pathlen.pem: RSA_SHA -> RSA_SHA1 - -2009-11-01 Nikos Mavrogiannopoulos - - * NEWS: Documented memory leak fix. - -2009-11-01 Nikos Mavrogiannopoulos - - * NEWS, doc/examples/ex-cert-select.c, doc/gnutls.texi, - lib/auth_cert.c, lib/ext_cert_type.c, lib/ext_cert_type.h, - lib/ext_signature.c, lib/ext_signature.h, lib/gnutls_alert.c, - lib/gnutls_sig.c, lib/gnutls_state.c, lib/gnutls_state.h, - lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, src/cli.c: Final - touch on signature algorithms in TLS 1.2 support. Added function - gnutls_session_sign_algorithm_get_requested() for callbacks to be - able to verify they return a correct certificate as well as - documentation for its usage. - -2009-11-01 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/auth_cert.c, lib/auth_cert.h, - lib/ext_signature.c, lib/ext_signature.h, lib/gnutls_algorithms.c, - lib/gnutls_algorithms.h, lib/gnutls_cert.c, lib/gnutls_cert.h, - lib/gnutls_errors.c, lib/gnutls_extensions.c, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_priority.c, - lib/gnutls_sig.c, lib/gnutls_sig.h, lib/gnutls_state.c, - lib/gnutls_state.h, lib/gnutls_x509.c, - lib/includes/gnutls/gnutls.h.in, lib/openpgp/gnutls_openpgp.c: - Improved TLS 1.2 support. Added support for the SignatureAlgorithm - extension as well for the SignatureAlgorithm in certificate request. Limitation for TLS 1.2 clients: Only SHA1 or SHA256 are supported for generating signatures in - certificate verify message. That is to avoid storing all handshake - messages in memory. To be reconsidered in the future. - -2009-11-01 Nikos Mavrogiannopoulos - - * lib/gnutls_global.c: fixes in order to compile with -Werror - -2009-10-31 Nikos Mavrogiannopoulos - - * lib/ext_cert_type.c, lib/gnutls_cipher.c: remove unnessesary - warning. - -2009-10-31 Nikos Mavrogiannopoulos - - * lib/ext_cert_type.c: correctly check extension size. - -2009-10-28 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_handshake.c: When resuming a session do not - overwrite the initial session data with resumed session data. - Discovered on discussion at help-gnutls with Sebastien Decugis. - -2009-10-26 Simon Josefsson - - * lib/gnutls_cipher.c, lib/gnutls_handshake.c, src/certtool.c: Fix - code style so it compiles with gcc 4.4 with warnings. - -2009-10-26 Simon Josefsson - - * gl/Makefile.am, gl/m4/sys_stat_h.m4, gl/sys_stat.in.h, - lib/gl/Makefile.am, lib/gl/m4/sys_stat_h.m4, lib/gl/sys_stat.in.h: - Update gnulib files. - -2009-10-26 Simon Josefsson - - * .gitignore: Drop unknown mini-hfail. - -2009-10-26 Simon Josefsson - - * NEWS: Add. - -2009-10-25 Daiki Ueno - - * lib/gnutls_handshake.c: Enable ClientHello to carry arbitrary - length extension data. - -2009-10-25 Nikos Mavrogiannopoulos - - * lib/includes/gnutls/pkcs12.h, lib/pkix.asn, lib/pkix_asn1_tab.c, - lib/x509/pkcs12.c, lib/x509/pkcs12_bag.c, lib/x509/x509_int.h, - src/certtool.c: Added GNUTLS_BAG_SECRET that adds support for - storing a randomly generated key into a PKCS-12 structure. This is a - gnutls extension, since PKCS-12 does not specify what should be in - the secret bag. What we do is store the key as OCTET string and - specify an OID of the PKCS-9 random nonce. - -2009-10-25 Nikos Mavrogiannopoulos - - * NEWS, lib/x509/privkey_pkcs8.c: Corrected warnings in picky - compilers and rearanged code. - -2009-10-24 Nikos Mavrogiannopoulos - - * doc/manpages/certtool.1, lib/cipher-libgcrypt.c, - lib/gnutls_algorithms.c, lib/includes/gnutls/gnutls.h.in, - lib/includes/gnutls/x509.h, lib/pkix.asn, lib/pkix_asn1_tab.c, - lib/x509/pkcs12_bag.c, lib/x509/privkey_pkcs8.c, - lib/x509/x509_int.h, src/certtool-gaa.c, src/certtool-gaa.h, - src/certtool.c, src/certtool.gaa: Added support for the AES family - of ciphers in the PKCS8 and 12 encryption options. - -2009-10-24 Nikos Mavrogiannopoulos - - * .gitignore: Do not print auto-generated files. - -2009-10-23 Simon Josefsson - - * THANKS: Add. - -2009-10-23 Simon Josefsson - - * lib/gnutlsxx.cpp: Fix forgotten braces. Reported by Jason Pettiss . - -2009-10-23 Simon Josefsson - - * lib/gnutlsxx.cpp: Indent code. - -2009-10-22 Nikos Mavrogiannopoulos - - * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cipher.c, - lib/gnutls_handshake.c, lib/gnutls_handshake.h, - lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, - lib/gnutls_sig.c, lib/gnutls_state.c: 1. Fix for memory leaks on interrupted handshake. 2. Fixes issue where a TLS 1.2 client will wrongly calculate hashes - if the server will select a different than 1.2 protocol. 3. In TLS 1.2 when a certificate request is sent, support is not - complete. In that case abort the handshake. By checking TLS 1.2 it - seems that the algorithms to be used for the signature in the - certificate verify message are negotiated not at the client/server - hello messages but rather selected by the server at the certificate - request. This might not look as bad, but since in this message we - have to sign all previous handshake messages, it forces us to keep - all the handshake messages into a buffer until this point... I don't - know who proposed this change to the TLS WG, but it seems it wasn't - really thought of. - -2009-10-20 Simon Josefsson - - * tests/chainverify.c: Fix expired cert. - -2009-10-16 Simon Josefsson - - * src/cli.c: Make sure we use libgcrypt correctly. - -2009-10-15 Simon Josefsson - - * gl/m4/time_h.m4: Update gnulib files. - -2009-10-15 Simon Josefsson - - * gl/Makefile.am, gl/m4/gnulib-comp.m4, gl/m4/sys_stat_h.m4, - gl/sys_stat.in.h, gl/tests/Makefile.am, gl/tests/test-sys_stat.c, - gl/tests/test-time.c, gl/time.in.h, gl/unistd.in.h, - lib/gl/Makefile.am, lib/gl/m4/gnulib-comp.m4, - lib/gl/m4/sys_stat_h.m4, lib/gl/sys_stat.in.h, - lib/gl/tests/test-sys_stat.c, lib/gl/unistd.in.h: Update gnulib - files. - -2009-10-15 Simon Josefsson - - * lib/libgnutlsxx.map: Export C++ symbol visibility. Tiny patch from Boyan Kasarov . - -2009-10-14 Simon Josefsson - - * lib/pkix_asn1_tab.c: Regenerate. - -2009-10-14 Simon Josefsson - - * NEWS: Add. - -2009-10-14 Simon Josefsson - - * tests/pkcs12_encode.c: Fix MAC password. - -2009-10-14 Simon Josefsson - - * tests/pkcs12_encode.c: Use better friendly names. - -2009-10-14 Simon Josefsson - - * tests/Makefile.am, tests/pkcs12_encode.c: Add self test to test - PKCS#12 functions. - -2009-10-14 Simon Josefsson - - * lib/pkix.asn: Work around 'Cannot find OID: 1.2.840.113549.1.9.21' - PKCS#12 problem. Reported by Michael Welsh Duggan in - . - -2009-10-14 Simon Josefsson - - * doc/gnutls.texi: Mention that sometimes CA certs needs to be - included in PKCS#12 files. Reported by Ivars Suba . - -2009-10-07 Simon Josefsson - - * lib/gnutls_priority.c: After setting priorities using new API, - update current TLS version. - -2009-10-06 Simon Josefsson - - * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, - libextra/configure.ac: Bump versions. - -2009-10-06 Simon Josefsson - - * ChangeLog: Generated. - -2009-10-06 Simon Josefsson - - * NEWS: Version 2.9.7. - -2009-10-06 Simon Josefsson - - * gl/Makefile.am, gl/m4/gnulib-comp.m4, gl/m4/stdio_h.m4, - gl/m4/unistd_h.m4, gl/progname.c, gl/stdio.in.h, gl/unistd.in.h, - lib/gl/Makefile.am, lib/gl/m4/stdio_h.m4, lib/gl/m4/unistd_h.m4, - lib/gl/stdio.in.h, lib/gl/unistd.in.h, maint.mk: Update gnulib - files. - -2009-10-06 Simon Josefsson - - * NEWS: Add. - -2009-10-06 Simon Josefsson - - * lib/libgnutlsxx.map: Fix symbol export rules. Tiny patch by Boyan Kasarov . - -2009-10-06 Simon Josefsson - - * lib/gnutlsxx.cpp: Include config.h. Tiny patch from Boyan Kasarov . - -2009-10-01 Daiki Ueno - - * lib/gnutls_sig.c: Reserve enough room for hash buffers. This fixes x509self self-test. - -2009-09-30 Simon Josefsson - - * gl/Makefile.am, gl/m4/sys_stat_h.m4, gl/m4/unistd_h.m4, - gl/tests/Makefile.am, gl/unistd.in.h, lib/gl/Makefile.am, - lib/gl/m4/sys_stat_h.m4, lib/gl/m4/unistd_h.m4, - lib/gl/tests/Makefile.am, lib/gl/unistd.in.h: Update gnulib files. - -2009-09-30 Simon Josefsson - - * NEWS: Add. - -2009-09-30 Simon Josefsson - - * lib/gnutls_priority.c: Attempt to negotiate TLS 1.2 by default. - -2009-09-30 Simon Josefsson - - * NEWS: Add. - -2009-09-30 Simon Josefsson - - * lib/auth_cert.c: Fix comment. - -2009-09-30 Daiki Ueno - - * lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa_export.c, - lib/auth_srp_rsa.c, lib/gnutls_sig.c, lib/gnutls_sig.h: Fix - server-side TLS 1.2 support. - -2009-09-30 Daiki Ueno - - * lib/gnutls_sig.c: Calculate DER-encoded DigestInfo on-the-fly - rather than hard code it. - -2009-09-28 Ludovic Courtès - - * configure.ac, guile/src/core.c: guile: Adjust for Guile 1.9.3+. * guile/src/core.c (mark_session_record_port, - free_session_record_port): Conditionalize on `SCM_MAJOR_VERSION == 1 - && SCM_MINOR_VERSION <= 8'. (scm_init_gnutls_session_record_port_type): Adjust accordingly. (make_session_record_port): Use `scm_gc_malloc_pointerless ()' - when available. - -2009-09-28 Ludovic Courtès - - * guile/src/core.c: guile: Syntactic nitpicking. * guile/src/core.c (SCM_GNUTLS_MAKE_SESSION_DATA, SCM_GNUTLS_SET_SESSION_RECORD_PORT): Remove extraneous semicolon. - -2009-09-28 Ludovic Courtès - - * guile/src/core.c: guile: Use Guile's malloc routines. * guile/src/core.c (scm_init_gnutls): Use Guile's malloc routines. - -2009-09-23 Simon Josefsson - - * lib/ext_server_name.c: Clarify gnutls_server_name_set usage. Reported by Daniel Black in - - . - -2009-09-23 Ludovic Courtès - - * guile/src/core.c: Fix integer/pointer cast warnings in the Guile - bindings on x86_64. * guile/src/core.c (do_fill_port, fill_session_record_port_input, scm_gnutls_set_session_transport_fd_x): Make sure pointer/integer - casts use integers of the right size. - -2009-09-23 Ludovic Courtès - - * guile/src/extra.c: Update Guile bindings to the current OpenPGP - API. * guile/src/extra.c (scm_gnutls_openpgp_certificate_id, scm_gnutls_openpgp_certificate_id_x): Use the newer `gnutls_openpgp_crt_get_key_id ()'. - -2009-09-23 Ludovic Courtès - - * doc/Makefile.am, guile/src/Makefile.am, guile/tests/Makefile.am: - Turn off auto-compilation when using Guile 1.9+. * guile/src/Makefile.am (GUILE_FOR_BUILD): Turn off auto-compilation with Guile 1.9+. * guile/tests/Makefile.am (TESTS_ENVIRONMENT): Likewise. * doc/Makefile.am (GUILE_FOR_BUILD): Likewise. - -2009-09-23 Ludovic Courtès - - * guile/src/core.c, guile/src/errors.c, guile/src/extra.c, - guile/src/utils.c, guile/src/utils.h: Fix inclusion of in - Guile bindings. * guile/src/core.c, guile/src/errors.c, guile/src/extra.c, guile/src/utils.c: Include first, as suggested by Simon Josefsson. * guile/src/utils.h: Don't include . - -2009-09-22 Simon Josefsson - - * gl/unistd.in.h, lib/gl/unistd.in.h: Update gnulib files. - -2009-09-22 Simon Josefsson - - * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, - libextra/configure.ac: Bump versions. - -2009-09-22 Simon Josefsson - - * build-aux/gendocs.sh: Chmod. - -2009-09-22 Simon Josefsson - - * ChangeLog: Generated. - -2009-09-22 Simon Josefsson - - * NEWS: Version 2.9.6. - -2009-09-22 Simon Josefsson - - * gl/Makefile.am, gl/m4/getdelim.m4, gl/m4/stdio_h.m4, - gl/m4/stdlib_h.m4, gl/m4/sys_stat_h.m4, gl/m4/unistd_h.m4, - gl/stdio.in.h, gl/stdlib.in.h, gl/sys_stat.in.h, gl/unistd.in.h, - lib/gl/Makefile.am, lib/gl/m4/stdio_h.m4, lib/gl/m4/stdlib_h.m4, - lib/gl/m4/sys_stat_h.m4, lib/gl/m4/unistd_h.m4, lib/gl/stdio.in.h, - lib/gl/stdlib.in.h, lib/gl/sys_stat.in.h, lib/gl/unistd.in.h, - maint.mk: Update gnulib files. - -2009-09-13 Brad Hards - - * lib/x509/x509.c: Add forgotten documentation bits for issuer - altname Signed-off-by: Simon Josefsson - -2009-09-11 Simon Josefsson - - * build-aux/gendocs.sh, gl/m4/getaddrinfo.m4, gl/m4/getline.m4, - gl/m4/readline.m4, gl/m4/select.m4, gl/m4/sockets.m4, - gl/m4/socklen.m4, gl/m4/sockpfaf.m4, lib/gl/m4/sockets.m4, - lib/gl/m4/socklen.m4, lib/gl/m4/sockpfaf.m4, lib/gl/m4/time_r.m4: - Update gnulib files. - -2009-09-11 Simon Josefsson - - * lib/gnutls_cipher.c: Add debug message. Tiny patch from Miroslav - Kratochvil in - . - -2009-09-11 Daiki Ueno - - * lib/Makefile.am: Fix out-of-tree build. Fix out-of-tree build; gnutls.h is generated in the build tree. - -2009-09-10 Simon Josefsson - - * NEWS, lib/m4/hooks.m4: Enable Camellia by default. - -2009-09-10 Simon Josefsson - - * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, - libextra/configure.ac: Bump versions. - -2009-09-10 Simon Josefsson - - * ChangeLog: Generated. - -2009-09-10 Simon Josefsson - - * NEWS: Version 2.9.5. - -2009-09-10 Simon Josefsson - - * configure.ac: Bump version. - -2009-09-10 Simon Josefsson - - * gl/Makefile.am, gl/m4/stdio_h.m4, gl/m4/string_h.m4, - gl/m4/sys_stat_h.m4, gl/m4/unistd_h.m4, gl/stdio.in.h, - gl/string.in.h, gl/sys_stat.in.h, gl/unistd.in.h, - lib/gl/Makefile.am, lib/gl/m4/stdio_h.m4, lib/gl/m4/string_h.m4, - lib/gl/m4/sys_stat_h.m4, lib/gl/m4/unistd_h.m4, lib/gl/stdio.in.h, - lib/gl/string.in.h, lib/gl/sys_stat.in.h, lib/gl/unistd.in.h, - maint.mk: Update gnulib files. - -2009-09-10 Simon Josefsson - - * NEWS: Add. - -2009-09-10 Simon Josefsson - - * AUTHORS: Add. - -2009-09-10 Simon Josefsson - - * lib/m4/hooks.m4: Bump library version for new APIs. - -2009-09-10 Simon Josefsson - - * lib/x509/output.c, lib/x509/x509.c: Indent. - -2009-09-10 Simon Josefsson - - * lib/libgnutls.map: Move the new ABIs to the GNUTLS_2_10 section. - -2009-09-09 Brad Hards - - * doc/manpages/Makefile.am, lib/includes/gnutls/x509.h, - lib/libgnutls.map, lib/x509/output.c, lib/x509/x509.c, - tests/Makefile.am, tests/x509_altname.c: Add X509 Issuer Altname - functions Signed-off-by: Simon Josefsson - -2009-09-07 Simon Josefsson - - * tests/key-id/key-id: Don't use ! to negate exit status. Reported - by "Tom G. Christensen" in - - . - -2009-09-03 Simon Josefsson - - * gl/Makefile.am, gl/close.c, gl/inet_ntop.c, gl/inet_pton.c, - gl/m4/sys_stat_h.m4, gl/sys_stat.in.h, gl/tests/Makefile.am, - gl/unistd.in.h, lib/gl/Makefile.am, lib/gl/m4/sys_stat_h.m4, - lib/gl/sys_stat.in.h, lib/gl/unistd.in.h, maint.mk: Update gnulib - files. - -2009-09-03 Simon Josefsson - - * NEWS, lib/configure.ac, lib/m4/hooks.m4, libextra/configure.ac: - Bump versions. - -2009-09-03 Simon Josefsson - - * cfg.mk: Commit cyclo/ dir too. - -2009-09-03 Simon Josefsson - - * ChangeLog: Generated. - -2009-09-03 Simon Josefsson - - * NEWS: Version 2.9.4. - -2009-09-03 Simon Josefsson - - * tests/hostname-check.c: Build when OpenPGP is disabled. - -2009-09-03 Simon Josefsson - - * cfg.mk: Fix! - -2009-09-03 Simon Josefsson - - * cfg.mk: Typo. - -2009-09-03 Simon Josefsson - - * cfg.mk: Ugly hack for autobuilder. - -2009-09-01 Simon Josefsson - - * NEWS: Add. - -2009-09-01 Simon Josefsson - - * lib/gnutls_priority.c: Use SHA256 as MAC by default. - -2009-09-01 Simon Josefsson - - * NEWS: Add. - -2009-09-01 Daiki Ueno - - * lib/gnutls_algorithms.c: Add SHA-2 cipher suites. Signed-off-by: Simon Josefsson - -2009-09-01 Daiki Ueno - - * lib/debug.c: Print NewSessionTicket handshake. Signed-off-by: Simon Josefsson - -2009-08-31 Simon Josefsson - - * NEWS: Add. - -2009-08-31 Simon Josefsson - - * lib/x509/x509.c: Handle XMPP SANs properly. Reported by Howard - Chu in . - -2009-08-31 Simon Josefsson - - * lib/auth_dhe.c: Need another header. - -2009-08-31 Simon Josefsson - - * AUTHORS, NEWS: Add. - -2009-08-31 Simon Josefsson - - * lib/gnutls_algorithms.c: Add comment explaining where magic values - come from. - -2009-08-31 Daiki Ueno - - * lib/auth_cert.c: Fix parsing Certificate Request for TLS 1.2. Fix the logic to skip supported_signature_algorithms in Certificate - Request. Signed-off-by: Simon Josefsson - -2009-08-31 Daiki Ueno - - * lib/gnutls_handshake.c, lib/gnutls_pk.c, lib/gnutls_state.c: Use - SHA256 for PRF if TLS 1.2. Use SHA256 for the basis of PRF, and for the hash over handshake - messages. Signed-off-by: Simon Josefsson - -2009-08-31 Daiki Ueno - - * lib/auth_dhe.c, lib/auth_rsa_export.c, lib/auth_srp_rsa.c, - lib/gnutls_sig.c, lib/gnutls_sig.h: Respect TLS signature algorithm - in server KX. Verify signature of DH parameters in Server Key Exchange with the - embedded signature algorithm. Signed-off-by: Simon Josefsson - -2009-08-31 Daiki Ueno - - * lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, - lib/gnutls_int.h: Add functions for TLS signature algorithm. Add functions to convert TLS signature algorithm from/to constants - defined by GnuTLS. Signed-off-by: Simon Josefsson - -2009-08-31 Simon Josefsson - - * NEWS: Add. - -2009-08-31 Simon Josefsson - - * maint.mk: Update gnulib files. - -2009-08-31 Simon Josefsson - - * THANKS: Add. - -2009-08-25 Fabian Keil - - * src/serv.c: Remove dead store in listen_socket(). Signed-off-by: Simon Josefsson - -2009-08-25 Fabian Keil - - * lib/gnutls_buffers.c: Remove dead store in - _gnutls_io_write_buffered(). Signed-off-by: Simon Josefsson - -2009-08-24 Fabian Keil - - * lib/x509/x509.c: Remove dead store in - gnutls_x509_crt_list_import(). Signed-off-by: Simon Josefsson - -2009-08-24 Fabian Keil - - * lib/auth_srp_passwd.c: Remove dead store in pwd_put_values(). Signed-off-by: Simon Josefsson - -2009-08-24 Fabian Keil - - * src/certtool.c: Remove dead store in pkcs12_info(). Signed-off-by: Simon Josefsson - -2009-08-25 Fabian Keil - - * lib/auth_cert.c: Remove write-only variable info in - _gnutls_proc_cert_cert_req(). Signed-off-by: Simon Josefsson - -2009-08-25 Fabian Keil - - * lib/auth_rsa_export.c: Remove write-only variable info in - gen_rsa_export_server_kx(). Signed-off-by: Simon Josefsson - -2009-08-25 Fabian Keil - - * src/cfg/shared.c: Remove write-only variable sep_ar_idx in - split_multi_arg(). Signed-off-by: Simon Josefsson - -2009-08-24 Fabian Keil - - * lib/x509/pkcs12.c: Remove write-only variable tmp_size in - _pkcs12_decode_safe_content(). Signed-off-by: Simon Josefsson - -2009-08-29 Fabian Keil - - * THANKS: Remove duplicates. Two exact ones and a pretty close one. Signed-off-by: Simon Josefsson - -2009-08-25 Fabian Keil - - * lib/auth_srp_passwd.c: Mark what looks like a bug in in - _gnutls_srp_pwd_read_entry() Signed-off-by: Simon Josefsson - -2009-08-24 Fabian Keil - - * src/crypt.c: In main(), rename salt to salt_size and don't bother - reading info.salt which we don't use anyway. Signed-off-by: Simon Josefsson - -2009-08-31 Simon Josefsson - - * lib/opencdk/misc.c: (cdk_strlist_next): Handle NULL root value better. Based on report - by Fabian Keil . - -2009-08-24 Fabian Keil - - * lib/x509/output.c: In print_extensions(), declare the *_idx - variables as int instead of size_t. While it shouldn't make a difference, it makes more sense to me. - It's also consistent with (at least) print_crl(). Signed-off-by: Simon Josefsson - -2009-08-24 Fabian Keil - - * lib/x509/output.c: In print_extensions(), initialize *_idx - variables once before entering the for loop instead of each run. Otherwise checking them is pointless as they always will be zero. Signed-off-by: Simon Josefsson - -2009-08-24 Fabian Keil - - * lib/x509/output.c: In print_crq(), initialize challenge and - extensions once before entering the for loop instead of each run. Signed-off-by: Simon Josefsson - -2009-08-24 Fabian Keil - - * lib/x509/output.c: In print_crl(), initialize aki_idx and crl_nr - once before entering the for loop instead of each run. Otherwise the "error: more than one AKI extension\n" and "error: - more than one CRL number\n" checks want work. Signed-off-by: Simon Josefsson - -2009-08-28 Simon Josefsson - - * tests/x509dn.c: Likewise. - -2009-08-28 Simon Josefsson - - * tests/x509dn.c: Don't use deprecated type. - -2009-08-28 Simon Josefsson - - * cfg.mk: Overwrite gettext's size_max.m4 to make sure we use one - that works. - -2009-08-28 Simon Josefsson - - * gl/Makefile.am, gl/m4/gnulib-comp.m4, gl/m4/stdlib_h.m4, - gl/m4/sys_socket_h.m4, gl/m4/unistd_h.m4, gl/progname.c, - gl/stdlib.in.h, gl/sys_socket.in.h, gl/tests/Makefile.am, - gl/unistd.in.h, gl/vasnprintf.c, lib/gl/Makefile.am, - lib/gl/m4/stdlib_h.m4, lib/gl/m4/sys_socket_h.m4, - lib/gl/m4/unistd_h.m4, lib/gl/stdlib.in.h, lib/gl/sys_socket.in.h, - lib/gl/tests/test-func.c, lib/gl/unistd.in.h, lib/gl/vasnprintf.c, - libextra/gl/override/lib/md5.c.diff: Update gnulib files. - -2009-08-28 Simon Josefsson - - * configure.ac, lib/configure.ac, lib/gnutls_handshake.c, - lib/gnutls_handshake.h, lib/gnutls_str.h, lib/opencdk/Makefile.am, - lib/x509/privkey_pkcs8.c, libextra/configure.ac: Fix use of - deprecated types, for now and the future. - -2009-08-28 Simon Josefsson - - * NEWS: Add. - -2009-08-28 Simon Josefsson - - * lib/x509/crq.c: Fix gnutls_datum usage. - -2009-08-28 Simon Josefsson - - * lib/gnutls_buffers.c, lib/gnutls_pk.c, lib/gnutls_str.c, - lib/gnutls_x509.c, lib/includes/gnutls/gnutls.h.in, - lib/opencdk/pubkey.c, lib/openpgp/gnutls_openpgp.c, - lib/x509/common.c, lib/x509/extensions.c, lib/x509/mpi.c, - lib/x509/privkey_pkcs8.c, lib/x509/x509_write.c, src/certtool.c, - tests/openpgp_test.c, tests/resume.c, tests/x509_test.c, - tests/x509dn.c, tests/x509sign-verify.c: Fix deprecated usage of - gnutls_datum. - -2009-08-27 Dan Fandrich - - * lib/opencdk/new-packet.c, lib/opencdk/packet.h, - lib/opencdk/pubkey.c, lib/opencdk/read-packet.c, - lib/opencdk/stream.c, lib/opencdk/stream.h, lib/opencdk/verify.c, - lib/x509/crq.c: Fix compiler warning bugs for OpenWatcom. Signed-off-by: Simon Josefsson - -2009-08-25 Daiki Ueno - - * tests/resume.c: Fix double-free Signed-off-by: Simon Josefsson - -2009-08-24 Simon Josefsson - - * .gitattributes: Disable whitespace for file that need it. - -2009-08-20 Simon Josefsson - - * tests/hostname-check.c: Add check of OpenPGP cert too. - -2009-08-20 Simon Josefsson - - * THANKS: Add. - -2009-08-20 Simon Josefsson - - * libextra/gl/override/lib/md5.c.diff: Work around whitespace commit - hook. - -2009-08-20 Simon Josefsson - - * gl/Makefile.am, gl/m4/stdio_h.m4, gl/select.c, gl/stdio.in.h, - lib/gl/Makefile.am, lib/gl/m4/stdio_h.m4, lib/gl/stdio.in.h, - maint.mk: Update gnulib files. - -2009-08-20 Simon Josefsson - - * libextra/gl/gnulib.mk, libextra/gl/m4/gnulib-cache.m4, - libextra/gl/md5.c, libextra/gl/override/lib/md5.c.diff: Reduce stack - usage and remove code. - -2009-08-20 Simon Josefsson - - * lib/gnutls_int.h: Remove unused constant. - -2009-08-20 Simon Josefsson - - * lib/gnutls_errors.c: Reduce stack usage. - -2009-08-20 Simon Josefsson - - * lib/openpgp/pgp.c: Fix OpenPGP hostname comparison. - -2009-08-20 Simon Josefsson - - * lib/openpgp/output.c, lib/openpgp/pgp.c: Reduce stack usage. - -2009-08-20 Simon Josefsson - - * lib/x509/output.c: Reduce stack usage. - -2009-08-20 Simon Josefsson - - * .x-sc_m4_quote_check, lib/gnutls_sig.c, - lib/opencdk/write-packet.c: Fix syntax-check nits. - -2009-08-20 Daiki Ueno - - * lib/libgnutls.map, lib/opencdk/keydb.c, tests/dn2.c, tests/mpi.c, - tests/resume.c: Fix memleaks. Signed-off-by: Simon Josefsson - -2009-08-19 Simon Josefsson - - * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, - libextra/configure.ac: Bump versions. - -2009-08-19 Simon Josefsson - - * doc/gnutls.texi: Fix references. - -2009-08-19 Simon Josefsson - - * cfg.mk: Also commit devel/ web pages. - -2009-08-19 Simon Josefsson - - * ChangeLog: Fix ChangeLog. - -2009-08-19 Simon Josefsson - - * ChangeLog: Generated. - -2009-08-19 Simon Josefsson - - * NEWS: Version 2.9.3. - -2009-08-19 Simon Josefsson - - * lib/ext_session_ticket.c: Typo. - -2009-08-19 Simon Josefsson - - * lib/gnutls_sig.c: Need gnutls_algorithms.h for prototypes. - -2009-08-19 Simon Josefsson - - * AUTHORS: Add. - -2009-08-18 Jonathan Bastien-Filiatrault - - * lib/auth_cert.c, lib/gnutls_algorithms.c, - lib/gnutls_algorithms.h, lib/gnutls_cipher.c, - lib/gnutls_handshake.c, lib/gnutls_sig.c, lib/gnutls_state.c: - Replace explicit version checks with feature checks Signed-off-by: Simon Josefsson - -2009-08-19 Simon Josefsson - - * doc/gnutls.texi: Reformat paragraphs. - -2009-08-19 Simon Josefsson - - * doc/manpages/Makefile.am, src/cli-gaa.c, src/cli-gaa.h, - src/serv-gaa.c, src/serv-gaa.h: Generated. - -2009-08-19 Simon Josefsson - - * doc/gnutls.texi: Typo. - -2009-08-19 Simon Josefsson - - * doc/gnutls.texi: Add cross reference. - -2009-08-19 Simon Josefsson - - * doc/gnutls.texi: Add. - -2009-08-19 Simon Josefsson - - * doc/reference/gnutls-docs.sgml, lib/ext_session_ticket.c: Fix - GTK-DOC output. - -2009-08-19 Simon Josefsson - - * NEWS: Add. - -2009-08-19 Simon Josefsson - - * lib/libgnutls.map: Fix namespace of new APIs. - -2009-08-19 Simon Josefsson - - * lib/ext_session_ticket.c, lib/gnutls_extensions.c, - lib/gnutls_session_pack.c: Fix whitespace. - -2009-08-19 Daiki Ueno - - * doc/TODO, lib/Makefile.am, lib/ext_session_ticket.c, - lib/ext_session_ticket.h, lib/gnutls_constate.c, - lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_int.h, - lib/gnutls_session_pack.c, lib/gnutls_state.c, - lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, - lib/m4/hooks.m4, src/cli.c, src/cli.gaa, src/serv.c, src/serv.gaa, - tests/resume.c: session ticket support Signed-off-by: Simon Josefsson - -2009-08-19 Simon Josefsson - - * cfg.mk: Fix indent rule. - -2009-08-19 Daiki Ueno - - * doc/gnutls.texi: internals doc update Hi, When I wrote SessionTicket extension I referred to the manual node - "Adding a New TLS Extension", and noticed that it is not up to date. - So, here is a patch. Signed-off-by: Simon Josefsson - -2009-08-18 Simon Josefsson - - * gl/stdio.in.h, lib/gl/Makefile.am, lib/gl/m4/gnulib-cache.m4, - lib/gl/m4/gnulib-comp.m4, lib/gl/m4/memmove.m4, lib/gl/memmove.c, - lib/gl/stdio.in.h, maint.mk: Update gnulib files. - -2009-08-15 Simon Josefsson - - * gl/m4/stddef_h.m4, lib/gl/m4/stddef_h.m4: Update gnulib files. - -2009-08-15 Simon Josefsson - - * .gitignore: Don't ignore gl/ files! - -2009-08-15 Simon Josefsson - - * gl/tests/test-stddef.c, lib/gl/tests/test-stddef.c: Update gnulib - files. - -2009-08-15 Simon Josefsson - - * gl/Makefile.am, gl/m4/gnulib-comp.m4, gl/m4/wchar.m4, - gl/stddef.in.h, gl/stdlib.in.h, gl/string.in.h, - gl/tests/Makefile.am, gl/tests/test-stdio.c, - gl/tests/test-stdlib.c, gl/tests/test-string.c, - gl/tests/test-unistd.c, gl/tests/test-wchar.c, gl/unistd.in.h, - lib/gl/Makefile.am, lib/gl/m4/gnulib-comp.m4, lib/gl/m4/wchar.m4, - lib/gl/stddef.in.h, lib/gl/stdlib.in.h, lib/gl/string.in.h, - lib/gl/tests/Makefile.am, lib/gl/tests/test-stdio.c, - lib/gl/tests/test-stdlib.c, lib/gl/tests/test-string.c, - lib/gl/tests/test-time.c, lib/gl/tests/test-unistd.c, - lib/gl/tests/test-wchar.c, lib/gl/time.in.h, lib/gl/unistd.in.h, - maint.mk: Update gnulib files. - -2009-08-14 Simon Josefsson - - * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, - libextra/configure.ac: Bump versions. - -2009-08-14 Simon Josefsson - - * ChangeLog: Generated. - -2009-08-14 Simon Josefsson - - * NEWS: Version 2.9.2. - -2009-08-14 Simon Josefsson - - * NEWS: Add 2.8.3 entry. - -2009-08-14 Simon Josefsson - - * gl/Makefile.am, gl/m4/close.m4, gl/m4/fclose.m4, - gl/m4/gnulib-comp.m4, gl/m4/sys_ioctl_h.m4, gl/m4/sys_socket_h.m4, - gl/m4/unistd_h.m4, gl/tests/Makefile.am, gl/tests/sys_ioctl.in.h, - gl/tests/test-stdio.c, gl/tests/test-stdlib.c, - gl/tests/test-string.c, gl/tests/test-unistd.c, - gl/tests/test-version-etc.sh, gl/unistd.in.h, gl/vasnprintf.c, - lib/gl/Makefile.am, lib/gl/m4/sys_socket_h.m4, - lib/gl/m4/threadlib.m4, lib/gl/m4/unistd_h.m4, - lib/gl/tests/test-stdio.c, lib/gl/tests/test-stdlib.c, - lib/gl/tests/test-string.c, lib/gl/tests/test-unistd.c, - lib/gl/unistd.in.h, lib/gl/vasnprintf.c: Update gnulib files. - -2009-08-13 Simon Josefsson - - * gl/tests/test-version-etc.sh: Update gnulib files. - -2009-08-13 Simon Josefsson - - * gl/tests/test-version-etc.sh: Update gnulib files. - -2009-08-13 Simon Josefsson - - * configure.ac: Don't generate gzip archives. - -2009-08-13 Simon Josefsson - - * lib/Makefile.am, lib/gnutls_buffers.c, lib/gnutls_int.h, - lib/io_debug.h: Remove io_debug.h stuff, it is superseded by - self-tests like mini-eagain.c. - -2009-08-13 Simon Josefsson - - * NEWS: Fix. - -2009-08-13 Simon Josefsson - - * NEWS: Add. - -2009-08-13 Simon Josefsson - - * lib/x509/x509.c: (gnutls_x509_crt_import): Re-initialize the ASN.1 structure. If this is not done here, the next certificate loading may fail - because asn1_der_decoding modified the ASN.1 structure. Triggered - by the hostname-check self-test. - -2009-08-13 Simon Josefsson - - * cfg.mk: Revert "Always build vc checkouts with debugging." This reverts commit b68235be4d1ff7739456e0c5d8c28c6e96e15a14. It - breaks because -Wdisabled-optimizations will cause an error when - optimizations are disabled. - -2009-08-13 Simon Josefsson - - * cfg.mk: Always build vc checkouts with debugging. - -2009-08-13 Simon Josefsson - - * tests/hostname-check.c: Fix. - -2009-08-13 Simon Josefsson - - * tests/hostname-check.c: Add another SAN/CN collision test. - Reported by Daniel Stenberg in - . - -2009-08-12 Simon Josefsson - - * tests/hostname-check.c: Fix logic. - -2009-08-12 Simon Josefsson - - * tests/hostname-check.c: Test when SAN and CN differs. Inspired by - report by Daniel Stenberg in - . - -2009-08-12 Simon Josefsson - - * libextra/Makefile.am, libextra/gl/m4/sockets.m4: Use include - instead of copy. - -2009-08-12 Simon Josefsson - - * libextra/gl/m4/sockets.m4: Add, needed for -lws2_32 in libextra. - -2009-08-12 Simon Josefsson - - * libextra/m4/hooks.m4: Add. - -2009-08-11 Simon Josefsson - - * lib/gnutls_algorithms.c: Doc fix. - -2009-08-11 Simon Josefsson - - * lib/gnutls_algorithms.c, lib/gnutls_anon_cred.c, - lib/gnutls_auth.c, lib/gnutls_cert.c, lib/gnutls_psk.c, - lib/gnutls_srp.c, lib/gnutls_state.c, lib/gnutls_x509.c, - lib/openpgp/gnutls_openpgp.c, lib/openpgp/pgp.c, - libextra/gnutls_ia.c: Fix typos in documentation. Reported by Daiki - Ueno in . - -2009-08-10 Simon Josefsson - - * gl/m4/gnulib-comp.m4, gl/m4/sys_select_h.m4, gl/stdio-write.c, - gl/sys_select.in.h, gl/tests/gettimeofday.c, - gl/tests/test-sys_select.c, gl/tests/test-version-etc.sh, - lib/gl/m4/gnulib-comp.m4, lib/gl/stdio-write.c, maint.mk: Update - gnulib files. - -2009-08-10 Simon Josefsson - - * libextra/Makefile.am: Need to add LIBSOCKET because we link to - ../lib's gnulib library, for mingw. - -2009-08-10 Simon Josefsson - - * lib/po/cs.po.in, lib/po/fr.po.in, lib/po/nl.po.in, - lib/po/pl.po.in, lib/po/sv.po.in: Sync with TP. - -2009-08-10 Simon Josefsson - - * NEWS: Add 2.8.x news entries. - -2009-08-10 Simon Josefsson - - * cfg.mk: Fix usage. - -2009-08-10 Simon Josefsson - - * cfg.mk: Copy cyclomatic code complexity charts too. - -2009-08-10 Simon Josefsson - - * NEWS: Add. - -2009-08-10 Simon Josefsson - - * lib/gnutls_global.c: Look only for latest _required_ - libgcrypt/libtasn1 version. Reported by Marco d'Itri via Andreas Metzler - as Debian BTS #540449. - -2009-08-10 Simon Josefsson - - * NEWS: Add. - -2009-08-08 Nikos Mavrogiannopoulos - - * : commit c529f792e4c899080eb1f6e104c8552fa0770356 Author: Nikos - Mavrogiannopoulos Date: Sat Aug 8 09:06:57 2009 - +0300 - -2009-08-07 Simon Josefsson - - * NEWS: Fix. - -2009-08-07 Simon Josefsson - - * NEWS: Fix. - -2009-08-07 Simon Josefsson - - * NEWS: Add. - -2009-08-07 Simon Josefsson - - * lib/x509/output.c: Check for NUL in SANs and replace accordingly. - -2009-08-07 Simon Josefsson - - * tests/Makefile.am, tests/hostname-check.README, - tests/hostname-check.c: Move comment into source. - -2009-08-07 Simon Josefsson - - * lib/x509/common.c: Refuse to return DNs with embedded NULs which - breaks other code. Problem published by Dan Kaminsky and Moxie Marlinspike at - BlackHat09. - -2009-08-07 Simon Josefsson - - * lib/x509/common.c: Revert everything since last release, to allow - minimal patch to be applied. - -2009-08-06 Simon Josefsson - - * tests/Makefile.am: Fix invocation of rfc2253-escape-test. Reported by Brad Hards in - - . - -2009-08-06 Simon Josefsson - - * build-aux/vc-list-files, gl/Makefile.am, gl/error.c, gl/fseeko.c, - gl/m4/gnulib-comp.m4, gl/m4/lib-link.m4, gl/m4/stdio_h.m4, - gl/m4/unistd_h.m4, gl/socket.c, gl/sockets.c, gl/stdio.in.h, - gl/tests/Makefile.am, gl/tests/test-select.c, - gl/tests/test-stdio.c, gl/tests/test-stdlib.c, - gl/tests/test-string.c, gl/tests/test-unistd.c, - gl/tests/test-version-etc.c, gl/tests/test-version-etc.sh, - gl/unistd.in.h, gl/version-etc.c, gl/version-etc.h, - lib/gl/Makefile.am, lib/gl/fseeko.c, lib/gl/m4/iconv.m4, - lib/gl/m4/lib-link.m4, lib/gl/m4/stdio_h.m4, lib/gl/m4/time_h.m4, - lib/gl/m4/unistd_h.m4, lib/gl/sockets.c, lib/gl/stdio.in.h, - lib/gl/tests/test-stdio.c, lib/gl/tests/test-stdlib.c, - lib/gl/tests/test-string.c, lib/gl/tests/test-unistd.c, - lib/gl/time.in.h, lib/gl/unistd.in.h, libextra/gl/m4/lib-link.m4, - libextra/gl/md5.h, maint.mk: Update gnulib files. - -2009-08-05 Simon Josefsson - - * tests/Makefile.am, tests/rfc2253-escape-test: Add self-test of RFC - 2253 escaping. - -2009-08-04 Simon Josefsson - - * lib/x509/common.c: Simplify and fix mem leak. - -2009-08-04 Simon Josefsson - - * lib/x509/common.c: Don't use fixed size buffer for strings. - -2009-08-04 Simon Josefsson - - * tests/nul-in-x509-names.c: Exit with failure on failure. - -2009-08-04 Simon Josefsson - - * tests/nul-in-x509-names.c: Fix output. - -2009-08-04 Simon Josefsson - - * lib/gnutls_str.c: Cleanup code. - -2009-08-04 Tomas Hoger - - * lib/gnutls_str.c, lib/gnutls_str.h, lib/openpgp/pgp.c, - lib/x509/rfc2818_hostname.c: GnuTLS vs. NULL chars in CNs Check cert name size in _gnutls_hostname_compare() This is needed to protect against NULL (\0) characters embedded - in X509 certificates' CNs or subjectAltNames, that can be used - to fool SSL certificate verification as was demonstrated by Moxie - Marlinspike on BH USA 2009: - http://www.blackhat.com/html/bh-usa-09/bh-usa-09-archives.html#MarlinspikeSigned-off-by: Simon Josefsson - -2009-08-04 Simon Josefsson - - * tests/Makefile.am, tests/nul-in-x509-names.c: Add self-test for - NUL in X.509 CN/SAN problem. - -2009-08-03 Simon Josefsson - - * lib/x509/common.c: Fix typo. - -2009-08-03 Simon Josefsson - - * tests/chainverify.c: Fix expected output, a cert have expired. - -2009-08-03 Simon Josefsson - - * lib/x509/common.c: Fix crash. - -2009-08-03 Simon Josefsson - - * tests/mini-eagain.c: Make it build. - -2009-07-29 Simon Josefsson - - * .gitignore: Drop .c and sort. - -2009-07-29 Simon Josefsson - - * NEWS, lib/minitasn1/errors.c, lib/minitasn1/libtasn1.h: Use - libtasn1 v2.3. - -2009-07-29 Simon Josefsson - - * NEWS: Add. - -2009-07-26 Nikos Mavrogiannopoulos - - * : commit c02e9f1459330119d2947a4e46fb60c0e12fa32d Author: Nikos - Mavrogiannopoulos Date: Sun Jul 26 15:22:06 2009 - +0300 - -2009-07-26 Nikos Mavrogiannopoulos - - * lib/x509/common.c: do not allow null character in DN. - -2009-07-16 Nikos Mavrogiannopoulos - - * .gitignore: updated files to be ignored. - -2009-07-16 Nikos Mavrogiannopoulos - - * tests/dn.c: Typo fix in test output. Patch by Brad Hards - - -2009-07-15 Nikos Mavrogiannopoulos - - * THANKS: Removed duplicate entry of Daniel and added Fabian, Brad - and Daiki. - -2009-07-15 Nikos Mavrogiannopoulos - - * doc/examples/ex-serv-anon.c, doc/examples/ex-serv-export.c, - doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-psk.c, - doc/examples/ex-serv-srp.c, doc/examples/ex-serv1.c, - lib/auth_cert.c, lib/gnutls_buffers.c, lib/gnutls_mpi.c, - lib/gnutls_pk.c, lib/gnutls_sig.c, lib/opencdk/stream.c, - lib/opencdk/write-packet.c, lib/openpgp/pgp.c, - lib/openpgp/privkey.c, lib/x509/privkey_pkcs8.c, src/certtool.c, - src/psk.c: Several bug fixes by Fabian Keil (some were modified by - me). - -2009-07-15 Nikos Mavrogiannopoulos - - * tests/mini-eagain.c: reduced transferred data size. - -2009-07-13 Nikos Mavrogiannopoulos - - * lib/auth_srp.c, lib/gnutls_buffers.c, lib/gnutls_errors.c, - lib/gnutls_record.c, lib/gnutls_supplemental.c, - lib/opencdk/armor.c, lib/opencdk/keydb.c, lib/opencdk/literal.c, - lib/opencdk/read-packet.c, lib/opencdk/sig-check.c, - lib/opencdk/stream.c, src/certtool-cfg.c, tests/chainverify.c: Added - casts to reduce warnings (based on report by Brad Hards). - -2009-07-13 Nikos Mavrogiannopoulos - - * .gitignore: Added more stuff to have a clean status. - -2009-07-13 Nikos Mavrogiannopoulos - - * README-alpha: Documentation corrections by Brad Hards. - -2009-07-13 Nikos Mavrogiannopoulos - - * lib/x509/crq.c: size_t and unsigned int fixes. - -2009-07-01 Nikos Mavrogiannopoulos - - * lib/gnutls_str.c: There are cases where those buffers might - overlap - -2009-07-01 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c: Patch by Tim Kosse: "If - _gnutls_send_finished fails with GNUTLS_E_AGAIN or GNUTLS_E_AGAIN it - eventually gets called a second time. It however does not call _gnutls_send_handshake with a NULL pointer - on repeated calls, ultimately leading to an internal error in - _gnutls_handshake_io_send_int." - -2009-07-01 Nikos Mavrogiannopoulos - - * lib/auth_cert.h, lib/gnutls_ui.c: Corrected - gnutls_certificate_client_get_request_status(). Based on observation - by Peter Hendrickson . - -2009-07-01 Nikos Mavrogiannopoulos - - * lib/gnutls_buffers.c, tests/Makefile.am, tests/mini-eagain.c: - Added bug fix that allows gnutls_record_recv/send resuming from - previously interrupted actions. Patch by from Tim Kosse - . Added a self test to check those functions in handling interrupted - states. - -2009-06-30 Nikos Mavrogiannopoulos - - * : commit 21a7186bf83084a2bc85bbb7ddb600ccd070f1c2 Author: Simon - Josefsson Date: Tue Jun 23 23:04:51 2009 - +0200 - -2009-06-23 Simon Josefsson - - * lib/gnutls_errors.c: Doc fix. - -2009-06-22 Simon Josefsson - - * NEWS: Fix. - -2009-06-22 Simon Josefsson - - * tests/Makefile.am, tests/dn2.c: Add self-test of off-by-one size - error. - -2009-06-22 Simon Josefsson - - * THANKS: Add. - -2009-06-22 Simon Josefsson - - * NEWS: Add. - -2009-06-22 Simon Josefsson - - * lib/x509/dn.c: Fix off-by-one size computation that leads to - truncated strings. Reported by Tim Kosse - in - - . - -2009-06-18 Simon Josefsson - - * gl/Makefile.am, gl/errno.in.h, gl/getpagesize.c, - gl/m4/errno_h.m4, gl/m4/gnulib-comp.m4, gl/m4/memchr.m4, - gl/m4/string_h.m4, gl/memchr.valgrind, gl/strerror.c, - gl/string.in.h, gl/tests/Makefile.am, gl/tests/getpagesize.c, - lib/gl/Makefile.am, lib/gl/errno.in.h, lib/gl/getpagesize.c, - lib/gl/m4/errno_h.m4, lib/gl/m4/gnulib-comp.m4, - lib/gl/m4/memchr.m4, lib/gl/m4/string_h.m4, lib/gl/memchr.valgrind, - lib/gl/string.in.h, lib/gl/tests/Makefile.am, - lib/gl/tests/getpagesize.c: Update gnulib files. - -2009-06-18 Simon Josefsson - - * libextra/m4/hooks.m4: Fix --disable-openssl-compatibility - parameter. Reported by Matthias Drochner - in - - . - -2009-06-17 Simon Josefsson - - * doc/gnutls.texi: Typo. - -2009-06-17 Simon Josefsson - - * tests/mpi.c: Fix build error. - -2009-06-17 Simon Josefsson - - * NEWS: Add. - -2009-06-17 Simon Josefsson - - * lib/gnutls_ui.c: Return proper MPI lengths in bits. Reported by - Peter Hendrickson in - - . - -2009-06-13 Nikos Mavrogiannopoulos - - * : commit fad0d9b3289087dbd56176e7a1ccb498cf5ef099 Author: Simon - Josefsson Date: Wed Jun 10 17:55:05 2009 - +0200 - -2009-06-10 Simon Josefsson - - * NEWS: Add. - -2009-06-10 Simon Josefsson - - * tests/pkcs12_s2k.c: Improve test vectors. - -2009-06-10 Simon Josefsson - - * NEWS, tests/Makefile.am, tests/pkcs12_s2k_pem.c: Added new - self-test pkcs12_s2k_pem. - -2009-06-10 Simon Josefsson - - * NEWS: Fix. - -2009-06-10 Simon Josefsson - - * NEWS: Add. - -2009-06-10 Simon Josefsson - - * lib/x509/pkcs12_encr.c: Fix PKCS#12 string to key function for - 1/128 inputs. Reported by "Kukosa, Tomas" - in - . - -2009-06-09 Simon Josefsson - - * gl/Makefile.am, gl/m4/getpagesize.m4, gl/m4/gnulib-comp.m4, - gl/m4/memchr.m4, gl/m4/mmap-anon.m4, gl/memchr.c, - gl/tests/Makefile.am, gl/tests/getpagesize.c, - gl/tests/test-memchr.c, gl/tests/zerosize-ptr.h, - lib/gl/Makefile.am, lib/gl/m4/getpagesize.m4, - lib/gl/m4/gnulib-comp.m4, lib/gl/m4/memchr.m4, - lib/gl/m4/mmap-anon.m4, lib/gl/memchr.c, lib/gl/tests/Makefile.am, - lib/gl/tests/getpagesize.c, lib/gl/tests/test-memchr.c, - lib/gl/tests/zerosize-ptr.h: Update gnulib files. - -2009-06-09 Simon Josefsson - - * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, - libextra/configure.ac: Bump versions. - -2009-06-09 Simon Josefsson - - * ChangeLog: Generated. - -2009-06-09 Simon Josefsson - - * gl/m4/gnulib-comp.m4, gl/m4/version-etc.m4, - gl/tests/test-alignof.c, gl/version-etc.c: Update gnulib files. - -2009-06-08 Simon Josefsson - - * NEWS: Version 2.9.1. - -2009-06-08 Simon Josefsson - - * lib/gnutls_extensions.c: Mark global extfunc_size as having static - scope. - -2009-06-08 Simon Josefsson - - * NEWS: Add. - -2009-06-08 Simon Josefsson - - * tests/Makefile.am, tests/init_roundtrip.c: Add self-test to detect - extension init/deinit problem. - -2009-06-08 Simon Josefsson - - * lib/gnutls_extensions.c: Deinitalize extension global variable - properly. See . - -2009-06-03 Simon Josefsson - - * gl/Makefile.am, gl/alignof.h, gl/m4/gnulib-cache.m4, - gl/m4/gnulib-comp.m4, gl/tests/Makefile.am, - gl/tests/test-alignof.c, lib/gl/alignof.h: Update gnulib files. - -2009-06-03 Simon Josefsson - - * lib/auth_srp.c, lib/debug.c, lib/debug.h, lib/gnutls_errors.c, - lib/gnutls_errors.h, lib/libgnutls.map, lib/pk-libgcrypt.c, - tests/mpi.c: Rename _gnutls_dump_mpi to _gnutls_mpi_log. Rewrite to - use less stack space. - -2009-06-03 Simon Josefsson - - * configure.ac: Reduce stack size limit check. - -2009-06-03 Simon Josefsson - - * lib/x509/output.c: Reduce stack size. - -2009-06-03 Simon Josefsson - - * lib/x509/output.c: Fix malloc failure error strings. - -2009-06-03 Simon Josefsson - - * tests/crq_apis.c: Test more. - -2009-06-03 Simon Josefsson - - * lib/x509/common.c: (_gnutls_x509_oid_data2string): Return proper @res_size for NULL - res. - -2009-06-03 Simon Josefsson - - * lib/x509/crq.c: Indent. - -2009-06-03 Simon Josefsson - - * lib/x509/crq.c: Doc fix. - -2009-06-03 Simon Josefsson - - * lib/x509/crq.c: Reduce stack usage. - -2009-06-03 Simon Josefsson - - * lib/x509/crq.c: Doc fix. - -2009-06-03 Simon Josefsson - - * lib/x509/crq.c: Simplify. - -2009-06-03 Simon Josefsson - - * tests/crq_apis.c: Test more. - -2009-06-03 Simon Josefsson - - * lib/x509/crq.c: Reduce stack usage. - -2009-06-03 Simon Josefsson - - * tests/crq_apis.c: Test more. - -2009-06-03 Simon Josefsson - - * lib/x509/crq.c: Reduce stack usage. - -2009-06-03 Simon Josefsson - - * lib/x509/crq.c: Fix uninitialized variable access. - -2009-06-03 Simon Josefsson - - * lib/x509/crq.c: Reduce stack frame usage. - -2009-06-03 Simon Josefsson - - * lib/x509/x509_write.c: Reduce stack usage. - -2009-06-02 Simon Josefsson - - * gl/m4/manywarnings.m4: Update gnulib files. - -2009-06-02 Simon Josefsson - - * tests/crq_apis.c: Add. - -2009-06-02 Simon Josefsson - - * lib/x509/crq.c: Don't assert on expected errors. - -2009-06-01 Simon Josefsson - - * NEWS: Add. - -2009-06-01 Simon Josefsson - - * tests/Makefile.am: Add crq self-test. - -2009-06-01 Simon Josefsson - - * lib/x509/extensions.c: Reduce stack usage. - -2009-06-01 Simon Josefsson - - * lib/x509/crq.c: Reduce stack usage. Fix build failure wrt - variable names. - -2009-06-01 Simon Josefsson - - * lib/includes/gnutls/x509.h: Doc fix. - -2009-06-01 Simon Josefsson - - * lib/x509/crq.c: Doc fix. - -2009-06-01 Simon Josefsson - - * lib/x509/crq.c: Return buffer size for NULL/0 inputs. Fix output - buffer size computation. - -2009-06-01 Simon Josefsson - - * lib/x509/extensions.c: Fix mem leak. - -2009-06-01 Simon Josefsson - - * lib/x509/crq.c: Don't assert for expected errors. - -2009-06-01 Simon Josefsson - - * configure.ac: Export wstack. - -2009-06-01 Simon Josefsson - - * lib/configure.ac, libextra/configure.ac: Fix WSTACK_CFLAGS. - -2009-06-01 Simon Josefsson - - * src/serv.c: Improve logging and fix warnings. - -2009-06-01 Simon Josefsson - - * configure.ac, lib/Makefile.am, lib/openpgp/Makefile.am, - lib/x509/Makefile.am, libextra/Makefile.am: Check stack size. - -2009-06-01 Simon Josefsson - - * gl/m4/manywarnings.m4: Update gnulib files. - -2009-05-31 Nikos Mavrogiannopoulos - - * doc/TODO: Added gnutls_dh_get_prime_bits limitation. - -2009-05-28 Simon Josefsson - - * lib/x509/pkcs12_bag.c, lib/x509/verify.c, lib/x509/x509.c, - lib/x509/x509_write.c: Doc fix. Reported by Peter Hendrickson - . - -2009-05-28 Simon Josefsson - - * NEWS: Add. - -2009-05-28 Simon Josefsson - - * configure.ac, lib/configure.ac, lib/m4/hooks.m4, - libextra/configure.ac: Bump versions. - -2009-05-28 Simon Josefsson - - * cfg.mk: Fix paths. - -2009-05-28 Simon Josefsson - - * ChangeLog: Generated. - -2009-05-28 Simon Josefsson - - * NEWS: Version 2.9.0. - -2009-05-28 Simon Josefsson - - * cfg.mk: Fix paths for alpha release. - -2009-05-28 Simon Josefsson - - * lib/gnutls_ui.c: Doc fix. - -2009-05-28 Simon Josefsson - - * build-aux/gnupload: Update gnulib files. - -2009-05-27 Simon Josefsson - - * doc/manpages/srptool.1: Fix. - -2009-05-27 Simon Josefsson - - * NEWS: Add. - -2009-05-27 Simon Josefsson - - * doc/manpages/gnutls-serv.1: Doc fix. - -2009-05-27 Simon Josefsson - - * lib/gnutls_psk.c: Doc fix. - -2009-05-27 Simon Josefsson - - * lib/x509/pkcs7.c: Doc fix. - -2009-05-27 Simon Josefsson - - * doc/Makefile.am: Cleanup rules. - -2009-05-27 Simon Josefsson - - * doc/Makefile.am, doc/gnutls.texi, lib/Makefile.am, - lib/openpgp/Makefile.am, lib/x509/Makefile.am, libextra/Makefile.am: - Move API texinfo generation into doc/. - -2009-05-27 Simon Josefsson - - * gl/m4/include_next.m4, gl/m4/size_max.m4, - lib/gl/m4/include_next.m4, lib/gl/m4/size_max.m4: Update gnulib - files. - -2009-05-27 Simon Josefsson - - * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, - libextra/configure.ac: Bump versions. - -2009-05-27 Simon Josefsson - - * ChangeLog: Generated. - -2009-05-27 Simon Josefsson - - * NEWS: Version 2.8.0. - -2009-05-27 Simon Josefsson - - * NEWS: Add. - -2009-05-27 Simon Josefsson - - * doc/announcement-template.txt: Typo. - -2009-05-27 Simon Josefsson - - * NEWS: Fix. - -2009-05-27 Simon Josefsson - - * NEWS, cfg.mk, configure.ac, lib/configure.ac, - libextra/configure.ac: Prepare for stable release. - -2009-05-27 Simon Josefsson - - * configure.ac, lib/configure.ac, lib/m4/hooks.m4, - libextra/configure.ac: Bump versions. - -2009-05-27 Simon Josefsson - - * NEWS: Add. - -2009-05-27 Simon Josefsson - - * lib/gnutls_ui.c: Doc fix. Reported by Peter Hendrickson - . - -2009-05-26 Simon Josefsson - - * src/select.c: Remove unused file, replaced by poll from gnulib. - -2009-05-26 Simon Josefsson - - * doc/Makefile.am: Fix generation of error_codes.texi and - algorithms.texi. - -2009-05-26 Simon Josefsson - - * ChangeLog: Generated. - -2009-05-26 Simon Josefsson - - * doc/announcement-template.txt: Fix. - -2009-05-26 Simon Josefsson - - * NEWS: Version 2.7.14. - -2009-05-26 Simon Josefsson - - * src/certtool-gaa.c, src/serv-gaa.c: Regenerate. - -2009-05-26 Simon Josefsson - - * NEWS: Add. - -2009-05-26 Simon Josefsson - - * NEWS: Add. - -2009-05-26 Simon Josefsson - - * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, - libextra/configure.ac: Bump versions. - -2009-05-26 Simon Josefsson - - * lib/gnutls_global.c, lib/includes/gnutls/compat.h, - libextra/gnutls_extra.c, libextra/includes/gnutls/extra.h, - libextra/includes/gnutls/openssl.h, tests/openssl.c, tests/simple.c: - Fix version symbol namespace. - -2009-05-26 Simon Josefsson - - * doc/examples/ex-serv-anon.c, doc/examples/ex-serv-export.c, - doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-psk.c, - doc/examples/ex-serv1.c, doc/examples/ex-session-info.c, - doc/gnutls.texi, doc/manpages/certtool.1, - doc/manpages/gnutls-serv.1, lib/auth_anon.c, lib/auth_dh_common.c, - lib/auth_dhe.c, lib/auth_dhe_psk.c, lib/gnutls_anon_cred.c, - lib/gnutls_errors.c, lib/gnutls_handshake.c, lib/gnutls_psk.c, - lib/gnutls_record.c, lib/gnutls_ui.c, - lib/includes/gnutls/gnutls.h.in, libextra/gnutls_ia.c, - src/certtool.gaa, src/prime.c, src/serv.c, src/serv.gaa, - src/tls_test.c, tests/anonself.c, tests/dhepskself.c, - tests/openpgpself.c, tests/oprfi.c, tests/resume.c, tests/tlsia.c, - tests/x509dn.c, tests/x509self.c, tests/x509signself.c: Doc fixes. - Suggested by Peter Hendrickson . - -2009-05-26 Simon Josefsson - - * lib/gnutls_auth.c: Doc fix. Reported by Peter Hendrickson - . - -2009-05-25 Simon Josefsson - - * ChangeLog: Generated. - -2009-05-25 Simon Josefsson - - * NEWS: Version 2.7.13. - -2009-05-25 Simon Josefsson - - * doc/announcement-template.txt: Fix. - -2009-05-25 Simon Josefsson - - * NEWS: Fix. - -2009-05-25 Simon Josefsson - - * NEWS: Add. - -2009-05-25 Simon Josefsson - - * doc/announcement-template.txt: Improve. - -2009-05-25 Simon Josefsson - - * lib/libgnutls.map: Sort symbols. - -2009-05-25 Simon Josefsson - - * lib/libgnutls.map: Auto-generate from GnuTLS 2.6.x list of - exported symbols. No substantial change. - -2009-05-25 Simon Josefsson - - * lib/libgnutls.map: Move functions. Reported by Andreas Metzler - in - - . - -2009-05-25 Simon Josefsson - - * lib/libgnutls.map: Move gnutls_x509_crq_set_key back to old ABI - namespace. Reported by Andreas Metzler - in - - . - -2009-05-25 Simon Josefsson - - * NEWS: Add. - -2009-05-25 Simon Josefsson - - * tests/chainverify.c: Fix expired certs. Exit early to make it - easier to find failing test. Reported by Andreas Metzler - in - - . - -2009-05-20 Simon Josefsson - - * .clcopying: Fix. - -2009-05-20 Simon Josefsson - - * AUTHORS: Fix PGP key. - -2009-05-20 Simon Josefsson - - * doc/gnutls.texi, src/Makefile.am, src/README, src/README.srptool: - Removed duplicated documentation. - -2009-05-20 Simon Josefsson - - * THANKS: Add. - -2009-05-20 Simon Josefsson - - * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, - libextra/configure.ac: Bump versions. - -2009-05-20 Simon Josefsson - - * ChangeLog: Generated. - -2009-05-20 Simon Josefsson - - * NEWS: Version 2.7.12. - -2009-05-20 Simon Josefsson - - * NEWS, src/serv.c, src/tls_test.c: Fix gnutls-serv and - gnutls-cli-debug on Windows. - -2009-05-20 Simon Josefsson - - * gl/getdelim.c: Update gnulib files. - -2009-05-20 Simon Josefsson - - * NEWS, doc/reference/Makefile.am, lib/minitasn1/libtasn1.h, - lib/minitasn1/parser_aux.c: Use libtasn1 2.2. - -2009-05-20 Simon Josefsson - - * NEWS: Add. - -2009-05-20 Simon Josefsson - - * build-aux/gnupload, gl/Makefile.am, gl/m4/sys_socket_h.m4, - gl/sys_socket.in.h, gl/tests/test-sys_socket.c, lib/gl/Makefile.am, - lib/gl/m4/sys_socket_h.m4, lib/gl/sys_socket.in.h, - lib/gl/tests/test-sys_socket.c, maint.mk: Update gnulib files. - -2009-05-20 Simon Josefsson - - * lib/gl/Makefile.am, lib/gl/m4/gnulib-cache.m4, - lib/gl/m4/gnulib-comp.m4, lib/gl/m4/vsnprintf.m4, - lib/gl/tests/Makefile.am, lib/gl/tests/test-vsnprintf.c, - lib/gl/vsnprintf.c: Replace vsnprintf if needed. - -2009-05-20 Simon Josefsson - - * NEWS: Add. - -2009-05-20 Simon Josefsson - - * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, - libextra/configure.ac: Bump versions. - -2009-05-20 Simon Josefsson - - * tests/crq_key_id.c: Reorder gcry quick random to make it - effective. Reported by Andreas Metzler - in - - . - -2009-05-18 Simon Josefsson - - * ChangeLog: Generated. - -2009-05-18 Simon Josefsson - - * NEWS: Version 2.7.11. - -2009-05-18 Simon Josefsson - - * NEWS, cfg.mk, configure.ac, doc/examples/Makefile.am, - lib/Makefile.am, lib/configure.ac, lib/openpgp/Makefile.am, - lib/x509/Makefile.am, libextra/Makefile.am, libextra/configure.ac, - src/Makefile.am, tests/Makefile.am: Don't build with warnings all - the time. Use a WERROR_CFLAGS. - -2009-05-18 Simon Josefsson - - * maint.mk: Update gnulib files. - -2009-05-18 Simon Josefsson - - * NEWS: Add. - -2009-05-18 Simon Josefsson - - * src/serv.c: Don't use unportable NI_MAXHOST/NI_MAXSERV. - -2009-05-17 Simon Josefsson - - * src/Makefile.am: Link getaddrinfo libraries. Reported by "Tom G. - Christensen" in - - . - -2009-05-17 Simon Josefsson - - * NEWS, configure.ac, lib/configure.ac: Need to run AC_PROG_CXX - unconditionally. - -2009-05-16 Simon Josefsson - - * doc/doxygen/Doxyfile.in, libextra/gl/Makefile.am: Fix old gnulib - lgpl/ paths. Reported by "Tom G. Christensen" - in - - . - -2009-05-14 Simon Josefsson - - * NEWS: Fix. - -2009-05-14 Simon Josefsson - - * lib/minitasn1/Makefile.am: Need -DASN1_BUILDING for libtasn1. - -2009-05-14 Simon Josefsson - - * doc/announcement-template.txt: Add. - -2009-05-14 Simon Josefsson - - * NEWS: Add. - -2009-05-14 Simon Josefsson - - * lib/minitasn1/Makefile.am: Fix -I's after gnulib changes. - Reported by "Tom G. Christensen" in - - . - -2009-05-14 Simon Josefsson - - * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, - libextra/configure.ac: Bump versions. - -2009-05-13 Simon Josefsson - - * ChangeLog: Generated. - -2009-05-13 Simon Josefsson - - * NEWS: Version 2.7.10. - -2009-05-13 Simon Josefsson - - * gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, - gl/tests/Makefile.am, gl/tests/test-alignof.c, lib/gl/Makefile.am, - lib/gl/m4/gnulib-cache.m4, lib/gl/m4/gnulib-comp.m4, - lib/gl/tests/Makefile.am, lib/gl/tests/test-alignof.c: Avoid failing - tests. - -2009-05-13 Simon Josefsson - - * lib/gnutls_algorithms.c, lib/gnutls_auth.c, lib/gnutls_buffers.c, - lib/gnutls_cert.c, lib/gnutls_global.c, lib/gnutls_priority.c, - lib/gnutls_psk.c, lib/gnutls_session.c, lib/gnutls_state.c, - lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/openpgp.h, - lib/includes/gnutls/pkcs12.h, lib/includes/gnutls/x509.h, - lib/openpgp/extras.c, lib/openpgp/gnutls_openpgp.c, - lib/openpgp/pgp.c, lib/openpgp/privkey.c, lib/x509/crq.c, - lib/x509/dn.c, lib/x509/pkcs12_bag.c, lib/x509/x509.c, - lib/x509/x509_write.c, libextra/gnutls_ia.c: Doc fixes for GTK-DOC. - -2009-05-13 Simon Josefsson - - * lib/ext_server_name.c, lib/gnutls_priority.c, - lib/gnutls_record.c, lib/gnutls_srp.c, lib/gnutls_state.c, - lib/gnutls_ui.c, lib/gnutls_x509.c, - lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/x509.h, - lib/x509/crq.c, lib/x509/dn.c, lib/x509/pkcs7.c, - lib/x509/privkey.c, lib/x509/verify.c, lib/x509/x509.c, - lib/x509/x509_write.c: Doc fixes for GTK-DOC. - -2009-05-13 Simon Josefsson - - * lib/includes/gnutls/crypto.h, lib/includes/gnutls/openpgp.h, - lib/includes/gnutls/x509.h, lib/openpgp/gnutls_openpgp.c, - lib/x509/dn.c, lib/x509/output.c, lib/x509/pkcs7.c, - lib/x509/verify.c, lib/x509/x509.c: Doc fixes for GTK-DOC. - -2009-05-13 Simon Josefsson - - * NEWS: Add. - -2009-05-13 Simon Josefsson - - * doc/examples/ex-alert.c, doc/examples/ex-cert-select.c, - doc/examples/ex-client-psk.c, doc/examples/ex-client-resume.c, - doc/examples/ex-client-srp.c, doc/examples/ex-client-tlsia.c, - doc/examples/ex-client1.c, doc/examples/ex-client2.c, - doc/examples/ex-crq.c, doc/examples/ex-pkcs12.c, - doc/examples/ex-rfc2818.c, doc/examples/ex-serv-anon.c, - doc/examples/ex-serv-export.c, doc/examples/ex-serv-pgp.c, - doc/examples/ex-serv-psk.c, doc/examples/ex-serv-srp.c, - doc/examples/ex-serv1.c, doc/examples/ex-session-info.c, - doc/examples/ex-verify.c, doc/examples/ex-x509-info.c, - doc/examples/tcp.c: Place examples in public domain. After - discussion with Karl. - -2009-05-13 Simon Josefsson - - * gl/alignof.h, gl/m4/gnulib-comp.m4, gl/tests/Makefile.am, - gl/tests/test-alignof.c, lib/gl/alignof.h, - lib/gl/m4/gnulib-comp.m4, lib/gl/tests/Makefile.am, - lib/gl/tests/test-alignof.c, maint.mk: Update gnulib files. - -2009-05-13 Simon Josefsson - - * lib/opencdk/keydb.c: Avoid sprintf. - -2009-05-13 Simon Josefsson - - * doc/examples/ex-client-tlsia.c, lib/opencdk/literal.c, - lib/opencdk/misc.c, src/common.c, tests/chainverify.c, - tests/tlsia.c: Fix warnings. - -2009-05-13 Simon Josefsson - - * NEWS: Fix. - -2009-05-13 Simon Josefsson - - * doc/gnutls.texi: Fix. - -2009-05-13 Simon Josefsson - - * NEWS: Add. - -2009-05-13 Simon Josefsson - - * lib/pk-libgcrypt.c: Fix crash. - -2009-05-12 Simon Josefsson - - * lib/gnutls_cert.c: Doc fix. - -2009-05-12 Simon Josefsson - - * lib/gnutls_dh_primes.c: Doc fix. - -2009-05-12 Simon Josefsson - - * lib/minitasn1/Makefile.am, lib/minitasn1/errors.h: Drop removed - libtasn1 file. - -2009-05-12 Simon Josefsson - - * NEWS, lib/minitasn1/coding.c, lib/minitasn1/decoding.c, - lib/minitasn1/element.c, lib/minitasn1/element.h, - lib/minitasn1/errors.c, lib/minitasn1/gstr.c, lib/minitasn1/gstr.h, - lib/minitasn1/int.h, lib/minitasn1/libtasn1.h, - lib/minitasn1/parser_aux.c, lib/minitasn1/parser_aux.h, - lib/minitasn1/structure.c, lib/minitasn1/structure.h: Upgrade - libtasn1 to v2.1. - -2009-05-12 Simon Josefsson - - * lib/gnutls_global.c, libextra/gnutls_extra.c: Doc fixes. Remove - debugging code. - -2009-05-12 Simon Josefsson - - * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, - libextra/configure.ac: Bump versions. - -2009-05-11 Simon Josefsson - - * ChangeLog: Generated. - -2009-05-11 Simon Josefsson - - * NEWS: Version 2.7.9. - -2009-05-11 Simon Josefsson - - * lib/configure.ac, libextra/configure.ac: Drop obsolete stuff. - -2009-05-11 Simon Josefsson - - * configure.ac: Drop obsolete stuff. - -2009-05-11 Simon Josefsson - - * gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, - gl/m4/ld-output-def.m4, gl/m4/ld-version-script.m4, - lib/gl/Makefile.am, lib/gl/m4/gnulib-cache.m4, - lib/gl/m4/gnulib-comp.m4, lib/gl/m4/ld-output-def.m4, - lib/gl/m4/ld-version-script.m4, libextra/gl/gnulib.mk, - libextra/gl/m4/gnulib-cache.m4, libextra/gl/m4/gnulib-comp.m4, - libextra/gl/m4/ld-output-def.m4, - libextra/gl/m4/ld-version-script.m4: Move gnulib tests into proper - directory. - -2009-05-11 Simon Josefsson - - * NEWS: Fix. - -2009-05-11 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2009-05-11 Simon Josefsson - - * doc/scripts/gdoc: Fix gnutls_priority_init documentation. - -2009-05-11 Simon Josefsson - - * doc/scripts/gdoc: Revert "Fix man output for "%COMPAT" in - docstrings." This reverts commit d10f1872bcbf7eb63632a8ce2e50728f42bd03fa. - -2009-05-11 Simon Josefsson - - * doc/scripts/gdoc: Fix man output for "%COMPAT" in docstrings. - -2009-05-11 Simon Josefsson - - * doc/manpages/Makefile.am: When writing man pages, don't append to - any existing file. - -2009-05-11 Simon Josefsson - - * lib/gnutls_priority.c: Doc fix. - -2009-05-11 Simon Josefsson - - * NEWS, doc/examples/Makefile.am, lib/gl/Makefile.am, - lib/gl/m4/gnulib-cache.m4, lib/gl/m4/gnulib-comp.m4, - lib/gl/tests/Makefile.am, lib/gl/tests/test-lseek.c, - lib/gl/tests/test-lseek.sh, src/Makefile.am, tests/Makefile.am: Fix - MinGW build failures. - -2009-05-11 Simon Josefsson - - * lib/autogen.sh: Add. - -2009-05-11 Simon Josefsson - - * maint.mk: Update gnulib files. - -2009-05-11 Simon Josefsson - - * gtk-doc.make: Fix syntax-check. - -2009-05-11 Simon Josefsson - - * gtk-doc.make, m4/gtk-doc.m4: Upgrade gtk-doc files. - -2009-05-11 Simon Josefsson - - * cfg.mk, gl/sys_socket.in.h, gl/tests/test-vc-list-files-git.sh, - lib/gl/Makefile.am, lib/gl/m4/gnulib-cache.m4, - lib/gl/m4/gnulib-comp.m4, lib/gl/sys_socket.in.h, - lib/gl/tests/Makefile.am, lib/gl/tests/test-lseek.c, - lib/gl/tests/test-lseek.sh, libextra/gl/gnulib.mk, - libextra/gl/m4/gnulib-cache.m4, libextra/gl/m4/gnulib-comp.m4: - Update gnulib files. - -2009-05-10 Simon Josefsson - - * tests/chainverify.c: Verisign CA v1 cert has expired! Change - expected results. Also test expiration code more. - -2009-05-08 Simon Josefsson - - * doc/Makefile.am: Don't always rebuild manual. - -2009-05-08 Simon Josefsson - - * gl/m4/sys_socket_h.m4, lib/gl/m4/sys_socket_h.m4: Update gnulib - files. - -2009-05-08 Simon Josefsson - - * gl/Makefile.am, lib/gl/Makefile.am: Update gnulib files. - -2009-05-08 Simon Josefsson - - * gl/Makefile.am, gl/alignof.h, lib/gl/Makefile.am: Update gnulib - files. - -2009-05-08 Simon Josefsson - - * cfg.mk: Fix. - -2009-05-08 Simon Josefsson - - * cfg.mk: Fix. - -2009-05-08 Simon Josefsson - - * build-aux/gnupload, gl/Makefile.am, gl/m4/errno_h.m4, - gl/m4/gnulib-comp.m4, gl/m4/multiarch.m4, gl/m4/sys_socket_h.m4, - gl/m4/vasnprintf.m4, gl/sys_socket.in.h, - gl/tests/test-sys_socket.c, lib/gl/Makefile.am, lib/gl/alignof.h, - lib/gl/m4/errno_h.m4, lib/gl/m4/gnulib-comp.m4, - lib/gl/m4/multiarch.m4, lib/gl/m4/sys_socket_h.m4, - lib/gl/m4/vasnprintf.m4, lib/gl/sys_socket.in.h, - lib/gl/tests/test-sys_socket.c, maint.mk: Update gnulib files. - -2009-05-08 Simon Josefsson - - * cfg.mk: Fix -Werror handling. - -2009-05-08 Simon Josefsson - - * lib/x509/output.c: Fix warnings. - -2009-05-07 Simon Josefsson - - * doc/examples/ex-serv-anon.c, doc/examples/ex-serv-export.c, - doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-psk.c, - doc/examples/ex-serv-srp.c, doc/examples/ex-serv1.c, - tests/anonself.c, tests/dhepskself.c, tests/openpgpself.c, - tests/oprfi.c, tests/pskself.c, tests/resume.c, tests/tlsia.c, - tests/x509dn.c, tests/x509self.c, tests/x509signself.c: Fix - warnings. - -2009-05-07 Simon Josefsson - - * NEWS: Fix. - -2009-05-07 Simon Josefsson - - * tests/anonself.c, tests/dhepskself.c, tests/openpgpself.c, - tests/oprfi.c, tests/pskself.c, tests/resume.c, tests/tlsia.c, - tests/x509dn.c, tests/x509self.c, tests/x509signself.c: Use memset - instead of deprecated bzero. - -2009-05-07 Simon Josefsson - - * NEWS, src/certtool-cfg.c, src/serv.c: Fix build failure on systems - without AF_INET6, e.g., Solaris 2.6. Reported by "Tom G. - Christensen" in - - . - -2009-05-06 Simon Josefsson - - * doc/Makefile.am: Drop README.GIT. - -2009-05-06 Simon Josefsson - - * tests/Makefile.am: Need to link directly to libgcrypt here. - -2009-05-06 Simon Josefsson - - * lib/mpi-libgcrypt.c: Don't use casts that break strict-aliasing - rules. - -2009-05-06 Simon Josefsson - - * README-alpha: Fix. - -2009-05-06 Simon Josefsson - - * configure.ac: Fix. - -2009-05-05 Simon Josefsson - - * README-alpha, doc/README.GIT: Replace doc/README.GIT with - README-alpha. - -2009-05-05 Simon Josefsson - - * README-alpha: Fix. - -2009-05-05 Simon Josefsson - - * README-alpha: Add. - -2009-05-03 Simon Josefsson - - * NEWS, lib/libgnutls.map: Fix build failure when LZO is enabled. - -2009-05-03 Simon Josefsson - - * lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/openpgp.h, - libextra/includes/gnutls/extra.h: Fix gtk-doc warnings. - -2009-05-03 Simon Josefsson - - * NEWS: Fix. - -2009-05-03 Simon Josefsson - - * lib/gnutls_asn1_tab.c, lib/pkix_asn1_tab.c: Regenerated libtasn1 - files. - -2009-05-03 Simon Josefsson - - * doc/Makefile.am: Build tools before using them. - -2009-05-03 Simon Josefsson - - * .x-sc_GPL_version, .x-sc_avoid_if_before_free, - .x-sc_cast_of_alloca_return_value, .x-sc_cast_of_argument_to_free, - .x-sc_file_system, .x-sc_m4_quote_check, .x-sc_makefile_check, - .x-sc_program_name, .x-sc_prohibit_HAVE_MBRTOWC, - .x-sc_prohibit_S_IS_definition, .x-sc_space_tab, .x-sc_the_the, - .x-sc_two_space_separator_in_usage, .x-sc_useless_cpp_parens, NEWS, - cfg.mk, doc/examples/ex-serv-export.c, doc/gnutls.texi, - gtk-doc.make, lib/gnutls.asn, lib/m4/hooks.m4, - lib/openpgp/Makefile.am, lib/pkix.asn, lib/x509/Makefile.am, - libextra/m4/hooks.m4, m4/valgrind.m4, src/Makefile.am, - src/certtool-cfg.c, src/certtool.c, src/crypt.c, src/psk.c, - src/serv.c, src/tls_test.c, tests/Makefile.am, tests/resume.c, - tests/x509dn.c: Fix syntax-check warnings. - -2009-05-03 Simon Josefsson - - * doc/reference/Makefile.am, gtk-doc.make: Upgrade gtk-doc files. - -2009-05-03 Simon Josefsson - - * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, - libextra/configure.ac: Bump versions. - -2009-05-03 Simon Josefsson - - * ChangeLog: Generated. - -2009-05-03 Simon Josefsson - - * NEWS: Version 2.7.8. - -2009-05-03 Simon Josefsson - - * gl/Makefile.am, gl/gettext.h, gl/m4/wchar.m4, gl/wchar.in.h, - lib/gl/Makefile.am, lib/gl/gettext.h, lib/gl/m4/wchar.m4, - lib/gl/wchar.in.h: Update gnulib files. - -2009-05-03 Simon Josefsson - - * tests/pkcs1-padding/pkcs1-pad: Fix self test fails because of - expired certs using datefudge. - -2009-05-01 Simon Josefsson - - * tests/chainverify.c: Print cert details. Fix verifying expired - cert. - -2009-05-01 Simon Josefsson - - * tests/cve-2008-4989.c: Avoid time checks. - -2009-04-30 Simon Josefsson - - * tests/Makefile.am, tests/cve-2009-1415.c, tests/cve-2009-1416.c: - Add self-tests for security problems. - -2009-04-30 Simon Josefsson - - * NEWS: Add. - -2009-04-30 Simon Josefsson - - * lib/gnutls_cert.c, lib/includes/gnutls/gnutls.h.in, - lib/includes/gnutls/x509.h, lib/x509/verify.c, src/common.c: - libgnutls: Check activation/expiration times on untrusted - certificates. Reported by Romain Francoise. - -2009-04-30 Simon Josefsson - - * lib/gnutls_pk.c: Fix DSA key generation. - -2009-04-30 Simon Josefsson - - * cfg.mk: Use modern git names. - -2009-04-30 Simon Josefsson - - * NEWS: Add old NEWS entries. - -2009-04-30 Simon Josefsson - - * doc/gnutls.texi: Document how to use TLS exporters. - -2009-04-30 Simon Josefsson - - * src/serv.c: Fix getaddrinfo/bind loop. - -2009-04-28 Simon Josefsson - - * maint.mk: Update gnulib files. - -2009-04-27 Simon Josefsson - - * : Replace PDF with official ZIP file. The PDFs have the same - SHA-1. The file was downloaded from: - - http://csrc.nist.gov/groups/ST/crypto_apps_infra/documents/PKI%20Testing%20Page.htmUsing the direct link: - - http://csrc.nist.gov/groups/ST/crypto_apps_infra/documents/certpath1.07.zip - -2009-04-27 Simon Josefsson - - * cfg.mk: Fix. - -2009-04-27 Simon Josefsson - - * build-aux/useless-if-before-free, build-aux/vc-list-files, - gl/Makefile.am, gl/m4/gnulib-comp.m4, gl/tests/Makefile.am, - gl/tests/test-vc-list-files-cvs.sh, - gl/tests/test-vc-list-files-git.sh, maint.mk: Update gnulib files. - -2009-04-27 Simon Josefsson - - * src/certtool.c: Fix some error messages. - -2009-04-27 Simon Josefsson - - * gl/m4/lib-link.m4, gl/m4/lib-prefix.m4, gl/vasnprintf.c, - lib/gl/m4/lib-link.m4, lib/gl/m4/lib-prefix.m4, - lib/gl/vasnprintf.c, libextra/gl/m4/lib-link.m4, - libextra/gl/m4/lib-prefix.m4, maint.mk: Update gnulib files. - -2009-04-27 Simon Josefsson - - * NEWS: Fix. - -2009-04-27 Simon Josefsson - - * NEWS: Fix. - -2009-04-27 Simon Josefsson - - * lib/libgnutls.map: Move symbols new with gnutls 2.8.x under - GNUTLS_2_8 version. - -2009-04-24 Simon Josefsson - - * NEWS, src/serv.c: gnutls-serv: Listen on all interfaces. - -2009-04-24 Simon Josefsson - - * maint.mk: Update gnulib files. - -2009-04-24 Simon Josefsson - - * lib/pk-libgcrypt.c: Cleanup code and fix memory leaks. - -2009-04-23 Simon Josefsson - - * doc/gendocs_template: Update gnulib files. - -2009-04-23 Simon Josefsson - - * NEWS, doc/gnutls.texi: Improve texinfo section names. - -2009-04-23 Simon Josefsson - - * tests/x509sign-verify.c: Also test DSA keys. - -2009-04-21 Nikos Mavrogiannopoulos - - * lib/x509/verify.c: release allocated mpis in - _gnutls_x509_verify_algorithm(). - -2009-04-21 Simon Josefsson - - * tests/libgcrypt.supp: Suppress more for modern libgcrypt. - -2009-04-21 Simon Josefsson - - * tests/x509sign-verify.c: Cleanup code. - -2009-04-21 Simon Josefsson - - * src/cli.c: Pass proper socket to libgnutls on Windows. - -2009-04-21 Simon Josefsson - - * gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, - gl/sockets.c, gl/sockets.h, gl/tests/Makefile.am, gl/tests/dummy.c, - gl/tests/sockets.c, gl/tests/sockets.h: Need sockets module. - -2009-04-20 Simon Josefsson - - * lib/libgnutls.map: Make check needs more symbols. - -2009-04-20 Simon Josefsson - - * NEWS, lib/Makefile.am, lib/libgnutls.map, libextra/Makefile.am, - libextra/libgnutls-extra.map, libextra/libgnutls-extra.vers: Improve - version scripts. Limit exported symbols on systems without linker - script. - -2009-04-20 Simon Josefsson - - * NEWS: Add. - -2009-04-20 Simon Josefsson - - * NEWS, build-aux/gendocs.sh, configure.ac, lib/configure.ac, - lib/m4/hooks.m4, libextra/configure.ac: Bump version. - -2009-04-20 Simon Josefsson - - * ChangeLog: Generated. - -2009-04-20 Simon Josefsson - - * NEWS: Version 2.7.7. - -2009-04-20 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2009-04-20 Simon Josefsson - - * doc/gnutls.texi: Really generate DSA key in example. - -2009-04-20 Simon Josefsson - - * lib/x509/x509.c: Fix return value. Doc fix. - -2009-04-20 Simon Josefsson - - * doc/gnutls.texi: Explain how to generate DSA key. - -2009-04-20 Simon Josefsson - - * lib/gnutls_x509.c, lib/x509/x509.c: Doc fix for new APIs. - -2009-04-20 Nikos Mavrogiannopoulos - - * NEWS, lib/pk-libgcrypt.c: Corrected possible memory corruption on - signature verification failure. Reported by Miroslav Kratochvil - - -2009-04-18 Nikos Mavrogiannopoulos - - * doc/printlist.c: Added small patch from Romain Francoise to remove - unneeded include. - -2009-04-18 Nikos Mavrogiannopoulos - - * lib/includes/gnutls/x509.h, lib/x509/privkey.c, lib/x509/x509.c, - tests/Makefile.am, tests/x509sign-verify.c: Added self test for - gnutls_x509_crt_verify_hash() and - gnutls_x509_crt_get_verify_algorithm(). Added some notes in - gnutls_x509_privkey_sign_hash(). - -2009-04-17 Nikos Mavrogiannopoulos - - * NEWS, lib/includes/gnutls/x509.h, lib/x509/verify.c, - lib/x509/x509.c: gnutls_x509_crt_get_sig_algorithm was renamed to - gnutls_x509_crt_get_verify_algorithm. Corrected some issues with - the code. - -2009-04-17 Simon Josefsson - - * NEWS: Reorder. - -2009-04-17 Simon Josefsson - - * NEWS, lib/gnutls.pc.in: Add -ltasn1 to pkg-config file. Reported - by Andreas Metzler in - - . - -2009-04-17 Simon Josefsson - - * NEWS: Add. - -2009-04-17 Simon Josefsson - - * cfg.mk: Use new po domain. - -2009-04-17 Simon Josefsson - - * lib/po/de.po.in: Sync with TP. - -2009-04-17 Simon Josefsson - - * lib/po/de.po.in: Sync with TP. - -2009-04-17 Simon Josefsson - - * maint.mk: Update gnulib files. - -2009-04-17 Simon Josefsson - - * lib/po/de.po.in: Sync with TP. - -2009-04-16 Simon Josefsson - - * : commit 934102c33ac89ace9a1e1d02047d54f2fea6b59b Merge: bc279f4 - d720f3f Author: Nikos Mavrogiannopoulos Date: - Wed Apr 15 22:43:03 2009 +0300 - -2009-04-14 Simon Josefsson - - * build-aux/gendocs.sh, doc/gendocs_template, doc/lgpl-2.1.texi: - Update gnulib files. - -2009-04-11 Simon Josefsson - - * gl/Makefile.am, gl/m4/inet_ntop.m4, maint.mk: Update gnulib files. - -2009-04-03 Nikos Mavrogiannopoulos - - * NEWS: documented Cedric Bail's function addition - -2009-04-03 Nikos Mavrogiannopoulos - - * : commit 258d2e873f61d5543c674f46a6247b4a379d2cca Author: Simon - Josefsson Date: Fri Apr 3 15:20:09 2009 - +0200 - -2009-04-03 Simon Josefsson - - * lib/po/POTFILES.in: Fix filenames. - -2009-04-03 Simon Josefsson - - * cfg.mk: Fix PODIR. - -2009-04-03 Simon Josefsson - - * Makefile.am, configure.ac, lib/Makefile.am, lib/configure.ac, - lib/po/LINGUAS, lib/po/Makevars, lib/po/POTFILES.in, - lib/po/cs.po.in, lib/po/de.po.in, lib/po/fr.po.in, lib/po/ms.po.in, - lib/po/nl.po.in, lib/po/pl.po.in, lib/po/sv.po.in, lib/po/vi.po.in, - po/LINGUAS, po/Makevars, po/POTFILES.in, po/cs.po.in, po/de.po.in, - po/fr.po.in, po/ms.po.in, po/nl.po.in, po/pl.po.in, po/sv.po.in, - po/vi.po.in: Move i18n dir back to lib/, after discussion with - Bruno. - -2009-04-03 Simon Josefsson - - * configure.ac, gl/Makefile.am, gl/m4/gnulib-cache.m4, - gl/m4/gnulib-comp.m4, gl/m4/ld-version-script.m4, - m4/linker-script.m4: Use linker-script from gnulib. - -2009-04-03 Simon Josefsson - - * configure.ac, gl/Makefile.am, gl/m4/gnulib-cache.m4, - gl/m4/gnulib-comp.m4, gl/m4/ld-output-def.m4, lib/configure.ac, - libextra/configure.ac, m4/output-def.m4: Use output-def test from - gnulib. - -2009-04-03 Simon Josefsson - - * configure.ac, lib/Makefile.am, lib/libgnutls.map, - lib/libgnutls.vers, lib/libgnutlsxx.map, lib/libgnutlsxx.vers: - Rename linker script. - -2009-04-03 Simon Josefsson - - * lib/Makefile.am, lib/m4/hooks.m4, libextra/Makefile.am: Use - DLL_VERSION variable name. - -2009-03-30 Simon Josefsson - - * po/LINGUAS, po/cs.po.in: Sync with TP. - -2009-03-30 Simon Josefsson - - * lib/gnutls_global.c, lib/openpgp/output.c, lib/x509/output.c: Fix - warnings. - -2009-03-30 Simon Josefsson - - * configure.ac: Only add warnings when using gcc. Don't use - -Wformat-nonliteral. - -2009-03-30 Simon Josefsson - - * GNUmakefile, build-aux/gnupload, gl/Makefile.am, gl/close-hook.c, - gl/close-hook.h, gl/close.c, gl/fseeko.c, gl/gai_strerror.c, - gl/m4/close.m4, gl/m4/gnulib-common.m4, gl/m4/gnulib-comp.m4, - gl/m4/printf.m4, gl/m4/select.m4, gl/m4/stdarg.m4, - gl/m4/sys_select_h.m4, gl/readline.c, gl/select.c, gl/setsockopt.c, - gl/stdint.in.h, gl/sys_select.in.h, gl/sys_socket.in.h, - gl/tests/Makefile.am, gl/tests/sockets.c, gl/tests/sockets.h, - gl/tests/test-getaddrinfo.c, gl/tests/test-sockets.c, - gl/unistd.in.h, gl/vasnprintf.c, gl/winsock-select.c, - lib/gl/Makefile.am, lib/gl/close-hook.c, lib/gl/close-hook.h, - lib/gl/fseeko.c, lib/gl/m4/gnulib-common.m4, - lib/gl/m4/gnulib-comp.m4, lib/gl/m4/printf.m4, lib/gl/sockets.c, - lib/gl/sockets.h, lib/gl/stdint.in.h, lib/gl/sys_socket.in.h, - lib/gl/tests/test-sockets.c, lib/gl/unistd.in.h, - lib/gl/vasnprintf.c, lib/gl/w32sock.h, - libextra/gl/m4/gnulib-common.m4, maint.mk: Update gnulib files. - -2009-03-26 Nikos Mavrogiannopoulos - - * lib/includes/gnutls/x509.h, lib/x509/verify.c, lib/x509/x509.c, - lib/x509/x509_int.h: Applied patch by Cedric Bail to add functions - gnutls_x509_crt_verify_hash() and - gnutls_x509_crt_get_sig_algorithm(). - -2009-03-23 Simon Josefsson - - * cfg.mk: Fix bootstrap. - -2009-03-23 Simon Josefsson - - * Makefile.am, cfg.mk, configure.ac, lib/Makefile.am, - lib/configure.ac: Fix po paths. - -2009-03-23 Simon Josefsson - - * lib/po/LINGUAS, lib/po/Makevars, lib/po/POTFILES.in, - lib/po/de.po.in, lib/po/fr.po.in, lib/po/ms.po.in, lib/po/nl.po.in, - lib/po/pl.po.in, lib/po/sv.po.in, lib/po/vi.po.in, po/LINGUAS, - po/Makevars, po/POTFILES.in, po/de.po.in, po/fr.po.in, po/ms.po.in, - po/nl.po.in, po/pl.po.in, po/sv.po.in, po/vi.po.in: Move lib/po to - po/ since the gettext domain is global for gnutls. - -2009-03-04 Simon Josefsson - - * lib/x509/Makefile.am: Cosmetic fix. - -2009-03-04 Simon Josefsson - - * lib/gnutls_global.c, lib/x509/x509_int.h: Be compatible with - libtasn1 before v1.6. - -2009-03-04 Simon Josefsson - - * NEWS: Add. - -2009-03-04 Simon Josefsson - - * NEWS, lib/minitasn1/coding.c, lib/minitasn1/decoding.c, - lib/minitasn1/element.c, lib/minitasn1/errors.c, - lib/minitasn1/errors.h, lib/minitasn1/gstr.c, lib/minitasn1/int.h, - lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, - lib/minitasn1/structure.c: Update to minitasn1 v1.8. - -2009-03-04 Simon Josefsson - - * lib/gnutls_global.c, lib/gnutls_global.h, lib/x509/common.c, - lib/x509/crl.c, lib/x509/crq.c, lib/x509/dn.c, - lib/x509/extensions.c, lib/x509/pkcs12.c, lib/x509/pkcs7.c, - lib/x509/x509.c: Use modern libtasn1 interfaces. - -2009-03-02 Simon Josefsson - - * NEWS: Add. - -2009-03-02 Simon Josefsson - - * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, - libextra/configure.ac: Bump version. - -2009-03-02 Simon Josefsson - - * doc/Makefile.am: Add -I's for errcodes/printlist. Reported by - Roman Bogorodskiy in - - . - -2009-02-27 Simon Josefsson - - * ChangeLog: Generated. - -2009-02-27 Simon Josefsson - - * doc/Makefile.am: Fix distcheck. - -2009-02-27 Simon Josefsson - - * doc/Makefile.am: Fix. - -2009-02-27 Simon Josefsson - - * doc/Makefile.am: Remove error_codes.texi and algorithms.texi to - fix make distcheck. - -2009-02-27 Simon Josefsson - - * doc/Makefile.am: Update --css-include path to fix distcheck. - -2009-02-27 Simon Josefsson - - * NEWS: Version 2.7.6. - -2009-02-27 Simon Josefsson - - * .gitignore: Fix. - -2009-02-27 Simon Josefsson - - * gl/tests/test-fseeko2.sh, lib/gl/tests/test-fseeko2.sh: Update - gnulib files. - -2009-02-27 Simon Josefsson - - * gl/m4/gnulib-comp.m4, gl/m4/printf.m4, gl/m4/stdint.m4, - gl/m4/stdlib_h.m4, gl/m4/vasnprintf.m4, gl/tests/Makefile.am, - gl/tests/test-fseeko.c, gl/tests/test-getaddrinfo.c, - gl/vasnprintf.c, lib/gl/m4/gnulib-comp.m4, lib/gl/m4/printf.m4, - lib/gl/m4/stdint.m4, lib/gl/m4/stdlib_h.m4, - lib/gl/m4/vasnprintf.m4, lib/gl/tests/Makefile.am, - lib/gl/tests/test-fseeko.c, lib/gl/vasnprintf.c: Update gnulib - files. - -2009-02-27 Simon Josefsson - - * gl/m4/ungetc.m4, lib/gl/m4/ungetc.m4: Update gnulib files. - -2009-02-27 Simon Josefsson - - * doc/scripts/gdoc: Revert %-hack that lead to syntax errors in - texinfo output. - -2009-02-24 Simon Josefsson - - * src/certtool.c: Minor cleanup. - -2009-02-24 Simon Josefsson - - * NEWS, src/certtool-cfg.c: certtool: Query for multiple dnsName - subjectAltName in interactive mode. - -2009-02-23 Simon Josefsson - - * gl/m4/include_next.m4, lib/gl/m4/include_next.m4: Update gnulib - files. - -2009-02-22 Nikos Mavrogiannopoulos - - * NEWS: documented pkix.asn change - -2009-02-22 Nikos Mavrogiannopoulos - - * lib/pkix.asn: Removed several unneeded parameters from pkix tree. - This reduces initial memory usage after gnutls_global_init() from - 140kb (in amd64) to 50kb. - -2009-02-22 Nikos Mavrogiannopoulos - - * lib/x509/dn.c, tests/crq_key_id.c: Added more verbose information. - -2009-02-22 Nikos Mavrogiannopoulos - - * lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509/dn.c, - tests/crq_key_id.c: Revert "Added more verbose debugging info" This reverts commit c2d3596cddbb54ac4f19c44b15a03ee1fcceab12. - -2009-02-22 Nikos Mavrogiannopoulos - - * lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509/dn.c, - tests/crq_key_id.c: Added more verbose debugging info - -2009-02-22 Nikos Mavrogiannopoulos - - * doc/TODO: removed items that have already been done or solved. - -2009-02-22 Nikos Mavrogiannopoulos - - * NEWS: documented the SSL3_RECORD_VERSION priority string - -2009-02-22 Nikos Mavrogiannopoulos - - * doc/scripts/gdoc, lib/gnutls_priority.c: Applied patch by Martin - von Gagern: The attached patch fixes gnutls_priority_init(3), but in - a very hackish way, treating a percent sign as indicating a constant - only if it is not immediately preceded by a double quote. - -2009-02-21 Nikos Mavrogiannopoulos - - * doc/manpages/gnutls-cli.1: Corrected listing of special keywords. - Reported by Martin von Gagern. - -2009-02-21 Nikos Mavrogiannopoulos - - * doc/manpages/gnutls-cli.1, lib/gnutls_handshake.c, - lib/gnutls_int.h, lib/gnutls_priority.c: Added %SSL3_RECORD_VERSION - priority option that allows to specify the client hello message - record version. Used to overcome buggy TLS servers. Report by Martin - von Gagern. - -2009-02-15 Nikos Mavrogiannopoulos - - * lib/x509/verify.c: Corrected bit disable (was flipping instead). - Initialy reported by Daniel Kahn Gillmor on 9/1/2008. Many thanks to - moog@sysdev.oucs.ox.ac.uk for bringing this into my attention. - -2009-02-11 Simon Josefsson - - * NEWS: Fix. - -2009-02-11 Simon Josefsson - - * NEWS, src/serv.c: gnutls-serv: No longer disable MAC padding by - default. - -2009-02-11 Simon Josefsson - - * src/serv.c: More gnulib usage. - -2009-02-11 Simon Josefsson - - * src/cli.c: Use more gnulib interfaces. - -2009-02-11 Simon Josefsson - - * NEWS: Add. - -2009-02-11 Simon Josefsson - - * doc/gnutls.texi: Update gnutls-serv --help output. - -2009-02-11 Simon Josefsson - - * doc/gnutls.texi: Update gnutls-cli --help output. - -2009-02-11 Simon Josefsson - - * NEWS, lib/gnutls_int.h, lib/gnutls_priority.c, lib/gnutls_x509.c: - libgnutls: Add new priority strings for allowing RSA-MD5 and V1-CA. - -2009-02-11 Simon Josefsson - - * NEWS, src/cli.c: gnutls-cli: Don't permit V1 CAs by default. - -2009-02-11 Simon Josefsson - - * doc/Makefile.am, doc/errcodes.c, doc/printlist.c, - src/Makefile.am, src/errcodes.c, src/printlist.c: Move doc related - tools from src/ to doc/. - -2009-02-11 Simon Josefsson - - * src/common.c: Typo. - -2009-02-11 Simon Josefsson - - * src/common.c: Typo. - -2009-02-11 Simon Josefsson - - * src/common.c: Print OpenPGP cert info using libgnutls. - -2009-02-11 Simon Josefsson - - * NEWS, lib/openpgp/output.c: libgnutls: gnutls_openpgp_crt_print - supports oneline mode. - -2009-02-11 Simon Josefsson - - * tests/pathlen/ca-no-pathlen.pem, - tests/pathlen/no-ca-or-pathlen.pem: Fix expected test vectors. - -2009-02-11 Simon Josefsson - - * NEWS, lib/x509/output.c: libgnutls: gnutls_x509_crt_print prints - signature algorithm in oneline mode. - -2009-02-11 Simon Josefsson - - * gl/m4/close.m4, gl/m4/sockets.m4, gl/tests/sockets.h, - gl/tests/test-sockets.c, lib/gl/m4/sockets.m4, lib/gl/sockets.h, - lib/gl/tests/test-sockets.c: Update gnulib files. - -2009-02-11 Simon Josefsson - - * NEWS, src/common.c: gnutls-cli: Print certificate info using - libgnutls. - -2009-02-11 Simon Josefsson - - * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, - libextra/configure.ac: Bump versions. - -2009-02-11 Simon Josefsson - - * lib/x509/output.c: Print bit size of RSA exponents. - -2009-02-06 Simon Josefsson - - * ChangeLog: Generated. - -2009-02-06 Simon Josefsson - - * src/Makefile.am: Need -lgnutls etc for certtool-cfg.c. - -2009-02-06 Simon Josefsson - - * NEWS: Version 2.7.5. - -2009-02-06 Simon Josefsson - - * NEWS: Merge in old NEWS entries. - -2009-02-06 Simon Josefsson - - * lib/x509/verify.c: Move down revocation check to revert code to - how it looked before. The idea is that if you have marked a cert as - trusted, you may want to trust it even though some authority has - revoked it. This changes back how this code used to work. - -2009-02-02 Simon Josefsson - - * NEWS, doc/TODO, lib/x509/verify.c, tests/chainverify.c: Make it - possible to trust intermediary certificates. Based on tiny patch - from "Douglas E. Engert" in - - . - -2009-02-02 Simon Josefsson - - * tests/chainverify.c: Add another chain from bug reports. - -2009-02-02 Simon Josefsson - - * src/common.c: Print more certificate status values. - -2009-02-02 Simon Josefsson - - * lib/x509/x509.c: Assert less for expected errors. - -2009-02-02 Simon Josefsson - - * lib/x509/output.c: Simplify keyid printing to avoid allocation and - asserts. - -2009-02-01 Simon Josefsson - - * doc/manpages/Makefile.am, doc/scripts/gdoc: Update gdoc and use - -pkg-name. - -2009-02-01 Simon Josefsson - - * build-aux/gnupload, gl/Makefile.am, gl/m4/00gnulib.m4, - gl/m4/errno_h.m4, gl/m4/extensions.m4, gl/m4/gnulib-common.m4, - gl/m4/gnulib-comp.m4, gl/m4/multiarch.m4, gl/m4/pmccabe2html.m4, - gl/m4/stdlib_h.m4, gl/stdlib.in.h, gl/tests/test-getaddrinfo.c, - gl/version-etc.c, gl/version-etc.h, lib/gl/Makefile.am, - lib/gl/m4/00gnulib.m4, lib/gl/m4/errno_h.m4, - lib/gl/m4/extensions.m4, lib/gl/m4/gnulib-common.m4, - lib/gl/m4/gnulib-comp.m4, lib/gl/m4/multiarch.m4, - lib/gl/m4/stdlib_h.m4, lib/gl/stdlib.in.h, - libextra/gl/m4/00gnulib.m4, libextra/gl/m4/extensions.m4, - libextra/gl/m4/gnulib-common.m4, libextra/gl/m4/gnulib-comp.m4: - Update gnulib files. - -2009-01-27 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_handshake.c: gnutls_handshake when sending client - hello during a rehandshake, will not offer a version number larger - than the current. Reported by Tristan Hill . - -2009-01-27 Nikos Mavrogiannopoulos - - * lib/gnutls_psk.c: result_size in gnutls_hex_encode behaves as - documented. It now holds the size of the result. Reported by John - Brooks. - -2009-01-21 Simon Josefsson - - * gl/Makefile.am, gl/arpa_inet.in.h, gl/fseeko.c, gl/m4/alloca.m4, - gl/m4/errno_h.m4, gl/m4/getaddrinfo.m4, gl/m4/getline.m4, - gl/m4/getpass.m4, gl/m4/gettimeofday.m4, gl/m4/gnulib-common.m4, - gl/m4/inet_ntop.m4, gl/m4/inet_pton.m4, gl/m4/intmax_t.m4, - gl/m4/inttypes_h.m4, gl/m4/lib-ld.m4, gl/m4/lib-link.m4, - gl/m4/longlong.m4, gl/m4/malloc.m4, gl/m4/minmax.m4, - gl/m4/printf.m4, gl/m4/readline.m4, gl/m4/realloc.m4, - gl/m4/sockets.m4, gl/m4/sockpfaf.m4, gl/m4/stdbool.m4, - gl/m4/stdint.m4, gl/m4/stdint_h.m4, gl/m4/stdio_h.m4, - gl/m4/unistd_h.m4, gl/m4/vasnprintf.m4, gl/m4/wchar_t.m4, - gl/m4/wint_t.m4, gl/progname.c, gl/stdint.in.h, gl/stdio.in.h, - gl/strerror.c, gl/sys_stat.in.h, gl/tests/gettimeofday.c, - gl/tests/ioctl.c, gl/tests/test-unistd.c, gl/unistd.in.h, - gl/wchar.in.h, lib/gl/Makefile.am, lib/gl/fseeko.c, - lib/gl/m4/alloca.m4, lib/gl/m4/byteswap.m4, lib/gl/m4/codeset.m4, - lib/gl/m4/errno_h.m4, lib/gl/m4/gettext.m4, - lib/gl/m4/gnulib-common.m4, lib/gl/m4/iconv.m4, - lib/gl/m4/intldir.m4, lib/gl/m4/intlmacosx.m4, lib/gl/m4/intmax.m4, - lib/gl/m4/intmax_t.m4, lib/gl/m4/inttypes-pri.m4, - lib/gl/m4/inttypes_h.m4, lib/gl/m4/lcmessage.m4, - lib/gl/m4/lib-ld.m4, lib/gl/m4/lib-link.m4, lib/gl/m4/lock.m4, - lib/gl/m4/longlong.m4, lib/gl/m4/malloc.m4, lib/gl/m4/memmem.m4, - lib/gl/m4/memmove.m4, lib/gl/m4/minmax.m4, lib/gl/m4/nls.m4, - lib/gl/m4/po.m4, lib/gl/m4/printf-posix.m4, lib/gl/m4/printf.m4, - lib/gl/m4/progtest.m4, lib/gl/m4/realloc.m4, lib/gl/m4/sockets.m4, - lib/gl/m4/sockpfaf.m4, lib/gl/m4/stdbool.m4, lib/gl/m4/stdint.m4, - lib/gl/m4/stdint_h.m4, lib/gl/m4/stdio_h.m4, lib/gl/m4/strcase.m4, - lib/gl/m4/strverscmp.m4, lib/gl/m4/threadlib.m4, - lib/gl/m4/uintmax_t.m4, lib/gl/m4/unistd_h.m4, - lib/gl/m4/vasnprintf.m4, lib/gl/m4/wchar_t.m4, lib/gl/m4/wint_t.m4, - lib/gl/stdint.in.h, lib/gl/stdio.in.h, lib/gl/sys_stat.in.h, - lib/gl/tests/test-unistd.c, lib/gl/unistd.in.h, lib/gl/wchar.in.h: - Update gnulib files. - -2009-01-21 Simon Josefsson - - * THANKS: Add. - -2009-01-21 Simon Josefsson - - * libextra/gl/Makefile.am, libextra/gl/gnulib.mk, - libextra/gl/m4/gnulib-cache.m4, libextra/gl/m4/gnulib-common.m4, - libextra/gl/m4/lib-ld.m4, libextra/gl/m4/lib-link.m4, - libextra/gl/m4/md5.m4: Add -I's in libextra/gl for stdint.h on - Solaris. Reported by Dagobert Michelsen in - - http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3388 - -2009-01-13 Simon Josefsson - - * lib/gnutls_state.c: Check return value properly. - -2009-01-13 Simon Josefsson - - * lib/gnutls_state.c: Fix mem leak because buffer is not expanded - correctly. - -2009-01-09 Simon Josefsson - - * NEWS: Fix typos. - -2009-01-09 Simon Josefsson - - * NEWS, lib/x509/verify.c: Permit V1 Certificate Authorities - properly. Before they were mistakenly rejected even though - GNUTLS_VERIFY_ALLOW_ANY_X509_V1_CA_CRT and/or - GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT were supplied. Reported by - "Douglas E. Engert" in - - . - -2009-01-09 Simon Josefsson - - * src/certtool.c: Permit V1 CA's in new --verify-chain code. - -2009-01-09 Simon Josefsson - - * THANKS: Add. - -2009-01-09 Simon Josefsson - - * tests/chainverify.c: Added chain supplied by "Douglas E. Engert" - . - -2009-01-07 Simon Josefsson - - * src/errcodes.c, src/printlist.c: Fix license header. - -2009-01-07 Simon Josefsson - - * lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_global.c, - lib/gnutls_global.h, lib/gnutls_int.h: Cleanup logger function type. - -2009-01-07 Simon Josefsson - - * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, - libextra/configure.ac: Bump versions. - -2009-01-07 Simon Josefsson - - * ChangeLog: Generated. - -2009-01-07 Simon Josefsson - - * NEWS: Version 2.7.4. - -2009-01-07 Simon Josefsson - - * lib/gnutls_rsa_export.c: Doc fixes. - -2009-01-07 Simon Josefsson - - * doc/examples/ex-client-psk.c, doc/examples/ex-client-resume.c, - doc/examples/ex-client-srp.c, doc/examples/ex-client-tlsia.c, - doc/examples/ex-client1.c, lib/gnutls_algorithms.c, - lib/gnutls_rsa_export.c, lib/openpgp/output.c, lib/x509/output.c, - lib/x509/privkey.c, src/cli.c, src/common.c, src/serv.c, - src/tls_test.c, tests/dhepskself.c: Fix warnings. - -2009-01-07 Simon Josefsson - - * build-aux/gendocs.sh, doc/gendocs_template, gl/Makefile.am, - gl/m4/errno_h.m4, gl/m4/extensions.m4, gl/m4/getaddrinfo.m4, - gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/inttypes_h.m4, - gl/m4/lib-link.m4, gl/m4/manywarnings.m4, gl/m4/multiarch.m4, - gl/m4/printf.m4, gl/m4/size_max.m4, gl/m4/stdint.m4, - gl/m4/stdint_h.m4, gl/m4/wchar.m4, gl/m4/wchar_t.m4, - gl/m4/wint_t.m4, gl/m4/xsize.m4, gl/stdint.in.h, gl/stdlib.in.h, - gl/sys_select.in.h, gl/tests/Makefile.am, - gl/tests/test-select-in.sh, gl/unistd.in.h, gl/version-etc.c, - gl/wchar.in.h, lib/gl/Makefile.am, lib/gl/m4/codeset.m4, - lib/gl/m4/errno_h.m4, lib/gl/m4/extensions.m4, - lib/gl/m4/gettext.m4, lib/gl/m4/glibc2.m4, lib/gl/m4/glibc21.m4, - lib/gl/m4/gnulib-cache.m4, lib/gl/m4/gnulib-comp.m4, - lib/gl/m4/iconv.m4, lib/gl/m4/intdiv0.m4, lib/gl/m4/intlmacosx.m4, - lib/gl/m4/intmax.m4, lib/gl/m4/inttypes-pri.m4, - lib/gl/m4/inttypes_h.m4, lib/gl/m4/lcmessage.m4, - lib/gl/m4/lib-link.m4, lib/gl/m4/multiarch.m4, lib/gl/m4/nls.m4, - lib/gl/m4/po.m4, lib/gl/m4/printf-posix.m4, lib/gl/m4/printf.m4, - lib/gl/m4/progtest.m4, lib/gl/m4/size_max.m4, lib/gl/m4/stdint.m4, - lib/gl/m4/stdint_h.m4, lib/gl/m4/threadlib.m4, - lib/gl/m4/uintmax_t.m4, lib/gl/m4/visibility.m4, - lib/gl/m4/wchar.m4, lib/gl/m4/wchar_t.m4, lib/gl/m4/wint_t.m4, - lib/gl/m4/xsize.m4, lib/gl/stdint.in.h, lib/gl/stdlib.in.h, - lib/gl/tests/Makefile.am, lib/gl/unistd.in.h, lib/gl/wchar.in.h, - libextra/gl/Makefile.am, libextra/gl/m4/extensions.m4, - libextra/gl/m4/gnulib-cache.m4, libextra/gl/m4/gnulib-comp.m4, - libextra/gl/m4/lib-link.m4: Update gnulib files. - -2009-01-07 Simon Josefsson - - * NEWS: Fix NEWS entry. - -2009-01-07 Simon Josefsson - - * tests/sha2/sha2: Fix self-test with new certtool --verify-chain - output. - -2009-01-06 Daniel Kahn Gillmor - - * NEWS: added NEWS item about MD5 deprecation - -2009-01-06 Simon Josefsson - - * tests/pkcs1-padding/pkcs1-pad: Fix expect strings to compensate - for new certtool -e output. - -2009-01-06 Simon Josefsson - - * NEWS, src/certtool.c: certtool: Make --verify-chain use libgnutls - verification algorithm. - -2009-01-06 Simon Josefsson - - * tests/chainverify.c: Test chain with EE cert signed using RSA-MD5. - -2009-01-06 Daniel Kahn Gillmor - - * lib/x509/verify.c: actually deprecate MD5 and MD2 signatures - during X.509 verification by treating them as invalid unless the - GNUTLS_VERIFY_ALLOW_SIGN_RSA_{MD5,MD2} flags are present. - -2008-12-12 Simon Josefsson - - * NEWS: Add NEWS entries from 2.6.3. - -2008-12-12 Simon Josefsson - - * tests/crq_key_id.c: Fix. - -2008-12-12 Simon Josefsson - - * tests/crq_key_id.c: Make it compile. Speed up key generation. - -2008-12-12 Simon Josefsson - - * tests/crq_key_id.c: Indent. - -2008-12-12 Simon Josefsson - - * NEWS, tests/Makefile.am, tests/crq_key_id.c: Add crq_key_id - self-test from David Marín Carreño. - -2008-12-11 Simon Josefsson - - * configure.ac: Update manywarnings usage. - -2008-12-11 Simon Josefsson - - * NEWS: Add. - -2008-12-11 Simon Josefsson - - * lib/x509/output.c: Print public key id for certificate requests - too. - -2008-12-11 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2008-12-11 Simon Josefsson - - * configure.ac, lib/configure.ac, lib/m4/hooks.m4, - libextra/configure.ac: Bump versions. - -2008-12-11 Simon Josefsson - - * AUTHORS, NEWS, lib/includes/gnutls/x509.h, lib/x509/crq.c: gnutls: - New interface to get key id for certificate requests. Patch from - David Marín Carreño in - - . - -2008-12-10 Simon Josefsson - - * ChangeLog: Generated. - -2008-12-10 Simon Josefsson - - * NEWS: Version 2.7.3. - -2008-12-10 Simon Josefsson - - * tests/chainverify.c: Check ca=false with flags too. - -2008-12-10 Simon Josefsson - - * gl/override/tests/test-lseek.sh.diff, gl/tests/test-lseek.sh, - lib/gl/tests/test-lseek.sh: Disable parts of gnulib self-tests that - fail on mingw. - -2008-12-10 Simon Josefsson - - * lib/gl/tests/test-lseek.c, maint.mk: Update gnulib files. - -2008-12-10 Simon Josefsson - - * gl/override/tests/test-lseek.c.diff, - gl/override/tests/test-select-in.sh.diff, gl/tests/test-lseek.c, - gl/tests/test-select-in.sh: Disable parts of gnulib self-tests that - fail on mingw. - -2008-12-10 Simon Josefsson - - * doc/examples/ex-cxx.cpp: Drop config.h, not needed (hopefully?) - and breaks mingw due to rpl_gmtime. - -2008-12-10 Simon Josefsson - - * src/Makefile.am: Certtool need libgnutls etc for - libcmd-certtool.la too, due to certtool-cfg.c. - -2008-12-10 Simon Josefsson - - * tests/x509self.c: Fix comments. - -2008-12-10 Simon Josefsson - - * NEWS: Add. - -2008-12-10 Simon Josefsson - - * NEWS: Add. - -2008-12-10 Simon Josefsson - - * tests/cve-2008-4989.c: Align with Nikos' patch. - -2008-12-10 Simon Josefsson - - * lib/opencdk/Makefile.am, lib/opencdk/armor.c, - lib/opencdk/keydb.c, lib/opencdk/literal.c, lib/opencdk/misc.c, - lib/opencdk/new-packet.c, lib/opencdk/read-packet.c, - lib/opencdk/sig-check.c, lib/opencdk/stream.c: Revert "Fix warnings - in opencdk." This reverts commit 59cddc711e55bbd094bdf95986277fb33ba964ee. - -2008-12-10 Simon Josefsson - - * lib/x509/verify.c: Revert last commit. - -2008-12-10 Simon Josefsson - - * tests/chainverify.c: Add GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT flag - when needed. - -2008-12-10 Simon Josefsson - - * tests/chainverify.c: Add hbci chain. - -2008-12-10 Simon Josefsson - - * tests/chainverify.c: Fix comments. - -2008-12-10 Simon Josefsson - - * tests/chainverify.c: Fix order to match comments. - -2008-12-10 Simon Josefsson - - * tests/chainverify.c: Don't fail on expect errors, to allow more - information to be collected. - -2008-12-10 Simon Josefsson - - * NEWS, lib/x509/verify.c: Revert Nikos revert, and fix verification - hopefully better. The new logic is to include the CA cert in - validation, but short-cut full validation of trusted certificates. - -2008-12-10 Simon Josefsson - - * tests/chainverify.c: Add chain with CA having a basic constraint - saying CA=FALSE. - -2008-12-10 Simon Josefsson - - * tests/cve-2008-4989.c: Add note. - -2008-12-10 Simon Josefsson - - * NEWS, tests/Makefile.am, tests/chainverify.c: Add self-test of - chain verification logic. - -2008-12-09 Simon Josefsson - - * tests/libgcrypt.supp: Ignore more. - -2008-12-05 Simon Josefsson - - * NEWS: Add. - -2008-12-05 Nikos Mavrogiannopoulos - - * lib/x509/verify.c: reintroduced the self signed certificate - removal code. This time shouldn't have the drawbacks that used to. - -2008-12-05 Simon Josefsson - - * lib/gnutls_global.c: Disable secmem rather than overriding - libgcrypt memory allocators. Suggested by Werner Koch in - - . - -2008-12-04 Nikos Mavrogiannopoulos - - * lib/gnutls_global.c: rearranged initialization stuff based on - Werner's suggestions. - -2008-12-04 Nikos Mavrogiannopoulos - - * src/certtool.c: gcry_control (GCRYCTL_ENABLE_QUICK_RANDOM, 0) is - being called after libgcrypt initialization (gnutls_global_init). - -2008-12-03 Simon Josefsson - - * lib/opencdk/Makefile.am, lib/opencdk/armor.c, - lib/opencdk/keydb.c, lib/opencdk/literal.c, lib/opencdk/misc.c, - lib/opencdk/new-packet.c, lib/opencdk/read-packet.c, - lib/opencdk/sig-check.c, lib/opencdk/stream.c: Fix warnings in - opencdk. - -2008-12-03 Simon Josefsson - - * gl/m4/manywarnings.m4: Add. - -2008-12-01 Simon Josefsson - - * configure.ac, gl/Makefile.am, gl/m4/gnulib-cache.m4, - gl/m4/gnulib-comp.m4, gl/m4/include_next.m4, gl/m4/warnings.m4, - gl/stdint.in.h, gl/sys_time.in.h, lib/gl/m4/include_next.m4, - lib/gl/stdint.in.h: Update gnulib files. - -2008-11-29 Nikos Mavrogiannopoulos - - * tests/x509self.c: Incorporated patch (with modifications) from Joe - Orton that also checks the rehandshake capabilities. - -2008-11-25 Simon Josefsson - - * lib/opencdk/Makefile.am, lib/openpgp/Makefile.am, - libextra/Makefile.am, tests/Makefile.am: Fix minitasn1 -I's. - -2008-11-25 Simon Josefsson - - * lib/x509/Makefile.am: Fix minitasn1 -I. - -2008-11-25 Simon Josefsson - - * lib/gnutls_buffers.c: Fix compiler warning. - -2008-11-23 Simon Josefsson - - * src/Makefile.am: Libreadline is needed by libcmd_certtool.la, not - certtool. Reported by Arfrever Frehtes Taifersar Arahesis - in - - . - -2008-11-23 Nikos Mavrogiannopoulos - - * lib/opencdk/context.h, lib/opencdk/literal.c, lib/opencdk/misc.c, - lib/opencdk/new-packet.c, lib/opencdk/opencdk.h, - lib/opencdk/read-packet.c: Converted non-C compliant code to - standard C. The usage of structures like: struct x { int el1; char str[1]; } and the trick of using a single allocation for str and the structure - itself by allocating sizeof(x) + strlen()-1, are questionable. They - were converted to: struct x { int el1; char *str; } and there is a single allocation of sizeof(x)+strlen() but then the - str pointer is updated to point to the rest of the data. - -2008-11-23 Nikos Mavrogiannopoulos - - * lib/gnutls_buffers.c, lib/gnutls_int.h, lib/gnutls_str.c, - lib/gnutls_str.h, lib/x509/dn.c: When reading data from a buffer - (gnutls_string) avoid memmoving all remaining data. This will speed - up short byte reads. - -2008-11-21 Nikos Mavrogiannopoulos - - * doc/TODO: reorganized goals - -2008-11-21 Nikos Mavrogiannopoulos - - * src/cli.c: return non zero error code on error conditions. - -2008-11-21 Nikos Mavrogiannopoulos - - * doc/certtool.cfg: better grouping of configuration directives - -2008-11-21 Nikos Mavrogiannopoulos - - * : commit 8b14ab18cf5e5214ac3d28412e0c503e83a753c1 Author: Nikos - Mavrogiannopoulos Date: Fri Nov 21 21:02:45 - 2008 +0200 - -2008-11-18 Simon Josefsson - - * lib/gnutls_compress.c: Clean up LZO initialization. - -2008-11-18 Simon Josefsson - - * lib/auth_cert.c: Don't use // comments. - -2008-11-18 Simon Josefsson - - * src/Makefile.am: Change link order, so that gnulib is last. - -2008-11-18 Simon Josefsson - - * maint.mk: Update gnulib files. - -2008-11-18 Simon Josefsson - - * lib/po/LINGUAS: Sync with TP. - -2008-11-18 Simon Josefsson - - * lib/po/LINGUAS: Sync with TP. - -2008-11-18 Simon Josefsson - - * lib/po/LINGUAS, lib/po/ms.po.in: Sync with TP. - -2008-11-18 Simon Josefsson - - * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, - libextra/configure.ac: Bump versions. - -2008-11-18 Simon Josefsson - - * ChangeLog: Generated. - -2008-11-18 Simon Josefsson - - * NEWS: Version 2.7.2. - -2008-11-18 Simon Josefsson - - * doc/reference/Makefile.am: Add deprecated guard for libtasn1. - -2008-11-18 Simon Josefsson - - * NEWS, lib/minitasn1/coding.c, lib/minitasn1/decoding.c, - lib/minitasn1/element.c, lib/minitasn1/element.h, - lib/minitasn1/errors.c, lib/minitasn1/gstr.h, - lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, - lib/minitasn1/parser_aux.h, lib/minitasn1/structure.c, - lib/minitasn1/structure.h: Sync with libtasn1 v1.7. - -2008-11-18 Simon Josefsson - - * doc/examples/Makefile.am, lib/Makefile.am, - lib/openpgp/Makefile.am, libextra/Makefile.am: Fix WARN_CFLAGS uses. - -2008-11-18 Simon Josefsson - - * lib/gnutls_compress.c: Fix warnings. - -2008-11-18 Simon Josefsson - - * tests/Makefile.am: Respect ENABLE_OPENSSL. - -2008-11-18 Simon Josefsson - - * configure.ac: Move gnulib EARLY early. - -2008-11-18 Simon Josefsson - - * configure.ac, lib/configure.ac, lib/m4/hooks.m4, - lib/m4/output-def.m4, libextra/configure.ac, m4/output-def.m4: Move - C++ and -output-def detection. - -2008-11-18 Simon Josefsson - - * configure.ac, lib/configure.ac, lib/m4/hooks.m4, - lib/m4/linker-script.m4, libextra/configure.ac, m4/linker-script.m4: - Fix linker script test. - -2008-11-18 Simon Josefsson - - * configure.ac: Fix typo. - -2008-11-18 Simon Josefsson - - * configure.ac, libextra/m4/hooks.m4: Print Openssl status. - -2008-11-18 Simon Josefsson - - * configure.ac, lib/m4/hooks.m4: Print C++ status. - -2008-11-18 Simon Josefsson - - * configure.ac: Cleanup guile tests. - -2008-11-17 Simon Josefsson - - * gl/m4/warnings.m4: Update gnulib files. - -2008-11-17 Simon Josefsson - - * configure.ac: Rewrite warning initializations. - -2008-11-17 Simon Josefsson - - * configure.ac: Typo. - -2008-11-17 Simon Josefsson - - * gl/m4/warnings.m4: Update gnulib files. - -2008-11-17 Simon Josefsson - - * doc/examples/examples.h: Add. - -2008-11-17 Simon Josefsson - - * configure.ac, doc/examples/Makefile.am, doc/examples/ex-alert.c, - doc/examples/ex-client-psk.c, doc/examples/ex-pkcs12.c, - doc/examples/ex-rfc2818.c, doc/examples/ex-session-info.c, - doc/examples/ex-verify.c, doc/examples/ex-x509-info.c, - doc/examples/tcp.c, gl/gettext.h, gl/override/lib/gettext.h.diff, - lib/gl/gettext.h, lib/gl/override/lib/gettext.h.diff, - lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_state.c, - lib/gnutls_str.h, lib/openpgp/output.c, lib/x509/Makefile.am, - lib/x509/dn.c, lib/x509/output.c, lib/x509/privkey.c, - libextra/fipsmd5.c, libextra/gnutls_extra.c, - libextra/gnutls_openssl.c, src/Makefile.am, src/cli.c, - src/common.h, src/crypt.c, src/prime.c, src/psk.c, src/serv.c, - src/tls_test.c, tests/Makefile.am, tests/anonself.c, - tests/crypto_rng.c, tests/dhepskself.c, tests/dn.c, - tests/finished.c, tests/gc.c, tests/mini.c, tests/openpgpself.c, - tests/pkcs12_s2k.c, tests/pskself.c, tests/resume.c, - tests/set_pkcs12_cred.c, tests/tlsia.c, tests/utils.c, - tests/utils.h, tests/x509dn.c, tests/x509self.c, - tests/x509signself.c: Use more warnings. Fix many warnings. - -2008-11-17 Simon Josefsson - - * gl/m4/warnings.m4, gl/override/tests/test-select-out.sh.diff, - gl/tests/test-select-out.sh: Update gnulib files. - -2008-11-17 Simon Josefsson - - * lib/includes/gnutls/compat.h, lib/includes/gnutls/crypto.h, - lib/includes/gnutls/gnutlsxx.h, lib/includes/gnutls/openpgp.h, - lib/includes/gnutls/pkcs12.h, lib/includes/gnutls/x509.h: Fix - cosmetic nits in header files. - -2008-11-17 Simon Josefsson - - * NEWS, lib/includes/gnutls/compat.h, - lib/includes/gnutls/gnutls.h.in: Fix namespace of version symbols. - -2008-11-17 Simon Josefsson - - * NEWS: Add. - -2008-11-17 Simon Josefsson - - * lib/includes/gnutls/gnutls.h.in: Move #include's outside of C++ - markers. - -2008-11-17 Simon Josefsson - - * src/cli-gaa.c, src/cli-gaa.h, src/serv-gaa.c, src/serv-gaa.h: - Generated. - -2008-11-17 Simon Josefsson - - * src/common.c: Work around gnulib+mingw problem. - -2008-11-17 Simon Josefsson - - * src/cli.gaa, src/common.h, src/serv.c, src/serv.gaa: Never include - config.h in *.h files. - -2008-11-17 Simon Josefsson - - * gl/m4/hostent.m4, gl/m4/servent.m4: Update gnulib files. - -2008-11-17 Simon Josefsson - - * gl/override/tests/test-select-out.sh.diff, - gl/tests/test-select-out.sh: Work around reported bug in gnulib - self-tests. - -2008-11-17 Simon Josefsson - - * gl/m4/getaddrinfo.m4, gl/m4/gnulib-comp.m4, gl/m4/sockets.m4, - gl/tests/test-select-out.sh, lib/gl/m4/sockets.m4: Update gnulib - files. - -2008-11-17 Simon Josefsson - - * Makefile.am, build-aux/gnupload, gl/m4/getaddrinfo.m4, - gl/m4/netdb_h.m4, gl/netdb.in.h, gl/tests/sockets.h, - lib/gl/Makefile.am, lib/gl/m4/gnulib-cache.m4, - lib/gl/m4/gnulib-comp.m4, lib/gl/m4/netdb_h.m4, lib/gl/netdb.in.h, - lib/gl/sockets.h, lib/gl/tests/Makefile.am, - libextra/gl/Makefile.am, libextra/gl/m4/gnulib-cache.m4, - libextra/gl/m4/gnulib-comp.m4: Update gnulib files. - -2008-11-17 Simon Josefsson - - * lib/gnutls_auth.c: Make it build. - -2008-11-15 Nikos Mavrogiannopoulos - - * lib/gnutls_auth.c: Corrected memory leak in - _gnutls_free_auth_info(). Trace and patch by Michael Weiser. - -2008-11-14 Simon Josefsson - - * tests/Makefile.am: Disable openpgp-keyring when not building - openpgp. - -2008-11-14 Simon Josefsson - - * tests/Makefile.am: Add -I for libextra too. - -2008-11-14 Simon Josefsson - - * lib/gnutlsxx.cpp: Make it compile with --disable-openpgp. - -2008-11-14 Simon Josefsson - - * tests/resume.c: Fix warning. - -2008-11-14 Simon Josefsson - - * lib/mpi-libgcrypt.c: Don't return from void function. Reported by - Jeff Cai in - https://savannah.gnu.org/support/?106549 - -2008-11-14 Simon Josefsson - - * lib/gnutls_int.h, libextra/ext_inner_application.c, - libextra/gnutls_ia.c: Include gnutls/extra.h at the right places. - -2008-11-14 Simon Josefsson - - * lib/mac-libgcrypt.c: Don't return from void function. Reported by - Jeff Cai in - https://savannah.gnu.org/support/?106549 - -2008-11-14 Simon Josefsson - - * tests/Makefile.am, tests/pkcs12-decode/Makefile.am, - tests/pkcs12-decode/pkcs12_s2k.c, tests/pkcs12_s2k.c: Move - pkcs12_s2k.c test to top-level to avoid -I/etc flag duplication. - -2008-11-14 Simon Josefsson - - * tests/pkcs12-decode/pkcs12: Test pkcs12_2certs.p12 too. - -2008-11-14 Simon Josefsson - - * tests/pkcs12-decode/Makefile.am: Dist pkcs12_2certs.p12. - -2008-11-14 Simon Josefsson - - * doc/Makefile.am: Dist README.gaa. - -2008-11-14 Simon Josefsson - - * doc/Makefile.am: Remove README.autoconf. - -2008-11-14 Simon Josefsson - - * lib/m4/hooks.m4: Run AC_PROG_CXX only when needed. Reported by - Daniel Black in - . - -2008-11-13 Simon Josefsson - - * configure.ac: Use more warnings. - -2008-11-13 Simon Josefsson - - * libextra/gnutls_openssl.c: Fix warning. - -2008-11-13 Simon Josefsson - - * lib/Makefile.am: Drop incorrect -I. - -2008-11-13 Simon Josefsson - - * doc/README.gaa: Add. - -2008-11-13 Simon Josefsson - - * configure.ac, doc/examples/ex-serv-export.c, - libextra/gnutls_ia.c, src/Makefile.am, src/certtool-gaa.c, - src/cli-gaa.c, src/crypt-gaa.c, src/psk-gaa.c, src/serv-gaa.c, - src/tests.c, src/tls_test-gaa.c: Use more warnings. Fix warnings. - -2008-11-12 Simon Josefsson - - * lib/auth_cert.c, lib/gnutls_mpi.c, lib/gnutls_pk.c, - lib/mac-libgcrypt.c: Fix warnings. - -2008-11-12 Simon Josefsson - - * cfg.mk: Add -Werror again, code is fixed. - -2008-11-12 Simon Josefsson - - * doc/examples/Makefile.am: Use warning flags, but not for C++ code. - -2008-11-12 Simon Josefsson - - * tests/Makefile.am, tests/cve-2008-4989.c: Use more warnings. Fix - warnings. - -2008-11-12 Simon Josefsson - - * src/Makefile.am, src/certtool-cfg.h, src/certtool-gaa.c: Use more - warnings. Fix warnings. - -2008-11-12 Simon Josefsson - - * lib/openpgp/Makefile.am, libextra/Makefile.am, - libextra/gl/Makefile.am, libextra/gl/m4/extensions.m4, - libextra/gl/m4/gnulib-cache.m4, libextra/gl/m4/gnulib-comp.m4: Use - more warning flags. Need extensions in libextra. - -2008-11-12 Simon Josefsson - - * lib/gnutls_buffers.c, lib/gnutls_extensions.c, - lib/gnutls_extensions.h, lib/gnutls_handshake.c, lib/gnutls_mpi.c, - lib/gnutls_x509.c: Fix warnings. - -2008-11-12 Simon Josefsson - - * lib/includes/gnutls/gnutls.h.in: Add prototype for - gnutls_certificate_set_x509_simple_pkcs12_mem. - -2008-11-12 Simon Josefsson - - * lib/x509/Makefile.am: Use WARN_CFLAGS. - -2008-11-12 Simon Josefsson - - * lib/ext_server_name.c, lib/gnutls_cipher.c, - lib/gnutls_constate.c, lib/gnutls_extensions.c, - lib/gnutls_handshake.c, lib/gnutls_record.c, - lib/gnutls_supplemental.c, lib/gnutls_v2_compat.c: Fix warnings. - -2008-11-12 Simon Josefsson - - * Makefile.am: Build gl/ later. - -2008-11-12 Simon Josefsson - - * cfg.mk: Drop -Werror because gnutls code doesn't compile with it. - -2008-11-12 Simon Josefsson - - * configure.ac, lib/Makefile.am: Disable pointer sign warnings. Use - WARN_CFLAGS more. - -2008-11-12 Simon Josefsson - - * configure.ac: Better warning flag hangling. - -2008-11-12 Simon Josefsson - - * cfg.mk, doc/README.GIT: Drop --enable-developer-mode. - -2008-11-12 Simon Josefsson - - * configure.ac: Remove debug code. - -2008-11-12 Simon Josefsson - - * cfg.mk, configure.ac: Use warnings module. - -2008-11-12 Simon Josefsson - - * cfg.mk, configure.ac, gl/m4/gnulib-comp.m4, gl/m4/warnings.m4, - lib/configure.ac, libextra/configure.ac: Use gnulib warnings module. - -2008-11-12 Simon Josefsson - - * NEWS: Add v2.6.2 entries. - -2008-11-12 Simon Josefsson - - * lib/m4/hooks.m4, lib/m4/output-def.m4: Use output-def.m4. - -2008-11-12 Simon Josefsson - - * lib/gnutls.pc.in, libextra/gnutls-extra.pc.in: Add URL fields. - -2008-11-12 Simon Josefsson - - * lib/m4/hooks.m4, lib/m4/linker-script.m4: Fix version script - detection. - -2008-11-12 Simon Josefsson - - * configure.ac, lib/configure.ac, lib/m4/hooks.m4, - lib/m4/linker-script.m4, libextra/configure.ac, m4/valgrind.m4: Use - external m4 files for shared tests. - -2008-11-12 Simon Josefsson - - * NEWS: Fix. - -2008-11-12 Simon Josefsson - - * tests/cve-2008-4989.c: Frob expected verify status code. With - latest verify.c patch it just say the chain is invalid, rather than - complaining about missing signer certificate. This is arguable more - correct. - -2008-11-12 Simon Josefsson - - * lib/x509/verify.c: Remove check of last certificate in path is - self signed. Causes crashes further down in the code for - certificate chains that only contain one self-signed certificate. - Still protects against the GNUTLS-SA-2008-3 vulnerabillity. - Reported by Michael Meskes in - . - -2008-11-12 Simon Josefsson - - * gl/tests/test-select-out.sh: Comment out broken test. - -2008-11-11 Simon Josefsson - - * gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, - gl/m4/warnings.m4, lib/gl/Makefile.am, lib/gl/m4/gnulib-cache.m4, - lib/gl/m4/gnulib-comp.m4, lib/gl/m4/warnings.m4: Update gnulib - files. - -2008-11-11 Simon Josefsson - - * Makefile.am: Need more -I's. - -2008-11-11 Simon Josefsson - - * gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, - lib/gl/Makefile.am, lib/gl/m4/gnulib-cache.m4, - lib/gl/m4/gnulib-comp.m4, lib/gl/m4/warnings.m4: Update gnulib - files. - -2008-11-11 Simon Josefsson - - * gl/Makefile.am, gl/fseeko.c, gl/m4/getaddrinfo.m4, - gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/netdb_h.m4, - gl/m4/printf.m4, gl/netdb.in.h, gl/tests/test-select-fd.c, - gl/tests/test-select-in.sh, gl/tests/test-select-out.sh, - lib/gl/Makefile.am, lib/gl/fseeko.c, lib/gl/m4/netdb_h.m4, - lib/gl/m4/printf.m4, lib/gl/netdb.in.h: Update gnulib files. - -2008-11-11 Simon Josefsson - - * tests/cve-2008-4989.c: Also test chain length of 1 since the - security patch caused a crash. - -2008-11-11 Simon Josefsson - - * tests/libgcrypt.supp: Add another gcrypt leak. - -2008-11-11 Simon Josefsson - - * lib/gnutls_extensions.c, lib/gnutls_extensions.h, - lib/gnutls_global.c: Fix mem leak. - -2008-11-11 Simon Josefsson - - * tests/cve-2008-4989.c: Fix mem leaks. - -2008-11-11 Simon Josefsson - - * NEWS, tests/Makefile.am, tests/cve-2008-4989.c: Add - cve-2008-4989.c self-test. - -2008-11-10 Simon Josefsson - - * gl/tests/gettimeofday.c, gl/tests/test-gettimeofday.c, - gl/tests/test-select-fd.c, gl/tests/test-select-in.sh, - gl/tests/test-select-out.sh, gl/tests/test-select-stdin.c: Update - gnulib files. - -2008-11-10 Simon Josefsson - - * gl/m4/gettimeofday.m4, gl/m4/gnulib-comp.m4, - gl/m4/sys_ioctl_h.m4, gl/tests/Makefile.am, - lib/gl/m4/include_next.m4, lib/gl/sys_stat.in.h: Update gnulib - files. - -2008-11-10 Simon Josefsson - - * NEWS, THANKS, lib/x509/verify.c: Merge in v2.6.1 fixes. - -2008-11-07 Simon Josefsson - - * NEWS, lib/m4/hooks.m4: Use modern -Wl,--version-script check. - -2008-11-07 Simon Josefsson - - * doc/cyclo/Makefile.am: Cover more files. - -2008-11-07 Simon Josefsson - - * lib/opencdk/opencdk.h: Fix C++ rule, for pmccabe2html. - -2008-11-07 Simon Josefsson - - * build-aux/pmccabe.css, build-aux/pmccabe2html, configure.ac, - doc/Makefile.am, doc/cyclo/Makefile.am, gl/Makefile.am, - gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/pmccabe2html.m4, - gl/sys_stat.in.h: Add cyclomatic code complexity charts. - -2008-11-07 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2008-11-07 Simon Josefsson - - * NEWS, lib/m4/hooks.m4, libextra/configure.ac: Need LZO detection - in libgnutls. - -2008-11-05 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_x509.c, tests/Makefile.am, - tests/set_pkcs12_cred.c: * Added gnutls_certificate_set_x509_simple_pkcs12_mem * Made gnutls_certificate_set_x509_simple_pkcs12_file() more - advanced. It will return a corresponding certificate and key pair. - [The previous version would return the first ones found]. Eliminated - memory leaks on error conditions on these functions. - -2008-11-05 Nikos Mavrogiannopoulos - - * .gitignore: ignore more stuff - -2008-11-05 Nikos Mavrogiannopoulos - - * NEWS, doc/certtool.cfg, src/certtool-cfg.c, src/certtool.c: - certtool: allow setting arbitrary key purpose object identifiers. - -2008-11-05 Simon Josefsson - - * doc/README.autoconf: Remove obsolete instructions. - -2008-11-04 Simon Josefsson - - * lib/gnutls_srp.c, lib/gnutls_ui.c: Doc fix. - -2008-11-04 Simon Josefsson - - * NEWS: Add. - -2008-11-04 Simon Josefsson - - * src/certtool.c: Use error instead of fprintf. - -2008-11-04 Simon Josefsson - - * lib/includes/gnutls/gnutls.h.in: Indent differently for gtk-doc. - -2008-11-04 Simon Josefsson - - * doc/reference/Makefile.am: Ignore gnulib headers. - -2008-11-04 Simon Josefsson - - * m4/ax_create_stdint_h.m4: Remove. - -2008-11-04 Simon Josefsson - - * doc/reference/Makefile.am: Ignore config.h. - -2008-11-04 Simon Josefsson - - * tests/Makefile.am: Drop pointless gc_LDADD. - -2008-11-04 Simon Josefsson - - * tests/Makefile.am: Drop removed -Ilgl. - -2008-11-04 Simon Josefsson - - * NEWS, doc/Makefile.am, doc/fdl-1.3.texi, doc/fdl.texi, - doc/gnutls.texi, gl/Makefile.am, gl/m4/gnulib-cache.m4, - gl/m4/gnulib-comp.m4, gl/m4/include_next.m4: Update gnulib files. - Use GFDLv1.3 for manual. - -2008-11-04 Simon Josefsson - - * NEWS: Add. - -2008-11-04 Simon Josefsson - - * lib/includes/gnutls/gnutls.h.in: Fix typo. - -2008-11-04 Simon Josefsson - - * lib/includes/gnutls/gnutls.h.in: Sync gnutls_srp_set_prime_bits - prototype with code. - -2008-11-04 Simon Josefsson - - * lib/includes/gnutls/gnutls.h.in: Add forgotten prototype for - gnutls_srp_server_get_username. Reported by Kevin Quick. - -2008-11-03 Nikos Mavrogiannopoulos - - * lib/gnutls_ui.c: documented that gnutls_dh_set_prime_bits() has no - effect in server side. - -2008-11-03 Nikos Mavrogiannopoulos - - * : commit fe191e360728fcee72cf5ba835f2301f1bf78b49 Author: Nikos - Mavrogiannopoulos Date: Mon Nov 3 21:44:38 - 2008 +0200 - -2008-11-03 Simon Josefsson - - * lib/gl/Makefile.am, lib/gl/m4/gnulib-comp.m4, - lib/gl/m4/memchr.m4, lib/gl/m4/memcmp.m4, lib/gl/memchr.c, - lib/gl/memcmp.c, lib/gl/tests/Makefile.am, - lib/gl/tests/test-memchr.c, lib/gl/tests/test-memcmp.c, maint.mk: - Update gnulib files. - -2008-11-03 Simon Josefsson - - * NEWS: Add. - -2008-11-03 Simon Josefsson - - * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, - libextra/configure.ac: Bump versions. - -2008-11-03 Simon Josefsson - - * lib/m4/hooks.m4: Check for C99 macros. - -2008-11-02 Nikos Mavrogiannopoulos - - * lib/minitasn1/decoding.c, lib/minitasn1/element.c, - lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, - lib/minitasn1/parser_aux.h: * added BER octet string decoder from libtasn1. * added the tree generation optimizations. - -2008-11-02 Nikos Mavrogiannopoulos - - * src/certtool.c: * Some more verbose out. * Do not abort the pkcs12 structure parsing if one bag failed. - -2008-11-02 Nikos Mavrogiannopoulos - - * lib/x509/pkcs12.c: Reduce verbosity - -2008-11-02 Nikos Mavrogiannopoulos - - * lib/x509/pkcs12.c: print DER errors if any. - -2008-10-31 Simon Josefsson - - * doc/texinfo.css: Use white background. - -2008-10-31 Simon Josefsson - - * ChangeLog: Generated. - -2008-10-31 Simon Josefsson - - * NEWS: Version 2.7.1. - -2008-10-30 Simon Josefsson - - * guile/src/Makefile.am: Really fix -I's. - -2008-10-30 Simon Josefsson - - * guile/src/Makefile.am: Fix -I's. - -2008-10-30 Simon Josefsson - - * tests/Makefile.am: Add -lgnutls-extra for openpgp-keyring. - -2008-10-30 Simon Josefsson - - * gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, - gl/m4/sys_stat_h.m4, gl/sys_stat.in.h, gl/tests/Makefile.am, - gl/tests/test-sys_stat.c: Need more gnulib modules. - -2008-10-30 Simon Josefsson - - * gl/Makefile.am, gl/connect.c, gl/m4/gnulib-cache.m4, - gl/m4/gnulib-comp.m4, gl/recv.c, gl/send.c, gl/tests/Makefile.am, - gl/tests/connect.c, src/certtool.c, src/cli.c: Need more gnulib - modules. - -2008-10-30 Simon Josefsson - - * gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, - gl/perror.c, gl/tests/Makefile.am, gl/tests/perror.c: Update gnulib - files. - -2008-10-30 Simon Josefsson - - * .gitignore: Update. - -2008-10-30 Simon Josefsson - - * doc/.gitignore, lib/po/.gitignore, libextra/.gitignore: Update. - -2008-10-30 Simon Josefsson - - * gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, - gl/m4/minmax.m4, gl/m4/read-file.m4, gl/minmax.h, gl/read-file.c, - gl/read-file.h, gl/tests/Makefile.am, gl/tests/test-read-file.c, - src/Makefile.am, src/cli.c, src/serv.c: Need more gnulib modules. - -2008-10-30 Simon Josefsson - - * gl/accept.c, gl/alloca.c, gl/bind.c, gl/close.c, gl/fclose.c, - gl/listen.c, gl/m4/close.m4, gl/m4/fclose.m4, gl/m4/perror.m4, - gl/m4/sockets.m4, gl/m4/sys_ioctl_h.m4, gl/m4/sys_select_h.m4, - gl/m4/sys_time_h.m4, gl/setsockopt.c, gl/socket.c, - gl/sys_select.in.h, gl/sys_time.in.h, gl/tests/connect.c, - gl/tests/ioctl.c, gl/tests/perror.c, gl/tests/sockets.c, - gl/tests/sockets.h, gl/tests/sys_ioctl.in.h, - gl/tests/test-perror.c, gl/tests/test-perror.sh, - gl/tests/test-select.c, gl/tests/test-sockets.c, - gl/tests/test-sys_select.c, gl/tests/test-sys_time.c, - gl/tests/w32sock.h, gl/winsock-select.c: Update gnulib files. - -2008-10-30 Simon Josefsson - - * gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, - gl/shutdown.c, gl/tests/Makefile.am, gl/tests/dummy.c, - gl/w32sock.h, lib/Makefile.am, src/common.h: Use sockets module. - -2008-10-30 Simon Josefsson - - * guile/src/Makefile.am: Fix. - -2008-10-30 Simon Josefsson - - * configure.ac, lib/gl/Makefile.am, lib/gl/m4/gnulib-cache.m4, - lib/gl/m4/gnulib-comp.m4, lib/gl/m4/sockets.m4, lib/gl/sockets.c, - lib/gl/sockets.h, lib/gl/tests/Makefile.am, - lib/gl/tests/test-sockets.c, lib/gnutls_buffers.c, - lib/gnutls_global.c: Better gnulib module usage. - -2008-10-30 Simon Josefsson - - * gl/m4/gnulib-comp.m4: Update gnulib files. - -2008-10-30 Simon Josefsson - - * configure.ac, configure.in: Rename. - -2008-10-30 Simon Josefsson - - * guile/src/Makefile.am, src/Makefile.am: Fixes. - -2008-10-30 Simon Josefsson - - * configure.in, lib/configure.ac, tests/Makefile.am: Fixes. - -2008-10-30 Simon Josefsson - - * configure.in: Remove. - -2008-10-30 Simon Josefsson - - * Makefile.am, configure.in, doc/Makefile.am, - doc/examples/Makefile.am, doc/reference/Makefile.am, - guile/src/Makefile.am, includes/Makefile.am, - includes/gnutls/compat.h, includes/gnutls/crypto.h, - includes/gnutls/extra.h, includes/gnutls/gnutls.h.in, - includes/gnutls/gnutlsxx.h, includes/gnutls/openpgp.h, - includes/gnutls/openssl.h, includes/gnutls/pkcs12.h, - includes/gnutls/x509.h, lib/Makefile.am, lib/configure.ac, - lib/includes/Makefile.am, lib/includes/gnutls/compat.h, - lib/includes/gnutls/crypto.h, lib/includes/gnutls/gnutls.h.in, - lib/includes/gnutls/gnutlsxx.h, lib/includes/gnutls/openpgp.h, - lib/includes/gnutls/pkcs12.h, lib/includes/gnutls/x509.h, - lib/opencdk/Makefile.am, lib/openpgp/Makefile.am, - lib/x509/Makefile.am, libextra/Makefile.am, libextra/configure.ac, - libextra/includes/Makefile.am, libextra/includes/gnutls/extra.h, - libextra/includes/gnutls/openssl.h, src/Makefile.am, - tests/Makefile.am, tests/hostname-check.README, - tests/hostname-check.c, tests/hostname-check/Makefile.am, - tests/hostname-check/README, tests/hostname-check/hostname-check.c, - tests/openpgp-keyring.c, tests/openpgp/Makefile.am, - tests/openpgp/keyring.c, tests/pkcs12-decode/Makefile.am: Separate - headers as well. Clean up -I's. - -2008-10-30 Simon Josefsson - - * guile/src/Makefile.am, tests/Makefile.am, - tests/pkcs12-decode/Makefile.am: Builds on my system now. - -2008-10-30 Simon Josefsson - - * NEWS: Add. - -2008-10-30 Simon Josefsson - - * configure.in, lib/gnutls_mem.h: Drop dmalloc and efence support. - -2008-10-30 Simon Josefsson - - * configure.in, lib/Makefile.am, lib/configure.ac, lib/m4/hooks.m4, - lib/openpgp/Makefile.am, lib/x509/Makefile.am, - libextra/Makefile.am, src/Makefile.am: Make it build better. - -2008-10-30 Simon Josefsson - - * configure.in, lib/Makefile.am, lib/m4/hooks.m4, - libextra/Makefile.am, src/Makefile.am: Fixes. - -2008-10-30 Simon Josefsson - - * cfg.mk, configure.in, includes/gnutls/gnutls.h.in, - lib/Makefile.am, lib/configure.ac, lib/m4/hooks.m4, - lib/openpgp/Makefile.am, lib/x509/Makefile.am: Make it build. - -2008-10-30 Simon Josefsson - - * lib/po/POTFILES.in: Fix paths. - -2008-10-30 Simon Josefsson - - * cfg.mk, lib/m4/hooks.m4: Build fixes. - -2008-10-30 Simon Josefsson - - * cfg.mk: Fix i18n stuff. - -2008-10-30 Simon Josefsson - - * lib/m4/hooks.m4, libextra/m4/hooks.m4: New files, forgotten in - last commit. - -2008-10-30 Simon Josefsson - - * lib/build-aux/config.rpath, lib/build-aux/link-warning.h, - lib/gl/Makefile.am, lib/gl/m4/gnulib-cache.m4, - libextra/build-aux/config.rpath: Update gnulib files. - -2008-10-30 Simon Josefsson - - * COPYING.LIB, Makefile.am, configure.in, lib/AUTHORS, lib/COPYING, - lib/ChangeLog, lib/Makefile.am, lib/NEWS, lib/README, - lib/configure.ac, lib/po/.gitignore, lib/po/LINGUAS, - lib/po/Makevars, lib/po/POTFILES.in, lib/po/de.po.in, - lib/po/fr.po.in, lib/po/ms.po.in, lib/po/nl.po.in, lib/po/pl.po.in, - lib/po/sv.po.in, lib/po/vi.po.in, libextra/AUTHORS, - libextra/COPYING, libextra/ChangeLog, libextra/Makefile.am, - libextra/NEWS, libextra/README, libextra/configure.ac, - libextra/gl/Makefile.am, libextra/gl/m4/gnulib-cache.m4, - libextra/gl/m4/gnulib-comp.m4, libextra/gl/m4/lib-ld.m4, - libextra/gl/m4/lib-link.m4, libextra/gl/m4/lib-prefix.m4, - po/.gitignore, po/LINGUAS, po/Makevars, po/POTFILES.in, - po/de.po.in, po/fr.po.in, po/ms.po.in, po/nl.po.in, po/pl.po.in, - po/sv.po.in, po/vi.po.in: More splitting updates. - -2008-10-30 Simon Josefsson - - * libextra/gl/Makefile.am, libextra/gl/m4/gnulib-cache.m4, - libextra/gl/m4/gnulib-comp.m4: Update gnulib files. - -2008-10-30 Simon Josefsson - - * gl/alloca.in.h, gl/asnprintf.c, gl/errno.in.h, gl/float+.h, - gl/float.in.h, gl/fseeko.c, gl/gettext.h, gl/lseek.c, - gl/m4/alloca.m4, gl/m4/errno_h.m4, gl/m4/float_h.m4, - gl/m4/fseeko.m4, gl/m4/intmax_t.m4, gl/m4/inttypes_h.m4, - gl/m4/longlong.m4, gl/m4/lseek.m4, gl/m4/malloc.m4, - gl/m4/printf.m4, gl/m4/realloc.m4, gl/m4/size_max.m4, - gl/m4/snprintf.m4, gl/m4/sockpfaf.m4, gl/m4/stdbool.m4, - gl/m4/stdint.m4, gl/m4/stdint_h.m4, gl/m4/stdio_h.m4, - gl/m4/stdlib_h.m4, gl/m4/string_h.m4, gl/m4/sys_socket_h.m4, - gl/m4/unistd_h.m4, gl/m4/vasnprintf.m4, gl/m4/wchar.m4, - gl/m4/wchar_t.m4, gl/m4/wint_t.m4, gl/m4/xsize.m4, - gl/printf-args.c, gl/printf-args.h, gl/printf-parse.c, - gl/printf-parse.h, gl/realloc.c, gl/size_max.h, gl/snprintf.c, - gl/stdbool.in.h, gl/stdint.in.h, gl/stdio-impl.h, gl/stdio-write.c, - gl/stdio.in.h, gl/stdlib.in.h, gl/string.in.h, gl/sys_socket.in.h, - gl/tests/dummy.c, gl/tests/test-alloca-opt.c, - gl/tests/test-errno.c, gl/tests/test-fseeko.c, - gl/tests/test-fseeko.sh, gl/tests/test-lseek.c, - gl/tests/test-lseek.sh, gl/tests/test-snprintf.c, - gl/tests/test-stdbool.c, gl/tests/test-stdint.c, - gl/tests/test-stdio.c, gl/tests/test-stdlib.c, - gl/tests/test-string.c, gl/tests/test-sys_socket.c, - gl/tests/test-unistd.c, gl/tests/test-vasnprintf.c, - gl/tests/test-wchar.c, gl/tests/verify.h, gl/unistd.in.h, - gl/vasnprintf.c, gl/vasnprintf.h, gl/wchar.in.h, gl/xsize.h: Update - gnulib files. - -2008-10-30 Simon Josefsson - - * Makefile.am, configure.in, gl/Makefile.am, gl/m4/gnulib-cache.m4, - gl/m4/gnulib-comp.m4, gl/tests/Makefile.am, lib/configure.ac, - libextra/Makefile.am, libextra/configure.ac: More splitting. - -2008-10-30 Simon Josefsson - - * build-aux/config.rpath, lib/gl/Makefile.am, - lib/gl/m4/gnulib-cache.m4, lib/gl/m4/gnulib-comp.m4, - lib/gl/m4/stdlib_h.m4, lib/gl/m4/sys_ioctl_h.m4, - lib/gl/m4/sys_socket_h.m4, lib/gl/stdlib.in.h, - lib/gl/sys_socket.in.h, lib/gl/sys_stat.in.h, - lib/gl/tests/Makefile.am, lib/gl/unistd.in.h: Update gnulib files. - -2008-10-30 Simon Josefsson - - * Makefile.am, build-aux/config.rpath, configure.in, - lgl/Makefile.am, lgl/alloca.in.h, lgl/asnprintf.c, lgl/asprintf.c, - lgl/byteswap.in.h, lgl/c-ctype.c, lgl/c-ctype.h, lgl/errno.in.h, - lgl/float+.h, lgl/float.in.h, lgl/fseeko.c, lgl/gettext.h, - lgl/lseek.c, lgl/m4/alloca.m4, lgl/m4/byteswap.m4, - lgl/m4/codeset.m4, lgl/m4/errno_h.m4, lgl/m4/extensions.m4, - lgl/m4/float_h.m4, lgl/m4/fseeko.m4, lgl/m4/func.m4, - lgl/m4/gettext.m4, lgl/m4/glibc2.m4, lgl/m4/glibc21.m4, - lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-common.m4, - lgl/m4/gnulib-comp.m4, lgl/m4/gnulib-tool.m4, lgl/m4/iconv.m4, - lgl/m4/include_next.m4, lgl/m4/intdiv0.m4, lgl/m4/intl.m4, - lgl/m4/intldir.m4, lgl/m4/intlmacosx.m4, lgl/m4/intmax.m4, - lgl/m4/intmax_t.m4, lgl/m4/inttypes-pri.m4, lgl/m4/inttypes_h.m4, - lgl/m4/lcmessage.m4, lgl/m4/lib-ld.m4, lgl/m4/lib-link.m4, - lgl/m4/lib-prefix.m4, lgl/m4/lock.m4, lgl/m4/longlong.m4, - lgl/m4/lseek.m4, lgl/m4/malloc.m4, lgl/m4/memchr.m4, - lgl/m4/memcmp.m4, lgl/m4/memmem.m4, lgl/m4/memmove.m4, - lgl/m4/minmax.m4, lgl/m4/netdb_h.m4, lgl/m4/nls.m4, lgl/m4/po.m4, - lgl/m4/printf-posix.m4, lgl/m4/printf.m4, lgl/m4/progtest.m4, - lgl/m4/read-file.m4, lgl/m4/realloc.m4, lgl/m4/size_max.m4, - lgl/m4/snprintf.m4, lgl/m4/socklen.m4, lgl/m4/sockpfaf.m4, - lgl/m4/stdbool.m4, lgl/m4/stdint.m4, lgl/m4/stdint_h.m4, - lgl/m4/stdio_h.m4, lgl/m4/stdlib_h.m4, lgl/m4/strcase.m4, - lgl/m4/string_h.m4, lgl/m4/strings_h.m4, lgl/m4/strverscmp.m4, - lgl/m4/sys_ioctl_h.m4, lgl/m4/sys_socket_h.m4, - lgl/m4/sys_stat_h.m4, lgl/m4/threadlib.m4, lgl/m4/time_h.m4, - lgl/m4/time_r.m4, lgl/m4/uintmax_t.m4, lgl/m4/unistd_h.m4, - lgl/m4/vasnprintf.m4, lgl/m4/vasprintf.m4, lgl/m4/visibility.m4, - lgl/m4/wchar.m4, lgl/m4/wchar_t.m4, lgl/m4/wint_t.m4, - lgl/m4/xsize.m4, lgl/memchr.c, lgl/memcmp.c, lgl/memmem.c, - lgl/memmove.c, lgl/minmax.h, lgl/netdb.in.h, - lgl/override/lib/gc-libgcrypt.c.diff, lgl/printf-args.c, - lgl/printf-args.h, lgl/printf-parse.c, lgl/printf-parse.h, - lgl/read-file.c, lgl/read-file.h, lgl/realloc.c, lgl/size_max.h, - lgl/snprintf.c, lgl/stdbool.in.h, lgl/stdint.in.h, - lgl/stdio-impl.h, lgl/stdio-write.c, lgl/stdio.in.h, - lgl/stdlib.in.h, lgl/str-two-way.h, lgl/strcasecmp.c, - lgl/string.in.h, lgl/strings.in.h, lgl/strncasecmp.c, - lgl/strverscmp.c, lgl/sys_socket.in.h, lgl/sys_stat.in.h, - lgl/tests/Makefile.am, lgl/tests/dummy.c, lgl/tests/intprops.h, - lgl/tests/test-alloca-opt.c, lgl/tests/test-byteswap.c, - lgl/tests/test-c-ctype.c, lgl/tests/test-errno.c, - lgl/tests/test-fseeko.c, lgl/tests/test-fseeko.sh, - lgl/tests/test-func.c, lgl/tests/test-lseek.c, - lgl/tests/test-lseek.sh, lgl/tests/test-memchr.c, - lgl/tests/test-memcmp.c, lgl/tests/test-netdb.c, - lgl/tests/test-read-file.c, lgl/tests/test-snprintf.c, - lgl/tests/test-stdbool.c, lgl/tests/test-stdint.c, - lgl/tests/test-stdio.c, lgl/tests/test-stdlib.c, - lgl/tests/test-string.c, lgl/tests/test-strings.c, - lgl/tests/test-strverscmp.c, lgl/tests/test-sys_socket.c, - lgl/tests/test-sys_stat.c, lgl/tests/test-time.c, - lgl/tests/test-unistd.c, lgl/tests/test-vasnprintf.c, - lgl/tests/test-vasprintf.c, lgl/tests/test-wchar.c, - lgl/tests/verify.h, lgl/time.in.h, lgl/time_r.c, lgl/unistd.in.h, - lgl/vasnprintf.c, lgl/vasnprintf.h, lgl/vasprintf.c, - lgl/wchar.in.h, lgl/xsize.h, lib/Makefile.am, lib/configure.ac, - lib/gl/Makefile.am, lib/gl/alloca.in.h, lib/gl/asnprintf.c, - lib/gl/asprintf.c, lib/gl/byteswap.in.h, lib/gl/c-ctype.c, - lib/gl/c-ctype.h, lib/gl/errno.in.h, lib/gl/float+.h, - lib/gl/float.in.h, lib/gl/fseeko.c, lib/gl/gettext.h, - lib/gl/lseek.c, lib/gl/m4/alloca.m4, lib/gl/m4/byteswap.m4, - lib/gl/m4/codeset.m4, lib/gl/m4/errno_h.m4, - lib/gl/m4/extensions.m4, lib/gl/m4/float_h.m4, lib/gl/m4/fseeko.m4, - lib/gl/m4/func.m4, lib/gl/m4/gettext.m4, lib/gl/m4/glibc2.m4, - lib/gl/m4/glibc21.m4, lib/gl/m4/gnulib-cache.m4, - lib/gl/m4/gnulib-common.m4, lib/gl/m4/gnulib-comp.m4, - lib/gl/m4/gnulib-tool.m4, lib/gl/m4/iconv.m4, - lib/gl/m4/include_next.m4, lib/gl/m4/intdiv0.m4, lib/gl/m4/intl.m4, - lib/gl/m4/intldir.m4, lib/gl/m4/intlmacosx.m4, lib/gl/m4/intmax.m4, - lib/gl/m4/intmax_t.m4, lib/gl/m4/inttypes-pri.m4, - lib/gl/m4/inttypes_h.m4, lib/gl/m4/lcmessage.m4, - lib/gl/m4/lib-ld.m4, lib/gl/m4/lib-link.m4, - lib/gl/m4/lib-prefix.m4, lib/gl/m4/lock.m4, lib/gl/m4/longlong.m4, - lib/gl/m4/lseek.m4, lib/gl/m4/malloc.m4, lib/gl/m4/memchr.m4, - lib/gl/m4/memcmp.m4, lib/gl/m4/memmem.m4, lib/gl/m4/memmove.m4, - lib/gl/m4/minmax.m4, lib/gl/m4/netdb_h.m4, lib/gl/m4/nls.m4, - lib/gl/m4/po.m4, lib/gl/m4/printf-posix.m4, lib/gl/m4/printf.m4, - lib/gl/m4/progtest.m4, lib/gl/m4/read-file.m4, - lib/gl/m4/realloc.m4, lib/gl/m4/size_max.m4, lib/gl/m4/snprintf.m4, - lib/gl/m4/socklen.m4, lib/gl/m4/sockpfaf.m4, lib/gl/m4/stdbool.m4, - lib/gl/m4/stdint.m4, lib/gl/m4/stdint_h.m4, lib/gl/m4/stdio_h.m4, - lib/gl/m4/stdlib_h.m4, lib/gl/m4/strcase.m4, lib/gl/m4/string_h.m4, - lib/gl/m4/strings_h.m4, lib/gl/m4/strverscmp.m4, - lib/gl/m4/sys_ioctl_h.m4, lib/gl/m4/sys_socket_h.m4, - lib/gl/m4/sys_stat_h.m4, lib/gl/m4/threadlib.m4, - lib/gl/m4/time_h.m4, lib/gl/m4/time_r.m4, lib/gl/m4/uintmax_t.m4, - lib/gl/m4/unistd_h.m4, lib/gl/m4/vasnprintf.m4, - lib/gl/m4/vasprintf.m4, lib/gl/m4/visibility.m4, - lib/gl/m4/wchar.m4, lib/gl/m4/wchar_t.m4, lib/gl/m4/wint_t.m4, - lib/gl/m4/xsize.m4, lib/gl/memchr.c, lib/gl/memcmp.c, - lib/gl/memmem.c, lib/gl/memmove.c, lib/gl/minmax.h, - lib/gl/netdb.in.h, lib/gl/override/lib/gc-libgcrypt.c.diff, - lib/gl/printf-args.c, lib/gl/printf-args.h, lib/gl/printf-parse.c, - lib/gl/printf-parse.h, lib/gl/read-file.c, lib/gl/read-file.h, - lib/gl/realloc.c, lib/gl/size_max.h, lib/gl/snprintf.c, - lib/gl/stdbool.in.h, lib/gl/stdint.in.h, lib/gl/stdio-impl.h, - lib/gl/stdio-write.c, lib/gl/stdio.in.h, lib/gl/stdlib.in.h, - lib/gl/str-two-way.h, lib/gl/strcasecmp.c, lib/gl/string.in.h, - lib/gl/strings.in.h, lib/gl/strncasecmp.c, lib/gl/strverscmp.c, - lib/gl/sys_socket.in.h, lib/gl/sys_stat.in.h, - lib/gl/tests/Makefile.am, lib/gl/tests/dummy.c, - lib/gl/tests/intprops.h, lib/gl/tests/test-alloca-opt.c, - lib/gl/tests/test-byteswap.c, lib/gl/tests/test-c-ctype.c, - lib/gl/tests/test-errno.c, lib/gl/tests/test-fseeko.c, - lib/gl/tests/test-fseeko.sh, lib/gl/tests/test-func.c, - lib/gl/tests/test-lseek.c, lib/gl/tests/test-lseek.sh, - lib/gl/tests/test-memchr.c, lib/gl/tests/test-memcmp.c, - lib/gl/tests/test-netdb.c, lib/gl/tests/test-read-file.c, - lib/gl/tests/test-snprintf.c, lib/gl/tests/test-stdbool.c, - lib/gl/tests/test-stdint.c, lib/gl/tests/test-stdio.c, - lib/gl/tests/test-stdlib.c, lib/gl/tests/test-string.c, - lib/gl/tests/test-strings.c, lib/gl/tests/test-strverscmp.c, - lib/gl/tests/test-sys_socket.c, lib/gl/tests/test-sys_stat.c, - lib/gl/tests/test-time.c, lib/gl/tests/test-unistd.c, - lib/gl/tests/test-vasnprintf.c, lib/gl/tests/test-vasprintf.c, - lib/gl/tests/test-wchar.c, lib/gl/tests/verify.h, lib/gl/time.in.h, - lib/gl/time_r.c, lib/gl/unistd.in.h, lib/gl/vasnprintf.c, - lib/gl/vasnprintf.h, lib/gl/vasprintf.c, lib/gl/wchar.in.h, - lib/gl/xsize.h, libextra/configure.ac: Start configure split. - -2008-10-30 Simon Josefsson - - * NEWS, configure.in, doc/gnutls.texi, lib/Makefile.am, - lib/libgnutls-config.in, lib/libgnutls.m4, libextra/.gitignore, - libextra/Makefile.am, libextra/libgnutls-extra-config.in, - libextra/libgnutls-extra.m4: Remove *-config scripts and old M4 - checks. - -2008-10-29 Simon Josefsson - - * cfg.mk, maint.mk: Update gnulib files. - -2008-10-28 Simon Josefsson - - * cfg.mk: Fix coverage rules. - -2008-10-28 Simon Josefsson - - * cfg.mk: Need to build before running checks. - -2008-10-28 Simon Josefsson - - * cfg.mk: Add code coverage rules. - -2008-10-23 Simon Josefsson - - * : commit 3eab289192e97f0bada61ca2c4d51214a4e4f7df Author: Nikos - Mavrogiannopoulos Date: Wed Oct 22 22:06:21 - 2008 +0300 - -2008-10-22 Nikos Mavrogiannopoulos - - * : commit 8973cd66b52fda65b4c9ffadab3b9db59a464fb0 Author: Simon - Josefsson Date: Wed Oct 22 18:42:41 2008 - +0200 - -2008-10-22 Simon Josefsson - - * gl/m4/netdb_h.m4, gl/netdb.in.h, lgl/m4/netdb_h.m4, - lgl/netdb.in.h, lgl/sys_socket.in.h: Update gnulib files. - -2008-10-22 Simon Josefsson - - * doc/scripts/gdoc: Sync gdoc with libidn for license fixes. - -2008-10-22 Simon Josefsson - - * src/serv.c: Use netdb.h instead of getaddrinfo.h. - -2008-10-22 Simon Josefsson - - * NEWS: Fix. - -2008-10-22 Simon Josefsson - - * gl/arpa_inet.in.h, gl/gai_strerror.c, gl/getaddrinfo.c, - gl/getaddrinfo.h, gl/gnulib.mk, gl/m4/getaddrinfo.m4, - gl/m4/gnulib-common.m4, gl/m4/gnulib-comp.m4, gl/m4/netdb_h.m4, - gl/netdb.in.h, gl/netinet_in.in.h, gl/stdarg.in.h, - gl/tests/gnulib.mk, gl/tests/test-getaddrinfo.c, - gl/tests/test-netdb.c, lgl/Makefile.am, lgl/errno.in.h, - lgl/float.in.h, lgl/m4/gnulib-common.m4, lgl/m4/gnulib-comp.m4, - lgl/m4/netdb_h.m4, lgl/m4/stdlib_h.m4, lgl/m4/sys_socket_h.m4, - lgl/m4/sys_stat_h.m4, lgl/m4/unistd_h.m4, lgl/netdb.in.h, - lgl/stdint.in.h, lgl/stdio.in.h, lgl/stdlib.in.h, lgl/string.in.h, - lgl/strings.in.h, lgl/sys_socket.in.h, lgl/sys_stat.in.h, - lgl/time.in.h, lgl/unistd.in.h, lgl/wchar.in.h, lgl/winsock.c, - libextra/gl/m4/gnulib-common.m4: Update gnulib files. - -2008-10-22 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2008-10-16 Nikos Mavrogiannopoulos - - * : commit a1c1da1939efe571f427a6323a8bb5311d933061 Author: Simon - Josefsson Date: Thu Oct 16 12:21:32 2008 - +0200 - -2008-10-16 Simon Josefsson - - * NEWS: Version 2.7.0. - -2008-10-16 Simon Josefsson - - * configure.in: Drop netdb.h check. - -2008-10-16 Simon Josefsson - - * lgl/Makefile.am, lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4, - lgl/m4/netdb_h.m4, lgl/netdb.in.h, lgl/tests/Makefile.am, - lgl/tests/test-netdb.c, src/common.h: Add netdb gnulib module. Use - it. - -2008-10-16 Simon Josefsson - - * NEWS: Add. - -2008-10-16 Simon Josefsson - - * NEWS: Add. - -2008-10-16 Simon Josefsson - - * gl/Makefile.am: Upgrade. - -2008-10-16 Simon Josefsson - - * GNUmakefile, gl/getaddrinfo.c, gl/m4/getaddrinfo.m4, - lgl/Makefile.am, lgl/m4/gnulib-comp.m4, lgl/m4/stdio_h.m4, - lgl/m4/sys_ioctl_h.m4, lgl/m4/sys_socket_h.m4, lgl/m4/unistd_h.m4, - lgl/stdio-write.c, lgl/stdio.in.h, lgl/sys_socket.in.h, - lgl/unistd.in.h, lgl/winsock.c: Update gnulib files. - -2008-10-15 Simon Josefsson - - * tests/Makefile.am: Need to build libutils.la before recursing into - e.g. pkcs12-decode. - -2008-10-14 Simon Josefsson - - * lib/gnutlsxx.cpp: Minimize ABI changes. - -2008-10-13 Simon Josefsson - - * THANKS: Add. - -2008-10-13 Simon Josefsson - - * lib/gnutls_errors.c: Improve GNUTLS_E_AGAIN explanation. - Suggested by "Lavrentiev, Anton (NIH/NLM/NCBI) [C]" - . - -2008-10-12 Simon Josefsson - - * doc/TODO: Add. - -2008-10-11 Nikos Mavrogiannopoulos - - * .gitignore: added to reduce untracked files. - -2008-10-11 Simon Josefsson - - * NEWS: Add. - -2008-10-11 Simon Josefsson - - * THANKS, libextra/fipsmd5.c: Add static qualifiers on internal - symbols. Tiny patch from Aaron Ucko . - -2008-10-09 Simon Josefsson - - * doc/reference/Makefile.am: Sync with upstream. - -2008-10-08 Simon Josefsson - - * lib/gnutls_cert.h, lib/opencdk/armor.c, lib/opencdk/hash.c, - lib/opencdk/kbnode.c, lib/opencdk/new-packet.c, - lib/opencdk/seskey.c, lib/opencdk/verify.c, lib/x509/x509_int.h, - src/cfg/platon/str/strplus.c: Fix syntax-check warnings. - -2008-10-08 Simon Josefsson - - * lib/opencdk/opencdk.h: Indent. - -2008-10-08 Simon Josefsson - - * lib/debug.c, lib/opencdk/seskey.c, lib/opencdk/sig-check.c: Drop - gcrypt.h includes. - -2008-10-08 Simon Josefsson - - * NEWS: Mention libgcrypt dependency. - -2008-10-08 Simon Josefsson - - * configure.in, lib/Makefile.am, lib/opencdk/Makefile.am, - lib/openpgp/Makefile.am, lib/x509/Makefile.am, libextra/Makefile.am: - More libgcrypt fixes. - -2008-10-08 Simon Josefsson - - * configure.in, lib/Makefile.am, src/Makefile.am, tests/Makefile.am: - More libgcrypt fixes. - -2008-10-08 Simon Josefsson - - * configure.in, lib/gnutls_global.c, m4/libgcrypt.m4: Modernize - libgcrypt detection. - -2008-10-08 Simon Josefsson - - * doc/reference/gnutls-docs.sgml, includes/gnutls/x509.h, - lib/x509/crl.c, lib/x509/crl_write.c, lib/x509/crq.c, - lib/x509/output.c, lib/x509/x509_write.c: Doc fixes. - -2008-10-08 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2008-10-08 Simon Josefsson - - * NEWS: Sync with real list. - -2008-10-08 Simon Josefsson - - * lib/x509/x509_int.h: Need libtasn1.h here. - -2008-10-08 Simon Josefsson - - * lib/auth_rsa.c, lib/auth_rsa_export.c, lib/gnutls_cert.c, - lib/gnutls_cert.h, lib/gnutls_mpi.h, lib/gnutls_sig.c, - lib/gnutls_x509.c, lib/mpi-libgcrypt.c, lib/rnd-libgcrypt.c: Reduce - libtasn1.h includes. - -2008-10-08 Simon Josefsson - - * configure.in: Drop obsolete libtasn1 flags. - -2008-10-08 Simon Josefsson - - * lib/Makefile.am, libextra/Makefile.am, src/Makefile.am: Update - libtasn1 linker flags. - -2008-10-08 Simon Josefsson - - * GNUmakefile, configure.in, gl/arpa_inet.in.h, gl/c-ctype.h, - gl/gnulib.mk, gl/m4/arpa_inet_h.m4, gl/m4/gnulib-cache.m4, - gl/m4/gnulib-comp.m4, gl/m4/inet_ntop.m4, gl/m4/inet_pton.m4, - gl/strerror.c, lgl/Makefile.am, lgl/c-ctype.h, lgl/errno.in.h, - lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4, lgl/m4/memcmp.m4, - lgl/m4/stdio_h.m4, lgl/m4/string_h.m4, lgl/m4/sys_socket_h.m4, - lgl/m4/unistd_h.m4, lgl/m4/wchar.m4, lgl/stdio.in.h, - lgl/string.in.h, lgl/sys_socket.in.h, lgl/unistd.in.h, - libextra/gl/Makefile.am, libextra/gl/m4/gnulib-cache.m4, - libextra/gl/md5.c: Update gnulib files. - -2008-10-08 Simon Josefsson - - * configure.in: Remove obsolete stuff. - -2008-10-08 Simon Josefsson - - * lib/auth_cert.c, lib/gnutls_constate.c, lib/gnutls_mpi.c, - lib/gnutls_pk.c, lib/opencdk/armor.c, lib/opencdk/hash.c, - lib/opencdk/kbnode.c, lib/opencdk/keydb.c, lib/opencdk/pubkey.c, - lib/opencdk/stream.c, lib/openpgp/privkey.c, lib/x509/common.c, - lib/x509/crl.c, lib/x509/crl_write.c, lib/x509/crq.c, - lib/x509/extensions.c, lib/x509/mpi.c, lib/x509/output.c, - lib/x509/privkey.c, lib/x509/x509.c, lib/x509/x509_write.c, - libextra/fipsmd5.c, libextra/gl/md5.c, src/certtool-cfg.c, - src/certtool.c, src/cli.c, src/serv.c: Indent. - -2008-10-08 Simon Josefsson - - * NEWS, configure.in, lib/gnutls_global.c, m4/libtasn1.m4: Detect - libtasn1 via AC_LIB_HAVE_LINKFLAGS. - -2008-10-07 Simon Josefsson - - * NEWS: Fix. - -2008-10-07 Ludovic Courtès - - * tests/Makefile.am: More test compilation fixes with minitasn1. * tests/Makefile.am (AM_CPPFLAGS)[ENABLE_MINITASN1]: Add minitasn1 directory. Signed-off-by: Simon Josefsson - -2008-10-07 Simon Josefsson - - * NEWS: Add. - -2008-10-07 Ludovic Courtès - - * tests/pkcs12-decode/Makefile.am: Fix compilation of - `pkcs12-decode' test when using minitasn1. * tests/pkcs12-decode/Makefile.am (AM_CPPFLAGS)[ENABLE_MINITASN1]: - Add `minitasn1' include directory. Signed-off-by: Simon Josefsson - -2008-10-06 Simon Josefsson - - * THANKS: Add. - -2008-10-06 Simon Josefsson - - * libextra/gnutls_openssl.c: Get issuer dn in X509_get_issuer_name, - correct last patch. - -2008-10-06 Simon Josefsson - - * NEWS: Add 2.6.0 entries. - -2008-10-05 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2008-10-05 Simon Josefsson - - * NEWS: Add. - -2008-10-05 Simon Josefsson - - * libextra/gnutls_openssl.c: Fix out-of-bounds access. Similar to - debian #499945 lynx-cur problem. libextra/gnutls_openssl.c: fix - X509_get_issuer_name to return issuer name of given certificate and - not try to get the subject dn of the issuer certificate wich may or - may not exist. (Checked how openssl does this, too.) This fixes a - accessing an array outside its bounds. Debian bug #499945 is - instructive about the problem. While lynx-cur credits Thomas Dickey - for the bug, the code and implications are essentially the same for - the gnutls openssl-compat libary. Tiny patch from Thomas Viehmann - . - -2008-10-04 Nikos Mavrogiannopoulos - - * src/certtool-cfg.c, src/certtool-cfg.h, src/certtool-common.h, - src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, - src/certtool.gaa: reduced warnings in compilation of certtool. - -2008-10-04 Nikos Mavrogiannopoulos - - * lib/x509/output.c: use union to avoid wrong type issues. - -2008-10-04 Nikos Mavrogiannopoulos - - * lib/x509/output.c: corrected print order. - -2008-10-04 Nikos Mavrogiannopoulos - - * NEWS, doc/certtool.cfg, includes/gnutls/x509.h, - lib/gnutls_errors.h, lib/gnutls_handshake.c, lib/x509/common.c, - lib/x509/crl.c, lib/x509/crq.c, lib/x509/dn.c, - lib/x509/extensions.c, lib/x509/mpi.c, lib/x509/output.c, - lib/x509/pkcs12.c, lib/x509/pkcs7.c, lib/x509/x509.c, - lib/x509/x509_int.h, lib/x509/x509_write.c, src/certtool-cfg.c, - src/certtool-cfg.h, src/certtool.c: Added function to copy - extensions from a CRL to a certificate. Reduced many warnings (and - added more by defining gnutls_log as printf like function --gcc - only) - -2008-10-04 Nikos Mavrogiannopoulos - - * configure.in: Disable certain warnings that do not work with my - compiler. - -2008-10-04 Nikos Mavrogiannopoulos - - * NEWS, includes/gnutls/x509.h, lib/x509/crq.c, - lib/x509/extensions.c, lib/x509/output.c, src/certtool.c: Added - gnutls_x509_crq_set_key_purpose_oid and - gnutls_x509_crq_get_key_purpose_oid. - -2008-10-04 Nikos Mavrogiannopoulos - - * NEWS: documentation added functions - -2008-10-04 Nikos Mavrogiannopoulos - - * NEWS: updated - -2008-10-04 Nikos Mavrogiannopoulos - - * lib/x509/crq.c, lib/x509/extensions.c, lib/x509/x509_int.h: set - global maximum size for certificate requests' extensions size. - -2008-10-04 Nikos Mavrogiannopoulos - - * src/Makefile.am: added missing file - -2008-10-04 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h, lib/x509/crl.c, lib/x509/crq.c, - lib/x509/extensions.c, lib/x509/mpi.c, lib/x509/output.c, - lib/x509/x509.c, lib/x509/x509_int.h, src/certtool-cfg.c, - src/certtool-cfg.h, src/certtool-common.h, src/certtool-gaa.c, - src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: Added initial - support for certificate requests handling of X.509 extensions. - Added support to certtool to handle these extensions (add/read) - -2008-10-03 Nikos Mavrogiannopoulos - - * NEWS, doc/certtool.cfg, includes/gnutls/x509.h, lib/x509/crl.c, - lib/x509/crl_write.c, lib/x509/extensions.c, lib/x509/output.c, - lib/x509/x509_int.h, src/certtool-cfg.c, src/certtool-cfg.h, - src/certtool.c: Added functions to handle and set CRL extensions. - -2008-10-01 Simon Josefsson - - * po/nl.po.in, po/vi.po.in: Sync with TP. - -2008-10-01 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2008-09-29 Nikos Mavrogiannopoulos - - * : commit c357933a30801a82e484bed8fbc4bd5b2b34d5e0 Author: Nikos - Mavrogiannopoulos Date: Mon Sep 29 15:08:02 - 2008 +0300 - -2008-09-29 Simon Josefsson - - * ChangeLog: Generated. - -2008-09-29 Simon Josefsson - - * NEWS: Version 2.5.9. - -2008-09-29 Simon Josefsson - - * NEWS: Fix. - -2008-09-29 Simon Josefsson - - * NEWS, configure.in: Document ABI change. - -2008-09-29 Simon Josefsson - - * lib/gnutls_constate.c: Re-add comment about too long function, it - is one of the most complex in gnutls. - -2008-09-29 Simon Josefsson - - * configure.in: Need AC_CONFIG_MACRO_DIR for modern libtool. - -2008-09-28 Nikos Mavrogiannopoulos - - * includes/gnutls/crypto.h, lib/gnutls_pk.c, lib/opencdk/pubkey.c, - lib/pk-libgcrypt.c, lib/x509/privkey.c, lib/x509/x509_int.h: changed - crypto API to reduce probability of memory leaks during usage of - pk_params. - -2008-09-28 Nikos Mavrogiannopoulos - - * : commit 699aa57dacc6446e92c123e93bba1f894067893e Author: Nikos - Mavrogiannopoulos Date: Sun Sep 28 03:34:59 - 2008 +0300 - -2008-09-28 Nikos Mavrogiannopoulos - - * NEWS: Revert "fixed" This reverts commit 14647811d21d3eda2d5bd82557329bcf7778f31b. - -2008-09-28 Nikos Mavrogiannopoulos - - * NEWS: fixed - -2008-09-28 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c, lib/gnutls_constate.c, lib/gnutls_int.h: - avoid using malloc for small buffers. - -2008-09-28 Nikos Mavrogiannopoulos - - * lib/gnutls_mpi.c: optimized in order to avoid calling malloc for - small buffers. - -2008-09-27 Nikos Mavrogiannopoulos - - * lib/gnutls_constate.c, lib/gnutls_mpi.c: Revert "Revert C99 uses. - Fixes gnutls_mpi.c mem leak, but not others." This reverts commit bdfa289133b15ad7d92eb3151ce86cca4c879426. - -2008-09-25 Simon Josefsson - - * tests/pathlen/Makefile.am, tests/pathlen/pathlen: Use EXEEXT in - self-test scripts. - -2008-09-25 Simon Josefsson - - * NEWS, tests/key-id/Makefile.am, tests/key-id/key-id, - tests/pkcs1-padding/Makefile.am, tests/pkcs1-padding/pkcs1-pad, - tests/rsa-md5-collision/Makefile.am, - tests/rsa-md5-collision/rsa-md5-collision, tests/sha2/Makefile.am, - tests/sha2/sha2, tests/userid/Makefile.am, tests/userid/userid: Use - EXEEXT in self-test scripts. - -2008-09-25 Simon Josefsson - - * NEWS: Add. - -2008-09-25 Simon Josefsson - - * lgl/vasnprintf.c: Update gnulib files. - -2008-09-25 Simon Josefsson - - * NEWS, THANKS: Add. - -2008-09-25 Simon Josefsson - - * lib/gnutls_constate.c, lib/gnutls_mpi.c: Revert C99 uses. Fixes - gnutls_mpi.c mem leak, but not others. - -2008-09-24 Simon Josefsson - - * NEWS: Add. - -2008-09-24 Simon Josefsson - - * NEWS: Add. - -2008-09-24 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2008-09-23 Nikos Mavrogiannopoulos - - * lib/x509/x509.c: Corrected buffer overrun in crt_list_import. - Reported and patch by Jonathan Manktelow. - -2008-09-23 Nikos Mavrogiannopoulos - - * README: corrected libgcrypt site. - -2008-09-23 Nikos Mavrogiannopoulos - - * lib/x509/privkey.c: corrected embarrasing bug. - -2008-09-23 Nikos Mavrogiannopoulos - - * lib/auth_cert.c, lib/gnutls_constate.c, lib/gnutls_mpi.c, - lib/pk-libgcrypt.c, lib/x509/common.c, lib/x509/dn.c: Corrected - several memory leaks reported by Sam. In some cases switched to C99 - to avoid having complex code. - -2008-09-23 Simon Josefsson - - * lib/openpgp/extras.c: Doc fix. - -2008-09-23 Simon Josefsson - - * lib/x509/crl_write.c, lib/x509/x509_write.c: Doc fix. - -2008-09-23 Simon Josefsson - - * configure.in, doc/reference/Makefile.am: Use automake warnings. - -2008-09-23 Simon Josefsson - - * cfg.mk: Typo. - -2008-09-23 Simon Josefsson - - * cfg.mk: Fix mingw32 rules. - -2008-09-23 Simon Josefsson - - * cfg.mk, doc/Makefile.am, doc/texinfo.css: Use a stylesheet for - texinfo HTML manual. - -2008-09-21 Nikos Mavrogiannopoulos - - * lib/x509/privkey.c: fixed memory leak in reencoding of RSA and DSA - private keys. Reported and studied by Sam Varshavchik - -2008-09-21 Nikos Mavrogiannopoulos - - * lib/x509/x509_write.c: documented the way set_subject_alt_name() - can set value. - -2008-09-21 Simon Josefsson - - * ChangeLog: Generated. - -2008-09-21 Simon Josefsson - - * NEWS: Version 2.5.8. - -2008-09-21 Simon Josefsson - - * po/fr.po.in, po/pl.po.in, po/sv.po.in: Sync with TP. - -2008-09-21 Simon Josefsson - - * libextra/Makefile.am: Use srcdir for -Igl/. - -2008-09-21 Simon Josefsson - - * Makefile.am: Don't use CFLAGS with distcheck, causes errors in - ./configure tests. - -2008-09-21 Simon Josefsson - - * src/certtool.c: Fix warnings. - -2008-09-21 Simon Josefsson - - * src/Makefile.am, src/certtool.c, src/serv.c: Use internal md5 if - libgcrypt is in FIPS mode. - -2008-09-21 Simon Josefsson - - * src/cli.c: Initialize libgnutls-extra too. - -2008-09-21 Simon Josefsson - - * includes/gnutls/extra.h: Add prototype for - gnutls_register_md5_handler. - -2008-09-21 Simon Josefsson - - * libextra/fipsmd5.c: Add Since: tag. - -2008-09-21 Simon Josefsson - - * lib/x509/x509_write.c: Doc fixes. - -2008-09-21 Simon Josefsson - - * Makefile.am: Need -I for aclocal. - -2008-09-21 Simon Josefsson - - * lgl/Makefile.am, lgl/m4/wchar.m4, lgl/tests/test-wchar.c, - lgl/wchar.in.h: Add. - -2008-09-21 Simon Josefsson - - * configure.in, libextra/Makefile.am, src/Makefile.am, src/cli.c: - Fix libextra build. Make gnutls-cli work in libgcrypt FIPS mode. - -2008-09-21 Simon Josefsson - - * libextra/Makefile.am: Fix typo. - -2008-09-21 Simon Josefsson - - * NEWS: Add. - -2008-09-21 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2008-09-21 Simon Josefsson - - * doc/gnutls.texi: Fix markup. - -2008-09-21 Simon Josefsson - - * libextra/Makefile.am: Add -I for hmac.h, md5.h. - -2008-09-21 Nikos Mavrogiannopoulos - - * src/certtool.c: deinitialize structures after use. - -2008-09-21 Nikos Mavrogiannopoulos - - * lib/gnutls_pk.c: Corrected memory leak. Reported by Sam - Varshavchik. - -2008-09-21 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h: added missing headers. - -2008-09-21 Nikos Mavrogiannopoulos - - * lib/gnutls_pk.c, lib/x509/privkey.c: Corrected several bugs in DSA - DER key importing. Reported and debugged by Sam Varshavchik. - -2008-09-20 Nikos Mavrogiannopoulos - - * lib/opencdk/armor.c, lib/opencdk/hash.c, lib/opencdk/kbnode.c, - lib/opencdk/keydb.c, lib/opencdk/stream.c: added gnutls_assert() to - assist debugging. - -2008-09-20 Nikos Mavrogiannopoulos - - * lib/openpgp/privkey.c: properly report the error line. - -2008-09-20 Nikos Mavrogiannopoulos - - * NEWS, doc/gnutls.texi, lib/x509/extensions.c, lib/x509/output.c, - lib/x509/x509_int.h, lib/x509/x509_write.c, src/certtool-cfg.c, - src/certtool-cfg.h, src/certtool.c: output.c: Can properly print IP - addresses in certificates. x509_write.c: added - gnutls_x509_crt_set_subject_alt_name added that can add multiple - subject alternative names. certtool: use the new function to be - able to add several names. - -2008-09-19 Simon Josefsson - - * configure.in: Bump versions. - -2008-09-19 Simon Josefsson - - * NEWS, libextra/Makefile.am, libextra/fipsmd5.c: Add - gnutls_register_md5_handler. - -2008-09-19 Simon Josefsson - - * gl/gnulib.mk, gl/m4/gnulib-comp.m4, gl/m4/strdup.m4, gl/strdup.c, - lgl/vasnprintf.c: Update gnulib files. - -2008-09-19 Simon Josefsson - - * configure.in, libextra/gl/Makefile.am, libextra/gl/hmac-md5.c, - libextra/gl/hmac.h, libextra/gl/m4/gnulib-cache.m4, - libextra/gl/m4/gnulib-common.m4, libextra/gl/m4/gnulib-comp.m4, - libextra/gl/m4/gnulib-tool.m4, libextra/gl/m4/hmac-md5.m4, - libextra/gl/m4/md5.m4, libextra/gl/m4/memxor.m4, libextra/gl/md5.c, - libextra/gl/md5.h, libextra/gl/memxor.c, libextra/gl/memxor.h: Add - md5 and hmac from gnulib to libextra/gl/. - -2008-09-19 Simon Josefsson - - * NEWS: Add. - -2008-09-19 Simon Josefsson - - * lib/gnutls_hash_int.c: Make _gnutls_hash_copy work with registered - hashes. - -2008-09-19 Simon Josefsson - - * THANKS, lib/gnutls_compress.c, lib/gnutls_compress.h, - libextra/gnutls_extra.c: Make LZO compression support build. Tiny - patch from Arfrever Frehtes Taifersar Arahesis - . - -2008-09-17 Simon Josefsson - - * doc/reference/Makefile.am, lib/Makefile.am, lib/defines.h, - lib/gnutls_errors.h, lib/gnutls_int.h: Merge defines.h into - gnutls_int.h. - -2008-09-17 Simon Josefsson - - * lib/gnutls_buffer.h: Remove, unused. - -2008-09-17 Simon Josefsson - - * lib/auth_cert.c, lib/gnutls_x509.c: Fix overflows in gnutls_calloc - calls. - -2008-09-17 Simon Josefsson - - * libextra/openssl_compat.c: Fix last commit. - -2008-09-17 Simon Josefsson - - * NEWS, lib/auth_cert.c, lib/gnutls_cert.c, - lib/gnutls_session_pack.c, libextra/openssl_compat.c: Fix overflows - in gnutls_calloc calls. - -2008-09-17 Simon Josefsson - - * NEWS, lib/gnutls_mem.c: libgnutls: Check for overflows in - gnutls_calloc and gnutls_secure_calloc. Reported by Werner Koch - . - -2008-09-17 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2008-09-17 Simon Josefsson - - * NEWS, THANKS, lib/auth_srp.c, lib/gnutls_int.h, lib/gnutls_srp.c: - libgnutls: New function to set minimum acceptable SRP bits. The - function is gnutls_srp_set_prime_bits. Tiny patch by Kevin Quick - in - . - -2008-09-17 Simon Josefsson - - * doc/manpages/gnutls-cli.1: Fix markup, tiny patch from Sam - Varshavchik . - -2008-09-16 Simon Josefsson - - * NEWS, lib/auth_cert.c, lib/auth_rsa.c, lib/ext_cert_type.c, - lib/ext_max_record.c, lib/ext_oprfi.c, lib/ext_server_name.c, - lib/gnutls_algorithms.c, lib/gnutls_auth.c, lib/gnutls_buffers.c, - lib/gnutls_cert.c, lib/gnutls_cipher.c, lib/gnutls_compress.c, - lib/gnutls_constate.c, lib/gnutls_extensions.c, - lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_kx.c, - lib/gnutls_pk.c, lib/gnutls_record.c, lib/gnutls_session_pack.c, - lib/gnutls_sig.c, lib/gnutls_state.c, lib/gnutls_v2_compat.c, - lib/gnutls_x509.c, lib/mac-libgcrypt.c, lib/minitasn1/structure.c, - lib/opencdk/armor.c, lib/opencdk/read-packet.c, lib/openpgp/pgp.c, - lib/x509/common.c, lib/x509/crq.c, lib/x509/pkcs12.c, - lib/x509/privkey.c, libextra/gnutls_ia.c, src/printlist.c, - src/serv.c, tests/finished.c, tests/openssl.c, tests/pgps2kgnu.c, - tests/pkcs12-decode/pkcs12_s2k.c, tests/simple.c: Indent. - -2008-09-16 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2008-09-16 Simon Josefsson - - * ChangeLog: Generated. - -2008-09-16 Simon Josefsson - - * NEWS: Version 2.5.7. - -2008-09-16 Simon Josefsson - - * includes/gnutls/gnutls.h.in: Fix warning about trailing comma. - -2008-09-16 Simon Josefsson - - * doc/gnutls.texi: Fix math markup. - -2008-09-16 Simon Josefsson - - * src/printlist.c: Fix. - -2008-09-16 Simon Josefsson - - * doc/Makefile.am, doc/gnutls.texi, src/printlist.c: Fix. - -2008-09-16 Simon Josefsson - - * NEWS: Add. - -2008-09-16 Simon Josefsson - - * doc/reference/gnutls-docs.sgml: Document crypto.h stuff. - -2008-09-16 Simon Josefsson - - * doc/reference/gnutls-docs.sgml: Add list of new symbols in 2.6.x. - -2008-09-16 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2008-09-16 Simon Josefsson - - * includes/gnutls/crypto.h: Indent. - -2008-09-16 Simon Josefsson - - * includes/gnutls/gnutls.h.in: Don't use extern on functions, for - consistency. - -2008-09-16 Simon Josefsson - - * NEWS: Mention new functions. - -2008-09-16 Simon Josefsson - - * NEWS, doc/manpages/Makefile.am, includes/gnutls/gnutls.h.in, - lib/gnutls_algorithms.c, src/printlist.c: Add interfaces to get PK - and PK-sign algorithms. Use them. - -2008-09-16 Simon Josefsson - - * NEWS: Credit. - -2008-09-16 Simon Josefsson - - * tests/Makefile.am: Don't run pgps2kgnu self test when openpgp is - disable. - -2008-09-16 Simon Josefsson - - * NEWS: Merge in 2.4.2 news entries. - -2008-09-16 Simon Josefsson - - * lib/opencdk/main.c, lib/opencdk/opencdk.h: Remove cdk_strerror, - unused and uses non-thread safe strerror. - -2008-09-16 Simon Josefsson - - * tests/openpgpself.c, tests/x509dn.c, tests/x509self.c: Fix - warnings. - -2008-09-16 Simon Josefsson - - * tests/crypto_rng.c: Fix warnings. - -2008-09-16 Simon Josefsson - - * tests/parse_ca.c: Fix warning. - -2008-09-16 Simon Josefsson - - * cfg.mk: Split release target. - -2008-09-16 Simon Josefsson - - * gl/gnulib.mk, gl/m4/eoverflow.m4, gl/m4/gnulib-cache.m4, - gl/m4/gnulib-comp.m4, gl/m4/strerror.m4, gl/strerror.c, - gl/tests/gnulib.mk, gl/tests/test-EOVERFLOW.c, - gl/tests/test-strerror.c, lgl/Makefile.am, lgl/errno.in.h, - lgl/m4/eoverflow.m4, lgl/m4/errno_h.m4, lgl/m4/gnulib-comp.m4, - lgl/m4/stdio_h.m4, lgl/stdio.in.h, lgl/sys_socket.in.h, - lgl/tests/Makefile.am, lgl/tests/test-EOVERFLOW.c, - lgl/tests/test-errno.c, lgl/tests/test-memchr.c: Update gnulib - files. - -2008-09-15 Simon Josefsson - - * NEWS: Add. - -2008-09-15 Simon Josefsson - - * tests/Makefile.am, tests/setcredcrash.c: Self-test regression of - gnutls_credentials_set. - -2008-09-15 Nikos Mavrogiannopoulos - - * lib/gnutls_auth.c: removed unnesessary and dangerous free from - credentials_set(). - -2008-09-14 Nikos Mavrogiannopoulos - - * lib/auth_cert.c: added some pedantic error checking. - -2008-09-09 Simon Josefsson - - * src/certtool-gaa.c, src/cli-gaa.c, src/crypt-gaa.c, - src/psk-gaa.c, src/serv-gaa.c, src/tls_test-gaa.c: Regenerate using - patched gaa. - -2008-09-09 Simon Josefsson - - * Makefile.am: Test release with -Werror to avoid regressions. - -2008-09-09 Simon Josefsson - - * libextra/openssl_compat.c: Remove unused code. - -2008-09-09 Simon Josefsson - - * lib/mac-libgcrypt.c: Fix warning. - -2008-09-09 Simon Josefsson - - * lib/opencdk/new-packet.c: Fix warning. - -2008-09-09 Simon Josefsson - - * lib/opencdk/opencdk.h: (CDK_KEY_USG_ENCR, CDK_KEY_USG_SIGN): Protect | op. - -2008-09-09 Simon Josefsson - - * lib/cipher-libgcrypt.c: Fix warnings. - -2008-09-09 Simon Josefsson - - * lib/mac-libgcrypt.c: Fix warnings. - -2008-09-09 Simon Josefsson - - * lib/mpi-libgcrypt.c: Fix warnings. - -2008-09-09 Simon Josefsson - - * NEWS: Add. - -2008-09-09 Simon Josefsson - - * doc/gnutls.texi: Add initialization section. Update thread - initialization discussion. - -2008-09-09 Simon Josefsson - - * tests/openssl.c: Need to initialize gnutls to avoid crash. - -2008-09-08 Simon Josefsson - - * cfg.mk: Drop redundant. - -2008-09-08 Simon Josefsson - - * NEWS: Add. - -2008-09-08 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2008-09-08 Simon Josefsson - - * configure.in: Remove foo.def after testing --output-def. - -2008-09-08 Simon Josefsson - - * ChangeLog: Generated. - -2008-09-08 Simon Josefsson - - * NEWS: Version 2.5.6. - -2008-09-08 Simon Josefsson - - * build-aux/config.rpath, gl/m4/include_next.m4, - lgl/m4/include_next.m4: Update gnulib files. - -2008-09-03 Simon Josefsson - - * doc/examples/ex-alert.c, doc/examples/ex-cert-select.c, - doc/examples/ex-client-psk.c, doc/examples/ex-client-resume.c, - doc/examples/ex-client-srp.c, doc/examples/ex-client-tlsia.c, - doc/examples/ex-client1.c, doc/examples/ex-client2.c, - doc/examples/ex-crq.c, doc/examples/ex-cxx.cpp, - doc/examples/ex-pkcs12.c, doc/examples/ex-rfc2818.c, - doc/examples/ex-serv-anon.c, doc/examples/ex-serv-export.c, - doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-psk.c, - doc/examples/ex-serv-srp.c, doc/examples/ex-serv1.c, - doc/examples/ex-session-info.c, doc/examples/ex-verify.c, - doc/examples/ex-x509-info.c, doc/examples/tcp.c, lib/defines.h, - lib/gnutls_asn1_tab.c, lib/openpgp/openpgp_int.h, - lib/pkix_asn1_tab.c, src/errcodes.c, tests/anonself.c, - tests/certificate_set_x509_crl.c, tests/dhepskself.c, - tests/finished.c, tests/hostname-check/hostname-check.c, - tests/mini.c, tests/moredn.c, tests/netconf-psk.c, - tests/openpgpself.c, tests/oprfi.c, tests/pgps2kgnu.c, - tests/pskself.c, tests/resume.c, tests/tlsia.c, tests/x509dn.c, - tests/x509self.c, tests/x509signself.c: Use #ifdef for checking - HAVE_CONFIG_H for consistency. - -2008-09-02 Simon Josefsson - - * po/POTFILES.in: Mark gnutls_alert for translation. - -2008-09-02 Simon Josefsson - - * po/ms.po.in: Sync with TP. - -2008-09-02 Simon Josefsson - - * lgl/vasnprintf.c: Update gnulib files. - -2008-09-02 Simon Josefsson - - * NEWS: Add. - -2008-09-02 Simon Josefsson - - * NEWS: Add. - -2008-09-02 Simon Josefsson - - * THANKS: Add. - -2008-09-02 Simon Josefsson - - * lib/gnutls_cipher_int.c: Don't return from a void function. - Reported by Dave Uhring . - -2008-09-01 Daniel Kahn Gillmor - - * tests/Makefile.am, tests/pgps2kgnu.c: added pgps2kgnu test for GNU - extensions to OpenPGP String-to-Key (S2K) conventions. - -2008-09-01 Simon Josefsson - - * src/tls_test.c: Use gnulib for --version. - -2008-09-01 Simon Josefsson - - * src/crypt.c: Use gnulib more. Remove code. - -2008-09-01 Simon Josefsson - - * src/crypt.c, src/psk.c: Use gnulib for --version. - -2008-09-01 Simon Josefsson - - * src/cli-gaa.c, src/cli-gaa.h, src/serv-gaa.c, src/serv-gaa.h: - Generated. - -2008-09-01 Simon Josefsson - - * doc/gnutls.texi, doc/manpages/certtool.1, - doc/manpages/gnutls-cli.1, doc/manpages/gnutls-serv.1: Drop - --copyright from documentation. - -2008-09-01 Simon Josefsson - - * NEWS, src/cli.gaa, src/common.c, src/serv.c, src/serv.gaa: Drop - --copyright. - -2008-09-01 Simon Josefsson - - * src/serv.c: Use gnulib for --version. - -2008-09-01 Simon Josefsson - - * src/cli.c: Use gnulib for --version. - -2008-09-01 Simon Josefsson - - * src/certtool.c: Only print libgnutls version in --version if it is - different. - -2008-09-01 Simon Josefsson - - * NEWS: Add. - -2008-09-01 Simon Josefsson - - * doc/reference/Makefile.am, lib/Makefile.am, lib/gnutls_int.h, - lib/gnutls_str.h: Remove gnutls_buffer.h, move definitions to - gnutls_str.h. - -2008-09-01 Simon Josefsson - - * lib/gnutls_alert.c: Translate error messages. Cleanup code. - -2008-09-01 Simon Josefsson - - * lib/gnutls_compress.c, lib/gnutls_compress.h: Remove unused stuff. - -2008-09-01 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2008-09-01 Simon Josefsson - - * NEWS: Add. - -2008-09-01 Simon Josefsson - - * tests/simple.c: Test sign algos. - -2008-09-01 Simon Josefsson - - * src/common.c: Print pk and sign algos. - -2008-09-01 Simon Josefsson - - * lib/gnutls_algorithms.c: Typo. - -2008-09-01 Simon Josefsson - - * NEWS: Add. - -2008-09-01 Simon Josefsson - - * NEWS, includes/gnutls/gnutls.h.in, lib/gnutls_algorithms.c: Add - gnutls_sign_list and gnutls_sign_get_id. Suggested by Sam - Varshavchik . - -2008-09-01 Simon Josefsson - - * lib/gnutls_algorithms.h, lib/gnutls_compress.h: Move declarations. - -2008-09-01 Simon Josefsson - - * doc/reference/Makefile.am, lib/Makefile.am, - lib/gnutls_compress.c, lib/gnutls_compress.h, - lib/gnutls_compress_int.c, lib/gnutls_compress_int.h, - lib/gnutls_int.h: Merge gnutls_compress_int.? with - gnutls_compress.?. - -2008-09-01 Simon Josefsson - - * doc/reference/Makefile.am, lib/Makefile.am, lib/auth_anon.c, - lib/auth_cert.c, lib/auth_dh_common.c, lib/auth_dhe.c, - lib/auth_dhe_psk.c, lib/auth_psk.c, lib/auth_psk_passwd.c, - lib/auth_rsa.c, lib/auth_rsa_export.c, lib/auth_srp.c, - lib/auth_srp_passwd.c, lib/auth_srp_rsa.c, lib/ext_server_name.c, - lib/ext_srp.c, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, - lib/gnutls_auth.h, lib/gnutls_auth_int.h, lib/gnutls_cert.c, - lib/gnutls_handshake.c, lib/gnutls_record.c, - lib/gnutls_session_pack.c, lib/gnutls_state.c, lib/gnutls_state.h, - lib/gnutls_ui.c, lib/gnutls_v2_compat.c, lib/gnutls_x509.c, - libextra/ext_inner_application.c: Move definitions in - gnutls_auth_int.h to gnutls_auth.h and update callers. - -2008-09-01 Simon Josefsson - - * lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, - lib/gnutls_compress.c: Move compression functions to - gnutls_compress.c to make gnutls_algorithms.c more readable. - -2008-09-01 Simon Josefsson - - * lib/gnutls_algorithms.c: Fix warning. - -2008-09-01 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2008-09-01 Simon Josefsson - - * lib/gnutls_algorithms.c: Doc fix. - -2008-09-01 Simon Josefsson - - * tests/simple.c: Add more tests. - -2008-09-01 Simon Josefsson - - * lib/gnutls_algorithms.c: Fix typo. - -2008-09-01 Simon Josefsson - - * NEWS, includes/gnutls/gnutls.h.in, lib/gnutls_algorithms.c: Add - gnutls_pk_list and gnutls_pk_get_id. Suggested by Sam Varshavchik - . - -2008-09-01 Simon Josefsson - - * gl/arpa_inet.in.h, gl/gnulib.mk, gl/m4/include_next.m4, - gl/m4/lib-link.m4, gl/m4/lib-prefix.m4, gl/netinet_in.in.h, - gl/stdarg.in.h, lgl/Makefile.am, lgl/float.in.h, - lgl/m4/include_next.m4, lgl/m4/lib-link.m4, lgl/m4/lib-prefix.m4, - lgl/stdint.in.h, lgl/stdio.in.h, lgl/stdlib.in.h, lgl/string.in.h, - lgl/strings.in.h, lgl/sys_socket.in.h, lgl/sys_stat.in.h, - lgl/time.in.h, lgl/unistd.in.h, lgl/wchar.in.h: Update gnulib files. - -2008-09-01 Simon Josefsson - - * lib/minitasn1/Makefile.am, lib/openpgp/Makefile.am: Fixes. - -2008-09-01 Simon Josefsson - - * doc/gnutls.texi: Fix license and libgnutls-extra stuff. - -2008-08-31 Nikos Mavrogiannopoulos - - * : commit 765c079be0195f0f7fbefccf8b6a8910015042a6 Author: Nikos - Mavrogiannopoulos Date: Sun Aug 31 13:33:52 - 2008 +0300 - -2008-08-29 Simon Josefsson - - * lib/Makefile.am, lib/gnutls_openpgp.c, lib/openpgp/Makefile.am, - lib/openpgp/gnutls_openpgp.c: Move gnutls_openpgp.c to lib/openpgp/. - -2008-08-29 Simon Josefsson - - * lib/gnutls_errors.c: Add Since: tag for gtk-doc. - -2008-08-29 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2008-08-29 Simon Josefsson - - * cfg.mk: Fix release target. - -2008-08-29 Simon Josefsson - - * NEWS: Version 2.5.5. - -2008-08-29 Simon Josefsson - - * ChangeLog: Generated. - -2008-08-29 Simon Josefsson - - * .clcopying: Update copyright years. - -2008-08-29 Simon Josefsson - - * Makefile.am, cfg.mk: Split up release targets. - -2008-08-29 Simon Josefsson - - * NEWS, lib/minitasn1/element.c, lib/minitasn1/libtasn1.h, - lib/minitasn1/structure.c: Use libtasn1 1.5. - -2008-08-29 Simon Josefsson - - * lib/gnutls_str.c: Include stdarg.h for va_start etc. - -2008-08-29 Simon Josefsson - - * lib/gnutls_anon_cred.c: Fix dummy cred. - -2008-08-29 Simon Josefsson - - * configure.in: Bump libtool version because of new API. - -2008-08-29 Simon Josefsson - - * doc/examples/ex-client-tlsia.c, doc/examples/ex-serv-anon.c, - doc/examples/ex-serv-export.c, doc/examples/ex-serv-pgp.c, - doc/examples/ex-serv-psk.c, doc/examples/ex-serv-srp.c, - doc/examples/ex-serv1.c, lib/gnutls_anon_cred.c, - lib/gnutls_buffers.c, lib/opencdk/keydb.c, - libextra/openssl_compat.c, libextra/openssl_compat.h, - src/certtool-cfg.c, src/certtool.c, src/cli.c, src/common.c, - src/crypt.c, src/prime.c, src/printlist.c, src/serv.c, src/tests.c, - src/tls_test.c: Fix warnings. - -2008-08-29 Simon Josefsson - - * configure.in: Fix description of --enable-developer-mode. Right - now all it does is to enable compiler warnings. - -2008-08-29 Simon Josefsson - - * NEWS, lib/auth_cert.c, lib/auth_srp_passwd.h, - lib/auth_srp_sb64.c, lib/gnutls_constate.c, lib/gnutls_global.c, - lib/gnutls_helper.c, lib/gnutls_int.h, lib/gnutls_srp.c, - lib/gnutls_supplemental.c, lib/gnutls_x509.c, lib/mac-libgcrypt.c, - lib/mpi-libgcrypt.c, lib/opencdk/armor.c, lib/opencdk/hash.c, - lib/opencdk/keydb.c, lib/opencdk/literal.c, lib/opencdk/main.h, - lib/opencdk/opencdk.h, lib/opencdk/stream.c, lib/openpgp/extras.c, - lib/pk-libgcrypt.c, libextra/gnutls_ia.c: Fix warnings. - -2008-08-29 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2008-08-29 Simon Josefsson - - * lib/gnutls_errors.c: Translate unknown error code message. - -2008-08-29 Simon Josefsson - - * lib/gnutls_errors.c: Don't translate symbol names. - -2008-08-29 Simon Josefsson - - * lib/gnutls_errors.c: Fix warning about defining variable inside - functions. - -2008-08-29 Simon Josefsson - - * NEWS, includes/gnutls/gnutls.h.in, lib/gnutls_errors.c, - src/errcodes.c: Add gnutls_strerror_name. - -2008-08-29 Simon Josefsson - - * lib/gnutls_extensions.c: Re-add, but mark static. - -2008-08-29 Simon Josefsson - - * GNUmakefile, gl/getdelim.c, gl/m4/getdelim.m4, maint.mk: Update - gnulib files. - -2008-08-29 Simon Josefsson - - * NEWS, lib/opencdk/Makefile.am, lib/x509/Makefile.am: Fix libtasn1 - include paths. - -2008-08-28 Nikos Mavrogiannopoulos - - * lib/opencdk/read-packet.c: avoid using gcrypt function. - -2008-08-28 Simon Josefsson - - * configure.in, lib/auth_rsa.c, lib/debug.c, lib/gnutls_cert.c, - lib/gnutls_dh.c, lib/gnutls_errors.c, lib/gnutls_extensions.c, - lib/gnutls_handshake.c, lib/gnutls_v2_compat.c: Fix warnings. - -2008-08-28 Simon Josefsson - - * lib/x509/common.c: Simplify logic. - -2008-08-28 Simon Josefsson - - * lib/x509/dn.c: Remove dead code. - -2008-08-28 Simon Josefsson - - * lib/openpgp/Makefile.am: Don't include missing -I's. - -2008-08-28 Simon Josefsson - - * configure.in: Drop warning. - -2008-08-28 Simon Josefsson - - * lib/x509/Makefile.am: Drop removed libextra directories from -I's. - -2008-08-28 Simon Josefsson - - * configure.in: Enable all kind of warnings. If you remove some, - add a comment on why. - -2008-08-28 Simon Josefsson - - * lib/openpgp/pgp.c, lib/x509/pbkdf2-sha1.c: Fix warnings. - -2008-08-28 Simon Josefsson - - * configure.in: Tweak warnings. - -2008-08-28 Simon Josefsson - - * includes/gnutls/x509.h, lib/x509/common.c, lib/x509/common.h, - lib/x509/dn.c: Fix warnings. - -2008-08-28 Simon Josefsson - - * lib/x509/common.c, lib/x509/common.h: Fix warnings. - -2008-08-28 Simon Josefsson - - * lib/auth_srp.c, lib/rnd-libgcrypt.c: Fix warnings. - -2008-08-28 Simon Josefsson - - * lib/gnutls_num.h: Protect against double inclusion. - -2008-08-28 Simon Josefsson - - * lib/crypto.h: Protect against double inclusions. - -2008-08-28 Simon Josefsson - - * lgl/Makefile.am, lgl/byteswap.in.h, lgl/m4/byteswap.m4, - lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4, - lgl/tests/Makefile.am, lgl/tests/test-byteswap.c, lib/gnutls_num.c, - lib/gnutls_num.h: Use byteswap from gnulib. - -2008-08-28 Simon Josefsson - - * lib/auth_srp.h, lib/gnutls_global.c: Fix warnings. - -2008-08-28 Simon Josefsson - - * lib/gnutls_auth_int.h: Protect against double inclusion. - -2008-08-28 Simon Josefsson - - * lib/gnutls_errors.h: Protect against double inclusion. - -2008-08-28 Simon Josefsson - - * lib/gnutls_buffers.h, lib/gnutls_record.h, lib/gnutls_state.h: Fix - warnings. - -2008-08-28 Simon Josefsson - - * lib/gnutls_algorithms.h, lib/gnutls_pk.h, lib/gnutls_x509.h, - lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, lib/x509/verify.c: Fix - warnings. - -2008-08-28 Simon Josefsson - - * configure.in: Add warning. - -2008-08-28 Simon Josefsson - - * configure.in: Check whether warning flags are supported before - using them. - -2008-08-28 Simon Josefsson - - * doc/examples/Makefile.am, lib/gnutls_x509.c, lib/x509/output.c: - Make disable-extra-pki work better. - -2008-08-28 Simon Josefsson - - * configure.in: Fix --disable-extra-pki flag. - -2008-08-28 Simon Josefsson - - * NEWS, lib/gnutls_x509.c, lib/gnutls_x509.h, tests/Makefile.am, - tests/set_pkcs7_cred.c: Remove code to import PKCS#7 certificate - chains. The code hasn't worked since GnuTLS v0.9.0. Reported by - Christian Grothoff . - -2008-08-27 Simon Josefsson - - * lib/gnutls_handshake.c: Cast datasize to long to match %ld printf - format. - -2008-08-26 Simon Josefsson - - * tests/set_pkcs7_cred.c: Fix. - -2008-08-26 Simon Josefsson - - * tests/set_pkcs7_cred.c: Use utils infrastructure. - -2008-08-26 Simon Josefsson - - * tests/Makefile.am, tests/set_pkcs7_cred.c: Add set_pkcs7_cred self - test. - -2008-08-26 Daniel Kahn Gillmor - - * : commit 06ee30f6e553d4739ca50ab84492179da64cfc3e Author: Daniel - Kahn Gillmor Date: Tue Aug 26 11:00:27 - 2008 -0400 - -2008-08-26 Simon Josefsson - - * lib/gnutls_global.c, libextra/gnutls_extra.c: Fix gnulib calls. - -2008-08-26 Simon Josefsson - - * THANKS: Add. - -2008-08-26 Simon Josefsson - - * NEWS: Add. - -2008-08-26 Simon Josefsson - - * NEWS: Add. - -2008-08-26 Simon Josefsson - - * NEWS: Add. - -2008-08-26 Simon Josefsson - - * NEWS: Add. - -2008-08-26 Simon Josefsson - - * gl/m4/autobuild.m4, lgl/Makefile.am, lgl/m4/gnulib-comp.m4, - lgl/m4/string_h.m4, lgl/m4/strverscmp.m4, lgl/m4/threadlib.m4, - lgl/string.in.h, lgl/strverscmp.h, lgl/tests/Makefile.am, - lgl/tests/test-strverscmp.c: Update gnulib files. - -2008-08-25 Nikos Mavrogiannopoulos - - * lib/gnutls_pk.c, lib/pk-libgcrypt.c, lib/x509/privkey.c: corrected - private key generation - -2008-08-25 Nikos Mavrogiannopoulos - - * : commit 976565830d853f981ecd749bdb15dd02133ed93b Author: Nikos - Mavrogiannopoulos Date: Mon Aug 25 19:50:07 - 2008 +0300 - -2008-08-25 Nikos Mavrogiannopoulos - - * lib/x509/output.c: removed code that incorrectly printed IP - addresses. - -2008-08-23 Simon Josefsson - - * NEWS: Add. - -2008-08-23 Simon Josefsson - - * po/LINGUAS, po/fr.po.in, po/nl.po.in: Sync with TP. - -2008-08-20 Simon Josefsson - - * NEWS: Add. - -2008-08-19 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2008-08-19 Nikos Mavrogiannopoulos - - * lib/opencdk/opencdk.h, lib/opencdk/read-packet.c: patch by Daniel - Kahn Gillmor, to enable parsing (but not decrypting) of locked - secret keys (including the "gnu-dummy" S2K option). - -2008-08-19 Simon Josefsson - - * ChangeLog: Generated. - -2008-08-19 Simon Josefsson - - * NEWS: Version 2.5.4. - -2008-08-18 Simon Josefsson - - * gl/m4/autobuild.m4, lgl/m4/lock.m4: Update gnulib files. - -2008-08-18 Simon Josefsson - - * NEWS: Fix. - -2008-08-18 Simon Josefsson - - * NEWS: Add. - -2008-08-18 Simon Josefsson - - * NEWS: Add. - -2008-08-18 Simon Josefsson - - * lib/gnutls_global.c: Fix secure memory initialization of - libgcrypt. Reported by Joe Orton in - - . - -2008-08-16 Simon Josefsson - - * doc/gnutls.texi: Reference NIST SP 800-57. - -2008-08-16 Simon Josefsson - - * doc/protocol/rfc5246.txt: Add. - -2008-08-14 Simon Josefsson - - * NEWS: Re-add lost entry. - -2008-08-14 Simon Josefsson - - * lib/crypto.c, lib/gnutls_extensions.c, lib/gnutls_state.c, - lib/x509/crq.c: Doc fixes. - -2008-08-14 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2008-08-14 Simon Josefsson - - * ChangeLog: Generated. - -2008-08-14 Simon Josefsson - - * NEWS: Version 2.5.3. - -2008-08-13 Simon Josefsson - - * NEWS: Add. - -2008-08-13 Simon Josefsson - - * NEWS: Add. - -2008-08-13 Simon Josefsson - - * includes/gnutls/extra.h, includes/gnutls/openssl.h, - includes/gnutls/pkcs12.h, includes/gnutls/x509.h: Bump copyright in - installed header files. - -2008-08-13 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2008-08-13 Simon Josefsson - - * NEWS: Add. - -2008-08-13 Simon Josefsson - - * includes/gnutls/gnutls.h.in: Drop final comma in enum. Reported - in . - -2008-08-13 Simon Josefsson - - * lib/gnutlsxx.cpp: Don't call SRP functions if SRP is disabled. - -2008-08-13 Simon Josefsson - - * includes/gnutls/compat.h, includes/gnutls/gnutls.h.in, - lib/auth_rsa.c, lib/gnutls_constate.c, lib/gnutls_handshake.c, - lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_session_pack.c, - lib/gnutls_sig.c, lib/gnutls_state.c, lib/gnutls_v2_compat.c, - libextra/gnutls_ia.c: Fix namespace problem with TLS_MASTER_SIZE and - TLS_RANDOM_SIZE. - -2008-08-13 Simon Josefsson - - * gl/c-ctype.c, gl/c-ctype.h, gl/gnulib.mk, gl/inet_pton.c, - gl/m4/gnulib-comp.m4, gl/m4/inet_pton.m4, gl/tests/gnulib.mk, - gl/tests/test-c-ctype.c: Update gnulib files. - -2008-08-13 Simon Josefsson - - * NEWS, includes/gnutls/gnutls.h.in, lib/gnutls_handshake.c, - lib/gnutls_int.h, lib/gnutls_state.c, tests/Makefile.am, - tests/finished.c: Add API to set callback to extract TLS Finished - messages. - -2008-08-08 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2008-08-05 Simon Josefsson - - * GNUmakefile: Update gnulib files. - -2008-08-05 Simon Josefsson - - * NEWS: Add. - -2008-08-04 Simon Josefsson - - * GNUmakefile, build-aux/gnupload: Update gnulib files. - -2008-08-03 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h, lib/x509/crq.c: added - gnutls_x509_crq_set_key_rsa_raw() which will set a raw key to a - certificate request. - -2008-08-02 Nikos Mavrogiannopoulos - - * : commit 767fb210de7dcde20ac05e1f3ca78375279f5603 Author: Nikos - Mavrogiannopoulos Date: Sat Aug 2 11:55:56 - 2008 +0300 - -2008-07-22 Simon Josefsson - - * lib/auth_psk_passwd.c, lib/gnutls_cipher.c, - lib/gnutls_handshake.c, lib/x509/pkcs12.c, - lib/x509/privkey_pkcs8.c, src/crypt.c: Make it compile. - -2008-07-22 Simon Josefsson - - * doc/Makefile.am: Drop doxygen. - -2008-07-22 Simon Josefsson - - * GNUmakefile, gl/m4/gnulib-comp.m4, lgl/m4/gnulib-comp.m4, - lgl/vasnprintf.c: Update gnulib files. - -2008-07-10 Simon Josefsson - - * configure.in: Bump versions. - -2008-07-10 Simon Josefsson - - * NEWS, configure.in, doc/Makefile.am, doc/doxygen/Doxyfile.in, - doc/doxygen/Doxyfile.orig: Add doxygen scripts. - -2008-07-10 Simon Josefsson - - * lib/x509/common.c: Cleanup struct name, for doxygen documentation. - -2008-07-09 Simon Josefsson - - * lib/random.h: Add license. - -2008-07-09 Simon Josefsson - - * lib/auth_rsa.c, lib/auth_srp_passwd.c, lib/gnutls_pk.c, - lib/random.c, lib/random.h, lib/x509/privkey_pkcs8.c, src/psk.c: - Minor randomness API cleanups. - -2008-07-09 Simon Josefsson - - * lib/x509/dsa.c: Remove unused code. - -2008-07-08 Simon Josefsson - - * ChangeLog: Generated. - -2008-07-08 Simon Josefsson - - * NEWS: Version 2.5.2. - -2008-07-08 Simon Josefsson - - * doc/gnutls.texi: Fix @include of algorithms.texi. - -2008-07-08 Simon Josefsson - - * doc/Makefile.am: Fix typos. - -2008-07-08 Simon Josefsson - - * doc/Makefile.am, src/Makefile.am: Generate algorithms.texi the - same way as error_codes.texi for consistency. Fixes 'make - distcheck' due to srcdir != objdir breakage. - -2008-07-08 Simon Josefsson - - * configure.in: Bump libtool library version because we added - interfaces. - -2008-07-08 Simon Josefsson - - * NEWS, lib/Makefile.am, lib/ext_inner_application.c, - lib/ext_inner_application.h, lib/gnutls_extensions.c, - libextra/Makefile.am, libextra/ext_inner_application.c, - libextra/ext_inner_application.h, libextra/gnutls_extra.c: Move - TLS/IA features to libgnutls-extra. - -2008-07-08 Simon Josefsson - - * tests/tlsia.c: Initialize extra library. - -2008-07-08 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2008-07-07 Nikos Mavrogiannopoulos - - * src/printlist.c: added missing file. - -2008-07-06 Nikos Mavrogiannopoulos - - * doc/Makefile.am, doc/gnutls.texi: automatically generate the - appendix with supported algorithms and ciphersuites. - -2008-07-06 Nikos Mavrogiannopoulos - - * src/Makefile.am: automatically generate the appendix with - supported algorithms and ciphersuites. - -2008-07-06 Nikos Mavrogiannopoulos - - * lib/gnutls_priority.c: document a way to get the available - algorithms and protocols. - -2008-07-05 Nikos Mavrogiannopoulos - - * lib/x509/common.c: Corrected memory leak in read_octet. Based on - patch by Colin Leroy (colin@colino.net) - -2008-07-03 Simon Josefsson - - * NEWS: Add. - -2008-07-03 Simon Josefsson - - * includes/gnutls/gnutls.h.in, lib/gnutls_extensions.c, - lib/gnutls_extensions.h, lib/gnutls_global.c, - lib/gnutls_handshake.c, lib/gnutls_int.h: Add APIs to register TLS - extension handlers. - -2008-07-02 Simon Josefsson - - * lib/minitasn1/Makefile.am, lib/x509/Makefile.am: Use AM_CPPFLAGS. - -2008-07-02 Simon Josefsson - - * lib/opencdk/Makefile.am: lib/opencdk/Makefile.am (INCLUDES): - Rename to `AM_CPPFLAGS'. - -2008-07-02 Simon Josefsson - - * NEWS: Fix. - -2008-07-02 Simon Josefsson - - * NEWS: Add. - -2008-07-02 Simon Josefsson - - * Makefile.am, cfg.mk: Guile problem fixed. - -2008-07-02 Simon Josefsson - - * lib/gnutls_dh_primes.c: Fix typo that swapped prime/generator in - gnutls_dh_params_generate2. - -2008-07-02 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2008-07-02 Simon Josefsson - - * ChangeLog: Generated. - -2008-07-02 Simon Josefsson - - * NEWS: Version 2.5.1. - -2008-07-02 Simon Josefsson - - * cfg.mk, doc/examples/ex-cert-select.c, - doc/examples/ex-client-psk.c, doc/examples/ex-client-tlsia.c, - doc/examples/ex-client1.c, doc/examples/ex-client2.c, - doc/examples/ex-serv-export.c, doc/examples/ex-serv-pgp.c, - doc/examples/ex-serv-psk.c, doc/examples/ex-serv1.c, - guile/src/core.c, guile/src/errors.c, guile/src/extra.c, - lib/auth_cert.c, lib/auth_dh_common.c, lib/auth_dhe.c, - lib/auth_psk.c, lib/auth_psk_passwd.c, lib/auth_rsa.c, - lib/auth_rsa_export.c, lib/auth_srp.c, lib/auth_srp_passwd.c, - lib/auth_srp_rsa.c, lib/cipher-libgcrypt.c, lib/crypto.c, - lib/debug.c, lib/ext_cert_type.c, lib/ext_max_record.c, - lib/ext_oprfi.c, lib/ext_server_name.c, lib/ext_srp.c, - lib/gnutls_alert.c, lib/gnutls_algorithms.c, - lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_buffers.c, - lib/gnutls_cert.c, lib/gnutls_cipher.c, lib/gnutls_cipher_int.c, - lib/gnutls_compress.c, lib/gnutls_constate.c, lib/gnutls_db.c, - lib/gnutls_dh.c, lib/gnutls_dh_primes.c, lib/gnutls_errors.c, - lib/gnutls_extensions.c, lib/gnutls_global.c, - lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_kx.c, - lib/gnutls_mpi.c, lib/gnutls_openpgp.c, lib/gnutls_pk.c, - lib/gnutls_priority.c, lib/gnutls_psk.c, lib/gnutls_psk_netconf.c, - lib/gnutls_record.c, lib/gnutls_session.c, - lib/gnutls_session_pack.c, lib/gnutls_sig.c, lib/gnutls_srp.c, - lib/gnutls_state.c, lib/gnutls_str.c, lib/gnutls_supplemental.c, - lib/gnutls_ui.c, lib/gnutls_v2_compat.c, lib/gnutls_x509.c, - lib/mac-libgcrypt.c, lib/minitasn1/structure.c, - lib/mpi-libgcrypt.c, lib/opencdk/armor.c, lib/opencdk/dummy.c, - lib/opencdk/hash.c, lib/opencdk/kbnode.c, lib/opencdk/keydb.c, - lib/opencdk/literal.c, lib/opencdk/main.c, lib/opencdk/misc.c, - lib/opencdk/new-packet.c, lib/opencdk/pubkey.c, - lib/opencdk/read-packet.c, lib/opencdk/seskey.c, - lib/opencdk/sig-check.c, lib/opencdk/stream.c, - lib/opencdk/verify.c, lib/opencdk/write-packet.c, - lib/openpgp/compat.c, lib/openpgp/extras.c, lib/openpgp/output.c, - lib/openpgp/pgp.c, lib/openpgp/pgpverify.c, lib/openpgp/privkey.c, - lib/pk-libgcrypt.c, lib/random.c, lib/rnd-libgcrypt.c, - lib/x509/common.c, lib/x509/crl.c, lib/x509/crq.c, lib/x509/dn.c, - lib/x509/dsa.c, lib/x509/extensions.c, lib/x509/mpi.c, - lib/x509/output.c, lib/x509/pbkdf2-sha1.c, lib/x509/pkcs12.c, - lib/x509/pkcs12_encr.c, lib/x509/pkcs7.c, lib/x509/privkey.c, - lib/x509/privkey_pkcs8.c, lib/x509/rfc2818_hostname.c, - lib/x509/sign.c, lib/x509/x509.c, lib/x509/x509_write.c, - libextra/gnutls_openssl.c, src/certtool-cfg.c, src/certtool.c, - src/cli.c, src/common.c, src/crypt.c, src/psk.c, src/select.c, - src/serv.c, src/tests.c, src/tls_test.c, - tests/certificate_set_x509_crl.c, tests/crypto_rng.c, - tests/dhepskself.c, tests/dn.c, tests/gc.c, - tests/hostname-check/hostname-check.c, tests/mini.c, - tests/moredn.c, tests/mpi.c, tests/openpgp/keyring.c, - tests/openpgpself.c, tests/oprfi.c, tests/parse_ca.c, - tests/pkcs12-decode/pkcs12_s2k.c, tests/x509dn.c, tests/x509self.c, - tests/x509signself.c: Indent code. - -2008-07-02 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2008-07-02 Simon Josefsson - - * ChangeLog: Generated. - -2008-07-02 Simon Josefsson - - * NEWS: Version 2.5.0. - -2008-07-02 Simon Josefsson - - * tests/pkcs12-decode/Makefile.am: The -I.. needs to point to - srcdir. - -2008-07-02 Simon Josefsson - - * NEWS: Add. - -2008-07-02 Simon Josefsson - - * NEWS: Add. - -2008-07-02 Simon Josefsson - - * lib/opencdk/Makefile.am: Need -I to builddir for gnutls.h. - -2008-07-02 Simon Josefsson - - * doc/reference/Makefile.am: Ignore more. - -2008-07-02 Simon Josefsson - - * lib/x509/Makefile.am: Dist pbkdf2-sha1.h. - -2008-07-02 Simon Josefsson - - * po/pl.po.in, po/vi.po.in: Sync with TP. - -2008-07-02 Simon Josefsson - - * Makefile.am, cfg.mk: Disable building guile for now, to be able to - do a release. - -2008-07-02 Simon Josefsson - - * NEWS: Sort functions. - -2008-07-02 Simon Josefsson - - * doc/gnutls.texi: Don't use @acronym for C++, as it breaks old - texinfo/tetex installations. Further, C++ isn't an acronym anyway - as far as I know. - -2008-07-01 Simon Josefsson - - * gl/gnulib.mk, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, - gl/tests/Makefile.am, gl/tests/gnulib.mk, - gl/tests/test-EOVERFLOW.c, gl/tests/test-arpa_inet.c, - gl/tests/test-getaddrinfo.c, gl/tests/test-getdelim.c, - gl/tests/test-getline.c, gl/tests/test-netinet_in.c, - gl/tests/test-strerror.c, lgl/Makefile.am, lgl/m4/gnulib-cache.m4, - lgl/m4/gnulib-comp.m4, lgl/tests/Makefile.am, lgl/tests/dummy.c, - lgl/tests/intprops.h, lgl/tests/test-EOVERFLOW.c, - lgl/tests/test-alloca-opt.c, lgl/tests/test-c-ctype.c, - lgl/tests/test-fseeko.c, lgl/tests/test-fseeko.sh, - lgl/tests/test-func.c, lgl/tests/test-lseek.c, - lgl/tests/test-lseek.sh, lgl/tests/test-memchr.c, - lgl/tests/test-memcmp.c, lgl/tests/test-read-file.c, - lgl/tests/test-snprintf.c, lgl/tests/test-stdbool.c, - lgl/tests/test-stdint.c, lgl/tests/test-stdio.c, - lgl/tests/test-stdlib.c, lgl/tests/test-string.c, - lgl/tests/test-strings.c, lgl/tests/test-sys_socket.c, - lgl/tests/test-sys_stat.c, lgl/tests/test-time.c, - lgl/tests/test-unistd.c, lgl/tests/test-vasnprintf.c, - lgl/tests/test-vasprintf.c, lgl/tests/test-wchar.c, - lgl/tests/verify.h: Add gnulib self-tests. - -2008-07-01 Simon Josefsson - - * lgl/m4/gnulib-cache.m4: Put gnulib tests in a separate directory. - -2008-07-01 Simon Josefsson - - * m4/gc_random.m4: Remove unused code. - -2008-07-01 Simon Josefsson - - * lgl/Makefile.am, lgl/arcfour.c, lgl/arcfour.h, lgl/arctwo.c, - lgl/arctwo.h, lgl/des.c, lgl/des.h, lgl/gc-gnulib.c, - lgl/gc-libgcrypt.c, lgl/gc-pbkdf2-sha1.c, lgl/gc.h, lgl/hmac-md5.c, - lgl/hmac-sha1.c, lgl/hmac.h, lgl/m4/arcfour.m4, lgl/m4/arctwo.m4, - lgl/m4/des.m4, lgl/m4/gc-arcfour.m4, lgl/m4/gc-arctwo.m4, - lgl/m4/gc-camellia.m4, lgl/m4/gc-des.m4, lgl/m4/gc-hmac-md5.m4, - lgl/m4/gc-hmac-sha1.m4, lgl/m4/gc-md2.m4, lgl/m4/gc-md4.m4, - lgl/m4/gc-md5.m4, lgl/m4/gc-pbkdf2-sha1.m4, lgl/m4/gc-random.m4, - lgl/m4/gc-rijndael.m4, lgl/m4/gc-sha1.m4, lgl/m4/gc.m4, - lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4, lgl/m4/hmac-md5.m4, - lgl/m4/hmac-sha1.m4, lgl/m4/md2.m4, lgl/m4/md4.m4, lgl/m4/md5.m4, - lgl/m4/memxor.m4, lgl/m4/rijndael.m4, lgl/m4/sha1.m4, lgl/md2.c, - lgl/md2.h, lgl/md4.c, lgl/md4.h, lgl/md5.c, lgl/md5.h, - lgl/memxor.c, lgl/memxor.h, lgl/rijndael-alg-fst.c, - lgl/rijndael-alg-fst.h, lgl/rijndael-api-fst.c, - lgl/rijndael-api-fst.h, lgl/sha1.c, lgl/sha1.h: Drop gnulib gc - modules. - -2008-07-01 Simon Josefsson - - * configure.in, lgl/m4/gnulib-cache.m4: Drop gc. - -2008-07-01 Simon Josefsson - - * lib/gnutls_cipher.c, lib/gnutls_handshake.c, - lib/x509/privkey_pkcs8.c: Drop gc.h. - -2008-06-30 Simon Josefsson - - * NEWS: Add. - -2008-06-30 Simon Josefsson - - * lib/gnutls_handshake.c: (_gnutls_handshake_hash_buffers_clear): Make sure deinitialized MAC - hashes are initialized. Report and tiny patch from Tomas Mraz - . - -2008-06-30 Simon Josefsson - - * THANKS: Add. - -2008-06-30 Nikos Mavrogiannopoulos - - * src/crypt.c: this fixes a problem in srptool, where the passwords - never match (--verify check) on some architectures (patch by - Matthias Koenig ) - -2008-06-30 Nikos Mavrogiannopoulos - - * includes/gnutls/openssl.h, libextra/gnutls_openssl.c: corrected - openssl. - -2008-06-30 Nikos Mavrogiannopoulos - - * includes/gnutls/openssl.h, libextra/gnutls_openssl.c: use native - gnutls functions. - -2008-06-30 Nikos Mavrogiannopoulos - - * lib/gnutls_hash_int.c, lib/gnutls_hash_int.h: added - _gnutls_hash_fast() - -2008-06-30 Nikos Mavrogiannopoulos - - * : commit fded9a7d1e6d58f951fc7e8f4db80d3e23f5ea1f Author: Nikos - Mavrogiannopoulos Date: Mon Jun 30 20:15:19 - 2008 +0300 - -2008-06-30 Nikos Mavrogiannopoulos - - * src/crypt.c, src/psk.c: avoid using gc_ functions for random data. - -2008-06-30 Nikos Mavrogiannopoulos - - * lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, - lib/x509/Makefile.am, lib/x509/pbkdf2-sha1.c, - lib/x509/pbkdf2-sha1.h, lib/x509/privkey_pkcs8.c, tests/gc.c: added - _gnutls_pkcs5_pbkdf2_sha1() based on gc_pkcs5_pbkdf2_sha1() - -2008-06-30 Simon Josefsson - - * : Remove executable. - -2008-06-30 Simon Josefsson - - * lib/gnutls_psk_netconf.c: Remove debug code. - -2008-06-30 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2008-06-30 Simon Josefsson - - * gl/m4/gnulib-cache.m4, gl/m4/gnulib-tool.m4, - lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-tool.m4: Update gnulib files. - -2008-06-30 Simon Josefsson - - * NEWS: Add. - -2008-06-29 Nikos Mavrogiannopoulos - - * lib/gnutls_state.c: added check before reallocation of parameters - to avoid memory leaks on rehandshake. - -2008-06-28 Nikos Mavrogiannopoulos - - * NEWS: document the rewrite of opencdk crypto backend. - -2008-06-28 Nikos Mavrogiannopoulos - - * NEWS, doc/gnutls.texi, includes/gnutls/crypto.h, - includes/gnutls/gnutls.h.in, lib/Makefile.am, lib/auth_anon.c, - lib/auth_dh_common.c, lib/auth_dh_common.h, lib/auth_dhe.c, - lib/auth_dhe_psk.c, lib/auth_rsa.c, lib/auth_rsa_export.c, - lib/auth_srp.c, lib/cipher-libgcrypt.c, lib/crypto.c, lib/crypto.h, - lib/debug.c, lib/debug.h, lib/gnutls_algorithms.c, - lib/gnutls_cert.h, lib/gnutls_cipher_int.c, - lib/gnutls_cipher_int.h, lib/gnutls_datum.h, lib/gnutls_dh.c, - lib/gnutls_dh.h, lib/gnutls_dh_primes.c, lib/gnutls_global.c, - lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, - lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_openpgp.c, - lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_priority.c, - lib/gnutls_psk_netconf.c, lib/gnutls_rsa_export.c, - lib/gnutls_rsa_export.h, lib/gnutls_sig.c, lib/gnutls_sig.h, - lib/gnutls_srp.c, lib/gnutls_srp.h, lib/gnutls_state.c, - lib/gnutls_state.h, lib/gnutls_supplemental.c, lib/gnutls_x509.h, - lib/mac-libgcrypt.c, lib/mpi-libgcrypt.c, lib/opencdk/Makefile.am, - lib/opencdk/armor.c, lib/opencdk/context.h, lib/opencdk/dummy.c, - lib/opencdk/filters.h, lib/opencdk/hash.c, lib/opencdk/kbnode.c, - lib/opencdk/keydb.c, lib/opencdk/literal.c, lib/opencdk/main.c, - lib/opencdk/main.h, lib/opencdk/misc.c, lib/opencdk/new-packet.c, - lib/opencdk/opencdk.h, lib/opencdk/packet.h, lib/opencdk/pubkey.c, - lib/opencdk/read-packet.c, lib/opencdk/seskey.c, - lib/opencdk/sig-check.c, lib/opencdk/stream.c, lib/opencdk/types.h, - lib/opencdk/verify.c, lib/opencdk/write-packet.c, - lib/openpgp/extras.c, lib/openpgp/openpgp_int.h, - lib/openpgp/output.c, lib/openpgp/pgp.c, lib/openpgp/privkey.c, - lib/pk-libgcrypt.c, lib/random.c, lib/random.h, - lib/rnd-libgcrypt.c, lib/x509/Makefile.am, lib/x509/common.c, - lib/x509/common.h, lib/x509/crl.c, lib/x509/mpi.c, - lib/x509/pkcs12.c, lib/x509/pkcs12_encr.c, lib/x509/privkey.c, - lib/x509/privkey_pkcs8.c, lib/x509/sign.c, lib/x509/verify.c, - lib/x509/x509.c, lib/x509/x509_int.h, src/psk-gaa.c, - tests/Makefile.am, tests/ca.pem, tests/crypto_rng.c, tests/mpi.c, - tests/netconf-psk.c, tests/openpgp/keyring.c, - tests/pkcs12-decode/Makefile.am, tests/pkcs12-decode/pkcs12_s2k.c: - Initial merge attempt with gnutls_with_ext_mpi - -2008-06-25 Nikos Mavrogiannopoulos - - * lib/gnutls_dh_primes.c: do not add trailing zero on the size - count. - -2008-06-23 Simon Josefsson - - * GNUmakefile: Update gnulib files. - -2008-06-23 Simon Josefsson - - * NEWS: Add. - -2008-06-23 Simon Josefsson - - * lib/Makefile.am: Fix build failures related to opencdk.h. - Reported by Roman Bogorodskiy in - - . - -2008-06-19 Simon Josefsson - - * configure.in: Fix typo. - -2008-06-19 Simon Josefsson - - * configure.in: Disable C++ library if psk, srp, anon etc have been - disabled. The libgnutlsxx.cpp file calls several functions that may - have been removed. - -2008-06-19 Simon Josefsson - - * configure.in, doc/examples/Makefile.am: Make - --disable-psk-authentication work. - -2008-06-19 Simon Josefsson - - * lgl/m4/lock.m4: Update gnulib files. - -2008-06-19 Simon Josefsson - - * doc/examples/ex-cxx.cpp: Use cstring instead of string.h. - Reported by Daniel Black in - - . - -2008-06-19 Simon Josefsson - - * NEWS: Add. - -2008-06-18 Simon Josefsson - - * src/cli.c, src/psk.c: Fix warning regarding undeclared getpass - replacement. Reported by Massimo Gaspari - in . - -2008-06-18 Simon Josefsson - - * src/cli.c: Fix warning. Reported by Massimo Gaspari - in - . - -2008-06-18 Simon Josefsson - - * lib/gnutls_state.h: Add prototype for _gnutls_session_is_psk. - Reported by Massimo Gaspari in - . - -2008-06-18 Simon Josefsson - - * Makefile.am, NEWS, configure.in: Bump versions. - -2008-06-18 Simon Josefsson - - * ChangeLog: Generated. - -2008-06-18 Simon Josefsson - - * NEWS: Add v2.4.0 release notes. - -2008-06-18 Simon Josefsson - - * Makefile.am: Fix release target. - -2008-06-18 Simon Josefsson - - * NEWS: Version 2.4.0. - -2008-06-18 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2008-06-18 Simon Josefsson - - * AUTHORS, NEWS, includes/gnutls/openpgp.h, lib/openpgp/pgp.c, - lib/openpgp/privkey.c: libgnutls [OpenPGP]: New APIs to retrieve - fingerprint from OpenPGP subkeys. Contributed by Daniel Kahn - Gillmor . - -2008-06-16 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2008-06-16 Simon Josefsson - - * lib/openpgp/pgp.c: Fix typo in documentation. Tiny patch from - Daniel Kahn Gillmor . - -2008-06-15 Simon Josefsson - - * ChangeLog: Generated. - -2008-06-15 Simon Josefsson - - * NEWS: Version 2.3.15. - -2008-06-15 Simon Josefsson - - * tests/Makefile.am, tests/openpgp-certs/Makefile.am: Disable - openpgp-certs properly. - -2008-06-15 Simon Josefsson - - * doc/gendocs_template, lgl/Makefile.am, lgl/m4/stdio_h.m4, - lgl/stdio.in.h: Update gnulib files. - -2008-06-15 Simon Josefsson - - * NEWS, tests/Makefile.am: Disable openpgp-certs self-test. - -2008-06-11 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2008-06-11 Simon Josefsson - - * ChangeLog: Generated. - -2008-06-11 Simon Josefsson - - * NEWS: Version 2.3.14. - -2008-06-10 Simon Josefsson - - * lgl/m4/memmem.m4: Update gnulib files. - -2008-06-10 Simon Josefsson - - * tests/openpgp-certs/testcerts: Use port 5557. - -2008-06-10 Simon Josefsson - - * NEWS: Unrelease it. - -2008-06-09 Simon Josefsson - - * tests/openpgp-certs/testcerts: Fix. - -2008-06-09 Simon Josefsson - - * tests/openpgp-certs/testcerts: Deal with objdir != srcdir builds. - -2008-06-09 Simon Josefsson - - * tests/openpgp-certs/Makefile.am: Dist *.gpg's. - -2008-06-09 Simon Josefsson - - * Makefile.am: Fix release target. - -2008-06-09 Simon Josefsson - - * configure.in: Reorder. - -2008-06-09 Simon Josefsson - - * configure.in: Drop AC_CANONICAL_TARGET, unused. - -2008-06-09 Simon Josefsson - - * configure.in, gl/gnulib.mk, gl/m4/autobuild.m4, - gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, m4/autobuild.m4: Import - autobuild from gnulib. - -2008-06-09 Simon Josefsson - - * NEWS: Version 2.3.14. - -2008-06-09 Simon Josefsson - - * NEWS: Fix. - -2008-06-09 Simon Josefsson - - * lib/x509/x509.c: Doc fix. - -2008-06-08 Simon Josefsson - - * THANKS: Add. - -2008-06-08 Simon Josefsson - - * NEWS, lib/x509/x509.c: gnutls_x509_crt_get_extension_oid: Doc fix. - Reported by Sam Varshavchik . - -2008-06-08 Nikos Mavrogiannopoulos - - * lib/opencdk/sig-check.c: added check for empty UID list. - -2008-06-08 Nikos Mavrogiannopoulos - - * configure.in, tests/Makefile.am, tests/openpgp-certs/Makefile.am, - tests/openpgp-certs/ca-public.gpg, - tests/openpgp-certs/ca-secret.gpg, - tests/openpgp-certs/srv-public-127.0.0.1-signed.gpg, - tests/openpgp-certs/srv-public-all-signed.gpg, - tests/openpgp-certs/srv-public-localhost-signed.gpg, - tests/openpgp-certs/srv-public.gpg, - tests/openpgp-certs/srv-secret.gpg, tests/openpgp-certs/testcerts: - Added OpenPGP certificate verification test. - -2008-06-08 Nikos Mavrogiannopoulos - - * NEWS, lib/opencdk/keydb.c, lib/opencdk/main.h, - lib/opencdk/sig-check.c: Changed OpenPGP verification behaviour. An - OpenPGP certificate is now only considered verified if all the user - IDs are verified. - -2008-06-07 Simon Josefsson - - * NEWS, doc/examples/ex-cxx.cpp: Make it find strlen. Problem - reported by Rainer Gerhards and suggested fix - by "John Brooks" . - -2008-06-07 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2008-06-07 Simon Josefsson - - * po/LINGUAS: Sync with TP. - -2008-06-07 Simon Josefsson - - * po/LINGUAS: Sync with TP. - -2008-06-07 Simon Josefsson - - * ChangeLog: Generated. - -2008-06-07 Simon Josefsson - - * NEWS: Version 2.3.13. - -2008-06-07 Simon Josefsson - - * NEWS: Fix. - -2008-06-07 Simon Josefsson - - * NEWS: Add. - -2008-06-07 Simon Josefsson - - * doc/examples/ex-serv-export.c: Fix memory leak. - -2008-06-07 Simon Josefsson - - * tests/resume.c: Fix memory leak. - -2008-06-07 Simon Josefsson - - * GNUmakefile: Update gnulib files. - -2008-06-07 Simon Josefsson - - * NEWS, tests/anonself.c, tests/dhepskself.c, tests/mini.c, - tests/openpgpself.c, tests/oprfi.c, tests/x509dn.c, - tests/x509self.c, tests/x509signself.c: tests/: Reduce amount of - debugging output. - -2008-06-05 Simon Josefsson - - * NEWS: Add. - -2008-06-05 Simon Josefsson - - * tests/set_pkcs12_cred.c: Make it run without PKCS12FILE for - typical scenarios. - -2008-06-05 Simon Josefsson - - * NEWS: Fix. - -2008-06-05 Simon Josefsson - - * tests/resume.c: Fix memory leak. - -2008-06-05 Simon Josefsson - - * tests/tlsia.c: Fix memory leak. - -2008-06-05 Simon Josefsson - - * tests/x509dn.c: Fix memory leaks. - -2008-06-05 Simon Josefsson - - * tests/pskself.c: Fix most memory leaks. - -2008-06-05 Simon Josefsson - - * tests/dhepskself.c: Fix memory leaks. - -2008-06-05 Simon Josefsson - - * tests/x509signself.c: Fix memory leaks. - -2008-06-05 Simon Josefsson - - * tests/anonself.c: Fix memory leaks. - -2008-06-05 Simon Josefsson - - * tests/x509self.c: Revert last commit, fix memory leak the right - way. - -2008-06-05 Simon Josefsson - - * tests/openpgpself.c: Fix memory leak. - -2008-06-05 Simon Josefsson - - * tests/x509self.c: Fix memory leaks. - -2008-06-05 Simon Josefsson - - * doc/examples/ex-x509-info.c: Fix printing of serial number. - -2008-06-05 Simon Josefsson - - * tests/libgcrypt.supp: Drop non-generic stuff. - -2008-06-05 Simon Josefsson - - * tests/gc.c: Fix memory leak. - -2008-06-05 Simon Josefsson - - * tests/certder.c: Fix memory leaks. - -2008-06-05 Simon Josefsson - - * tests/moredn.c: Fix memory leak. - -2008-06-05 Simon Josefsson - - * NEWS: Add. - -2008-06-05 Simon Josefsson - - * tests/Makefile.am: Dist libgcrypt.supp. - -2008-06-05 Simon Josefsson - - * tests/libgcrypt.supp: Add. - -2008-06-05 Simon Josefsson - - * tests/mini.c: Fix warnings. - -2008-06-05 Simon Josefsson - - * NEWS, tests/Makefile.am, tests/mini.c: Add mini self-test, to - avoid having to fork to test TLS handshakes. - -2008-06-05 Simon Josefsson - - * po/ms.po.in: Sync with TP. - -2008-06-05 Simon Josefsson - - * NEWS: Add. - -2008-06-05 Simon Josefsson - - * doc/gnutls.texi: Reorder. - -2008-06-05 Simon Josefsson - - * doc/gnutls.texi: Add psktool to @direntry. Alphasort @direntry. - -2008-06-05 Simon Josefsson - - * README: Drop experimental stuff. - -2008-06-05 Simon Josefsson - - * NEWS: Fix. - -2008-06-05 Simon Josefsson - - * NEWS: Add. - -2008-06-05 Simon Josefsson - - * tests/openpgpself.c: The test now works. - -2008-06-05 Simon Josefsson - - * lgl/stdio-impl.h: Update gnulib files. - -2008-06-05 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2008-06-04 Nikos Mavrogiannopoulos - - * lib/openpgp/pgp.c, lib/openpgp/privkey.c: safer copying of keyid - type. - -2008-06-04 Simon Josefsson - - * ChangeLog: Generated. - -2008-06-04 Simon Josefsson - - * NEWS: Version 2.3.12. - -2008-06-04 Simon Josefsson - - * doc/protocol/draft-ietf-netconf-tls-02.txt: Add. - -2008-06-04 Simon Josefsson - - * NEWS: We reverted the ABI bump. - -2008-06-04 Simon Josefsson - - * lib/gnutls_psk_netconf.c: Doc fix. - -2008-06-04 Simon Josefsson - - * lib/gnutls_psk.c: Doc fix. - -2008-06-04 Simon Josefsson - - * doc/manpages/Makefile.am, src/psk-gaa.c: Generated. - -2008-06-04 Simon Josefsson - - * configure.in: Bump ABI version due to added symbols. - -2008-06-04 Simon Josefsson - - * : commit aa2c7264a52b993aca39c613e5fe1aed7511c972 Author: Simon - Josefsson Date: Wed Jun 4 08:11:34 2008 - +0200 - -2008-06-04 Simon Josefsson - - * doc/examples/ex-session-info.c: Update example with more PSK - printing. - -2008-06-04 Simon Josefsson - - * NEWS: Version 2.3.4.netconf.2. - -2008-06-04 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2008-06-04 Simon Josefsson - - * doc/gnutls.texi: Document PSK stuff. - -2008-06-04 Simon Josefsson - - * src/cli.c: Allow --pskusername to be specified to avoid query in - PSK callback. - -2008-06-04 Simon Josefsson - - * NEWS: Add. - -2008-06-04 Simon Josefsson - - * src/serv-gaa.c, src/serv-gaa.h: Generated. - -2008-06-04 Simon Josefsson - - * NEWS, src/cli.c: gnutls-cli: Implement PSK callback. - -2008-06-04 Simon Josefsson - - * NEWS, src/serv.c, src/serv.gaa: Add gnutls-serv --pskhint. - -2008-06-04 Simon Josefsson - - * lib/auth_psk.c: Generate server key exchange (psk identity hint). - Invoke client callback. - -2008-06-04 Simon Josefsson - - * includes/gnutls/gnutls.h.in, lib/auth_psk.h, lib/gnutls_psk.c: Add - gnutls_psk_set_server_credentials_hint. - -2008-06-03 Simon Josefsson - - * NEWS, includes/gnutls/gnutls.h.in, lib/gnutls_psk.c, src/common.c: - Add gnutls_psk_client_get_hint function. Use it. - -2008-06-03 Simon Josefsson - - * lib/gnutls_session_pack.c: Pack/unpack psk identity hint too. - -2008-06-03 Simon Josefsson - - * NEWS, src/psk-gaa.c, src/psk-gaa.h, src/psk.c, src/psk.gaa: - psktool: Support --netconf-hint. - -2008-06-03 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2008-06-02 Nikos Mavrogiannopoulos - - * lib/openpgp/openpgp_int.h: safer use of KEYID_IMPORT(). - -2008-06-02 Nikos Mavrogiannopoulos - - * lib/auth_cert.c: Corrected usage of DECR_LEN() - -2008-06-01 Nikos Mavrogiannopoulos - - * tests/openpgpself.c: reduced logging level - -2008-05-27 Simon Josefsson - - * m4/libgcrypt.m4: Update to latest version. - -2008-05-27 Simon Josefsson - - * lib/libgnutls.vers, libextra/libgnutls-extra.vers: Add emacs mode - markers. - -2008-05-26 Simon Josefsson - - * NEWS: Fix. - -2008-05-26 Simon Josefsson - - * configure.in: Revert "Revert ABI version, make libgnutls-extra use - another ABI version." This reverts commit 1a0f4dbf5a79ac61c7d10257221d851a4a12d814. - -2008-05-26 Simon Josefsson - - * libextra/Makefile.am: Revert "Use libtool EXTRA_ version symbols." This reverts commit 4e6bc87a35ed471022019265f7b5628e480f7e38. - -2008-05-26 Simon Josefsson - - * NEWS: Mention ABI bump. - -2008-05-26 Simon Josefsson - - * libextra/Makefile.am: Use libtool EXTRA_ version symbols. - -2008-05-26 Simon Josefsson - - * configure.in: Revert ABI version, make libgnutls-extra use another - ABI version. - -2008-05-26 Simon Josefsson - - * configure.in: Bump ABI version. - -2008-05-26 Simon Josefsson - - * lib/gnutls_cert.c: Doc fix. - -2008-05-26 Simon Josefsson - - * NEWS: Merge 2.2.x branch NEWS entries. - -2008-05-26 Simon Josefsson - - * NEWS: Add. - -2008-05-26 Simon Josefsson - - * lib/x509/crl_write.c: (gnutls_x509_crl_set_version): Fix on platform where 'char' can be - unsigned. Based on report from Laurence Withers , - see: - - . - -2008-05-26 Simon Josefsson - - * lgl/m4/memcmp.m4, lgl/stdbool.in.h, lgl/vasnprintf.c: Update - gnulib files. - -2008-05-26 Simon Josefsson - - * NEWS, includes/gnutls/openssl.h, libextra/gnutls_openssl.c: - libgnutls-openssl: added RAND_pseudo_bytes API. Tiny patch from - Robert Millan . - -2008-05-26 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2008-05-24 Nikos Mavrogiannopoulos - - * lib/opencdk/sig-check.c: added error check. - -2008-05-24 Nikos Mavrogiannopoulos - - * lib/openpgp/output.c: Print Never when a certificate never - expires. - -2008-05-24 Nikos Mavrogiannopoulos - - * lib/openpgp/pgp.c: Corrected bug gnutls_openpgp_crt_get_name() - which returned the same value for index==0 or 1. - -2008-05-20 Simon Josefsson - - * ChangeLog: Generated. - -2008-05-20 Simon Josefsson - - * NEWS: Version 2.3.11. - -2008-05-20 Simon Josefsson - - * NEWS: Add. - -2008-05-20 Simon Josefsson - - * lgl/m4/memcmp.m4, maint.mk: Update gnulib files. - -2008-05-20 Simon Josefsson - - * doc/examples/Makefile.am: Fix ex-cxx name. Fix LDADD's. - -2008-05-20 Simon Josefsson - - * po/nl.po.in, po/pl.po.in, po/sv.po.in, po/vi.po.in: Sync with TP. - -2008-05-20 Simon Josefsson - - * src/certtool.c: Restore umask after opening file. Suggested by - Daniel Kahn Gillmor . - -2008-05-20 Simon Josefsson - - * NEWS, configure.in, src/certtool.c, src/crypt.c, src/psk.c: Use - umask unconditionally. - -2008-05-19 Simon Josefsson - - * NEWS: Add. - -2008-05-19 Simon Josefsson - - * lib/gnutls_cipher.c: Fix broken debug check for GNUTLS-SA-2008-1. - -2008-05-19 Simon Josefsson - - * NEWS: Add. - -2008-05-19 Simon Josefsson - - * lib/Makefile.am: Don't pass all C flags when building C++ library. - -2008-05-19 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2008-05-19 Simon Josefsson - - * ChangeLog: Generated. - -2008-05-19 Simon Josefsson - - * NEWS: Version 2.3.10. - -2008-05-19 Simon Josefsson - - * configure.in: Bump versions. - -2008-05-19 Simon Josefsson - - * NEWS: Add. - -2008-05-05 Nikos Mavrogiannopoulos - - * lib/gnutls_str.c, tests/hostname-check/hostname-check.c: added - wide wildcard hostname matching. Patch by Jean-Philippe Garcia - Ballester. - -2008-05-19 Simon Josefsson - - * Makefile.am: Disable ftp.gnutls.org for now. - -2008-05-19 Simon Josefsson - - * lgl/vasnprintf.c: Update gnulib files. - -2008-05-19 Simon Josefsson - - * NEWS: Add. - -2008-05-19 Simon Josefsson - - * lib/ext_server_name.c, lib/gnutls_cipher.c, - lib/gnutls_handshake.c: Fix GNUTLS-SA-2008-1 security - vulnerabilities. See - http://www.gnu.org/software/gnutls/security.html for updates. - -2008-05-18 Nikos Mavrogiannopoulos - - * NEWS: Use umask to restrict permissions to owner before creating a - file. - -2008-05-18 Nikos Mavrogiannopoulos - - * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, - src/certtool.gaa: Use umask to restrict the newly created file's - permissions if operating on a private key. This effectively fixes - the issue reported at - and the - followups. - -2008-05-17 Nikos Mavrogiannopoulos - - * NEWS, doc/examples/Makefile.am, doc/examples/ex-cxx.cpp, - doc/gnutls.texi, includes/gnutls/gnutlsxx.h, lib/gnutlsxx.cpp: - Updated the C++ API with patch from Eduardo Villanueva Che. - Suggested by Benjamin Herr. - -2008-05-16 Simon Josefsson - - * ChangeLog: Generated. - -2008-05-16 Simon Josefsson - - * NEWS: Version 2.3.9. - -2008-05-16 Simon Josefsson - - * configure.in: Remove obsolete comment. - -2008-05-16 Simon Josefsson - - * configure.in: Typo. - -2008-05-16 Simon Josefsson - - * NEWS: Add. - -2008-05-16 Simon Josefsson - - * configure.in: Don't check for present headers, hard code checks - for silly src/cfg/. - -2008-05-16 Simon Josefsson - - * configure.in, lgl/Makefile.am, lgl/m4/gnulib-cache.m4, - lgl/m4/gnulib-comp.m4: Replace strings.h check with gnulib module. - -2008-05-16 Simon Josefsson - - * lgl/m4/strcase.m4, lgl/m4/strings_h.m4, lgl/strcasecmp.c, - lgl/strings.in.h, lgl/strncasecmp.c: Replace strings.h check with - gnulib module. - -2008-05-16 Simon Josefsson - - * NEWS, THANKS, src/certtool.c: certtool: When writing private keys - to files, change permissions of file. Now the file which the - private key is saved to is chmod'ed 0600. Reported by martin f - krafft see - . - -2008-05-16 Simon Josefsson - - * NEWS, THANKS, src/certtool-cfg.c, src/certtool-cfg.h, - src/certtool.c: certtool: Encrypting a private key now require a - confirmed password. Before, './certtool -k -8' would merely ask for - a password once. Reported by Daniel 'NebuchadnezzaR' Dehennin - see - . - -2008-05-16 Simon Josefsson - - * gl/gnulib.mk, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4: Update - gnulib files. - -2008-05-16 Simon Josefsson - - * NEWS, configure.in: Remove --enable-profile-mode. - -2008-05-16 Simon Josefsson - - * lgl/m4/memmem.m4, lgl/str-two-way.h: Update gnulib files. - -2008-05-15 Simon Josefsson - - * ChangeLog: Generated. - -2008-05-15 Simon Josefsson - - * lib/auth_psk.c, lib/gnutls_kx.c, lib/gnutls_state.c: Allow for - server key exchange message to be optional for PSK ciphers. - -2008-05-15 Simon Josefsson - - * NEWS: Version 2.3.4.netconf.1. - -2008-05-15 Simon Josefsson - - * NEWS: Add. - -2008-05-15 Simon Josefsson - - * NEWS: Add. - -2008-05-15 Simon Josefsson - - * lib/auth_psk.c, lib/auth_psk.h: Parse psk_identity_hint field. - -2008-05-15 Simon Josefsson - - * src/cli.c: Fix so that PSK authentication works. - -2008-05-15 Simon Josefsson - - * NEWS, doc/gnutls.texi: Document gnutls-cli PSK fix. - -2008-05-15 Simon Josefsson - - * src/cli.c: Fix so that PSK authentication works. - -2008-05-15 Simon Josefsson - - * gl/m4/gnulib-common.m4, gl/m4/gnulib-comp.m4, - lgl/m4/gnulib-common.m4, lgl/m4/gnulib-comp.m4: Update gnulib files. - -2008-05-11 Simon Josefsson - - * doc/protocol/draft-ietf-tls-ecc-new-mac-07.txt: Add. - -2008-05-07 Simon Josefsson - - * NEWS: Add. - -2008-05-07 Simon Josefsson - - * guile/tests/Makefile.am: Don't run guile openpgp self tests if - openpgp is disabled. - -2008-05-07 Simon Josefsson - - * tests/Makefile.am: Don't run openpgpself if openpgp stuff wasn't - built. - -2008-05-07 Simon Josefsson - - * NEWS, doc/examples/ex-session-info.c, guile/src/core.c, - guile/tests/Makefile.am: libgnutls: Compile if SRP is disabled. - Report and tiny patches from , see - . - -2008-05-06 Simon Josefsson - - * lib/gnutls_global.c: Fix warning. - -2008-05-06 Simon Josefsson - - * NEWS, gl/getaddrinfo.h: Update gnulib files. - -2008-05-06 Simon Josefsson - - * NEWS: Fix. - -2008-05-06 Simon Josefsson - - * NEWS: Add. - -2008-05-06 Simon Josefsson - - * lib/openpgp/output.c: More translation markups. - -2008-05-06 Simon Josefsson - - * po/POTFILES.in: Add translations from openpgp output functions - too. - -2008-05-06 Simon Josefsson - - * lib/x509/output.c: Translation fixes, tiny patch from Benno - Schulenberg . - -2008-05-05 Simon Josefsson - - * gl/m4/inet_ntop.m4, gl/m4/inet_pton.m4, - lgl/override/lib/gc-libgcrypt.c.diff: Update gnulib files. - -2008-05-02 Simon Josefsson - - * : commit 382e242d6ab440749f44f53020a928c09a4c4765 Author: Nikos - Mavrogiannopoulos Date: Thu May 1 11:06:19 - 2008 +0300 - -2008-04-30 Simon Josefsson - - * doc/protocol/draft-badra-tls-psk-new-mac-aes-gcm-02.txt: Add. - -2008-04-30 Simon Josefsson - - * gl/arpa_inet.in.h, gl/getaddrinfo.c, gl/gnulib.mk, - gl/m4/arpa_inet_h.m4, gl/m4/inet_ntop.m4, gl/m4/inet_pton.m4: Update - gnulib files. - -2008-04-29 Simon Josefsson - - * doc/protocol/draft-ietf-tls-ecc-new-mac-06.txt, - doc/protocol/draft-rescorla-tls-extended-random-00.txt: Add. - -2008-04-29 Simon Josefsson - - * NEWS: Add. - -2008-04-29 Simon Josefsson - - * configure.in: Call AM_CONDITIONAL at top-level. - -2008-04-29 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2008-04-29 Simon Josefsson - - * Makefile.am: Dist maint.mk. - -2008-04-29 Simon Josefsson - - * ChangeLog: Generated. - -2008-04-29 Simon Josefsson - - * NEWS: Version 2.3.8. - -2008-04-29 Simon Josefsson - - * gl/gnulib.mk, gl/m4/arpa_inet_h.m4, lgl/Makefile.am, - lgl/m4/stdlib_h.m4, lgl/m4/string_h.m4, lgl/stdlib.in.h, - lgl/string.in.h: Update gnulib files. - -2008-04-29 Simon Josefsson - - * po/LINGUAS, po/vi.po.in: Sync with TP. - -2008-04-29 Simon Josefsson - - * NEWS: Add. - -2008-04-29 Simon Josefsson - - * NEWS: Add. - -2008-04-29 Simon Josefsson - - * NEWS: Add. - -2008-04-29 Simon Josefsson - - * NEWS: Clarify area of change. - -2008-04-29 Simon Josefsson - - * NEWS: Add. - -2008-04-29 Simon Josefsson - - * NEWS: Add. - -2008-04-29 Simon Josefsson - - * lib/gnutls_handshake.c: Doc fix. - -2008-04-29 Simon Josefsson - - * NEWS, includes/gnutls/gnutls.h.in, lib/gnutls_buffers.c, - lib/gnutls_errors.c, lib/gnutls_handshake.c, lib/gnutls_int.h: - Increase max handshake packet size. Add new error code for - situation. Thanks to Marc Haber and - "Marc F. Clemente" for reporting and providing - test servers. - -2008-04-29 Simon Josefsson - - * : commit 08e4c95c3659544c39b93539d62209d4c296d5b1 Author: Simon - Josefsson Date: Tue Apr 29 00:13:26 2008 - +0200 - -2008-04-28 Simon Josefsson - - * src/cli.c: Avoid another duplicate call to socket_bye() which can - cause a crash. - -2008-04-28 Nikos Mavrogiannopoulos - - * NEWS, src/cli.c, src/common.c, src/common.h, src/serv.c, - src/tests.c: gnutls-cli will exit once a certificate that doesn't - have the correct name is found. - -2008-04-28 Simon Josefsson - - * doc/reference/gnutls-docs.sgml, lib/gnutls_cert.c, - lib/gnutls_openpgp.c, lib/gnutls_str.c, lib/gnutls_x509.c, - lib/openpgp/pgp.c, lib/openpgp/privkey.c, lib/x509/dn.c: Doc markup - for newly added APIs. - -2008-04-28 Simon Josefsson - - * lib/x509/crl.c, lib/x509/crq.c, lib/x509/pkcs12_bag.c, - lib/x509/pkcs7.c, lib/x509/x509.c: Doc fixes (silence gtk-doc - warnings). - -2008-04-28 Simon Josefsson - - * lib/x509/crl_write.c, lib/x509/x509_write.c: Doc fixes (silence - gtk-doc warnings). - -2008-04-28 Simon Josefsson - - * lib/x509/crl.c, lib/x509/crl_write.c, lib/x509/crq.c, - lib/x509/pkcs12.c, lib/x509/pkcs12_bag.c, lib/x509/pkcs7.c, - lib/x509/privkey_pkcs8.c, lib/x509/sign.c, lib/x509/verify.c, - lib/x509/x509.c, lib/x509/x509_write.c: Doc fixes (silence gtk-doc - warnings). - -2008-04-28 Simon Josefsson - - * lib/x509/common.c, lib/x509/dn.c, lib/x509/output.c, - lib/x509/privkey.c: Doc fixes (silence gtk-doc warnings). - -2008-04-28 Simon Josefsson - - * : commit 02393bd4ef0c2ee7864c356f70623f3950f372f0 Author: Simon - Josefsson Date: Mon Apr 28 18:14:14 2008 - +0200 - -2008-04-28 Simon Josefsson - - * NEWS: Add. - -2008-04-28 Simon Josefsson - - * build-aux/gendocs.sh, gl/arpa_inet.in.h, gl/gnulib.mk, - gl/inet_ntop.c, gl/inet_ntop.h, gl/inet_pton.c, gl/inet_pton.h, - gl/m4/gnulib-comp.m4, gl/m4/inet_ntop.m4, gl/m4/inet_pton.m4, - lgl/Makefile.am, lgl/fseeko.c, lgl/intprops.h, - lgl/m4/gnulib-comp.m4, lgl/m4/sys_socket_h.m4, lgl/memchr.c, - lgl/stdio-impl.h, lgl/sys_socket.in.h: Update gnulib files. - -2008-04-28 Simon Josefsson - - * NEWS: Add. - -2008-04-28 Simon Josefsson - - * configure.in: Fix typo. - -2008-04-28 Simon Josefsson - - * configure.in, includes/gnutls/crypto.h: Hide crypto.h definitions - by default. - -2008-04-26 Nikos Mavrogiannopoulos - - * tests/Makefile.am, tests/crypto_rng.c: added crypto rng - registration test. - -2008-04-26 Nikos Mavrogiannopoulos - - * lib/crypto.c: add warning that these functions have to be called - before gnutls_global_init(). - -2008-04-26 Nikos Mavrogiannopoulos - - * lib/crypto.c, lib/random.c: faster seek into the list. - -2008-04-25 Simon Josefsson - - * NEWS, lib/gnutls_psk_netconf.c, tests/netconf-psk.c: Change PSK - key derivation algorithm. - -2008-04-25 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2008-04-25 Nikos Mavrogiannopoulos - - * lib/crypto.c, lib/crypto.h, lib/gnutls_global.c: Added - deregisteration function to free buffers allocated for registering - algorithms. - -2008-04-25 Nikos Mavrogiannopoulos - - * lib/crypto.c: corrected segmentation fault on registering ciphers. - -2008-04-25 Nikos Mavrogiannopoulos - - * doc/manpages/certtool.1, src/certtool-gaa.c, src/certtool-gaa.h, - src/certtool.gaa: added --outraw --inraw options. - -2008-04-23 Simon Josefsson - - * gl/gnulib.mk, lgl/sys_socket.in.h: Update gnulib files. - -2008-04-23 Simon Josefsson - - * configure.in: Revert libgcrypt vs vasprintf workaround, now that - 1.4.1rc1 is released. - -2008-04-22 Simon Josefsson - - * gl/arpa_inet.in.h: Update gnulib files. - -2008-04-22 Simon Josefsson - - * gl/arpa_inet.in.h, gl/gnulib.mk, gl/m4/arpa_inet_h.m4, - gl/m4/gnulib-comp.m4, lgl/sys_socket.in.h: Update gnulib files. - -2008-04-22 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2008-04-22 Simon Josefsson - - * : commit 34e3d59b2e276b8a45924f11f6916399fa14f5be Author: Simon - Josefsson Date: Tue Apr 22 09:56:03 2008 - +0200 - -2008-04-21 Nikos Mavrogiannopoulos - - * : commit 1b6c0f521f7e6e3d48b74fbb568a53547c5ff8ec Author: Nikos - Mavrogiannopoulos Date: Mon Apr 21 21:53:55 - 2008 +0300 - -2008-04-21 Simon Josefsson - - * ChangeLog: Generated. - -2008-04-21 Simon Josefsson - - * NEWS: Version 2.3.7. - -2008-04-21 Simon Josefsson - - * doc/Makefile.am: Don't clean Guile documentations on make clean. - -2008-04-21 Simon Josefsson - - * src/cli.c, src/psk-gaa.c, src/psk.gaa, src/serv.c, src/tests.c: - Fix warnings. - -2008-04-21 Simon Josefsson - - * NEWS: Fix. - -2008-04-21 Simon Josefsson - - * NEWS, doc/reference/Makefile.am, lib/minitasn1/Makefile.am, - lib/minitasn1/coding.c, lib/minitasn1/decoding.c, - lib/minitasn1/element.c, lib/minitasn1/int.h, - lib/minitasn1/libtasn1.h, lib/minitasn1/mem.h: Update to libtasn1 - 1.4. - -2008-04-19 Nikos Mavrogiannopoulos - - * NEWS: opencdk now properly sets the key usage bits into openpgp - keys. - -2008-04-19 Nikos Mavrogiannopoulos - - * lib/opencdk/keydb.c, lib/opencdk/read-packet.c: save key usage - while reading public keys. - -2008-04-18 Simon Josefsson - - * NEWS, THANKS: Add. - -2008-04-18 Simon Josefsson - - * src/cli.c: Don't crash on TLS handshake failures. Reported by - "Marc F. Clemente" in Debian BTS #466477. This - is related to the 5e5f086e124d8d90829fc8e22f34044161da5f80 fix, this - part is necessary too. - -2008-04-18 Simon Josefsson - - * NEWS, src/certtool.c: certtool: with --generate-request and newly - generated keys, print the key. - -2008-04-18 Simon Josefsson - - * configure.in: Explain libgcrypt around gnulib. - -2008-04-18 Simon Josefsson - - * doc/reference/Makefile.am, doc/reference/gnutls-docs.sgml: Don't - document opencdk API. - -2008-04-18 Simon Josefsson - - * NEWS: Add. - -2008-04-18 Simon Josefsson - - * NEWS: Add. - -2008-04-18 Simon Josefsson - - * configure.in: Typo fix. - -2008-04-18 Simon Josefsson - - * lib/Makefile.am: Link to -lws2_32 if needed. - -2008-04-18 Simon Josefsson - - * configure.in: Define WINVER to get modern features. Test for - ws2_32. Add conditional. - -2008-04-18 Simon Josefsson - - * NEWS: Add. - -2008-04-18 Simon Josefsson - - * lib/x509/output.c: Use ASCII-only isprint function to get - consistent outputs. Reported by Massimo Gaspari - in - . - -2008-04-18 Simon Josefsson - - * lgl/Makefile.am, lgl/c-ctype.c, lgl/c-ctype.h, lgl/dummy.c, - lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4: Add c-ctype module, - for lib/x509/output.c. - -2008-04-18 Simon Josefsson - - * gl/fseeko.c, gl/gnulib.mk, gl/lseek.c, gl/m4/extensions.m4, - gl/m4/fseeko.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, - gl/m4/lseek.m4, gl/m4/netinet_in_h.m4, gl/m4/strerror.m4, - lgl/Makefile.am, lgl/fseeko.c, lgl/lseek.c, lgl/m4/extensions.m4, - lgl/m4/fseeko.m4, lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4, - lgl/m4/lseek.m4, lgl/m4/memmem.m4, lgl/m4/stdint.m4, - lgl/m4/stdio_h.m4, lgl/m4/sys_socket_h.m4: Move fseeko to lgl/ from - gl/ for opencdk. - -2008-04-18 Simon Josefsson - - * configure.in: Link to libgcrypt when running gnulib checks, to get - their vasprintf on MinGW. - -2008-04-18 Simon Josefsson - - * configure.in: Don't check for vasprintf, already checked for by - gnulib. - -2008-04-17 Nikos Mavrogiannopoulos - - * lib/openpgp/pgp.c: corrected typo. - -2008-04-17 Simon Josefsson - - * .clcopying, .cvscopying, .cvsusers, Makefile.am, src/pkcs1.asn: - Fix some obsolete stuff. - -2008-04-17 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2008-04-17 Simon Josefsson - - * lib/x509/x509.c: (gnutls_x509_crt_get_key_usage): Doc fix. - -2008-04-17 Simon Josefsson - - * ChangeLog: Generated. - -2008-04-17 Simon Josefsson - - * NEWS: Version 2.3.6. - -2008-04-17 Simon Josefsson - - * src/Makefile.am: Link errcodes with gnulib. Possibly fixes - rpl_strerror problem when linking on HPUX, see: - - . - -2008-04-17 Simon Josefsson - - * NEWS: Add. - -2008-04-17 Simon Josefsson - - * NEWS: Add. - -2008-04-17 Simon Josefsson - - * : commit 01a64fe6798a4ba82df9accf67c7c8f657abd9f5 Author: Simon - Josefsson Date: Thu Apr 17 14:27:03 2008 - +0200 - -2008-04-17 Simon Josefsson - - * lib/opencdk/kbnode.c: Doc fix (gtk-doc warning). - -2008-04-17 Simon Josefsson - - * includes/gnutls/openssl.h: Fix gtk-doc warning about duplicate RSA - namespace. - -2008-04-17 Simon Josefsson - - * lib/auth_cert.c: Fix warning. - -2008-04-17 Ludovic Courtès - - * : commit 2b4f4e3fd2b0df0b77b283928154b5f3e9139fe8 Author: Simon - Josefsson Date: Thu Apr 17 14:15:49 2008 - +0200 - -2008-04-17 Simon Josefsson - - * doc/reference/Makefile.am: Fix --source-dir to only cover lib/, - libextra/ and includes/. - -2008-04-17 Simon Josefsson - - * lib/Makefile.am: Simplify cdk handling. - -2008-04-17 Simon Josefsson - - * doc/gnutls.texi: Discuss OpenCDK better. - -2008-04-17 Simon Josefsson - - * README: No need for external opencdk. - -2008-04-17 Simon Josefsson - - * configure.in, lib/Makefile.am, lib/opencdk/misc.c: Remove code to - link with external opencdk. It seems we now don't have resources to - maintain the LGPL opencdk code externally, since making it use - GnuTLS's crypto code will be complicated. See discussion in: - - http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/2672/focus=2711 - -2008-04-17 Simon Josefsson - - * configure.in: No need for alloca checks. - -2008-04-17 Simon Josefsson - - * NEWS, lib/gnutls_algorithms.c, lib/gnutls_buffers.c, - lib/gnutls_constate.c, lib/gnutls_handshake.c, lib/gnutls_mem.h, - lib/gnutls_mpi.c, lib/gnutls_pk.c, lib/x509/crl.c, lib/x509/mpi.c, - lib/x509/privkey_pkcs8.c, lib/x509/sign.c, lib/x509/x509.c: Remove - all uses of gnutls_alloca/gnutls_afree. Use normal gnutls_malloc - instead. One reason is increased portability to Windows, the other - is that several of the uses may be unsafe because the size of data - allocated could be large. Reported by Massimo Gaspari - in - . - -2008-04-17 Simon Josefsson - - * lib/auth_cert.c: Don't use alloca, the certificate list can be - larger than stack size. - -2008-04-17 Simon Josefsson - - * THANKS: Add. - -2008-04-17 Simon Josefsson - - * THANKS: Add. - -2008-04-17 Simon Josefsson - - * NEWS, lib/x509/output.c: Don't use %e specifier with strftime, it - doesn't work under Windows. Reported by Massimo Gaspari - in - . - -2008-04-17 Simon Josefsson - - * lib/gnutls_asn1_tab.c, lib/pkix_asn1_tab.c: Re-generate using - modern libtasn1. - -2008-04-17 Simon Josefsson - - * doc/examples/Makefile.am: Fix typo. - -2008-04-17 Simon Josefsson - - * NEWS, tests/pathlen/pathlen: Run diff without parameters, to - improve portability. Based on HPUX recommendations in - - . - -2008-04-16 Simon Josefsson - - * doc/examples/Makefile.am: Reorder libgnu.la last. Possibly fix - rpl_fseeko problem reported in - . - -2008-04-15 Simon Josefsson - - * doc/gnutls.texi: Update bibliography. - -2008-04-15 Simon Josefsson - - * lib/gnutls_state.c: Doc fix (silence texinfo warning). - -2008-04-15 Simon Josefsson - - * lib/openpgp/pgp.c: Improve error messages. See - . - -2008-04-15 Simon Josefsson - - * doc/protocol/draft-ietf-tls-rsa-aes-gcm-03.txt: Add. - -2008-04-15 Simon Josefsson - - * NEWS, lib/x509/crq.c, src/certtool.c: Make gnutls_x509_crq_sign2 - set certificate request version if not set. - -2008-04-15 Simon Josefsson - - * NEWS, THANKS, lib/x509/crq.c: Improve documentation for - gnutls_x509_crq_sign2. Based on report from "John Brooks" - in - . - -2008-04-15 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2008-04-14 Simon Josefsson - - * doc/protocol/draft-rescorla-tls-suiteb-02.txt: Add. - -2008-04-14 Simon Josefsson - - * doc/protocol/draft-ietf-tls-ecc-new-mac-05.txt: Add. - -2008-04-14 Simon Josefsson - - * ChangeLog: Generated. - -2008-04-14 Simon Josefsson - - * NEWS: Version 2.3.5. - -2008-04-14 Simon Josefsson - - * NEWS: Add. - -2008-04-14 Simon Josefsson - - * NEWS: Add. - -2008-04-14 Simon Josefsson - - * NEWS: Add. - -2008-04-13 Simon Josefsson - - * src/cli.c, src/tls_test.c: Rely on sys/socket.h for SHUT_*. - -2008-04-13 Simon Josefsson - - * lgl/m4/sys_socket_h.m4, lgl/sys_socket.in.h: Update gnulib files. - -2008-04-13 Simon Josefsson - - * lgl/Makefile.am, lgl/gc-libgcrypt.c, lgl/m4/gnulib-cache.m4: - Update gnulib files. - -2008-04-13 Simon Josefsson - - * lgl/m4/gnulib-cache.m4, lgl/override/lib/gc-libgcrypt.c.diff: - Quick fix for SHA-224 and old libgcrypt's. - -2008-04-13 Simon Josefsson - - * NEWS: Add. - -2008-04-13 Simon Josefsson - - * NEWS: Add. - -2008-04-13 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2008-04-13 Simon Josefsson - - * lib/random.h: Fix warnings. - -2008-04-13 Simon Josefsson - - * cfg.mk: Typo. - -2008-04-13 Simon Josefsson - - * po/Makevars: We don't need --no-location any more, git stores - *.po.in's. - -2008-04-13 Simon Josefsson - - * Makefile.am, cfg.mk: Translation fixes. - -2008-04-13 Simon Josefsson - - * po/de.po, po/de.po.in, po/ms.po, po/ms.po.in, po/nl.po, - po/nl.po.in, po/pl.po, po/pl.po.in, po/sv.po, po/sv.po.in: Improve - translation handling to avoid git conflicts. - -2008-04-13 Simon Josefsson - - * GNUmakefile, build-aux/gnupload, gl/fseeko.c, gl/getdelim.c, - gl/m4/eoverflow.m4, gl/m4/gnulib-common.m4, gl/m4/gnulib-comp.m4, - gl/m4/include_next.m4, lgl/gc-gnulib.c, lgl/m4/gc-random.m4, - lgl/m4/gnulib-common.m4, lgl/m4/gnulib-comp.m4, - lgl/m4/include_next.m4, lgl/m4/stdint.m4, lgl/m4/vasnprintf.m4, - lgl/snprintf.c, lgl/vasnprintf.c, lgl/vasprintf.c, lgl/wchar.in.h: - Update gnulib files. - -2008-04-13 Simon Josefsson - - * doc/manpages/Makefile.am: Cosmetic. - -2008-04-13 Simon Josefsson - - * doc/manpages/Makefile.am: Whitespace fix. - -2008-04-13 Simon Josefsson - - * doc/manpages/Makefile.am: Improve APIMANS/SRPMANS, to make it - easier to understand changes. - -2008-04-13 Simon Josefsson - - * NEWS: Add. - -2008-04-13 Simon Josefsson - - * configure.in: Fix test. - -2008-04-13 Simon Josefsson - - * configure.in: Don't bother checking for --output-def if shared - libraries are disabled. Based on report from Massimo Gaspari - in - . - -2008-04-13 Simon Josefsson - - * NEWS, THANKS, doc/gnutls.texi: Document how to generate CRLs. - -2008-04-13 Simon Josefsson - - * ChangeLog: Generated. - -2008-04-13 Simon Josefsson - - * NEWS: Version 2.3.4.netconf.0. - -2008-04-13 Simon Josefsson - - * Makefile.am: Fix release target. - -2008-04-13 Simon Josefsson - - * configure.in: Bump version. - -2008-04-13 Simon Josefsson - - * doc/examples/ex-client-psk.c: Typo. - -2008-04-13 Simon Josefsson - - * NEWS: Add. - -2008-04-13 Simon Josefsson - - * lib/gnutls_psk_netconf.c: Typo. - -2008-04-13 Simon Josefsson - - * includes/gnutls/gnutls.h.in: Typo. - -2008-04-13 Nikos Mavrogiannopoulos - - * includes/gnutls/openpgp.h: changed api. - -2008-04-12 Simon Josefsson - - * doc/examples/ex-serv-psk.c: Doc fix. - -2008-04-12 Simon Josefsson - - * NEWS: Add. - -2008-04-12 Simon Josefsson - - * doc/examples/ex-client-psk.c, doc/examples/ex-serv-psk.c: Add, PSK - self test. - -2008-04-12 Simon Josefsson - - * lib/gnutls_psk_netconf.c: Typo. - -2008-04-12 Simon Josefsson - - * doc/examples/Makefile.am: Add ex-serv-psk. - -2008-04-12 Nikos Mavrogiannopoulos - - * src/cli.c: get_auth_subkey has one more parameter. - -2008-04-12 Nikos Mavrogiannopoulos - - * lib/opencdk/pubkey.c: return the size of the required buffer to - hold the data - -2008-04-12 Nikos Mavrogiannopoulos - - * lib/openpgp/output.c: Deallocate memory from parameters only when - function run was successful. - -2008-04-12 Nikos Mavrogiannopoulos - - * lib/gnutls_openpgp.c, lib/openpgp/pgp.c: Added a flag in - get_auth_subkey() to work for all use cases - -2008-04-10 Nikos - - * lib/openpgp/pgp.c: do not return any subkey if an authentication - subkey is not found - -2008-04-10 Nikos - - * lib/openpgp/extras.c, lib/openpgp/pgp.c, lib/openpgp/privkey.c: - corrected bug in openpgp import when data is of size zero. Reported - by Daniel Kahn - -2008-04-08 Simon Josefsson - - * lib/gnutls_psk_netconf.c: Fix mem leak on errors. - -2008-04-08 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2008-04-08 Simon Josefsson - - * tests/netconf-psk.c: Fix bugs. - -2008-04-08 Simon Josefsson - - * lib/gnutls_psk_netconf.c: Fix bugs. - -2008-04-08 Simon Josefsson - - * tests/netconf-psk.c: Starting pointer for NETCONF-PSK support. - -2008-04-08 Simon Josefsson - - * NEWS, includes/gnutls/gnutls.h.in, lib/Makefile.am, - lib/gnutls_psk_netconf.c, tests/Makefile.am: Starting pointer for - NETCONF-PSK support. - -2008-04-04 Nikos - - * lib/openpgp/pgp.c, lib/openpgp/privkey.c: Fail at import stage if - a non proper certificate is loaded. - -2008-04-04 Simon Josefsson - - * doc/protocol/draft-nir-tls-eap-03.txt: Add. - -2008-04-04 Simon Josefsson - - * doc/protocol/draft-ietf-netconf-tls-01.txt: Add. - -2008-04-03 Simon Josefsson - - * NEWS: Add. - -2008-04-03 Simon Josefsson - - * lib/auth_psk_passwd.c: (_gnutls_psk_pwd_find_entry): Call fclose after fopen. Tiny patch - from Laurence Withers , see - - . - -2008-04-03 Simon Josefsson - - * : commit 117152d4c91e1c01055eedada1412ec763e5196b Author: Simon - Josefsson Date: Thu Apr 3 09:40:01 2008 - +0200 - -2008-04-02 Nikos - - * NEWS: documented the openpgp updates. - -2008-04-02 Nikos - - * doc/manpages/certtool.1: added the openpgp functionality to the - manpage. - -2008-04-02 Nikos - - * lib/openpgp/privkey.c: Corrected exporting the DSA secret key - parameters. - -2008-04-02 Nikos - - * lib/openpgp/openpgp_int.h, lib/openpgp/pgp.c, - lib/openpgp/privkey.c: Add proper ARMOR header in private keys. - -2008-04-02 Nikos - - * lib/openpgp/output.c, lib/openpgp/pgp.c, lib/openpgp/privkey.c: - Consistent printing of revoked status. Consistent printing of key - algorithm. - -2008-04-02 Nikos - - * lib/gnutls_errors.c: Added revoked UID error string. - -2008-04-02 Nikos - - * lib/openpgp/output.c, lib/openpgp/privkey.c: Print revoked names. - -2008-04-02 Simon Josefsson - - * doc/protocol/draft-ietf-tls-ecdhe-psk-01.txt: Add. - -2008-03-30 Simon Josefsson - - * lib/crypto.h: Fix warnings. - -2008-03-30 Simon Josefsson - - * lgl/Makefile.am, lgl/gc-libgcrypt.c, lgl/gc.h, - lgl/m4/stdlib_h.m4, lgl/stdlib.in.h: Update gnulib files. - -2008-03-29 Nikos - - * NEWS: Documented the --priority option to gnutls-cli and - gnutls-serv. - -2008-03-29 Nikos - - * doc/manpages/gnutls-cli.1, doc/manpages/gnutls-serv.1: documented - the --priority option. - -2008-03-29 Nikos - - * NEWS: corrected the news entry. - -2008-03-29 Nikos - - * lib/auth_cert.c: Reverted to gnutls 2.2 behaviour of allowing an - empty key (for PKCS #11). Reported by Joe Orton. - -2008-03-29 Nikos - - * NEWS: gnutls_crypto_rnd_register: ADDED - -2008-03-29 Nikos - - * : commit 0b37eef0f6b6626d5e4b5936bbc6f012416ef61a Author: Nikos - Date: Sat Mar 29 12:01:27 2008 +0200 - -2008-03-29 Simon Josefsson - - * doc/protocol/draft-badra-tls-psk-new-mac-aes-gcm-00.txt, - doc/protocol/draft-badra-tls-psk-new-mac-aes-gcm-01.txt: Add. - -2008-03-28 Simon Josefsson - - * lgl/gc-libgcrypt.c, lgl/gc.h: Update gnulib files. - -2008-03-28 Simon Josefsson - - * NEWS: Entries added at wrong place, move them. - -2008-03-28 Simon Josefsson - - * NEWS, includes/gnutls/gnutls.h.in: Avoid defining SHA-224 MAC - since it isn't specified in TLS 1.2. - -2008-03-28 Simon Josefsson - - * NEWS, includes/gnutls/gnutls.h.in: Add SHA-224 enum types. - -2008-03-28 Simon Josefsson - - * gl/gnulib.mk: Update gnulib files. - -2008-03-27 Simon Josefsson - - * doc/protocol/draft-ietf-tls-rfc4346-bis-10.txt: Add. - -2008-03-25 Simon Josefsson - - * GNUmakefile, build-aux/GNUmakefile, build-aux/maint.mk, cfg.mk, - gl/gnulib.mk, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, - gl/m4/lib-link.m4, lgl/Makefile.am, lgl/m4/gnulib-cache.m4, - lgl/m4/gnulib-comp.m4, lgl/m4/lib-link.m4, maint-cfg.mk, maint.mk: - Update gnulib files. - -2008-03-20 Ludovic Courtès - - * configure.in, guile/src/Makefile.am: Check whether - `-fgnu89-inline' is supported before using it. * configure.in: Check for `-fgnu89-inline', define Automake - conditional `HAVE_GCC_GNU89_INLINE_OPTION'. * guile/src/Makefile.am (AM_CFLAGS): Only use `-fgnu89-inline' when `HAVE_GCC_GNU89_INLINE_OPTION' is true. - -2008-03-19 Simon Josefsson - - * libextra/gnutls_extra.c: Fix LZO build failure. - -2008-03-19 Ludovic Courtès - - * guile/src/Makefile.am: guile: Compile with `-fgnu89-inline'. * guile/src/Makefile.am (AM_CFLAGS): Add `-fgnu89-inline' when `HAVE_GCC' is true. This works around the fact that GnuTLS is compiled with `-std=c99', while Guile and GMP expect GNU inline semantics, which defer from C99 inline semantics. - -2008-03-19 Ludovic Courtès - - * guile/src/core.c: guile: Don't declare `inline' functions that use - `alloca ()'. * guile/src/core.c (set_certificate_file): Remove `inline' keyword. - -2008-03-19 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2008-03-19 Simon Josefsson - - * ChangeLog: Generated. - -2008-03-19 Simon Josefsson - - * includes/Makefile.am: Dist gnutls/crypto.h. - -2008-03-19 Simon Josefsson - - * NEWS: Version 2.3.4. - -2008-03-19 Simon Josefsson - - * NEWS: Add. - -2008-03-19 Simon Josefsson - - * NEWS: Fix. - -2008-03-19 Simon Josefsson - - * NEWS: Add. - -2008-03-19 Simon Josefsson - - * doc/examples/ex-client-resume.c, lib/crypto.c, - lib/gnutls_compress_int.c, lib/gnutls_extensions.c, - lib/gnutls_handshake.c, lib/gnutls_openpgp.c, lib/openpgp/extras.c, - lib/openpgp/output.c, lib/openpgp/pgp.c, lib/openpgp/privkey.c, - libextra/gnutls_extra.c, libextra/gnutls_ia.c, src/certtool.c, - src/serv.c: Fix gcc warnings. - -2008-03-19 Simon Josefsson - - * lib/x509/x509.c: Fix warning. - -2008-03-16 Nikos - - * lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, - lib/gnutls_hash_int.c, lib/gnutls_hash_int.h: fixes for all tests to - succeed. - -2008-03-16 Nikos - - * includes/gnutls/crypto.h: updated - -2008-03-16 Nikos - - * lib/gnutls_cipher.c, lib/gnutls_cipher_int.c, - lib/gnutls_cipher_int.h, lib/gnutls_constate.c, - lib/gnutls_handshake.c, lib/gnutls_hash_int.c, - lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_sig.c, - lib/gnutls_srp.c, lib/gnutls_state.c, lib/gnutls_ui.c, - lib/x509/pkcs12.c, lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, - lib/x509/sign.c, lib/x509/verify.c, lib/x509/x509.c: several fixes - in the cipher (register) interface and added hash. - -2008-03-16 Nikos - - * NEWS, includes/gnutls/crypto.h, includes/gnutls/gnutls.h.in, - lib/Makefile.am, lib/crypto.c, lib/crypto.h, lib/gnutls_cipher.c, - lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, - lib/gnutls_constate.c, lib/gnutls_errors.c, lib/gnutls_int.h, - lib/gnutls_state.c: Added functionality to override (register) a - cipher. Initial functionality for MAC and digest algorithms. - -2008-03-11 Simon Josefsson - - * lib/openpgp/gnutls_openpgp.h: Remove things already in - includes/gnutls/openpgp.h. - -2008-03-11 Simon Josefsson - - * lib/gnutls_openpgp.c, lib/opencdk/Makefile.am, - lib/opencdk/armor.c, lib/opencdk/context.h, lib/opencdk/filters.h, - lib/opencdk/hash.c, lib/opencdk/kbnode.c, lib/opencdk/keydb.c, - lib/opencdk/literal.c, lib/opencdk/main.c, lib/opencdk/main.h, - lib/opencdk/misc.c, lib/opencdk/new-packet.c, - lib/opencdk/opencdk.h, lib/opencdk/packet.h, lib/opencdk/pubkey.c, - lib/opencdk/read-packet.c, lib/opencdk/seskey.c, - lib/opencdk/sig-check.c, lib/opencdk/stream.c, - lib/opencdk/stream.h, lib/opencdk/types.h, lib/opencdk/verify.c, - lib/opencdk/write-packet.c, lib/openpgp/Makefile.am, - lib/openpgp/compat.c, lib/openpgp/extras.c, lib/openpgp/pgp.c, - lib/openpgp/pgpverify.c, lib/openpgp/privkey.c: Clean up license - headers for OpenPGP code. According to Nikos they are now licensed - under the LGPL, see: - - http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/2658/focus=2659 - -2008-03-11 Simon Josefsson - - * lib/Makefile.am: Typo. - -2008-03-11 Simon Josefsson - - * gl/gnulib.mk, gl/m4/gnulib-comp.m4, gl/m4/include_next.m4, - gl/m4/stdarg.m4, gl/stdarg.in.h, lgl/Makefile.am, - lgl/m4/absolute-header.m4, lgl/m4/gnulib-comp.m4, - lgl/m4/include_next.m4: Update gnulib files. - -2008-03-10 Simon Josefsson - - * NEWS: Add. - -2008-03-10 Simon Josefsson - - * build-aux/gendocs.sh, gl/m4/fseeko.m4: Update gnulib files. - -2008-03-10 Simon Josefsson - - * includes/gnutls/gnutls.h.in: Finish renaming of export - x509/openpgp functions. In particular, - gnutls_certificate_get_x509_cas, gnutls_certificate_get_x509_crls, - and gnutls_certificate_get_openpgp_keyring. - -2008-03-10 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2008-03-10 Simon Josefsson - - * ChangeLog: Generated. - -2008-03-10 Simon Josefsson - - * libextra/Makefile.am: Revert - a3e4759117cee5d756475215437a440dc12fcc6c because it breaks libtool - v2.2. ../libtool: line 4398: cd: ../../lib/.libs: No such file or - directory libtool: link: cannot determine absolute directory name of - `../../lib/.libs' - -2008-03-10 Simon Josefsson - - * NEWS: Version 2.3.3. - -2008-03-10 Simon Josefsson - - * NEWS: Fix. - -2008-03-10 Simon Josefsson - - * NEWS: Fix. - -2008-03-10 Simon Josefsson - - * NEWS, doc/reference/Makefile.am, libextra/Makefile.am, - libextra/gnutls_extra.c, libextra/gnutls_extra.h: Remove - gnutls_extra.h, not needed anymore. Fixes build failure in libextra - that looked for opencdk.h (via auth_cert.h). Reported by Roman - Bogorodskiy . - -2008-03-08 Nikos - - * : commit cf8fb4bca34ec865959f1544e395b5566f2449ac Author: Nikos - Date: Sat Mar 8 02:06:25 2008 +0200 - -2008-03-07 Ludovic Courtès - - * guile/src/Makefile.am: guile: Propagate Guile's CPPFLAGS to - `guile-snarf'. - -2008-03-07 Ludovic Courtès - - * guile/src/make-enum-header.scm, guile/src/utils.h: guile: Include - , not "config.h". - -2008-03-07 Simon Josefsson - - * NEWS: Add. - -2008-03-07 Simon Josefsson - - * THANKS: Add. - -2008-03-06 Simon Josefsson - - * NEWS: Add. - -2008-03-06 Simon Josefsson - - * doc/reference/gnutls-docs.sgml: Add index. - -2008-03-06 Simon Josefsson - - * lib/x509_b64.c: Doc fixes. - -2008-03-06 Simon Josefsson - - * lib/gnutls_alert.c: Doc fix. - -2008-03-06 Simon Josefsson - - * NEWS, includes/gnutls/gnutls.h.in, lib/gnutls_str.c: Fix - gnutls_hex2bin prototype. - -2008-03-06 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2008-03-06 Simon Josefsson - - * src/cli.c: Fix warnings. - -2008-03-06 Simon Josefsson - - * src/select.c: Avoid confusing gtk-doc. - -2008-03-06 Simon Josefsson - - * lib/opencdk/kbnode.c: Doc fixes. - -2008-03-06 Simon Josefsson - - * lib/opencdk/stream.c, lib/opencdk/verify.c: Doc fixes. - -2008-03-06 Simon Josefsson - - * lib/openpgp/privkey.c: Doc fixes. - -2008-03-06 Simon Josefsson - - * lib/openpgp/pgp.c, lib/openpgp/privkey.c: Doc fixes. - -2008-03-06 Simon Josefsson - - * lib/gnutls_algorithms.c, lib/gnutls_state.c: Doc fixes. - -2008-03-06 Simon Josefsson - - * lib/gnutls_alert.c, lib/gnutls_algorithms.c, lib/gnutls_record.c, - lib/gnutls_state.c: Doc fixes. - -2008-03-06 Simon Josefsson - - * lib/gnutls_ui.c: Doc fix. - -2008-03-06 Simon Josefsson - - * lib/gnutls_db.c: Doc fix. - -2008-03-06 Simon Josefsson - - * lib/gnutls_session.c: Doc fix. - -2008-03-06 Simon Josefsson - - * lib/gnutls_global.c: Doc fix. - -2008-03-06 Simon Josefsson - - * lib/gnutls_srp.c: Doc fix. - -2008-03-06 Simon Josefsson - - * lib/gnutls_auth.c, lib/gnutls_openpgp.c, lib/gnutls_srp.c, - libextra/gnutls_ia.c: Doc fixes. - -2008-03-06 Simon Josefsson - - * m4/pkg.m4: Added, needed by new gtk-doc.m4. - -2008-03-06 Simon Josefsson - - * doc/reference/Makefile.am: Update gtk-doc Makefile.am to latest - examples. - -2008-03-06 Simon Josefsson - - * doc/reference/tmpl/gnutls-unused.sgml, gtk-doc.make: Update - gtk-doc makefile, this version allows us to get rid of tmpl/. - -2008-03-06 Simon Josefsson - - * m4/gtk-doc.m4: Update gtk-doc.m4. - -2008-03-06 Simon Josefsson - - * lib/gnutls_alert.c, lib/gnutls_cert.c, lib/gnutls_global.c, - lib/gnutls_psk.c, lib/gnutls_record.c, lib/gnutls_srp.c, - lib/gnutls_state.c, lib/gnutls_ui.c, lib/gnutls_x509.c: Doc fix, - remove verbose 'This function ...' Improves looks in 'apropos' - output. - -2008-03-06 Simon Josefsson - - * lib/gnutls_anon_cred.c, lib/gnutls_db.c, lib/gnutls_dh_primes.c, - lib/gnutls_handshake.c, lib/gnutls_openpgp.c, lib/gnutls_psk.c, - lib/gnutls_rsa_export.c, lib/gnutls_state.c, lib/gnutls_ui.c, - lib/x509_b64.c: Doc fix, remove verbose 'This function will' stuff. - Improves man page look in 'apropos'. - -2008-03-06 Simon Josefsson - - * lgl/Makefile.am, lgl/m4/func.m4, lgl/m4/gnulib-cache.m4, - lgl/m4/gnulib-comp.m4: Use func module, to get __func__. - -2008-03-05 Simon Josefsson - - * NEWS: Add. - -2008-03-05 Simon Josefsson - - * NEWS, src/common.c: Print DH parameters of session. - -2008-03-05 Simon Josefsson - - * gl/getaddrinfo.c, gl/getdelim.c, lgl/alloca.in.h, - lgl/gc-gnulib.c, lgl/xsize.h: Update gnulib files. - -2008-02-28 Simon Josefsson - - * guile/src/utils.c: Use __func__ instead of __FUNCTION__. Reported - by Tim Mooney, see . A - gnulib module to make sure __func__ is available would be nice. - -2008-02-27 Simon Josefsson - - * NEWS: Add. - -2008-02-27 Simon Josefsson - - * lib/x509/x509_write.c: Doc fix. - -2008-02-27 Simon Josefsson - - * NEWS, lib/gnutls_x509.c: Optimize adding many trusted - certificates. See - - . - -2008-02-26 Simon Josefsson - - * lib/x509/x509_write.c: Doc fixes. - -2008-02-26 Simon Josefsson - - * AUTHORS: Add. - -2008-02-26 Simon Josefsson - - * AUTHORS: Add. - -2008-02-26 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2008-02-26 Simon Josefsson - - * Makefile.am: Fix release target. - -2008-02-26 Simon Josefsson - - * ChangeLog: Generated. - -2008-02-26 Simon Josefsson - - * NEWS: Version 2.3.2. - -2008-02-26 Simon Josefsson - - * tests/openpgpself.c: Force success. - -2008-02-26 Simon Josefsson - - * NEWS: Add. - -2008-02-26 Simon Josefsson - - * doc/reference/Makefile.am, lib/Makefile.am, lib/gnutls_db.c, - lib/gnutls_session.h: Remove empty gnutls_session.h. - -2008-02-26 Simon Josefsson - - * lib/x509/x509_int.h: align comments - -2008-02-26 Simon Josefsson - - * lib/x509/x509_int.h: Pull in gnutls/pkcs12.h instead of - duplicating stuff. - -2008-02-26 Simon Josefsson - - * lib/x509/Makefile.am, lib/x509/pkcs12.c, lib/x509/pkcs12.h, - lib/x509/pkcs12_bag.c, lib/x509/privkey_pkcs8.c, - lib/x509/x509_int.h: Move lib/x509/pkcs12.h stuff to x509_int.h. - -2008-02-26 Simon Josefsson - - * doc/reference/Makefile.am, lib/gnutls_cert.c, - lib/gnutls_dh_primes.c, lib/gnutls_pk.c, lib/gnutls_x509.c, - lib/x509/Makefile.am, lib/x509/common.c, lib/x509/crl_write.c, - lib/x509/crq.c, lib/x509/extensions.c, lib/x509/mpi.c, - lib/x509/mpi.h, lib/x509/pkcs12.c, lib/x509/privkey.c, - lib/x509/privkey_pkcs8.c, lib/x509/sign.c, lib/x509/verify.c, - lib/x509/x509.c, lib/x509/x509_int.h, lib/x509/x509_write.c: Move - mpi.h stuff to x509_int.h. - -2008-02-26 Simon Josefsson - - * doc/reference/Makefile.am, lib/gnutls_str.c, lib/gnutls_str.h, - lib/openpgp/pgp.c, lib/x509/Makefile.am, lib/x509/rfc2818.h, - lib/x509/rfc2818_hostname.c: Move rfc2818.h hostname comparison to - gnutls_str.h and update callers. - -2008-02-26 Simon Josefsson - - * libextra/openssl_compat.c: gnutls_int includes config.h, no need - to do it twice. - -2008-02-26 Simon Josefsson - - * libextra/openssl_compat.c: Need gnutls_int.h for mpi_t and stuff - (now in lib/x509/x509_int.h). - -2008-02-26 Simon Josefsson - - * doc/reference/Makefile.am, lib/x509/Makefile.am, - lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/extensions.c, - lib/x509/extensions.h, lib/x509/privkey.c, - lib/x509/privkey_pkcs8.c, lib/x509/x509.c, lib/x509/x509_int.h, - lib/x509/x509_write.c: Move extensions.h stuff to x509_int.h. - -2008-02-26 Simon Josefsson - - * doc/reference/Makefile.am, lib/gnutls_rsa_export.c, - lib/gnutls_x509.c, lib/x509/Makefile.am, lib/x509/pkcs12_bag.c, - lib/x509/privkey.h, lib/x509/privkey_pkcs8.c, lib/x509/x509.c, - lib/x509/x509_int.h: Move privkey.h stuff to x509_int.h. - -2008-02-26 Simon Josefsson - - * doc/reference/Makefile.am, lib/gnutls_x509.c, - lib/openpgp/pgpverify.c, lib/x509/Makefile.am, lib/x509/privkey.c, - lib/x509/sign.c, lib/x509/verify.c, lib/x509/verify.h, - lib/x509/x509.c, lib/x509/x509_int.h: Move verify.h stuff to - x509_int.h. - -2008-02-26 Simon Josefsson - - * doc/reference/Makefile.am, lib/gnutls_x509.c, - lib/x509/Makefile.am, lib/x509/pkcs7.c, lib/x509/pkcs7.h, - lib/x509/x509_int.h: Move pkcs7.h stuff to x509_int.h. - -2008-02-26 Simon Josefsson - - * doc/reference/Makefile.am, lib/x509/Makefile.am, lib/x509/dsa.c, - lib/x509/dsa.h, lib/x509/privkey.c, lib/x509/x509_int.h: Move dsa.h - stuff to x509_int.h. - -2008-02-26 Simon Josefsson - - * doc/reference/Makefile.am, lib/x509/Makefile.am, lib/x509/crl.c, - lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/dn.c, lib/x509/dn.h, - lib/x509/pkcs12.c, lib/x509/pkcs7.c, lib/x509/privkey.c, - lib/x509/privkey_pkcs8.c, lib/x509/rfc2818_hostname.c, - lib/x509/sign.c, lib/x509/verify.c, lib/x509/x509.c, - lib/x509/x509_int.h, lib/x509/x509_write.c, - libextra/openssl_compat.c: Move dn.h stuff to x509_int.h. - -2008-02-26 Simon Josefsson - - * doc/reference/Makefile.am, lib/x509/Makefile.am, - lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/privkey.c, - lib/x509/sign.c, lib/x509/sign.h, lib/x509/x509_int.h, - lib/x509/x509_write.c: Move sign.h stuff to x509_int.h. - -2008-02-26 Simon Josefsson - - * lib/openpgp/privkey.c: No need for rfc2818.h. - -2008-02-26 Simon Josefsson - - * lib/x509/x509_int.h: Doc fixes. - -2008-02-26 Simon Josefsson - - * lib/x509/x509_int.h: Remove stuff already in - includes/gnutls/x509.h. - -2008-02-26 Simon Josefsson - - * .gitignore: [no log message] - -2008-02-26 Simon Josefsson - - * Makefile.am, build-aux/gnupload, gl/gnulib.mk, - gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4: Use gnupload. - -2008-02-26 Simon Josefsson - - * doc/protocol/draft-ietf-tls-rfc4366-bis-02.txt: Add. - -2008-02-25 Simon Josefsson - - * doc/reference/Makefile.am, lib/x509/Makefile.am, - lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/crq.h, - lib/x509/x509_int.h, lib/x509/x509_write.c: Merge crq.h into - x509_int.h, avoid one trivial header file. - -2008-02-25 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2008-02-25 Simon Josefsson - - * lib/x509/Makefile.am: Rename x509.h to x509_int.h. - -2008-02-25 Simon Josefsson - - * NEWS: Add. - -2008-02-25 Simon Josefsson - - * lib/auth_cert.h, lib/gnutls_cert.c, lib/gnutls_cert.h, - lib/gnutls_rsa_export.c, lib/gnutls_x509.c, lib/x509/crl.c, - lib/x509/extensions.c, lib/x509/mpi.c, lib/x509/mpi.h, - lib/x509/output.c, lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, - lib/x509/rfc2818_hostname.c, lib/x509/sign.c, lib/x509/verify.c, - lib/x509/verify.h, lib/x509/x509.c, lib/x509/x509.h, - lib/x509/x509_int.h: Rename lib/x509/x509.h to x509_int.h. Fixes - name-space collision that confuses GTK-DOC with - includes/gnutls/x509.h. - -2008-02-25 Simon Josefsson - - * lib/auth_cert.h, lib/openpgp/Makefile.am, lib/openpgp/compat.c, - lib/openpgp/extras.c, lib/openpgp/openpgp.h, - lib/openpgp/openpgp_int.h, lib/openpgp/pgp.c, - lib/openpgp/pgpverify.c, lib/openpgp/privkey.c: Rename - lib/openpgp/openpgp.h to openpgp_int.h. Fixes name-space collision - that confuses GTK-DOC with includes/gnutls/openpgp.h. - -2008-02-25 Simon Josefsson - - * doc/reference/Makefile.am: Change DOC_SOURCE_DIR, needed for - GTK-DOC to have comments for variables. - -2008-02-25 Simon Josefsson - - * lib/gnutls_int.h: Remove unused defines. - -2008-02-25 Simon Josefsson - - * tests/moredn.c: Added, lost part of Joe's original - gnutls_x509_dn_export patch. - -2008-02-25 Simon Josefsson - - * lgl/Makefile.am, lgl/m4/time_r.m4, lgl/m4/unistd_h.m4, - lgl/unistd.in.h: Update gnulib files. - -2008-02-25 Simon Josefsson - - * doc/protocol/draft-badra-tls-password-ext-01.txt: Add. - -2008-02-24 Nikos - - * NEWS, doc/manpages/Makefile.am, includes/gnutls/x509.h, - lib/x509/common.c, lib/x509/common.h, lib/x509/dn.c, - tests/Makefile.am: Added gnutls_x509_dn_export(). Patch by Joe - Orton. - -2008-02-21 Nikos - - * lib/gnutls_cert.c: _export_ -> _get_ - -2008-02-21 Simon Josefsson - - * NEWS: Add. - -2008-02-21 Simon Josefsson - - * tests/openpgpself.c: Don't use credentials from files (causes - problems with srcdir!=builddir). - -2008-02-21 Simon Josefsson - - * NEWS, configure.in: Bump version. - -2008-02-21 Simon Josefsson - - * ChangeLog: Generated. - -2008-02-21 Simon Josefsson - - * NEWS: Version 2.3.1. - -2008-02-21 Simon Josefsson - - * NEWS: Add. - -2008-02-21 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2008-02-21 Simon Josefsson - - * NEWS: Fixes. - -2008-02-21 Simon Josefsson - - * NEWS: Typo. - -2008-02-21 Simon Josefsson - - * NEWS: Fix. - -2008-02-21 Simon Josefsson - - * NEWS, includes/gnutls/compat.h, includes/gnutls/gnutls.h.in, - lib/x509/output.c, src/certtool.c, src/serv.c: Use better names in - gnutls_certificate_print_formats_t. - -2008-02-21 Simon Josefsson - - * NEWS: Mention new APIs. - -2008-02-21 Simon Josefsson - - * includes/gnutls/openpgp.h: Drop gnutls_openpgp_crt_get_id (handled - by compat.h). - -2008-02-21 Simon Josefsson - - * NEWS: Fix. - -2008-02-21 Simon Josefsson - - * NEWS: Credit. - -2008-02-21 Simon Josefsson - - * NEWS, includes/gnutls/compat.h, lib/openpgp/pgp.c: Cleanup - gnutls_openpgp_crt_get_id vs gnutls_openpgp_crt_get_key_id. - -2008-02-21 Simon Josefsson - - * includes/gnutls/gnutls.h.in: Typo. - -2008-02-21 Simon Josefsson - - * includes/gnutls/gnutls.h.in, includes/gnutls/openpgp.h: Make it - build. - -2008-02-21 Simon Josefsson - - * doc/protocol/draft-ietf-tls-extractor-01.txt, - doc/protocol/draft-mavrogiannopoulos-rfc5081bis-00.txt: Add. - -2008-02-20 Nikos - - * NEWS: removed function - -2008-02-20 Nikos - - * NEWS, includes/gnutls/gnutls.h.in, lib/gnutls_cert.c: Added - gnutls_certificate_export_x509_cas and other functions to export - elements from the certificate credentials structure. - -2008-02-19 Nikos - - * lib/auth_cert.h, lib/openpgp/openpgp.h: changes to compile with - ENABLE_OPENPGP undef. - -2008-02-19 Nikos - - * lib/openpgp/pgp.c: do not return more than the available names. - -2008-02-19 Nikos - - * lib/openpgp/output.c: corrected bug that prevented printing the - names. - -2008-02-19 Nikos - - * tests/openpgp_test.c, tests/openpgpself.c: some updates - -2008-02-19 Nikos - - * tests/Makefile.am, tests/openpgpself.c: added self test for - openpgp connection - -2008-02-19 Nikos - - * NEWS, includes/gnutls/x509.h, lib/x509/dn.c, lib/x509/x509.c, - tests/Makefile.am, tests/x509dn.c: Added - gnutls_x509_dn_import/init/deinit() to access raw DER DN. Patch by - Joe Orton. - -2008-02-19 Nikos - - * lib/auth_cert.c, lib/gnutls_cert.c, lib/gnutls_openpgp.c, - lib/openpgp/gnutls_openpgp.h: better usage of gnutls_openpgp_keyid_t - -2008-02-19 Nikos - - * lib/auth_cert.c, lib/gnutls_openpgp.c, lib/openpgp/extras.c, - lib/openpgp/output.c, lib/openpgp/pgpverify.c, - lib/openpgp/privkey.c: copyright 2008 - -2008-02-18 Nikos - - * doc/examples/ex-serv-pgp.c, includes/gnutls/gnutls.h.in, - includes/gnutls/openpgp.h, lib/auth_cert.c, lib/gnutls_cert.c, - lib/gnutls_openpgp.c, lib/openpgp/extras.c, - lib/openpgp/gnutls_openpgp.h, lib/openpgp/openpgp.h, - lib/openpgp/output.c, lib/openpgp/pgp.c, lib/openpgp/pgpverify.c, - lib/openpgp/privkey.c, src/certtool.c, src/cli-gaa.c, src/cli.c, - src/serv-gaa.c, tests/openpgp/keyring.c: pgp_keyid_t is now - compatible with the 2.2 key id. - -2008-02-18 Nikos - - * : commit 8784572575208f8755087125b168bb0a8832cee4 Author: Nikos - Date: Mon Feb 18 17:58:24 2008 +0200 - -2008-02-18 Simon Josefsson - - * README: Don't mention SSL/TLS versions here. Some minor other - fixes. - -2008-02-18 Simon Josefsson - - * includes/gnutls/openpgp.h: For compatibility. - -2008-02-18 Simon Josefsson - - * lib/openpgp/openpgp.h: Remove all external APIs already declared - in includes/gnutls/openpgp.h. - -2008-02-18 Simon Josefsson - - * NEWS, includes/gnutls/compat.h, lib/openpgp/pgp.c: Re-add - gnutls_openpgp_crt_get_id to avoid breaking ABI. - -2008-02-18 Simon Josefsson - - * NEWS: Mention gnutls_openpgp_keyid_t. - -2008-02-18 Simon Josefsson - - * lgl/m4/vasnprintf.m4, lgl/vasnprintf.c: Update gnulib files. - -2008-02-17 Nikos - - * lib/x509/x509.c: corrected string handling in parse_general_name. - Thanks to Andreas Metzler for pointing out. - -2008-02-17 Nikos - - * NEWS, lib/gnutls_int.h, lib/gnutls_ui.c, lib/gnutls_x509.c: - Increased the default certificate verification chain limits and - allowed for checks without limitation. - -2008-02-17 Nikos - - * lib/gnutls_priority.c: corrected previous fix in priorities - handling. - -2008-02-17 Nikos - - * NEWS, lib/auth_dh_common.c, lib/gnutls_auth.c, - lib/gnutls_session.c, lib/gnutls_session_pack.c: Corrected memory - leaks in session resuming and DHE ciphersuites. Reported by Daniel - Stenberg. - -2008-02-15 Nikos - - * NEWS: documented the gnutls_x509_crt_get_subject_alt_name fix. - -2008-02-15 Nikos - - * lib/x509/x509.c: null terminate only printable strings. - -2008-02-14 Simon Josefsson - - * doc/protocol/draft-ietf-tls-des-idea-00.txt: Add. - -2008-02-13 Simon Josefsson - - * NEWS: Add. - -2008-02-12 Simon Josefsson - - * doc/protocol/draft-ietf-tls-ecc-new-mac-04.txt: Add. - -2008-02-12 Simon Josefsson - - * NEWS: Add. - -2008-02-12 Simon Josefsson - - * lib/auth_srp_sb64.c: Doc fixes, to clarify that srp_base64 != - base64. Based on discussion in - - . - -2008-02-10 Simon Josefsson - - * doc/protocol/draft-ietf-tls-ecc-new-mac-03.txt, - doc/protocol/draft-ietf-tls-rfc4346-bis-09.txt, - doc/protocol/draft-ietf-tls-rsa-aes-gcm-02.txt: Add. - -2008-02-07 Nikos - - * : commit 5178625a7e120fdf7b859f52848aa9cc69574268 Author: Nikos - Date: Thu Feb 7 18:15:26 2008 +0200 - -2008-02-06 Simon Josefsson - - * GNUmakefile, Makefile.am, maint-cfg.mk: Brace expansion is not - POSIX portable. - -2008-02-04 Simon Josefsson - - * NEWS: Add. - -2008-02-04 Simon Josefsson - - * src/cli.c: When --debug is given, also print libgcrypt RNG - information. - -2008-02-04 Simon Josefsson - - * NEWS, doc/gnutls.texi: Add 'On Record Padding' section. - -2008-02-04 Simon Josefsson - - * doc/gnutls.texi: Re-order indices so they are last in the PDF. - -2008-02-04 Simon Josefsson - - * NEWS: Merge in 2.2.1 release notes. - -2008-02-03 Simon Josefsson - - * lib/gnutls_cert.c: Make it compile. - -2008-02-03 Simon Josefsson - - * lib/defines.h: Drop SIZEOF_UNSIGNED_LONG_INT, it's done in - configure.in now. - -2008-02-03 Simon Josefsson - - * lgl/Makefile.am, lgl/m4/md4.m4, lgl/m4/md5.m4, lgl/m4/sha1.m4, - lgl/m4/unistd_h.m4, lgl/md2.c, lgl/md2.h, lgl/md4.c, lgl/md4.h, - lgl/md5.c, lgl/md5.h, lgl/sha1.c, lgl/sha1.h, lgl/unistd.in.h: - Update gnulib files. - -2008-02-01 Simon Josefsson - - * configure.in, lib/minitasn1/int.h, lib/minitasn1/libtasn1.h, - lib/minitasn1/structure.c: Update libtasn1 to 1.3. - -2008-01-31 Simon Josefsson - - * lgl/Makefile.am, lgl/m4/unistd_h.m4, lgl/unistd.in.h, - lgl/vasnprintf.c: Update gnulib files. - -2008-01-27 Nikos - - * src/certtool.c: some updates - -2008-01-27 Nikos - - * includes/gnutls/openpgp.h: new definitions - -2008-01-26 Nikos - - * : commit 2d73da902a2a983cf146d32e7528f8d5d3efc287 Author: Nikos - Date: Sat Jan 26 23:08:18 2008 +0200 - -2008-01-26 Simon Josefsson - - * doc/protocol/rfc5077.txt: Add. - -2008-01-26 Simon Josefsson - - * doc/protocol/draft-ietf-tls-rfc4346-bis-08.txt: Add. - -2008-01-25 Nikos - - * lib/gnutls_openpgp.c, lib/openpgp/extras.c: updates in openpgp - keyring handling. - -2008-01-25 Nikos - - * lib/opencdk/Makefile.am, lib/opencdk/keydb.c, - lib/opencdk/keydb.h, lib/opencdk/opencdk.h: Modified the search to - include a state. - -2008-01-25 Nikos - - * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, - src/certtool.gaa: print keyrings - -2008-01-23 Simon Josefsson - - * doc/manpages/Makefile.am: Simplify output. - -2008-01-23 Simon Josefsson - - * doc/manpages/Makefile.am: Fix paths. - -2008-01-19 Simon Josefsson - - * configure.in: Bump version so we are higher than gnutls 2.2.x but - remain compatible. This will avoid shared library name conflicts - with 2.2.x, and also that any 2.3.x libraries will always be - prefered over 2.2.x. - -2008-01-19 Simon Josefsson - - * build-aux/gendocs.sh, gl/error.h, lgl/Makefile.am, - lgl/gc-libgcrypt.c, lgl/m4/gnulib-comp.m4, lgl/m4/string_h.m4, - lgl/memmem.c, lgl/stdio.in.h, lgl/str-two-way.h, lgl/string.in.h, - lgl/vasnprintf.h: Update gnulib files. - -2008-01-17 Simon Josefsson - - * AUTHORS: Update Ludovic's e-mail. - -2008-01-17 Simon Josefsson - - * guile/tests/openpgp-auth.scm: Also test dhe-rsa. - -2008-01-15 Simon Josefsson - - * libextra/openpgp/Makefile.am, libextra/openpgp/compat.c, - libextra/openpgp/extras.c, libextra/openpgp/gnutls_openpgp.h, - libextra/openpgp/openpgp.h, libextra/openpgp/pgp.c, - libextra/openpgp/pgpverify.c, libextra/openpgp/privkey.c: Remove - openpgp files moved to lib/openpgp/. - -2008-01-15 Simon Josefsson - - * doc/Makefile.am: Fix pgp-api.texi move. - -2008-01-14 Simon Josefsson - - * doc/protocol/rfc2440.txt: Fix chmod. - -2008-01-14 Simon Josefsson - - * doc/protocol/draft-ietf-tls-rfc4366-bis-01.txt: Add. - -2008-01-14 Nikos - - * : commit c6093b9df165dfbfbce8922e2192eedba5303f08 Author: Nikos - Date: Mon Jan 14 21:08:18 2008 +0200 - -2008-01-14 Nikos - - * NEWS: documented more changes. - -2008-01-14 Nikos - - * tests/openpgp/keyring.c: changes for the new api - -2008-01-14 Simon Josefsson - - * lgl/Makefile.am, lgl/m4/alloca.m4, lgl/m4/gnulib-cache.m4, - lgl/m4/gnulib-comp.m4, lgl/m4/memmem.m4, lgl/string.in.h: Use - gnulib's memmem-simple instead. - -2008-01-14 Simon Josefsson - - * configure.in: Remove libextra/minilozo/Makefile. - -2008-01-14 Nikos - - * includes/gnutls/openpgp.h, lib/openpgp/privkey.c, src/certtool.c: - openpgp_privkey_export() has parameters to export encrypted secret - keys. Added for future compatibility. - -2008-01-13 Simon Josefsson - - * doc/protocol/draft-ietf-tls-rsa-aes-gcm-01.txt: Add. - -2008-01-13 Nikos - - * lib/gnutls_openpgp.c: use the first valid subkey if an - authentication subkey is not found. - -2008-01-13 Nikos - - * NEWS, includes/gnutls/compat.h, includes/gnutls/openpgp.h, - lib/openpgp/openpgp.h, lib/openpgp/output.c, lib/openpgp/pgp.c, - lib/openpgp/pgpverify.c, lib/openpgp/privkey.c, src/certtool-gaa.c, - src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: Additions to - make certtool print information on openpgp keys. - -2008-01-13 Nikos - - * NEWS: documented changes. - -2008-01-13 Nikos - - * README, configure.in, includes/gnutls/gnutls.h.in, - includes/gnutls/openpgp.h, lib/Makefile.am, lib/auth_cert.c, - lib/auth_cert.h, lib/gnutls_cert.c, lib/gnutls_cert.h, - lib/gnutls_errors.c, lib/gnutls_extra_hooks.c, - lib/gnutls_extra_hooks.h, lib/gnutls_openpgp.c, lib/gnutls_state.c, - lib/opencdk/Makefile.am, lib/opencdk/README, lib/opencdk/armor.c, - lib/opencdk/context.h, lib/opencdk/dummy.c, lib/opencdk/filters.h, - lib/opencdk/hash.c, lib/opencdk/kbnode.c, lib/opencdk/keydb.c, - lib/opencdk/literal.c, lib/opencdk/main.c, lib/opencdk/main.h, - lib/opencdk/misc.c, lib/opencdk/new-packet.c, - lib/opencdk/opencdk.h, lib/opencdk/packet.h, lib/opencdk/pubkey.c, - lib/opencdk/read-packet.c, lib/opencdk/seskey.c, - lib/opencdk/sig-check.c, lib/opencdk/stream.c, - lib/opencdk/stream.h, lib/opencdk/types.h, lib/opencdk/verify.c, - lib/opencdk/write-packet.c, lib/openpgp/Makefile.am, - lib/openpgp/compat.c, lib/openpgp/extras.c, - lib/openpgp/gnutls_openpgp.h, lib/openpgp/openpgp.h, - lib/openpgp/output.c, lib/openpgp/pgp.c, lib/openpgp/pgpverify.c, - lib/openpgp/privkey.c, libextra/Makefile.am, - libextra/gnutls_extra.c, libextra/gnutls_openpgp.c, - libextra/opencdk/Makefile.am, libextra/opencdk/README, - libextra/opencdk/armor.c, libextra/opencdk/cipher.c, - libextra/opencdk/compress.c, libextra/opencdk/context.h, - libextra/opencdk/dummy.c, libextra/opencdk/filters.h, - libextra/opencdk/kbnode.c, libextra/opencdk/keydb.c, - libextra/opencdk/literal.c, libextra/opencdk/main.c, - libextra/opencdk/main.h, libextra/opencdk/misc.c, - libextra/opencdk/new-packet.c, libextra/opencdk/opencdk.h, - libextra/opencdk/packet.h, libextra/opencdk/pubkey.c, - libextra/opencdk/read-packet.c, libextra/opencdk/seskey.c, - libextra/opencdk/sig-check.c, libextra/opencdk/stream.c, - libextra/opencdk/stream.h, libextra/opencdk/types.h, - libextra/opencdk/verify.c, libextra/opencdk/write-packet.c, - src/Makefile.am, src/certtool-gaa.c, src/certtool-gaa.h, - src/certtool.c, src/certtool.gaa, src/cli.c, src/serv.c, - src/tls_test.c: merged the openpgp branch to head\! - -2008-01-12 Nikos - - * libextra/Makefile.am: Added fix by Alon to avoid linking against - /usr/lib/libgnutls.so. - -2008-01-09 Simon Josefsson - - * GNUmakefile, maint-cfg.mk: Re-add config.rpath hack, since gnulib - updated config.rpath. - -2008-01-09 Simon Josefsson - - * build-aux/config.rpath, lgl/Makefile.am, lgl/dummy.c, - lgl/m4/eealloc.m4, lgl/m4/gnulib-comp.m4, lgl/m4/malloca.m4, - lgl/malloca.c, lgl/malloca.h, lgl/malloca.valgrind, lgl/memmem.c, - lgl/printf-parse.c: Update gnulib files. - -2008-01-08 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2008-01-08 Simon Josefsson - - * ChangeLog: Generated. - -2008-01-08 Simon Josefsson - - * NEWS: Version 2.3.0. - -2008-01-08 Simon Josefsson - - * po/LINGUAS: Sync with TP. - -2008-01-08 Simon Josefsson - - * po/LINGUAS: Sync with TP. - -2008-01-08 Simon Josefsson - - * configure.in: Further LZO fixes. - -2008-01-08 Simon Josefsson - - * doc/reference/Makefile.am: Cleanup after LZO removal. - -2008-01-08 Simon Josefsson - - * NEWS, configure.in, doc/gnutls.texi, libextra/Makefile.am, - libextra/minilzo/Makefile.am, libextra/minilzo/README.LZO, - libextra/minilzo/lzoconf.h, libextra/minilzo/lzodefs.h, - libextra/minilzo/minilzo.c, libextra/minilzo/minilzo.h, - libextra/minilzo/testmini.c: Remove LZO compression support. - -2008-01-08 Simon Josefsson - - * Makefile.am: Call git-push (git-push --tags doesn't push - changes..). - -2008-01-08 Simon Josefsson - - * NEWS, gl/progname.c, lgl/m4/memmem.m4, lgl/memmem.c: Update gnulib - files. - -2008-01-07 Simon Josefsson - - * NEWS: Add. - -2008-01-07 Simon Josefsson - - * lib/ext_server_name.c: Handle more than one server name field - correctly. Tiny patch from mark.phillips@virgin.net. - -2008-01-05 Simon Josefsson - - * configure.in: Drop -D_REENTRANT -D_THREAD_SAFE, not needed as far - as I can tell. - -2008-01-04 Simon Josefsson - - * NEWS: Add. - -2008-01-04 Simon Josefsson - - * po/LINGUAS, po/ms.po: Sync with TP. - -2008-01-04 Simon Josefsson - - * po/LINGUAS: Sync with TP. - -2008-01-02 Simon Josefsson - - * doc/manpages/Makefile.am: Bump copyright years. - -2008-01-02 Simon Josefsson - - * NEWS: Remove dupe entry. - -2008-01-02 Simon Josefsson - - * gl/fseeko.c, gl/m4/gnulib-comp.m4, gl/progname.c, - gl/version-etc.c, lgl/Makefile.am, lgl/float.in.h, - lgl/m4/float_h.m4, lgl/m4/gnulib-comp.m4, lgl/m4/memmem.m4, - lgl/m4/stdlib_h.m4, lgl/m4/string_h.m4, lgl/m4/unistd_h.m4, - lgl/memmem.c, lgl/stdint.in.h, lgl/stdlib.in.h, lgl/string.in.h, - lgl/unistd.in.h: Update gnulib files. - -2008-01-02 Simon Josefsson - - * lgl/dummy.c, lgl/m4/eealloc.m4, lgl/m4/malloca.m4, - lgl/m4/memchr.m4, lgl/m4/memcmp.m4, lgl/malloca.c, lgl/malloca.h, - lgl/malloca.valgrind, lgl/memchr.c, lgl/memcmp.c: Update gnulib - files. - -2008-01-02 Simon Josefsson - - * gl/.gitignore, lgl/.gitignore: Remove .gitignore's from gnulib. - -2007-12-21 Simon Josefsson - - * doc/protocol/draft-ietf-tls-ecc-new-mac-02.txt, - doc/protocol/draft-ietf-tls-extractor-00.txt: Add. - -2007-12-21 Simon Josefsson - - * lib/gnutls_priority.c: Doc fixes. - -2007-12-17 Simon Josefsson - - * doc/protocol/draft-hajjeh-tls-sign-04.txt: Add. - -2007-12-15 Nikos - - * lib/gnutls_state.c: Fix for certificate selection in servers with - certificate callbacks. - -2007-12-16 Nikos - - * : 1 2 lib/gnutls_state.c - -2007-12-10 Simon Josefsson - - * lib/minitasn1/libtasn1.h: Bump versions. - -2007-12-14 Simon Josefsson - - * NEWS: Merge in old NEWS entries. - -2007-12-14 Simon Josefsson - - * po/LINGUAS, po/nl.po, po/pl.po, po/sv.po: Sync with TP. - -2007-12-13 Simon Josefsson - - * .cvscopying: Add 2007. - -2007-12-13 Simon Josefsson - - * NEWS: Add. - -2007-12-13 Simon Josefsson - - * lib/gnutls_state.c: If the server has a callback, the search for a - valid certificate will fail. Patch from Nikos. - -2007-12-13 Simon Josefsson - - * doc/protocol/draft-hajjeh-tls-identity-protection-02.txt: Add. - -2007-12-12 Ludovic Courtès - - * : commit a37e52e18a625138cb0e3441023e2ac9fbb62552 Author: Ludovic - Courtès Date: Tue Dec 11 18:23:15 2007 +0100 - -2007-12-11 Ludovic Courtès - - * guile/tests/openpgp-auth.scm, guile/tests/openpgp-keyring.scm, - guile/tests/openpgp-keys.scm: Update Guile OpenPGP test cases to use - the new names. * guile/tests/*.scm: Substitute `certificate' to `public-key' in - tests using the OpenPGP API. - -2007-12-11 Ludovic Courtès - - * doc/guile.texi: Update OpenPGP names in Guile examples. * doc/guile.texi (Guile Examples): Substitute `certificate' to `public-key' in OpenPGP examples. - -2007-12-11 Ludovic Courtès - - * guile/modules/gnutls.scm, guile/modules/gnutls/extra.scm, - guile/pre-inst-guile.in, guile/src/Makefile.am: Bump Guile glue - libraries version number. * guile/modules/gnutls.scm: Load `libguile-gnutls-v-1'. * guile/modules/gnutls/extra.scm: Load `libguile-gnutls-extra-v-1'. * guile/pre-inst-guile.in: Load `v-1' libraries. * guile/src/Makefile.am (lib_LTLIBRARIES): Bump libraries from `v-0' - to `v-1'. Update all variables. - -2007-12-11 Ludovic Courtès - - * guile/modules/gnutls/build/enums.scm, - guile/modules/gnutls/build/smobs.scm, - guile/modules/gnutls/extra.scm, guile/src/extra.c: Substitute - `certificate' to `public-key' in `(gnutls extra)'. * guile/modules/gnutls/build/enums.scm (%openpgp-key-format-enum): Rename to... (%openpgp-certificate-format-enum): This. (%gnutls-extra-enums): Update. * guile/modules/gnutls/build/smobs.scm (%openpgp-public-key-smob): Rename to... (%openpgp-certificate-smob): This. (%gnutls-extra-smobs): Update. * guile/modules/gnutls/extra.scm: Substitute all `certificate' in - all `public-key' names. Add backward-compatible bindings. * guile/src/extra.c: Substitute `certificate' to `public-key'. - -2007-12-11 Simon Josefsson - - * GNUmakefile, maint-cfg.mk: Remove config.rpath hack. - -2007-12-10 Simon Josefsson - - * NEWS: Add. - -2007-12-10 Simon Josefsson - - * src/certtool.c: Make --verify-chain support larger inputs than - 64kb. - -2007-12-10 Simon Josefsson - - * configure.in: Re-order gettext invocation to avoid autoconf - warnings. - -2007-12-10 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2007-12-10 Simon Josefsson - - * ChangeLog: Generated. - -2007-12-10 Simon Josefsson - - * NEWS: Version 2.1.8. - -2007-12-09 Simon Josefsson - - * doc/Makefile.am: GPLv3 typo. - -2007-12-09 Simon Josefsson - - * NEWS: Doc fix. - -2007-12-09 Simon Josefsson - - * NEWS, configure.in, maint-cfg.mk: Gettext 0.17 to solve -L - problem. - -2007-12-09 Simon Josefsson - - * configure.in: GPLv3. - -2007-12-09 Simon Josefsson - - * gl/version-etc.c: Revert local gnulib override regarding GPLv3. - -2007-12-09 Simon Josefsson - - * doc/Makefile.am, doc/credentials/Makefile.am, - doc/extract-guile-c-doc.scm, doc/guile.texi, gl/Makefile.am, - guile/modules/gnutls/extra.scm, - guile/modules/system/documentation/c-snarf.scm, - guile/modules/system/documentation/output.scm, - guile/pre-inst-guile.in, guile/src/extra.c, - guile/tests/openpgp-auth.scm, guile/tests/openpgp-keyring.scm, - guile/tests/openpgp-keys.scm, includes/Makefile.am: More GPLv3 - fixes. - -2007-12-09 Simon Josefsson - - * gl/override/lib/version-etc.c.diff: More GPLv3 fixes. - -2007-12-09 Simon Josefsson - - * doc/gpl-3.0.texi: Use GPLv3 in manual. - -2007-12-09 Simon Josefsson - - * doc/gnutls.texi, doc/gpl-2.0.texi, gl/gnulib.mk, - gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4: Use GPLv3 in manual. - -2007-12-09 Simon Josefsson - - * Makefile.am, doc/examples/Makefile.am, doc/manpages/Makefile.am, - includes/gnutls/extra.h, includes/gnutls/openssl.h, - libextra/Makefile.am, libextra/gnutls_extra.h, - libextra/libgnutls-extra.vers, libextra/openpgp/Makefile.am, - libextra/openssl_compat.h, maint-cfg.mk: GPLv3 fixes. - -2007-12-09 Simon Josefsson - - * src/Makefile.am, src/common.c, src/list.h, src/serv.c: Use GPLv3 - in src/. - -2007-12-09 Simon Josefsson - - * tests/Makefile.am, tests/anonself.c, tests/certder.c, - tests/certificate_set_x509_crl.c, tests/dhepskself.c, tests/dn.c, - tests/gc.c, tests/hostname-check/Makefile.am, - tests/hostname-check/hostname-check.c, tests/key-id/Makefile.am, - tests/key-id/key-id, tests/nist-pkits/pkits, - tests/nist-pkits/pkits_crl, tests/nist-pkits/pkits_crt, - tests/nist-pkits/pkits_pkcs12, tests/nist-pkits/pkits_smime, - tests/openpgp/Makefile.am, tests/openpgp/keyring.c, - tests/openssl.c, tests/oprfi.c, tests/parse_ca.c, - tests/pathlen/Makefile.am, tests/pathlen/pathlen, - tests/pkcs1-padding/Makefile.am, tests/pkcs1-padding/pkcs1-pad, - tests/pkcs12-decode/Makefile.am, tests/pkcs12-decode/pkcs12, - tests/pkcs8-decode/Makefile.am, tests/pkcs8-decode/pkcs8, - tests/pskself.c, tests/resume.c, - tests/rsa-md5-collision/Makefile.am, - tests/rsa-md5-collision/rsa-md5-collision, tests/set_pkcs12_cred.c, - tests/sha2/Makefile.am, tests/sha2/sha2, tests/simple.c, - tests/tlsia.c, tests/userid/Makefile.am, tests/userid/userid, - tests/utils.c, tests/utils.h, tests/x509paths/chain, - tests/x509self.c, tests/x509signself.c: Use GPLv3 for self-tests. - -2007-12-09 Simon Josefsson - - * build-aux/config.rpath, build-aux/gendocs.sh, doc/fdl.texi, - doc/gendocs_template, gl/fseeko.c, gl/gai_strerror.c, - gl/getaddrinfo.c, gl/getaddrinfo.h, gl/getdelim.c, gl/getline.c, - gl/getpass.c, gl/getpass.h, gl/inet_ntop.c, gl/inet_ntop.h, - gl/lseek.c, gl/m4/getdelim.m4, gl/m4/getline.m4, - gl/m4/gnulib-comp.m4, gl/m4/lib-link.m4, gl/m4/strerror.m4, - gl/netinet_in.in.h, gl/strdup.c, gl/strerror.c, gl/version-etc.c, - lgl/Makefile.am, lgl/m4/gettext.m4, lgl/m4/gnulib-comp.m4, - lgl/m4/iconv.m4, lgl/m4/intdiv0.m4, lgl/m4/intl.m4, - lgl/m4/intlmacosx.m4, lgl/m4/intmax_t.m4, lgl/m4/lib-link.m4, - lgl/m4/lock.m4, lgl/m4/longlong.m4, lgl/m4/po.m4, - lgl/m4/printf-posix.m4, lgl/m4/stdio_h.m4, lgl/m4/stdlib_h.m4, - lgl/m4/string_h.m4, lgl/m4/uintmax_t.m4, lgl/m4/ulonglong.m4, - lgl/m4/unistd_h.m4, lgl/m4/vasnprintf.m4, lgl/m4/wint_t.m4, - lgl/printf-parse.c, lgl/realloc.c, lgl/stdlib.in.h, - lgl/string.in.h, lgl/unistd.in.h, lgl/vasnprintf.c: Update gnulib. - -2007-12-09 Nikos - - * lib/gnutls_handshake.c, lib/gnutls_handshake.h, - lib/gnutls_v2_compat.c: user_hello_func is call always. Even when - resuming a session. - -2007-12-09 Nikos - - * src/common.c: print session ID - -2007-12-07 System User - - * NEWS: license update - -2007-12-07 System User - - * COPYING, libextra/gnutls_extra.c, libextra/gnutls_ia.c, - libextra/gnutls_openpgp.c, libextra/gnutls_openssl.c, - libextra/openpgp/compat.c, libextra/openpgp/extras.c, - libextra/openpgp/pgp.c, libextra/openpgp/pgpverify.c, - libextra/openpgp/privkey.c, libextra/openssl_compat.c, - src/certtool-cfg.c, src/certtool.c, src/cli.c, src/common.c, - src/crypt.c, src/prime.c, src/psk.c, src/serv.c, src/tests.c, - src/tls_test.c: GPL parts under GPLv3 - -2007-12-06 System User - - * lib/gnutls_record.c: It seems we were ahead of our time. - -2007-12-06 System User - - * NEWS, lib/gnutls_record.c: Revert "We now ignore received packets - with unknown content types" This reverts commit 4a19fd59da474b3de977a925fd91578db7e3d4a1. - -2007-12-06 Simon Josefsson - - * lib/x509/x509.c: Doc fix.es - -2007-12-06 Simon Josefsson - - * lib/x509/x509.c: Typo fix. Tiny patch from Daniel Kahn Gillmor - . - -2007-12-04 Nikos - - * : commit bd3b0f49c966277e91f57c64cfcc720cbebb4a73 Author: Nikos - Date: Tue Dec 4 22:05:25 2007 +0200 - -2007-12-04 Simon Josefsson - - * maint-cfg.mk: Overwrite autopoint files with gnulib files. - -2007-12-03 Nikos - - * : commit dac01d7279eb28e7c5909d53bf346206f10319b5 Author: Nikos - Date: Mon Dec 3 20:05:32 2007 +0200 - -2007-12-03 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2007-12-03 Simon Josefsson - - * NEWS: Add. - -2007-12-03 Simon Josefsson - - * configure.in: Bump version. - -2007-12-03 Simon Josefsson - - * configure.in: Bump to indicate added ABI. - -2007-12-03 Simon Josefsson - - * maint-cfg.mk: Copy, don't remove... to fix Makefile.in hard-coded - links to m4 filenames. - -2007-12-03 Simon Josefsson - - * maint-cfg.mk: Remove gettext havelib files. - -2007-12-03 Simon Josefsson - - * lib/x509/privkey_pkcs8.c: Indent. - -2007-12-03 Nikos - - * : 3 0 NEWS - -2007-12-02 Nikos - - * NEWS, includes/gnutls/x509.h, lib/x509/x509.c: added - gnutls_x509_crt_get_subject_alt_name2 to overcome some limitations - of the original function. - -2007-12-02 Nikos - - * : 1 1 lib/x509/x509.c - -2007-12-01 Simon Josefsson - - * : commit b6e4b1ff3f7ef8a8d26f2e89c0bc50d2fc9d23f4 Author: Nikos - Date: Sat Dec 1 08:25:34 2007 +0200 - -2007-11-30 Nikos - - * configure.in, lib/x509/dsa.c, src/certtool.c: Depend on libgcrypt - 1.2.4 again (lose DSA2 functionality). - -2007-11-30 Nikos - - * lib/gnutls_priority.c: Added SECURE256 and SECURE128 level. - -2007-11-29 Simon Josefsson - - * ChangeLog: Generated. - -2007-11-29 Simon Josefsson - - * NEWS: Version 2.1.7. - -2007-11-28 Nikos - - * : 2 2 lib/gnutls_priority.c - -2007-11-28 Nikos - - * lib/auth_srp_passwd.c: more assertions. - -2007-11-28 Nikos - - * lib/auth_srp.c: more assertions - -2007-11-28 Nikos - - * lib/auth_srp.c: added assertion. - -2007-11-28 Nikos - - * src/serv.c: fix in priority_set - -2007-11-28 Nikos - - * includes/gnutls/gnutlsxx.h: updated the gnutlsxx interface - -2007-11-28 Nikos - - * includes/gnutls/gnutls.h.in, lib/gnutls_priority.c: more updates - for priority functions. - -2007-11-28 Nikos - - * doc/examples/ex-cert-select.c, doc/examples/ex-client-resume.c, - doc/examples/ex-client-srp.c, doc/examples/ex-client-tlsia.c, - doc/examples/ex-client1.c, doc/examples/ex-client2.c, - doc/examples/ex-serv-anon.c, doc/examples/ex-serv-export.c, - doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-srp.c, - doc/examples/ex-serv1.c, lib/gnutls_priority.c, lib/gnutlsxx.cpp, - src/cli.c, src/serv.c: Return the string position in case of an - error in the priority functions. - -2007-11-28 Simon Josefsson - - * lib/gnutls_priority.c: Typo. - -2007-11-28 Simon Josefsson - - * NEWS: Fix. - -2007-11-28 Simon Josefsson - - * lib/gnutls_priority.c: Give example for %COMPAT. - -2007-11-28 Simon Josefsson - - * lib/gnutls_priority.c: Rename HIGH to SECURE. - -2007-11-28 Simon Josefsson - - * lib/gnutls_priority.c: Re-add aes-256 so we don't fail to - negotiate it in case end only supports it. Doc fixes. - -2007-11-28 Simon Josefsson - - * lib/gnutls_priority.c: Doc fixes. Fix warnings. - -2007-11-28 Simon Josefsson - - * lib/gnutls_priority.c: Re-indent. - -2007-11-28 Simon Josefsson - - * po/ms.po: Sync with TP. - -2007-11-28 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2007-11-28 Simon Josefsson - - * NEWS: Fix. - -2007-11-28 Simon Josefsson - - * includes/gnutls/compat.h, includes/gnutls/gnutls.h.in, - lib/gnutls_priority.c: Re-add gnutls_set_default_priority and - gnutls_set_default_export_priority. - -2007-11-27 Simon Josefsson - - * doc/protocol/draft-ietf-tls-rfc4346-bis-07.txt: Add. - -2007-11-26 Simon Josefsson - - * doc/protocol/rfc5054.txt: Add. - -2007-11-26 Simon Josefsson - - * doc/protocol/draft-rescorla-tls-extractor-01.txt: Add. - -2007-11-26 Nikos Mavrogiannopoulos - - * : 1 1 lib/gnutls_priority.c - -2007-11-25 Nikos Mavrogiannopoulos - - * lib/x509/common.c: corrected bug in the new read_mpis - -2007-11-25 Nikos Mavrogiannopoulos - - * lib/x509/common.c, lib/x509/common.h, lib/x509/crl.c, - lib/x509/crq.c, lib/x509/pkcs12.c, lib/x509/pkcs7.c, - lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, lib/x509/x509.c: - export_int was simplified are no artificial limits are imposed any - more - -2007-11-25 Nikos Mavrogiannopoulos - - * lib/x509/common.c: variables for the time functions are not more - rational. - -2007-11-25 Nikos Mavrogiannopoulos - - * lib/x509/common.c, lib/x509/mpi.c: in RSA certificate parameters - no artificial limits are imposed any more - -2007-11-25 Nikos Mavrogiannopoulos - - * lib/x509/privkey_pkcs8.c: corrected documentation - -2007-11-25 Nikos Mavrogiannopoulos - - * NEWS, lib/x509/mpi.c, lib/x509/mpi.h, lib/x509/privkey.c, - lib/x509/privkey.h, lib/x509/privkey_pkcs8.c: added support for PKCS - #8 decoding of DSA keys. - -2007-11-24 Nikos Mavrogiannopoulos - - * lib/x509/mpi.c, lib/x509/privkey_pkcs8.c: added ability to write - DSA private keys. - -2007-11-24 Nikos Mavrogiannopoulos - - * doc/examples/ex-cert-select.c, doc/examples/ex-serv1.c: examples - now compile - -2007-11-24 Nikos Mavrogiannopoulos - - * : 3 3 doc/examples/ex-cert-select.c - -2007-11-24 Nikos Mavrogiannopoulos - - * NEWS, doc/examples/ex-cert-select.c, - doc/examples/ex-client-resume.c, doc/examples/ex-client-srp.c, - doc/examples/ex-client-tlsia.c, doc/examples/ex-client1.c, - doc/examples/ex-client2.c, doc/examples/ex-serv-anon.c, - doc/examples/ex-serv-export.c, doc/examples/ex-serv-pgp.c, - doc/examples/ex-serv-srp.c, doc/examples/ex-serv1.c, - doc/gnutls.texi, includes/gnutls/compat.h, - includes/gnutls/gnutls.h.in, includes/gnutls/gnutlsxx.h, - lib/gnutls_int.h, lib/gnutls_priority.c, lib/gnutlsxx.cpp, - src/cli.c, src/common.c, src/serv.c: new era of priority functions. - -2007-11-24 Nikos Mavrogiannopoulos - - * lib/ext_cert_type.c, lib/gnutls_algorithms.c, lib/gnutls_int.h, - lib/gnutls_priority.c, lib/gnutls_record.c, lib/gnutls_state.c: - cleanup the priority functionality - -2007-11-21 Nikos Mavrogiannopoulos - - * doc/gnutls.texi: links to rfc 5054 (srp) - -2007-11-18 Nikos Mavrogiannopoulos - - * includes/gnutls/compat.h: updated the priority compatibility - functions - -2007-11-18 Nikos Mavrogiannopoulos - - * NEWS, doc/gnutls.texi, includes/gnutls/gnutls.h.in, - lib/gnutls_priority.c, lib/gnutls_state.h: added - gnutls_check_priority() to check syntax of priority strings. - -2007-11-18 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c, lib/gnutls_handshake.h, - lib/gnutls_v2_compat.c: Renegotiate the protocol version after the - user_hello_func has been called - -2007-11-18 Nikos Mavrogiannopoulos - - * doc/examples/ex-cert-select.c, doc/examples/ex-client-srp.c, - includes/gnutls/gnutlsxx.h, lib/gnutls_priority.c, lib/gnutlsxx.cpp: - fixes for the new gnutls_set_priority(). - -2007-11-18 Nikos Mavrogiannopoulos - - * doc/gnutls.texi: The gnutls_*_convert_priority() functions were - deprecated by the gnutls_set_priority() - -2007-11-18 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_priority.c: The gnutls_*_convert_priority() - functions were deprecated by the gnutls_set_priority() - -2007-11-18 Nikos Mavrogiannopoulos - - * NEWS, configure.in, doc/examples/ex-client-resume.c, - doc/examples/ex-client-srp.c, doc/examples/ex-client-tlsia.c, - doc/examples/ex-client1.c, doc/examples/ex-client2.c, - doc/examples/ex-serv-anon.c, doc/examples/ex-serv-export.c, - doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-srp.c, - doc/examples/ex-serv1.c, doc/gnutls.texi, includes/gnutls/compat.h, - includes/gnutls/gnutls.h.in, includes/gnutls/gnutlsxx.h, - lib/gnutls_algorithms.h, lib/gnutls_priority.c, lib/gnutlsxx.cpp, - src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, - src/serv-gaa.c, src/serv-gaa.h, src/serv.c, src/serv.gaa: added - gnutls_set_priority() to replace gnutls_set_default_priority2(). - -2007-11-16 Simon Josefsson - - * libextra/opencdk/keydb.c, libextra/opencdk/seskey.c: Re-apply - opencdk fixes that were lost in 0.6.6 upgrade. - -2007-11-16 Simon Josefsson - - * NEWS, libextra/opencdk/cipher.c, libextra/opencdk/keydb.c, - libextra/opencdk/opencdk.h, libextra/opencdk/seskey.c, - libextra/opencdk/stream.c: Use OpenCDK 0.6.6. - -2007-11-16 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2007-11-15 Simon Josefsson - - * ChangeLog: Generated. - -2007-11-15 Simon Josefsson - - * NEWS: Version 2.1.6. - -2007-11-15 Simon Josefsson - - * NEWS: Add. - -2007-11-15 Simon Josefsson - - * NEWS: Add. - -2007-11-15 Simon Josefsson - - * NEWS: Add. - -2007-11-15 Simon Josefsson - - * includes/gnutls/compat.h: Revert rename of - GNUTLS_E_UNKNOWN_HASH_ALGORITHM. Instead we add a new - GNUTLS_E_UNKNOWN_ALGORITHM. - -2007-11-15 Simon Josefsson - - * includes/gnutls/gnutls.h.in: Revert rename of - GNUTLS_E_UNKNOWN_HASH_ALGORITHM. Instead we add a new - GNUTLS_E_UNKNOWN_ALGORITHM. - -2007-11-15 Simon Josefsson - - * lib/gnutls_errors.c: Revert rename of - GNUTLS_E_UNKNOWN_HASH_ALGORITHM. Instead we add a new - GNUTLS_E_UNKNOWN_ALGORITHM. - -2007-11-14 Simon Josefsson - - * libextra/opencdk/seskey.c: Doc fix. - -2007-11-14 Simon Josefsson - - * libextra/opencdk/keydb.c: Doc fix. - -2007-11-14 Simon Josefsson - - * lib/gnutls_record.c: Doc fix. - -2007-11-14 Simon Josefsson - - * lib/gnutls_cert.c: Doc fix. - -2007-11-14 Simon Josefsson - - * lib/gnutls_anon_cred.c: Doc fix. - -2007-11-14 Simon Josefsson - - * lib/gnutls_state.c: Doc fix. - -2007-11-14 Simon Josefsson - - * lib/gnutls_x509.c: Doc fix. - -2007-11-14 Simon Josefsson - - * lib/gnutls_x509.c: Doc fix. - -2007-11-14 Simon Josefsson - - * lib/gnutls_psk.c: Doc fix. - -2007-11-14 Simon Josefsson - - * lib/gnutls_algorithms.c: Doc fix. - -2007-11-14 Simon Josefsson - - * lib/gnutls_handshake.c: Doc fixes. - -2007-11-14 Simon Josefsson - - * includes/gnutls/compat.h, includes/gnutls/extra.h: Move compat - stuff to compat.h. - -2007-11-14 Simon Josefsson - - * guile/src/extra.c: Use new APIs. - -2007-11-14 Simon Josefsson - - * guile/modules/gnutls/build/enums.scm: Typo. - -2007-11-14 Simon Josefsson - - * guile/modules/gnutls/build/enums.scm, - guile/modules/gnutls/build/smobs.scm: Update API. - -2007-11-14 Simon Josefsson - - * guile/modules/gnutls/build/enums.scm: Add unknown-algorithm (new - name of unknown-hash-algorithm). - -2007-11-14 Simon Josefsson - - * guile/modules/gnutls/build/enums.scm: Remove openpgp trustdb - error. - -2007-11-14 Simon Josefsson - - * includes/gnutls/compat.h, includes/gnutls/gnutls.h.in: Move compat - mappings to compat.h. - -2007-11-14 Simon Josefsson - - * src/cli.c, src/common.c: Use new API. - -2007-11-14 Simon Josefsson - - * doc/examples/ex-serv-export.c, lib/auth_cert.h, - libextra/gnutls_openpgp.c: Use new API. - -2007-11-14 Simon Josefsson - - * libextra/gnutls_openpgp.c: Don't use trustdb error code. - -2007-11-14 Simon Josefsson - - * includes/gnutls/gnutlsxx.h, lib/gnutlsxx.cpp: Use new API in C++ - library. - -2007-11-14 Simon Josefsson - - * src/cli.c: Use new API. - -2007-11-14 Simon Josefsson - - * includes/gnutls/compat.h, includes/gnutls/gnutls.h.in, - includes/gnutls/openpgp.h: Move compat mappings to compat.h. - -2007-11-14 Simon Josefsson - - * includes/gnutls/compat.h: Fix. - -2007-11-14 Simon Josefsson - - * includes/gnutls/compat.h: Remove trustdb error code, since we - removed all functions. - -2007-11-14 Nikos Mavrogiannopoulos - - * lib/gnutls_cipher.c, lib/gnutls_compress.c, - lib/gnutls_compress_int.c: some updates in the compression code - -2007-11-14 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_cipher.c, lib/gnutls_compress.c, - lib/gnutls_compress.h, lib/gnutls_record.c: Corrected bug in - decompression of expanded compression data. - -2007-11-13 Nikos Mavrogiannopoulos - - * lib/gnutls_cipher.c: When decompressed data are more than the - record max size warn using GNUTLS_E_DECOMPRESSION_FAILED. - -2007-11-11 Nikos Mavrogiannopoulos - - * : 1 1 src/certtool.gaa - -2007-11-11 Nikos Mavrogiannopoulos - - * includes/gnutls/gnutls.h.in, lib/gnutls_cert.c, src/tls_test.c: - Applied documentation and prototype fixes reported by Evan Martin - . - -2007-11-05 Nikos Mavrogiannopoulos - - * doc/gnutls.texi: updated the links to openpgp draft - -2007-11-05 Simon Josefsson - - * src/cli.c: Add warnings about messages used by Emacs tls.el. - -2007-11-03 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2007-11-03 Simon Josefsson - - * doc/protocol/rfc5081.txt: Add. - -2007-11-01 Simon Josefsson - - * ChangeLog: Generated. - -2007-11-01 Simon Josefsson - - * NEWS: Version 2.1.5. - -2007-11-01 Simon Josefsson - - * NEWS: Add. - -2007-11-01 Simon Josefsson - - * NEWS: Add. - -2007-11-01 Simon Josefsson - - * NEWS: Add. - -2007-11-01 Simon Josefsson - - * configure.in: Bump ABI to 25. - -2007-11-01 Simon Josefsson - - * doc/protocol/draft-ietf-tls-rfc4346-bis-06.txt: Add. - -2007-10-31 Nikos Mavrogiannopoulos - - * src/certtool-cfg.c, src/crypt-gaa.c: certtool now prints defaults. - -2007-10-31 Nikos Mavrogiannopoulos - - * lib/gnutls_dh_primes.c: The pkcs3 parameters are now corrected - exported (without sign). - -2007-10-30 Nikos Mavrogiannopoulos - - * src/crypt.gaa: parameters -> group parameters - -2007-10-30 Nikos Mavrogiannopoulos - - * AUTHORS, Makefile.am, NEWS, README, THANKS, - build-aux/config.rpath, configure.in, doc/Makefile.am, - doc/gnutls.texi, includes/gnutls/extra.h, - includes/gnutls/openpgp.h, includes/gnutls/pkcs12.h, - includes/gnutls/x509.h, lib/Makefile.am, lib/auth_anon.c, - lib/auth_anon.h, lib/auth_cert.c, lib/auth_cert.h, - lib/auth_dh_common.c, lib/auth_dh_common.h, lib/auth_dhe.c, - lib/auth_dhe_psk.c, lib/auth_psk.c, lib/auth_psk.h, - lib/auth_psk_passwd.c, lib/auth_psk_passwd.h, lib/auth_rsa.c, - lib/auth_rsa_export.c, lib/auth_srp.c, lib/auth_srp.h, - lib/auth_srp_passwd.c, lib/auth_srp_passwd.h, lib/auth_srp_rsa.c, - lib/auth_srp_sb64.c, lib/debug.c, lib/debug.h, lib/defines.h, - lib/ext_cert_type.c, lib/ext_cert_type.h, lib/ext_max_record.c, - lib/ext_max_record.h, lib/ext_server_name.c, lib/ext_server_name.h, - lib/ext_srp.c, lib/ext_srp.h, lib/gnutls_alert.c, - lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, - lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_auth.h, - lib/gnutls_auth_int.h, lib/gnutls_buffer.h, lib/gnutls_buffers.c, - lib/gnutls_buffers.h, lib/gnutls_cert.c, lib/gnutls_cert.h, - lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_cipher_int.c, - lib/gnutls_cipher_int.h, lib/gnutls_compress.c, - lib/gnutls_compress.h, lib/gnutls_compress_int.c, - lib/gnutls_compress_int.h, lib/gnutls_constate.c, - lib/gnutls_constate.h, lib/gnutls_datum.c, lib/gnutls_datum.h, - lib/gnutls_db.c, lib/gnutls_db.h, lib/gnutls_dh.c, lib/gnutls_dh.h, - lib/gnutls_dh_primes.c, lib/gnutls_errors.c, lib/gnutls_errors.h, - lib/gnutls_extensions.c, lib/gnutls_extensions.h, - lib/gnutls_global.c, lib/gnutls_global.h, lib/gnutls_handshake.c, - lib/gnutls_handshake.h, lib/gnutls_hash_int.c, - lib/gnutls_hash_int.h, lib/gnutls_helper.c, lib/gnutls_int.h, - lib/gnutls_kx.c, lib/gnutls_kx.h, lib/gnutls_mem.c, - lib/gnutls_mem.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h, - lib/gnutls_num.c, lib/gnutls_num.h, lib/gnutls_pk.c, - lib/gnutls_pk.h, lib/gnutls_priority.c, lib/gnutls_psk.c, - lib/gnutls_record.c, lib/gnutls_record.h, lib/gnutls_rsa_export.c, - lib/gnutls_rsa_export.h, lib/gnutls_session.c, - lib/gnutls_session.h, lib/gnutls_session_pack.c, - lib/gnutls_session_pack.h, lib/gnutls_sig.c, lib/gnutls_sig.h, - lib/gnutls_srp.c, lib/gnutls_srp.h, lib/gnutls_state.c, - lib/gnutls_state.h, lib/gnutls_str.c, lib/gnutls_str.h, - lib/gnutls_ui.c, lib/gnutls_v2_compat.c, lib/gnutls_v2_compat.h, - lib/gnutls_x509.c, lib/gnutls_x509.h, lib/io_debug.h, - lib/x509/common.c, lib/x509/common.h, lib/x509/crl.c, - lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/crq.h, - lib/x509/dn.c, lib/x509/dn.h, lib/x509/dsa.c, lib/x509/dsa.h, - lib/x509/extensions.c, lib/x509/extensions.h, lib/x509/mpi.c, - lib/x509/mpi.h, lib/x509/pkcs12.c, lib/x509/pkcs12.h, - lib/x509/pkcs12_bag.c, lib/x509/pkcs7.c, lib/x509/pkcs7.h, - lib/x509/privkey.c, lib/x509/privkey.h, lib/x509/privkey_pkcs8.c, - lib/x509/rfc2818.h, lib/x509/sign.c, lib/x509/sign.h, - lib/x509/verify.c, lib/x509/verify.h, lib/x509/x509.c, - lib/x509/x509.h, lib/x509/x509_write.c, lib/x509_b64.c, - lib/x509_b64.h, libextra/Makefile.am, libextra/gnutls_extra.c, - libextra/gnutls_extra.h, libextra/openpgp/Makefile.am, - libextra/openpgp/compat.c, libextra/openpgp/extras.c, - libextra/openpgp/pgp.c, libextra/openpgp/pgpverify.c, - libextra/openpgp/privkey.c, libextra/openssl_compat.c, - libextra/openssl_compat.h, src/certtool.c, src/cli.c, src/common.c, - src/crypt.c, src/prime.c, src/serv.c, src/tests.c, src/tls_test.c: - Changed my name to my "official" name. - -2007-10-30 Nikos Mavrogiannopoulos - - * includes/gnutls/compat.h, includes/gnutls/gnutls.h.in: Moved some - old defines to compat.c. - -2007-10-30 Nikos Mavrogiannopoulos - - * lib/libgnutlsxx.vers, libextra/libgnutls-extra.vers: Updated the - ld version. - -2007-10-29 Simon Josefsson - - * includes/gnutls/gnutls.h.in: Fix gnutls_set_default_priority and - gnutls_set_default_export priority. The old functions returned an - error code, need to fake it. - -2007-10-29 Simon Josefsson - - * Makefile.am: Reorder release target, to do disconnected ops first, - and to avoid losing tags. - -2007-10-29 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2007-10-29 Simon Josefsson - - * lgl/Makefile.am, lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4, - lgl/stdint.in.h: Update gnulib files. - -2007-10-28 Nikos Mavrogiannopoulos - - * configure.in: Used the original libtool library version. - -2007-10-27 Simon Josefsson - - * ChangeLog: Generated. - -2007-10-27 Simon Josefsson - - * NEWS: Version 2.1.4. - -2007-10-27 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2007-10-27 Simon Josefsson - - * configure.in: Bump version. - -2007-10-27 Simon Josefsson - - * includes/gnutls/compat.h: Add for backwards compatibility. - -2007-10-27 Simon Josefsson - - * doc/gnutls.texi: Fix typo. - -2007-10-27 Simon Josefsson - - * NEWS: Add. - -2007-10-27 Simon Josefsson - - * build-aux/config.rpath, gl/m4/gnulib-common.m4, gl/strerror.c, - lgl/m4/gnulib-common.m4, lgl/m4/ulonglong.m4, lgl/stdbool.in.h, - lgl/stdint.in.h: Update gnulib files. - -2007-10-27 Simon Josefsson - - * NEWS: Add. - -2007-10-27 Simon Josefsson - - * libextra/opencdk/cipher.c, libextra/opencdk/keydb.c, - libextra/opencdk/new-packet.c, libextra/opencdk/opencdk.h, - libextra/opencdk/seskey.c: Sync with OpenCDK 0.6.5. - -2007-10-27 Nikos Mavrogiannopoulos - - * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, - src/certtool.gaa: quick-random option was removed since it is now - the default. - -2007-10-26 Nikos Mavrogiannopoulos - - * : 1 2 lib/gnutls_algorithms.c - -2007-10-26 Ludovic Courtès - - * doc/README.CODING_STYLE: Add doc about maintenance of the Guile - bindings. - -2007-10-25 Simon Josefsson - - * : commit d3ebcb4c39cd2e7650694e08faad5a7ca57c662e Author: Simon - Josefsson Date: Thu Oct 25 21:51:38 2007 - +0200 - -2007-10-25 Nikos Mavrogiannopoulos - - * doc/gnutls.texi: added some text for the debugging functions. - -2007-10-25 Simon Josefsson - - * doc/gnutls.texi: Typo. - -2007-10-25 Simon Josefsson - - * Makefile.am: Reorder and simplify. - -2007-10-25 Simon Josefsson - - * lib/gnutls_state.c: Doc fix. - -2007-10-25 Simon Josefsson - - * : commit 867ffe404fbc7e16a543d2314bca85d613a902ef Author: Nikos - Mavrogiannopoulos Date: Wed Oct 24 23:48:27 2007 - +0300 - -2007-10-24 Nikos Mavrogiannopoulos - - * : 2 2 doc/examples/ex-serv-pgp.c - -2007-10-24 Nikos Mavrogiannopoulos - - * NEWS, doc/examples/ex-client-srp.c, - doc/examples/ex-client-tlsia.c, doc/examples/ex-serv-anon.c, - doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-srp.c, - doc/examples/ex-serv1.c, includes/gnutls/gnutls.h.in, - lib/gnutls_priority.c: Introduced GNUTLS_PRIORITIES_SECURITY_NORMAL - and GNUTLS_PRIORITIES_SECURITY_HIGH - -2007-10-24 Simon Josefsson - - * : commit 74200139866f14efc4cbabeec8c6698982327296 Author: Nikos - Mavrogiannopoulos Date: Wed Oct 24 18:33:00 2007 - +0300 - -2007-10-24 Nikos Mavrogiannopoulos - - * lib/gnutls_v2_compat.c: The user handshake callback function is - now called on SSLv2 hello messages. - -2007-10-24 Nikos Mavrogiannopoulos - - * NEWS, doc/examples/ex-client-resume.c, - doc/examples/ex-client-srp.c, doc/examples/ex-client-tlsia.c, - doc/examples/ex-client1.c, doc/examples/ex-client2.c, - doc/examples/ex-serv-anon.c, doc/examples/ex-serv-export.c, - doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-srp.c, - doc/examples/ex-serv1.c, includes/gnutls/gnutls.h.in, - lib/gnutls_priority.c, src/cli.c, src/serv.c: Added - gnutls_set_default_priority2() and deprecated - gnutls_set_default_priority(). - -2007-10-24 Nikos Mavrogiannopoulos - - * : 4 0 doc/manpages/certtool.1 - -2007-10-24 Nikos Mavrogiannopoulos - - * NEWS: added news entry for --disable-quick-random - -2007-10-24 Nikos Mavrogiannopoulos - - * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.gaa, - src/cli.c, src/serv.c: /dev/urandom is used now by default for key - generation. The option --disable-quick-random was introduced. - -2007-10-24 Nikos Mavrogiannopoulos - - * doc/examples/ex-serv-export.c, doc/examples/ex-serv1.c: updated - some examples. - -2007-10-24 Nikos Mavrogiannopoulos - - * configure.in: The library version is now 14 instead of 24. (14 is - greater than our current 13). - -2007-10-24 Nikos Mavrogiannopoulos - - * NEWS, doc/examples/ex-serv1.c, includes/gnutls/gnutls.h.in, - lib/gnutls_state.c, src/serv.c, src/tests.c, src/tests.h: Introduced - gnutls_session_enable_compatibility_mode() to allow enabling all - supported compatibility options (like disabling padding). Some other - bug fixes in tls-test.c. - -2007-10-24 Nikos Mavrogiannopoulos - - * doc/examples/ex-client-srp.c, doc/gnutls.texi: Added some - documentation for the new convert functions. - -2007-10-23 Nikos Mavrogiannopoulos - - * lib/gnutls_priority.c: renamed zlib to deflate - -2007-10-23 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c, lib/libgnutls.vers: Updata gnutls.vers - since we changed our interfaces and some other fixes. - -2007-10-23 Nikos Mavrogiannopoulos - - * : 2 2 lib/gnutls_algorithms.c - -2007-10-23 Nikos Mavrogiannopoulos - - * doc/examples/ex-alert.c, doc/examples/ex-cert-select.c, - doc/examples/ex-client-resume.c, doc/examples/ex-client-srp.c, - doc/examples/ex-client-tlsia.c, doc/examples/ex-client1.c, - doc/examples/ex-client2.c, doc/examples/ex-crq.c, - doc/examples/ex-pkcs12.c, doc/examples/ex-rfc2818.c, - doc/examples/ex-serv-anon.c, doc/examples/ex-serv-export.c, - doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-srp.c, - doc/examples/ex-serv1.c, doc/examples/ex-session-info.c, - doc/examples/ex-verify.c, doc/examples/ex-x509-info.c, - doc/examples/tcp.c: Added copyright notices to examples - -2007-10-23 Nikos Mavrogiannopoulos - - * includes/gnutls/gnutls.h.in: corrected the prototypes - -2007-10-23 Nikos Mavrogiannopoulos - - * lib/x509/verify.c: replaced UNKNOWN_HASH_ALGORITHM WITH - UNKNOWN_ALGORITHM - -2007-10-23 Nikos Mavrogiannopoulos - - * includes/gnutls/gnutls.h.in: corrected typo. - -2007-10-23 Nikos Mavrogiannopoulos - - * : 1 1 lib/gnutls_record.c - -2007-10-23 Nikos Mavrogiannopoulos - - * NEWS, includes/gnutls/gnutls.h.in, lib/gnutls_priority.c: Updated - the priority functions to be more compatible to our interface and - avoid parsing on every session generation. The current approach - stores parsed data to our integer format.CG: - - ----------------------------------------------------------------------- - -2007-10-22 Nikos Mavrogiannopoulos - - * NEWS, includes/gnutls/gnutls.h.in, lib/gnutls_int.h, - lib/gnutls_record.c: Added gnutls_record_disable_padding() to allow - servers talk to buggy clients that complain if TLS 1.0 padding is - used. - -2007-10-22 Nikos Mavrogiannopoulos - - * NEWS, includes/gnutls/gnutls.h.in, lib/gnutls_errors.c, - lib/gnutls_priority.c, lib/gnutls_record.c: Added new priority - functions that accept text instead of integers. - -2007-10-22 Nikos Mavrogiannopoulos - - * build-aux/config.rpath, lib/gnutls_buffers.c, lib/gnutls_record.c: - Removed some ancient non-used functions. - -2007-10-22 Nikos Mavrogiannopoulos - - * : commit 628c62e935effc1c276fa6e4ae653f8488e017be Author: Nikos - Mavrogiannopoulos Date: Mon Oct 22 14:03:08 2007 - +0300 - -2007-10-22 Simon Josefsson - - * po/de.po, po/ms.po, po/pl.po, po/sv.po: Sync with TP. - -2007-10-22 Simon Josefsson - - * lgl/m4/gc-camellia.m4: Add. - -2007-10-22 Simon Josefsson - - * lgl/Makefile.am, lgl/gc-libgcrypt.c, lgl/gc.h, - lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4: Update gnulib files. - -2007-10-22 Simon Josefsson - - * build-aux/config.rpath, build-aux/maint.mk, gl/error.c, - gl/error.h, gl/fseeko.c, gl/gnulib.mk, gl/inet_pton.c, - gl/inet_pton.h, gl/intprops.h, gl/m4/extensions.m4, - gl/m4/getaddrinfo.m4, gl/m4/getdelim.m4, gl/m4/getline.m4, - gl/m4/gnulib-comp.m4, gl/m4/socklen.m4, gl/m4/strerror.m4, - gl/netinet_in.in.h, gl/netinet_in_.h, gl/progname.c, gl/progname.h, - gl/readline.c, gl/readline.h, gl/strerror.c, gl/version-etc-fsf.c, - gl/version-etc.c, gl/version-etc.h, lgl/Makefile.am, - lgl/alloca.in.h, lgl/alloca_.h, lgl/dummy.c, lgl/float.in.h, - lgl/float_.h, lgl/gc-gnulib.c, lgl/gc-libgcrypt.c, lgl/gc.h, - lgl/m4/extensions.m4, lgl/m4/gnulib-comp.m4, lgl/m4/lock.m4, - lgl/m4/longlong.m4, lgl/m4/memmem.m4, lgl/m4/socklen.m4, - lgl/m4/stdint.m4, lgl/m4/stdio_h.m4, lgl/m4/string_h.m4, - lgl/m4/strverscmp.m4, lgl/m4/ulonglong.m4, lgl/m4/vasprintf.m4, - lgl/printf-parse.c, lgl/realloc.c, lgl/stdbool.in.h, - lgl/stdbool_.h, lgl/stdint.in.h, lgl/stdint_.h, lgl/stdio.in.h, - lgl/stdio_.h, lgl/stdlib.in.h, lgl/stdlib_.h, lgl/string.in.h, - lgl/string_.h, lgl/sys_socket.in.h, lgl/sys_socket_.h, - lgl/sys_stat.in.h, lgl/sys_stat_.h, lgl/time.in.h, lgl/time_.h, - lgl/unistd.in.h, lgl/unistd_.h, lgl/vasnprintf.c, lgl/wchar.in.h, - lgl/wchar_.h: Update gnulib files. - -2007-10-22 Simon Josefsson - - * : commit 07837c92f65f09b58c0ec55e3f49382ce0d71ba5 Author: Nikos - Mavrogiannopoulos Date: Fri Oct 19 22:05:28 2007 - +0300 - -2007-10-19 Nikos Mavrogiannopoulos - - * NEWS, doc/gnutls.texi, includes/gnutls/gnutls.h.in, - includes/gnutls/openpgp.h, lib/auth_cert.c, lib/gnutls_cert.c, - lib/gnutls_extra_hooks.c, lib/gnutls_extra_hooks.h, - lib/gnutls_state.c, libextra/gnutls_extra.c, - libextra/gnutls_openpgp.c, libextra/openpgp/compat.c, - libextra/openpgp/extras.c, libextra/openpgp/gnutls_openpgp.h, - libextra/openpgp/openpgp.h, libextra/openpgp/pgp.c, - libextra/openpgp/pgpverify.c, libextra/openpgp/privkey.c, - src/common.c: Occurences of gnutls_openpgp_key were renamed to - gnutls_openpgp_cert, leaving an API compatibility layer. - -2007-10-19 Nikos Mavrogiannopoulos - - * includes/gnutls/gnutls.h.in, includes/gnutls/openpgp.h, - lib/auth_cert.c, lib/gnutls_extra_hooks.c, - lib/gnutls_extra_hooks.h, libextra/gnutls_extra.c, - libextra/gnutls_extra.h, libextra/gnutls_openpgp.c, - libextra/openpgp/compat.c, libextra/openpgp/extras.c, - libextra/openpgp/openpgp.h, libextra/openpgp/pgp.c, - libextra/openpgp/pgpverify.c: Renamed gnutls_openpgp_key_t to - gnutls_openpgp_cert_t - -2007-10-17 Simon Josefsson - - * ChangeLog: Generated. - -2007-10-17 Simon Josefsson - - * lib/Makefile.am: Revert mistake removal. - -2007-10-17 Simon Josefsson - - * doc/manpages/Makefile.am, po/de.po, po/ms.po, po/pl.po, po/sv.po, - src/cli-gaa.c, src/cli-gaa.h, src/cli.gaa, src/serv-gaa.c, - src/serv-gaa.h, src/serv.gaa: Generated. - -2007-10-17 Simon Josefsson - - * NEWS: Version 2.1.3. - -2007-10-17 Simon Josefsson - - * configure.in: Bump ABI version. - -2007-10-17 Simon Josefsson - - * lib/gnutls_extensions.c, lib/gnutls_int.h, - lib/gnutls_supplemental.c: Remove tls-authz. - -2007-10-17 Simon Josefsson - - * doc/gnutls.texi: Remove tls-authz. - -2007-10-17 Simon Josefsson - - * NEWS, configure.in, doc/examples/Makefile.am, - doc/examples/ex-client-authz.c, doc/examples/ex-serv-authz.c, - doc/reference/Makefile.am, includes/gnutls/gnutls.h.in, - lib/Makefile.am, lib/ext_authz.c, lib/ext_authz.h, src/cli.c, - src/cli.gaa, src/serv.c, src/serv.gaa: Remove TLS-authz. - -2007-10-15 Simon Josefsson - - * configure.in: Bump version. - -2007-10-15 Simon Josefsson - - * NEWS: Add. - -2007-10-15 Nikos Mavrogiannopoulos - - * lib/gnutls_priority.c: Reenabled the 256 bit algorithms in the - default priorities. - -2007-10-15 Nikos Mavrogiannopoulos - - * NEWS, configure.in, lib/auth_cert.h, lib/gnutls_cert.c, - lib/gnutls_errors.c, lib/gnutls_extra_hooks.c, - lib/gnutls_extra_hooks.h, libextra/gnutls_extra.c, - libextra/gnutls_openpgp.c, libextra/opencdk/main.h, - libextra/opencdk/sig-check.c, libextra/openpgp/compat.c, - libextra/openpgp/gnutls_openpgp.h, libextra/openpgp/pgpverify.c: ** - Corrected bugs in the openpgp certificate verification functions - using a keyring. Now it correctly verifies openpgp certificates. ** Removed the ancient pgpkeyserver support (which was not used - anywhere) - -2007-10-14 Simon Josefsson - - * ChangeLog: Generated. - -2007-10-14 Simon Josefsson - - * NEWS: Typo. - -2007-10-14 Simon Josefsson - - * NEWS: Version 2.1.2. - -2007-10-14 Simon Josefsson - - * doc/protocol/draft-nir-tls-eap-02.txt: Add. - -2007-10-14 Simon Josefsson - - * NEWS: Wrap. - -2007-10-14 Simon Josefsson - - * NEWS: Mention enum's. - -2007-10-14 Simon Josefsson - - * includes/gnutls/compat.h, includes/gnutls/gnutls.h.in: Move - deprecated SRP alerts to compat.h. - -2007-10-14 Simon Josefsson - - * includes/gnutls/compat.h: Add compatibility mapping for - GNUTLS_E_OPENPGP_TRUSTDB_VERSION_UNSUPPORTED. - -2007-10-14 Simon Josefsson - - * configure.in: Encode in shared library that we aren't backwards - compatible. - -2007-10-13 Nikos Mavrogiannopoulos - - * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, - src/serv-gaa.c, src/serv-gaa.h, src/serv.c, src/serv.gaa: removed - references to trustdb - -2007-10-13 Nikos Mavrogiannopoulos - - * NEWS, doc/gnutls.texi, includes/gnutls/compat.h, - includes/gnutls/extra.h, includes/gnutls/gnutls.h.in, - includes/gnutls/openpgp.h, libextra/gnutls_openpgp.c, - libextra/openpgp/compat.c, libextra/openpgp/extras.c, - libextra/openpgp/openpgp.h, libextra/openpgp/pgpverify.c: Removed - all the trustdb related code. It wasn't used and trustdbs are not - specified anywhere except pgp. Now we use the standard key rings. - -2007-10-13 Nikos Mavrogiannopoulos - - * doc/gnutls.texi: more text - -2007-10-12 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_priority.c: The 256 bit ciphers are not enabled - in the default priorities. - -2007-10-12 Nikos Mavrogiannopoulos - - * configure.in, lib/gnutls_algorithms.c, lib/gnutls_pk.c, - lib/x509/dsa.c, lib/x509/sign.c, src/certtool-gaa.c, - src/certtool.c, src/certtool.gaa: Added support for DSA2 (key sizes - for more than 1024 bits on DSA) via libgcrypt 1.3.0. - -2007-10-12 Nikos Mavrogiannopoulos - - * doc/gnutls.texi: Updated documentation. - -2007-10-12 Nikos Mavrogiannopoulos - - * : 1 0 NEWS - -2007-10-09 Simon Josefsson - - * NEWS: Mention certtool --quick-random. - -2007-10-09 Nikos Mavrogiannopoulos - - * includes/gnutls/gnutls.h.in: Added defines for the deprecated SRP - alert numbers. - -2007-10-09 Nikos Mavrogiannopoulos - - * lib/x509/extensions.c: added an assertion. - -2007-10-09 Nikos Mavrogiannopoulos - - * lib/gnutls_kx.c: Corrected an error in a parenthesis. - -2007-10-09 Nikos Mavrogiannopoulos - - * : commit 72b99e94b1ecb51a2182645797e6153baeb60fc4 Author: Nikos - Mavrogiannopoulos Date: Tue Oct 9 11:37:45 2007 - +0300 - -2007-10-08 Ludovic Courtès - - * guile/modules/gnutls.scm, guile/modules/gnutls/build/enums.scm: - Guile: Reflect SRP/PSK changes. * guile/modules/gnutls.scm (alert-description/unknown-srp-username, alert-description/missing-srp-username): Remove. (alert-description/unknown-psk-identity): New. * guile/modules/gnutls/build/enums.scm (%alert-description-enum): Likewise. - -2007-10-08 Ludovic Courtès - - * NEWS: Update `NEWS'. - -2007-10-08 Ludovic Courtès - - * configure.in: Fix configure-time Guile detection. * configure.in: Substitute `GUILE_LDFLAGS' into `LIBS', not - `LDFLAGS'. Patch by Nix . - -2007-10-08 Nikos Mavrogiannopoulos - - * : 1 1 doc/Makefile.am - -2007-10-08 Nikos Mavrogiannopoulos - - * : commit 175526ddfe18f4c443fb31a676b8f1d50895b053 Author: Nikos - Mavrogiannopoulos Date: Mon Oct 8 12:57:03 - 2007 +0300 - -2007-10-08 Simon Josefsson - - * : commit 1f24725c9a0b09e7a42ee18f2bb4c0fbac581b8f Author: Nikos - Mavrogiannopoulos Date: Mon Oct 8 12:08:33 - 2007 +0300 - -2007-10-07 Nikos Mavrogiannopoulos - - * lib/auth_srp.c: corrected possible size issue - -2007-10-07 Nikos Mavrogiannopoulos - - * NEWS, build-aux/config.rpath, doc/gnutls.texi, - includes/gnutls/openpgp.h, includes/gnutls/x509.h, - lib/x509/Makefile.am, lib/x509/xml.c, libextra/openpgp/Makefile.am, - libextra/openpgp/xml.c, po/de.po, po/ms.po, src/certtool-gaa.c, - src/certtool-gaa.h, src/certtool.c, src/certtool.gaa, - src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, src/common.c: - Removed all the xml functions and stubs, as well as references in - the documentation. - -2007-10-06 Nikos Mavrogiannopoulos - - * lib/gnutls_alert.c: error_to_alert() now always return an alert - number. This is to avoid sending illegal values when the return - value is not checked (commonplace). - -2007-10-06 Nikos Mavrogiannopoulos - - * : 51 51 src/certtool-gaa.c 10 10 src/certtool-gaa.h - -2007-10-06 Nikos Mavrogiannopoulos - - * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, - src/certtool.gaa: Added the --quick-random option to certtool to - improve generation time of private keys. They delay is quite - annoying especially when generating test keys. - -2007-10-06 Simon Josefsson - - * configure.in: Bump versions. - -2007-10-06 Simon Josefsson - - * NEWS: Add. - -2007-10-06 Nikos Mavrogiannopoulos - - * src/certtool.c: Corrected output in DER format and corrected - output for smime_to_pkcs7 to output in outfile instead of stdout. - -2007-09-24 Simon Josefsson - - * ChangeLog: Generated. - -2007-09-24 Simon Josefsson - - * configure.in: Bump version. - -2007-09-24 Simon Josefsson - - * NEWS: Version 2.1.1. - -2007-09-24 Simon Josefsson - - * NEWS: Add. - -2007-09-24 Simon Josefsson - - * configure.in: Rework Camellia configure messages and logic. - -2007-09-24 Simon Josefsson - - * NEWS: Add fixes, for trac. - -2007-09-24 Simon Josefsson - - * NEWS: Add. - -2007-09-24 Simon Josefsson - - * configure.in: Typo. - -2007-09-24 Simon Josefsson - - * configure.in: Add --disable-camellia. Remove automake - conditional, not used. - -2007-09-24 Simon Josefsson - - * AUTHORS: Add. - -2007-09-24 Simon Josefsson - - * NEWS: Add. - -2007-09-24 Simon Josefsson - - * NEWS: Bump version. - -2007-09-24 Simon Josefsson - - * configure.in, includes/gnutls/gnutls.h.in, lgl/gc-libgcrypt.c, - lgl/gc.h, lib/gnutls_algorithms.c, lib/gnutls_cipher_int.c, - lib/gnutls_priority.c, libextra/gnutls_openssl.c, - libextra/opencdk/opencdk.h, src/common.c, src/tests.c, src/tests.h, - src/tls_test.c: Add patch to support Camellia, contributed by - Yoshisato YANAGISAWA. Fixes #1. See - - http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/2331 - -2007-09-20 Simon Josefsson - - * ChangeLog: Generated. - -2007-09-20 Simon Josefsson - - * NEWS: Version 2.1.0. - -2007-09-20 Simon Josefsson - - * configure.in: Move CFLAGS setting further down, to make AC_PROG_CC - add -g to it. - -2007-09-20 Simon Josefsson - - * src/cli-gaa.c, src/serv-gaa.c: Generated. - -2007-09-20 Simon Josefsson - - * src/serv.gaa: Set variables to NULL. Fix oprfi variable. - -2007-09-20 Simon Josefsson - - * src/cli.gaa: Set variables to NULL. - -2007-09-20 Simon Josefsson - - * lib/ext_oprfi.c: Fix crash. - -2007-09-20 Simon Josefsson - - * lib/ext_oprfi.c: Fix crash. - -2007-09-20 Simon Josefsson - - * src/serv.c: Fix infloop. - -2007-09-20 Simon Josefsson - - * src/serv.c: Fix crash. - -2007-09-20 Simon Josefsson - - * src/cli.c: Fix crash. - -2007-09-20 Simon Josefsson - - * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, - src/serv-gaa.c, src/serv-gaa.h, src/serv.c, src/serv.gaa: Support - Opaque PRF Input in gnutls-cli and gnutls-serv. - -2007-09-20 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2007-09-20 Simon Josefsson - - * NEWS: Mention how to enable oprfi support. - -2007-09-20 Simon Josefsson - - * doc/gnutls.texi: Typo. - -2007-09-20 Simon Josefsson - - * lib/Makefile.am: Document more. - -2007-09-20 Simon Josefsson - - * lib/ext_oprfi.c: Doc fix. - -2007-09-20 Simon Josefsson - - * NEWS, configure.in, doc/gnutls.texi, includes/gnutls/gnutls.h.in, - lib/Makefile.am, lib/ext_oprfi.c, lib/ext_oprfi.h, - lib/gnutls_extensions.c, lib/gnutls_int.h, lib/gnutls_kx.c, - tests/Makefile.am, tests/oprfi.c: Support for Opaque PRF Input TLS - extension. - -2007-09-20 Simon Josefsson - - * doc/gnutls.texi: Add configure.in snippet to TLS ext section. - -2007-09-20 Simon Josefsson - - * doc/gnutls.texi: Typo. - -2007-09-20 Simon Josefsson - - * NEWS: Add. - -2007-09-20 Simon Josefsson - - * configure.in: Bump versions. - -2007-09-20 Simon Josefsson - - * doc/examples/Makefile.am: Fix -I's. - -2007-09-20 Simon Josefsson - - * ChangeLog: Generated. - -2007-09-20 Simon Josefsson - - * Makefile.am: Fix release target (git-tag no longer exit with - failure for non-existing tags). - -2007-09-20 Simon Josefsson - - * NEWS: Version 2.0.1. - -2007-09-20 Simon Josefsson - - * doc/gnutls.texi: Improve TLS ext section. - -2007-09-19 Simon Josefsson - - * doc/protocol/draft-ietf-tls-rfc4346-bis-05.txt: Add. - -2007-09-18 Simon Josefsson - - * doc/gnutls.texi: Notes on adding a new TLS extension. - -2007-09-17 Simon Josefsson - - * : commit 344057de0fbf1cbc55dbd74cc23c78ebd2609cfc Author: Simon - Josefsson Date: Mon Sep 17 11:13:39 2007 - +0200 - -2007-09-17 Nikos Mavrogiannopoulos - - * : commit 6d3a3222640ce3b5e4daa67a4624a507445de334 Author: Simon - Josefsson Date: Mon Sep 17 11:06:24 2007 - +0200 - -2007-09-17 Simon Josefsson - - * NEWS: Add. - -2007-09-17 Simon Josefsson - - * doc/Makefile.am, doc/credentials/Makefile.am, - doc/credentials/ca.tmpl, doc/credentials/client.tmpl, - doc/credentials/gnutls-http-serv, - doc/credentials/openpgp-server-key.txt, - doc/credentials/openpgp-server.txt, - doc/credentials/openpgp/Makefile.am, - doc/credentials/openpgp/cli_pub.asc, - doc/credentials/openpgp/cli_ring.asc, - doc/credentials/openpgp/cli_sec.asc, - doc/credentials/openpgp/pub.asc, doc/credentials/openpgp/sec.asc, - doc/credentials/params.pem, doc/credentials/proxy.tmpl, - doc/credentials/psk-passwd.txt, doc/credentials/server.tmpl, - doc/credentials/srp-passwd.txt, doc/credentials/srp-tpasswd.conf, - doc/credentials/srp/Makefile.am, doc/credentials/srp/tpasswd, - doc/credentials/srp/tpasswd.conf, doc/credentials/x509-ca-key.pem, - doc/credentials/x509-ca.pem, doc/credentials/x509-client-key.pem, - doc/credentials/x509-client.pem, doc/credentials/x509-other-ca.pem, - doc/credentials/x509-proxy-key.pem, doc/credentials/x509-proxy.pem, - doc/credentials/x509-server-dsa.pem, - doc/credentials/x509-server-key-dsa.pem, - doc/credentials/x509-server-key.pem, - doc/credentials/x509-server.pem, doc/credentials/x509-trust.pem, - doc/credentials/x509/Makefile.am, doc/credentials/x509/ca.pem, - doc/credentials/x509/cert-dsa.pem, doc/credentials/x509/cert.pem, - doc/credentials/x509/clicert-dsa.pem, - doc/credentials/x509/clicert.pem, - doc/credentials/x509/clikey-dsa.pem, - doc/credentials/x509/clikey.pem, doc/credentials/x509/key-dsa.pem, - doc/credentials/x509/key.pem, src/Makefile.am, - src/gnutls-http-serv, src/openpgp/Makefile.am, - src/openpgp/cli_pub.asc, src/openpgp/cli_ring.asc, - src/openpgp/cli_sec.asc, src/openpgp/pub.asc, src/openpgp/sec.asc, - src/params.pem, src/srp/Makefile.am, src/srp/tpasswd, - src/srp/tpasswd.conf, src/x509/Makefile.am, src/x509/ca.pem, - src/x509/cert-dsa.pem, src/x509/cert.pem, src/x509/clicert-dsa.pem, - src/x509/clicert.pem, src/x509/clikey-dsa.pem, src/x509/clikey.pem, - src/x509/key-dsa.pem, src/x509/key.pem: Move test credentials from - src/ to doc/credentials/. - -2007-09-17 Nikos Mavrogiannopoulos - - * : commit 9afa028dae6756ef463652e56543c89b04add024 Author: Nikos - Mavrogiannopoulos Date: Mon Sep 17 11:47:12 - 2007 +0300 - -2007-09-11 Simon Josefsson - - * gl/gnulib.mk, gl/m4/extensions.m4, gl/m4/gnulib-cache.m4, - gl/m4/gnulib-comp.m4, gl/m4/string_h.m4, gl/string_.h: Remove - duplicate gnulib modules. - -2007-09-11 Simon Josefsson - - * gl/gettext.h, gl/gnulib.mk, gl/m4/gnulib-cache.m4, - gl/m4/gnulib-comp.m4, gl/m4/sockpfaf.m4, gl/m4/stdbool.m4, - gl/m4/stdio_h.m4, gl/m4/sys_socket_h.m4, gl/m4/unistd_h.m4, - gl/stdbool_.h, gl/stdio_.h, gl/sys_socket_.h, gl/unistd_.h: Remove - duplicate gnulib modules. - -2007-09-11 Simon Josefsson - - * gl/gnulib.mk, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4: Update - gnulib files. - -2007-09-11 Simon Josefsson - - * lgl/m4/absolute-header.m4: Update gnulib files. - -2007-09-11 Simon Josefsson - - * lgl/m4/malloc.m4, lgl/m4/realloc.m4, lgl/m4/stdlib_h.m4, - lgl/realloc.c, lgl/stdlib_.h: Add. - -2007-09-04 Ludovic Courtès - - * guile/src/core.c: Guile: Fix `x509-certificate-dn-oid' and related - functions. * guile/src/core.c (X509_CERTIFICATE_DN_OID_FUNCTION_BODY): Use `scm_take_locale_stringn ()' instead of `scm_take_locale_string - ()'. * NEWS: Update. Signed-off-by: Simon Josefsson - -2007-09-04 Ludovic Courtès - - * NEWS: Guile: Fix `x509-certificate-dn-oid' and related functions. * guile/src/core.c (X509_CERTIFICATE_DN_OID_FUNCTION_BODY): Use `scm_take_locale_stringn ()' instead of `scm_take_locale_string - ()'. * NEWS: Update. Signed-off-by: Simon Josefsson - -2007-09-10 Simon Josefsson - - * gl/gnulib.mk, gl/m4/gnulib-comp.m4, lgl/Makefile.am, - lgl/m4/gnulib-comp.m4, lgl/m4/time_h.m4: Update gnulib files. - -2007-09-10 Simon Josefsson - - * .cvsignore, build-aux/.cvsignore, doc/.cvsignore, - doc/examples/.cvsignore, doc/manpages/.cvsignore, - doc/reference/.cvsignore, doc/reference/tmpl/.cvsignore, - doc/scripts/.cvsignore, gl/.cvsignore, includes/.cvsignore, - includes/gnutls/.cvsignore, lgl/.cvsignore, lib/.cvsignore, - lib/minitasn1/.cvsignore, lib/x509/.cvsignore, libextra/.cvsignore, - libextra/minilzo/.cvsignore, libextra/opencdk/.cvsignore, - libextra/openpgp/.cvsignore, m4/.cvsignore, po/.cvsignore, - src/.cvsignore, src/cfg/.cvsignore, src/cfg/platon/.cvsignore, - src/cfg/platon/str/.cvsignore, src/openpgp/.cvsignore, - src/srp/.cvsignore, src/x509/.cvsignore, tests/.cvsignore, - tests/hostname-check/.cvsignore, tests/key-id/.cvsignore, - tests/nist-pkits/.cvsignore, tests/pathlen/.cvsignore, - tests/pkcs1-padding/.cvsignore, tests/pkcs12-decode/.cvsignore, - tests/pkcs8-decode/.cvsignore, tests/rsa-md5-collision/.cvsignore, - tests/sha2/.cvsignore, tests/userid/.cvsignore, - tests/x509paths/.cvsignore: Remove .cvsignore's. - -2007-09-07 Simon Josefsson - - * NEWS: Fix. - -2007-09-07 Simon Josefsson - - * configure.in: Bump versions. - -2007-09-07 Simon Josefsson - - * NEWS, lib/gnutls_algorithms.c, lib/gnutls_int.h: Use official IANA - values for SRP. - -2007-09-06 Simon Josefsson - - * doc/examples/Makefile.am: TLS/IA example uses anonymous ciphers. - -2007-09-04 Simon Josefsson - - * ChangeLog: Generated. - -2007-09-04 Simon Josefsson - - * NEWS: Version 2.0.0. - -2007-09-04 Simon Josefsson - - * NEWS: Add. - -2007-09-03 Simon Josefsson - - * NEWS: Add 1.6.x entries. - -2007-09-03 Simon Josefsson - - * NEWS: Fix. - -2007-09-03 Simon Josefsson - - * configure.in: Use three-digit versions. - -2007-09-01 Simon Josefsson - - * NEWS: Fix. - -2007-09-01 Simon Josefsson - - * lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c: Use libtasn1 - v1.1. - -2007-08-31 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2007-08-31 Simon Josefsson - - * lib/minitasn1/libtasn1.h, lib/minitasn1/structure.c: Use libtasn1 - v1.0. - -2007-08-31 Simon Josefsson - - * configure.in: Drop gnits mode. - -2007-08-31 Simon Josefsson - - * doc/examples/Makefile.am: Also don't build ex-serv-anon when - anonymous ciphers are disabled. - -2007-08-31 Simon Josefsson - - * doc/examples/Makefile.am: Don't try to build ex-client1 if - anonymous ciphers are disabled. - -2007-08-27 Simon Josefsson - - * ChangeLog: Generated. - -2007-08-27 Simon Josefsson - - * NEWS: Version 1.7.19. - -2007-08-27 Simon Josefsson - - * NEWS: Add. - -2007-08-27 Simon Josefsson - - * doc/examples/ex-session-info.c: Support GNUTLS_CRD_PSK and - GNUTLS_CRD_IA. - -2007-08-27 Simon Josefsson - - * src/common.c: Handle GNUTLS_CRD_IA in print_info(). - -2007-08-27 Simon Josefsson - - * NEWS: Add. - -2007-08-27 Simon Josefsson - - * lib/gnutls_errors.c: Doc fix. - -2007-08-27 Simon Josefsson - - * lib/gnutls_handshake.c: Revert "Check that value is negative - before using gnutls_error_is_fatal." This reverts commit 9949a4b0b6b62a0ff3c05fee4283928d1a53b675. - -2007-08-27 Simon Josefsson - - * lib/gnutls_errors.c: Have gnutls_error_is_fatal return 0 on - positive "errors". Would fix bug reported by Andreas Metzler - in - - . - -2007-08-27 Simon Josefsson - - * lib/gnutls_handshake.c: Check that value is negative before using - gnutls_error_is_fatal. Fixes bug reported by Andreas Metzler - in - - see also . - -2007-08-24 Simon Josefsson - - * NEWS: Add. - -2007-08-24 Simon Josefsson - - * libextra/opencdk/misc.c, libextra/opencdk/opencdk.h: Upgrade to - OpenCDK 0.6.4. - -2007-08-24 Simon Josefsson - - * doc/protocol/draft-babu-serv-cert-trans-from-proxy-00.txt: Add. - -2007-08-23 Simon Josefsson - - * gl/readline.c: Upgrade gnulib files. - -2007-08-23 Simon Josefsson - - * src/certtool.c: No need for getline.h. - -2007-08-23 Simon Josefsson - - * NEWS: Add. - -2007-08-23 Simon Josefsson - - * gl/getdelim.c, gl/getdelim.h, gl/getline.c, gl/getline.h, - gl/getpass.c, gl/gnulib.mk, gl/m4/getdelim.m4, gl/m4/getline.m4, - gl/m4/gnulib-comp.m4, gl/m4/stdio_h.m4, gl/m4/unistd_h.m4, - gl/stdio_.h, gl/unistd_.h, lgl/Makefile.am, lgl/m4/stdio_h.m4, - lgl/stdio_.h: Upgrade gnulib files. - -2007-08-23 Simon Josefsson - - * NEWS: Add. - -2007-08-23 Simon Josefsson - - * gl/fseeko.c, gl/getpass.c, gl/getpass.h, gl/gnulib.mk, - gl/lseek.c, gl/m4/fseeko.m4, gl/m4/getpass.m4, - gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/lseek.m4, - lgl/Makefile.am, lgl/fseeko.c, lgl/getdelim.c, lgl/getdelim.h, - lgl/getline.c, lgl/getline.h, lgl/getpass.c, lgl/getpass.h, - lgl/lseek.c, lgl/m4/fseeko.m4, lgl/m4/getdelim.m4, - lgl/m4/getline.m4, lgl/m4/getpass.m4, lgl/m4/gnulib-cache.m4, - lgl/m4/gnulib-comp.m4, lgl/m4/lseek.m4: Update gnulib files. - -2007-08-20 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2007-08-20 Simon Josefsson - - * doc/examples/Makefile.am: Don't build pgp example if pgp has been - disabled. - -2007-08-16 Simon Josefsson - - * ChangeLog: Generated. - -2007-08-16 Simon Josefsson - - * NEWS: Version 1.7.18. - -2007-08-16 Simon Josefsson - - * NEWS: Add. - -2007-08-16 Simon Josefsson - - * configure.in: Bump version. - -2007-08-16 Simon Josefsson - - * NEWS: Add. - -2007-08-16 Simon Josefsson - - * NEWS: Add. - -2007-08-16 Simon Josefsson - - * lib/auth_psk_passwd.c, lib/gnutls_psk.c, lib/gnutls_x509.c, - libextra/gnutls_openpgp.c, libextra/openssl_compat.c: Fix pointer - mix for different sized variables. Tiny patch from - - . - -2007-08-15 Simon Josefsson - - * doc/Makefile.am: Typo. - -2007-08-15 Simon Josefsson - - * doc/Makefile.am: Install images in info directory. - -2007-08-15 Simon Josefsson - - * doc/Makefile.am, doc/arch/certificate-user-use-case.eps, - doc/arch/certificate-user-use-case.pdf, - doc/arch/client-server-use-case.eps, - doc/arch/client-server-use-case.pdf, doc/arch/extensions_st.eps, - doc/arch/extensions_st.pdf, doc/arch/handshake-sequence.eps, - doc/arch/handshake-sequence.pdf, doc/arch/handshake-state.eps, - doc/arch/handshake-state.pdf, doc/arch/mod_auth_st.eps, - doc/arch/mod_auth_st.pdf, doc/arch/objects.eps, - doc/arch/objects.pdf, doc/gnutls-certificate-user-use-case.eps, - doc/gnutls-certificate-user-use-case.pdf, - doc/gnutls-client-server-use-case.eps, - doc/gnutls-client-server-use-case.pdf, - doc/gnutls-extensions_st.eps, doc/gnutls-extensions_st.pdf, - doc/gnutls-handshake-sequence.eps, - doc/gnutls-handshake-sequence.pdf, doc/gnutls-handshake-state.eps, - doc/gnutls-handshake-state.pdf, doc/gnutls-mod_auth_st.eps, - doc/gnutls-mod_auth_st.pdf, doc/gnutls-objects.eps, - doc/gnutls-objects.pdf, doc/gnutls.texi: More image renaming. - -2007-08-15 Simon Josefsson - - * doc/Makefile.am, doc/gnutls-internals.eps, - doc/gnutls-internals.pdf, doc/gnutls-layers.eps, - doc/gnutls-layers.pdf, doc/gnutls-pgp.eps, doc/gnutls-pgp.pdf, - doc/gnutls-x509.eps, doc/gnutls-x509.pdf, doc/gnutls.texi, - doc/internals.eps, doc/internals.pdf, doc/layers.eps, - doc/layers.pdf, doc/pgp1.eps, doc/pgp1.pdf, doc/x509-1.eps, - doc/x509-1.pdf: Rename images to deal with texinfo brokenness. See - . - -2007-08-15 Simon Josefsson - - * doc/Makefile.am, doc/my-bib-macros.texi: Remove my-bib-macros, not - used. - -2007-08-15 Simon Josefsson - - * tests/x509self.c: Fix warning. Tiny patch from Andreas Metzler - . - -2007-08-15 Simon Josefsson - - * libextra/gnutls_openpgp.c: Fix warning. Tiny patch from Andreas - Metzler . - -2007-08-15 Simon Josefsson - - * ChangeLog: Generated. - -2007-08-15 Simon Josefsson - - * NEWS: Typo. - -2007-08-15 Simon Josefsson - - * NEWS: Version 1.7.17. - -2007-08-15 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2007-08-13 Simon Josefsson - - * NEWS: Add. - -2007-08-13 Simon Josefsson - - * NEWS, includes/gnutls/openpgp.h, libextra/gnutls_openpgp.c: Add - gnutls_openpgp_privkey_sign_hash. - -2007-08-13 Simon Josefsson - - * doc/examples/ex-cert-select.c, includes/gnutls/gnutls.h.in, - includes/gnutls/gnutlsxx.h, includes/gnutls/openpgp.h, - includes/gnutls/pkcs12.h, lib/auth_dh_common.c, lib/auth_dhe_psk.c, - lib/auth_psk.c, lib/auth_psk.h, lib/auth_psk_passwd.c, - lib/auth_psk_passwd.h, lib/gnutls_psk.c, lib/gnutls_session.c, - lib/gnutls_session_pack.c, lib/gnutls_x509.c, lib/gnutlsxx.cpp, - lib/x509/output.c, src/certtool-cfg.c, src/certtool-cfg.h, - src/certtool.c, src/cli.c, src/common.c, src/common.h, src/crypt.c, - src/prime.c, src/psk.c, src/serv.c, src/tests.c, src/tests.h, - src/tls_test.c: Use *_t types consistently. - -2007-08-12 Simon Josefsson - - * includes/gnutls/gnutls.h.in, includes/gnutls/x509.h, - lib/gnutls_cert.c, lib/gnutls_sig.c, lib/x509/privkey.c, - tests/x509signself.c: Use const and pointers to gnutls_datum_t in - sign callback. - -2007-08-12 Simon Josefsson - - * tests/x509signself.c: Fix warnings. - -2007-08-11 Simon Josefsson - - * doc/manpages/Makefile.am: Update. - -2007-08-11 Simon Josefsson - - * configure.in: Set shared library version correctly. - -2007-08-11 Simon Josefsson - - * NEWS, includes/gnutls/gnutls.h.in: New errors - GNUTLS_E_APPLICATION_ERROR_MIN..GNUTLS_E_APPLICATION_ERROR_MAX. - -2007-08-11 Simon Josefsson - - * NEWS, includes/gnutls/gnutls.h.in, lib/gnutls_cert.c, - lib/gnutls_sig.c: Add gnutls_sign_callback_get. * includes/gnutls/gnutls.h.in (gnutls_sign_callback_get): Add. * lib/gnutls_cert.c (gnutls_sign_callback_set): Move here from gnutls_sig.c. Doc fix. (gnutls_sign_callback_get): New function. * lib/gnutls_sig.c (gnutls_sign_callback_set): Removed. - -2007-08-10 Simon Josefsson - - * lib/gnutls_errors.c: (gnutls_error_is_fatal): Return default is 1 for unknown error - codes. - -2007-08-10 Simon Josefsson - - * doc/manpages/Makefile.am: Update. - -2007-08-10 Simon Josefsson - - * NEWS, includes/gnutls/gnutls.h.in, includes/gnutls/x509.h, - lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa_export.c, - lib/gnutls_int.h, lib/gnutls_sig.c, lib/gnutls_x509.c, - lib/x509/privkey.c, tests/Makefile.am, tests/x509signself.c: - External signing callback interface. * includes/gnutls/gnutls.h.in (gnutls_sign_func): New type. (gnutls_sign_callback_set): New function. * includes/gnutls/x509.h (gnutls_x509_privkey_sign_hash): New function. * lib/gnutls_x509.c (gnutls_certificate_set_x509_key_mem): Handle NULL key. Doc fix. * lib/gnutls_sig.c (_gnutls_tls_sign_hdata): Pass session to _gnutls_tls_sign. (_gnutls_tls_sign_params): Likewise. (_gnutls_tls_sign): Add new parameter 'session'. Call sign callback if appropriate. (gnutls_sign_callback_set): New function. * lib/gnutls_x509.c (read_key_mem): Support a NULL key. * lib/gnutls_int.h (internals_st): Add sign_func, sign_func_userdata. * lib/auth_dhe.c (gen_dhe_server_kx): Use length of certificate list to decide wheter to sign, not presence of private key. * lib/auth_cert.c (_gnutls_gen_cert_client_cert_vrfy): Likewise. * lib/auth_rsa_export.c (gen_rsa_export_server_kx): Likewise. * lib/auth_cert.c(_gnutls_get_selected_cert): Don't require that private key is present. * lib/auth_rsa_export.c (gen_rsa_export_server_kx): Don't check key size when key is not present, assume it is > 512 bits. * lib/x509/privkey.c (gnutls_x509_privkey_sign_hash): New function. * tests/Makefile.am: Add x509signself. - -2007-08-10 Simon Josefsson - - * NEWS: Add. - -2007-08-10 Simon Josefsson - - * tests/Makefile.am: Build x509self. - -2007-08-10 Simon Josefsson - - * tests/x509self.c: New file. - -2007-08-08 Simon Josefsson - - * NEWS: Add. - -2007-08-08 Simon Josefsson - - * lib/gnutls_priority.c: Disable TLS 1.2 by default, at least until - RFC is out and we've done simple interop of it. - -2007-08-08 Simon Josefsson - - * AUTHORS: Add. - -2007-08-08 Simon Josefsson - - * NEWS: Add. - -2007-08-08 Simon Josefsson - - * po/pl.po, po/sv.po: Sync with TP. - -2007-08-08 Simon Josefsson - - * NEWS: Add. - -2007-07-09 Ludovic Courtès - - * doc/gnutls.texi, doc/signatures.texi: Capitalized subsection - titles. * doc/gnutls.texi: Capitalized subsection titles. * doc/signatures.texi: Likewise. Signed-off-by: Simon Josefsson - -2007-08-08 Simon Josefsson - - * NEWS: Add. - -2007-08-03 Ludovic Courtès - - * doc/Makefile.am, guile/src/Makefile.am: Fixed CPPFLAGS for Guile - code and documentation. * doc/Makefile.am (SNARF_CPPFLAGS): Added `{top_srcdir,top_builddir}/includes' and `top_builddir'. (core.c.texi): Added `&&' between the `make' command and the `$(GUILE_FOR_BUILD)' command. Use `$(MAKE)' instead of `make'. (extra.c.texi): Likewise. * src/Makefile.am (AM_CPPFLAGS): Added `{top_srcdir,top_builddir}/includes'. Signed-off-by: Simon Josefsson - -2007-08-08 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2007-08-08 Simon Josefsson - - * ChangeLog: Generated. - -2007-08-07 Simon Josefsson - - * NEWS: Version 1.7.16. - -2007-08-07 Simon Josefsson - - * NEWS: Add. - -2007-08-07 Simon Josefsson - - * NEWS: Add. - -2007-08-07 Simon Josefsson - - * build-aux/GNUmakefile, build-aux/maint.mk, doc/fdl.texi, - doc/gnutls.texi, doc/gpl-2.0.texi, doc/lgpl-2.1.texi, gl/error.c, - gl/gnulib.mk, gl/m4/gnulib-cache.m4, gl/m4/include_next.m4, - gl/override/doc/gpl-2.0.texi.diff, - gl/override/doc/lgpl-2.1.texi.diff, lgl/Makefile.am, - lgl/m4/gnulib-cache.m4, lgl/m4/include_next.m4, lgl/m4/stdint.m4: - Update gnulib files. - -2007-08-02 Ludovic Courtès - - * NEWS: Updated `NEWS'. Signed-off-by: Simon Josefsson - -2007-08-01 Ludovic Courtès - - * lib/auth_cert.c: Fixed erroneous checks and sloppy return values - in certificate selection. * lib/auth_cert.c (_gnutls_get_selected_cert): Dereference APR_CERT_LIST_LENGTH, APR_PKEY and APR_CERT_LIST when validating - their value. (_gnutls_server_select_cert): When IDX < 0, set RET to `GNUTLS_E_INSUFFICIENT_CREDENTIALS'. Signed-off-by: Simon Josefsson - -2007-08-02 Simon Josefsson - - * doc/protocol/draft-santesson-tls-gssapi-03.txt: Add. - -2007-08-02 Simon Josefsson - - * AUTHORS: Add. - -2007-07-14 Simon Josefsson - - * lgl/stdint_.h, lgl/vasnprintf.c: Update gnulib files. - -2007-07-14 Simon Josefsson - - * NEWS: Add. - -2007-07-14 Simon Josefsson - - * configure.in: Bump versions. - -2007-07-14 Simon Josefsson - - * src/cli.c: On starttls EOF on stdin, clear EOF flag to make future - reads work OK. Needed for Mac OS X. Report and tiny patch by Hal - Eden . - -2007-07-12 Simon Josefsson - - * build-aux/gendocs.sh, gl/override/lib/version-etc.c.diff, - lgl/Makefile.am, lgl/m4/wchar.m4, lgl/wchar_.h: Update. - -2007-07-09 Simon Josefsson - - * doc/protocol/draft-ietf-tls-rfc4346-bis-04.txt, - doc/protocol/draft-santesson-tls-gssapi-02.txt: Add. - -2007-07-09 Simon Josefsson - - * doc/Makefile.am, doc/gnutls.texi, doc/internals.texi: Avoid make - errors regarding internals.texi. See - - . - -2007-07-09 Simon Josefsson - - * doc/Makefile.am, guile/src/Makefile.am: Fix build failure in doc/ - when guile isn't installed built yet. - -2007-07-08 Ludovic Courtès - - * doc/gnutls.texi, doc/internals.texi: Manual: Capitalized section - and chapter titles. * doc/gnutls.texi: Capitalized section and chapter titles. (Certificate to XML convertion functions): Fixed typo both in node name and chapter title. Updated menu. * doc/internals.texi: Likewise. Signed-off-by: Simon Josefsson - -2007-07-06 Simon Josefsson - - * doc/protocol/draft-nir-tls-eap-01.txt: Add. - -2007-07-02 Ludovic Courtès - - * doc/guile.texi: Manual: Small Guile fixes. * doc/guile.texi: Fixed typos, added cross-refs to the Guile manual. Signed-off-by: Simon Josefsson - -2007-07-03 Simon Josefsson - - * doc/protocol/draft-ietf-tls-rfc4366-bis-00.txt: Add. - -2007-07-02 Simon Josefsson - - * ChangeLog: Generated. - -2007-07-02 Simon Josefsson - - * NEWS: Version 1.7.15. - -2007-07-02 Simon Josefsson - - * po/LINGUAS: Revert. - -2007-07-02 Simon Josefsson - - * po/LINGUAS: Sync with TP. - -2007-07-02 Simon Josefsson - - * NEWS: Add. - -2007-07-02 Simon Josefsson - - * doc/gpl-2.0.texi, doc/gpl.texi, doc/lgpl-2.1.texi, doc/lgpl.texi: - Fix gnulib name changes. - -2007-07-02 Simon Josefsson - - * build-aux/config.rpath, build-aux/maint.mk, doc/Makefile.am, - doc/gnutls.texi, gl/gnulib.mk, gl/m4/getaddrinfo.m4, - gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, - gl/override/doc/gpl-2.0.texi.diff, gl/override/doc/gpl.texi.diff, - gl/override/doc/lgpl-2.1.texi.diff, gl/override/doc/lgpl.texi.diff: - Update gnulib files. Fix GPL renaming. - -2007-07-02 Simon Josefsson - - * NEWS: Add. - -2007-07-02 Simon Josefsson - - * doc/gnutls.texi: Typo. - -2007-07-02 Simon Josefsson - - * doc/gnutls.texi: Improve installation instructions. - -2007-07-02 Simon Josefsson - - * doc/gnutls.texi: Add 'Obtaining and Installing'. Suggested by - ludo@gnu.org (Ludovic Courtès). - -2007-06-29 Simon Josefsson - - * NEWS: Add. - -2007-06-29 Simon Josefsson - - * doc/guile.texi: Add 'Guile Preparations' section. Based on - discussions with ludo@gnu.org (Ludovic Courtès). - -2007-06-29 Simon Josefsson - - * configure.in: Check for scm_from_locale_string instead of SCM_API. - Patch from ludo@gnu.org (Ludovic Courtès). - -2007-06-29 Simon Josefsson - - * NEWS: Add. - -2007-06-29 Simon Josefsson - - * guile/src/Makefile.am: Put $(GUILE_FLAGS) in LIBADD, not LDFLAGS. - Reported by ludo@gnu.org (Ludovic Courtès). - -2007-06-27 Simon Josefsson - - * doc/TODO: Add. - -2007-06-27 Simon Josefsson - - * NEWS: Add. - -2007-06-27 Simon Josefsson - - * po/LINGUAS, po/ms.po: Sync with TP. - -2007-06-27 Simon Josefsson - - * NEWS: Add. - -2007-06-27 Simon Josefsson - - * tests/key-id/key-id: Can't use /dev/null as template under - mingw32, probably really a bug in cfg+. - -2007-06-27 Simon Josefsson - - * gl/m4/getaddrinfo.m4: Fix gai_strerror on mingw32. - -2007-06-26 Simon Josefsson - - * NEWS, configure.in: Check that the guile header files is recent - enough and that it works. - -2007-06-26 Simon Josefsson - - * configure.in: Move Guile setup stuff down under 'External - libraries'. - -2007-06-26 Simon Josefsson - - * Makefile.am, NEWS, configure.in: Fix installation path of Guile - bindings. - -2007-06-26 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2007-06-26 Simon Josefsson - - * ChangeLog: Generated. - -2007-06-26 Simon Josefsson - - * NEWS: Version 1.7.14. - -2007-06-26 Simon Josefsson - - * NEWS: Add. - -2007-06-26 Simon Josefsson - - * NEWS: Add. - -2007-06-26 Simon Josefsson - - * doc/gendocs_template, gl/gnulib.mk, gl/m4/absolute-header.m4, - gl/m4/gnulib-comp.m4, gl/m4/include_next.m4, gl/m4/netinet_in_h.m4, - gl/m4/string_h.m4, gl/m4/sys_socket_h.m4, gl/netinet_in_.h, - gl/string_.h, gl/sys_socket_.h, lgl/Makefile.am, lgl/float_.h, - lgl/m4/absolute-header.m4, lgl/m4/float_h.m4, - lgl/m4/gnulib-comp.m4, lgl/m4/include_next.m4, lgl/m4/stdint.m4, - lgl/m4/stdio_h.m4, lgl/m4/string_h.m4, lgl/m4/sys_socket_h.m4, - lgl/m4/sys_stat_h.m4, lgl/m4/time_h.m4, lgl/m4/unistd_h.m4, - lgl/m4/wchar.m4, lgl/printf-args.c, lgl/printf-parse.h, - lgl/stdint_.h, lgl/stdio_.h, lgl/string_.h, lgl/sys_socket_.h, - lgl/sys_stat_.h, lgl/time_.h, lgl/unistd_.h, lgl/wchar_.h: Update - gnulib files. - -2007-06-26 Simon Josefsson - - * NEWS: Add. - -2007-06-17 Ludovic Courtes - - * configure.in: Make sure Guile is 1.8 or later. * configure.in: Make sure Guile is 1.8 or later, using - `GUILE_CHECK'. Signed-off-by: Simon Josefsson - -2007-06-26 Simon Josefsson - - * NEWS: Add. - -2007-06-26 Ludovic Courtes - - * lib/gnutls_pk.c: Fixed memory leak in `_gnutls_dsa_verify ()'. * lib/gnutls_pk.c (_gnutls_dsa_verify): Release `rs[0]' and `rs[1]' when done. Signed-off-by: Simon Josefsson - -2007-06-20 Simon Josefsson - - * NEWS: Add. - -2007-06-20 Simon Josefsson - - * THANKS: Add. - -2007-06-20 Simon Josefsson - - * src/cli.c: Don't crash if TLS handshake fails. Reported by Marc - Haber and Andreas Metzler - via Debian BTS #429183. - -2007-06-20 Simon Josefsson - - * doc/protocol/draft-ietf-tls-rsa-aes-gcm-00.txt: Add. - -2007-06-15 Simon Josefsson - - * doc/protocol/draft-ietf-tls-srp-14.txt: Add. - -2007-06-14 Simon Josefsson - - * AUTHORS: Update PGP key. - -2007-06-14 Simon Josefsson - - * AUTHORS: Change Ludovic' description. - -2007-06-14 Simon Josefsson - - * libextra/gnutls_openpgp.c: Merge patch from Timo, applied to CVS. (stream_to_datum): Call gnutls_assert() on error. - -2007-06-13 Ludovic Courtès - - * lib/auth_cert.c: Fix off-by-one in TLS 1.2 handshake. * lib/auth_cert.c (_gnutls_gen_cert_server_cert_req): Before - invoking `gnutls_malloc ()', increment SIZE when using TLS 1.2 so - that the allocated buffer is large-enough to contain the list of - supported hashes. Don't change SIZE later on. Signed-off-by: Simon Josefsson - -2007-06-13 Ludovic Courtès - - * libextra/gnutls_openpgp.c: Fix use of uninitialized variable in - `gnutls_certificate_set_openpgp_key_mem ()' * libextra/gnutls_openpgp.c (stream_to_datum): Check whether INP is - NULL rather than checking BUF (which is not initialized yet). Signed-off-by: Simon Josefsson - -2007-06-13 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2007-06-13 Simon Josefsson - - * doc/protocol/draft-salowey-tls-rfc4507bis-00.txt: Add. - -2007-06-12 Simon Josefsson - - * doc/TODO: Add. - -2007-06-11 Ludovic Courtes - - * guile/tests/openpgp-auth.scm, guile/tests/openpgp-keyring.scm, - guile/tests/raw-to-c.scm: Small cleanups in `guile/tests'. Signed-off-by: Simon Josefsson - -2007-06-12 Simon Josefsson - - * doc/Makefile.am: Clarify that guile.texi dependencies are - dependencies of gnutls.texi too. - -2007-06-11 Simon Josefsson - - * doc/protocol/draft-nir-tls-eap-00.txt: Add. - -2007-06-11 Simon Josefsson - - * THANKS, configure.in: Need to use CFLAGS when checking for - -Wno-pointer-sign. Reported by "Kristofer T. Karas" - . - -2007-06-11 Simon Josefsson - - * ChangeLog: Generated. - -2007-06-11 Simon Josefsson - - * NEWS: Version 1.7.13. - -2007-06-11 Simon Josefsson - - * Makefile.am: Fix update-po target. - -2007-06-11 Simon Josefsson - - * NEWS: Fix. - -2007-06-11 Simon Josefsson - - * NEWS: Add. - -2007-06-11 Simon Josefsson - - * doc/manpages/Makefile.am: Fix copyright years. - -2007-06-11 Simon Josefsson - - * doc/reference/gnutls.types: Add, to work around problems if this - file isn't present. - -2007-06-11 Simon Josefsson - - * Makefile.am: Fix release target. - -2007-06-11 Simon Josefsson - - * po/Makevars: Specify MSGFILTER, to fix make distcheck. - -2007-06-11 Simon Josefsson - - * guile/src/Makefile.am: Need to put libguile-gnutls-v-0.la before - gnulib_libs, to fix rpath issue. - -2007-06-11 Simon Josefsson - - * guile/src/Makefile.am: Use _LIBADD for libraries, not _LDFLAGS. - -2007-06-11 Simon Josefsson - - * NEWS: Add. - -2007-06-11 Simon Josefsson - - * NEWS: Add. - -2007-06-11 Simon Josefsson - - * gl/gnulib.mk, gl/m4/string_h.m4, gl/string_.h, lgl/Makefile.am, - lgl/fseeko.c, lgl/m4/gettext.m4, lgl/m4/gnulib-comp.m4, - lgl/m4/intlmacosx.m4, lgl/m4/string_h.m4, lgl/m4/vasnprintf.m4, - lgl/printf-args.c, lgl/printf-args.h, lgl/printf-parse.c, - lgl/printf-parse.h, lgl/string_.h, lgl/vasnprintf.c: Update gnulib - files. - -2007-06-11 Simon Josefsson - - * libextra/opencdk/armor.c, libextra/opencdk/cipher.c, - libextra/opencdk/compress.c, libextra/opencdk/context.h, - libextra/opencdk/filters.h, libextra/opencdk/kbnode.c, - libextra/opencdk/keydb.c, libextra/opencdk/literal.c, - libextra/opencdk/main.c, libextra/opencdk/main.h, - libextra/opencdk/misc.c, libextra/opencdk/new-packet.c, - libextra/opencdk/opencdk.h, libextra/opencdk/pubkey.c, - libextra/opencdk/read-packet.c, libextra/opencdk/seskey.c, - libextra/opencdk/sig-check.c, libextra/opencdk/stream.c, - libextra/opencdk/stream.h, libextra/opencdk/verify.c: Update to - OpenCDK 0.6.3. - -2007-06-11 Simon Josefsson - - * doc/protocol/draft-badra-ecdhe-tls-psk-00.txt, - doc/protocol/draft-hajjeh-tls-identity-protection-01.txt, - doc/protocol/draft-hajjeh-tls-sign-03.txt: Add. - -2007-06-08 Ludovic Courtes - - * guile/src/Makefile.am: Fix Guile linking so that the right GnuTLS - libs are used. * guile/src/Makefile.am (GNUTLS_CORE_LIBS, GNUTLS_EXTRA_LIBS): New. (GNULIB_LDFLAGS): Renamed to `GNULIB_LIBS'. Explicitly pass the - `.la' path. (libguile_gnutls_v_0_la_LDFLAGS): Pass `$(GUILE_LDFLAGS)' as the - last item so that RPATH is in the right order (i.e., all `$(top_builddir)/...' appear first). (libguile_gnutls_extra_v_0_la_LDFLAGS): Likewise. - -2007-06-08 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2007-06-08 Simon Josefsson - - * ChangeLog: Generated. - -2007-06-08 Simon Josefsson - - * NEWS: Version 1.7.12. - -2007-06-08 Simon Josefsson - - * NEWS: Add. - -2007-06-08 Simon Josefsson - - * lib/x509/x509.c: Fix warnings on amd64, from Nikos. - -2007-06-08 Simon Josefsson - - * NEWS: Add. - -2007-06-08 Simon Josefsson - - * NEWS: Add. - -2007-06-08 Simon Josefsson - - * : commit 42c591867afe192eae45c56f1e0f9e3b8867d2ad Author: Simon - Josefsson Date: Fri Jun 8 13:45:59 2007 - +0200 - -2007-06-08 Simon Josefsson - - * po/Makevars: Try to fix line number collisions. - -2007-06-06 Ludovic Courtes - - * configure.in, guile/src/Makefile.am: Fixed the - `-Wno-strict-prototypes' issue in Guile code. * configure.in: Add all custom CFLAGS to `AM_CFLAGS' rather than `CFLAGS', except for `-D_REENTRANT -D_THREAD_SAFE' which must be present during feature tests. Substitute `AM_CFLAGS'. * src/Makefile.am (libguile_gnutls_v_0_la_CFLAGS): Added - `$(AM_CFLAGS)'. (libguile_gnutls_extra_v_0_la_CFLAGS): Likewise. (AM_CFLAGS): When GCC is used, add `-Wno-strict-prototypes'. - -2007-06-06 Ludovic Courtes - - * configure.in: Cosmetic changes in `configure.in'. * configure.in: Display a heading indicating that Guile stuff are - being detected. - -2007-06-06 Ludovic Courtes - - * m4/guile.m4: Added `guile.m4', per Simon's request. - -2007-06-06 Ludovic Courtes - - * configure.in: Don't look for Guile when `guile-snarf' is not - found. * configure.in: Don't invoke `GUILE_PROGS' and `GUILE_FLAGS' when `guile-snarf' is not found. - -2007-06-04 Simon Josefsson - - * doc/protocol/draft-rescorla-tls-suiteb-01.txt: Add. - -2007-06-04 Simon Josefsson - - * doc/protocol/draft-ietf-tls-ecc-new-mac-01.txt: Add. - -2007-06-01 Simon Josefsson - - * doc/guile.texi: More @node fixes. - -2007-06-01 Simon Josefsson - - * doc/guile.texi: Avoid @node collisions with main manual. - -2007-06-01 Simon Josefsson - - * doc/Makefile.am: Need -I for config.h. - -2007-06-01 Simon Josefsson - - * Makefile.am: Need to build doc/ after guile/. - -2007-06-01 Simon Josefsson - - * NEWS: Add. - -2007-06-01 Simon Josefsson - - * guile/src/Makefile.am: Need -I for config.h. - -2007-06-01 Ludovic Courtès - - * : commit f469cfce51318df3b629d9af210ce4b4e587fac0 Author: Ludovic - Courtes Date: Fri Jun 1 00:51:10 2007 +0200 - -2007-06-01 Ludovic Courtes - - * doc/extract-guile-c-doc.scm, - guile/modules/system/documentation/c-snarf.scm: Tiny bug fixes in - Guile's documentation extraction. * doc/extract-guile-c-doc.scm (main): Use named arguments rather - than a single rest arg. Fixed the order of arguments as passed to `run-cpp-and-extract-snarfing' so that `ccache gcc -E' is really passed as `("ccache" "gcc" "-E")' (in this order). * guile/modules/system/documentation/c-snarf.scm (run-cpp-and-extract-snarfing): Pass FILE as the last CPP - argument. - -2007-05-31 Ludovic Courtes - - * Makefile.am, configure.in, guile/src/Makefile.am: Build cleanups - following Simon's comments. * Makefile.am (SUBDIRS): Add `guile' when `HAVE_GUILE'. * configure.in: When `guile-snarf' is not found, set `opt_guile_bindings' to `no' instead of bailing out. * src/Makefile.am (GUILE_FOR_BUILD): Fixed `-L' parameter. - -2007-05-31 Simon Josefsson - - * doc/gnutls.texi: Revert unnecessary changes. - -2007-05-31 Simon Josefsson - - * : commit d51689f572e544759632fa2f9ca0209a843d4452 Author: Ludovic - Courtès Date: Thu May 31 00:28:19 2007 +0200 - -2007-05-31 Ludovic Courtès - - * doc/guile.texi: Minor doc fixes. - -2007-05-31 Ludovic Courtès - - * doc/Makefile.am: Handle missing Guile when building the - documentation. - -2007-05-31 Ludovic Courtès - - * doc/Makefile.am, doc/extract-guile-c-doc.scm, doc/gnutls.texi, - doc/guile.texi: Integrated documentation of Guile bindings. - -2007-05-30 Ludovic Courtès - - * configure.in, guile/src/Makefile.am: Try to handle "function - declaration isn't a prototype" warnings. - -2007-05-30 Simon Josefsson - - * gl/netinet_in_.h, gl/string_.h, gl/sys_socket_.h, - lgl/Makefile.am, lgl/float_.h, lgl/fseeko.c, lgl/lseek.c, - lgl/m4/iconv.m4, lgl/m4/lseek.m4, lgl/m4/stdio_h.m4, lgl/stdint_.h, - lgl/stdio_.h, lgl/string_.h, lgl/sys_socket_.h, lgl/sys_stat_.h, - lgl/time_.h, lgl/unistd_.h, lgl/wchar_.h: Update. - -2007-05-30 Ludovic Courtès - - * Makefile.am, configure.in, guile/Makefile.am, - guile/modules/Makefile.am, guile/modules/gnutls.scm, - guile/modules/gnutls/build/enums.scm, - guile/modules/gnutls/build/priorities.scm, - guile/modules/gnutls/build/smobs.scm, - guile/modules/gnutls/build/utils.scm, - guile/modules/gnutls/extra.scm, - guile/modules/system/documentation/README, - guile/modules/system/documentation/c-snarf.scm, - guile/modules/system/documentation/output.scm, - guile/pre-inst-guile.in, guile/src/Makefile.am, guile/src/core.c, - guile/src/errors.c, guile/src/errors.h, guile/src/extra.c, - guile/src/make-enum-header.scm, guile/src/make-enum-map.scm, - guile/src/make-session-priorities.scm, - guile/src/make-smob-header.scm, guile/src/make-smob-types.scm, - guile/src/utils.c, guile/src/utils.h, guile/tests/Makefile.am, - guile/tests/anonymous-auth.scm, guile/tests/errors.scm, - guile/tests/openpgp-auth.scm, guile/tests/openpgp-keyring.asc, - guile/tests/openpgp-keyring.scm, guile/tests/openpgp-keys.scm, - guile/tests/openpgp-pub.asc, guile/tests/openpgp-sec.asc, - guile/tests/pkcs-import-export.scm, guile/tests/raw-to-c.scm, - guile/tests/rsa-parameters.pem, - guile/tests/session-record-port.scm, guile/tests/srp-base64.scm, - guile/tests/x509-auth.scm, guile/tests/x509-certificate.pem, - guile/tests/x509-certificates.scm, guile/tests/x509-key.pem: Started - Guile integration. Documentation is still missing. A bit rough on the edges, but - `make' and `make check' do work. - -2007-05-28 Simon Josefsson - - * doc/Makefile.am: Make sure all images are distributed in all - formats. Reported by Andreas Metzler . - -2007-05-27 Simon Josefsson - - * lib/gnutls_x509.c: (parse_pem_ca_mem): Handle reads beyond first certificate properly. - Reported by Dennis Vshivkov in - . - -2007-05-27 Simon Josefsson - - * tests/Makefile.am, tests/parse_ca.c: Add self-test. - -2007-05-27 Simon Josefsson - - * THANKS: Add. - -2007-05-27 Simon Josefsson - - * NEWS: Fix. - -2007-05-27 Simon Josefsson - - * NEWS: [no log message] - -2007-05-27 Simon Josefsson - - * lib/gnutls_datum.c: (_gnutls_free_datum_m): Free even if size is 0. - -2007-05-26 Simon Josefsson - - * NEWS: Add. - -2007-05-26 Simon Josefsson - - * lib/x509/privkey_pkcs8.c: (decode_pkcs8_key): If ASN.1 decoding fails after decrypting an - already properly decoded value, assume it is due to a bad password - rather than ASN.1 error. Reported by Nate Nielsen - . (From 1.6.x branch.) - -2007-05-26 Simon Josefsson - - * lib/x509/privkey_pkcs8.c: (decode_private_key_info): Translate asn1 errors properly. Reported - by Nate Nielsen . - -2007-05-26 Simon Josefsson - - * lib/auth_cert.c: Fix mem leak, reported by Andrey Nosenko - . (From 1.6.x branch.) - -2007-05-26 Simon Josefsson - - * THANKS: Add (from 1.6.x). - -2007-05-26 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2007-05-26 Simon Josefsson - - * ChangeLog: Generated. - -2007-05-26 Simon Josefsson - - * NEWS: Version 1.7.11. - -2007-05-26 Simon Josefsson - - * NEWS: Fix. - -2007-05-26 Simon Josefsson - - * configure.in: Bump versions. - -2007-05-26 Simon Josefsson - - * NEWS: Add. - -2007-05-26 Simon Josefsson - - * libextra/opencdk/Makefile.am: Add opencdk.h to sources. - -2007-05-25 Simon Josefsson - - * ChangeLog: Generated. - -2007-05-25 Simon Josefsson - - * NEWS: Version 1.7.10. - -2007-05-25 Simon Josefsson - - * Makefile.am: Use cg instead of cvs commands, for update-po target. - -2007-05-25 Simon Josefsson - - * NEWS: Add. - -2007-05-25 Simon Josefsson - - * Makefile.am: Change release target from cvs to git. - -2007-05-25 Simon Josefsson - - * lgl/lseek.c, lgl/m4/lseek.m4: Update. - -2007-05-25 Simon Josefsson - - * doc/gendocs_template, lgl/.cvsignore, lgl/Makefile.am, - lgl/fseeko.c, lgl/m4/fseeko.m4, lgl/m4/gnulib-comp.m4, - lgl/m4/unistd_h.m4, lgl/stdio_.h, lgl/unistd_.h: Update. - -2007-05-25 Simon Josefsson - - * NEWS: Typo. - -2007-05-24 Simon Josefsson - - * doc/manpages/Makefile.am: Update. - -2007-05-24 Simon Josefsson - - * lib/gnutls_x509.c: Use new API. - -2007-05-24 Simon Josefsson - - * NEWS: Add. - -2007-05-24 Simon Josefsson - - * gl/gnulib.mk, gl/netinet_in_.h, gl/string_.h, gl/sys_socket_.h, - lgl/.cvsignore, lgl/Makefile.am, lgl/float+.h, lgl/float_.h, - lgl/fseeko.c, lgl/m4/float_h.m4, lgl/m4/fseeko.m4, - lgl/m4/gnulib-comp.m4, lgl/m4/stdio_h.m4, lgl/m4/vasnprintf.m4, - lgl/m4/vasprintf.m4, lgl/m4/wint_t.m4, lgl/stdint_.h, lgl/stdio_.h, - lgl/string_.h, lgl/sys_socket_.h, lgl/sys_stat_.h, lgl/time_.h, - lgl/unistd_.h, lgl/vasnprintf.c, lgl/wchar_.h: Update. - -2007-05-24 Simon Josefsson - - * configure.in: Bump versions. - -2007-05-24 Simon Josefsson - - * NEWS, includes/gnutls/x509.h, lib/x509/verify.c, lib/x509/x509.c, - lib/x509/x509.h: Export gnutls_x509_crt_get_raw_dn, - gnutls_x509_crt_get_raw_issuer_dn. - -2007-05-23 Timo Schulz - - * libextra/openpgp/xml.c: fix the key ID representation in the XML - code. - -2007-05-21 Timo Schulz - - * libextra/openpgp/extras.c, libextra/openpgp/openpgp.h, - libextra/openpgp/pgp.c, libextra/openpgp/xml.c: cleanups for the xml - code: elgamal keys are not supported. bug fix for the key import - (base64) code, store the stream and close it in the deinit function. - -2007-05-21 Timo Schulz - - * src/openpgp/Makefile.am, src/openpgp/cli_ring.asc: Add client - keyring in base64 format. This is the same file as cli_ring.gpg but - armored. - -2007-05-21 Timo Schulz - - * libextra/openpgp/extras.c: do not close the input stream in the - import code when the base64 is used. - -2007-05-14 Timo Schulz - - * tests/openpgp/keyring.c: few more comments. - -2007-05-14 Timo Schulz - - * configure.in: add makefile for the openpgp test folder - -2007-05-14 Timo Schulz - - * libextra/openpgp/extras.c: patch to support raw keyrings. - -2007-05-14 Timo Schulz - - * tests/Makefile.am, tests/openpgp/Makefile.am, - tests/openpgp/keyring.c: Add simple openpgp test. - -2007-05-12 Simon Josefsson - - * ChangeLog: [no log message] - -2007-05-12 Simon Josefsson - - * NEWS: Version 1.7.9. - -2007-05-12 Simon Josefsson - - * NEWS: Add. - -2007-05-12 Simon Josefsson - - * tests/Makefile.am: Reorder to work around libtool bug. - -2007-05-12 Simon Josefsson - - * NEWS: Fix. - -2007-05-12 Simon Josefsson - - * NEWS: Add. - -2007-05-12 Simon Josefsson - - * lgl/m4/vasnprintf.m4, lgl/vasnprintf.c, libextra/opencdk/armor.c, - libextra/opencdk/cipher.c, libextra/opencdk/compress.c, - libextra/opencdk/context.h, libextra/opencdk/filters.h, - libextra/opencdk/kbnode.c, libextra/opencdk/keydb.c, - libextra/opencdk/literal.c, libextra/opencdk/main.c, - libextra/opencdk/main.h, libextra/opencdk/misc.c, - libextra/opencdk/opencdk.h, libextra/opencdk/pubkey.c, - libextra/opencdk/read-packet.c, libextra/opencdk/sig-check.c, - libextra/opencdk/stream.c, libextra/opencdk/verify.c, - libextra/opencdk/write-packet.c: Update. - -2007-05-11 Simon Josefsson - - * NEWS: Add. - -2007-05-11 Simon Josefsson - - * lib/gnutls_priority.c: (gnutls_set_default_priority): Change order to prefer X.509 over - OpenPGP. - -2007-05-03 Simon Josefsson - - * doc/gendocs_template, gl/override/doc/gendocs_template, - gl/override/doc/gendocs_template.diff: Update. - -2007-05-03 Simon Josefsson - - * doc/gendocs_template: Revert to upstream gnulib version. - -2007-05-03 Simon Josefsson - - * NEWS: Fix. - -2007-05-03 Simon Josefsson - - * NEWS: Add. - -2007-05-03 Simon Josefsson - - * gl/gnulib.mk, gl/m4/gnulib-comp.m4, gl/m4/socklen.m4, - gl/socket_.h, gl/string_.h, gl/sys_socket_.h, lgl/Makefile.am, - lgl/getpass.c, lgl/m4/fseeko.m4, lgl/m4/gnulib-comp.m4, - lgl/m4/socklen.m4, lgl/m4/stdint.m4, lgl/m4/stdio_h.m4, - lgl/m4/sys_stat_h.m4, lgl/m4/unistd_h.m4, lgl/socket_.h, - lgl/stat_.h, lgl/stdio_.h, lgl/string_.h, lgl/sys_socket_.h, - lgl/sys_stat_.h, lgl/time_.h, lgl/unistd_.h, lgl/wchar_.h: Update. - -2007-05-02 Simon Josefsson - - * doc/Makefile.am: Add gnutls-logo.pdf, to fix distcheck. - -2007-05-02 Simon Josefsson - - * lib/x509/output.c: Fix mem leaks. - -2007-04-29 Simon Josefsson - - * doc/protocol/draft-otto-tls-sigma-ciphersuite-00.txt: Add. - -2007-04-24 Timo Schulz - - * libextra/opencdk/literal.c: missing file. - -2007-04-24 Simon Josefsson - - * doc/protocol/draft-ietf-tls-ecc-new-mac-00.txt, - doc/protocol/draft-ietf-tls-suiteb-00.txt: Add. - -2007-04-22 Timo Schulz - - * libextra/opencdk/dummy.c: [no log message] - -2007-04-22 Timo Schulz - - * libextra/opencdk/Makefile.am, libextra/opencdk/README, - libextra/opencdk/armor.c, libextra/opencdk/cipher.c, - libextra/opencdk/cipher.h, libextra/opencdk/compress.c, - libextra/opencdk/context.h, libextra/opencdk/encrypt.c, - libextra/opencdk/filters.h, libextra/opencdk/kbnode.c, - libextra/opencdk/keydb.c, libextra/opencdk/keygen.c, - libextra/opencdk/keylist.c, libextra/opencdk/keyserver.c, - libextra/opencdk/main.c, libextra/opencdk/main.h, - libextra/opencdk/md.c, libextra/opencdk/md.h, - libextra/opencdk/misc.c, libextra/opencdk/new-packet.c, - libextra/opencdk/opencdk.h, libextra/opencdk/packet.h, - libextra/opencdk/plaintext.c, libextra/opencdk/pubkey.c, - libextra/opencdk/read-packet.c, libextra/opencdk/seskey.c, - libextra/opencdk/sig-check.c, libextra/opencdk/sign.c, - libextra/opencdk/stream.c, libextra/opencdk/stream.h, - libextra/opencdk/sym-cipher.c, libextra/opencdk/trustdb.c, - libextra/opencdk/types.h, libextra/opencdk/verify.c, - libextra/opencdk/write-packet.c: replace the old build-in opencdk - version with the most recent cvs version. - -2007-04-22 Simon Josefsson - - * configure.in: Check for OpenCDK function that is only available in - OpenCDK 0.6.0. - -2007-04-21 Simon Josefsson - - * doc/TODO: Add. - -2007-04-21 Simon Josefsson - - * doc/protocol/draft-badra-tls-password-00.txt, - doc/protocol/draft-badra-tls-password-ext-00.txt: Add. - -2007-04-20 Timo Schulz - - * libextra/gnutls_openpgp.c: Adjustments for the opencdk migration - and some cleanups. - -2007-04-20 Timo Schulz - - * libextra/openpgp/compat.c, libextra/openpgp/extras.c, - libextra/openpgp/gnutls_openpgp.h, libextra/openpgp/openpgp.h, - libextra/openpgp/pgp.c, libextra/openpgp/pgpverify.c, - libextra/openpgp/privkey.c, libextra/openpgp/xml.c: First bunch of - patches for the opencdk migration. - -2007-04-19 Simon Josefsson - - * libextra/openpgp/extras.c: (gnutls_openpgp_keyring_import): Make it work (it seems the old code - didn't work). Patch from ludo@chbouib.org (Ludovic Courtès). - -2007-04-18 Simon Josefsson - - * doc/gnutls.texi: Mention P12 structure. - -2007-04-18 Simon Josefsson - - * tests/tlsia.c: Check return codes from init functions. - -2007-04-18 Simon Josefsson - - * NEWS, lib/x509/sign.c: Write NULL in parameters for RSA signing. - -2007-04-17 Simon Josefsson - - * NEWS, src/certtool-cfg.c, src/certtool.c: Use current time as - default serial number. - -2007-04-17 Simon Josefsson - - * NEWS: Add. - -2007-04-16 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2007-04-16 Simon Josefsson - - * ChangeLog: [no log message] - -2007-04-16 Simon Josefsson - - * NEWS: Version 1.7.8. - -2007-04-16 Simon Josefsson - - * lib/x509/x509_write.c: Doc fix. - -2007-04-16 Simon Josefsson - - * tests/gc.c: Need to init libgcrypt with secure memory hooks. - -2007-04-16 Simon Josefsson - - * NEWS, doc/manpages/Makefile.am: Add. - -2007-04-16 Simon Josefsson - - * includes/gnutls/gnutls.h.in: Reorder to make it compile. - -2007-04-16 Simon Josefsson - - * gl/m4/gnulib-comp.m4, gl/string_.h, lgl/Makefile.am, - lgl/float+.h, lgl/m4/gnulib-comp.m4, lgl/m4/intl.m4, - lgl/m4/longdouble.m4, lgl/m4/stdint.m4, lgl/m4/stdio_h.m4, - lgl/m4/vasnprintf.m4, lgl/printf-args.c, lgl/printf-args.h, - lgl/printf-parse.c, lgl/stdio_.h, lgl/string_.h, lgl/time_.h, - lgl/vasnprintf.c, lgl/wchar_.h: Update. - -2007-04-16 Simon Josefsson - - * lgl/gc-libgcrypt.c, lib/gnutls_handshake.c, - lib/gnutls_session_pack.c, lib/x509/output.c, lib/x509/verify.c: Fix - warnings, tiny patch from Andreas Metzler - . - -2007-04-12 Simon Josefsson - - * doc/TODO: Fix. - -2007-04-12 Simon Josefsson - - * doc/TODO: Fix. - -2007-04-12 Simon Josefsson - - * doc/TODO: Add. - -2007-04-11 Simon Josefsson - - * NEWS, includes/gnutls/gnutls.h.in, lib/gnutls_psk.c: (gnutls_psk_set_client_credentials): Fix prototype. - -2007-04-10 Simon Josefsson - - * NEWS: Add. - -2007-04-10 Simon Josefsson - - * doc/examples/Makefile.am, lib/Makefile.am, src/cli.c, src/serv.c: - Respect ENABLE_AUTHZ. - -2007-04-10 Simon Josefsson - - * lib/gnutls_extensions.c: Make tls-authz conditional on - ENABLE_AUTHZ. - -2007-04-10 Simon Josefsson - - * configure.in: Add anon conditional. - -2007-04-10 Simon Josefsson - - * configure.in: Fix --disable-*. - -2007-04-10 Simon Josefsson - - * configure.in: Add --disable-tls-authorization. - -2007-04-10 Simon Josefsson - - * libextra/gnutls_openpgp.c: (gnutls_certificate_set_openpgp_key): Allocate certificate structure - properly. Tiny patch from ludo@chbouib.org (Ludovic Courtès). - -2007-04-06 Simon Josefsson - - * src/cli.c: Make -d work again after last change. - -2007-04-06 Simon Josefsson - - * NEWS: Add. - -2007-04-06 Simon Josefsson - - * lib/x509/x509.c: (gnutls_x509_crt_get_key_id): Don't fail on non-RSA/DSA public keys. - -2007-04-04 Simon Josefsson - - * src/cli-gaa.c, src/cli.gaa, src/common.c, src/common.h, - src/serv-gaa.c, src/serv.gaa: Use gnutls_cipher_suite_info. - -2007-04-04 Simon Josefsson - - * NEWS, includes/gnutls/gnutls.h.in, lib/gnutls_algorithms.c: Add - gnutls_cipher_suite_info API, suggested by Howard Chu - . - -2007-04-04 Simon Josefsson - - * src/common.c: Don't hard code algorithm list. - -2007-04-04 Simon Josefsson - - * NEWS, includes/gnutls/gnutls.h.in, lib/gnutls_algorithms.c: Add - new APIs to list supported algorithms: gnutls_cipher_list, - gnutls_mac_list, gnutls_compression_list, gnutls_protocol_list, - gnutls_certificate_type_list, and gnutls_kx_list. Suggested by - Howard Chu . - -2007-04-04 Simon Josefsson - - * lib/gnutls_algorithms.c, lib/gnutls_algorithms.h: Simplify kx - definition, since gnutls-extra no longer touches it. - -2007-04-04 Simon Josefsson - - * src/cli.c: Init the library immediately (for print_list(), called - by gaa_parser, to be able to call gnutls functions). - -2007-04-03 Simon Josefsson - - * src/Makefile.am: $(LIBOPENCDK_LIBS) should be necessary here, - since libgnutls-extra links to it. - -2007-04-03 Simon Josefsson - - * libextra/Makefile.am: Fix LIBOPENCDK_LIBS. No need for - AM_CPPFLAGS += $(LIBOPENCDK_CFLAGS), the new macro add necessary - -I's to CPPFLAGS automatically. - -2007-04-03 Simon Josefsson - - * configure.in: Need stddef.h for opencdk.h. - -2007-04-03 Simon Josefsson - - * gl/getpass.c, gl/getpass.h, gl/gnulib.mk, gl/m4/getpass.m4, - gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, lgl/.cvsignore, - lgl/Makefile.am, lgl/getdelim.c, lgl/getdelim.h, lgl/getline.c, - lgl/getline.h, lgl/getpass.c, lgl/getpass.h, lgl/m4/getdelim.m4, - lgl/m4/getline.m4, lgl/m4/getpass.m4, lgl/m4/gnulib-cache.m4, - lgl/m4/gnulib-comp.m4: Update. - -2007-04-03 Simon Josefsson - - * configure.in: Fix LIBGNUTLS_EXTRA_* for cdk changes. - -2007-04-03 Simon Josefsson - - * NEWS: Add. - -2007-04-03 Simon Josefsson - - * configure.in, m4/opencdk.m4: Use AC_LIB_HAVE_LINKFLAGS to find - opencdk, remove opencdk.m4. - -2007-04-03 Simon Josefsson - - * build-aux/gendocs.sh, gl/stdbool_.h, lgl/Makefile.am, - lgl/alloca_.h, lgl/asprintf.c, lgl/m4/gnulib-cache.m4, - lgl/m4/gnulib-comp.m4, lgl/m4/iconv.m4, lgl/m4/intdiv0.m4, - lgl/stat_.h, lgl/stdbool_.h, lgl/vasprintf.c: Update. - -2007-03-28 Simon Josefsson - - * lib/x509/output.c: No need to error about unknown algorithm, it - already says unknown. - -2007-03-28 Simon Josefsson - - * lib/gnutls_algorithms.c: Remove #if GNUTLS_PK_LOOP madness that - hides problems. (gnutls_pk_algorithm_get_name): Don't return GOST for unsupported - algorithms (e.g., ECC). - -2007-03-28 Simon Josefsson - - * lib/gnutls_str.c: No need for vasprintf.h. - -2007-03-28 Simon Josefsson - - * gl/getaddrinfo.c, gl/string_.h, gl/version-etc.c, lgl/.cvsignore, - lgl/Makefile.am, lgl/asprintf.c, lgl/des.c, lgl/dummy.c, - lgl/float+.h, lgl/m4/gnulib-comp.m4, lgl/m4/printf-posix.m4, - lgl/m4/stdio_h.m4, lgl/m4/vasnprintf.m4, lgl/m4/vasprintf.m4, - lgl/printf-parse.c, lgl/stdio_.h, lgl/string_.h, lgl/vasnprintf.c, - lgl/vasprintf.c, lgl/vasprintf.h: Update. - -2007-03-21 Simon Josefsson - - * doc/examples/ex-crq.c, doc/examples/ex-pkcs12.c, - doc/examples/ex-rfc2818.c, src/crypt.c: Use size_t at appropriate - places. Tiny patch by Deanna Phillips . - -2007-03-21 Simon Josefsson - - * tests/anonself.c: Need netinet/in.h. Tiny patch from Deanna - Phillips . - -2007-03-21 Simon Josefsson - - * tests/pkcs1-padding/pkcs1-pad: Trim whitespace from 'wc' output. - Tiny patch from Deanna Phillips . - -2007-03-15 Simon Josefsson - - * doc/TODO: Add. - -2007-03-15 Simon Josefsson - - * lib/x509/x509_write.c: (gnutls_x509_crt_set_version): Doc fix, tiny patch from Florian - Weimer . - -2007-03-12 Simon Josefsson - - * gl/gnulib.mk, gl/m4/gnulib-comp.m4, gl/m4/netinet_in_h.m4, - gl/m4/sys_socket_h.m4, gl/netinet_in_.h, gl/socket_.h, - lgl/Makefile.am, lgl/des.c, lgl/des.h, lgl/dummy.c, - lgl/gc-gnulib.c, lgl/m4/gnulib-comp.m4, lgl/m4/snprintf.m4, - lgl/m4/stdbool.m4, lgl/m4/stdio_h.m4, lgl/m4/sys_socket_h.m4, - lgl/m4/vasnprintf.m4, lgl/snprintf.c, lgl/socket_.h, - lgl/stdbool_.h, lgl/stdint_.h, lgl/stdio_.h, lgl/vasnprintf.c, - lgl/vasnprintf.h, lgl/vasprintf.h: Update. - -2007-03-07 Simon Josefsson - - * doc/protocol/draft-ietf-tls-rfc4346-bis-03.txt: Update, - -2007-03-07 Simon Josefsson - - * lib/gnutls_buffers.c: Simplify error handling. - -2007-03-07 Simon Josefsson - - * NEWS: Add. - -2007-03-07 Simon Josefsson - - * lib/gnutls_priority.c: Doc fix. - -2007-03-07 Simon Josefsson - - * configure.in: Bump due to added APIs. - -2007-03-07 Simon Josefsson - - * lib/gnutls_priority.c: Prefer aes256. - -2007-03-06 Simon Josefsson - - * doc/manpages/Makefile.am: Update. - -2007-03-06 Simon Josefsson - - * GNUmakefile, maint-cfg.mk: Work around config.rpath issue. - -2007-03-06 Simon Josefsson - - * lgl/stdio_.h: Update. - -2007-03-05 Simon Josefsson - - * src/serv.c: Use libgnutls' priorities. - -2007-03-05 Simon Josefsson - - * src/cli.c: Fix. - -2007-03-05 Simon Josefsson - - * tests/dhepskself.c: Remove priority setting. Fix output. - -2007-03-05 Simon Josefsson - - * doc/examples/ex-client-authz.c, doc/examples/ex-client-srp.c, - doc/examples/ex-client2.c, doc/examples/ex-serv-pgp.c: Remove - confusing priority setting stuff. - -2007-03-05 Simon Josefsson - - * .cvsignore, build-aux/.cvsignore, doc/.cvsignore: [no log message] - -2007-03-05 Simon Josefsson - - * lib/ext_authz.c: Don't assert when no authz. - -2007-03-05 Simon Josefsson - - * src/cli.c: Use default ciphers. Simplify SRP callback. - -2007-03-05 Simon Josefsson - - * lib/gnutls_priority.c: (gnutls_set_default_priority): Fix defaults. - -2007-03-05 Simon Josefsson - - * src/cli.c: Let libgnutls remove SRP/PSK if not used. - -2007-03-05 Simon Josefsson - - * lib/gnutls_priority.c: Indent and doc fix. - -2007-03-05 Simon Josefsson - - * lib/Makefile.am, lib/gnutls_priority.h, lib/gnutls_record.c, - lib/gnutls_state.c: Remove gnutls_priority.h, not needed. - -2007-03-05 Simon Josefsson - - * configure.in: Reorder. - -2007-03-05 Simon Josefsson - - * configure.in: Reorder. - -2007-03-05 Simon Josefsson - - * configure.in: Reorder. - -2007-03-05 Simon Josefsson - - * GNUmakefile, build-aux/GNUmakefile, build-aux/config.rpath, - build-aux/gendocs.sh, build-aux/link-warning.h, build-aux/maint.mk, - gendocs.sh, gl/gnulib.mk, gl/m4/gnulib-cache.m4, lgl/Makefile.am, - lgl/m4/gnulib-cache.m4, link-warning.h, maint.mk: Fixes for - build-aux. - -2007-03-05 Simon Josefsson - - * configure.in: Use build-aux/. - -2007-03-05 Simon Josefsson - - * doc/protocol/draft-ietf-tls-rfc4346-bis-03.txt, - lgl/m4/gnulib-comp.m4, lgl/m4/time_r.m4, lgl/m4/vasnprintf.m4, - lgl/m4/vasprintf.m4, lgl/time_.h, lgl/vasnprintf.c, - lgl/vasnprintf.h, lgl/vasprintf.h: Updaet. - -2007-02-26 Simon Josefsson - - * doc/protocol/draft-salowey-tls-rsa-aes-gcm-00.txt: Add. - -2007-02-26 Simon Josefsson - - * po/sv.po: Sync with TP. - -2007-02-26 Simon Josefsson - - * po/pl.po: Sync with TP. - -2007-02-26 Simon Josefsson - - * doc/protocol/draft-nir-tee-pm-00.txt: Add. - -2007-02-25 Simon Josefsson - - * doc/examples/.cvsignore: [no log message] - -2007-02-25 Simon Josefsson - - * doc/gnutls.texi: Add authz server. - -2007-02-25 Simon Josefsson - - * NEWS: Fix. - -2007-02-25 Simon Josefsson - - * doc/examples/Makefile.am: Add authz. - -2007-02-25 Simon Josefsson - - * doc/examples/ex-serv-authz.c: Add. - -2007-02-25 Simon Josefsson - - * doc/examples/ex-client-authz.c, doc/gnutls.texi: Add. - -2007-02-24 Simon Josefsson - - * lib/x509/x509.c: Add credits. - -2007-02-22 Simon Josefsson - - * lib/x509/output.c: Minor tweaks to proxy output. - -2007-02-22 Simon Josefsson - - * NEWS: Add. - -2007-02-22 Simon Josefsson - - * THANKS: Typo. - -2007-02-22 Simon Josefsson - - * THANKS: Add. - -2007-02-22 Simon Josefsson - - * tests/.cvsignore: [no log message] - -2007-02-22 Simon Josefsson - - * tests/dn.c: Other cert. - -2007-02-22 Simon Josefsson - - * tests/Makefile.am: Add dn. - -2007-02-22 Simon Josefsson - - * tests/dn.c: Add. - -2007-02-22 Simon Josefsson - - * lib/x509/x509.c: Rename. - -2007-02-22 Simon Josefsson - - * includes/gnutls/x509.h: Rename non-released functions. - -2007-02-22 Simon Josefsson - - * lib/x509/x509.h: Remove. - -2007-02-22 Simon Josefsson - - * lib/x509/x509.c: Code cleanup and documentation of last patch. - -2007-02-22 Simon Josefsson - - * includes/gnutls/x509.h, lib/x509/x509.h: Fix. - -2007-02-22 Simon Josefsson - - * includes/gnutls/x509.h, lib/x509/x509.c, lib/x509/x509.h: New APIs - to deal with DN's. Patch from Howard Chu . - -2007-02-22 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2007-02-22 Simon Josefsson - - * ChangeLog: [no log message] - -2007-02-22 Simon Josefsson - - * NEWS: Version 1.7.7. - -2007-02-22 Simon Josefsson - - * lgl/.cvsignore: [no log message] - -2007-02-22 Simon Josefsson - - * gl/getaddrinfo.c, gl/gnulib.mk, gl/m4/gnulib-comp.m4, - gl/m4/string_h.m4, gl/string_.h, lgl/Makefile.am, - lgl/m4/gnulib-comp.m4, lgl/m4/intdiv0.m4, lgl/m4/snprintf.m4, - lgl/m4/stdio_h.m4, lgl/m4/string_h.m4, lgl/m4/unistd_h.m4, - lgl/snprintf.c, lgl/snprintf.h, lgl/stdio_.h, lgl/string_.h, - lgl/unistd_.h, link-warning.h: Update. - -2007-02-22 Simon Josefsson - - * doc/manpages/Makefile.am: Update. - -2007-02-22 Simon Josefsson - - * lib/ext_authz.c, lib/gnutls_supplemental.c: Typo. - -2007-02-22 Simon Josefsson - - * lib/gnutls_extensions.c, lib/gnutls_extensions.h: Revert. - -2007-02-22 Simon Josefsson - - * lib/gnutls_int.h: New flags for authz extension. - -2007-02-22 Simon Josefsson - - * lib/ext_authz.c: Use our own logic to determine whether to send - extension replies in server. - -2007-02-22 Simon Josefsson - - * lib/gnutls_extensions.h: Add prototype for - _gnutls_extension_list_check, we use it in ext_authz.c. - -2007-02-22 Simon Josefsson - - * lib/gnutls_extensions.c: Remove static from - _gnutls_extension_list_check, we use it in ext_authz.c - -2007-02-22 Simon Josefsson - - * lib/ext_authz.c: Don't send authz extension when we shouldn't. - -2007-02-22 Simon Josefsson - - * src/cli-gaa.c, src/cli-gaa.h: Generated. - -2007-02-22 Simon Josefsson - - * src/cli.c, src/serv.c: Fix #include's. - -2007-02-22 Simon Josefsson - - * NEWS: Add. - -2007-02-22 Simon Josefsson - - * src/cli.c, src/cli.gaa: Support gnutls-cli --authz-x509-attr-cert - and --authz-saml-assertion. - -2007-02-22 Simon Josefsson - - * src/common.c, src/serv-gaa.c, src/serv-gaa.h, src/serv.c, - src/serv.gaa: Support gnutls-serv --authz-x509-attr-cert and - --authz-saml-assertion. - -2007-02-22 Simon Josefsson - - * NEWS: Fix. - -2007-02-22 Simon Josefsson - - * configure.in: Fix so version due to added APIs. - -2007-02-22 Simon Josefsson - - * doc/reference/Makefile.am: Ignore more. - -2007-02-22 Simon Josefsson - - * NEWS: Revert. - -2007-02-22 Simon Josefsson - - * lib/gnutls.pc.in: Revert Requires-change. - -2007-02-21 Simon Josefsson - - * NEWS: Typo. - -2007-02-21 Simon Josefsson - - * lib/gnutls_extensions.c: Add authz extension. - -2007-02-21 Simon Josefsson - - * lib/ext_authz.c: Typo. - -2007-02-21 Simon Josefsson - - * lib/gnutls_supplemental.c: Add authz hooks. - -2007-02-21 Simon Josefsson - - * includes/gnutls/gnutls.h.in: Fix type (in never released - prototypes). - -2007-02-21 Simon Josefsson - - * lib/gnutls_int.h: Add authz stuff. - -2007-02-21 Simon Josefsson - - * lib/Makefile.am: Build ext_authz.h and ext_authz.c. - -2007-02-21 Simon Josefsson - - * lib/ext_authz.c, lib/ext_authz.h: New file. - -2007-02-21 Simon Josefsson - - * lib/gnutls_handshake.c, lib/gnutls_supplemental.h: Sync with - gnutls_supplemental.c. - -2007-02-21 Simon Josefsson - - * lib/gnutls_supplemental.c: Fill in type+length. - -2007-02-21 Simon Josefsson - - * NEWS: Add. - -2007-02-21 Simon Josefsson - - * includes/gnutls/gnutls.h.in: Add gnutls_authz_recv_callback_func - and gnutls_authz_send_callback_func. Add gnutls_authz_enable, - gnutls_authz_send_x509_attr_cert, gnutls_authz_send_saml_assertion, - gnutls_authz_send_x509_attr_cert_url, and - gnutls_authz_send_saml_assertion_url. Remove GNUTLS_AUTHZ_LAST from - gnutls_authz_data_format_type_t (never part of any release). - -2007-02-21 Simon Josefsson - - * lib/gnutls_supplemental.c: If callbacks failed to provide - anything, at least send protocol valid (yet semantically invalid) - supplemental message. - -2007-02-21 Simon Josefsson - - * lib/gnutls_int.h: Add for supplemental support. - -2007-02-21 Simon Josefsson - - * lib/gnutls_handshake.c: Support supplemental handshake messages. - -2007-02-21 Simon Josefsson - - * lib/Makefile.am: Add gnutls_supplemental.h and - gnutls_supplemental.c. - -2007-02-21 Simon Josefsson - - * lib/gnutls_supplemental.c, lib/gnutls_supplemental.h: New file. - -2007-02-21 Simon Josefsson - - * doc/TODO: Add. - -2007-02-19 Simon Josefsson - - * includes/gnutls/gnutls.h.in: Add gnutls_supplemental_get_name. - Fix gnutls_authz_data_format_type_t. - -2007-02-19 Simon Josefsson - - * NEWS: Add. - -2007-02-17 Simon Josefsson - - * lib/debug.c: Support SUPPLEMENTAL handshake type. - -2007-02-16 Simon Josefsson - - * AUTHORS: update - -2007-02-16 Simon Josefsson - - * NEWS: Add. - -2007-02-16 Simon Josefsson - - * tests/hostname-check/hostname-check.c: Tests ipAddress SAN's too. - -2007-02-16 Simon Josefsson - - * tests/hostname-check/hostname-check.c: Test wildcard stuff too. - -2007-02-16 Simon Josefsson - - * lib/x509/rfc2818_hostname.c: Indent. - -2007-02-16 Simon Josefsson - - * lib/x509/rfc2818_hostname.c: Support iPAddress too. Doc fix. - -2007-02-16 Simon Josefsson - - * NEWS: Add. - -2007-02-16 Simon Josefsson - - * tests/hostname-check/hostname-check.c: Fix mem leak. - -2007-02-16 Simon Josefsson - - * lib/x509/rfc2818_hostname.c: Doc fix. - -2007-02-16 Simon Josefsson - - * lib/x509/rfc2818_hostname.c: Don't treat absence of CN in subject - as a successful RFC 2818 hostname comparison match. Reported by - "Richard W.M. Jones" . - -2007-02-16 Simon Josefsson - - * tests/hostname-check/.cvsignore: [no log message] - -2007-02-16 Simon Josefsson - - * configure.in, tests/Makefile.am, - tests/hostname-check/Makefile.am, tests/hostname-check/README, - tests/hostname-check/hostname-check.c: Add self test of rfc2818 - server identity check. - -2007-02-15 Simon Josefsson - - * NEWS: Add. - -2007-02-15 Simon Josefsson - - * lib/gnutls.pc.in: Add 'Requires: libtasn1' to make 'pkg-config - --libs gnutls' output -ltasn1. Reported by Pavlov Konstantin - . - -2007-02-14 Simon Josefsson - - * lib/gnutls_hash_int.c: Avoid assert. - -2007-02-14 Simon Josefsson - - * src/certtool.c: Make sure NULL is a pointer. - -2007-02-14 Simon Josefsson - - * src/certtool.c: Change vararg 0 to NULL. Tiny change suggested by - Joe Orton . - -2007-02-14 Simon Josefsson - - * includes/gnutls/gnutls.h.in: Fix gnutls_authz_data_format_type_t. - -2007-02-14 Simon Josefsson - - * NEWS: Add. - -2007-02-14 Simon Josefsson - - * includes/gnutls/gnutls.h.in: Add - gnutls_supplemental_data_format_type_t with member - GNUTLS_SUPPLEMENTAL_AUTHZ_DATA. - -2007-02-14 Simon Josefsson - - * NEWS: Add. - -2007-02-14 Simon Josefsson - - * includes/gnutls/gnutls.h.in: Add gnutls_authz_data_format_type_t, - with members GNUTLS_AUTHZ_X509_ATTR_CERT, - GNUTLS_AUTHZ_SAML_ASSERTION, GNUTLS_AUTHZ_X509_ATTR_CERT_URL, - GNUTLS_AUTHZ_SAML_ASSERTION_URL. - -2007-02-14 Simon Josefsson - - * lib/gnutls_int.h: Reorder. - -2007-02-14 Simon Josefsson - - * lib/gnutls_int.h: Add GNUTLS_EXTENSION_AUTHZ_CLIENT and - GNUTLS_EXTENSION_AUTHZ_SERVER. - -2007-02-14 Simon Josefsson - - * NEWS: Add. - -2007-02-14 Simon Josefsson - - * includes/gnutls/gnutls.h.in: Add GNUTLS_HANDSHAKE_SUPPLEMENTAL. - -2007-02-14 Simon Josefsson - - * includes/gnutls/gnutls.h.in: Spell out handshake types. - -2007-02-13 Simon Josefsson - - * src/certtool-gaa.c, src/certtool-gaa.h: Update. - -2007-02-13 Simon Josefsson - - * src/certtool.c: Use error(). - -2007-02-13 Simon Josefsson - - * src/certtool.c: Cleanup p12 printing. - -2007-02-13 Simon Josefsson - - * src/certtool.c: Cleanup pkcs7_info. - -2007-02-13 Simon Josefsson - - * src/certtool.c: Fix. - -2007-02-13 Simon Josefsson - - * src/certtool.c: Better errors. - -2007-02-13 Simon Josefsson - - * src/certtool.gaa: Remove --copyright (use --version). - -2007-02-13 Simon Josefsson - - * src/certtool.c: Use version-etc. - -2007-02-13 Simon Josefsson - - * configure.in: Fix for version-etc. - -2007-02-13 Simon Josefsson - - * gl/gnulib.mk, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, - gl/m4/stdarg.m4, gl/version-etc-fsf.c, gl/version-etc.c, - gl/version-etc.h: Update. - -2007-02-13 Simon Josefsson - - * src/certtool.c: Cleanup CRL. - -2007-02-13 Simon Josefsson - - * src/certtool.c: Cleanup. - -2007-02-13 Simon Josefsson - - * src/certtool.c: Simplify. - -2007-02-13 Simon Josefsson - - * src/certtool.c: Cleanups. - -2007-02-13 Simon Josefsson - - * src/certtool.c: Rewrite generate_private_key_int. - -2007-02-13 Simon Josefsson - - * src/certtool.c: Fix mem leak. - -2007-02-13 Simon Josefsson - - * src/certtool.c: Fix crl_info. - -2007-02-13 Simon Josefsson - - * src/certtool.c: Rewrite load_private_key. - -2007-02-13 Simon Josefsson - - * src/certtool.c: Rewrite load_request. - -2007-02-13 Simon Josefsson - - * src/certtool.c: Rewrite load_ca_private_key. - -2007-02-13 Simon Josefsson - - * src/certtool.c: Remove. - -2007-02-13 Simon Josefsson - - * src/certtool.c: Rewrite load_ca_cert. - -2007-02-13 Simon Josefsson - - * src/certtool.c: No limit on CRL size during verification. - -2007-02-13 Simon Josefsson - - * lib/x509/x509.c: Simplify. - -2007-02-13 Simon Josefsson - - * tests/certificate_set_x509_crl.c: Need config.h. - -2007-02-13 Simon Josefsson - - * src/Makefile.am: Use AM_CPPFLAGS, not obsolete INCLUDES. - -2007-02-13 Simon Josefsson - - * src/Makefile.am: Need libgnu.la. - -2007-02-13 Simon Josefsson - - * src/errcodes.c: Need config.h. - -2007-02-13 Simon Josefsson - - * lib/gnutls_asn1_tab.c, lib/pkix_asn1_tab.c: Update. - -2007-02-13 Simon Josefsson - - * configure.in: Remove stuff obsoleted by time_r. - -2007-02-13 Simon Josefsson - - * configure.in: Don't check for time.h, not needed. - -2007-02-13 Simon Josefsson - - * lib/defines.h: Only use time.h, from gnulib if needed. - -2007-02-13 Simon Josefsson - - * lgl/.cvsignore: [no log message] - -2007-02-13 Simon Josefsson - - * tests/pathlen/ca-no-pathlen.pem, - tests/pathlen/no-ca-or-pathlen.pem: UPdate. - -2007-02-13 Simon Josefsson - - * NEWS: Add. - -2007-02-13 Simon Josefsson - - * lib/x509/output.c: Remove. - -2007-02-13 Simon Josefsson - - * gl/string_.h, lgl/Makefile.am, lgl/m4/gnulib-comp.m4, - lgl/m4/time_h.m4, lgl/m4/time_r.m4, lgl/string_.h, lgl/time_.h, - lgl/time_r.c, lgl/time_r.h: Update. - -2007-02-13 Simon Josefsson - - * tests/nist-pkits/.cvsignore, tests/x509paths/.cvsignore: [no log - message] - -2007-02-13 Simon Josefsson - - * tests/nist-pkits/README: Fix. - -2007-02-13 Simon Josefsson - - * tests/nist-pkits/gnutls-nist-tests.html: Add. - -2007-02-13 Simon Josefsson - - * tests/nist-pkits/README: Fix. - -2007-02-13 Simon Josefsson - - * tests/nist-pkits/pkits_test: Unpack. - -2007-02-13 Simon Josefsson - - * tests/nist-pkits/.cvsignore: [no log message] - -2007-02-13 Simon Josefsson - - * tests/nist-pkits/pkits_test: Add. - -2007-02-13 Simon Josefsson - - * tests/nist-pkits/pkits_test_list_generator.patch: Update. - -2007-02-13 Simon Josefsson - - * tests/nist-pkits/gnutls_test_entry: Remove. - -2007-02-13 Simon Josefsson - - * tests/nist-pkits/build-chain, tests/nist-pkits/gnutls_test_entry, - tests/nist-pkits/pkits_test_list_generator.patch: Add. - -2007-02-13 Simon Josefsson - - * tests/nist-pkits/README: Add. - -2007-02-13 Simon Josefsson - - * tests/nist-pkits/README: Add. - -2007-02-13 Simon Josefsson - - * lib/x509/mpi.c: We don't support inherited DSA parameters. - -2007-02-13 Simon Josefsson - - * tests/nist-pkits/pkits_crl, tests/nist-pkits/pkits_crt, - tests/nist-pkits/pkits_pkcs12, tests/nist-pkits/pkits_smime: Update. - -2007-02-13 Simon Josefsson - - * tests/nist-pkits/pkits: Fix. - -2007-02-13 Simon Josefsson - - * tests/nist-pkits/pkits: Fix. - -2007-02-13 Simon Josefsson - - * tests/nist-pkits/pkits: Fix. - -2007-02-13 Simon Josefsson - - * tests/.cvsignore, tests/nist-pkits/.cvsignore: [no log message] - -2007-02-13 Simon Josefsson - - * tests/nist-pkits/README, tests/nist-pkits/pkits, - tests/nist-pkits/pkits_crl, tests/nist-pkits/pkits_crt, - tests/nist-pkits/pkits_pkcs12, tests/nist-pkits/pkits_smime, - tests/pkits, tests/pkits_crl, tests/pkits_crt, tests/pkits_pkcs12, - tests/pkits_smime: Move PKITS stuff to nist-pkits/. - -2007-02-13 Simon Josefsson - - * doc/TODO: Add. - -2007-02-13 Simon Josefsson - - * tests/x509paths/README: Fix. - -2007-02-13 Simon Josefsson - - * tests/x509paths/chain: fix for chain 1. - -2007-02-13 Simon Josefsson - - * tests/.cvsignore: [no log message] - -2007-02-13 Simon Josefsson - - * tests/chain, tests/x509paths/README, tests/x509paths/chain: Move - old NIST stuff to separate directory. - -2007-02-13 Simon Josefsson - - * lib/x509/dn.c: Don't write to buf if *sizeof_buf==0. - -2007-02-13 Simon Josefsson - - * lib/x509/output.c: Don't use uninitialized. - -2007-02-13 Simon Josefsson - - * lib/x509/x509.c: Don't access ret unless *ret_size>0. - -2007-02-13 Simon Josefsson - - * configure.in: Fix PKI test. - -2007-02-13 Simon Josefsson - - * doc/manpages/Makefile.am: Update. - -2007-02-13 Simon Josefsson - - * src/certtool.c: Simplify copyright. - -2007-02-13 Simon Josefsson - - * NEWS: Add. - -2007-02-13 Simon Josefsson - - * src/certtool-cfg.c: Remove. - -2007-02-13 Simon Josefsson - - * src/certtool.c: Remove unused. - -2007-02-13 Simon Josefsson - - * src/Makefile.am: Make certtool conditional on ENABLE_PKI. - -2007-02-13 Simon Josefsson - - * configure.in: Add conditional for PKI stuff. - -2007-02-13 Simon Josefsson - - * src/certtool.c: Handle larger certificate lists. - -2007-02-13 Simon Josefsson - - * src/certtool.c: Fix. - -2007-02-13 Simon Josefsson - - * src/certtool.c: Fix. - -2007-02-13 Simon Josefsson - - * lib/x509/output.c: crl: Support GNUTLS_X509_CRT_UNSIGNED_FULL. - -2007-02-13 Simon Josefsson - - * src/certtool.c: Use gnutls_x509_crl_print. - -2007-02-13 Simon Josefsson - - * NEWS, includes/gnutls/x509.h, lib/x509/crl.c, lib/x509/output.c, - lib/x509/x509.c: Add gnutls_x509_crl_get_signature and - gnutls_x509_crl_print. - -2007-02-13 Simon Josefsson - - * src/certtool.c: Use error(). - -2007-02-13 Simon Josefsson - - * libextra/Makefile.am: We do need lgl/ though. - -2007-02-13 Simon Josefsson - - * libextra/Makefile.am, libextra/opencdk/Makefile.am: No need for - gl/. - -2007-02-13 Simon Josefsson - - * libextra/openpgp/Makefile.am: Don't include gl/. - -2007-02-13 Simon Josefsson - - * gl/error.c, gl/error.h, gl/gnulib.mk, gl/m4/error.m4, - gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/progname.c, - gl/progname.h: Add. - -2007-02-13 Simon Josefsson - - * configure.in: Revert. - -2007-02-13 Simon Josefsson - - * Makefile.am, configure.in: Revert. - -2007-02-13 Simon Josefsson - - * gl/dummy.c, src/lib/Makefile.am, src/lib/error.c, - src/lib/error.h, src/lib/m4/error.m4, src/lib/m4/gnulib-cache.m4, - src/lib/m4/gnulib-common.m4, src/lib/m4/gnulib-comp.m4, - src/lib/m4/gnulib-tool.m4, src/lib/progname.c, src/lib/progname.h: - Remove. - -2007-02-13 Simon Josefsson - - * libextra/Makefile.am: No need for gl/. - -2007-02-13 Simon Josefsson - - * Makefile.am: Fix src/lib/. - -2007-02-13 Simon Josefsson - - * configure.in: Build src/lib/. - -2007-02-13 Simon Josefsson - - * configure.in: Init src/lib/. - -2007-02-13 Simon Josefsson - - * gl/gnulib.mk, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, - src/lib/Makefile.am, src/lib/m4/gnulib-cache.m4, - src/lib/m4/gnulib-comp.m4: Update. - -2007-02-13 Simon Josefsson - - * gl/error.c, gl/error.h, gl/m4/error.m4: Remove. - -2007-02-13 Simon Josefsson - - * gl/error.c, gl/error.h, gl/gnulib.mk, gl/m4/error.m4, - gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, src/lib/Makefile.am, - src/lib/error.c, src/lib/error.h, src/lib/m4/error.m4, - src/lib/m4/gnulib-cache.m4, src/lib/m4/gnulib-common.m4, - src/lib/m4/gnulib-comp.m4, src/lib/m4/gnulib-tool.m4, - src/lib/progname.c, src/lib/progname.h: Add. - -2007-02-13 Simon Josefsson - - * src/certtool.c: No size limit on CRL data. - -2007-02-12 Simon Josefsson - - * lib/x509/common.c: (_gnutls_x509_san_find_type): Support GNUTLS_SAN_DN. - -2007-02-12 Simon Josefsson - - * lib/x509/output.c: Support GNUTLS_SAN_DN. - -2007-02-12 Simon Josefsson - - * NEWS: Add. - -2007-02-12 Simon Josefsson - - * lib/x509/x509.c: (parse_general_name): Support GNUTLS_SAN_DN. - -2007-02-12 Simon Josefsson - - * NEWS: Fix. - -2007-02-12 Simon Josefsson - - * configure.in: Bump versions. - -2007-02-12 Simon Josefsson - - * NEWS, includes/gnutls/gnutls.h.in: Add. - -2007-02-12 Simon Josefsson - - * ChangeLog: [no log message] - -2007-02-12 Simon Josefsson - - * NEWS: Version 1.7.6. - -2007-02-12 Simon Josefsson - - * configure.in: New APIs, bump libtool library versions. - -2007-02-12 Simon Josefsson - - * gl/gnulib.mk, gl/m4/string_h.m4, gl/string_.h, lgl/Makefile.am, - lgl/m4/string_h.m4, lgl/string_.h: Update. - -2007-02-12 Simon Josefsson - - * Makefile.am: Use latest docs on web site. - -2007-02-12 Simon Josefsson - - * po/POTFILES.in: Add. - -2007-02-12 Simon Josefsson - - * lib/x509/output.c: Mark for translation. - -2007-02-12 Simon Josefsson - - * lib/pkix_asn1_tab.c: Generated. - -2007-02-12 Simon Josefsson - - * lib/x509/output.c: Print more than one SAN. - -2007-02-12 Simon Josefsson - - * lib/x509/output.c: Better printing of XMPP SAN. - -2007-02-12 Simon Josefsson - - * lib/pkix.asn: Add XMPP definitions. - -2007-02-12 Simon Josefsson - - * lib/x509/x509.c: Doc fix. - -2007-02-12 Simon Josefsson - - * lib/x509/x509.c: Decode XMPP data. Suggested by Matthias Wimmer - . - -2007-02-12 Simon Josefsson - - * src/serv.c: Print X.509 client cert info. - -2007-02-09 Simon Josefsson - - * src/serv.c: Text fix. - -2007-02-09 Simon Josefsson - - * doc/manpages/Makefile.am: Update. - -2007-02-09 Simon Josefsson - - * tests/pathlen/ca-no-pathlen.pem, - tests/pathlen/no-ca-or-pathlen.pem: Update. - -2007-02-09 Simon Josefsson - - * lib/x509/output.c: strftime %Z on mingw32 seems to not understand - that gmtime was used and that the time given is in UTC. Just hard - code it to UTC. - -2007-02-09 Simon Josefsson - - * lib/gnutls_str.c: Typo. - -2007-02-09 Simon Josefsson - - * lgl/Makefile.am, lgl/asprintf.c, lgl/m4/gnulib-cache.m4, - lgl/m4/gnulib-comp.m4, lgl/m4/vasprintf.m4, lgl/vasprintf.c, - lgl/vasprintf.h: Add. - -2007-02-09 Simon Josefsson - - * lib/x509/output.c: Use gnulib's time_r for systems that lack - gmtime_r. - -2007-02-09 Simon Josefsson - - * lgl/Makefile.am, lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4, - lgl/m4/time_r.m4, lgl/time_r.c, lgl/time_r.h: Add. - -2007-02-09 Simon Josefsson - - * tests/pathlen/no-ca-or-pathlen.pem: Fix. - -2007-02-09 Simon Josefsson - - * lib/x509/output.c: Strings not zero terminated. - -2007-02-09 Simon Josefsson - - * lib/x509/output.c: Hexprint unknown extensions. - -2007-02-09 Simon Josefsson - - * tests/key-id/key-id, tests/pathlen/ca-no-pathlen.pem, - tests/pathlen/no-ca-or-pathlen.pem: Update. - -2007-02-09 Simon Josefsson - - * src/certtool.c: Remove. - -2007-02-09 Simon Josefsson - - * src/certtool.c: Fix. - -2007-02-09 Simon Josefsson - - * NEWS: Add. - -2007-02-09 Simon Josefsson - - * lib/x509/output.c: Support GNUTLS_X509_CRT_UNSIGNED_FULL. - -2007-02-09 Simon Josefsson - - * src/certtool.c: Use gnutls_x509_crt_print. - -2007-02-09 Simon Josefsson - - * NEWS, includes/gnutls/x509.h: Add. - -2007-02-09 Simon Josefsson - - * lib/x509/output.c: Fix error messages. - -2007-02-09 Simon Josefsson - - * lib/x509/output.c: Really fix. - -2007-02-09 Simon Josefsson - - * lib/x509/output.c: Fix. - -2007-02-09 Simon Josefsson - - * includes/gnutls/x509.h: Change signature (ok since no release). - -2007-02-09 Simon Josefsson - - * lib/x509/output.c: Use datum for outputs. - -2007-02-09 Simon Josefsson - - * doc/protocol/draft-housley-tls-authz-extns-07.txt: Add. - -2007-02-09 Simon Josefsson - - * lib/x509/output.c: Simplify. - -2007-02-09 Simon Josefsson - - * lib/x509/extensions.c: Don't crash on NULL's. - -2007-02-08 Simon Josefsson - - * NEWS: Add, from older branches. - -2007-02-08 Simon Josefsson - - * lib/x509/output.c: Doc fix. - -2007-02-08 Simon Josefsson - - * lib/x509/Makefile.am: Build output.c. - -2007-02-08 Simon Josefsson - - * NEWS, lib/x509/output.c: Add. - -2007-02-08 Simon Josefsson - - * NEWS, includes/gnutls/x509.h, lib/x509/x509.c: Add - gnutls_x509_crt_get_signature. - -2007-02-08 Simon Josefsson - - * NEWS: Add. - -2007-02-08 Simon Josefsson - - * doc/gnutls.texi: gnutls-serv: create client & proxy too. - -2007-02-08 Simon Josefsson - - * src/certtool-cfg.c: Default proxy policy is ALL. Fixes crash. - -2007-02-08 Simon Josefsson - - * lib/x509/extensions.c: Fix warnings. - -2007-02-08 Simon Josefsson - - * lib/gnutls_str.c, lib/gnutls_str.h: Add - _gnutls_string_append_printf. - -2007-02-08 Simon Josefsson - - * NEWS, includes/gnutls/x509.h, lib/x509/x509.c: Add - gnutls_x509_crt_get_extension_data and - gnutls_x509_crt_get_extension_info. - -2007-02-08 Simon Josefsson - - * src/certtool.c: Fix. - -2007-02-08 Simon Josefsson - - * src/certtool.c: XMPP otherName SAN support. - -2007-02-08 Simon Josefsson - - * NEWS: Typo. - -2007-02-08 Simon Josefsson - - * NEWS, THANKS: Add. - -2007-02-08 Simon Josefsson - - * NEWS: Add. - -2007-02-08 Simon Josefsson - - * NEWS, lib/x509/x509.c: Fix. - -2007-02-08 Simon Josefsson - - * includes/gnutls/gnutls.h.in: Doc fix. - -2007-02-08 Simon Josefsson - - * lib/x509/x509.c: Support XMPP OID. - -2007-02-08 Simon Josefsson - - * lib/x509/x509.c: Doc fix. - -2007-02-08 Simon Josefsson - - * NEWS, includes/gnutls/gnutls.h.in, includes/gnutls/x509.h, - lib/x509/common.c, lib/x509/x509.c, src/certtool.c: Support - otherName SAN's. - -2007-02-07 Simon Josefsson - - * doc/gnutls.texi: Fix. - -2007-02-07 Simon Josefsson - - * doc/gnutls.texi: add tcp and tlsia - -2007-02-07 Simon Josefsson - - * AUTHORS: Fix. - -2007-02-07 Simon Josefsson - - * src/serv.c: Don't say TLS 1.0. - -2007-02-07 Simon Josefsson - - * NEWS: Fix. - -2007-02-07 Simon Josefsson - - * lib/gnutls_sig.c: Fix DSA sign, broken by last commit. - -2007-02-07 Simon Josefsson - - * NEWS: Add. - -2007-02-07 Simon Josefsson - - * lib/gnutls_sig.c: Fix TLS 1.2 signing (for servers). - -2007-02-07 Simon Josefsson - - * NEWS: Add. - -2007-02-07 Simon Josefsson - - * doc/gnutls.texi: dsa key - -2007-02-06 Simon Josefsson - - * doc/gnutls.texi: Fix. - -2007-02-06 Simon Josefsson - - * lib/gnutls_sig.c: Fix crash on failures. - -2007-02-06 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2007-02-06 Simon Josefsson - - * doc/protocol/draft-ietf-tls-srp-00.txt, - doc/protocol/draft-ietf-tls-srp-01.txt, - doc/protocol/draft-ietf-tls-srp-02.txt, - doc/protocol/draft-ietf-tls-srp-03.txt, - doc/protocol/draft-ietf-tls-srp-04.txt, - doc/protocol/draft-ietf-tls-srp-05.txt, - doc/protocol/draft-ietf-tls-srp-06.txt, - doc/protocol/draft-ietf-tls-srp-07.txt: Add. - -2007-02-06 Simon Josefsson - - * ChangeLog: [no log message] - -2007-02-06 Simon Josefsson - - * NEWS: Version 1.7.5. - -2007-02-06 Simon Josefsson - - * NEWS: Fix. - -2007-02-06 Simon Josefsson - - * NEWS: Add. - -2007-02-06 Simon Josefsson - - * gl/gnulib.mk, gl/m4/string_h.m4, gl/string_.h, lgl/Makefile.am, - lgl/m4/string_h.m4, lgl/string_.h: Update. - -2007-02-06 Simon Josefsson - - * NEWS: Reorder. - -2007-02-06 Simon Josefsson - - * doc/gnutls.texi: Fix. - -2007-02-06 Simon Josefsson - - * NEWS: Add. - -2007-02-06 Simon Josefsson - - * src/cli.c: Don't ask for PSK if we don't have credentials for it. - -2007-02-06 Simon Josefsson - - * doc/gnutls.texi: mention psk - -2007-02-06 Simon Josefsson - - * NEWS: Add. - -2007-02-06 Simon Josefsson - - * lib/gnutls_handshake.c: (_gnutls_remove_unwanted_ciphersuites): Remove GNUTLS_KX_SRP_RSA or - GNUTLS_KX_SRP_DSS if there is no SRP credential. - -2007-02-06 Simon Josefsson - - * doc/gnutls.texi: fix - -2007-02-06 Simon Josefsson - - * doc/gnutls.texi: fix - -2007-02-06 Simon Josefsson - - * src/cli.c: Don't try to negotiate SRP kx if we don't have SRP - username/password. - -2007-02-06 Simon Josefsson - - * doc/gnutls.texi: Add. - -2007-02-06 Simon Josefsson - - * src/cli.c: Prefer PSK. - -2007-02-06 Simon Josefsson - - * src/cli.c, src/serv.c: Modernize priorities. - -2007-02-06 Simon Josefsson - - * doc/gnutls.texi: more - -2007-02-06 Simon Josefsson - - * src/common.c: Parse new MACs. - -2007-02-06 Simon Josefsson - - * src/serv.c: Prefer OpenPGP certs from client. - -2007-02-06 Simon Josefsson - - * doc/gnutls.texi: Fix. - -2007-02-06 Simon Josefsson - - * NEWS: Fix. - -2007-02-06 Simon Josefsson - - * src/cli-gaa.c: Generated. - -2007-02-06 Simon Josefsson - - * configure.in: Bump versions. - -2007-02-06 Simon Josefsson - - * NEWS: Add. - -2007-02-06 Simon Josefsson - - * src/common.c: Typo in last commit. - -2007-02-06 Simon Josefsson - - * src/cli.gaa: Typo. - -2007-02-06 Simon Josefsson - - * src/common.c: Fix --list. - -2007-02-06 Simon Josefsson - - * doc/gnutls.texi: Add. - -2007-02-06 Simon Josefsson - - * lib/gnutls_hash_int.c: Revert, not needed. - -2007-02-06 Simon Josefsson - - * lib/gnutls_hash_int.c: (_gnutls_hash_get_algo_len): Handle NULL MACs again, broken by last - commit. - -2007-02-06 Simon Josefsson - - * src/serv.c: Fix last commit. - -2007-02-06 Simon Josefsson - - * src/serv.c: Support TLS 1.2 and AES 256. - -2007-02-05 Simon Josefsson - - * ChangeLog: [no log message] - -2007-02-05 Simon Josefsson - - * NEWS: Version 1.7.4. - -2007-02-05 Simon Josefsson - - * NEWS: Add. - -2007-02-05 Simon Josefsson - - * src/serv.c: use static DH params if none or provided - -2007-02-05 Simon Josefsson - - * tests/anonself.c, tests/dhepskself.c, tests/resume.c, - tests/tlsia.c, tests/utils.c, tests/utils.h: Use static DH. - -2007-02-05 Simon Josefsson - - * tests/pskself.c: No dh here. - -2007-02-05 Simon Josefsson - - * NEWS: Reorder. - -2007-02-05 Simon Josefsson - - * tests/sha2/.cvsignore: [no log message] - -2007-02-05 Simon Josefsson - - * NEWS: Fix. - -2007-02-05 Simon Josefsson - - * configure.in, tests/Makefile.am: Add SHA-2 self test. - -2007-02-05 Simon Josefsson - - * NEWS, tests/sha2/Makefile.am, tests/sha2/key-ca.pem, - tests/sha2/key-subca.pem, tests/sha2/key-subsubca.pem, - tests/sha2/key-user.pem, tests/sha2/sha2: Add. - -2007-02-05 Simon Josefsson - - * NEWS: Add. - -2007-02-05 Simon Josefsson - - * src/certtool-cfg.c: Set pathlength to -1 (not present) by default, - for templates. - -2007-02-05 Simon Josefsson - - * src/certtool-gaa.c: Generated. - -2007-02-05 Simon Josefsson - - * src/certtool.c, src/certtool.gaa: Support --hash SHA-256/384/512. - -2007-02-05 Simon Josefsson - - * lib/gnutls_algorithms.c, lib/gnutls_hash_int.c, lib/gnutls_int.h, - lib/x509/common.h, lib/x509/dn.c, lib/x509/x509.h: Support - (RSA-)SHA-256/384/512. - -2007-02-05 Simon Josefsson - - * lgl/gc-libgcrypt.c, lgl/gc.h: Update. - -2007-02-05 Simon Josefsson - - * lib/gnutls_algorithms.c: (GNUTLS_SIGN_ALG_LOOP): Don't match unknown algorithms to GOST. - Affects gnutls_sign_algorithm_get_name, and - _gnutls_x509_sign_to_oid. - -2007-02-05 Simon Josefsson - - * NEWS, includes/gnutls/gnutls.h.in: Enum types for SHA-256/384/512. - -2007-02-05 Simon Josefsson - - * gl/gnulib.mk, gl/m4/gnulib-comp.m4, gl/m4/string_h.m4, - gl/stdbool_.h, gl/string_.h, lgl/Makefile.am, - lgl/m4/gnulib-comp.m4, lgl/m4/string_h.m4, lgl/memmem.c, - lgl/string_.h: Update. - -2007-02-04 Simon Josefsson - - * NEWS: Add. - -2007-02-04 Simon Josefsson - - * gl/gai_strerror.c, gl/gnulib.mk, gl/m4/gnulib-comp.m4, - gl/m4/socklen.m4, gl/m4/string_h.m4, gl/string_.h, lgl/Makefile.am, - lgl/m4/gnulib-comp.m4, lgl/m4/socklen.m4, lgl/m4/string_h.m4, - lgl/string_.h: Update. - -2007-02-02 Simon Josefsson - - * doc/gnutls.texi: Typo. - -2007-02-02 Simon Josefsson - - * NEWS: Add. - -2007-02-02 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2007-02-02 Simon Josefsson - - * doc/signatures.texi: Removed the wrong file, re-add this one. - Oops. - -2007-02-02 Simon Josefsson - - * doc/Makefile.am: Remove bibliography.texi. - -2007-02-02 Simon Josefsson - - * doc/bibliography.texi, doc/signatures.texi: Remove. - -2007-02-02 Simon Josefsson - - * doc/gnutls.texi: Don't use my-bib-macros. - -2007-02-02 Simon Josefsson - - * doc/my-bib-macros.texi: use pxref. - -2007-02-02 Simon Josefsson - - * doc/my-bib-macros.texi: Fix. - -2007-02-02 Simon Josefsson - - * doc/gnutls.texi: proxy and certtool stuff - -2007-02-02 Simon Josefsson - - * lib/x509/xml.c: Doc fix. - -2007-02-02 Simon Josefsson - - * doc/bibliography.texi: reorder - -2007-02-02 Simon Josefsson - - * doc/bibliography.texi: Add rfc3820. - -2007-02-02 Simon Josefsson - - * doc/gnutls.texi: Mention RFC 3820. - -2007-02-02 Simon Josefsson - - * doc/gnutls.texi: Improve extensions stuff. - -2007-02-01 Simon Josefsson - - * ChangeLog: [no log message] - -2007-02-01 Simon Josefsson - - * NEWS: Version 1.7.3. - -2007-02-01 Simon Josefsson - - * NEWS: Typo. - -2007-02-01 Simon Josefsson - - * tests/pathlen/ca-no-pathlen.pem, - tests/pathlen/no-ca-or-pathlen.pem: Update. - -2007-02-01 Simon Josefsson - - * NEWS: Add. - -2007-02-01 Simon Josefsson - - * src/certtool.c: Print times in UTC. - -2007-02-01 Simon Josefsson - - * NEWS: Fix. - -2007-02-01 Simon Josefsson - - * tests/key-id/.cvsignore: [no log message] - -2007-02-01 Simon Josefsson - - * NEWS: Reorder. - -2007-02-01 Simon Josefsson - - * configure.in: Typo. - -2007-02-01 Simon Josefsson - - * configure.in, tests/Makefile.am, tests/key-id/Makefile.am, - tests/key-id/README, tests/key-id/ca-gnutls-keyid.pem, - tests/key-id/ca-no-keyid.pem, tests/key-id/ca-weird-keyid.pem, - tests/key-id/key-ca.pem, tests/key-id/key-id, - tests/key-id/key-user.pem: Add key-id self test. - -2007-02-01 Simon Josefsson - - * src/certtool.c: Don't print proxy info if there aren't any proxy - extension. - -2007-02-01 Simon Josefsson - - * doc/protocol/rfc4785.txt: Add. - -2007-01-31 Simon Josefsson - - * src/certtool.c: Use the CA's SKI as the AKI value, if it is - present. Reported by Dale Sedivec - . - -2007-01-31 Simon Josefsson - - * lib/x509/x509.c: Doc fix. - -2007-01-31 Simon Josefsson - - * doc/manpages/Makefile.am: Add. - -2007-01-31 Simon Josefsson - - * src/certtool-cfg.c: Fix last commit. - -2007-01-31 Simon Josefsson - - * NEWS, src/certtool-cfg.c, src/certtool-cfg.h, src/certtool-gaa.c, - src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: Support - reading/generating proxy certificates in certtool. - -2007-01-31 Simon Josefsson - - * NEWS, includes/gnutls/x509.h, lib/x509/extensions.c, - lib/x509/extensions.h, lib/x509/x509.c: Add - gnutls_x509_crt_get_proxy. - -2007-01-31 Simon Josefsson - - * lib/x509/x509_write.c: Fix last commit. - -2007-01-31 Simon Josefsson - - * lib/x509/x509_write.c: (gnutls_x509_crt_set_proxy_dn): Permit NULL @name's. - -2007-01-31 Simon Josefsson - - * NEWS: Mention RFC 3820. - -2007-01-31 Simon Josefsson - - * NEWS, includes/gnutls/x509.h, lib/pkix.asn, lib/pkix_asn1_tab.c, - lib/x509/extensions.c, lib/x509/extensions.h, lib/x509/x509_write.c: - Add proxy certificate APIs. - -2007-01-31 Simon Josefsson - - * NEWS: Add. - -2007-01-31 Simon Josefsson - - * src/certtool-cfg.c: Have RET for path lengths to mean -1. - -2007-01-31 Simon Josefsson - - * gl/.cvsignore, lgl/.cvsignore: [no log message] - -2007-01-31 Simon Josefsson - - * lib/defines.h: String.h from gnulib now makes sure memmem is - available. - -2007-01-31 Simon Josefsson - - * gl/strdup.h, lgl/memmem.h: Remove. - -2007-01-31 Simon Josefsson - - * gl/getaddrinfo.c, gl/gnulib.mk, gl/m4/absolute-header.m4, - gl/m4/extensions.m4, gl/m4/gnulib-common.m4, gl/m4/gnulib-comp.m4, - gl/m4/strdup.m4, gl/m4/string_h.m4, gl/socket_.h, gl/strdup.c, - gl/string_.h, lgl/Makefile.am, lgl/m4/extensions.m4, - lgl/m4/gnulib-common.m4, lgl/m4/gnulib-comp.m4, lgl/m4/memmem.m4, - lgl/m4/stdint.m4, lgl/m4/string_h.m4, lgl/m4/unistd_h.m4, - lgl/m4/wchar.m4, lgl/printf-args.c, lgl/printf-args.h, - lgl/printf-parse.c, lgl/socket_.h, lgl/stdint_.h, lgl/string_.h, - lgl/vasnprintf.c, lgl/wchar_.h: Update. - -2007-01-31 Simon Josefsson - - * tests/pathlen/.cvsignore: Add. - -2007-01-26 Simon Josefsson - - * NEWS: Add. - -2007-01-26 Simon Josefsson - - * configure.in, tests/Makefile.am, tests/pathlen/Makefile.am, - tests/pathlen/ca-no-pathlen.pem, - tests/pathlen/no-ca-or-pathlen.pem, tests/pathlen/pathlen: Test for - pathlen bug (and general certificate parsing). - -2007-01-26 Simon Josefsson - - * NEWS: Add. - -2007-01-26 Simon Josefsson - - * lib/x509/extensions.c: (_gnutls_x509_ext_extract_basicConstraints): Make sure - pathLenConstraint is read, even if CA reading fails. - -2007-01-25 Simon Josefsson - - * NEWS: Add. - -2007-01-25 Simon Josefsson - - * includes/gnutls/gnutlsxx.h, lib/gnutlsxx.cpp: Add comment to - describe C++ compiler bug problem. - -2007-01-25 Simon Josefsson - - * includes/gnutls/gnutlsxx.h, lib/gnutlsxx.cpp: Fix C++ compiler bug - in a "better" way, tiny patch from Matthias Scheler - . - -2007-01-16 Simon Josefsson - - * configure.in: Bump versions. - -2007-01-16 Simon Josefsson - - * NEWS: Add. - -2007-01-16 Simon Josefsson - - * lib/gnutls_cert.c, lib/gnutls_extra_hooks.h, - libextra/gnutls_openpgp.c, libextra/openpgp/gnutls_openpgp.h, - libextra/openpgp/privkey.c: Fix import of ASCII armored OpenPGP - keys, patch from ludovic.courtes@laas.fr (Ludovic Courtès). - -2007-01-15 Simon Josefsson - - * doc/protocol/draft-rescorla-tls-extractor-00.txt: Add. - -2007-01-14 Simon Josefsson - - * ChangeLog: [no log message] - -2007-01-14 Simon Josefsson - - * NEWS: Version 1.7.2. - -2007-01-14 Simon Josefsson - - * lgl/Makefile.am, lgl/gc-gnulib.c, lgl/m4/gnulib-comp.m4, - lgl/m4/unistd_h.m4, lgl/m4/wint_t.m4, lgl/unistd_.h: Update. - -2007-01-14 Simon Josefsson - - * NEWS: Add. - -2007-01-14 Simon Josefsson - - * libextra/opencdk/pubkey.c: Doc fix. - -2007-01-14 Simon Josefsson - - * libextra/opencdk/opencdk.h, libextra/opencdk/pubkey.c: (cdk_pubkey_to_sexp, cdk_seckey_to_sexp): New functions, from Mario - Lenz . - -2007-01-13 Simon Josefsson - - * NEWS, THANKS: Add. - -2007-01-12 Simon Josefsson - - * lib/gnutlsxx.cpp: Make it compile by commenting out call to - virtual method (possibly incorrect but I don't know what the - intention was). - -2007-01-12 Simon Josefsson - - * NEWS, configure.in: Don't use -mms-bitfields - --enable-runtime-pseudo-reloc. - -2007-01-12 Simon Josefsson - - * gl/Makefile.am: Fix objdir!=srcdir. - -2007-01-11 Simon Josefsson - - * NEWS: Add. - -2007-01-11 Simon Josefsson - - * src/certtool.c: (generate_pkcs12): Read more than one certificate, if there are more - available, and store them in the PKCS12 blob. Suggested by Sascha - Ziemann . - -2007-01-11 Simon Josefsson - - * doc/reference/Makefile.am: Ignore gnutls_extra_hooks.h. - -2007-01-11 Simon Josefsson - - * doc/manpages/Makefile.am: Add. - -2007-01-11 Simon Josefsson - - * Makefile.am: Reorder lgl/ and gl/, to make sure lgl is built - before gl. - -2007-01-11 Simon Josefsson - - * NEWS: Fix. - -2007-01-11 Simon Josefsson - - * NEWS, configure.in, includes/gnutls/x509.h, - lib/x509/extensions.c, lib/x509/extensions.h, lib/x509/x509.c, - lib/x509/x509_write.c, src/certtool-cfg.c, src/certtool-cfg.h, - src/certtool.c: Support pathLenConstraint. - -2007-01-11 Simon Josefsson - - * libextra/Makefile.am: libgnu.la depends on liblgnu.la, so don't - add it twice. - -2007-01-11 Simon Josefsson - - * gl/Makefile.am, gl/gnulib.mk, gl/m4/gnulib-cache.m4: Getaddrinfo - needs snprintf from ../lgl/, so make libgnu.la depend on liblgnu.la. - -2007-01-11 Simon Josefsson - - * libextra/gnutls_extra.c: Need strverscmp.h. - -2007-01-11 Simon Josefsson - - * NEWS: Fix. - -2007-01-11 Simon Josefsson - - * lib/libgnutls.vers: Don't export _E_*, they are only needed inside - libgnutls now. Fix copyright years. - -2007-01-11 Simon Josefsson - - * NEWS, lib/Makefile.am, lib/auth_cert.c, lib/auth_dh_common.c, - lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, - lib/auth_srp_rsa.c, lib/gnutls_cert.c, lib/gnutls_extra_hooks.c, - lib/gnutls_extra_hooks.h, libextra/gnutls_extra.c: Cleanup gnutls vs - gnutls-extra integration, for OpenPGP certs. - -2007-01-11 Simon Josefsson - - * libextra/gnutls_extra.c: Replace libgcrypt version check with - strverscmp. No need to duplicate prototype found in gnutls.h for - gnutls_check_version. - -2007-01-09 Simon Josefsson - - * gl/m4/gnulib-common.m4, gl/m4/gnulib-comp.m4, gl/m4/lib-link.m4, - lgl/gc-gnulib.c, lgl/gc-libgcrypt.c, lgl/m4/gc-arcfour.m4, - lgl/m4/gc-arctwo.m4, lgl/m4/gc-des.m4, lgl/m4/gc-hmac-md5.m4, - lgl/m4/gc-hmac-sha1.m4, lgl/m4/gc-md2.m4, lgl/m4/gc-md4.m4, - lgl/m4/gc-md5.m4, lgl/m4/gc-random.m4, lgl/m4/gc-rijndael.m4, - lgl/m4/gc-sha1.m4, lgl/m4/gnulib-common.m4, lgl/m4/gnulib-comp.m4, - lgl/m4/lib-link.m4: Update. - -2007-01-05 Simon Josefsson - - * NEWS: Add. - -2007-01-05 Simon Josefsson - - * gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, - gl/m4/lib-link.m4, lgl/Makefile.am, lgl/m4/gnulib-cache.m4, - lgl/m4/gnulib-comp.m4, lgl/m4/lib-link.m4: Update. - -2007-01-05 Simon Josefsson - - * configure.in: Bump versions. - -2007-01-05 Simon Josefsson - - * NEWS: Add. - -2007-01-05 Simon Josefsson - - * configure.in: Revert part of patch. - -2007-01-05 Simon Josefsson - - * configure.in, src/Makefile.am: Tiny patch from - ludovic.courtes@laas.fr (Ludovic Courtès). * configure.in: Look for `gaa', issuing a warning with the URL if - not found. * src/Makefile.am (*-gaa.c): Use `$(GAA)' instead of `gaa'. Mark - `.gaa' files as being in `$(srcdir)', thereby allowing for - out-of-source-tree builds. - -2006-12-28 Simon Josefsson - - * ChangeLog: [no log message] - -2006-12-28 Simon Josefsson - - * Makefile.am: Don't dist mkinstalldirs, automake no longer copies - it. - -2006-12-28 Simon Josefsson - - * ChangeLog: [no log message] - -2006-12-28 Simon Josefsson - - * NEWS: Version 1.7.1. - -2006-12-28 Simon Josefsson - - * NEWS: Add. - -2006-12-28 Simon Josefsson - - * NEWS: Add. - -2006-12-28 Simon Josefsson - - * NEWS: Fix. - -2006-12-28 Simon Josefsson - - * NEWS: Fix. - -2006-12-28 Simon Josefsson - - * NEWS, THANKS: Add. - -2006-12-28 Simon Josefsson - - * lib/gnutls_asn1_tab.c: Generate. - -2006-12-28 Simon Josefsson - - * lib/gnutls.asn: Fix comment to make it parse correctly. - -2006-12-27 Simon Josefsson - - * tests/.cvsignore: [no log message] - -2006-12-27 Simon Josefsson - - * NEWS: Add. - -2006-12-27 Simon Josefsson - - * lib/gnutls_sig.c: Fix signature verification for DSA signatures in - TLS 1.2, reported by ludovic.courtes@laas.fr (Ludovic Courtès). (_gnutls_pkcs1_rsa_verify_sig): Rename to _gnutls_verify_sig, and - add new parameter SHA1POS to indicate where in hash_concat the SHA.1 - hash is stored (for DSA). (_gnutls_verify_sig_hdata): Pass proper SHA1POS. (_gnutls_verify_sig_params): Likewise. - -2006-12-27 Simon Josefsson - - * NEWS: Add. - -2006-12-27 Simon Josefsson - - * doc/Makefile.am, doc/manpages/Makefile.am, lib/Makefile.am, - lib/x509/Makefile.am, libextra/Makefile.am, - libextra/openpgp/Makefile.am: Tiny patch from - ludovic.courtes@laas.fr (Ludovic Courtès). * doc/Makefile.am: Refer to `sort2.pl' as - `$(srcdir)/scripts/sort2.pl' instead of `scripts/sort2.pl'. * doc/manpages/Makefile.am: Refer to `gdoc' as `$(top_srcdir)/doc/scripts/gdoc' instead of `../scripts/gdoc'. * doc/lib/Makefile.am: Likewise. * doc/lib/x509/Makefile.am: Likewise. * doc/libextra/Makefile.am: Likewise. * doc/libextra/openpgp/Makefile.am: Likewise. - -2006-12-27 Simon Josefsson - - * NEWS, THANKS: Add. - -2006-12-27 Simon Josefsson - - * lib/auth_cert.c: (_gnutls_gen_cert_server_cert_req): For TLS 1.2, generate conforming - cert requests (i.e., include a empty list of supported hashes). - Report and tiny patch from ludovic.courtes@laas.fr (Ludovic - Courtès). - -2006-12-27 Simon Josefsson - - * NEWS: Add. - -2006-12-27 Simon Josefsson - - * tests/userid/.cvsignore: [no log message] - -2006-12-27 Simon Josefsson - - * lib/x509/common.c: (_oid2str): Mark UID as a CHOICE-field (i.e., DirectoryString). (_gnutls_x509_oid_data2string): Handle ia5String in CHOICEs. Fixes - problem reported by Max Kellermann . - -2006-12-27 Simon Josefsson - - * lib/pkix_asn1_tab.c: Generated. - -2006-12-27 Simon Josefsson - - * lib/pkix.asn: Encoded UID DN fields as DirectoryString (e.g., - PrintableString), not as IA5String. Add IA5String as a CHOICE for - DirectoryString, to deal with backwards compatibility if there are - IA5String UID fields out there that were generated by older - versions. Reported by Max Kellermann . - -2006-12-27 Simon Josefsson - - * tests/userid/userid: Add. - -2006-12-27 Simon Josefsson - - * configure.in: Add tests/userid/. - -2006-12-27 Simon Josefsson - - * tests/Makefile.am: Add userid/. - -2006-12-27 Simon Josefsson - - * tests/userid/Makefile.am, tests/userid/userid.pem: Add. - -2006-12-27 Simon Josefsson - - * NEWS: Add. - -2006-12-27 Simon Josefsson - - * lib/gnutls_x509.c: (generate_rdn_seq): Store subject DN instead of issuer DN in the - certificate authority list, to make sure server's send the proper - list of expected CAs to the client. Reported by Max Kellermann - . - -2006-12-27 Simon Josefsson - - * lib/gnutls_x509.c: (gnutls_certificate_set_x509_crl): Initialize before use, reported - by Max Kellermann . - -2006-12-27 Simon Josefsson - - * NEWS, THANKS, tests/Makefile.am, tests/certificate_set_x509_crl.c: - Add. - -2006-12-27 Simon Josefsson - - * NEWS: Add. - -2006-12-27 Simon Josefsson - - * gl/m4/lib-link.m4, gl/strdup.h, lgl/m4/lib-link.m4, - lgl/m4/stdint.m4: Update. - -2006-12-26 Simon Josefsson - - * doc/protocol/draft-ietf-tls-srp-13.txt: Add. - -2006-12-26 Simon Josefsson - - * doc/protocol/draft-santesson-tls-gssapi-01.txt: Add. - -2006-12-26 Simon Josefsson - - * doc/protocol/draft-rescorla-tls-opaque-prf-input-00.txt, - doc/protocol/draft-rescorla-tls-suiteb-00.txt: Add. - -2006-12-26 Simon Josefsson - - * po/LINGUAS, po/de.po: Sync with TP. - -2006-12-10 Simon Josefsson - - * m4/intl.m4, m4/intldir.m4, m4/lock.m4, m4/visibility.m4: Remove - (should have just been .cvsignore'd). - -2006-12-10 Simon Josefsson - - * m4/.cvsignore: [no log message] - -2006-12-10 Simon Josefsson - - * m4/intl.m4, m4/intldir.m4, m4/lock.m4, m4/visibility.m4: Add. - -2006-12-10 Simon Josefsson - - * NEWS: Fix. - -2006-12-10 Simon Josefsson - - * NEWS: Add. - -2006-12-10 Simon Josefsson - - * configure.in: Bump versions. - -2006-12-10 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2006-12-01 Simon Josefsson - - * lib/gnutls_record.c: Doc fix. - -2006-11-29 Simon Josefsson - - * gl/Makefile.am, lgl/Makefile.am: Update. - -2006-11-29 Simon Josefsson - - * ChangeLog: [no log message] - -2006-11-29 Simon Josefsson - - * Makefile.am: Put in devel/ directory. Disable doc generation. - -2006-11-29 Simon Josefsson - - * NEWS: Version 1.7.0. - -2006-11-29 Simon Josefsson - - * NEWS: Add. - -2006-11-29 Simon Josefsson - - * gl/Makefile.am, lgl/Makefile.am: Fix gnulib-tool bug. - -2006-11-29 Simon Josefsson - - * lib/gnutls_priority.c: Attempt TLS 1.2 and TLS 1.1 too, by - default. - -2006-11-29 Simon Josefsson - - * NEWS: Fix. - -2006-11-28 Simon Josefsson - - * gl/Makefile.am, gl/gettext.h, lgl/Makefile.am, lgl/gettext.h, - lgl/m4/eoverflow.m4, lgl/m4/size_max.m4, lgl/m4/stdint.m4: Update. - -2006-11-26 Simon Josefsson - - * NEWS: Fix. - -2006-11-26 Simon Josefsson - - * NEWS: Add. - -2006-11-26 Simon Josefsson - - * tests/anonself.c: Print TLS version too. - -2006-11-26 Simon Josefsson - - * tests/anonself.c: More debugging. - -2006-11-26 Simon Josefsson - - * tests/utils.c: Output more debug info. - -2006-11-26 Simon Josefsson - - * NEWS: Fix. - -2006-11-26 Simon Josefsson - - * libextra/opencdk/keyserver.c: Doc fix. - -2006-11-26 Simon Josefsson - - * libextra/opencdk/opencdk.h: Doc fixes. - -2006-11-26 Simon Josefsson - - * libextra/opencdk/kbnode.c, libextra/opencdk/keydb.c, - libextra/opencdk/keygen.c, libextra/opencdk/keylist.c, - libextra/opencdk/sign.c: Doc fix. - -2006-11-26 Simon Josefsson - - * libextra/opencdk/kbnode.c, libextra/opencdk/keygen.c, - libextra/opencdk/sign.c: Doc fix. - -2006-11-26 Simon Josefsson - - * libextra/opencdk/keydb.c: Doc fix. - -2006-11-26 Simon Josefsson - - * libextra/gnutls_ia.c: Use new internal PRF API. - -2006-11-26 Simon Josefsson - - * lib/gnutls_sig.c: To use NULL - DigestInfo.AlgorithmsIdentifier.parameters or not, that is the - question. - -2006-11-26 Simon Josefsson - - * configure.in: Move AM_CONDITIONAL outside of 'if gcc' clause, - fixes problem reported by "Michael C. Vergallen" - . - -2006-11-26 Simon Josefsson - - * NEWS: Add. - -2006-11-25 Simon Josefsson - - * NEWS: Add. - -2006-11-25 Simon Josefsson - - * lib/auth_cert.c, lib/gnutls_constate.c, lib/gnutls_handshake.c, - lib/gnutls_kx.c, lib/gnutls_sig.c, lib/gnutls_state.c, - lib/gnutls_state.h: Client TLS 1.2 support. Works against - www.mikestoolbox.org:4433. - -2006-11-25 Simon Josefsson - - * src/common.c: Support "TLS1.2" as protocol name. - -2006-11-25 Simon Josefsson - - * NEWS: Add. - -2006-11-25 Simon Josefsson - - * includes/gnutls/gnutls.h.in: (gnutls_protocol_t): Add GNUTLS_TLS1_2. - -2006-11-25 Simon Josefsson - - * lib/gnutls_algorithms.c: Support TLS 1.2. - -2006-11-25 Simon Josefsson - - * NEWS: Add. - -2006-11-25 Simon Josefsson - - * gl/Makefile.am, gl/getaddrinfo.c, gl/imaxtostr.c, gl/intprops.h, - gl/inttostr.c, gl/inttostr.h, gl/m4/absolute-header.m4, - gl/m4/gnulib-comp.m4, gl/m4/inttostr.m4, gl/m4/longlong.m4, - gl/m4/stdint.m4, gl/m4/ulonglong.m4, gl/offtostr.c, gl/stdint_.h, - gl/uinttostr.c, gl/umaxtostr.c, lgl/m4/alloca.m4, lgl/m4/gettext.m4: - Update. - -2006-11-25 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2006-11-22 Simon Josefsson - - * doc/protocol/draft-housley-evidence-extns-01.txt: Add. - -2006-11-17 Simon Josefsson - - * ChangeLog: [no log message] - -2006-11-17 Simon Josefsson - - * Makefile.am: Release do non-devel directory. - -2006-11-17 Simon Josefsson - - * NEWS: Version 1.6.0. - -2006-11-17 Simon Josefsson - - * doc/manpages/Makefile.am: Fix copyright years. - -2006-11-17 Simon Josefsson - - * configure.in: Bump versions. - -2006-11-17 Simon Josefsson - - * NEWS: Add. - -2006-11-16 Simon Josefsson - - * ChangeLog: [no log message] - -2006-11-16 Simon Josefsson - - * NEWS: Version 1.5.5. - -2006-11-16 Simon Josefsson - - * lib/gnutls_record.c: (gnutls_record_recv): Fix docstring, suggested by Tim Kosse - . - -2006-11-16 Simon Josefsson - - * doc/protocol/draft-ietf-sasl-rfc2831bis-11.txt: Remove, oops wrong - project. - -2006-11-16 Simon Josefsson - - * doc/protocol/draft-ietf-sasl-rfc2831bis-11.txt: Add. - -2006-11-16 Simon Josefsson - - * tests/rsa-md5-collision/Makefile.am: Remove. - -2006-11-16 Simon Josefsson - - * NEWS: Add. - -2006-11-16 Simon Josefsson - - * NEWS: Add. - -2006-11-16 Simon Josefsson - - * NEWS: Add. - -2006-11-16 Simon Josefsson - - * gl/Makefile.am, gl/gettext.h, gl/m4/gnulib-comp.m4, - gl/m4/lib-link.m4, gl/m4/longlong.m4, gl/stdint_.h, - lgl/Makefile.am, lgl/gettext.h, lgl/m4/gnulib-comp.m4, - lgl/m4/lib-link.m4, lgl/m4/longlong.m4, lgl/stdint_.h: Update. - -2006-11-16 Simon Josefsson - - * tests/rsa-md5-collision/chain1-expect.log, - tests/rsa-md5-collision/chain2-expect.log: Remove. - -2006-11-16 Simon Josefsson - - * tests/rsa-md5-collision/rsa-md5-collision: Remove -x. - -2006-11-16 Simon Josefsson - - * tests/rsa-md5-collision/rsa-md5-collision: Make it work under - mingw32. - -2006-11-15 Simon Josefsson - - * configure.in: Bump versions (done incorrectly in the 1.5.4 - release). - -2006-11-15 Simon Josefsson - - * NEWS: Add. - -2006-11-15 Simon Josefsson - - * doc/examples/ex-x509-info.c: Fix cert_list_size type to match API, - reported by Tim Kosse . - -2006-11-14 Simon Josefsson - - * doc/protocol/draft-hajjeh-tls-identity-protection-00.txt: Add. - -2006-11-11 Simon Josefsson - - * doc/protocol/draft-hajjeh-tls-sign-02.txt: Add. - -2006-11-07 Simon Josefsson - - * ChangeLog: [no log message] - -2006-11-07 Simon Josefsson - - * NEWS: Version 1.5.4. - -2006-11-07 Simon Josefsson - - * NEWS: Add. - -2006-11-07 Simon Josefsson - - * NEWS: Add. - -2006-11-07 Simon Josefsson - - * lgl/Makefile.am, lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4, - lgl/m4/strverscmp.m4, lgl/strverscmp.c, lgl/strverscmp.h, - lib/gnutls_global.c: Use strverscmp. - -2006-11-07 Simon Josefsson - - * lib/gnutls_buffers.c: Typo. - -2006-11-07 Simon Josefsson - - * NEWS, doc/manpages/Makefile.am: Add. - -2006-11-07 Simon Josefsson - - * libextra/gnutls_ia.c: Doc fix. - -2006-11-07 Simon Josefsson - - * doc/gnutls.texi: More errno discussion regarding push/pull - functions. - -2006-11-07 Simon Josefsson - - * NEWS: Add. - -2006-11-07 Simon Josefsson - - * lib/gnutls_buffers.c: Don't use errno to avoid thread-safety - issues. - -2006-11-07 Simon Josefsson - - * lib/gnutls_buffers.c: Convert to EINTR/EAGAIN errno under Windows, - using WSAGetLastError(). - -2006-11-07 Simon Josefsson - - * NEWS, includes/gnutls/gnutls.h.in, lib/gnutls_buffers.c, - lib/gnutls_int.h: Add new APIs to set errno for push/pull functions, - suggested by tim.kosse@filezilla-project.org. - -2006-11-06 Simon Josefsson - - * NEWS: Fix. - -2006-11-05 Simon Josefsson - - * NEWS: Add. - -2006-11-05 Simon Josefsson - - * lib/Makefile.am, libextra/Makefile.am: Remove SOVERSION (see - configure.in). - -2006-11-05 Simon Josefsson - - * configure.in: Set SOVERSION here. - -2006-11-05 Simon Josefsson - - * lgl/.cvsignore: [no log message] - -2006-11-05 Simon Josefsson - - * libextra/openpgp/openpgp.h: (gnutls_openpgp_key_get_pk_algorithm): Fix prototype. - -2006-11-03 Simon Josefsson - - * lgl/printf-parse.c: Update. - -2006-10-30 Simon Josefsson - - * NEWS: Add. - -2006-10-30 Simon Josefsson - - * libextra/openpgp/pgp.c: (gnutls_openpgp_key_get_fingerprint): Doc fix. Reported by - ludovic.courtes@laas.fr (Ludovic Courtès). - -2006-10-30 Simon Josefsson - - * libextra/openpgp/pgp.c: (gnutls_openpgp_key_get_name): Make SIZEOF_BUF contain - actual/required buffer size on return. Suggested by - ludovic.courtes@laas.fr (Ludovic Courtès). - -2006-10-30 Simon Josefsson - - * NEWS, includes/gnutls/openpgp.h, libextra/openpgp/pgp.c, - libextra/openpgp/privkey.c: Fix return types. - -2006-10-30 Simon Josefsson - - * NEWS: Add. - -2006-10-30 Simon Josefsson - - * lib/gnutls_v2_compat.c: Have SSLv2 ClientHello's for unknown - versions negotiate the highest version we support, instead of the - lowest. Reported by Pasi.Eronen@nokia.com. - -2006-10-30 Simon Josefsson - - * NEWS: Add. - -2006-10-30 Simon Josefsson - - * configure.in: Simplify ssize_t test. - -2006-10-30 Simon Josefsson - - * doc/examples/ex-cert-select.c: Remove duplicate #include - . - -2006-10-30 Simon Josefsson - - * configure.in, lib/defines.h: Simplify #include's using gnulib - modules. - -2006-10-30 Simon Josefsson - - * gl/getaddrinfo.c, gl/getdelim.c, gl/getline.c, gl/gettext.h, - gl/m4/lib-link.m4, gl/readline.c, lgl/Makefile.am, lgl/arcfour.c, - lgl/arctwo.c, lgl/des.c, lgl/gc-gnulib.c, lgl/gc-libgcrypt.c, - lgl/gc-pbkdf2-sha1.c, lgl/gettext.h, lgl/hmac-md5.c, - lgl/hmac-sha1.c, lgl/m4/codeset.m4, lgl/m4/gettext.m4, - lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4, lgl/m4/intl.m4, - lgl/m4/intldir.m4, lgl/m4/intmax.m4, lgl/m4/inttypes-h.m4, - lgl/m4/inttypes-pri.m4, lgl/m4/lib-link.m4, lgl/m4/lock.m4, - lgl/m4/signed.m4, lgl/m4/sys_stat_h.m4, lgl/m4/unistd_h.m4, - lgl/m4/vasnprintf.m4, lgl/md2.c, lgl/md4.c, lgl/memxor.c, - lgl/read-file.c, lgl/rijndael-alg-fst.c, lgl/rijndael-api-fst.c, - lgl/stat_.h: Update. - -2006-10-30 Simon Josefsson - - * lgl/m4/gnulib-comp.m4, lgl/m4/sys_stat_h.m4, lgl/stat_.h: Update. - -2006-10-30 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2006-10-26 Simon Josefsson - - * ChangeLog: [no log message] - -2006-10-26 Simon Josefsson - - * NEWS: Version 1.5.3. - -2006-10-26 Simon Josefsson - - * lgl/.cvsignore: [no log message] - -2006-10-26 Simon Josefsson - - * libextra/opencdk/Makefile.am: Fix -I's. - -2006-10-26 Simon Josefsson - - * tests/rsa-md5-collision/Makefile.am: Dist more. - -2006-10-26 Simon Josefsson - - * NEWS, tests/rsa-md5-collision/README: Add. - -2006-10-26 Simon Josefsson - - * lib/Makefile.am, libextra/Makefile.am, src/Makefile.am, - tests/Makefile.am: Change lgpl/ library name. - -2006-10-26 Simon Josefsson - - * lgl/Makefile.am, lgl/m4/gnulib-cache.m4: Change lgpl/ library name - to liblgnu, to avoid weird libtool errors. - -2006-10-26 Simon Josefsson - - * lgl/Makefile.am, lgl/stdint_.h: Update. - -2006-10-26 Simon Josefsson - - * gl/Makefile.am, gl/getaddrinfo.c, gl/imaxtostr.c, gl/intprops.h, - gl/inttostr.c, gl/inttostr.h, gl/m4/absolute-header.m4, - gl/m4/gnulib-comp.m4, gl/m4/inttostr.m4, gl/m4/longlong.m4, - gl/m4/stdint.m4, gl/m4/ulonglong.m4, gl/offtostr.c, gl/stdint_.h, - gl/uinttostr.c, gl/umaxtostr.c: Add. - -2006-10-26 Simon Josefsson - - * NEWS: Fix. - -2006-10-26 Simon Josefsson - - * libextra/opencdk/encrypt.c, libextra/opencdk/opencdk.h: Update to - 0.5.11. - -2006-10-26 Simon Josefsson - - * doc/gnutls.texi: Be specific about SSLv2 security problems. - -2006-10-24 Simon Josefsson - - * tests/rsa-md5-collision/rsa-md5-collision: Fix distcheck. - -2006-10-24 Simon Josefsson - - * tests/rsa-md5-collision/Makefile.am: Dist more. - -2006-10-24 Simon Josefsson - - * NEWS: Add. - -2006-10-24 Simon Josefsson - - * tests/pkcs12-decode/.cvsignore: [no log message] - -2006-10-24 Simon Josefsson - - * configure.in: Add tests. - -2006-10-24 Simon Josefsson - - * tests/Makefile.am, tests/pkcs12-decode/Makefile.am, - tests/pkcs12-decode/pkcs12, tests/pkcs12_neon: Move pkcs12 tests to - pkcs12-decode/. - -2006-10-24 Simon Josefsson - - * tests/pkcs8-decode/pkcs8: More debugging info. - -2006-10-24 Simon Josefsson - - * tests/pkcs8-decode/.cvsignore: [no log message] - -2006-10-24 Simon Josefsson - - * tests/Makefile.am, tests/enc2pkcs8.pem, tests/encpkcs8.pem, - tests/pkcs8, tests/pkcs8-decode/Makefile.am, - tests/pkcs8-decode/enc2pkcs8.pem, tests/pkcs8-decode/encpkcs8.pem, - tests/pkcs8-decode/pkcs8, tests/pkcs8-decode/unencpkcs8.pem, - tests/unencpkcs8.pem: Move pkcs8 tests to pkcs8-decode/. - -2006-10-24 Simon Josefsson - - * tests/Makefile.am: Move pkcs1-pad stuff to pkcs1-padding/. Add - rsa-md5-collision/. - -2006-10-24 Simon Josefsson - - * tests/pkcs1-padding/.cvsignore, - tests/rsa-md5-collision/.cvsignore: [no log message] - -2006-10-24 Simon Josefsson - - * tests/rsa-md5-collision/Makefile.am, - tests/rsa-md5-collision/chain1-expect.log, - tests/rsa-md5-collision/chain2-expect.log, - tests/rsa-md5-collision/mbox, - tests/rsa-md5-collision/rsa-md5-collision: Add. - -2006-10-24 Simon Josefsson - - * tests/pkcs1-padding/Makefile.am, tests/pkcs1-padding/pkcs1-pad, - tests/pkcs1-padding/pkcs1-pad-broken.pem, - tests/pkcs1-padding/pkcs1-pad-broken2.pem, - tests/pkcs1-padding/pkcs1-pad-broken3.pem, - tests/pkcs1-padding/pkcs1-pad-ok.pem, - tests/pkcs1-padding/pkcs1-pad-ok2.pem: Moved from ../. - -2006-10-24 Simon Josefsson - - * tests/pkcs1-pad, tests/pkcs1-pad-broken.pem, - tests/pkcs1-pad-broken2.pem, tests/pkcs1-pad-broken3.pem, - tests/pkcs1-pad-ok.pem, tests/pkcs1-pad-ok2.pem: Move to separate - directory. - -2006-10-24 Simon Josefsson - - * doc/protocol/draft-ietf-tls-psk-null-03.txt, - doc/protocol/draft-ietf-tls-rfc4346-bis-02.txt: Add. - -2006-10-21 Simon Josefsson - - * NEWS: Add. - -2006-10-21 Simon Josefsson - - * lgl/.cvsignore: [no log message] - -2006-10-21 Simon Josefsson - - * tests/Makefile.am: Need lgpl gnulib. - -2006-10-21 Simon Josefsson - - * src/Makefile.am: Add lgpl too. - -2006-10-21 Simon Josefsson - - * libextra/Makefile.am: Reorder libgnu.la's. - -2006-10-21 Simon Josefsson - - * libextra/opencdk/Makefile.am: Need lgpl/ gnulib in CFLAGS. - -2006-10-21 Simon Josefsson - - * lgl/alloca.h, lgl/stdint.h: Remove files that shouldn't have been - committed. - -2006-10-21 Simon Josefsson - - * gl/Makefile.am, gl/m4/gnulib-cache.m4: Fix avoid modules. - -2006-10-21 Simon Josefsson - - * gl/Makefile.am, gl/alloca_.h, gl/asnprintf.c, gl/m4/alloca.m4, - gl/m4/eoverflow.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, - gl/m4/intmax_t.m4, gl/m4/inttypes_h.m4, gl/m4/longdouble.m4, - gl/m4/longlong.m4, gl/m4/signed.m4, gl/m4/size_max.m4, - gl/m4/snprintf.m4, gl/m4/stdint_h.m4, gl/m4/vasnprintf.m4, - gl/m4/wchar_t.m4, gl/m4/wint_t.m4, gl/m4/xsize.m4, - gl/printf-args.c, gl/printf-args.h, gl/printf-parse.c, - gl/printf-parse.h, gl/size_max.h, gl/snprintf.c, gl/snprintf.h, - gl/vasnprintf.c, gl/vasnprintf.h, gl/xsize.h: Avoid duplicate - modules. - -2006-10-21 Simon Josefsson - - * gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4: Avoid - duplicate modules. - -2006-10-21 Simon Josefsson - - * libextra/Makefile.am: Need gnulib lgl/ in CFLAGS and LIBADD. - -2006-10-21 Simon Josefsson - - * libextra/openpgp/Makefile.am: Need gnulib lgl/ in CFLAGS. - -2006-10-21 Simon Josefsson - - * gl/Makefile.am: Move modules from gl/ to lgl/. - -2006-10-21 Simon Josefsson - - * gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, lgl/Makefile.am, - lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4: Move modules from gl/ - to lgl/. - -2006-10-21 Simon Josefsson - - * gl/Makefile.am, gl/m4/absolute-header.m4, gl/m4/codeset.m4, - gl/m4/gettext.m4, gl/m4/glibc2.m4, gl/m4/glibc21.m4, - gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/iconv.m4, - gl/m4/intdiv0.m4, gl/m4/intmax.m4, gl/m4/inttypes-h.m4, - gl/m4/inttypes-pri.m4, gl/m4/lcmessage.m4, gl/m4/lock.m4, - gl/m4/memmove.m4, gl/m4/minmax.m4, gl/m4/nls.m4, gl/m4/po.m4, - gl/m4/printf-posix.m4, gl/m4/progtest.m4, gl/m4/read-file.m4, - gl/m4/stdint.m4, gl/m4/uintmax_t.m4, gl/m4/ulonglong.m4, - gl/m4/visibility.m4, gl/memmove.c, gl/minmax.h, gl/read-file.c, - gl/read-file.h, gl/stdint_.h, lgl/Makefile.am, lgl/alloca.h, - lgl/alloca_.h, lgl/asnprintf.c, lgl/gettext.h, lgl/m4/alloca.m4, - lgl/m4/codeset.m4, lgl/m4/eoverflow.m4, lgl/m4/gettext.m4, - lgl/m4/glibc2.m4, lgl/m4/glibc21.m4, lgl/m4/gnulib-cache.m4, - lgl/m4/gnulib-comp.m4, lgl/m4/iconv.m4, lgl/m4/intdiv0.m4, - lgl/m4/intmax.m4, lgl/m4/intmax_t.m4, lgl/m4/inttypes-h.m4, - lgl/m4/inttypes-pri.m4, lgl/m4/inttypes_h.m4, lgl/m4/lcmessage.m4, - lgl/m4/lock.m4, lgl/m4/longdouble.m4, lgl/m4/memmove.m4, - lgl/m4/nls.m4, lgl/m4/po.m4, lgl/m4/printf-posix.m4, - lgl/m4/progtest.m4, lgl/m4/read-file.m4, lgl/m4/signed.m4, - lgl/m4/size_max.m4, lgl/m4/snprintf.m4, lgl/m4/socklen.m4, - lgl/m4/sockpfaf.m4, lgl/m4/stdint_h.m4, lgl/m4/sys_socket_h.m4, - lgl/m4/uintmax_t.m4, lgl/m4/vasnprintf.m4, lgl/m4/visibility.m4, - lgl/m4/wchar_t.m4, lgl/m4/wint_t.m4, lgl/m4/xsize.m4, - lgl/memmove.c, lgl/printf-args.c, lgl/printf-args.h, - lgl/printf-parse.c, lgl/printf-parse.h, lgl/read-file.c, - lgl/read-file.h, lgl/size_max.h, lgl/snprintf.c, lgl/snprintf.h, - lgl/socket_.h, lgl/stdint.h, lgl/vasnprintf.c, lgl/vasnprintf.h, - lgl/xsize.h: Move modules from gl/ to lgl/. - -2006-10-21 Simon Josefsson - - * lgl/.cvsignore: [no log message] - -2006-10-21 Simon Josefsson - - * Makefile.am: Build lgl/ too. - -2006-10-21 Simon Josefsson - - * gl/Makefile.am, gl/arcfour.c, gl/arcfour.h, gl/arctwo.c, - gl/arctwo.h, gl/des.c, gl/des.h, gl/gc-gnulib.c, gl/gc-libgcrypt.c, - gl/gc-pbkdf2-sha1.c, gl/gc.h, gl/hmac-md5.c, gl/hmac-sha1.c, - gl/hmac.h, gl/m4/arcfour.m4, gl/m4/arctwo.m4, gl/m4/des.m4, - gl/m4/gc-arcfour.m4, gl/m4/gc-arctwo.m4, gl/m4/gc-des.m4, - gl/m4/gc-hmac-md5.m4, gl/m4/gc-hmac-sha1.m4, gl/m4/gc-md2.m4, - gl/m4/gc-md4.m4, gl/m4/gc-md5.m4, gl/m4/gc-pbkdf2-sha1.m4, - gl/m4/gc-random.m4, gl/m4/gc-rijndael.m4, gl/m4/gc-sha1.m4, - gl/m4/gc.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, - gl/m4/hmac-md5.m4, gl/m4/hmac-sha1.m4, gl/m4/md2.m4, gl/m4/md4.m4, - gl/m4/md5.m4, gl/m4/memxor.m4, gl/m4/rijndael.m4, gl/m4/sha1.m4, - gl/md2.c, gl/md2.h, gl/md4.c, gl/md4.h, gl/md5.c, gl/md5.h, - gl/memxor.c, gl/memxor.h, gl/rijndael-alg-fst.c, - gl/rijndael-alg-fst.h, gl/rijndael-api-fst.c, - gl/rijndael-api-fst.h, gl/sha1.c, gl/sha1.h, lgl/Makefile.am, - lgl/arcfour.c, lgl/arcfour.h, lgl/arctwo.c, lgl/arctwo.h, - lgl/des.c, lgl/des.h, lgl/gc-gnulib.c, lgl/gc-libgcrypt.c, - lgl/gc-pbkdf2-sha1.c, lgl/gc.h, lgl/hmac-md5.c, lgl/hmac-sha1.c, - lgl/hmac.h, lgl/m4/absolute-header.m4, lgl/m4/arcfour.m4, - lgl/m4/arctwo.m4, lgl/m4/des.m4, lgl/m4/gc-arcfour.m4, - lgl/m4/gc-arctwo.m4, lgl/m4/gc-des.m4, lgl/m4/gc-hmac-md5.m4, - lgl/m4/gc-hmac-sha1.m4, lgl/m4/gc-md2.m4, lgl/m4/gc-md4.m4, - lgl/m4/gc-md5.m4, lgl/m4/gc-pbkdf2-sha1.m4, lgl/m4/gc-random.m4, - lgl/m4/gc-rijndael.m4, lgl/m4/gc-sha1.m4, lgl/m4/gc.m4, - lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4, lgl/m4/hmac-md5.m4, - lgl/m4/hmac-sha1.m4, lgl/m4/lib-ld.m4, lgl/m4/lib-link.m4, - lgl/m4/lib-prefix.m4, lgl/m4/longlong.m4, lgl/m4/md2.m4, - lgl/m4/md4.m4, lgl/m4/md5.m4, lgl/m4/memxor.m4, lgl/m4/minmax.m4, - lgl/m4/rijndael.m4, lgl/m4/sha1.m4, lgl/m4/stdint.m4, - lgl/m4/ulonglong.m4, lgl/md2.c, lgl/md2.h, lgl/md4.c, lgl/md4.h, - lgl/md5.c, lgl/md5.h, lgl/memxor.c, lgl/memxor.h, lgl/minmax.h, - lgl/rijndael-alg-fst.c, lgl/rijndael-alg-fst.h, - lgl/rijndael-api-fst.c, lgl/rijndael-api-fst.h, lgl/sha1.c, - lgl/sha1.h, lgl/stdint_.h: Move modules from gl/ to lgl/. - -2006-10-21 Simon Josefsson - - * lib/minitasn1/Makefile.am, lib/x509/Makefile.am: Use gnulib in - lgl/ instead of gl/. - -2006-10-21 Simon Josefsson - - * configure.in, gl/Makefile.am, gl/alloca_.h, gl/arcfour.c, - gl/arcfour.h, gl/arctwo.c, gl/arctwo.h, gl/asnprintf.c, gl/des.c, - gl/des.h, gl/dummy.c, gl/gai_strerror.c, gl/gc-gnulib.c, - gl/gc-libgcrypt.c, gl/gc-pbkdf2-sha1.c, gl/gc.h, gl/getaddrinfo.c, - gl/getaddrinfo.h, gl/getdelim.c, gl/getdelim.h, gl/getline.c, - gl/getline.h, gl/getpass.c, gl/getpass.h, gl/gettext.h, - gl/hmac-md5.c, gl/hmac-sha1.c, gl/hmac.h, gl/inet_ntop.c, - gl/inet_ntop.h, gl/inet_pton.c, gl/inet_pton.h, - gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/memmem.m4, - gl/md2.c, gl/md2.h, gl/md4.c, gl/md4.h, gl/md5.c, gl/md5.h, - gl/memmem.c, gl/memmem.h, gl/memxor.c, gl/memxor.h, gl/minmax.h, - gl/printf-args.c, gl/printf-args.h, gl/printf-parse.c, - gl/printf-parse.h, gl/read-file.c, gl/read-file.h, gl/readline.c, - gl/readline.h, gl/rijndael-alg-fst.c, gl/rijndael-alg-fst.h, - gl/rijndael-api-fst.c, gl/rijndael-api-fst.h, gl/sha1.c, gl/sha1.h, - gl/size_max.h, gl/snprintf.c, gl/snprintf.h, gl/socket_.h, - gl/stdbool_.h, gl/stdint_.h, gl/strdup.c, gl/strdup.h, - gl/vasnprintf.c, gl/vasnprintf.h, gl/xsize.h, lgl/Makefile.am, - lgl/dummy.c, lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4, - lgl/m4/gnulib-tool.m4, lgl/m4/memmem.m4, lgl/memmem.c, - lgl/memmem.h, lib/Makefile.am: Add lgl/ for LGPLed gnulib modules - (for lib/) and use gl/ for GPL gnulib modules, for use in src/ etc. - -2006-10-21 Simon Josefsson - - * gl/Makefile.am, gl/gettext.h, gl/m4/alloca.m4, - gl/m4/gnulib-comp.m4, gl/m4/lock.m4, gl/m4/longlong.m4, - gl/m4/size_max.m4, gl/m4/stdint.m4, gl/m4/ulonglong.m4, - gl/m4/vasnprintf.m4, gl/printf-args.c, gl/printf-args.h, - gl/printf-parse.c, gl/stdint_.h, gl/strdup.c, gl/vasnprintf.c: - Update. - -2006-10-19 Simon Josefsson - - * NEWS: Add. - -2006-10-19 Simon Josefsson - - * lib/minitasn1/coding.c, lib/minitasn1/decoding.c, - lib/minitasn1/libtasn1.h: Update to 0.3.7. - -2006-10-11 Simon Josefsson - - * NEWS: Add. - -2006-10-11 Simon Josefsson - - * libextra/opencdk/keylist.c, libextra/opencdk/opencdk.h: Bump to - 0.5.10. - -2006-10-11 Simon Josefsson - - * doc/protocol/rfc4680.txt, doc/protocol/rfc4681.txt: Add. - -2006-10-10 Simon Josefsson - - * doc/protocol/draft-ietf-tls-psk-null-02.txt: Add. - -2006-10-03 Simon Josefsson - - * NEWS: Add. - -2006-10-03 Simon Josefsson - - * lib/Makefile.am, libextra/Makefile.am: Fix .def filename. - -2006-10-03 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2006-10-03 Simon Josefsson - - * ChangeLog: [no log message] - -2006-10-03 Simon Josefsson - - * NEWS: Version 1.5.2. - -2006-10-03 Simon Josefsson - - * NEWS: Fix. - -2006-10-03 Simon Josefsson - - * NEWS: Add. - -2006-10-03 Simon Josefsson - - * gl/Makefile.am, gl/getpass.c, gl/m4/getpass.m4, gl/m4/intmax.m4: - Update. - -2006-09-29 Simon Josefsson - - * doc/protocol/draft-ietf-tls-psk-null-01.txt: Add. - -2006-09-26 Simon Josefsson - - * NEWS: Add. - -2006-09-26 Simon Josefsson - - * libextra/gnutls_openpgp.c: (kbx_data_to_keyring): Fix off-by-one error in call to malloc, - reported by "Adam Langley" . - -2006-09-25 Simon Josefsson - - * NEWS: Add. - -2006-09-25 Simon Josefsson - - * configure.in: Use library shared version 13 instead of 14, - incrementing it was a mistake since no API/ABI changes happened. - Reported by Andreas Metzler . - -2006-09-25 Simon Josefsson - - * configure.in: Improve the C++ test, to handle CXX env. variables, - suggested by Andreas Metzler . - -2006-09-25 Simon Josefsson - - * NEWS: Add. - -2006-09-25 Simon Josefsson - - * lib/Makefile.am: Use version script for libgnutlsxx too. - -2006-09-25 Simon Josefsson - - * NEWS, lib/libgnutlsxx.vers: Add. - -2006-09-24 Simon Josefsson - - * gl/gc-gnulib.c, gl/m4/gnulib-comp.m4, gl/m4/lock.m4, - gl/m4/signed.m4, gl/m4/sockpfaf.m4, gl/md4.c, gl/rijndael-api-fst.c: - Update. - -2006-09-24 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2006-09-24 Simon Josefsson - - * lib/x509/x509.c: (gnutls_x509_crt_init): Don't set output parameter on failures, - reported by Alon Bar-Lev . Also clean up - logic. - -2006-09-24 Simon Josefsson - - * THANKS: Add. - -2006-09-24 Simon Josefsson - - * lib/x509/crl.c: Fix prototype of gnutls_x509_crl_get_issuer_dn to - match x509.h, for IRIX ido cc builds, reported by Georg Schwarz - . - -2006-09-21 Simon Josefsson - - * Makefile.am: Fix gendocs.sh path. - -2006-09-21 Simon Josefsson - - * ChangeLog: [no log message] - -2006-09-21 Simon Josefsson - - * NEWS: Version 1.5.1. - -2006-09-21 Simon Josefsson - - * gl/override/gpl.diff: Rename. - -2006-09-21 Simon Josefsson - - * gl/override/doc/gpl.texi.diff, gl/override/doc/lgpl.texi.diff, - gl/override/gpl.diff, gl/override/gpl.texi.diff, - gl/override/lgpl.diff, gl/override/lgpl.texi.diff: Rename. - -2006-09-21 Simon Josefsson - - * gl/override/lgpl.diff: Rename. - -2006-09-21 Simon Josefsson - - * doc/fdl.texi, doc/gpl.texi, doc/lgpl.texi, gl/Makefile.am, - gl/asnprintf.c, gl/gai_strerror.c, gl/getaddrinfo.c, gl/getpass.c, - gl/inet_ntop.c, gl/inet_pton.c, gl/m4/gettext.m4, - gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/inttypes-h.m4, - gl/m4/inttypes-pri.m4, gl/m4/lib-link.m4, gl/m4/stdint.m4, - gl/md5.c, gl/memmove.c, gl/override/gpl.texi.diff, - gl/override/lgpl.texi.diff, gl/printf-args.c, gl/printf-parse.c, - gl/sha1.c, gl/snprintf.c, gl/stdint_.h, gl/strdup.c, - gl/vasnprintf.c: Update. - -2006-09-21 Simon Josefsson - - * NEWS: Add. - -2006-09-21 Simon Josefsson - - * doc/Makefile.am: Dist gpl.texi and lgpl.texi. - -2006-09-21 Simon Josefsson - - * doc/gnutls.texi: Add LGPL and GPL texts. - -2006-09-21 Simon Josefsson - - * NEWS: Add. - -2006-09-21 Simon Josefsson - - * tests/pkcs1-pad: Simplify grep expression, to work around debug - messages from wine. - -2006-09-21 Simon Josefsson - - * src/certtool.c: (generate_self_signed): Load key, if generate_certificate() didn't - load or generate it, typically because it used a certificate - request. Reported by Sascha Ziemann . - -2006-09-21 Simon Josefsson - - * src/certtool.c: Revert last patch. - -2006-09-21 Simon Josefsson - - * src/tests.c: (test_session_resume2): When comparing session id's, also compare - that the lengths are the same. - -2006-09-21 Simon Josefsson - - * NEWS, THANKS: Add. - -2006-09-21 Simon Josefsson - - * src/tests.c: (test_session_resume2): If session-id is NULL, resumption isn't - supported. Tiny patch from Kataja Kai . - -2006-09-19 Simon Josefsson - - * tests/Makefile.am: Dist more. - -2006-09-19 Simon Josefsson - - * tests/pkcs1-pad: Test another cert. - -2006-09-19 Simon Josefsson - - * tests/pkcs1-pad-broken3.pem: Add forged cert, from Ralf-Philipp - Weinmann. - -2006-09-18 Simon Josefsson - - * configure.in: Gnulib seems to require autoconf 2.60? Bump it. - -2006-09-18 Simon Josefsson - - * libextra/opencdk/keydb.c: (keydb_idx_search): Don't return CDK_EOF if key is found at offset - 0. Suggested by "Adam Langley" . - -2006-09-18 Simon Josefsson - - * THANKS: Remove (already there). - -2006-09-18 Simon Josefsson - - * THANKS: Add. - -2006-09-18 Simon Josefsson - - * doc/examples/ex-serv-pgp.c: Fix typo. Tiny patch from "Adam - Langley" . - -2006-09-12 Simon Josefsson - - * NEWS: Add. - -2006-09-12 Simon Josefsson - - * NEWS: Fix. - -2006-09-12 Simon Josefsson - - * tests/pkcs1-pad: Fix. - -2006-09-12 Simon Josefsson - - * lib/x509/verify.c: Permit empty parameters field too, found after - adding self tests. - -2006-09-12 Simon Josefsson - - * tests/pkcs1-pad: Fix exit code. - -2006-09-12 Simon Josefsson - - * tests/pkcs1-pad-broken2.pem, tests/pkcs1-pad-ok2.pem: Add, from - Eric Young in - . - -2006-09-12 Simon Josefsson - - * tests/pkcs1-pad: Add more tests. - -2006-09-12 Simon Josefsson - - * tests/Makefile.am: Add pkcs1-pad test. - -2006-09-12 Simon Josefsson - - * tests/pkcs1-pad-broken.pem, tests/pkcs1-pad-ok.pem: Add, from - Yutaka OIWA . - -2006-09-12 Simon Josefsson - - * tests/pkcs1-pad: Add. - -2006-09-12 Simon Josefsson - - * lib/x509/verify.c: Fix asn1_read_value() call to fix crash, - reported by Andreas Metzler . - -2006-09-12 Simon Josefsson - - * lib/gnutls_pk.c: Add 'break' to make logic easier to follow. - -2006-09-11 Simon Josefsson - - * lib/gnutls_pk.c: Revert part of patch, logging is only enabled in - debug mode, which isn't recommended for real use. - -2006-09-08 Simon Josefsson - - * NEWS: Add. - -2006-09-08 Simon Josefsson - - * NEWS: Fix. - -2006-09-08 Simon Josefsson - - * NEWS: Fix. - -2006-09-08 Simon Josefsson - - * NEWS: Add. - -2006-09-08 Simon Josefsson - - * lib/x509/verify.c: Make sure the digestAlgorithm.parameters field - is empty, which it has to be for the hashes we support. Otherwise, - the field can encode "garbage" that might be used to make the - signature be a perfect cube, similar (but not identical) to - Bleichenbacher's Crypto 06 rump session attack. - -2006-09-08 Simon Josefsson - - * NEWS: Add. - -2006-09-08 Simon Josefsson - - * NEWS: Add. - -2006-09-08 Simon Josefsson - - * lib/gnutls_pk.c: Don't return different errors depending on - content of decrypted PKCS#1 token, to avoid Bleichenbacher's - Crypto'98 attack, suggested by Werner Koch . - -2006-09-08 Simon Josefsson - - * THANKS: Add. - -2006-09-08 Simon Josefsson - - * doc/examples/ex-client-srp.c: Use GNUTLS_SHUT_RDWR, tiny patch - from "Robert Millan [ackstorm]" . - -2006-08-29 Simon Josefsson - - * doc/protocol/draft-ietf-tls-openpgp-keys-11.txt: Add. - -2006-08-28 Simon Josefsson - - * NEWS: Fix. - -2006-08-28 Simon Josefsson - - * gl/Makefile.am, gl/getaddrinfo.c, gl/m4/arcfour.m4, - gl/m4/arctwo.m4, gl/m4/codeset.m4, gl/m4/des.m4, - gl/m4/gc-pbkdf2-sha1.m4, gl/m4/gc.m4, gl/m4/getdelim.m4, - gl/m4/getline.m4, gl/m4/getpass.m4, gl/m4/gnulib-cache.m4, - gl/m4/gnulib-comp.m4, gl/m4/hmac-md5.m4, gl/m4/hmac-sha1.m4, - gl/m4/intmax_t.m4, gl/m4/inttypes-pri.m4, gl/m4/inttypes_h.m4, - gl/m4/lock.m4, gl/m4/longlong.m4, gl/m4/md2.m4, gl/m4/md4.m4, - gl/m4/md5.m4, gl/m4/memxor.m4, gl/m4/read-file.m4, - gl/m4/readline.m4, gl/m4/rijndael.m4, gl/m4/sha1.m4, - gl/m4/stdint.m4, gl/m4/stdint_h.m4, gl/m4/strdup.m4, - gl/override/doc/gendocs_template, gl/stdint_.h: Update. - -2006-08-27 Simon Josefsson - - * NEWS, THANKS: Add. - -2006-08-27 Simon Josefsson - - * doc/examples/ex-serv-anon.c, doc/examples/ex-serv-export.c, - doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-srp.c, - doc/examples/ex-serv1.c, doc/examples/tcp.c: Include netinet/in.h - for FreeBSD, reported by Roman Bogorodskiy . - -2006-08-27 Simon Josefsson - - * NEWS: Add. - -2006-08-27 Simon Josefsson - - * THANKS: Add. - -2006-08-27 Simon Josefsson - - * src/certtool.c: (generate_certificate): Load private key when --load-request is - used, based on report from Sascha Ziemann - . - -2006-08-27 Simon Josefsson - - * lib/x509/x509_write.c: (gnutls_x509_crt_sign2): Check to see if ISSUER_KEY is NULL before - continuing, based on report from Sascha Ziemann - . - -2006-08-14 Simon Josefsson - - * NEWS: Add. - -2006-08-14 Simon Josefsson - - * src/serv.c: Map select to _win_select on Windows hosts. - -2006-08-14 Simon Josefsson - - * src/Makefile.am: Need select.c in cli.c and serv.c. - -2006-08-14 Simon Josefsson - - * src/select.c: Add, moved from cli.c, originally from plibc, see - - . - -2006-08-14 Simon Josefsson - - * src/cli.c: Move _win_select to select.c. - -2006-08-14 Simon Josefsson - - * src/cli.c: Make select() work on Windows, copying code from plibc, - see - - . - -2006-08-13 Simon Josefsson - - * libextra/gnutls_openssl.c: Mark with XXX. - -2006-08-13 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2006-08-13 Simon Josefsson - - * Makefile.am: Fix release target. - -2006-08-13 Simon Josefsson - - * ChangeLog: [no log message] - -2006-08-13 Simon Josefsson - - * NEWS: Version 1.5.0. - -2006-08-13 Simon Josefsson - - * NEWS: Fix. - -2006-08-13 Simon Josefsson - - * libextra/gnutls_openssl.c: Add (XXX). - -2006-08-13 Simon Josefsson - - * lib/Makefile.am, libextra/Makefile.am: Install *.def to bin/ - directory. - -2006-08-13 Simon Josefsson - - * NEWS: Add. - -2006-08-13 Simon Josefsson - - * configure.in, lib/Makefile.am, libextra/Makefile.am: Create *.def - files for libraries, on mingw. - -2006-08-13 Simon Josefsson - - * gl/Makefile.am, gl/m4/gc.m4, gl/m4/getaddrinfo.m4, - gl/m4/gnulib-comp.m4, gl/m4/inet_ntop.m4, gl/m4/inet_pton.m4, - gl/m4/memxor.m4, gl/m4/restrict.m4, gl/snprintf.c: Update. - -2006-08-13 Simon Josefsson - - * libextra/gnutls_openssl.c: Use int/void* macros to avoid warnings, - suggested by Andreas Metzler . - -2006-08-13 Simon Josefsson - - * lib/gnutls_buffers.c: Remove. - -2006-08-13 Simon Josefsson - - * lib/gnutls_int.h: Move GNUTLS_POINTER_TO_INT here. Add - GNUTLS_INT_TO_POINTER. Based on glib macros, and suggestions from - Andreas Metzler . - -2006-08-13 Simon Josefsson - - * configure.in: Add void*, for GNUTLS_POINTER_TO_INT_CAST macros. - -2006-08-11 Simon Josefsson - - * NEWS: Fix. - -2006-08-11 Simon Josefsson - - * NEWS: Add. - -2006-08-11 Simon Josefsson - - * NEWS: Add. - -2006-08-11 Simon Josefsson - - * lib/gnutls_algorithms.c: (_gnutls_x509_oid2mac_algorithm): Don't crash trying to strcmp the - NULL OID value in the hash_algorithms array, which happens when the - input OID doesn't match our OIDs for SHA1, MD5, MD2 or RIPEMD160. - Reported by satyakumar . - -2006-08-11 Simon Josefsson - - * configure.in: Don't overwrite CFLAGS. - -2006-08-07 Simon Josefsson - - * includes/gnutls/gnutlsxx.h: Make it compile. - -2006-08-06 Simon Josefsson - - * NEWS: Add. - -2006-08-06 Simon Josefsson - - * src/tls_test-gaa.c, src/tls_test-gaa.h: Update. - -2006-08-06 Simon Josefsson - - * src/tls_test.gaa: Use -V for --verbose. - -2006-08-06 Simon Josefsson - - * src/certtool.c, src/crypt.c: Fix --version to conform to FSF - standards, to fix make distcheck. - -2006-08-06 Simon Josefsson - - * src/tls_test.c, src/tls_test.gaa: Support --version. - -2006-08-06 Simon Josefsson - - * src/cli.c, src/psk.c, src/serv.c: Fix --version to conform to FSF - standards, to fix make distcheck. - -2006-08-06 Simon Josefsson - - * NEWS: Add. - -2006-08-06 Simon Josefsson - - * configure.in: Fix --without-included-libtasn1, reported by Daniel - Black . - -2006-08-06 Simon Josefsson - - * gl/Makefile.am, gl/m4/gnulib-cache.m4: Update. - -2006-08-06 Simon Josefsson - - * NEWS: Fix. - -2006-08-06 Simon Josefsson - - * NEWS: Add. - -2006-08-06 Simon Josefsson - - * libextra/opencdk/kbnode.c, libextra/opencdk/opencdk.h, - libextra/opencdk/stream.h: Update to 0.5.9. - -2006-08-03 Simon Josefsson - - * THANKS: add - -2006-08-03 Simon Josefsson - - * tests/Makefile.am: Fix libgcrypt link failure, reported by Brant - Gurganus, tiny patch by Daniel Black . - -2006-07-28 Simon Josefsson - - * gendocs.sh, gl/Makefile.am, gl/getaddrinfo.c, gl/getaddrinfo.h, - gl/gettext.h, gl/inet_ntop.h, gl/inet_pton.h, gl/m4/getline.m4, - gl/m4/gettext.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, - gl/m4/inet_ntop.m4, gl/m4/inet_pton.m4, gl/m4/inttypes-h.m4, - gl/m4/inttypes-pri.m4, gl/m4/inttypes.m4, gl/m4/isc-posix.m4, - gl/m4/lib-link.m4, gl/m4/lock.m4, gl/m4/netinet_in_h.m4, - gl/m4/nls.m4, gl/m4/onceonly_2_57.m4, gl/m4/po.m4, gl/m4/stdint.m4, - gl/m4/visibility.m4, gl/printf-args.c, gl/stdint_.h: Update. - -2006-07-23 Nikos Mavrogiannopoulos - - * lib/gnutls_int.h: cert_type extension was updated to the IANA - assigned value - -2006-07-23 Nikos Mavrogiannopoulos - - * lib/gnutls_int.h: cert_type extension was updated to the IANA - assigned value - -2006-07-13 Simon Josefsson - - * doc/gendocs.sh, gendocs.sh, gl/Makefile.am, - gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4: Update. - -2006-07-13 Simon Josefsson - - * libextra/gnutls_openssl.c: Revert. - -2006-07-13 Simon Josefsson - - * THANKS: Add. - -2006-07-13 Simon Josefsson - - * libextra/gnutls_openssl.c: Retry handshake on non-fatal errors. - -2006-07-11 Simon Josefsson - - * doc/Makefile.am: Fix last commit. - -2006-07-11 Simon Josefsson - - * doc/Makefile.am: Dist arch/ images. - -2006-07-11 Simon Josefsson - - * doc/Makefile.am: Need -I's for arch/ images. - -2006-07-11 Simon Josefsson - - * configure.in: Improve valgrind test. - -2006-07-11 Simon Josefsson - - * gl/Makefile.am, gl/m4/absolute-header.m4, gl/m4/gnulib-cache.m4, - gl/m4/gnulib-comp.m4, gl/m4/onceonly_2_57.m4, gl/m4/stdint.m4: - Update. - -2006-07-10 Simon Josefsson - - * THANKS: Fix. - -2006-07-10 Simon Josefsson - - * THANKS: Add. - -2006-07-10 Simon Josefsson - - * src/cli.c: Fix load of pgp_keyfile, reported by Mario Lenz. - -2006-07-10 Simon Josefsson - - * gl/.cvsignore: [no log message] - -2006-07-07 Simon Josefsson - - * gl/Makefile.am, gl/getaddrinfo.c, gl/getaddrinfo.h, - gl/m4/absolute-header.m4, gl/m4/full-header-path.m4, - gl/m4/getpass.m4, gl/m4/gnulib-comp.m4, gl/m4/longlong.m4, - gl/m4/onceonly_2_57.m4, gl/m4/sockpfaf.m4, gl/m4/stdint.m4, - gl/m4/ulonglong.m4, gl/stdint_.h: Update. - -2006-07-07 Nikos Mavrogiannopoulos - - * doc/bibliography.texi, doc/gnutls.texi: changed CRL rfc reference - from 2511 to 4211 - -2006-07-06 Simon Josefsson - - * doc/TODO: Add. - -2006-07-05 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2006-07-05 Nikos Mavrogiannopoulos - - * libextra/gnutls_openpgp.c: added an extra error check. - -2006-07-05 Nikos Mavrogiannopoulos - - * src/cli.c, src/common.c, src/serv.c: replaced USE_OPENPGP ifdefs - with ENABLE_OPENPGP. - -2006-06-29 Simon Josefsson - - * doc/protocol/draft-funk-tls-inner-application-extension-03.txt: - Add. - -2006-06-28 Simon Josefsson - - * NEWS: Add. - -2006-06-28 Simon Josefsson - - * doc/examples/.cvsignore: [no log message] - -2006-06-28 Simon Josefsson - - * NEWS: Fix. - -2006-06-28 Simon Josefsson - - * includes/Makefile.am: Only conditionally install gnutlsxx.h. - -2006-06-28 Simon Josefsson - - * doc/examples/Makefile.am: Build and dist ex-client-tlsia. - -2006-06-28 Simon Josefsson - - * doc/Makefile.am: Dist gnutls-logo.png. - -2006-06-28 Simon Josefsson - - * gl/getaddrinfo.c, gl/m4/getaddrinfo.m4: Update. - -2006-06-28 Simon Josefsson - - * gl/getaddrinfo.c: Update. - -2006-06-28 Simon Josefsson - - * gl/Makefile.am, gl/getaddrinfo.c, gl/getaddrinfo.h, - gl/m4/getaddrinfo.m4, gl/m4/stdint.m4, gl/stdint_.h: Update. - -2006-06-28 Simon Josefsson - - * doc/protocol/draft-ietf-tls-srp-12.txt: Add. - -2006-06-27 Simon Josefsson - - * doc/protocol/draft-ietf-tls-rfc4346-bis-01.txt: Add. - -2006-06-27 Simon Josefsson - - * doc/scripts/gdoc: Use GNU-style warnings. - -2006-06-27 Simon Josefsson - - * doc/scripts/gdoc: Improve man output, from libtasn1. - -2006-06-27 Simon Josefsson - - * configure.in: Fix valgrind test. - -2006-06-27 Simon Josefsson - - * configure.in: Move around, to make $cross_compile work. - -2006-06-27 Simon Josefsson - - * configure.in, tests/Makefile.am: Add --enable-valgrind-tests that - make it possible to enable/disable use of valgrind on self tests - specifically. Defaults to enabled if valgrind is installed and we - aren't cross-compiling. - -2006-06-27 Simon Josefsson - - * tests/Makefile.am: Fix. - -2006-06-27 Simon Josefsson - - * tests/Makefile.am: Revert. - -2006-06-27 Simon Josefsson - - * libextra/minilzo/Makefile.am: Use libtool -no-install. - -2006-06-27 Simon Josefsson - - * libextra/minilzo/Makefile.am: Use -DLZO_HAVE_CONFIG_H, as - suggested by README.LZO. - -2006-06-27 Simon Josefsson - - * libextra/minilzo/Makefile.am, tests/Makefile.am: Work under mingw. - -2006-06-27 Simon Josefsson - - * configure.in, lib/gnutls_buffers.c: Avoid warnings when casting - void* to int. - -2006-06-27 Simon Josefsson - - * lib/minitasn1/coding.c, lib/minitasn1/libtasn1.h: Update. - -2006-06-26 Simon Josefsson - - * gl/Makefile.am, gl/m4/stdint.m4, gl/stdint_.h: Update. - -2006-06-26 Simon Josefsson - - * THANKS: Add. - -2006-06-26 Simon Josefsson - - * lib/gnutls.pc.in, libextra/gnutls-extra.pc.in: Add Libs.Private to - pkg-config files, from Andreas Metzler - . - -2006-06-22 Simon Josefsson - - * gl/getaddrinfo.c, gl/getaddrinfo.h, gl/m4/getaddrinfo.m4, - gl/socket_.h: Try new win32 hooks for getaddrinfo. - -2006-06-22 Simon Josefsson - - * configure.in: Use AC_LIBTOOL_WIN32_DLL to make OBJDUMP/DLLTOOL - work under mingw. Fix use of deprecated AM_PROG_LIBTOOL. - -2006-06-21 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2006-06-21 Simon Josefsson - - * gl/inet_pton.c: Update. - -2006-06-21 Simon Josefsson - - * gl/alloca_.h, gl/getaddrinfo.c, gl/inet_ntop.c, - gl/m4/getaddrinfo.m4, gl/m4/sockpfaf.m4, gl/m4/stdint.m4, - gl/read-file.c, gl/socket_.h, gl/stdint_.h: Update. - -2006-06-21 Simon Josefsson - - * doc/examples/Makefile.am: Add -no-install. - -2006-06-21 Simon Josefsson - - * doc/reference/Makefile.am: Look for gnutls.h in builddir. - -2006-06-19 Simon Josefsson - - * libextra/Makefile.am: Need -I$builddir/gl for alloca.h when srcdir - != objdir. - -2006-06-19 Simon Josefsson - - * libextra/openpgp/Makefile.am: Need -I$builddir/gl for alloca.h - when srcdir != objdir. - -2006-06-19 Simon Josefsson - - * lib/x509/Makefile.am: Need -I$builddir/gl for alloca.h when srcdir - != objdir. - -2006-06-19 Simon Josefsson - - * src/Makefile.am: Need -I$builddir/gl for alloca.h when srcdir != - objdir. - -2006-06-19 Simon Josefsson - - * lib/Makefile.am: Need -I$builddir/gl for alloca.h when srcdir != - objdir. - -2006-06-17 Simon Josefsson - - * gl/Makefile.am: Update. - -2006-06-17 Simon Josefsson - - * gl/Makefile.am, gl/arpa_inet_.h, gl/inet_ntop.c, gl/inet_ntop.h, - gl/inet_pton.c, gl/inet_pton.h, gl/m4/arpa_inet_h.m4, - gl/m4/full-header-path.m4, gl/m4/gnulib-cache.m4, - gl/m4/gnulib-comp.m4, gl/m4/inet_ntop.m4, gl/m4/inet_pton.m4, - gl/m4/size_max.m4, gl/m4/stdint.m4, gl/read-file.c, gl/size_max.h, - gl/stdint_.h: Update. - -2006-06-17 Simon Josefsson - - * gl/.cvsignore: [no log message] - -2006-06-17 Simon Josefsson - - * doc/protocol/draft-badra-hajjeh-mtls-01.txt: Add - -2006-06-16 Simon Josefsson - - * doc/protocol/draft-ietf-tls-ctr-01.txt: Add. - -2006-06-16 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2006-06-16 Nikos Mavrogiannopoulos - - * lib/auth_cert.c: fixed bug - -2006-06-16 Simon Josefsson - - * tests/Makefile.am: Disable tests that use fork if the host doesn't - have fork. - -2006-06-16 Simon Josefsson - - * configure.in: Test for fork. - -2006-06-16 Simon Josefsson - - * configure.in: Typo. - -2006-06-16 Simon Josefsson - - * configure.in: Typo. - -2006-06-16 Simon Josefsson - - * configure.in: Fix LDFLAGS. - -2006-06-16 Simon Josefsson - - * configure.in: Use LDFLAGS for --enable-runtime-pseudo-reloc, to - avoid warnings. - -2006-06-16 Simon Josefsson - - * tests/anonself.c, tests/dhepskself.c, tests/pskself.c, - tests/resume.c, tests/tlsia.c: Need config.h. - -2006-06-16 Simon Josefsson - - * configure.in: Workaround hard-wiring of gcrypt test in gnulib. - -2006-06-16 Simon Josefsson - - * NEWS: Fix. - -2006-06-16 Simon Josefsson - - * includes/gnutls/extra.h: Fix prototype. - -2006-06-16 Simon Josefsson - - * NEWS: Add. - -2006-06-16 Simon Josefsson - - * lib/strfile.h: Remove. - -2006-06-16 Simon Josefsson - - * configure.in, lib/Makefile.am, lib/gnutls_x509.c, - libextra/gnutls_openpgp.c: Use read_binary_file from gnulib instead - of strfile stuff, to fix problem with binary files on mingw. - -2006-06-16 Simon Josefsson - - * tests/set_pkcs12_cred.c: Use utils stuff. - -2006-06-16 Simon Josefsson - - * lib/gnutls_global.c: Initialize winsock, for mingw. - -2006-06-16 Simon Josefsson - - * configure.in: Add HAVE_WINSOCK. - -2006-06-16 Simon Josefsson - - * doc/examples/ex-alert.c, doc/examples/ex-cert-select.c, - doc/examples/ex-client-resume.c, doc/examples/ex-client-srp.c, - doc/examples/ex-client-tlsia.c, doc/examples/ex-client1.c, - doc/examples/ex-client2.c, doc/examples/ex-crq.c, - doc/examples/ex-pkcs12.c, doc/examples/ex-rfc2818.c, - doc/examples/ex-serv-anon.c, doc/examples/ex-serv-export.c, - doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-srp.c, - doc/examples/ex-serv1.c, doc/examples/ex-session-info.c, - doc/examples/ex-verify.c, doc/examples/ex-x509-info.c, - doc/examples/tcp.c: Include config.h, don't include netinet/in.h - (for mingw). - -2006-06-16 Simon Josefsson - - * configure.in: Need to use AC_LINK_IFELSE, for - -Wl,--enable-runtime-pseudo-reloc. - -2006-06-16 Simon Josefsson - - * configure.in: Simplify. - -2006-06-16 Simon Josefsson - - * configure.in: Fix typo. - -2006-06-16 Simon Josefsson - - * configure.in: Set -mms-bitfields -Wl,--enable-runtime-pseudo-reloc - if supported. The former is to produce MSVS-compatible DLLs. The - second is needed to link libgnutls-extra at all (only due to - _gnutls_compression_algorithms, fix it another way?). - -2006-06-16 Simon Josefsson - - * gl/Makefile.am: Update. - -2006-06-16 Simon Josefsson - - * gl/arpa_inet_.h, gl/inet_pton.c: Update. - -2006-06-16 Simon Josefsson - - * configure.in: Typo. - -2006-06-16 Simon Josefsson - - * configure.in: Add all the LZO tests. - -2006-06-15 Simon Josefsson - - * po/sv.po: Sync with TP. - -2006-06-15 Simon Josefsson - - * configure.in: AC_PROG_CXX must be invoked unconditionally, for - libtool. (argh!) - -2006-06-15 Simon Josefsson - - * lib/Makefile.am: Fix last commit. - -2006-06-15 Simon Josefsson - - * lib/Makefile.am: Make C++ stuff conditioned on ENABLE_CXX. - -2006-06-15 Simon Josefsson - - * configure.in: Add --disable-cxx, to make it possibly to disable - the C++ stuff. Will also automatically disable it if there is no - C++ compiler. - -2006-06-15 Simon Josefsson - - * doc/examples/Makefile.am: Use gnulib, for portability. - -2006-06-15 Simon Josefsson - - * src/common.h: Don't include inet_ntop.h, use arpa/inet.h - unconditonially. - -2006-06-15 Simon Josefsson - - * gl/m4/arpa_inet_h.m4: Update. - -2006-06-15 Simon Josefsson - - * gl/Makefile.am, gl/arpa_inet_.h, gl/inet_ntop.c, gl/inet_ntop.h, - gl/inet_pton.c, gl/m4/arpa_inet_h.m4, gl/m4/gnulib-cache.m4, - gl/m4/gnulib-comp.m4, gl/m4/inet_ntop.m4: Try new arpa-inet module, - for mingw. - -2006-06-14 Simon Josefsson - - * configure.in: Remove mingw32 hook to get -lwsock32, the - getaddrinfo gnulib module links with -lws2_32 which is the more - appropriate library to use (winsock.h goes with wsock32.lib and - winsock2.h goes with ws2_32, of which the latter is backwards - compatible and available since Windows 3.11 or so, I'm told). - -2006-06-14 Simon Josefsson - - * tests/certder.c: fix - -2006-06-12 Simon Josefsson - - * gl/Makefile.am, gl/gc-gnulib.c, gl/m4/gnulib-cache.m4, - gl/m4/gnulib-comp.m4, gl/m4/read-file.m4, gl/read-file.c, - gl/read-file.h: Update. - -2006-06-10 Simon Josefsson - - * configure.in: Bump so version. - -2006-06-08 Simon Josefsson - - * doc/reference/Makefile.am: Add gnutlsxx.h. - -2006-06-07 Simon Josefsson - - * gl/getpass.c, gl/m4/stdbool.m4, gl/printf-args.c, gl/sha1.c, - gl/stdint_.h: Update. - -2006-06-07 Simon Josefsson - - * doc/protocol/draft-ietf-tls-openpgp-keys-10.txt: Add. - -2006-06-01 Nikos Mavrogiannopoulos - - * NEWS, configure.in, includes/Makefile.am, - includes/gnutls/gnutlsxx.h, lib/Makefile.am, lib/gnutls_db.c, - lib/gnutlsxx.cpp: Added a preliminary C++ interface. - -2006-06-01 Simon Josefsson - - * doc/protocol/draft-housley-tls-authz-extns-06.txt: Add. - -2006-05-23 Simon Josefsson - - * doc/protocol/draft-housley-tls-authz-extns-05.txt: Add. - -2006-05-23 Simon Josefsson - - * po/LINGUAS, po/sv.po: Sync with TP. - -2006-05-22 Simon Josefsson - - * doc/manpages/certtool.1: Typo, from debian #368323. - -2006-05-18 Simon Josefsson - - * doc/protocol/draft-ietf-tls-srp-11.txt: Add. - -2006-05-17 Simon Josefsson - - * doc/protocol/rfc4507.txt: Add. - -2006-05-17 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2006-05-15 Simon Josefsson - - * ChangeLog: [no log message] - -2006-05-15 Simon Josefsson - - * NEWS: Version 1.4.0. - -2006-05-15 Simon Josefsson - - * doc/protocol/draft-ietf-tls-openpgp-keys-09.txt: Add. - -2006-05-15 Simon Josefsson - - * src/certtool-cfg.c: Remove duplicated #include. - -2006-05-12 Simon Josefsson - - * src/serv.c, src/tls_test.c: Don't use AI_NUMERICSERV, it doesn't - exist on most platforms. - -2006-05-12 Simon Josefsson - - * NEWS: Add. - -2006-05-12 Simon Josefsson - - * src/serv.c: Need getaddrinfo.h. - -2006-05-12 Simon Josefsson - - * gl/Makefile.am, gl/gai_strerror.c, gl/getaddrinfo.c, - gl/getaddrinfo.h, gl/m4/getaddrinfo.m4, gl/m4/gnulib-cache.m4, - gl/m4/gnulib-comp.m4, gl/m4/strdup.m4, gl/strdup.c, gl/strdup.h: Add - getaddrinfo. - -2006-05-11 Simon Josefsson - - * buildconf: Remove. - -2006-05-11 Simon Josefsson - - * tests/Makefile.am: No supression file. - -2006-05-11 Simon Josefsson - - * libextra/gnutls_ia.c: Remove junk. - -2006-05-11 Simon Josefsson - - * lib/ext_inner_application.c: Fix self tests. - -2006-05-11 Simon Josefsson - - * libextra/gnutls_ia.c: Indent. - -2006-05-11 Simon Josefsson - - * doc/manpages/Makefile.am: Update. - -2006-05-11 Simon Josefsson - - * tests/Makefile.am: Improve valgrind stuff. - -2006-05-11 Simon Josefsson - - * .cvsignore: [no log message] - -2006-05-11 Simon Josefsson - - * config.rpath: Not needed, generated by autopoint. - -2006-05-11 Simon Josefsson - - * config.rpath, gl/Makefile.am, gl/des.c, gl/m4/gnulib-cache.m4, - gl/m4/gnulib-comp.m4, gl/md4.c, gl/sha1.c, gl/stdint_.h: Update. - -2006-05-11 Nikos Mavrogiannopoulos - - * lib/auth_cert.c: updated to reflect the new openpgp draft. - -2006-05-11 Simon Josefsson - - * configure.in: Check for -Wno-pointer-sign, taken from Werner's - ksba. - -2006-05-10 Simon Josefsson - - * NEWS, doc/protocol/draft-santesson-tls-ume-07.txt: Add. - -2006-05-10 Simon Josefsson - - * configure.in: Bump required libtasn1. - -2006-05-10 Simon Josefsson - - * lib/minitasn1/coding.c, lib/minitasn1/decoding.c, - lib/minitasn1/element.c, lib/minitasn1/errors.c, - lib/minitasn1/gstr.c, lib/minitasn1/libtasn1.h, - lib/minitasn1/parser_aux.c, lib/minitasn1/parser_aux.h, - lib/minitasn1/structure.c: Update to 0.3.4. - -2006-05-07 Simon Josefsson - - * configure.in: Bump required libtasn1 version to 0.3.3. - -2006-05-07 Simon Josefsson - - * tests/Makefile.am: Fix. - -2006-05-07 Simon Josefsson - - * NEWS: Add. - -2006-05-07 Simon Josefsson - - * tests/Makefile.am: Run tests under valgrind. - -2006-05-07 Nikos Mavrogiannopoulos - - * src/cli.c, src/serv.c, src/tls_test.c: some changes for IPv6. - Based on patch by Remi Denis-Courmont, sent to Debian bug tracking - system. - -2006-05-05 Simon Josefsson - - * doc/protocol/draft-housley-tls-authz-extns-04.txt: Add. - -2006-05-05 Nikos Mavrogiannopoulos - - * lib/minitasn1/structure.c: updated to the latest libtasn1 - -2006-05-05 Simon Josefsson - - * NEWS: Add. - -2006-05-05 Simon Josefsson - - * includes/gnutls/extra.h, includes/gnutls/gnutls.h.in, - lib/ext_inner_application.c, lib/gnutls_int.h, libextra/gnutls_ia.c: - TLS/IA fixes from Emile. - -2006-04-27 Simon Josefsson - - * doc/protocol/rfc4366.txt: Add. - -2006-04-27 Simon Josefsson - - * doc/protocol/rfc4346.txt, doc/protocol/rfc4347.txt: Add. - -2006-04-26 Simon Josefsson - - * lib/gnutls_state.c: Fix prototypes. - -2006-04-26 Simon Josefsson - - * gl/Makefile.am, gl/m4/getpass.m4, gl/m4/longdouble.m4: Update. - -2006-04-21 Simon Josefsson - - * doc/protocol/draft-santesson-tls-supp-02.txt, - doc/protocol/draft-santesson-tls-ume-06.txt: Add. - -2006-04-19 Simon Josefsson - - * tests/Makefile.am: (LDADD): Add libgnutls after libgnu, for libgcrypt transitive - reference, tiny patch from Nix . - -2006-04-19 Simon Josefsson - - * doc/protocol/draft-santesson-tls-supp-01.txt: Add. - -2006-04-17 Simon Josefsson - - * doc/protocol/draft-housley-tls-authz-extns-03.txt, - doc/protocol/draft-santesson-tls-ume-05.txt: Add. - -2006-04-11 Nikos Mavrogiannopoulos - - * lib/gnutls_priority.c: removed AES-256 from the list of default - ciphers. No point in having it (when everything else is far away - even from 128 bit security) - -2006-04-07 Nikos Mavrogiannopoulos - - * includes/gnutls/gnutls.h.in, lib/gnutls_srp.c: - gnutls_srp_set_client_credentials() uses const - -2006-04-07 Nikos Mavrogiannopoulos - - * lib/gnutls_priority.c: documented the return value in the priority - functions - -2006-04-05 Nikos Mavrogiannopoulos - - * includes/gnutls/gnutls.h.in, lib/gnutls_handshake.c: [no log - message] - -2006-04-04 Simon Josefsson - - * gl/m4/gc-random.m4, gl/stdint_.h: Update. - -2006-04-03 Nikos Mavrogiannopoulos - - * lib/x509/common.c, lib/x509/common.h, lib/x509/crl.c, - lib/x509/crq.c, lib/x509/dn.c, lib/x509/extensions.c, - lib/x509/pkcs12.c, lib/x509/pkcs7.c, lib/x509/x509.c: use snprintf() - instead of multiple calls to str_cpy() and str_cat(). - -2006-03-31 Nikos Mavrogiannopoulos - - * lib/x509/x509.c: bug fix - -2006-03-30 Simon Josefsson - - * doc/protocol/draft-santesson-tls-supp-00.txt, - doc/protocol/draft-santesson-tls-ume-04.txt: Add. - -2006-03-26 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2006-03-26 Nikos Mavrogiannopoulos - - * configure.in: added -Wno-pointer-sign to gcc to avoid tons of - useless warnings. - -2006-03-24 Simon Josefsson - - * doc/protocol/draft-housley-tls-authz-extns-01.txt: Add. - -2006-03-21 Simon Josefsson - - * configure.in: Bump version. - -2006-03-21 Simon Josefsson - - * NEWS: Add. - -2006-03-19 Nikos Mavrogiannopoulos - - * doc/bibliography.texi, doc/gnutls.texi: added reference for TLS - 1.1 - -2006-03-18 Nikos Mavrogiannopoulos - - * lib/gnutls_cert.c, lib/gnutls_global.h, lib/gnutls_x509.c, - lib/x509/rfc2818_hostname.c: some fixes for compilation - -2006-03-18 Nikos Mavrogiannopoulos - - * src/certtool.c: export to DER format is possible with certtool - -2006-03-15 Simon Josefsson - - * configure.in: Bump versions. - -2006-03-15 Simon Josefsson - - * NEWS: Add. - -2006-03-15 Simon Josefsson - - * lib/gnutls_cert.c: Indent. - -2006-03-15 Simon Josefsson - - * lib/x509/Makefile.am, lib/x509/compat.c, lib/x509/compat.h: Move - to ../gnutls_cert.c. - -2006-03-15 Simon Josefsson - - * lib/gnutls_cert.c: Move from x509/compat.c. - -2006-03-12 Simon Josefsson - - * doc/README.CVS: Add. - -2006-03-12 Simon Josefsson - - * doc/manpages/Makefile.am: Update. - -2006-03-12 Simon Josefsson - - * lib/minitasn1/structure.c: Update. - -2006-03-11 Nikos Mavrogiannopoulos - - * lib/gnutls_global.c: force the gcrypt random generator to be - initialized at startup. Maybe it should be within and ifdef? This - saves lots of debugging time when something fails. - -2006-03-11 Nikos Mavrogiannopoulos - - * lib/minitasn1/coding.c, lib/minitasn1/libtasn1.h, - lib/minitasn1/structure.c: added the fix for der_coding() from - libtasn1. - -2006-03-09 Simon Josefsson - - * doc/manpages/Makefile.am: Rebuild srp manpages too. - -2006-03-08 Simon Josefsson - - * ChangeLog: [no log message] - -2006-03-08 Simon Josefsson - - * NEWS: Version 1.3.5. - -2006-03-08 Simon Josefsson - - * NEWS: Add. - -2006-03-08 Simon Josefsson - - * NEWS: Add. - -2006-03-08 Simon Josefsson - - * NEWS: Add. - -2006-03-08 Simon Josefsson - - * lib/minitasn1/coding.c, lib/minitasn1/libtasn1.h: Update. - -2006-03-08 Simon Josefsson - - * po/LINGUAS, po/pl.po: Sync with TP. - -2006-03-08 Simon Josefsson - - * Makefile.am: Add update-po target. - -2006-03-08 Simon Josefsson - - * doc/manpages/Makefile.am: Update. - -2006-03-08 Simon Josefsson - - * lib/x509/xml.c: Doc fix. - -2006-03-08 Simon Josefsson - - * NEWS: Fix. - -2006-03-08 Simon Josefsson - - * lib/x509/common.c, lib/x509/sign.c, lib/x509/x509_write.c: Use new - asn1_copy_node API. - -2006-03-08 Simon Josefsson - - * lib/minitasn1/libtasn1.h, lib/minitasn1/structure.c: Update. - -2006-03-08 Simon Josefsson - - * lib/minitasn1/coding.c, lib/minitasn1/decoding.c, - lib/minitasn1/element.c, lib/minitasn1/int.h, - lib/minitasn1/libtasn1-dont.h, lib/minitasn1/libtasn1.h, - lib/minitasn1/parser_aux.c, lib/minitasn1/parser_aux.h, - lib/minitasn1/structure.c: Update. - -2006-03-08 Simon Josefsson - - * lib/x509/xml.c: Use internal error approach again, after - discussion with Nikos. - -2006-03-08 Simon Josefsson - - * lib/x509/xml.c: Fix. - -2006-03-08 Simon Josefsson - - * lib/minitasn1/coding.c, lib/minitasn1/int.h, - lib/minitasn1/libtasn1-dont.h, lib/minitasn1/libtasn1.h: Update. - -2006-03-08 Simon Josefsson - - * lib/x509/xml.c: Fix type_field. - -2006-03-08 Simon Josefsson - - * lib/x509/xml.c: Use external API. - -2006-03-08 Simon Josefsson - - * lib/minitasn1/coding.c, lib/minitasn1/decoding.c, - lib/minitasn1/element.c, lib/minitasn1/int.h, - lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, - lib/minitasn1/parser_aux.h, lib/minitasn1/structure.c: Update. - -2006-03-08 Simon Josefsson - - * lib/x509/xml.c: Fix. - -2006-03-08 Simon Josefsson - - * lib/x509/common.c: Use external libtasn1 API. - -2006-03-08 Simon Josefsson - - * lib/x509/xml.c: Fix typo. - -2006-03-08 Simon Josefsson - - * configure.in: Required libtasn1 0.3.1. - -2006-03-08 Simon Josefsson - - * lib/x509/xml.c: Revert, we now use the new exported functions. - -2006-03-08 Simon Josefsson - - * lib/x509/xml.c: Make it build. - -2006-03-08 Simon Josefsson - - * NEWS: Sort. - -2006-03-08 Simon Josefsson - - * NEWS: Add. - -2006-03-08 Simon Josefsson - - * lib/x509/xml.c: Disable XML functionality, because it relies on - libtasn1 internals. - -2006-03-08 Simon Josefsson - - * NEWS: Add. - -2006-03-08 Simon Josefsson - - * lib/Makefile.am, libextra/Makefile.am: Add -no-undefined, for - mingw32 builds. - -2006-03-08 Simon Josefsson - - * lib/x509/crq.c, lib/x509/xml.c, src/cli.c, src/common.c, - src/common.h, src/serv.c, tests/resume.c: Indent. - -2006-03-08 Simon Josefsson - - * gl/Makefile.am, gl/gc-gnulib.c, gl/gc-libgcrypt.c, - gl/m4/gc-random.m4, gl/m4/gc.m4, gl/m4/gnulib-cache.m4, - gl/m4/gnulib-comp.m4, gl/m4/readline.m4, maint.mk: Update. - -2006-03-08 Simon Josefsson - - * po/LINGUAS: Add. - -2006-03-08 Simon Josefsson - - * doc/protocol/draft-funk-tls-inner-application-extension-02.txt: - Add. - -2006-03-05 Nikos Mavrogiannopoulos - - * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, - src/common.c, src/common.h: gnutls-cli can now recognize services - and port numbers with the -p option. - -2006-03-03 Simon Josefsson - - * .cvscopying: Fix. - -2006-03-03 Simon Josefsson - - * lib/Makefile.am: Gettext fixes. - -2006-03-03 Simon Josefsson - - * lib/gnutls_errors.c: Fix. - -2006-03-03 Simon Josefsson - - * lib/gnutls_errors.c, lib/gnutls_global.c: Error message - translations. - -2006-03-03 Simon Josefsson - - * .cvsignore, m4/.cvsignore, po/.cvsignore: [no log message] - -2006-03-03 Simon Josefsson - - * maint.mk: Update. - -2006-03-03 Simon Josefsson - - * maint-cfg.mk: Add indent file list. - -2006-03-03 Simon Josefsson - - * Makefile.am: Remove indent target. - -2006-03-03 Simon Josefsson - - * configure.in: Revert, autoreconf needs it. - -2006-03-03 Simon Josefsson - - * configure.in: Remove gettext version stuff. - -2006-03-03 Simon Josefsson - - * gl/Makefile.am, gl/gettext.h, gl/m4/codeset.m4, gl/m4/gettext.m4, - gl/m4/glibc2.m4, gl/m4/glibc21.m4, gl/m4/gnulib-cache.m4, - gl/m4/gnulib-comp.m4, gl/m4/iconv.m4, gl/m4/intdiv0.m4, - gl/m4/intmax.m4, gl/m4/inttypes-pri.m4, gl/m4/isc-posix.m4, - gl/m4/lcmessage.m4, gl/m4/nls.m4, gl/m4/po.m4, - gl/m4/printf-posix.m4, gl/m4/progtest.m4, gl/m4/readline.m4, - gl/m4/uintmax_t.m4, gl/m4/ulonglong.m4, maint.mk: Update. - -2006-03-03 Simon Josefsson - - * NEWS: Add. - -2006-03-03 Simon Josefsson - - * Makefile.am, configure.in, po/Makevars, po/POTFILES.in: - Gettextize. - -2006-03-01 Simon Josefsson - - * gtk-doc.make: Add. - -2006-03-01 Simon Josefsson - - * gl/m4/readline.m4, gl/m4/socklen.m4, gl/m4/sys_socket_h.m4, - gl/readline.c, maint.mk: Update. - -2006-03-01 Simon Josefsson - - * buildconf, maint-cfg.mk: Don't gtkdocize. - -2006-02-28 Simon Josefsson - - * lib/minitasn1/Makefile.am, lib/minitasn1/coding.c, - lib/minitasn1/decoding.c, lib/minitasn1/der.h, - lib/minitasn1/element.c, lib/minitasn1/errors.h, - lib/minitasn1/errors_int.h, lib/minitasn1/gstr.c, - lib/minitasn1/gstr.h, lib/minitasn1/int.h, - lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, - lib/minitasn1/structure.c, lib/minitasn1/structure.h: Update. - -2006-02-27 Simon Josefsson - - * lib/gnutls_record.c: gnutls_record_send: Doc fix, suggested by - Eric Leblond . - -2006-02-17 Simon Josefsson - - * lib/x509/sign.c: Fix warning. - -2006-02-17 Simon Josefsson - - * includes/gnutls/gnutls.h.in: Make it explicit that GNUTLS_DIG_* - has the same values as GNUTLS_MAC_*. - -2006-02-16 Simon Josefsson - - * doc/protocol/draft-santesson-tls-ume-02.txt: Add. - -2006-02-14 Simon Josefsson - - * maint-cfg.mk: Fix. - -2006-02-14 Simon Josefsson - - * maint-cfg.mk: Fix. - -2006-02-14 Simon Josefsson - - * maint-cfg.mk: Fix. - -2006-02-14 Simon Josefsson - - * maint-cfg.mk: Fix. - -2006-02-14 Simon Josefsson - - * maint-cfg.mk: Add mingw32 target. - -2006-02-14 Simon Josefsson - - * GNUmakefile, gl/Makefile.am, gl/m4/gnulib-cache.m4, - gl/m4/gnulib-comp.m4, maint-cfg.mk, maint.mk: Add - maintainer-makefile module. - -2006-02-11 Simon Josefsson - - * lib/x509/xml.c: Use external libtasn1 API. - -2006-02-11 Simon Josefsson - - * lib/minitasn1/coding.c, lib/minitasn1/decoding.c, - lib/minitasn1/der.h, lib/minitasn1/element.c, - lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, - lib/minitasn1/structure.c: Sync with libtasn1 CVS. - -2006-02-11 Simon Josefsson - - * configure.in: Bump libtasn1 version. - -2006-02-10 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2006-02-09 Simon Josefsson - - * NEWS: Fix typo. - -2006-02-09 Simon Josefsson - - * ChangeLog: [no log message] - -2006-02-09 Simon Josefsson - - * NEWS: Version 1.3.4. - -2006-02-09 Simon Josefsson - - * NEWS: Add. - -2006-02-09 Simon Josefsson - - * NEWS, THANKS: Add. - -2006-02-09 Simon Josefsson - - * lib/minitasn1/coding.c, lib/minitasn1/decoding.c, - lib/minitasn1/element.c, lib/minitasn1/errors.c, - lib/minitasn1/errors.h, lib/minitasn1/errors_int.h, - lib/minitasn1/gstr.c, lib/minitasn1/int.h, - lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, - lib/minitasn1/structure.c: Update from libtasn1. - -2006-02-09 Simon Josefsson - - * THANKS: Add. - -2006-02-09 Simon Josefsson - - * doc/protocol/draft-housley-tls-authz-extns-00.txt: Add. - -2006-02-08 Simon Josefsson - - * lib/minitasn1/decoding.c: Fix typo in last commit. - -2006-02-08 Simon Josefsson - - * tests/set_pkcs12_cred.c: Simplify using under gdb. - -2006-02-08 Simon Josefsson - - * lib/minitasn1/decoding.c: Fix for latest certder bug. - -2006-02-08 Simon Josefsson - - * tests/certder.c: Add more bug trigger. - -2006-02-08 Simon Josefsson - - * tests/certder.c: Add. - -2006-02-08 Simon Josefsson - - * lib/minitasn1/decoding.c: More asn1 length out of bounds checking. - -2006-02-08 Simon Josefsson - - * lib/minitasn1/decoding.c: Fix asn1_get_length_der usage. - -2006-02-08 Simon Josefsson - - * lib/minitasn1/coding.c: Fix asn1_get_length_der usage. - -2006-02-08 Simon Josefsson - - * lib/minitasn1/element.c: Fix copyright. - -2006-02-08 Simon Josefsson - - * lib/minitasn1/element.c, lib/minitasn1/structure.c: Fix - asn1_get_length_der usage. - -2006-02-08 Simon Josefsson - - * lib/minitasn1/decoding.c: Revert. - -2006-02-08 Simon Josefsson - - * tests/.cvsignore: [no log message] - -2006-02-08 Simon Josefsson - - * lib/minitasn1/decoding.c: Fix for cert selftest. - -2006-02-08 Simon Josefsson - - * tests/Makefile.am: Add certder test. - -2006-02-08 Simon Josefsson - - * tests/certder.c: Add. - -2006-02-08 Simon Josefsson - - * NEWS: Add. - -2006-02-08 Simon Josefsson - - * NEWS: Add. - -2006-02-08 Simon Josefsson - - * lib/minitasn1/libtasn1.h: Bump version. - -2006-02-08 Simon Josefsson - - * configure.in: Need libtasn1 0.2.18. - -2006-02-08 Simon Josefsson - - * lib/minitasn1/coding.c, lib/minitasn1/decoding.c, - lib/minitasn1/der.h, lib/minitasn1/element.c, - lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, - lib/minitasn1/structure.c: Add libtasn1 fixes from Nikos, prompted - by report from "Evgeny Legerov" . - -2006-02-06 Nikos Mavrogiannopoulos - - * lib/x509/xml.c: some fixes for the new libtasn1 - -2006-02-05 Nikos Mavrogiannopoulos - - * lib/x509/mpi.c: [no log message] - -2006-02-05 Nikos Mavrogiannopoulos - - * lib/x509/mpi.c: corrected wrong order of free. - -2006-02-02 Simon Josefsson - - * libextra/opencdk/main.h, libextra/opencdk/packet.h: Fix prototypes - for AIX compiler, reported by "Heiden, John" - . - -2006-02-01 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2006-02-01 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c: Corrected bugs in - gnutls_certificate_set_x509_crl() and - gnutls_certificate_set_x509_trust(), that caused memory corruption - if more than one certificates were added. Report and patch by Max - Kellermann . - -2006-01-29 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2006-01-29 Nikos Mavrogiannopoulos - - * lib/gnutls_record.c: added some text about premature termination - of sessions. - -2006-01-29 Nikos Mavrogiannopoulos - - * lib/gnutls_record.c: fixed bug in non-blocking gnutls_bye(). - gnutls_send will no longer invalidate session if the underlying send - fails, but it will set may_not_write to true. That is to allow - reading the already received data. Patches and bug reports by Yoann - Vandoorselaere - -2006-01-27 Simon Josefsson - - * gl/.cvsignore: [no log message] - -2006-01-27 Simon Josefsson - - * gl/inet_ntop.h, gl/m4/gnulib-tool.m4, gl/m4/socklen.m4, - gl/m4/stdbool.m4, gl/socket_.h, gl/stdbool_.h, gl/vasnprintf.c: - Update. - -2006-01-27 Simon Josefsson - - * src/common.h: Mingw32 fixes. - -2006-01-27 Simon Josefsson - - * doc/protocol/draft-salowey-tls-ticket-07.txt: Add. - -2006-01-20 Simon Josefsson - - * doc/protocol/draft-santesson-tls-ume-01.txt: Add. - -2006-01-20 Nikos Mavrogiannopoulos - - * src/tests.c, src/tests.h, src/tls_test.c: removed the RIPEMD test - since it is not supported any more. - -2006-01-20 Nikos Mavrogiannopoulos - - * doc/gnutls.texi: minor updates. - -2006-01-19 Simon Josefsson - - * gl/Makefile.am, gl/m4/gnulib-comp.m4, gl/m4/sys_socket_h.m4, - gl/md5.c, gl/md5.h, gl/sha1.c, gl/sha1.h, gl/socket_.h: Update. - -2006-01-18 Simon Josefsson - - * doc/TODO: Add. - -2006-01-18 Simon Josefsson - - * doc/protocol/draft-ietf-tls-openpgp-keys-08.txt: Add. - -2006-01-12 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2006-01-12 Simon Josefsson - - * Makefile.am: Fix igloo scp. - -2006-01-12 Simon Josefsson - - * Makefile.am: Re-add igloo. - -2006-01-12 Simon Josefsson - - * ChangeLog: [no log message] - -2006-01-12 Simon Josefsson - - * NEWS: Version 1.3.3. - -2006-01-12 Simon Josefsson - - * .cvscopying: Fix copyright years. - -2006-01-12 Simon Josefsson - - * doc/manpages/Makefile.am: Update. - -2006-01-11 Simon Josefsson - - * gl/Makefile.am, gl/dummy.c, gl/m4/gnulib-comp.m4, - gl/m4/readline.m4, gl/sha1.c, gl/stdint_.h: Update. - -2006-01-09 Simon Josefsson - - * gl/m4/gnulib-comp.m4, gl/m4/gnulib-tool.m4, gl/m4/socklen.m4, - gl/m4/stdint.m4, gl/stdint_.h: Update. - -2006-01-09 Simon Josefsson - - * doc/protocol/draft-santesson-tls-ume-00.txt: Add. - -2006-01-07 Nikos Mavrogiannopoulos - - * doc/bibliography.texi: [no log message] - -2005-12-31 Simon Josefsson - - * includes/gnutls/extra.h: C++ fix. - -2005-12-31 Simon Josefsson - - * libextra/gnutls_ia.c: Doc fix. - -2005-12-28 Simon Josefsson - - * doc/protocol/draft-ietf-tls-openpgp-keys-07.txt: Add. - -2005-12-28 Simon Josefsson - - * NEWS, includes/gnutls/x509.h, lib/gnutls_errors.c, - lib/gnutls_global.h, lib/minitasn1/coding.c, - lib/minitasn1/errors.c, lib/x509/crq.c: Constify, tiny patch from - "ZIGLIO, Frediano, VF-IT" . - -2005-12-26 Simon Josefsson - - * NEWS: Add. - -2005-12-26 Simon Josefsson - - * lib/gnutls_global.c: Doc fix. - -2005-12-26 Simon Josefsson - - * includes/gnutls/extra.h, libextra/gnutls_ia.c: Fix TLS/IA - prototypes, suggested by Jouni Malinen . - -2005-12-23 Simon Josefsson - - * NEWS: Add. - -2005-12-23 Simon Josefsson - - * lib/gnutls_global.c: Use _gnutls_init as increment/decrement - counter for init/deinit, suggested by ZIGLIO, Frediano. - -2005-12-18 Simon Josefsson - - * includes/gnutls/gnutls.h.in: Cosmetic changes. - -2005-12-18 Simon Josefsson - - * includes/gnutls/gnutls.h.in: Cosmetic changes. - -2005-12-18 Simon Josefsson - - * tests/resume.c: Fix mem leak. - -2005-12-17 Simon Josefsson - - * NEWS: Add. - -2005-12-17 Nikos Mavrogiannopoulos - - * doc/manpages/Makefile.am, includes/gnutls/gnutls.h.in, - lib/gnutls_compress_int.c, lib/gnutls_constate.c: fixed a memory - copy that caused crashes. - -2005-12-17 Simon Josefsson - - * tests/resume.c: More debug info. - -2005-12-17 Simon Josefsson - - * tests/.cvsignore: [no log message] - -2005-12-17 Simon Josefsson - - * NEWS: Add. - -2005-12-17 Simon Josefsson - - * tests/Makefile.am: Add resume self test. - -2005-12-17 Simon Josefsson - - * tests/resume.c: Add, to test resume funtions. - -2005-12-17 Simon Josefsson - - * NEWS: Fix. - -2005-12-17 Simon Josefsson - - * doc/protocol/draft-salowey-tls-ticket-06.txt: Add. - -2005-12-16 Simon Josefsson - - * doc/TODO: Add. - -2005-12-16 Simon Josefsson - - * lib/gnutls_state.c: Doc fix. - -2005-12-16 Simon Josefsson - - * NEWS, includes/gnutls/gnutls.h.in: Add. - -2005-12-16 Simon Josefsson - - * lib/gnutls_state.c: Add API to get master secret too. - -2005-12-15 Simon Josefsson - - * includes/gnutls/gnutls.h.in: Fix. - -2005-12-15 Simon Josefsson - - * includes/gnutls/gnutls.h.in: Fix indentation. - -2005-12-15 Simon Josefsson - - * NEWS: Add. - -2005-12-15 Simon Josefsson - - * Makefile.am, includes/gnutls/extra.h, - includes/gnutls/gnutls.h.in, includes/gnutls/openpgp.h, - includes/gnutls/openssl.h, includes/gnutls/pkcs12.h, - includes/gnutls/x509.h, lib/auth_anon.c, lib/auth_cert.h, - lib/auth_dh_common.c, lib/auth_dh_common.h, lib/auth_dhe.c, - lib/auth_dhe_psk.c, lib/auth_psk.c, lib/auth_rsa.c, - lib/auth_rsa_export.c, lib/auth_srp.c, lib/auth_srp_passwd.h, - lib/auth_srp_sb64.c, lib/ext_inner_application.c, - lib/ext_inner_application.h, lib/ext_max_record.c, - lib/gnutls_algorithms.c, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, - lib/gnutls_buffers.c, lib/gnutls_cert.c, lib/gnutls_db.h, - lib/gnutls_dh.c, lib/gnutls_dh.h, lib/gnutls_errors.c, - lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_int.h, - lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_pk.c, - lib/gnutls_pk.h, lib/gnutls_psk.c, lib/gnutls_record.c, - lib/gnutls_session.c, lib/gnutls_session_pack.c, - lib/gnutls_state.c, lib/gnutls_ui.c, lib/gnutls_x509.c, - lib/x509/mpi.h, lib/x509_b64.c, libextra/gnutls_ia.c, - libextra/openpgp/gnutls_openpgp.h, src/common.c, src/serv.c, - tests/dhepskself.c, tests/tlsia.c: Indent more. - -2005-12-15 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2005-12-15 Simon Josefsson - - * Makefile.am: Remove igloo, it seem weird. - -2005-12-15 Simon Josefsson - - * ChangeLog: [no log message] - -2005-12-15 Simon Josefsson - - * NEWS: Version 1.3.2. - -2005-12-15 Simon Josefsson - - * doc/manpages/Makefile.am: Update. - -2005-12-15 Simon Josefsson - - * NEWS: Add. - -2005-12-15 Simon Josefsson - - * lib/gnutls_state.c, lib/gnutls_state.h: Fix warnings. - -2005-12-15 Simon Josefsson - - * lib/gnutls_int.h: Remove debug code. - -2005-12-15 Simon Josefsson - - * THANKS: Add. - -2005-12-15 Simon Josefsson - - * NEWS, includes/gnutls/gnutls.h.in, lib/gnutls_state.c: Add - functions to access the TLS PRF and to extract client/server random - fields, suggested by Jouni Malinen . - -2005-12-15 Simon Josefsson - - * NEWS: Fix. - -2005-12-15 Simon Josefsson - - * NEWS: Fix. - -2005-12-15 Simon Josefsson - - * doc/reference/Makefile.am: Ignore more. - -2005-12-15 Simon Josefsson - - * doc/.cvsignore, libextra/.cvsignore, tests/.cvsignore: [no log - message] - -2005-12-15 Simon Josefsson - - * NEWS, doc/Makefile.am, doc/examples/ex-client-tlsia.c, - doc/gnutls.texi, doc/manpages/Makefile.am, includes/gnutls/extra.h, - includes/gnutls/gnutls.h.in, lib/Makefile.am, lib/debug.c, - lib/defines.h, lib/ext_inner_application.c, - lib/ext_inner_application.h, lib/gnutls_alert.c, - lib/gnutls_buffers.c, lib/gnutls_constate.c, lib/gnutls_errors.c, - lib/gnutls_extensions.c, lib/gnutls_int.h, lib/gnutls_kx.c, - lib/gnutls_record.c, lib/gnutls_state.c, libextra/Makefile.am, - libextra/gnutls_ia.c, tests/Makefile.am, tests/tlsia.c: Add TLS/IA - support. - -2005-12-15 Simon Josefsson - - * gl/m4/gnulib-comp.m4: Update. - -2005-12-12 Simon Josefsson - - * doc/TODO: Add. - -2005-12-10 Nikos Mavrogiannopoulos - - * lib/gnutls_ui.c: added missing set_params_function() - -2005-12-09 Simon Josefsson - - * configure.in: Bump versions. - -2005-12-09 Simon Josefsson - - * NEWS: Add. - -2005-12-09 Simon Josefsson - - * lib/auth_cert.c, lib/auth_cert.h, lib/auth_psk_passwd.c, - lib/auth_srp_passwd.c, lib/auth_srp_sb64.c, lib/defines.h, - lib/ext_cert_type.c, lib/ext_server_name.c, lib/ext_srp.c, - lib/gnutls_buffers.c, lib/gnutls_cert.c, lib/gnutls_dh.h, - lib/gnutls_dh_primes.c, lib/gnutls_int.h, lib/gnutls_pk.c, - lib/gnutls_pk.h, lib/gnutls_state.c, lib/gnutls_state.h, - lib/gnutls_ui.c, lib/gnutls_x509.c, lib/x509/common.c, - lib/x509/dn.c, lib/x509/extensions.c, lib/x509/pkcs7.c, - lib/x509/privkey_pkcs8.c, lib/x509_b64.c: Replace "uint" with - "unsigned". Remove unused "sint". - -2005-12-09 Simon Josefsson - - * lib/defines.h, lib/gnutls_handshake.c, lib/gnutls_handshake.h, - lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_num.c, - lib/gnutls_num.h, lib/gnutls_session_pack.c, lib/x509/mpi.c, - lib/x509/mpi.h, libextra/openpgp/extras.c, - libextra/openpgp/gnutls_openpgp.h, libextra/openpgp/pgp.c: Replace - uint32 with uint32_t. - -2005-12-09 Simon Josefsson - - * lib/auth_dh_common.c, lib/auth_psk.c, lib/auth_rsa_export.c, - lib/auth_srp.c, lib/defines.h, lib/ext_max_record.c, - lib/ext_max_record.h, lib/ext_server_name.c, - lib/gnutls_algorithms.c, lib/gnutls_cipher.c, - lib/gnutls_extensions.c, lib/gnutls_extensions.h, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_num.c, - lib/gnutls_num.h, lib/gnutls_record.c, lib/gnutls_v2_compat.c, - lib/x509/extensions.c, lib/x509/extensions.h, lib/x509/x509.c, - lib/x509/x509_write.c: Replace uint16 with uint16_t. - -2005-12-09 Simon Josefsson - - * configure.in: Remove unused sizeof checks. - -2005-12-09 Simon Josefsson - - * configure.in, lib/auth_cert.c, lib/auth_dh_common.c, - lib/auth_rsa_export.c, lib/auth_srp.c, lib/auth_srp_passwd.h, - lib/auth_srp_sb64.c, lib/defines.h, lib/ext_cert_type.c, - lib/ext_max_record.c, lib/ext_server_name.c, lib/ext_srp.c, - lib/gnutls_alert.c, lib/gnutls_algorithms.c, - lib/gnutls_algorithms.h, lib/gnutls_cipher.c, lib/gnutls_cipher.h, - lib/gnutls_datum.c, lib/gnutls_db.c, lib/gnutls_db.h, - lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h, - lib/gnutls_kx.c, lib/gnutls_num.c, lib/gnutls_record.c, - lib/x509/extensions.c, lib/x509/pkcs12.c, lib/x509/pkcs7.c, - lib/x509/x509.c, lib/x509_b64.c, lib/x509_b64.h, - libextra/gnutls_openpgp.c, libextra/openpgp/gnutls_openpgp.h, - libextra/openpgp/xml.c: Replace uint8 with uint8_t. - -2005-12-09 Simon Josefsson - - * gl/Makefile.am, gl/m4/gnulib-cache.m4: Update. - -2005-12-09 Simon Josefsson - - * lib/defines.h: Remove unused types, to start the transition to the - POSIX integer types (uint32_t, uint16_t, uint8_t). - -2005-12-09 Simon Josefsson - - * src/Makefile.am: Remove -I../lib, these tools should only use the - external API. - -2005-12-09 Simon Josefsson - - * lib/defines.h, lib/gnutls_str.c: ULONG_MAX should be in limits.h, - so include it at the right place. - -2005-12-08 Simon Josefsson - - * lib/x509/pkcs12.c: Fix mem leaks. Remove unused variable. - -2005-12-08 Simon Josefsson - - * lib/gnutls_x509.c: Fix mem leak. - -2005-12-08 Simon Josefsson - - * ChangeLog: [no log message] - -2005-12-08 Simon Josefsson - - * NEWS: Version 1.3.1. - -2005-12-08 Simon Josefsson - - * lib/gnutls_str.c: Fix. - -2005-12-08 Simon Josefsson - - * tests/Makefile.am: Dist pkcs8 blobs. - -2005-12-08 Simon Josefsson - - * NEWS: Add. - -2005-12-08 Simon Josefsson - - * NEWS: Add. - -2005-12-08 Simon Josefsson - - * doc/manpages/Makefile.am: Update. - -2005-12-08 Simon Josefsson - - * NEWS: Add. - -2005-12-08 Simon Josefsson - - * doc/TODO: Fix. - -2005-12-08 Simon Josefsson - - * tests/enc3pkcs8.pem: add - -2005-12-08 Simon Josefsson - - * tests/enc3pkcs8.pem: Add. - -2005-12-08 Simon Josefsson - - * tests/enc2pkcs8.pem, tests/pkcs8: Add rc2 pkcs#8 blob. - -2005-12-08 Simon Josefsson - - * tests/encpkcs8.pem, tests/unencpkcs8.pem: Fix. - -2005-12-08 Simon Josefsson - - * tests/Makefile.am, tests/pkcs8: Add PKCS#8 self test. - -2005-12-08 Simon Josefsson - - * NEWS: Add. - -2005-12-08 Simon Josefsson - - * src/certtool.c: Make --password work for PKCS#8 --key-info. - -2005-12-08 Simon Josefsson - - * tests/encpkcs8.pem, tests/unencpkcs8.pem: Add, PKSC#8 blobs. - -2005-12-08 Simon Josefsson - - * doc/TODO: Remove. - -2005-12-08 Simon Josefsson - - * NEWS: Add. - -2005-12-08 Simon Josefsson - - * lib/x509/privkey_pkcs8.c: (gnutls_x509_privkey_import_pkcs8): Handle unencrypted PEM keys. - Remove unused "encrypted" variable. - -2005-12-08 Simon Josefsson - - * NEWS, src/certtool.c: Generate unencrypted PKCS#8 keys for blank - passwords. - -2005-12-08 Simon Josefsson - - * NEWS: Fix. - -2005-12-08 Simon Josefsson - - * tests/.cvsignore: [no log message] - -2005-12-08 Simon Josefsson - - * NEWS, doc/TODO, includes/gnutls/gnutls.h.in, lib/gnutls_x509.c, - tests/Makefile.am, tests/set_pkcs12_cred.c: Support reading X.509 - credentials from PKCS#12 files. - -2005-12-08 Simon Josefsson - - * src/certtool.c: Print PKCS#12 type for each element. - -2005-12-06 Simon Josefsson - - * doc/protocol/rfc4279.txt: Add. - -2005-12-02 Nikos Mavrogiannopoulos - - * lib/gnutls_session_pack.c: Corrected bugs in session resumption. - Bugs reported by Yoann Vandoorselare. - -2005-12-02 Simon Josefsson - - * Makefile.am: Put 1.3.x releases in devel/ directory. - -2005-12-02 Simon Josefsson - - * doc/TODO: add - -2005-12-02 Simon Josefsson - - * doc/TODO: Add. - -2005-12-02 Simon Josefsson - - * doc/TODO: Fix. - -2005-12-02 Simon Josefsson - - * doc/TODO: Add. - -2005-12-02 Simon Josefsson - - * doc/TODO: Add. - -2005-12-02 Simon Josefsson - - * doc/TODO: Add. - -2005-12-02 Simon Josefsson - - * doc/TODO: Add. - -2005-12-02 Simon Josefsson - - * doc/README.CODING_STYLE: Mention indentation. - -2005-12-02 Simon Josefsson - - * doc/TODO: Add. - -2005-12-01 Simon Josefsson - - * gl/m4/socklen.m4, gl/readline.c, gl/stdint_.h: Update. - -2005-12-01 Simon Josefsson - - * src/cli.c: Don't infloop. - -2005-12-01 Simon Josefsson - - * NEWS: Add. - -2005-12-01 Simon Josefsson - - * src/cli.c: Check starttls_alarmed earlier, the signal might be - sent before select is called. Report by Otto Maddox - and influenced by tiny patch from Nozomu - Ando . - -2005-12-01 Simon Josefsson - - * tests/.cvsignore: [no log message] - -2005-11-30 Nikos Mavrogiannopoulos - - * includes/gnutls/gnutls.h.in, lib/gnutls_session.c, - lib/gnutls_session_pack.c: Some fixes in session resumption and - prototypes. Based on patches and suggestions by Joe Orton. - -2005-11-21 Simon Josefsson - - * doc/protocol/tls-numbers.txt: From - . - -2005-11-18 Nikos Mavrogiannopoulos - - * lib/x509/privkey_pkcs8.c: added some clarification about the - encryption status. - -2005-11-16 Nikos Mavrogiannopoulos - - * NEWS, src/certtool.c: Corrected a bug in certtool for 64 bit - machines. Reported by Max Kellermann . - -2005-11-16 Nikos Mavrogiannopoulos - - * src/cli-gaa.c, src/cli.gaa: [no log message] - -2005-11-16 Nikos Mavrogiannopoulos - - * lib/gnutls_datum.c, lib/gnutls_session_pack.c, src/serv.c: some - more fixes for PSK. - -2005-11-16 Nikos Mavrogiannopoulos - - * configure.in: the library version number was bumped to 13 to allow - for incompatible changes. - -2005-11-16 Nikos Mavrogiannopoulos - - * ChangeLog, lib/auth_anon.c, lib/auth_anon.h, - lib/auth_dh_common.c, lib/auth_dh_common.h, lib/auth_dhe.c, - lib/auth_dhe_psk.c, lib/auth_psk.c, lib/auth_psk.h, - lib/gnutls_kx.c, lib/gnutls_psk.c, lib/gnutls_session_pack.c, - lib/gnutls_state.c, lib/gnutls_ui.c, src/Makefile.am, - src/cli-gaa.c, src/cli.c, src/cli.gaa, src/common.c, - src/gnutls-http-serv, src/params.pem, src/serv.c: Completed the - DHE-PSK ciphersuite additions. - -2005-11-15 Nikos Mavrogiannopoulos - - * lib/gnutls_psk.c: some documentation updates - -2005-11-15 Nikos Mavrogiannopoulos - - * lib/gnutls_anon_cred.c, lib/gnutls_psk.c: - gnutls_anon_set_params_function was renamed to - gnutls_anon_set_server_params_function to be more consistent with - the other functions. The same for the PSK. - -2005-11-15 Nikos Mavrogiannopoulos - - * lib/auth_cert.h, lib/auth_rsa.c, lib/auth_rsa_export.c, - lib/gnutls_cert.c, lib/gnutls_handshake.c: get_rsa_params was - converted to behave similarly to get_dh_params. - -2005-11-15 Nikos Mavrogiannopoulos - - * doc/gnutls.texi: [no log message] - -2005-11-15 Nikos Mavrogiannopoulos - - * NEWS, includes/gnutls/gnutls.h.in, lib/Makefile.am, - lib/auth_anon.c, lib/auth_anon.h, lib/auth_cert.h, - lib/auth_dh_common.c, lib/auth_dhe.c, lib/auth_dhe_psk.c, - lib/auth_psk.c, lib/auth_psk.h, lib/auth_rsa_export.c, - lib/auth_srp.c, lib/auth_srp_sb64.c, lib/gnutls_algorithms.c, - lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_auth_int.h, - lib/gnutls_cert.c, lib/gnutls_dh.c, lib/gnutls_dh.h, - lib/gnutls_dh_primes.c, lib/gnutls_handshake.c, lib/gnutls_int.h, - lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_psk.c, - lib/gnutls_rsa_export.c, lib/gnutls_rsa_export.h, - lib/gnutls_state.c, lib/gnutls_ui.c, src/common.c, src/serv.c, - tests/Makefile.am, tests/dhepskself.c, tests/pskself.c: added - DHE-PSK ciphersuites and some cleanups. - -2005-11-15 Simon Josefsson - - * NEWS: Typo. - -2005-11-15 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2005-11-15 Simon Josefsson - - * ChangeLog: [no log message] - -2005-11-15 Simon Josefsson - - * NEWS: Version 1.3.0. - -2005-11-15 Simon Josefsson - - * src/prime.c, src/serv.c, tests/pskself.c: Indent. - -2005-11-15 Simon Josefsson - - * Makefile.am: Use sha1sum instead of md5sum for igloo.linux.gr - CHECKSUMS. - -2005-11-15 Simon Josefsson - - * ChangeLog.1: Add, generated using cvs2cl --utc --fsf --FSF - --usermap .cvsusers -I ChangeLog -I .cvs --window 120 -l - "-d""<2005-11-08""", and manually adjusting the start and end of the - file. - -2005-11-15 Simon Josefsson - - * Makefile.am: Don't use --tags for cvs2cl. - -2005-11-15 Simon Josefsson - - * lib/Makefile.am: Dist auth_psk.h. - -2005-11-15 Simon Josefsson - - * NEWS: Fix. - -2005-11-15 Simon Josefsson - - * NEWS: Add. - -2005-11-15 Simon Josefsson - - * src/certtool-gaa.c, src/cli-gaa.c, src/crypt-gaa.c, - src/psk-gaa.c, src/serv-gaa.c, src/tls_test-gaa.c: Regenerate GAA - code, to remove use of C++ // comments. - -2005-11-15 Simon Josefsson - - * doc/manpages/Makefile.am: Add license. Fix parser error. Dist - and install SRP man pages too. - -2005-11-15 Simon Josefsson - - * configure.in, doc/examples/Makefile.am, doc/manpages/Makefile.am, - src/Makefile.am, src/prime.c: Disable more SRP stuff if - --disable-srp, tiny patch from Albert Chin - and tiny patch to src/prime.c - from RedHat gnutls-1.2.6 RPM. - -2005-11-15 Simon Josefsson - - * NEWS: Use more verbose NEWS entry format. - -2005-11-15 Nikos Mavrogiannopoulos - - * tests/pskself.c: updated PSK self test - -2005-11-15 Simon Josefsson - - * src/certtool-gaa.c: Fix. - -2005-11-15 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2005-11-15 Simon Josefsson - - * tests/.cvsignore: [no log message] - -2005-11-15 Simon Josefsson - - * tests/Makefile.am: Add pskself. - -2005-11-15 Simon Josefsson - - * tests/pskself.c: Add, based on anonself.c. - -2005-11-15 Simon Josefsson - - * lib/gnutls_errors.c: Fix error messages; PSK also use the SRP - errors. - -2005-11-15 Simon Josefsson - - * lib/gnutls_psk.c: Doc fix. - -2005-11-14 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2005-11-14 Simon Josefsson - - * lib/debug.c, lib/x509/common.c, lib/x509/crl.c, lib/x509/dn.c, - lib/x509/pkcs12.c, lib/x509/pkcs7.c, libextra/openssl_compat.c, - src/serv.c: Include config.h first. Tiny patch from Albert Chin - . - -2005-11-14 Simon Josefsson - - * libextra/opencdk/opencdk.h: Don't use trailing comma in last enum - constant, for IBM C v6. Tiny patch from Albert Chin - . - -2005-11-14 Simon Josefsson - - * lib/gnutls_x509.c: Tru64 UNIX 4.0D has mmap() but doesn't define - MAP_FAILED, tiny patch from Albert Chin - - -2005-11-12 Nikos Mavrogiannopoulos - - * NEWS, doc/gnutls.texi, lib/gnutls_algorithms.c: removed the RIPEMD - ciphersuites. - -2005-11-12 Nikos Mavrogiannopoulos - - * doc/arch/extensions_st.eps, doc/arch/extensions_st.pdf, - doc/arch/mod_auth_st.eps, doc/arch/mod_auth_st.pdf, - doc/internals.texi: added brief documentation on the extension and - auth_method internals. - -2005-11-12 Simon Josefsson - - * doc/TODO: Add. - -2005-11-12 Nikos Mavrogiannopoulos - - * doc/gnutls.texi, lib/gnutls_state.c, lib/gnutls_x509.c, - src/certtool.gaa: some documentation updates. - -2005-11-10 Nikos Mavrogiannopoulos - - * doc/arch/certificate-user-use-case.eps, - doc/arch/certificate-user-use-case.pdf, - doc/arch/client-server-use-case.eps, - doc/arch/client-server-use-case.pdf, - doc/arch/handshake-sequence.eps, doc/arch/handshake-sequence.pdf, - doc/arch/handshake-state.eps, doc/arch/handshake-state.pdf, - doc/arch/objects.eps, doc/arch/objects.pdf, - doc/certificate-user-use-case.pdf, doc/client-server-use-case.pdf, - doc/handshake-sequence.pdf, doc/handshake-state.pdf, - doc/internals.texi, doc/objects.pdf: moved architecture figures to - arch/ - -2005-11-10 Nikos Mavrogiannopoulos - - * ChangeLog, Makefile.am: made ChangeLog more compact by ignoring - past changes. - -2005-11-10 Simon Josefsson - - * gl/inet_ntop.h, gl/readline.c: Update. - -2005-11-08 Nikos Mavrogiannopoulos - - * doc/gnutls.texi: [no log message] - -2005-11-08 Nikos Mavrogiannopoulos - - * lib/gnutls_int.h: [no log message] - -2005-11-08 Simon Josefsson - - * doc/signatures.texi: Add. - -2005-11-08 Nikos Mavrogiannopoulos - - * doc/Makefile.am, doc/certificate-user-use-case.pdf, - doc/client-server-use-case.pdf, doc/gnutls.texi, - doc/handshake-sequence.pdf, doc/handshake-state.pdf, - doc/internals.texi, doc/objects.pdf: added some stuff about the - internals of gnutls. - -2005-11-08 Nikos Mavrogiannopoulos - - * : added again the files in binary mode. - -2005-11-08 Nikos Mavrogiannopoulos - - * : [no log message] - -2005-11-08 Nikos Mavrogiannopoulos - - * : added some architectural diagrams. Quite primitive. - -2005-11-08 Simon Josefsson - - * doc/signatures.texi: add - -2005-11-08 Simon Josefsson - - * doc/signatures.texi: Wrap around <80 columns. - -2005-11-08 Nikos Mavrogiannopoulos - - * doc/manpages/Makefile.am, lib/gnutls_session_pack.c, src/cli.c, - src/serv.c: fixed bug in session packing for anonymous connections. - -2005-11-07 Simon Josefsson - - * src/serv.c, tests/anonself.c, tests/openpgp_test.c, - tests/openssl.c, tests/x509_test.c: Indent. - -2005-11-07 Simon Josefsson - - * Makefile.am: Indent tests/. - -2005-11-07 Simon Josefsson - - * NEWS: Add. - -2005-11-07 Simon Josefsson - - * lib/auth_anon.c, lib/auth_anon.h, lib/auth_cert.c, - lib/auth_cert.h, lib/auth_dh_common.c, lib/auth_dh_common.h, - lib/auth_dhe.c, lib/auth_psk.c, lib/auth_psk.h, - lib/auth_psk_passwd.c, lib/auth_psk_passwd.h, lib/auth_rsa.c, - lib/auth_rsa_export.c, lib/auth_srp.c, lib/auth_srp.h, - lib/auth_srp_passwd.c, lib/auth_srp_passwd.h, lib/auth_srp_rsa.c, - lib/auth_srp_sb64.c, lib/debug.c, lib/debug.h, lib/defines.h, - lib/ext_cert_type.c, lib/ext_cert_type.h, lib/ext_max_record.c, - lib/ext_max_record.h, lib/ext_server_name.c, lib/ext_server_name.h, - lib/ext_srp.c, lib/ext_srp.h, lib/gnutls_alert.c, - lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, - lib/gnutls_anon_cred.c, lib/gnutls_asn1_tab.c, lib/gnutls_auth.c, - lib/gnutls_auth.h, lib/gnutls_auth_int.h, lib/gnutls_buffers.c, - lib/gnutls_buffers.h, lib/gnutls_cert.c, lib/gnutls_cert.h, - lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_cipher_int.c, - lib/gnutls_cipher_int.h, lib/gnutls_compress.c, - lib/gnutls_compress.h, lib/gnutls_compress_int.c, - lib/gnutls_compress_int.h, lib/gnutls_constate.c, - lib/gnutls_constate.h, lib/gnutls_datum.c, lib/gnutls_datum.h, - lib/gnutls_db.c, lib/gnutls_db.h, lib/gnutls_dh.c, lib/gnutls_dh.h, - lib/gnutls_dh_primes.c, lib/gnutls_errors.c, lib/gnutls_errors.h, - lib/gnutls_extensions.c, lib/gnutls_extensions.h, - lib/gnutls_global.c, lib/gnutls_global.h, lib/gnutls_handshake.c, - lib/gnutls_handshake.h, lib/gnutls_hash_int.c, - lib/gnutls_hash_int.h, lib/gnutls_helper.c, lib/gnutls_helper.h, - lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_kx.h, - lib/gnutls_mem.c, lib/gnutls_mem.h, lib/gnutls_mpi.c, - lib/gnutls_mpi.h, lib/gnutls_num.c, lib/gnutls_num.h, - lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_priority.c, - lib/gnutls_priority.h, lib/gnutls_psk.c, lib/gnutls_record.c, - lib/gnutls_record.h, lib/gnutls_rsa_export.c, - lib/gnutls_rsa_export.h, lib/gnutls_session.c, - lib/gnutls_session_pack.c, lib/gnutls_session_pack.h, - lib/gnutls_sig.c, lib/gnutls_sig.h, lib/gnutls_srp.c, - lib/gnutls_srp.h, lib/gnutls_state.c, lib/gnutls_state.h, - lib/gnutls_str.c, lib/gnutls_str.h, lib/gnutls_ui.c, - lib/gnutls_v2_compat.c, lib/gnutls_v2_compat.h, lib/gnutls_x509.c, - lib/gnutls_x509.h, lib/io_debug.h, lib/pkix_asn1_tab.c, - lib/strfile.h, lib/x509/common.c, lib/x509/common.h, - lib/x509/compat.c, lib/x509/compat.h, lib/x509/crl.c, - lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/crq.h, - lib/x509/dn.c, lib/x509/dn.h, lib/x509/dsa.c, lib/x509/dsa.h, - lib/x509/extensions.c, lib/x509/extensions.h, lib/x509/mpi.c, - lib/x509/mpi.h, lib/x509/pkcs12.c, lib/x509/pkcs12.h, - lib/x509/pkcs12_bag.c, lib/x509/pkcs12_encr.c, lib/x509/pkcs7.c, - lib/x509/pkcs7.h, lib/x509/privkey.c, lib/x509/privkey.h, - lib/x509/privkey_pkcs8.c, lib/x509/rfc2818.h, - lib/x509/rfc2818_hostname.c, lib/x509/sign.c, lib/x509/sign.h, - lib/x509/verify.c, lib/x509/verify.h, lib/x509/x509.c, - lib/x509/x509.h, lib/x509/x509_write.c, lib/x509/xml.c, - lib/x509_b64.c, lib/x509_b64.h, libextra/gnutls_extra.c, - libextra/gnutls_extra.h, libextra/gnutls_openpgp.c, - libextra/gnutls_openssl.c, libextra/openpgp/compat.c, - libextra/openpgp/extras.c, libextra/openpgp/gnutls_openpgp.h, - libextra/openpgp/openpgp.h, libextra/openpgp/pgp.c, - libextra/openpgp/pgpverify.c, libextra/openpgp/privkey.c, - libextra/openpgp/xml.c, libextra/openssl_compat.c, - libextra/openssl_compat.h, src/certtool-cfg.c, src/certtool-cfg.h, - src/certtool.c, src/cli.c, src/common.c, src/common.h, src/crypt.c, - src/errcodes.c, src/list.h, src/prime.c, src/psk.c, src/serv.c, - src/tests.c, src/tests.h, src/tls_test.c: Use GNU coding style. - -2005-11-07 Simon Josefsson - - * Makefile.am: Use GNU coding style for indent. - -2005-11-07 Simon Josefsson - - * doc/manpages/Makefile.am: Add. - -2005-11-07 Simon Josefsson - - * doc/reference/Makefile.am: Ignore more headers. - -2005-11-07 Simon Josefsson - - * src/.cvsignore: [no log message] - -2005-11-07 Nikos Mavrogiannopoulos - - * lib/auth_psk.c, lib/auth_psk_passwd.c, lib/auth_psk_passwd.h, - lib/gnutls_psk.c, src/serv-gaa.c, src/serv-gaa.h: more psk stuff - -2005-11-07 Nikos Mavrogiannopoulos - - * NEWS, configure.in, doc/TODO, doc/gnutls.texi, - doc/manpages/Makefile.am, doc/manpages/psktool.1, - includes/gnutls/gnutls.h.in, lib/Makefile.am, lib/auth_psk.c, - lib/auth_psk.h, lib/auth_psk_passwd.c, lib/auth_psk_passwd.h, - lib/auth_srp.h, lib/auth_srp_sb64.c, lib/ext_srp.c, - lib/gnutls_algorithms.c, lib/gnutls_compress_int.c, - lib/gnutls_db.c, lib/gnutls_helper.c, lib/gnutls_helper.h, - lib/gnutls_int.h, lib/gnutls_psk.c, lib/gnutls_session.c, - lib/gnutls_session_pack.c, lib/gnutls_session_pack.h, - lib/gnutls_srp.c, lib/gnutls_str.c, lib/gnutls_str.h, - lib/libgnutls.vers, src/Makefile.am, src/cli-gaa.c, src/cli-gaa.h, - src/cli.c, src/cli.gaa, src/common.c, src/crypt.c, - src/gnutls-http-serv, src/psk-gaa.c, src/psk-gaa.h, src/psk.c, - src/psk.gaa, src/serv.c, src/serv.gaa: This is the initial commit in - the 1.3 branch. Ported from the PSK branch: * PSK ciphersuites have been added. * The session resumption data are now system independent. - -2005-11-07 Simon Josefsson - - * ChangeLog: [no log message] - -2005-11-07 Simon Josefsson - - * NEWS: Version 1.2.9. - -2005-11-06 Nikos Mavrogiannopoulos - - * src/certtool.c: corrected bug in pkcs 12 ID key setting. Found and - reported by Fran . - -2005-11-05 Nikos Mavrogiannopoulos - - * doc/gnutls.texi: fixed typos etc. - -2005-11-02 Nikos Mavrogiannopoulos - - * doc/gnutls.texi: [no log message] - -2005-11-02 Nikos Mavrogiannopoulos - - * doc/signatures.texi: supported algorithms were moved in a - different subsection. - -2005-11-02 Nikos Mavrogiannopoulos - - * README: [no log message] - -2005-11-01 Nikos Mavrogiannopoulos - - * doc/signatures.texi: [no log message] - -2005-11-01 Nikos Mavrogiannopoulos - - * doc/signatures.texi: [no log message] - -2005-11-01 Nikos Mavrogiannopoulos - - * doc/gnutls.texi, doc/signatures.texi: better output for non-tex - formats. - -2005-11-01 Simon Josefsson - - * NEWS: Fix. - -2005-11-01 Simon Josefsson - - * NEWS: Add. - -2005-11-01 Simon Josefsson - - * doc/signatures.texi: Fix. - -2005-11-01 Simon Josefsson - - * doc/signatures.texi: Add. - -2005-11-01 Simon Josefsson - - * doc/gnutls.texi: Fix. - -2005-11-01 Simon Josefsson - - * doc/signatures.texi: Add. - -2005-11-01 Simon Josefsson - - * includes/gnutls/x509.h: Remove - GNUTLS_CERTIFICATE_VERIFY_FLAGS_LAST hack, use version number - defines instead. - -2005-11-01 Simon Josefsson - - * NEWS: Add. - -2005-11-01 Simon Josefsson - - * includes/gnutls/gnutls.h.in: Add numeric version numbers, for CPP - version comparisons. - -2005-11-01 Simon Josefsson - - * configure.in: Compute numeric version numbers, for CPP version - comparisons. - -2005-11-01 Simon Josefsson - - * includes/gnutls/x509.h: Add GNUTLS_CERTIFICATE_VERIFY_FLAGS_LAST, - based on report by Daniel Stenberg . - -2005-11-01 Simon Josefsson - - * lib/gnutls_ui.c: Doc fix, suggested by Daniel Stenberg - . - -2005-11-01 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2005-11-01 Nikos Mavrogiannopoulos - - * lib/x509/pkcs12.c, lib/x509/privkey_pkcs8.c: some type fixes. - -2005-10-31 Nikos Mavrogiannopoulos - - * doc/gnutls.texi: [no log message] - -2005-10-31 Nikos Mavrogiannopoulos - - * doc/Makefile.am, doc/bibliography.texi, doc/gnutls.texi, - doc/signatures.texi: added some text about digital signatures. - -2005-10-30 Nikos Mavrogiannopoulos - - * src/x509/clicert-dsa.pem, src/x509/clicert.pem: appended the - intermediate CA certificates to client certificates. - -2005-10-30 Nikos Mavrogiannopoulos - - * src/serv-gaa.c, src/serv-gaa.h, src/serv.c, src/serv.gaa: added - the --require-cert option to gnutls-serv - -2005-10-30 Nikos Mavrogiannopoulos - - * lib/gnutls_alert.c, lib/gnutls_kx.c: Some fixes in the certificate - handling. - -2005-10-29 Nikos Mavrogiannopoulos - - * doc/bibliography.texi: [no log message] - -2005-10-28 Nikos Mavrogiannopoulos - - * doc/bibliography.texi, doc/gnutls.texi: [no log message] - -2005-10-28 Nikos Mavrogiannopoulos - - * doc/bibliography.texi, doc/gnutls.texi: the bibliography stuff is - a bit sorted... I hate that texinfo stuff. - -2005-10-28 Simon Josefsson - - * gl/inet_ntop.c: Update. - -2005-10-28 Simon Josefsson - - * gl/inet_ntop.h: Update. - -2005-10-28 Simon Josefsson - - * gl/gc-gnulib.c, gl/gc-libgcrypt.c, gl/md2.c, gl/md2.h: Update. - -2005-10-28 Simon Josefsson - - * libextra/openpgp/pgpverify.c: Doc fix. - -2005-10-28 Simon Josefsson - - * doc/gnutls.texi: Add. - -2005-10-28 Simon Josefsson - - * doc/scripts/gdoc: Revert. - -2005-10-28 Simon Josefsson - - * libextra/Makefile.am: Fix warnings. - -2005-10-28 Simon Josefsson - - * libextra/Makefile.am: Don't include openpgp stuff in api manual. - -2005-10-28 Simon Josefsson - - * doc/scripts/gdoc: Remove @anchor, texinfo @deftypefun create them - implicitly. - -2005-10-28 Simon Josefsson - - * lib/Makefile.am: Fix. - -2005-10-28 Simon Josefsson - - * lib/Makefile.am: Fix depends. - -2005-10-28 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2005-10-28 Nikos Mavrogiannopoulos - - * doc/gnutls.texi, doc/scripts/gdoc: some changes to allow cross - referencing of functions. - -2005-10-28 Nikos Mavrogiannopoulos - - * gl/arctwo.c: [no log message] - -2005-10-28 Simon Josefsson - - * NEWS: Fix. - -2005-10-28 Simon Josefsson - - * NEWS: Fix. - -2005-10-28 Simon Josefsson - - * NEWS: Fix. - -2005-10-28 Simon Josefsson - - * NEWS, doc/TODO: Add. - -2005-10-28 Simon Josefsson - - * NEWS: Fix. - -2005-10-28 Simon Josefsson - - * NEWS: Fix. - -2005-10-28 Simon Josefsson - - * gl/gc-libgcrypt.c, gl/m4/md2.m4: Update. - -2005-10-28 Simon Josefsson - - * gl/gc-libgcrypt.c: Support MD2. - -2005-10-28 Nikos Mavrogiannopoulos - - * doc/gnutls.texi: some more updates. - -2005-10-28 Nikos Mavrogiannopoulos - - * doc/gnutls.texi: added text about gnutls_certificate_verify_flags. - -2005-10-28 Nikos Mavrogiannopoulos - - * doc/gnutls.texi: [no log message] - -2005-10-28 Simon Josefsson - - * gl/gc-gnulib.c, gl/gc-libgcrypt.c, gl/gc.h: Update. - -2005-10-28 Nikos Mavrogiannopoulos - - * doc/bibliography.texi, doc/gnutls.texi, doc/my-bib-macros.texi: - some more changes for better pdf output - -2005-10-28 Nikos Mavrogiannopoulos - - * doc/Makefile.am, doc/bibliography.texi, doc/gnutls.texi, - doc/my-bib-macros.texi: added bibliography\! - -2005-10-27 Nikos Mavrogiannopoulos - - * : [no log message] - -2005-10-27 Nikos Mavrogiannopoulos - - * : pdf files generated with png2pdf. The output is a bit better - than eps2pdf. - -2005-10-27 Nikos Mavrogiannopoulos - - * doc/gnutls.texi, src/errcodes.c: some updates and improvments in - the pdf output. - -2005-10-27 Nikos Mavrogiannopoulos - - * lib/x509/verify.c: [no log message] - -2005-10-27 Nikos Mavrogiannopoulos - - * lib/x509/verify.c: The check for insecure algorithms is only - performed on non-self signed certificates. - -2005-10-27 Simon Josefsson - - * gl/gc-gnulib.c: Update. - -2005-10-27 Simon Josefsson - - * NEWS: Add. - -2005-10-27 Simon Josefsson - - * lib/x509/verify.c: Don't accept MD2/MD5 hashes when verifying - X.509 certificate signatures. - -2005-10-27 Simon Josefsson - - * src/certtool.c: Print whether verification failed due to an - insecure algorithm. - -2005-10-27 Simon Josefsson - - * NEWS: Add. - -2005-10-27 Simon Josefsson - - * includes/gnutls/gnutls.h.in: Add GNUTLS_CERT_INSECURE_ALGORITHM. - -2005-10-27 Simon Josefsson - - * lib/x509/pkcs7.h, lib/x509/privkey.h, lib/x509/verify.h, - lib/x509/x509.h: Get public prototypes from gnutls/x509.h instead. - -2005-10-27 Simon Josefsson - - * lib/x509/crq.c: Fix prototype. - -2005-10-27 Simon Josefsson - - * lib/x509/crq.h: Get exported function prototypes from - gnutls/x509.h instead. - -2005-10-27 Simon Josefsson - - * includes/gnutls/x509.h: Fix. - -2005-10-27 Simon Josefsson - - * lib/x509/x509.h: Add. - -2005-10-27 Simon Josefsson - - * lib/gnutls_hash_int.c: Add MD2. - -2005-10-27 Simon Josefsson - - * gl/gc-gnulib.c: Fix link errors. - -2005-10-27 Simon Josefsson - - * : Remove. - -2005-10-27 Simon Josefsson - - * includes/gnutls/x509.h: Add MD2/MD5 verify flags. - -2005-10-27 Simon Josefsson - - * gl/Makefile.am, gl/gc-gnulib.c, gl/gc-libgcrypt.c, gl/gc.h, - gl/m4/gc-md2.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, - gl/m4/md2.m4, gl/md2.c, gl/md2.h: Add MD2. - -2005-10-27 Simon Josefsson - - * includes/gnutls/gnutls.h.in, lib/gnutls_algorithms.c: Add MD2. - -2005-10-24 Simon Josefsson - - * gl/gc-gnulib.c, gl/inet_ntop.c, gl/inet_ntop.h, - gl/m4/inet_ntop.m4, gl/md4.h, gl/md5.c, gl/md5.h: Update. - -2005-10-24 Simon Josefsson - - * doc/protocol/draft-hajjeh-tls-sign-01.txt: Add. - -2005-10-23 Simon Josefsson - - * NEWS: Add. - -2005-10-23 Simon Josefsson - - * lib/gnutls_record.c: Fix zero size send. - -2005-10-22 Simon Josefsson - - * gl/arcfour.c, gl/arcfour.h, gl/arctwo.h, gl/m4/gc.m4, - gl/m4/gnulib-comp.m4, gl/md4.c, gl/md4.h: Update. - -2005-10-21 Simon Josefsson - - * NEWS: Fix. - -2005-10-21 Simon Josefsson - - * gl/gc-gnulib.c: Update. - -2005-10-21 Simon Josefsson - - * gl/Makefile.am, gl/hmac-md5.c, gl/hmac-sha1.c, gl/m4/gc.m4, - gl/m4/gnulib-comp.m4, gl/md4.c, gl/rijndael-alg-fst.h: Update. - -2005-10-21 Simon Josefsson - - * gl/gc-gnulib.c: Update. - -2005-10-21 Simon Josefsson - - * gl/Makefile.am, gl/des.c, gl/des.h, gl/gc-gnulib.c, gl/m4/des.m4, - gl/m4/gc-des.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4: - Update. - -2005-10-21 Simon Josefsson - - * gl/Makefile.am, gl/arctwo.c, gl/arctwo.h, gl/gc-gnulib.c, - gl/gc-libgcrypt.c, gl/m4/arctwo.m4, gl/m4/gc-arctwo.m4, - gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4: Update. - -2005-10-21 Simon Josefsson - - * NEWS: Add. - -2005-10-21 Simon Josefsson - - * doc/protocol/draft-salowey-tls-ticket-05.txt: Add. - -2005-10-20 Simon Josefsson - - * tests/anonself.c: Fix bug. - -2005-10-20 Simon Josefsson - - * doc/protocol/draft-modadugu-tls-ctr-00.txt: Add. - -2005-10-19 Simon Josefsson - - * gl/Makefile.am, gl/arcfour.c, gl/arcfour.h, gl/gc-gnulib.c, - gl/m4/arcfour.m4, gl/m4/gc-arcfour.m4, gl/m4/gc-hmac-md5.m4, - gl/m4/gc-hmac-sha1.m4, gl/m4/gc-md4.m4, gl/m4/gc-md5.m4, - gl/m4/gc-rijndael.m4, gl/m4/gc-sha1.m4, gl/m4/gnulib-cache.m4, - gl/m4/gnulib-comp.m4: Update. - -2005-10-19 Simon Josefsson - - * gl/gc-gnulib.c: Cleanup. - -2005-10-19 Simon Josefsson - - * gl/gc.h: Add ecb. - -2005-10-19 Simon Josefsson - - * gl/rijndael-api-fst.c: Fix CBC IV bugs. - -2005-10-19 Simon Josefsson - - * gl/Makefile.am, gl/gc-gnulib.c, gl/hmac-md5.c, gl/hmac-sha1.c, - gl/m4/gc-rijndael.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, - gl/m4/rijndael.m4, gl/rijndael-alg-fst.c, gl/rijndael-alg-fst.h, - gl/rijndael-api-fst.c, gl/rijndael-api-fst.h: Update. - -2005-10-19 Simon Josefsson - - * configure.in: Reverse logic. - -2005-10-19 Simon Josefsson - - * README: Update --with-builtin-crypto documentation. - -2005-10-19 Simon Josefsson - - * configure.in: Add --with-builtin-crypto to enable gnulib - functions. - -2005-10-18 Simon Josefsson - - * lib/gnutls_global.c: Initialize gcrypt here, for now, to make sure - it is done even if gnulib's GC uses the non-libgcrypt functions. - -2005-10-18 Simon Josefsson - - * configure.in: Remove unused USE_GCRYPT. - -2005-10-18 Simon Josefsson - - * gl/Makefile.am, gl/gc-gnulib.c, gl/gc-libgcrypt.c, gl/gc.h, - gl/m4/gc-md4.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, - gl/m4/md4.m4, gl/md4.c, gl/md4.h: Add gc-md4. - -2005-10-18 Simon Josefsson - - * gl/m4/stdbool.m4: Update. - -2005-10-17 Simon Josefsson - - * tests/.cvsignore: [no log message] - -2005-10-17 Simon Josefsson - - * gl/Makefile.am, gl/gc-libgcrypt.c, gl/m4/gc-sha1.m4, - gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4: Update. - -2005-10-17 Simon Josefsson - - * tests/Makefile.am, tests/gc.c: Add self tests of gc. - -2005-10-17 Simon Josefsson - - * gl/Makefile.am, gl/hmac-md5.c, gl/m4/gc-hmac-md5.m4, - gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/hmac-md5.m4, - gl/m4/md5.m4, gl/md5.c, gl/md5.h: Update. - -2005-10-17 Simon Josefsson - - * gl/gc.h, lib/gnutls_cipher_int.h, lib/gnutls_hash_int.h, - lib/x509/pkcs12_encr.c, lib/x509/privkey_pkcs8.c, - libextra/Makefile.am: Fixes to make GC work again. - -2005-10-17 Simon Josefsson - - * lib/Makefile.am, lib/x509/Makefile.am, libextra/Makefile.am, - src/Makefile.am: Don't link to gc directly. - -2005-10-17 Simon Josefsson - - * crypto/.cvsignore, crypto/Makefile.am, crypto/gc-libgcrypt.c, - crypto/gc-nettle.c, crypto/gc.h, crypto/pkcs5.c, crypto/test-gc.c, - crypto/utils.c, crypto/utils.h, nettle/.cvsignore, - nettle/Makefile.am, nettle/aes-decrypt-table.c, - nettle/aes-decrypt.c, nettle/aes-encrypt-table.c, - nettle/aes-encrypt.c, nettle/aes-internal.h, nettle/aes-meta.c, - nettle/aes-set-decrypt-key.c, nettle/aes-set-encrypt-key.c, - nettle/aes.c, nettle/aes.h, nettle/arcfour-crypt.c, - nettle/arcfour-meta.c, nettle/arcfour.c, nettle/arcfour.h, - nettle/arctwo-meta.c, nettle/arctwo.c, nettle/arctwo.h, - nettle/cbc.c, nettle/cbc.h, nettle/des-compat.c, - nettle/des-compat.h, nettle/des.c, nettle/des.h, nettle/des3.c, - nettle/desCode.h, nettle/descore.README, nettle/desinfo.h, - nettle/hmac-md5.c, nettle/hmac-sha1.c, nettle/hmac.c, - nettle/hmac.h, nettle/keymap.h, nettle/knuth-lfib.c, - nettle/knuth-lfib.h, nettle/macros.h, nettle/md2-meta.c, - nettle/md2.c, nettle/md2.h, nettle/md5-meta.c, nettle/md5.c, - nettle/md5.h, nettle/memxor.c, nettle/memxor.h, - nettle/nettle-internal.c, nettle/nettle-internal.h, - nettle/nettle-meta.h, nettle/parity.h, nettle/rotors.h, - nettle/sha.h, nettle/sha1-compress.c, nettle/sha1-meta.c, - nettle/sha1.c, nettle/tests/.cvsignore, nettle/tests/Makefile.am, - nettle/tests/aes-test.c, nettle/tests/arcfour-test.c, - nettle/tests/arctwo-test.c, nettle/tests/cbc-test.c, - nettle/tests/des-compat-test.c, nettle/tests/des-test.c, - nettle/tests/des3-test.c, nettle/tests/hmac-test.c, - nettle/tests/knuth-lfib-test.c, nettle/tests/md2-test.c, - nettle/tests/md4-test.c, nettle/tests/md5-test.c, - nettle/tests/run-tests, nettle/tests/sha1-test.c, - nettle/tests/testutils.c, nettle/tests/testutils.h: Remove - nettle+crypto. - -2005-10-17 Simon Josefsson - - * Makefile.am, configure.in: Replace nettle+crypto with gnulib. - -2005-10-17 Simon Josefsson - - * gl/Makefile.am, gl/gc-libgcrypt.c, gl/gc-pbkdf2-sha1.c, gl/gc.h, - gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/stdbool.m4: - UPdate. - -2005-10-14 Nikos Mavrogiannopoulos - - * src/cli.c: added some more verbose messages to the client to - report whether it sent any certificates or not. - -2005-10-12 Simon Josefsson - - * lib/ext_server_name.h: Remove unused prototypes. - -2005-10-12 Simon Josefsson - - * gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4: Don't - use gc just yet. - -2005-10-12 Simon Josefsson - - * gl/m4/gc-md5.m4: Add. - -2005-10-12 Simon Josefsson - - * gl/Makefile.am, gl/gc-gnulib.c, gl/gc-libgcrypt.c, - gl/gc-pbkdf2-sha1.c, gl/gc.h, gl/hmac-sha1.c, gl/hmac.h, - gl/m4/gc-hmac-sha1.m4, gl/m4/gc-pbkdf2-sha1.m4, gl/m4/gc.m4, - gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/hmac-sha1.m4, - gl/m4/inttypes.m4, gl/m4/memxor.m4, gl/m4/restrict.m4, - gl/m4/sha1.m4, gl/m4/stdint.m4, gl/memxor.c, gl/memxor.h, - gl/sha1.c, gl/sha1.h, gl/stdint_.h: Update. - -2005-10-12 Simon Josefsson - - * doc/protocol/draft-badra-hajjeh-mtls-00.txt: Add. - -2005-10-11 Simon Josefsson - - * doc/protocol/draft-ietf-tls-srp-10.txt: Add. - -2005-10-07 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2005-10-07 Simon Josefsson - - * NEWS: Add. - -2005-10-07 Simon Josefsson - - * ChangeLog: [no log message] - -2005-10-07 Simon Josefsson - - * NEWS: Version 1.2.8. - -2005-10-07 Simon Josefsson - - * src/crypt.c: Don't use error. - -2005-10-07 Simon Josefsson - - * NEWS: Add. - -2005-10-07 Simon Josefsson - - * NEWS: Add. - -2005-10-07 Simon Josefsson - - * doc/manpages/Makefile.am: Update. - -2005-10-07 Simon Josefsson - - * gl/getdelim.c, gl/m4/gnulib-comp.m4, gl/m4/stdbool.m4: Update. - -2005-10-06 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2005-10-05 Nikos Mavrogiannopoulos - - * configure.in: depends on libgcrypt 1.2.2 - -2005-10-02 Nikos Mavrogiannopoulos - - * src/cli.c: handle better EOF from stdin. - -2005-10-01 Simon Josefsson - - * NEWS, THANKS: Add. - -2005-10-01 Simon Josefsson - - * doc/examples/Makefile.am: Don't install libexamples.la. - -2005-09-27 Nikos Mavrogiannopoulos - - * NEWS, doc/manpages/Makefile.am, lib/auth_dh_common.c, - lib/auth_rsa_export.c, lib/auth_srp.c, lib/gnutls_dh_primes.c, - lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_pk.c, - lib/gnutls_srp.c, lib/x509/pkcs12.c, lib/x509/pkcs12_encr.c, - lib/x509/privkey.c, lib/x509/privkey_pkcs8.c: Made the PKCS #12 API - handle null passwords. Based on patch by Anton Altaparmakov - . - -2005-09-27 Simon Josefsson - - * doc/protocol/rfc4158.txt: Add. - -2005-09-24 Simon Josefsson - - * configure.in, src/common.c, src/common.h: Use gnulib for - inet_ntop. - -2005-09-24 Simon Josefsson - - * gl/Makefile.am, gl/inet_ntop.c, gl/inet_ntop.h, - gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/inet_ntop.m4, - gl/m4/sockpfaf.m4: Add inet_ntop. - -2005-09-23 Simon Josefsson - - * NEWS: Fix. - -2005-09-23 Simon Josefsson - - * NEWS: Fix. - -2005-09-23 Simon Josefsson - - * doc/gnutls.texi: Add --insecure. - -2005-09-23 Simon Josefsson - - * NEWS: Add. - -2005-09-23 Simon Josefsson - - * src/cli-gaa.c, src/cli-gaa.h: Generated. - -2005-09-23 Simon Josefsson - - * src/cli.c, src/cli.gaa: Add --insecure. Make the default be to - abort connections if the peer doesn't verify, when a ca certificate - or PGP trust database has been supplied. - -2005-09-23 Simon Josefsson - - * src/common.c: Fix warnings. - -2005-09-22 Simon Josefsson - - * doc/examples/ex-cert-select.c, doc/examples/ex-serv-anon.c, - doc/examples/ex-serv-export.c, doc/examples/ex-serv-pgp.c, - doc/examples/ex-serv-srp.c, doc/examples/ex-serv1.c: Don't use mmap. - Use memset instead of bzero. - -2005-09-21 Simon Josefsson - - * NEWS: Add. - -2005-09-21 Simon Josefsson - - * NEWS: Add. - -2005-09-21 Simon Josefsson - - * lib/gnutls_global.c: Revert stupid program_name workaround, patch - from Martin Lambers . - -2005-09-21 Simon Josefsson - - * gl/Makefile.am, gl/error.c, gl/error.h, gl/getdelim.c, - gl/getline.c, gl/getpass.c, gl/m4/error.m4, gl/m4/gnulib-cache.m4, - gl/m4/gnulib-comp.m4, gl/m4/strerror_r.m4, gl/memmove.c, - gl/readline.c: Remove error module. Update gnulib files. - -2005-09-21 Simon Josefsson - - * src/certtool-cfg.c, src/certtool.c: Don't use error module until - program_name problem is solved. - -2005-09-19 Simon Josefsson - - * configure.in: Use gnulib for socklen test. - -2005-09-19 Simon Josefsson - - * gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, - gl/m4/socklen.m4: Update. - -2005-09-19 Simon Josefsson - - * NEWS: Add. - -2005-09-19 Simon Josefsson - - * src/cli.c: Don't use mmap, patch from Martin Lambers - . - -2005-09-19 Simon Josefsson - - * doc/protocol/draft-ietf-tls-ecc-11.txt: Add. - -2005-09-14 Simon Josefsson - - * doc/protocol/draft-funk-tls-inner-application-extension-00.txt, - doc/protocol/draft-funk-tls-inner-application-extension-01.txt: Add. - -2005-09-12 Simon Josefsson - - * doc/README.CVS: gtk-doc in debian should work fine now - -2005-09-12 Simon Josefsson - - * doc/reference/tmpl/.cvsignore: [no log message] - -2005-09-12 Simon Josefsson - - * doc/reference/tmpl/gnutls-unused.sgml: Add (to workaround gtk-doc - makefile bug.) - -2005-09-10 Simon Josefsson - - * doc/protocol/draft-chudov-cryptopro-cptls-02.txt: Add. - -2005-09-09 Simon Josefsson - - * THANKS: Add. - -2005-09-09 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2005-09-09 Simon Josefsson - - * ChangeLog: [no log message] - -2005-09-09 Simon Josefsson - - * NEWS: Version 1.2.7. - -2005-09-09 Simon Josefsson - - * doc/protocol/draft-salowey-tls-ticket-04.txt: Add. - -2005-09-08 Simon Josefsson - - * NEWS: Add. - -2005-09-08 Simon Josefsson - - * NEWS: Fix. - -2005-09-08 Simon Josefsson - - * NEWS: Add. - -2005-09-08 Simon Josefsson - - * NEWS: Add. - -2005-09-06 Simon Josefsson - - * gl/Makefile.am, gl/getpass.c: Update. - -2005-09-03 Simon Josefsson - - * gl/m4/gnulib-tool.m4, gl/m4/lib-ld.m4, gl/m4/lib-prefix.m4: Add. - -2005-09-03 Simon Josefsson - - * gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib.m4: Update. - -2005-09-02 Simon Josefsson - - * configure.in, gl/Makefile.am, gl/getdelim.c, - gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/lib-link.m4: - Update gnulib. - -2005-09-02 Simon Josefsson - - * doc/protocol/rfc4162.txt: Add. - -2005-08-31 Simon Josefsson - - * AUTHORS: Update my PGP key. - -2005-08-31 Simon Josefsson - - * lib/minitasn1/libtasn1.h: Update. - -2005-08-31 Simon Josefsson - - * libextra/Makefile.am: Dist libgnutls-extra.vers. - -2005-08-31 Simon Josefsson - - * lib/Makefile.am: Dist libgnutls.vers. - -2005-08-31 Simon Josefsson - - * lib/Makefile.am: Fix typo. - -2005-08-31 Simon Josefsson - - * libextra/libgnutls-extra.vers: Add version script. - -2005-08-31 Simon Josefsson - - * NEWS, lib/libgnutls.vers: Add. - -2005-08-31 Simon Josefsson - - * lib/Makefile.am, libextra/Makefile.am: Use version script. - -2005-08-31 Simon Josefsson - - * configure.in: Add --enable-ld-version-script. - -2005-08-30 Simon Josefsson - - * configure.in: Fix typo. - -2005-08-30 Simon Josefsson - - * lib/Makefile.am: Link with libz. - -2005-08-30 Simon Josefsson - - * gl/Makefile.am, gl/isascii.c, gl/isascii.h, gl/m4/gnulib.m4, - gl/m4/isascii.m4: Update. - -2005-08-30 Simon Josefsson - - * lib/gnutls_global.c: Add program_name, to shut up error module. - -2005-08-30 Simon Josefsson - - * configure.in: Remove isascii gnulib module. - -2005-08-30 Simon Josefsson - - * lib/defines.h: Let's pretend all system has isascii until we find - one that actually hasn't. - -2005-08-30 Simon Josefsson - - * doc/examples/ex-verify.c: Don't use C99 features. - -2005-08-30 Simon Josefsson - - * configure.in: Disable zlib code if we don't find zlib.h too. - -2005-08-30 Simon Josefsson - - * lib/Makefile.am: Remove gnutls_random.h. - -2005-08-30 Simon Josefsson - - * gl/getpass.c, gl/m4/gnulib.m4: Update. - -2005-08-30 Simon Josefsson - - * lib/auth_cert.c, lib/auth_rsa.c, lib/auth_rsa_export.c, - lib/auth_srp_passwd.c, lib/gnutls_cipher.c, lib/gnutls_handshake.c, - lib/gnutls_pk.c, lib/gnutls_v2_compat.c, lib/gnutls_x509.c, - lib/x509/pkcs12.c, lib/x509/privkey_pkcs8.c: Don't include - gnutls_random.h. - -2005-08-30 Simon Josefsson - - * lib/Makefile.am, lib/gnutls_random.c, lib/gnutls_random.h: (_gnutls_get_random): Removed, not used any more. - -2005-08-30 Simon Josefsson - - * lib/auth_rsa.c: Call gc directly instead of _gnutls_get_random. - -2005-08-30 Simon Josefsson - - * src/crypt.c: Prototype error(). - -2005-08-30 Simon Josefsson - - * lib/x509/pkcs12.c, lib/x509/privkey_pkcs8.c: Call gc directly - instead of _gnutls_get_random. - -2005-08-30 Simon Josefsson - - * lib/gnutls_pk.c: Fix last commit. - -2005-08-30 Simon Josefsson - - * lib/auth_srp_passwd.c, lib/gnutls_cipher.c, - lib/gnutls_handshake.c, lib/gnutls_pk.c: Call gc directly instead of - _gnutls_get_random. - -2005-08-30 Simon Josefsson - - * src/Makefile.am: Add libgc.la for crypt.c. - -2005-08-30 Simon Josefsson - - * src/crypt.c: Avoid gcrypt. - -2005-08-30 Simon Josefsson - - * src/Makefile.am: Fix typo. - -2005-08-30 Simon Josefsson - - * src/Makefile.am: Add -I for ../crypto. Remove unneeded OpenCDK - CFLAGS. - -2005-08-25 Simon Josefsson - - * doc/manpages/Makefile.am: Update. - -2005-08-25 Simon Josefsson - - * gl/Makefile.am, gl/getpass.c, gl/m4/gnulib.m4, gl/m4/minmax.m4: - Update. - -2005-08-25 Simon Josefsson - - * NEWS: Fix. - -2005-08-24 Simon Josefsson - - * gl/getpass.c: Update. - -2005-08-24 Simon Josefsson - - * gl/Makefile.am, gl/getpass.c, gl/m4/getpass.m4, gl/m4/gnulib.m4: - Update. - -2005-08-24 Simon Josefsson - - * configure.in: Only use getpass, not getpass-gnu (the later is - always built on glibc platforms). - -2005-08-24 Simon Josefsson - - * src/common.c: Fix copyright. Fix rc/status checking in last - commit. - -2005-08-24 Simon Josefsson - - * src/common.c: Use gnutls_certificate_verify_peers2, suggested by - Daniel Stenberg . - -2005-08-24 Simon Josefsson - - * lib/gnutls_cert.c, lib/gnutls_x509.c: Doc fix. - -2005-08-24 Simon Josefsson - - * lib/gnutls_cert.c: (gnutls_certificate_verify_peers2): Doc fix, suggested by Daniel - Stenberg . - -2005-08-24 Simon Josefsson - - * includes/gnutls/x509.h: Indent. - -2005-08-24 Simon Josefsson - - * includes/gnutls/x509.h: (gnutls_certificate_verify_flags): Doc fix. - -2005-08-23 Simon Josefsson - - * NEWS: Add. - -2005-08-23 Simon Josefsson - - * NEWS: Add. - -2005-08-23 Simon Josefsson - - * doc/examples/Makefile.am: Fix objdir!=srcdir builds once again. - -2005-08-23 Simon Josefsson - - * doc/examples/Makefile.am: Add -I for objdir!=srcdir builds. - -2005-08-23 Simon Josefsson - - * lib/minitasn1/Makefile.am: Add -I for gl. - -2005-08-23 Simon Josefsson - - * src/common.h: Don't re-map socklen_t (done by configure now), - suggested by Martin Lambers . - -2005-08-23 Simon Josefsson - - * configure.in: Define socklen_t to int, not size_t, if it is - missing, suggested by Martin Lambers . - -2005-08-23 Simon Josefsson - - * gl/getpass.c, gl/m4/getpass.m4: Update. - -2005-08-23 Simon Josefsson - - * libextra/openpgp/openpgp.h: Protect config.h #include. - -2005-08-20 Nikos Mavrogiannopoulos - - * doc/internals.eps, doc/layers.eps, doc/pgp1.eps: updated figures - -2005-08-15 Simon Josefsson - - * src/certtool-cfg.c: (read_int): Use readline. Use strtol, and catch out of range - inputs. Suggested by Fran. - -2005-08-15 Simon Josefsson - - * configure.in: Add readline. - -2005-08-15 Simon Josefsson - - * src/Makefile.am: Possibly link with readline. - -2005-08-15 Simon Josefsson - - * gl/Makefile.am, gl/m4/gnulib.m4, gl/m4/lib-link.m4, - gl/m4/readline.m4, gl/readline.c, gl/readline.h: Update. - -2005-08-12 Simon Josefsson - - * lib/minitasn1/errors.c, lib/minitasn1/errors.h, - lib/minitasn1/libtasn1.h: Update to 0.2.15. - -2005-08-12 Simon Josefsson - - * gl/m4/isascii.m4: Update. - -2005-08-12 Simon Josefsson - - * configure.in, gl/Makefile.am, gl/isascii.c, gl/isascii.h, - gl/m4/gnulib.m4, gl/m4/isascii.m4, lib/defines.h: Use isascii from - gnulib. - -2005-08-12 Simon Josefsson - - * lib/defines.h: Protect config.h include. Assume C89 platform. - -2005-08-12 Simon Josefsson - - * configure.in, gl/Makefile.am, gl/m4/gnulib.m4, gl/m4/memmove.m4, - gl/memmove.c, lib/defines.h: Cleanup memmove. - -2005-08-12 Simon Josefsson - - * doc/examples/tcp.c: Add, from ex-client2.c. - -2005-08-12 Simon Josefsson - - * doc/examples/ex-client2.c: Use external tcp_*. - -2005-08-12 Simon Josefsson - - * src/certtool.c: Don't call progname stuff. - -2005-08-12 Simon Josefsson - - * NEWS: Add. - -2005-08-12 Simon Josefsson - - * lib/memmem.c, lib/memmem.h: Remove. - -2005-08-12 Simon Josefsson - - * lib/Makefile.am: Link with gnulib for memmem. - -2005-08-12 Simon Josefsson - - * gl/Makefile.am, gl/alloca_.h, gl/asnprintf.c, gl/error.c, - gl/error.h, gl/getdelim.c, gl/getdelim.h, gl/getline.c, - gl/getline.h, gl/getpass.c, gl/getpass.h, gl/m4/gnulib.m4, - gl/m4/memmem.m4, gl/memmem.c, gl/memmem.h, gl/minmax.h, - gl/printf-args.c, gl/printf-args.h, gl/printf-parse.c, - gl/printf-parse.h, gl/progname.c, gl/progname.h, gl/size_max.h, - gl/snprintf.c, gl/snprintf.h, gl/stdbool_.h, gl/vasnprintf.c, - gl/vasnprintf.h, gl/xsize.h: Update. - -2005-08-12 Simon Josefsson - - * src/certtool.c: Replace GPL progname.h with simple workaround. - -2005-08-12 Simon Josefsson - - * configure.in: Avoid progname module (only GPL one left). Add - memmem gnulib module. Force gnulib files to be LGPL. - -2005-08-12 Simon Josefsson - - * gl/Makefile.am, gl/getdelim.c, gl/getdelim.h, gl/getline.c, - gl/getline.h, gl/getndelim2.c, gl/getndelim2.h, gl/m4/getdelim.m4, - gl/m4/getline.m4, gl/m4/getndelim2.m4, gl/m4/gnulib.m4, - gl/m4/onceonly_2_57.m4, gl/m4/ssize_t.m4: Update. - -2005-08-10 Simon Josefsson - - * doc/examples/ex-alert.c, doc/examples/ex-cert-select.c, - doc/examples/ex-client-resume.c, doc/examples/ex-client-srp.c, - doc/examples/ex-client1.c, doc/examples/ex-client2.c, - doc/examples/ex-crq.c, doc/examples/ex-pkcs12.c, - doc/examples/ex-rfc2818.c, doc/examples/ex-serv-anon.c, - doc/examples/ex-serv-export.c, doc/examples/ex-serv-pgp.c, - doc/examples/ex-serv-srp.c, doc/examples/ex-serv1.c, - doc/examples/ex-session-info.c, doc/examples/ex-verify.c, - doc/examples/ex-x509-info.c: Indent. - -2005-08-10 Simon Josefsson - - * NEWS, configure.in, doc/Makefile.am, doc/examples/.cvsignore, - doc/examples/Makefile.am, doc/examples/ex-cert-select.c, - doc/examples/ex-client-resume.c, doc/examples/ex-client-srp.c, - doc/examples/ex-client1.c, doc/examples/ex-client2.c, - doc/examples/ex-crq.c, doc/examples/ex-pkcs12.c, - doc/examples/ex-rfc2818.c, doc/examples/ex-serv-anon.c, - doc/examples/ex-serv-export.c, doc/examples/ex-serv-pgp.c, - doc/examples/ex-serv-srp.c, doc/examples/ex-serv1.c, - doc/examples/ex-session-info.c, doc/examples/ex-verify.c, - doc/examples/ex-x509-info.c: Build examples. Fix errors. - -2005-07-25 Simon Josefsson - - * NEWS, THANKS: Add. - -2005-07-25 Simon Josefsson - - * lib/gnutls_global.c: Doc fixes, tiny patch from Ralph Giles - . - -2005-07-24 Simon Josefsson - - * doc/protocol/rfc4132.txt: Add. - -2005-07-16 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2005-07-16 Simon Josefsson - - * ChangeLog: [no log message] - -2005-07-16 Simon Josefsson - - * NEWS: Version 1.2.6. - -2005-07-16 Simon Josefsson - - * configure.in: Bump versions. - -2005-07-16 Simon Josefsson - - * NEWS: Add. - -2005-07-16 Simon Josefsson - - * NEWS: Add. - -2005-07-16 Simon Josefsson - - * lib/minitasn1/libtasn1.h: Sync with 0.2.14. - -2005-07-16 Simon Josefsson - - * lib/gnutls_alert.c, lib/gnutls_anon_cred.c: Fix GTK-DOC warnings. - -2005-07-16 Simon Josefsson - - * doc/README.CVS: gtk-doc 1.4 is ok - -2005-07-16 Simon Josefsson - - * includes/gnutls/gnutls.h.in, includes/gnutls/openpgp.h, - lib/gnutls_auth.c, lib/gnutls_cert.c, lib/gnutls_ui.c: Fix GTK-DOC - warnings. - -2005-07-16 Simon Josefsson - - * lib/x509/x509.h: Fix GTK-DOC warning. - -2005-07-16 Simon Josefsson - - * lib/x509/crq.c, lib/x509/privkey.c, lib/x509/x509.c: Fix GTK-DOC - warnings. - -2005-07-15 Simon Josefsson - - * doc/protocol/draft-salowey-tls-ticket-03.txt: Add. - -2005-07-15 Nikos Mavrogiannopoulos - - * doc/examples/ex-x509-info.c: corrected wrong number of arguments - in gnutls_x509_crt_import(). Reported by Fco J. Arias. - -2005-07-15 Simon Josefsson - - * configure.in, lib/gnutls_compress_int.c, libextra/gnutls_extra.c: - Fix LZO 1.x vs 2.x header file #include mess. - -2005-07-14 Simon Josefsson - - * THANKS: Add. - -2005-07-14 Simon Josefsson - - * gl/m4/size_max.m4, gl/size_max.h: Update. - -2005-07-14 Simon Josefsson - - * NEWS, THANKS: Add. - -2005-07-14 Simon Josefsson - - * configure.in: Check for lzo1x_1_compress in -llzo2 too, and prefer - -llzo2 if available, reported by Thomas Klausner . - -2005-07-12 Simon Josefsson - - * configure.in, lib/gnutls_compress_int.c, libextra/Makefile.am, - libextra/gnutls_extra.c, libextra/lzoconf.h, libextra/lzodefs.h, - libextra/minilzo.c, libextra/minilzo.h, - libextra/minilzo/.cvsignore, libextra/minilzo/Makefile.am, - libextra/minilzo/README.LZO, libextra/minilzo/lzoconf.h, - libextra/minilzo/lzodefs.h, libextra/minilzo/minilzo.c, - libextra/minilzo/minilzo.h, libextra/minilzo/testmini.c: Move - MiniLZO to separate directory. Update from MiniLZO 2.00 to 2.01. - -2005-07-12 Simon Josefsson - - * NEWS: Fix. - -2005-07-12 Simon Josefsson - - * NEWS: Add. - -2005-07-03 Simon Josefsson - - * ChangeLog: [no log message] - -2005-07-03 Simon Josefsson - - * NEWS: Version 1.2.5. - -2005-07-03 Simon Josefsson - - * NEWS: Add. - -2005-07-02 Simon Josefsson - - * libextra/libgnutls-extra-config.in: Fix --help for distcheck. - -2005-07-02 Simon Josefsson - - * lib/libgnutls-config.in: Send --help output to stdout. - -2005-07-02 Simon Josefsson - - * lib/libgnutls-config.in: Exit with 0 for --help. - -2005-06-27 Simon Josefsson - - * tests/pkcs12_neon: Fix. - -2005-06-27 Simon Josefsson - - * tests/pkcs12_neon: Fix objdir!=srcdir (for distcheck). - -2005-06-27 Simon Josefsson - - * doc/Makefile.am: Dist gnutls-logo.eps. - -2005-06-24 Simon Josefsson - - * doc/protocol/draft-rescorla-dtls-05.txt: Add. - -2005-06-24 Simon Josefsson - - * doc/protocol/draft-ietf-tls-rfc2246-bis-13.txt: Add. - -2005-06-23 Simon Josefsson - - * doc/protocol/draft-ietf-tls-psk-09.txt: Add. - -2005-06-17 Simon Josefsson - - * Makefile.am: Use --enable-gtk-doc during distcheck. - -2005-06-15 Simon Josefsson - - * NEWS, THANKS: Add. - -2005-06-15 Simon Josefsson - - * libextra/opencdk/Makefile.am: Fix srcdir!=objdir builds. - -2005-06-15 Simon Josefsson - - * libextra/opencdk/Makefile.am, libextra/openpgp/Makefile.am: Add - license. - -2005-06-15 Simon Josefsson - - * lib/x509/Makefile.am, libextra/openpgp/Makefile.am: Fix - srcdir!=objdir builds. - -2005-06-14 Simon Josefsson - - * NEWS: Add. - -2005-06-14 Simon Josefsson - - * libextra/lzodefs.h: Add. - -2005-06-08 Nikos Mavrogiannopoulos - - * NEWS, THANKS: [no log message] - -2005-06-08 Nikos Mavrogiannopoulos - - * configure.in, lib/gnutls_compress_int.c, libextra/Makefile.am, - libextra/gnutls_extra.c, libextra/lzoconf.h, libextra/minilzo.c, - libextra/minilzo.h: Updated to minilzo 2.0 and corrected stuff - pointed out by - -2005-06-03 Simon Josefsson - - * doc/protocol/draft-ietf-tls-rfc2246-bis-12.txt: Add. - -2005-06-02 Nikos Mavrogiannopoulos - - * lib/x509/x509_write.c: some updates to prevent warnings for non - constant initializers - -2005-05-31 Simon Josefsson - - * doc/protocol/draft-ietf-tls-ecc-10.txt: Add. - -2005-05-31 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2005-05-31 Nikos Mavrogiannopoulos - - * lib/gnutls_int.h, lib/gnutls_ui.c, lib/x509/crl_write.c, - lib/x509/crq.c, lib/x509/mpi.c, lib/x509/sign.c, - lib/x509/x509_write.c: fixed some type conflicts. - -2005-05-29 Nikos Mavrogiannopoulos - - * lib/x509/x509.c: crt_list_import() now works with DER certificates - (although only 1 can be imported). - -2005-05-29 Simon Josefsson - - * NEWS: Fix. - -2005-05-29 Simon Josefsson - - * NEWS, THANKS: Add. - -2005-05-28 Nikos Mavrogiannopoulos - - * lib/x509/dn.c: [no log message] - -2005-05-28 Nikos Mavrogiannopoulos - - * lib/x509/dn.c: correct the behaviour in DN parsing. Return the - correct size when requested. - -2005-05-28 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2005-05-28 Simon Josefsson - - * NEWS: Fix. - -2005-05-28 Simon Josefsson - - * ChangeLog: [no log message] - -2005-05-28 Simon Josefsson - - * NEWS: Version 1.2.4. - -2005-05-28 Simon Josefsson - - * configure.in: Bump versions. - -2005-05-28 Nikos Mavrogiannopoulos - - * src/certtool.c: print the correct issuer in verify_chain() - -2005-05-27 Nikos Mavrogiannopoulos - - * NEWS, lib/auth_anon.c, lib/auth_cert.c, lib/auth_dhe.c, - lib/auth_rsa.c, lib/auth_rsa_export.c, lib/auth_srp.c, - lib/auth_srp_passwd.c, lib/auth_srp_rsa.c, lib/ext_srp.c, - lib/gnutls_cert.c, lib/gnutls_handshake.c, lib/gnutls_state.c, - lib/gnutls_ui.c, lib/gnutls_x509.c, lib/x509/pkcs12_bag.c, - src/certtool.c: eliminated some warnings. - -2005-05-26 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2005-05-26 Simon Josefsson - - * config.rpath, doc/gendocs.sh: Update. - -2005-05-26 Simon Josefsson - - * AUTHORS, COPYING, COPYING.LIB, Makefile.am, NEWS, configure.in, - crypto/Makefile.am, crypto/gc-libgcrypt.c, crypto/gc.h, - crypto/pkcs5.c, crypto/test-gc.c, crypto/utils.c, crypto/utils.h, - doc/Makefile.am, doc/fdl.texi, doc/gendocs.sh, - doc/gendocs_template, includes/Makefile.am, - includes/gnutls/extra.h, includes/gnutls/gnutls.h.in, - includes/gnutls/openpgp.h, includes/gnutls/openssl.h, - includes/gnutls/pkcs12.h, includes/gnutls/x509.h, lib/Makefile.am, - lib/auth_anon.c, lib/auth_anon.h, lib/auth_cert.c, lib/auth_cert.h, - lib/auth_dh_common.c, lib/auth_dh_common.h, lib/auth_dhe.c, - lib/auth_rsa.c, lib/auth_rsa_export.c, lib/auth_srp.c, - lib/auth_srp.h, lib/auth_srp_passwd.c, lib/auth_srp_passwd.h, - lib/auth_srp_rsa.c, lib/auth_srp_sb64.c, lib/debug.c, lib/debug.h, - lib/defines.h, lib/ext_cert_type.c, lib/ext_cert_type.h, - lib/ext_max_record.c, lib/ext_max_record.h, lib/ext_server_name.c, - lib/ext_server_name.h, lib/ext_srp.c, lib/ext_srp.h, - lib/gnutls_alert.c, lib/gnutls_algorithms.c, - lib/gnutls_algorithms.h, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, - lib/gnutls_auth.h, lib/gnutls_auth_int.h, lib/gnutls_buffer.h, - lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cert.c, - lib/gnutls_cert.h, lib/gnutls_cipher.c, lib/gnutls_cipher.h, - lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, - lib/gnutls_compress.c, lib/gnutls_compress.h, - lib/gnutls_compress_int.c, lib/gnutls_compress_int.h, - lib/gnutls_constate.c, lib/gnutls_constate.h, lib/gnutls_datum.c, - lib/gnutls_datum.h, lib/gnutls_db.c, lib/gnutls_db.h, - lib/gnutls_dh.c, lib/gnutls_dh.h, lib/gnutls_dh_primes.c, - lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_extensions.c, - lib/gnutls_extensions.h, lib/gnutls_global.c, lib/gnutls_global.h, - lib/gnutls_handshake.c, lib/gnutls_handshake.h, - lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, - lib/gnutls_kx.c, lib/gnutls_kx.h, lib/gnutls_mem.c, - lib/gnutls_mem.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h, - lib/gnutls_num.c, lib/gnutls_num.h, lib/gnutls_pk.c, - lib/gnutls_pk.h, lib/gnutls_priority.c, lib/gnutls_priority.h, - lib/gnutls_random.c, lib/gnutls_random.h, lib/gnutls_record.c, - lib/gnutls_record.h, lib/gnutls_rsa_export.c, - lib/gnutls_rsa_export.h, lib/gnutls_session.c, - lib/gnutls_session.h, lib/gnutls_session_pack.c, - lib/gnutls_session_pack.h, lib/gnutls_sig.c, lib/gnutls_sig.h, - lib/gnutls_srp.c, lib/gnutls_srp.h, lib/gnutls_state.c, - lib/gnutls_state.h, lib/gnutls_str.c, lib/gnutls_str.h, - lib/gnutls_ui.c, lib/gnutls_v2_compat.c, lib/gnutls_v2_compat.h, - lib/gnutls_x509.c, lib/gnutls_x509.h, lib/io_debug.h, lib/memmem.c, - lib/memmem.h, lib/minitasn1/coding.c, lib/minitasn1/decoding.c, - lib/minitasn1/element.c, lib/minitasn1/errors.c, - lib/minitasn1/errors.h, lib/minitasn1/gstr.c, lib/minitasn1/int.h, - lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, - lib/minitasn1/structure.c, lib/strfile.h, lib/x509/Makefile.am, - lib/x509/common.c, lib/x509/common.h, lib/x509/compat.c, - lib/x509/compat.h, lib/x509/crl.c, lib/x509/crl_write.c, - lib/x509/crq.c, lib/x509/crq.h, lib/x509/dn.c, lib/x509/dn.h, - lib/x509/dsa.c, lib/x509/dsa.h, lib/x509/extensions.c, - lib/x509/extensions.h, lib/x509/mpi.c, lib/x509/mpi.h, - lib/x509/pkcs12.c, lib/x509/pkcs12.h, lib/x509/pkcs12_bag.c, - lib/x509/pkcs12_encr.c, lib/x509/pkcs7.c, lib/x509/pkcs7.h, - lib/x509/privkey.c, lib/x509/privkey.h, lib/x509/privkey_pkcs8.c, - lib/x509/rfc2818.h, lib/x509/rfc2818_hostname.c, lib/x509/sign.c, - lib/x509/sign.h, lib/x509/verify.c, lib/x509/verify.h, - lib/x509/x509.c, lib/x509/x509.h, lib/x509/x509_write.c, - lib/x509/xml.c, lib/x509_b64.c, lib/x509_b64.h, - libextra/Makefile.am, libextra/gnutls_extra.c, - libextra/gnutls_extra.h, libextra/gnutls_openpgp.c, - libextra/gnutls_openssl.c, libextra/lzoconf.h, libextra/minilzo.c, - libextra/minilzo.h, libextra/opencdk/armor.c, - libextra/opencdk/cipher.c, libextra/opencdk/cipher.h, - libextra/opencdk/compress.c, libextra/opencdk/context.h, - libextra/opencdk/encrypt.c, libextra/opencdk/filters.h, - libextra/opencdk/kbnode.c, libextra/opencdk/keydb.c, - libextra/opencdk/keygen.c, libextra/opencdk/keylist.c, - libextra/opencdk/keyserver.c, libextra/opencdk/main.c, - libextra/opencdk/main.h, libextra/opencdk/md.c, - libextra/opencdk/md.h, libextra/opencdk/misc.c, - libextra/opencdk/new-packet.c, libextra/opencdk/opencdk.h, - libextra/opencdk/packet.h, libextra/opencdk/plaintext.c, - libextra/opencdk/pubkey.c, libextra/opencdk/read-packet.c, - libextra/opencdk/seskey.c, libextra/opencdk/sig-check.c, - libextra/opencdk/sign.c, libextra/opencdk/stream.c, - libextra/opencdk/stream.h, libextra/opencdk/sym-cipher.c, - libextra/opencdk/trustdb.c, libextra/opencdk/types.h, - libextra/opencdk/verify.c, libextra/opencdk/write-packet.c, - libextra/openpgp/compat.c, libextra/openpgp/extras.c, - libextra/openpgp/pgp.c, libextra/openpgp/pgpverify.c, - libextra/openpgp/privkey.c, libextra/openpgp/xml.c, - libextra/openssl_compat.c, libextra/openssl_compat.h, - src/Makefile.am, src/certtool-cfg.c, src/certtool.c, src/cli.c, - src/common.c, src/crypt.c, src/list.h, src/prime.c, src/serv.c, - src/tests.c, src/tls_test.c, tests/Makefile.am, tests/anonself.c, - tests/chain, tests/openssl.c, tests/pkcs12_neon, tests/pkits, - tests/pkits_crl, tests/pkits_crt, tests/pkits_pkcs12, - tests/pkits_smime, tests/simple.c, tests/utils.c, tests/utils.h: - Update FSF office address in license. - -2005-05-26 Simon Josefsson - - * Makefile.am: Update FSF office address in license. - -2005-05-26 Simon Josefsson - - * NEWS: Add. - -2005-05-26 Simon Josefsson - - * gl/Makefile.am, gl/alloca_.h, gl/asnprintf.c, gl/error.c, - gl/error.h, gl/getline.c, gl/getline.h, gl/getndelim2.c, - gl/getndelim2.h, gl/getpass.c, gl/getpass.h, gl/m4/gnulib.m4, - gl/m4/minmax.m4, gl/minmax.h, gl/printf-args.c, gl/printf-args.h, - gl/printf-parse.c, gl/printf-parse.h, gl/progname.c, gl/progname.h, - gl/snprintf.c, gl/snprintf.h, gl/stdbool_.h, gl/vasnprintf.c, - gl/vasnprintf.h, gl/xsize.h: Update. - -2005-05-23 Nikos Mavrogiannopoulos - - * doc/manpages/certtool.1: [no log message] - -2005-05-23 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2005-05-23 Nikos Mavrogiannopoulos - - * doc/examples/ex-verify.c: improved the verification example. - -2005-05-23 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2005-05-23 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h, lib/x509/verify.c: Corrected a bug in - certificate verification that could lead to a trusted certificate - path to be marked as non-trusted, if it included the last - self-signed certificate in the chain. - -2005-05-21 Nikos Mavrogiannopoulos - - * doc/examples/ex-cert-select.c: [no log message] - -2005-05-21 Nikos Mavrogiannopoulos - - * ChangeLog, NEWS, configure.in, doc/manpages/Makefile.am, - src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, - src/certtool.gaa: Introduced to --fix-key option to certtool, which - can be used to regenerate the (optional) parameters in a private - key. It should be used together with --key-info. - -2005-05-21 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2005-05-20 Simon Josefsson - - * doc/protocol/draft-ietf-tls-rfc3546bis-01.txt: Add. - -2005-05-20 Simon Josefsson - - * doc/gnutls.texi: Typo. - -2005-05-20 Simon Josefsson - - * lib/gnutls_int.h: Include defines.h before gnutls.h, to pull in - config.h, to make sure memmem.h prototype memmem properly, from - Yoann Vandoorselaere . - -2005-05-18 Nikos Mavrogiannopoulos - - * src/certtool.c: removed unneeded gnutls_x509_crt_init(). - -2005-05-16 Simon Josefsson - - * doc/protocol/draft-ietf-tls-rfc2246-bis-10.txt: Add. - -2005-05-15 Nikos Mavrogiannopoulos - - * lib/x509/common.c: [no log message] - -2005-05-15 Nikos Mavrogiannopoulos - - * lib/x509/common.c, lib/x509/pkcs12.c: corrected some things that - could affect 64 bit machines. - -2005-05-01 Simon Josefsson - - * lib/gnutls_int.h: Use gnutls/extra.h to get - gnutls_openpgp_recv_key_func type. - -2005-05-01 Simon Josefsson - - * libextra/openpgp/openpgp.h: Remove, defined in gnutls.h. - -2005-04-28 Nikos Mavrogiannopoulos - - * NEWS: added date - -2005-04-28 Simon Josefsson - - * ChangeLog: [no log message] - -2005-04-27 Simon Josefsson - - * doc/manpages/Makefile.am: Update. - -2005-04-27 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2005-04-27 Simon Josefsson - - * configure.in: Revert fully, LT_CURRENT was also updated. Sorry. - -2005-04-27 Simon Josefsson - - * configure.in: Revert partially, LT_AGE already incremented. - -2005-04-27 Simon Josefsson - - * configure.in: Bump versions. - -2005-04-27 Nikos Mavrogiannopoulos - - * THANKS: for the gnutls_cipher.c bug, that could cause denial of - service - -2005-04-27 Nikos Mavrogiannopoulos - - * configure.in: increased age - -2005-04-27 Nikos Mavrogiannopoulos - - * NEWS, configure.in, includes/gnutls/x509.h, - lib/gnutls_rsa_export.c, lib/x509/privkey.c, src/certtool.c: - certtool can now fix the old RSA private keys. This is done by using - the -k parameter. - -2005-04-27 Nikos Mavrogiannopoulos - - * lib/x509/privkey.c, lib/x509/x509.h: at the export phase, encode - the key. - -2005-04-27 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2005-04-27 Nikos Mavrogiannopoulos - - * lib/gnutls_mpi.h, lib/x509/privkey.c, lib/x509/x509.h: corrected - bugs in RSA key export. - -2005-04-27 Nikos Mavrogiannopoulos - - * lib/gnutls_cipher.c: added an extra check while checking the - padding. - -2005-04-25 Simon Josefsson - - * ChangeLog: [no log message] - -2005-04-25 Simon Josefsson - - * NEWS: Version 1.2.2. - -2005-04-25 Simon Josefsson - - * doc/Makefile.am: Don't regenerate error_codes.texi when gnutls.h - is newer, because it will always be, and this causes texinfo to be - run on the manual. - -2005-04-25 Simon Josefsson - - * doc/Makefile.am: Dist more. - -2005-04-23 Nikos Mavrogiannopoulos - - * lib/gnutls_alert.c: some updates in the description of - gnutls_alert_get() - -2005-04-23 Nikos Mavrogiannopoulos - - * lib/gnutls_alert.c: gnutls_alert_send_appropriate() is no longer - marked as deprecated. - -2005-04-22 Nikos Mavrogiannopoulos - - * lib/x509/x509.c: [no log message] - -2005-04-22 Nikos Mavrogiannopoulos - - * lib/x509/x509.c: [no log message] - -2005-04-21 Simon Josefsson - - * NEWS: Typo. - -2005-04-21 Simon Josefsson - - * lib/gnutls_alert.c: Make it compile. - -2005-04-21 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2005-04-21 Nikos Mavrogiannopoulos - - * lib/auth_cert.h: [no log message] - -2005-04-21 Nikos Mavrogiannopoulos - - * lib/auth_cert.h, lib/gnutls_cert.c, lib/gnutls_session_pack.c, - lib/gnutls_ui.c: some cleanups, and changes in the resuming code to - avoid freeing non-allocated stuff. - -2005-04-19 Simon Josefsson - - * configure.in: Remove some warnings. - -2005-04-18 Nikos Mavrogiannopoulos - - * src/certtool.c: some cleanups in certtool - -2005-04-15 Simon Josefsson - - * configure.in, includes/Makefile.am, includes/gnutls/Makefile.am: - Remove includes/gnutls/Makefile.am. Fix includes/Makefile.am to - compensate. - -2005-04-15 Simon Josefsson - - * lib/Makefile.am: Remove gnutls_alert.h. - -2005-04-15 Simon Josefsson - - * includes/gnutls/Makefile.am: Add license. - -2005-04-15 Simon Josefsson - - * includes/Makefile.am: Simplify. Add license. - -2005-04-15 Simon Josefsson - - * includes/gnutls/Makefile.am: Don't dist gnutls.h, it is generated. - -2005-04-15 Simon Josefsson - - * configure.in, includes/gnutls/gnutls.h.in, lib/gnutls.h.in.in: - Move lib/gnutls.h.in.in into includes/gnutls/gnutls.h.in. Fix - #warning about missing components, it didn't work in config.status. - Simplify configure.ac wrt to gnutls.h. - -2005-04-14 Simon Josefsson - - * configure.in: Add more warnings (likely to be trimmed later). - -2005-04-14 Simon Josefsson - - * lib/gnutls_int.h: Remove. - -2005-04-14 Simon Josefsson - - * lib/gnutls_global.h: Remove dupe definition. - -2005-04-14 Simon Josefsson - - * lib/gnutls.h.in.in: Revert. - -2005-04-14 Simon Josefsson - - * lib/gnutls.h.in.in: Moved from gnutls_mem.h. - -2005-04-14 Simon Josefsson - - * lib/gnutls_mem.h: Cleanup. - -2005-04-14 Simon Josefsson - - * lib/gnutls_algorithms.h: Fix warning. - -2005-04-14 Simon Josefsson - - * libextra/opencdk/main.c: Fix warning. - -2005-04-14 Simon Josefsson - - * lib/auth_cert.c, lib/auth_srp_passwd.c, lib/gnutls_constate.c, - lib/gnutls_v2_compat.c, lib/gnutls_x509.c, libextra/opencdk/main.c, - libextra/opencdk/misc.c: Fix warning. - -2005-04-14 Simon Josefsson - - * lib/gnutls_compress.c, lib/gnutls_compress.h, - lib/gnutls_hash_int.c, lib/gnutls_kx.c: Fix warning. - -2005-04-14 Simon Josefsson - - * lib/gnutls_handshake.c: Fix warnings. - -2005-04-14 Simon Josefsson - - * lib/gnutls_cipher.c, lib/gnutls_handshake.c, - lib/gnutls_handshake.h, lib/gnutls_state.c, lib/gnutls_state.h: Fix - warning. - -2005-04-14 Simon Josefsson - - * gl/Makefile.am, gl/m4/getpass.m4: Update. - -2005-04-14 Simon Josefsson - - * lib/gnutls_handshake.h: Cleanup. - -2005-04-14 Simon Josefsson - - * gl/Makefile.am, gl/m4/getline.m4, gl/m4/getpass.m4, - gl/progname.c, gl/size_max.h, gl/vasnprintf.c: Update. - -2005-04-14 Simon Josefsson - - * configure.in: Improve warning CFLAGS. - -2005-04-14 Simon Josefsson - - * THANKS: Add. - -2005-04-14 Simon Josefsson - - * lib/x509/common.c: (_gnutls_x509_oid_data2string): Fix memory leak, tiny patch from - Rupert Kittinger . - -2005-04-14 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2005-04-14 Simon Josefsson - - * doc/Makefile.am: Make error_codes.texi build, after removing - gnutls_errors_int.h. - -2005-04-14 Simon Josefsson - - * lib/gnutls_alert.c: Make it build. - -2005-04-14 Simon Josefsson - - * lib/auth_srp.c, lib/ext_srp.c, lib/gnutls_alert.h, - lib/gnutls_algorithms.h, lib/gnutls_handshake.c, lib/gnutls_kx.c, - lib/gnutls_record.c: Simplify. - -2005-04-14 Simon Josefsson - - * lib/gnutls_auth_int.h, lib/gnutls_db.h: Cleanup. - -2005-04-14 Simon Josefsson - - * doc/README.CODING_STYLE, lib/Makefile.am, lib/gnutls_errors.h, - lib/gnutls_errors_int.h: Simplify. - -2005-04-14 Simon Josefsson - - * lib/gnutls_ui.h: Remove. (Everything moved to gnutls.h.in.in.) - -2005-04-14 Simon Josefsson - - * NEWS: Add. - -2005-04-14 Simon Josefsson - - * configure.in, lib/Makefile.am, lib/auth_anon.c, lib/auth_anon.h, - lib/auth_cert.c, lib/auth_cert.h, lib/auth_dhe.c, lib/auth_rsa.c, - lib/auth_rsa_export.c, lib/auth_srp.h, lib/auth_srp_passwd.c, - lib/auth_srp_rsa.c, lib/debug.c, lib/debug.h, lib/gnutls.h.in.in, - lib/gnutls_alert.h, lib/gnutls_auth_int.h, lib/gnutls_buffers.c, - lib/gnutls_buffers.h, lib/gnutls_cert.c, lib/gnutls_cert.h, - lib/gnutls_dh.h, lib/gnutls_errors_int.h, lib/gnutls_handshake.c, - lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_kx.c, - lib/gnutls_mem.h, lib/gnutls_record.c, lib/gnutls_record.h, - lib/gnutls_rsa_export.h, lib/gnutls_session.h, lib/gnutls_sig.h, - lib/gnutls_state.c, lib/gnutls_state.h, lib/gnutls_ui.c, - lib/gnutls_x509.c, lib/x509/crl_write.c, lib/x509/crq.c, - lib/x509/rfc2818_hostname.c, lib/x509/x509.c, lib/x509/x509.h, - lib/x509/x509_write.c, libextra/openpgp/openpgp.h: Clean up #include - situation, merge from gnutls_1_2_1_with_include_fixes. Now - lib/gnutls_int.h start by including gnutls/gnutls.h, to check - prototypes during compile time. More cleanups are expected. - -2005-04-14 Simon Josefsson - - * NEWS: Mention API/ABI changes more clearly. - -2005-04-14 Simon Josefsson - - * NEWS: Typo. - -2005-04-13 Nikos Mavrogiannopoulos - - * lib/pkix.asn, lib/pkix_asn1_tab.c: Some fixes for - AuthorityKeyIdentifier parsing. Suggested by Fabio. - -2005-04-12 Nikos Mavrogiannopoulos - - * doc/gnutls.texi: [no log message] - -2005-04-12 Simon Josefsson - - * doc/protocol/draft-rescorla-dtls-04.txt: Add. - -2005-04-12 Simon Josefsson - - * doc/protocol/draft-ietf-tls-ecc-09.txt: Add. - -2005-04-12 Nikos Mavrogiannopoulos - - * NEWS, doc/TODO, doc/manpages/Makefile.am, lib/x509/common.c, - lib/x509/common.h, lib/x509/dn.c, lib/x509/pkcs12.c: Fixed pkcs12 - friendly name and local key identifier decoding. - -2005-04-11 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2005-04-11 Nikos Mavrogiannopoulos - - * src/certtool.c: print some more information for PKCS #12 - structures. - -2005-04-09 Nikos Mavrogiannopoulos - - * src/serv.c: [no log message] - -2005-04-05 Nikos Mavrogiannopoulos - - * NEWS, lib/x509/x509_write.c: [no log message] - -2005-04-05 Nikos Mavrogiannopoulos - - * lib/gnutls_alert.c: return unexpected_message alert in the case of - a handshake unexpected message. - -2005-04-04 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2005-04-04 Simon Josefsson - - * NEWS: Typo. - -2005-04-04 Simon Josefsson - - * lib/gnutls_record.c: Doc fix, suggested by Nikos Mavrogiannopoulos - . - -2005-04-04 Simon Josefsson - - * ChangeLog: [no log message] - -2005-04-04 Simon Josefsson - - * NEWS: Version 1.2.1. - -2005-04-04 Simon Josefsson - - * lib/gnutls_record.c: Doc fixes, adapted from suggestions by Martin - Lambers . - -2005-04-03 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2005-04-03 Nikos Mavrogiannopoulos - - * configure.in: added warning to libraries compiled with features - disabled. - -2005-04-02 Simon Josefsson - - * doc/manpages/Makefile.am: Fix. - -2005-03-30 Nikos Mavrogiannopoulos - - * lib/x509/x509.c: [no log message] - -2005-03-29 Nikos Mavrogiannopoulos - - * lib/gnutls_record.c: some more documentation fixes. - -2005-03-29 Simon Josefsson - - * lib/gnutls_record.c: Doc fix, reported by Martin Lambers - . - -2005-03-29 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2005-03-29 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2005-03-29 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2005-03-29 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2005-03-29 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2005-03-29 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2005-03-29 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2005-03-29 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2005-03-29 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2005-03-29 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2005-03-29 Nikos Mavrogiannopoulos - - * lib/x509/x509.c: [no log message] - -2005-03-29 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h, lib/x509/x509.c, lib/x509/x509.h, - src/certtool.c, src/cli.c: more improvments to - gnutls_x509_crt_list_import() - -2005-03-28 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h, lib/x509/x509.c, lib/x509/x509.h, - src/cli.c: improved gnutls_x509_crt_list_import(). - -2005-03-28 Nikos Mavrogiannopoulos - - * src/certtool.c: certtool can now print certificate information in - files containing multiple certificates. - -2005-03-28 Nikos Mavrogiannopoulos - - * lib/x509/x509.c: [no log message] - -2005-03-28 Nikos Mavrogiannopoulos - - * NEWS, includes/gnutls/x509.h, lib/x509/x509.c, src/cli.c: Added - the function gnutls_x509_crt_list_import(). This is a convinience - function to import many certificates with a single call. - -2005-03-21 Nikos Mavrogiannopoulos - - * NEWS, includes/gnutls/x509.h, lib/x509/x509_write.c: Added - gnutls_x509_crt_set_extension_by_oid(). - -2005-03-19 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2005-03-19 Nikos Mavrogiannopoulos - - * lib/x509/common.c, lib/x509/crq.c: corrected bug in - gnutls_crq_get_attribute_by_oid() - -2005-03-19 Nikos Mavrogiannopoulos - - * configure.in: fixed the library number. - -2005-03-19 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h, lib/gnutls_hash_int.h, lib/x509/common.c, - lib/x509/crq.c, lib/x509/privkey_pkcs8.c, lib/x509/x509.h, - lib/x509/xml.c, libextra/opencdk/opencdk.h: [no log message] - -2005-03-19 Nikos Mavrogiannopoulos - - * NEWS, configure.in, lib/x509/crq.c: Added the functions: gnutls_x509_crq_get_attribute_by_oid() and gnutls_x509_crq_set_attribute_by_oid(). - -2005-03-19 Nikos Mavrogiannopoulos - - * lib/auth_cert.c, lib/auth_cert.h, lib/auth_dh_common.c, - lib/auth_dh_common.h, lib/gnutls_auth.c, lib/gnutls_record.c, - lib/gnutls_session_pack.c: eliminated some memory leaks caused by - DHE and RSA-EXPORT ciphersuites. Thanks to Yoann Vandoorselaere for - reporting them. - -2005-03-18 Simon Josefsson - - * doc/protocol/draft-ietf-tls-srp-09.txt: Add. - -2005-03-11 Simon Josefsson - - * NEWS: Add. - -2005-03-11 Simon Josefsson - - * nettle/tests/Makefile.am: Dist testutils.{c,h}. - -2005-03-10 Simon Josefsson - - * NEWS: Flow. - -2005-03-08 Nikos Mavrogiannopoulos - - * lib/x509/verify.c, libextra/openpgp/pgpverify.c, - libextra/openssl_compat.c: some doc fixes. - -2005-03-08 Nikos Mavrogiannopoulos - - * lib/x509/verify.c: [no log message] - -2005-03-07 Nikos Mavrogiannopoulos - - * lib/x509/dsa.c, lib/x509/privkey.c: [no log message] - -2005-03-06 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c, lib/x509/common.h, lib/x509/pkcs12.c, - lib/x509/privkey_pkcs8.c, lib/x509/x509.h: gnutls will now recognize - the GOST signature and public key OIDs. However no support is - planned. - -2005-03-06 Nikos Mavrogiannopoulos - - * lib/gnutls_dh.c: added a check to test whether the DH secret is - zero. - -2005-03-06 Nikos Mavrogiannopoulos - - * src/cli.c: [no log message] - -2005-03-06 Nikos Mavrogiannopoulos - - * NEWS, includes/gnutls/x509.h, lib/x509/verify.c, - lib/x509/verify.h: Improved the semantics of - GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT, to allow only trusted Version 1 - CAs and introduced GNUTLS_VERIFY_ALLOW_ANY_X509_V1_CA_CRT which has - the old semantics. - -2005-03-05 Nikos Mavrogiannopoulos - - * doc/TODO: test commit - -2005-03-05 Nikos Mavrogiannopoulos - - * src/certtool.c: [no log message] - -2005-03-05 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2005-03-05 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/gnutls_algorithms.c, - lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_int.h, - lib/gnutls_priority.c, lib/gnutls_sig.c, lib/gnutls_srp.c, - lib/gnutls_state.c, lib/x509/crl_write.c, lib/x509/crq.c, - lib/x509/pkcs12.c, lib/x509/privkey.c, lib/x509/sign.c, - lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509_write.c, - libextra/gnutls_openssl.c, src/certtool.c, src/cli.c, src/common.c, - src/serv.c, src/tests.c: renamed all instances of _SHA to _SHA1 to - make naming more consistent and clear. - -2005-03-05 Simon Josefsson - - * NEWS: Fix. - -2005-03-05 Simon Josefsson - - * NEWS, THANKS: Add. - -2005-03-05 Simon Josefsson - - * configure.in: Don't force -O2 -finline-functions. - -2005-03-05 Nikos Mavrogiannopoulos - - * NEWS, src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, - src/certtool.gaa, src/prime.c: Added the option --get-dh-params to - certtool, in order to get the included primes and generators - -2005-03-04 Nikos Mavrogiannopoulos - - * NEWS, src/certtool.c: added warning when MD5 is being used. - -2005-03-04 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c: [no log message] - -2005-03-03 Nikos Mavrogiannopoulos - - * NEWS, lib/auth_srp.c: added more strict checks for g,n - -2005-03-03 Nikos Mavrogiannopoulos - - * doc/protocol/draft-salowey-tls-ticket-00.txt, - doc/protocol/draft-salowey-tls-ticket-02.txt: new ticket - -2005-02-27 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2005-02-24 Simon Josefsson - - * doc/protocol/draft-ietf-tls-psk-06.txt: Add. - -2005-02-23 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2005-02-23 Nikos Mavrogiannopoulos - - * lib/gnutls_record.c: some modifications for gnutls_bye() - semantics. - -2005-02-22 Simon Josefsson - - * doc/protocol/draft-rescorla-dtls-03.txt: Add. - -2005-02-21 Nikos Mavrogiannopoulos - - * doc/manpages/srptool.1: updated documentation for srptool.1 - -2005-02-12 Simon Josefsson - - * configure.in: Add -Wshadow for --enable-developer-mode. - -2005-02-12 Simon Josefsson - - * lib/gnutls_ui.c, lib/gnutls_ui.h: (gnutls_rsa_export_get_pubkey): Don't use reserved word "exp", - reported by Neil Spring . - -2005-02-12 Simon Josefsson - - * includes/gnutls/x509.h, lib/x509/crl.c: (gnutls_x509_crl_get_crt_serial): Don't use reserved word "time", - reported by Neil Spring . - -2005-02-12 Simon Josefsson - - * includes/gnutls/x509.h: Fix last commit. - -2005-02-12 Simon Josefsson - - * lib/x509/crl.c: (gnutls_x509_crl_get_crt_serial): Don't use reserved word "index", - reported by Neil Spring . - -2005-02-12 Simon Josefsson - - * includes/gnutls/x509.h: (gnutls_x509_crl_get_crt_serial): Don't use reserved word "index" in - prototype, reported by Neil Spring . - -2005-02-06 Nikos Mavrogiannopoulos - - * src/serv.c: [no log message] - -2005-02-06 Simon Josefsson - - * THANKS: Add. - -2005-02-06 Simon Josefsson - - * includes/gnutls/extra.h: Protect for C++, tiny patch from Daniel - Black . - -2005-02-06 Simon Josefsson - - * doc/reference/Makefile.am: Scan in lib/x509/ too, sources now - fixed. - -2005-02-06 Simon Josefsson - - * lib/x509/crq.c: Doc fix. - -2005-02-06 Simon Josefsson - - * lib/x509/privkey.c, lib/x509/x509.c: Doc fix. - -2005-02-06 Simon Josefsson - - * lib/x509/crq.c, lib/x509/dn.c, lib/x509/pkcs12.c, - lib/x509/pkcs7.c, lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, - lib/x509/x509.c: Doc fix. - -2005-02-06 Simon Josefsson - - * doc/gnutls.texi: Markup fixes. - -2005-02-05 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2005-02-04 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-openpgp-keys-04.txt, - doc/protocol/draft-ietf-tls-srp-07.txt: [no log message] - -2005-01-31 Simon Josefsson - - * doc/protocol/draft-lee-tls-seed-01.txt: Add. - -2005-01-30 Simon Josefsson - - * doc/README.CVS: Fix gtk-doc. - -2005-01-27 Nikos Mavrogiannopoulos - - * lib/x509/privkey_pkcs8.c, lib/x509/x509.c, lib/x509/xml.c: some - changes for 64bit machines. - -2005-01-27 Nikos Mavrogiannopoulos - - * lib/gnutls_ui.c: [no log message] - -2005-01-27 Nikos Mavrogiannopoulos - - * lib/x509/compat.c: these functions are not exported in the API - documentation. - -2005-01-27 Simon Josefsson - - * Makefile.am: Don't use "devel" directory. - -2005-01-27 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2005-01-27 Simon Josefsson - - * ChangeLog: Fix. - -2005-01-27 Simon Josefsson - - * NEWS: Version 1.2.0. - -2005-01-27 Simon Josefsson - - * ChangeLog: [no log message] - -2005-01-27 Simon Josefsson - - * lib/gnutls_algorithms.c: Make it compile. - -2005-01-27 Simon Josefsson - - * doc/manpages/Makefile.am: Update - -2005-01-27 Simon Josefsson - - * doc/gendocs_template: Add. - -2005-01-27 Simon Josefsson - - * doc/gendocs.sh, doc/gendocs_template: Update. - -2005-01-27 Simon Josefsson - - * doc/TODO: Add. - -2005-01-27 Simon Josefsson - - * libextra/Makefile.am: Fix gnutls-extra-api.texi. - -2005-01-27 Simon Josefsson - - * lib/x509/Makefile.am: Fix x509-api.texi. - -2005-01-27 Simon Josefsson - - * doc/gnutls.texi: Fix indices, suggested by Nikos. - -2005-01-26 Nikos Mavrogiannopoulos - - * : converted the eps to pdf (using epstopdf), resulting in a better - output in gnutls.pdf. - -2005-01-26 Nikos Mavrogiannopoulos - - * doc/gnutls.texi: corrected types. - -2005-01-26 Simon Josefsson - - * doc/gnutls.texi: Add, from Nikos. - -2005-01-26 Nikos Mavrogiannopoulos - - * doc/gnutls.texi: [no log message] - -2005-01-26 Nikos Mavrogiannopoulos - - * doc/gnutls.texi, doc/manpages/Makefile.am, - doc/protocol/draft-ietf-tls-openpgp-keys-05.txt: [no log message] - -2005-01-26 Nikos Mavrogiannopoulos - - * src/crypt-gaa.c, src/crypt-gaa.h, src/crypt.gaa: srptool has now - the --version parameter. - -2005-01-26 Simon Josefsson - - * doc/protocol/draft-ietf-tls-openpgp-keys-05.txt, - doc/protocol/draft-ietf-tls-openpgp-keys-06.txt: Add. - -2005-01-26 Nikos Mavrogiannopoulos - - * src/cli.c: [no log message] - -2005-01-26 Nikos Mavrogiannopoulos - - * src/crypt.c: print version in srptool - -2005-01-26 Simon Josefsson - - * doc/gnutls.texi: Fix. - -2005-01-26 Simon Josefsson - - * NEWS: Add. - -2005-01-26 Nikos Mavrogiannopoulos - - * src/crypt.c: [no log message] - -2005-01-26 Nikos Mavrogiannopoulos - - * src/common.c: --disable-extra-pki works again. - -2005-01-26 Nikos Mavrogiannopoulos - - * configure.in, lib/auth_cert.c, lib/auth_cert.h, lib/auth_srp.h, - lib/gnutls_algorithms.c, lib/gnutls_extensions.c, - lib/gnutls_handshake.c, lib/gnutls_priority.c, - lib/gnutls_session_pack.c, lib/gnutls_sig.h, - libextra/gnutls_extra.c, libextra/gnutls_extra.h, - libextra/openpgp/gnutls_openpgp.h, libextra/openpgp/openpgp.h: - Changes to make the --disable-* options work again. - -2005-01-26 Simon Josefsson - - * doc/manpages/Makefile.am: Update. - -2005-01-26 Simon Josefsson - - * doc/Makefile.am: Typo. - -2005-01-26 Simon Josefsson - - * doc/gnutls.texi: Fix license header. Mention TLS 1.1 more. Talk - about TLS instead of TLS 1.0 in general. - -2005-01-26 Simon Josefsson - - * gl/Makefile.am, gl/error.c, gl/gettext.h, gl/m4/alloca.m4, - gl/m4/codeset.m4, gl/m4/eoverflow.m4, gl/m4/error.m4, - gl/m4/getline.m4, gl/m4/getndelim2.m4, gl/m4/getpass.m4, - gl/m4/gettext.m4, gl/m4/glibc21.m4, gl/m4/gnulib.m4, - gl/m4/iconv.m4, gl/m4/intdiv0.m4, gl/m4/intmax.m4, - gl/m4/intmax_t.m4, gl/m4/inttypes-pri.m4, gl/m4/inttypes.m4, - gl/m4/inttypes_h.m4, gl/m4/isc-posix.m4, gl/m4/lcmessage.m4, - gl/m4/lib-ld.m4, gl/m4/lib-link.m4, gl/m4/lib-prefix.m4, - gl/m4/longdouble.m4, gl/m4/longlong.m4, gl/m4/nls.m4, gl/m4/po.m4, - gl/m4/printf-posix.m4, gl/m4/progtest.m4, gl/m4/signed.m4, - gl/m4/size_max.m4, gl/m4/snprintf.m4, gl/m4/ssize_t.m4, - gl/m4/stdbool.m4, gl/m4/stdint_h.m4, gl/m4/strerror_r.m4, - gl/m4/uintmax_t.m4, gl/m4/ulonglong.m4, gl/m4/vasnprintf.m4, - gl/m4/wchar_t.m4, gl/m4/wint_t.m4, gl/m4/xsize.m4, gl/size_max.h: - Update. - -2005-01-25 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2005-01-24 Simon Josefsson - - * tests/Makefile.am, tests/anonself.c, tests/chain, - tests/openssl.c, tests/pkcs12_neon, tests/simple.c, tests/utils.c, - tests/utils.h: Clean up license templates. - -2005-01-24 Simon Josefsson - - * tests/Makefile.am: Clean up license templates. - -2005-01-24 Simon Josefsson - - * Makefile.am, configure.in, doc/Makefile.am, lib/Makefile.am, - lib/gnutls.pc.in, lib/x509/Makefile.am, lib/x509/common.h, - lib/x509/compat.h, lib/x509/crq.h, lib/x509/dn.h, lib/x509/dsa.h, - lib/x509/extensions.h, lib/x509/mpi.h, lib/x509/pkcs12.h, - lib/x509/pkcs7.h, lib/x509/privkey.h, lib/x509/rfc2818.h, - lib/x509/sign.h, lib/x509/verify.h, lib/x509/x509.h, - libextra/Makefile.am, libextra/gnutls-extra.pc.in, - libextra/gnutls_extra.h, libextra/openssl_compat.h: Clean up license - templates. - -2005-01-24 Simon Josefsson - - * lib/gnutls.pc.in: Clean up license templates. - -2005-01-24 Simon Josefsson - - * lib/Makefile.am, lib/gnutls_int_compat.c: Remove - gnutls_int_compat.c (not used). - -2005-01-24 Simon Josefsson - - * lib/Makefile.am, lib/auth_anon.h, lib/auth_cert.h, - lib/auth_dh_common.h, lib/auth_srp.h, lib/auth_srp_passwd.h, - lib/debug.h, lib/defines.h, lib/ext_cert_type.h, - lib/ext_max_record.h, lib/ext_server_name.h, lib/ext_srp.h, - lib/gnutls.h.in.in, lib/gnutls_alert.h, lib/gnutls_algorithms.h, - lib/gnutls_auth.h, lib/gnutls_auth_int.h, lib/gnutls_buffer.h, - lib/gnutls_buffers.h, lib/gnutls_cert.h, lib/gnutls_cipher.h, - lib/gnutls_cipher_int.h, lib/gnutls_compress.h, - lib/gnutls_compress_int.h, lib/gnutls_constate.h, - lib/gnutls_datum.h, lib/gnutls_db.h, lib/gnutls_dh.h, - lib/gnutls_errors.h, lib/gnutls_errors_int.h, - lib/gnutls_extensions.h, lib/gnutls_global.h, - lib/gnutls_handshake.h, lib/gnutls_hash_int.h, lib/gnutls_int.h, - lib/gnutls_kx.h, lib/gnutls_mem.h, lib/gnutls_mpi.h, - lib/gnutls_num.h, lib/gnutls_pk.h, lib/gnutls_priority.h, - lib/gnutls_random.h, lib/gnutls_record.h, lib/gnutls_rsa_export.h, - lib/gnutls_session.h, lib/gnutls_session_pack.h, lib/gnutls_sig.h, - lib/gnutls_srp.h, lib/gnutls_state.h, lib/gnutls_str.h, - lib/gnutls_ui.h, lib/gnutls_v2_compat.h, lib/gnutls_x509.h, - lib/io_debug.h, lib/strfile.h, lib/x509_b64.c, lib/x509_b64.h: Clean - up license templates. - -2005-01-24 Simon Josefsson - - * lib/auth_anon.h, lib/auth_cert.h, lib/auth_dh_common.h, - lib/auth_srp.h, lib/auth_srp_passwd.h, lib/debug.h, lib/defines.h, - lib/ext_cert_type.h, lib/ext_max_record.h, lib/ext_server_name.h, - lib/ext_srp.h, lib/gnutls_alert.h, lib/gnutls_algorithms.h, - lib/gnutls_auth.h, lib/gnutls_auth_int.h, lib/gnutls_buffer.h, - lib/gnutls_buffers.h, lib/gnutls_cert.h, lib/gnutls_cipher.h, - lib/gnutls_cipher_int.h, lib/gnutls_compress.h, - lib/gnutls_compress_int.h, lib/gnutls_constate.h, - lib/gnutls_datum.h, lib/gnutls_db.h, lib/gnutls_dh.h, - lib/gnutls_errors.h, lib/gnutls_errors_int.h, - lib/gnutls_extensions.h, lib/gnutls_global.h, - lib/gnutls_handshake.h, lib/gnutls_hash_int.h, lib/gnutls_int.h, - lib/gnutls_kx.h, lib/gnutls_mem.h, lib/gnutls_mpi.h, - lib/gnutls_num.h, lib/gnutls_pk.h, lib/gnutls_priority.h, - lib/gnutls_random.h, lib/gnutls_record.h, lib/gnutls_rsa_export.h, - lib/gnutls_session.h, lib/gnutls_session_pack.h, lib/gnutls_sig.h, - lib/gnutls_srp.h, lib/gnutls_state.h, lib/gnutls_str.h, - lib/gnutls_ui.h, lib/gnutls_v2_compat.h, lib/gnutls_x509.h, - lib/io_debug.h, lib/memmem.h, lib/strfile.h, lib/x509_b64.h: Clean - up license templates. - -2005-01-24 Simon Josefsson - - * lib/debug.c, lib/ext_server_name.c: File is LGPL. - -2005-01-22 Simon Josefsson - - * includes/gnutls/extra.h, includes/gnutls/openpgp.h, - includes/gnutls/openssl.h, includes/gnutls/pkcs12.h, - includes/gnutls/x509.h: Clean up license templates. - -2005-01-22 Simon Josefsson - - * libextra/openpgp/compat.c, libextra/openpgp/extras.c, - libextra/openpgp/pgp.c, libextra/openpgp/pgpverify.c, - libextra/openpgp/privkey.c, libextra/openpgp/xml.c, - libextra/openssl_compat.c: Clean up license templates. - -2005-01-22 Simon Josefsson - - * lib/x509/common.c, lib/x509/compat.c, lib/x509/crl.c, - lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/dn.c, - lib/x509/dsa.c, lib/x509/extensions.c, lib/x509/mpi.c, - lib/x509/pkcs12.c, lib/x509/pkcs12_bag.c, lib/x509/pkcs12_encr.c, - lib/x509/pkcs7.c, lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, - lib/x509/rfc2818_hostname.c, lib/x509/sign.c, lib/x509/verify.c, - lib/x509/x509.c, lib/x509/x509_write.c, lib/x509/xml.c, - libextra/gnutls_extra.c, libextra/gnutls_openpgp.c, - libextra/gnutls_openssl.c, libextra/openssl_compat.c: Clean up - license templates. - -2005-01-22 Simon Josefsson - - * lib/auth_anon.c, lib/auth_cert.c, lib/auth_dh_common.c, - lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, - lib/auth_srp.c, lib/auth_srp_passwd.c, lib/auth_srp_rsa.c, - lib/auth_srp_sb64.c, lib/debug.c, lib/ext_cert_type.c, - lib/ext_max_record.c, lib/ext_server_name.c, lib/ext_srp.c, - lib/gnutls_alert.c, lib/gnutls_algorithms.c, - lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_buffers.c, - lib/gnutls_cert.c, lib/gnutls_cipher.c, lib/gnutls_cipher_int.c, - lib/gnutls_compress.c, lib/gnutls_compress_int.c, - lib/gnutls_constate.c, lib/gnutls_datum.c, lib/gnutls_db.c, - lib/gnutls_dh.c, lib/gnutls_dh_primes.c, lib/gnutls_errors.c, - lib/gnutls_extensions.c, lib/gnutls_global.c, - lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_int.h, - lib/gnutls_kx.c, lib/gnutls_mem.c, lib/gnutls_mpi.c, - lib/gnutls_num.c, lib/gnutls_num.h, lib/gnutls_pk.c, - lib/gnutls_priority.c, lib/gnutls_random.c, lib/gnutls_record.c, - lib/gnutls_rsa_export.c, lib/gnutls_session.c, - lib/gnutls_session.h, lib/gnutls_session_pack.c, lib/gnutls_sig.c, - lib/gnutls_srp.c, lib/gnutls_state.c, lib/gnutls_str.c, - lib/gnutls_ui.c, lib/gnutls_v2_compat.c, lib/gnutls_x509.c, - lib/x509_b64.c: Clean up license templates. - -2005-01-21 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c, src/certtool.c: some cleanups. - -2005-01-21 Nikos Mavrogiannopoulos - - * NEWS, includes/gnutls/x509.h, lib/gnutls.h.in.in, - lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/mpi.c, - lib/x509/mpi.h, lib/x509/sign.c, lib/x509/sign.h, - lib/x509/x509_write.c, src/certtool-gaa.c, src/certtool-gaa.h, - src/certtool.c, src/certtool.gaa: introduced - gnutls_x509_crt_sign2(), gnutls_x509_crq_sign2() and - gnutls_x509_crl_sign2(). Also added the --hash option to certtool in - order to be able to generate certificates signed with different hash - algorithms. - -2005-01-21 Nikos Mavrogiannopoulos - - * lib/auth_cert.c, lib/gnutls.h.in.in, lib/gnutls_handshake.c, - lib/gnutls_int.h: changed the values of GNUTLS_PK_UNKNOWN and - GNUTLS_SIGN_UNKNOWN to zero. - -2005-01-21 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2005-01-21 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/gnutls_algorithms.c, - lib/gnutls_algorithms.h, lib/gnutls_int.h, lib/x509/common.c, - lib/x509/common.h, lib/x509/x509.h: Simplified the algorithm to OID - and vice versa functions, and added the RSA-RMD160 and the RMD160 - OID. - -2005-01-20 Nikos Mavrogiannopoulos - - * lib/x509/crq.c, lib/x509/dn.c, lib/x509/pkcs12.c, - lib/x509/pkcs7.c, lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, - lib/x509/x509.c: updated documentation - -2005-01-20 Nikos Mavrogiannopoulos - - * lib/x509/privkey_pkcs8.c: [no log message] - -2005-01-20 Nikos Mavrogiannopoulos - - * libextra/openssl_compat.c: These compatibility functions will no - longer show up in the documentation. - -2005-01-20 Nikos Mavrogiannopoulos - - * doc/protocol/draft-rescorla-dtls-00.txt, - doc/protocol/draft-rescorla-dtls-02.txt: updated dtls draft - -2005-01-19 Simon Josefsson - - * Makefile.am: (ChangeLog): Add --tags. - -2005-01-19 Nikos Mavrogiannopoulos - - * src/tests.c: increased a buffer. - -2005-01-18 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2005-01-18 Simon Josefsson - - * Makefile.am: (release): Fix. - -2005-01-18 Simon Josefsson - - * ChangeLog: [no log message] - -2005-01-18 Simon Josefsson - - * NEWS: Version 1.1.23. - -2005-01-18 Simon Josefsson - - * NEWS: Add. - -2005-01-18 Simon Josefsson - - * src/cli.c: Fix last commit better. - -2005-01-18 Simon Josefsson - - * src/cli.c: Fix client cert callback, to make X.509 client - authentication work. - -2005-01-18 Simon Josefsson - - * Makefile.am: (ChangeLog): Make it more like FSF format. - -2005-01-18 Simon Josefsson - - * .cvscopying: Add. - -2005-01-18 Simon Josefsson - - * lib/gnutls_x509.c, src/errcodes.c: Fix warning. - -2005-01-18 Simon Josefsson - - * NEWS: Add. - -2005-01-18 Simon Josefsson - - * lib/minitasn1/coding.c, lib/minitasn1/decoding.c, - lib/minitasn1/element.c, lib/minitasn1/errors.c, - lib/minitasn1/int.h, lib/minitasn1/libtasn1.h, - lib/minitasn1/parser_aux.c, lib/minitasn1/structure.c: Sync with - libtasn1 0.2.13. - -2005-01-18 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2005-01-16 Simon Josefsson - - * NEWS: Fix. - -2005-01-15 Simon Josefsson - - * doc/protocol/draft-hajjeh-tls-sign-00.txt: Add. - -2005-01-15 Simon Josefsson - - * doc/README.CVS: Fix. - -2005-01-15 Nikos Mavrogiannopoulos - - * src/tests.c, src/tests.h, src/tls_test.c: added a check in verbose - mode to print the HTTPS server's name. - -2005-01-15 Nikos Mavrogiannopoulos - - * src/tls_test.c: [no log message] - -2005-01-15 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2005-01-15 Nikos Mavrogiannopoulos - - * src/certtool.c: print RSA and DSA parameters in both certificates - and private keys. - -2005-01-07 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2005-01-07 Simon Josefsson - - * NEWS: Add. - -2005-01-07 Simon Josefsson - - * lib/x509/common.c: (_gnutls_x509_data2hex): Make sure bin2hex will convert entire - string first, because bin2hex will not return NULL any longer. - -2005-01-07 Simon Josefsson - - * lib/gnutls_constate.c: (_gnutls_set_keys): Use larger buffer, to hold entire hex output. - Reported by Michael.Ringe@aachen.utimaco.de. - -2005-01-07 Simon Josefsson - - * lib/gnutls_kx.c: (generate_normal_master): Use larger buffer, to hold entire hex - output. Reported by Michael.Ringe@aachen.utimaco.de. - -2005-01-07 Simon Josefsson - - * THANKS: Add. - -2005-01-07 Simon Josefsson - - * lib/gnutls_str.c: (_gnutls_bin2hex): Return truncated string instead of NULL, to make - it easier to use directly as a parameter to printf. Reported by - Michael.Ringe@aachen.utimaco.de. - -2005-01-05 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2005-01-05 Simon Josefsson - - * NEWS: Add. - -2005-01-05 Simon Josefsson - - * THANKS: Add. - -2005-01-05 Simon Josefsson - - * lib/x509/dn.c: (_gnutls_x509_parse_dn): Return buffer size, not string size, in - *sizeof_buf. Reported by Martin Lambers . - -2005-01-05 Simon Josefsson - - * doc/README.CVS: Add gtk-doc URLs. - -2005-01-05 Simon Josefsson - - * doc/README.CVS: Fix gtk-doc stuff. - -2004-12-30 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-12-30 Simon Josefsson - - * doc/protocol/draft-ietf-tls-rfc3546bis-00.txt: Add. - -2004-12-27 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2004-12-26 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-12-26 Simon Josefsson - - * doc/README.CVS: Update. - -2004-12-26 Simon Josefsson - - * nettle/tests/.cvsignore: [no log message] - -2004-12-26 Simon Josefsson - - * nettle/Makefile.am, nettle/tests/md2-test.c: Add MD2. - -2004-12-26 Simon Josefsson - - * nettle/Makefile.am, nettle/md2-meta.c, nettle/md2.c, - nettle/md2.h, nettle/md5-compat.c, nettle/md5-compat.h, - nettle/tests/Makefile.am, nettle/tests/md5-compat-test.c: Remove - md5-compat (not used). - -2004-12-26 Simon Josefsson - - * THANKS: Add. - -2004-12-26 Simon Josefsson - - * crypto/gc-libgcrypt.c, crypto/gc.h: Add MD2 support, tiny patch - from Martin Kostner. - -2004-12-26 Simon Josefsson - - * lib/minitasn1/.cvsignore: [no log message] - -2004-12-26 Simon Josefsson - - * gl/alloca_.h, gl/progname.c, gl/progname.h: Update. - -2004-12-17 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-12-17 Simon Josefsson - - * doc/protocol/draft-ietf-tls-psk-05.txt: Add. - -2004-12-16 Nikos Mavrogiannopoulos - - * THANKS: [no log message] - -2004-12-15 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-12-15 Nikos Mavrogiannopoulos - - * NEWS, lib/x509/pkcs12.c: [no log message] - -2004-12-15 Nikos Mavrogiannopoulos - - * lib/x509/common.c: [no log message] - -2004-12-15 Nikos Mavrogiannopoulos - - * lib/x509/common.c: corrected bug in gnutls_x509_set_time() - -2004-12-15 Nikos Mavrogiannopoulos - - * doc/gnutls.texi: some additions for certtool - -2004-12-15 Nikos Mavrogiannopoulos - - * doc/gnutls.texi: added documentation for the export/import to - pkcs3 and pkcs1 formats for RSA and DH parameters. - -2004-12-15 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c, lib/x509/verify.c, libextra/gnutls_openssl.c, - src/certtool.c: Corrected bugs found by Marcin Garski - - -2004-12-14 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-12-14 Simon Josefsson - - * doc/TODO: Fix. - -2004-12-09 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-12-09 Simon Josefsson - - * doc/protocol/draft-ietf-tls-kerb-01.txt: Add. - -2004-12-09 Simon Josefsson - - * doc/protocol/draft-ietf-tls-rfc2246-bis-09.txt: Add. - -2004-12-07 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-12-07 Simon Josefsson - - * doc/protocol/draft-ietf-tls-ecc-07.txt: Add. - -2004-12-01 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-12-01 Nikos Mavrogiannopoulos - - * NEWS, lib/pkix_asn1_tab.c, lib/x509/verify.c: The certificate - chain verification function now checks certificates in the reverse - order to minimize the resources spent. This has not be thoroughtly - tested. - -2004-11-29 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-11-29 Simon Josefsson - - * doc/protocol/draft-ietf-tls-psk-04.txt: Add. - -2004-11-25 Nikos Mavrogiannopoulos - - * lib/x509/dn.c: corrected bug in parse_dn_oid(). Traced and - reported by Pelle Johansson. - -2004-11-23 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-11-23 Simon Josefsson - - * doc/protocol/rfc3943.txt: Add. - -2004-11-19 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-11-19 Simon Josefsson - - * lib/gnutls_ui.c: Doc fix. - -2004-11-17 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-11-17 Simon Josefsson - - * doc/TODO: Add. - -2004-11-16 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-11-16 Simon Josefsson - - * doc/protocol/draft-ietf-tls-psk-03.txt: Add. - -2004-11-16 Simon Josefsson - - * doc/TODO: Add. - -2004-11-14 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-11-12 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-11-11 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-11-11 Nikos Mavrogiannopoulos - - * lib/minitasn1/coding.c, lib/minitasn1/decoding.c, - lib/minitasn1/parser_aux.c, lib/minitasn1/structure.c: updated to - the new libtasn1. - -2004-11-11 Nikos Mavrogiannopoulos - - * lib/x509/extensions.c: [no log message] - -2004-11-10 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2004-11-10 Nikos Mavrogiannopoulos - - * lib/x509/extensions.c: corrected CRL dist points handling. - -2004-11-10 Nikos Mavrogiannopoulos - - * lib/x509/extensions.c: corrected a sigsegv when writing CRL - distribution points. It does not work properly though. - -2004-11-09 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-11-08 Simon Josefsson - - * NEWS: Add. - -2004-11-08 Simon Josefsson - - * src/certtool.c: Make private key optional in --to-p12, suggested - by Fabian Fagerholm . - -2004-11-04 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-11-04 Simon Josefsson - - * crypto/gc.h: Cleanup. Add PKs. - -2004-11-04 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2004-11-04 Simon Josefsson - - * ChangeLog: [no log message] - -2004-11-04 Simon Josefsson - - * NEWS: Version 1.1.22. - -2004-11-04 Simon Josefsson - - * NEWS: Fix. - -2004-11-04 Simon Josefsson - - * NEWS: Add. - -2004-11-04 Simon Josefsson - - * libextra/openpgp/Makefile.am: Need minitasn1 -I's. - -2004-11-04 Simon Josefsson - - * gl/getpass.c, gl/m4/getpass.m4: Update. - -2004-11-04 Simon Josefsson - - * AUTHORS: Add link to PGP key. - -2004-11-03 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-11-03 Simon Josefsson - - * libextra/Makefile.am: Forgot a source file. - -2004-11-03 Simon Josefsson - - * libextra/Makefile.am: Remove leftovers. - -2004-11-03 Simon Josefsson - - * libextra/opencdk/.cvsignore: Fix. - -2004-11-03 Simon Josefsson - - * libextra/Makefile.am, libextra/opencdk/Makefile.am, - libextra/openpgp/Makefile.am: Use convenience libraries for openpgp/ - and opencdk/. - -2004-11-03 Simon Josefsson - - * lib/Makefile.am: Use LDFLAGS instead of LIBADD, for - $(LIBTASN1_LIBS). - -2004-11-03 Simon Josefsson - - * libextra/Makefile.am: Simplify. - -2004-11-03 Simon Josefsson - - * libextra/Makefile.am: Need libtasn1 for libgnutls-openssl. - -2004-11-03 Simon Josefsson - - * lib/minitasn1/Makefile.am: Add -I for alloca.h in gl (why wasn't - this needed before?). - -2004-11-03 Simon Josefsson - - * NEWS: Fix. - -2004-11-03 Simon Josefsson - - * NEWS: Add. - -2004-10-31 Simon Josefsson - - * doc/reference/.cvsignore: [no log message] - -2004-10-31 Simon Josefsson - - * doc/reference/gnutls.types: Remove. - -2004-10-30 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-10-30 Simon Josefsson - - * lib/minitasn1/decoding.c, lib/minitasn1/errors.c, - lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, - lib/minitasn1/structure.c: GTK-DOC fixes. - -2004-10-30 Simon Josefsson - - * includes/gnutls/openpgp.h: GTK-DOC fixes. - -2004-10-30 Simon Josefsson - - * lib/x509/crl.c, lib/x509/x509_write.c: Doc fix. - -2004-10-30 Simon Josefsson - - * lib/minitasn1/structure.c: GTK-DOC fix. - -2004-10-30 Simon Josefsson - - * doc/gnutls.texi: Editorial fixes. - -2004-10-30 Simon Josefsson - - * src/errcodes.c: Fix. - -2004-10-30 Simon Josefsson - - * libextra/Makefile.am: No need for libgnutls-extra.vers. - -2004-10-30 Simon Josefsson - - * tests/.cvsignore: [no log message] - -2004-10-30 Simon Josefsson - - * libextra/Makefile.am: Need libgc.la for libgnutls_openssl. - -2004-10-30 Simon Josefsson - - * tests/Makefile.am: Add openssl self test. - -2004-10-30 Simon Josefsson - - * tests/openssl.c: Add. - -2004-10-30 Simon Josefsson - - * includes/gnutls/openssl.h: Declare MD_CTX. Add MD5_DIGEST_LENGTH. - -2004-10-30 Simon Josefsson - - * libextra/gnutls_openssl.c: Remove MD_CTX (should never have been - here). - -2004-10-30 Simon Josefsson - - * NEWS: Add. - -2004-10-30 Simon Josefsson - - * NEWS: Add. - -2004-10-30 Simon Josefsson - - * includes/gnutls/openssl.h, libextra/gnutls_openssl.c: Port openssl - glue to generic crypto API. - -2004-10-30 Simon Josefsson - - * tests/simple.c: Fix. - -2004-10-30 Simon Josefsson - - * lib/Makefile.am: Recurse into minitasn1/. - -2004-10-30 Simon Josefsson - - * lib/Makefile.am: Remove libgnutls.vers. - -2004-10-30 Simon Josefsson - - * lib/Makefile.am: Use AM_CPPFLAGS instead of obsoleted INCLUDES. - Use only one of -Iminitasn1 or $(LIBTASN1_CFLAGS), depending on - ENABLE_MINITASN1. Link with minitasn1/libminitasn1.la, instead of - building files here. Don't use $(LIBTASN1_LIBS) unless - ENABLE_MINITASN1. - -2004-10-30 Simon Josefsson - - * lib/minitasn1/Makefile.am: Build library in this directory. - -2004-10-30 Simon Josefsson - - * lib/Makefile.am: Put .la libraries in LIBADD, not LDFLAGS, as - recommended. - -2004-10-29 Simon Josefsson - - * lib/Makefile.am, lib/x509/Makefile.am: Build x509 files inside - x509/, to avoid scattering *.o and *.lo for every file in x509/ in - lib/. - -2004-10-29 Simon Josefsson - - * buildconf: Fix. - -2004-10-29 Simon Josefsson - - * src/Makefile.am: Remove SERV_LIBS (not used). - -2004-10-29 Simon Josefsson - - * configure.in: Use AS_HELP_STRING. Remove SERV_LIBS (unused). - Various indentation and cleanup. - -2004-10-29 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-10-29 Simon Josefsson - - * doc/TODO: Add. - -2004-10-29 Simon Josefsson - - * NEWS, configure.in, lib/Makefile.am, lib/libgnutls.vers, - libextra/Makefile.am, libextra/libgnutls-extra.vers: Replace GNU LD - version script with Libtool -export-symbols-regex, tiny patch from - Joe Orton . - -2004-10-28 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-10-28 Simon Josefsson - - * THANKS: Add. - -2004-10-28 Simon Josefsson - - * lib/minitasn1/coding.c, lib/minitasn1/decoding.c, - lib/minitasn1/element.c, lib/minitasn1/errors.c, - lib/minitasn1/errors.h, lib/minitasn1/errors_int.h, - lib/minitasn1/gstr.c, lib/minitasn1/gstr.h, lib/minitasn1/int.h, - lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c: Doc fixes, - from Martijn Koster . - -2004-10-28 Simon Josefsson - - * lib/minitasn1/structure.c: GTK-DOC fix. - -2004-10-28 Simon Josefsson - - * NEWS: Add. - -2004-10-28 Simon Josefsson - - * lib/ext_server_name.c, lib/gnutls_alert.c, - lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_buffers.c, - lib/gnutls_cert.c, lib/gnutls_db.c, lib/gnutls_handshake.c, - lib/gnutls_priority.c, lib/gnutls_record.c, lib/gnutls_session.c, - lib/gnutls_srp.c, lib/gnutls_state.c, lib/gnutls_ui.c, - lib/gnutls_x509.c, lib/minitasn1/structure.c, - libextra/gnutls_openpgp.c: Doc fix. - -2004-10-28 Simon Josefsson - - * doc/reference/Makefile.am: Reenable --sgml-mode. - -2004-10-28 Simon Josefsson - - * doc/scripts/gdoc: Change struct-marker & to #, to align with - modern GTK-DOC. Improve texinfo and man output. - -2004-10-28 Simon Josefsson - - * lib/gnutls_int.h, lib/gnutls_ui.h, libextra/gnutls_openpgp.c, - libextra/minilzo.c, libextra/openpgp/gnutls_openpgp.h, src/serv.c: - Indent. - -2004-10-28 Simon Josefsson - - * Makefile.am: Fix. - -2004-10-28 Simon Josefsson - - * lib/auth_anon.h, lib/auth_cert.c, lib/auth_cert.h, - lib/auth_dh_common.c, lib/auth_dh_common.h, lib/auth_rsa.c, - lib/auth_rsa_export.c, lib/auth_srp.h, lib/auth_srp_passwd.c, - lib/auth_srp_passwd.h, lib/ext_server_name.c, - lib/ext_server_name.h, lib/ext_srp.h, lib/gnutls_algorithms.c, - lib/gnutls_algorithms.h, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, - lib/gnutls_auth.h, lib/gnutls_auth_int.h, lib/gnutls_buffers.c, - lib/gnutls_buffers.h, lib/gnutls_cert.c, lib/gnutls_cert.h, - lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, - lib/gnutls_compress_int.c, lib/gnutls_constate.c, - lib/gnutls_datum.c, lib/gnutls_datum.h, lib/gnutls_db.c, - lib/gnutls_db.h, lib/gnutls_dh_primes.c, lib/gnutls_errors.c, - lib/gnutls_errors_int.h, lib/gnutls_extensions.c, - lib/gnutls_global.c, lib/gnutls_handshake.c, - lib/gnutls_handshake.h, lib/gnutls_hash_int.c, - lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_kx.c, - lib/gnutls_kx.h, lib/gnutls_mem.h, lib/gnutls_pk.c, - lib/gnutls_pk.h, lib/gnutls_random.c, lib/gnutls_record.c, - lib/gnutls_record.h, lib/gnutls_rsa_export.c, lib/gnutls_session.h, - lib/gnutls_session_pack.c, lib/gnutls_sig.c, lib/gnutls_sig.h, - lib/gnutls_srp.c, lib/gnutls_srp.h, lib/gnutls_state.c, - lib/gnutls_state.h, lib/gnutls_ui.c, lib/gnutls_ui.h, - lib/gnutls_x509.c, lib/gnutls_x509.h, lib/memmem.c, lib/memmem.h, - lib/x509/common.c, lib/x509/common.h, lib/x509/compat.c, - lib/x509/compat.h, lib/x509/crl.c, lib/x509/crl_write.c, - lib/x509/crq.c, lib/x509/crq.h, lib/x509/dn.c, lib/x509/dn.h, - lib/x509/dsa.h, lib/x509/extensions.c, lib/x509/extensions.h, - lib/x509/mpi.h, lib/x509/pkcs12.c, lib/x509/pkcs12.h, - lib/x509/pkcs12_bag.c, lib/x509/pkcs12_encr.c, lib/x509/pkcs7.c, - lib/x509/pkcs7.h, lib/x509/privkey.c, lib/x509/privkey.h, - lib/x509/privkey_pkcs8.c, lib/x509/sign.c, lib/x509/sign.h, - lib/x509/verify.c, lib/x509/verify.h, lib/x509/x509.c, - lib/x509/x509.h, lib/x509/x509_write.c, lib/x509_b64.c, - libextra/gnutls_extra.h, libextra/gnutls_openpgp.c, - libextra/gnutls_openssl.c, libextra/lzoconf.h, libextra/minilzo.c, - libextra/minilzo.h, libextra/openpgp/compat.c, - libextra/openpgp/extras.c, libextra/openpgp/gnutls_openpgp.h, - libextra/openpgp/openpgp.h, libextra/openpgp/pgpverify.c, - libextra/openssl_compat.c, libextra/openssl_compat.h, - src/certtool-cfg.h, src/certtool.c, src/common.c, src/common.h, - src/list.h, src/serv.c, src/tests.c, src/tests.h: Indent. - -2004-10-28 Simon Josefsson - - * Makefile.am: Add indent target. - -2004-10-28 Simon Josefsson - - * gl/Makefile.am: Update. - -2004-10-27 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-10-27 Simon Josefsson - - * buildconf: Mention --enable-gtk-doc. - -2004-10-27 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2004-10-27 Simon Josefsson - - * Makefile.am: Fix release target for new GTK-DOC. - -2004-10-27 Simon Josefsson - - * ChangeLog: [no log message] - -2004-10-27 Simon Josefsson - - * NEWS: Version 1.1.21. - -2004-10-27 Simon Josefsson - - * buildconf: Run gtkdocize. - -2004-10-27 Simon Josefsson - - * doc/reference/.cvsignore: Rewrite. - -2004-10-27 Simon Josefsson - - * doc/reference/gnutls-docs.tmpl: Remove. - -2004-10-27 Simon Josefsson - - * doc/reference/Makefile.am, doc/reference/gnutls-docs.sgml: Add - opencdk and libtasn1 to GTK-DOC manual. - -2004-10-27 Simon Josefsson - - * doc/reference/Makefile.am: Rewrite, GTK-DOC from CVS (plus - patches) seem to work reasonably well now. - -2004-10-27 Simon Josefsson - - * doc/reference/gnutls-docs.sgml: Add. - -2004-10-27 Simon Josefsson - - * lib/x509/common.c: Make it compile. - -2004-10-27 Simon Josefsson - - * tests/Makefile.am: Dist *.p12. - -2004-10-27 Simon Josefsson - - * doc/reference/.cvsignore: [no log message] - -2004-10-27 Nikos Mavrogiannopoulos - - * lib/x509/pkcs12_encr.c: allow for NULL and empty passwords in - pkcs12 string to key - -2004-10-27 Nikos Mavrogiannopoulos - - * lib/x509/pkcs12_encr.c: [no log message] - -2004-10-27 Nikos Mavrogiannopoulos - - * lib/x509/pkcs12_encr.c, lib/x509/privkey_pkcs8.c: [no log message] - -2004-10-26 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-10-26 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c: some minor fixes. - -2004-10-25 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-10-25 Simon Josefsson - - * NEWS: Add. - -2004-10-25 Simon Josefsson - - * configure.in: Move LIBS (i.e., -lz) to end of LIBGNUTLS_LIBS, to - fix libgnutls*-config --libs output, reported by Yoann - Vandoorselaere . - -2004-10-25 Simon Josefsson - - * doc/reference/Makefile.am: Revert to my own Makefile.am for now. - -2004-10-24 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-10-24 Simon Josefsson - - * AUTHORS: Resign PGP key. - -2004-10-24 Simon Josefsson - - * doc/reference/Makefile.am: Fix. - -2004-10-24 Simon Josefsson - - * doc/reference/Makefile.am: Fix. - -2004-10-24 Simon Josefsson - - * doc/reference/Makefile.am: Rewrite, align with upstream - recommendations. - -2004-10-24 Simon Josefsson - - * doc/reference/gnutls.types: Add. - -2004-10-24 Simon Josefsson - - * NEWS: Add. - -2004-10-24 Simon Josefsson - - * tests/Makefile.am, tests/pkcs12_neon: Add. Test vectors from Joe - Orton , by permission - (<20041024155032.GB26275@manyfish.co.uk>). - -2004-10-24 Simon Josefsson - - * NEWS, THANKS: Add. - -2004-10-24 Simon Josefsson - - * lib/gnutls_x509.c: (gnutls_certificate_set_x509_trust): Fix memory bug, tiny patch by - Aleix Conchillo Flaque . - -2004-10-24 Simon Josefsson - - * lib/.cvsignore, libextra/.cvsignore: [no log message] - -2004-10-24 Simon Josefsson - - * NEWS, THANKS, configure.in, lib/Makefile.am, lib/gnutls.pc.in, - libextra/Makefile.am, libextra/gnutls-extra.pc.in: Add pkg-config - meta files, suggested by Stéphane LOEUILLET - . - -2004-10-24 Simon Josefsson - - * doc/manpages/Makefile.am: Generated. - -2004-10-24 Simon Josefsson - - * NEWS, THANKS, lib/libgnutls-config.in, - libextra/libgnutls-extra-config.in: Add parameter --la-file to - libgnutls-config and libgnutls-extra-config, tiny patch contributed - by Joe Orton . - -2004-10-20 Nikos Mavrogiannopoulos - - * lib/x509/common.c: print teletex strings if they contain only - ASCII characters. - -2004-10-18 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-10-17 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2004-10-17 Nikos Mavrogiannopoulos - - * lib/x509/dn.c: corrected bug in _gnutls_x509_get_dn_oid(). - -2004-10-14 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2004-10-14 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2004-10-13 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-10-13 Nikos Mavrogiannopoulos - - * NEWS, lib/x509/common.c: [no log message] - -2004-10-13 Nikos Mavrogiannopoulos - - * lib/x509/common.c, lib/x509/common.h, lib/x509/dn.c, - lib/x509/dn.h: print the hex value of the name in certificates with - unknown character sets. - -2004-10-13 Nikos Mavrogiannopoulos - - * doc/protocol/rfc2253.txt: added the LDAP string rfc. - -2004-10-13 Nikos Mavrogiannopoulos - - * lib/x509/common.c, src/certtool.c: some fixes - -2004-10-12 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-10-12 Nikos Mavrogiannopoulos - - * .cvsusers, AUTHORS: [no log message] - -2004-10-12 Nikos Mavrogiannopoulos - - * doc/manpages/Makefile.am, lib/x509/common.c: Increased the - precision in ASN.1 time to seconds from minutes. In certificate - names disallow non UTF8 strings such as UCS-2 and UCS-4. - -2004-10-12 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2004-10-12 Simon Josefsson - - * ChangeLog: [no log message] - -2004-10-12 Simon Josefsson - - * NEWS: Version 1.1.20. - -2004-10-12 Simon Josefsson - - * NEWS: Add. - -2004-10-12 Simon Josefsson - - * NEWS, configure.in: Bump versions. - -2004-10-12 Simon Josefsson - - * gl/getpass.c, gl/snprintf.c, gl/snprintf.h: Update gnulib. - -2004-10-07 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-10-07 Simon Josefsson - - * ChangeLog: [no log message] - -2004-10-07 Simon Josefsson - - * NEWS: Version 1.1.19. - -2004-10-07 Simon Josefsson - - * NEWS: Add. - -2004-10-05 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-10-05 Simon Josefsson - - * NEWS: Fix. - -2004-10-05 Simon Josefsson - - * doc/reference/Makefile.am: (HIGNORE): Add. - -2004-10-05 Simon Josefsson - - * NEWS: Add. - -2004-10-05 Simon Josefsson - - * NEWS: Fix. - -2004-10-05 Simon Josefsson - - * configure.in: Look for memmem, for lib/memmem.c test. - -2004-10-05 Simon Josefsson - - * gl/.cvsignore: [no log message] - -2004-10-05 Simon Josefsson - - * NEWS: Add. - -2004-10-05 Simon Josefsson - - * NEWS: Typo. - -2004-10-05 Simon Josefsson - - * NEWS: Add. - -2004-10-05 Simon Josefsson - - * configure.in, gl/Makefile.am, gl/alloca_.h, gl/asnprintf.c, - gl/m4/alloca.m4, gl/m4/eoverflow.m4, gl/m4/gnulib.m4, - gl/m4/intmax_t.m4, gl/m4/snprintf.m4, gl/m4/vasnprintf.m4, - gl/printf-args.c, gl/printf-args.h, gl/printf-parse.c, - gl/printf-parse.h, gl/snprintf.c, gl/snprintf.h, gl/vasnprintf.c, - gl/vasnprintf.h, gl/xsize.h: Add GNULib module, for missing snprintf - on OSF1 V4.0, reported by Yoann Vandoorselaere - . Note that lib/ does not yet use it. - -2004-10-05 Simon Josefsson - - * includes/gnutls/compat.h, lib/gnutls_ui.h: (gnutls_certificate_verify_peers): Fix prototype. - -2004-10-05 Simon Josefsson - - * includes/gnutls/compat.h: Fix warning. - -2004-10-05 Simon Josefsson - - * src/certtool.c: Don't use exit.h (not needed, EXIT_* is C89). - -2004-10-05 Simon Josefsson - - * NEWS: Add. - -2004-10-05 Simon Josefsson - - * gl/exit.h, gl/m4/extensions.m4, gl/m4/gnulib.m4, - gl/m4/unlocked-io.m4: Update Gnulib. - -2004-10-05 Simon Josefsson - - * configure.in, gl/Makefile.am, gl/m4/gnulib.m4, gl/m4/memmem.m4, - gl/memmem.c, gl/memmem.h, lib/Makefile.am, lib/memmem.c, - lib/memmem.h: Don't link to gnulib in lib/ until issues are solved - (see bug-gnulib). Move memmem from gl/ to lib/, since it is the - only gnulib module lib/ needs. - -2004-10-05 Simon Josefsson - - * NEWS: Add. - -2004-10-05 Simon Josefsson - - * NEWS: Add. - -2004-10-05 Simon Josefsson - - * configure.in, gl/Makefile.am, gl/error.c, gl/getndelim2.c, - gl/getpass.c, gl/m4/gnulib.m4, gl/m4/memmem.m4, gl/m4/memstr.m4, - gl/memmem.c, gl/memmem.h, gl/memstr.c, gl/memstr.h, - gl/unlocked-io.h, lib/defines.h, lib/gnutls_x509.c, lib/x509_b64.c: - Update Gnulib. Replace memstr with memmem, see continued discussion - on bug-gnulib. - -2004-10-04 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-10-04 Simon Josefsson - - * : Add. - -2004-10-01 Simon Josefsson - - * includes/gnutls/compat.h: (gnutls_certificate_verify_peers): Add. - -2004-09-30 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-09-30 Simon Josefsson - - * configure.in, gl/Makefile.am, gl/m4/gnulib.m4, gl/m4/memstr.m4, - gl/m4/strnstr.m4, gl/memstr.c, gl/memstr.h, gl/strnstr.c, - gl/strnstr.h, lib/defines.h, lib/gnutls_x509.c, lib/x509_b64.c: - Replace strnstr with memstr. See discussion on bug-gnulib list. - -2004-09-29 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-09-29 Simon Josefsson - - * lib/Makefile.am: Link with gnulib. Currently only minmax.h and - strnstr are used, which are under LGPL. The license templates in - gl/ will be fixed as soon as gnulib-tool support combined GPL/LGPL - projects. - -2004-09-29 Simon Josefsson - - * configure.in, gl/Makefile.am, gl/m4/gnulib.m4, gl/m4/strnstr.m4, - gl/minmax.h, gl/progname.c, gl/progname.h, gl/strnstr.c, - gl/strnstr.h, lib/Makefile.am, lib/defines.h, lib/strnstr.c: Use - strnstr from gnulib. Gnulib sync. - -2004-09-26 Simon Josefsson - - * gl/minmax.h: Use version from Lesser GNULib. - -2004-09-21 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-09-21 Simon Josefsson - - * THANKS: Add. - -2004-09-21 Simon Josefsson - - * libextra/Makefile.am, libextra/opencdk/main.c: Use gnulib getpass - in opencdk. - -2004-09-19 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-09-19 Simon Josefsson - - * doc/examples/ex-rfc2818.c: Fix. - -2004-09-19 Simon Josefsson - - * doc/examples/ex-rfc2818.c, doc/gnutls.texi: Add. - -2004-09-17 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-09-17 Simon Josefsson - - * NEWS: Add. - -2004-09-17 Simon Josefsson - - * libextra/Makefile.am, src/Makefile.am: Fix objdir != srcdir in -I, - reported by "Gerrit P. Haase" . - -2004-09-17 Simon Josefsson - - * tests/Makefile.am: Fix objdir != srcdir in -I, reported by "Gerrit - P. Haase" . - -2004-09-17 Simon Josefsson - - * THANKS: Add. - -2004-09-17 Simon Josefsson - - * lib/minitasn1/Makefile.am: Fix objdir != srcdir in -I, reported by - "Gerrit P. Haase" . - -2004-09-15 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-09-11 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-09-11 Simon Josefsson - - * NEWS: Add. - -2004-09-10 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-09-10 Simon Josefsson - - * src/certtool.c: (load_cert): Fix crash in `certtool --to-p12 --load-privkey foo'. - -2004-09-09 Simon Josefsson - - * lib/minitasn1/decoding.c: Sync with libtasn1 0.2.11. - -2004-09-02 Simon Josefsson - - * : New version, solve the S/MIME bugs I reported. Downloaded from - http://csrc.nist.gov/pki/testing/x509paths.html on 2004-09-03 with - SHA1 ada0f267e0ff4eb16a0e19964cf518a833f00093. - -2004-09-02 Simon Josefsson - - * tests/.cvsignore: [no log message] - -2004-08-31 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-08-31 Simon Josefsson - - * NEWS: Add. - -2004-08-31 Simon Josefsson - - * THANKS: Add. - -2004-08-31 Simon Josefsson - - * lib/gnutls_cert.c, lib/x509/x509.c: Fix mem leak (tiny patch). - From Simon Posnjak . - -2004-08-27 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-08-27 Simon Josefsson - - * lib/gnutls_state.c: Typo. - -2004-08-26 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-08-26 Simon Josefsson - - * doc/protocol/draft-ietf-tls-srp-08.txt: Add. - -2004-08-25 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-08-25 Simon Josefsson - - * doc/manpages/Makefile.am: Update. - -2004-08-25 Simon Josefsson - - * includes/gnutls/extra.h, lib/gnutls.h.in.in: Move remaining SRP - functions to lib/. - -2004-08-25 Simon Josefsson - - * includes/gnutls/extra.h, lib/gnutls_anon_cred.c, - lib/gnutls_dh_primes.c, lib/gnutls_srp.c, lib/gnutls_ui.c, - lib/gnutls_ui.h: Doc fix. - -2004-08-25 Simon Josefsson - - * includes/gnutls/extra.h, lib/gnutls_alert.c, - libextra/gnutls_extra.c, libextra/gnutls_openpgp.c: Doc fix. - -2004-08-25 Simon Josefsson - - * libextra/openpgp/Makefile.am: Hack to fix texinfo docs. - -2004-08-25 Simon Josefsson - - * includes/gnutls/extra.h, libextra/gnutls_openpgp.c: Fix - prototypes. - -2004-08-25 Simon Josefsson - - * doc/reference/Makefile.am: Add. - -2004-08-25 Simon Josefsson - - * Makefile.am: (release): Copy gtk-doc. - -2004-08-25 Simon Josefsson - - * lib/gnutls.h.in.in, lib/gnutls_global.c, lib/gnutls_ui.c, - lib/gnutls_ui.h: Fix prototypes. - -2004-08-25 Simon Josefsson - - * doc/reference/Makefile.am: Clean more. - -2004-08-25 Simon Josefsson - - * includes/gnutls/x509.h, lib/gnutls.h.in.in, lib/gnutls_ui.h, - lib/x509/pkcs12.c, lib/x509/privkey.c: Fix prototypes. (Unfinished, - there should be a tool to do this...) - -2004-08-25 Simon Josefsson - - * doc/protocol/draft-ietf-tls-psk-01.txt: Add. - -2004-08-24 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-08-24 Simon Josefsson - - * doc/TODO, doc/protocol/draft-badra-tls-express-00.txt, - doc/protocol/draft-salowey-tls-ticket-00.txt: Add. - -2004-08-24 Simon Josefsson - - * NEWS, configure.in: Bump version. - -2004-08-24 Simon Josefsson - - * ChangeLog: [no log message] - -2004-08-24 Simon Josefsson - - * NEWS: Version 1.1.18. - -2004-08-24 Simon Josefsson - - * nettle/arctwo-meta.c, nettle/arctwo.c, nettle/arctwo.h, - nettle/des-compat.c, nettle/des-compat.h, nettle/macros.h, - nettle/nettle-meta.h, nettle/tests/arctwo-test.c, - nettle/tests/des-compat-test.c, nettle/tests/md5-test.c, - nettle/tests/testutils.c: Sync Nettle with CVS. - -2004-08-24 Simon Josefsson - - * nettle/Makefile.am: Build libnettle.la before self tests. - -2004-08-24 Simon Josefsson - - * NEWS: Add. - -2004-08-24 Simon Josefsson - - * NEWS: Add. - -2004-08-24 Simon Josefsson - - * configure.in, nettle/Makefile.am, nettle/knuth-lfib.c, - nettle/knuth-lfib.h, nettle/tests/.cvsignore, - nettle/tests/Makefile.am, nettle/tests/aes-test.c, - nettle/tests/arcfour-test.c, nettle/tests/arctwo-test.c, - nettle/tests/cbc-test.c, nettle/tests/des-compat-test.c, - nettle/tests/des-test.c, nettle/tests/des3-test.c, - nettle/tests/hmac-test.c, nettle/tests/knuth-lfib-test.c, - nettle/tests/md4-test.c, nettle/tests/md5-compat-test.c, - nettle/tests/md5-test.c, nettle/tests/run-tests, - nettle/tests/sha1-test.c, nettle/tests/testutils.c, - nettle/tests/testutils.h: Add Nettle self tests. - -2004-08-24 Simon Josefsson - - * NEWS: Add. - -2004-08-24 Simon Josefsson - - * doc/Makefile.am: Fix. - -2004-08-24 Simon Josefsson - - * doc/README.CVS: Add. - -2004-08-24 Simon Josefsson - - * doc/reference/.cvsignore: [no log message] - -2004-08-24 Simon Josefsson - - * m4/gtk-doc.m4: Update. - -2004-08-24 Simon Josefsson - - * configure.in, doc/Makefile.am, doc/README.CVS, - doc/reference/.cvsignore, doc/reference/Makefile.am, - doc/reference/gnutls-docs.tmpl, m4/gtk-doc.m4: Generate GTK-DOC - manuals (libextra/openpgp/ part doesn't work yet). - -2004-08-24 Simon Josefsson - - * lib/gnutls_algorithms.c: Make gtk-doc happy. - -2004-08-24 Simon Josefsson - - * includes/gnutls/openssl.h, lib/gnutls.h.in.in: Make gtk-doc happy. - -2004-08-23 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-08-23 Simon Josefsson - - * src/cfg/platon/str/strdyn.c: Fix. Reported by Dimitri - Papadopoulos-Orfanos . - -2004-08-23 Simon Josefsson - - * configure.in: Check for ctype.h to shut up Sun CC warnings in - src/cfg/shared.c. Reported by Dimitri Papadopoulos-Orfanos - . - -2004-08-23 Simon Josefsson - - * tests/chain: Fix. - -2004-08-23 Simon Josefsson - - * tests/pkits: Add. - -2004-08-23 Simon Josefsson - - * nettle/arctwo-meta.c, nettle/arctwo.c, nettle/arctwo.h, - nettle/macros.h, nettle/nettle-meta.h: Update. - -2004-08-23 Simon Josefsson - - * NEWS: ISO certify. - -2004-08-23 Simon Josefsson - - * NEWS: Add. - -2004-08-23 Simon Josefsson - - * m4/gc_random.m4: Fix. - -2004-08-23 Simon Josefsson - - * configure.in, m4/gc_random.m4: Move /dev/*random stuff to separate - m4 file. - -2004-08-22 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-08-22 Simon Josefsson - - * AUTHORS: Add copying conditions, and PGP release key. - -2004-08-22 Simon Josefsson - - * README, THANKS: Add copying conditions. - -2004-08-22 Simon Josefsson - - * NEWS: Add copying conditions. Markup. - -2004-08-22 Simon Josefsson - - * NEWS: Add. - -2004-08-22 Simon Josefsson - - * tests/pkits_pkcs12, tests/pkits_smime: Typo. - -2004-08-22 Simon Josefsson - - * lib/minitasn1/int.h: Bump version. - -2004-08-22 Simon Josefsson - - * src/Makefile.am: Remove stale -I. - -2004-08-22 Simon Josefsson - - * lib/minitasn1/libtasn1.h: Bump version. - -2004-08-22 Simon Josefsson - - * tests/.cvsignore: [no log message] - -2004-08-22 Simon Josefsson - - * configure.in: Need newer libtasn1. - -2004-08-22 Simon Josefsson - - * lib/minitasn1/decoding.c: Only apply BER indefinite logic when we - have actually encountered BER indefinite lengths. Pending upstream - review. Triggered by PKITS test case - pkcs12/CPSPointerQualifierTest20EE.p12 (and others) as invoked by - tests/pkits_pkcs12. - -2004-08-22 Simon Josefsson - - * tests/pkits_crl, tests/pkits_crt, tests/pkits_pkcs12, - tests/pkits_smime: Fix. - -2004-08-22 Simon Josefsson - - * src/certtool.c: (print_certificate_info): Don't crash on large X.509 extensions - (thanks to PKITS test suite). Also output ASCII representation of - printable extension data (some extension contain humanly readable - strings). - -2004-08-22 Simon Josefsson - - * tests/pkits_crl, tests/pkits_crt, tests/pkits_smime: Add. - -2004-08-22 Simon Josefsson - - * src/certtool.c: (smime_to_pkcs7): Make sure PKCS#7 output use LF EOL. - -2004-08-22 Simon Josefsson - - * tests/pkits_pkcs12: Add. - -2004-08-22 Simon Josefsson - - * src/certtool.c: (smime_to_pkcs7): Handle LF EOF. - -2004-08-22 Simon Josefsson - - * src/certtool.c: Fix --password. - -2004-08-22 Simon Josefsson - - * : Add NIST's Public Key Interoperability Test Suite. Taken from - . - c8b1230c34f175f0fe479692e65c7ecc04117dfc PKITS_data.zip - e823aa3a8ece752aa7211153312b364dc578e789 PKITS.pdf - -2004-08-22 Simon Josefsson - - * NEWS: Add. - -2004-08-22 Simon Josefsson - - * doc/manpages/Makefile.am: Handle different #include's for PKCS12 - functions. - -2004-08-22 Simon Josefsson - - * .cvsignore: [no log message] - -2004-08-22 Simon Josefsson - - * configure.in: Want gzip too. - -2004-08-22 Simon Josefsson - - * Makefile.am, configure.in: Use bz2. - -2004-08-22 Simon Josefsson - - * NEWS: Add. - -2004-08-22 Simon Josefsson - - * doc/scripts/gdoc: Support -include. - -2004-08-22 Simon Josefsson - - * doc/manpages/Makefile.am: Add man pages for lib/x509/, libextra/, - and libextra/openpgp/. - -2004-08-22 Simon Josefsson - - * doc/manpages/Makefile.am: Add man pages for API. - -2004-08-22 Simon Josefsson - - * doc/manpages/.cvsignore: [no log message] - -2004-08-22 Simon Josefsson - - * crypto/gc-libgcrypt.c, crypto/gc-nettle.c, crypto/gc.h, - crypto/test-gc.c: Mem alloca stuff for libgcrypt. Indent. - -2004-08-22 Simon Josefsson - - * crypto/.cvsignore, crypto/Makefile.am, crypto/test-gc.c, - crypto/utils.c, crypto/utils.h: Add self test of generic crypto. - -2004-08-22 Simon Josefsson - - * crypto/pkcs5.c: Doc fix. - -2004-08-22 Simon Josefsson - - * configure.in, lib/gnutls.h.in.in: Revert ssize_t change. - -2004-08-22 Simon Josefsson - - * configure.in, lib/gnutls.h.in.in: Assume POSIX system (which we - already do), so it has ssize_t. Redefining ssize_t locally, if it - doesn't exist, already handled by gnulib. - -2004-08-22 Simon Josefsson - - * lib/Makefile.am: Simplify further. - -2004-08-22 Simon Josefsson - - * lib/Makefile.am: Simplify further. - -2004-08-22 Simon Josefsson - - * lib/Makefile.am: Move things from EXTRA_DIST, to improve - dependency tracking. - -2004-08-22 Simon Josefsson - - * src/Makefile.am: Move things from EXTRA_DIST to *_SOURCES, to - improve dependency tracking. Simplify. - -2004-08-22 Simon Josefsson - - * crypto/gc-libgcrypt.c: Fix warnings. - -2004-08-21 Simon Josefsson - - * crypto/gc-nettle.c: Add checks. - -2004-08-21 Simon Josefsson - - * lib/Makefile.am, lib/x509/Makefile.am: Remove pkcs5. - -2004-08-21 Simon Josefsson - - * lib/x509/pkcs5.c, lib/x509/pkcs5.h, lib/x509/privkey_pkcs8.c: - Replace PKCS5 with GC. - -2004-08-21 Simon Josefsson - - * crypto/Makefile.am, crypto/gc.h, crypto/pkcs5.c: Add pkcs5 stuff, - replacing lib/x509/pkcs5. - -2004-08-21 Simon Josefsson - - * crypto/gc.h: Typo. - -2004-08-21 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-08-21 Simon Josefsson - - * crypto/gc-libgcrypt.c, crypto/gc-nettle.c, crypto/gc.h: (gc_hmac_sha1): Add (for PKCS5 KDF). - -2004-08-21 Simon Josefsson - - * NEWS: Add. - -2004-08-21 Simon Josefsson - - * crypto/gc-nettle.c, nettle/arctwo-meta.c, nettle/arctwo.c, - nettle/arctwo.h, nettle/nettle-meta.h: Change name of arctwo variant - from 'pkcs12' to 'gutmann'. Seems PKCS12 code uses pure rfc 2268 - (who uses the variant then?!). - -2004-08-21 Simon Josefsson - - * doc/protocol/rrc2.doc: Add. - -2004-08-21 Simon Josefsson - - * nettle/arctwo.c: Typo. - -2004-08-21 Simon Josefsson - - * nettle/arctwo.c: Support plain RFC 2268 too. - -2004-08-21 Simon Josefsson - - * doc/TODO: Add. - -2004-08-21 Nikos Mavrogiannopoulos - - * lib/x509/privkey.c: Corrected a memory leak. Patch got from debian - bug report logs. Reported by Modestas Vainius - . - -2004-08-21 Simon Josefsson - - * nettle/arctwo.c: Fix. - -2004-08-21 Simon Josefsson - - * nettle/arctwo.c: Fix. - -2004-08-21 Nikos Mavrogiannopoulos - - * lib/x509/common.c: corrected bug with generalTime ASN.1 encoding. - -2004-08-21 Simon Josefsson - - * crypto/gc-nettle.c, nettle/Makefile.am, nettle/arctwo-meta.c, - nettle/arctwo.c, nettle/arctwo.h, nettle/nettle-meta.h: Add arctwo. - -2004-08-21 Simon Josefsson - - * crypto/gc.h: (GC_SHA1_LEN): Add. - -2004-08-21 Simon Josefsson - - * lib/x509/pkcs12_encr.c: Fix. - -2004-08-21 Simon Josefsson - - * lib/x509/pkcs12_encr.c: Use gc. - -2004-08-21 Simon Josefsson - - * crypto/gc-libgcrypt.c, crypto/gc-nettle.c, crypto/gc.h: (gc_hash_buffer): Add. - -2004-08-21 Simon Josefsson - - * tests/chain: Cleanup. - -2004-08-21 Simon Josefsson - - * tests/chain: Add CRL's. - -2004-08-21 Simon Josefsson - - * tests/.cvsignore: [no log message] - -2004-08-21 Simon Josefsson - - * NEWS, tests/Makefile.am, tests/anonself.c: Add. - -2004-08-21 Simon Josefsson - - * configure.in: Bump version. - -2004-08-21 Simon Josefsson - - * NEWS: Add. - -2004-08-21 Simon Josefsson - - * doc/gnutls.texi: Add examples. - -2004-08-21 Simon Josefsson - - * doc/examples/.cvsignore: [no log message] - -2004-08-21 Simon Josefsson - - * doc/examples/ex-client2.c, doc/examples/ex-serv1.c: Doc fix. - -2004-08-21 Simon Josefsson - - * doc/examples/ex-client1.c, doc/examples/ex-serv-anon.c: Add. - -2004-08-21 Simon Josefsson - - * doc/gnutls.texi: Markup. - -2004-08-21 Simon Josefsson - - * configure.in: Enable gnits in automake. - -2004-08-21 Simon Josefsson - - * configure.in: Allow AC_PROG_CC to modify CFLAGS (why not?). Don't - check for install (handled by automake). - -2004-08-20 Simon Josefsson - - * configure.in: Simplify shared library versioning. - -2004-08-20 Simon Josefsson - - * libextra/gnutls_extra.c: Use automake VERSION. - -2004-08-20 Simon Josefsson - - * libextra/Makefile.am, libextra/opencdk/armor.c: Fix version - number. - -2004-08-20 Simon Josefsson - - * lib/gnutls_global.c: Use automake VERSION instead of - GNUTLS_VERSION. - -2004-08-20 Simon Josefsson - - * configure.in: Use modern AC_INIT. Remove GNUTLS_*VERSION. - Separate libtool versioning from package versioning. - -2004-08-20 Simon Josefsson - - * Makefile.am: Remove, all are dist'ed by automake automatically. - -2004-08-20 Simon Josefsson - - * configure.in: Typo. - -2004-08-20 Simon Josefsson - - * lib/defines.h: Remove size_t, time_t, ptrdiff_t definitions. - -2004-08-20 Simon Josefsson - - * configure.in: Assume time_t and ptrdiff_t (ANSI C89). - -2004-08-20 Simon Josefsson - - * lib/gnutls.h.in.in: Assume time_t is in time.h (ANSI C89). - -2004-08-20 Simon Josefsson - - * configure.in, lib/gnutls.h.in.in: Assume size_t is in stddef.h - (C89). - -2004-08-20 Simon Josefsson - - * configure.in: (T_CPU, T_VENDOR, T_OS): Remove (unused). - -2004-08-18 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-08-18 Simon Josefsson - - * ChangeLog: [no log message] - -2004-08-18 Simon Josefsson - - * NEWS: Version 1.1.17. - -2004-08-18 Simon Josefsson - - * doc/gnutls.texi: Fix, suggested by Stepan Kasal . - -2004-08-18 Simon Josefsson - - * lib/gnutls_mpi.h: Reorder, to get config.h included before - gcrypt.h. - -2004-08-18 Simon Josefsson - - * doc/gnutls.texi: Revert. - -2004-08-18 Simon Josefsson - - * doc/gnutls.texi: Fix example indentation. - -2004-08-18 Simon Josefsson - - * nettle/Makefile.am: Don't dist nettle-types.h. - -2004-08-17 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-08-17 Simon Josefsson - - * crypto/gc-libgcrypt.c, crypto/gc-nettle.c, crypto/gc.h: Add - one-call interface. - -2004-08-17 Simon Josefsson - - * src/cli.c: Fix mem leak. - -2004-08-17 Simon Josefsson - - * lib/gnutls_pk.c: Typo. - -2004-08-17 Simon Josefsson - - * NEWS, THANKS: Add. - -2004-08-17 Simon Josefsson - - * lib/gnutls_pk.c: Simplify computation of PKCS#1 version 1.5 type 2 - non-zero pad bytes, reported by Robey Pointer . - -2004-08-17 Simon Josefsson - - * configure.in, gl/Makefile.am, gl/m4/gnulib.m4, gl/minmax.h, - lib/Makefile.am, lib/auth_srp_passwd.c, lib/ext_srp.c, - lib/gnutls_buffers.c, lib/gnutls_num.h, lib/gnutls_pk.c, - lib/gnutls_str.c, lib/x509/dn.c, lib/x509/pkcs12.c, - lib/x509/privkey_pkcs8.c, lib/x509/sign.c, lib/x509/verify.c, - libextra/Makefile.am: Use minmax.h from gnulib instead of GMIN/GMAX. - -2004-08-16 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-08-16 Simon Josefsson - - * src/common.c: Oops, revert DES, not supported. - -2004-08-16 Simon Josefsson - - * src/common.c: Support AES-256 and DES in --ciphers too. - -2004-08-16 Simon Josefsson - - * NEWS, README: Fix. - -2004-08-16 Simon Josefsson - - * README: Add. - -2004-08-16 Simon Josefsson - - * NEWS: Fix. - -2004-08-16 Simon Josefsson - - * crypto/gc-libgcrypt.c, crypto/gc-nettle.c, crypto/gc.h: Indent. - -2004-08-16 Simon Josefsson - - * crypto/gc-nettle.c: Fix. - -2004-08-16 Simon Josefsson - - * crypto/gc-libgcrypt.c, crypto/gc-nettle.c, crypto/gc.h, - lib/gnutls_hash_int.c, lib/gnutls_hash_int.h: Move hashing to - generic crypto API. Implement hashing for nettle/libgcrypt in - generic crypto API. - -2004-08-16 Simon Josefsson - - * configure.in, crypto/gc-libgcrypt.c, crypto/gc-nettle.c, - crypto/gc.h, lib/gnutls_errors.c, lib/gnutls_errors_int.h, - lib/gnutls_random.c, lib/gnutls_random.h: Move randomness calls to - generic crypto API. Implement randomness for libgcrypt and nettle - wrappers. - -2004-08-16 Simon Josefsson - - * gl/Makefile.am, gl/m4/gnulib.m4: Update. - -2004-08-15 Simon Josefsson - - * crypto/gc-nettle.c: Doc fix. - -2004-08-15 Simon Josefsson - - * NEWS: Typo. - -2004-08-15 Simon Josefsson - - * NEWS: Fix. - -2004-08-15 Simon Josefsson - - * NEWS: Fix. - -2004-08-15 Simon Josefsson - - * crypto/gc-nettle.c: Implement. - -2004-08-15 Simon Josefsson - - * crypto/gc-libgcrypt.c: Reorder. - -2004-08-15 Simon Josefsson - - * crypto/gc.h: Add. - -2004-08-15 Simon Josefsson - - * nettle/nettle-meta.h: Add des(3). - -2004-08-15 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-08-15 Simon Josefsson - - * Makefile.am, configure.in, crypto/gc-nettle.c, - m4/ax_create_stdint_h.m4, nettle/.cvsignore, nettle/Makefile.am, - nettle/aes-decrypt-table.c, nettle/aes-decrypt.c, - nettle/aes-encrypt-table.c, nettle/aes-encrypt.c, - nettle/aes-internal.h, nettle/aes-meta.c, - nettle/aes-set-decrypt-key.c, nettle/aes-set-encrypt-key.c, - nettle/aes.c, nettle/aes.h, nettle/arcfour-crypt.c, - nettle/arcfour-meta.c, nettle/arcfour.c, nettle/arcfour.h, - nettle/cbc.c, nettle/cbc.h, nettle/des-compat.c, - nettle/des-compat.h, nettle/des.c, nettle/des.h, nettle/des3.c, - nettle/desCode.h, nettle/descore.README, nettle/desinfo.h, - nettle/hmac-md5.c, nettle/hmac-sha1.c, nettle/hmac.c, - nettle/hmac.h, nettle/keymap.h, nettle/macros.h, - nettle/md5-compat.c, nettle/md5-compat.h, nettle/md5-meta.c, - nettle/md5.c, nettle/md5.h, nettle/memxor.c, nettle/memxor.h, - nettle/nettle-internal.c, nettle/nettle-internal.h, - nettle/nettle-meta.h, nettle/parity.h, nettle/rotors.h, - nettle/sha.h, nettle/sha1-compress.c, nettle/sha1-meta.c, - nettle/sha1.c: Add Nettle. - -2004-08-15 Simon Josefsson - - * crypto/gc-libgcrypt.c, lib/gnutls_cipher_int.c, - lib/gnutls_global.c: Fix warnings. - -2004-08-15 Simon Josefsson - - * lib/gnutls_cipher_int.c: Fix. - -2004-08-15 Simon Josefsson - - * NEWS: Add. - -2004-08-15 Simon Josefsson - - * Makefile.am, configure.in, crypto/.cvsignore, crypto/Makefile.am, - crypto/gc-libgcrypt.c, crypto/gc.h, lib/Makefile.am, - lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, - lib/gnutls_errors_int.h, lib/gnutls_global.c, lib/gnutls_mpi.h, - libextra/Makefile.am: Initiate move of all libgcrypt calls to - crypto/gc* wrapper. Currently only encryption/decryption goes - through generic API. - -2004-08-15 Simon Josefsson - - * NEWS: Add. - -2004-08-15 Simon Josefsson - - * Makefile.am: (release): Fix tag name. - -2004-08-15 Simon Josefsson - - * configure.in, gl/Makefile.am, gl/getpass.c, gl/getpass.h, - gl/m4/getpass.m4, gl/m4/gnulib.m4, gl/m4/stdbool.m4, gl/stdbool_.h, - src/Makefile.am, src/certtool-cfg.c, src/certtool.c, src/crypt.c, - src/getpass.c, src/getpass.h: Replace ad-hoc 'read_pass' with gnulib - module 'getpass-gnu'. - -2004-08-15 Simon Josefsson - - * doc/gnutls.texi: Improve markup. - -2004-08-15 Simon Josefsson - - * src/errcodes.c: Fix. - -2004-08-15 Simon Josefsson - - * doc/gnutls.texi: Use @finalout, to avoid ugly black boxes. - -2004-08-15 Simon Josefsson - - * doc/gnutls.texi: Fixes. - -2004-08-15 Simon Josefsson - - * doc/examples/ex-alert.c, doc/examples/ex-cert-select.c, - doc/examples/ex-client-resume.c, doc/examples/ex-client-srp.c, - doc/examples/ex-client2.c, doc/examples/ex-crq.c, - doc/examples/ex-pkcs12.c, doc/examples/ex-serv-export.c, - doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-srp.c, - doc/examples/ex-serv1.c, doc/examples/ex-session-info.c, - doc/examples/ex-verify.c, doc/examples/ex-x509-info.c: Indent. - -2004-08-15 Simon Josefsson - - * configure.in: Bump version. - -2004-08-15 Simon Josefsson - - * Makefile.am: (release): Abort if tag exists. - -2004-08-15 Simon Josefsson - - * ChangeLog: [no log message] - -2004-08-15 Simon Josefsson - - * Makefile.am: (release): Fix tag name. - -2004-08-15 Simon Josefsson - - * NEWS: Version 1.1.16. - -2004-08-15 Simon Josefsson - - * NEWS: Add. - -2004-08-15 Simon Josefsson - - * gl/.cvsignore: [no log message] - -2004-08-15 Simon Josefsson - - * src/certtool.c: Use progname. - -2004-08-15 Simon Josefsson - - * configure.in, gl/Makefile.am, gl/progname.c, gl/progname.h: Add - progname gnulib module. - -2004-08-15 Simon Josefsson - - * NEWS: Add. - -2004-08-15 Simon Josefsson - - * src/Makefile.am: Fix -I's, for srcdir != objdir builds (e.g., - 'make distcheck'). - -2004-08-15 Simon Josefsson - - * configure.in, lib/Makefile.am, libextra/Makefile.am, - src/Makefile.am: Fix -I's, for srcdir != objdir builds (e.g., 'make - distcheck'). - -2004-08-14 Simon Josefsson - - * configure.in: Bump version. - -2004-08-14 Simon Josefsson - - * NEWS: Add. - -2004-08-14 Simon Josefsson - - * src/Makefile.am: Link gnulib. - -2004-08-14 Simon Josefsson - - * ChangeLog: [no log message] - -2004-08-14 Simon Josefsson - - * Makefile.am: (release): Fix. - -2004-08-14 Simon Josefsson - - * NEWS: Version 1.1.15. - -2004-08-14 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-08-14 Simon Josefsson - - * NEWS: Reorder. - -2004-08-14 Simon Josefsson - - * config.rpath: Add, needed by gnulib. When we support gettext, - this will be generated. - -2004-08-14 Simon Josefsson - - * src/certtool-gaa.c, src/certtool-gaa.h: Generated. - -2004-08-14 Simon Josefsson - - * NEWS, src/Makefile.am, src/certtool.c, src/certtool.gaa: Add - --smime-to-p7. - -2004-08-14 Simon Josefsson - - * configure.in, gl/Makefile.am, gl/error.c, gl/error.h, gl/exit.h, - gl/gettext.h, gl/m4/codeset.m4, gl/m4/error.m4, gl/m4/gettext.m4, - gl/m4/glibc21.m4, gl/m4/gnulib.m4, gl/m4/iconv.m4, - gl/m4/intdiv0.m4, gl/m4/intmax.m4, gl/m4/inttypes-pri.m4, - gl/m4/inttypes.m4, gl/m4/inttypes_h.m4, gl/m4/isc-posix.m4, - gl/m4/lcmessage.m4, gl/m4/lib-ld.m4, gl/m4/lib-link.m4, - gl/m4/lib-prefix.m4, gl/m4/longdouble.m4, gl/m4/longlong.m4, - gl/m4/nls.m4, gl/m4/po.m4, gl/m4/printf-posix.m4, - gl/m4/progtest.m4, gl/m4/signed.m4, gl/m4/size_max.m4, - gl/m4/stdint_h.m4, gl/m4/strerror_r.m4, gl/m4/uintmax_t.m4, - gl/m4/ulonglong.m4, gl/m4/wchar_t.m4, gl/m4/wint_t.m4, - gl/m4/xsize.m4: Add error and exit gnulib modules. - -2004-08-14 Simon Josefsson - - * gl/.cvsignore: [no log message] - -2004-08-14 Simon Josefsson - - * configure.in: Add gl/Makefile. - -2004-08-14 Simon Josefsson - - * Makefile.am: Recurse into gl/. - -2004-08-14 Simon Josefsson - - * Makefile.am, configure.in, gl/Makefile.am, gl/getline.c, - gl/getline.h, gl/getndelim2.c, gl/getndelim2.h, - gl/m4/extensions.m4, gl/m4/getline.m4, gl/m4/getndelim2.m4, - gl/m4/gnulib.m4, gl/m4/onceonly_2_57.m4, gl/m4/ssize_t.m4, - gl/m4/unlocked-io.m4, gl/unlocked-io.h: Set up GnuTLS to use gnulib - for portability files. Initially only adding "getline", I will need - it for S/MIME parsing. - -2004-08-12 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-08-12 Simon Josefsson - - * tests/chain: Be nicer. - -2004-08-12 Simon Josefsson - - * tests/.cvsignore: [no log message] - -2004-08-12 Simon Josefsson - - * tests/chain: Add. - -2004-08-12 Simon Josefsson - - * doc/protocol/draft-badra-tls-key-exchange-00.txt: Add. - -2004-08-12 Simon Josefsson - - * : Add NIST X.509 Path Validation Test Suite, Version 1.07. See - http://csrc.nist.gov/pki/testing/x509paths_old.html. Taken from - http://csrc.nist.gov/pki/testing/x509tests.tgz, with MD5sum - 5e6c15b7920e33a3e171258828c980f5. - -2004-08-11 Simon Josefsson - - * doc/protocol/draft-ietf-tls-rfc2246-bis-08.txt: Add. - -2004-08-11 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-08-11 Simon Josefsson - - * configure.in: Typo. - -2004-08-11 Simon Josefsson - - * doc/gnutls.texi: Fix direntry. - -2004-08-11 Simon Josefsson - - * doc/gnutls.texi: Add. - -2004-08-11 Simon Josefsson - - * doc/manpages/gnutls-cli.1: Update. - -2004-08-10 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-08-10 Simon Josefsson - - * m4/autobuild.m4: Update. - -2004-08-10 Simon Josefsson - - * NEWS: Add. - -2004-08-10 Simon Josefsson - - * libextra/opencdk/keyserver.c: Need sys/types.h, for FreeBSD 4.10. - -2004-08-10 Simon Josefsson - - * NEWS: Add. - -2004-08-10 Simon Josefsson - - * Makefile.am: (release): Remove ChangeLog stuff. - -2004-08-10 Simon Josefsson - - * configure.in: Bump version. - -2004-08-10 Simon Josefsson - - * configure.in: If socklen_t doesn't exist, use size_t (needed for - Darwin). - -2004-08-10 Simon Josefsson - - * doc/TODO: Add. - -2004-08-09 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-08-09 Simon Josefsson - - * configure.in: Move AB_INIT to where it actually works. - -2004-08-09 Simon Josefsson - - * ChangeLog: [no log message] - -2004-08-09 Simon Josefsson - - * NEWS: Version 1.1.14. - -2004-08-09 Simon Josefsson - - * Makefile.am: Add release target. - -2004-08-09 Simon Josefsson - - * NEWS, THANKS, configure.in, m4/autobuild.m4: Add. - -2004-08-09 Simon Josefsson - - * NEWS: Add. - -2004-08-08 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-08-07 Simon Josefsson - - * THANKS: Add. - -2004-08-07 Simon Josefsson - - * tests/Makefile.am: Typo, reported by Michael Heironimus - . - -2004-08-06 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-08-06 Simon Josefsson - - * NEWS: Terminology consistency. - -2004-08-05 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-08-05 Simon Josefsson - - * tests/simple.c: Fix warning. - -2004-08-05 Simon Josefsson - - * lib/Makefile.am, lib/x509/Makefile.am, libextra/Makefile.am, - libextra/openpgp/Makefile.am: Remove *.tex stuff. - -2004-08-05 Simon Josefsson - - * doc/manpages/Makefile.am: Simplify. - -2004-08-05 Simon Josefsson - - * src/Makefile.am, src/retcodes.c: Remove retcodes. - -2004-08-05 Simon Josefsson - - * configure.in: Fix last commit. - -2004-08-05 Simon Josefsson - - * configure.in, doc/Makefile.am, doc/examples/Makefile.am, - doc/examples/ex-alert.c, doc/examples/ex-cert-select.c, - doc/examples/ex-client-resume.c, doc/examples/ex-client-srp.c, - doc/examples/ex-client2.c, doc/examples/ex-crq.c, - doc/examples/ex-pkcs12.c, doc/examples/ex-serv-export.c, - doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-srp.c, - doc/examples/ex-serv1.c, doc/examples/ex-session-info.c, - doc/examples/ex-verify.c, doc/examples/ex-x509-info.c, - doc/scripts/Makefile.am, doc/scripts/sort1.pl, doc/tex/.cvsignore, - doc/tex/Makefile.am, doc/tex/alert.tex, doc/tex/appendix.tex, - doc/tex/auth.tex, doc/tex/callbacks.tex, doc/tex/cert_auth.tex, - doc/tex/certificate.tex, doc/tex/ciphers.tex, - doc/tex/ciphersuites.tex, doc/tex/compression.tex, - doc/tex/cover.tex.in, doc/tex/errors.tex, doc/tex/ex-alert.tex, - doc/tex/ex-cert-select.tex, doc/tex/ex-client-resume.tex, - doc/tex/ex-client-srp.tex, doc/tex/ex-client2.tex, - doc/tex/ex-crq.tex, doc/tex/ex-pkcs12.tex, - doc/tex/ex-serv-export.tex, doc/tex/ex-serv-pgp.tex, - doc/tex/ex-serv-srp.tex, doc/tex/ex-serv1.tex, - doc/tex/ex-session-info.tex, doc/tex/ex-verify.tex, - doc/tex/ex-x509-info.tex, doc/tex/examples.tex, doc/tex/fdl.tex, - doc/tex/funcs.tex, doc/tex/gnutls-logo.ps, doc/tex/gnutls.bib, - doc/tex/gnutls.tex, doc/tex/handshake.tex, doc/tex/howto.tex, - doc/tex/internals.eps, doc/tex/layers.eps, doc/tex/layers.tex, - doc/tex/library.tex, doc/tex/macros.tex, doc/tex/memory.tex, - doc/tex/openssl.tex, doc/tex/pgp-fig1.eps, doc/tex/pgpcert.xml.tex, - doc/tex/preface.tex, doc/tex/preparation.tex, doc/tex/programs.tex, - doc/tex/record.tex, doc/tex/record_weaknesses.tex, doc/tex/srp.tex, - doc/tex/supported_ciphersuites.tex, doc/tex/tls_extensions.tex, - doc/tex/tlsintro.tex, doc/tex/translayer.tex, doc/tex/x509-1.eps, - doc/tex/x509cert.xml.tex: Remove old manual. - -2004-08-05 Simon Josefsson - - * configure.in, doc/gnutls.texi: Fix copyright. - -2004-08-05 Simon Josefsson - - * buildconf, doc/README.CVS: Revert. - -2004-08-05 Simon Josefsson - - * NEWS: Fix. - -2004-08-05 Simon Josefsson - - * doc/TODO: Done. - -2004-08-05 Simon Josefsson - - * doc/Makefile.am, doc/README.CVS: Fix. - -2004-08-05 Simon Josefsson - - * doc/gnutls.texi: Save gnutls.bib. - -2004-08-05 Simon Josefsson - - * doc/Makefile.am: Fix deps. - -2004-08-05 Simon Josefsson - - * doc/Makefile.am: Reorder. - -2004-08-05 Simon Josefsson - - * doc/Makefile.am: Fix HTML. - -2004-08-05 Simon Josefsson - - * doc/gendocs.sh, doc/gendocs_template, doc/gnutls-logo.eps: Add. - -2004-08-05 Simon Josefsson - - * doc/gnutls.texi: Add logo. - -2004-08-05 Simon Josefsson - - * doc/gnutls.texi: Fix image size. - -2004-08-05 Simon Josefsson - - * doc/Makefile.am: Fix deps. - -2004-08-05 Simon Josefsson - - * doc/Makefile.am: Build more. Dist ps/pdf/html. - -2004-08-05 Simon Josefsson - - * : Add. - -2004-08-05 Simon Josefsson - - * doc/.cvsignore: [no log message] - -2004-08-05 Simon Josefsson - - * doc/Makefile.am, doc/gnutls.texi, doc/scripts/sort2.pl: Add - Texinfo API documentation. - -2004-08-05 Simon Josefsson - - * libextra/openpgp/Makefile.am: Build pgp-api.texi. Dist - pgp-api.tex{,i}. - -2004-08-05 Simon Josefsson - - * doc/.cvsignore, lib/.cvsignore, lib/x509/.cvsignore, - libextra/.cvsignore, libextra/openpgp/.cvsignore: [no log message] - -2004-08-05 Simon Josefsson - - * libextra/Makefile.am: Build gnutls-extra-api.texi. - -2004-08-05 Simon Josefsson - - * lib/Makefile.am: Build gnutls-api.texi. - -2004-08-05 Simon Josefsson - - * lib/x509/Makefile.am: Build x509-api.texi. - -2004-08-05 Simon Josefsson - - * lib/gnutls.h.in.in: (gnutls_is_secure_function): Add. (gnutls_global_set_mem_functions): Use it. - -2004-08-05 Simon Josefsson - - * lib/gnutls_global.c: (gnutls_global_set_mem_functions): Use typedefs in prototype, for - gdoc. - -2004-08-05 Simon Josefsson - - * lib/gnutls_mem.h: (gnutls_is_secure_function): Add. - -2004-08-05 Simon Josefsson - - * configure.in: Bump version. - -2004-08-05 Simon Josefsson - - * doc/Makefile.am: Dist more. - -2004-08-05 Simon Josefsson - - * NEWS, doc/internals.eps, doc/layers.eps, doc/pgp1.eps, - doc/x509-1.eps: Add. - -2004-08-05 Simon Josefsson - - * doc/gnutls.texi: Fix. - -2004-08-05 Simon Josefsson - - * doc/.cvsignore: [no log message] - -2004-08-05 Simon Josefsson - - * doc/gnutls.texi: Fix. - -2004-08-05 Simon Josefsson - - * doc/gnutls.texi: Fix. - -2004-08-05 Simon Josefsson - - * doc/gnutls.texi: Fix. - -2004-08-05 Simon Josefsson - - * doc/gnutls.texi, src/errcodes.c: Fix. - -2004-08-05 Simon Josefsson - - * doc/gnutls.texi: Add. - -2004-08-05 Simon Josefsson - - * doc/gnutls.texi: Add error_codes.texi. - -2004-08-05 Simon Josefsson - - * src/errcodes.c: Fix. - -2004-08-05 Simon Josefsson - - * doc/Makefile.am: Build error_codes.texi using errcodes. - -2004-08-05 Simon Josefsson - - * src/Makefile.am, src/errcodes.c: (errcodes): Add, same as retcodes, but for texinfo. - -2004-08-05 Simon Josefsson - - * src/.cvsignore: [no log message] - -2004-08-05 Simon Josefsson - - * doc/gnutls.texi: Fix. - -2004-08-05 Simon Josefsson - - * doc/gnutls.texi: Add. - -2004-08-05 Simon Josefsson - - * doc/gnutls.texi: Add. - -2004-08-05 Simon Josefsson - - * doc/gnutls.texi: Add. - -2004-08-05 Simon Josefsson - - * doc/gnutls.texi: Add. - -2004-08-05 Simon Josefsson - - * doc/gnutls.texi: Fix. - -2004-08-05 Simon Josefsson - - * doc/.cvsignore: [no log message] - -2004-08-05 Simon Josefsson - - * doc/gnutls.texi: Add. - -2004-08-05 Simon Josefsson - - * doc/gnutls.texi: Add. - -2004-08-04 Simon Josefsson - - * Makefile.am, acinclude.m4, libgcrypt.m4, libtasn1.m4, - m4/libgcrypt.m4, m4/libtasn1.m4, m4/opencdk.m4, opencdk.m4: Move - *.m4's to m4/. - -2004-08-04 Simon Josefsson - - * buildconf: Simplify. - -2004-08-04 Simon Josefsson - - * configure.in: Add copying condition. Remove useless prefix - setting. - -2004-08-04 Simon Josefsson - - * buildconf, configure.in: Don't use maintainer mode (see Autoconf - manual for rationale). - -2004-08-04 Simon Josefsson - - * doc/Makefile.am, doc/fdl.texi, doc/gnutls.texi: Start Texinfo - manual. - -2004-08-04 Simon Josefsson - - * doc/.cvsignore: [no log message] - -2004-08-04 Simon Josefsson - - * ChangeLog: ChangeLog - -2004-08-04 Simon Josefsson - - * Makefile.am: Fix cvs2cl target. - -2004-08-04 Simon Josefsson - - * NEWS: Version 1.1.13. - -2004-08-04 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-08-02 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-08-02 Simon Josefsson - - * .cvsusers: Fix. - -2004-08-02 Simon Josefsson - - * configure.in: Bump version. - -2004-08-02 Simon Josefsson - - * Makefile.am, NEWS, configure.in, tests/Makefile, - tests/Makefile.am, tests/simple.c, tests/utils.c, tests/utils.h: Add - (start of) self test suite. - -2004-08-02 Simon Josefsson - - * .cvsignore, doc/examples/.cvsignore, doc/manpages/.cvsignore, - doc/tex/.cvsignore, includes/.cvsignore, - includes/gnutls/.cvsignore, libextra/.cvsignore, - libextra/opencdk/.cvsignore, libextra/openpgp/.cvsignore, - src/.cvsignore, src/cfg/.cvsignore, src/cfg/platon/.cvsignore, - src/cfg/platon/str/.cvsignore, src/openpgp/.cvsignore, - tests/.cvsignore: Ignore more. - -2004-08-02 Simon Josefsson - - * buildconf: Use autoreconf. - -2004-08-02 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2004-08-02 Nikos Mavrogiannopoulos - - * lib/auth_srp.c, lib/gnutls_cert.c, lib/gnutls_srp.c, - lib/gnutls_srp.h: _gnutls_calc_srp_u() has been modified to be - better. - -2004-08-02 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2004-07-31 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-07-31 Nikos Mavrogiannopoulos - - * doc/TODO, lib/gnutls_int.h: [no log message] - -2004-07-31 Nikos Mavrogiannopoulos - - * src/certtool.c: print the number of bits of the public key in a - certificate. - -2004-07-31 Nikos Mavrogiannopoulos - - * NEWS, doc/TODO, doc/tex/examples.tex: [no log message] - -2004-07-31 Nikos Mavrogiannopoulos - - * NEWS, doc/TODO, lib/auth_cert.h, lib/gnutls.h.in.in, - lib/gnutls_cert.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, - lib/gnutls_int.h, lib/gnutls_ui.c, lib/gnutls_ui.h, - lib/gnutls_x509.c, lib/gnutls_x509.h, libextra/gnutls_extra.h, - libextra/openpgp/compat.c, libextra/openpgp/extras.c, - libextra/openpgp/gnutls_openpgp.h: Added some default limits in the - verification of certificate chains, to avoid denial of service - attacks. Also added gnutls_certificate_set_verify_limits() to - override them. - -2004-07-30 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-07-30 Nikos Mavrogiannopoulos - - * doc/tex/ex-cert-select.tex, lib/gnutls_cert.c: corrected - documentation. - -2004-07-28 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-07-28 Nikos Mavrogiannopoulos - - * README: [no log message] - -2004-07-28 Nikos Mavrogiannopoulos - - * NEWS, includes/gnutls/extra.h, lib/Makefile.am, lib/auth_srp.c, - lib/auth_srp.h, lib/auth_srp_passwd.c, lib/auth_srp_passwd.h, - lib/auth_srp_rsa.c, lib/auth_srp_sb64.c, lib/ext_srp.c, - lib/ext_srp.h, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, - lib/gnutls_extensions.c, lib/gnutls_srp.c, lib/gnutls_srp.h, - libextra/Makefile.am, libextra/auth_srp.c, libextra/auth_srp.h, - libextra/auth_srp_passwd.c, libextra/auth_srp_passwd.h, - libextra/auth_srp_rsa.c, libextra/auth_srp_sb64.c, - libextra/ext_srp.c, libextra/ext_srp.h, libextra/gnutls_extra.c, - libextra/gnutls_srp.c, libextra/gnutls_srp.h, libgcrypt.m4, - opencdk.m4: SRP ciphersuites were moved to the gnutls (lgpl) - library. - -2004-07-28 Nikos Mavrogiannopoulos - - * configure.in: [no log message] - -2004-07-27 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-07-27 Nikos Mavrogiannopoulos - - * .cvsusers: added Simon - -2004-07-27 Nikos Mavrogiannopoulos - - * NEWS, lib/Makefile.am, libextra/gnutls_openpgp.c, - libextra/openpgp/extras.c, libextra/openpgp/pgp.c, - libextra/openpgp/privkey.c, libextra/openpgp/xml.c: [no log message] - -2004-07-27 Nikos Mavrogiannopoulos - - * NEWS, libextra/auth_srp.c, libextra/gnutls_srp.c, - libextra/gnutls_srp.h: * Updated the SRP authentication to conform to the latest (yet unreleased) draft. Unfortunately this breaks compatibility with previous versions. - -2004-07-25 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-07-25 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/minitasn1/Makefile.am, lib/x509/Makefile.am, - libextra/Makefile.am, libextra/opencdk/Makefile.am, - libextra/openpgp/Makefile.am, libextra/openpgp/openpgp.c, - libextra/openpgp/pgp.c, libextra/openpgp/pgpverify.c, - libextra/openpgp/verify.c: avoid using libtool's convenience - libraries since they are buggy and cause conflicts in linking. - -2004-07-25 Nikos Mavrogiannopoulos - - * libextra/opencdk/encrypt.c, libextra/opencdk/main.c, - libextra/opencdk/misc.c: removed the malloc.h include. - -2004-07-18 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-07-18 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-compression-07.txt, - doc/protocol/rfc3749.txt, doc/tex/gnutls.bib: added the tls - compression rfc. - -2004-07-16 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-07-16 Nikos Mavrogiannopoulos - - * doc/tex/cert_auth.tex: [no log message] - -2004-07-16 Nikos Mavrogiannopoulos - - * NEWS, configure.in: [no log message] - -2004-07-10 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-07-10 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c: [no log message] - -2004-07-10 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2004-07-09 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-07-09 Nikos Mavrogiannopoulos - - * lib/gnutls_pk.c, lib/gnutls_x509.c, lib/x509/x509.c: eliminated - some memory leaks. Reported by Yoann Vandoorselaere - . - -2004-07-02 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-07-02 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-ssl-mods-00.txt: added - draft-ietf-tls-ssl-mods - -2004-07-02 Nikos Mavrogiannopoulos - - * lib/x509/Makefile.am: [no log message] - -2004-06-29 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-06-29 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2004-06-29 Nikos Mavrogiannopoulos - - * libextra/auth_srp.c, libextra/auth_srp.h, - libextra/auth_srp_passwd.c, libextra/gnutls_srp.c: Do not free the - SRP (n/g) parameters from the callback if they are the static ones - defined in extra.h - -2004-06-29 Nikos Mavrogiannopoulos - - * NEWS, doc/TODO, lib/auth_anon.h, lib/auth_cert.h, - lib/auth_dh_common.h, lib/gnutls_cert.c, lib/gnutls_cert.h, - lib/gnutls_datum.c, lib/gnutls_datum.h, lib/gnutls_record.c, - lib/gnutls_session_pack.c, lib/gnutls_sig.c, lib/gnutls_state.c, - lib/gnutls_ui.c, lib/gnutls_x509.c, libextra/gnutls_openpgp.c, - libextra/openpgp/verify.c, src/serv.c: The ephemeral DH and RSA - parameters are no longer stored in the session resume DB. This saves - space, but will cause resumed sessions not to be able to access the - original session parameters (which is ok). - -2004-06-29 Nikos Mavrogiannopoulos - - * lib/gnutls_record.c: Reject hello packets with major version - higher than 3. - -2004-06-28 Nikos Mavrogiannopoulos - - * src/x509/ca.pem, src/x509/cert-dsa.pem, src/x509/cert.pem, - src/x509/clicert-dsa.pem, src/x509/clicert.pem, - src/x509/key-dsa.pem, src/x509/key.pem: added some new certificates. - -2004-06-24 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-06-24 Nikos Mavrogiannopoulos - - * NEWS, doc/TODO, includes/gnutls/x509.h, lib/x509/verify.c, - lib/x509/verify.h, libextra/gnutls_srp.c, libextra/openpgp/verify.c: * Corrected a bug in certificate verification. Pointed out by Yoann Vandoorselaere * Added the GNUTLS_VERIFY_DO_NOT_ALLOW_SAME flags to the verification functions. - -2004-06-17 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-06-17 Nikos Mavrogiannopoulos - - * doc/tex/certificate.tex, doc/tex/gnutls.bib, doc/tex/tlsintro.tex: - added links to gpgme and to Rescola's book. - -2004-06-16 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-06-16 Nikos Mavrogiannopoulos - - * lib/gnutls_pk.c: Corrected bug in PKCS #1 encryption. - -2004-06-13 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-06-13 Nikos Mavrogiannopoulos - - * NEWS, configure.in, doc/TODO, doc/tex/auth.tex, - doc/tex/certificate.tex, doc/tex/ex-alert.tex, - doc/tex/ex-cert-select.tex, doc/tex/ex-client-resume.tex, - doc/tex/ex-client-srp.tex, doc/tex/ex-client2.tex, - doc/tex/ex-crq.tex, doc/tex/ex-pkcs12.tex, - doc/tex/ex-serv-export.tex, doc/tex/ex-serv-pgp.tex, - doc/tex/ex-serv-srp.tex, doc/tex/ex-serv1.tex, - doc/tex/ex-session-info.tex, doc/tex/ex-verify.tex, - doc/tex/ex-x509-info.tex, includes/Makefile.am, - includes/gnutls/Makefile.am, includes/gnutls/compat.h, - includes/gnutls/extra.h, includes/gnutls/openpgp.h, - includes/gnutls/openssl.h, includes/gnutls/pkcs12.h, - includes/gnutls/x509.h, lib/auth_anon.c, lib/auth_anon.h, - lib/auth_cert.c, lib/auth_cert.h, lib/auth_dh_common.c, - lib/auth_dh_common.h, lib/auth_dhe.c, lib/auth_rsa.c, - lib/auth_rsa_export.c, lib/debug.c, lib/debug.h, - lib/ext_cert_type.c, lib/ext_cert_type.h, lib/ext_max_record.c, - lib/ext_max_record.h, lib/ext_server_name.c, lib/ext_server_name.h, - lib/gnutls.h.in.in, lib/gnutls_alert.c, lib/gnutls_alert.h, - lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, - lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_auth.h, - lib/gnutls_auth_int.h, lib/gnutls_buffers.c, lib/gnutls_buffers.h, - lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_cipher.c, - lib/gnutls_cipher.h, lib/gnutls_cipher_int.c, - lib/gnutls_cipher_int.h, lib/gnutls_compress.c, - lib/gnutls_compress.h, lib/gnutls_compress_int.c, - lib/gnutls_compress_int.h, lib/gnutls_constate.c, - lib/gnutls_constate.h, lib/gnutls_datum.c, lib/gnutls_datum.h, - lib/gnutls_db.c, lib/gnutls_db.h, lib/gnutls_dh.h, - lib/gnutls_dh_primes.c, lib/gnutls_extensions.c, - lib/gnutls_extensions.h, lib/gnutls_global.c, - lib/gnutls_handshake.c, lib/gnutls_handshake.h, - lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, - lib/gnutls_kx.c, lib/gnutls_kx.h, lib/gnutls_mpi.c, - lib/gnutls_mpi.h, lib/gnutls_pk.c, lib/gnutls_pk.h, - lib/gnutls_priority.c, lib/gnutls_priority.h, lib/gnutls_record.c, - lib/gnutls_record.h, lib/gnutls_rsa_export.c, - lib/gnutls_rsa_export.h, lib/gnutls_session.c, - lib/gnutls_session.h, lib/gnutls_session_pack.c, - lib/gnutls_session_pack.h, lib/gnutls_sig.c, lib/gnutls_sig.h, - lib/gnutls_state.c, lib/gnutls_state.h, lib/gnutls_str.c, - lib/gnutls_str.h, lib/gnutls_ui.c, lib/gnutls_ui.h, - lib/gnutls_v2_compat.c, lib/gnutls_v2_compat.h, lib/gnutls_x509.c, - lib/gnutls_x509.h, lib/x509/common.c, lib/x509/common.h, - lib/x509/compat.c, lib/x509/compat.h, lib/x509/crl.c, - lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/crq.h, - lib/x509/dn.c, lib/x509/extensions.c, lib/x509/extensions.h, - lib/x509/mpi.c, lib/x509/mpi.h, lib/x509/pkcs12.c, - lib/x509/pkcs12.h, lib/x509/pkcs12_bag.c, lib/x509/pkcs7.c, - lib/x509/pkcs7.h, lib/x509/privkey.c, lib/x509/privkey.h, - lib/x509/privkey_pkcs8.c, lib/x509/rfc2818_hostname.c, - lib/x509/sign.c, lib/x509/sign.h, lib/x509/verify.c, - lib/x509/verify.h, lib/x509/x509.c, lib/x509/x509.h, - lib/x509/x509_write.c, lib/x509/xml.c, lib/x509_b64.c, - libextra/auth_srp.c, libextra/auth_srp.h, - libextra/auth_srp_passwd.c, libextra/auth_srp_passwd.h, - libextra/auth_srp_rsa.c, libextra/auth_srp_sb64.c, - libextra/ext_srp.c, libextra/ext_srp.h, libextra/gnutls_extra.h, - libextra/gnutls_openpgp.c, libextra/gnutls_openssl.c, - libextra/gnutls_srp.c, libextra/gnutls_srp.h, - libextra/openpgp/compat.c, libextra/openpgp/extras.c, - libextra/openpgp/gnutls_openpgp.h, libextra/openpgp/openpgp.c, - libextra/openpgp/openpgp.h, libextra/openpgp/privkey.c, - libextra/openpgp/verify.c, libextra/openpgp/xml.c, - libextra/openssl_compat.c, libextra/openssl_compat.h: Added the '_t' - suffix to all exported symbols. - -2004-06-13 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-srp-06.txt, - doc/protocol/draft-ietf-tls-srp-07.txt: added new srp draft - -2004-06-12 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-06-12 Nikos Mavrogiannopoulos - - * doc/tex/ex-verify.tex, lib/gnutls_ui.c: [no log message] - -2004-06-12 Nikos Mavrogiannopoulos - - * libextra/openpgp/openpgp.c: [no log message] - -2004-06-12 Nikos Mavrogiannopoulos - - * NEWS, includes/gnutls/openpgp.h, libextra/openpgp/extras.c, - libextra/openpgp/openpgp.h, libextra/openpgp/verify.c: [no log - message] - -2004-06-12 Nikos Mavrogiannopoulos - - * libextra/openpgp/verify.c: Added gnutls_openpgp_keyring_check_id() - -2004-06-12 Nikos Mavrogiannopoulos - - * NEWS, doc/examples/Makefile.am, doc/tex/Makefile.am, - doc/tex/certificate.tex, doc/tex/ex-rfc2818.tex, - doc/tex/ex-verify.tex, doc/tex/examples.tex, - includes/gnutls/x509.h, lib/x509/verify.c, lib/x509/verify.h, - lib/x509/x509.c, lib/x509/x509.h, libextra/openpgp/Makefile.am: - added an improved verification example. - -2004-06-11 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-06-11 Nikos Mavrogiannopoulos - - * doc/protocol/draft-rescorla-dtls-00.txt: added datagram tls draft. - -2004-06-10 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-06-10 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c, lib/gnutls_record.c, lib/gnutls_state.c: - some fixes in the session resuming code. - -2004-06-07 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-06-07 Nikos Mavrogiannopoulos - - * includes/gnutls/extra.h, includes/gnutls/openpgp.h, - includes/gnutls/pkcs12.h, includes/gnutls/x509.h, lib/auth_anon.c, - lib/auth_anon.h, lib/auth_cert.c, lib/auth_cert.h, - lib/auth_dh_common.c, lib/auth_dh_common.h, lib/auth_dhe.c, - lib/auth_rsa.c, lib/auth_rsa_export.c, lib/debug.c, lib/debug.h, - lib/defines.h, lib/ext_cert_type.c, lib/ext_cert_type.h, - lib/ext_max_record.c, lib/ext_max_record.h, lib/ext_server_name.c, - lib/ext_server_name.h, lib/gnutls.h.in.in, lib/gnutls_alert.c, - lib/gnutls_alert.h, lib/gnutls_algorithms.c, - lib/gnutls_algorithms.h, lib/gnutls_anon_cred.c, - lib/gnutls_asn1_tab.c, lib/gnutls_auth.c, lib/gnutls_auth.h, - lib/gnutls_auth_int.h, lib/gnutls_buffer.h, lib/gnutls_buffers.c, - lib/gnutls_buffers.h, lib/gnutls_cert.c, lib/gnutls_cert.h, - lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_cipher_int.c, - lib/gnutls_cipher_int.h, lib/gnutls_compress.c, - lib/gnutls_compress.h, lib/gnutls_compress_int.c, - lib/gnutls_compress_int.h, lib/gnutls_constate.c, - lib/gnutls_constate.h, lib/gnutls_datum.c, lib/gnutls_datum.h, - lib/gnutls_db.c, lib/gnutls_db.h, lib/gnutls_dh.c, lib/gnutls_dh.h, - lib/gnutls_dh_primes.c, lib/gnutls_errors.c, lib/gnutls_errors.h, - lib/gnutls_errors_int.h, lib/gnutls_extensions.c, - lib/gnutls_extensions.h, lib/gnutls_global.c, lib/gnutls_global.h, - lib/gnutls_handshake.c, lib/gnutls_handshake.h, - lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, - lib/gnutls_int_compat.c, lib/gnutls_kx.c, lib/gnutls_kx.h, - lib/gnutls_mem.c, lib/gnutls_mem.h, lib/gnutls_mpi.c, - lib/gnutls_mpi.h, lib/gnutls_num.c, lib/gnutls_num.h, - lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_priority.c, - lib/gnutls_priority.h, lib/gnutls_random.c, lib/gnutls_random.h, - lib/gnutls_record.c, lib/gnutls_record.h, lib/gnutls_rsa_export.c, - lib/gnutls_rsa_export.h, lib/gnutls_session.c, - lib/gnutls_session.h, lib/gnutls_session_pack.c, - lib/gnutls_session_pack.h, lib/gnutls_sig.c, lib/gnutls_sig.h, - lib/gnutls_state.c, lib/gnutls_state.h, lib/gnutls_str.c, - lib/gnutls_str.h, lib/gnutls_ui.c, lib/gnutls_ui.h, - lib/gnutls_v2_compat.c, lib/gnutls_v2_compat.h, lib/gnutls_x509.c, - lib/gnutls_x509.h, lib/io_debug.h, lib/pkix_asn1_tab.c, - lib/strfile.h, lib/strnstr.c, lib/x509/common.c, lib/x509/compat.c, - lib/x509/crl.c, lib/x509/crl_write.c, lib/x509/crq.c, - lib/x509/dn.c, lib/x509/dsa.c, lib/x509/extensions.c, - lib/x509/mpi.c, lib/x509/pkcs12.c, lib/x509/pkcs12_bag.c, - lib/x509/pkcs12_encr.c, lib/x509/pkcs5.c, lib/x509/pkcs7.c, - lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, - lib/x509/rfc2818_hostname.c, lib/x509/sign.c, lib/x509/verify.c, - lib/x509/x509.c, lib/x509/x509_write.c, lib/x509/xml.c, - lib/x509_b64.c, lib/x509_b64.h, libextra/auth_srp.c, - libextra/auth_srp_passwd.c, libextra/auth_srp_rsa.c, - libextra/auth_srp_sb64.c, libextra/ext_srp.c, - libextra/gnutls_extra.c, libextra/gnutls_openpgp.c, - libextra/gnutls_openssl.c, libextra/gnutls_srp.c, - libextra/minilzo.c, libextra/openpgp/compat.c, - libextra/openpgp/extras.c, libextra/openpgp/openpgp.c, - libextra/openpgp/openpgp.h, libextra/openpgp/privkey.c, - libextra/openpgp/verify.c, libextra/openpgp/xml.c, - libextra/openssl_compat.c, src/certtool-cfg.c, src/certtool-gaa.c, - src/certtool.c, src/cli-gaa.c, src/cli.c, src/common.c, - src/crypt-gaa.c, src/crypt.c, src/getpass.c, src/prime.c, - src/retcodes.c, src/serv-gaa.c, src/serv.c, src/tests.c, - src/tls_test-gaa.c, src/tls_test.c: changed indentation to 4 spaces - instead of tabs. - -2004-06-06 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-06-06 Nikos Mavrogiannopoulos - - * doc/tex/cover.tex.in, lib/gnutls_record.c, lib/x509/x509.c: [no - log message] - -2004-06-06 Nikos Mavrogiannopoulos - - * doc/tex/certificate.tex, doc/tex/gnutls.bib, doc/tex/howto.tex: - [no log message] - -2004-06-06 Nikos Mavrogiannopoulos - - * doc/TODO, doc/tex/certificate.tex, doc/tex/compression.tex, - doc/tex/programs.tex: [no log message] - -2004-06-06 Nikos Mavrogiannopoulos - - * lib/gnutls_datum.c, lib/gnutls_ui.c, lib/x509/pkcs12_bag.c, - src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, src/common.c, - src/gnutls-http-serv, src/serv-gaa.c, src/serv-gaa.h, src/serv.c, - src/serv.gaa, src/tests.c, src/tests.h, src/tls_test.c: several - improvements - -2004-06-06 Nikos Mavrogiannopoulos - - * src/tests.c, src/tls_test-gaa.c, src/tls_test.gaa: [no log - message] - -2004-06-06 Nikos Mavrogiannopoulos - - * lib/auth_cert.c, lib/auth_cert.h, lib/auth_dh_common.h, - lib/gnutls_compress_int.c, lib/gnutls_state.c, src/cli.c, - src/common.c, src/common.h, src/tests.c, src/tests.h, - src/tls_test.c: updated gnutls-cli-debug to print DHE and RSA-EXPORT - information if verbose is set. Some other minor fixes. - -2004-06-05 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-06-05 Nikos Mavrogiannopoulos - - * doc/README.CODING_STYLE, lib/auth_anon.c, lib/auth_anon.h, - lib/auth_cert.h, lib/auth_dh_common.h, lib/auth_dhe.c, - lib/auth_rsa.c, lib/auth_rsa_export.c, lib/debug.c, lib/debug.h, - lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, - lib/gnutls_auth.c, lib/gnutls_auth.h, lib/gnutls_auth_int.h, - lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cipher.c, - lib/gnutls_cipher.h, lib/gnutls_cipher_int.c, - lib/gnutls_cipher_int.h, lib/gnutls_compress_int.c, - lib/gnutls_compress_int.h, lib/gnutls_constate.c, lib/gnutls_db.c, - lib/gnutls_dh_primes.c, lib/gnutls_handshake.c, - lib/gnutls_handshake.h, lib/gnutls_hash_int.c, - lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_record.c, - lib/gnutls_record.h, lib/gnutls_session_pack.c, lib/gnutls_sig.c, - lib/gnutls_state.c, lib/gnutls_ui.c, lib/gnutls_v2_compat.c, - lib/x509/pkcs12.c, lib/x509/privkey_pkcs8.c, libextra/auth_srp.c, - libextra/auth_srp_rsa.c, libextra/ext_srp.c, - libextra/gnutls_extra.c: some other changes to the internal types - names. - -2004-06-05 Nikos Mavrogiannopoulos - - * lib/auth_anon.c, lib/auth_anon.h, lib/auth_cert.c, - lib/auth_cert.h, lib/auth_dh_common.c, lib/auth_dh_common.h, - lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/debug.c, - lib/debug.h, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, - lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_dh.c, - lib/gnutls_dh.h, lib/gnutls_dh_primes.c, lib/gnutls_int.h, - lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_rsa_export.c, - lib/gnutls_rsa_export.h, lib/gnutls_session_pack.c, - lib/gnutls_sig.c, lib/gnutls_sig.h, lib/gnutls_state.c, - lib/gnutls_ui.c, lib/gnutls_ui.h, lib/gnutls_x509.c, - lib/gnutls_x509.h, libextra/auth_srp.c, libextra/auth_srp.h, - libextra/auth_srp_rsa.c, libextra/gnutls_srp.c: several internal - types fix. - -2004-06-05 Nikos Mavrogiannopoulos - - * NEWS, includes/gnutls/x509.h, lib/auth_rsa_export.c, - lib/gnutls_mpi.h, lib/x509/common.c, lib/x509/common.h, - lib/x509/dsa.c, lib/x509/dsa.h, lib/x509/mpi.c, lib/x509/mpi.h, - lib/x509/pkcs12_encr.c, lib/x509/privkey.c, lib/x509/sign.c, - lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509.h: Added the - functions gnutls_x509_crt_get_pk_rsa_raw() and - gnutls_x509_crt_get_pk_dsa_raw() to retrieve parameters from - certificates. - -2004-06-05 Nikos Mavrogiannopoulos - - * lib/auth_anon.c, lib/auth_cert.h, lib/auth_dh_common.c, - lib/auth_dh_common.h, lib/auth_dhe.c, lib/auth_rsa_export.c, - lib/gnutls_state.c, lib/gnutls_state.h, lib/gnutls_ui.c, - lib/gnutls_ui.h: Allow access to the RSA-EXPORT parameters. - -2004-06-04 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-06-04 Nikos Mavrogiannopoulos - - * lib/auth_dh_common.c, lib/auth_dh_common.h, - lib/gnutls_compress_int.c, lib/gnutls_mpi.c, lib/gnutls_state.c, - lib/gnutls_state.h, lib/gnutls_ui.c, lib/gnutls_ui.h: added function - to access the DH (peer's) public key. - -2004-06-04 Nikos Mavrogiannopoulos - - * NEWS, lib/auth_anon.c, lib/auth_anon.h, lib/auth_cert.h, - lib/auth_dh_common.c, lib/auth_dh_common.h, lib/auth_dhe.c, - lib/gnutls_auth.c, lib/gnutls_cipher_int.c, lib/gnutls_int.h, - lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_state.c, - lib/gnutls_state.h, lib/gnutls_ui.c, lib/gnutls_ui.h, src/serv.c: - Added news functions to allow access to the ephemeral Diffie Hellman - parameters. - -2004-06-02 Nikos Mavrogiannopoulos - - * doc/TODO, lib/gnutls_pk.c: [no log message] - -2004-06-01 Nikos Mavrogiannopoulos - - * doc/tex/certificate.tex, doc/tex/gnutls.bib: [no log message] - -2004-05-31 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-05-31 Nikos Mavrogiannopoulos - - * src/cli.c: ciphers are sorted according to a strength order. - -2004-05-31 Nikos Mavrogiannopoulos - - * NEWS, libextra/auth_srp.c, libextra/gnutls_srp.c: Updated to - conform to the latest srp draft (draft-ietf-tls-srp-07). - -2004-05-30 Nikos Mavrogiannopoulos - - * configure.in, lib/gnutls_handshake.c, lib/gnutls_mpi.h, - libextra/auth_srp.c, libextra/openpgp/compat.c, libtasn1.m4: [no log - message] - -2004-05-27 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-05-27 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c, lib/gnutls_v2_compat.c: added some extra - checks in hello packet parsing. - -2004-05-27 Nikos Mavrogiannopoulos - - * configure.in, lib/Makefile.am, lib/x509/Makefile.am, - libextra/Makefile.am, libextra/openpgp/Makefile.am, - src/Makefile.am, src/certtool-cfg.h, src/retcodes.c: some libtasn1 - related compilation fixes - -2004-05-27 Nikos Mavrogiannopoulos - - * configure.in: [no log message] - -2004-05-27 Nikos Mavrogiannopoulos - - * acinclude.m4, lib/gnutls_handshake.c: [no log message] - -2004-05-27 Nikos Mavrogiannopoulos - - * libextra/opencdk/keydb.c, libextra/opencdk/main.h, - libextra/opencdk/opencdk.h, libextra/opencdk/pubkey.c, - libextra/opencdk/read-packet.c, libextra/opencdk/sig-check.c, - libextra/openpgp/verify.c: added new opencdk - -2004-05-26 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-05-26 Nikos Mavrogiannopoulos - - * NEWS, doc/README.autoconf, doc/certtool.cfg, - lib/gnutls_handshake.c, lib/pkix.asn, lib/pkix_asn1_tab.c, - libextra/libgnutls-extra.m4: Corrected session resuming in SRP - ciphersuites. - -2004-05-26 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2004-05-26 Nikos Mavrogiannopoulos - - * doc/tex/programs.tex, lib/gnutls_state.c, lib/libgnutls.m4: [no - log message] - -2004-05-23 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-05-23 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls.h.in.in, lib/gnutls_state.c: _gnutls_deinit() is - no longer used. Sessions are not automatically removed any more, on - abnormal termination. - -2004-05-22 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-05-22 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2004-05-22 Nikos Mavrogiannopoulos - - * lib/gnutls_int.h, lib/gnutls_record.c: some cleanups and better - handling of EOF in record_recv. - -2004-05-18 Nikos Mavrogiannopoulos - - * lib/minitasn1/decoding.c: [no log message] - -2004-05-16 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-05-16 Nikos Mavrogiannopoulos - - * lib/minitasn1/int.h: [no log message] - -2004-05-16 Nikos Mavrogiannopoulos - - * acinclude.m4, configure.in, lib/minitasn1/libtasn1.h, libtasn1.m4: - added proper libtasn1 version detection. - -2004-05-16 Nikos Mavrogiannopoulos - - * lib/minitasn1/decoding.c: Applied patch by Max Vozeler - , sent by Ivo Timmermans. - -2004-05-15 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-05-15 Nikos Mavrogiannopoulos - - * NEWS, configure.in, doc/certtool.cfg, lib/pkix.asn, - libextra/Makefile.am, src/certtool-cfg.c, src/certtool.c: certtool - has now support for more X.520 DN attribute types. - -2004-05-14 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-05-14 Nikos Mavrogiannopoulos - - * configure.in, doc/certtool.cfg: [no log message] - -2004-05-14 Nikos Mavrogiannopoulos - - * src/certtool-cfg.c, src/certtool-cfg.h, src/certtool.c: certtool - can now read and set the UID field to a DN. - -2004-05-14 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h: [no log message] - -2004-05-13 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-05-13 Nikos Mavrogiannopoulos - - * doc/tex/ex-pkcs12.tex, doc/tex/examples.tex, - includes/gnutls/pkcs12.h, lib/gnutls.h.in.in, lib/gnutls_int.h, - lib/x509/pkcs12_bag.c, src/certtool.c: removed gnutls_const_datum - type. - -2004-05-13 Nikos Mavrogiannopoulos - - * NEWS, configure.in: [no log message] - -2004-05-13 Nikos Mavrogiannopoulos - - * libextra/opencdk/Makefile.am, libextra/opencdk/README, - libextra/opencdk/opencdk.h, libextra/opencdk/sig-check.c, - libextra/openpgp/verify.c: updated opencdk to report if any key - signer was found. - -2004-05-13 Nikos Mavrogiannopoulos - - * configure.in, libextra/Makefile.am, libextra/gnutls_extra.c, - libextra/openpgp/Makefile.am, libextra/openpgp/compat.c, - libextra/openpgp/extras.c, libextra/openpgp/gnutls_openpgp.h, - libextra/openpgp/openpgp.c, libextra/openpgp/openpgp.h, - libextra/openpgp/privkey.c, libextra/openpgp/verify.c, - libextra/openpgp/xml.c: [no log message] - -2004-05-13 Nikos Mavrogiannopoulos - - * src/certtool-cfg.c, src/prime.c: [no log message] - -2004-05-13 Nikos Mavrogiannopoulos - - * configure.in, lib/gnutls_compress_int.c, lib/gnutls_handshake.c, - lib/gnutls_priority.c, libextra/Makefile.am, - libextra/gnutls_extra.c, libextra/gnutls_openpgp.c, src/cli.c, - src/common.c, src/serv.c: some fixes in the compilation system. - -2004-05-13 Nikos Mavrogiannopoulos - - * configure.in, libextra/Makefile.am: [no log message] - -2004-05-12 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-05-12 Nikos Mavrogiannopoulos - - * configure.in, libextra/Makefile.am, libextra/gnutls_extra.c: Added - configure option to disable lzo completely. - -2004-05-12 Nikos Mavrogiannopoulos - - * NEWS, configure.in, doc/certtool.cfg, doc/tex/srp.tex, - lib/Makefile.am, libextra/Makefile.am, - libextra/opencdk/Makefile.am, libextra/opencdk/armor.c, - libextra/opencdk/cipher.c, libextra/opencdk/cipher.h, - libextra/opencdk/compress.c, libextra/opencdk/context.h, - libextra/opencdk/encrypt.c, libextra/opencdk/filters.h, - libextra/opencdk/kbnode.c, libextra/opencdk/keydb.c, - libextra/opencdk/keygen.c, libextra/opencdk/keylist.c, - libextra/opencdk/keyserver.c, libextra/opencdk/main.c, - libextra/opencdk/main.h, libextra/opencdk/md.c, - libextra/opencdk/md.h, libextra/opencdk/misc.c, - libextra/opencdk/new-packet.c, libextra/opencdk/opencdk.h, - libextra/opencdk/packet.h, libextra/opencdk/plaintext.c, - libextra/opencdk/pubkey.c, libextra/opencdk/read-packet.c, - libextra/opencdk/seskey.c, libextra/opencdk/sig-check.c, - libextra/opencdk/sign.c, libextra/opencdk/stream.c, - libextra/opencdk/stream.h, libextra/opencdk/sym-cipher.c, - libextra/opencdk/trustdb.c, libextra/opencdk/types.h, - libextra/opencdk/verify.c, libextra/opencdk/write-packet.c, - libextra/openpgp/Makefile.am: opencdk is being included if not - found. - -2004-05-12 Nikos Mavrogiannopoulos - - * src/certtool-cfg.c, src/certtool-cfg.h, src/certtool.c, - src/crypt-gaa.c, src/crypt.gaa: certtool can now add ip address SAN - extension. - -2004-05-11 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-05-11 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c: the TLS hello message random values no - longer use strong random data. - -2004-05-10 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c: [no log message] - -2004-05-08 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-05-08 Nikos Mavrogiannopoulos - - * src/Makefile.am, src/README.srpcrypt, src/README.srptool: [no log - message] - -2004-05-08 Nikos Mavrogiannopoulos - - * lib/auth_rsa.c, lib/gnutls_handshake.c, lib/gnutls_handshake.h, - lib/gnutls_v2_compat.c, libextra/auth_srp_passwd.c, - libextra/gnutls_openpgp.c, libextra/gnutls_srp.c: Fixed some things - in the random number usage. Weak levels are used where possible to - avoid emptying the strong random pool. - -2004-05-08 Nikos Mavrogiannopoulos - - * doc/manpages/Makefile.am, doc/manpages/gnutls-srpcrypt.1, - doc/manpages/srptool.1, doc/protocol/draft-eronen-tls-psk-00.txt, - doc/tex/ex-x509-info.tex, doc/tex/srp.tex: [no log message] - -2004-05-08 Nikos Mavrogiannopoulos - - * doc/tex/cert_auth.tex, doc/tex/certificate.tex, - doc/tex/ciphers.tex: some additions to certificate stuff. - -2004-05-03 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-05-03 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_auth.c, lib/gnutls_handshake.c, lib/gnutls_kx.c, - lib/gnutls_pk.c, lib/gnutls_ui.h: Added - gnutls_auth_client_get_type() and gnutls_auth_server_get_type(). - -2004-04-30 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-04-30 Nikos Mavrogiannopoulos - - * lib/ext_cert_type.c, lib/gnutls_cert.c, lib/gnutls_state.c: Fixes - in the automatic disabling of certificate types. - -2004-04-29 Nikos Mavrogiannopoulos - - * NEWS, lib/auth_cert.c, lib/gnutls_handshake.c, lib/gnutls_int.h, - lib/gnutls_state.c: Automatically disable certificate types that do - not have corresponding certificates. - -2004-04-29 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-04-29 Nikos Mavrogiannopoulos - - * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, - src/certtool.gaa: added xml exporting capabilities to certtool - utility. - -2004-04-28 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-04-26 Nikos Mavrogiannopoulos - - * configure.in, lib/gnutls_cert.c: [no log message] - -2004-04-23 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-04-23 Nikos Mavrogiannopoulos - - * lib/auth_cert.c, lib/gnutls_cert.c, src/cli.c: [no log message] - -2004-04-23 Nikos Mavrogiannopoulos - - * configure.in: [no log message] - -2004-04-22 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-04-22 Nikos Mavrogiannopoulos - - * NEWS, configure.in, doc/TODO, lib/gnutls_global.c, - lib/gnutls_record.c: [no log message] - -2004-04-19 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-04-19 Nikos Mavrogiannopoulos - - * lib/gnutls_global.c: [no log message] - -2004-04-19 Nikos Mavrogiannopoulos - - * lib/gnutls_global.c, lib/gnutls_random.h, src/common.c: [no log - message] - -2004-04-19 Nikos Mavrogiannopoulos - - * lib/gnutls_global.c: [no log message] - -2004-04-18 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-04-18 Nikos Mavrogiannopoulos - - * NEWS, doc/TODO, doc/tex/ex-serv-srp.tex, doc/tex/programs.tex, - doc/tex/srp.tex, src/Makefile.am: Renamed gnutls-srpcrypt to srptool - -2004-04-18 Nikos Mavrogiannopoulos - - * NEWS, includes/gnutls/openpgp.h, lib/auth_cert.c: Corrected bug in - OpenPGP key loading using a callback. - -2004-04-17 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-04-17 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_record.c, lib/gnutls_str.c: Corrected bug in TLS - renegotiation. - -2004-04-17 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c: [no log message] - -2004-04-17 Nikos Mavrogiannopoulos - - * NEWS, doc/TODO, doc/tex/ex-rfc2818.tex, lib/gnutls.h.in.in, - lib/gnutls_algorithms.c, src/certtool.c, src/crypt-gaa.c, - src/crypt-gaa.h: Added gnutls_sign_algorithm_get_name() and - gnutls_pk_algorithm_get_name(). - -2004-04-15 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-04-15 Nikos Mavrogiannopoulos - - * lib/auth_rsa.c, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, - lib/gnutls_auth.c, lib/gnutls_constate.c, lib/gnutls_handshake.c, - lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_state.c, - lib/gnutls_v2_compat.c, lib/x509/verify.c, libextra/ext_srp.c, - src/certtool-cfg.c, src/certtool-gaa.c, src/certtool-gaa.h, - src/cli-gaa.c, src/cli-gaa.h, src/serv-gaa.c, src/serv-gaa.h, - src/tls_test-gaa.c, src/tls_test-gaa.h: Some updates in order to - compile with tcc. - -2004-04-15 Nikos Mavrogiannopoulos - - * lib/minitasn1/int.h, lib/minitasn1/libtasn1.h, - lib/minitasn1/structure.c: added the new libtasn1. - -2004-04-15 Nikos Mavrogiannopoulos - - * src/certtool-cfg.c, src/certtool-cfg.h, src/certtool.c: some - cleanups in the parsing code. - -2004-04-14 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-04-14 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-rfc2246-bis-05.txt, - doc/protocol/draft-ietf-tls-rfc2246-bis-06.txt: [no log message] - -2004-04-14 Nikos Mavrogiannopoulos - - * src/certtool.c: [no log message] - -2004-04-14 Nikos Mavrogiannopoulos - - * NEWS, lib/x509/extensions.c, src/certtool.c: minor bugfixes. - -2004-04-14 Nikos Mavrogiannopoulos - - * lib/x509/extensions.c, lib/x509/x509_write.c: [no log message] - -2004-04-14 Nikos Mavrogiannopoulos - - * doc/certtool.cfg: [no log message] - -2004-04-14 Nikos Mavrogiannopoulos - - * doc/certtool.cfg, src/certtool-cfg.c, src/certtool-cfg.h, - src/certtool.c: [no log message] - -2004-04-14 Nikos Mavrogiannopoulos - - * NEWS, doc/Makefile.am, doc/certtool.cfg, doc/manpages/certtool.1, - doc/tex/programs.tex, src/certtool.cfg, src/tests.c: [no log - message] - -2004-04-14 Nikos Mavrogiannopoulos - - * lib/Makefile.am: [no log message] - -2004-04-14 Nikos Mavrogiannopoulos - - * configure.in, src/Makefile.am: certtool will use the system's - libcfg if available. - -2004-04-14 Nikos Mavrogiannopoulos - - * NEWS, configure.in, doc/TODO, src/Makefile.am, - src/certtool-cfg.c, src/certtool-cfg.h, src/certtool-gaa.c, - src/certtool-gaa.h, src/certtool.c, src/certtool.cfg, - src/certtool.gaa, src/cfg/Makefile.am, src/cfg/cfg+.c, - src/cfg/cfg+.h, src/cfg/cfgfile.c, src/cfg/cfgfile.h, - src/cfg/cmdline.c, src/cfg/cmdline.h, src/cfg/parse.c, - src/cfg/platon/Makefile.am, src/cfg/platon/str/Makefile.am, - src/cfg/platon/str/dynfgets.c, src/cfg/platon/str/dynfgets.h, - src/cfg/platon/str/strctype.c, src/cfg/platon/str/strctype.h, - src/cfg/platon/str/strdyn.c, src/cfg/platon/str/strdyn.h, - src/cfg/platon/str/strplus.c, src/cfg/platon/str/strplus.h, - src/cfg/props.c, src/cfg/shared.c, src/cfg/shared.h, src/getpass.c, - src/getpass.h: Added batch support to certtool. Now can use - templates. - -2004-04-14 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_cipher_int.c, lib/gnutls_global.c, - lib/x509/Makefile.am, lib/x509/rc2.c, lib/x509/rc2.h: The RC2 cipher - is no more included. The one in libgcrypt is now used. - -2004-04-14 Nikos Mavrogiannopoulos - - * NEWS, lib/x509/extensions.c, lib/x509/extensions.h, - lib/x509/x509_write.c, src/certtool.c: updated the extensions - handling. - -2004-04-14 Nikos Mavrogiannopoulos - - * NEWS, doc/TODO, includes/gnutls/x509.h, lib/x509/extensions.c, - lib/x509/extensions.h, lib/x509/x509.c, lib/x509/x509_write.c, - src/certtool.c: - Added support for authority key identifier X.509 extension field. - Added support for the extended key usage X.509 extension field. - -2004-04-13 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-04-13 Nikos Mavrogiannopoulos - - * doc/TODO, lib/gnutls_cipher.c, lib/gnutls_int.h, - lib/gnutls_record.c, lib/gnutls_state.c: The record receive buffer - is now stored in the session data, to avoid memory allocations per - receive. - -2004-04-07 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-04-07 Nikos Mavrogiannopoulos - - * ChangeLog, NEWS, configure.in: [no log message] - -2004-04-07 Nikos Mavrogiannopoulos - - * lib/gnutls_rsa_export.c, lib/x509/privkey.c, lib/x509/x509.h: - Optimized (a bit) the rsa_parameter copying. I don't like it. - -2004-04-03 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-04-03 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c, lib/gnutls_compress_int.c, - lib/gnutls_handshake.c, lib/gnutls_int.h: [no log message] - -2004-04-03 Nikos Mavrogiannopoulos - - * NEWS, configure.in, lib/gnutls_state.c: - Corrected bug in RSA parameters handling which could cause unexpected crashes. - -2004-04-03 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/library.tex, lib/auth_cert.c, lib/gnutls_cert.c, - lib/gnutls_cert.h: [no log message] - -2004-04-01 Nikos Mavrogiannopoulos - - * libextra/auth_srp.c: implemented all the check for SRP group - parameters from the latest SRP draft. - -2004-04-01 Nikos Mavrogiannopoulos - - * libextra/auth_srp.h, libextra/auth_srp_passwd.c, - libextra/gnutls_srp.c: [no log message] - -2004-03-29 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-03-29 Nikos Mavrogiannopoulos - - * NEWS, configure.in: [no log message] - -2004-03-27 Nikos Mavrogiannopoulos - - * doc/tex/certificate.tex, doc/tex/examples.tex, - doc/tex/gnutls.bib, doc/tex/gnutls.tex: [no log message] - -2004-03-26 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-03-26 Nikos Mavrogiannopoulos - - * lib/gnutls_extensions.c, lib/gnutls_extensions.h, - lib/gnutls_handshake.c, lib/gnutls_x509.c: some improvements that - lead to fewer calls to malloc(). - -2004-03-25 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-03-25 Nikos Mavrogiannopoulos - - * doc/tex/gnutls.bib, doc/tex/howto.tex, doc/tex/tls_extensions.tex: - [no log message] - -2004-03-25 Nikos Mavrogiannopoulos - - * NEWS, configure.in, includes/gnutls/extra.h, lib/auth_cert.c, - lib/gnutls_cert.c, lib/gnutls_global.c, lib/gnutls_int.h, - lib/gnutls_ui.h, libextra/auth_srp_passwd.c, libextra/gnutls_srp.c, - src/cli.c, src/tests.c: Deprecated: - gnutls_srp_server_set_select_function(), - gnutls_certificate_client_set_select_function(), - gnutls_srp_server_set_select_function(). - -2004-03-16 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-03-16 Nikos Mavrogiannopoulos - - * configure.in, src/Makefile.am, src/certtool.c, src/crypt.c, - src/getpass.c, src/getpass.h: replaced the getpass() call with an - internal one. - -2004-03-16 Nikos Mavrogiannopoulos - - * doc/examples/Makefile.am, doc/tex/Makefile.am, - doc/tex/ex-pgp-keyserver.tex, doc/tex/examples.tex: removed the - openpgp key retrieval example. - -2004-03-15 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-03-15 Nikos Mavrogiannopoulos - - * NEWS, configure.in, lib/Makefile.am, libextra/openpgp/openpgp.c, - libextra/openpgp/xml.c: Finally corrected a compilation issue when - opencdk was installed in a non-base directory. Some other minor - fixes. - -2004-03-15 Nikos Mavrogiannopoulos - - * libgcrypt.m4, src/serv.c: [no log message] - -2004-03-13 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-03-13 Nikos Mavrogiannopoulos - - * NEWS, configure.in, doc/tex/auth.tex, includes/gnutls/x509.h, - lib/gnutls.h.in.in, lib/gnutls_anon_cred.c, lib/gnutls_cert.c, - lib/gnutls_dh.h, lib/gnutls_dh_primes.c, lib/gnutls_int.h, - lib/gnutls_rsa_export.c, lib/gnutls_rsa_export.h, - lib/gnutls_state.c, lib/gnutls_ui.h, lib/x509/privkey.c, - lib/x509/privkey.h: * Added functions gnutls_rsa_params_cpy(), gnutls_dh_params_cpy() and gnutls_x509_privkey_cpy(). - -2004-03-13 Nikos Mavrogiannopoulos - - * doc/tex/auth.tex, doc/tex/preparation.tex, - lib/gnutls_handshake.c, lib/gnutls_state.c: * Added some preliminary documentation for the new libgcrypt locking - interface. * Added some documentation for the parameters setting using - callback. - -2004-03-11 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-03-11 Nikos Mavrogiannopoulos - - * NEWS, lib/auth_anon.c, lib/auth_anon.h, lib/auth_cert.h, - lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, - lib/gnutls.h.in.in, lib/gnutls_anon_cred.c, lib/gnutls_cert.c, - lib/gnutls_cert.h, lib/gnutls_handshake.c, lib/gnutls_int.h, - lib/gnutls_sig.c, lib/gnutls_state.c, lib/gnutls_ui.c, - lib/gnutls_ui.h, src/serv.c: Added - gnutls_certificate_set_params_function() and - gnutls_anon_set_params_function() that set the RSA or DH parameters - using a callback. - -2004-03-04 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-03-03 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-02-28 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-02-28 Nikos Mavrogiannopoulos - - * libextra/openpgp/openpgp.h: [no log message] - -2004-02-28 Nikos Mavrogiannopoulos - - * libextra/openpgp/openpgp.h: [no log message] - -2004-02-28 Nikos Mavrogiannopoulos - - * lib/minitasn1/int.h, lib/minitasn1/libtasn1.h: added new libtasn1 - (0.2.7) - -2004-02-28 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c, lib/gnutls_hash_int.c: some bugfixes. No - longer allow sending client hello if a TLS version is not set. - -2004-02-27 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-02-27 Nikos Mavrogiannopoulos - - * lib/auth_cert.c, lib/gnutls_cipher.c, lib/gnutls_constate.c, - lib/gnutls_hash_int.c, lib/gnutls_kx.c, lib/gnutls_kx.h, - lib/gnutls_sig.c: patch to fix the bug in mutual certificate - authentication in SSL 3.0 - -2004-02-26 Nikos Mavrogiannopoulos - - * lib/minitasn1/coding.c, lib/minitasn1/decoding.c, - lib/minitasn1/element.c, lib/minitasn1/int.h, - lib/minitasn1/libtasn1.h: added new minitasn1. - -2004-02-25 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-02-25 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-compression-06.txt, - doc/protocol/draft-ietf-tls-compression-07.txt, - doc/protocol/draft-ietf-tls-srp-05.txt, - doc/protocol/draft-ietf-tls-srp-06.txt: [no log message] - -2004-02-23 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-02-23 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2004-02-22 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-02-22 Nikos Mavrogiannopoulos - - * libextra/openpgp/openpgp.c: [no log message] - -2004-02-22 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/alert.tex, doc/tex/ciphers.tex, doc/tex/howto.tex, - doc/tex/srp.tex, lib/gnutls_errors.c, lib/gnutls_errors_int.h, - lib/x509/Makefile.am, lib/x509/rfc2818_hostname.c, opencdk.m4: - Corrected the return values of gnutls_x509_crt_check_hostname(). - -2004-02-22 Nikos Mavrogiannopoulos - - * doc/tex/preface.tex: [no log message] - -2004-02-16 Nikos Mavrogiannopoulos - - * lib/x509/Makefile.am: [no log message] - -2004-02-13 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-02-13 Nikos Mavrogiannopoulos - - * lib/x509/common.h: [no log message] - -2004-02-13 Nikos Mavrogiannopoulos - - * lib/pkix.asn, lib/pkix_asn1_tab.c: fixed CRLDistpoints ASN.1 - definitions. - -2004-02-12 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-02-11 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-02-11 Nikos Mavrogiannopoulos - - * lib/gnutls_cipher.c, libextra/auth_srp.c: [no log message] - -2004-02-11 Nikos Mavrogiannopoulos - - * lib/minitasn1/structure.c, src/common.c: [no log message] - -2004-02-10 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-02-10 Nikos Mavrogiannopoulos - - * lib/gnutls_extensions.c: [no log message] - -2004-02-10 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/compression.tex, lib/ext_server_name.c, - lib/gnutls.h.in.in, lib/gnutls_extensions.c, src/cli.c, - src/common.c: Fixed a bug where 'server name' extension was always - sent. - -2004-02-10 Nikos Mavrogiannopoulos - - * lib/gnutls_dh_primes.c: Fixed some bugs. Patch by Brieuc Jeunhomme - . - -2004-01-06 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-01-06 Nikos Mavrogiannopoulos - - * configure.in, src/certtool.c: added getpass() check. - -2004-01-06 Nikos Mavrogiannopoulos - - * NEWS, configure.in, doc/tex/cert_auth.tex, - doc/tex/ex-x509-info.tex, doc/tex/library.tex, - doc/tex/programs.tex, lib/gnutls_algorithms.c, - lib/gnutls_algorithms.h, lib/gnutls_cert.c, lib/gnutls_cipher.c, - lib/gnutls_constate.c, lib/gnutls_errors.c, lib/gnutls_global.c, - lib/gnutls_handshake.c, lib/gnutls_hash_int.c, - lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_record.c, - lib/gnutls_state.c, lib/x509/crl.c, lib/x509/crq.c, - lib/x509/pkcs12.c, lib/x509/pkcs7.c, lib/x509/x509.c, - lib/x509/x509_write.c, lib/x509/xml.c, lib/x509_b64.c, - libextra/gnutls_extra.c, libextra/gnutls_srp.c, src/certtool-gaa.c, - src/certtool.c, src/cli-gaa.c, src/common.c, src/crypt-gaa.c, - src/serv-gaa.c, src/serv.c, src/tls_test-gaa.c: Several bug fixes - and cleanups by Arne Thomassen. - -2004-01-06 Nikos Mavrogiannopoulos - - * NEWS, configure.in, lib/pkix.asn, lib/pkix_asn1_tab.c: [no log - message] - -2004-01-06 Nikos Mavrogiannopoulos - - * NEWS, doc/TODO, includes/gnutls/x509.h, lib/gnutls.h.in.in, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/pkix.asn, - lib/pkix_asn1_tab.c, lib/x509/common.c, lib/x509/common.h, - lib/x509/crl.c, lib/x509/crq.c, lib/x509/dn.c, lib/x509/mpi.c, - lib/x509/pkcs12.c, lib/x509/sign.c, lib/x509/x509.c, src/certtool.c: * Added the gnutls_sign_algorithm type. * Improved the DN parser. - -2004-01-05 Nikos Mavrogiannopoulos - - * doc/TODO, doc/protocol/rfc3039.txt, lib/gnutls_handshake.c: [no - log message] - -2004-01-05 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c, lib/x509/common.c, lib/x509/privkey_pkcs8.c: - [no log message] - -2004-01-05 Nikos Mavrogiannopoulos - - * src/Makefile.am: [no log message] - -2004-01-04 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-01-04 Nikos Mavrogiannopoulos - - * NEWS, configure.in: the -D_REENTRANT is now used. - -2004-01-04 Nikos Mavrogiannopoulos - - * src/certtool.c: [no log message] - -2004-01-03 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2004-01-03 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2004-01-03 Nikos Mavrogiannopoulos - - * NEWS, lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509/common.c, - lib/x509/dn.c, src/certtool.c: Corrected problem printing the DC - attributes in a DN. - -2004-01-03 Nikos Mavrogiannopoulos - - * src/tests.c, src/tests.h, src/tls_test.c: [no log message] - -2004-01-03 Nikos Mavrogiannopoulos - - * NEWS, configure.in, lib/gnutls_handshake.c, lib/gnutls_int.h, - src/certtool.c, src/common.c: [no log message] - -2004-01-03 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/x509/compat.c, libextra/gnutls_openpgp.c, - libextra/openpgp/gnutls_openpgp.h, src/cli.c: [no log message] - -2004-01-03 Nikos Mavrogiannopoulos - - * lib/x509/crl_write.c: [no log message] - -2004-01-03 Nikos Mavrogiannopoulos - - * lib/x509/compat.h, lib/x509/rfc2818_hostname.c, src/cli.c: Updated - gnutls-cli's SRP behaviour. Some other fixes. - -2003-12-30 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-12-30 Nikos Mavrogiannopoulos - - * src/certtool.c: [no log message] - -2003-12-30 Nikos Mavrogiannopoulos - - * lib/gnutls_ui.h, src/certtool.c, src/common.c: [no log message] - -2003-12-30 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/auth.tex, lib/gnutls_algorithms.c, lib/gnutls_ui.h, - lib/x509/rfc2818_hostname.c, lib/x509/x509.c, src/certtool.c: [no - log message] - -2003-12-30 Nikos Mavrogiannopoulos - - * lib/gnutls_errors.c, lib/gnutls_errors_int.h, - lib/x509/rfc2818_hostname.c, libextra/openpgp/openpgp.c: [no log - message] - -2003-12-29 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-12-29 Nikos Mavrogiannopoulos - - * NEWS, doc/TODO, lib/gnutls_cipher.c: [no log message] - -2003-12-29 Nikos Mavrogiannopoulos - - * src/tests.c, src/tests.h, src/tls_test.c: added TLS 1.1 protocol - detection. - -2003-12-29 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/x509/rfc2818_hostname.c: [no log message] - -2003-12-29 Nikos Mavrogiannopoulos - - * src/tests.c, src/tests.h, src/tls_test.c: added arcfour 40 cipher - detection. - -2003-12-29 Nikos Mavrogiannopoulos - - * NEWS, configure.in, doc/tex/library.tex, lib/pkix.asn, - lib/pkix_asn1_tab.c, lib/x509/extensions.c: [no log message] - -2003-12-29 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/ex-cert-select.tex, doc/tex/macros.tex, - doc/tex/record_weaknesses.tex, lib/gnutls.h.in.in, - lib/gnutls_algorithms.c, lib/gnutls_cipher.c, lib/gnutls_int.h, - lib/gnutls_record.c, lib/gnutls_state.c, src/common.c, src/serv.c: - Added support for TLS 1.1 - -2003-12-28 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-12-28 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2003-12-28 Nikos Mavrogiannopoulos - - * lib/auth_cert.c, lib/auth_cert.h, lib/gnutls_cert.c, - lib/gnutls_random.c, lib/gnutls_ui.h: updated the client retrieval - certificate callback. - -2003-12-28 Nikos Mavrogiannopoulos - - * doc/tex/cert_auth.tex, doc/tex/certificate.tex, - doc/tex/ex-x509-info.tex, includes/gnutls/x509.h, lib/x509/x509.c, - lib/x509/x509_write.c, src/certtool.c: Added - gnutls_x509_crt_cpy_crl_dist_points() - -2003-12-28 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/certificate.tex, doc/tex/gnutls.bib, - includes/gnutls/extra.h, includes/gnutls/x509.h, - lib/gnutls.h.in.in, lib/pkix.asn, lib/pkix_asn1_tab.c, - lib/x509/extensions.c, lib/x509/x509.c, lib/x509/x509.h, - src/certtool.c: Corrected the CRL distribution point extension - handling. - -2003-12-26 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-12-26 Nikos Mavrogiannopoulos - - * lib/gnutls_cert.c, lib/x509/compat.h, libextra/gnutls_extra.c, - libextra/openpgp/compat.c, libextra/openpgp/gnutls_openpgp.h: [no - log message] - -2003-12-26 Nikos Mavrogiannopoulos - - * AUTHORS, NEWS, configure.in, doc/tex/cover.tex.in, - includes/Makefile.am, includes/gnutls/Makefile.am, - includes/gnutls/compat8.h, includes/gnutls/openssl.h, - lib/auth_anon.c, lib/auth_cert.c, lib/auth_dh_common.c, - lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/debug.c, - lib/ext_cert_type.c, lib/ext_max_record.c, lib/ext_server_name.c, - lib/gnutls_alert.c, lib/gnutls_algorithms.c, - lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_buffers.c, - lib/gnutls_cert.c, lib/gnutls_cipher.c, lib/gnutls_cipher_int.c, - lib/gnutls_compress.c, lib/gnutls_compress_int.c, - lib/gnutls_constate.c, lib/gnutls_datum.c, lib/gnutls_db.c, - lib/gnutls_dh.c, lib/gnutls_dh_primes.c, lib/gnutls_errors.c, - lib/gnutls_extensions.c, lib/gnutls_global.c, - lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_kx.c, - lib/gnutls_mem.c, lib/gnutls_mpi.c, lib/gnutls_num.c, - lib/gnutls_pk.c, lib/gnutls_priority.c, lib/gnutls_random.c, - lib/gnutls_record.c, lib/gnutls_rsa_export.c, lib/gnutls_session.c, - lib/gnutls_session_pack.c, lib/gnutls_sig.c, lib/gnutls_state.c, - lib/gnutls_str.c, lib/gnutls_ui.c, lib/gnutls_v2_compat.c, - lib/gnutls_x509.c, lib/strnstr.c, lib/x509/common.c, - lib/x509/compat.c, lib/x509/compat.h, lib/x509/crl.c, - lib/x509/crq.c, lib/x509/dn.c, lib/x509/dsa.c, - lib/x509/extensions.c, lib/x509/mpi.c, lib/x509/pkcs12.c, - lib/x509/pkcs12_bag.c, lib/x509/pkcs12_encr.c, lib/x509/pkcs5.c, - lib/x509/pkcs7.c, lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, - lib/x509/rc2.c, lib/x509/rfc2818_hostname.c, lib/x509/sign.c, - lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509_write.c, - lib/x509/xml.c, lib/x509_b64.c, libextra/Makefile.am, - libextra/auth_srp.c, libextra/auth_srp_passwd.c, - libextra/auth_srp_rsa.c, libextra/auth_srp_sb64.c, - libextra/ext_srp.c, libextra/gnutls_extra.c, - libextra/gnutls_openpgp.c, libextra/gnutls_openssl.c, - libextra/gnutls_srp.c, libextra/openpgp/compat.c, - libextra/openpgp/extras.c, libextra/openpgp/openpgp.c, - libextra/openpgp/privkey.c, libextra/openpgp/verify.c, - libextra/openpgp/xml.c, libextra/openssl_compat.c, - libextra/openssl_compat.h, src/certtool-gaa.c, src/certtool-gaa.h, - src/certtool.c, src/certtool.gaa, src/cli.c, src/crypt.c, - src/prime.c, src/serv.c, src/tests.c, src/tls_test.c: * Added CRL verification functionality to certtool. * Added the FSF copyright notices. * Moved all the compatibility interface to the openssl compatibility library. - -2003-12-26 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2003-12-26 Nikos Mavrogiannopoulos - - * lib/x509/crq.c, lib/x509/mpi.c, lib/x509/mpi.h, lib/x509/sign.c, - lib/x509/verify.c: corrected signing and verifying with DSA keys. - -2003-12-26 Nikos Mavrogiannopoulos - - * NEWS, doc/TODO, doc/tex/certificate.tex, includes/gnutls/x509.h, - lib/Makefile.am, lib/x509/Makefile.am, lib/x509/crl.c, - lib/x509/sign.c, lib/x509/sign.h, lib/x509/x509_write.c, - src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, - src/certtool.gaa: Added support for generating CRLs in the library - and the certtool utility. - -2003-12-26 Nikos Mavrogiannopoulos - - * NEWS, includes/gnutls/x509.h, lib/gnutls_mpi.h, lib/pkix.asn, - lib/pkix_asn1_tab.c, lib/x509/extensions.c, lib/x509/extensions.h, - lib/x509/privkey.c, lib/x509/x509.c, lib/x509/x509.h, - lib/x509/x509_write.c, src/certtool.c: Added support for the Subject - Key ID PKIX extension. - -2003-12-24 Nikos Mavrogiannopoulos - - * lib/ext_server_name.c, libextra/gnutls_srp.c: [no log message] - -2003-12-23 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-12-23 Nikos Mavrogiannopoulos - - * NEWS, doc/TODO, includes/gnutls/x509.h, lib/pkix.asn, - lib/pkix_asn1_tab.c, lib/x509/common.c, lib/x509/dsa.c, - lib/x509/extensions.c, lib/x509/extensions.h, lib/x509/x509.c, - lib/x509/x509_write.c, src/certtool.c: Added support for reading and - generating CRL distribution points extensions in certificates (not - working yet). - -2003-12-23 Nikos Mavrogiannopoulos - - * lib/gnutls_mpi.h, libextra/auth_srp.c: Added checks (in SRP) for - A%n==0,1,-1 in server side. - -2003-12-22 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-12-22 Nikos Mavrogiannopoulos - - * NEWS, configure.in, doc/TODO, src/certtool-gaa.c, - src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: Added PKCS #7 - support to certtool utility. - -2003-12-21 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-12-21 Nikos Mavrogiannopoulos - - * NEWS, doc/examples/Makefile.am, doc/manpages/certtool.1, - doc/tex/ex-cert-select.tex, doc/tex/examples.tex, lib/auth_cert.c, - lib/auth_cert.h, lib/gnutls_cert.c, lib/gnutls_int.h, - lib/gnutls_ui.h, lib/x509/compat.c, libextra/gnutls_openssl.c: [no - log message] - -2003-12-21 Nikos Mavrogiannopoulos - - * lib/auth_cert.c: [no log message] - -2003-12-21 Nikos Mavrogiannopoulos - - * NEWS, doc/TODO, includes/Makefile.am, - includes/gnutls/Makefile.am, includes/gnutls/compat4.h, - includes/gnutls/compat8.h, includes/gnutls/openpgp.h, - includes/gnutls/x509.h, lib/dh_compat.c, lib/gnutls_ui.h, - lib/rsa_compat.c, libextra/gnutls_openpgp.c, - libextra/openpgp/openpgp.c, libextra/openpgp/verify.c, - libextra/openpgp/xml.c: Added gnutls_openpgp_key_get_key_usage(), - and removed several compatibility functions. - -2003-12-20 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-12-20 Nikos Mavrogiannopoulos - - * includes/gnutls/openpgp.h, lib/Makefile.am, lib/auth_cert.c, - lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, - lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_x509.c, - lib/gnutls_x509.h, lib/x509/common.c, lib/x509/mpi.c, - lib/x509/rfc2818_hostname.c, libextra/Makefile.am, - libextra/auth_srp_rsa.c, libextra/gnutls_extra.c, - libextra/gnutls_extra.h, libextra/gnutls_openpgp.c, - libextra/openpgp/gnutls_openpgp.h, libextra/openpgp/openpgp.h, - libextra/openpgp/privkey.c: several cleanups. - -2003-12-20 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c: Corrected bug which disallowed - ciphersuites other than the CERTIFICATE ones to work. - -2003-12-20 Nikos Mavrogiannopoulos - - * libextra/openpgp/privkey.c: [no log message] - -2003-12-20 Nikos Mavrogiannopoulos - - * doc/TODO, includes/gnutls/compat8.h, includes/gnutls/openpgp.h, - lib/auth_cert.c, lib/gnutls_cert.c, lib/gnutls_int.h, - lib/gnutls_ui.h, lib/gnutls_x509.c, lib/gnutls_x509.h, - libextra/Makefile.am, libextra/gnutls_extra.h, - libextra/gnutls_openpgp.c, libextra/openpgp/Makefile.am, - libextra/openpgp/gnutls_openpgp.h, libextra/openpgp/openpgp.c, - libextra/openpgp/openpgp.h: Improved - gnutls_certificate_client_retrieve_function() and - gnutls_certificate_server_retrieve_function() so that the parsing - time spent within them is minimized. Also added - gnutls_openpgp_privkey struct. No testing yet. - -2003-12-19 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-12-19 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h, lib/gnutls_cert.h, lib/x509/extensions.c, - lib/x509/x509_write.c: [no log message] - -2003-12-19 Nikos Mavrogiannopoulos - - * NEWS, includes/gnutls/x509.h, lib/gnutls_cert.h, - lib/x509/extensions.c, lib/x509/extensions.h, - lib/x509/x509_write.c, src/certtool.c, src/tests.c, src/tests.h, - src/tls_test.c: Added gnutls_x509_crt_set_key_usage() and certtool - can now set the certificate's key usage. - -2003-12-19 Nikos Mavrogiannopoulos - - * configure.in, doc/protocol/draft-ietf-tls-emailaddr-00.txt, - doc/tex/auth.tex: [no log message] - -2003-12-19 Nikos Mavrogiannopoulos - - * doc/tex/cert_auth.tex, doc/tex/ciphersuites.tex, src/serv.c: [no - log message] - -2003-12-19 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am, doc/tex/auth.tex, doc/tex/cert_auth.tex, - doc/tex/certificate.tex, doc/tex/ciphers.tex, - doc/tex/ciphersuites.tex, doc/tex/compression.tex, - doc/tex/handshake.tex, doc/tex/openpgp.tex, - doc/tex/preparation.tex, doc/tex/record_weaknesses.tex, - doc/tex/tls_extensions.tex, doc/tex/x509.tex: some updated in - documentation - -2003-12-19 Nikos Mavrogiannopoulos - - * lib/auth_cert.c, lib/gnutls_int.h, lib/gnutls_record.c, - src/cli.c, src/serv.c: Corrected bug in gnutls_bye() which made it - return an error code of INVALID_REQUEST instead of success. - -2003-12-18 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-12-18 Nikos Mavrogiannopoulos - - * NEWS, doc/TODO, includes/gnutls/x509.h, lib/Makefile.am, - lib/gnutls_pk.c, lib/gnutls_rsa_export.c, lib/gnutls_rsa_export.h, - lib/gnutls_sig.c, lib/gnutls_ui.h, lib/rsa_compat.c, - lib/x509/Makefile.am, lib/x509/common.c, lib/x509/crq.c, - lib/x509/dsa.c, lib/x509/dsa.h, lib/x509/mpi.c, lib/x509/mpi.h, - lib/x509/privkey.c, lib/x509/sign.c, lib/x509/x509.c, - lib/x509/x509_write.c, src/certtool-gaa.c, src/certtool-gaa.h, - src/certtool.c, src/certtool.gaa: Added support for generating and - exporting DSA private keys. Exporting to PKCS #8 is still not - supported due to lack of standards. - -2003-12-18 Nikos Mavrogiannopoulos - - * NEWS, lib/auth_cert.c, lib/auth_cert.h, lib/auth_dhe.c, - lib/auth_rsa.c, lib/auth_rsa_export.c, lib/gnutls_cert.c, - lib/gnutls_cert.h, lib/gnutls_int.h, lib/gnutls_state.c, - lib/gnutls_ui.h, lib/gnutls_x509.c, lib/gnutls_x509.h, - libextra/auth_srp_rsa.c, libextra/gnutls_extra.c, - libextra/gnutls_extra.h, libextra/gnutls_openpgp.c, - libextra/openpgp/gnutls_openpgp.h: Added the callbacks - gnutls_certificate_client_retrieve_function() and - gnutls_certificate_server_retrieve_function(), to allow a client or - a server to specify certificates for the handshake without storing - them to the credentials structure. - -2003-12-16 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-12-16 Nikos Mavrogiannopoulos - - * NEWS, configure.in, lib/auth_anon.c, lib/auth_cert.c, - lib/auth_cert.h, lib/auth_dhe.c, lib/auth_rsa.c, - lib/auth_rsa_export.c, lib/dh_compat.c, lib/gnutls.h.in.in, - lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, - lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_dh.h, - lib/gnutls_dh_primes.c, lib/gnutls_handshake.c, lib/gnutls_int.h, - lib/gnutls_kx.c, lib/gnutls_rsa_export.c, lib/gnutls_ui.c, - lib/libgnutls.vers, lib/x509/common.c, libextra/auth_srp_rsa.c, - libextra/gnutls_extra.c, libextra/libgnutls-extra.vers, opencdk.m4: * The error codes GNUTLS_E_NO_TEMPORARY_DH_PARAMS and - GNUTLS_E_NO_TEMPORARY_RSA_PARAMS are no longer returned by the - handshake function. Ciphersuites that require temporary parameters - are removed when such parameters do not exist. * Several internal changes to allow adding the callback function to - retrieve the certificate and the private key. - -2003-12-10 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-12-10 Nikos Mavrogiannopoulos - - * NEWS, configure.in, lib/gnutls.h.in.in, lib/gnutls_dh_primes.c, - lib/gnutls_rsa_export.c, lib/gnutls_state.c: Included - gnutls_1_0_0_patches. - -2003-12-10 Nikos Mavrogiannopoulos - - * NEWS, THANKS, lib/Makefile.am, lib/gnutls_handshake.c, - lib/gnutls_record.c, libextra/Makefile.am, - libextra/openpgp/Makefile.am, src/cli.c, src/tests.c, src/tests.h, - src/tls_test.c: Included gnutls_1_0_0_patches. - -2003-12-10 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2003-12-09 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-12-05 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-12-05 Nikos Mavrogiannopoulos - - * doc/TODO, doc/tex/ciphers.tex, lib/gnutls_dh_primes.c, - lib/gnutls_mpi.c, src/prime.c: some minor fixes and cleanups. - -2003-12-04 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-12-04 Nikos Mavrogiannopoulos - - * NEWS, src/common.c: [no log message] - -2003-12-02 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-12-02 Nikos Mavrogiannopoulos - - * lib/gnutls_cipher.c, lib/gnutls_cipher_int.c: some cleanups in the - record protocol processing. - -2003-12-02 Nikos Mavrogiannopoulos - - * NEWS, doc/TODO, doc/tex/srp.tex, includes/gnutls/extra.h, - lib/gnutls.h.in.in, lib/gnutls_errors.c, lib/gnutls_handshake.c, - lib/gnutls_int.h, lib/gnutls_state.c, libextra/auth_srp.c, - libextra/auth_srp.h, libextra/ext_srp.c, libextra/ext_srp.h, - libextra/gnutls_srp.c, src/cli.c: Improved the support for - draft-ietf-tls-srp-05. The two-phase handshake is now fully - supported without any interaction with the application layer (except - for a callback). - -2003-12-02 Nikos Mavrogiannopoulos - - * doc/manpages/Makefile.am, doc/manpages/certtool.1, - doc/manpages/gnutls-cli-debug.1, doc/manpages/gnutls-cli.1, - doc/manpages/gnutls-serv.1, doc/manpages/gnutls-srpcrypt.1: Added - new manpages by Ivo. - -2003-12-01 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-12-01 Nikos Mavrogiannopoulos - - * doc/tex/ciphersuites.tex: [no log message] - -2003-12-01 Nikos Mavrogiannopoulos - - * configure.in, lib/gnutls_hash_int.c, lib/gnutls_random.c, - lib/x509/dn.c, src/common.c: eliminated some memory leaks and other - fixes. - -2003-12-01 Nikos Mavrogiannopoulos - - * doc/tex/ex-serv-export.tex, doc/tex/ex-serv-srp.tex, - doc/tex/preface.tex: [no log message] - -2003-11-30 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-11-30 Nikos Mavrogiannopoulos - - * src/tests.c, src/tests.h, src/tls_test.c: added detection for ZLIB - compression. - -2003-11-30 Nikos Mavrogiannopoulos - - * src/tests.c, src/tls_test.c: improved srp detection. - -2003-11-30 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/srp.tex, lib/gnutls_cipher.c, libextra/auth_srp.c, - src/cli.c: Some fixes in the certificate authenticated SRP - ciphersuites. - -2003-11-30 Nikos Mavrogiannopoulos - - * doc/README.autoconf, lib/gnutls_alert.c, lib/gnutls_errors.c, - lib/gnutls_errors_int.h, lib/gnutls_handshake.c, - libextra/auth_srp.c, src/serv-gaa.c, src/serv.c: some fixes to - comply with the SRP draft. The handshake is now repeated if an empty - SRP username is received. - -2003-11-30 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/srp.tex, includes/gnutls/extra.h, - lib/gnutls_anon_cred.c, lib/gnutls_cert.c, lib/gnutls_x509.c, - lib/libgnutls.vers, lib/x509_b64.c, libextra/auth_srp.c, - libextra/auth_srp_sb64.c, libextra/gnutls_openpgp.c, - libextra/gnutls_srp.c, libextra/libgnutls-extra.vers, - libextra/openpgp/gnutls_openpgp.h, libextra/openpgp/openpgp.c, - libextra/openpgp/verify.c, src/common.c, src/crypt.c: several - corrections in the documentation. - -2003-11-28 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-11-28 Nikos Mavrogiannopoulos - - * configure.in, lib/libgnutls.vers, libextra/libgnutls-extra.vers: - [no log message] - -2003-11-28 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2003-11-28 Nikos Mavrogiannopoulos - - * doc/tex/auth.tex, doc/tex/examples.tex, doc/tex/gnutls.bib, - doc/tex/gnutls.tex, doc/tex/handshake.tex, doc/tex/library.tex, - doc/tex/preface.tex, doc/tex/programs.tex, doc/tex/srp.tex: [no log - message] - -2003-11-27 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-11-27 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/Makefile.am, doc/tex/appendix.tex, - doc/tex/ciphers.tex, doc/tex/ciphersuites.tex, - doc/tex/supported_ciphersuites.tex, lib/gnutls.h.in.in, - lib/gnutls_algorithms.c, lib/gnutls_cipher_int.c, lib/gnutls_int.h, - lib/gnutls_state.c: Removed the TWOFISH cipher. Documented the - supported ciphersuites. - -2003-11-27 Nikos Mavrogiannopoulos - - * doc/protocol/draft-benaloh-pct-00.txt, - doc/protocol/draft-benaloh-pct-01.txt, - doc/protocol/draft-hickman-netscape-ssl-00.txt: Added historical - documents. Got from - http://www21.ocn.ne.jp/~k-west/SSLandTLS/index-e.html - -2003-11-27 Nikos Mavrogiannopoulos - - * doc/TODO, doc/tex/preface.tex: [no log message] - -2003-11-27 Nikos Mavrogiannopoulos - - * doc/tex/preface.tex: [no log message] - -2003-11-27 Nikos Mavrogiannopoulos - - * NEWS, doc/TODO, doc/tex/Makefile.am, lib/auth_cert.c, - lib/auth_rsa_export.c, lib/gnutls.h.in.in, lib/gnutls_handshake.c, - lib/gnutls_int.h, lib/gnutls_mem.h, lib/gnutls_mpi.c, - lib/gnutls_mpi.h, lib/gnutls_x509.c, libextra/gnutls_openpgp.c, - src/serv.c: corrected some bugs that affected openpgp - authentication. - -2003-11-26 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-11-26 Nikos Mavrogiannopoulos - - * doc/tex/ciphersuites.tex, doc/tex/gnutls.bib, doc/tex/gnutls.tex, - doc/tex/handshake.tex, doc/tex/library.tex, doc/tex/openpgp.tex, - doc/tex/preface.tex: [no log message] - -2003-11-26 Nikos Mavrogiannopoulos - - * NEWS, doc/protocol/rfc3279.txt, doc/tex/cover.tex.in, - doc/tex/gnutls.bib, doc/tex/library.tex, includes/gnutls/x509.h, - lib/gnutls_pk.c, lib/x509/privkey.c, lib/x509/verify.c, - lib/x509/verify.h, lib/x509/x509.c: Exported the - gnutls_x509_privkey_sign_data(), gnutls_x509_privkey_verify_data() - and gnutls_x509_crt_verify_data(). - -2003-11-26 Nikos Mavrogiannopoulos - - * src/certtool.c: only generate v3 certificates, since we always use - the CA (basicConstraints) extension. - -2003-11-25 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-11-25 Nikos Mavrogiannopoulos - - * lib/x509/common.c, lib/x509/privkey.c: ensure that the leading - zero is there on RSA keys. - -2003-11-25 Nikos Mavrogiannopoulos - - * lib/x509/crq.c, lib/x509/sign.c, lib/x509/x509_write.c: [no log - message] - -2003-11-25 Nikos Mavrogiannopoulos - - * doc/tex/ex-x509-info.tex: [no log message] - -2003-11-25 Nikos Mavrogiannopoulos - - * lib/x509/crq.c: added crq_get_version(). - -2003-11-25 Nikos Mavrogiannopoulos - - * doc/tex/certificate.tex, doc/tex/ex-crq.tex, doc/tex/gnutls.bib, - doc/tex/openssl.tex, lib/x509/crq.c, lib/x509/x509_write.c, - src/certtool.c: Some documentation fixes. Changed - gnutls_x509_*_set_version() to have a compatible input with - gnutls_x509_*_get_version(). - -2003-11-25 Nikos Mavrogiannopoulos - - * doc/protocol/rfc2459.txt, doc/protocol/rfc3280.txt: added the - newest PKIX rfc. - -2003-11-24 Nikos Mavrogiannopoulos - - * doc/tex/ex-cert-select.tex, doc/tex/ex-client-resume.tex, - doc/tex/ex-client-srp.tex, doc/tex/ex-client2.tex, - doc/tex/ex-serv-export.tex, doc/tex/ex-serv-pgp.tex, - doc/tex/examples.tex: [no log message] - -2003-11-23 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2003-11-23 Nikos Mavrogiannopoulos - - * lib/gnutls_record.c: [no log message] - -2003-11-22 Nikos Mavrogiannopoulos - - * doc/README.autoconf, includes/gnutls/x509.h, lib/x509/pkcs5.c, - src/common.c, src/serv.c: [no log message] - -2003-11-21 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-11-21 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-compression-05.txt, - doc/protocol/draft-ietf-tls-compression-06.txt, - doc/protocol/draft-ietf-tls-ecc-03.txt, - doc/protocol/draft-ietf-tls-ecc-04.txt: [no log message] - -2003-11-21 Nikos Mavrogiannopoulos - - * src/certtool.c: generated certificates by certtool now have - version 1 if they do not include extensions. - -2003-11-21 Nikos Mavrogiannopoulos - - * NEWS, lib/ext_server_name.c, lib/gnutls.h.in.in, opencdk.m4, - src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c: [no log - message] - -2003-11-21 Nikos Mavrogiannopoulos - - * THANKS, lib/gnutls_session.c, lib/x509/pkcs12.c, - libextra/gnutls_openssl.c, src/certtool.gaa, src/serv-gaa.c, - src/serv.c, src/serv.gaa: Some fixes pointed out by Dimitri - Papadopoulos-Orfanos - -2003-11-17 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-11-17 Nikos Mavrogiannopoulos - - * doc/tex/ex-client-resume.tex, doc/tex/ex-client-srp.tex, - doc/tex/ex-client2.tex, doc/tex/ex-rfc2818.tex, - doc/tex/examples.tex: [no log message] - -2003-11-17 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am, doc/tex/ex-client-resume.tex, - doc/tex/ex-client-srp.tex, doc/tex/ex-client2.tex, - doc/tex/examples.tex: Simplified a bit the client examples. - -2003-11-17 Nikos Mavrogiannopoulos - - * doc/tex/ex-client1.tex: [no log message] - -2003-11-17 Nikos Mavrogiannopoulos - - * lib/x509/pkcs5.c, src/certtool-gaa.c, src/certtool.gaa, - src/serv.c, src/tests.c: [no log message] - -2003-11-17 Nikos Mavrogiannopoulos - - * src/certtool.c: some changes in password reading. - -2003-11-17 Nikos Mavrogiannopoulos - - * lib/x509/pkcs5.c: some corrections in the pkcs5 module by Simon - Josefsson. - -2003-11-17 Nikos Mavrogiannopoulos - - * lib/ext_server_name.c, lib/gnutls_int.h: [no log message] - -2003-11-17 Nikos Mavrogiannopoulos - - * lib/gnutls_int.h, lib/gnutls_session_pack.c, - lib/gnutls_session_pack.h: [no log message] - -2003-11-17 Nikos Mavrogiannopoulos - - * configure.in, lib/auth_cert.c, lib/defines.h, - lib/ext_server_name.c, lib/gnutls.h.in.in, lib/gnutls_cert.c, - lib/gnutls_record.c, lib/gnutls_session.c, lib/gnutls_state.c, - lib/gnutls_str.c, lib/gnutls_ui.c, lib/gnutls_ui.h, lib/x509/crl.c, - lib/x509/crq.c, lib/x509/dn.c, lib/x509/extensions.c, - lib/x509/pkcs12.h, lib/x509/pkcs12_bag.c, lib/x509/pkcs12_encr.c, - lib/x509/pkcs5.c, lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, - lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509_write.c, - lib/x509_b64.c, libextra/gnutls_srp.c, src/certtool.c, - src/common.c, src/serv.c: Several minor fixes in code and function - documentation. - -2003-11-16 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-11-16 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2003-11-16 Nikos Mavrogiannopoulos - - * doc/tex/ex-crq.tex: [no log message] - -2003-11-16 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h, lib/x509/common.c, lib/x509/crl.c, - lib/x509/crq.c, lib/x509/x509.c, lib/x509/x509_write.c: [no log - message] - -2003-11-16 Nikos Mavrogiannopoulos - - * NEWS, includes/gnutls/x509.h, lib/x509/crl.c, lib/x509/crq.c, - lib/x509/dn.c, lib/x509/dn.h, lib/x509/extensions.c, - lib/x509/extensions.h, lib/x509/x509.c, src/certtool.c: * Added gnutls_x509_*_get_dn_oid() and - gnutls_x509_crt_get_extension_oid() functions which return the - available OIDs. * The certtool utility now prints all available extension OIDs and values. - -2003-11-15 Nikos Mavrogiannopoulos - - * NEWS, includes/gnutls/x509.h, lib/gnutls_str.c, lib/gnutls_str.h, - lib/x509/common.c, lib/x509/compat.c, lib/x509/crl.c, - lib/x509/crq.c, lib/x509/crq.h, lib/x509/dn.c, lib/x509/dn.h, - lib/x509/rfc2818_hostname.c, lib/x509/x509.c, lib/x509/x509.h, - libextra/openpgp/openpgp.h: gnutls_x509_*_get_*_dn_by_oid() - functions have a raw_flag parameter added. Several other fixes. - -2003-11-14 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-11-14 Nikos Mavrogiannopoulos - - * NEWS, configure.in, includes/gnutls/compat8.h, - includes/gnutls/openpgp.h, includes/gnutls/pkcs12.h, - includes/gnutls/x509.h, lib/gnutls_errors.c, - lib/gnutls_errors_int.h, lib/x509/compat.c, lib/x509/crl.c, - lib/x509/crq.c, lib/x509/dn.c, lib/x509/dn.h, lib/x509/pkcs12.c, - lib/x509/pkcs7.c, lib/x509/pkcs7.h, lib/x509/privkey.c, - lib/x509/privkey_pkcs8.c, lib/x509/x509.c, lib/x509/x509.h, - lib/x509/x509_write.c, libextra/openpgp/openpgp.c, src/certtool.c, - src/cli.c, src/common.c, src/tests.c: gnutls_x509_*_set_dn_by_oid() - functions have a raw_flag parameter added. Some other fixes in - function types. - -2003-11-14 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2003-11-14 Nikos Mavrogiannopoulos - - * configure.in, includes/gnutls/compat8.h, includes/gnutls/x509.h, - lib/gnutls.h.in.in, lib/x509/crq.c, lib/x509/crq.h, - lib/x509/x509.c, lib/x509/x509.h: Compatibility header for gnutls4 - is no longer included in gnutls.h. Added deprecated warnings to - gnutls8 stuff. - -2003-11-14 Nikos Mavrogiannopoulos - - * includes/gnutls/openssl.h: [no log message] - -2003-11-14 Nikos Mavrogiannopoulos - - * lib/x509/crq.c, lib/x509/x509.c: [no log message] - -2003-11-14 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h, lib/x509/common.c, lib/x509/crq.c, - lib/x509/x509_write.c: added gnutls_x509_oid_known() to report known - OIDs. - -2003-11-14 Nikos Mavrogiannopoulos - - * lib/x509/x509_write.c: added gnutls_x509_oid_known() to report - known OIDs. - -2003-11-13 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-11-13 Nikos Mavrogiannopoulos - - * NEWS, configure.in, lib/defines.h, lib/gnutls.h.in.in, - src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.gaa, - src/crypt-gaa.c, src/crypt-gaa.h, src/crypt.gaa, src/prime.c, - src/tls_test-gaa.c, src/tls_test-gaa.h, src/tls_test.gaa: [no log - message] - -2003-11-13 Nikos Mavrogiannopoulos - - * lib/auth_cert.c, lib/ext_max_record.c, lib/gnutls_extensions.c, - lib/gnutls_int.h, src/cli.c: [no log message] - -2003-11-13 Nikos Mavrogiannopoulos - - * src/cli.c: [no log message] - -2003-11-13 Nikos Mavrogiannopoulos - - * configure.in, lib/auth_cert.c, lib/debug.c, - lib/ext_server_name.c, lib/gnutls_buffers.c, lib/gnutls_constate.c, - lib/gnutls_dh_primes.c, lib/gnutls_extensions.c, - lib/gnutls_extensions.h, lib/gnutls_global.c, - lib/gnutls_handshake.c, lib/gnutls_handshake.h, - lib/gnutls_hash_int.c, lib/gnutls_int.h, lib/gnutls_mem.c, - lib/gnutls_record.c, lib/gnutls_record.h, lib/gnutls_state.c, - lib/gnutls_state.h, lib/gnutls_v2_compat.c, lib/gnutls_x509.c, - lib/x509/crl.c, lib/x509_b64.c, libextra/auth_srp.c, - libextra/auth_srp_sb64.c, libextra/gnutls_openpgp.c, - libextra/gnutls_openssl.c, libextra/openpgp/gnutls_openpgp.h, - libextra/openpgp/verify.c, src/common.h: Some bugfixes, and type - corrections. - -2003-11-13 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in: [no log message] - -2003-11-13 Nikos Mavrogiannopoulos - - * NEWS, configure.in, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, - lib/gnutls_hash_int.c, lib/gnutls_int.h, lib/gnutls_priority.c, - lib/x509/common.c, src/cli.c, src/common.c, src/serv.c: Added the - RIPEMD ciphersuites defined in draft-ietf-tls-openpgp-keys-04. - -2003-11-13 Nikos Mavrogiannopoulos - - * lib/libgnutls.m4, libextra/libgnutls-extra.m4: [no log message] - -2003-11-13 Nikos Mavrogiannopoulos - - * NEWS, configure.in, doc/tex/openssl.tex, includes/Makefile.am, - lib/minitasn1/mem.h, libextra/Makefile.am, - libextra/libgnutls-extra.vers: The openssl compatibility layer was - moved to gnutls-openssl to allow the extension of it without - bloating the libgnutls-extra. - -2003-11-12 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-11-12 Nikos Mavrogiannopoulos - - * lib/defines.h: [no log message] - -2003-11-12 Nikos Mavrogiannopoulos - - * src/certtool.c: [no log message] - -2003-11-12 Nikos Mavrogiannopoulos - - * src/certtool.c: Prints certificate information before signing. - -2003-11-11 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-11-11 Nikos Mavrogiannopoulos - - * lib/gnutls_random.h: [no log message] - -2003-11-11 Nikos Mavrogiannopoulos - - * configure.in, lib/gnutls_random.c, src/crypt.c: Patch by Werner - Koch: * configure.in: Check for gcry_create_nonce. * lib/gnutls_random.c (_gnutls_get_random): Ditto. * src/crypt.c (_srp_crypt): Use gcry_create_nonce if available. Also removed some unneeded code in random.c. - -2003-11-11 Nikos Mavrogiannopoulos - - * ChangeLog, NEWS, configure.in: [no log message] - -2003-11-11 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h, src/certtool-gaa.c, src/certtool-gaa.h, - src/certtool.c, src/certtool.gaa: Added capability to read CRLs to - certtool. - -2003-11-11 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h, lib/gnutls_x509.c, lib/x509/compat.c, - lib/x509/crl.c, lib/x509/pkcs7.c, lib/x509/pkcs7.h, - lib/x509/x509.c, lib/x509/x509.h: Renamed several pkcs #7 related - functions. That is to allow future extensions to the API. - -2003-11-11 Nikos Mavrogiannopoulos - - * doc/scripts/gdoc: [no log message] - -2003-11-11 Nikos Mavrogiannopoulos - - * lib/x509/crl.c, lib/x509/crq.c, lib/x509/pkcs12_bag.c, - lib/x509/x509.c, lib/x509/x509_write.c: [no log message] - -2003-11-11 Nikos Mavrogiannopoulos - - * doc/scripts/gdoc: [no log message] - -2003-11-11 Nikos Mavrogiannopoulos - - * doc/scripts/gdoc: [no log message] - -2003-11-11 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h: [no log message] - -2003-11-11 Nikos Mavrogiannopoulos - - * NEWS, configure.in, includes/gnutls/x509.h, lib/gnutls.h.in.in, - lib/gnutls_dh_primes.c, lib/gnutls_ui.h, lib/x509/pkcs7.c, - lib/x509_b64.c, src/cli-gaa.c: Added gnutls_pkcs7_set_certificate2() - and gnutls_pkcs7_set_crl2() functions. - -2003-11-11 Nikos Mavrogiannopoulos - - * lib/x509/crl.c, lib/x509/crq.c, lib/x509/pkcs12.c, - lib/x509/pkcs12_bag.c, lib/x509/privkey.c, - lib/x509/privkey_pkcs8.c, lib/x509/x509.c: added some check for the - input parameters. - -2003-11-11 Nikos Mavrogiannopoulos - - * doc/TODO, libgcrypt.m4: [no log message] - -2003-11-10 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-11-10 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/x509/common.c, lib/x509/crl.c, - lib/x509/crq.c, lib/x509/dn.c, lib/x509/x509.c: Removed the - gnutls_handshake_set_rsa_pms_check() prototype from gnutls.h. - Corrected the *_get_dn() functions to return the data size if the - data argument is NULL, and *data_size == 0. Bugs reported by Gergely - Nagy . - -2003-11-10 Nikos Mavrogiannopoulos - - * lib/auth_cert.c, lib/ext_cert_type.c, lib/ext_cert_type.h, - lib/gnutls_constate.c, lib/gnutls_extensions.c, - lib/gnutls_session_pack.c: some fixes to have the correct cert_type - on resumed sessions. - -2003-11-10 Nikos Mavrogiannopoulos - - * NEWS, src/certtool.c: The certtool utility can now generate PKCS - #12 structures without specifying a certificate. - -2003-11-09 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-11-09 Nikos Mavrogiannopoulos - - * NEWS, configure.in, doc/tex/gnutls.bib: [no log message] - -2003-11-09 Nikos Mavrogiannopoulos - - * lib/minitasn1/errors.c, lib/minitasn1/int.h, - lib/minitasn1/libtasn1.h, lib/minitasn1/mem.h, - lib/minitasn1/structure.c: Included the new libtasn 0.2.6. - -2003-11-09 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-openpgp-keys-03.txt, - doc/protocol/draft-ietf-tls-openpgp-keys-04.txt: [no log message] - -2003-11-09 Nikos Mavrogiannopoulos - - * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.gaa, - src/cli.c, src/common.c, src/common.h, src/crypt-gaa.c, - src/crypt-gaa.h, src/crypt.gaa, src/prime.c, src/serv.c, - src/tests.c, src/tls_test-gaa.c, src/tls_test-gaa.h, - src/tls_test.c, src/tls_test.gaa: some code cleanups. - -2003-11-08 Nikos Mavrogiannopoulos - - * lib/gnutls_cert.c, libextra/gnutls_srp.c: [no log message] - -2003-11-08 Nikos Mavrogiannopoulos - - * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.gaa, - src/common.c, src/crypt-gaa.c, src/crypt-gaa.h, src/crypt.gaa, - src/tests.c, src/tests.h, src/tls_test-gaa.c, src/tls_test-gaa.h, - src/tls_test.c, src/tls_test.gaa: [no log message] - -2003-11-07 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-11-07 Nikos Mavrogiannopoulos - - * NEWS, src/certtool-gaa.c, src/certtool.gaa, src/cli.c, - src/common.c, src/common.h, src/crypt-gaa.c, src/crypt.gaa, - src/serv.c, src/tls_test.c: [no log message] - -2003-11-07 Nikos Mavrogiannopoulos - - * libextra/gnutls_openpgp.c, src/certtool-gaa.c, - src/certtool-gaa.h, src/certtool.gaa, src/crypt-gaa.c, - src/crypt-gaa.h, src/crypt.c, src/crypt.gaa: [no log message] - -2003-11-07 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in: Corrected the types in - gnutls_anon_free_client_credentials() and - gnutls_anon_allocate_client_credentials(). Reported by Ivo. - -2003-11-06 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-11-06 Nikos Mavrogiannopoulos - - * configure.in, src/crypt.c, src/tests.c, src/tls_test.c: [no log - message] - -2003-11-06 Nikos Mavrogiannopoulos - - * configure.in, lib/gnutls_buffers.c, libextra/auth_srp_passwd.c, - libextra/gnutls_openpgp.c, libgcrypt.m4, src/Makefile.am, - src/certtool.c, src/cli-gaa.c, src/cli.c, src/crypt.c, src/serv.c, - src/tests.c, src/tests.h, src/tls_test-gaa.c, src/tls_test.c: some - changes to compile in mingw32. - -2003-11-04 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-11-04 Nikos Mavrogiannopoulos - - * doc/scripts/gdoc: added the new gdoc by Simon. - -2003-11-04 Nikos Mavrogiannopoulos - - * lib/gnutls_buffers.c, lib/gnutls_buffers.h, - lib/gnutls_compress.c, lib/gnutls_handshake.c, lib/gnutls_ui.c, - lib/x509/privkey.c: [no log message] - -2003-11-04 Nikos Mavrogiannopoulos - - * includes/gnutls/pkcs12.h, lib/ext_server_name.c, - lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cert.c, - lib/gnutls_cipher.c, lib/gnutls_cipher.h, - lib/gnutls_compress_int.c, lib/gnutls_compress_int.h, - lib/gnutls_db.c, lib/gnutls_int.h, lib/gnutls_kx.c, - lib/gnutls_state.h, lib/gnutls_ui.c, lib/gnutls_v2_compat.c, - lib/x509/common.c, lib/x509/common.h, lib/x509/crl.c, - lib/x509/crq.c, lib/x509/dn.c, lib/x509/dn.h, - lib/x509/extensions.h, lib/x509/pkcs12.c, lib/x509/pkcs5.c, - lib/x509/pkcs5.h, lib/x509/pkcs7.c, lib/x509/privkey.c, - lib/x509/privkey_pkcs8.c, lib/x509/rfc2818_hostname.c, - lib/x509/verify.c, lib/x509/x509.c, lib/x509_b64.c, lib/x509_b64.h: - some type fixes. Based on build logs sent by Dimitri - Papadopoulos-Orfanos . - -2003-11-03 Nikos Mavrogiannopoulos - - * lib/x509/verify.c: preserve the flags from the last certificate - verification, in a chain. - -2003-11-02 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-11-02 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2003-11-02 Nikos Mavrogiannopoulos - - * libextra/openpgp/verify.c: added gnutls_openpgp_key_verify_self() - which verifies the self signature in the key. - -2003-11-02 Nikos Mavrogiannopoulos - - * includes/gnutls/openpgp.h, libextra/gnutls_openpgp.c, - libextra/openpgp/compat.c, libextra/openpgp/openpgp.c, - libextra/openpgp/verify.c, src/common.c: added - gnutls_openpgp_key_export() function. - -2003-11-02 Nikos Mavrogiannopoulos - - * lib/x509/verify.c: [no log message] - -2003-11-02 Nikos Mavrogiannopoulos - - * doc/tex/certificate.tex, doc/tex/library.tex, - includes/gnutls/openpgp.h, includes/gnutls/x509.h: [no log message] - -2003-11-02 Nikos Mavrogiannopoulos - - * libextra/openpgp/compat.c, libextra/openpgp/openpgp.h, - libextra/openpgp/verify.c: [no log message] - -2003-11-02 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/gnutls_int.h, lib/x509/pkcs12_bag.c, - lib/x509/privkey.h, lib/x509/privkey_pkcs8.c: Some changes to - preserve binary compatibility. - -2003-11-01 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-11-01 Nikos Mavrogiannopoulos - - * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, - src/certtool.gaa: Added option to certtool to use export-grade - algorithms. If password is set in pkcs8 mode, then the output - structure will be encrypted. - -2003-11-01 Nikos Mavrogiannopoulos - - * NEWS, lib/x509/verify.c, libextra/openpgp/verify.c, - src/certtool-gaa.c, src/certtool.gaa, tests/test25.pem: [no log - message] - -2003-11-01 Nikos Mavrogiannopoulos - - * src/prime-gaa.c, src/prime-gaa.h, src/prime.gaa: [no log message] - -2003-11-01 Nikos Mavrogiannopoulos - - * doc/scripts/Makefile.am: gdoc and sort1.pl are now included in the - distribution. - -2003-11-01 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/certificate.tex, doc/tex/cover.tex.in, - doc/tex/ex-rfc2818.tex, lib/gnutls.h.in.in, lib/gnutls_cert.c, - lib/gnutls_int.h, lib/x509/compat.c, lib/x509/verify.c, - libextra/openpgp/compat.c, libextra/openpgp/extras.c, - libextra/openpgp/verify.c, src/Makefile.am, src/certtool-gaa.c, - src/certtool-gaa.h, src/certtool.c, src/certtool.gaa, src/common.c, - src/prime.c: * Several changes in certificate and key verification. * GNUTLS_CERT_NOT_TRUSTED was replaced by GNUTLS_CERT_INVALID, to - avoid having two flags for the same thing. * Updated documentation for openpgp key verification. * The prime tool was combined with the certtool. - -2003-10-31 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-10-31 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_errors.c, lib/gnutls_errors_int.h, - libextra/gnutls_openpgp.c, libextra/openpgp/extras.c: [no log - message] - -2003-10-31 Nikos Mavrogiannopoulos - - * src/certtool.c, src/certtool.gaa, src/common.c: [no log message] - -2003-10-31 Nikos Mavrogiannopoulos - - * libextra/openpgp/.cvsignore, libextra/openpgp/openpgp.c, - libextra/openpgp/openpgp.h: [no log message] - -2003-10-31 Nikos Mavrogiannopoulos - - * includes/gnutls/pkcs12.h, libextra/gnutls_openpgp.c, - src/certtool.c, src/common.c: more openpgp related changes. - -2003-10-31 Nikos Mavrogiannopoulos - - * lib/x509/pkcs12_bag.c: Added gnutls_pkcs12_bag_set_crl() and - gnutls_pkcs12_bag_set_crt() functions. - -2003-10-31 Nikos Mavrogiannopoulos - - * libextra/gnutls_openpgp.c: [no log message] - -2003-10-31 Nikos Mavrogiannopoulos - - * doc/tex/ex-pgp-keyserver.tex, lib/Makefile.am, lib/gnutls_x509.c, - lib/strfile.h, libextra/gnutls_openpgp.c, - libextra/openpgp/openpgp.h, src/serv.c: some openpgp related - changes. - -2003-10-30 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-10-30 Nikos Mavrogiannopoulos - - * src/crypt.c: [no log message] - -2003-10-30 Nikos Mavrogiannopoulos - - * configure.in, lib/gnutls_errors.c, lib/gnutls_errors_int.h, - lib/gnutls_global.c: added version check against libtasn1 - -2003-10-30 Nikos Mavrogiannopoulos - - * src/certtool-gaa.c, src/certtool.c, src/certtool.gaa, - src/common.c: [no log message] - -2003-10-30 Nikos Mavrogiannopoulos - - * src/certtool.c, src/cli.c, src/crypt.c, src/serv.c: Added error - checking to global_init() calls. - -2003-10-30 Nikos Mavrogiannopoulos - - * doc/tex/auth.tex, doc/tex/handshake.tex, doc/tex/howto.tex: - Corrected some things in documentation. Got from Debian bug tracking - system, Reported by Ivan Nestlerode - -2003-10-30 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/x509/pkcs12_bag.c, - libextra/openpgp/compat.c, libextra/openpgp/extras.c, - libextra/openpgp/verify.c: [no log message] - -2003-10-30 Nikos Mavrogiannopoulos - - * includes/gnutls/pkcs12.h, lib/gnutls.h.in.in, - lib/x509/pkcs12_bag.c, lib/x509/verify.c, src/certtool.c: introduced - gnutls_const_datum for gnutls_pkcs12_bag_get_data(). Some other - cleanups in the verification functions. - -2003-10-30 Nikos Mavrogiannopoulos - - * lib/x509/verify.c: corrected some bugs in the verification - functions. - -2003-10-30 Nikos Mavrogiannopoulos - - * tests/test22.pem: [no log message] - -2003-10-30 Nikos Mavrogiannopoulos - - * lib/x509/verify.c, src/certtool.c, tests/test23.pem: [no log - message] - -2003-10-30 Nikos Mavrogiannopoulos - - * NEWS, configure.in, lib/gnutls.h.in.in, lib/gnutls_int.h, - lib/x509/compat.c, lib/x509/verify.c, src/certtool.c, src/common.c, - tests/test1.pem, tests/test10.pem, tests/test13.pem, - tests/test2.pem, tests/test20.pem, tests/test21.pem, - tests/test22.pem, tests/test23.pem, tests/test24.pem, - tests/test25.pem, tests/test26.pem, tests/test3.pem: Improved the - certificate verification functions and the certtool program's - verification capability. - -2003-10-30 Nikos Mavrogiannopoulos - - * src/certtool.c, src/crypt.c: Certtool is only compiled when - ENABLE_PKI is defined. - -2003-10-30 Nikos Mavrogiannopoulos - - * libextra/openpgp/Makefile.am: [no log message] - -2003-10-30 Nikos Mavrogiannopoulos - - * lib/x509/common.c, lib/x509_b64.c, lib/x509_b64.h: Made the - B64FSIZE to return an accurate value. - -2003-10-30 Nikos Mavrogiannopoulos - - * NEWS, configure.in, doc/tex/programs.tex, lib/x509/common.c, - lib/x509_b64.c, src/certtool.c: some fixes. - -2003-10-30 Nikos Mavrogiannopoulos - - * src/certtool.c: [no log message] - -2003-10-30 Nikos Mavrogiannopoulos - - * doc/tex/programs.tex: [no log message] - -2003-10-30 Nikos Mavrogiannopoulos - - * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, - src/certtool.gaa: added capability to print pkcs12 structures. - -2003-10-30 Nikos Mavrogiannopoulos - - * libextra/libgnutls-extra.vers: exported OpenSSL* symbols. - -2003-10-30 Nikos Mavrogiannopoulos - - * lib/x509/rfc2818.h: added missing file. - -2003-10-28 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-10-28 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/ex-pkcs12.tex, includes/gnutls/pkcs12.h, - lib/x509/common.c, src/certtool-gaa.c, src/certtool-gaa.h, - src/certtool.c, src/certtool.gaa: added pkcs #12 support to - certtool. Corrected some bugs in the export functions. - -2003-10-27 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-10-27 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-sharedkeys-01.txt, - doc/protocol/draft-ietf-tls-sharedkeys-02.txt: [no log message] - -2003-10-27 Nikos Mavrogiannopoulos - - * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, - src/certtool.gaa: [no log message] - -2003-10-27 Nikos Mavrogiannopoulos - - * src/certtool-gaa.c, src/certtool.c, src/certtool.gaa: [no log - message] - -2003-10-27 Nikos Mavrogiannopoulos - - * configure.in, lib/gnutls_dh_primes.c: Used the new gcrypt API for - generating primes and groups. - -2003-10-27 Nikos Mavrogiannopoulos - - * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, - src/certtool.gaa: added the --der option to certtool. - -2003-10-27 Nikos Mavrogiannopoulos - - * NEWS, configure.in, doc/tex/programs.tex, - includes/gnutls/openpgp.h, lib/x509/x509.c, lib/x509/x509_write.c, - src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, - src/certtool.gaa: several improvements for the certtool utility. - -2003-10-27 Nikos Mavrogiannopoulos - - * src/common.c: [no log message] - -2003-10-27 Nikos Mavrogiannopoulos - - * doc/Makefile.am, doc/manpages/Makefile.am, - doc/manpages/gnutls-cli-debug.1, doc/manpages/gnutls-cli.1, - doc/manpages/gnutls-serv.1, doc/manpages/gnutls-srpcrypt.1: Added - manpages created by Ivo Timmermans - -2003-10-26 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-10-26 Nikos Mavrogiannopoulos - - * src/certtool.c, src/cli-gaa.c, src/cli-gaa.h, src/cli.c, - src/cli.gaa, src/common.c: Added the --print-cert option to - gnutls-cli. - -2003-10-26 Nikos Mavrogiannopoulos - - * NEWS, src/Makefile.am: [no log message] - -2003-10-26 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c, lib/x509/common.c, lib/x509/mpi.c, - lib/x509/mpi.h, lib/x509/privkey.c, lib/x509/privkey.h, - lib/x509/x509.c, lib/x509_b64.c, src/certtool-gaa.c, - src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: Added - capability to print the keyid of a certificate or a private key to - certtool. Updated the key_id functions to return the hash of the - SubjectPublicKey. - -2003-10-26 Nikos Mavrogiannopoulos - - * src/certtool.c: Added fingerprint calculation to certtool. - -2003-10-26 Nikos Mavrogiannopoulos - - * configure.in, libextra/gnutls_openssl.c: added configure option to - disable the openssl compatibility layer. - -2003-10-26 Nikos Mavrogiannopoulos - - * lib/x509/x509.c: a fix in the get_subject_alt_name, to return - GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE when finished reading. - -2003-10-26 Nikos Mavrogiannopoulos - - * src/certtool.c: Added capability to decode some X.509v3 - extensions. - -2003-10-26 Nikos Mavrogiannopoulos - - * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, - src/certtool.gaa: Added certificate chain verification capability to - certtool - -2003-10-25 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-10-25 Nikos Mavrogiannopoulos - - * lib/x509/crq.c: [no log message] - -2003-10-25 Nikos Mavrogiannopoulos - - * NEWS, lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509/common.c, - lib/x509/crq.c, lib/x509/privkey_pkcs8.c, src/Makefile.am, - src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, - src/certtool.gaa: Several improvments in the certtool. - -2003-10-25 Nikos Mavrogiannopoulos - - * lib/x509/privkey_pkcs8.c, src/Makefile.am, src/certtool-gaa.c, - src/certtool-gaa.h, src/certtool.c, src/certtool.gaa, src/common.c: - Added a certtool primitive command line utility - -2003-10-25 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h, lib/x509/common.c, lib/x509/common.h, - lib/x509/crl.c, lib/x509/dn.c, lib/x509/extensions.c, - lib/x509/extensions.h, lib/x509/mpi.c, lib/x509/verify.c, - lib/x509/x509.c, lib/x509/x509.h, lib/x509/x509_write.c: Improved - the certificate generation stuff. - -2003-10-25 Nikos Mavrogiannopoulos - - * NEWS, doc/TODO, includes/gnutls/x509.h, lib/pkix.asn, - lib/pkix_asn1_tab.c, lib/x509/common.c, lib/x509/common.h, - lib/x509/dn.c, lib/x509/dn.h, lib/x509/sign.c, - lib/x509/x509_write.c: Almost finished the X.509 certificate - generation. - -2003-10-24 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-10-23 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-10-23 Nikos Mavrogiannopoulos - - * NEWS, THANKS, configure.in, includes/gnutls/x509.h, - lib/Makefile.am, lib/pkix.asn, lib/pkix_asn1_tab.c, - lib/x509/Makefile.am, lib/x509/common.c, lib/x509/common.h, - lib/x509/crq.c, lib/x509/crq.h, lib/x509/dn.c, lib/x509/dn.h, - lib/x509/extensions.c, lib/x509/extensions.h, lib/x509/x509.c, - lib/x509/x509_write.c, libgcrypt.m4: Added some support for writable - gnutls_x509_crt structures. Not ready yet. - -2003-10-23 Nikos Mavrogiannopoulos - - * configure.in, lib/gnutls_mem.h, lib/minitasn1/mem.h: some - alloca-related fixes. Patch by Philip Brown . - -2003-10-17 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-10-17 Nikos Mavrogiannopoulos - - * lib/x509/rfc2818_hostname.c: The hostname verification in the - certificate is now case insensitive. - -2003-10-17 Nikos Mavrogiannopoulos - - * NEWS, configure.in: [no log message] - -2003-10-17 Nikos Mavrogiannopoulos - - * configure.in: [no log message] - -2003-10-17 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_handshake.c: corrected a bug in the debugging - output of handshake. Pointed out by Mark McLoughlin - . - -2003-10-17 Nikos Mavrogiannopoulos - - * libextra/openpgp/gnutls_openpgp.h, libextra/openpgp/openpgp.h: - Corrected issue in openpgp code, which did not allow compilation - when opencdk was not present. - -2003-10-16 Nikos Mavrogiannopoulos - - * configure.in: [no log message] - -2003-10-16 Nikos Mavrogiannopoulos - - * doc/tex/cover.tex.in: [no log message] - -2003-10-12 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2003-10-09 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-10-09 Nikos Mavrogiannopoulos - - * configure.in: opencdk is now mandatory in the base installation. - -2003-10-08 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-10-08 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2003-10-08 Nikos Mavrogiannopoulos - - * includes/gnutls/openpgp.h, includes/gnutls/x509.h, - lib/gnutls_dh.h, lib/gnutls_dh_primes.c, lib/gnutls_rsa_export.c, - lib/gnutls_state.c, lib/gnutls_state.h, lib/gnutls_ui.c, - lib/x509/common.c, lib/x509/pkcs5.c, lib/x509/pkcs7.c, - lib/x509/privkey.c, lib/x509/x509.c, lib/x509/x509.h, - libextra/openpgp/openpgp.c: Some changes in types. - -2003-10-08 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h: [no log message] - -2003-10-07 Nikos Mavrogiannopoulos - - * lib/x509/extensions.c, lib/x509/x509.c, lib/x509/x509.h: [no log - message] - -2003-10-07 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h, lib/gnutls_errors.c, lib/gnutls_global.c, - lib/gnutls_int.h, lib/x509/common.c, lib/x509/common.h, - lib/x509/crl.c, lib/x509/crq.c, lib/x509/crq.h, lib/x509/dn.c, - lib/x509/pkcs7.c, lib/x509/pkcs7.h, lib/x509/privkey.c, - lib/x509/privkey_pkcs8.c, lib/x509/x509.c, lib/x509/x509.h, - lib/x509_b64.c, libextra/auth_srp_sb64.c: Corrected some of the - return types. Several other minor corrections. - -2003-10-05 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-10-04 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-10-04 Nikos Mavrogiannopoulos - - * configure.in, doc/README.autoconf, doc/tex/gnutls.bib, - lib/gnutls_pk.c: [no log message] - -2003-10-04 Nikos Mavrogiannopoulos - - * doc/tex/fdl.tex, doc/tex/gnutls.bib: [no log message] - -2003-10-04 Nikos Mavrogiannopoulos - - * doc/tex/fdl.tex, doc/tex/funcs.tex, doc/tex/gnutls.bib: - Documentation is now under FDL 1.2. - -2003-10-03 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-10-03 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am: [no log message] - -2003-10-03 Nikos Mavrogiannopoulos - - * doc/tex/funcs.tex, libextra/Makefile.am, - libextra/gnutls_openpgp.c, libextra/openpgp/Makefile.am, - libextra/openpgp/gnutls_openpgp.c: [no log message] - -2003-10-03 Nikos Mavrogiannopoulos - - * libextra/gnutls_openpgp.c: [no log message] - -2003-10-03 Nikos Mavrogiannopoulos - - * doc/tex/certificate.tex, libextra/Makefile.am, src/cli.c, - src/common.c, src/serv.c: [no log message] - -2003-10-03 Nikos Mavrogiannopoulos - - * NEWS, configure.in, doc/tex/Makefile.am, doc/tex/funcs.tex, - includes/Makefile.am, includes/gnutls/openpgp.h, lib/x509/crl.c, - lib/x509/crq.c, lib/x509/pkcs12.c, lib/x509/pkcs12_bag.c, - lib/x509/pkcs7.c, lib/x509/privkey.c, lib/x509/x509.c, - libextra/Makefile.am, libextra/gnutls_extra.c, - libextra/openpgp/Makefile.am, libextra/openpgp/gnutls_openpgp.h, - libextra/openpgp/openpgp.c, libextra/openpgp/openpgp.h, - src/common.c: Updated the openpgp key API. - -2003-10-03 Nikos Mavrogiannopoulos - - * libextra/Makefile.am: [no log message] - -2003-10-03 Nikos Mavrogiannopoulos - - * configure.in, includes/gnutls/openpgp.h, libextra/Makefile.am, - libextra/gnutls_openpgp.h, libextra/openpgp/Makefile.am, - libextra/openpgp/gnutls_openpgp.c, - libextra/openpgp/gnutls_openpgp.h, libextra/openpgp/openpgp.c, - libextra/openpgp/openpgp.h: Converted the pgp verification functions - to the new API. - -2003-10-03 Nikos Mavrogiannopoulos - - * includes/gnutls/extra.h, includes/gnutls/openpgp.h, - libextra/openpgp/gnutls_openpgp.c: [no log message] - -2003-10-03 Nikos Mavrogiannopoulos - - * libextra/openpgp/xml.c: the place where the XML stuff were moved. - -2003-10-03 Nikos Mavrogiannopoulos - - * libextra/openpgp/Makefile.am, libextra/openpgp/gnutls_openpgp.c, - libextra/openpgp/openpgp.c, libextra/openpgp/openpgp.h: Updated the - old opencdk code and moved the XML stuff. Based on patch by Mikhail - Teterin . - -2003-10-03 Nikos Mavrogiannopoulos - - * includes/gnutls/Makefile.am, lib/gnutls_alert.c, - lib/gnutls_algorithms.c, lib/x509/Makefile.am, - lib/x509/rfc2818_hostname.c, libextra/Makefile.am, src/cli.c, - src/common.c, src/common.h, src/serv.c: Applied patch by Arne that - fixes several possible NULL pointer dereferences. - -2003-10-03 Nikos Mavrogiannopoulos - - * src/cli.c: Disable buffering. Clear FD set. Patch by Simon - Josefsson - -2003-10-03 Nikos Mavrogiannopoulos - - * libextra/gnutls_openpgp.c: [no log message] - -2003-10-03 Nikos Mavrogiannopoulos - - * libextra/Makefile.am, libextra/gnutls_openpgp.c, - libextra/openpgp/Makefile.am, libextra/openpgp/gnutls_openpgp.c, - libextra/openpgp/openpgp.c, libextra/openpgp/openpgp.h: started some - rewrite of the openpgp stuff. - -2003-10-02 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-10-02 Nikos Mavrogiannopoulos - - * src/cli-gaa.c, src/cli.gaa: [no log message] - -2003-10-02 Nikos Mavrogiannopoulos - - * src/cli.c, src/common.h, src/serv.c: Rolled back some of Arne's - changes. Now the ciphers can be set in the client/server. - -2003-10-02 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2003-10-01 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-10-01 Nikos Mavrogiannopoulos - - * doc/scripts/gdoc, doc/tex/Makefile.am, lib/gnutls_errors.c: Patch - by Arne. Fixes a linking problem with _gnutls_handshake2str() and - _gnutls_packet2str(). Some other fixes in the documentation creation. - -2003-10-01 Nikos Mavrogiannopoulos - - * lib/gnutls_alert.c, lib/gnutls_errors.c, lib/gnutls_record.c, - lib/gnutls_state.c, lib/minitasn1/structure.c, src/cli.c, - src/common.c, src/serv.c: A new patch by Arne. More bug fixes and - optimizations. - -2003-10-01 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c: Corrected some unaligned accesses in IA64. - Initial patch by Ian Wienand . - -2003-10-01 Nikos Mavrogiannopoulos - - * libextra/gnutls_srp.c: Corrected a bug in the SRP U calculation. - Reported by Casey Marshall . - -2003-10-01 Nikos Mavrogiannopoulos - - * src/cli.c, src/common.c: Applied Simos' patch for the SIGALRM - triggered handshake. - -2003-09-17 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-09-17 Nikos Mavrogiannopoulos - - * lib/gnutls_errors.c, lib/gnutls_pk.c, lib/x509/rfc2818_hostname.c: - some cleanups. - -2003-09-17 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/ex-serv-pgp.tex, includes/gnutls/x509.h, src/cli.c, - src/common.c, src/common.h, src/serv.c, src/tests.c: Added a - hostname check with the certificate in the gnutls-cli. - -2003-09-17 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, - lib/gnutls_cipher_int.c, lib/gnutls_int.h, lib/gnutls_priority.c, - libextra/gnutls_openssl.c, src/cli.c, src/serv.c, src/tests.c: - RIJNDAEL ciphersuites were renamed to AES. - -2003-09-14 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-09-14 Nikos Mavrogiannopoulos - - * src/cli.c: [no log message] - -2003-09-14 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c: [no log message] - -2003-09-14 Nikos Mavrogiannopoulos - - * lib/gnutls_constate.c, lib/gnutls_errors.c, - lib/gnutls_handshake.c, lib/gnutls_v2_compat.c, src/cli.c, - src/serv.c: some more cleanups. - -2003-09-14 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c, src/cli.c, src/serv.c: Corrected the - client's behaviour in the handshake handling. Some fixes in the - documentation. - -2003-09-13 Nikos Mavrogiannopoulos - - * NEWS, src/crypt.c: [no log message] - -2003-09-13 Nikos Mavrogiannopoulos - - * NEWS, configure.in, src/cli.c: [no log message] - -2003-09-12 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-09-12 Nikos Mavrogiannopoulos - - * lib/libgnutls.vers, libextra/libgnutls-extra.vers: [no log - message] - -2003-09-12 Nikos Mavrogiannopoulos - - * configure.in, lib/Makefile.am, lib/libgnutls.vers, - libextra/Makefile.am, libextra/libgnutls-extra.vers: Some additions - to export only the documented API, and some support for versioning. - -2003-09-11 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-09-11 Nikos Mavrogiannopoulos - - * configure.in, doc/.cvsignore, doc/tex/library.tex, lib/debug.c, - lib/debug.h, lib/gnutls_errors.c, src/cli.c: cleanups. - -2003-09-11 Nikos Mavrogiannopoulos - - * libextra/auth_srp.c, src/crypt-gaa.c, src/crypt-gaa.h, - src/crypt.c, src/crypt.gaa, src/srp/tpasswd, src/srp/tpasswd.conf: - Corrected and improved SRP support. The gnutls-srpcrypt now - generates several primes. - -2003-09-11 Nikos Mavrogiannopoulos - - * libextra/auth_srp.c: added a size check in the group generator - received by the server. - -2003-09-11 Nikos Mavrogiannopoulos - - * NEWS, configure.in, doc/README.autoconf, doc/TODO, - doc/tex/ex-pkcs12.tex, includes/gnutls/x509.h, - lib/x509/privkey_pkcs8.c, src/cli.c: Improved the error handling in - the gnutls-cli. - -2003-09-10 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-09-10 Nikos Mavrogiannopoulos - - * lib/gnutls_alert.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, - libextra/auth_srp.c: [no log message] - -2003-09-10 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_alert.c, lib/gnutls_errors.c, - lib/gnutls_errors_int.h, libextra/auth_srp.c, src/crypt.c, - src/srp/tpasswd, src/srp/tpasswd.conf: Updated the SRP - implementation to follow the latest draft. - -2003-09-01 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-09-01 Nikos Mavrogiannopoulos - - * src/tests.c, src/tls_test.c: corrected bug which made some tests - now to be compiled. - -2003-09-01 Nikos Mavrogiannopoulos - - * lib/gnutls_errors.c, lib/gnutls_extensions.c, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_priority.c, - lib/x509_b64.c, src/retcodes.c: More more fixes by Arne. - -2003-09-01 Nikos Mavrogiannopoulos - - * lib/x509_b64.c: [no log message] - -2003-08-27 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-08-27 Nikos Mavrogiannopoulos - - * lib/ext_server_name.c: [no log message] - -2003-08-27 Nikos Mavrogiannopoulos - - * src/serv.c, src/tests.c, src/tls_test-gaa.c, src/tls_test-gaa.h, - src/tls_test.c, src/tls_test.gaa: corrected bug in the session - resumption detection in the gnutls-cli-debug, and other minor fixes. - -2003-08-25 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-08-25 Nikos Mavrogiannopoulos - - * doc/tex/programs.tex, src/tls_test.c: [no log message] - -2003-08-25 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2003-08-21 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-08-21 Nikos Mavrogiannopoulos - - * includes/gnutls/openssl.h, lib/gnutls_compress_int.c, - src/tls_test.c: minor cleanups. - -2003-08-21 Nikos Mavrogiannopoulos - - * lib/gnutls_global.c: [no log message] - -2003-08-20 Nikos Mavrogiannopoulos - - * NEWS, lib/x509_b64.c: CR is now allowed in the base64 decoder. - -2003-08-15 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-08-15 Nikos Mavrogiannopoulos - - * NEWS, configure.in, doc/README.CVS: [no log message] - -2003-08-15 Nikos Mavrogiannopoulos - - * lib/gnutls_errors.c: _gnutls_bin2hex function was removed from - gnutls_errors.c - -2003-08-13 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-08-13 Nikos Mavrogiannopoulos - - * src/cli.c, src/serv.c: [no log message] - -2003-08-13 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/gnutls_global.c, lib/rc2.c, lib/rc2.h, - lib/x509/Makefile.am, lib/x509/rc2.c, lib/x509/rc2.h: RC2 is not - included when PKCS#12 is disabled. - -2003-08-13 Nikos Mavrogiannopoulos - - * configure.in, doc/README.CODING_STYLE, doc/README.CVS: [no log - message] - -2003-08-13 Nikos Mavrogiannopoulos - - * lib/gnutls_global.c: [no log message] - -2003-08-13 Nikos Mavrogiannopoulos - - * configure.in, lib/defines.h, lib/rc2.c: RC2 was made reentrant. - The stddef.h is now included if found. - -2003-08-13 Nikos Mavrogiannopoulos - - * configure.in, lib/gnutls_global.c: [no log message] - -2003-08-13 Nikos Mavrogiannopoulos - - * lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_global.c: - added better check for gcrypt library. - -2003-08-13 Nikos Mavrogiannopoulos - - * configure.in, lib/gnutls_global.c, lib/gnutls_handshake.c, - lib/gnutls_record.c, lib/gnutls_state.c, lib/gnutls_v2_compat.c, - libextra/ext_srp.c: Arne: - gcry_check_version() _must_ be called nowadays, says - libgcrypt-1.1.42/NEWS. - configure.in: the respective test in configure.in included - (which doesn't exist) instead of the usual - . - lib/gnutls_errors.c: declaration of function _gnutls_bin2hex() - doesn't match prototype from file lib/gnutls_str.h, causing - compilation failure - configure.in: -Wsign-compare removed. - -2003-08-12 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-08-12 Nikos Mavrogiannopoulos - - * lib/auth_anon.c, lib/dh_compat.c, lib/gnutls_cipher_int.c, - lib/gnutls_compress.c, lib/gnutls_dh_primes.c, lib/gnutls_errors.c, - lib/gnutls_errors_int.h, lib/gnutls_mem.c, lib/gnutls_record.c, - lib/gnutls_rsa_export.c, lib/rsa_compat.c, lib/x509/common.c, - lib/x509_b64.c, libextra/ext_srp.c: more fixes by Arne. - -2003-08-12 Nikos Mavrogiannopoulos - - * lib/rc2.c: Cleaned up the RC2 cipher. - -2003-08-11 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-08-11 Nikos Mavrogiannopoulos - - * doc/tex/alert.tex, doc/tex/ciphersuites.tex, - doc/tex/ex-cert-select.tex, doc/tex/howto.tex, doc/tex/record.tex, - doc/tex/record_weaknesses.tex, doc/tex/srp.tex, - doc/tex/translayer.tex, lib/auth_cert.c, lib/auth_cert.h, - lib/auth_dh_common.c, lib/auth_rsa_export.c, lib/dh_compat.c, - lib/gnutls_algorithms.c, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, - lib/gnutls_cert.c, lib/gnutls_compress_int.c, - lib/gnutls_dh_primes.c, lib/gnutls_errors.c, - lib/gnutls_extensions.c, lib/gnutls_global.c, - lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_mem.c, - lib/gnutls_num.c, lib/gnutls_pk.c, lib/gnutls_record.c, - lib/gnutls_state.c, lib/gnutls_x509.c, lib/io_debug.h, - lib/x509/compat.c, lib/x509/verify.c, libextra/auth_srp_sb64.c, - src/retcodes.c: still more patches by Arne Thomassen - -2003-08-11 Nikos Mavrogiannopoulos - - * lib/gnutls_buffers.c, lib/gnutls_compress_int.c, - lib/gnutls_record.c: some more cleanups. - -2003-08-11 Nikos Mavrogiannopoulos - - * doc/tex/record_weaknesses.tex, lib/gnutls_anon_cred.c, - lib/gnutls_auth.c, lib/gnutls_buffers.c, lib/gnutls_cert.c, - lib/gnutls_compress_int.c, lib/gnutls_db.c, lib/gnutls_global.c, - lib/gnutls_handshake.c, lib/gnutls_mem.c, lib/gnutls_record.c, - lib/x509/pkcs7.c, lib/x509_b64.c, libextra/auth_srp_passwd.h, - libextra/auth_srp_sb64.c, libextra/ext_srp.c: more patches by Arne - Thomassen. - -2003-08-09 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-08-09 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c, lib/gnutls_kx.c, lib/gnutls_mpi.c: [no log - message] - -2003-08-09 Nikos Mavrogiannopoulos - - * lib/gnutls_anon_cred.c: [no log message] - -2003-08-09 Nikos Mavrogiannopoulos - - * NEWS, configure.in, doc/README.CODING_STYLE, doc/README.CVS, - doc/protocol/draft-ietf-tls-rfc2246-bis-04.txt, - doc/protocol/draft-ietf-tls-rfc2246-bis-05.txt, - includes/gnutls/x509.h, lib/auth_anon.c, lib/auth_cert.c, - lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, - lib/gnutls_alert.c, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, - lib/gnutls_cert.c, lib/gnutls_compress_int.c, lib/gnutls_errors.c, - lib/gnutls_errors_int.h, lib/gnutls_extensions.c, - lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_hash_int.c, - lib/gnutls_int.h, lib/gnutls_num.c, lib/gnutls_pk.c, - lib/gnutls_random.c, lib/gnutls_state.c, lib/gnutls_v2_compat.c, - lib/gnutls_x509.c, lib/minitasn1/errors.c, lib/rc2.c, - libextra/auth_srp.c, libextra/auth_srp_passwd.c, - libextra/auth_srp_rsa.c, libextra/gnutls_extra.c, - libextra/gnutls_openssl.c, libextra/gnutls_srp.h, src/common.c, - src/serv.c, tests/x509_test.c: Applied patch from Arne Thomassen - , which corrects several things in the - library. - -2003-08-07 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-08-07 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/debug.c, lib/gnutls_algorithms.c, - lib/gnutls_cert.h, lib/gnutls_cipher_int.c, - lib/gnutls_cipher_int.h, lib/gnutls_dh.h, lib/gnutls_global.c, - lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, - lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_pk.c, - lib/gnutls_pk.h, lib/gnutls_rsa_export.c, lib/rc2.c, lib/rc2.h, - lib/x509/pkcs12.c, lib/x509/pkcs12.h, lib/x509/pkcs12_encr.c, - lib/x509/pkcs5.c, lib/x509/privkey.c, lib/x509/privkey.h, - lib/x509/privkey_pkcs8.c, lib/x509/x509.h: Ported to the new - libgcrypt (still unstable). Also added the RC2 cipher and improved - the PKCS #12 stuff in order to support it. - -2003-08-04 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-08-04 Nikos Mavrogiannopoulos - - * NEWS, configure.in, doc/tex/Makefile.am, lib/minitasn1/coding.c, - lib/minitasn1/decoding.c, lib/minitasn1/element.c: * Added the new libtasn1. * the tex files are included in the distribution. - -2003-07-09 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-07-09 Nikos Mavrogiannopoulos - - * lib/Makefile.am: added missing rfc2818_hostname.lo object. - -2003-06-30 Nikos Mavrogiannopoulos - - * lib/x509/pkcs12_encr.c: Removed the salt size restriction - (multiple of 8) to allow parsing IE5 generated structures. - -2003-06-30 Nikos Mavrogiannopoulos - - * includes/gnutls/compat4.h: [no log message] - -2003-06-29 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-06-29 Nikos Mavrogiannopoulos - - * doc/tex/certificate.tex, doc/tex/ex-client-srp.tex, - doc/tex/ex-client1.tex, doc/tex/ex-serv1.tex, doc/tex/handshake.tex: - [no log message] - -2003-06-29 Nikos Mavrogiannopoulos - - * doc/tex/ex-client-resume.tex, doc/tex/ex-client-srp.tex, - doc/tex/ex-client1.tex, doc/tex/ex-client2.tex, - doc/tex/ex-serv-export.tex, doc/tex/ex-serv-pgp.tex, - doc/tex/ex-serv-srp.tex, doc/tex/ex-serv1.tex: added the - (gnutls_transport_ptr) cast to example programs. - -2003-06-29 Nikos Mavrogiannopoulos - - * includes/gnutls/openssl.h, libextra/gnutls_openssl.c: [no log - message] - -2003-06-29 Nikos Mavrogiannopoulos - - * configure.in, lib/gnutls.h.in.in: [no log message] - -2003-06-28 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-06-28 Nikos Mavrogiannopoulos - - * doc/TODO, doc/tex/ex-pkcs12.tex, lib/x509/pkcs12_encr.c: [no log - message] - -2003-06-28 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/ex-pkcs12.tex, includes/Makefile.am, - includes/gnutls/Makefile.am, includes/gnutls/pkcs12.h, - includes/gnutls/x509.h: [no log message] - -2003-06-28 Nikos Mavrogiannopoulos - - * lib/x509/pkcs12_encr.c: [no log message] - -2003-06-28 Nikos Mavrogiannopoulos - - * doc/examples/Makefile.am, doc/tex/Makefile.am, - doc/tex/certificate.tex, doc/tex/ex-crq.tex, doc/tex/ex-pkcs12.tex, - doc/tex/examples.tex, doc/tex/gnutls.tex: some reorganization on the - documentation. Added also stuff about PKCS #12 structures. - -2003-06-28 Nikos Mavrogiannopoulos - - * lib/gnutls_ui.c: Corrected a null pointer dereference in - gnutls_certificate_get_ours(). Report and Patch by Steve Langasek. - -2003-06-28 Nikos Mavrogiannopoulos - - * NEWS, lib/x509/dn.c, lib/x509/pkcs12.c, lib/x509/privkey_pkcs8.c: - some cleanups. - -2003-06-27 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2003-06-27 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-06-27 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h, lib/gnutls_buffers.c, - lib/gnutls_dh_primes.c, lib/gnutls_errors.c, - lib/gnutls_errors_int.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h, - lib/gnutls_pk.c, lib/x509/mpi.c, lib/x509/mpi.h, lib/x509/pkcs12.c, - lib/x509/privkey.c, lib/x509/privkey_pkcs8.c: Added function to do - the MAC verification in the PKCS #12 structure. - -2003-06-27 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h, lib/x509/common.h, lib/x509/dn.c, - lib/x509/dn.h, lib/x509/pkcs12.c, lib/x509/pkcs12.h: Added stuff - needed to read PKCS #12 bag attributes. - -2003-06-27 Nikos Mavrogiannopoulos - - * lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509/common.c, - lib/x509/dn.c, lib/x509/pkcs12.c, lib/x509/pkcs12.h, - lib/x509/pkcs12_bag.c: Added ability to write Bag attributes - LocalKeyId and friendlyName, in order for browsers to be able to - import our structures. - -2003-06-26 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-06-26 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h, lib/gnutls_state.c, lib/pkix.asn, - lib/pkix_asn1_tab.c, lib/x509/pkcs12_encr.c, - lib/x509/privkey_pkcs8.c: some cleanups. - -2003-06-26 Nikos Mavrogiannopoulos - - * lib/minitasn1/decoding.c, lib/minitasn1/element.c: added new - Fabio's fixes. - -2003-06-26 Nikos Mavrogiannopoulos - - * lib/x509/pkcs12.c, lib/x509/privkey_pkcs8.c: PKCS #12 generation, - finaly can interoperate with openssl even in the encrypted case. - -2003-06-26 Nikos Mavrogiannopoulos - - * lib/x509/common.c, lib/x509/common.h, lib/x509/pkcs12.c, - lib/x509/pkcs12.h, lib/x509/pkcs12_bag.c, lib/x509/privkey_pkcs8.c: - Some more improvements in the PKCS #12 part. Now it interoperates - with openssl pkcs12, in the unencrypted case. - -2003-06-26 Nikos Mavrogiannopoulos - - * lib/gnutls_dh_primes.c, lib/gnutls_int.h, lib/x509/common.c, - lib/x509/common.h, lib/x509/pkcs12.c, lib/x509/pkcs12.h, - lib/x509/pkcs12_bag.c, lib/x509/pkcs5.c, lib/x509/privkey.h, - lib/x509/privkey_pkcs8.c: Several more additions to PKCS #12 to - allow encrypting bags. Still not interoperable. - -2003-06-25 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-06-25 Nikos Mavrogiannopoulos - - * configure.in, includes/gnutls/x509.h, lib/gnutls_algorithms.c, - lib/gnutls_cipher_int.c, lib/gnutls_errors.c, lib/gnutls_int.h, - lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_session.c, - lib/gnutls_state.c, lib/pkix.asn, lib/pkix_asn1_tab.c, - lib/x509/common.c, lib/x509/common.h, lib/x509/pkcs12.c, - lib/x509/pkcs12.h, lib/x509/pkcs12_bag.c, lib/x509/pkcs12_encr.c, - lib/x509/pkcs7.c, lib/x509/privkey_pkcs8.c: More PKCS #12 additions. - Now the code can generate PKCS #12 files. Also added the ability to - decrypt plain DES encrypted PKCS #8 keys. - -2003-06-24 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-06-24 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h, lib/gnutls_cert.c, lib/gnutls_errors.c, - lib/gnutls_errors_int.h, lib/x509/pkcs12.c, lib/x509/pkcs12.h, - lib/x509/pkcs12_encr.c, lib/x509/pkcs5.c: Passwords in PKCS5 and - PKCS12 are now restricted to ASCII ones. - -2003-06-24 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h, lib/x509/pkcs12.c, lib/x509/pkcs12.h, - lib/x509/pkcs12_bag.c, lib/x509/pkcs12_encr.c: Some changes in - PKCS12 to allow a bag to hold more than one elements. - -2003-06-23 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-06-23 Nikos Mavrogiannopoulos - - * lib/gnutls_errors.c, lib/x509/common.h, lib/x509/pkcs12.c, - lib/x509/pkcs12.h, lib/x509/pkcs12_bag.c, lib/x509/privkey_pkcs8.c: - some pkcs12 improvements. - -2003-06-22 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-06-22 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/pkix.asn, lib/pkix_asn1_tab.c, - lib/x509/Makefile.am, lib/x509/common.h, lib/x509/pkcs12.h, - lib/x509/pkcs12_bag.c, lib/x509/pkcs12_encr.c, - lib/x509/privkey_pkcs8.c: Some additions to allow decrypting PKCS #5 - encrypted data, with PKCS #12 schema OIDs. - -2003-06-22 Nikos Mavrogiannopoulos - - * doc/tex/ex-cert-select.tex, doc/tex/ex-client2.tex, - doc/tex/ex-serv-srp.tex, doc/tex/layers.tex, doc/tex/record.tex, - doc/tex/tlsintro.tex, includes/gnutls/x509.h, lib/Makefile.am, - lib/gnutls_alert.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, - lib/x509/Makefile.am, lib/x509/common.c, lib/x509/common.h, - lib/x509/pkcs12.c, lib/x509/pkcs12.h, lib/x509/pkcs12_bag.c, - lib/x509/privkey.h: Some improvements in PKCS12 parser. Now it can - extract private keys from the structure. - -2003-06-20 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-06-20 Nikos Mavrogiannopoulos - - * NEWS, doc/protocol/draft-ietf-tls-extensions-06.txt, - doc/protocol/rfc3546.txt, doc/tex/gnutls.bib: new extensions RFC - -2003-06-17 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-06-17 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2003-06-17 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-srp-04.txt, - doc/protocol/draft-ietf-tls-srp-05.txt, doc/tex/gnutls.bib: new srp - draft. - -2003-06-16 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-06-16 Nikos Mavrogiannopoulos - - * doc/tex/gnutls.bib, doc/tex/library.tex: corrected a typo. - -2003-06-12 Nikos Mavrogiannopoulos - - * libextra/auth_srp.c: [no log message] - -2003-06-10 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-06-10 Nikos Mavrogiannopoulos - - * lib/gnutls_priority.c: added the most compatible ciphers in - default priorities. - -2003-06-09 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-06-09 Nikos Mavrogiannopoulos - - * NEWS, src/cli.c, src/crypt.c: Corrected bug in SRP where a non - allocated value was freed. Reported by Hiroshi Hayakawa - . Also the SRP programs are now build by default (they weren't due to - a bug). - -2003-06-06 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-ecc-01.txt, - doc/protocol/draft-ietf-tls-ecc-03.txt: [no log message] - -2003-06-05 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-rfc2246-bis-03.txt, - doc/protocol/draft-ietf-tls-rfc2246-bis-04.txt: [no log message] - -2003-06-03 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h: [no log message] - -2003-06-03 Nikos Mavrogiannopoulos - - * lib/auth_dh_common.c, lib/gnutls_auth.c, lib/gnutls_auth_int.h, - lib/gnutls_dh.c, lib/x509/privkey.c, lib/x509/x509.c: [no log - message] - -2003-06-03 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-compression-04.txt, - doc/protocol/draft-ietf-tls-compression-05.txt, - doc/protocol/draft-ietf-tls-sharedkeys-01.txt: [no log message] - -2003-05-28 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-05-28 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_buffers.c: Corrected a bug in the record layer - buffering, which affected the case where external pull function was - used. Report and a patch by Sergey Poznyakoff - . - -2003-05-21 Nikos Mavrogiannopoulos - - * lib/ext_server_name.c, lib/ext_server_name.h, lib/gnutls.h.in.in: - [no log message] - -2003-05-16 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-05-16 Nikos Mavrogiannopoulos - - * lib/defines.h, lib/minitasn1/decoding.c, lib/minitasn1/element.c, - lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509/pkcs12.c, - lib/x509/pkcs12.h: some more stuff about PKCS12. Still on early - stage and incomplete. - -2003-05-12 Nikos Mavrogiannopoulos - - * lib/minitasn1/coding.c, lib/minitasn1/decoding.c: [no log message] - -2003-05-11 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-05-08 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-05-08 Nikos Mavrogiannopoulos - - * lib/defines.h: [no log message] - -2003-05-08 Nikos Mavrogiannopoulos - - * includes/gnutls/openssl.h: [no log message] - -2003-05-08 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_cipher.c, lib/minitasn1/decoding.c, - lib/minitasn1/der.h, lib/minitasn1/int.h, lib/minitasn1/libtasn1.h, - lib/x509/privkey.c, lib/x509/x509.c, libextra/gnutls_openssl.c, - libextra/gnutls_srp.c, src/serv-gaa.c, src/serv.c, src/serv.gaa: - Several fixes in several places. Patch by Sean Gao - . - -2003-05-04 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2003-05-03 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-05-03 Nikos Mavrogiannopoulos - - * lib/auth_cert.c: Corrections in the TLS layer openpgp certificate - packet parser. - -2003-04-20 Nikos Mavrogiannopoulos - - * README: [no log message] - -2003-04-18 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-04-18 Nikos Mavrogiannopoulos - - * NEWS, includes/gnutls/x509.h, lib/gnutls_x509.c, - lib/x509/privkey.c, lib/x509/privkey.h, lib/x509/x509.c, src/serv.c: * Added gnutls_x509_privkey_get_key_id() and - gnutls_x509_crt_get_key_id() functions which return a unique (per - public key) ID. These can be used to check if the private key - corresponds to a given certificate. - -2003-04-16 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-04-16 Nikos Mavrogiannopoulos - - * lib/x509/crq.c: [no log message] - -2003-04-16 Nikos Mavrogiannopoulos - - * doc/protocol/x509guide.txt: [no log message] - -2003-04-16 Nikos Mavrogiannopoulos - - * lib/x509/crq.c: The PEM header for certificate requests is now - BEGIN NEW CERTIFICATE REQUEST. - -2003-04-16 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/gnutls_errors.c, lib/gnutls_errors_int.h, - lib/gnutls_x509.c, lib/pkix.asn, lib/pkix_asn1_tab.c, - lib/x509/crq.c, lib/x509/pkcs7.c: Renamed all of the PKCS #xx stuff - names, to pkcs-x-name. - -2003-04-16 Nikos Mavrogiannopoulos - - * lib/pkix.asn, lib/x509/Makefile.am, lib/x509/common.h, - lib/x509/pkcs7.c, lib/x509/privkey_pkcs8.c: [no log message] - -2003-04-16 Nikos Mavrogiannopoulos - - * lib/pkix.asn, lib/pkix_asn1_tab.c: added definitions for pkcs12 - -2003-04-15 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-04-15 Nikos Mavrogiannopoulos - - * src/cli.c: Corrected a bug in gnutls-cli while resuming sessions. - Reported by Ivo Timmermans, patch by Gergely Nagy - . - -2003-04-14 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-04-14 Nikos Mavrogiannopoulos - - * lib/ext_server_name.c: Corrected bug in server_name extension - which made the client to send the wrong size of data. - -2003-04-14 Nikos Mavrogiannopoulos - - * src/cli.c, src/common.c, src/serv.c: [no log message] - -2003-04-14 Nikos Mavrogiannopoulos - - * lib/gnutls_state.c: Increased the default DH bits limit. - -2003-04-06 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-04-06 Nikos Mavrogiannopoulos - - * lib/x509/verify.c: some prototype fixes. - -2003-04-06 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2003-04-03 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-openpgp-keys-02.txt, - doc/protocol/draft-ietf-tls-openpgp-keys-03.txt: [no log message] - -2003-04-01 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-04-01 Nikos Mavrogiannopoulos - - * libextra/gnutls_extra.c, src/cli.c, src/common.c, src/crypt.c, - src/serv.c, src/tests.c, src/tls_test.c: Some fixes to allow proper - compiling when --disable-srp-authentication and - --disable-anon-authentication are specified. Patch by Paul Sheer. - -2003-04-01 Nikos Mavrogiannopoulos - - * configure.in, lib/gnutls_cert.c, lib/gnutls_x509.c, - lib/x509/common.c, lib/x509/common.h, lib/x509/compat.c, - lib/x509/crl.c, lib/x509/crq.c, lib/x509/pkcs5.c, lib/x509/pkcs7.c, - lib/x509/privkey_pkcs8.c, lib/x509/sign.c, lib/x509/verify.c, - lib/x509/x509.c, lib/x509/xml.c, src/cli.c, src/common.c, - src/serv.c: Added the --disable-extra-pki configure option, which - disables all extra PKI stuff like PKCS #7, PKCS #10 etc. To be used - in constraint systems. - -2003-04-01 Nikos Mavrogiannopoulos - - * lib/x509/common.c, lib/x509/x509.c: [no log message] - -2003-04-01 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_mpi.c, lib/minitasn1/decoding.c, lib/x509/crl.c, - lib/x509/x509.c, libextra/gnutls_openpgp.c: several bug fixes in the - certificate parsing, and some in the asn1 parser. - -2003-03-31 Nikos Mavrogiannopoulos - - * lib/gnutls_int.h, lib/gnutls_x509.c, lib/x509/crl.c, - lib/x509/x509.c: More fixes to eliminate constants. - -2003-03-31 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c, lib/gnutls_dh_primes.c, - lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_pk.c, - lib/x509/mpi.c, lib/x509/privkey.c, lib/x509/x509.h: Eliminated the - need for a hard coded max MPI parameter size. - -2003-03-29 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-03-29 Nikos Mavrogiannopoulos - - * lib/gnutls.sym, libextra/gnutls-extra.sym: [no log message] - -2003-03-29 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h, lib/x509/common.h, lib/x509/xml.c, - src/common.c: Some fixes in the gnutls_x509_crt_to_xml() function. - -2003-03-29 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/x509/pkcs7.c, libextra/Makefile.am: [no log - message] - -2003-03-28 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-03-28 Nikos Mavrogiannopoulos - - * lib/x509_b64.c: some cleanups. - -2003-03-28 Nikos Mavrogiannopoulos - - * NEWS, configure.in, includes/gnutls/x509.h, lib/pkix.asn, - lib/pkix_asn1_tab.c, lib/x509/crl.c, lib/x509/pkcs7.c: Several - improvments in the PKCS #7 handling. Added capability to delete - certificates, and handle CRLs. - -2003-03-28 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2003-03-28 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/gnutls_alert.c, lib/gnutls_alert.h, - lib/x509/common.c, lib/x509/common.h, lib/x509/privkey_pkcs8.c, - lib/x509/x509.c, lib/x509/x509.h: several cleanups. - -2003-03-27 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-03-27 Nikos Mavrogiannopoulos - - * lib/x509_b64.c, lib/x509_b64.h: [no log message] - -2003-03-26 Nikos Mavrogiannopoulos - - * lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509/pkcs7.c, - lib/x509/x509.c, lib/x509_b64.c, lib/x509_b64.h: Several fixes to - allow exporting the PKCS #7 structures. - -2003-03-26 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-03-26 Nikos Mavrogiannopoulos - - * lib/x509/pkcs7.c, lib/x509/privkey_pkcs8.c: [no log message] - -2003-03-26 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c, lib/gnutls_handshake.c, - lib/gnutls_v2_compat.c: Some improvements in the version detection - in the client hello. - -2003-03-26 Nikos Mavrogiannopoulos - - * NEWS, includes/gnutls/x509.h, lib/gnutls_errors.c, - lib/gnutls_errors_int.h, lib/x509/pkcs7.c, - lib/x509/privkey_pkcs8.c, lib/x509/x509.c, lib/x509/x509.h: Added - functionality to generate PKCS #7 structures. Currently only - certificates can be put there. (untested) - -2003-03-26 Nikos Mavrogiannopoulos - - * src/serv-gaa.c, src/serv-gaa.h, src/serv.c, src/serv.gaa: Added - the --debug option to the gnutls-serv. - -2003-03-26 Nikos Mavrogiannopoulos - - * configure.in, lib/gnutls_handshake.c, lib/gnutls_int.h, - lib/gnutls_record.c, lib/gnutls_state.c, lib/gnutls_state.h, - lib/minitasn1/coding.c, lib/minitasn1/element.c, - lib/minitasn1/int.h, lib/minitasn1/libtasn1.h, - lib/minitasn1/parser_aux.c, lib/pkix.asn, src/tests.c, src/tests.h, - src/tls_test.c: Added bogus TLS record version check in the - gnutls-cli-debug tool. - -2003-03-25 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-03-25 Nikos Mavrogiannopoulos - - * lib/auth_cert.c, lib/ext_server_name.c, lib/gnutls_errors.c, - lib/gnutls_errors_int.h, lib/gnutls_session_pack.c, - lib/gnutls_sig.c, lib/x509/crl.c, lib/x509/crq.c, lib/x509/mpi.c, - lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, lib/x509/sign.c, - lib/x509/verify.c, lib/x509/x509.c: Several - GNUTLS_E_UNIMPLEMENTED_FEATURE errors were replaced with meaningful - error values. - -2003-03-24 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-03-24 Nikos Mavrogiannopoulos - - * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa: Added the - --debug option in the client. - -2003-03-24 Nikos Mavrogiannopoulos - - * NEWS, lib/auth_cert.c, lib/gnutls_buffers.c, lib/gnutls_global.c, - lib/gnutls_kx.c: * Corrected behaviour when a certificate request message is - received. Now a certificate packet is always sent, and in SSL 3.0 - cipher suites a no_certificate alert is sent instead. - -2003-03-24 Nikos Mavrogiannopoulos - - * lib/auth_cert.c: Corrected a parsing error in the Certificate - request message. - -2003-03-24 Nikos Mavrogiannopoulos - - * NEWS, lib/x509/Makefile.am: last changes for 0.9.3 release. - -2003-03-23 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-03-23 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c, lib/x509/mpi.c, lib/x509/pkcs7.c, - lib/x509/verify.c: reduced the FIXMEs. - -2003-03-23 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h, lib/x509/privkey.h, - lib/x509/privkey_pkcs8.c, src/cli-gaa.c, src/cli.gaa: Allow for - unencrypted PKCS #8 private keys. - -2003-03-23 Nikos Mavrogiannopoulos - - * lib/x509/common.c: [no log message] - -2003-03-23 Nikos Mavrogiannopoulos - - * lib/gnutls_global.c, lib/gnutls_global.h, lib/gnutls_rsa_export.c: - The functions that return the pkix_asn and gnutls_asn types were - converted to macros. - -2003-03-23 Nikos Mavrogiannopoulos - - * lib/x509/common.c, lib/x509/common.h, lib/x509/privkey_pkcs8.c, - lib/x509/xml.c: Some cleanups. - -2003-03-23 Nikos Mavrogiannopoulos - - * NEWS, includes/gnutls/x509.h, lib/Makefile.am, - lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, - lib/gnutls_constate.c, lib/gnutls_errors.c, - lib/x509/privkey_pkcs8.c, lib/x509/x509.c, lib/x509/x509.h: * Added support for encoding and decoding PKCS #8 2.0 encrypted RSA private keys. - -2003-03-22 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-03-22 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/funcs.tex, lib/gnutls_cert.c, lib/x509/Makefile.am: - the idea of using a separate library for x509 stuff was dropped for - now. - -2003-03-22 Nikos Mavrogiannopoulos - - * lib/gnutls_cert.c: more cleanups. - -2003-03-22 Nikos Mavrogiannopoulos - - * lib/gnutls_cert.c, lib/gnutls_x509.c: [no log message] - -2003-03-22 Nikos Mavrogiannopoulos - - * NEWS, includes/gnutls/x509.h, lib/gnutls.h.in.in, - lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_x509.c, - lib/minitasn1/coding.c, lib/pkix.asn, lib/x509/crl.c, - lib/x509/x509.c, lib/x509/x509.h: * Added the new functions: gnutls_certificate_set_x509_key() gnutls_certificate_set_x509_trust(), - gnutls_certificate_set_x509_crl(), gnutls_x509_crt_export(), - gnutls_x509_crl_export(). - -2003-03-21 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-03-21 Nikos Mavrogiannopoulos - - * NEWS, includes/gnutls/x509.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h, - lib/x509/mpi.c, lib/x509/mpi.h, lib/x509/privkey_pkcs8.c: [no log - message] - -2003-03-21 Nikos Mavrogiannopoulos - - * lib/gnutls_global.c, lib/gnutls_mpi.c, lib/gnutls_mpi.h, - lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509/Makefile.am, - lib/x509/common.c, lib/x509/common.h, lib/x509/pkcs5.c, - lib/x509/pkcs5.h, lib/x509/privkey.c, lib/x509/privkey.h, - lib/x509/privkey_pkcs8.c: Added ability to import PKCS8 encrypted - keys. - -2003-03-20 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-03-20 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/ex-serv-export.tex, includes/gnutls/compat8.h, - lib/gnutls.h.in.in, lib/gnutls_ui.c, src/prime-gaa.c, src/prime.gaa: * The gnutls_certificate_set_rsa_params() was renamed to gnutls_certificate_set_rsa_export_params(). - -2003-03-20 Nikos Mavrogiannopoulos - - * doc/tex/ex-serv-export.tex, doc/tex/ex-serv1.tex: [no log message] - -2003-03-20 Nikos Mavrogiannopoulos - - * lib/auth_rsa.c, lib/gnutls_int.h, lib/gnutls_pk.c: [no log - message] - -2003-03-20 Nikos Mavrogiannopoulos - - * NEWS, lib/auth_rsa.c, lib/gnutls.h.in.in, lib/gnutls_alert.c, - lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_int.h, - lib/gnutls_pk.c, lib/gnutls_state.c, src/tests.c, src/tests.h, - src/tls_test.c: * The RSA premaster secret version check can no longer be disabled. * Implemented the counter measure discussed in the paper "Attacking RSA-based Sessions in SSL/TLS", against the attack discussed in - the same paper. * Added the functions: gnutls_handshake_get_last_in(), gnutls_handshake_get_last_out(). - -2003-03-20 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_priority.c, lib/minitasn1/coding.c, - lib/minitasn1/decoding.c, lib/minitasn1/element.c, - lib/minitasn1/errors.c, lib/minitasn1/errors_int.h, - lib/minitasn1/int.h, lib/minitasn1/libtasn1.h, - lib/minitasn1/structure.c, lib/x509/dn.c: * The diffie Hellman ciphersuites are now of higher priority than the plain RSA. * Added the new libtasn1. - -2003-03-19 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-03-19 Nikos Mavrogiannopoulos - - * NEWS, configure.in, lib/auth_rsa.c, lib/debug.c, lib/debug.h, - lib/dh_compat.c, lib/gnutls.h.in.in, lib/gnutls_alert.c, - lib/gnutls_alert.h, lib/gnutls_buffers.c, lib/gnutls_constate.c, - lib/gnutls_dh_primes.c, lib/gnutls_errors.c, lib/gnutls_errors.h, - lib/gnutls_extensions.c, lib/gnutls_global.c, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, - lib/gnutls_pk.c, lib/gnutls_sig.c, lib/rsa_compat.c, lib/x509/dn.c, - lib/x509/x509.c, libextra/auth_srp.c, libextra/gnutls_openpgp.c, - src/cli.c: * Improved the error logging functions, by adding a level, and by allowing debugging messages just by increasing the level. - -2003-03-19 Nikos Mavrogiannopoulos - - * doc/examples/Makefile.am, doc/tex/Makefile.am, - doc/tex/ex-info.tex, doc/tex/ex-session-info.tex, - doc/tex/ex-x509-info.tex, doc/tex/examples.tex: [no log message] - -2003-03-18 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-03-18 Nikos Mavrogiannopoulos - - * NEWS, configure.in: [no log message] - -2003-03-18 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/funcs.tex, lib/Makefile.am, lib/x509/Makefile.am: - some of the extra X.509 functionality was moved to libgnutls-x509 - library. - -2003-03-17 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-03-17 Nikos Mavrogiannopoulos - - * lib/gnutls_dh_primes.c, lib/gnutls_errors.c, lib/gnutls_pk.c, - lib/x509/crq.c, lib/x509/dn.c, lib/x509/mpi.c, lib/x509/sign.c, - lib/x509/verify.c, lib/x509/x509.c: better use of asn1_der_coding() - to avoid using static buffers. - -2003-03-17 Nikos Mavrogiannopoulos - - * lib/gnutls_hash_int.c: [no log message] - -2003-03-17 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, - lib/gnutls_hash_int.c, lib/gnutls_int.h, lib/x509/common.c, - lib/x509/verify.c, lib/x509/x509.h: MD2 support was dropped this is - an algorithm we cannot use. - -2003-03-17 Nikos Mavrogiannopoulos - - * lib/gnutls_hash_int.c, lib/x509/common.c, lib/x509/common.h, - lib/x509/sign.c, lib/x509/verify.c: some cleanups. - -2003-03-15 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-03-15 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h, lib/x509/crq.c, lib/x509/x509.c: Added - gnutls_x509_crq_get_challenge_password(). - -2003-03-15 Nikos Mavrogiannopoulos - - * doc/README.CVS: [no log message] - -2003-03-15 Nikos Mavrogiannopoulos - - * doc/examples/Makefile.am, doc/tex/Makefile.am, - doc/tex/ex-crq.tex, doc/tex/examples.tex: added an example about - certificate request and private key generation. - -2003-03-15 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_int.h, lib/x509/crq.c, lib/x509/x509.c: [no log - message] - -2003-03-15 Nikos Mavrogiannopoulos - - * NEWS, configure.in, includes/gnutls/x509.h, lib/pkix.asn, - lib/pkix_asn1_tab.c, lib/x509/common.c, lib/x509/common.h, - lib/x509/crq.c, lib/x509/dn.c, lib/x509/dn.h, lib/x509/x509.c, - libextra/auth_srp_rsa.c: Added support for PKCS#10 certificate - requests generation. - -2003-03-14 Nikos Mavrogiannopoulos - - * doc/protocol/rfc2985.txt: added pkcs9 rfc. - -2003-03-14 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-03-14 Nikos Mavrogiannopoulos - - * lib/x509/crq.c: several other additions and fixes for the - certificate request stuff. - -2003-03-14 Nikos Mavrogiannopoulos - - * lib/gnutls_int.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h, - lib/x509/common.c, lib/x509/common.h, lib/x509/crq.c, - lib/x509/dn.c, lib/x509/dn.h, lib/x509/mpi.c, lib/x509/mpi.h, - lib/x509/sign.c, lib/x509/sign.h: several other additions and fixes - for the certificate request stuff. - -2003-03-14 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2003-03-14 Nikos Mavrogiannopoulos - - * tests/Makefile, tests/openpgp_test.c: [no log message] - -2003-03-14 Nikos Mavrogiannopoulos - - * doc/protocol/rfc2986.txt: added rfc for certificate requests. - -2003-03-14 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, - lib/auth_rsa_export.c, lib/gnutls_pk.c, lib/gnutls_pk.h, - lib/gnutls_sig.c, lib/gnutls_sig.h, lib/pkix.asn, - lib/pkix_asn1_tab.c, lib/x509/Makefile.am, lib/x509/crl.c, - lib/x509/crq.c, lib/x509/crq.h, lib/x509/pkcs7.c, - lib/x509/privkey.c, lib/x509/sign.c, lib/x509/sign.h, - lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509.h: Added some - stuff needed in PKCS#10 certificate request generation. Some other - fixes as well. - -2003-03-14 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in: [no log message] - -2003-03-14 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2003-03-14 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h, lib/auth_rsa_export.c, lib/gnutls_int.h, - lib/gnutls_rsa_export.c, lib/gnutls_rsa_export.h, - lib/x509/privkey.c, lib/x509/x509.h: The RSA parameters handling - functions, are now implemented using the rsa privkey functions. - -2003-03-13 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-03-13 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h, lib/x509/privkey.c: added flags to - privkey_generate() - -2003-03-13 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c: unmap data and close the file descriptor after - the mmap(). - -2003-03-12 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-03-12 Nikos Mavrogiannopoulos - - * lib/gnutls_int.h: [no log message] - -2003-03-12 Nikos Mavrogiannopoulos - - * NEWS, libextra/gnutls_srp.c: [no log message] - -2003-03-12 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2003-03-12 Nikos Mavrogiannopoulos - - * libextra/gnutls_srp.c: fixed a memory leak. Reported by Rupert - Kittinger - -2003-03-12 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-03-12 Nikos Mavrogiannopoulos - - * NEWS, configure.in, lib/gnutls_dh_primes.c, lib/gnutls_x509.c, - src/cli.c: Use mmap() if available to read files. - -2003-03-12 Nikos Mavrogiannopoulos - - * NEWS, configure.in, lib/Makefile.am, lib/defines.h, - lib/gnutls_dh_primes.c, lib/gnutls_x509.c, lib/strnstr.c, - lib/x509/crl.c, lib/x509/pkcs7.c, lib/x509/privkey.c, - lib/x509_b64.c: * Added an strnstr() function and the requirement in some functions - to use null terminated PEM structures is no more. - -2003-03-12 Nikos Mavrogiannopoulos - - * lib/gnutls_cert.c: [no log message] - -2003-03-12 Nikos Mavrogiannopoulos - - * NEWS, includes/gnutls/x509.h, lib/auth_cert.c, lib/auth_cert.h, - lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, - lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_mpi.h, - lib/gnutls_sig.c, lib/gnutls_sig.h, lib/gnutls_x509.c, - lib/x509/privkey.c, lib/x509/verify.c, lib/x509/x509.c, - lib/x509/x509.h, libextra/auth_srp_rsa.c, libextra/gnutls_openpgp.c: * Added ability to generate RSA keys. * Increased the maximum parameter size in order to read some large - keys by some CAs. Patch by Ian Peters . * Rolled back some of yesterdays changes. The gnutls_x509_privkey, - was replaced (again) by the gnutls_privkey. - -2003-03-11 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-03-11 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/auth_cert.c, lib/auth_cert.h, - lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, - lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_int.h, - lib/gnutls_privkey.c, lib/gnutls_privkey.h, lib/gnutls_sig.c, - lib/gnutls_sig.h, lib/gnutls_x509.c, lib/gnutls_x509.h, - lib/x509/privkey.c, lib/x509/x509.h: some improvements in the - private key handling api. It is now used internally. - -2003-03-11 Nikos Mavrogiannopoulos - - * lib/gnutls_int.h, lib/gnutls_ui.c: [no log message] - -2003-03-11 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/gnutls_ui.c: The fingerprint now accepts a - pointer to an int instead of a ptr to a size_t. - -2003-03-11 Nikos Mavrogiannopoulos - - * doc/tex/ex-info.tex, src/common.c: [no log message] - -2003-03-10 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-03-10 Nikos Mavrogiannopoulos - - * NEWS, THANKS: [no log message] - -2003-03-07 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-03-07 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-rfc2246-bis-02.txt, - doc/protocol/draft-ietf-tls-rfc2246-bis-03.txt: added the new tls - 1.1 draft - -2003-03-06 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-03-06 Nikos Mavrogiannopoulos - - * configure.in: [no log message] - -2003-03-06 Nikos Mavrogiannopoulos - - * configure.in, lib/Makefile.am, lib/gnutls_buffers.c, - lib/x509/Makefile.am, libextra/Makefile.am: the documentation is now - created on dist time. - -2003-03-06 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_buffers.c: Corrected a broken buffer check in - _gnutls_io_read_buffered() - -2003-03-06 Nikos Mavrogiannopoulos - - * libextra/Makefile.am: [no log message] - -2003-03-05 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-03-05 Nikos Mavrogiannopoulos - - * doc/README.CODING_STYLE, doc/tex/certificate.tex, - doc/tex/ex-rfc2818.tex, doc/tex/ex-serv-export.tex, - doc/tex/ex-serv1.tex: some documentation fixes. - -2003-03-04 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-03-04 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2003-03-04 Nikos Mavrogiannopoulos - - * doc/tex/record_weaknesses.tex: Documented the last timing attack. - -2003-03-04 Nikos Mavrogiannopoulos - - * NEWS, configure.in, lib/defines.h, lib/gnutls.h.in.in, - lib/gnutls_alert.c, lib/gnutls_cipher.c, lib/gnutls_constate.c, - lib/gnutls_dh_primes.c, lib/gnutls_int.h, lib/gnutls_num.c, - lib/gnutls_num.h, lib/gnutls_ui.c, lib/gnutls_x509.c, src/serv.c: * Corrected a bug in 64 bit architectures, which affected the serial number calculation in the record layer. * Added gnutls_certificate_free_keys() which deletes all the private keys and certificates from the credentials structure. - -2003-03-04 Nikos Mavrogiannopoulos - - * lib/minitasn1/coding.c, lib/minitasn1/decoding.c, - lib/minitasn1/element.c, lib/minitasn1/int.h, - lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c: updated to the - new libtasn1. - -2003-03-03 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-03-03 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_cipher.c, lib/gnutls_cipher_int.c: Added - protection against the new TLS 1.0 record layer timing attack. - -2003-03-03 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h, lib/auth_cert.h, lib/gnutls.h.in.in, - lib/gnutls_ui.c, lib/gnutls_x509.c, lib/x509/verify.c, - lib/x509/verify.h, src/cli.c, src/common.c: Added a flag to allow - signing by v1 X.509 certificates. Also added a function to allow - setting the verification flags in the credentials structure. - -2003-03-03 Nikos Mavrogiannopoulos - - * src/tests.c, src/tls_test.c: some fixes in tests - -2003-02-28 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-02-27 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, - lib/gnutls_hash_int.c, lib/gnutls_int.h, lib/x509/verify.c: Added - support for MD2 signature verification in X.509 certificates. - -2003-02-25 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-02-25 Nikos Mavrogiannopoulos - - * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, - src/tests.c, src/tls_test.c: Added option to disable all TLS 1.0 - extensions. - -2003-02-25 Nikos Mavrogiannopoulos - - * src/tests.c: [no log message] - -2003-02-22 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-02-22 Nikos Mavrogiannopoulos - - * configure.in, doc/tex/Makefile.am, lib/Makefile.am: some fixes in - makefiles. - -2003-02-21 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/gnutls_cipher.c, lib/gnutls_dh_primes.c, - lib/gnutls_global.c: [no log message] - -2003-02-20 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-02-20 Nikos Mavrogiannopoulos - - * lib/auth_cert.c: [no log message] - -2003-02-20 Nikos Mavrogiannopoulos - - * doc/examples/Makefile.am, doc/tex/Makefile.am, - doc/tex/ex-cert-select.tex, doc/tex/ex-info.tex, - doc/tex/examples.tex: Added a small example on how to use the - certificate selection callback in client side. - -2003-02-19 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2003-02-18 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-02-18 Nikos Mavrogiannopoulos - - * lib/gnutls_auth.c, lib/gnutls_mpi.c, lib/gnutls_pk.c, - libextra/auth_srp.c, libextra/gnutls_srp.c: some fixes in types. - -2003-02-18 Nikos Mavrogiannopoulos - - * lib/auth_cert.c, lib/gnutls_cert.c, src/cli.c, src/tests.c: The - client certificate selection callback is no longer called twice. It - is called once if it is set. - -2003-02-16 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-02-16 Nikos Mavrogiannopoulos - - * lib/gnutls_priority.c, lib/gnutls_record.c, lib/gnutls_session.c: - [no log message] - -2003-02-16 Nikos Mavrogiannopoulos - - * lib/gnutls_priority.c: [no log message] - -2003-02-16 Nikos Mavrogiannopoulos - - * src/common.c: [no log message] - -2003-02-16 Nikos Mavrogiannopoulos - - * src/tests.c, src/tls_test.c: works better in buggy servers. - -2003-02-16 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c: [no log message] - -2003-02-16 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/ex-serv-export.tex, doc/tex/ex-serv1.tex, - includes/gnutls/compat8.h, includes/gnutls/x509.h, lib/Makefile.am, - lib/dh_compat.c, lib/gnutls.h.in.in, lib/gnutls_dh_primes.c, - lib/gnutls_int.h, lib/gnutls_rsa_export.c, lib/gnutls_rsa_export.h, - lib/rsa_compat.c, lib/x509/mpi.c, libextra/Makefile.am, - src/prime.c, src/serv.c: The RSA and DH parameter handling has been - updated. - -2003-02-15 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-02-15 Nikos Mavrogiannopoulos - - * lib/auth_cert.c, lib/gnutls_x509.c, lib/x509/x509.c: Added a - primitive function to load a file into memory, so that no - certificate files are truncated. Also fixed a bug in the client - certificate callback function. - -2003-02-15 Nikos Mavrogiannopoulos - - * lib/gnutls_ui.c, lib/x509/dn.c, lib/x509/pkcs7.c, - lib/x509/pkcs7.h, lib/x509/x509.c: Null, as the data value, is now - an acceptable value in functions that may return the size of the - data. - -2003-02-14 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-02-14 Nikos Mavrogiannopoulos - - * lib/gnutls_buffers.c, src/common.c: [no log message] - -2003-02-14 Nikos Mavrogiannopoulos - - * lib/auth_cert.c, lib/gnutls.h.in.in, lib/gnutls_cert.c, - lib/gnutls_ui.h, lib/x509/dn.c, lib/x509/rfc2818_hostname.c, - src/cli.c, src/common.c, src/tests.c, src/tests.h, src/tls_test.c: - Corrected bugs in gnutls_x509_rdn_get(). Added a test to print the - server's trusted CAs in gnutls-cli-debug, and in gnutls-cli. - -2003-02-14 Nikos Mavrogiannopoulos - - * src/prime.c: [no log message] - -2003-02-14 Nikos Mavrogiannopoulos - - * configure.in: [no log message] - -2003-02-14 Nikos Mavrogiannopoulos - - * NEWS, configure.in, includes/gnutls/x509.h, lib/gnutls_cert.c, - lib/gnutls_dh_primes.c, lib/gnutls_mpi.c, lib/gnutls_mpi.h, - lib/gnutls_pk.c, lib/gnutls_privkey.c, lib/gnutls_x509.c, - lib/minitasn1/coding.c, lib/minitasn1/decoding.c, - lib/minitasn1/element.c, lib/minitasn1/errors.c, - lib/minitasn1/gstr.h, lib/minitasn1/int.h, - lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, - lib/minitasn1/structure.c, lib/x509/common.c, lib/x509/compat.c, - lib/x509/crl.c, lib/x509/dn.c, lib/x509/dn.h, - lib/x509/extensions.c, lib/x509/mpi.c, lib/x509/pkcs7.c, - lib/x509/verify.c, lib/x509/x509.c, lib/x509/xml.c: ported to - libtasn1 0.2.x. Also the included minitasn1 was replaced by the - 0.2.1 version of libtasn1. - -2003-02-14 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h, lib/gnutls.h.in.in, lib/gnutls_int.h, - lib/x509/crl.c, lib/x509/dn.c, lib/x509/x509.c: gnutls_const_datum - was removed from exported types, for the time being. - -2003-02-14 Nikos Mavrogiannopoulos - - * includes/gnutls/extra.h: [no log message] - -2003-02-14 Nikos Mavrogiannopoulos - - * lib/x509/common.c: [no log message] - -2003-02-13 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-02-13 Nikos Mavrogiannopoulos - - * README, doc/TODO, lib/auth_cert.c, lib/gnutls_int.h, - lib/gnutls_state.c, lib/gnutls_x509.c: Added option to allow an - X.509 server not to send the trusted CA list to the peer. - -2003-02-12 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-02-12 Nikos Mavrogiannopoulos - - * doc/tex/appendix.tex, doc/tex/certificate.tex, - doc/tex/ex-info.tex, doc/tex/ex-rfc2818.tex, doc/tex/funcs.tex, - doc/tex/gnutls.bib, doc/tex/x509cert.xml.tex: [no log message] - -2003-02-12 Nikos Mavrogiannopoulos - - * doc/TODO, src/cli.c, src/serv.c: [no log message] - -2003-02-12 Nikos Mavrogiannopoulos - - * src/tests.c: [no log message] - -2003-02-12 Nikos Mavrogiannopoulos - - * lib/Makefile.am, src/tests.c, src/tests.h, src/tls_test.c: Added - test which prints the Diffie Hellman prime bits used. - -2003-02-12 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2003-02-12 Nikos Mavrogiannopoulos - - * NEWS, includes/gnutls/compat8.h, includes/gnutls/x509.h, - lib/gnutls.h.in.in, lib/gnutls_dh_primes.c, lib/gnutls_int.h, - lib/gnutls_privkey.c, lib/gnutls_ui.h, lib/gnutls_x509.c, - lib/x509/Makefile.am, lib/x509/compat.c, lib/x509/crl.c, - lib/x509/pkcs7.c, lib/x509/pkcs7.h, lib/x509/privkey.c, - lib/x509/x509.c, lib/x509/x509.h: Added some private key handling - functions. They are primitive enough for now. - -2003-02-12 Nikos Mavrogiannopoulos - - * libextra/gnutls_openpgp.c, libextra/gnutls_openpgp.h: some fixes - to compile. - -2003-02-12 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-extensions-05.txt, - doc/protocol/draft-ietf-tls-extensions-06.txt: added new extensions - draft. - -2003-02-12 Nikos Mavrogiannopoulos - - * NEWS, includes/gnutls/compat8.h, includes/gnutls/x509.h, - lib/auth_cert.c, lib/auth_cert.h, lib/gnutls.h.in.in, - lib/gnutls_cert.c, lib/gnutls_dh_primes.c, lib/gnutls_int.h, - lib/gnutls_ui.h, lib/gnutls_x509.c, lib/x509/compat.c, - lib/x509/crl.c, lib/x509/extensions.c, lib/x509/extensions.h, - lib/x509/mpi.c, lib/x509/mpi.h, lib/x509/pkcs7.c, lib/x509/pkcs7.h, - lib/x509/rfc2818_hostname.c, lib/x509/verify.c, lib/x509/verify.h, - lib/x509/x509.c, lib/x509/x509.h, lib/x509/xml.c, tests/x509_test.c: - gnutls_x509_certificate_* were renamed gnutls_x509_crt_*. - -2003-02-12 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h, lib/gnutls.h.in.in, lib/gnutls_int.h, - lib/gnutls_ui.c, lib/x509/x509.c: added - gnutls_x509_certificate_get_fingerprint(). Untested yet. - -2003-02-10 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-02-10 Nikos Mavrogiannopoulos - - * includes/gnutls/compat8.h, lib/debug.c, lib/debug.h, - lib/gnutls.h.in.in, lib/gnutls_errors.c, lib/gnutls_global.c, - lib/gnutls_ui.c, lib/gnutls_ui.h, lib/x509/compat.h, - lib/x509/rfc2818_hostname.c, lib/x509/x509.c: renamed - gnutls_x509_fingerprint to gnutls_fingerprint. - -2003-02-09 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-02-09 Nikos Mavrogiannopoulos - - * lib/gnutls_dh_primes.c, src/prime.c: fixes in pkcs3 DH parameter - generation. - -2003-02-09 Nikos Mavrogiannopoulos - - * libextra/auth_srp_rsa.c: [no log message] - -2003-02-09 Nikos Mavrogiannopoulos - - * includes/Makefile.am, includes/gnutls/Makefile.am, - includes/gnutls/compat8.h, lib/Makefile.am, lib/auth_cert.c, - lib/auth_cert.h, lib/auth_dhe.c, lib/auth_rsa.c, - lib/auth_rsa_export.c, lib/gnutls.h.in.in, lib/gnutls_cert.c, - lib/gnutls_cert.h, lib/gnutls_dh_primes.c, lib/gnutls_handshake.c, - lib/gnutls_rsa_export.c, lib/gnutls_ui.h, lib/gnutls_x509.c, - lib/gnutls_x509.h, lib/x509/compat.c, lib/x509/extensions.c, - lib/x509/pkcs7.h, lib/x509/x509.h, lib/x509_extensions.c, - lib/x509_extensions.h, lib/x509_sig_check.c, lib/x509_verify.c, - lib/x509_verify.h, libextra/auth_srp_rsa.c, - libextra/gnutls_extra.h, libextra/gnutls_openpgp.c, - libextra/gnutls_openpgp.h, src/cli-gaa.c, src/cli-gaa.h, src/cli.c, - src/cli.gaa, src/serv-gaa.c, src/serv-gaa.h, src/serv.c, - src/serv.gaa: Several internal changes to use the new certificate - API. CRL support is complete. - -2003-02-08 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-02-08 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h, lib/x509/Makefile.am, lib/x509/common.c, - lib/x509/crl.c, lib/x509/crl.h, lib/x509/dn.c, lib/x509/dn.h, - lib/x509/pkcs7.c, lib/x509/verify.c, lib/x509/x509.c, - lib/x509/x509.h, tests/test20.pem, tests/test21.pem, - tests/x509_test.c: Certificate revocation support is almost - complete. - -2003-02-08 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h, lib/gnutls.h.in.in, lib/gnutls_int.h, - lib/x509/crl.c, lib/x509/crl.h, lib/x509/verify.c, - lib/x509/verify.h, lib/x509/x509.c, lib/x509/x509.h: added a crl - verification function (untested yet). - -2003-02-08 Nikos Mavrogiannopoulos - - * libextra/gnutls_openpgp.c, src/common.c: [no log message] - -2003-02-08 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h, lib/Makefile.am, lib/gnutls_x509.c, - lib/x509/Makefile.am, lib/x509/compat.c, lib/x509/compat.h, - lib/x509/crl.c, lib/x509/dn.c, lib/x509/dn.h, - lib/x509/extensions.c, lib/x509/extensions.h, lib/x509/mpi.c, - lib/x509/mpi.h, lib/x509/rfc2818_hostname.c, lib/x509/verify.c, - lib/x509/verify.h, lib/x509/x509.c, lib/x509/x509.h, - lib/x509_b64.c, tests/test2.pem, tests/x509_test.c: Added some new - certificate verification functions. - -2003-02-08 Nikos Mavrogiannopoulos - - * NEWS, includes/gnutls/x509.h, lib/gnutls_cert.c, lib/x509/dn.c: - [no log message] - -2003-02-07 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-02-07 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/gnutls_cert.c, lib/gnutls_cert.h, - lib/gnutls_privkey.c: removed the raw part in the gnutls_privkey - internal structure.. - -2003-02-07 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h, lib/x509/compat.c, lib/x509/extensions.c, - lib/x509/extensions.h, lib/x509/rfc2818_hostname.c, - lib/x509/x509.c, lib/x509/x509.h: Criticality of an X.509 extension - can now be extracted. - -2003-02-07 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h, lib/x509/.cvsignore, - lib/x509/extensions.c, lib/x509/extensions.h, lib/x509/x509.c, - lib/x509_extensions.c: Added function to extract the key usage - extension from an X.509 certificate, and combined some code. - -2003-02-07 Nikos Mavrogiannopoulos - - * lib/Makefile.am: [no log message] - -2003-02-07 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/Makefile.am, doc/tex/certificate.tex, - doc/tex/ex-info.tex, doc/tex/ex-rfc2818.tex, doc/tex/funcs.tex, - includes/gnutls/x509.h, lib/Makefile.am, lib/gnutls_dh_primes.c, - lib/gnutls_ui.h, lib/gnutls_x509.h, lib/rfc2818_hostname.c, - lib/x509/Makefile.am, lib/x509/compat.h, lib/x509/dn.h, - lib/x509/rfc2818_hostname.c, lib/x509/x509.h, lib/x509/xml.c, - lib/x509_xml.c: More stuff for the new certificate API. - -2003-02-07 Nikos Mavrogiannopoulos - - * NEWS, includes/gnutls/x509.h, lib/Makefile.am, lib/gnutls_cert.c, - lib/gnutls_errors.h, lib/gnutls_errors_int.h, lib/gnutls_x509.c, - lib/x509/Makefile.am, lib/x509/compat.c, lib/x509/dn.c: The old - certificate parsing API was reimplemented over the new one. It will - stay in the 1.0.0 release for compatibility reasons. - -2003-02-07 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h, lib/Makefile.am, lib/gnutls_x509.h, - lib/x509/Makefile.am, lib/x509/common.h, lib/x509/crl.c, - lib/x509/pkcs7.c, lib/x509/pkcs7.h, lib/x509/x509.c: Added the new - PKCS7 parsing functions. - -2003-02-07 Nikos Mavrogiannopoulos - - * lib/x509/x509.c, lib/x509/x509.h: Added the new certificate - handling functions. - -2003-02-07 Nikos Mavrogiannopoulos - - * doc/tex/ex-client-resume.tex, doc/tex/ex-client1.tex, - doc/tex/ex-client2.tex, doc/tex/ex-serv-export.tex, - doc/tex/ex-serv-pgp.tex, doc/tex/ex-serv1.tex, - includes/gnutls/x509.h, lib/Makefile.am, lib/gnutls_x509.c, - lib/gnutls_x509.h, lib/x509/Makefile.am, lib/x509/common.c, - lib/x509/common.h, lib/x509/crl.c, lib/x509/crl.h, lib/x509_xml.c: - Added the new certificate handling functions. - -2003-02-07 Nikos Mavrogiannopoulos - - * THANKS, includes/gnutls/x509.h, lib/Makefile.am, - lib/gnutls_x509.c, lib/gnutls_x509.h, lib/x509/Makefile.am, - lib/x509/common.c, lib/x509/common.h, lib/x509/crl.c, - lib/x509/dn.c, lib/x509/dn.h, lib/x509_extensions.c, lib/x509_xml.c: - More improvements in the CRL support, and the X.509 backend. Added a - function to get some parts of the DN using an OID. - -2003-02-06 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-02-06 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h, lib/gnutls.h.in.in, lib/gnutls_x509.c, - lib/gnutls_x509.h, lib/x509/crl.c, lib/x509/crl.h: CRL parsing - support is almost complete. - -2003-02-06 Nikos Mavrogiannopoulos - - * includes/gnutls/x509.h, lib/debug.c, lib/debug.h, - lib/gnutls_dh_primes.c, lib/gnutls_rsa_export.c, lib/gnutls_str.c, - lib/gnutls_str.h, lib/gnutls_x509.c, lib/gnutls_x509.h, - lib/x509/crl.c, lib/x509/dn.c, lib/x509/dn.h: Several fixes and - improvements in CRL support. - -2003-02-05 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-02-05 Nikos Mavrogiannopoulos - - * NEWS, configure.in, includes/Makefile.am, - includes/gnutls/Makefile.am, includes/gnutls/x509.h, - lib/Makefile.am, lib/gnutls_int.h, lib/gnutls_x509.c, - lib/x509/Makefile.am, lib/x509/crl.c, lib/x509/crl.h, - lib/x509/dn.c, lib/x509/dn.h: Added preliminary CRL support. This - will be under the new X.509 API. Other x509 functions will be - updated later. - -2003-02-05 Nikos Mavrogiannopoulos - - * lib/gnutls_dh_primes.c, lib/gnutls_pk.c: some fixes. There wasn't - any limitation in libtasn1 code... just my lazyness. - -2003-02-03 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-02-03 Nikos Mavrogiannopoulos - - * src/prime-gaa.c, src/prime-gaa.h, src/prime.c, src/prime.gaa: use - options to print DH parameters. - -2003-02-03 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_dh_primes.c, lib/gnutls_int.h, lib/gnutls_ui.h, - lib/minitasn1/coding.c, src/prime.c: * Added gnutls_pkcs3_extract_dh_params() and - gnutls_pkcs3_export_dh_params() which extracts and export parameters - from and to PKCS#3 encoded structures. These were added to read - parameters generated using the openssl dhparam tool. * The prime program was modified to also print the generated prime - and generator using the PKCS#3 format. - -2003-02-03 Nikos Mavrogiannopoulos - - * NEWS, doc/TODO, doc/tex/ex-serv-export.tex, - doc/tex/ex-serv-pgp.tex, doc/tex/ex-serv1.tex, lib/Makefile.am, - lib/auth_anon.c, lib/auth_dhe.c, lib/gnutls.asn, - lib/gnutls.h.in.in, lib/gnutls_alert.c, lib/gnutls_anon_cred.c, - lib/gnutls_asn1_tab.c, lib/gnutls_cert.c, lib/gnutls_dh.h, - lib/gnutls_dh_primes.c, lib/gnutls_errors.c, - lib/gnutls_errors_int.h, lib/gnutls_global.c, lib/gnutls_int.h, - lib/gnutls_mpi.c, lib/gnutls_rsa_export.c, lib/gnutls_state.c, - lib/gnutls_ui.h, src/serv-gaa.c, src/serv-gaa.h, src/serv.c, - src/serv.gaa: * gnutls_dh_params_generate() and gnutls_rsa_params_generate() now - use gnutls_malloc() to allocate the output parameters. * Added gnutls_pkcs3_extract_dh_params() which extracts parameters - from PKCS#3 encoded structures. This was in order to read parameters - generated using the openssl dhparam tool. * Several changes in the temporary (DH/RSA) parameter codebase. No - DH parameters are now included in the library. Also a credentials - structure can now hold only one temporary parameter. - -2003-01-30 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-01-30 Nikos Mavrogiannopoulos - - * lib/gnutls_ui.c: more doc for the gnutls_set_dh_prime_bits(). - -2003-01-30 Nikos Mavrogiannopoulos - - * NEWS, configure.in, lib/gnutls.sym, lib/gnutls_alert.c, - lib/gnutls_int_compat.c: removed backward compatibility functions - for 0.9.0 version. - -2003-01-30 Nikos Mavrogiannopoulos - - * lib/minitasn1/.cvsignore: [no log message] - -2003-01-28 Nikos Mavrogiannopoulos - - * doc/tex/compression.tex: [no log message] - -2003-01-25 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-01-25 Nikos Mavrogiannopoulos - - * doc/tex/certificate.tex, doc/tex/compression.tex: [no log message] - -2003-01-25 Nikos Mavrogiannopoulos - - * lib/gnutls_errors.c, lib/gnutls_errors_int.h, libextra/auth_srp.c: - use RECEIVED_ILLEGAL_PARAMETER instead of SRP_PROTOCOL_FAILURE, when - the SRP protocol fails. - -2003-01-24 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-01-24 Nikos Mavrogiannopoulos - - * lib/gnutls_global.c: The gcrypt log handler is only set when we - are in debugging mode. - -2003-01-24 Nikos Mavrogiannopoulos - - * lib/gnutls_global.c: [no log message] - -2003-01-23 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-01-23 Nikos Mavrogiannopoulos - - * NEWS, lib/auth_rsa.c, lib/debug.c, lib/gnutls_algorithms.c, - lib/gnutls_compress_int.c, lib/gnutls_dh_primes.c, - lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_extensions.c, - lib/gnutls_global.c, lib/gnutls_rsa_export.c, lib/gnutls_x509.c, - src/cli.c: Added ability to send some messages back to the - application using the gnutls_global_set_log_function(). This is - quite experimental. - -2003-01-23 Nikos Mavrogiannopoulos - - * doc/tex/ex-client-resume.tex, doc/tex/ex-client-srp.tex, - doc/tex/ex-client1.tex, doc/tex/ex-client2.tex, - doc/tex/ex-rfc2818.tex: some minor bugfixes in the documentation. - -2003-01-23 Nikos Mavrogiannopoulos - - * lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_mpi.h, - libextra/auth_srp.c: Added check and error code for some SRP fatal - protocol failures. - -2003-01-23 Nikos Mavrogiannopoulos - - * src/tls_test.c: [no log message] - -2003-01-23 Nikos Mavrogiannopoulos - - * libextra/auth_srp_passwd.c, libextra/gnutls_srp.c: more cleanups. - -2003-01-23 Nikos Mavrogiannopoulos - - * lib/gnutls_alert.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h: - [no log message] - -2003-01-23 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_alert.c, lib/gnutls_auth_int.h, - lib/gnutls_handshake.c, libextra/auth_srp.c, - libextra/auth_srp_passwd.c, libextra/ext_srp.c, - libextra/gnutls_openpgp.c, src/cli.c: The library notifies the - application on empty and illegal SRP usernames, so that proper - notification (via an alert) is sent to the peer. Currently when the - SRP ciphersuite is advertized but no username is sent by the peer, - the library returns GNUTLS_E_EMPTY_SRP_USERNAME, and the alert - associated with this is GNUTLS_A_ACCESS_DENIED (to be changed when - the srp draft defines something more appropriate). - -2003-01-23 Nikos Mavrogiannopoulos - - * libextra/auth_srp_passwd.c: Some cleanups. - -2003-01-22 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-01-22 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2003-01-22 Nikos Mavrogiannopoulos - - * NEWS, configure.in, doc/Makefile.am, doc/scripts/Makefile.am, - lib/gnutls_x509.c, libextra/auth_srp_passwd.c: [no log message] - -2003-01-22 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c: [no log message] - -2003-01-22 Nikos Mavrogiannopoulos - - * src/tests.c, src/tls_test.c: improved srp detection - -2003-01-22 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_dh.h, lib/gnutls_dh_primes.c, - libextra/auth_srp.c, libextra/auth_srp_passwd.c, - libextra/auth_srp_passwd.h, libextra/gnutls_srp.c, src/cli.c, - src/tests.c: Improved the SRP support, to prevent attackers guessing - the available usernames by brute force. The g,n values sent are now - obtained by the password conf file. (they were static ones) - -2003-01-20 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-01-20 Nikos Mavrogiannopoulos - - * doc/tex/cover.tex.in, lib/Makefile.am, lib/auth_anon.c, - lib/auth_cert.c, lib/auth_dh_common.c, lib/auth_dhe.c, - lib/auth_rsa.c, lib/auth_rsa_export.c, lib/debug.c, - lib/ext_cert_type.c, lib/ext_server_name.c, lib/gnutls_alert.c, - lib/gnutls_algorithms.c, lib/gnutls_auth.c, lib/gnutls_buffers.c, - lib/gnutls_cert.c, lib/gnutls_cipher.c, lib/gnutls_compress_int.c, - lib/gnutls_constate.c, lib/gnutls_datum.c, lib/gnutls_db.c, - lib/gnutls_dh.c, lib/gnutls_errors.c, lib/gnutls_extensions.c, - lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_mem.c, - lib/gnutls_mpi.c, lib/gnutls_pk.c, lib/gnutls_record.c, - lib/gnutls_rsa_export.c, lib/gnutls_state.c, lib/gnutls_ui.c, - lib/gnutls_x509.c, lib/x509_extensions.c, lib/x509_sig_check.c, - lib/x509_verify.c, lib/x509_xml.c: [no log message] - -2003-01-20 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am: [no log message] - -2003-01-20 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2003-01-20 Nikos Mavrogiannopoulos - - * configure.in: [no log message] - -2003-01-16 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-01-16 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am, doc/tex/patents.tex, - includes/gnutls/compat4.h, libmcrypt.m4: [no log message] - -2003-01-16 Nikos Mavrogiannopoulos - - * lib/gnutls_alert.c, lib/gnutls_buffers.c, lib/gnutls_handshake.c, - lib/gnutls_handshake.h, lib/gnutls_record.c, lib/gnutls_record.h: - Prefixed with underscore some internal functions. - -2003-01-14 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/appendix.tex, doc/tex/library.tex, doc/tex/srp.tex: - [no log message] - -2003-01-13 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-01-13 Nikos Mavrogiannopoulos - - * doc/tex/patents.tex, doc/tex/srp.tex, lib/Makefile.am, - lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_x509.c, - lib/x509_b64.c, libextra/auth_srp.c, libextra/auth_srp_passwd.c, - libextra/gnutls_openpgp.c: GNUTLS_E_PARSING_ERROR error code was - replaced by GNUTLS_E_BASE64_DECODING_ER and - GNUTLS_E_SRP_PWD_PARSING_ERROR. GNUTLS_E_ASCII_ARMOR_ERROR was also - replaced by GNUTLS_E_BASE64_DECODING_ERROR. - -2003-01-11 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-01-11 Nikos Mavrogiannopoulos - - * NEWS, doc/Makefile.am, doc/tex/Makefile.am, doc/tex/appendix.tex, - doc/tex/patents.tex: Added some information about the SRP patents in - the documentation. - -2003-01-10 Nikos Mavrogiannopoulos - - * doc/tex/ex-serv-srp.tex: [no log message] - -2003-01-09 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-01-09 Nikos Mavrogiannopoulos - - * lib/gnutls_hash_int.c: [no log message] - -2003-01-09 Nikos Mavrogiannopoulos - - * NEWS, acinclude.m4, configure.in, doc/README.CODING_STYLE, - lib/Makefile.am, lib/defines.h, lib/gnutls.h.in.in, lib/gnutls.sym, - lib/gnutls_auth.c, lib/gnutls_cipher_int.c, - lib/gnutls_cipher_int.h, lib/gnutls_hash_int.c, - lib/gnutls_hash_int.h, lib/gnutls_state.c, libextra/Makefile.am, - libextra/gnutls-extra.sym: Only the documented symbols are now - exported. - -2003-01-09 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c: If the certificate does not contain the - basicConstraints extension GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE - will be returned by gnutls_x509_extract_certificate_ca_status(). - -2003-01-08 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c, lib/x509_extensions.c: [no log message] - -2003-01-08 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-01-08 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_ui.h, lib/gnutls_x509.c: Added - gnutls_x509_extract_certificate_ca_status() which returns the CA - status of the given certificate. - -2003-01-08 Nikos Mavrogiannopoulos - - * doc/tex/ex-rfc2818.tex: [no log message] - -2003-01-08 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2003-01-07 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in: [no log message] - -2003-01-01 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2003-01-01 Nikos Mavrogiannopoulos - - * NEWS, configure.in, lib/gnutls_compress_int.c, - lib/minitasn1/Makefile.am, libextra/Makefile.am: If liblzo is found - in the system then libgnutls-extra will depend on it, instead of - including minilzo. - -2002-12-30 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-12-30 Nikos Mavrogiannopoulos - - * lib/gnutls_mpi.c: Added a test for null (zero) integers in MPI - scanning. - -2002-12-29 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-12-29 Nikos Mavrogiannopoulos - - * src/tests.c, src/tls_test.c: some fixes in the gnutls-cli-debug - program - -2002-12-29 Nikos Mavrogiannopoulos - - * libextra/gnutls_openpgp.c: Added missing stub function. - -2002-12-29 Nikos Mavrogiannopoulos - - * tests/Makefile: [no log message] - -2002-12-29 Nikos Mavrogiannopoulos - - * configure.in, lib/minitasn1/Makefile.am, lib/minitasn1/README: [no - log message] - -2002-12-28 Nikos Mavrogiannopoulos - - * NEWS, configure.in, lib/Makefile.am: [no log message] - -2002-12-28 Nikos Mavrogiannopoulos - - * Makefile.am, NEWS, configure.in, doc/README.CVS, lib/Makefile.am, - lib/defines.h, lib/minitasn1/coding.c, lib/minitasn1/decoding.c, - lib/minitasn1/der.h, lib/minitasn1/element.c, - lib/minitasn1/element.h, lib/minitasn1/errors.c, - lib/minitasn1/errors.h, lib/minitasn1/errors_int.h, - lib/minitasn1/gstr.c, lib/minitasn1/gstr.h, lib/minitasn1/int.h, - lib/minitasn1/libtasn1.h, lib/minitasn1/mem.h, - lib/minitasn1/parser_aux.c, lib/minitasn1/parser_aux.h, - lib/minitasn1/structure.c, lib/minitasn1/structure.h: [no log - message] - -2002-12-22 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-12-22 Nikos Mavrogiannopoulos - - * configure.in: depends on libgcrypt 1.1.11 - -2002-12-16 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-12-16 Nikos Mavrogiannopoulos - - * lib/auth_anon.c, lib/auth_dhe.c, lib/auth_rsa.c, - lib/auth_rsa_export.c, lib/gnutls_auth.h, lib/gnutls_handshake.c, - lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_kx.h, - libextra/auth_srp.c, libextra/auth_srp.h, libextra/auth_srp_rsa.c: - Dropped the support for the client key exchange message 0, and - server key exchange message 2. - -2002-12-16 Nikos Mavrogiannopoulos - - * NEWS, configure.in, lib/debug.c, lib/gnutls_mpi.h, - lib/gnutls_record.c, libextra/auth_srp.c: Finished SRP-6 stuff. It - should work fine now. - -2002-12-16 Nikos Mavrogiannopoulos - - * libextra/auth_srp.c, libextra/auth_srp_rsa.c, libextra/ext_srp.c, - libextra/gnutls_srp.c, libextra/gnutls_srp.h: First part of SRP-6 - support. Follows draft-ietf-tls-srp-04 and does not need the second - key exchange part. Does not work yet. - -2002-12-16 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-compression-03.txt, - doc/protocol/draft-ietf-tls-compression-04.txt, - doc/protocol/draft-ietf-tls-srp-03.txt, - doc/protocol/draft-ietf-tls-srp-04.txt, doc/tex/gnutls.bib, - doc/tex/programs.tex: [no log message] - -2002-12-13 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-12-13 Nikos Mavrogiannopoulos - - * NEWS, includes/gnutls/extra.h, libextra/gnutls_openpgp.c: Added - gnutls_openpgp_extract_key_name_string() which returns a single - string for a pgp user id. - -2002-12-13 Nikos Mavrogiannopoulos - - * doc/tex/ex-serv-export.tex, src/serv.c: updated some example and - the server to use the new gnutls_malloc() in callbacks. - -2002-12-12 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-12-12 Nikos Mavrogiannopoulos - - * lib/gnutls_ui.h, lib/gnutls_x509.c: Added the - gnutls_x509_extract_dn_string() function. - -2002-12-12 Nikos Mavrogiannopoulos - - * NEWS, doc/README.CODING_STYLE: [no log message] - -2002-12-12 Nikos Mavrogiannopoulos - - * lib/gnutls_errors.c: [no log message] - -2002-12-12 Nikos Mavrogiannopoulos - - * README, doc/TODO: [no log message] - -2002-12-08 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-12-08 Nikos Mavrogiannopoulos - - * ChangeLog, lib/gnutls_mem.c, libextra/gnutls_openpgp.c: [no log - message] - -2002-12-08 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2002-12-08 Nikos Mavrogiannopoulos - - * NEWS, configure.in: [no log message] - -2002-12-08 Nikos Mavrogiannopoulos - - * src/serv.c: updated to include a callback for receiving openpgp - keys, using libopencdk. - -2002-12-08 Nikos Mavrogiannopoulos - - * lib/ext_cert_type.c, lib/gnutls_errors.c, - lib/gnutls_errors_int.h, lib/gnutls_sig.c, lib/x509_b64.c, - libextra/auth_srp_sb64.c: some cleanups - -2002-12-08 Nikos Mavrogiannopoulos - - * libextra/gnutls_openpgp.c: minor cleanups - -2002-12-08 Nikos Mavrogiannopoulos - - * doc/tex/ex-pgp-keyserver.tex: [no log message] - -2002-12-07 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-12-07 Nikos Mavrogiannopoulos - - * lib/ext_server_name.c: some fixes in server_name extension - -2002-12-07 Nikos Mavrogiannopoulos - - * doc/tex/ex-pgp-keyserver.tex, src/serv-gaa.c, src/serv-gaa.h, - src/serv.c, src/serv.gaa: [no log message] - -2002-12-07 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/callbacks.tex, lib/gnutls.h.in.in, lib/gnutls_db.c, - lib/gnutls_global.c, lib/gnutls_mem.c, lib/x509_b64.c, - libextra/auth_srp_sb64.c, libextra/gnutls_srp.c: Exported the more - convenient gnutls_malloc() and gnutls_free() functions. Actually - pointers to functions. - -2002-12-07 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/gnutls_global.c: [no log message] - -2002-12-07 Timo Schulz - - * libextra/gnutls_openpgp.c: Some bug fixes for the OpenPGP code. - -2002-12-07 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2002-12-06 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-12-06 Nikos Mavrogiannopoulos - - * lib/gnutls_db.c, libextra/gnutls_srp.c: [no log message] - -2002-12-06 Nikos Mavrogiannopoulos - - * NEWS, lib/x509_b64.c, libextra/auth_srp_sb64.c: Changed the - semantics of gnutls_pem_base64_encode_alloc() and - gnutls_pem_base64_decode_alloc(). In the default case were the - gnutls library is used with malloc/realloc/free, these are binary - compatible. They now require the returned data to be freed using the - gnutls_global_get_free_function(). - -2002-12-06 Nikos Mavrogiannopoulos - - * includes/gnutls/extra.h, lib/gnutls_int.h, lib/gnutls_ui.h, - libextra/auth_srp_passwd.c, libextra/gnutls_srp.c, - libextra/gnutls_srp.h: some cleanups. - -2002-12-06 Nikos Mavrogiannopoulos - - * NEWS, doc/TODO, doc/tex/Makefile.am, doc/tex/callbacks.tex, - doc/tex/library.tex, lib/gnutls.h.in.in, lib/gnutls_datum.c, - lib/gnutls_datum.h, lib/gnutls_db.c, lib/gnutls_global.c, - lib/gnutls_mem.c, lib/gnutls_mem.h, lib/gnutls_state.c, - lib/gnutls_str.c, lib/gnutls_str.h, libextra/auth_srp_passwd.c, - libextra/auth_srp_passwd.h, libextra/gnutls_srp.c, src/cli.c, - src/serv.c: Added the new functions gnutls_get_malloc_function(), - gnutls_get_free_function(). Also changed the way callback functions - must allocate data. They now need to use these functions, instead of - just calling malloc(). - -2002-12-06 Nikos Mavrogiannopoulos - - * libextra/auth_srp.c, libextra/auth_srp_passwd.c, - libextra/auth_srp_passwd.h, libextra/gnutls_srp.c: more updates in - the SRP parameter callback. - -2002-12-06 Nikos Mavrogiannopoulos - - * configure.in, includes/gnutls/extra.h: [no log message] - -2002-12-06 Nikos Mavrogiannopoulos - - * libextra/ext_srp.c, libextra/gnutls_srp.c: Some updates in the srp - codebase, to detect illegal usernames etc. - -2002-12-06 Nikos Mavrogiannopoulos - - * lib/gnutls_errors.c, lib/gnutls_errors_int.h, - lib/gnutls_extensions.c, lib/gnutls_handshake.c: added error code to - report illegal srp usernames. Some fixes in the extension parsing to - report fatal errors. - -2002-12-05 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-12-04 Nikos Mavrogiannopoulos - - * lib/x509_extensions.c, lib/x509_verify.c: some optimizations in - string handling of the x.509 asn.1 parsers. - -2002-12-04 Nikos Mavrogiannopoulos - - * tests/openpgp_test.c: [no log message] - -2002-12-04 Nikos Mavrogiannopoulos - - * ChangeLog, doc/tex/ex-pgp-keyserver.tex: [no log message] - -2002-12-04 Nikos Mavrogiannopoulos - - * lib/gnutls_global.c: [no log message] - -2002-12-04 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am, doc/tex/ex-pgp-keyserver.tex, - doc/tex/examples.tex, doc/tex/macros.tex, doc/tex/preparation.tex: - Added a chapter for sources preparation. Based on the documenation - of libksba. - -2002-12-02 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-12-02 Nikos Mavrogiannopoulos - - * configure.in, doc/tex/ex-pgp-keyserver.tex: depends on opencdk - 0.3.5 - -2002-12-02 Nikos Mavrogiannopoulos - - * doc/tex/ex-pgp-keyserver.tex, doc/tex/gnutls.bib, - doc/tex/srp.tex, doc/tex/x509.tex: [no log message] - -2002-12-02 Nikos Mavrogiannopoulos - - * lib/gnutls_extensions.c: Corrected bug in extension parsing. - -2002-12-02 Nikos Mavrogiannopoulos - - * libextra/gnutls_extra.c: [no log message] - -2002-12-02 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/Makefile.am, doc/tex/srp.tex: [no log message] - -2002-12-02 Nikos Mavrogiannopoulos - - * doc/tex/auth.tex, includes/gnutls/extra.h, libextra/gnutls_srp.c: - some updates on srp documentation. - -2002-12-02 Nikos Mavrogiannopoulos - - * doc/tex/ex-pgp-keyserver.tex: [no log message] - -2002-12-02 Nikos Mavrogiannopoulos - - * doc/tex/ex-pgp-keyserver.tex: [no log message] - -2002-12-02 Nikos Mavrogiannopoulos - - * lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, - lib/auth_rsa_export.c, lib/ext_cert_type.c, lib/ext_server_name.c, - lib/gnutls_alert.c, lib/gnutls_algorithms.c, - lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_buffers.c, - lib/gnutls_cert.c, lib/gnutls_cipher.c, lib/gnutls_compress.c, - lib/gnutls_compress_int.c, lib/gnutls_constate.c, - lib/gnutls_datum.c, lib/gnutls_datum.h, lib/gnutls_db.c, - lib/gnutls_dh.c, lib/gnutls_dh_primes.c, lib/gnutls_global.c, - lib/gnutls_handshake.c, lib/gnutls_kx.c, lib/gnutls_mem.c, - lib/gnutls_mpi.c, lib/gnutls_num.c, lib/gnutls_pk.c, - lib/gnutls_priority.c, lib/gnutls_privkey.c, lib/gnutls_random.c, - lib/gnutls_record.c, lib/gnutls_rsa_export.c, lib/gnutls_session.c, - lib/gnutls_session_pack.c, lib/gnutls_sig.c, lib/gnutls_state.c, - lib/gnutls_str.c, lib/gnutls_ui.c, lib/gnutls_v2_compat.c, - lib/gnutls_x509.c, lib/x509_extensions.c, lib/x509_sig_check.c, - libextra/auth_srp.c, libextra/auth_srp_passwd.c, - libextra/auth_srp_rsa.c, libextra/ext_srp.c, - libextra/gnutls_extra.c, libextra/gnutls_openpgp.c, - libextra/gnutls_srp.c: Cleanups. Prefixed some internal function - with underscore. - -2002-12-01 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-12-01 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c: more fixes in - gnutls_x509_extract_certificate_dn_string() - -2002-12-01 Nikos Mavrogiannopoulos - - * doc/TODO, lib/gnutls_dh_primes.c: [no log message] - -2002-12-01 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/ex-pgp-keyserver.tex, includes/gnutls/extra.h, - lib/gnutls_dh.h, lib/gnutls_dh_primes.c, libextra/auth_srp.c, - libextra/auth_srp.h, libextra/auth_srp_passwd.c, - libextra/auth_srp_passwd.h, libextra/gnutls_openpgp.c, - libextra/gnutls_srp.c, libextra/gnutls_srp.h, src/common.c: Added - the function gnutls_srp_server_set_credentials_function() to allow - retrieving SRP parameters from an external backend - other than - password files. - -2002-12-01 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/ex-pgp-keyserver.tex, lib/auth_cert.c, - libextra/gnutls_extra.h, libextra/gnutls_openpgp.c, - libextra/gnutls_openpgp.h: Enabled the OpenPGP key retrieval - callback function (untested yet). - -2002-12-01 Nikos Mavrogiannopoulos - - * libextra/Makefile.am, libextra/crypt.c, libextra/crypt.h, - libextra/crypt_srpsha1.c, libextra/crypt_srpsha1.h: removed all - files related to srpsha1 encoding. The are not needed any more. - -2002-12-01 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2002-12-01 Nikos Mavrogiannopoulos - - * NEWS, includes/gnutls/extra.h, lib/x509_b64.c, - libextra/auth_srp_sb64.c, libextra/crypt.c, - libextra/crypt_srpsha1.c, libextra/gnutls_srp.c, - libextra/gnutls_srp.h, src/common.c, src/crypt-gaa.c, src/crypt.c, - src/crypt.gaa: Added the functions: gnutls_srp_verifier() gnutls_srp_base64_encode() gnutls_srp_base64_decode() and modified the gnutls-srpcrypt, to use the exported functions. - -2002-12-01 Timo Schulz - - * tests/openpgp_test.c: Some enhancements for the OpenPGP test - program. - -2002-12-01 Timo Schulz - - * libextra/gnutls_openpgp.c: Some new code for the OpenPGP lib. - -2002-12-01 Timo Schulz - - * tests/openpgp_test.c: Some enhancements for the OpenPGP test - program. - -2002-11-27 Nikos Mavrogiannopoulos - - * NEWS, configure.in: [no log message] - -2002-11-27 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2002-11-25 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-11-25 Nikos Mavrogiannopoulos - - * lib/gnutls_int.h, lib/gnutls_x509.c: - gnutls_x509_extract_certificate_dn_string() now behaves as described - in RFC2253. - -2002-11-23 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-11-23 Nikos Mavrogiannopoulos - - * doc/README.CODING_STYLE, includes/gnutls/extra.h, - lib/gnutls_int.h: some changes in the callback function behaviour. - -2002-11-22 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-11-22 Nikos Mavrogiannopoulos - - * lib/Makefile.am: linked against libgcrypt (I saw that in debian) - -2002-11-22 Nikos Mavrogiannopoulos - - * doc/README.CODING_STYLE, doc/README.CVS: [no log message] - -2002-11-22 Nikos Mavrogiannopoulos - - * doc/README.CODING_STYLE: [no log message] - -2002-11-21 Nikos Mavrogiannopoulos - - * doc/tex/alert.tex, doc/tex/certificate.tex, doc/tex/errors.tex, - doc/tex/examples.tex, doc/tex/funcs.tex, doc/tex/gnutls.bib, - doc/tex/handshake.tex, doc/tex/layers.tex, doc/tex/openpgp.tex, - doc/tex/record.tex, doc/tex/record_weaknesses.tex, - doc/tex/tls_extensions.tex: [no log message] - -2002-11-20 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-11-20 Nikos Mavrogiannopoulos - - * includes/gnutls/compat.h: [no log message] - -2002-11-20 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, - lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_errors.c, - lib/gnutls_extensions.c, libextra/auth_srp_rsa.c, - libextra/gnutls_extra.c: Several cleanups and elimination of - warnings. - -2002-11-20 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am, doc/tex/gnutls.bib, doc/tex/record.tex, - doc/tex/record_weaknesses.tex, doc/tex/tls_extensions.tex, - doc/tex/tlsintro.tex, includes/gnutls/compat4.h, - lib/ext_server_name.c, lib/gnutls_int_compat.c: updated - documentation to include record layer weaknesses and - counter-measures, and the supported TLS extensions. - -2002-11-20 Nikos Mavrogiannopoulos - - * includes/Makefile.am, includes/gnutls/Makefile.am: [no log - message] - -2002-11-20 Nikos Mavrogiannopoulos - - * includes/gnutls/compat4.h, lib/gnutls.h.in.in: compat4.h was - added, and is included by default in gnutls.h. - -2002-11-20 Nikos Mavrogiannopoulos - - * includes/gnutls/compat.h, lib/gnutls_algorithms.c, - lib/gnutls_algorithms.h, lib/gnutls_cert.h, lib/gnutls_sig.c, - lib/gnutls_ui.h, lib/gnutls_x509.c, lib/rfc2818_hostname.c, - libextra/gnutls_extra.c: Moved the GNUTLS_X509KEY_* to gnutls_cert.h - and renamed them to KEY_*. Improved the checking of key usage. - -2002-11-20 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c: added the AES ciphersuites for - certificate srp authentication. - -2002-11-19 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-11-19 Nikos Mavrogiannopoulos - - * doc/README.autoconf, doc/TODO: [no log message] - -2002-11-19 Nikos Mavrogiannopoulos - - * doc/tex/auth.tex: [no log message] - -2002-11-19 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/gnutls_alert.c, lib/gnutls_algorithms.c, - lib/gnutls_cert.c, lib/gnutls_handshake.c, lib/gnutls_int.h, - lib/gnutls_x509.c, libextra/auth_srp_rsa.c, libextra/ext_srp.c, - libextra/gnutls_extra.c, src/cli.c, src/common.c, src/common.h, - src/serv.c: Added support for the DSS certificate SRP authenticated - cipher suites (currently only with 3DES cipher). Cleaned up the - client and server code, which was duplicated. - -2002-11-19 Nikos Mavrogiannopoulos - - * NEWS, lib/auth_cert.c, lib/gnutls.h.in.in, - lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, - lib/gnutls_auth.c, lib/gnutls_auth_int.h, lib/gnutls_cert.c, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_v2_compat.c, - lib/gnutls_x509.c, libextra/Makefile.am, libextra/auth_srp.c, - libextra/auth_srp.h, libextra/auth_srp_rsa.c, libextra/ext_srp.c, - libextra/gnutls_extra.c, libextra/gnutls_extra.h, src/cli.c, - src/common.c, src/serv.c: Added certificate authenticated SRP cipher - suites. - -2002-11-18 Nikos Mavrogiannopoulos - - * doc/tex/auth.tex, doc/tex/compression.tex, doc/tex/gnutls.bib, - doc/tex/openpgp.tex, doc/tex/tlsintro.tex: [no log message] - -2002-11-18 Nikos Mavrogiannopoulos - - * doc/tex/gnutls.bib: [no log message] - -2002-11-18 Nikos Mavrogiannopoulos - - * doc/tex/certificate.tex, lib/gnutls_x509.c: [no log message] - -2002-11-17 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-11-17 Nikos Mavrogiannopoulos - - * lib/gnutls_int_compat.c: added compatibility function for the - openpgp_keyserver. - -2002-11-17 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am, doc/tex/appendix.tex, doc/tex/auth.tex, - doc/tex/compression.tex, doc/tex/examples.tex, doc/tex/gnutls.bib, - doc/tex/gnutls.tex, doc/tex/openpgp.tex, doc/tex/tlsintro.tex: added - bibliography in documentation. - -2002-11-16 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-11-16 Nikos Mavrogiannopoulos - - * doc/tex/ex-pgp-keyserver.tex: [no log message] - -2002-11-16 Nikos Mavrogiannopoulos - - * doc/tex/ex-pgp-keyserver.tex: [no log message] - -2002-11-16 Nikos Mavrogiannopoulos - - * doc/tex/ex-pgp-keyserver.tex: [no log message] - -2002-11-16 Nikos Mavrogiannopoulos - - * doc/examples/Makefile.am, doc/tex/Makefile.am, - doc/tex/ex-pgp-keyserver.tex, doc/tex/examples.tex, - includes/gnutls/extra.h, lib/gnutls_int.h: updated pgp key retrieval - callback and added example. - -2002-11-15 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-11-15 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am: [no log message] - -2002-11-15 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am: [no log message] - -2002-11-15 Nikos Mavrogiannopoulos - - * NEWS, configure.in, doc/Makefile.am, doc/examples/.cvsignore, - doc/examples/Makefile.am, doc/tex/Makefile.am: example programs are - now located in doc/examples directory. - -2002-11-14 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-11-14 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/gnutls_alert.c, lib/gnutls_alert.h: Added - some new alert codes from the extensions draft. - -2002-11-14 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/gnutls_ui.c: [no log message] - -2002-11-14 Nikos Mavrogiannopoulos - - * doc/tex/.cvsignore: [no log message] - -2002-11-14 Nikos Mavrogiannopoulos - - * doc/tex/ex-client2.tex, doc/tex/examples.tex: updated the basic - client to support OpenPGP certificate authentication. - -2002-11-12 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-11-12 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am, doc/tex/ex-serv-pgp.tex, - doc/tex/examples.tex: added example with an openpgp server - -2002-11-12 Nikos Mavrogiannopoulos - - * NEWS, configure.in: [no log message] - -2002-11-12 Nikos Mavrogiannopoulos - - * lib/auth_anon.c, lib/auth_cert.c, lib/auth_dh_common.c, - lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, - lib/gnutls_auth.c, lib/gnutls_cert.c, lib/gnutls_handshake.c, - lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_session_pack.c, - lib/gnutls_state.c, lib/gnutls_ui.c, lib/gnutls_v2_compat.c, - lib/gnutls_x509.c, libextra/auth_srp.c, libextra/auth_srp_passwd.c, - libextra/ext_srp.c: The session->gnutls_key was renamed to - session->key. - -2002-11-12 Nikos Mavrogiannopoulos - - * includes/gnutls/compat.h, includes/gnutls/extra.h: added compat.h - which has definitions for compatibility with older (0.4.x and 0.5.y, - y<5) versions. - -2002-11-12 Nikos Mavrogiannopoulos - - * NEWS, includes/Makefile.am, includes/gnutls/Makefile.am, - lib/gnutls_ui.h: [no log message] - -2002-11-12 Nikos Mavrogiannopoulos - - * includes/gnutls/extra.h, lib/gnutls_int.h: The - gnutls_openpgp_recv_key_func() callback function now accepts a key - fingerprint, instead of the key id. - -2002-11-11 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-11-11 Nikos Mavrogiannopoulos - - * src/cli.c, src/common.h, src/serv.c, src/tests.c, src/tests.h, - src/tls_test.c: [no log message] - -2002-11-11 Nikos Mavrogiannopoulos - - * src/cli.c, src/serv.c, src/tests.c: cleanups - -2002-11-11 Nikos Mavrogiannopoulos - - * includes/gnutls/extra.h, lib/gnutls.h.in.in: dropped source - backwards compatibility - -2002-11-11 Nikos Mavrogiannopoulos - - * configure.in, includes/gnutls/extra.h, lib/gnutls_int.h, - libextra/gnutls_openpgp.c: Added callback for OpenPGP key retrieval. - -2002-11-06 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-11-06 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-rfc2246-bis-01.txt, - doc/protocol/draft-ietf-tls-rfc2246-bis-02.txt: added new rfc2246bis - draft - -2002-11-06 Nikos Mavrogiannopoulos - - * opencdk.m4: updated url for opencdk - -2002-11-05 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-11-05 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c, lib/gnutls_buffers.c, lib/gnutls_db.c, - lib/gnutls_global.c, lib/gnutls_state.c, lib/gnutls_x509.c: some - updated in the documentation - -2002-11-05 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2002-11-04 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-11-04 Timo Schulz - - * libextra/gnutls_openpgp.c: Applied patch to make the error - handling with keyservers more easier. - -2002-11-04 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/gnutls_alert.c, lib/gnutls_alert.h, - lib/gnutls_errors_int.h: Added new alert (certificate unobtainable) - from draft-ietf-tls-extensions. - -2002-11-04 Nikos Mavrogiannopoulos - - * NEWS, configure.in: depends on opencdk 0.3.2 - -2002-11-04 Timo Schulz - - * libextra/gnutls_openpgp.c: Some debug code for the OpenPGP part. - -2002-11-03 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-11-03 Nikos Mavrogiannopoulos - - * src/common.c: [no log message] - -2002-11-03 Timo Schulz - - * lib/gnutls_errors.c, lib/gnutls_errors_int.h, - libextra/gnutls_openpgp.c: Use the old error codes for OpenPGP - again. - -2002-11-03 Timo Schulz - - * lib/auth_cert.c: Fixed an off-by-one bug for OpenPGP fingerprint - handling. - -2002-11-03 Timo Schulz - - * lib/gnutls_errors_int.h: Corrected error number (the old was - reserved). - -2002-11-03 Timo Schulz - - * lib/gnutls_errors.c, lib/gnutls_errors_int.h, - libextra/gnutls_openpgp.c: Unification for the OpenPGP error code. - -2002-11-03 Nikos Mavrogiannopoulos - - * lib/gnutls_cert.c: corrected behaviour of verification in openpgp - keys. - -2002-11-03 Timo Schulz - - * libextra/gnutls_openpgp.c: Set the OpenPGP certificate status to - GNUTLS_CERT_NOT_TRUSTED if the function failed. - -2002-11-03 Timo Schulz - - * libextra/gnutls_openpgp.c, tests/openpgp_test.c: Bug fix for the - OpenPGP secret key order. - -2002-11-03 Timo Schulz - - * lib/gnutls_errors.c, lib/gnutls_errors_int.h, - libextra/gnutls_openpgp.c: Add OpenPGP error description - -2002-11-03 Nikos Mavrogiannopoulos - - * lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_sig.c, - lib/gnutls_x509.c: Renamed GNUTLS_E_X509_KEY_USAGE_VIOLATION to - GNUTLS_E_KEY_USAGE_VIOLATION, in order to apply to PGP keys as well. - -2002-11-03 Nikos Mavrogiannopoulos - - * lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_pk.c, - lib/gnutls_sig.c, lib/x509_sig_check.c, src/cli-gaa.c, - src/cli-gaa.h, src/cli.c, src/cli.gaa, src/common.c: Added some new - error codes and updated client. - -2002-11-02 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-11-02 Nikos Mavrogiannopoulos - - * libextra/gnutls_openpgp.c: [no log message] - -2002-11-02 Nikos Mavrogiannopoulos - - * configure.in: [no log message] - -2002-11-02 Nikos Mavrogiannopoulos - - * lib/gnutls_errors.c: [no log message] - -2002-11-02 Nikos Mavrogiannopoulos - - * libextra/gnutls_openpgp.c: fixed stub - -2002-11-02 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2002-11-02 Nikos Mavrogiannopoulos - - * NEWS, lib/ext_cert_type.c, lib/ext_max_record.c, - lib/ext_server_name.c, lib/gnutls_alert.c, lib/gnutls_buffers.c, - lib/gnutls_cert.c, lib/gnutls_dh_primes.c, lib/gnutls_errors.c, - lib/gnutls_errors_int.h, lib/gnutls_handshake.c, - lib/gnutls_record.c, lib/gnutls_rsa_export.c, - lib/gnutls_session_pack.c, lib/gnutls_ui.c, lib/x509_b64.c, - libextra/gnutls_openpgp.c, libextra/gnutls_srp.c: Combined - GNUTLS_E_INVALID_PARAMETERS wich GNUTLS_E_INVALID_REQUEST. - Introduced GNUTLS_E_SHORT_MEMORY_BUFFER. - -2002-11-02 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c, lib/x509_xml.c: Fixed some memory leaks which - may occured on error cases. - -2002-11-01 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_x509.c, src/common.c: - gnutls_x509_extract_certificate_dn_string() was rewritten. - -2002-11-01 Nikos Mavrogiannopoulos - - * lib/Makefile.am: [no log message] - -2002-11-01 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c: Added a check for dn extraction failure in - gnutls_x509_extract_certificate_dn_string(). - -2002-11-01 Timo Schulz - - * libextra/gnutls_openpgp.c, libextra/gnutls_openpgp.h: Adjust the - keydb search code. - -2002-10-30 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-10-29 Timo Schulz - - * configure.in: Bump OpenCDK version to 0.3.0 - -2002-10-29 Timo Schulz - - * lib/gnutls_errors_int.h, libextra/gnutls_openpgp.c, - libextra/gnutls_openpgp.h, tests/Makefile, tests/openpgp_test.c: Add - new regression test for OpenPGP. New code for the OpenCDK 0.3.0 - version. A new error code for the OpenPGP part. - -2002-10-29 Nikos Mavrogiannopoulos - - * lib/gnutls_buffer.h: added missing file - -2002-10-28 Nikos Mavrogiannopoulos - - * lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, - lib/auth_rsa_export.c, lib/gnutls_buffers.c, lib/gnutls_cert.c, - lib/gnutls_cipher_int.c, lib/gnutls_constate.c, - lib/gnutls_errors.c, lib/gnutls_errors_int.h, - lib/gnutls_handshake.c, lib/gnutls_pk.c, lib/gnutls_record.c, - lib/gnutls_rsa_export.c, lib/gnutls_state.c, lib/gnutls_ui.c, - lib/gnutls_x509.c, lib/x509_verify.c, lib/x509_xml.c, - libextra/auth_srp_passwd.c, libextra/gnutls_openpgp.c: - GNUTLS_E_UNKNOWN_ERROR was removed, and was replaced by - GNUTLS_E_INTERNAL_ERROR. - -2002-10-28 Nikos Mavrogiannopoulos - - * lib/gnutls_errors.c: [no log message] - -2002-10-27 Nikos Mavrogiannopoulos - - * doc/scripts/Makefile.am, doc/tex/auth.tex, doc/tex/tlsintro.tex, - doc/tex/translayer.tex: [no log message] - -2002-10-26 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-10-26 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_buffers.c, lib/gnutls_buffers.h, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_record.c, - lib/gnutls_state.c, lib/gnutls_str.c, lib/gnutls_str.h: - Optimizations in buffering code, which reduce the number of - malloc/realloc calls. - -2002-10-26 Nikos Mavrogiannopoulos - - * lib/gnutls_errors.c, src/retcodes.c: The error code table now - contains all the error codes sorted. - -2002-10-25 Nikos Mavrogiannopoulos - - * NEWS, configure.in, doc/tex/Makefile.am, doc/tex/appendix.tex, - doc/tex/errors.tex, doc/tex/gnutls.tex, lib/gnutls_errors.c, - lib/gnutls_pk.c, src/Makefile.am, src/retcodes.c: Documented error - codes in an appendix. This documentation is generated automatically - using the retcodes program. - -2002-10-24 Nikos Mavrogiannopoulos - - * doc/scripts/gdoc: [no log message] - -2002-10-24 Nikos Mavrogiannopoulos - - * doc/scripts/gdoc, doc/scripts/sort1.pl, doc/tex/Makefile.am: Added - script to sort function names in function reference. - -2002-10-24 Nikos Mavrogiannopoulos - - * lib/gnutls_errors.c: [no log message] - -2002-10-24 Nikos Mavrogiannopoulos - - * lib/auth_cert.c, lib/gnutls_cipher.c, lib/gnutls_constate.c, - lib/gnutls_errors.c, lib/gnutls_errors_int.h, - lib/gnutls_handshake.c, lib/gnutls_pk.c, lib/gnutls_v2_compat.c: - Added more descriptive error codes to be returned by - gnutls_strerror(). Removed old and unused error codes. - -2002-10-24 Nikos Mavrogiannopoulos - - * src/tls_test-gaa.c, src/tls_test-gaa.h, src/tls_test.c, - src/tls_test.gaa: gnutls-cli-debug now accepts one hostname only - -2002-10-24 Nikos Mavrogiannopoulos - - * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa: gnutls-cli - now accepts one hostname only - -2002-10-24 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-compression-02.txt, - doc/protocol/draft-ietf-tls-compression-03.txt: [no log message] - -2002-10-23 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-10-23 Nikos Mavrogiannopoulos - - * doc/TODO, doc/tex/Makefile.am, lib/Makefile.am, lib/auth_anon.c, - lib/auth_dh_common.c, lib/auth_dh_common.h, lib/auth_dhe.c, - lib/rfc2818_hostname.c: Merged common stuff in DHE and anonymous DH - key exchange. - -2002-10-16 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-10-14 Nikos Mavrogiannopoulos - - * doc/tex/examples.tex: [no log message] - -2002-10-14 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/Makefile.am, doc/tex/ex-client-resume.tex, - doc/tex/ex-client-srp.tex, doc/tex/ex-client1.tex, - doc/tex/ex-client2.tex, doc/tex/ex-info.tex, - doc/tex/ex-serv-export.tex, doc/tex/ex-serv-srp.tex, - doc/tex/ex-serv1.tex, doc/tex/ex1.tex, doc/tex/ex2.tex, - doc/tex/ex3.tex, doc/tex/ex4.tex, doc/tex/serv-export.tex, - doc/tex/serv-srp.tex, doc/tex/serv1.tex, doc/tex/srp1.tex: Example - programs found in the documentation can now be generated by running - "make examples" in doc/tex directory. - -2002-10-14 Nikos Mavrogiannopoulos - - * THANKS, libextra/Makefile.am: Fixed interlibrary dependencies. By - Ivo Timmermans. This requires the debian libtool 1.4.2-7.1 - -2002-10-14 Nikos Mavrogiannopoulos - - * doc/tex/compression.tex, doc/tex/layers.tex, - doc/tex/translayer.tex: [no log message] - -2002-10-14 Nikos Mavrogiannopoulos - - * lib/ext_max_record.c, lib/ext_server_name.c: cleanups in the - server name extension. - -2002-10-14 Nikos Mavrogiannopoulos - - * NEWS, src/cli.c: Some fixes in 'gnutls-cli' client program to - prevent some segmentation faults at exit. - -2002-10-13 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2002-10-13 Nikos Mavrogiannopoulos - - * doc/tex/auth.tex, doc/tex/funcs.tex: [no log message] - -2002-10-13 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am, doc/tex/alert.tex, doc/tex/auth.tex, - doc/tex/certificate.tex, doc/tex/ciphersuites.tex, - doc/tex/compression.tex, doc/tex/handshake.tex, doc/tex/howto.tex, - doc/tex/memory.tex, doc/tex/record.tex, doc/tex/tlsintro.tex: - spelling corrections, and addition of a subsection for compression - algorithms. - -2002-10-13 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c: ZLIB's number was changed according to - draft-ietf-tls-compression-02 - -2002-10-13 Nikos Mavrogiannopoulos - - * NEWS, configure.in, lib/auth_anon.c, lib/auth_cert.c, - lib/auth_cert.h, lib/auth_dhe.c, lib/auth_rsa.c, - lib/auth_rsa_export.c, lib/defines.h, lib/ext_cert_type.c, - lib/ext_cert_type.h, lib/ext_max_record.c, lib/ext_max_record.h, - lib/ext_server_name.c, lib/ext_server_name.h, lib/gnutls.h.in.in, - lib/gnutls_alert.c, lib/gnutls_alert.h, lib/gnutls_algorithms.c, - lib/gnutls_auth.c, lib/gnutls_auth.h, lib/gnutls_buffers.c, - lib/gnutls_buffers.h, lib/gnutls_cert.c, lib/gnutls_cipher.c, - lib/gnutls_cipher.h, lib/gnutls_compress_int.c, - lib/gnutls_compress_int.h, lib/gnutls_db.c, lib/gnutls_dh_primes.c, - lib/gnutls_extensions.h, lib/gnutls_global.c, - lib/gnutls_handshake.c, lib/gnutls_hash_int.c, - lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_mem.c, - lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_record.c, - lib/gnutls_rsa_export.c, lib/gnutls_session_pack.c, - lib/gnutls_sig.c, lib/gnutls_sig.h, lib/gnutls_state.c, - lib/gnutls_ui.c, lib/gnutls_ui.h, lib/gnutls_x509.c, - lib/gnutls_x509.h, lib/rfc2818_hostname.c, lib/x509_b64.c, - lib/x509_b64.h, lib/x509_sig_check.c, libextra/auth_srp.c, - libextra/auth_srp.h, libextra/auth_srp_passwd.c, - libextra/auth_srp_passwd.h, libextra/auth_srp_sb64.c, - libextra/crypt.c, libextra/crypt_srpsha1.c, libextra/ext_srp.c, - libextra/ext_srp.h, libextra/gnutls_openpgp.c: several fixes in the - codebase, mostly in signed/unsigned checkings. - -2002-10-12 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-10-12 Nikos Mavrogiannopoulos - - * lib/ext_max_record.c, lib/ext_max_record.h: Corrected some types, - to work in 64 bits machines. Suggested by Ivo Timmermans - . - -2002-10-12 Andrew McDonald - - * includes/gnutls/openssl.h: Enclose in extern "C" (from Debian bug - #163394). - -2002-10-12 Nikos Mavrogiannopoulos - - * src/serv.c: now does not require carriage return - -2002-10-11 Nikos Mavrogiannopoulos - - * lib/ext_server_name.c: Fixes (or not) in server name extension - parsing - -2002-10-11 Nikos Mavrogiannopoulos - - * doc/tex/certificate.tex, doc/tex/ex-rfc2818.tex, doc/tex/ex3.tex, - doc/tex/examples.tex: updated documentation - -2002-10-11 Nikos Mavrogiannopoulos - - * NEWS, lib/ext_server_name.c, lib/gnutls_int.h, - lib/gnutls_priority.c, src/serv.c: Improved the server name - extension. Resumed sessions can now use it. - -2002-10-11 Nikos Mavrogiannopoulos - - * NEWS, lib/Makefile.am, lib/ext_server_name.c, - lib/ext_server_name.h, lib/gnutls.h.in.in, lib/gnutls_extensions.c, - lib/gnutls_int.h, src/cli.c, src/common.c, src/serv.c: Added server - name extension, from draft-ietf-tls-extension-05. - -2002-10-10 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-compression-01.txt, - doc/protocol/draft-ietf-tls-compression-02.txt, - doc/protocol/draft-ietf-tls-rfc2246-bis-01.txt: [no log message] - -2002-10-10 Nikos Mavrogiannopoulos - - * doc/tex/ex-alert.tex, doc/tex/ex-rfc2818.tex, - doc/tex/examples.tex, lib/rfc2818_hostname.c: more documentation - updates - -2002-10-10 Nikos Mavrogiannopoulos - - * doc/tex/ex-rfc2818.tex: more documentation updates - -2002-10-10 Nikos Mavrogiannopoulos - - * doc/tex/ex-alert.tex: [no log message] - -2002-10-10 Nikos Mavrogiannopoulos - - * NEWS, configure.in, doc/tex/Makefile.am, doc/tex/ex-alert.tex, - doc/tex/ex1.tex, doc/tex/ex2.tex, doc/tex/ex4.tex, - doc/tex/examples.tex, doc/tex/handshake.tex, - doc/tex/serv-export.tex, doc/tex/serv-srp.tex, doc/tex/serv1.tex, - src/serv.c: Separated alert checking from the example programs, to - make them cleaner. Added an example which demonstrates the alert - checking. - -2002-10-10 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/examples.tex: last minute changes for 0.5.9 release. - -2002-10-10 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-10-09 Nikos Mavrogiannopoulos - - * NEWS, lib/Makefile.am, lib/gnutls_ui.h, lib/rfc2818_hostname.c: - Added int gnutls_x509_check_certificates_hostname() which check - whether the given hostname matches the owner of the given X.509 - certificate. - -2002-10-09 Nikos Mavrogiannopoulos - - * NEWS, configure.in, lib/gnutls_extensions.c, lib/x509_xml.c: - cleanups - -2002-10-08 Nikos Mavrogiannopoulos - - * lib/gnutls_priority.c: [no log message] - -2002-10-08 Nikos Mavrogiannopoulos - - * src/cli.c: [no log message] - -2002-10-08 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/ex4.tex, doc/tex/serv-export.tex, - doc/tex/serv1.tex, lib/gnutls.h.in.in, lib/gnutls_priority.c, - src/cli-gaa.c: Added gnutls_set_default_priority() and - gnutls_set_default_export_priority() functions, to avoid calling all - the *_priority() functions if the defaults are ok. - -2002-10-07 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c: [no log message] - -2002-10-07 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_ui.h, lib/gnutls_x509.c: Added - gnutls_x509_extract_certificate_dn_string() which returns the peer's - Distinguished name in a single string. - -2002-10-07 Nikos Mavrogiannopoulos - - * NEWS, doc/TODO, lib/gnutls.h.in.in, lib/gnutls_auth.c, - lib/gnutls_errors.h, lib/gnutls_handshake.c, lib/gnutls_kx.c, - src/cli.c, src/cli.gaa: several cleanups - -2002-10-07 Nikos Mavrogiannopoulos - - * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa: Changes in - gnutls-cli, to allow testing of starttls implementations. - -2002-10-05 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-10-05 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_ui.c, lib/gnutls_ui.h: rolled back addition of - certificate_get_our_issuer() function. - -2002-10-05 Nikos Mavrogiannopoulos - - * includes/gnutls/extra.h, libextra/gnutls_extra.c, - libextra/libgnutls-extra.m4: Corrected the broken detection of - libgnutls-extra. Bug reported by Ivo Timmermans. - -2002-10-04 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2002-10-04 Nikos Mavrogiannopoulos - - * NEWS, doc/TODO, lib/gnutls_state.c, lib/gnutls_ui.c, - lib/gnutls_ui.h: Corrected bug which prevented - gnutls_certificate_get_ours() from working. Added - gnutls_certificate_get_our_issuer() function. - -2002-10-04 Nikos Mavrogiannopoulos - - * lib/gnutls_privkey.c, lib/gnutls_privkey.h, lib/gnutls_ui.h, - lib/gnutls_x509.c, lib/x509_b64.c: Improved - gnutls_x509_extract_key_pk_algorithm(), which can now distinguish - DSA keys from unknown keys. - -2002-10-02 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-10-02 Nikos Mavrogiannopoulos - - * configure.in, lib/gnutls_buffers.c: some fixes to compile with - gcc-2.95. - -2002-10-02 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2002-10-01 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2002-10-01 Nikos Mavrogiannopoulos - - * configure.in, doc/TODO, lib/gnutls.h.in.in, lib/gnutls_privkey.c, - lib/gnutls_privkey.h, lib/gnutls_ui.h: Added function to extract the - public key algorithm of a DER encoded private key. - -2002-09-25 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-09-25 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-compression-00.txt, - doc/protocol/draft-ietf-tls-compression-01.txt: [no log message] - -2002-09-25 Nikos Mavrogiannopoulos - - * NEWS, configure.in, lib/auth_rsa.c, lib/gnutls_cert.c: [no log - message] - -2002-09-21 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-09-20 Nikos Mavrogiannopoulos - - * NEWS, configure.in, lib/gnutls_cert.c: [no log message] - -2002-09-20 Nikos Mavrogiannopoulos - - * lib/gnutls_global.c: enabled error messages of libgcrypt in debug - mode - -2002-09-18 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-09-17 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/defines.h, lib/gnutls.h.in.in, - lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, - lib/gnutls_compress_int.c, lib/gnutls_errors.c, - lib/gnutls_errors_int.h, lib/gnutls_handshake.c, lib/gnutls_int.h, - libextra/Makefile.am, libextra/gnutls_extra.c, libextra/lzoconf.h, - libextra/minilzo.c, libextra/minilzo.h, src/cli.c, src/serv.c: Added - support for the LZO compression library in gnutls-extra. Some fixes - in the hello message parsing. - -2002-09-16 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls.h.in.in, lib/gnutls_state.c: [no log message] - -2002-09-16 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/gnutls_buffers.c, lib/gnutls_handshake.c, - lib/gnutls_int.h, lib/gnutls_int_compat.c, lib/gnutls_state.c: - replaced gnutls_handshake_get_direction() with - gnutls_record_get_direction(). - -2002-09-16 Nikos Mavrogiannopoulos - - * doc/tex/appendix.tex, doc/tex/certificate.tex, - doc/tex/library.tex: updated documentation - -2002-09-16 Nikos Mavrogiannopoulos - - * README, src/serv.c: [no log message] - -2002-09-15 Nikos Mavrogiannopoulos - - * lib/gnutls_record.c: [no log message] - -2002-09-15 Nikos Mavrogiannopoulos - - * doc/tex/auth.tex, doc/tex/library.tex, doc/tex/macros.tex, - doc/tex/tlsintro.tex, doc/tex/translayer.tex: [no log message] - -2002-09-14 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-09-14 Nikos Mavrogiannopoulos - - * lib/gnutls_global.c: [no log message] - -2002-09-14 Nikos Mavrogiannopoulos - - * doc/tex/library.tex: [no log message] - -2002-09-14 Nikos Mavrogiannopoulos - - * doc/tex/library.tex: [no log message] - -2002-09-13 Nikos Mavrogiannopoulos - - * configure.in, doc/TODO, doc/tex/alert.tex, doc/tex/auth.tex, - doc/tex/programs.tex, lib/gnutls_alert.c, src/crypt.c: [no log - message] - -2002-09-13 Nikos Mavrogiannopoulos - - * doc/tex/layers.tex: [no log message] - -2002-09-13 Nikos Mavrogiannopoulos - - * doc/tex/library.tex: [no log message] - -2002-09-13 Nikos Mavrogiannopoulos - - * README, lib/gnutls.h.in.in, lib/gnutls_alert.c: Added a new - function to convert from an error to an alert code. - -2002-09-12 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/gnutls_alert.c, lib/gnutls_algorithms.c, - lib/gnutls_algorithms.h, lib/gnutls_compress_int.c, - lib/gnutls_handshake.c, lib/gnutls_int.h: Improved support for zlib. - -2002-09-11 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-09-11 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-srp-02.txt, - doc/protocol/draft-ietf-tls-srp-03.txt: [no log message] - -2002-09-11 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-compression-00.txt, - doc/protocol/draft-ietf-tls-extensions-03.txt, - doc/protocol/draft-ietf-tls-extensions-05.txt: updated drafts - -2002-09-11 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2002-09-11 Nikos Mavrogiannopoulos - - * NEWS, src/cli.c, tests/x509_test.c: [no log message] - -2002-09-11 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_db.c, lib/gnutls_dh_primes.c, - lib/gnutls_rsa_export.c: Corrected bug in gnutls_dh_params_set(). - Corrected bug in session resuming code of server side. - -2002-09-11 Nikos Mavrogiannopoulos - - * lib/ext_cert_type.c, lib/ext_max_record.c, libextra/ext_srp.c: - some cleanups in the extension parsing - -2002-09-10 Nikos Mavrogiannopoulos - - * acconfig.h: [no log message] - -2002-09-10 Nikos Mavrogiannopoulos - - * doc/scripts/gdoc: Added Simon Josefsson's patch for gdoc. Now gdoc - supports texinfo output. - -2002-09-10 Nikos Mavrogiannopoulos - - * NEWS, buildconf, configure.in, lib/gnutls.h.in.in, - lib/gnutls_global.c, libextra/gnutls_extra.c, libmcrypt.m4: changes - for autoconf 2.50 - -2002-09-09 Nikos Mavrogiannopoulos - - * doc/tex/certificate.tex, doc/tex/examples.tex, - doc/tex/handshake.tex, doc/tex/library.tex, doc/tex/x509.tex: [no - log message] - -2002-09-09 Nikos Mavrogiannopoulos - - * NEWS, configure.in, src/serv.c: Removed dependency on libgdbm - library. - -2002-09-09 Nikos Mavrogiannopoulos - - * lib/auth_dhe.c, lib/auth_rsa_export.c, lib/gnutls_algorithms.c, - lib/gnutls_compress_int.c, lib/gnutls_extensions.c, - lib/gnutls_handshake.c, lib/gnutls_mem.c, lib/gnutls_mem.h, - lib/gnutls_str.c, lib/gnutls_x509.c, lib/x509_xml.c, - libextra/gnutls_openpgp.c, libextra/gnutls_srp.c: Some fixes for the - used realloc() function. Now we have gnutls_realloc_fast() which - frees the given pointer if the new allocation failed. - -2002-09-08 Nikos Mavrogiannopoulos - - * configure.in, doc/tex/.cvsignore, lib/gnutls_num.h, - lib/gnutls_str.c: updated string functions - -2002-09-07 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-09-07 Nikos Mavrogiannopoulos - - * lib/gnutls_rsa_export.c: [no log message] - -2002-09-06 Nikos Mavrogiannopoulos - - * doc/tex/certificate.tex, doc/tex/ciphers.tex, - doc/tex/ex-rfc2818.tex, doc/tex/examples.tex, doc/tex/layers.eps, - doc/tex/layers.tex, doc/tex/memory.tex: [no log message] - -2002-09-06 Nikos Mavrogiannopoulos - - * doc/tex/x509cert.xml.tex, src/common.c: [no log message] - -2002-09-06 Nikos Mavrogiannopoulos - - * configure.in: last changes for 0.5.6 release - -2002-09-06 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-09-06 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/pgpcert.xml.tex, doc/tex/x509cert.xml.tex, - lib/x509_xml.c, libextra/gnutls_openpgp.c, src/common.c, - src/gnutls-http-serv: added versioning in the XML output of - certificate functions. - -2002-09-06 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am, doc/tex/gnutls.tex, doc/tex/intro.tex, - doc/tex/library.tex: [no log message] - -2002-09-06 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am, doc/tex/gnutls.tex, doc/tex/internals.eps, - doc/tex/library.tex: [no log message] - -2002-09-05 Nikos Mavrogiannopoulos - - * NEWS, doc/TODO, doc/tex/Makefile.am, doc/tex/certificate.tex, - doc/tex/x509-1.eps, lib/gnutls_global.h: [no log message] - -2002-09-05 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am, doc/tex/certificate.tex, - doc/tex/ciphers.tex, doc/tex/ciphersuites.tex, doc/tex/gnutls.tex, - doc/tex/intro.tex, doc/tex/layers.tex, doc/tex/library.tex, - doc/tex/openpgp.tex, doc/tex/tlsintro.tex, doc/tex/x509.tex: - reorganized documentation - -2002-09-05 Nikos Mavrogiannopoulos - - * tests/Makefile, tests/Makefile.am, tests/Makefile.in: [no log - message] - -2002-09-05 Nikos Mavrogiannopoulos - - * tests/test22.pem: [no log message] - -2002-09-05 Nikos Mavrogiannopoulos - - * Makefile.am, configure.in, tests/Makefile, tests/Makefile.am, - tests/Makefile.in, tests/ca.pem, tests/test1.pem, tests/test10.pem, - tests/test13.pem, tests/test2.pem, tests/test23.pem, - tests/test24.pem, tests/test26.pem, tests/test3.pem, - tests/x509_test.c: Added more tests for the X.509 certificate - validation. These tests are now only included in the CVS not the - distribution. - -2002-09-05 Nikos Mavrogiannopoulos - - * libextra/auth_srp.c: [no log message] - -2002-09-04 Nikos Mavrogiannopoulos - - * lib/gnutls_int.h: [no log message] - -2002-09-04 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_extensions.c, lib/gnutls_int.h: Corrected - extension type checks which used an 8 bit extension size, instead of - 16 bits. - -2002-09-04 Nikos Mavrogiannopoulos - - * libextra/auth_srp.c, libextra/gnutls_srp.c: Corrected the SRP 'u' - generation, and the size part of 's' changed to 8bits. - -2002-09-03 Nikos Mavrogiannopoulos - - * lib/auth_anon.c, lib/auth_anon.h, lib/auth_cert.c, - lib/auth_cert.h, lib/auth_dhe.c, lib/auth_rsa.c, - lib/auth_rsa_export.c, lib/gnutls.h.in.in, lib/gnutls_anon_cred.c, - lib/gnutls_auth.c, lib/gnutls_cert.c, lib/gnutls_handshake.c, - lib/gnutls_ui.c, lib/gnutls_x509.c, libextra/auth_srp.c, - libextra/auth_srp.h, libextra/auth_srp_passwd.c, - libextra/ext_srp.c, libextra/gnutls_extra.h, - libextra/gnutls_openpgp.c, libextra/gnutls_openpgp.h, - libextra/gnutls_srp.c, src/cli.c, src/serv.c, src/tests.c, - src/tls_test.c: [no log message] - -2002-09-03 Nikos Mavrogiannopoulos - - * NEWS, THANKS, configure.in, libextra/ext_srp.c: [no log message] - -2002-09-03 Nikos Mavrogiannopoulos - - * libextra/auth_srp.c: corrected the SRP key exchange (bugs pointed - out by D. Taylor) - -2002-09-03 Nikos Mavrogiannopoulos - - * lib/ext_cert_type.c, lib/gnutls_int.h, lib/gnutls_x509.c: - corrected the cert_type extension. (bug pointed out by D. Taylor) - -2002-09-03 Nikos Mavrogiannopoulos - - * lib/gnutls_priority.c, lib/gnutls_priority.h: gnutls_list replaced - by const int* - -2002-09-03 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-09-03 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/appendix.tex, doc/tex/cover.tex.in, - doc/tex/gnutls.tex, doc/tex/handshake.tex, tests/Makefile.am: last - changes for 0.5.5 release - -2002-09-03 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-openpgp-keys-02.txt: [no log message] - -2002-09-02 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2002-09-02 Nikos Mavrogiannopoulos - - * ChangeLog, configure.in: [no log message] - -2002-09-02 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/ex1.tex, doc/tex/ex2.tex, doc/tex/ex4.tex, - doc/tex/serv-export.tex, doc/tex/serv-srp.tex, doc/tex/serv1.tex, - doc/tex/srp1.tex, lib/gnutls.h.in.in, lib/gnutls_int_compat.c, - lib/gnutls_state.c, lib/gnutls_x509.c, lib/x509_extensions.c, - libextra/gnutls_openssl.c, src/cli.c, src/serv.c, src/tls_test.c: - [no log message] - -2002-09-01 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am, doc/tex/programs.tex: [no log message] - -2002-09-01 Nikos Mavrogiannopoulos - - * lib/gnutls_ui.c: [no log message] - -2002-09-01 Nikos Mavrogiannopoulos - - * doc/tex/ex1.tex, doc/tex/ex2.tex, doc/tex/ex3.tex, - doc/tex/ex4.tex, doc/tex/serv-export.tex, doc/tex/serv-srp.tex, - doc/tex/serv1.tex, doc/tex/srp1.tex: corrected bugs in examples. - -2002-09-01 Nikos Mavrogiannopoulos - - * includes/gnutls/extra.h, lib/gnutls.h.in.in, - lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_auth_int.h, - lib/gnutls_cert.c, lib/gnutls_handshake.c, lib/gnutls_int_compat.c, - lib/gnutls_record.c, lib/x509_b64.c, libextra/gnutls_openssl.c, - libextra/gnutls_srp.c, src/tests.c: more cleanups - -2002-09-01 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am, doc/tex/auth.tex, doc/tex/ex1.tex, - doc/tex/ex2.tex, doc/tex/ex4.tex, doc/tex/examples.tex, - doc/tex/gnutls.tex, doc/tex/serv-export.tex, doc/tex/serv-srp.tex, - doc/tex/serv1.tex, doc/tex/srp1.tex: Updated documentation and added - more server examples. - -2002-09-01 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/gnutls_int.h, lib/gnutls_int_compat.c, - lib/gnutls_ui.h, lib/gnutls_x509.c, lib/gnutls_x509.h, - lib/x509_b64.c, lib/x509_b64.h, tests/x509_test.c: Updated the - base64 encoding/decoding functions. - -2002-09-01 Nikos Mavrogiannopoulos - - * lib/auth_anon.c, lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, - lib/auth_rsa_export.c, lib/gnutls_cert.c, lib/gnutls_errors.c, - lib/gnutls_errors_int.h, lib/gnutls_handshake.c, - lib/gnutls_state.c, lib/gnutls_v2_compat.c, lib/gnutls_x509.c, - libextra/gnutls_openpgp.c: several clean ups - -2002-09-01 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am, doc/tex/appendix.tex, doc/tex/gnutls.tex, - doc/tex/howto.tex, doc/tex/macros.tex, doc/tex/pgpcert.xml.tex, - doc/tex/x509.tex, doc/tex/x509cert.xml.tex: Updated documentation to - include examples of XML certificates. - -2002-09-01 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_state.c, src/common.c: [no log message] - -2002-08-31 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-08-31 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_x509.c, lib/gnutls_x509.h: Improved the - certificate and key read functions. They can now read a PEM encoded - key and certificate from the same file. - -2002-08-30 Nikos Mavrogiannopoulos - - * doc/tex/ex3.tex, doc/tex/handshake.tex, lib/auth_cert.c, - lib/ext_cert_type.c, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, - lib/gnutls_cert.c, lib/gnutls_int_compat.c, lib/gnutls_priority.c, - lib/gnutls_priority.h, lib/gnutls_state.c, lib/gnutls_state.h, - libextra/gnutls_openssl.c, src/cli.c, src/common.c, src/serv.c, - src/tests.c: cert_type abreviation was expanded to certificate_type. - -2002-08-30 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am, doc/tex/ex-rfc2818.tex, doc/tex/examples.tex: - updated examples - -2002-08-29 Nikos Mavrogiannopoulos - - * NEWS, configure.in: [no log message] - -2002-08-29 Nikos Mavrogiannopoulos - - * doc/tex/ex1.tex, doc/tex/ex2.tex, doc/tex/ex3.tex, - doc/tex/ex4.tex, doc/tex/examples.tex, doc/tex/serv1.tex, - doc/tex/srp1.tex, includes/gnutls/extra.h, - includes/gnutls/openssl.h, lib/auth_anon.c, lib/auth_anon.h, - lib/auth_cert.c, lib/auth_cert.h, lib/auth_dhe.c, lib/auth_rsa.c, - lib/auth_rsa_export.c, lib/debug.c, lib/debug.h, - lib/ext_cert_type.c, lib/ext_cert_type.h, lib/ext_max_record.c, - lib/ext_max_record.h, lib/gnutls.h.in.in, lib/gnutls_alert.c, - lib/gnutls_alert.h, lib/gnutls_algorithms.c, - lib/gnutls_algorithms.h, lib/gnutls_auth.c, lib/gnutls_auth.h, - lib/gnutls_auth_int.h, lib/gnutls_buffers.c, lib/gnutls_buffers.h, - lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_cipher.c, - lib/gnutls_cipher.h, lib/gnutls_cipher_int.c, - lib/gnutls_cipher_int.h, lib/gnutls_compress.c, - lib/gnutls_compress.h, lib/gnutls_compress_int.c, - lib/gnutls_compress_int.h, lib/gnutls_constate.c, - lib/gnutls_constate.h, lib/gnutls_db.c, lib/gnutls_db.h, - lib/gnutls_dh.h, lib/gnutls_dh_primes.c, lib/gnutls_extensions.c, - lib/gnutls_extensions.h, lib/gnutls_global.c, - lib/gnutls_handshake.c, lib/gnutls_handshake.h, - lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, - lib/gnutls_int_compat.c, lib/gnutls_kx.c, lib/gnutls_kx.h, - lib/gnutls_priority.c, lib/gnutls_priority.h, lib/gnutls_record.c, - lib/gnutls_record.h, lib/gnutls_rsa_export.c, - lib/gnutls_rsa_export.h, lib/gnutls_session.c, - lib/gnutls_session.h, lib/gnutls_session_pack.c, - lib/gnutls_session_pack.h, lib/gnutls_sig.c, lib/gnutls_sig.h, - lib/gnutls_state.c, lib/gnutls_state.h, lib/gnutls_ui.c, - lib/gnutls_ui.h, lib/gnutls_v2_compat.c, lib/gnutls_v2_compat.h, - lib/gnutls_x509.c, lib/gnutls_x509.h, lib/x509_sig_check.c, - lib/x509_verify.c, libextra/auth_srp.c, libextra/auth_srp.h, - libextra/auth_srp_passwd.c, libextra/auth_srp_passwd.h, - libextra/ext_srp.c, libextra/ext_srp.h, libextra/gnutls_openssl.c, - libextra/gnutls_srp.c, src/cli.c, src/common.c, src/serv.c, - src/tests.c, src/tls_test.c: Renamed all the constructed types to - have more consisten names, and some other minor improvements. - -2002-08-29 Nikos Mavrogiannopoulos - - * Makefile.am, PGPKEYS: removed PGPKEYS from the distribution. - -2002-08-28 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-08-28 Nikos Mavrogiannopoulos - - * libextra/gnutls_openpgp.c: [no log message] - -2002-08-28 Nikos Mavrogiannopoulos - - * lib/gnutls_buffers.c, lib/gnutls_record.c: Allow the NULL pointer - for data in gnutls_record_send(), if the previous call was - interrupted. - -2002-08-28 Nikos Mavrogiannopoulos - - * lib/gnutls_record.c: Corrected possible bug in decompression code. - Well compressed packets may have been rejected due to limited - buffer. - -2002-08-28 Nikos Mavrogiannopoulos - - * doc/tex/auth.tex: [no log message] - -2002-08-28 Nikos Mavrogiannopoulos - - * NEWS, doc/README.autoconf, doc/TODO, - doc/protocol/draft-ietf-tls-srp-01.txt, - doc/protocol/draft-ietf-tls-srp-02.txt, lib/gnutls_algorithms.c, - lib/gnutls_int.h, libextra/Makefile.am, libextra/auth_srp.c, - libextra/auth_srp_passwd.c, libextra/auth_srp_passwd.h, - libextra/crypt.c, libextra/crypt.h, libextra/crypt_bcrypt.c, - libextra/crypt_bcrypt.h, libextra/crypt_srpsha1.c, - libextra/crypt_srpsha1.h, libextra/gnutls_srp.c, - libextra/gnutls_srp.h, src/crypt-gaa.c, src/crypt-gaa.h, - src/crypt.c, src/crypt.gaa: Added support for the new SRP draft by - D. Taylor. This includes the removal of the blowfish crypt hash - option, and the change of SRP cipher suite numbers. - -2002-08-27 Nikos Mavrogiannopoulos - - * lib/debug.c, lib/gnutls_hash_int.c, lib/gnutls_x509.c: removed old - FIXME stuff. - -2002-08-27 Nikos Mavrogiannopoulos - - * ChangeLog, NEWS: [no log message] - -2002-08-26 Nikos Mavrogiannopoulos - - * doc/tex/x509.tex, src/cli.c: [no log message] - -2002-08-26 Nikos Mavrogiannopoulos - - * : added figures used in the documentation. Figures were generated - by DIA. - -2002-08-26 Nikos Mavrogiannopoulos - - * doc/tex/auth.tex, doc/tex/ciphers.tex, doc/tex/ex1.tex, - doc/tex/ex2.tex, doc/tex/ex4.tex, doc/tex/srp1.tex, - lib/gnutls.h.in.in, lib/gnutls_algorithms.c, - lib/gnutls_cipher_int.c, lib/gnutls_int.h, - libextra/gnutls_openssl.c, src/cli.c, src/serv.c, src/tests.c: - Renamed GNUTLS_CIPHER_ARCFOUR to GNUTLS_CIPHER_ARCFOUR_128 - -2002-08-26 Nikos Mavrogiannopoulos - - * .cvsignore, README: [no log message] - -2002-08-26 Nikos Mavrogiannopoulos - - * lib/gnutls_state.c: better export ciphersuite detection - -2002-08-26 Andrew McDonald - - * libextra/gnutls_openssl.c: Update SSL_CIPHER_get_name() to use - gnutls_cipher_suite_get_name() - -2002-08-26 Nikos Mavrogiannopoulos - - * lib/auth_rsa_export.c: [no log message] - -2002-08-26 Nikos Mavrogiannopoulos - - * src/Makefile.am, src/common.c, src/common.h, src/tests.c, - src/tests.h, src/tls_test.c: Improved the gnutls-cli-debug program - -2002-08-26 Nikos Mavrogiannopoulos - - * configure.in, lib/gnutls_state.c: [no log message] - -2002-08-26 Nikos Mavrogiannopoulos - - * doc/tex/ciphers.tex, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, - lib/gnutls_cipher_int.c, lib/gnutls_int.h, src/cli.c, src/serv.c, - src/tests.c: renamed ARCFOUR-EXPORT to ARCFOUR-40 - -2002-08-26 Nikos Mavrogiannopoulos - - * lib/auth_rsa.c, lib/auth_rsa_export.c, lib/gnutls_kx.c, - lib/gnutls_rsa_export.h, lib/gnutls_state.c, lib/gnutls_state.h: - Added support for RSA_EXPORT_WITH_RC4_EXPORT_MD5 with RSA - certificates with modulus less than 512 bits. This change made the - code a bit messy. - -2002-08-25 Nikos Mavrogiannopoulos - - * src/serv.c: [no log message] - -2002-08-25 Nikos Mavrogiannopoulos - - * src/serv.c, src/tests.c, src/tests.h, src/tls_test.c: improvements - in server html output - -2002-08-25 Nikos Mavrogiannopoulos - - * doc/tex/auth.tex, doc/tex/ciphers.tex, doc/tex/intro.tex: changes - in order to keep up with the addition of export-grade ciphersuite - -2002-08-25 Nikos Mavrogiannopoulos - - * lib/auth_rsa_export.c: [no log message] - -2002-08-25 Nikos Mavrogiannopoulos - - * lib/gnutls_int.h: [no log message] - -2002-08-25 Nikos Mavrogiannopoulos - - * src/cli.c, src/serv.c: changes for export cipher suites - -2002-08-25 Nikos Mavrogiannopoulos - - * NEWS: Added the first EXPORT-grade ciphersuite - -2002-08-25 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/auth_cert.h, lib/auth_dhe.c, lib/auth_rsa.c, - lib/auth_rsa_export.c, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, - lib/gnutls_cert.c, lib/gnutls_dh_primes.c, lib/gnutls_errors.c, - lib/gnutls_errors_int.h, lib/gnutls_int.h, lib/gnutls_kx.c, - lib/gnutls_rsa_export.c, lib/gnutls_rsa_export.h, - lib/gnutls_state.c, lib/gnutls_state.h, lib/gnutls_ui.c, - lib/gnutls_ui.h, lib/gnutls_x509.c: Corrected bug in DHE key - exchange which prevented from parsing the given certificates - properly. - -2002-08-24 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-08-23 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2002-08-23 Nikos Mavrogiannopoulos - - * includes/gnutls/extra.h, libextra/gnutls_openpgp.c, - libextra/gnutls_openpgp.h: Exported gnutls_openpgp_extract_key_id(). - This is the gnutls_openpgp_keyid() function renamed. - -2002-08-22 Nikos Mavrogiannopoulos - - * lib/gnutls_auth.c: [no log message] - -2002-08-22 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/gnutls_int_compat.c, src/serv.c: - gnutls_handshake_set_exportable_detection() was obsoleted. - -2002-08-22 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2002-08-21 Nikos Mavrogiannopoulos - - * src/cli.c: [no log message] - -2002-08-21 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-08-21 Nikos Mavrogiannopoulos - - * lib/gnutls_constate.c, lib/gnutls_hash_int.c: corrected bug in - SSL3 random generation function. Now the export ciphersuite works in - SSL3 mode too. - -2002-08-21 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/gnutls_constate.c, - lib/gnutls_handshake.c, lib/gnutls_hash_int.c, - lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_state.c: Added - the first exportable ciphersuite (TLS_RSA_WITH_RC4_EXPORT_MD5). This - one only works in servers that have certificates of 512 bits length. - -2002-08-21 Nikos Mavrogiannopoulos - - * lib/gnutls_int.h: [no log message] - -2002-08-21 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/gnutls_algorithms.c, - lib/gnutls_algorithms.h, lib/gnutls_cipher_int.c, - lib/gnutls_constate.c, lib/gnutls_handshake.c, lib/gnutls_int.h, - lib/gnutls_state.c, src/cli.c: Added some initials for the export - cipher suites. - -2002-08-21 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-openpgp-keys-01.txt, - doc/protocol/draft-ietf-tls-openpgp-keys-02.txt: updated openpgp - draft - -2002-08-20 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c: included the change cipher specs in - gnutls_handshake_get_direction(). - -2002-08-19 Nikos Mavrogiannopoulos - - * src/cli.c: [no log message] - -2002-08-18 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls.h.in.in, lib/gnutls_handshake.c: - gnutls_handshake_check_direction() renamed to - gnutls_handshake_get_direction(). - -2002-08-18 Nikos Mavrogiannopoulos - - * src/tls_test-gaa.c, src/tls_test-gaa.h, src/tls_test.c, - src/tls_test.gaa: Added verbose option to gnutls-cli-debug. - -2002-08-18 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls.h.in.in, lib/gnutls_handshake.c, - lib/gnutls_int.h, lib/gnutls_state.c: Added the - gnutls_handshake_set_exportable_detection() function, which is used - to control whether the handshake will check for exportable cipher - suites in the server. In that case an error of - GNUTLS_E_EXPORT_CIPHER_SUITE is returned. - -2002-08-18 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c: [no log message] - -2002-08-17 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-08-17 Nikos Mavrogiannopoulos - - * AUTHORS: included cvs aliases into authors file - -2002-08-17 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c: [no log message] - -2002-08-17 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/gnutls_algorithms.c: Added - gnutls_cipher_suite_get_name(). This functions constructs the name - of a cipher suite using the given algorithms. - -2002-08-15 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2002-08-15 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/gnutls_handshake.c, lib/gnutls_int.h: - Added new function gnutls_handshake_check_direction(), which returns - the state where the handshake function was interrupted. - -2002-08-15 Nikos Mavrogiannopoulos - - * buildconf, configure.in, doc/README.CVS: Added the - --enable-maintainer-mode configure option, and renamed the old one - to --enable-developer-mode. - -2002-08-15 Nikos Mavrogiannopoulos - - * NEWS, configure.in, lib/gnutls.h.in.in, lib/gnutls_x509.c: added - some missing consts - -2002-07-24 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-07-21 Andrew McDonald - - * doc/tex/openssl.tex, includes/gnutls/openssl.h, - libextra/gnutls_openssl.c: add ability to use separate file - descriptors for send() and recv() using new set_transport_ptr2() - function - -2002-07-21 Andrew McDonald - - * includes/gnutls/openssl.h, libextra/gnutls_openssl.c: some initial - support for TLS/SSL server applications - -2002-07-20 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-07-20 Nikos Mavrogiannopoulos - - * lib/gnutls_errors.c, lib/gnutls_errors_int.h, - lib/gnutls_handshake.c: Added a special error code for cases where - the peer (server) supports only export ciphersuites. - -2002-07-18 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2002-07-18 Nikos Mavrogiannopoulos - - * lib/gnutls_int.h: [no log message] - -2002-07-17 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-07-17 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2002-07-15 Nikos Mavrogiannopoulos - - * doc/tex/auth.tex, doc/tex/errors.tex, doc/tex/howto.tex, - doc/tex/openpgp.tex, doc/tex/record.tex: Several documentation - fixes. Suggestions and patch by Paul Wujek - -2002-07-15 Nikos Mavrogiannopoulos - - * configure.in: [no log message] - -2002-07-15 Nikos Mavrogiannopoulos - - * NEWS, lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, - lib/ext_max_record.c, lib/gnutls_cert.c, lib/gnutls_compress.c, - lib/gnutls_compress_int.c, lib/gnutls_constate.c, - lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_global.c, - lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_state.c, - libextra/gnutls_extra.c: Fixes in zlib compression code. - gnutls_global_init_extra() in libgnutls-extra fails if library - versions do not match. Semantic changes in - gnutls_record_set_max_size(). The requested size is now immediately - enforced at the output buffers. - -2002-07-15 Nikos Mavrogiannopoulos - - * src/cli.c, src/serv.c: Client and server now accept the null - cipher option. - -2002-07-13 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-07-13 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls.h.in.in, lib/gnutls_buffers.c, lib/gnutls_int.h, - lib/gnutls_record.c: Added gnutls_transport_set_ptr2() which accepts - two pointers. - -2002-07-12 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c: [no log message] - -2002-07-12 Nikos Mavrogiannopoulos - - * configure.in, lib/gnutls_mpi.h, lib/gnutls_privkey.c: moved to - libgcrypt 1.1.8 - -2002-07-12 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2002-07-12 Nikos Mavrogiannopoulos - - * NEWS, lib/libgnutls.m4, libextra/libgnutls-extra.m4: corrected m4 - macros for gnutls - -2002-07-12 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-ciphersuite-05.txt, - doc/protocol/rfc3268.txt: [no log message] - -2002-07-10 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-07-10 Nikos Mavrogiannopoulos - - * lib/auth_anon.c, lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, - lib/ext_cert_type.c, lib/ext_max_record.c, lib/gnutls_buffers.c, - lib/gnutls_cert.c, lib/gnutls_cipher.c, lib/gnutls_compress.c, - lib/gnutls_constate.c, lib/gnutls_datum.c, lib/gnutls_db.c, - lib/gnutls_extensions.c, lib/gnutls_handshake.c, - lib/gnutls_hash_int.c, lib/gnutls_int.h, lib/gnutls_kx.c, - lib/gnutls_mpi.c, lib/gnutls_num.c, lib/gnutls_pk.c, - lib/gnutls_priority.c, lib/gnutls_privkey.c, lib/gnutls_random.c, - lib/gnutls_record.c, lib/gnutls_session_pack.c, lib/gnutls_state.c, - lib/gnutls_state.h, lib/gnutls_ui.c, lib/gnutls_v2_compat.c, - lib/x509_b64.c, lib/x509_extensions.c, lib/x509_sig_check.c, - lib/x509_verify.c, lib/x509_xml.c: Added some hints on the file - purpose, and some other cleanups. - -2002-07-10 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-07-10 Nikos Mavrogiannopoulos - - * lib/gnutls_db.h, lib/gnutls_state.c: [no log message] - -2002-07-10 Nikos Mavrogiannopoulos - - * lib/gnutls_db.c, lib/gnutls_state.c: Now gnutls_deinit() removes - abnormally terminated sessions. Added the _gnutls_deinit() function - which has the behaviour of the older gnutls_deinit(). - -2002-07-10 Nikos Mavrogiannopoulos - - * src/serv.c: corrected possible bug in http server - -2002-07-09 Nikos Mavrogiannopoulos - - * doc/tex/gnutls.tex: [no log message] - -2002-07-07 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c, src/serv.c: [no log message] - -2002-07-06 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-07-06 Nikos Mavrogiannopoulos - - * configure.in: [no log message] - -2002-07-06 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2002-07-06 Nikos Mavrogiannopoulos - - * src/common.h: [no log message] - -2002-07-06 Andrew McDonald - - * doc/tex/openssl.tex: added some more information about current - limitations of OpenSSL compatibility layer - -2002-07-06 Nikos Mavrogiannopoulos - - * libextra/Makefile.am: added gnutls_openssl.c - -2002-07-06 Nikos Mavrogiannopoulos - - * doc/tex/examples.tex: [no log message] - -2002-07-06 Nikos Mavrogiannopoulos - - * doc/tex/intro.tex, doc/tex/x509.tex: some documentation fixes. - -2002-07-06 Andrew McDonald - - * includes/gnutls/openssl.h, libextra/gnutls_openssl.c: get rid of - some warnings during build - -2002-07-06 Timo Schulz - - * libextra/gnutls_openpgp.c, libextra/gnutls_openpgp.h: Minor fixes - for the OpenPGP code. - -2002-07-05 Andrew McDonald - - * includes/gnutls/openssl.h, libextra/gnutls_openssl.c: yet more - functions, and some fixes - -2002-07-05 Andrew McDonald - - * includes/gnutls/openssl.h, libextra/gnutls_openssl.c: some more - functions implemented - -2002-07-05 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am, doc/tex/examples.tex, doc/tex/funcs.tex, - doc/tex/openssl.tex: [no log message] - -2002-07-05 Nikos Mavrogiannopoulos - - * lib/x509_xml.c, libextra/gnutls_openpgp.c: [no log message] - -2002-07-05 Nikos Mavrogiannopoulos - - * includes/gnutls/extra.h, lib/gnutls.h.in.in, lib/gnutls_ui.h: - Added defines for old function names. - -2002-07-05 Nikos Mavrogiannopoulos - - * src/common.c, src/serv.c: [no log message] - -2002-07-05 Nikos Mavrogiannopoulos - - * libextra/gnutls_openpgp.c: Fixed stub for xml keys. Added support - for the new string functions in xml key generation. - -2002-07-04 Nikos Mavrogiannopoulos - - * doc/tex/auth.tex: [no log message] - -2002-07-04 Nikos Mavrogiannopoulos - - * src/README.srpcrypt, src/crypt-gaa.c, src/crypt-gaa.h, - src/crypt.gaa, src/serv.c: updated the parameters of srpcrypt - program. Other minor changes in included programs. - -2002-07-04 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c: Corrected bug in the mpi extraction function - from X.509 certificates (affects DSA certificates). - -2002-07-03 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-06-30 Nikos Mavrogiannopoulos - - * includes/gnutls/extra.h, libextra/gnutls_openpgp.c, - libextra/gnutls_openpgp.h: [no log message] - -2002-06-30 Nikos Mavrogiannopoulos - - * lib/auth_cert.c, lib/gnutls_cipher.c, lib/gnutls_handshake.c, - lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_ui.h, - lib/x509_xml.c, libextra/gnutls_openpgp.c, src/common.c: Made the - xml convertion functions more mnemonic. Several other fixes in the - core library. - -2002-06-30 Nikos Mavrogiannopoulos - - * lib/gnutls_alert.c, lib/gnutls_algorithms.c, - lib/gnutls_algorithms.h, lib/gnutls_auth.h, lib/gnutls_cipher.c, - lib/gnutls_compress_int.c, lib/gnutls_compress_int.h, - lib/gnutls_errors.c, lib/gnutls_extensions.c, - lib/gnutls_extensions.h, lib/gnutls_handshake.c, - lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, - lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_state.c, - lib/gnutls_state.h, lib/gnutls_x509.c, lib/x509_extensions.c, - lib/x509_extensions.h, lib/x509_xml.c: Several (internal) cleanups. - Const flags are better used now. - -2002-06-29 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-06-29 Nikos Mavrogiannopoulos - - * lib/auth_cert.c, lib/gnutls_x509.c: Better organization of - cert2gnutls_cert function. - -2002-06-28 Nikos Mavrogiannopoulos - - * lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, - lib/gnutls_x509.c, lib/gnutls_x509.h, lib/x509_xml.c: Now - certificate decoding makes use of partial DER decoding of the - libtasn1 library. It speedups a bit the handshake in client side, - which needs to decode the certificate, in order to read the public - key parameters. - -2002-06-26 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-06-25 Nikos Mavrogiannopoulos - - * lib/x509_xml.c: Improved XML output. - -2002-06-24 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2002-06-24 Andrew McDonald - - * libextra/gnutls_openssl.c: fix SSL_CIPHER_get_bits to return key - size in bits rather than bytes - -2002-06-23 Nikos Mavrogiannopoulos - - * configure.in: Depends on opencdk 0.2.0 - -2002-06-23 Nikos Mavrogiannopoulos - - * configure.in, includes/Makefile.am, includes/gnutls/Makefile.am: - [no log message] - -2002-06-23 Timo Schulz - - * libextra/gnutls_openpgp.c: Changes for the new OpenCDK version. - -2002-06-22 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-06-22 Nikos Mavrogiannopoulos - - * tests/x509_test.c: [no log message] - -2002-06-22 Nikos Mavrogiannopoulos - - * libextra/gnutls_openpgp.c: [no log message] - -2002-06-22 Nikos Mavrogiannopoulos - - * lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, - lib/gnutls_cert.h, lib/gnutls_record.c, lib/gnutls_str.h, - lib/gnutls_x509.c, lib/gnutls_x509.h, lib/x509_extensions.c, - lib/x509_extensions.h, lib/x509_sig_check.c: The TLS handshake no - longer fails if the X.509 extensions in the Certificate are critical - and unsupported. The unsupported critical extensions are now only - catched by the verification functions. - -2002-06-22 Nikos Mavrogiannopoulos - - * lib/gnutls_str.c, lib/gnutls_str.h, lib/x509_xml.c: Added new - string functions to handle the XML string stuff. - -2002-06-22 Nikos Mavrogiannopoulos - - * doc/TODO, doc/tex/ex1.tex, doc/tex/ex2.tex, doc/tex/ex4.tex, - doc/tex/serv1.tex, doc/tex/srp1.tex, includes/gnutls/Makefile.am, - includes/gnutls/extra.h, lib/gnutls.h.in.in, - lib/gnutls_algorithms.c, lib/gnutls_anon_cred.c, lib/gnutls_cert.c, - lib/gnutls_x509.c, lib/gnutls_x509.h, lib/x509_xml.c, - libextra/gnutls_openssl.c, libextra/gnutls_srp.c, src/cli.c, - src/serv.c, src/tls_test.c: Renamed credential allocation functions - from *_sc() to *_cred(). - -2002-06-22 Nikos Mavrogiannopoulos - - * includes/gnutls/Makefile.am, includes/gnutls/gnutls.h: [no log - message] - -2002-06-22 Nikos Mavrogiannopoulos - - * Makefile.am, configure.in, lib/Makefile.am, lib/gnutls.h.in.in, - lib/gnutls_algorithms.c, lib/gnutls_int_compat.c, - lib/gnutls_x509.c, libextra/Makefile.am, libextra/extra.h, - libextra/gnutls_openssl.c, libextra/openssl.h, src/Makefile.am, - src/cli.c, src/common.c, src/prime.c, src/serv.c, src/tests.c, - src/tls_test.c, tests/Makefile.am: [no log message] - -2002-06-22 Nikos Mavrogiannopoulos - - * includes/Makefile.am, includes/gnutls/Makefile.am, - includes/gnutls/extra.h, includes/gnutls/gnutls.h, - includes/gnutls/openssl.h: Installed headers moved to includes/ - directory. - -2002-06-21 Andrew McDonald - - * libextra/gnutls_openssl.c, libextra/openssl.h: changes to way - SSL_CIPHER allocation is handled make use of option SSL_OP_NO_TLSv1 - -2002-06-21 Andrew McDonald - - * libextra/gnutls_openssl.c: use gnutls_cipher_get_key_size() in - SSL_CIPHER_get_bits() - -2002-06-21 Andrew McDonald - - * libextra/gnutls_openssl.c, libextra/openssl.h: make arrays for - priority information in SSL_METHOD statically allocated - -2002-06-21 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c: [no log message] - -2002-06-21 Nikos Mavrogiannopoulos - - * lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509_xml.c: [no log - message] - -2002-06-21 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c: corrected countryName - -2002-06-21 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c, lib/gnutls_x509.c, lib/gnutls_x509.h, - src/common.c: [no log message] - -2002-06-21 Nikos Mavrogiannopoulos - - * libextra/extra.h, libextra/openssl.h: changed with - - -2002-06-21 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/gnutls_algorithms.c, - lib/gnutls_algorithms.h, lib/gnutls_constate.c, lib/gnutls_int.h: - Exported gnutls_cipher_get_key_size(). Better name printing for MAC - algorithms. - -2002-06-20 Nikos Mavrogiannopoulos - - * NEWS, src/cli.c, src/common.c, src/serv.c, src/tests.c, - src/tls_test.c: [no log message] - -2002-06-20 Nikos Mavrogiannopoulos - - * configure.in, doc/tex/ex1.tex, doc/tex/ex2.tex, doc/tex/ex4.tex, - doc/tex/funcs.tex, doc/tex/serv1.tex, doc/tex/srp1.tex, - libextra/Makefile.am, libextra/extra.h, libextra/gnutls-extra.h, - libextra/gnutls-openssl.h, libextra/openssl.h: New install directory - for headers is /gnutls - -2002-06-20 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c: [no log message] - -2002-06-20 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c, lib/gnutls_x509.h: [no log message] - -2002-06-20 Nikos Mavrogiannopoulos - - * configure.in, doc/tex/handshake.tex, doc/tex/memory.tex, - doc/tex/translayer.tex, lib/gnutls.h.in.in, lib/gnutls_global.c: [no - log message] - -2002-06-20 Nikos Mavrogiannopoulos - - * .cvsusers: [no log message] - -2002-06-19 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-06-19 Andrew McDonald - - * libextra/gnutls-openssl.h, libextra/gnutls_openssl.c: Implemented - some more functions. Basic TLS/SSL operations tested with: slrn, - wget, lynx - -2002-06-19 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/gnutls_cert.c, lib/gnutls_db.c, - lib/gnutls_global.c, lib/gnutls_int_compat.c, lib/gnutls_ui.h, - libextra/gnutls-extra.h, libextra/gnutls_srp.c, src/serv.c: _func - abreviation is no longer used. Functions renamed to _function. - -2002-06-19 Nikos Mavrogiannopoulos - - * lib/x509_xml.c: x509_xml.c - -2002-06-19 Nikos Mavrogiannopoulos - - * src/serv.c: removed ioctl stuff. - -2002-06-19 Nikos Mavrogiannopoulos - - * src/serv-gaa.c, src/serv-gaa.h, src/serv.c, src/serv.gaa, - src/tls_test.c: added 'nodb' and 'quiet' options to server. - -2002-06-19 Nikos Mavrogiannopoulos - - * lib/gnutls_pk.c, src/cli.c: [no log message] - -2002-06-19 Nikos Mavrogiannopoulos - - * lib/gnutls_pk.c: Corrected bug in PKCS-1 RSA encryption. - -2002-06-19 Nikos Mavrogiannopoulos - - * src/common.c: [no log message] - -2002-06-19 Nikos Mavrogiannopoulos - - * .cvsusers, AUTHORS: [no log message] - -2002-06-18 Nikos Mavrogiannopoulos - - * src/Makefile.am, src/common.c, src/list.h, src/serv.c: The server - used was changed to a non blocking one. The server was created by - Paul Sheer. - -2002-06-17 Nikos Mavrogiannopoulos - - * libextra/gnutls_openpgp.c: cleanups - -2002-06-17 Nikos Mavrogiannopoulos - - * libextra/gnutls_openpgp.c: fixed stubs - -2002-06-17 Timo Schulz - - * libextra/gnutls_openpgp.c: Minor changes and a XML stub if OpenCDK - is not used. - -2002-06-16 Nikos Mavrogiannopoulos - - * lib/x509_xml.c: [no log message] - -2002-06-16 Nikos Mavrogiannopoulos - - * lib/gnutls_int_compat.c, lib/gnutls_x509.c, lib/x509_xml.c: [no - log message] - -2002-06-16 Nikos Mavrogiannopoulos - - * libextra/gnutls-extra.h, libextra/gnutls-openssl.h, - libextra/gnutls_openssl.c: [no log message] - -2002-06-16 Nikos Mavrogiannopoulos - - * lib/gnutls_cert.c: [no log message] - -2002-06-16 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am, doc/tex/gnutls.tex, doc/tex/howto.tex: Added - chapter on how to use TLS in application protocols. - -2002-06-16 Nikos Mavrogiannopoulos - - * libextra/gnutls_openssl.c: [no log message] - -2002-06-16 Nikos Mavrogiannopoulos - - * libextra/Makefile.am, libextra/gnutls-openssl.h: Added Andrew's - openssl compatible interface. - -2002-06-16 Nikos Mavrogiannopoulos - - * lib/gnutls_ui.h, lib/x509_xml.c, libextra/gnutls-extra.h: [no log - message] - -2002-06-16 Timo Schulz - - * libextra/gnutls_openpgp.c, libextra/gnutls_openpgp.h: Changed the - xml function name to fit into the GnuTLS API. New memory handling - for gnutls_datum. - -2002-06-16 Nikos Mavrogiannopoulos - - * src/serv.c: [no log message] - -2002-06-16 Nikos Mavrogiannopoulos - - * libextra/gnutls-extra.h: [no log message] - -2002-06-15 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-06-15 Nikos Mavrogiannopoulos - - * doc/tex/alert.tex, doc/tex/ciphers.tex, doc/tex/errors.tex, - doc/tex/examples.tex, doc/tex/handshake.tex, doc/tex/layers.tex, - doc/tex/macros.tex, doc/tex/memory.tex, doc/tex/record.tex, - doc/tex/translayer.tex: [no log message] - -2002-06-15 Nikos Mavrogiannopoulos - - * configure.in: [no log message] - -2002-06-15 Nikos Mavrogiannopoulos - - * acconfig.h, configure.in, doc/TODO, src/Makefile.am: Corrected - libgdbm issues - -2002-06-15 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am: [no log message] - -2002-06-15 Nikos Mavrogiannopoulos - - * configure.in: [no log message] - -2002-06-15 Nikos Mavrogiannopoulos - - * configure.in: [no log message] - -2002-06-15 Nikos Mavrogiannopoulos - - * NEWS, configure.in, doc/TODO, doc/tex/handshake.tex, - doc/tex/serv1.tex, lib/defines.h, lib/gnutls.h.in.in, - lib/gnutls_db.c, lib/gnutls_handshake.c, lib/gnutls_int.h, - lib/gnutls_int_compat.c, lib/gnutls_state.c, lib/x509_xml.c, - src/Makefile.am, src/common.c, src/serv.c: Removed the gdbm backend - for resuming TLS sessions. Program gnutls-serv was modified to - include support for resuming sessions with the callback api. - -2002-06-14 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am, doc/tex/alert.tex, doc/tex/auth.tex, - doc/tex/errors.tex, doc/tex/examples.tex, doc/tex/funcs.tex, - doc/tex/gnutls.tex, doc/tex/handshake.tex, doc/tex/layers.tex, - doc/tex/openpgp.tex, doc/tex/record.tex, doc/tex/x509.tex: Added - index. - -2002-06-14 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am, doc/tex/auth.tex, doc/tex/macros.tex, - doc/tex/openpgp.tex, doc/tex/x509.tex: [no log message] - -2002-06-14 Nikos Mavrogiannopoulos - - * lib/x509_xml.c: [no log message] - -2002-06-14 Nikos Mavrogiannopoulos - - * configure.in, lib/gnutls_ui.h, lib/x509_xml.c: [no log message] - -2002-06-14 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/gnutls_ui.h, lib/x509_xml.c: Added XML - extraction from an X.509 certificate. Only some basic functionality - is now available. - -2002-06-14 Timo Schulz - - * libextra/gnutls_openpgp.c: Corrected the key length calcuation for - the key data fields. - -2002-06-13 Nikos Mavrogiannopoulos - - * libextra/crypt_bcrypt.c: [no log message] - -2002-06-13 Nikos Mavrogiannopoulos - - * lib/pkix.asn, lib/pkix_asn1_tab.c: [no log message] - -2002-06-12 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-06-12 Timo Schulz - - * libextra/gnutls_openpgp.c: Some minor improvements for the XML - code. - -2002-06-12 Timo Schulz - - * libextra/gnutls_openpgp.c: Implemented verbosity level for XML - output. - -2002-06-12 Nikos Mavrogiannopoulos - - * lib/x509_ASN.c: [no log message] - -2002-06-11 Nikos Mavrogiannopoulos - - * libextra/Makefile.am, src/Makefile.am, tests/Makefile.am: [no log - message] - -2002-06-11 Nikos Mavrogiannopoulos - - * configure.in, doc/README.CVS: [no log message] - -2002-06-11 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/auth_cert.c, lib/auth_rsa.c, - lib/gnutls_asn1_tab.c, lib/gnutls_cert.c, lib/gnutls_cert.h, - lib/gnutls_errors.c, lib/gnutls_global.c, lib/gnutls_global.h, - lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_privkey.c, - lib/gnutls_sig.c, lib/gnutls_x509.c, lib/gnutls_x509.h, - lib/pkix_asn1_tab.c, lib/x509_extensions.c, lib/x509_sig_check.c, - lib/x509_verify.c: renamed libasn1 to libtasn1 - -2002-06-11 Nikos Mavrogiannopoulos - - * configure.in: [no log message] - -2002-06-11 Nikos Mavrogiannopoulos - - * doc/README.CVS: renamed libasn1 to libtasn1 - -2002-06-10 Timo Schulz - - * libextra/gnutls_openpgp.c: A small fix for the XML code. - -2002-06-10 Timo Schulz - - * libextra/gnutls_openpgp.c, libextra/gnutls_openpgp.h: Basic XML - output for OpenPGP certificates. - -2002-06-10 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am, doc/tex/layers.eps, doc/tex/layers.ps, - doc/tex/layers.tex, doc/tex/openpgp.tex, doc/tex/pgp-fig1.eps: [no - log message] - -2002-06-10 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am, doc/tex/auth.tex, doc/tex/gnutls.tex, - doc/tex/intro.tex, doc/tex/openpgp.tex, doc/tex/pgp-fig1.eps: Added - Timo's openpgp guide - -2002-06-10 Nikos Mavrogiannopoulos - - * configure.in: [no log message] - -2002-06-10 Nikos Mavrogiannopoulos - - * Makefile.am, buildconf, configure.in, lib/Makefile.am: Added - configure option to use the included libasn1. - -2002-06-10 Nikos Mavrogiannopoulos - - * Makefile.am, NEWS, configure.in, libextra/Makefile.am, - tests/Makefile.am: [no log message] - -2002-06-10 Nikos Mavrogiannopoulos - - * doc/README.CVS: [no log message] - -2002-06-10 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/auth_cert.c, lib/auth_rsa.c, - lib/gnutls_asn1_tab.c, lib/gnutls_cert.c, lib/gnutls_cert.h, - lib/gnutls_errors.c, lib/gnutls_global.c, lib/gnutls_global.h, - lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_pk.c, - lib/gnutls_privkey.c, lib/gnutls_sig.c, lib/gnutls_x509.c, - lib/gnutls_x509.h, lib/pkix_asn1_tab.c, lib/x509_ASN.y, - lib/x509_asn1.c, lib/x509_asn1.h, lib/x509_der.c, lib/x509_der.h, - lib/x509_extensions.c, lib/x509_extensions.h, lib/x509_sig_check.c, - lib/x509_verify.c: Adapted codebase to the new libasn1 0.1.0. - -2002-06-10 Nikos Mavrogiannopoulos - - * src/Makefile.am, src/asn1c.c: removed asn1c.c program. Moved to - libasn1. - -2002-06-09 Nikos Mavrogiannopoulos - - * lib/gnutls_ui.h: [no log message] - -2002-06-09 Nikos Mavrogiannopoulos - - * tests/x509_test.c: [no log message] - -2002-06-09 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_datum.c, lib/gnutls_datum.h, - lib/gnutls_global.c, lib/gnutls_mem.c, lib/gnutls_mem.h, - lib/x509_b64.c: Added gnutls_b64_encode_fmt2() and - gnutls_b64_decode_fmt2(). These functions return allocated data. - Cleaned up the gnutls_datum code and some of memory stuff. - -2002-06-09 Nikos Mavrogiannopoulos - - * NEWS, acconfig.h, configure.in, lib/gnutls_alert.c, - lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_global.c, - lib/gnutls_mem.c, lib/gnutls_mem.h: Added check for C99 macro - support. Stubs are used if they are not supported by the compile. A - more elegant solution is required. - -2002-06-09 Nikos Mavrogiannopoulos - - * lib/gnutls_global.c, lib/gnutls_mem.c, lib/gnutls_mem.h: only use - the libc's strdup, if using the libc's malloc function. - -2002-06-08 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-06-08 Nikos Mavrogiannopoulos - - * lib/gnutls_mem.c, lib/gnutls_mem.h: Removed gnutls_strdup(). - Replaced with a pointer to libc's strdup() function. - -2002-06-08 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c, lib/gnutls_record.c, lib/gnutls_state.c, - src/cli.c: [no log message] - -2002-06-08 Nikos Mavrogiannopoulos - - * lib/gnutls_buffers.c: No longer realloc() the record buffers. It - had some meaning when gnutls_realloc_fast() was there, but now they - one cause a slowdown. - -2002-06-08 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, - lib/gnutls_int.h, lib/gnutls_state.c, src/cli.c, src/serv.c: Created - gnutls_handshake_set_private_extensions() function. - -2002-06-08 Nikos Mavrogiannopoulos - - * lib/gnutls_state.c: [no log message] - -2002-06-07 Nikos Mavrogiannopoulos - - * configure.in, lib/defines.h, lib/gnutls_algorithms.c, - lib/gnutls_int.h, lib/gnutls_state.c, libextra/crypt_bcrypt.c: - Corrected issues with ptrdiff_t. Added option to enable private - (experimental) cipher suites. They are now disabled by default so - they do not create interoperability problems. - -2002-06-07 Nikos Mavrogiannopoulos - - * configure.in, libextra/crypt_bcrypt.c, libextra/crypt_srpsha1.c: - added check for ptrdiff_t type. - -2002-06-05 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-06-05 Nikos Mavrogiannopoulos - - * src/cli.c, src/serv.c: [no log message] - -2002-06-03 Nikos Mavrogiannopoulos - - * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, - src/serv-gaa.c, src/serv-gaa.h, src/serv.gaa: [no log message] - -2002-06-03 Nikos Mavrogiannopoulos - - * ChangeLog, doc/tex/Makefile.am, doc/tex/asn1.tex, lib/Makefile.am: - asn1.ps is no longer generated in the gnutls package. It is included - in the libasn1 package. - -2002-06-03 Timo Schulz - - * libextra/gnutls-extra.h, libextra/gnutls_openpgp.c, - libextra/gnutls_openpgp.h: Corrected some data types and more - documentation. - -2002-06-03 Nikos Mavrogiannopoulos - - * tests/x509_test.c: [no log message] - -2002-06-02 Timo Schulz - - * libextra/gnutls-extra.h: [no log message] - -2002-06-02 Timo Schulz - - * libextra/gnutls-extra.h, libextra/gnutls_openpgp.c, - libextra/gnutls_openpgp.h: More fixes for the keyid and some changes - for the _mem functions. - -2002-06-02 Timo Schulz - - * libextra/gnutls_openpgp.c, libextra/gnutls_openpgp.h: Applied the - patches. Changed the keyid from u32[2] to byte[8]. - -2002-06-02 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2002-06-02 Nikos Mavrogiannopoulos - - * Makefile.am, NEWS, configure.in, doc/TODO, - lib/gnutls_anon_cred.c, lib/gnutls_x509.c, lib/gnutls_x509.h, - libextra/gnutls_srp.c: Removed stubs for srp and anonymous - authentication. Added test suite directory. - -2002-06-02 Nikos Mavrogiannopoulos - - * tests/Makefile.am, tests/test1.pem, tests/test10.pem, - tests/test2.pem, tests/test25.pem, tests/test3.pem, - tests/x509_test.c: added test suite - -2002-06-02 Timo Schulz - - * libextra/gnutls_openpgp.c: Some modifications for the newest - OpenCDK snapshot. - -2002-05-29 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-05-28 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c: [no log message] - -2002-05-28 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c, lib/gnutls_record.c: [no log message] - -2002-05-28 Nikos Mavrogiannopoulos - - * libextra/gnutls_openpgp.c: Minor fixes. Added documentation for - gnutls_certificate_set_openpgp_trustdb() function. - -2002-05-27 Nikos Mavrogiannopoulos - - * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, - src/common.c, src/serv-gaa.c, src/serv.c, src/serv.gaa, - src/tls_test-gaa.c, src/tls_test.gaa: [no log message] - -2002-05-27 Nikos Mavrogiannopoulos - - * lib/gnutls_errors.c, lib/gnutls_errors_int.h, - libextra/gnutls_openpgp.c: Added error code for unsupported trustdb. - -2002-05-27 Timo Schulz - - * libextra/gnutls_openpgp.c: Check the trustdb format before the - handshake begins. - -2002-05-27 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2002-05-27 Timo Schulz - - * libextra/gnutls_openpgp.c: Added a check for the trustdb so we can - figure out if the format is useable for OpenCDK. - -2002-05-27 Nikos Mavrogiannopoulos - - * libextra/gnutls-extra.h, src/cli.c, src/common.c, src/serv.c: [no - log message] - -2002-05-26 Nikos Mavrogiannopoulos - - * src/CertificateExample.c, src/CrlExample.c, src/Makefile.am, - src/cli-gaa.c, src/cli.gaa, src/crypt.c, src/serv-gaa.c, - src/serv.gaa: some parts were moved to libasn1. - -2002-05-26 Nikos Mavrogiannopoulos - - * lib/gnutls_mem.h: [no log message] - -2002-05-25 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-05-24 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2002-05-24 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am, doc/tex/errors.tex, doc/tex/gnutls.tex, - doc/tex/memory.tex: added memory handling section - -2002-05-23 Nikos Mavrogiannopoulos - - * lib/gnutls_auth.c, lib/gnutls_buffers.c, lib/gnutls_mem.h, - lib/gnutls_priority.c: reintroduced realloc_fast() which prevents - some malloc(0) situations. - -2002-05-23 Nikos Mavrogiannopoulos - - * Makefile.am: [no log message] - -2002-05-23 Nikos Mavrogiannopoulos - - * doc/TODO, lib/auth_cert.c, lib/auth_rsa.c, lib/gnutls_int.h, - lib/gnutls_num.h, lib/gnutls_record.c, libextra/auth_srp.c, - libextra/auth_srp_passwd.c, libextra/gnutls_srp.c, - libextra/gnutls_srp.h: Several clean ups and bug fixes. - -2002-05-22 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-05-22 Nikos Mavrogiannopoulos - - * NEWS, THANKS, acconfig.h, configure.in, lib/auth_cert.c, - lib/gnutls.h.in.in, lib/gnutls_algorithms.c, lib/gnutls_auth.c, - lib/gnutls_buffers.c, lib/gnutls_constate.c, lib/gnutls_datum.c, - lib/gnutls_dh_primes.c, lib/gnutls_global.c, - lib/gnutls_handshake.c, lib/gnutls_mem.c, lib/gnutls_mem.h, - lib/gnutls_pk.c, lib/gnutls_x509.c, lib/x509_b64.c, - libextra/auth_srp.c, libextra/auth_srp_passwd.c, - libextra/crypt_bcrypt.c, libextra/crypt_srpsha1.c, - libextra/gnutls_openpgp.c, libextra/gnutls_srp.c, src/common.c: - Applied Jeff Johnson's patch which fixes type problems in 64 bit - machines. Removed the default allocation handlers, and made the - libc's functions to be defaults. Added function which sets the - memory allocation functions to be used. - -2002-05-22 Nikos Mavrogiannopoulos - - * configure.in, lib/gnutls.h.in.in, libextra/gnutls-extra.h, - libextra/gnutls_extra.h, libextra/gnutls_openpgp.c, - libextra/gnutls_openpgp.h: [no log message] - -2002-05-22 Nikos Mavrogiannopoulos - - * libextra/gnutls_openpgp.h: [no log message] - -2002-05-22 Nikos Mavrogiannopoulos - - * libextra/gnutls_openpgp.c: corrected function declaration - -2002-05-21 Nikos Mavrogiannopoulos - - * doc/README.CVS, doc/tex/Makefile.am, doc/tex/serv1.tex, - doc/tex/srp1.tex: Updated documentation for the gnutls-extra library - -2002-05-21 Nikos Mavrogiannopoulos - - * lib/auth_anon.c, lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, - lib/gnutls_cipher.c, lib/gnutls_constate.c, lib/gnutls_datum.c, - lib/gnutls_datum.h, lib/gnutls_extensions.c, - lib/gnutls_handshake.c, lib/gnutls_num.c, lib/gnutls_num.h, - lib/gnutls_record.c, lib/gnutls_session_pack.c, - lib/gnutls_v2_compat.c, lib/gnutls_x509.c, libextra/auth_srp.c: - Prefixed internal functions with _gnutls_ - -2002-05-21 Nikos Mavrogiannopoulos - - * NEWS, configure.in: [no log message] - -2002-05-21 Nikos Mavrogiannopoulos - - * configure.in: [no log message] - -2002-05-20 Timo Schulz - - * libextra/gnutls_openpgp.c, libextra/gnutls_openpgp.h: - Modifications for the new OpenCDK version and some minor fixes. - -2002-05-20 Nikos Mavrogiannopoulos - - * configure.in, doc/README.autoconf, lib/Makefile.am, - libextra/Makefile.am, libextra/libgnutls-extra-config.in, - libextra/libgnutls-extra.m4, src/crypt.c, src/tests.c: [no log - message] - -2002-05-20 Nikos Mavrogiannopoulos - - * README, doc/tex/Makefile.am, lib/Makefile.am, - libextra/Makefile.am, src/Makefile.am, src/cli.c, src/common.c, - src/serv.c, src/tls_test.c: [no log message] - -2002-05-20 Nikos Mavrogiannopoulos - - * NEWS, README, libextra/auth_srp.c, libextra/auth_srp_passwd.c, - libextra/auth_srp_sb64.c, libextra/crypt.c, - libextra/crypt_bcrypt.c, libextra/crypt_srpsha1.c, - libextra/ext_srp.c, libextra/gnutls_extra.c, - libextra/gnutls_openpgp.c, libextra/gnutls_srp.c: [no log message] - -2002-05-20 Nikos Mavrogiannopoulos - - * Makefile.am, README, configure.in: [no log message] - -2002-05-20 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/auth_srp.c, lib/auth_srp.h, - lib/auth_srp_passwd.c, lib/auth_srp_passwd.h, lib/auth_srp_sb64.c, - lib/crypt.c, lib/crypt.h, lib/crypt_bcrypt.c, lib/crypt_bcrypt.h, - lib/crypt_srpsha1.c, lib/crypt_srpsha1.h, lib/ext_srp.c, - lib/ext_srp.h, lib/gnutls-extra.h, lib/gnutls_extra.c, - lib/gnutls_extra.h, lib/gnutls_openpgp.c, lib/gnutls_openpgp.h, - lib/gnutls_srp.c, lib/gnutls_srp.h, libextra/Makefile.am, - libextra/auth_srp.c, libextra/auth_srp.h, - libextra/auth_srp_passwd.c, libextra/auth_srp_passwd.h, - libextra/auth_srp_sb64.c, libextra/crypt.c, libextra/crypt.h, - libextra/crypt_bcrypt.c, libextra/crypt_bcrypt.h, - libextra/crypt_srpsha1.c, libextra/crypt_srpsha1.h, - libextra/ext_srp.c, libextra/ext_srp.h, libextra/gnutls-extra.h, - libextra/gnutls_extra.c, libextra/gnutls_extra.h, - libextra/gnutls_openpgp.c, libextra/gnutls_openpgp.h, - libextra/gnutls_srp.c, libextra/gnutls_srp.h: Moved the gnutls-extra - files to libextra directory. - -2002-05-20 Nikos Mavrogiannopoulos - - * lib/.cvsignore: [no log message] - -2002-05-20 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am, doc/tex/funcs.tex, lib/Makefile.am: removed - html version of the documentation - -2002-05-20 Nikos Mavrogiannopoulos - - * lib/gnutls-extra.h, lib/gnutls_extra.c, lib/gnutls_extra.h, - src/cli.c, src/serv.c: [no log message] - -2002-05-20 Nikos Mavrogiannopoulos - - * NEWS, README, configure.in, doc/tex/Makefile.am, - doc/tex/funcs.tex, doc/tex/macros.tex, lib/Makefile.am, - lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, - lib/gnutls.h.in.in, lib/gnutls_algorithms.c, - lib/gnutls_algorithms.h, lib/gnutls_cert.c, - lib/gnutls_extensions.c, lib/gnutls_extensions.h, - lib/gnutls_openpgp.h, lib/gnutls_ui.h, lib/libgnutls-config.in, - src/Makefile.am, src/cli.c, src/common.c, src/serv.c, src/tests.c, - src/tls_test.c: Separated the library to gnutls and gnutls-extra. - gnutls-extra library contains the GPL parts of gnutls - -2002-05-18 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-05-18 Nikos Mavrogiannopoulos - - * README, configure.in, src/prime.c, src/tests.c: [no log message] - -2002-05-17 Nikos Mavrogiannopoulos - - * README, configure.in, lib/auth_anon.c, lib/auth_dhe.c, - lib/auth_rsa.c, lib/auth_srp.c, lib/libgnutls-config.in, - src/prime.c: Added --modules option to libgnutls-config. This option - prints the extra modules that have been enabled into the library. - -2002-05-16 Nikos Mavrogiannopoulos - - * lib/gnutls_global.c: [no log message] - -2002-05-15 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-05-14 Nikos Mavrogiannopoulos - - * configure.in: configure script now prints the library license - -2002-05-14 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2002-05-14 Nikos Mavrogiannopoulos - - * lib/gnutls_dh_primes.c: Replaced group1 prime with a prime of 1024 - bits - -2002-05-14 Nikos Mavrogiannopoulos - - * COPYING.LIB, NEWS, README, lib/auth_anon.c, lib/auth_cert.c, - lib/auth_dhe.c, lib/auth_rsa.c, lib/debug.c, lib/ext_cert_type.c, - lib/ext_max_record.c, lib/gnutls.h.in.in, lib/gnutls_alert.c, - lib/gnutls_algorithms.c, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, - lib/gnutls_buffers.c, lib/gnutls_cert.c, lib/gnutls_cipher.c, - lib/gnutls_cipher_int.c, lib/gnutls_compress.c, - lib/gnutls_compress_int.c, lib/gnutls_constate.c, - lib/gnutls_datum.c, lib/gnutls_db.c, lib/gnutls_dh_primes.c, - lib/gnutls_errors.c, lib/gnutls_extensions.c, lib/gnutls_global.c, - lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_int.h, - lib/gnutls_kx.c, lib/gnutls_mem.c, lib/gnutls_mpi.c, - lib/gnutls_num.c, lib/gnutls_pk.c, lib/gnutls_priority.c, - lib/gnutls_privkey.c, lib/gnutls_random.c, lib/gnutls_record.c, - lib/gnutls_session.c, lib/gnutls_session_pack.c, lib/gnutls_sig.c, - lib/gnutls_state.c, lib/gnutls_str.c, lib/gnutls_ui.c, - lib/gnutls_v2_compat.c, lib/gnutls_x509.c, lib/x509_asn1.c, - lib/x509_b64.c, lib/x509_der.c, lib/x509_extensions.c, - lib/x509_sig_check.c, lib/x509_verify.c: License changed to LGPL - -2002-05-14 Nikos Mavrogiannopoulos - - * lib/gnutls_dh.c: [no log message] - -2002-05-13 Nikos Mavrogiannopoulos - - * lib/gnutls_dh.c: Some cleanups in the Diffie Hellman code. - -2002-05-13 Nikos Mavrogiannopoulos - - * lib/gnutls_int.h: Added the missing user_ptr pointer in - gnutls_internals. - -2002-05-13 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2002-05-11 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-05-11 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls.h.in.in, lib/gnutls_state.c: Added - gnutls_state_set_ptr() and gnutls_state_get_ptr() functions, to - assist in callback functions. - -2002-05-11 Nikos Mavrogiannopoulos - - * lib/gnutls_ui.h: Corrected prototypes for callback selector - functions, which now accept the state. - -2002-05-11 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2002-05-10 Nikos Mavrogiannopoulos - - * lib/auth_anon.c, lib/gnutls_anon_cred.c, lib/gnutls_cert.c, - lib/gnutls_dh.c, lib/gnutls_dh_primes.c, lib/gnutls_kx.c, - lib/gnutls_openpgp.c, lib/gnutls_pk.c, lib/gnutls_privkey.c, - lib/gnutls_sig.c, lib/gnutls_srp.c, lib/x509_sig_check.c: [no log - message] - -2002-05-08 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-05-08 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/gnutls_gcry.c, lib/gnutls_gcry.h, - lib/gnutls_int.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h: renamed - gnutls_gcry* to gnutls_mpi* - -2002-05-08 Nikos Mavrogiannopoulos - - * configure.in, lib/gnutls_global.c: Updated libgcrypt - initialization stuff. Now depends on libgcrypt 1.1.7, and only - initializes libgcrypt if this has not been done before. - -2002-05-04 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-05-01 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-05-01 Nikos Mavrogiannopoulos - - * lib/auth_anon.c, lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_srp.c, - lib/auth_srp_passwd.c, lib/crypt.c, lib/crypt_bcrypt.c, - lib/crypt_srpsha1.c, lib/debug.c, lib/gnutls_auth.c, - lib/gnutls_dh.c, lib/gnutls_dh_primes.c, lib/gnutls_gcry.c, - lib/gnutls_gcry.h, lib/gnutls_openpgp.c, lib/gnutls_openpgp.h, - lib/gnutls_pk.c, lib/gnutls_privkey.c, lib/gnutls_srp.c, - lib/gnutls_x509.c, lib/x509_ASN.c, lib/x509_sig_check.c: Cleaned up - the big number support. - -2002-05-01 Nikos Mavrogiannopoulos - - * lib/gnutls_alert.h: [no log message] - -2002-04-29 Nikos Mavrogiannopoulos - - * src/common.c: [no log message] - -2002-04-29 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in: [no log message] - -2002-04-24 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-04-21 Timo Schulz - - * lib/gnutls_openpgp.c: Adjust the code for the new OpenCDK version. - -2002-04-21 Nikos Mavrogiannopoulos - - * lib/gnutls_buffers.c, lib/gnutls_cipher.c, lib/gnutls_cipher.h, - lib/gnutls_compress.c, lib/gnutls_compress.h, - lib/gnutls_compress_int.c, lib/gnutls_int.h, lib/gnutls_record.c, - lib/gnutls_srp.c, lib/gnutls_state.h: Optimized memory handling in - the record protocol. - -2002-04-21 Nikos Mavrogiannopoulos - - * lib/auth_srp.h, lib/gnutls_anon_cred.c, lib/gnutls_srp.c, - lib/gnutls_ui.c, src/cli.c, src/serv.c: Added stubs when SRP or - anonymous authentication are disabled, to preserve binary - compatibility - -2002-04-20 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-04-19 Nikos Mavrogiannopoulos - - * NEWS, doc/TODO, doc/tex/ex4.tex, lib/gnutls.h.in.in, - lib/gnutls_state.c, src/cli.c, src/serv.c: gnutls_session_resumed() - was renamed to gnutls_session_is_resumed(), and changed semantics, - to make the return value be the obvious one. - -2002-04-18 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am, doc/tex/ex4.tex, doc/tex/examples.tex: - updated documentation for the new resumption check function - -2002-04-18 Nikos Mavrogiannopoulos - - * doc/TODO, lib/gnutls.h.in.in, lib/gnutls_int.h, - lib/gnutls_privkey.c, lib/gnutls_state.c, src/cli.c, src/serv.c: - Added function to report if a session is a resumed one. See - gnutls_session_resumed(). - -2002-04-18 Timo Schulz - - * lib/gnutls_openpgp.c: Applied the fixes for the new code. - -2002-04-18 Nikos Mavrogiannopoulos - - * lib/auth_srp.c: [no log message] - -2002-04-18 Nikos Mavrogiannopoulos - - * configure.in, lib/auth_srp.c, lib/auth_srp.h, - lib/auth_srp_passwd.c, lib/ext_cert_type.c, lib/ext_cert_type.h, - lib/ext_max_record.c, lib/ext_max_record.h, lib/ext_srp.c, - lib/ext_srp.h, lib/gnutls_extensions.c, lib/gnutls_srp.c, - src/gnutls-http-serv, src/serv.c: Some minor fixes in SRP support. - Changed extension generation. Now less allocation with malloc are - done. - -2002-04-16 Nikos Mavrogiannopoulos - - * lib/gnutls_dh.c: [no log message] - -2002-04-16 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-56-bit-ciphersuites-01.txt: [no log - message] - -2002-04-14 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c: Fixed description of - gnutls_x509_extract_certificate_subject_alt_name(). - -2002-04-13 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-04-13 Timo Schulz - - * lib/gnutls_openpgp.c: Some modifications for the new OpenCDK code. - -2002-04-13 Nikos Mavrogiannopoulos - - * doc/tex/auth.tex, doc/tex/ciphersuites.tex, doc/tex/errors.tex, - doc/tex/ex1.tex, doc/tex/examples.tex, doc/tex/gnutls.tex, - doc/tex/handshake.tex, doc/tex/serv1.tex, src/crypt.c: Documentation - fixes - -2002-04-12 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2002-04-12 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2002-04-12 Nikos Mavrogiannopoulos - - * configure.in, src/Makefile.am: [no log message] - -2002-04-12 Nikos Mavrogiannopoulos - - * acconfig.h, configure.in: fixed opencdk detection problem - -2002-04-12 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c, lib/gnutls_x509.h: better doc (internal) for - _gnutls_int2str() - -2002-04-10 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2002-04-10 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2002-04-10 Nikos Mavrogiannopoulos - - * doc/tex/serv1.tex, lib/gnutls.h.in.in, lib/gnutls_state.c: [no log - message] - -2002-04-10 Nikos Mavrogiannopoulos - - * NEWS, lib/auth_rsa.c, lib/gnutls_int.h, lib/gnutls_state.c: Added - function which disables the version check in the RSA premaster - secret -only needed in server side - -2002-04-10 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-04-09 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2002-04-08 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/Makefile.am, doc/tex/asn1.tex, - doc/tex/cover.tex.in, doc/tex/funcs.tex, doc/tex/gnutls.tex, - lib/Makefile.am: separated asn1 parser library and tls library - documentation - -2002-04-08 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-04-08 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_pk.c: changes for 0.4.1 - -2002-04-06 Nikos Mavrogiannopoulos - - * lib/gnutls_errors.h: [no log message] - -2002-04-06 Nikos Mavrogiannopoulos - - * lib/x509_verify.c: fixed case where a certificate could be both - invalid and trusted. - -2002-04-06 Nikos Mavrogiannopoulos - - * configure.in: [no log message] - -2002-04-06 Nikos Mavrogiannopoulos - - * Makefile.am, opencdk.m4: [no log message] - -2002-04-05 Nikos Mavrogiannopoulos - - * Makefile.am: [no log message] - -2002-04-05 Nikos Mavrogiannopoulos - - * acinclude.m4, buildconf, libgcrypt.m4, libmcrypt.m4, opencdk.m4: - m4 files were removed from acinclude.m4 - -2002-04-05 Nikos Mavrogiannopoulos - - * acinclude.m4, configure.in: added detection of opencdk - -2002-04-05 Nikos Mavrogiannopoulos - - * doc/README.autoconf: [no log message] - -2002-04-04 Nikos Mavrogiannopoulos - - * ChangeLog, NEWS, configure.in: [no log message] - -2002-04-04 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c, lib/gnutls_x509.h, lib/x509_verify.c, - lib/x509_verify.h: Improved X.509 time convertion functions - -2002-04-04 Nikos Mavrogiannopoulos - - * lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_x509.c: - GNUTLS_E_UNIX_TIME_LIMIT_REACHED error code was removed - -2002-04-04 Nikos Mavrogiannopoulos - - * doc/tex/ciphers.tex, doc/tex/handshake.tex, - doc/tex/translayer.tex: [no log message] - -2002-04-04 Nikos Mavrogiannopoulos - - * lib/x509_verify.c: Added kludge in order to work with dates over - 2036 - -2002-04-04 Nikos Mavrogiannopoulos - - * doc/tex/ex3.tex: [no log message] - -2002-04-04 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/gnutls_cert.c, lib/gnutls_int.h, - lib/gnutls_int_compat.c, lib/gnutls_openpgp.c, lib/gnutls_ui.h, - lib/gnutls_x509.c, lib/gnutls_x509.h, lib/x509_verify.c, - src/common.c: GNUTLS_CERT_EXPIRED is no longer returned by - verification functions. Added functions to check the expiration and - activation date of peer's certificate. See - gnutls_certificate_expiration_time_peers(). - -2002-04-04 Nikos Mavrogiannopoulos - - * ChangeLog, configure.in, lib/defines.h, lib/x509_verify.c: - Replaced mktime() with mktime_utc(). This corrects a bug with the - localtime returned by mktime(). - -2002-04-03 Nikos Mavrogiannopoulos - - * NEWS, configure.in, lib/auth_cert.c, lib/defines.h, - lib/gnutls_algorithms.c, lib/gnutls_buffers.c, - lib/gnutls_handshake.c, lib/gnutls_mem.h, lib/gnutls_x509.c, - lib/x509_asn1.c, lib/x509_der.c: merged changes from - gnutls_0_4_with_alloca. - -2002-04-03 Nikos Mavrogiannopoulos - - * lib/gnutls_cert.h: [no log message] - -2002-04-03 Nikos Mavrogiannopoulos - - * doc/TODO, lib/gnutls_cert.h, lib/gnutls_pk.c: Optimized RSA - signature calculation - -2002-04-02 Nikos Mavrogiannopoulos - - * lib/auth_rsa.c, lib/gnutls_int.h: [no log message] - -2002-04-01 Nikos Mavrogiannopoulos - - * lib/auth_rsa.c: [no log message] - -2002-04-01 Nikos Mavrogiannopoulos - - * ChangeLog, NEWS, configure.in, doc/TODO: [no log message] - -2002-03-31 Nikos Mavrogiannopoulos - - * lib/gnutls_cipher.c, lib/gnutls_pk.c: [no log message] - -2002-03-31 Nikos Mavrogiannopoulos - - * lib/auth_cert.c, lib/gnutls_errors.c, lib/gnutls_errors.h, - lib/gnutls_gcry.c, lib/gnutls_global.c, lib/gnutls_pk.c, - lib/gnutls_privkey.c, lib/gnutls_x509.c, lib/x509_asn1.h, - lib/x509_extensions.c, lib/x509_sig_check.c, lib/x509_verify.c: - Error codes of ASN.1 parser are now independent, with a map to - gnutls' error codes. - -2002-03-31 Nikos Mavrogiannopoulos - - * lib/gnutls_cipher.c: cleanups - -2002-03-30 Nikos Mavrogiannopoulos - - * lib/gnutls_openpgp.c: Added the text for - gnutls_openpgp_extract_key_pk_algorithm. - -2002-03-30 Nikos Mavrogiannopoulos - - * ChangeLog, doc/tex/ex1.tex, doc/tex/ex2.tex, doc/tex/ex3.tex, - doc/tex/serv1.tex, lib/gnutls.h.in.in, lib/gnutls_x509.c, - src/cli.c, src/serv.c: Removed the CRL list parameter from - gnutls_certificate_set_x509_trust_*. - -2002-03-30 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c: gnutls_certificate_set_x509_trust_*() now - accept single DER certificates or PEM certificate lists. - -2002-03-29 Nikos Mavrogiannopoulos - - * lib/auth_cert.c: [no log message] - -2002-03-29 Nikos Mavrogiannopoulos - - * lib/auth_cert.c, lib/crypt_srpsha1.c, lib/gnutls_x509.c: Added - ability to read DSA DER formatted keys, and corrected bugs in DER - certificate reading. - -2002-03-29 Nikos Mavrogiannopoulos - - * lib/gnutls_db.c: [no log message] - -2002-03-29 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c, lib/gnutls_cipher.c, - lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, - lib/gnutls_compress.c, lib/gnutls_compress_int.c, - lib/gnutls_compress_int.h, lib/gnutls_constate.c, - lib/gnutls_handshake.c, lib/gnutls_hash_int.c, - lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_kx.c, - lib/gnutls_sig.c, lib/gnutls_srp.c, lib/gnutls_state.c, - lib/gnutls_ui.c, lib/x509_sig_check.c: Prefixed with underscore - several internal functions. - -2002-03-29 Nikos Mavrogiannopoulos - - * src/cli.c: [no log message] - -2002-03-29 Nikos Mavrogiannopoulos - - * lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, - lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, - lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_global.c, - lib/gnutls_x509.c: removed unneeded functions - -2002-03-29 Nikos Mavrogiannopoulos - - * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa: added crlf - option - -2002-03-29 Nikos Mavrogiannopoulos - - * ChangeLog, doc/TODO, lib/auth_rsa.c, lib/gnutls_int.h, - lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_sig.c, lib/x509_der.c, - lib/x509_sig_check.c, src/cli.c, src/serv-gaa.c, src/serv-gaa.h, - src/serv.gaa: Some cleanups in the certificate authentication. - Parameters are passed together with the length, to avoid abuse. - -2002-03-28 Nikos Mavrogiannopoulos - - * lib/gnutls_pk.c: [no log message] - -2002-03-28 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2002-03-28 Nikos Mavrogiannopoulos - - * NEWS, doc/TODO: [no log message] - -2002-03-28 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c, lib/x509_b64.c: Cleaned up the return values of - several functions. - -2002-03-28 Nikos Mavrogiannopoulos - - * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, - src/serv-gaa.c, src/serv-gaa.h, src/serv.c, src/serv.gaa: added - option to read DER encoded certificates - -2002-03-28 Nikos Mavrogiannopoulos - - * lib/auth_rsa.c, lib/gnutls_cert.h, lib/gnutls_pk.c, - lib/gnutls_privkey.c: Optimized RSA decryption. (Very) Much faster - now - -2002-03-28 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c: read PKCS7 certificate chains in the reverse - order. - -2002-03-28 Nikos Mavrogiannopoulos - - * lib/gnutls_compress_int.c: [no log message] - -2002-03-28 Nikos Mavrogiannopoulos - - * lib/gnutls_ui.h: [no log message] - -2002-03-26 Fabio Fiorina - - * lib/x509_asn1.c, lib/x509_asn1.h: add asn1_number_of_elements - function - -2002-03-26 Fabio Fiorina - - * lib/x509_der.c: fix bug in asn1_get_start_end_der function - -2002-03-26 Nikos Mavrogiannopoulos - - * NEWS, src/common.c: [no log message] - -2002-03-26 Nikos Mavrogiannopoulos - - * src/common.c: [no log message] - -2002-03-26 Nikos Mavrogiannopoulos - - * ChangeLog, doc/tex/ex3.tex: [no log message] - -2002-03-26 Nikos Mavrogiannopoulos - - * ChangeLog, lib/gnutls_x509.c, src/common.c: changed semantics of - gnutls_x509_extract_certificate_pk_algorithm() - -2002-03-26 Nikos Mavrogiannopoulos - - * lib/gnutls_openpgp.c: [no log message] - -2002-03-26 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, - lib/gnutls_buffers.c, lib/gnutls_global.c, lib/gnutls_record.c: - Several optimizations - -2002-03-26 Timo Schulz - - * lib/gnutls_openpgp.c: Now the pk algorithm is returned and not - only the key size in bits. - -2002-03-26 Nikos Mavrogiannopoulos - - * lib/gnutls_int.h, lib/gnutls_pk.h, lib/gnutls_x509.c: [no log - message] - -2002-03-26 Timo Schulz - - * lib/gnutls_openpgp.c, lib/gnutls_openpgp.h: Function which is used - to extract key parameters for openpgp keys. - -2002-03-26 Nikos Mavrogiannopoulos - - * NEWS, doc/TODO, lib/gnutls.h.in.in, lib/gnutls_errors.c, - lib/gnutls_errors_int.h, lib/gnutls_pk.h, lib/gnutls_ui.h, - lib/gnutls_x509.c, src/common.c, src/gnutls-http-serv, src/serv.c: - added gnutls_x509_extract_certificate_pk_algorithm() - -2002-03-25 Nikos Mavrogiannopoulos - - * doc/tex/ex1.tex, doc/tex/ex2.tex, lib/gnutls.h.in.in, - lib/gnutls_int.h, lib/gnutls_x509.c, src/cli-gaa.c, src/cli.c, - src/cli.gaa, src/serv-gaa.c, src/serv.c, src/serv.gaa: Improved - PKCS7 support - -2002-03-24 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/gnutls_x509.c: Added function which reads - the DER encoded certificate and key. (now only works for RSA keys) - -2002-03-24 Nikos Mavrogiannopoulos - - * configure.in: [no log message] - -2002-03-24 Nikos Mavrogiannopoulos - - * NEWS, lib/Makefile.am, lib/auth_cert.c, lib/gnutls_global.c, - lib/gnutls_hash_int.c, lib/gnutls_random.c, lib/gnutls_ui.h, - lib/gnutls_x509.c, lib/pkix.asn, lib/pkix_asn1_tab.c, - lib/x509_asn1.c, lib/x509_extensions.c, lib/x509_sig_check.c, - lib/x509_verify.c, src/gnutls-http-serv, src/serv.c: Added support - for RFC2630 - PKCS7 formated structures - -2002-03-23 Nikos Mavrogiannopoulos - - * ChangeLog: [no log message] - -2002-03-23 Nikos Mavrogiannopoulos - - * lib/gnutls_openpgp.c: [no log message] - -2002-03-23 Nikos Mavrogiannopoulos - - * lib/auth_cert.c: more cleanups - -2002-03-23 Nikos Mavrogiannopoulos - - * ChangeLog, NEWS, configure.in, lib/auth_cert.c: [no log message] - -2002-03-23 Nikos Mavrogiannopoulos - - * lib/auth_cert.c: Cleanups and fixes in X.509 certificate message - parsing - -2002-03-23 Nikos Mavrogiannopoulos - - * src/cli-gaa.c, src/common.h, src/serv-gaa.c, src/serv.c, - src/tls_test-gaa.c: [no log message] - -2002-03-22 Nikos Mavrogiannopoulos - - * lib/gnutls_openpgp.c: [no log message] - -2002-03-22 Nikos Mavrogiannopoulos - - * lib/gnutls_buffers.c: Corrected code to avoid compiler's warnings - -2002-03-21 Nikos Mavrogiannopoulos - - * configure.in: [no log message] - -2002-03-21 Nikos Mavrogiannopoulos - - * ChangeLog, acconfig.h, configure.in, lib/auth_anon.c, - lib/auth_srp.c, lib/auth_srp.h, lib/auth_srp_passwd.c, - lib/auth_srp_passwd.h, lib/auth_srp_sb64.c, lib/crypt.c, - lib/crypt_bcrypt.c, lib/crypt_srpsha1.c, lib/ext_srp.c, - lib/ext_srp.h, lib/gnutls_algorithms.c, lib/gnutls_anon_cred.c, - lib/gnutls_auth.c, lib/gnutls_extensions.c, - lib/gnutls_session_pack.c, lib/gnutls_srp.c, lib/gnutls_srp.h, - lib/gnutls_ui.c, src/serv.c: Added hooks not to include SRP and - Anonymous authentication - -2002-03-21 Nikos Mavrogiannopoulos - - * lib/gnutls_cert.c, lib/gnutls_x509.c: Corrected behaviour when no - certificate is got by the peer. - -2002-03-21 Nikos Mavrogiannopoulos - - * src/Makefile.am, src/gnutls-http-serv: Added script which runs an - http server with the appropriate parameters. - -2002-03-21 Nikos Mavrogiannopoulos - - * ChangeLog, NEWS, lib/gnutls_record.c, lib/gnutls_state.c: CBC - protection support is disabled by default. - -2002-03-21 Nikos Mavrogiannopoulos - - * ChangeLog, NEWS: [no log message] - -2002-03-20 Nikos Mavrogiannopoulos - - * lib/gnutls_constate.c: [no log message] - -2002-03-20 Nikos Mavrogiannopoulos - - * lib/gnutls_constate.c: [no log message] - -2002-03-20 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c, lib/gnutls_cipher.c, - lib/gnutls_compress_int.c, lib/gnutls_compress_int.h, - lib/gnutls_constate.c: Optimizations and fixes in compression - -2002-03-20 Nikos Mavrogiannopoulos - - * lib/auth_srp_passwd.c, lib/gnutls_cipher.c, lib/gnutls_x509.c: [no - log message] - -2002-03-20 Nikos Mavrogiannopoulos - - * lib/auth_cert.c, lib/gnutls_cipher.c, lib/gnutls_compress.c, - lib/gnutls_compress_int.c, lib/gnutls_compress_int.h, - lib/gnutls_constate.c, lib/gnutls_int.h, lib/gnutls_state.c, - lib/x509_ASN.c, lib/x509_ASN.y, lib/x509_asn1.c: Improved - compression support. Corrected several bugs in empty fragment - sending and receiving. - -2002-03-19 Fabio Fiorina - - * lib/x509_asn1.c: segmentation fault bug fix - -2002-03-18 Timo Schulz - - * lib/gnutls_openpgp.c: New OpenCDK interface for secure memory. - -2002-03-18 Timo Schulz - - * lib/gnutls_errors_int.h, lib/gnutls_openpgp.c: Detection of - revoked OpenPGP userID's. - -2002-03-18 Nikos Mavrogiannopoulos - - * src/common.c: [no log message] - -2002-03-18 Nikos Mavrogiannopoulos - - * lib/gnutls_ui.h: added missing prototypes - -2002-03-18 Timo Schulz - - * lib/gnutls_openpgp.c, lib/gnutls_openpgp.h: Support for multiple - userID's. - -2002-03-18 Nikos Mavrogiannopoulos - - * lib/gnutls_srp.c: [no log message] - -2002-03-18 Nikos Mavrogiannopoulos - - * src/cli.c, src/serv.c: removed default parameters arguments - -2002-03-17 Nikos Mavrogiannopoulos - - * ChangeLog, THANKS, acconfig.h, configure.in, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_mem.c, - lib/gnutls_mem.h, src/cli.c: Added hooks for electric fence - -2002-03-17 Nikos Mavrogiannopoulos - - * doc/README.CVS, src/Makefile.am: [no log message] - -2002-03-17 Nikos Mavrogiannopoulos - - * lib/x509_verify.c: Checking of certificate lists even if the CA - size is zero. Pointed out by Andrew McDonald - -2002-03-17 Nikos Mavrogiannopoulos - - * doc/README.CVS: [no log message] - -2002-03-13 Timo Schulz - - * lib/gnutls_openpgp.c: Improved code for the various keyrings and - support for armored keyring files. - -2002-03-12 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in: [no log message] - -2002-03-12 Nikos Mavrogiannopoulos - - * ChangeLog, NEWS, acconfig.h, configure.in, lib/gnutls_int.h, - lib/gnutls_record.c, lib/gnutls_state.c: made CBC chosen plaintext - protection configurable - -2002-03-12 Nikos Mavrogiannopoulos - - * configure.in: [no log message] - -2002-03-11 Nikos Mavrogiannopoulos - - * lib/gnutls_ui.h: [no log message] - -2002-03-11 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c: [no log message] - -2002-03-11 Timo Schulz - - * lib/gnutls_openpgp.c: Added missing stub for one function. - -2002-03-10 Timo Schulz - - * lib/gnutls_openpgp.c: New error codes. - -2002-03-10 Nikos Mavrogiannopoulos - - * ChangeLog, lib/gnutls_constate.c, lib/gnutls_errors.c, - lib/gnutls_errors_int.h, lib/gnutls_handshake.c, lib/gnutls_pk.c, - lib/gnutls_privkey.c, lib/gnutls_record.c, lib/gnutls_sig.c, - lib/gnutls_state.c, lib/gnutls_x509.c, lib/x509_asn1.h: some error - codes were renamed to more appropriate names - -2002-03-09 Timo Schulz - - * lib/gnutls_openpgp.c, lib/x509_ASN.c: Patches for the new OpenCDK - version and some stricter checks for memory leaks. - -2002-03-09 Nikos Mavrogiannopoulos - - * ChangeLog, NEWS, doc/tex/ex3.tex, lib/gnutls.h.in.in, - lib/gnutls_algorithms.c, lib/gnutls_cert.c, lib/gnutls_constate.c, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, - lib/gnutls_record.c, lib/gnutls_state.c, lib/gnutls_state.h, - lib/x509_verify.c, src/common.c: removed GNUTLS_CERT_TRUSTED - enumeration - -2002-03-08 Nikos Mavrogiannopoulos - - * lib/gnutls_state.c: [no log message] - -2002-03-08 Nikos Mavrogiannopoulos - - * lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_record.c: - Added protection against denial of service attacks, while receiving - empty packets. - -2002-03-08 Nikos Mavrogiannopoulos - - * lib/gnutls_buffers.c: [no log message] - -2002-03-08 Nikos Mavrogiannopoulos - - * lib/gnutls_buffers.c: corrected memory leak - -2002-03-08 Nikos Mavrogiannopoulos - - * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cipher.c, - lib/gnutls_cipher.h, lib/gnutls_openpgp.c, lib/gnutls_record.c, - lib/gnutls_state.h: Added protection against the newly discovered - CBC attacks against TLS. Experimental code. - -2002-03-08 Nikos Mavrogiannopoulos - - * src/CertificateExample.c, src/CrlExample.c, src/asn1c.c: [no log - message] - -2002-03-08 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c: Added references to internet drafts. - Added DHE_DSS with ARCFOUR from 56 bit draft. - -2002-03-06 Nikos Mavrogiannopoulos - - * configure.in, doc/README.autoconf, doc/TODO, doc/tex/alert.tex, - doc/tex/asn1.tex, doc/tex/examples.tex, doc/tex/handshake.tex, - doc/tex/record.tex: [no log message] - -2002-03-06 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-extensions-02.txt, - doc/protocol/draft-ietf-tls-extensions-03.txt: Added new draft - -2002-03-06 Nikos Mavrogiannopoulos - - * NEWS, lib/Makefile.am, lib/auth_cert.c, lib/gnutls_alert.c, - lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_gcry.c, - lib/gnutls_global.c, lib/gnutls_pk.c, lib/gnutls_privkey.c, - lib/gnutls_x509.c, lib/x509_ASN.c, lib/x509_ASN.y, lib/x509_asn1.h, - lib/x509_extensions.c, lib/x509_sig_check.c, lib/x509_verify.c: - Combined error codes of gnutls and ASN.1 parser. Also several - cleanups in the X.509 code. - -2002-03-06 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am, doc/tex/asn1.tex, doc/tex/ciphers.tex, - doc/tex/ciphersuites.tex, doc/tex/examples.tex, doc/tex/funcs.tex, - doc/tex/gnutls.tex, doc/tex/handshake.tex, doc/tex/record.tex, - doc/tex/translayer.tex: [no log message] - -2002-03-06 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am, doc/tex/alert.tex, doc/tex/gnutls.tex, - doc/tex/translayer.tex: Added alert protocol section - -2002-03-05 Nikos Mavrogiannopoulos - - * lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_x509.c, - lib/x509_ASN.c, lib/x509_asn1.c, lib/x509_der.c, lib/x509_verify.c: - Added the error UNIX_TIME_LIMIT_EXCEEDED, and corrected bugs in - X.509 certificate parsing. - -2002-03-04 Nikos Mavrogiannopoulos - - * doc/tex/errors.tex, lib/gnutls.h.in.in: updated - -2002-03-04 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am, doc/tex/auth.tex, doc/tex/ciphersuites.tex, - doc/tex/gnutls.tex, doc/tex/handshake.tex, doc/tex/layers.tex, - doc/tex/macros.tex, doc/tex/resumedb.tex, doc/tex/translayer.tex: - updated documentation - -2002-03-04 Nikos Mavrogiannopoulos - - * ChangeLog, configure.in, doc/scripts/gdoc, lib/gnutls_cert.c, - lib/gnutls_handshake.c, lib/x509_ASN.y, lib/x509_asn1.c, - lib/x509_der.c: changes for pretty documentation and cleanups. - -2002-03-03 Nikos Mavrogiannopoulos - - * lib/gnutls_state.c: pgp_fingerprint indicator is not cleared. - -2002-03-03 Nikos Mavrogiannopoulos - - * src/tls_test.c: [no log message] - -2002-03-03 Nikos Mavrogiannopoulos - - * src/tls_test.c: last minute changes for 0.3.91 release - -2002-03-03 Nikos Mavrogiannopoulos - - * ChangeLog, NEWS, configure.in, lib/auth_anon.c, lib/auth_cert.c, - lib/auth_dhe.c, lib/auth_srp.c, lib/gnutls_auth.c, - lib/gnutls_auth_int.h, lib/gnutls_errors.c, src/cli.c: Added checks - in authentication type renegotiation procedure. - -2002-03-03 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2002-03-03 Nikos Mavrogiannopoulos - - * lib/auth_cert.c, lib/gnutls_auth.c, lib/gnutls_handshake.c, - lib/gnutls_int.h, lib/gnutls_state.c, lib/gnutls_state.h: Changed - behaviour in rehandshake procedure. Now can use rehandshake with a - different authentication method (ie. perform anonymous - authentication, and after that perform a certificate authentication, - or srp). - -2002-03-01 Nikos Mavrogiannopoulos - - * lib/gnutls_mem.h, lib/gnutls_x509.c: corrected certificate type - checking. - -2002-03-01 Nikos Mavrogiannopoulos - - * src/Makefile.am, src/cli-gaa.c, src/cli-gaa.h, src/cli.c, - src/cli.gaa, src/common.h, src/crypt.c, src/serv-gaa.c, - src/serv-gaa.h, src/serv.c, src/serv.gaa, src/tls_test-gaa.c, - src/tls_test.gaa: Updated cli and server to read certificate and - keys from command line parameters. client, client-debug and server - are now being installed. - -2002-03-01 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_priority.c: - Cleanups in gnutls_handshake.c and gnutls_algorithms.c. Now cipher - suites get associated with a protocol version. This will allow - disabling several ciphersuites which are only defined in TLS 1.0, - when using SSL 3.0. - -2002-03-01 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c: No extensions are now sent if SSL 3.0 is - the only protocol advertized. - -2002-02-28 Nikos Mavrogiannopoulos - - * lib/gnutls_session.c: added a check in the given parameters for - null - -2002-02-28 Nikos Mavrogiannopoulos - - * src/tests.c, src/tests.h, src/tls_test.c: added session resumption - test - -2002-02-28 Timo Schulz - - * lib/gnutls_openpgp.c: Changed the interface for the new OpenCDK - version. - -2002-02-28 Nikos Mavrogiannopoulos - - * src/cli-gaa.c, src/cli.c, src/cli.gaa, src/serv-gaa.c, - src/tls_test-gaa.c, src/tls_test-gaa.h, src/tls_test.c, - src/tls_test.gaa: updated gaa files, and client options. - -2002-02-28 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/gnutls_state.c, lib/gnutls_state.h, - src/tests.c: gnutls_record_set_default_version() was prefixed with - underscore, and it is no longer exported. - -2002-02-28 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/gnutls_db.c, lib/gnutls_int.h, - lib/gnutls_session_pack.c, lib/gnutls_state.c: Corrected session - resuming in certificate authentication. gnutls_deinit, does not - remove the session entry any more if it is invalid. Added - gnutls_db_remove_session() function, which does this. - -2002-02-28 Nikos Mavrogiannopoulos - - * src/tls_test-gaa.c, src/tls_test-gaa.h, src/tls_test.gaa: added - missing files - -2002-02-27 Nikos Mavrogiannopoulos - - * lib/gnutls_mem.c: removed cycle from gnutls_free and - gnutls_secure_free. - -2002-02-27 Nikos Mavrogiannopoulos - - * NEWS, src/tests.c, src/tests.h, src/tls_test.c: added check for - TLS closure alerts - -2002-02-27 Nikos Mavrogiannopoulos - - * src/tests.c, src/tests.h, src/tls_test.c: added openpgp - authentication test, and unknown cipher suites test - -2002-02-27 Nikos Mavrogiannopoulos - - * lib/ext_srp.c: Now we do not send the srp username as an - extension, if SRP is disabled. - -2002-02-27 Nikos Mavrogiannopoulos - - * src/cli.c, src/tests.c, src/tests.h, src/tls_test.c: added check - for client hello extensions. - -2002-02-27 Nikos Mavrogiannopoulos - - * src/Makefile.am, src/cli.c, src/tests.c, src/tests.h, - src/tls_test.c: Added tls_test. This is program that can be used to - test TLS servers' parameters. - -2002-02-27 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/gnutls_errors.c, lib/gnutls_handshake.c, - lib/gnutls_int.h, lib/gnutls_state.c: Added - gnutls_record_set_default_version(). This is a low level function. - -2002-02-27 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in: SOCKET_PTR was removed - -2002-02-27 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in: corrected record_send() prototype - -2002-02-26 Nikos Mavrogiannopoulos - - * configure.in: updated for fcdump - -2002-02-25 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2002-02-25 Nikos Mavrogiannopoulos - - * lib/gnutls_pk.c: added (an impossible situation) check - -2002-02-25 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c: [no log message] - -2002-02-24 Timo Schulz - - * lib/gnutls_openpgp.c: Fixed a possible buffer overflow. - -2002-02-24 Nikos Mavrogiannopoulos - - * src/openpgp/Makefile.am: added missing makefile.am - -2002-02-24 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am, doc/tex/serv1.tex, lib/auth_anon.c, - lib/auth_anon.h, lib/auth_cert.h, lib/auth_dhe.c, - lib/auth_srp_passwd.c, lib/gnutls.h.in.in, lib/gnutls_anon_cred.c, - lib/gnutls_cert.c, lib/gnutls_dh.h, lib/gnutls_dh_primes.c, - lib/gnutls_int.h, lib/gnutls_ui.c, src/cli.c, src/serv.c: The Diffie - Hellman parameters are now stored in the credentials structures. - This will allow precomputation of signatures (for DHE cipher - suites). - -2002-02-24 Nikos Mavrogiannopoulos - - * ChangeLog, NEWS, configure.in, lib/gnutls_int.h, lib/gnutls_ui.h, - lib/x509_verify.c, src/cli.c: [no log message] - -2002-02-24 Nikos Mavrogiannopoulos - - * src/cli.c, src/common.c, src/serv.c: [no log message] - -2002-02-24 Nikos Mavrogiannopoulos - - * doc/tex/auth.tex, doc/tex/ciphers.tex, doc/tex/ciphersuites.tex, - doc/tex/errors.tex, doc/tex/ex3.tex, doc/tex/gnutls.tex, - doc/tex/resumedb.tex: [no log message] - -2002-02-24 Nikos Mavrogiannopoulos - - * lib/gnutls_openpgp.c: [no log message] - -2002-02-24 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/gnutls_cert.c, lib/gnutls_handshake.c, - lib/gnutls_int.h, lib/gnutls_openpgp.c, lib/gnutls_record.c, - lib/gnutls_x509.c, lib/x509_sig_check.c, lib/x509_verify.c: removed - GNUTLS_CERT_NONE (replaced by GNUTLS_E_NO_CERTIFICATE_FOUND). - removed GNUTLS_CERT_VALID (it's valid if it's not invalid) - -2002-02-23 Timo Schulz - - * lib/gnutls_openpgp.c, lib/gnutls_openpgp.h: Bug fixes for - _verify_key and basic trust handling for keys. - -2002-02-23 Nikos Mavrogiannopoulos - - * lib/auth_cert.c, lib/debug.c: [no log message] - -2002-02-23 Nikos Mavrogiannopoulos - - * lib/x509_verify.c: [no log message] - -2002-02-22 Nikos Mavrogiannopoulos - - * lib/x509_verify.c: [no log message] - -2002-02-22 Nikos Mavrogiannopoulos - - * lib/gnutls_openpgp.c: includes moved before #ifdef - -2002-02-22 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c: [no log message] - -2002-02-22 Timo Schulz - - * lib/gnutls_openpgp.c: Added stubs for the case we don't have - OpenCDK support. - -2002-02-22 Nikos Mavrogiannopoulos - - * doc/tex/ex3.tex, lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, - lib/gnutls.h.in.in, lib/gnutls_cert.c, lib/gnutls_x509.c, - lib/x509_sig_check.c, lib/x509_verify.c, src/common.c, src/serv.c: - Changed certificate verification functions. - -2002-02-22 Nikos Mavrogiannopoulos - - * lib/gnutls_int.h: [no log message] - -2002-02-22 Timo Schulz - - * lib/gnutls_openpgp.c, lib/gnutls_openpgp.h: Implemented - gnutls_certificate_set_openpgp_key_mem. Some basic routines for key - ownertrust. - -2002-02-22 Nikos Mavrogiannopoulos - - * lib/auth_cert.h, lib/gnutls.h.in.in, lib/gnutls_cert.c: added - trustdb stuff - -2002-02-22 Timo Schulz - - * lib/gnutls_openpgp.c: Modified code for the new OpenCDK code. - -2002-02-22 Nikos Mavrogiannopoulos - - * lib/gnutls_record.c: [no log message] - -2002-02-22 Nikos Mavrogiannopoulos - - * lib/gnutls_errors.c: [no log message] - -2002-02-22 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c: moved private cipher suites to 0xFF - space. - -2002-02-22 Nikos Mavrogiannopoulos - - * ChangeLog, doc/tex/ex1.tex, doc/tex/ex2.tex, doc/tex/layers.tex, - doc/tex/serv1.tex, doc/tex/srp1.tex, lib/gnutls.h.in.in, - lib/gnutls_alert.c, lib/gnutls_alert.h, lib/gnutls_algorithms.c, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, - lib/gnutls_record.c, src/cli.c, src/serv.c: Several alert protocol - changes. - -2002-02-21 Timo Schulz - - * lib/gnutls_openpgp.c: Fixed return code check for GnuTLS - functions. - -2002-02-21 Nikos Mavrogiannopoulos - - * lib/gnutls_alert.c: [no log message] - -2002-02-21 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/gnutls_openpgp.c: set_key_server renamed - to set_keyserver - -2002-02-21 Nikos Mavrogiannopoulos - - * ChangeLog, NEWS, doc/tex/ex1.tex, doc/tex/serv1.tex, lib/debug.c, - lib/debug.h, lib/gnutls.h.in.in, lib/gnutls_alert.c, src/cli.c: - Added gnutls_alert_str (allows printing alert number descriptions) - -2002-02-21 Timo Schulz - - * lib/gnutls_openpgp.c: Fixed a segfault in the OpenPGP code. - -2002-02-21 Nikos Mavrogiannopoulos - - * lib/auth_cert.c: Updated the openpgp certificate message, - fingerprint handling. - -2002-02-21 Nikos Mavrogiannopoulos - - * src/cli-gaa.c, src/cli-gaa.h, src/cli.gaa, src/common.c, - src/common.h, src/serv-gaa.c, src/serv-gaa.h, src/serv.gaa: [no log - message] - -2002-02-20 Nikos Mavrogiannopoulos - - * lib/x509_verify.c: some fixes in verification procedure - -2002-02-19 Timo Schulz - - * lib/.cvsignore, lib/gnutls_cert.h, lib/gnutls_errors_int.h, - lib/gnutls_openpgp.c, lib/gnutls_openpgp.h: Applied the patches to - fix the GDOC problem. Some bug fixes all over the place and the - implementation of some function stubs. - -2002-02-19 Nikos Mavrogiannopoulos - - * doc/tex/ex3.tex, lib/gnutls.h.in.in, lib/gnutls_cert.c, - lib/gnutls_int.h, lib/gnutls_x509.c, lib/x509_sig_check.c, - src/common.c: removed CERT_CORRUPTED - -2002-02-19 Nikos Mavrogiannopoulos - - * lib/auth_cert.c: openpgp fingerprint is calculated dynamically. - -2002-02-18 Nikos Mavrogiannopoulos - - * lib/auth_cert.c, lib/auth_cert.h, lib/gnutls.h.in.in: Added some - support the OpenPGP Certificate message, with key fingerprints. - -2002-02-18 Nikos Mavrogiannopoulos - - * ChangeLog, lib/auth_cert.c, lib/gnutls.h.in.in, lib/gnutls_int.h, - lib/gnutls_state.c, lib/gnutls_state.h, src/cli-gaa.c, - src/cli-gaa.h, src/cli.c, src/cli.gaa, src/common.c: Added some - stuff for the client to send the OpenPGP fingerprint. - -2002-02-18 Nikos Mavrogiannopoulos - - * doc/tex/cover.tex.in: [no log message] - -2002-02-17 Nikos Mavrogiannopoulos - - * lib/auth_rsa.c, lib/gnutls_pk.c: Corrected bug in RSA - authentication, responsible for random (very very rare, and - difficult to reproduce) failures. - -2002-02-17 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c, lib/x509_verify.c: [no log message] - -2002-02-17 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c, lib/x509_verify.c: Improved X.509 verification - functions. They are still too primitive. - -2002-02-17 Nikos Mavrogiannopoulos - - * lib/auth_rsa.c, lib/gnutls_dh.c: [no log message] - -2002-02-16 Nikos Mavrogiannopoulos - - * lib/auth_rsa.c: Some cleanups. - -2002-02-16 Nikos Mavrogiannopoulos - - * doc/tex/auth.tex, doc/tex/ciphersuites.tex, doc/tex/layers.tex: - [no log message] - -2002-02-15 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am, doc/tex/errors.tex, doc/tex/ex1.tex, - doc/tex/ex2.tex, doc/tex/layers.tex, doc/tex/serv1.tex, - doc/tex/srp1.tex, lib/gnutls.h.in.in, lib/gnutls_record.c, - src/cli.c, src/serv.c: [no log message] - -2002-02-15 Timo Schulz - - * lib/gnutls_openpgp.c: Fixed some memory leaks. Code to handle - ElGamal keys. Some minor bug fixes. - -2002-02-15 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/gnutls_record.c: renamed gnutls_read to - gnutls_record_read and gnutls_write to gnutls_record_write. - -2002-02-15 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am, doc/tex/ciphersuites.tex, - doc/tex/cover.tex.in, doc/tex/errors.tex, doc/tex/ex1.tex, - doc/tex/ex2.tex, doc/tex/gnutls.tex, doc/tex/layers.ps, - doc/tex/layers.tex, doc/tex/serv1.tex, doc/tex/srp1.tex: Added TLS - Layers section. - -2002-02-15 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2002-02-15 Nikos Mavrogiannopoulos - - * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, - src/serv-gaa.c, src/serv.gaa: updated client and server - -2002-02-15 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-openpgp-keys-00.txt: removed - -2002-02-15 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/gnutls_extensions.c, - lib/gnutls_extensions.h, lib/gnutls_record.c: Extension types now - use a 16 bit type field (following the current draft). Some fixes - in the max record size extension. - -2002-02-15 Nikos Mavrogiannopoulos - - * NEWS, doc/protocol/draft-ietf-tls-openpgp-keys-01.txt, - doc/tex/serv1.tex: [no log message] - -2002-02-14 Timo Schulz - - * lib/gnutls_openpgp.c, lib/gnutls_openpgp.h: Basic HKP keyserver - support. Function to retrieve the key from the keyring by keyid, - fingerprint. - -2002-02-14 Nikos Mavrogiannopoulos - - * lib/gnutls_cert.c, lib/x509_verify.c: Verification function - returns the GNUTLS_CERT_VALID flag. - -2002-02-14 Nikos Mavrogiannopoulos - - * ChangeLog, doc/tex/ex3.tex, doc/tex/serv1.tex: [no log message] - -2002-02-14 Nikos Mavrogiannopoulos - - * lib/auth_srp_passwd.c, lib/gnutls_int.h, lib/gnutls_srp.c, - lib/gnutls_ui.h: Changed srp callback function parameters. - -2002-02-14 Nikos Mavrogiannopoulos - - * lib/gnutls_dh_primes.c, src/serv.c: Corrected bugs in prime - generation. - -2002-02-14 Nikos Mavrogiannopoulos - - * src/Makefile.am, src/cli.c, src/common.c, src/serv-gaa.c, - src/serv-gaa.h, src/serv.c, src/serv.gaa: Server updated. Now - command line parameters are available. - -2002-02-14 Nikos Mavrogiannopoulos - - * src/cli-gaa.c, src/cli.c, src/cli.gaa: [no log message] - -2002-02-14 Nikos Mavrogiannopoulos - - * configure.in, lib/x509_ASN.c: [no log message] - -2002-02-14 Nikos Mavrogiannopoulos - - * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, - src/common.c: Updated client - -2002-02-14 Nikos Mavrogiannopoulos - - * lib/auth_anon.c, lib/gnutls_cipher.c, lib/gnutls_handshake.c, - lib/gnutls_kx.c, lib/gnutls_record.c: Direct access to version field - in the state was replaced by the function - gnutls_protocol_get_version(). - -2002-02-14 Nikos Mavrogiannopoulos - - * lib/auth_rsa.c: Corrected bugs in RSA authentication. Random value - is not generated using the GNUTLS_STRONG_RANDOM flag, and fixed - client key exchange packet formating, to depend on the correct - version. - -2002-02-14 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls.h.in.in: [no log message] - -2002-02-14 Nikos Mavrogiannopoulos - - * lib/gnutls_int.h, lib/x509_sig_check.c, lib/x509_verify.c: Added - GNUTLS_CERT_INVALID and GNUTLS_CERT_VALID of CertificateStatus - flags, which replace GNUTLS_CERT_NOT_TRUSTED. - -2002-02-13 Fabio Fiorina - - * lib/x509_ASN.y: bug fix with bison 1.32 - -2002-02-13 Nikos Mavrogiannopoulos - - * lib/auth_anon.c, lib/auth_anon.h, lib/auth_cert.h, - lib/auth_dhe.c, lib/gnutls.h.in.in, lib/gnutls_dh.c, - lib/gnutls_dh.h, lib/gnutls_dh_primes.c, lib/gnutls_errors.c, - lib/gnutls_errors.h, lib/gnutls_errors_int.h, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_state.c, - lib/gnutls_state.h, lib/gnutls_ui.c, lib/gnutls_ui.h, src/cli.c, - src/common.c, src/serv.c: Added more functions to allow access to - Diffie Hellman parameters (partially at least). Corrected Diffie - Hellman stuff. - -2002-02-13 Nikos Mavrogiannopoulos - - * doc/tex/auth.tex: [no log message] - -2002-02-13 Nikos Mavrogiannopoulos - - * src/cli.c: [no log message] - -2002-02-13 Nikos Mavrogiannopoulos - - * src/Makefile.am, src/cli-gaa.c, src/cli-gaa.h, src/cli.c, - src/cli.gaa: Made most ifdefs in client program, configurable via - command line. - -2002-02-13 Nikos Mavrogiannopoulos - - * lib/ext_cert_type.c: It does not send the cert_type extension if - only x.509 certificates are used. - -2002-02-12 Nikos Mavrogiannopoulos - - * doc/tex/ex1.tex, doc/tex/ex3.tex, doc/tex/serv1.tex: Corrected - bugs in examples. - -2002-02-12 Nikos Mavrogiannopoulos - - * lib/gnutls_priority.c: Priority cannot be set if not using the - OPENCDK library. - -2002-02-11 Nikos Mavrogiannopoulos - - * doc/tex/auth.tex, doc/tex/ciphersuites.tex, doc/tex/cover.tex.in, - doc/tex/gnutls.tex: Updated documentation. - -2002-02-11 Nikos Mavrogiannopoulos - - * src/cli.c, src/openpgp/cli_pub.asc, src/openpgp/cli_sec.asc: Added - new client pgp keys and a keyring - -2002-02-10 Nikos Mavrogiannopoulos - - * .cvsusers, ChangeLog: [no log message] - -2002-02-10 Nikos Mavrogiannopoulos - - * src/cli.c: [no log message] - -2002-02-10 Nikos Mavrogiannopoulos - - * lib/auth_srp_passwd.c: [no log message] - -2002-02-10 Timo Schulz - - * lib/gnutls_openpgp.c, lib/gnutls_openpgp.h: High level support for - OpenPGP keyrings. - -2002-02-10 Nikos Mavrogiannopoulos - - * ChangeLog: Added ChangeLog [generated by CVS log] - -2002-02-10 Nikos Mavrogiannopoulos - - * lib/x509_verify.c: [no log message] - -2002-02-10 Nikos Mavrogiannopoulos - - * src/common.c: [no log message] - -2002-02-10 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2002-02-10 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in: [no log message] - -2002-02-10 Nikos Mavrogiannopoulos - - * lib/gnutls_cert.c: [no log message] - -2002-02-09 Nikos Mavrogiannopoulos - - * src/cli.c, src/common.c, src/serv.c: [no log message] - -2002-02-09 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/gnutls_algorithms.c: [no log message] - -2002-02-09 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/gnutls_algorithms.c: Added - gnutls_certificate_type_get_name() function. - -2002-02-09 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-openpgp-keys-01.txt, - lib/gnutls.h.in.in, lib/gnutls_cert.c, lib/gnutls_ui.h: [no log - message] - -2002-02-09 Timo Schulz - - * lib/gnutls_openpgp.c: * Applied the fixed for the memory leaks. - -2002-02-09 Nikos Mavrogiannopoulos - - * src/cli.c, src/serv.c: [no log message] - -2002-02-09 Nikos Mavrogiannopoulos - - * lib/auth_srp.c, lib/auth_srp.h, lib/auth_srp_passwd.c, - lib/auth_srp_passwd.h, lib/gnutls_cert.c, lib/gnutls_int.h, - lib/gnutls_srp.c, lib/gnutls_srp.h, lib/gnutls_ui.h, - lib/gnutls_x509.c: Added ability for an SRP server to use multiple - password files. The password file is selected on the fly (handshake) - using a callback function. - -2002-02-09 Timo Schulz - - * lib/auth_cert.h, lib/gnutls_openpgp.c, lib/gnutls_openpgp.h: * auth_cert.h: Added OpenPGP keyring item. * gnutls_openpgp.c: Improved support for keyring handling. - -2002-02-09 Nikos Mavrogiannopoulos - - * lib/gnutls_cipher.c: Some fixes in ciphertext2compressed handling - -2002-02-09 Nikos Mavrogiannopoulos - - * lib/gnutls_alert.c, lib/gnutls_cipher.c, lib/gnutls_errors.c, - lib/gnutls_errors_int.h: Removed the GNUTLS_E_MAC_FAILED error. Now - only GNUTLS_E_DECRYPTION_FAILED error is used. That we don't leak - any information about the result of a possible attack. - -2002-02-08 Nikos Mavrogiannopoulos - - * lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, - lib/gnutls_cert.c, lib/gnutls_openpgp.h: Added LIBOPENCDK ifdefs - (suggested by Andrew McDonald) - -2002-02-08 Nikos Mavrogiannopoulos - - * lib/x509_ASN.c: Added bison generated file - -2002-02-08 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-openpgp-keys-01.txt: [no log message] - -2002-02-08 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-openpgp-keys-01.txt: changed the - introduction (again) - -2002-02-07 Nikos Mavrogiannopoulos - - * lib/gnutls_priority.c: [no log message] - -2002-02-07 Nikos Mavrogiannopoulos - - * lib/auth_cert.c, src/cli.c, src/openpgp/cli_pub.asc, - src/openpgp/cli_sec.asc: Corrected behaviour of client openpgp - certificate selection. - -2002-02-07 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.c: [no log message] - -2002-02-07 Nikos Mavrogiannopoulos - - * lib/gnutls_ui.c, lib/gnutls_ui.h: removed - gnutls_certificate_get_ours_index() - -2002-02-07 Nikos Mavrogiannopoulos - - * lib/gnutls_asn1_tab.c, lib/pkcs1_asn1_tab.c: Added asn1 file - -2002-02-06 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_ui.h, lib/gnutls_x509.c: Modified - gnutls_x509_extract_subject_alt_name() to return the type, instead - of storing it to a pointer. - -2002-02-06 Nikos Mavrogiannopoulos - - * lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_ui.h, - lib/gnutls_x509.c, lib/x509_extensions.c: Added function which - returns the subjectAltName (subject_dns_name was obsoleted). - -2002-02-05 Nikos Mavrogiannopoulos - - * AUTHORS: added Timo - -2002-02-05 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-openpgp-keys-01.txt: [no log message] - -2002-02-05 Nikos Mavrogiannopoulos - - * lib/crypt_bcrypt.c, lib/gnutls_cert.c, lib/gnutls_num.c, - lib/gnutls_num.h, lib/x509_extensions.c, src/common.c: [no log - message] - -2002-02-05 Nikos Mavrogiannopoulos - - * lib/x509_verify.c: Changed the X.509 certificate verification - algorithm. Now if any of the certificates in the certificate path is - expired (except the first one), we return GNUTLS_CERT_NOT_TRUSTED. - -2002-02-05 Nikos Mavrogiannopoulos - - * lib/gnutls_ui.h: [no log message] - -2002-02-05 Timo Schulz - - * lib/gnutls_openpgp.c, lib/gnutls_openpgp.h: Changes the function - name to make clear OpenPGP uses keys and not certificates like - X.509. - -2002-02-04 Nikos Mavrogiannopoulos - - * lib/gnutls_cert.c, lib/gnutls_ui.h, src/common.c: Changes for - gnutls_openpgp_name structure - -2002-02-04 Timo Schulz - - * lib/gnutls_openpgp.c, lib/gnutls_openpgp.h, lib/gnutls_ui.h: Now - OpenPGP uses its own context for DN. - -2002-02-03 Timo Schulz - - * lib/gnutls_openpgp.c: More fixes for the GnuTLS OpenPGP code. - -2002-02-03 Nikos Mavrogiannopoulos - - * doc/tex/ex3.tex, lib/gnutls.h.in.in, lib/gnutls_ui.h, - lib/gnutls_x509.c, src/common.c: renamed the gnutls_dn structure to - gnutls_x509_dn - -2002-02-03 Nikos Mavrogiannopoulos - - * src/Makefile.am, src/common.c, src/common.h: made the print_info - stuff much cleaner. - -2002-02-03 Nikos Mavrogiannopoulos - - * lib/gnutls_openpgp.c: some changes in gnutls_cert handling - -2002-02-03 Nikos Mavrogiannopoulos - - * lib/gnutls_cert.h: keyUsage is now 16 bits - -2002-02-03 Nikos Mavrogiannopoulos - - * lib/gnutls_int.h, src/common.h: [no log message] - -2002-02-03 Nikos Mavrogiannopoulos - - * src/common.h: [no log message] - -2002-02-03 Nikos Mavrogiannopoulos - - * doc/tex/ex3.tex, lib/Makefile.am, lib/auth_cert.c, - lib/auth_cert.h, lib/auth_dhe.c, lib/auth_rsa.c, - lib/gnutls_alert.c, lib/gnutls_algorithms.c, lib/gnutls_cert.c, - lib/gnutls_cert.h, lib/gnutls_errors.c, lib/gnutls_errors_int.h, - lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_int.h, - lib/gnutls_privkey.c, lib/gnutls_x509.c, lib/x509_verify.c, - lib/x509_verify.h, src/cli.c, src/common.h, src/serv.c: Added - OpenPGP certificate support in gnutls. Several changes. - -2002-02-03 Timo Schulz - - * lib/gnutls_openpgp.c, lib/gnutls_openpgp.h: * gnutls_openpgp.c (_gnutls_openpgp_cert2gnutls_cert): New. Set the - keyUsage flag to indicate what the key is useful for. - -2002-02-03 Nikos Mavrogiannopoulos - - * lib/gnutls_openpgp.h: [no log message] - -2002-02-03 Nikos Mavrogiannopoulos - - * lib/gnutls_openpgp.c, lib/gnutls_ui.h: Exported openpgp keys' - related functions. - -2002-02-03 Nikos Mavrogiannopoulos - - * lib/gnutls_record.c, lib/gnutls_record.h, lib/gnutls_state.c, - lib/gnutls_state.h: Moved functions unrelated to record layer to - gnutls_state.c - -2002-02-03 Nikos Mavrogiannopoulos - - * lib/gnutls_int.h: several modifications for cert_type extension - etc - -2002-02-03 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/gnutls_priority.c, lib/gnutls_priority.h: - Added option to set the cert_type priority. - -2002-02-03 Timo Schulz - - * lib/gnutls_openpgp.c: * Applied the patch and minor changes. * Now it's also possible to use binary certificates. - -2002-02-03 Nikos Mavrogiannopoulos - - * lib/ext_cert_type.c, lib/ext_cert_type.h: Added stuff for parsing - the CertType extension type. - -2002-02-03 Timo Schulz - - * lib/gnutls_openpgp.c: * gnutls_openpgp.c: Fixed some memory leaks. - -2002-02-02 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/gnutls_ui.c: renamed gnutls_fingerprint() - to gnutls_x509_fingerprint(). - -2002-02-02 Timo Schulz - - * lib/gnutls_openpgp.c, lib/gnutls_openpgp.h: * gnutls_openpgp.c: Now all functions use gnutls_datum. Change the - function headers of internal functions. - -2002-02-01 Nikos Mavrogiannopoulos - - * configure.in, lib/Makefile.am, lib/gnutls_openpgp.c, - src/Makefile.am: Added gnutls_openpgp in the makefiles. Added some - kind of opencdk library detection. - -2002-02-01 Timo Schulz - - * src/openpgp/pub.asc, src/openpgp/sec.asc: New files for OpenPGP - tests. - -2002-02-01 Timo Schulz - - * lib/gnutls_openpgp.c, lib/gnutls_openpgp.h: * gnutls_openpgp.c: Added gdoc compatible function descriptions. (gnutls_openpgp_add_fingerprint): New function to register keyrings. - -2002-02-01 Nikos Mavrogiannopoulos - - * lib/gnutls_x509.h: added new header file - -2002-02-01 Nikos Mavrogiannopoulos - - * configure.in, doc/protocol/draft-ietf-tls-openpgp-keys-01.txt, - doc/tex/ex1.tex, doc/tex/ex2.tex, doc/tex/ex3.tex, - doc/tex/serv1.tex, lib/Makefile.am, lib/auth_cert.c, - lib/auth_cert.h, lib/gnutls.h.in.in, lib/gnutls_cert.c, - lib/gnutls_cert.h, lib/gnutls_int_compat.c, - lib/gnutls_session_pack.c, lib/gnutls_ui.h, lib/gnutls_x509.c, - lib/x509_extensions.c, src/cli.c, src/common.h, src/serv.c: Several - changes in certificate and key handling. * gnutls_certificate_allocate_sc() does not require the ncerts - argument - -2002-01-31 Nikos Mavrogiannopoulos - - * Makefile.am, doc/protocol/draft-ietf-tls-openpgp-keys-01.txt, - doc/tex/ex3.tex, lib/Makefile.am, lib/auth_cert.c, lib/debug.c, - lib/gnutls.h.in.in, lib/gnutls_cert.c, lib/gnutls_cert.h, - lib/gnutls_state.h, lib/gnutls_ui.c, lib/gnutls_ui.h, - lib/gnutls_x509.c, src/cli.c, src/common.h: Renamed - gnutls_x509pki_extract_* to gnutls_x509_extract_*. Separated - gnutls_x509_extract_* functions. Now are in gnutls_x509.c. - -2002-01-31 Nikos Mavrogiannopoulos - - * lib/x509_asn1.c, lib/x509_der.c: corrected _gnutls_str_cpy() - usage. - -2002-01-31 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-openpgp-keys-01.txt: [no log message] - -2002-01-30 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-openpgp-keys-01.txt: updated - -2002-01-30 Timo Schulz - - * lib/gnutls_openpgp.c: Fixed some memory leaks. - -2002-01-30 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-openpgp-keys-01.txt: updated candidate - draft - -2002-01-29 Timo Schulz - - * lib/gnutls_openpgp.c: Fixed a typo. - -2002-01-29 Timo Schulz - - * lib/gnutls_cert.h, lib/gnutls_openpgp.c, lib/gnutls_openpgp.h: - Basic GnuTLS OpenPGP support. - -2002-01-29 Nikos Mavrogiannopoulos - - * configure.in, doc/tex/ex3.tex, src/common.h: updated for - gnutls_certificate_get_peers() - -2002-01-29 Nikos Mavrogiannopoulos - - * lib/gnutls_ui.c, lib/gnutls_ui.h: Added - gnutls_certificate_get_peers() Added gnutls_certificate_get_ours() - Added gnutls_certificate_get_ours_index() - -2002-01-29 Nikos Mavrogiannopoulos - - * lib/auth_cert.c, lib/gnutls.h.in.in, lib/gnutls_cert.h, - lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_record.h, - lib/gnutls_state.c, lib/gnutls_state.h: CertificateType is now - accesible from the API. - -2002-01-29 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c: corrected bug in certificate selection. - -2002-01-29 Nikos Mavrogiannopoulos - - * lib/gnutls_state.c, lib/gnutls_state.h: Added this - gnutls_state.c/h files. Are added in order to access some of the - GNUTLS_STATE structures members, indirectly. It's not possible to - move all the members of this structure here, yet, but it is - desirable. - -2002-01-29 Nikos Mavrogiannopoulos - - * Makefile.am: [no log message] - -2002-01-29 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/auth_cert.c, lib/gnutls_cert.c, - lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_ui.h: Modified the - state's parameters to hold the negotiated certificate type. Modified - the certificate selection procedure to take the certificate type in - account, when choosing the most appropriate certificate. - -2002-01-29 Nikos Mavrogiannopoulos - - * doc/tex/ex1.tex, doc/tex/ex2.tex, doc/tex/ex3.tex, - doc/tex/serv1.tex, lib/auth_cert.c, lib/gnutls.h.in.in, - lib/gnutls_int.h, lib/x509_sig_check.c, src/cli.c, src/common.h, - src/serv.c: Added in CertificateStatus: GNUTLS_CERT_CORRUPTED (replaces GNUTLS_CERT_INVALID) GNUTLS_CERT_REVOKED - -2002-01-29 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/gnutls_cert.c: - gnutls_x509pki_allocate_sc() renamed to - gnutls_certificate_allocate_sc() and similar functions too. They - share too common properties with OpenPGP certificates, that it is - not needed a separate function. - -2002-01-29 Nikos Mavrogiannopoulos - - * lib/gnutls_ui.c, lib/gnutls_ui.h: Updated function names. - -2002-01-29 Nikos Mavrogiannopoulos - - * lib/auth_cert.c, lib/auth_cert.h: Separated X509 specific stuff in - the CERTIFICATE_CREDENTIALS structure. - -2002-01-28 Nikos Mavrogiannopoulos - - * lib/gnutls.asn: Removed fake OID. - -2002-01-28 Nikos Mavrogiannopoulos - - * Makefile.am: better ChangeLog output - -2002-01-28 Nikos Mavrogiannopoulos - - * lib/gnutls_record.c, src/cli.c, src/serv.c: Identified a race - condition in the example client. If application data is sent after - a rehandshake request, the server thinks we ignored his request, and - breaks the connection. This is a bad design of this client. - -2002-01-28 Nikos Mavrogiannopoulos - - * lib/gnutls_datum.c: minor fixes - -2002-01-28 Nikos Mavrogiannopoulos - - * lib/gnutls_buffers.c: changed some buffering code, to use the - cleaner gnutls_datum_append(). Leads to a much cleaner code. - -2002-01-28 Fabio Fiorina - - * lib/x509_ASN.y: Modules without OID - -2002-01-28 Fabio Fiorina - - * lib/x509_der.c: gnutls_str_... functions substitution - -2002-01-28 Fabio Fiorina - - * lib/x509_asn1.c: _gnutls_str_... functions substitution - -2002-01-28 Nikos Mavrogiannopoulos - - * lib/gnutls_datum.c, lib/gnutls_datum.h: added - gnutls_datum_append() - -2002-01-28 Nikos Mavrogiannopoulos - - * lib/gnutls_cert.c, lib/gnutls_cert.h, lib/x509_sig_check.c: - signature is now a gnutls_datum - -2002-01-28 Nikos Mavrogiannopoulos - - * doc/tex/ex1.tex, doc/tex/ex2.tex, doc/tex/ex3.tex, - doc/tex/serv1.tex, doc/tex/srp1.tex, lib/Makefile.am, - lib/auth_anon.c, lib/auth_cert.c, lib/auth_cert.h, lib/auth_dhe.c, - lib/auth_rsa.c, lib/auth_srp.c, lib/auth_srp_passwd.c, - lib/auth_x509.c, lib/auth_x509.h, lib/debug.c, lib/ext_srp.c, - lib/gnutls.h.in.in, lib/gnutls_algorithms.c, lib/gnutls_auth.c, - lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_handshake.c, - lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_privkey.c, - lib/gnutls_session_pack.c, lib/gnutls_sig.c, lib/gnutls_sig.h, - lib/gnutls_ui.c, lib/gnutls_ui.h, lib/x509_sig_check.c, src/cli.c, - src/common.h, src/serv.c: GNUTLS_X509PKI -> GNUTLS_CRD_X509PKI - GNUTLS_SRP -> GNUTLS_CRD_SRP GNUTLS_ANON -> GNUTLS_CRD_ANON - -2002-01-28 Nikos Mavrogiannopoulos - - * doc/TODO, lib/auth_x509.c, lib/gnutls_int.h, src/cli.c: [no log - message] - -2002-01-28 Nikos Mavrogiannopoulos - - * lib/gnutls_buffers.c, lib/gnutls_buffers.h, - lib/gnutls_handshake.c: corrected and optimized handshake. - -2002-01-28 Nikos Mavrogiannopoulos - - * lib/gnutls_int_compat.c: not used by default - -2002-01-28 Nikos Mavrogiannopoulos - - * lib/auth_dhe.c, lib/auth_x509.c, lib/gnutls_cert.c, - lib/gnutls_cert.h, lib/gnutls_int.h, lib/gnutls_record.c: Added - ability of the client to choose a certificate depending on the - server's sign algorithm preference. Added CertType in gnutls_cert - structure (which identified X509, OPENPGP certificates) - -2002-01-28 Nikos Mavrogiannopoulos - - * lib/gnutls_buffers.c, lib/gnutls_buffers.h, - lib/gnutls_handshake.c: Optimizations in the handshake messages - hashing. (no more mallocs) - -2002-01-27 Nikos Mavrogiannopoulos - - * lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_int.h, - lib/x509_b64.c, lib/x509_extensions.c, lib/x509_sig_check.c, - src/cli.c, src/serv.c: cleanups - -2002-01-27 Nikos Mavrogiannopoulos - - * lib/gnutls_gcry.c, lib/gnutls_gcry.h, lib/gnutls_pk.c: corrected - bug in DSA signing. - -2002-01-27 Nikos Mavrogiannopoulos - - * lib/gnutls_cert.c: corrected bug in file read - -2002-01-27 Nikos Mavrogiannopoulos - - * lib/auth_rsa.c, lib/auth_x509.c, lib/auth_x509.h, - lib/gnutls_handshake.c, lib/gnutls_handshake.h, - lib/gnutls_v2_compat.c: Added support to select a certificate based - on the peer's cipher suite list. (ie if DSS cipher suites are - requested and a DSA certificate is available, then this will be - used) - -2002-01-27 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-openpgp-keys-01.txt: Added an updated - version of the submited draft - -2002-01-27 Nikos Mavrogiannopoulos - - * src/x509/Makefile.am: [no log message] - -2002-01-27 Nikos Mavrogiannopoulos - - * lib/auth_dhe.c, lib/auth_dhe_dss.c, lib/auth_dhe_dss.h, - lib/auth_dhe_rsa.c, src/x509/cert-dsa.pem, src/x509/key-dsa.pem: - added missing files - -2002-01-27 Nikos Mavrogiannopoulos - - * NEWS, lib/Makefile.am, lib/gnutls_algorithms.c, - lib/gnutls_cert.c, lib/gnutls_int.h, lib/gnutls_sig.c, src/cli.c, - src/serv.c: added support for DHE_DSS cipher suites. - -2002-01-27 Nikos Mavrogiannopoulos - - * doc/tex/asn1.tex, lib/auth_dhe_rsa.c, lib/auth_rsa.c, - lib/auth_x509.c, lib/gnutls.asn, lib/gnutls_cert.c, - lib/gnutls_cert.h, lib/gnutls_gcry.c, lib/gnutls_gcry.h, - lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_privkey.c, - lib/gnutls_sig.c, lib/x509_sig_check.c, src/cli.c: added support for - DSS certificates. - -2002-01-26 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/auth_x509.c, lib/ext_max_record.c, - lib/gnutls.asn, lib/gnutls_buffers.c, lib/gnutls_cert.c, - lib/gnutls_cert.h, lib/gnutls_errors.c, lib/gnutls_errors_int.h, - lib/gnutls_extensions.c, lib/gnutls_global.c, lib/gnutls_global.h, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_pk.c, - lib/gnutls_pk.h, lib/gnutls_privkey.c, lib/gnutls_privkey.h, - lib/gnutls_sig.c, lib/pkcs1.asn, lib/pkix.asn, lib/x509_sig_check.c: - Added stuff for DSS certificates (not ready yet) - -2002-01-26 Nikos Mavrogiannopoulos - - * src/x509/Makefile.am, src/x509/ca.pem, src/x509/cert.pem, - src/x509/clicert-dsa.pem, src/x509/clicert.pem, - src/x509/clikey-dsa.pem, src/x509/clikey.pem, src/x509/key.pem: - added new DSA certificates.. - -2002-01-26 Nikos Mavrogiannopoulos - - * acinclude.m4, lib/auth_srp_passwd.c, lib/gnutls.h.in.in, - lib/gnutls_buffers.c, lib/gnutls_global.c, lib/gnutls_handshake.c, - lib/gnutls_int.h, lib/gnutls_record.c: [no log message] - -2002-01-26 Nikos Mavrogiannopoulos - - * lib/gnutls_str.c, lib/gnutls_str.h: added _gnutls_mem_cpy() - -2002-01-26 Nikos Mavrogiannopoulos - - * lib/x509_asn1.c, lib/x509_der.c: Added checks after malloc for - null. - -2002-01-25 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/ex3.tex, doc/tex/serv1.tex, lib/auth_x509.c, - lib/gnutls.h.in.in, lib/gnutls_int_compat.c, lib/gnutls_record.c, - lib/gnutls_record.h, src/common.h, src/serv.c: gnutls_*_get_algo() - renamed to gnutls_*_get() (suggested by Simon Josefsson) - -2002-01-25 Nikos Mavrogiannopoulos - - * lib/gnutls_extensions.c, lib/gnutls_int.h: [no log message] - -2002-01-25 Nikos Mavrogiannopoulos - - * src/cli.c: [no log message] - -2002-01-25 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_errors.c, lib/gnutls_errors_int.h, - lib/gnutls_extensions.c, lib/gnutls_int.h, lib/gnutls_int_compat.c, - src/cli.c: added check for requested TLS extensions - -2002-01-25 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_int_compat.c: [no log message] - -2002-01-25 Nikos Mavrogiannopoulos - - * NEWS, configure.in, lib/gnutls.h.in.in, lib/gnutls_buffers.c, - lib/gnutls_handshake.c, lib/gnutls_handshake.h, - lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, - lib/gnutls_record.c, lib/gnutls_sig.c, lib/gnutls_sig.h: Handshake - messages are not kept in memory any more. Now we use less memory - during a handshake. - -2002-01-24 Nikos Mavrogiannopoulos - - * lib/gnutls_buffers.c: [no log message] - -2002-01-24 Nikos Mavrogiannopoulos - - * lib/gnutls_random.c: added an #error - -2002-01-24 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/gnutls_int.h, lib/gnutls_kx.c: - GNUTLS_A_NETSCAPE_NO_CLIENT_CERTIFICATE -> - GNUTLS_A_SSL3_NO_CERTIFICATE - -2002-01-24 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-openpgp-01.txt, - doc/protocol/draft-ietf-tls-openpgp-keys-00.txt: added our openpgp - draft - -2002-01-24 Nikos Mavrogiannopoulos - - * lib/debug.c, lib/gnutls_alert.c, lib/gnutls_buffers.c, - lib/gnutls_constate.c, lib/gnutls_errors.h, - lib/gnutls_errors_int.h, lib/gnutls_handshake.c, lib/gnutls_kx.c, - lib/gnutls_record.c, lib/gnutls_ui.h, lib/gnutls_v2_compat.c: added - _gnutls_record_log(), gnutls_handshake_log(), to avoid that #ifdef - XXX stuff. Done some cleanups in record layer. - -2002-01-23 Nikos Mavrogiannopoulos - - * lib/gnutls_str.c: [no log message] - -2002-01-23 Nikos Mavrogiannopoulos - - * NEWS, doc/TODO, lib/Makefile.am, lib/auth_srp.c, - lib/auth_srp_passwd.c, lib/crypt_srpsha1.c, lib/gnutls_cert.c, - lib/gnutls_str.c, lib/gnutls_str.h, lib/x509_extensions.c, - lib/x509_sig_check.c, lib/x509_verify.c: Added a minimal string - library to assist in safer ASN.1 parsing - -2002-01-23 Nikos Mavrogiannopoulos - - * src/common.h: in server side now prints srp username - -2002-01-23 Nikos Mavrogiannopoulos - - * lib/auth_x509.c, lib/crypt_bcrypt.c, lib/crypt_srpsha1.c, - lib/debug.c, lib/gnutls_cert.c, lib/gnutls_errors.c, - lib/gnutls_global.c, lib/x509_b64.c, lib/x509_extensions.c, - lib/x509_sig_check.c, lib/x509_verify.c: Some corrections done ( - found by using flawfinder). Added several tags for flawfinder to - ignore. - -2002-01-23 Nikos Mavrogiannopoulos - - * doc/TODO: added string library - -2002-01-23 Nikos Mavrogiannopoulos - - * NEWS, doc/scripts/gdoc, lib/auth_x509.c, lib/gnutls_buffers.c, - lib/gnutls_cert.c, lib/gnutls_errors.c, lib/gnutls_errors.h, - lib/x509_extensions.c, lib/x509_sig_check.c: cleanups - -2002-01-23 Nikos Mavrogiannopoulos - - * lib/gnutls_record.c: more cleanups in the recv_int() function - -2002-01-23 Nikos Mavrogiannopoulos - - * lib/auth_rsa.c: corrected behaviour against PKCS-1 attacks. (it - seems that debugging code has made it to release) - -2002-01-22 Nikos Mavrogiannopoulos - - * lib/gnutls_record.c: Made recv_int() cleaner (needs a lot of - improvement) - -2002-01-20 Nikos Mavrogiannopoulos - - * doc/tex/errors.tex, lib/gnutls_handshake.c, lib/gnutls_record.c, - src/cli.c, src/serv.c: Now a server in a case of rehandshake can - continue normaly if the handshake request is ignored by the client. - -2002-01-20 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in: corrected gnutls_alert_send() prototype. - -2002-01-20 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2002-01-19 Nikos Mavrogiannopoulos - - * lib/gnutls_int.h: [no log message] - -2002-01-19 Nikos Mavrogiannopoulos - - * lib/auth_anon.c, lib/auth_anon.h, lib/auth_dhe_rsa.c, - lib/auth_srp.c, lib/auth_x509.c, lib/gnutls_algorithms.c, - lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_auth_int.h, - lib/gnutls_int.h: updated auth info structures handling. Corrected - bug in DHE_RSA. - -2002-01-19 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c: corrected bug introduced in the buffering - code update - -2002-01-19 Nikos Mavrogiannopoulos - - * lib/gnutls_dh.c: [no log message] - -2002-01-19 Nikos Mavrogiannopoulos - - * NEWS, configure.in, doc/tex/ex3.tex, lib/auth_anon.c, - lib/auth_dhe_rsa.c, lib/gnutls.h.in.in, lib/gnutls_anon_cred.c, - lib/gnutls_dh.c, lib/gnutls_dh.h, lib/gnutls_int.h, - lib/gnutls_int_compat.c, lib/gnutls_record.c, lib/gnutls_ui.c, - lib/gnutls_ui.h, src/common.h, src/serv.c: Combined - gnutls_x509pki_(set/get)_dh_bits() and gnutls_anon_server/client_get - to gnutls_dh_(set/get)_bits(). gnutls_anon_set_server_cred() was - deprecated by gnutls_dh_set_bits(). - -2002-01-19 Nikos Mavrogiannopoulos - - * lib/gnutls_cert.c: gnutls_x509pki_set_trust_(file/mem) can now be - called multiple times - -2002-01-19 Nikos Mavrogiannopoulos - - * lib/.cvsignore: [no log message] - -2002-01-18 Nikos Mavrogiannopoulos - - * doc/protocol/draft-freier-ssl-version3-02.txt, - doc/protocol/ssl-2.txt, doc/protocol/ssl-draft302.txt, - doc/protocol/ssl-version2.txt: [no log message] - -2002-01-18 Nikos Mavrogiannopoulos - - * doc/protocol/rfc2440.txt: added openpgp rfc - -2002-01-18 Nikos Mavrogiannopoulos - - * configure.in, doc/tex/ex3.tex, doc/tex/serv1.tex, - lib/Makefile.am, lib/auth_srp_passwd.h, lib/auth_x509.c, - lib/debug.c, lib/gnutls.h.in.in, lib/gnutls_alert.c, - lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, - lib/gnutls_auth.c, lib/gnutls_buffers.c, lib/gnutls_buffers.h, - lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_db.c, - lib/gnutls_db.h, lib/gnutls_dh.h, lib/gnutls_dh_primes.c, - lib/gnutls_errors.c, lib/gnutls_global.c, lib/gnutls_int.h, - lib/gnutls_record.c, lib/gnutls_ui.c, lib/gnutls_ui.h, - lib/x509_ASN.y, src/cli.c, src/common.h, src/serv.c: several - cleanups in order to move to gnutls 0.4.0 - -2002-01-18 Nikos Mavrogiannopoulos - - * lib/gnutls_int_compat.c: added file to hold functions for - backwards binary compatibility. - -2002-01-18 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_ui.h, lib/x509_b64.c: cleanups - -2002-01-17 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/ex3.tex, lib/auth_dhe_rsa.c, - lib/gnutls_algorithms.c, lib/gnutls_cert.c, lib/gnutls_handshake.c, - lib/gnutls_int.h, lib/gnutls_ui.c, lib/gnutls_ui.h, src/common.h, - src/serv.c: Renamed gnutls_x509pki_s/get_dh_bits() to - gnutls_dh_s/get_dhe_bits(). Renamed - gnutls_anon_server/client_get_dh_bits() to gnutls_dh_get_dha_bits(). - -2002-01-17 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2002-01-17 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/auth.tex, doc/tex/ex1.tex, doc/tex/ex2.tex, - doc/tex/ex3.tex, lib/gnutls_algorithms.c, lib/gnutls_int.h: Key - exchange methods changed so they do not depend on the Certificate - type (GNUTLS_KX_X509PKI_* renamed to GNUTLS_KX_*). - -2002-01-17 Nikos Mavrogiannopoulos - - * lib/auth_srp_sb64.c, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, - lib/gnutls_buffers.c, lib/gnutls_buffers.h, - lib/gnutls_cipher_int.c, lib/gnutls_handshake.c, lib/gnutls_int.h, - lib/gnutls_record.c, lib/gnutls_sig.c: changes in buffering code - (actually variables' names are more rational now). - -2002-01-17 Nikos Mavrogiannopoulos - - * doc/tex/auth.tex, doc/tex/ciphers.tex, doc/tex/gnutls.tex, - doc/tex/macros.tex, doc/tex/resumedb.tex, doc/tex/translayer.tex: - [no log message] - -2002-01-17 Nikos Mavrogiannopoulos - - * configure.in: corrected library interface numbers - -2002-01-17 Nikos Mavrogiannopoulos - - * NEWS, THANKS, doc/tex/Makefile.am, doc/tex/ciphersuites.tex, - doc/tex/cover.tex.in, doc/tex/gnutls-logo.ps, doc/tex/gnutls.tex: - updated documentation - -2002-01-17 Nikos Mavrogiannopoulos - - * lib/auth_srp_sb64.c, lib/gnutls_handshake.c, lib/gnutls_random.c, - src/crypt.c: fixed bugs reported (with patches) by Marc Huber and - Guillaume Morin. - -2002-01-14 Nikos Mavrogiannopoulos - - * NEWS, THANKS, lib/gnutls.h.in.in, lib/gnutls_cert.c, - lib/x509_b64.c, lib/x509_b64.h: Added gnutls_x509pki_set_trust_mem() - and gnutls_x509pki_set_key_mem() - -2002-01-12 Nikos Mavrogiannopoulos - - * lib/gnutls_int.h: [no log message] - -2002-01-12 Nikos Mavrogiannopoulos - - * lib/gnutls_alert.h, lib/gnutls_int.h, lib/gnutls_record.c: better - length checking in the record layer. - -2002-01-10 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-extensions-01.txt, - doc/protocol/draft-ietf-tls-extensions-02.txt: new extensions draft - -2002-01-09 Nikos Mavrogiannopoulos - - * doc/tex/gnutls.tex: [no log message] - -2002-01-09 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/gnutls.tex, lib/auth_x509.c: added - gnutls_x509pki_verify_certificate() - -2002-01-07 Nikos Mavrogiannopoulos - - * lib/gnutls_ui.c: renamed DigestAlgorithm to GNUTLS_DigestAlgorithm - (in order to be consistent with gnutls.h) - -2002-01-05 Nikos Mavrogiannopoulos - - * lib/libgnutls.m4: corrected the temp file name - -2002-01-05 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/cover.tex.in, doc/tex/errors.tex, lib/Makefile.am, - lib/gnutls_errors.c: last minute changes for 0.3.2 release - -2002-01-05 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_ui.h, lib/x509_b64.c: renamed gnutls_b64_encode() - to gnutls_b64_encode_fmt() - -2002-01-05 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_ui.h, lib/x509_b64.c: Added gnutls_b64_encode() - and gnutls_b64_decode() - -2002-01-04 Nikos Mavrogiannopoulos - - * doc/scripts/.cvsignore, doc/tex/.cvsignore: [no log message] - -2002-01-04 Nikos Mavrogiannopoulos - - * doc/tex/auth.tex, doc/tex/translayer.tex: updated documentation - -2002-01-04 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/ex3.tex, src/common.h: updated documentation - -2002-01-04 Nikos Mavrogiannopoulos - - * configure.in, lib/auth_rsa.c, lib/gnutls_auth.c, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, - lib/gnutls_priority.c, lib/gnutls_record.c, lib/gnutls_record.h: - Cleanups - -2002-01-04 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/gnutls_alert.c, lib/gnutls_alert.h: separated - alert protocol functions - -2002-01-03 Nikos Mavrogiannopoulos - - * NEWS, lib/auth_rsa.c, lib/gnutls_handshake.c, - lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_priority.c, - lib/gnutls_record.c: corrected behaviour in version advertizing - -2002-01-03 Nikos Mavrogiannopoulos - - * lib/libgnutls.m4: now removes the temp file - -2002-01-03 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in: check_version() updated - -2002-01-02 Nikos Mavrogiannopoulos - - * lib/auth_rsa.c, lib/gnutls_int.h: [no log message] - -2002-01-02 Nikos Mavrogiannopoulos - - * lib/crypt_srpsha1.c, lib/gnutls.h.in.in, lib/gnutls_auth.c, - lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_hash_int.c, - lib/gnutls_int.h, lib/gnutls_sig.c, lib/gnutls_srp.c, - lib/gnutls_ui.c, lib/x509_sig_check.c: cleanups - -2002-01-02 Nikos Mavrogiannopoulos - - * NEWS, lib/auth_x509.c, lib/gnutls.h.in.in, - lib/gnutls_algorithms.h, lib/gnutls_ui.c, lib/gnutls_ui.h, - src/cli.c, src/common.h, src/serv.c: Added - gnutls_x509pki_extract_certificate_serial() and some cleanups. - -2002-01-02 Nikos Mavrogiannopoulos - - * lib/gnutls_ui.c: more error checking - -2002-01-02 Nikos Mavrogiannopoulos - - * lib/gnutls_ui.c: [no log message] - -2002-01-02 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in: prefixed all variable with GNUTLS_ - -2002-01-02 Nikos Mavrogiannopoulos - - * lib/gnutls_global.c: added support for calling global_init() - several times. - -2002-01-02 Nikos Mavrogiannopoulos - - * lib/gnutls_global.c: added static variable to check if - global_init() is called for a second time. - -2002-01-02 Nikos Mavrogiannopoulos - - * NEWS, README, lib/crypt_srpsha1.c, lib/gnutls.h.in.in, - lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_int.h, - lib/gnutls_sig.c, lib/gnutls_srp.c, lib/gnutls_ui.c, - lib/x509_sig_check.c, src/cli.c: Cleanups in the digest code - (separated from HMAC). Added gnutls_fingerprint_calc(), which - calculates a fingerprint. - -2001-12-30 Nikos Mavrogiannopoulos - - * Makefile.am: added PGPKEYS - -2001-12-30 Nikos Mavrogiannopoulos - - * doc/README.CVS: updated - -2001-12-30 Nikos Mavrogiannopoulos - - * NEWS, lib/auth_x509.c: corrected bug which did not allow a client - to accept multiple CA distinguished names. - -2001-12-30 Nikos Mavrogiannopoulos - - * src/README.srpcrypt: updated - -2001-12-24 Nikos Mavrogiannopoulos - - * doc/TODO, lib/gnutls_buffers.c: [no log message] - -2001-12-23 Nikos Mavrogiannopoulos - - * lib/gnutls_cert.c: some corrections in documentation - -2001-12-21 Nikos Mavrogiannopoulos - - * NEWS: releasing 0.3.0 - -2001-12-20 Nikos Mavrogiannopoulos - - * lib/x509_ASN.y, lib/x509_asn1.c, lib/x509_der.c: cleaned up and - fixed ASN.1 documentation. - -2001-12-20 Nikos Mavrogiannopoulos - - * doc/scripts/gdoc: corrected in order not to complain if func(void) - is used. - -2001-12-19 Nikos Mavrogiannopoulos - - * NEWS, configure.in, lib/gnutls.h.in.in: cleanups - -2001-12-19 Nikos Mavrogiannopoulos - - * doc/TODO, doc/tex/ex1.tex, doc/tex/ex2.tex, doc/tex/serv1.tex, - doc/tex/srp1.tex, lib/auth_anon.h, lib/auth_srp.c, lib/auth_srp.h, - lib/auth_srp_passwd.c, lib/auth_x509.c, lib/auth_x509.h, - lib/ext_srp.c, lib/gnutls.h.in.in, lib/gnutls_anon_cred.c, - lib/gnutls_cert.c, lib/gnutls_global.c, lib/gnutls_global.h, - lib/gnutls_handshake.c, lib/gnutls_sig.c, lib/gnutls_srp.c, - lib/gnutls_ui.h, src/cli.c, src/serv.c: some cleanups. *_CREDENTIALS - renamed to GNUTLS_*_CREDENTIALS. Added defines to keep source - compatibility. - -2001-12-19 Nikos Mavrogiannopoulos - - * lib/auth_anon.c: corrected bugs in AUTH_INFO allocation - -2001-12-18 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in.in, lib/gnutls_algorithms.c, lib/gnutls_int.h: - cleanups - -2001-12-18 Nikos Mavrogiannopoulos - - * NEWS, THANKS, configure.in, lib/Makefile.am, lib/gnutls.h.in, - lib/gnutls.h.in.in, lib/gnutls_buffers.c, lib/gnutls_int.h: - corrections in the configuration files. - -2001-12-17 Nikos Mavrogiannopoulos - - * configure.in: some corrections in assembler detection. Also chmod - -w gnutls.h was removed. - -2001-12-17 Nikos Mavrogiannopoulos - - * lib/auth_srp.c, lib/gnutls_extensions.c, lib/gnutls_handshake.c, - lib/gnutls_record.c: Corrections for big endian machines. Pointed - out by Mike Siers - -2001-12-17 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/ciphersuites.tex, doc/tex/ex1.tex, doc/tex/ex2.tex, - doc/tex/serv1.tex, doc/tex/srp1.tex, lib/gnutls.h.in, - lib/gnutls_buffers.c, lib/gnutls_cert.c, lib/gnutls_errors.c, - lib/gnutls_errors.h, lib/gnutls_global.c, lib/gnutls_handshake.c, - lib/gnutls_record.c, lib/gnutls_session.c, src/cli.c, src/serv.c: - cleanups and documentation updates - -2001-12-17 Nikos Mavrogiannopoulos - - * lib/gnutls_int.h: [no log message] - -2001-12-17 Nikos Mavrogiannopoulos - - * lib/auth_anon.c, lib/auth_srp.c, lib/gnutls_record.c, - lib/gnutls_session_pack.c, src/cli.c: corrections in SRP and ANON - authentication. Also corrections in the session packing for - anonymous auth info. - -2001-12-17 Nikos Mavrogiannopoulos - - * doc/tex/ex1.tex, doc/tex/ex2.tex, doc/tex/serv1.tex, - doc/tex/srp1.tex, lib/gnutls.h.in, lib/gnutls_kx.c, - lib/gnutls_record.c, lib/gnutls_record.h, src/cli.c, src/serv.c: - *_alert -> alert_* - -2001-12-17 Nikos Mavrogiannopoulos - - * doc/tex/ex1.tex, doc/tex/ex2.tex, doc/tex/ex3.tex, - doc/tex/serv1.tex, doc/tex/srp1.tex, lib/auth_anon.c, - lib/auth_dhe_rsa.c, lib/auth_srp.c, lib/auth_x509.c, - lib/gnutls.h.in, lib/gnutls_auth.c, lib/gnutls_auth_int.h, - lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h, - lib/gnutls_record.c, lib/gnutls_session_pack.c, lib/gnutls_ui.c, - lib/gnutls_ui.h, src/cli.c, src/serv.c: gnutls_set_max_record_size - -> gnutls_record_set_max_size gnutls_get_max_record_size -> - gnutls_record_get_max_size gnutls_set_cred -> gnutls_cred_set - gnutls_get_auth_type -> gnutls_auth_get_type - -2001-12-16 Nikos Mavrogiannopoulos - - * doc/tex/auth.tex, doc/tex/ciphers.tex, doc/tex/ciphersuites.tex, - doc/tex/errors.tex, doc/tex/gnutls.tex, doc/tex/macros.tex, - doc/tex/resumedb.tex, doc/tex/translayer.tex, - lib/gnutls_handshake.c: documentation updated - -2001-12-16 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in, lib/gnutls_db.c, lib/gnutls_record.c: changed - function names - -2001-12-16 Nikos Mavrogiannopoulos - - * doc/tex/gnutls.tex, doc/tex/macros.tex, doc/tex/resumedb.tex, - doc/tex/translayer.tex: fixes in documentation - -2001-12-16 Nikos Mavrogiannopoulos - - * doc/ASN1.readme.txt, doc/Makefile.am: removed ASN1.readme.txt - -2001-12-16 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2001-12-15 Nikos Mavrogiannopoulos - - * .cvsusers, lib/gnutls.h.in, lib/gnutls_srp.c, src/serv.c: [no log - message] - -2001-12-14 Nikos Mavrogiannopoulos - - * NEWS, buildconf, doc/README.autoconf, doc/tex/ex1.tex, - doc/tex/ex2.tex, doc/tex/gnutls.tex, doc/tex/serv1.tex, - lib/gnutls.h.in, lib/gnutls_cert.c, lib/gnutls_int.h, src/cli.c, - src/serv.c: renamed gnutls_x509pki_set_trust/key to - gnutls_x509pki_set_trust_file/key_file - -2001-12-14 Nikos Mavrogiannopoulos - - * lib/auth_x509.c, lib/gnutls.h.in, lib/gnutls_errors.c, - lib/gnutls_extensions.c, lib/gnutls_int.h: some corrections in the - DECR_LEN stuff added recently. - -2001-12-14 Nikos Mavrogiannopoulos - - * configure.in, doc/README.autoconf, doc/tex/Makefile.am, - doc/tex/errors.tex, doc/tex/gnutls.tex, lib/auth_x509.c: updated - documentation - -2001-12-13 Nikos Mavrogiannopoulos - - * lib/auth_anon.c, lib/auth_dhe_rsa.c, lib/auth_srp.c, - lib/auth_x509.c, lib/gnutls_extensions.c, lib/gnutls_handshake.c: - More carefull parsing of incoming packets. - -2001-12-13 Nikos Mavrogiannopoulos - - * configure.in, doc/tex/translayer.tex: [no log message] - -2001-12-11 Nikos Mavrogiannopoulos - - * NEWS, THANKS, lib/gnutls_int.h, lib/gnutls_pk.c: [no log message] - -2001-12-11 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c: several cleanups - -2001-12-11 Nikos Mavrogiannopoulos - - * lib/gnutls_gcry.c, lib/gnutls_gcry.h: corrected bugs in STD - formating (back to USG). - -2001-12-10 Nikos Mavrogiannopoulos - - * COPYING: [no log message] - -2001-12-10 Nikos Mavrogiannopoulos - - * configure.in: [no log message] - -2001-12-10 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_int.h: last commits for 0.2.91 - -2001-12-10 Nikos Mavrogiannopoulos - - * doc/TODO, lib/auth_anon.c, lib/auth_rsa.c, lib/gnutls_constate.c, - lib/gnutls_datum.c, lib/gnutls_datum.h, lib/gnutls_errors.c, - lib/gnutls_errors_int.h, lib/gnutls_global.c, - lib/gnutls_handshake.c, lib/gnutls_hash_int.c, - lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_kx.c, - lib/gnutls_mem.c, lib/gnutls_mem.h, lib/gnutls_record.c: - optimizations and fixes in the TLS PRF calculation (and the SSL3 - equivalent) - -2001-12-10 Nikos Mavrogiannopoulos - - * src/cli.c: [no log message] - -2001-12-10 Nikos Mavrogiannopoulos - - * doc/tex/auth.tex: [no log message] - -2001-12-09 Nikos Mavrogiannopoulos - - * doc/tex/ciphers.tex: updated documentation - -2001-12-09 Nikos Mavrogiannopoulos - - * lib/gnutls_anon_cred.c: fixed gnutls_anon_free_client_sc() - -2001-12-09 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/auth.tex, lib/auth_anon.h, lib/gnutls.h.in, - lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_handshake.c, - lib/gnutls_int.h, src/cli.c: Fixes in anonymous authentication. - Fixes in client ciphersuite selection. - -2001-12-09 Nikos Mavrogiannopoulos - - * lib/debug.c, lib/gnutls_cert.c: GET_CN() now works. (affects debug - mode only) - -2001-12-09 Nikos Mavrogiannopoulos - - * src/.cvsignore, src/Makefile.am, src/README.crypt, - src/README.srpcrypt: crypt -> srpcrypt - -2001-12-09 Nikos Mavrogiannopoulos - - * NEWS, lib/auth_x509.c, lib/auth_x509.h, lib/gnutls_cert.c, - lib/gnutls_errors_int.h, lib/gnutls_handshake.c, lib/gnutls_int.h: - Optimizations in server certificate callback. - -2001-12-08 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls.h.in, lib/gnutls_db.c, lib/gnutls_int.h, - lib/gnutls_record.c: added gnutls_transport_get_ptr() and - gnutls_db_get_ptr() functions. - -2001-12-08 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/auth_x509.c, lib/ext_dnsname.c, - lib/ext_dnsname.h, lib/gnutls.h.in, lib/gnutls_extensions.c, - lib/gnutls_handshake.c, src/cli.c, src/serv.c: remove dnsname - (name_ind) extension - -2001-12-08 Nikos Mavrogiannopoulos - - * lib/auth_anon.c, lib/auth_dhe_dss.c, lib/auth_dhe_rsa.c, - lib/auth_srp.c, lib/auth_srp_passwd.c, lib/gnutls_buffers.c, - lib/gnutls_cert.c, lib/gnutls_dh_primes.c, lib/gnutls_gcry.c, - lib/gnutls_gcry.h, lib/gnutls_int.h, lib/gnutls_pk.c, - lib/gnutls_privkey.c, lib/gnutls_srp.c, lib/x509_extensions.c: - Cleanups. Now use GCRYMPI_FMT_STD instead of USG. - -2001-12-08 Nikos Mavrogiannopoulos - - * lib/gnutls_record.c: [no log message] - -2001-12-07 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/.cvsignore: [no log message] - -2001-12-07 Nikos Mavrogiannopoulos - - * doc/tex/auth.tex, doc/tex/ciphers.tex: added missing files - -2001-12-07 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/Makefile.am, doc/tex/ciphersuites.tex, - doc/tex/gnutls.tex, doc/tex/resumedb.tex, doc/tex/translayer.tex, - lib/.cvsignore: updated documentation - -2001-12-07 Nikos Mavrogiannopoulos - - * lib/auth_x509.c, lib/gnutls_int.h, lib/gnutls_ui.h: callbacks now - get a GNUTLS_STATE argument. - -2001-12-07 Nikos Mavrogiannopoulos - - * doc/tex/ciphersuites.tex, doc/tex/ex1.tex, doc/tex/ex2.tex, - doc/tex/ex3.tex, doc/tex/serv1.tex, doc/tex/srp1.tex, - lib/auth_x509.c, lib/gnutls.h.in, lib/gnutls_algorithms.c, - lib/gnutls_cert.c, lib/gnutls_int.h, src/cli.c, src/serv.c: - GNUTLS_KX_RSA renamed to GNUTLS_KX_X509PKI_RSA (and the other X509 - key exchange methods). This will allow GNUTLS_KX_PGP_RSA etc. - -2001-12-06 Nikos Mavrogiannopoulos - - * configure.in, doc/tex/ex1.tex, doc/tex/ex2.tex, - doc/tex/serv1.tex, doc/tex/srp1.tex, lib/defines.h, - lib/gnutls.h.in, lib/gnutls_algorithms.c, lib/gnutls_int.h, - lib/gnutls_priority.c, lib/gnutls_record.c, src/cli.c, src/serv.c: - GNUTLS_LIST is now int* - -2001-12-06 Nikos Mavrogiannopoulos - - * doc/tex/ex1.tex, doc/tex/ex2.tex, doc/tex/serv1.tex, - doc/tex/srp1.tex, lib/debug.c, lib/gnutls.h.in, - lib/gnutls_algorithms.c, lib/gnutls_cipher.c, - lib/gnutls_cipher_int.c, lib/gnutls_compress_int.c, - lib/gnutls_constate.c, lib/gnutls_errors_int.h, - lib/gnutls_hash_int.c, lib/gnutls_int.h, lib/gnutls_kx.c, - lib/gnutls_record.c, lib/gnutls_v2_compat.c, src/cli.c, src/serv.c: - cleanups again - -2001-12-06 Nikos Mavrogiannopoulos - - * lib/x509_ASN.y, lib/x509_asn1.c, lib/x509_asn1.h, lib/x509_der.c, - lib/x509_der.h: some changes to keep gcc -Wall happy - -2001-12-06 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/ex1.tex, doc/tex/ex2.tex, doc/tex/ex3.tex, - doc/tex/serv1.tex, doc/tex/srp1.tex, lib/auth_rsa.c, - lib/auth_x509.c, lib/auth_x509.h, lib/gnutls.h.in, - lib/gnutls_algorithms.c, lib/gnutls_cert.c, lib/gnutls_cert.h, - lib/gnutls_errors_int.h, lib/gnutls_global.c, lib/gnutls_int.h, - lib/gnutls_priority.c, lib/gnutls_priority.h, lib/gnutls_record.c, - lib/gnutls_record.h, src/cli.c, src/serv.c: Several cleanups. - -2001-12-05 Nikos Mavrogiannopoulos - - * NEWS, configure.in, doc/tex/ex1.tex, doc/tex/serv1.tex, - lib/gnutls.h.in, lib/gnutls_db.c, lib/gnutls_db.h, - lib/gnutls_session.c, lib/gnutls_session.h, src/cli.c, src/serv.c: - Changes in function names concerning _db_ handling and _session_ - handling. - -2001-12-05 Nikos Mavrogiannopoulos - - * NEWS, doc/TODO, doc/tex/ex1.tex, doc/tex/ex2.tex, - doc/tex/ex3.tex, doc/tex/serv1.tex, lib/auth_dhe_rsa.c, - lib/auth_x509.c, lib/auth_x509.h, lib/gnutls.h.in, - lib/gnutls_anon_cred.c, lib/gnutls_cert.c, lib/gnutls_cert.h, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_srp.c, - lib/gnutls_ui.h, src/cli.c, src/serv.c: Added callback to select the - server certificate. - -2001-12-05 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/ex1.tex, doc/tex/ex2.tex, doc/tex/ex3.tex, - lib/auth_x509.c, lib/gnutls_record.c, lib/gnutls_ui.c, - lib/gnutls_ui.h, src/cli.c, src/common.h, src/serv.c: optimized - certificate handling API - -2001-12-05 Nikos Mavrogiannopoulos - - * lib/auth_dhe_rsa.c, lib/auth_x509.c, lib/auth_x509.h, - lib/gnutls_cert.h, lib/gnutls_ui.h, src/serv.c: several cleanups. - Removed old unneeded functions. certificate verification was moved - out of the handshake procedure. - -2001-12-04 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in, lib/gnutls_buffers.c, lib/gnutls_global.c, - lib/gnutls_int.h, lib/gnutls_record.c: some cleanups - -2001-12-04 Nikos Mavrogiannopoulos - - * configure.in, lib/auth_dhe_rsa.c, lib/auth_x509.c, - lib/auth_x509.h, lib/gnutls.h.in, lib/gnutls_auth.c, - lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_errors.c, - lib/gnutls_errors_int.h, lib/gnutls_int.h, lib/gnutls_kx.c, - lib/gnutls_record.c, lib/gnutls_session_pack.c, lib/gnutls_ui.c, - lib/gnutls_ui.h, lib/x509_extensions.c, lib/x509_extensions.h, - src/Makefile.am, src/cli.c, src/common.h, src/port.h, src/serv.c: - now the peer's certificate list is stored into auth info structure - (instead of the certificate). several other cleanups. - -2001-12-04 Nikos Mavrogiannopoulos - - * lib/auth_x509.c, lib/auth_x509.h, lib/debug.c, lib/debug.h, - lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_handshake.c, - lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_ui.c, - lib/gnutls_ui.h, lib/x509_extensions.c, src/cli.c, src/serv.c: - moving gnutls_DN structures out of gnutls_cert and auth_info - structures. Now they are generated upon request. - -2001-12-01 Nikos Mavrogiannopoulos - - * acconfig.h, configure.in, lib/defines.h, lib/gnutls.h.in: fixes in - autoconf scripts - -2001-12-01 Nikos Mavrogiannopoulos - - * AUTHORS, Makefile.am, NEWS, acconfig.h, configure.in, - lib/auth_x509.c, lib/defines.h, lib/gnutls_random.c: updated - detection of library settings - -2001-11-30 Nikos Mavrogiannopoulos - - * AUTHORS, lib/auth_x509.c, lib/auth_x509.h, lib/gnutls_cert.c, - lib/gnutls_int.h, lib/x509_extensions.c, src/cli.c: The RDN sequence - needed in the certificate request message is now generated and - cached into a x509pki_credentials structure. This would save a lot - of time in the server side. - -2001-11-29 Nikos Mavrogiannopoulos - - * src/cli.c: [no log message] - -2001-11-29 Fabio Fiorina - - * doc/ASN1.readme.txt: overflow buffers check - -2001-11-29 Fabio Fiorina - - * doc/ASN1.readme.txt, lib/x509_ASN.y, lib/x509_asn1.c, - lib/x509_asn1.h: "" - -2001-11-29 Nikos Mavrogiannopoulos - - * NEWS, lib/Makefile.am, lib/auth_anon.c, lib/auth_dhe_rsa.c, - lib/auth_rsa.c, lib/auth_srp.c, lib/auth_x509.c, lib/auth_x509.h, - lib/gnutls_algorithms.c, lib/gnutls_auth.c, lib/gnutls_db.c, - lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_session.c, - lib/gnutls_session_pack.c, lib/gnutls_session_pack.h, - lib/gnutls_ui.c, lib/gnutls_ui.h, src/cli.c: introduced - gnutls_x509pki_get_certificate(). This function returns the peer's - certificate DER encoded. This certificate is also stored in the - resume db. - -2001-11-28 Nikos Mavrogiannopoulos - - * lib/gnutls_db.h: [no log message] - -2001-11-26 Nikos Mavrogiannopoulos - - * THANKS, configure.in, doc/README.autoconf, doc/TODO, - lib/gnutls.h.in, lib/gnutls_db.c, lib/libgnutls.m4: cleanups and - some corrections. - -2001-11-25 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/ex1.tex, doc/tex/ex2.tex, doc/tex/srp1.tex, - lib/gnutls.h.in, lib/gnutls_buffers.c, lib/gnutls_buffers.h, - lib/gnutls_db.c, lib/gnutls_handshake.c, lib/gnutls_handshake.h, - lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_kx.h, - lib/gnutls_record.c, lib/gnutls_record.h, src/cli.c, src/serv.c: - gnutls_handshake(), gnutls_read() etc. functions no longer require - the 'SOCKET cd' argument. This argument is set using the function - gnutls_set_transport_ptr(). - -2001-11-24 Nikos Mavrogiannopoulos - - * doc/README.autoconf: [no log message] - -2001-11-23 Nikos Mavrogiannopoulos - - * doc/README.autoconf: gnutls.m4 -> libgnutls.m4 - -2001-11-23 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am: added new pictures - -2001-11-23 Nikos Mavrogiannopoulos - - * doc/tex/ciphersuites.tex: updated - -2001-11-23 Nikos Mavrogiannopoulos - - * doc/Makefile.am: [no log message] - -2001-11-20 Nikos Mavrogiannopoulos - - * doc/scripts/gdoc: [no log message] - -2001-11-20 Nikos Mavrogiannopoulos - - * doc/scripts/gdoc: produces better tex output - -2001-11-20 Nikos Mavrogiannopoulos - - * doc/scripts/gdoc, lib/gnutls_ui.c: updated documentation (and - generation of tex) - -2001-11-20 Nikos Mavrogiannopoulos - - * AUTHORS: updated - -2001-11-20 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c: fixed gnutls_kx_get_name() - -2001-11-20 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c, lib/gnutls_ui.h: cleanups - -2001-11-17 Nikos Mavrogiannopoulos - - * doc/scripts/gdoc, lib/gnutls_record.c, lib/x509_asn1.c: Gdoc - updated. Now handles powers and '->' symbol automatically for tex. - -2001-11-16 Nikos Mavrogiannopoulos - - * NEWS, doc/TODO: [no log message] - -2001-11-16 Nikos Mavrogiannopoulos - - * lib/x509_der.c: corrected typo - -2001-11-16 Nikos Mavrogiannopoulos - - * doc/ASN1.readme.txt, doc/scripts/gdoc, doc/tex/Makefile.am, - doc/tex/asn1.tex, doc/tex/gnutls.tex, lib/Makefile.am, - lib/x509_ASN.y, lib/x509_asn1.c, lib/x509_der.c: Documentation for - ASN.1 has been moved to inline comments and to the tex - documentation. - -2001-11-15 Nikos Mavrogiannopoulos - - * lib/gnutls_errors.c, lib/gnutls_errors_int.h: removed E_TIMEOUT - -2001-11-15 Nikos Mavrogiannopoulos - - * configure.in, lib/auth_dhe_rsa.c, lib/auth_srp.c, - lib/auth_x509.c, lib/gnutls_buffers.c, lib/gnutls_buffers.h, - lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_record.c, - src/serv.c: corrected some obscure bugs in the handshake and record - send buffering code. - -2001-11-13 Nikos Mavrogiannopoulos - - * lib/gnutls_int.h: removed debugging stuff - -2001-11-13 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2001-11-13 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2001-11-13 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2001-11-13 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2001-11-13 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2001-11-13 Nikos Mavrogiannopoulos - - * NEWS, THANKS: [no log message] - -2001-11-13 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c: more fixes - -2001-11-13 Nikos Mavrogiannopoulos - - * lib/auth_rsa.c, lib/gnutls_algorithms.c, lib/gnutls_buffers.c, - lib/gnutls_cipher.c, lib/gnutls_constate.c, lib/gnutls_handshake.c, - lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_kx.c, - lib/gnutls_priority.c, lib/gnutls_record.c, lib/io_debug.h, - src/serv.c: more non blocking IO fixes - -2001-11-12 Nikos Mavrogiannopoulos - - * src/cli.c: now resolves hostnames. - -2001-11-12 Nikos Mavrogiannopoulos - - * lib/defines.h, lib/gnutls_priority.c: va_copy macro renamed to - VA_COPY - -2001-11-12 Nikos Mavrogiannopoulos - - * configure.in: now requires autoconf 2.50 - -2001-11-10 Nikos Mavrogiannopoulos - - * NEWS, configure.in, lib/ext_max_record.c, lib/gnutls.h.in, - lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cert.c, - lib/gnutls_cert.h, lib/gnutls_compress_int.c, lib/gnutls_global.c, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_mem.c, - lib/gnutls_mem.h, lib/gnutls_privkey.c, lib/gnutls_record.c, - lib/io_debug.h, src/cli.c, src/serv.c: several fixes. Including: - max_record_header extension. - resume handshake sending wrong ssl version - Non blocking IO (not ready yet) - -2001-11-08 Nikos Mavrogiannopoulos - - * lib/gnutls_buffers.c, lib/gnutls_int.h: [no log message] - -2001-11-08 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/Makefile.am, doc/tex/resumedb.tex, - doc/tex/translayer.tex, lib/auth_x509.c, lib/gnutls.h.in, - lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_global.c, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_record.c, - src/cli.c: cleanups and documentation updates - -2001-11-08 Nikos Mavrogiannopoulos - - * lib/auth_x509.c: rolled back previous change... - -2001-11-08 Nikos Mavrogiannopoulos - - * lib/auth_x509.c: made empty certificate message consistent with - other implementations. - -2001-11-07 Nikos Mavrogiannopoulos - - * lib/auth_anon.c, lib/auth_dhe_rsa.c, lib/auth_srp.c, - lib/auth_srp_passwd.c, lib/auth_x509.c, lib/gnutls_buffers.c, - lib/gnutls_cert.c, lib/gnutls_dh.c, lib/gnutls_dh_primes.c, - lib/gnutls_gcry.c, lib/gnutls_gcry.h, lib/gnutls_pk.c, - lib/gnutls_privkey.c, lib/gnutls_record.c, lib/gnutls_session.c, - lib/gnutls_sig.c, lib/gnutls_srp.c, lib/x509_sig_check.c: corrected - memory leaks and other bugs - -2001-11-06 Nikos Mavrogiannopoulos - - * lib/gnutls_buffers.c: added warning - -2001-11-06 Nikos Mavrogiannopoulos - - * NEWS, configure.in, lib/Makefile.am, lib/ext_dnsname.c, - lib/ext_max_record.c, lib/ext_max_record.h, lib/ext_srp.c, - lib/gnutls.h.in, lib/gnutls_constate.c, lib/gnutls_errors.c, - lib/gnutls_errors_int.h, lib/gnutls_extensions.c, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_record.c, - src/cli.c: added max_record_size extension - -2001-11-06 Nikos Mavrogiannopoulos - - * lib/gnutls_session.c: corrected bug which made - get_current_session, not to return the right size of the session. - -2001-11-05 Nikos Mavrogiannopoulos - - * NEWS, lib/auth_dhe_rsa.c, lib/gnutls_buffers.c, - lib/gnutls_buffers.h, lib/gnutls_int.h, lib/gnutls_mem.c, - lib/gnutls_record.c: receive buffer is now dynamic. - -2001-11-05 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_handshake.c, lib/gnutls_record.c, src/cli.c: - changed semantics of the GNUTLS_E_REHANDSHAKE error code. - -2001-11-05 Nikos Mavrogiannopoulos - - * acconfig.h, configure.in, lib/defines.h, lib/gnutls_priority.c: - added support for va_copy - -2001-11-05 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2001-11-05 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/translayer.tex, lib/gnutls_db.c, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_record.c, - src/serv.c: cleanups - -2001-11-05 Nikos Mavrogiannopoulos - - * lib/gnutls_priority.h: list -> gnutls_list - -2001-11-04 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in, lib/gnutls_anon_cred.c, lib/gnutls_int.h, - lib/gnutls_priority.c: changed LIST to GNUTLS_LIST - -2001-11-04 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in, lib/gnutls_db.c: added new function to check for - expired sessions. - -2001-11-04 Nikos Mavrogiannopoulos - - * lib/gnutls_record.c: cleanups - -2001-11-02 Nikos Mavrogiannopoulos - - * lib/gnutls_buffers.c, lib/gnutls_buffers.h, - lib/gnutls_handshake.c, lib/gnutls_record.c, lib/gnutls_sig.c: - cleanups in function names - -2001-11-02 Nikos Mavrogiannopoulos - - * lib/gnutls_db.c: cleanups in the resuming code - -2001-11-02 Nikos Mavrogiannopoulos - - * NEWS, THANKS, configure.in, lib/gnutls.h.in, lib/gnutls_db.c, - lib/gnutls_db.h, lib/gnutls_int.h, lib/gnutls_record.c: added hooks - in order to use external database to store session to be resumed. - Works but it is not finished. - -2001-11-02 Nikos Mavrogiannopoulos - - * lib/gnutls_buffers.c, lib/gnutls_global.c, lib/gnutls_int.h: - set_push() & set_pull() functions moved to state (instead of being - global) - -2001-11-02 Nikos Mavrogiannopoulos - - * README.CVS, doc/Makefile.am, doc/README.CVS: moved README.CVS to - doc/ - -2001-11-01 Nikos Mavrogiannopoulos - - * README.CVS: added documentation of the steps required to built the - cvs tree - -2001-11-01 Nikos Mavrogiannopoulos - - * lib/auth_srp.c, lib/auth_srp_passwd.c, lib/auth_x509.c, - lib/gnutls_auth.c, lib/gnutls_buffers.c, lib/gnutls_buffers.h, - lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h, - lib/gnutls_kx.c, lib/gnutls_mem.c, lib/gnutls_record.c, - lib/gnutls_record.h, lib/io_debug.h, src/cli.c, src/serv.c: Adopted - some of the patches of Jon Nelson. Fixes the non blocking behaviour. - -2001-10-31 Nikos Mavrogiannopoulos - - * lib/gnutls_int.h: [no log message] - -2001-10-30 Nikos Mavrogiannopoulos - - * lib/gnutls_buffers.c, lib/gnutls_record.c: corrected and fixed - several things in send_int() etc. - -2001-10-30 Nikos Mavrogiannopoulos - - * doc/tex/translayer.tex: Added missing file. - -2001-10-30 Nikos Mavrogiannopoulos - - * configure.in: [no log message] - -2001-10-30 Nikos Mavrogiannopoulos - - * doc/Makefile.am, doc/TODO, doc/scripts/Makefile.am: added scripts - into distribution - -2001-10-30 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c: [no log message] - -2001-10-30 Nikos Mavrogiannopoulos - - * lib/gnutls_db.c, lib/gnutls_session.c: corrected bugs in session - resuming. - -2001-10-27 Nikos Mavrogiannopoulos - - * NEWS, configure.in, lib/gnutls_db.c, lib/gnutls_int.h, - lib/gnutls_mem.c, lib/gnutls_session.c: [no log message] - -2001-10-23 Nikos Mavrogiannopoulos - - * lib/gnutls_buffers.c, lib/gnutls_int.h, lib/io_debug.h: cleanups - -2001-10-23 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/io_debug.h: added IO debugging code - -2001-10-23 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in: [no log message] - -2001-10-23 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_buffers.c, lib/gnutls_handshake.c, - lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_kx.c, - lib/gnutls_kx.h, lib/gnutls_record.c: added some checks for memory - allocation. Fixes in write interrupts. - -2001-10-23 Nikos Mavrogiannopoulos - - * lib/gnutls_buffers.c: corrected bugs which could break non - blocking IO - -2001-10-22 Nikos Mavrogiannopoulos - - * PGPKEYS: added file. Holds pgp keys - -2001-10-22 Nikos Mavrogiannopoulos - - * lib/gnutls_buffers.c, lib/gnutls_record.c: corrections for the - gnutls_read_buffered() function. - -2001-10-22 Nikos Mavrogiannopoulos - - * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_int.h, - lib/gnutls_record.c, src/serv.c: updated/fixed the handling of - interrupted writes - -2001-10-21 Nikos Mavrogiannopoulos - - * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_errors.c, - lib/gnutls_errors_int.h, lib/gnutls_int.h, lib/gnutls_record.c: - changed gnutls_write() semantics in order to cope with interrupted - system calls and non blocking IO - -2001-10-21 Nikos Mavrogiannopoulos - - * lib/gnutls_buffers.c: [no log message] - -2001-10-21 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in, lib/gnutls_int.h: [no log message] - -2001-10-21 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/Makefile.am, doc/tex/gnutls.tex, lib/gnutls.h.in, - lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_global.c, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_record.c: - changes in order to be independent of the berkeley style sockets - (but it is still difficult to use gnutls with any other api) - -2001-10-21 Nikos Mavrogiannopoulos - - * lib/gnutls_buffers.c: made gnutls_write() unaware of interrupted - system calls and eagain errors. - -2001-10-21 Nikos Mavrogiannopoulos - - * THANKS, doc/tex/resumedb.tex, lib/gnutls_buffers.c, - lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_record.c, - lib/gnutls_ui.c, lib/gnutls_ui.h, src/serv.c: several cleanups - -2001-10-20 Nikos Mavrogiannopoulos - - * lib/gnutls_buffers.c, lib/gnutls_int.h: Corrected short read bug - -2001-10-20 Nikos Mavrogiannopoulos - - * lib/gnutls_buffers.c: corrected _gnutls_write() - -2001-10-20 Nikos Mavrogiannopoulos - - * lib/gnutls_buffers.c: peeked data now stays also in handshake - -2001-10-20 Nikos Mavrogiannopoulos - - * lib/gnutls_kx.c: corrected bug which caused a fatal alert to be - sent even if it wasn't required - -2001-10-20 Nikos Mavrogiannopoulos - - * lib/auth_x509.c, lib/gnutls_record.c, lib/gnutls_sig.c, src/cli.c: - [no log message] - -2001-10-20 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls_buffers.c, lib/gnutls_errors.c, - lib/gnutls_errors_int.h, lib/gnutls_handshake.c, - lib/gnutls_record.c: introduced GNUTLS_E_INTERRUPTED, fixes in error - handling - -2001-10-20 Nikos Mavrogiannopoulos - - * lib/gnutls_buffers.c, lib/gnutls_handshake.c, lib/gnutls_int.h: - the gnutls handshake protocol can now hold it's state. Thus it may - be used in some kind of non blocking mode. Not tested at all - -2001-10-19 Nikos Mavrogiannopoulos - - * NEWS, doc/TODO, lib/gnutls_buffers.c, lib/gnutls_buffers.h, - lib/gnutls_errors.c, lib/gnutls_errors_int.h, - lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h, - lib/gnutls_record.c: clean ups in the handshake protocol - -2001-10-15 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am, doc/tex/ex1.tex, doc/tex/gnutls.tex, - doc/tex/resumedb.tex: [no log message] - -2001-10-15 Nikos Mavrogiannopoulos - - * NEWS, configure.in, doc/TODO, doc/tex/ex3.tex, doc/tex/serv1.tex, - lib/auth_dhe_rsa.c, lib/auth_rsa.c, lib/auth_x509.c, - lib/auth_x509.h, lib/gnutls.h.in, lib/gnutls_auth.c, - lib/gnutls_auth_int.h, lib/gnutls_errors.c, - lib/gnutls_errors_int.h, lib/gnutls_ui.c, lib/gnutls_ui.h, - src/cli.c, src/serv.c: auth_info types and structures were moved to - the internals of the library. This makes the library incompatible - (source & binary) with the previous versions. - -2001-10-12 Nikos Mavrogiannopoulos - - * lib/ext_srp.c, lib/gnutls.h.in, lib/gnutls_cert.c, - lib/gnutls_dh_primes.c, lib/gnutls_errors.c, - lib/gnutls_errors_int.h, lib/gnutls_ui.h: added option to regenerate - primes and generators for EDH - -2001-10-11 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2001-10-10 Nikos Mavrogiannopoulos - - * NEWS, lib/auth_x509.c, lib/ext_dnsname.c, lib/ext_dnsname.h, - lib/gnutls.h.in, lib/gnutls_cert.c, lib/gnutls_cert.h, - lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_int.h, - src/cli.c, src/crypt.c, src/serv.c: updated name indication - extension (dnsname) - -2001-10-10 Nikos Mavrogiannopoulos - - * src/Makefile.am, src/crypt-gaa.c, src/crypt.gaa: renamed crypt to - srpcrypt. - -2001-10-10 Nikos Mavrogiannopoulos - - * NEWS, doc/TODO, lib/auth_anon.c, lib/gnutls_dh.h, - lib/gnutls_dh_primes.c, lib/gnutls_global.c, lib/gnutls_int.h, - src/crypt.c: better prime handling - -2001-10-09 Nikos Mavrogiannopoulos - - * doc/tex/ciphersuites.tex: [no log message] - -2001-10-09 Nikos Mavrogiannopoulos - - * lib/.cvsignore: [no log message] - -2001-10-09 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/auth_dhe_rsa.c, lib/auth_srp_passwd.c, - lib/auth_x509.c, lib/gnutls.h.in, lib/gnutls_dh.c, lib/gnutls_dh.h, - lib/gnutls_dh_primes.c, lib/gnutls_record.h, lib/gnutls_srp.c: - Updated the handling of prime numbers. - -2001-10-08 Nikos Mavrogiannopoulos - - * lib/auth_dhe_rsa.c, lib/auth_x509.c, lib/gnutls.h.in, - lib/gnutls_buffers.c, lib/gnutls_cert.c, lib/gnutls_cert.h, - lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h, - lib/gnutls_record.c, lib/gnutls_sig.c, lib/gnutls_sig.h: several - cleanups - -2001-10-08 Nikos Mavrogiannopoulos - - * lib/gnutls_sig.c: [no log message] - -2001-10-08 Nikos Mavrogiannopoulos - - * NEWS, THANKS, configure.in, doc/tex/ex3.tex, lib/auth_anon.c, - lib/auth_dhe_rsa.c, lib/auth_x509.c, lib/auth_x509.h, - lib/gnutls_algorithms.c, lib/gnutls_cert.c, lib/gnutls_cert.h, - lib/gnutls_datum.c, lib/gnutls_int.h, lib/gnutls_record.c, - lib/gnutls_sig.c, lib/gnutls_sig.h, lib/x509_extensions.c, - src/cli.c, src/serv.c: added DHE_RSA ciphersuites - -2001-10-08 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-ciphersuite-03.txt, - doc/protocol/draft-ietf-tls-ciphersuite-05.txt, - doc/protocol/draft-ietf-tls-extensions-00.txt, - doc/protocol/draft-ietf-tls-extensions-01.txt, - doc/protocol/draft-ietf-tls-kerb-00.txt, doc/protocol/rfc2712.txt: - updated documents - -2001-10-07 Nikos Mavrogiannopoulos - - * lib/gnutls_errors.c, lib/x509_extensions.c: [no log message] - -2001-10-07 Nikos Mavrogiannopoulos - - * lib/x509_asn1.c, lib/x509_extensions.c: fixes in the certificate - extensions handling code. Bugs reported by Neil Spring - - -2001-09-27 Nikos Mavrogiannopoulos - - * doc/tex/gnutls.tex: [no log message] - -2001-09-27 Nikos Mavrogiannopoulos - - * doc/tex/ciphersuites.tex: [no log message] - -2001-09-25 Nikos Mavrogiannopoulos - - * buildconf, doc/tex/macros.tex: [no log message] - -2001-09-25 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am, doc/tex/ciphersuites.tex, doc/tex/gnutls.tex: - more documentation - -2001-09-24 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2001-09-23 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/auth_anon.c, lib/auth_rsa.c, - lib/auth_x509.c, lib/auth_x509.h, lib/gnutls_cert.c, - lib/gnutls_dh.h, lib/gnutls_ui.c, lib/gnutls_ui.h: several cleanups - in order to support DHE_RSA - -2001-09-23 Nikos Mavrogiannopoulos - - * lib/auth_dhe_rsa.c: Preliminary support for DHE_RSA - -2001-09-21 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2001-09-21 Nikos Mavrogiannopoulos - - * lib/auth_dhe_dss.c, lib/gnutls_compress_int.h, lib/gnutls_num.c: - [no log message] - -2001-09-19 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am: [no log message] - -2001-09-19 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2001-09-19 Nikos Mavrogiannopoulos - - * lib/gnutls_cert.c: updated documentation - -2001-09-17 Nikos Mavrogiannopoulos - - * README, doc/TODO: [no log message] - -2001-09-14 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/ex3.tex, lib/Makefile.am, lib/auth_rsa.c, - lib/auth_x509.c, lib/auth_x509.h, lib/gnutls.h.in, - lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_errors.c, - lib/gnutls_int.h, lib/gnutls_ui.c, lib/gnutls_ui.h, - lib/x509_extensions.c, src/cli.c, src/serv.c: Client certificate - callback has been improved - -2001-09-12 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2001-09-10 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2001-09-07 Nikos Mavrogiannopoulos - - * doc/README.autoconf, doc/TODO: [no log message] - -2001-09-04 Nikos Mavrogiannopoulos - - * NEWS, configure.in, doc/tex/Makefile.am, lib/Makefile.am: updated - documentation generation - -2001-09-04 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2001-09-03 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c: updated documentation - -2001-08-27 Nikos Mavrogiannopoulos - - * src/cli.c: [no log message] - -2001-08-27 Nikos Mavrogiannopoulos - - * lib/gnutls_global.c, lib/gnutls_int.h, lib/gnutls_num.h: minor - bugfixes - -2001-08-26 Nikos Mavrogiannopoulos - - * acconfig.h, configure.in, lib/gnutls_global.c: use of sigaction - instead of signal(), to ignore SIGPIPE - -2001-08-26 Nikos Mavrogiannopoulos - - * buildconf: [no log message] - -2001-08-26 Nikos Mavrogiannopoulos - - * NEWS, configure.in, doc/tex/Makefile.am, doc/tex/cover.tex, - doc/tex/cover.tex.in, doc/tex/serv1.tex, lib/auth_rsa.c, - lib/auth_x509.h, lib/gnutls.h.in, lib/gnutls_cert.c, - lib/gnutls_int.h, lib/gnutls_ui.c, lib/gnutls_ui.h, src/serv.c: - gnutls_set_certificate_request() renamed to - gnutls_x509pki_set_cert_request(). Added - gnutls_x509pki_set_cert_callback(). - -2001-08-26 Nikos Mavrogiannopoulos - - * NEWS, doc/TODO, lib/gnutls.h.in, lib/gnutls_anon_cred.c, - lib/gnutls_cipher.c, lib/gnutls_record.c, lib/x509_asn1.c, - lib/x509_asn1.h, lib/x509_b64.c, lib/x509_der.c, src/serv.c: fixed - memory leaks - -2001-08-25 Nikos Mavrogiannopoulos - - * configure.in, lib/gnutls.h.in: updated gnutls.h file - -2001-08-25 Nikos Mavrogiannopoulos - - * doc/tex/cover.tex: [no log message] - -2001-08-25 Nikos Mavrogiannopoulos - - * doc/tex/cover.tex, lib/gnutls_buffers.c, lib/gnutls_buffers.h, - lib/gnutls_record.c, lib/gnutls_ui.c, src/serv.c: some memory - optimization while receiving packets - -2001-08-25 Nikos Mavrogiannopoulos - - * lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_record.c: - header size is now written in gnutls_cipher.c - -2001-08-20 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2001-08-20 Nikos Mavrogiannopoulos - - * lib/auth_rsa.c, lib/gnutls.h.in, lib/gnutls_int.h, - lib/gnutls_record.c, src/cli.c, src/serv.c: bugfixes and minor - updates - -2001-08-20 Nikos Mavrogiannopoulos - - * doc/tex/ex1.tex, doc/tex/ex2.tex, doc/tex/ex3.tex, - doc/tex/serv1.tex, doc/tex/srp1.tex: corrected and updated - documentation - -2001-08-20 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in, lib/gnutls_int.h, lib/gnutls_record.c, - src/cli.c, src/serv.c: changed gnutls_bye() behaviour - -2001-08-19 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2001-08-19 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in, lib/gnutls_buffers.c, lib/gnutls_int.h, - lib/gnutls_record.c: several fixes in gnutls_bye() function, and in - gnutls_recv_int() - -2001-08-19 Nikos Mavrogiannopoulos - - * lib/gnutls_cert.c: corrected bugs in version handling and in - certificate initialization - -2001-08-19 Nikos Mavrogiannopoulos - - * NEWS, configure.in, lib/auth_srp.c, lib/ext_srp.c, - lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_errors.c, - lib/gnutls_errors_int.h, lib/gnutls_int.h, lib/gnutls_record.c, - src/cli.c: better support for buffered read and several cleanups - -2001-08-19 Nikos Mavrogiannopoulos - - * lib/gnutls_cipher.c, lib/gnutls_kx.c, lib/gnutls_record.c: gnutls - now sends (again) record packets using one write. - -2001-08-19 Nikos Mavrogiannopoulos - - * lib/gnutls_srp.c: corrected free for data not belonging to the - heap - -2001-08-18 Nikos Mavrogiannopoulos - - * lib/auth_anon.c, lib/auth_srp.c, lib/auth_srp_passwd.c, - lib/crypt_bcrypt.c, lib/gnutls_buffers.c, lib/gnutls_dh.c, - lib/gnutls_handshake.c, lib/gnutls_mem.c, lib/gnutls_mem.h, - lib/gnutls_srp.c: several checks for failed allocations and other - fixes - -2001-08-07 Nikos Mavrogiannopoulos - - * src/cli.c: [no log message] - -2001-08-07 Nikos Mavrogiannopoulos - - * lib/auth_anon.c, lib/auth_srp.c, lib/auth_srp.h, - lib/auth_srp_passwd.c, lib/ext_srp.c, lib/gnutls_dh.c, - lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_int.h, - lib/gnutls_privkey.c, src/cli.c: fixes in SRP key exchange and - several others. - -2001-08-07 Nikos Mavrogiannopoulos - - * NEWS, configure.in, doc/tex/ex3.tex, doc/tex/serv1.tex, - lib/auth_rsa.c, lib/ext_srp.c, lib/gnutls_auth_int.h, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, - lib/gnutls_sig.c, lib/gnutls_sig.h, lib/gnutls_ui.h, - lib/x509_sig_check.c, lib/x509_verify.c, src/cli.c, src/serv.c: - server side client authentication works - -2001-08-07 Nikos Mavrogiannopoulos - - * doc/TODO, lib/auth_anon.c, lib/auth_rsa.c, lib/auth_srp.c, - lib/auth_x509.h, lib/gnutls.h.in, lib/gnutls_auth.h, - lib/gnutls_cert.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, - lib/gnutls_kx.h, src/serv.c: additions in order for gnutls server to - support client authentication - -2001-08-07 Nikos Mavrogiannopoulos - - * lib/auth_rsa.c, lib/gnutls_buffers.c, lib/gnutls_cipher.c, - lib/gnutls_constate.c, lib/gnutls_errors.c, - lib/gnutls_errors_int.h, lib/gnutls_handshake.c, lib/gnutls_int.h, - lib/gnutls_kx.c, lib/gnutls_pk.c: ssl3 fixes and several others. - -2001-08-07 Nikos Mavrogiannopoulos - - * lib/gnutls_mem.c: realloc does not realloc memory if less size is - requested. - -2001-08-06 Nikos Mavrogiannopoulos - - * lib/auth_rsa.c, lib/gnutls_cert.c, lib/gnutls_errors.c, - lib/gnutls_errors_int.h, lib/gnutls_handshake.c, lib/gnutls_int.h: - updated in key usage fields - -2001-08-06 Nikos Mavrogiannopoulos - - * lib/gnutls_int.h, lib/gnutls_sig.c, lib/gnutls_sig.h, - lib/x509_sig_check.c: cleanups in the signature generating functions - -2001-08-06 Nikos Mavrogiannopoulos - - * lib/gnutls_kx.c: [no log message] - -2001-08-06 Nikos Mavrogiannopoulos - - * NEWS, lib/auth_anon.c, lib/auth_anon.h, lib/auth_rsa.c, - lib/auth_srp.c, lib/auth_srp.h, lib/auth_x509.c, lib/auth_x509.h, - lib/ext_srp.c, lib/gnutls.h.in, lib/gnutls_auth.c, - lib/gnutls_buffers.c, lib/gnutls_handshake.c, - lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_kx.c, - lib/gnutls_ui.c, lib/gnutls_ui.h, lib/gnutls_v2_compat.c, - src/cli.c, src/serv.c: several fixes. Added client authentication - with x509PKI - -2001-08-06 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/auth_rsa.c, lib/gnutls_buffers.c, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, - lib/gnutls_sig.c, lib/gnutls_sig_check.c, lib/x509_sig_check.c: more - x509 client certificate stuff - -2001-08-06 Nikos Mavrogiannopoulos - - * src/x509/clicert.pem, src/x509/clikey.pem: added client - certificates - -2001-08-06 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/auth_rsa.c, lib/gnutls_cert.h, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, - lib/gnutls_pk.c, lib/gnutls_sig.c, lib/gnutls_sig.h, src/cli.c, - src/x509/Makefile.am: several additions for x509 client - authentication - -2001-08-06 Nikos Mavrogiannopoulos - - * lib/auth_rsa.c, lib/gnutls_buffers.c, lib/gnutls_cert.c, - lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h, - lib/gnutls_kx.c, lib/gnutls_mem.c, lib/gnutls_mem.h, - lib/gnutls_record.c: added the concept of optional handshake packets - (like CERTIFICATE_REQUEST). several other fixes. - -2001-08-05 Nikos Mavrogiannopoulos - - * lib/auth_anon.c, lib/auth_anon.h, lib/auth_rsa.c, lib/auth_srp.c, - lib/auth_srp.h, lib/auth_x509.h, lib/ext_srp.c, - lib/gnutls_algorithms.c, lib/gnutls_auth.h, lib/gnutls_cert.c, - lib/gnutls_cert.h, lib/gnutls_handshake.c, lib/gnutls_int.h, - lib/gnutls_kx.c, lib/gnutls_kx.h, lib/gnutls_record.c, - lib/gnutls_ui.c: several cleanups and updates in the handshake - protocol implementation iolaiiiiiCVS: - - ---------------------------------------------------------------------- - -2001-08-05 Nikos Mavrogiannopoulos - - * configure.in, doc/tex/ex3.tex, doc/tex/serv1.tex, - lib/Makefile.am, lib/auth_x509.c, lib/auth_x509.h, lib/gnutls.h.in, - lib/gnutls_cert.h, lib/gnutls_errors_int.h, lib/gnutls_int.h, - lib/gnutls_ui.c, lib/gnutls_ui.h, src/cli.c, src/serv.c: several - cleanups. No longer export structures to the API, but a bunch of - functions in order to access them. - -2001-08-05 Nikos Mavrogiannopoulos - - * doc/tex/ex1.tex, doc/tex/ex2.tex, doc/tex/ex3.tex: - gnutls_x509_set_cn() was removed - -2001-08-05 Nikos Mavrogiannopoulos - - * doc/README.autoconf, doc/TODO: [no log message] - -2001-08-05 Nikos Mavrogiannopoulos - - * lib/.cvsignore, lib/x509_asn1.h, lib/x509_der.h: [no log message] - -2001-08-05 Nikos Mavrogiannopoulos - - * configure.in, lib/gnutls.h.in, lib/gnutls_global.c, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_record.c, - src/.cvsignore: added new function gnutls_send_alert() to the api - -2001-08-05 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/auth_rsa.c, lib/auth_x509.c, - lib/auth_x509.h, lib/gnutls.h.in, lib/gnutls_cert.c, - lib/gnutls_cert.h: cleanups in certificate copying - -2001-08-05 Nikos Mavrogiannopoulos - - * src/CertificateExample.c, src/CrlExample.c, src/Makefile.am, - src/asn1c.c, src/prime.c: fixes for the new files - -2001-08-05 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/auth_rsa.c, lib/auth_srp_passwd.c, - lib/cert_ASN.y, lib/cert_asn1.c, lib/cert_asn1.h, lib/cert_b64.c, - lib/cert_b64.h, lib/cert_der.c, lib/cert_der.h, lib/cert_verify.c, - lib/cert_verify.h, lib/gnutls_cert.c, lib/gnutls_cert.h, - lib/gnutls_global.c, lib/gnutls_global.h, lib/gnutls_privkey.c, - lib/gnutls_sig_check.c, lib/pkcs1_asn1_tab.c, lib/pkix_asn1_tab.c, - lib/x509_ASN.y, lib/x509_asn1.c, lib/x509_asn1.h, lib/x509_b64.c, - lib/x509_b64.h, lib/x509_der.c, lib/x509_der.h, - lib/x509_extensions.c, lib/x509_extensions.h, lib/x509_verify.c, - lib/x509_verify.h: renamed cert_* to x509_* - -2001-08-04 Nikos Mavrogiannopoulos - - * lib/cert_asn1.c, lib/cert_asn1.h, lib/cert_der.c, lib/cert_der.h, - lib/gnutls_cert.c: asn1_read_value() will no longer overflow the - given buffer. (this assumes that the caller provided the size of - the buffer) - -2001-08-04 Nikos Mavrogiannopoulos - - * lib/auth_rsa.c, lib/auth_x509.h, lib/gnutls.h.in, - lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_handshake.c, - lib/gnutls_int.h, lib/gnutls_sig_check.c: fixes in x509 cert - extensions handling - -2001-08-04 Nikos Mavrogiannopoulos - - * lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_errors.c, - lib/gnutls_handshake.c, lib/gnutls_int.h: minor fixes - -2001-08-04 Nikos Mavrogiannopoulos - - * lib/gnutls_mem.c, lib/gnutls_mem.h: added internal memory handlers - -2001-08-04 Nikos Mavrogiannopoulos - - * NEWS, lib/Makefile.am, lib/auth_rsa.c, lib/cert_b64.c, - lib/crypt_bcrypt.c, lib/crypt_srpsha1.c, lib/gnutls_algorithms.c, - lib/gnutls_datum.h, lib/gnutls_global.c, lib/gnutls_hash_int.c, - lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_pk.c, - src/serv.c: added internal memory handlers - -2001-08-03 Nikos Mavrogiannopoulos - - * doc/tex/gnutls.tex: [no log message] - -2001-08-02 Nikos Mavrogiannopoulos - - * lib/gnutls_cert.c: [no log message] - -2001-08-02 Nikos Mavrogiannopoulos - - * lib/gnutls_cert.c, src/cli.c: subjectAltName related fixes - -2001-08-02 Nikos Mavrogiannopoulos - - * lib/auth_rsa.c, lib/auth_x509.h, lib/cert_verify.c, - lib/cert_verify.h, lib/gnutls.h.in, lib/gnutls_auth.c, - lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_errors.c, - lib/gnutls_errors_int.h, lib/gnutls_int.h, lib/gnutls_record.c, - src/cli.c: added some kind of support for X509 Extensions - -2001-08-02 Nikos Mavrogiannopoulos - - * doc/tex/cover.tex, doc/tex/ex3.tex, doc/tex/gnutls.tex, - doc/tex/macros.tex: [no log message] - -2001-08-02 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am, doc/tex/cover.tex, doc/tex/fdl.tex, - doc/tex/gnutls.tex, doc/tex/macros.tex: documentation updates - -2001-08-02 Nikos Mavrogiannopoulos - - * doc/tex/ex1.tex, doc/tex/ex2.tex, doc/tex/ex3.tex, - doc/tex/gnutls.tex, doc/tex/serv1.tex, doc/tex/srp1.tex, - lib/gnutls_auth.c, lib/gnutls_record.c: documentation fixes - -2001-07-31 Nikos Mavrogiannopoulos - - * doc/scripts/gdoc, doc/tex/Makefile.am, doc/tex/gnutls.tex, - lib/auth_anon.c, lib/auth_anon.h, lib/auth_srp.c, lib/auth_srp.h, - lib/auth_srp_passwd.c, lib/ext_srp.c, lib/gnutls_anon_cred.c, - lib/gnutls_srp.c: fixed api documentation (for srp and anon cred - allocation) - -2001-07-30 Nikos Mavrogiannopoulos - - * NEWS, doc/tex/Makefile.am, doc/tex/serv1.tex, - lib/gnutls_global.c, lib/gnutls_int.h: [no log message] - -2001-07-30 Nikos Mavrogiannopoulos - - * configure.in: added profiler option - -2001-07-30 Nikos Mavrogiannopoulos - - * lib/auth_srp_sb64.c, lib/cert_b64.c, lib/debug.c, - lib/gnutls.h.in, lib/gnutls_algorithms.c, lib/gnutls_buffers.c, - lib/gnutls_cert.c, lib/gnutls_constate.c, lib/gnutls_errors.c, - lib/gnutls_errors.h, lib/gnutls_global.c, lib/gnutls_handshake.c, - lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_record.c, - lib/gnutls_sig_check.c, lib/gnutls_v2_compat.c: added log function - (no longer use fprintf). - -2001-07-29 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c, lib/gnutls_record.c: fixes in EOF handling - in handshake. - -2001-07-29 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c: detect EOF - -2001-07-29 Nikos Mavrogiannopoulos - - * doc/scripts/gdoc, doc/tex/.cvsignore, doc/tex/Makefile.am: [no log - message] - -2001-07-29 Nikos Mavrogiannopoulos - - * doc/scripts/gdoc, doc/tex/.cvsignore, doc/tex/gnutls.tex: [no log - message] - -2001-07-29 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2001-07-29 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am, doc/tex/gnutls.tex, doc/tex/serv1.tex, - doc/tex/srp1.tex: documentation updates - -2001-07-28 Nikos Mavrogiannopoulos - - * doc/tex/gnutls.tex: [no log message] - -2001-07-28 Nikos Mavrogiannopoulos - - * doc/scripts/gdoc, doc/tex/Makefile.am: fixes in tex production - (gdoc) - -2001-07-28 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am: [no log message] - -2001-07-28 Nikos Mavrogiannopoulos - - * doc/tex/Makefile.am: [no log message] - -2001-07-28 Nikos Mavrogiannopoulos - - * configure.in, doc/API-template.html, doc/Makefile.am, - doc/scripts/gdoc, doc/tex/Makefile.am, doc/tex/ex1.tex, - doc/tex/ex2.tex, doc/tex/ex3.tex, doc/tex/gnutls.tex, - lib/gnutls_record.c: Added documentation in TEX - -2001-07-28 Nikos Mavrogiannopoulos - - * doc/API-template.html: [no log message] - -2001-07-28 Nikos Mavrogiannopoulos - - * doc/API-template.html, doc/Makefile.am, doc/scripts/gdoc, - lib/gnutls.h.in, lib/gnutls_errors.c, lib/gnutls_errors_int.h, - lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_int.h, - lib/gnutls_record.c, lib/gnutls_sig_check.c: added some - documentation. Bug fixes in CHANGECIPHER_SPEC packet. - -2001-07-27 Nikos Mavrogiannopoulos - - * NEWS, lib/gnutls.h.in, lib/gnutls_buffers.c, lib/gnutls_errors.c, - lib/gnutls_errors_int.h, lib/gnutls_global.c, lib/gnutls_record.c, - src/cli.c, src/serv.c: changed gnutls_read() semantics - -2001-07-26 Fabio Fiorina - - * doc/TODO: Tools for Certificate - -2001-07-26 Fabio Fiorina - - * lib/cert_der.c: get time bug fixed - -2001-07-26 Nikos Mavrogiannopoulos - - * src/srp/.cvsignore, src/x509/.cvsignore: [no log message] - -2001-07-26 Nikos Mavrogiannopoulos - - * NEWS, configure.in: moving to 0.1.9 - -2001-07-26 Nikos Mavrogiannopoulos - - * lib/cert_verify.c: fixed/updated compare_dn() function. - -2001-07-26 Nikos Mavrogiannopoulos - - * doc/TODO, lib/gnutls_cert.c, src/serv.c: [no log message] - -2001-07-26 Nikos Mavrogiannopoulos - - * doc/TODO, lib/gnutls_sig_check.c: updated sig_check() - -2001-07-24 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2001-07-24 Nikos Mavrogiannopoulos - - * doc/TODO, lib/auth_rsa.c, lib/cert_verify.c, lib/cert_verify.h, - lib/gnutls.h.in, lib/gnutls_auth.c, lib/gnutls_cert.c, - lib/gnutls_cert.h, lib/gnutls_int.h, lib/gnutls_sig_check.c, - src/cli.c: gnutls now checks the certificate's CN to see if it - matches the peer's name. - -2001-07-24 Nikos Mavrogiannopoulos - - * doc/TODO, lib/gnutls_pk.c, lib/gnutls_record.c: bugfixes - -2001-07-24 Nikos Mavrogiannopoulos - - * src/cli.c: support for multiple protocol versions. - -2001-07-24 Nikos Mavrogiannopoulos - - * NEWS, lib/cert_b64.c, lib/gnutls.h.in, lib/gnutls_algorithms.c, - lib/gnutls_algorithms.h, lib/gnutls_buffers.c, - lib/gnutls_buffers.h, lib/gnutls_cert.c, lib/gnutls_constate.c, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_priority.c, - lib/gnutls_priority.h, lib/gnutls_record.c, lib/gnutls_v2_compat.c, - src/serv.c: corrected bug in b64 decoding. Added support for - multiple TLS protocol versions. - -2001-07-21 Nikos Mavrogiannopoulos - - * lib/Makefile.am: ignores some errors - -2001-07-21 Nikos Mavrogiannopoulos - - * README, lib/auth_rsa.c, lib/cert_verify.c, lib/gnutls_cert.c, - lib/gnutls_int.h, lib/gnutls_pk.c, lib/gnutls_pk.h, - lib/gnutls_sig_check.c: [no log message] - -2001-07-21 Nikos Mavrogiannopoulos - - * lib/auth_rsa.c, lib/cert_ASN.y, lib/cert_asn1.c, lib/cert_der.c, - lib/gnutls_cert.c, lib/gnutls_cipher.c, lib/gnutls_compress_int.c, - lib/gnutls_handshake.c, lib/gnutls_privkey.c, lib/gnutls_record.c, - src/serv.c: corrected memory leaks - -2001-07-21 Nikos Mavrogiannopoulos - - * doc/TODO, lib/Makefile.am, lib/cert_asn1.h, lib/cert_verify.c, - lib/ext_srp.c, lib/gnutls.h.in, lib/gnutls_cert.c, - lib/gnutls_cert.h, lib/gnutls_int.h, lib/gnutls_privkey.c, - lib/gnutls_record.c, lib/gnutls_sig_check.c, src/.cvsignore, - src/asn1c.c, src/ca.pem, src/cli.c, src/pkcs1.asn, src/serv.c: - several fixes cleanups etc. - -2001-07-20 Nikos Mavrogiannopoulos - - * lib/gnutls_global.c: [no log message] - -2001-07-20 Nikos Mavrogiannopoulos - - * configure.in, lib/Makefile.am, lib/cert_asn1.c, lib/cert_asn1.h, - lib/gnutls.h.in, lib/gnutls_global.c, lib/pkcs1.asn, - lib/pkcs1_asn1_tab.c, lib/pkix.asn, src/Makefile.am, - src/PkixTabExample.c, src/asn1c.c, src/cli.c, src/pkix.asn, - src/serv.c, src/srp/Makefile.am, src/x509/Makefile.am: updated file - structure - -2001-07-20 Nikos Mavrogiannopoulos - - * src/Makefile.am, src/cert.pem, src/key.pem, src/serv.c, - src/srp/tpasswd, src/srp/tpasswd.conf, src/tpasswd, - src/tpasswd.conf, src/x509/ca.pem, src/x509/cert.pem, - src/x509/key.pem: updated directory structure - -2001-07-20 Nikos Mavrogiannopoulos - - * configure.in, doc/protocol/draft-ietf-tls-srp-00.txt, - doc/protocol/draft-ietf-tls-srp-01.txt, doc/protocol/rfc2313.txt, - lib/Makefile.am, lib/auth_rsa.c, lib/cert_verify.c, - lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_errors.c, - lib/gnutls_errors_int.h, lib/gnutls_hash_int.h, lib/gnutls_int.h, - lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_sig.h, - lib/gnutls_sig_check.c, src/ca.pem, src/cert.pem, src/key.pem, - src/pkcs1.asn: added some kind of certificate checking - -2001-07-19 Fabio Fiorina - - * doc/ASN1.readme.txt, lib/cert_ASN.y, lib/cert_asn1.c, - lib/cert_asn1.h, src/CertificateExample.c, src/CrlExample.c: "" - -2001-07-19 Fabio Fiorina - - * lib/pkcs1_asn1_tab.c, lib/pkix_asn1_tab.c: C structure management - -2001-07-19 Fabio Fiorina - - * src/PkixTabExample.c: C structure management - -2001-07-18 Nikos Mavrogiannopoulos - - * lib/gnutls_hash_int.c: added mhash 0.8.10 support - -2001-07-18 Nikos Mavrogiannopoulos - - * lib/auth_rsa.c, lib/auth_x509.h, lib/gnutls.h.in, - lib/gnutls_auth.c, lib/gnutls_cert.c, lib/gnutls_cert.h, - lib/gnutls_constate.c, lib/gnutls_handshake.c, lib/gnutls_int.h, - src/cli.c: more certificate fields parsed. Cleanups - -2001-07-17 Nikos Mavrogiannopoulos - - * NEWS, lib/cert_verify.c, lib/cert_verify.h, lib/gnutls.h.in, - lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, - lib/gnutls_auth.c, lib/gnutls_cert.c, lib/gnutls_cert.h, - lib/gnutls_constate.c, lib/gnutls_errors.c, lib/gnutls_errors.h, - lib/gnutls_extensions.c, lib/gnutls_extensions.h, lib/gnutls_int.h, - src/cli.c, src/serv.c: several cleanups. Added check for - certificate's expiration time. - -2001-07-16 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/auth_rsa.c, lib/cert_verify.c, - lib/cert_verify.h, lib/gnutls.h.in, lib/gnutls_cert.c, - lib/gnutls_int.h, src/cli.c: updated cert_verify - -2001-07-14 Nikos Mavrogiannopoulos - - * src/CertificateExample.c: corrected copyright notice - -2001-07-14 Nikos Mavrogiannopoulos - - * Makefile.am, lib/gnutls_anon_cred.c, lib/gnutls_srp.c: minor - cleanups - -2001-07-14 Nikos Mavrogiannopoulos - - * lib/auth_rsa.c, lib/auth_x509.h, lib/gnutls.h.in, - lib/gnutls_cert.c, lib/gnutls_cert.h, src/cli.c: updated API - -2001-07-14 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/gnutls_anon_cred.c: added missing file - -2001-07-14 Nikos Mavrogiannopoulos - - * lib/auth_rsa.c, lib/auth_x509.h, lib/cert_verify.c, - lib/gnutls.h.in, lib/gnutls_cert.c, lib/gnutls_handshake.c, - lib/gnutls_int.h, lib/gnutls_priority.c, lib/gnutls_srp.c, - src/cli.c, src/serv.c: several bug fixes in ASN handling. - Fixes/additions in X509 structures handling. - -2001-07-14 Nikos Mavrogiannopoulos - - * configure.in, lib/Makefile.am, lib/auth_anon.c, lib/auth_anon.h, - lib/auth_rsa.c, lib/auth_srp.c, lib/auth_srp.h, lib/auth_x509.h, - lib/ext_srp.c, lib/gnutls.h.in, lib/gnutls_auth.c, - lib/gnutls_cert.c, lib/gnutls_global.c, lib/gnutls_privkey.c, - lib/gnutls_srp.c, src/cli.c, src/serv.c: several cleanups - -2001-07-14 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2001-07-14 Nikos Mavrogiannopoulos - - * lib/cert_ASN.y: corrected copyright statement - -2001-07-14 Nikos Mavrogiannopoulos - - * doc/README.autoconf: [no log message] - -2001-07-14 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/auth_x509.h, lib/cert_verify.c, - lib/gnutls.h.in, lib/gnutls_cert.c, lib/gnutls_handshake.c, - lib/gnutls_int.h: improved certificate handling - -2001-07-14 Nikos Mavrogiannopoulos - - * src/serv.c: updated - -2001-07-13 Nikos Mavrogiannopoulos - - * buildconf: added autoconf2.50 (for debian) - -2001-07-13 Nikos Mavrogiannopoulos - - * acinclude.m4: added required .m4s - -2001-07-13 Nikos Mavrogiannopoulos - - * .cvsusers: corrected fabio's entry - -2001-07-12 Fabio Fiorina - - * lib/cert_ASN.y, lib/cert_asn1.h, lib/cert_der.c, lib/cert_der.h, - src/CertificateExample.c, src/CrlExample.c, src/pkix.asn: [no log - message] - -2001-07-12 Fabio Fiorina - - * doc/ASN1.readme.txt, lib/cert_asn1.c: [no log message] - -2001-07-12 Nikos Mavrogiannopoulos - - * lib/gnutls_record.c: bug fixes - -2001-07-11 Nikos Mavrogiannopoulos - - * NEWS, lib/auth_srp.c, lib/crypt_bcrypt.c, lib/crypt_bcrypt.h, - lib/crypt_srpsha1.c, lib/gnutls_cipher.c, lib/gnutls_handshake.c, - lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, - lib/gnutls_record.c, lib/gnutls_srp.c, lib/gnutls_srp.h: - optimizations in hash functions (removed a lot of mallocs) - -2001-07-07 Nikos Mavrogiannopoulos - - * lib/gnutls_global.h, src/cert.pem, src/key.pem: [no log message] - -2001-07-07 Nikos Mavrogiannopoulos - - * NEWS, doc/ASN1.readme.txt, lib/Makefile.am, lib/auth_rsa.c, - lib/cert_ASN.y, lib/cert_asn1.c, lib/cert_asn1.h, lib/cert_der.c, - lib/cert_der.h, lib/gnutls_cert.c, lib/gnutls_global.c, - lib/gnutls_int.h, lib/gnutls_privkey.c, src/CertificateExample.c, - src/Makefile.am, src/pkix.asn, src/serv.c: Updated ASN.1 Parser - (Fabio - commited by me). - -2001-07-01 Nikos Mavrogiannopoulos - - * lib/auth_rsa.c, lib/gnutls_algorithms.c, lib/gnutls_cert.c, - lib/gnutls_privkey.c: cleanups - -2001-06-25 Nikos Mavrogiannopoulos - - * lib/auth_rsa.c, lib/auth_srp_passwd.c, lib/ext_srp.c, - lib/gnutls.h.in, lib/gnutls_algorithms.c, lib/gnutls_cipher.c, - lib/gnutls_cipher_int.c, lib/gnutls_db.c, lib/gnutls_errors.c, - lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_int.h, - lib/gnutls_kx.c, lib/gnutls_kx.h, src/.cvsignore, src/cli.c, - src/serv.c: Cleanups. Mostly while sending client certificate (and - client certificate verify) - -2001-06-24 Nikos Mavrogiannopoulos - - * lib/README.der: removed - -2001-06-24 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2001-06-24 Nikos Mavrogiannopoulos - - * NEWS, lib/ext_dnsname.c, lib/gnutls.h.in, lib/gnutls_constate.c, - lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_int.h, - src/cli.c, src/serv.c: added support for DNSNAME extension - (draft-ietf-tls-extensions) - -2001-06-24 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-ecc-01.txt, - doc/protocol/draft-ietf-tn3270e-telnet-tls-05.txt: [no log message] - -2001-06-24 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-pkix-ac509prof-05.txt, - doc/protocol/draft-ietf-tls-camellia-00.txt, - doc/protocol/draft-ietf-tls-extensions-00.txt, - doc/protocol/draft-ietf-tls-https-04.txt, - doc/protocol/draft-ietf-tls-misty1-00.txt, - doc/protocol/draft-ietf-tls-openpgp-00.txt, - doc/protocol/draft-ietf-tls-openpgp-01.txt, - doc/protocol/draft-ietf-tls-seedhas-00.txt, - doc/protocol/draft-ietf-tls-wireless-00.txt, - doc/protocol/rfc2817.txt: added more up to date documentation - -2001-06-24 Nikos Mavrogiannopoulos - - * doc/protocol/x509guide.txt: added gutman's x509guide - -2001-06-24 Nikos Mavrogiannopoulos - - * NEWS, doc/TODO: [no log message] - -2001-06-24 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c, lib/gnutls_priority.c: some portability - fixes - -2001-06-24 Nikos Mavrogiannopoulos - - * NEWS, doc/TODO, lib/Makefile.am, lib/auth_anon.c, - lib/auth_dhe_dss.c, lib/auth_rsa.c, lib/auth_srp.c, lib/auth_srp.h, - lib/auth_srp_passwd.c, lib/auth_srp_sb64.c, lib/cert_ASN.y, - lib/cert_asn1.c, lib/cert_b64.c, lib/cert_der.c, lib/crypt.c, - lib/crypt_bcrypt.c, lib/crypt_srpsha1.c, lib/debug.c, - lib/ext_dnsname.c, lib/ext_srp.c, lib/gnutls.h.in, - lib/gnutls_algorithms.c, lib/gnutls_auth.c, lib/gnutls_buffers.c, - lib/gnutls_cert.c, lib/gnutls_cipher.c, lib/gnutls_cipher.h, - lib/gnutls_cipher_int.c, lib/gnutls_compress.c, - lib/gnutls_compress_int.c, lib/gnutls_constate.c, - lib/gnutls_constate.h, lib/gnutls_datum.c, lib/gnutls_db.c, - lib/gnutls_dh.c, lib/gnutls_errors.c, lib/gnutls_extensions.c, - lib/gnutls_gcry.c, lib/gnutls_global.c, lib/gnutls_handshake.c, - lib/gnutls_hash_int.c, lib/gnutls_int.h, lib/gnutls_kx.c, - lib/gnutls_num.c, lib/gnutls_pk.c, lib/gnutls_priority.c, - lib/gnutls_privkey.c, lib/gnutls_privkey.h, lib/gnutls_random.c, - lib/gnutls_record.c, lib/gnutls_session.c, lib/gnutls_srp.c, - lib/gnutls_v2_compat.c, src/cli.c, src/serv.c: fixes in - ChangeCipherSpec handling (this also fixes rehandshake). Several - cleanups. - -2001-06-24 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/debug.c, lib/gnutls_buffers.c, - lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_cipher.c, - lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, - lib/gnutls_compress_int.c, lib/gnutls_datum.c, lib/gnutls_datum.h, - lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_int.h, - lib/gnutls_kx.c, lib/gnutls_record.c, lib/gnutls_v2_compat.c: - several cleanups - -2001-06-23 Nikos Mavrogiannopoulos - - * configure.in, lib/gnutls_global.c: added checks for signals - -2001-06-22 Nikos Mavrogiannopoulos - - * lib/gnutls_cipher.c, src/serv.c: corrected bug in stream - decryption.. - -2001-06-22 Nikos Mavrogiannopoulos - - * src/cli.c: [no log message] - -2001-06-22 Nikos Mavrogiannopoulos - - * lib/auth_rsa.c, lib/auth_x509.h, lib/gnutls.h.in, - lib/gnutls_cert.c, lib/gnutls_cert.h: added internal representation - of pkcs1 rsa private keys. - -2001-06-22 Nikos Mavrogiannopoulos - - * Makefile.am, src/Makefile.am, src/serv.c: [no log message] - -2001-06-22 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2001-06-22 Nikos Mavrogiannopoulos - - * NEWS, README, configure.in, doc/Makefile.am, doc/TODO, - lib/Makefile.am, lib/gnutls.h.in, lib/gnutls_buffers.c, - lib/gnutls_buffers.h, lib/gnutls_cert.c, lib/gnutls_global.c, - lib/gnutls_record.c, src/cli.c, src/pk.h, src/serv.c: added global - state. - -2001-06-22 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in, lib/gnutls_algorithms.c, lib/gnutls_cert.c, - lib/gnutls_cert.h, lib/gnutls_int.h, src/cli.c, src/serv.c: minor - cleanups - -2001-06-22 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in: gnutls_cert is not defined here - -2001-06-21 Nikos Mavrogiannopoulos - - * lib/gnutls_cert.h, src/pk.h: added missing files - -2001-06-21 Nikos Mavrogiannopoulos - - * NEWS, configure.in, doc/TODO, lib/Makefile.am, lib/auth_rsa.c, - lib/auth_x509.h, lib/gnutls.h.in, lib/gnutls_algorithms.c, - lib/gnutls_auth.c, lib/gnutls_cert.c, lib/gnutls_datum.c, - lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h, - lib/gnutls_priority.c, lib/gnutls_v2_compat.c, src/serv.c: Updated - Ciphersuite selection algorithm. Added internal representation of - x509 structures. - -2001-06-20 Nikos Mavrogiannopoulos - - * NEWS, doc/TODO, lib/auth_rsa.c, lib/cert_asn1.c, lib/cert_der.c, - lib/gnutls_datum.c, lib/gnutls_datum.h, lib/gnutls_errors.c, - lib/gnutls_errors_int.h, lib/gnutls_int.h, lib/gnutls_kx.c, - lib/gnutls_pk.c, src/pkix.asn: client side RSA works (no certificate - checking) - -2001-06-19 Nikos Mavrogiannopoulos - - * doc/TODO, lib/auth_anon.c, lib/auth_rsa.c, lib/auth_srp.c, - lib/auth_x509.h, lib/gnutls.h.in, lib/gnutls_algorithms.c, - lib/gnutls_algorithms.h, lib/gnutls_auth.h, lib/gnutls_handshake.c, - lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_kx.c, - lib/gnutls_kx.h, lib/gnutls_v2_compat.c, src/cli.c, src/serv.c: - removed unneeded code and added some kind of client support for RSA - ciphersuites - -2001-06-19 Nikos Mavrogiannopoulos - - * lib/gnutls_int.h: [no log message] - -2001-06-19 Nikos Mavrogiannopoulos - - * NEWS, doc/TODO, lib/auth_rsa.c, lib/debug.c, lib/debug.h, - lib/gnutls.h.in, lib/gnutls_cipher.c, lib/gnutls_handshake.c, - lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_kx.h, - lib/gnutls_record.c, lib/gnutls_session.c, lib/gnutls_v2_compat.c, - src/serv.c: fixes in session resuming.. - -2001-06-18 Nikos Mavrogiannopoulos - - * doc/TODO, lib/gnutls_cipher.c, lib/gnutls_handshake.c, - lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_record.c, - lib/gnutls_v2_compat.c: fixes in session resuming - -2001-06-18 Nikos Mavrogiannopoulos - - * lib/gnutls_gcry.c, lib/gnutls_gcry.h: added missing files - -2001-06-18 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/debug.c, lib/gnutls.h.in, - lib/gnutls_algorithms.c, lib/gnutls_buffers.c, lib/gnutls_cipher.c, - lib/gnutls_cipher.h, lib/gnutls_cipher_int.c, - lib/gnutls_compress.c, lib/gnutls_compress.h, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, - lib/gnutls_plaintext.c, lib/gnutls_plaintext.h, - lib/gnutls_record.c, lib/gnutls_v2_compat.c, src/serv.c: several - cleanups in the low level record layer (the old code was a mess). - several other fixes. - -2001-06-18 Nikos Mavrogiannopoulos - - * lib/auth_x509.h, lib/ext_dnsname.c, lib/gnutls_int.h, - lib/gnutls_record.c, lib/gnutls_record.h, lib/gnutls_v2_compat.c: - cleanups. No longer checks for alerts between messages. - -2001-06-18 Nikos Mavrogiannopoulos - - * acconfig.h, doc/TODO, doc/protocol/draft-ietf-tls-https-04.txt, - lib/Makefile.am, lib/defines.h, lib/gnutls.h.in, - lib/gnutls_algorithms.c, lib/gnutls_buffers.c, - lib/gnutls_cipher_int.c, lib/gnutls_int.h, lib/gnutls_record.c, - src/cli.c, src/serv.c: cleanups and addition of a test http server - (serv.c) - -2001-06-17 Nikos Mavrogiannopoulos - - * NEWS, doc/TODO, lib/gnutls_handshake.c, lib/gnutls_int.h, - lib/gnutls_record.c, lib/gnutls_v2_compat.c, src/serv.c: fixes in V2 - client hello. - -2001-06-17 Nikos Mavrogiannopoulos - - * configure.in, lib/auth_rsa.c, lib/gnutls_algorithms.h, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_pk.c, - lib/gnutls_v2_compat.c, src/pkcs1.asn, src/serv.c: several fixes for - RSA. gnutls server can now work with rsa certificates. - -2001-06-17 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/auth_rsa.c, lib/auth_srp.c, - lib/auth_srp_passwd.c, lib/auth_x509.h, lib/cert_asn1.h, - lib/cert_b64.c, lib/cert_b64.h, lib/crypt_bcrypt.c, - lib/crypt_srpsha1.c, lib/gnutls.c, lib/gnutls.h.in, - lib/gnutls_algorithms.c, lib/gnutls_cert.c, lib/gnutls_cipher.c, - lib/gnutls_errors.c, lib/gnutls_errors_int.h, - lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h, - lib/gnutls_kx.c, lib/gnutls_num.h, lib/gnutls_pk.c, - lib/gnutls_pk.h, lib/gnutls_random.c, lib/gnutls_random.h, - lib/gnutls_record.c, lib/gnutls_srp.c, lib/gnutls_v2_compat.c: - several additions for RSA (mostly unstable) - -2001-06-16 Nikos Mavrogiannopoulos - - * lib/gnutls_pk.c, lib/gnutls_pk.h: some support for public key - encryption (rsa) - -2001-06-16 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/auth_anon.c, lib/auth_dhe_dss.c, - lib/auth_rsa.c, lib/auth_srp.c, lib/auth_x509.h, lib/defines.h, - lib/ext_dnsname.c, lib/ext_dnsname.h, lib/gnutls.c, - lib/gnutls.h.in, lib/gnutls_auth_int.h, lib/gnutls_dh.c, - lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_int.h, - lib/gnutls_kx.c, lib/gnutls_kx.h, lib/gnutls_srp.c: more rsa fixes. - Added dnsname extension. - -2001-06-15 Nikos Mavrogiannopoulos - - * lib/auth_anon.c, lib/auth_rsa.c, lib/auth_srp.c, lib/auth_x509.h, - lib/gnutls.h.in, lib/gnutls_algorithms.c, lib/gnutls_auth.h, - lib/gnutls_datum.c, lib/gnutls_datum.h, lib/gnutls_handshake.c, - lib/gnutls_int.h, src/serv.c: more rsa stuff -- and cleanups - -2001-06-15 Nikos Mavrogiannopoulos - - * src/pkcs1.asn: removed - -2001-06-15 Nikos Mavrogiannopoulos - - * src/Certificate.txt, src/CertificateExample.c, src/pkcs1.asn, - src/pkix.asn: updated ASN.1 files. - -2001-06-15 Nikos Mavrogiannopoulos - - * src/Certificate.txt: [no log message] - -2001-06-15 Nikos Mavrogiannopoulos - - * doc/Makefile.am, lib/Makefile.am, lib/auth_rsa.c, - lib/auth_x509.h, lib/cert_asn1.h, lib/gnutls.h.in, - lib/gnutls_datum.c, lib/gnutls_datum.h, lib/gnutls_hash_int.c, - lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_kx.c: several - additions in order to support KX_RSA and X509PKI. - -2001-06-14 Nikos Mavrogiannopoulos - - * lib/gnutls_auth.c: updated get_auth_info() - -2001-06-14 Nikos Mavrogiannopoulos - - * Makefile.am, buildconf, src/cli.c, src/serv.c: changed the setting - of credentials - -2001-06-14 Nikos Mavrogiannopoulos - - * lib/.cvsignore, lib/auth_anon.c, lib/auth_anon.h, lib/auth_srp.c, - lib/auth_srp_passwd.c, lib/ext_srp.c, lib/gnutls.h.in, - lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, - lib/gnutls_auth.c, lib/gnutls_auth_int.h, lib/gnutls_int.h: better - handling of set/get credentials. - -2001-06-14 Nikos Mavrogiannopoulos - - * lib/gnutls.c, lib/gnutls_auth_int.h, lib/gnutls_buffers.c, - lib/gnutls_int.h: added gnutls_datum structure. - -2001-06-13 Nikos Mavrogiannopoulos - - * THANKS: [no log message] - -2001-06-13 Nikos Mavrogiannopoulos - - * doc/.cvsignore: [no log message] - -2001-06-13 Nikos Mavrogiannopoulos - - * .cvsignore, .cvsusers, AUTHORS, Makefile.am, changelog-update.sh: - added Fabio in AUTHORS, fixed the way ChangeLog is created. - -2001-06-13 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c: added a warning for the addition of new - algorithms - -2001-06-13 Nikos Mavrogiannopoulos - - * doc/protocol/rfc2631.txt: added rfc on DH key exchange - -2001-06-12 Nikos Mavrogiannopoulos - - * buildconf, lib/cert_der.asn1: [no log message] - -2001-06-11 Nikos Mavrogiannopoulos - - * doc/ASN1.readme.txt: [no log message] - -2001-06-11 Nikos Mavrogiannopoulos - - * configure.in, lib/Makefile.am, lib/cert_ASN.y, lib/cert_asn1.c, - lib/cert_asn1.h, lib/cert_der.c, lib/cert_der.h, lib/gnutls_der.c, - lib/gnutls_der.h, src/CertificateExample.c, src/Makefile.am: Added - Fabio's ASN1/DER parser. - -2001-06-09 Nikos Mavrogiannopoulos - - * lib/gnutls_db.c: more descriptive comments - -2001-06-09 Nikos Mavrogiannopoulos - - * NEWS, configure.in: [no log message] - -2001-06-09 Nikos Mavrogiannopoulos - - * lib/auth_srp_sb64.c, lib/crypt.c, lib/crypt_bcrypt.c, - lib/crypt_bcrypt.h, lib/crypt_srpsha1.c, lib/gnutls_srp.c, - src/crypt.c: bugfixes in sbase64 decoding/encoding. Changes in the - included bcrypt algorithm. - -2001-06-09 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/auth_srp_passwd.h, lib/auth_srp_sb64.c, - lib/cert_b64.h, lib/cert_sb64.c, lib/crypt_bcrypt.c, - lib/crypt_srpsha1.c: renamed cert_sb64.c to auth_srp_sb64.c (since - it is only used in SRP KX) - -2001-06-06 Nikos Mavrogiannopoulos - - * acconfig.h, acinclude.m4, configure.in: [no log message] - -2001-06-05 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in: updated - -2001-06-05 Nikos Mavrogiannopoulos - - * lib/defines.h, lib/gnutls.c, lib/gnutls_cipher.c, - lib/gnutls_errors.c, lib/gnutls_errors_int.h, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_num.c, - lib/gnutls_num.h: better handling of 64bit integers - -2001-06-05 Nikos Mavrogiannopoulos - - * lib/crypt_bcrypt.c, lib/crypt_srpsha1.c: better checking of return - value of rindex - -2001-06-05 Nikos Mavrogiannopoulos - - * src/cli.c, src/serv.c: updated to new api - -2001-06-05 Nikos Mavrogiannopoulos - - * lib/gnutls.c, lib/gnutls.h.in, lib/gnutls_handshake.c, - lib/gnutls_int.h, lib/gnutls_priority.c, lib/gnutls_priority.h, - src/Makefile.am: updated documentation and functions - -2001-06-01 Nikos Mavrogiannopoulos - - * NEWS, configure.in, lib/crypt.c, lib/defines.h, lib/ext_srp.c, - lib/gnutls.c, lib/gnutls.h.in, lib/gnutls_cipher.c, - lib/gnutls_handshake.c, lib/gnutls_num.c, lib/gnutls_num.h, - lib/gnutls_srp.c, src/prime.c, src/tpasswd: gnutls now handles - uint64 even in systems without a native one. several bug fixes. - -2001-06-01 Nikos Mavrogiannopoulos - - * lib/crypt_bcrypt.c, lib/crypt_srpsha1.c: corrected bug in verify - -2001-05-31 Nikos Mavrogiannopoulos - - * buildconf, configure.in, lib/gnutls.h.in: updated configuration - scripts to comply to autoconf 2.50 - -2001-05-30 Nikos Mavrogiannopoulos - - * configure.in: [no log message] - -2001-05-30 Nikos Mavrogiannopoulos - - * doc/Makefile.am, doc/scripts/gdoc: gdoc is now included in the cvs - -2001-05-30 Nikos Mavrogiannopoulos - - * NEWS, doc/Makefile.am: [no log message] - -2001-05-30 Nikos Mavrogiannopoulos - - * doc/API, doc/Makefile.am, doc/TODO, lib/gnutls.c, - lib/gnutls.h.in, lib/gnutls_algorithms.c, lib/gnutls_auth.c, - lib/gnutls_auth_int.h, lib/gnutls_buffers.c, lib/gnutls_cipher.c, - lib/gnutls_cipher.h, lib/gnutls_db.c, lib/gnutls_errors.c, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_plaintext.c, - lib/gnutls_plaintext.h, lib/gnutls_priority.c, - lib/gnutls_session.c, src/cli.c, src/serv.c: updated API and - documentation. Now we use the gnome way for creating API docs. - -2001-05-29 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2001-05-28 Nikos Mavrogiannopoulos - - * src/README.crypt: [no log message] - -2001-05-27 Nikos Mavrogiannopoulos - - * configure.in, lib/gnutls.h.in: [no log message] - -2001-05-27 Nikos Mavrogiannopoulos - - * src/Makefile.am, src/README: [no log message] - -2001-05-26 Nikos Mavrogiannopoulos - - * lib/gnutls_dh.c: some cleanups in Diffie Hellman key exchange - -2001-05-26 Nikos Mavrogiannopoulos - - * doc/API, lib/auth_anon.c, lib/auth_anon.h, lib/auth_dhe_dss.c, - lib/auth_dhe_dss.h, lib/cert_b64.c, lib/cert_sb64.c, - lib/gnutls_algorithms.c, lib/gnutls_auth.c, lib/gnutls_dh.c, - lib/gnutls_dh.h, lib/gnutls_int.h, lib/gnutls_srp.c: removed - DHE_DSS. Added parameters to DH_ANON (size of prime). cleanups. - -2001-05-26 Nikos Mavrogiannopoulos - - * src/cli.c, src/prime.c, src/serv.c: several updates - -2001-05-26 Nikos Mavrogiannopoulos - - * lib/gnutls_int.h: [no log message] - -2001-05-26 Nikos Mavrogiannopoulos - - * lib/auth_srp_passwd.c, lib/cert_sb64.c, lib/crypt_bcrypt.c, - lib/crypt_srpsha1.c, lib/gnutls_int.h, src/crypt.c: Added decoding - function for the base64 encoding used in SRP. (this function is - more strict in characters than the previous one) - -2001-05-26 Nikos Mavrogiannopoulos - - * lib/cert_b64.c: corrected memory leaks - -2001-05-26 Nikos Mavrogiannopoulos - - * lib/auth_anon.c, lib/auth_dhe_dss.c, lib/auth_srp.c, - lib/gnutls.c, lib/gnutls_extensions.c, lib/gnutls_handshake.c, - lib/gnutls_num.c, lib/gnutls_num.h, lib/gnutls_v2_compat.c: several - cleanups in numbers' handling - -2001-05-26 Nikos Mavrogiannopoulos - - * src/Makefile.am: [no log message] - -2001-05-26 Nikos Mavrogiannopoulos - - * lib/.cvsignore, lib/gnutls_handshake.c, lib/gnutls_int.h, - lib/gnutls_num.c, lib/gnutls_num.h, src/.cvsignore: updated uint24 - functions. - -2001-05-25 Nikos Mavrogiannopoulos - - * lib/auth_anon.c, lib/auth_dhe_dss.c, lib/auth_srp.c, - lib/gnutls.c, lib/gnutls_cipher.c, lib/gnutls_extensions.c, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, - lib/gnutls_num.c, lib/gnutls_num.h, lib/gnutls_v2_compat.c: Cleanups - in endian handling (convertions). - -2001-05-25 Nikos Mavrogiannopoulos - - * lib/gnutls.c, lib/gnutls_cipher.c, lib/gnutls_errors.c, - lib/gnutls_errors_int.h, lib/gnutls_handshake.c: several bug fixes - -2001-05-25 Nikos Mavrogiannopoulos - - * doc/API: updated documentation - -2001-05-25 Nikos Mavrogiannopoulos - - * src/serv.c: updated - -2001-05-24 Nikos Mavrogiannopoulos - - * doc/API: updated - -2001-05-24 Nikos Mavrogiannopoulos - - * README: [no log message] - -2001-05-24 Nikos Mavrogiannopoulos - - * README, configure.in, doc/API, lib/gnutls.c, lib/gnutls_errors.c, - lib/gnutls_errors_int.h, lib/gnutls_handshake.c, src/cli.c: [no log - message] - -2001-05-24 Nikos Mavrogiannopoulos - - * lib/gnutls_cipher.c: sets the resumed_security_parameters to null - after initialization - -2001-05-23 Nikos Mavrogiannopoulos - - * NEWS, configure.in, doc/API: [no log message] - -2001-05-23 Nikos Mavrogiannopoulos - - * src/cli.c, src/serv.c: updated to new api - -2001-05-23 Nikos Mavrogiannopoulos - - * lib/gnutls.c, lib/gnutls.h.in, lib/gnutls_db.c, - lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h: - Updated API (gnutls_deinit()) gnutls_db: does not store anything if - db has not been opened for reading. Added some kind of support for - renegotiation of parameters. - -2001-05-22 Nikos Mavrogiannopoulos - - * lib/gnutls.h.in, lib/gnutls_algorithms.c, lib/gnutls_handshake.h: - cleanups - -2001-05-22 Nikos Mavrogiannopoulos - - * lib/defines.h, lib/gnutls.c, lib/gnutls_db.c, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_session.c: - cleanups and several fixes(and speedups) in the resume DB - -2001-05-22 Nikos Mavrogiannopoulos - - * src/cli.c, src/serv.c: updated client and servers - -2001-05-22 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c: cleanups - -2001-05-22 Nikos Mavrogiannopoulos - - * lib/gnutls_int.h: [no log message] - -2001-05-20 Nikos Mavrogiannopoulos - - * doc/API, lib/gnutls.c, lib/gnutls_algorithms.c, - lib/gnutls_algorithms.h, lib/gnutls_dh.c, lib/gnutls_handshake.c, - lib/gnutls_int.h, lib/gnutls_priority.c, lib/gnutls_priority.h, - src/cli.c, src/serv.c: Changed gnutls_set_*_priority functions. - -2001-05-19 Nikos Mavrogiannopoulos - - * src/Makefile.am, src/crypt-gaa.c, src/crypt-gaa.h, src/crypt.c, - src/gaa.h, src/gaaout.c, src/prime-gaa.c, src/prime-gaa.h, - src/prime.c, src/prime.gaa, src/tpasswd, src/tpasswd.conf: [no log - message] - -2001-05-19 Nikos Mavrogiannopoulos - - * src/crypt.c: updated - -2001-05-19 Nikos Mavrogiannopoulos - - * lib/gnutls_errors.c, lib/gnutls_errors_int.h, - lib/gnutls_handshake.c, lib/gnutls_srp.c, lib/gnutls_srp.h: [no log - message] - -2001-05-19 Nikos Mavrogiannopoulos - - * lib/cert_sb64.c: bugfixes - -2001-05-19 Nikos Mavrogiannopoulos - - * src/cli.c, src/crypt.c, src/crypt.gaa, src/gaa.h, src/gaaout.c, - src/tpasswd, src/tpasswd.conf: added option to generate random - primes (instead of using a default). Added option to specify a - specific prime to use (index) - -2001-05-17 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2001-05-16 Nikos Mavrogiannopoulos - - * configure.in, doc/README.autoconf, lib/libgnutls-config.in: [no - log message] - -2001-05-15 Nikos Mavrogiannopoulos - - * lib/libgnutls.m4: updated - -2001-05-15 Nikos Mavrogiannopoulos - - * configure.in, lib/gnutls.c, lib/libgnutls.m4: corrected scripts - -2001-05-15 Nikos Mavrogiannopoulos - - * acconfig.h, acinclude.m4, changelog-update.sh, configure.in, - lib/Makefile.am, lib/gnutls.c, lib/gnutls.h, lib/gnutls.h.in, - lib/gnutls_auth.c, lib/gnutls_errors.h, lib/gnutls_errors_int.h, - lib/libgnutls-config.in, lib/libgnutls.m4, src/Makefile.am, - src/serv.c: Added libgnutls-config script gnutls.h is automaticaly - generated by configure script Added libgnutls.m4 - -2001-05-14 Nikos Mavrogiannopoulos - - * changelog-update.sh: [no log message] - -2001-05-14 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2001-05-14 Nikos Mavrogiannopoulos - - * lib/ext_srp.c: Added missing length in username. - -2001-05-14 Nikos Mavrogiannopoulos - - * NEWS, doc/API, lib/auth_anon.c, lib/auth_dhe_dss.c, - lib/auth_srp.c, lib/auth_srp.h, lib/ext_srp.c, lib/gnutls.c, - lib/gnutls.h, lib/gnutls_auth.c, lib/gnutls_auth_int.h, - lib/gnutls_cipher.c, lib/gnutls_db.c, lib/gnutls_int.h, - lib/gnutls_session.c, lib/gnutls_session.h, src/cli.c, src/serv.c: - added functions to access authentication data (like username), and - the key exchange algorithm used. - -2001-05-14 Nikos Mavrogiannopoulos - - * NEWS, doc/API, lib/gnutls_db.c: [no log message] - -2001-05-13 Nikos Mavrogiannopoulos - - * lib/cert_sb64.c: cleanups - -2001-05-13 Nikos Mavrogiannopoulos - - * doc/TODO, lib/gnutls_db.c: clean_db() now clears expired entries - only - -2001-05-13 Nikos Mavrogiannopoulos - - * src/tpasswd, src/tpasswd.conf: example tpasswd files. - -2001-05-13 Nikos Mavrogiannopoulos - - * lib/auth_srp_passwd.c, lib/cert_sb64.c, lib/gnutls_int.h, - src/crypt.c: minor updates and fixes - -2001-05-13 Nikos Mavrogiannopoulos - - * NEWS, configure.in, doc/TODO: [no log message] - -2001-05-13 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/auth_srp.c, lib/auth_srp_passwd.c, - lib/auth_srp_passwd.h, lib/crypt.c, lib/crypt.h, - lib/crypt_bcrypt.c, lib/crypt_bcrypt.h, lib/crypt_srpsha1.c, - lib/crypt_srpsha1.h, lib/gnutls.h, lib/gnutls_srp.c, - lib/gnutls_srp.h, src/Makefile.am, src/README.crypt, src/cli.c, - src/crypt.c, src/crypt.gaa, src/gaa.h, src/gaaout.c, src/serv.c: - Added compatibility with Tom Wu's libsrp's password files. - -2001-05-12 Nikos Mavrogiannopoulos - - * lib/cert_sb64.c: [no log message] - -2001-05-12 Nikos Mavrogiannopoulos - - * configure.in, lib/Makefile.am, lib/auth_srp.c, lib/auth_srp.h, - lib/auth_srp_passwd.c, lib/cert_b64.c, lib/cert_b64.h, lib/debug.c, - lib/gnutls.h, lib/gnutls_int.h, lib/gnutls_srp.c, src/port.h, - src/serv.c: added support for Tom Wu's srp library tpasswd and - tpasswd.conf files. - -2001-05-11 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2001-05-11 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2001-05-10 Nikos Mavrogiannopoulos - - * configure.in, lib/gnutls.c, lib/gnutls_int.h: fixes in memory - allocation - -2001-05-09 Nikos Mavrogiannopoulos - - * lib/gnutls.c, lib/gnutls_buffers.c, lib/gnutls_db.c, - lib/gnutls_hash_int.c, lib/gnutls_int.h: corrected memory leaks - -2001-05-09 Nikos Mavrogiannopoulos - - * NEWS, doc/Makefile.am: [no log message] - -2001-05-09 Nikos Mavrogiannopoulos - - * doc/API, lib/gnutls.h, lib/gnutls_auth.c, lib/gnutls_auth_int.h, - src/cli.c, src/serv.c: credentials are now kept globaly (in order to - minimize memory usage). This makes no harm since these are never - modified by gnutls. - -2001-05-08 Nikos Mavrogiannopoulos - - * doc/API, lib/gnutls.h: [no log message] - -2001-05-08 Nikos Mavrogiannopoulos - - * lib/gnutls_int.h: [no log message] - -2001-05-08 Nikos Mavrogiannopoulos - - * doc/TODO: updated TODO list - -2001-05-08 Nikos Mavrogiannopoulos - - * lib/auth_srp.c, lib/auth_srp_passwd.c, lib/cert_b64.c, - lib/crypt_bcrypt.c, lib/crypt_srpsha1.c, lib/gnutls_errors.c, - lib/gnutls_errors.h, lib/gnutls_handshake.c, lib/gnutls_int.h, - lib/gnutls_kx.c, lib/gnutls_srp.c, lib/gnutls_srp.h, src/cli.c, - src/serv.c: several fixes for srp. Seems to work now! - -2001-05-07 Nikos Mavrogiannopoulos - - * lib/gnutls_v2_compat.c: better version handling - -2001-05-07 Nikos Mavrogiannopoulos - - * NEWS, doc/TODO, lib/Makefile.am, lib/gnutls.c, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_v2_compat.c, - lib/gnutls_v2_compat.h, src/cli.c: added support for SSL 2.0 client - hello - -2001-05-07 Nikos Mavrogiannopoulos - - * configure.in, lib/auth_srp.c, lib/auth_srp_passwd.c, - lib/ext_srp.c, lib/gnutls.c, lib/gnutls.h, lib/gnutls_extensions.c, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, - lib/gnutls_srp.c, src/cli.c, src/serv.c: several fixes for srp - -2001-05-07 Nikos Mavrogiannopoulos - - * doc/API, lib/auth_srp.c, lib/auth_srp_passwd.c, lib/ext_srp.c, - lib/gnutls_auth.c, lib/gnutls_auth_int.h, lib/gnutls_handshake.c: - gnutls_get_kx_cred() now returns err value. set_kx_cred() now - accepts size. - -2001-05-06 Nikos Mavrogiannopoulos - - * src/Makefile.am: added missing gaa.h - -2001-05-06 Nikos Mavrogiannopoulos - - * lib/gnutls_srp.c: some modulo fixes - -2001-05-06 Nikos Mavrogiannopoulos - - * lib/auth_srp.c, lib/auth_srp_passwd.c, lib/auth_srp_passwd.h, - lib/ext_srp.c, lib/gnutls_srp.c, lib/gnutls_srp.h: more srp related - fixes. No longer fails authentication if wrong username is provided. - -2001-05-05 Nikos Mavrogiannopoulos - - * lib/auth_srp.c, lib/crypt.c, lib/crypt_bcrypt.c, - lib/crypt_bcrypt.h, lib/crypt_srpsha1.c, lib/gnutls.h, - lib/gnutls_dh.c, lib/gnutls_errors.c, lib/gnutls_errors.h, - lib/gnutls_int.h, lib/gnutls_srp.c, lib/gnutls_srp.h: some hacks in - order to exchange the algorithm used to hash the password... - -2001-05-05 Nikos Mavrogiannopoulos - - * lib/auth_srp.c, lib/gnutls_srp.c, lib/gnutls_srp.h: cleanups for - srp. Most mpi code has moved to gnutls_srp.c - -2001-05-05 Nikos Mavrogiannopoulos - - * src/.cvsignore: [no log message] - -2001-05-05 Nikos Mavrogiannopoulos - - * configure.in, lib/ext_srp.c, lib/gnutls_int.h: more srp related - fixes - -2001-05-05 Nikos Mavrogiannopoulos - - * lib/auth_srp.c, lib/gnutls.h, lib/gnutls_algorithms.c, - lib/gnutls_auth_int.h, lib/gnutls_extensions.c, - lib/gnutls_handshake.c: some fixes - srp related - -2001-05-04 Nikos Mavrogiannopoulos - - * lib/auth_srp.c: [no log message] - -2001-05-04 Nikos Mavrogiannopoulos - - * lib/auth_srp.c, lib/auth_srp.h, lib/auth_srp_passwd.c, - lib/auth_srp_passwd.h: more srp stuff - -2001-05-04 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/crypt_bcrypt.c, lib/crypt_srpsha1.c, - lib/ext_srp.c, lib/gnutls.c, lib/gnutls.h, lib/gnutls_algorithms.c, - lib/gnutls_auth.c, lib/gnutls_auth.h, lib/gnutls_auth_int.h, - lib/gnutls_dh.c, lib/gnutls_errors.c, lib/gnutls_errors.h, - lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_srp.c, - lib/gnutls_srp.h, src/crypt.c: more additions for SRP - -2001-05-04 Nikos Mavrogiannopoulos - - * src/crypt.c: fixed default case when no -s was specified - -2001-05-04 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/cert_b64.h, lib/crypt.c, lib/crypt_bcrypt.c, - lib/crypt_srpsha1.c, lib/crypt_srpsha1.h, lib/gnutls.h, - lib/gnutls_dh.c, lib/gnutls_srp.c, lib/gnutls_srp.h, src/crypt.c, - src/crypt.gaa, src/gaa.h, src/gaaout.c: More adds for SRP - SRPSHA1 - and bcrypt - -2001-05-04 Nikos Mavrogiannopoulos - - * lib/cert_b64.c: corrected bug in decoding function - -2001-05-03 Nikos Mavrogiannopoulos - - * lib/crypt_bcrypt.h: for bcrypt support - -2001-05-03 Nikos Mavrogiannopoulos - - * acconfig.h, configure.in, lib/Makefile.am, lib/cert_b64.c, - lib/crypt.c, lib/crypt_bcrypt.c, lib/defines.h, lib/gnutls.h, - lib/gnutls_cipher.c, lib/gnutls_cipher_int.h, - lib/gnutls_handshake.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, - lib/gnutls_random.c, lib/gnutls_random.h, src/Makefile.am, - src/crypt.c, src/crypt.gaa, src/gaa.h, src/gaaout.c: Changes in - random number handling. Added bcrypt (for use with SRP). Added test - program crypt for creating bcrypt passwd files. - -2001-05-02 Nikos Mavrogiannopoulos - - * doc/API, lib/Makefile.am, lib/gnutls.c, lib/gnutls.h, - lib/gnutls_auth.c, lib/gnutls_auth.h, lib/gnutls_auth_int.h, - lib/gnutls_int.h: added support for setting authentication - algorithms' credentials - -2001-05-02 Nikos Mavrogiannopoulos - - * lib/auth_anon.c, lib/gnutls_algorithms.c, - lib/gnutls_algorithms.h, lib/gnutls_kx.c: cleanups... and more - modular design. - -2001-05-02 Nikos Mavrogiannopoulos - - * .cvsignore: [no log message] - -2001-05-02 Nikos Mavrogiannopoulos - - * lib/auth_anon.c, lib/auth_dhe_dss.c, lib/gnutls_algorithms.c, - lib/gnutls_algorithms.h, lib/gnutls_auth.h, lib/gnutls_handshake.c, - lib/gnutls_kx.c, lib/gnutls_kx.h: Added client kx0 and server kx2 in - order to be used with SRP - -2001-05-01 Nikos Mavrogiannopoulos - - * buildconf: updated - -2001-03-25 Nikos Mavrogiannopoulos - - * doc/protocol/ssl-2.txt: added SSL v2 spec - -2001-03-18 Nikos Mavrogiannopoulos - - * lib/gnutls_extensions.c: in case there are no extensions ext_gen() - does not return anything (NULL); - -2001-03-18 Nikos Mavrogiannopoulos - - * lib/debug.h, lib/gnutls.c, lib/gnutls_algorithms.c, - lib/gnutls_handshake.c: more cleanups - -2001-03-18 Nikos Mavrogiannopoulos - - * lib/ext_srp.c, lib/gnutls_extensions.c: send extensions feature - was added. - -2001-03-17 Nikos Mavrogiannopoulos - - * NEWS, lib/auth_anon.c, lib/auth_dhe_dss.c, lib/debug.c, - lib/gnutls_buffers.c, lib/gnutls_handshake.c, lib/gnutls_int.h, - lib/gnutls_kx.c, src/serv.c: several bugfixes and cleanups - -2001-03-17 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/ext_srp.c, lib/ext_srp.h, - lib/gnutls_extensions.c, lib/gnutls_extensions.h, - lib/gnutls_handshake.c, lib/gnutls_int.h: Added some preliminary - support for TLS extensions; - -2001-03-11 Nikos Mavrogiannopoulos - - * doc/TODO: updated todo list - -2001-03-11 Nikos Mavrogiannopoulos - - * doc/protocol/rfc2945.txt: added RFC for srp protocol - -2001-03-11 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c: updated with new files - -2001-03-11 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/auth_anon.c, lib/auth_anon.h, - lib/auth_dhe_dss.c, lib/auth_dhe_dss.h, lib/gnutls_anon.c, - lib/gnutls_anon.h, lib/gnutls_dhe_dss.c, lib/gnutls_dhe_dss.h: moved - gnutls_anon and gnutls_dhe_dss to auth_* - -2001-03-11 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-srp-00.txt: added srp draft - -2001-03-11 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/gnutls.c, lib/gnutls_algorithms.c, - lib/gnutls_algorithms.h, lib/gnutls_anon.c, lib/gnutls_anon.h, - lib/gnutls_auth.h, lib/gnutls_dhe_dss.c, lib/gnutls_dhe_dss.h, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c: Key - exchange (authentication) algorithms were reorganized, and now are - more modular. Most changes however are not much tested and only - anonymous authentication is currently used. - -2001-02-10 Nikos Mavrogiannopoulos - - * lib/gnutls_der.c: updated some functionality - no longer uses - stdin - -2001-02-10 Nikos Mavrogiannopoulos - - * THANKS: added Tarun - -2001-02-10 Nikos Mavrogiannopoulos - - * configure.in: corrected bug with dmalloc mode - -2001-02-04 Nikos Mavrogiannopoulos - - * doc/TODO: [no log message] - -2001-02-03 Nikos Mavrogiannopoulos - - * doc/protocol/draft-ietf-tls-kerb-00.txt: added kerberos - ciphersuites - -2001-02-03 Nikos Mavrogiannopoulos - - * lib/gnutls.c, lib/gnutls.h, lib/gnutls_algorithms.c, - lib/gnutls_algorithms.h, lib/gnutls_cipher.c, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_plaintext.c: - TLS version handling is now more simple (no structures) - -2001-02-03 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c, lib/gnutls_cipher_int.c: corrected - rijndael256 - -2001-02-03 Nikos Mavrogiannopoulos - - * lib/gnutls.h, lib/gnutls_algorithms.c, lib/gnutls_cipher_int.c, - lib/gnutls_db.c, lib/gnutls_int.h: added rijndael-256 as described - in draft-ietf-tls-ciphersuite-03 - -2001-02-01 Nikos Mavrogiannopoulos - - * lib/gnutls.c, lib/gnutls_cipher.c: comments are now more clear - -2001-02-01 Nikos Mavrogiannopoulos - - * lib/gnutls.c, lib/gnutls_cipher.c: gnutls_send_int() no longer - sends the packets with 2 Write() calls. One Write() call is enough - for everybody! - -2001-02-01 Nikos Mavrogiannopoulos - - * doc/draft-ietf-tls-camellia-00.txt, - doc/draft-ietf-tls-ciphersuite-02.txt, - doc/draft-ietf-tls-https-04.txt, doc/draft-ietf-tls-misty1-00.txt, - doc/draft-ietf-tls-openpgp-00.txt, - doc/draft-ietf-tls-seedhas-00.txt, - doc/draft-ietf-tls-wireless-00.txt, - doc/draft-ietf-tn3270e-telnet-tls-05.txt, - doc/protocol/draft-ietf-pkix-ac509prof-05.txt, - doc/protocol/draft-ietf-tls-camellia-00.txt, - doc/protocol/draft-ietf-tls-ciphersuite-03.txt, - doc/protocol/draft-ietf-tls-https-04.txt, - doc/protocol/draft-ietf-tls-misty1-00.txt, - doc/protocol/draft-ietf-tls-openpgp-00.txt, - doc/protocol/draft-ietf-tls-seedhas-00.txt, - doc/protocol/draft-ietf-tls-wireless-00.txt, - doc/protocol/draft-ietf-tn3270e-telnet-tls-05.txt, - doc/protocol/rfc1422.txt, doc/protocol/rfc1423.txt, - doc/protocol/rfc2246.txt, doc/protocol/rfc2279.txt, - doc/protocol/rfc2459.txt, doc/protocol/rfc2818.txt, - doc/protocol/ssl-draft302.txt, doc/rfc1422.txt, doc/rfc1423.txt, - doc/rfc2246.txt, doc/rfc2459.txt, doc/rfc2818.txt, - doc/ssl-draft302.txt: drafts and rfcs were moved to protocol/ - directory - -2001-01-30 Nikos Mavrogiannopoulos - - * README: updated - -2001-01-28 Nikos Mavrogiannopoulos - - * lib/debug.h, lib/defines.h, lib/gnutls_algorithms.h, - lib/gnutls_buffers.h, lib/gnutls_cipher.h, lib/gnutls_cipher_int.h, - lib/gnutls_compress.h, lib/gnutls_compress_int.h, lib/gnutls_db.h, - lib/gnutls_dh.h, lib/gnutls_errors.h, lib/gnutls_handshake.h, - lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_kx.h, - lib/gnutls_num.h, lib/gnutls_plaintext.h, lib/gnutls_priority.h, - lib/gnutls_session.h: added copyright notice - -2001-01-28 Nikos Mavrogiannopoulos - - * lib/gnutls.c, lib/gnutls_cipher.c, lib/gnutls_cipher.h: removed - large buffer - -2001-01-28 Nikos Mavrogiannopoulos - - * NEWS, README, configure.in, src/cli.c, src/port.h: [no log - message] - -2001-01-28 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/cert_der.asn1, lib/gnutls_cert.lex: removed - unneeded files - -2001-01-25 Nikos Mavrogiannopoulos - - * lib/gnutls.c: corrected wrong buffer size - -2001-01-25 Nikos Mavrogiannopoulos - - * lib/Makefile.am: [no log message] - -2001-01-25 Nikos Mavrogiannopoulos - - * lib/gnutls_cipher.c, lib/gnutls_cipher.h: changes in - gnutls_encrypt() - -2001-01-25 Nikos Mavrogiannopoulos - - * lib/gnutls.c, lib/gnutls_int.h: tls packets are now send using one - write(that way ssldump understands us) - -2001-01-25 Nikos Mavrogiannopoulos - - * doc/TODO: updated todo list - -2001-01-19 Nikos Mavrogiannopoulos - - * lib/cert_b64.c: corrected license - -2001-01-19 Nikos Mavrogiannopoulos - - * lib/cert_der.asn1: added asn1 rules for snacc (DER extended) - compiler - -2001-01-17 Nikos Mavrogiannopoulos - - * doc/draft-ietf-tls-wireless-00.txt: added draft-ietf-tls-wireless - -2001-01-16 Nikos Mavrogiannopoulos - - * AUTHORS: updated authors - tarun left - -2001-01-16 Nikos Mavrogiannopoulos - - * doc/TODO: updated todo list - -2001-01-14 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c: removed time_t declarations. We need - exactly 32 bits. - -2001-01-14 Nikos Mavrogiannopoulos - - * lib/gnutls_der.h: corrected typo - -2001-01-14 Nikos Mavrogiannopoulos - - * lib/cert_b64.c: added some support for pem encoded x509 - certificates - -2001-01-11 Nikos Mavrogiannopoulos - - * lib/gnutls.c: session gets deleted from the db if it is not - resumable - -2001-01-11 Nikos Mavrogiannopoulos - - * lib/gnutls_db.c, lib/gnutls_db.h: added db files - -2001-01-11 Nikos Mavrogiannopoulos - - * configure.in: more fixes - -2001-01-11 Nikos Mavrogiannopoulos - - * NEWS, configure.in, src/cli.c: fixes for release - -2001-01-11 Nikos Mavrogiannopoulos - - * acinclude.m4: added hooks for new libgcrypt - -2001-01-11 Nikos Mavrogiannopoulos - - * NEWS, configure.in, doc/API, lib/Makefile.am, lib/gnutls.c, - lib/gnutls.h, lib/gnutls_algorithms.c, lib/gnutls_errors.c, - lib/gnutls_errors.h, lib/gnutls_handshake.c, - lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_session.c, - src/Makefile.am, src/cli.c, src/port.h, src/serv.c: added server - side session resuming (using gdbm) - -2001-01-11 Nikos Mavrogiannopoulos - - * acconfig.h, configure.in, lib/gnutls_dh.c, lib/gnutls_int.h, - src/Makefile.am: added hooks for dmalloc - -2001-01-10 Nikos Mavrogiannopoulos - - * src/Makefile.am, src/cli.c, src/serv.c: corrected client/server - -2001-01-10 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/gnutls.c, lib/gnutls.h, - lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, - lib/gnutls_cipher.c, lib/gnutls_cipher_int.c, - lib/gnutls_handshake.c, lib/gnutls_int.h: corrected buffer overruns - -2001-01-10 Nikos Mavrogiannopoulos - - * doc/rfc1423.txt: [no log message] - -2001-01-08 Nikos Mavrogiannopoulos - - * doc/rfc1422.txt: added PEM rfc - -2001-01-08 Nikos Mavrogiannopoulos - - * lib/gnutls.c: corrected return value - -2001-01-08 Nikos Mavrogiannopoulos - - * lib/gnutls.c: added a check in read return value - -2000-12-18 Nikos Mavrogiannopoulos - - * lib/gnutls_compress_int.c: more checks for zlib - -2000-12-18 Nikos Mavrogiannopoulos - - * doc/API: [no log message] - -2000-12-17 Nikos Mavrogiannopoulos - - * doc/API, lib/gnutls.c, lib/gnutls.h, lib/gnutls_int.h: added a - function to control the lowat size (the RCVLOWAT in socket) - -2000-12-17 Nikos Mavrogiannopoulos - - * doc/Makefile.am: removed file - -2000-12-17 Nikos Mavrogiannopoulos - - * NEWS, configure.in, doc/API, doc/TODO, lib/gnutls.c, - lib/gnutls.h, lib/gnutls_algorithms.c, lib/gnutls_buffers.c, - lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_handshake.c, - lib/gnutls_int.h, src/cli.c, src/port.h, src/serv.c: added some - support for non blocking IO and socket flags. Some function names - have been changed. - -2000-12-17 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c: qsort seems to work now - -2000-12-17 Nikos Mavrogiannopoulos - - * lib/gnutls_compress_int.c: added check for zlib.h - -2000-12-17 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c: updated sorting algorithm - it was a mess - - it is more than a mess now - -2000-12-14 Nikos Mavrogiannopoulos - - * configure.in, doc/API, doc/TODO, lib/gnutls.c, lib/gnutls.h, - lib/gnutls_algorithms.c, lib/gnutls_cipher.c, - lib/gnutls_cipher_int.c, lib/gnutls_compress_int.c, - lib/gnutls_hash_int.c, lib/gnutls_int.h, src/cli.c, src/port.h, - src/serv.c: some minor updates - -2000-12-12 Nikos Mavrogiannopoulos - - * lib/gnutls.c: added a better(?) - not sure - xor function. - -2000-12-11 Nikos Mavrogiannopoulos - - * lib/gnutls_priority.h: added missing file - -2000-12-11 Nikos Mavrogiannopoulos - - * configure.in: added option for profiling - -2000-12-11 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, - lib/gnutls_handshake.c, lib/gnutls_kx.c: improved some things found - from gcov - -2000-12-11 Nikos Mavrogiannopoulos - - * lib/gnutls.c, lib/gnutls_int.h: improved peek data handling - now - keeps only 1 byte in kernel buffer - -2000-12-11 Nikos Mavrogiannopoulos - - * configure.in, lib/.cvsignore, lib/gnutls.c: more changes - -2000-12-11 Nikos Mavrogiannopoulos - - * lib/gnutls_int.h: removed debug definitions - -2000-12-11 Nikos Mavrogiannopoulos - - * NEWS, lib/Makefile.am, lib/debug.h, lib/gnutls.c, - lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_errors.h, - lib/gnutls_handshake.c, lib/gnutls_handshake.h, - lib/gnutls_hash_int.c, lib/gnutls_int.h, lib/gnutls_kx.c, - src/cli.c, src/serv.c: cleanups for gcc -Wall - -2000-12-11 Nikos Mavrogiannopoulos - - * doc/HACKING: removed file. replaced by API - -2000-12-11 Nikos Mavrogiannopoulos - - * doc/API, lib/gnutls.c, lib/gnutls.h, lib/gnutls_buffers.c, - lib/gnutls_int.h, lib/gnutls_session.c, src/cli.c: added some new - functions in the API. documentation updated. - -2000-12-11 Nikos Mavrogiannopoulos - - * doc/API, doc/TODO: updated documentation - -2000-12-11 Nikos Mavrogiannopoulos - - * lib/gnutls.c: corrected peek data handling - -2000-12-10 Nikos Mavrogiannopoulos - - * configure.in, doc/TODO, lib/defines.h, lib/gnutls.c, - lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_int.h, - src/cli.c: used MSG_PEEK flag in recv in order to used gnutls_recv() - with select(). This change will order select to treat the socket as - read even if we have read and localy buffered all data - but the - user hasn't call gnutls_recv() to get that data. - -2000-12-10 Nikos Mavrogiannopoulos - - * src/cli.c: [no log message] - -2000-12-10 Nikos Mavrogiannopoulos - - * src/cli.c, src/serv.c: updated client - -2000-12-10 Nikos Mavrogiannopoulos - - * lib/debug.c, lib/gnutls.c, lib/gnutls_buffers.c, - lib/gnutls_cipher.c, lib/gnutls_handshake.c, lib/gnutls_int.h: - changes in close notify- alert handling - -2000-12-10 Nikos Mavrogiannopoulos - - * lib/gnutls_compress_int.c: changes in compression handling - -2000-12-10 Nikos Mavrogiannopoulos - - * NEWS: [no log message] - -2000-12-10 Nikos Mavrogiannopoulos - - * : moved to r2 - -2000-12-09 Nikos Mavrogiannopoulos - - * lib/gnutls_session.c, lib/gnutls_session.h: added support for - session resuming - -2000-12-09 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/gnutls.c, lib/gnutls.h, lib/gnutls_cipher.c, - lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h: - added some support for session resuming (in client) It does not seem - to work yet - -2000-12-09 Nikos Mavrogiannopoulos - - * lib/debug.c, lib/gnutls.h, lib/gnutls_cipher.c, lib/gnutls_int.h: - removed all things about exportable algorithms - -2000-12-09 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c: gnutls_handshake was broken to - gnutls_handshake_begin and gnutls_handshake_finish. This will help - the use of certificate API to check received certificates - -2000-12-07 Nikos Mavrogiannopoulos - - * configure.in: added a warning if zlib was not found - -2000-12-07 Nikos Mavrogiannopoulos - - * lib/gnutls.c: Added default algorithm priorities so it can work - even if the user hasn't specified any - -2000-12-07 Nikos Mavrogiannopoulos - - * lib/gnutls_compress_int.c, lib/gnutls_compress_int.h: added - compression (ZLIB) - -2000-12-07 Nikos Mavrogiannopoulos - - * .cvsignore, configure.in, lib/Makefile.am, lib/gnutls.c, - lib/gnutls.h, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, - lib/gnutls_cipher.c, lib/gnutls_compress.c, lib/gnutls_errors.c, - lib/gnutls_errors.h, lib/gnutls_handshake.c, lib/gnutls_int.h, - lib/gnutls_priority.c, src/cli.c, src/port.h, src/serv.c: Added - compression support (ZLIB) - -2000-12-07 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c, lib/gnutls_hash_int.c, - lib/gnutls_hash_int.h, src/cli.c, src/port.h: SSL3 support was added - -2000-12-07 Nikos Mavrogiannopoulos - - * lib/gnutls.c, lib/gnutls_buffers.c, lib/gnutls_buffers.h, - lib/gnutls_handshake.c, lib/gnutls_int.h: major cleanups - -2000-12-06 Nikos Mavrogiannopoulos - - * lib/gnutls.c, lib/gnutls_buffers.c, lib/gnutls_buffers.h, - lib/gnutls_cipher.c, lib/gnutls_handshake.c, lib/gnutls_hash_int.c, - lib/gnutls_hash_int.h, lib/gnutls_int.h: more ssl3 fixes - -2000-12-06 Nikos Mavrogiannopoulos - - * lib/gnutls.c, lib/gnutls.h, lib/gnutls_algorithms.c, - lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cipher.c, - lib/gnutls_cipher_int.c, lib/gnutls_handshake.c, - lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, - lib/gnutls_kx.c: A lot of fixes for SSL3 - -2000-12-05 Nikos Mavrogiannopoulos - - * doc/Makefile.am: added API - -2000-12-05 Nikos Mavrogiannopoulos - - * doc/API, doc/TODO: documentation update - -2000-12-05 Nikos Mavrogiannopoulos - - * lib/gnutls.c, lib/gnutls_priority.c, src/cli.c, src/serv.c: - Bugfixes mainly for the priority (which was moved to the state) - -2000-12-05 Nikos Mavrogiannopoulos - - * lib/gnutls.c, lib/gnutls.h, lib/gnutls_algorithms.c, - lib/gnutls_algorithms.h, lib/gnutls_cipher.c, - lib/gnutls_handshake.c, lib/gnutls_handshake.h, - lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, - lib/gnutls_kx.c, lib/gnutls_priority.c: Priorities were moved to the - state (were global) - -2000-11-22 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.c, lib/gnutls_cipher.c, - lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h: - added ssl3 key generation function - more fixes in ssl3 mac - -2000-11-22 Nikos Mavrogiannopoulos - - * lib/gnutls_hash_int.c, lib/gnutls_hash_int.h: more bugfixes - -2000-11-22 Nikos Mavrogiannopoulos - - * lib/gnutls_hash_int.c: corrected nasty bugs - -2000-11-22 Nikos Mavrogiannopoulos - - * lib/gnutls_hash_int.c, lib/gnutls_hash_int.h: added support for - the MAC used in SSLv3 - -2000-11-19 Nikos Mavrogiannopoulos - - * README: updated readme - -2000-11-19 Nikos Mavrogiannopoulos - - * configure.in: removed unneeded check - -2000-11-19 Nikos Mavrogiannopoulos - - * doc/Makefile.am, doc/ssl3-vs-tls: cleanups - -2000-11-19 Nikos Mavrogiannopoulos - - * doc/TODO: updated todo - -2000-11-17 Nikos Mavrogiannopoulos - - * lib/gnutls_cipher_int.c: added ARCFOUR support when using gcrypt - -2000-11-15 Nikos Mavrogiannopoulos - - * doc/draft-ietf-tls-ciphersuite-01.txt: removed old draft - -2000-11-15 Nikos Mavrogiannopoulos - - * doc/draft-ietf-tls-ciphersuite-02.txt, lib/gnutls_algorithms.c: - added the new tls-ciphersuite draft, and the ciphersuite - TLS_DH_anon_RIJNDAEL_CBC_SHA - -2000-11-15 Nikos Mavrogiannopoulos - - * configure.in, lib/gnutls.c, lib/gnutls.h, - lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, - lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_cipher_int.c, - lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_handshake.c, - lib/gnutls_int.h: several cleanups in order to support ssl3 - -2000-11-15 Nikos Mavrogiannopoulos - - * : Moving to release 2 - -2000-11-15 Nikos Mavrogiannopoulos - - * doc/ssl3-vs-tls: added - -2000-11-13 Nikos Mavrogiannopoulos - - * configure.in: updated for mhash - -2000-11-13 Nikos Mavrogiannopoulos - - * doc/TODO: updated todo - -2000-11-13 Nikos Mavrogiannopoulos - - * lib/debug.c, lib/debug.h, lib/gnutls.c, lib/gnutls.h, - lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, - lib/gnutls_cipher.c, lib/gnutls_dh.c, lib/gnutls_handshake.c, - lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, - lib/gnutls_kx.c: added some support for ssl3 (with mhash only) - -2000-11-12 Nikos Mavrogiannopoulos - - * doc/rfc2818.txt, doc/ssl-draft302.txt: more drafs added - -2000-11-12 Nikos Mavrogiannopoulos - - * doc/draft-ietf-tls-camellia-00.txt, - doc/draft-ietf-tls-https-04.txt, doc/draft-ietf-tls-misty1-00.txt, - doc/draft-ietf-tls-seedhas-00.txt, - doc/draft-ietf-tn3270e-telnet-tls-05.txt: added more draft's - -2000-11-12 Nikos Mavrogiannopoulos - - * lib/gnutls_der.c: removed main() - -2000-11-12 Nikos Mavrogiannopoulos - - * doc/TODO: updated todo list - -2000-11-12 Nikos Mavrogiannopoulos - - * lib/gnutls.h, lib/gnutls_algorithms.c, lib/gnutls_cipher_int.c, - lib/gnutls_int.h: added preliminary support for AES (rijndael) - -2000-11-12 Nikos Mavrogiannopoulos - - * doc/draft-ietf-tls-openpgp-00.txt: added - draft-ietf-tls-openpgp-00.txt - -2000-11-12 Nikos Mavrogiannopoulos - - * doc/Makefile.am, doc/draft-ietf-tls-ciphersuite-01.txt: added - draft-ietf-tls-ciphersuite-01.txt - -2000-11-12 Nikos Mavrogiannopoulos - - * lib/gnutls_cipher_int.c: fix for DES in mcrypt - -2000-11-12 Nikos Mavrogiannopoulos - - * lib/gnutls.c, lib/gnutls_cipher.c: fixes for the server... and - change_cipher_spec type packet. - -2000-11-12 Nikos Mavrogiannopoulos - - * lib/debug.c, lib/gnutls.c, lib/gnutls.h, lib/gnutls_algorithms.c, - lib/gnutls_cipher.c, lib/gnutls_int.h: Changes in the client in - order to interoperate with an openssl server. - -2000-11-12 Nikos Mavrogiannopoulos - - * Makefile.am, acconfig.h, configure.in, lib/gnutls_algorithms.c, - lib/gnutls_cipher.c, lib/gnutls_cipher_int.c, - lib/gnutls_cipher_int.h, lib/gnutls_hash_int.c, lib/gnutls_int.h: - added hooks for both mhash and mcrypt - -2000-11-12 Nikos Mavrogiannopoulos - - * lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h: - clean-ups - -2000-11-09 Nikos Mavrogiannopoulos - - * lib/gnutls_buffers.c, lib/gnutls_cipher.c, lib/gnutls_int.h: - corrected bugs in hmac and more. - -2000-11-08 Nikos Mavrogiannopoulos - - * lib/gnutls.c: corrected problem in our PRF function - -2000-11-07 Nikos Mavrogiannopoulos - - * lib/gnutls_int.h: removed mhash definitions - -2000-11-07 Nikos Mavrogiannopoulos - - * lib/gnutls.c, lib/gnutls_hash_int.c, lib/gnutls_int.h, - lib/gnutls_kx.c: more fixes - -2000-11-07 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/gnutls.c, lib/gnutls_cipher.c, - lib/gnutls_hash_int.c, lib/gnutls_kx.c: minor fixes and cleanups - -2000-11-02 Nikos Mavrogiannopoulos - - * lib/gnutls.c, lib/gnutls_cipher.c: more fixes... - -2000-11-02 Nikos Mavrogiannopoulos - - * doc/TODO, lib/gnutls.c, lib/gnutls_cipher.c, lib/gnutls_errors.c, - lib/gnutls_errors.h, lib/gnutls_handshake.c, lib/gnutls_int.h, - lib/gnutls_kx.c: more fixes and bugs introduced - -2000-11-01 Nikos Mavrogiannopoulos - - * lib/gnutls_kx.c: cvs should stop messing with MY files - -2000-11-01 Nikos Mavrogiannopoulos - - * lib/gnutls_kx.c: [no log message] - -2000-11-01 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/gnutls_algorithms.c, lib/gnutls_dh.c, - lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_handshake.c, - lib/gnutls_kx.c, lib/gnutls_kx.h, src/cli.c, src/port.h: Some more - fixes and additions in order to interoperate with openssl - -2000-11-01 Nikos Mavrogiannopoulos - - * doc/TODO: added a small todo list - -2000-11-01 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c: memory leaks and overruns eliminated - -2000-11-01 Nikos Mavrogiannopoulos - - * lib/gnutls_handshake.c: corrected bug which made us to send the - double bytes of ciphersuites we had. - -2000-11-01 Nikos Mavrogiannopoulos - - * lib/defines.h, lib/gnutls.c, lib/gnutls_algorithms.c, - lib/gnutls_buffers.c, lib/gnutls_cipher.c, lib/gnutls_errors.c, - lib/gnutls_errors.h, lib/gnutls_handshake.c, lib/gnutls_int.h, - lib/gnutls_kx.c: added some preliminary support for DHE_DSS and - DHE_RSA algorithms... of course not certificates are used - -2000-10-31 Nikos Mavrogiannopoulos - - * lib/gnutls.c: some need gcry_ functions added. (for malloc etc) - -2000-10-31 Nikos Mavrogiannopoulos - - * configure.in, doc/HACKING, lib/defines.h, lib/gnutls.c, - lib/gnutls_handshake.c, lib/gnutls_int.h, src/port.h, src/serv.c: - added assert() and some bug fixes - -2000-10-26 Nikos Mavrogiannopoulos - - * doc/HACKING: some kind of updates - -2000-10-26 Nikos Mavrogiannopoulos - - * lib/gnutls_algorithms.h, lib/gnutls_handshake.c, - lib/gnutls_hash_int.c, lib/gnutls_int.h, lib/gnutls_kx.c: added - ability to receive certificates... - -2000-10-13 Nikos Mavrogiannopoulos - - * configure.in, doc/HACKING: [no log message] - -2000-10-13 Nikos Mavrogiannopoulos - - * lib/README.der: added Tarun's README.der - -2000-10-13 Nikos Mavrogiannopoulos - - * lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h: added missing - files. They are to handle foreign encryption functions - -2000-10-13 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/gnutls_der.c, lib/gnutls_der.h: Added Tarun's - files - -2000-10-13 Nikos Mavrogiannopoulos - - * AUTHORS, configure.in, lib/gnutls_cert.lex, src/Makefile.am, - src/cli.c: added a DER parser from Tarun and updated authors - -2000-10-12 Nikos Mavrogiannopoulos - - * doc/Makefile.am: changed in order for rfc's to be included in the - distribution - -2000-10-12 Nikos Mavrogiannopoulos - - * Makefile.am, acinclude.m4, configure.in: added checks for gcrypt - -2000-10-12 Nikos Mavrogiannopoulos - - * doc/rfc2246.txt, doc/rfc2459.txt: Added rfc's which refer to what - we are implementing - -2000-10-10 Nikos Mavrogiannopoulos - - * lib/gnutls.c: corrected bug which made gnutls to wait for a second - closure alert after having received the first. - -2000-10-10 Nikos Mavrogiannopoulos - - * src/serv.c: [no log message] - -2000-10-10 Nikos Mavrogiannopoulos - - * lib/.cvsignore, lib/Makefile.am, lib/gnutls.c, - lib/gnutls_cipher.c, lib/gnutls_dh.c, lib/gnutls_handshake.c, - lib/gnutls_hash.c, lib/gnutls_hash.h, lib/gnutls_int.h, - lib/gnutls_kx.c: The encryption api was fixed and gnutls_cipher.c - was cleaned up a bit. - -2000-10-10 Nikos Mavrogiannopoulos - - * lib/gnutls_hash_int.c, lib/gnutls_hash_int.h: there files were - renamed - -2000-10-10 Nikos Mavrogiannopoulos - - * lib/.cvsignore, src/.cvsignore: corrected cvsignore files - -2000-10-10 Nikos Mavrogiannopoulos - - * lib/.cvsignore: [no log message] - -2000-10-10 Nikos Mavrogiannopoulos - - * README, configure.in, src/Makefile.am: removed mhash support and - some changes in the docs - -2000-10-10 Nikos Mavrogiannopoulos - - * lib/gnutls_hash.c: bugfixes in gcrypt md functions handling - -2000-10-10 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/gnutls.c, lib/gnutls_cipher.c, - lib/gnutls_handshake.c, lib/gnutls_hash.c, lib/gnutls_hash.h, - lib/gnutls_int.h: Added support for the gcrypt hash and hmac - functions. Mhash support is almost removed. - -2000-10-10 Nikos Mavrogiannopoulos - - * lib/gnutls_dh.c, lib/gnutls_dh.h, lib/gnutls_kx.c: corrected the - problem with the double underscore - -2000-10-10 Nikos Mavrogiannopoulos - - * .cvsignore, doc/.cvsignore, lib/.cvsignore, src/.cvsignore: added - .cvsignore files - -2000-10-10 Nikos Mavrogiannopoulos - - * configure.in: updated version number - -2000-10-10 Nikos Mavrogiannopoulos - - * lib/gnutls_dh.c, lib/gnutls_kx.c: removed double underscores - -2000-10-08 Nikos Mavrogiannopoulos - - * README: added some needed stuff - -2000-10-08 Nikos Mavrogiannopoulos - - * doc/HACKING: outdated - -2000-10-08 Nikos Mavrogiannopoulos - - * lib/gnutls_priority.c: the file that handles some of the priority - stuff (most of the API things) - -2000-10-08 Nikos Mavrogiannopoulos - - * configure.in, lib/Makefile.am, lib/defines.h, lib/gnutls.h, - lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, - lib/gnutls_cipher.c, lib/gnutls_handshake.c, lib/gnutls_int.h, - lib/gnutls_kx.c, src/cli.c, src/port.h, src/serv.c: Added support - for priorities. Some function names were renamed to be more - rational. - -2000-10-08 Nikos Mavrogiannopoulos - - * lib/gnutls.c, lib/gnutls_algorithms.c, lib/gnutls_handshake.c, - lib/gnutls_int.h, lib/gnutls_kx.c: some fixes in the comments, and - replaced KX_* with GNUTLS_KX_* - -2000-10-08 Nikos Mavrogiannopoulos - - * lib/gnutls.c, lib/gnutls_cipher.c, lib/gnutls_handshake.c, - lib/gnutls_kx.c: more inline documentation - -2000-10-07 Nikos Mavrogiannopoulos - - * AUTHORS: added my name - -2000-10-07 Nikos Mavrogiannopoulos - - * lib/gnutls.c, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, - lib/gnutls_cipher.c, lib/gnutls_errors.c, lib/gnutls_errors.h, - lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h, - lib/gnutls_kx.c: Added some kind of priorities for algorithms. Still - experimental. - -2000-05-10 Nikos Mavrogiannopoulos - - * lib/gnutls_int.h, src/cli.c, src/port.h, src/serv.c: Improved - client/server examples. - -2000-04-15 Nikos Mavrogiannopoulos - - * lib/gnutls_int.h: removed an unneeded variable. - -2000-04-14 Nikos Mavrogiannopoulos - - * lib/debug.c, lib/gnutls.c, lib/gnutls.h, lib/gnutls_algorithms.c, - lib/gnutls_buffers.c, lib/gnutls_cipher.c, lib/gnutls_compress.c, - lib/gnutls_dh.c, lib/gnutls_errors.c, lib/gnutls_handshake.c, - lib/gnutls_kx.c, lib/gnutls_num.c, lib/gnutls_plaintext.c, - src/cli.c, src/serv.c: Added copyright notices. - -2000-04-14 Nikos Mavrogiannopoulos - - * lib/defines.h, lib/gnutls_handshake.c, lib/gnutls_int.h, - src/Makefile.am, src/port.h: [no log message] - -2000-04-14 Nikos Mavrogiannopoulos - - * lib/defines.h, lib/gnutls.c, lib/gnutls_algorithms.c, - lib/gnutls_algorithms.h, lib/gnutls_cipher.c, - lib/gnutls_handshake.c, lib/gnutls_int.h, src/Makefile.am: Better - mac algorithms handling. - -2000-04-13 Nikos Mavrogiannopoulos - - * doc/HACKING, lib/defines.h, lib/gnutls.c, - lib/gnutls_algorithms.h, lib/gnutls_buffers.c, - lib/gnutls_buffers.h, lib/gnutls_cipher.c, lib/gnutls_handshake.c, - lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_kx.c, - src/Makefile.am, src/port.h: Changes in handshake messages handling. - -2000-04-12 Nikos Mavrogiannopoulos - - * lib/gnutls_cipher.c, lib/gnutls_int.h: [no log message] - -2000-04-12 Nikos Mavrogiannopoulos - - * lib/gnutls_cipher.c: [no log message] - -2000-04-12 Nikos Mavrogiannopoulos - - * lib/gnutls.c, lib/gnutls_cipher.c, lib/gnutls_dh.c, - lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, - lib/gnutls_plaintext.c, lib/gnutls_plaintext.h, src/Makefile.am, - src/port.h: Corrected bug in gnutls_cipher.c that caused the library - to fail in certain (random) situations. - -2000-04-12 Nikos Mavrogiannopoulos - - * lib/gnutls_kx.c, src/serv.c: Better memory allocation in key - exchange. - -2000-04-12 Nikos Mavrogiannopoulos - - * lib/gnutls.c, lib/gnutls_handshake.c, lib/gnutls_int.h, - lib/gnutls_kx.c, src/cli.c, src/port.h: Some changes in peer's - version checks. - -2000-04-11 Nikos Mavrogiannopoulos - - * lib/gnutls.c, lib/gnutls_cipher.c, lib/gnutls_handshake.c, - lib/gnutls_int.h, src/port.h: Corrected bugs in MAC calculation. - -2000-04-11 Nikos Mavrogiannopoulos - - * lib/gnutls_cipher.c, lib/gnutls_errors.h, lib/gnutls_handshake.c: - Corrected bugs when setting cipher and mac. - -2000-04-11 Nikos Mavrogiannopoulos - - * lib/Makefile.am, lib/gnutls.c, lib/gnutls.h, lib/gnutls_errors.c, - lib/gnutls_errors.h, lib/gnutls_handshake.c, lib/gnutls_kx.c, - lib/gnutls_kx.h, src/serv.c: Better error control. Moved key - exchange functions to gnutls_kx.c/h - -2000-04-11 Nikos Mavrogiannopoulos - - * README: [no log message] - -2000-04-11 Nikos Mavrogiannopoulos - - * lib/gnutls.c, lib/gnutls_handshake.c, src/port.h: [no log message] - -2000-04-11 Nikos Mavrogiannopoulos - - * lib/gnutls.c, lib/gnutls_handshake.c, src/port.h: [no log message] - -2000-04-10 Nikos Mavrogiannopoulos - - * lib/debug.c, lib/debug.h, lib/gnutls_dh.c, - lib/gnutls_handshake.c, src/port.h: Bugfixes in the diffie hellman. - -2000-04-10 Nikos Mavrogiannopoulos - - * lib/debug.c, lib/defines.h, lib/gnutls.c, - lib/gnutls_algorithms.c, lib/gnutls_buffers.c, lib/gnutls_cipher.c, - lib/gnutls_compress.c, lib/gnutls_dh.c, lib/gnutls_dh.h, - lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_handshake.c, - lib/gnutls_int.h, lib/gnutls_num.c, lib/gnutls_plaintext.c, - src/port.h: Added anonymous diffie-hellman key exchange. It does not - work yet, and the whole code is mess. - -2000-04-10 Nikos Mavrogiannopoulos - - * configure.in, lib/Makefile.am, lib/gnutls.c, - lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, - lib/gnutls_cipher.c, lib/gnutls_dh.c, lib/gnutls_dh.h, - lib/gnutls_handshake.c, lib/gnutls_int.h: Added the basics for key - exchange. - -2000-04-09 Nikos Mavrogiannopoulos - - * COPYING: Added ChangeLog and COPYING. - -2000-04-09 Nikos Mavrogiannopoulos - - * configure.in, src/cli.c, src/serv.c: [no log message] - -2000-04-09 Nikos Mavrogiannopoulos - - * Makefile.am, doc/Makefile.am, lib/Makefile.am, lib/debug.c, - lib/debug.h, lib/defines.h, lib/gnutls.c, lib/gnutls.h, - lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, - lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cipher.c, - lib/gnutls_cipher.h, lib/gnutls_compress.c, lib/gnutls_compress.h, - lib/gnutls_dh.c, lib/gnutls_errors.c, lib/gnutls_errors.h, - lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h, - lib/gnutls_num.c, lib/gnutls_num.h, lib/gnutls_plaintext.c, - lib/gnutls_plaintext.h, src/Makefile.am, src/debug.c, src/debug.h, - src/defines.h, src/gnutls.c, src/gnutls.h, src/gnutls_algorithms.c, - src/gnutls_algorithms.h, src/gnutls_buffers.c, - src/gnutls_buffers.h, src/gnutls_cipher.c, src/gnutls_cipher.h, - src/gnutls_compress.c, src/gnutls_compress.h, src/gnutls_dh.c, - src/gnutls_errors.c, src/gnutls_errors.h, src/gnutls_handshake.c, - src/gnutls_handshake.h, src/gnutls_int.h, src/gnutls_num.c, - src/gnutls_num.h, src/gnutls_plaintext.c, src/gnutls_plaintext.h: - Changed directory structure. - -2000-04-09 Nikos Mavrogiannopoulos - - * configure.in: corrected configure script - -2000-04-09 Nikos Mavrogiannopoulos - - * configure.in: [no log message] - -2000-04-09 Nikos Mavrogiannopoulos - - * src/gnutls.c, src/gnutls_handshake.c, src/gnutls_handshake.h, - src/gnutls_int.h, src/port.h: corrected bugs in handshake. - -2000-04-08 Nikos Mavrogiannopoulos - - * src/gnutls.c, src/gnutls_algorithms.c, src/gnutls_algorithms.h, - src/gnutls_cipher.c, src/gnutls_handshake.c, - src/gnutls_handshake.h, src/gnutls_int.h: Added some basics for key - exchange. - -2000-04-08 Nikos Mavrogiannopoulos - - * src/gnutls_dh.c: I've add gnutls_dh.c but is not ready yet, I have - to eat something first:) It is taken from gsti. - -2000-04-08 Nikos Mavrogiannopoulos - - * src/cli.c, src/debug.c, src/gnutls.c, src/gnutls_algorithms.c, - src/gnutls_buffers.c, src/gnutls_cipher.c, src/gnutls_compress.c, - src/gnutls_errors.c, src/gnutls_errors.h, src/gnutls_handshake.c, - src/gnutls_handshake.h, src/gnutls_int.h, src/gnutls_num.c, - src/gnutls_plaintext.c, src/port.h, src/serv.c: Handshake - implementation was improved. Still no key exchange algorithm. - -2000-03-30 Nikos Mavrogiannopoulos - - * src/gnutls.c, src/gnutls_algorithms.c, src/gnutls_algorithms.h, - src/gnutls_cipher.c: Corrected bugs in gnutls_algorithms and added - _gnutls_get_iv_size(). - -2000-03-29 Nikos Mavrogiannopoulos - - * src/Makefile.am, src/gnutls_algorithms.c, - src/gnutls_algorithms.h, src/gnutls_cipher.c: Algorithms/Ciphers - interface has changes. - -2000-03-29 Nikos Mavrogiannopoulos - - * src/cli.c, src/gnutls.c, src/gnutls_buffers.c, - src/gnutls_errors.c, src/serv.c: The gnutls_recv() semantics were - changed. It may return less data than the specified. It operates - similar to read(). - -2000-03-29 Nikos Mavrogiannopoulos - - * src/gnutls.c, src/gnutls_handshake.c, src/gnutls_handshake.h, - src/port.h: Server now generates a session_id. - -2000-03-29 Nikos Mavrogiannopoulos - - * src/Makefile.am, src/cli.c, src/gnutls.c, src/gnutls.h, - src/gnutls_errors.c, src/gnutls_errors.h, src/gnutls_num.c, - src/gnutls_num.h, src/port.h, src/serv.c: [no log message] - -2000-03-28 Nikos Mavrogiannopoulos - - * src/Makefile.am, src/cli.c, src/gnutls.c, src/gnutls.h, - src/gnutls_buffers.c, src/gnutls_errors.h, src/gnutls_handshake.c, - src/gnutls_handshake.h, src/gnutls_int.h, src/serv.c: Corrected a - lot of bugs. Handshake protocol is ready to be coded. - -2000-03-26 Nikos Mavrogiannopoulos - - * src/gnutls.c, src/gnutls.h, src/gnutls_buffers.c, - src/gnutls_buffers.h: Included a reliable version of read/write - (that read/write will return exactly the bytes specified). - -2000-03-24 Nikos Mavrogiannopoulos - - * src/Makefile.am, src/cli.c, src/gnutls.c, src/gnutls.h, - src/gnutls_handshake.c, src/gnutls_handshake.h, src/serv.c, - src/test.c: [no log message] - -2000-03-24 Nikos Mavrogiannopoulos - - * src/gnutls.c, src/gnutls_buffers.c, src/gnutls_buffers.h, - src/gnutls_handshake.c: [no log message] - -2000-03-23 Nikos Mavrogiannopoulos - - * src/gnutls.c, src/gnutls_cipher.c, src/gnutls_handshake.c, - src/gnutls_int.h: Changes in the handshake. - -2000-03-18 Nikos Mavrogiannopoulos - - * src/gnutls.c: Some memory leaks were fixed. - -2000-03-18 Nikos Mavrogiannopoulos - - * src/gnutls.c, src/gnutls_cipher.c, src/gnutls_handshake.c, - src/gnutls_int.h: Corrected bug in the record protocol. Now it holds - 2 states, 1 for encryption and 1 for decryption - (mac/cipher/iv/compression). - -2000-03-17 Nikos Mavrogiannopoulos - - * src/Makefile.am, src/defines.h, src/gnutls.c, - src/gnutls_handshake.c, src/gnutls_handshake.h, src/gnutls_int.h: - Added the client hello handshake message. - -2000-03-15 Nikos Mavrogiannopoulos - - * doc/HACKING: documentation. - -2000-03-14 Nikos Mavrogiannopoulos - - * src/gnutls_handshake.h, src/gnutls_record.h: Incorporated in - gnutls_int.h - -2000-03-14 Nikos Mavrogiannopoulos - - * src/Makefile.am, src/debug.c, src/gnutls.c, src/gnutls_buffers.c, - src/gnutls_buffers.h, src/gnutls_cipher.c, src/gnutls_compress.c, - src/gnutls_errors.h, src/gnutls_int.h, src/gnutls_plaintext.c: - gnutls_recv() can now receive fatal alerts and closure alerts. - -2000-03-14 Nikos Mavrogiannopoulos - - * README, src/Makefile.am, src/debug.c, src/gnutls.c, src/gnutls.h, - src/gnutls_buffers.c, src/gnutls_buffers.h, src/gnutls_cipher.c, - src/gnutls_compress.c, src/gnutls_errors.h, src/gnutls_handshake.h, - src/gnutls_int.h, src/gnutls_plaintext.c, src/gnutls_record.h, - src/test.c: In case of failure gnutls_recv, sends an alert message. - but, it still cannot receive any. - -2000-03-13 Nikos Mavrogiannopoulos - - * configure.in, src/Makefile.am, src/gnutls.c, src/gnutls.h, - src/gnutls_cipher.c, src/test.c: Added gnutls_recv... Works only for - application data, and it is not tested. - -2000-03-08 Nikos Mavrogiannopoulos - - * AUTHORS, Makefile.am, acconfig.h, buildconf, configure.in, - src/Makefile.am, src/debug.c, src/debug.h, src/defines.h, - src/gnutls.c, src/gnutls.h, src/gnutls_cipher.c, - src/gnutls_cipher.h, src/gnutls_compress.c, src/gnutls_compress.h, - src/gnutls_plaintext.c, src/gnutls_plaintext.h, src/test.c: [no log - message] - -2000-03-08 Nikos Mavrogiannopoulos - - * buildconf: [no log message] - -2000-03-07 Werner Koch - - * Initialized repository for GNU TLS - - ----- - - Copyright (C) 2005, 2006, 2007, 2008, 2009, 2010 Free Software - Foundation, Inc. - - Copying and distribution of this file, with or without - modification, are permitted provided the copyright notice - and this notice are preserved. +2011-04-22 Nikos Mavrogiannopoulos + + * NEWS: released + +2011-04-22 Nikos Mavrogiannopoulos + + * src/certtool.c: corrected type + +2011-04-21 Nikos Mavrogiannopoulos + + * configure.ac, lib/configure.ac, lib/m4/hooks.m4, + libextra/configure.ac: bumped version + +2011-04-21 Nikos Mavrogiannopoulos + + * NEWS: document fixes. + +2011-04-21 Nikos Mavrogiannopoulos + + * lib/x509/rfc2818_hostname.c: gnutls_x509_crt_check_hostname() will + never compare against IPaddress. (previous comparison was flawed) + +2011-04-21 Nikos Mavrogiannopoulos + + * NEWS: corrected + +2011-04-20 Nikos Mavrogiannopoulos + + * src/certtool.c, src/cli.c: removed keyid_t types. + +2011-04-20 Nikos Mavrogiannopoulos + + * lib/auth_cert.c: Use get_cert_callback() in server side. + +2011-04-17 Nikos Mavrogiannopoulos + + * lib/auth_cert.c, lib/auth_cert.h, lib/gnutls_cert.h, + lib/gnutls_privkey.c, lib/gnutls_pubkey.c, + lib/openpgp/gnutls_openpgp.c, lib/openpgp/openpgp_int.h, + lib/openpgp/pgp.c, lib/openpgp/pgpverify.c, lib/openpgp/privkey.c: + Several cleanups and fixes regarding the openpgp_keyid_t. + +2011-04-17 Nikos Mavrogiannopoulos + + * tests/cve-2009-1416.c, tests/pkcs12_s2k_pem.c: header fixes. + +2011-04-17 Nikos Mavrogiannopoulos + + * lib/Makefile.am, lib/m4/hooks.m4: pakchois is always included. + +2011-04-16 Nikos Mavrogiannopoulos + + * NEWS, lib/gnutls_priority.c: Restored HMAC-MD5 for compatibility. + Although considered weak, several sites require it for connection. + It is enabled for "NORMAL" and "PERFORMANCE" priority strings. + +2011-04-15 Nikos Mavrogiannopoulos + + * doc/examples/ex-cxx.cpp: removed unneeded comment. + +2011-04-15 Nikos Mavrogiannopoulos + + * doc/cha-intro-tls.texi: Reorganized sections in documentation. + +2011-04-14 Nikos Mavrogiannopoulos + + * doc/cha-intro-tls.texi, lib/gnutls_buffers.c: Removed text about + select(). + +2011-04-13 Nikos Mavrogiannopoulos + + * NEWS, lib/Makefile.am, lib/configure.ac: check for libdl that + pakchois needs. + +2011-04-13 Nikos Mavrogiannopoulos + + * libextra/gl/hmac-md5.c, libextra/gl/memxor.c, + libextra/gl/memxor.h: renamed memxor to gl_memxor. + +2011-04-12 Ludovic Courtès + + * NEWS, src/certtool-common.c, src/certtool.c, src/p11tool.c, + tests/crq_key_id.c, tests/cve-2009-1416.c, tests/pkcs12_s2k_pem.c: + Don't include when it's not needed. + +2011-04-12 Nikos Mavrogiannopoulos + + * NEWS: documented fix. + +2011-04-12 Nikos Mavrogiannopoulos + + * src/cli.c: Do not rely on lowat being set. + +2011-04-11 Nikos Mavrogiannopoulos + + * NEWS, lib/includes/gnutls/compat.h, + lib/includes/gnutls/gnutls.h.in: gnutls_transport_set_global_errno() + is deprecated. + +2011-04-11 Nikos Mavrogiannopoulos + + * tests/eagain-common.h, tests/safe-renegotiation/Makefile.am, + tests/safe-renegotiation/srn0.c, tests/safe-renegotiation/srn1.c, + tests/safe-renegotiation/srn2.c, tests/safe-renegotiation/srn3.c, + tests/safe-renegotiation/srn4.c, tests/safe-renegotiation/srn5.c: + Combined the safe renegotiation tests with the again-common lib. + +2011-04-10 Nikos Mavrogiannopoulos + + * NEWS: updated. + +2011-04-10 Nikos Mavrogiannopoulos + + * tests/openpgp-certs/testselfsigs: Use --infile in certtool to + avoid issues with streams in windows. Patch by LRN. + +2011-04-10 Nikos Mavrogiannopoulos + + * lib/opencdk/armor.c: Changes armor.c to be able to handle both LF + and CRLF inputs (output is still either LF-only or CRLF-only + depending on the platform). Patch by LRN. Optimizations in the usage of strlen(). + +2011-04-10 Nikos Mavrogiannopoulos + + * src/cli.c, src/crypt.c, src/psk.c, src/serv.c, src/tests.c: Define + variables within the intended scope (not windows). Based on patch by + LRN. + +2011-04-10 Nikos Mavrogiannopoulos + + * doc/examples/ex-cert-select-pkcs11.c, src/common.c, src/pkcs11.c: + Use getpass.h (from gnulib). Patch by LRN. + +2011-04-10 Nikos Mavrogiannopoulos + + * lib/pakchois/dlopen.c: Return correct value for dlclose() in + windows. Patch by LRN. + +2011-04-10 Nikos Mavrogiannopoulos + + * tests/openpgp-auth.c: Disable openpgp-auth run in windows due to + lack of socketpair(). Patch by LRN. + +2011-04-08 Nikos Mavrogiannopoulos + + * cfg.mk: updated + +2011-04-08 Nikos Mavrogiannopoulos + + * NEWS, lib/configure.ac, lib/m4/hooks.m4, libextra/configure.ac: + updated version + +2011-04-08 Nikos Mavrogiannopoulos + + * lib/x509/common.c: more leaks fixed in common.c + +2011-04-08 Nikos Mavrogiannopoulos + + * lib/gnutls_pubkey.c: Corrected leaks in gnutls_pubkey_t + deinitialization. + +2011-04-08 Nikos Mavrogiannopoulos + + * tests/chainverify.c: disable test in windows. + +2011-04-08 Nikos Mavrogiannopoulos + + * lib/auth_dh_common.c, lib/gnutls_privkey.c: more fixes. + +2011-04-08 Nikos Mavrogiannopoulos + + * tests/mini-x509-rehandshake.c, tests/mini-x509.c: combined more + tests with eagain-common.h. + +2011-04-08 Nikos Mavrogiannopoulos + + * NEWS, lib/auth_dh_common.c, lib/gnutls_privkey.c, + lib/gnutls_x509.c, lib/nettle/pk.c, lib/pakchois/pakchois.c, + lib/pakchois/pakchois.h, lib/pkcs11.c, tests/mini-x509.c: Corrected + memory leaks. + +2011-04-08 Nikos Mavrogiannopoulos + + * tests/dsa/testdsa, tests/openpgp-certs/testcerts: Do not run the + test scripts in win32 environment. + +2011-04-08 Nikos Mavrogiannopoulos + + * configure.ac, tests/Makefile.am, tests/suite/Makefile.am, + tests/suite/Makefile.in: Better way of not including the tests/suite + directory. Based on discussion with LRN and Vincent Torri. + +2011-04-08 Nikos Mavrogiannopoulos + + * tests/Makefile.am: added missing file + +2011-04-08 Nikos Mavrogiannopoulos + + * lib/gnutls_buffers.c: Initialized ret in _gnutls_writev_emu() + +2011-04-08 Nikos Mavrogiannopoulos + + * lib/includes/gnutls/x509.h: doc fix. + +2011-04-08 Nikos Mavrogiannopoulos + + * NEWS: updated + +2011-04-08 Nikos Mavrogiannopoulos + + * lib/system.c: removed unneeded variable. + +2011-04-08 Nikos Mavrogiannopoulos + + * lib/auth_cert.c: Corrected check for an unknown sign algorithm. + Patch by LRN. + +2011-04-08 Nikos Mavrogiannopoulos + + * lib/openpgp/output.c: Do not use %e in strftime. Use %d instead + which is identically available in windows as well. Based on patch + by LRN. + +2011-04-08 Nikos Mavrogiannopoulos + + * lib/x509/output.c, tests/certuniqueid.c: Fixed mismatch in size_t + size. Patch by LRN. + +2011-04-08 Nikos Mavrogiannopoulos + + * lib/gnutls_buffers.c: win32 fixes for set_global_errno(). Based on + patch by LRN. + +2011-04-08 Nikos Mavrogiannopoulos + + * src/benchmark.c: Win32 changes for benchmark. Patch by LRN. + +2011-04-07 Nikos Mavrogiannopoulos + + * tests/anonself.c, tests/dhepskself.c, tests/openpgpself.c, + tests/pskself.c, tests/resume.c, tests/rng-fork.c, tests/x509dn.c, + tests/x509self.c: win32 fixes. Patch by LRN. + +2011-04-07 Nikos Mavrogiannopoulos + + * lib/opencdk/literal.c, lib/opencdk/main.h, lib/opencdk/misc.c: + simplified cdk_trim_string() to make it safer to use. + +2011-04-07 Nikos Mavrogiannopoulos + + * lib/x509/privkey_pkcs8.c: correctly reset params. + +2011-04-07 Nikos Mavrogiannopoulos + + * lib/gnutls_algorithms.c: correctly compare sign algorithm_st. + +2011-04-07 Nikos Mavrogiannopoulos + + * lib/opencdk/Makefile.am, lib/opencdk/context.h, + lib/opencdk/main.c, lib/opencdk/main.h, lib/opencdk/opencdk.h, + lib/opencdk/verify.c: removed unused code + +2011-04-07 Nikos Mavrogiannopoulos + + * lib/opencdk/armor.c: null terminate the armored string + +2011-04-07 Nikos Mavrogiannopoulos + + * src/cli.c: properly null terminate string. + +2011-04-07 Nikos Mavrogiannopoulos + + * src/common.c, src/pkcs11.c: check PIN size. + +2011-04-07 Nikos Mavrogiannopoulos + + * src/crypt.c: check salt size. + +2011-04-07 Nikos Mavrogiannopoulos + + * lib/opencdk/read-packet.c: more clear bounds checking + +2011-04-06 Nikos Mavrogiannopoulos + + * lib/x509/privkey.c: initialize e and d. + +2011-04-06 Nikos Mavrogiannopoulos + + * lib/pkcs11_write.c: deinitialize pks variable only when needed. + +2011-04-06 Nikos Mavrogiannopoulos + + * lib/openpgp/pgpverify.c: Initialize verify. + +2011-04-06 Nikos Mavrogiannopoulos + + * src/cli.c: initialize session_id_size. + +2011-04-06 Nikos Mavrogiannopoulos + + * lib/opencdk/misc.c, lib/opencdk/opencdk.h: removed unneeded + function. + +2011-04-06 Nikos Mavrogiannopoulos + + * lib/pakchois/pakchois.c: correctly traverse slots + +2011-04-05 Nikos Mavrogiannopoulos + + * lib/pkcs11.c: Initialize tinfo using the initially available + information. + +2011-04-04 Nikos Mavrogiannopoulos + + * tests/eagain-common.h, tests/mini-eagain.c, tests/mini.c: The + mini-* programs were combined. (backported from master branch) + +2011-04-03 Nikos Mavrogiannopoulos + + * doc/examples/Makefile.am: Compile ex-cert-select-pkcs11 as a + separate program. + +2011-04-03 Nikos Mavrogiannopoulos + + * lib/nettle/init.c: gcrypt.h is not really needed. Reported by + David Reiser. + +2011-04-03 Nikos Mavrogiannopoulos + + * NEWS, configure.ac: documented fix. + +2011-04-03 Nikos Mavrogiannopoulos + + * lib/gnutls_srp.c: Corrected bug in gnutls_srp_verifier() that + prevented the allocation of a verifier. Reported by Andrew Wiseman. + +2011-04-03 Nikos Mavrogiannopoulos + + * src/crypt-gaa.c, src/crypt-gaa.h, src/crypt.c, src/crypt.gaa: + Added debug option to srptool. + +2011-04-03 Nikos Mavrogiannopoulos + + * doc/cha-cert-auth.texi: Documented p11-kit. + +2011-04-02 Nikos Mavrogiannopoulos + + * doc/cha-library.texi: corrected typo + +2011-04-02 Nikos Mavrogiannopoulos + + * NEWS, lib/m4/hooks.m4: bumped version + +2011-03-30 Nikos Mavrogiannopoulos + + * NEWS, src/certtool-gaa.c, src/certtool.gaa: Generate certificate + request with stricter permissions. Reported by Luca Capello. + +2011-03-28 Nikos Mavrogiannopoulos + + * tests/openpgp-certs/testcerts: made more silent. + +2011-03-28 Nikos Mavrogiannopoulos + + * tests/dsa/testdsa, tests/openpgp-certs/testcerts: Made scripts + bourne shell compliant and not bash. + +2011-03-26 Nikos Mavrogiannopoulos + + * libextra/gnutls_ia.c: removed ext_mod_ia definition. + +2011-03-26 Nikos Mavrogiannopoulos + + * configure.ac, lib/m4/hooks.m4: bumped version. + +2011-03-26 Nikos Mavrogiannopoulos + + * NEWS: documented changes. + +2011-03-26 Nikos Mavrogiannopoulos + + * THANKS: e-mail addresses are not directly recognizable. + +2011-03-26 Nikos Mavrogiannopoulos + + * lib/opencdk/stream.c: Corrected access to freed memory location. + Reported by Vitaly Kruglikov. + +2011-03-26 Nikos Mavrogiannopoulos + + * THANKS: added Mark and Vitaly to THANKS. + +2011-03-26 Nikos Mavrogiannopoulos + + * lib/system.c: Corrected windows system_errno() function. Reported + and patch by Mark Brand. + +2011-03-26 Nikos Mavrogiannopoulos + + * lib/includes/gnutls/compat.h: C++ compatibility fix for compat.h. + Suggested by Mark Brand. + +2011-03-25 Nikos Mavrogiannopoulos + + * lib/opencdk/verify.c: Corrected uninitialized var deinitiation. + Reported by Vitaly Kruglikov. + +2011-03-25 Nikos Mavrogiannopoulos + + * libextra/ext_inner_application.h, libextra/gnutls_ia.c: Define + ext_mod_ia in gnutls_ia.c only. + +2011-03-25 Nikos Mavrogiannopoulos + + * lib/gnutls_sig.c: eliminate compiler warning. Reported by Andreas + Metzler. + +2011-03-25 Nikos Mavrogiannopoulos + + * lib/includes/gnutls/openpgp.h, lib/openpgp/gnutls_openpgp.c, + lib/openpgp/pgp.c, lib/openpgp/privkey.c: Fix size of + gnutls_openpgp_keyid_t by using the GNUTLS_OPENPGP_KEYID_SIZE + definition. Reported by Andreas Metzler. + +2011-03-25 Nikos Mavrogiannopoulos + + * lib/build-aux/config.rpath: updated + +2011-03-24 Nikos Mavrogiannopoulos + + * NEWS: fixed version + +2011-03-24 Nikos Mavrogiannopoulos + + * guile/tests/Makefile.am: added missing files. + +2011-03-24 Nikos Mavrogiannopoulos + + * configure.ac: bumped version + +2011-03-23 Nikos Mavrogiannopoulos + + * lib/includes/gnutls/abstract.h, lib/includes/gnutls/gnutls.h.in, + lib/includes/gnutls/pkcs11.h, lib/includes/gnutls/x509.h, + lib/pkcs11.c, lib/x509/crl.c: documentation fixes. + +2011-03-23 Nikos Mavrogiannopoulos + + * NEWS: documented fix + +2011-03-23 Nikos Mavrogiannopoulos + + * tests/dsa/testdsa: Added DSA tests for client certificates as + well. + +2011-03-23 Nikos Mavrogiannopoulos + + * lib/ext_signature.c, lib/ext_signature.h, lib/gnutls_handshake.c, + lib/gnutls_sig.c, lib/includes/gnutls/abstract.h, lib/x509/verify.c: + Simplified signature algorithm selection. + +2011-03-21 Nikos Mavrogiannopoulos + + * lib/gnutls_privkey.c: corrected parameter. + +2011-03-21 Nikos Mavrogiannopoulos + + * lib/gnutls_pubkey.c, lib/includes/gnutls/pkcs11.h, lib/pkcs11.c, + lib/pkcs11_privkey.c, lib/pkcs11_secret.c, lib/x509/privkey.c: + Documentation fixes and cleanups. + +2011-03-21 Nikos Mavrogiannopoulos + + * lib/gnutls_record.c: fixed backport. + +2011-03-20 Nikos Mavrogiannopoulos + + * lib/gnutls_record.c: ensure addition to application data buffers + is occuring only after a successful handshake. + +2011-03-19 Nikos Mavrogiannopoulos + + * doc/announce.txt: updated + +2011-03-19 Nikos Mavrogiannopoulos + + * doc/announce.txt: updated announce + +2011-03-19 Nikos Mavrogiannopoulos + + * NEWS: typo + +2011-03-19 Nikos Mavrogiannopoulos + + * tests/dsa/testdsa: make gnutls-cli more quiet. + +2011-03-19 Nikos Mavrogiannopoulos + + * NEWS: documented changes. + +2011-03-19 Nikos Mavrogiannopoulos + + * configure.ac, tests/Makefile.am, tests/dsa/Makefile.am, + tests/dsa/cert.dsa.1024.pem, tests/dsa/cert.dsa.2048.pem, + tests/dsa/cert.dsa.3072.pem, tests/dsa/dsa.1024.pem, + tests/dsa/dsa.2048.pem, tests/dsa/dsa.3072.pem, tests/dsa/testdsa, + tests/suite/Makefile.in: Added test to verify connections with DSA + keys of various sizes. + +2011-03-19 Nikos Mavrogiannopoulos + + * lib/gnutls_alert.c, lib/gnutls_errors.c, lib/gnutls_sig.c, + lib/includes/gnutls/gnutls.h.in: Return a special error code if DSA + keys with over 1024 are being used with TLS 1.x, x<2. + +2011-03-19 Nikos Mavrogiannopoulos + + * src/certtool.c: warn on generation of DSA keys of over 1024 bits. + +2011-03-19 Nikos Mavrogiannopoulos + + * lib/nettle/pk.c: truncate hash size when asking to sign or verify + DSA with a longer hash. + +2011-03-16 Nikos Mavrogiannopoulos + + * NEWS: documented changes. + +2011-03-16 Nikos Mavrogiannopoulos + + * lib/openpgp/privkey.c: read correct algorithm when decrypting data + and use correct number of private parameters. + +2011-03-16 Nikos Mavrogiannopoulos + + * lib/nettle/rnd.c, tests/Makefile.am, tests/rng-fork.c: Corrected + nettle's RNG behavior on fork and added a test case. + +2011-03-16 Nikos Mavrogiannopoulos + + * NEWS: documented gnutls_pubkey_import_openpgp change. + +2011-03-16 Nikos Mavrogiannopoulos + + * guile/tests/openpgp-auth.scm: enabled RSA and removed debugging. + +2011-03-16 Nikos Mavrogiannopoulos + + * lib/gnutls_privkey.c, lib/gnutls_pubkey.c, + lib/includes/gnutls/abstract.h, lib/openpgp/gnutls_openpgp.c, + tests/openpgp-auth.c: gnutls_pubkey_t and gnutls_privkey_t can + import either an openpgp subkey or a master key. + +2011-03-16 Nikos Mavrogiannopoulos + + * guile/tests/openpgp-auth.scm, guile/tests/openpgp-elg-pub.asc, + guile/tests/openpgp-elg-sec.asc, guile/tests/openpgp-keys.scm, + guile/tests/openpgp-pub.asc, guile/tests/openpgp-sec.asc: split the + pgp keys to elgamal and dsa. + +2011-03-16 Nikos Mavrogiannopoulos + + * lib/gnutls_errors.c, lib/includes/gnutls/gnutls.h.in, + lib/openpgp/pgp.c, lib/openpgp/privkey.c: introduced + GNUTLS_E_OPENPGP_PREFERRED_KEY_ERROR + +2011-03-16 Nikos Mavrogiannopoulos + + * lib/gnutls_algorithms.c: On unknown public key algorithms return + Unknown name. + +2011-03-16 Nikos Mavrogiannopoulos + + * lib/gnutls_privkey.c: Read the public key algorithm from the + selected subkey and not the master key when importing to a + gnutls_privkey. + +2011-03-16 Nikos Mavrogiannopoulos + + * lib/openpgp/gnutls_openpgp.c, tests/openpgpself.c: Documentation + fixed. Added fresh keys to test. + +2011-03-15 Nikos Mavrogiannopoulos + + * tests/openpgpself.c: Test openpgp authentication with DSA-2048 bit + keys as well. + +2011-03-15 Nikos Mavrogiannopoulos + + * lib/openpgp/pgp.c: gnutls_openpgp_crt_get_auth_subkey() will no + longer return an unsupported subkey. + +2011-03-15 Nikos Mavrogiannopoulos + + * lib/x509/verify.c: Corrected verification of DSA-2048 keys. + Reported by teddy@fukt.bsnet.se. + +2011-03-14 Nikos Mavrogiannopoulos + + * doc/cha-intro-tls.texi: Added + gnutls_transport_set_vec_push_function(). + +2011-03-13 Nikos Mavrogiannopoulos + + * lib/gnutls_algorithms.c: Added DSA-SHA256, DSA-SHA224 and + RSA-SHA224 to the supported signature algorithms list. Suggested by + teddy@fukt.bsnet.se + +2011-03-12 Nikos Mavrogiannopoulos + + * lib/gnutls_v2_compat.c: correctly set compression method in SSL V2 + client hello. + +2011-03-12 Nikos Mavrogiannopoulos + + * lib/gnutls_record.c: do not set default record version (i.e. SSL + 3.0) during a re-handshake. + +2011-03-12 Nikos Mavrogiannopoulos + + * lib/gnutls_priority.c: default behavior is to send SSL3.0 client + hellos. + +2011-03-12 Nikos Mavrogiannopoulos + + * NEWS, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_priority.c: corrected ssl3 record version sending in + client hello. + +2011-03-11 Nikos Mavrogiannopoulos + + * doc/announce.txt: corrected name of + gnutls_transport_set_vec_push_function + +2011-03-10 Nikos Mavrogiannopoulos + + * libextra/Makefile.am: link libgnutls-extra against libgcrypt if + required. Based on patch by Andreas Metzler + + +2011-03-10 Nikos Mavrogiannopoulos + + * NEWS, lib/m4/hooks.m4, libextra/Makefile.am: increased the so + version of libgnutls-openssl. + +2011-03-10 Nikos Mavrogiannopoulos + + * NEWS: updated NEWS with Andreas' comments. + +2011-03-09 Nikos Mavrogiannopoulos + + * doc/manpages/Makefile.am: updated + +2011-03-09 Nikos Mavrogiannopoulos + + * lib/m4/hooks.m4: bumped version. + +2011-03-09 Nikos Mavrogiannopoulos + + * tests/suite/Makefile.in: updated + +2011-03-09 Nikos Mavrogiannopoulos + + * lib/gnutls_record.c, lib/gnutlsxx.cpp, lib/libgnutls.map: + gnutlsxx.cpp for some reason cannot use deprecated functions. Added + _gnutls_transport_set_lowat() as an internal symbol to be used. + +2011-03-09 Nikos Mavrogiannopoulos + + * NEWS, configure.ac: changed for 2.11.7 release. + +2011-03-06 Nikos Mavrogiannopoulos + + * NEWS, configure.ac: bumped version. + +2011-03-06 Nikos Mavrogiannopoulos + + * NEWS, lib/includes/gnutls/compat.h, + lib/includes/gnutls/gnutls.h.in: Deprecated + gnutls_transport_set_lowat(). + +2011-03-02 Nikos Mavrogiannopoulos + + * src/certtool.c: Allow providing no password for PKCS #12 structure + generation. Reported by Daniel Kahn Gillmor. + +2011-03-02 Nikos Mavrogiannopoulos + + * src/certtool-cfg.c: consistently print all interactive questions + to stderr. Reported by Daniel Kahn Gillmor. + +2011-02-28 Andreas Metzler + + * lib/libgnutls.map: fix duplicate symbols in version script These three symbols are listed both in the GNUTLS_2_8 and the + GNUTLS_2_10 section. binutils uses the first occurence, drop the + second one. Signed-off-by: Nikos Mavrogiannopoulos + +2011-02-28 Nikos Mavrogiannopoulos + + * lib/ext_signature.c: Restrict the signature algorithms we + advertize to SHA1 and SHA256. + +2011-02-28 Nikos Mavrogiannopoulos + + * doc/cha-intro-tls.texi: updates on -ALL priorities. + +2011-02-27 Nikos Mavrogiannopoulos + + * lib/gnutls_handshake.c: corrected finished packet check. + +2011-02-24 Nikos Mavrogiannopoulos + + * doc/announce.txt: updated for 2.12 + +2011-02-24 Nikos Mavrogiannopoulos + + * lib/nettle/rnd.c: Detect fork() in the random number generator and + reseed. + +2011-02-23 Nikos Mavrogiannopoulos + + * NEWS: corrected documentation of + gnutls_transport_set_vec_push_function in NEWS. + +2011-02-23 Nikos Mavrogiannopoulos + + * lib/gnutls_buffers.c, lib/gnutls_state.c, + lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map: Renamed + gnutls_transport_set_push_function2() to + gnutls_transport_set_vec_push_function(). + +2011-02-22 Nikos Mavrogiannopoulos + + * lib/gnutls_session_pack.c: store entities as numbers to avoid + issues in big-little endian machines. + +2011-02-20 Nikos Mavrogiannopoulos + + * NEWS: documented gnutls_transport_set_push_function2(). + +2011-02-20 Simon Josefsson + + * NEWS, doc/manpages/Makefile.am, lib/includes/gnutls/compat.h, + lib/libgnutls.map, lib/x509/crq.c: Remove + gnutls_x509_crq_get_preferred_hash_algorithm. + +2011-02-20 Simon Josefsson + + * lib/x509/privkey.c: Fix docstring. + +2011-02-20 Simon Josefsson + + * lib/x509/crq.c: Fix deprecated docstring. + +2011-02-20 Simon Josefsson + + * lib/x509/crl_write.c: Add deprecated docstring. + +2011-02-20 Simon Josefsson + + * lib/libgnutls.map: Remove dropped functions. + +2011-02-20 Simon Josefsson + + * NEWS, lib/libgnutls.map: Drop removed functions. + +2011-02-20 Simon Josefsson + + * lib/gnutls_psk_netconf.c: Fix docstring of deprecated function. + +2011-02-20 Simon Josefsson + + * lib/gnutls_cert.c: Fix docstring for deprecated functions. + +2011-02-20 Simon Josefsson + + * lib/gnutls_pubkey.c: Fix docstring of new function. + +2011-02-20 Simon Josefsson + + * doc/reference/gnutls-docs.sgml: Improve text. + +2011-02-20 Simon Josefsson + + * doc/reference/gnutls-docs.sgml: Fix typo. + +2011-02-20 Simon Josefsson + + * lib/gnutls_pubkey.c: Fix docstrinf of new function. + +2011-02-20 Simon Josefsson + + * lib/openpgp/privkey.c: Fix docstring of deprecated function. + +2011-02-20 Simon Josefsson + + * lib/gnutls_sig.c: Make it build. + +2011-02-20 Simon Josefsson + + * lib/x509/crl.c: Doc fix of new function. + +2011-02-20 Simon Josefsson + + * NEWS: Fix description. + +2011-02-20 Simon Josefsson + + * NEWS, lib/gnutls_privkey.c, lib/includes/gnutls/abstract.h, + lib/includes/gnutls/compat.h, lib/libgnutls.map, lib/x509/crq.c, + lib/x509/sign.c, tests/x509sign-verify.c: Rename + gnutls_privkey_sign_data2 to gnutls_privkey_sign_data and + gnutls_privkey_sign_hash2 to gnutls_privkey_sign_hash. These were added during the 2.11 cycle where we don't promise ABI + compatibility. + +2011-02-20 Simon Josefsson + + * lib/gnutls_cert.c, lib/gnutls_extensions.c, lib/gnutls_privkey.c, + lib/x509/privkey.c: Fix docstring of deprecated functions. + +2011-02-20 Simon Josefsson + + * doc/gnutls-crypto-layers.eps: Add doc/gnutls-crypto-layers.eps. + +2011-02-20 Simon Josefsson + + * doc/Makefile.am: Dist gnutls-crypto-layers.*. + +2011-02-20 Simon Josefsson + + * lib/Makefile.am: Add abstract_int.h. + +2011-02-20 Simon Josefsson + + * lib/Makefile.am: Link with -lnettle too. + +2011-02-20 Simon Josefsson + + * .gitignore: Ignore more. + +2011-02-20 Simon Josefsson + + * doc/Makefile.am, doc/cha-programs.texi, lib/gnutls_privkey.c, + lib/includes/gnutls/compat.h, lib/includes/gnutls/x509.h, + lib/openpgp/pgp.c: Fix syntax-check warnings. + +2011-02-20 Simon Josefsson + + * GNUmakefile, build-aux/arg-nonnull.h, build-aux/c++defs.h, + build-aux/config.rpath, build-aux/gendocs.sh, + build-aux/pmccabe2html, build-aux/update-copyright, + build-aux/useless-if-before-free, build-aux/vc-list-files, + build-aux/warn-on-use.h, gl/Makefile.am, gl/accept.c, gl/alignof.h, + gl/alloca.c, gl/alloca.in.h, gl/arpa_inet.in.h, gl/asnprintf.c, + gl/bind.c, gl/c-ctype.c, gl/c-ctype.h, gl/close-hook.c, + gl/close-hook.h, gl/close.c, gl/connect.c, gl/errno.in.h, + gl/error.c, gl/error.h, gl/fclose.c, gl/float+.h, gl/float.in.h, + gl/fseeko.c, gl/ftello.c, gl/gai_strerror.c, gl/getaddrinfo.c, + gl/getdelim.c, gl/getline.c, gl/getpass.c, gl/getpass.h, + gl/gettext.h, gl/gettime.c, gl/gettimeofday.c, gl/inet_ntop.c, + gl/inet_pton.c, gl/intprops.h, gl/listen.c, gl/lseek.c, + gl/m4/00gnulib.m4, gl/m4/alloca.m4, gl/m4/arpa_inet_h.m4, + gl/m4/asm-underscore.m4, gl/m4/autobuild.m4, gl/m4/clock_time.m4, + gl/m4/close.m4, gl/m4/errno_h.m4, gl/m4/error.m4, + gl/m4/extensions.m4, gl/m4/fclose.m4, gl/m4/fcntl-o.m4, + gl/m4/fcntl_h.m4, gl/m4/float_h.m4, gl/m4/fseeko.m4, + gl/m4/ftello.m4, gl/m4/getaddrinfo.m4, gl/m4/getdelim.m4, + gl/m4/getline.m4, gl/m4/getpagesize.m4, gl/m4/getpass.m4, + gl/m4/gettime.m4, gl/m4/gettimeofday.m4, gl/m4/gnulib-cache.m4, + gl/m4/gnulib-common.m4, gl/m4/gnulib-comp.m4, gl/m4/gnulib-tool.m4, + gl/m4/hostent.m4, gl/m4/include_next.m4, gl/m4/inet_ntop.m4, + gl/m4/inet_pton.m4, gl/m4/intmax_t.m4, gl/m4/inttypes_h.m4, + gl/m4/ioctl.m4, gl/m4/lib-ld.m4, gl/m4/lib-link.m4, + gl/m4/lib-prefix.m4, gl/m4/longlong.m4, gl/m4/lseek.m4, + gl/m4/malloc.m4, gl/m4/manywarnings.m4, gl/m4/memchr.m4, + gl/m4/minmax.m4, gl/m4/mmap-anon.m4, gl/m4/multiarch.m4, + gl/m4/netdb_h.m4, gl/m4/netinet_in_h.m4, gl/m4/perror.m4, + gl/m4/pipe.m4, gl/m4/printf.m4, gl/m4/read-file.m4, + gl/m4/readline.m4, gl/m4/realloc.m4, gl/m4/select.m4, + gl/m4/servent.m4, gl/m4/size_max.m4, gl/m4/snprintf.m4, + gl/m4/socketlib.m4, gl/m4/sockets.m4, gl/m4/socklen.m4, + gl/m4/sockpfaf.m4, gl/m4/stdarg.m4, gl/m4/stdbool.m4, + gl/m4/stddef_h.m4, gl/m4/stdint.m4, gl/m4/stdint_h.m4, + gl/m4/stdio_h.m4, gl/m4/stdlib_h.m4, gl/m4/strerror.m4, + gl/m4/string_h.m4, gl/m4/sys_ioctl_h.m4, gl/m4/sys_select_h.m4, + gl/m4/sys_socket_h.m4, gl/m4/sys_stat_h.m4, gl/m4/sys_time_h.m4, + gl/m4/time_h.m4, gl/m4/timespec.m4, gl/m4/ungetc.m4, + gl/m4/unistd_h.m4, gl/m4/valgrind-tests.m4, gl/m4/vasnprintf.m4, + gl/m4/version-etc.m4, gl/m4/warn-on-use.m4, gl/m4/warnings.m4, + gl/m4/wchar_h.m4, gl/m4/wchar_t.m4, gl/m4/wint_t.m4, + gl/m4/xsize.m4, gl/malloc.c, gl/memchr.c, gl/minmax.h, + gl/netdb.in.h, gl/netinet_in.in.h, gl/perror.c, gl/printf-args.c, + gl/printf-args.h, gl/printf-parse.c, gl/printf-parse.h, + gl/progname.c, gl/progname.h, gl/read-file.c, gl/read-file.h, + gl/readline.c, gl/readline.h, gl/realloc.c, gl/recv.c, gl/select.c, + gl/send.c, gl/setsockopt.c, gl/shutdown.c, gl/size_max.h, + gl/snprintf.c, gl/socket.c, gl/sockets.c, gl/sockets.h, + gl/stdarg.in.h, gl/stdbool.in.h, gl/stddef.in.h, gl/stdint.in.h, + gl/stdio-impl.h, gl/stdio-write.c, gl/stdio.in.h, gl/stdlib.in.h, + gl/strerror.c, gl/string.in.h, gl/sys_select.in.h, + gl/sys_socket.in.h, gl/sys_stat.in.h, gl/sys_time.in.h, + gl/tests/Makefile.am, gl/tests/binary-io.h, gl/tests/dummy.c, + gl/tests/fcntl.in.h, gl/tests/getpagesize.c, gl/tests/init.sh, + gl/tests/ioctl.c, gl/tests/macros.h, gl/tests/pipe.c, + gl/tests/signature.h, gl/tests/sys_ioctl.in.h, + gl/tests/test-alignof.c, gl/tests/test-alloca-opt.c, + gl/tests/test-arpa_inet.c, gl/tests/test-binary-io.c, + gl/tests/test-c-ctype.c, gl/tests/test-errno.c, + gl/tests/test-fcntl-h.c, gl/tests/test-fseeko.c, + gl/tests/test-ftello.c, gl/tests/test-ftello3.c, + gl/tests/test-getaddrinfo.c, gl/tests/test-getdelim.c, + gl/tests/test-getline.c, gl/tests/test-gettimeofday.c, + gl/tests/test-inet_ntop.c, gl/tests/test-inet_pton.c, + gl/tests/test-lseek.c, gl/tests/test-memchr.c, + gl/tests/test-netdb.c, gl/tests/test-netinet_in.c, + gl/tests/test-perror.c, gl/tests/test-pipe.c, + gl/tests/test-read-file.c, gl/tests/test-select-fd.c, + gl/tests/test-select-stdin.c, gl/tests/test-select.c, + gl/tests/test-snprintf.c, gl/tests/test-sockets.c, + gl/tests/test-stdbool.c, gl/tests/test-stddef.c, + gl/tests/test-stdint.c, gl/tests/test-stdio.c, + gl/tests/test-stdlib.c, gl/tests/test-strerror.c, + gl/tests/test-string.c, gl/tests/test-sys_ioctl.c, + gl/tests/test-sys_select.c, gl/tests/test-sys_socket.c, + gl/tests/test-sys_stat.c, gl/tests/test-sys_time.c, + gl/tests/test-sys_wait.h, gl/tests/test-time.c, + gl/tests/test-unistd.c, gl/tests/test-update-copyright.sh, + gl/tests/test-vasnprintf.c, gl/tests/test-vc-list-files-cvs.sh, + gl/tests/test-vc-list-files-git.sh, gl/tests/test-verify.c, + gl/tests/test-version-etc.c, gl/tests/test-version-etc.sh, + gl/tests/test-wchar.c, gl/tests/w32sock.h, gl/tests/zerosize-ptr.h, + gl/time.in.h, gl/timespec.h, gl/unistd.in.h, gl/vasnprintf.c, + gl/vasnprintf.h, gl/verify.h, gl/version-etc-fsf.c, + gl/version-etc.c, gl/version-etc.h, gl/w32sock.h, gl/wchar.in.h, + gl/xsize.h, lib/build-aux/arg-nonnull.h, lib/build-aux/c++defs.h, + lib/build-aux/config.rpath, lib/build-aux/warn-on-use.h, + lib/gl/Makefile.am, lib/gl/alignof.h, lib/gl/alloca.in.h, + lib/gl/asnprintf.c, lib/gl/asprintf.c, lib/gl/byteswap.in.h, + lib/gl/c-ctype.c, lib/gl/c-ctype.h, lib/gl/close-hook.c, + lib/gl/close-hook.h, lib/gl/errno.in.h, lib/gl/float+.h, + lib/gl/float.in.h, lib/gl/fseeko.c, lib/gl/ftello.c, + lib/gl/gettext.h, lib/gl/lseek.c, lib/gl/m4/00gnulib.m4, + lib/gl/m4/alloca.m4, lib/gl/m4/asm-underscore.m4, + lib/gl/m4/byteswap.m4, lib/gl/m4/codeset.m4, lib/gl/m4/errno_h.m4, + lib/gl/m4/extensions.m4, lib/gl/m4/fcntl-o.m4, + lib/gl/m4/fcntl_h.m4, lib/gl/m4/float_h.m4, lib/gl/m4/fseeko.m4, + lib/gl/m4/ftello.m4, lib/gl/m4/func.m4, lib/gl/m4/getpagesize.m4, + lib/gl/m4/gettext.m4, lib/gl/m4/glibc2.m4, lib/gl/m4/glibc21.m4, + lib/gl/m4/gnulib-cache.m4, lib/gl/m4/gnulib-common.m4, + lib/gl/m4/gnulib-comp.m4, lib/gl/m4/gnulib-tool.m4, + lib/gl/m4/iconv.m4, lib/gl/m4/include_next.m4, + lib/gl/m4/intdiv0.m4, lib/gl/m4/intl.m4, lib/gl/m4/intldir.m4, + lib/gl/m4/intlmacosx.m4, lib/gl/m4/intmax.m4, + lib/gl/m4/intmax_t.m4, lib/gl/m4/inttypes-pri.m4, + lib/gl/m4/inttypes_h.m4, lib/gl/m4/lcmessage.m4, + lib/gl/m4/ld-output-def.m4, lib/gl/m4/ld-version-script.m4, + lib/gl/m4/lib-ld.m4, lib/gl/m4/lib-link.m4, + lib/gl/m4/lib-prefix.m4, lib/gl/m4/lock.m4, lib/gl/m4/longlong.m4, + lib/gl/m4/lseek.m4, lib/gl/m4/malloc.m4, lib/gl/m4/memchr.m4, + lib/gl/m4/memmem.m4, lib/gl/m4/minmax.m4, lib/gl/m4/mmap-anon.m4, + lib/gl/m4/multiarch.m4, lib/gl/m4/netdb_h.m4, lib/gl/m4/nls.m4, + lib/gl/m4/po.m4, lib/gl/m4/printf-posix.m4, lib/gl/m4/printf.m4, + lib/gl/m4/progtest.m4, lib/gl/m4/read-file.m4, + lib/gl/m4/realloc.m4, lib/gl/m4/size_max.m4, lib/gl/m4/snprintf.m4, + lib/gl/m4/socketlib.m4, lib/gl/m4/sockets.m4, lib/gl/m4/socklen.m4, + lib/gl/m4/sockpfaf.m4, lib/gl/m4/stdbool.m4, lib/gl/m4/stddef_h.m4, + lib/gl/m4/stdint.m4, lib/gl/m4/stdint_h.m4, lib/gl/m4/stdio_h.m4, + lib/gl/m4/stdlib_h.m4, lib/gl/m4/strcase.m4, lib/gl/m4/string_h.m4, + lib/gl/m4/strings_h.m4, lib/gl/m4/strverscmp.m4, + lib/gl/m4/sys_socket_h.m4, lib/gl/m4/sys_stat_h.m4, + lib/gl/m4/threadlib.m4, lib/gl/m4/time_h.m4, lib/gl/m4/time_r.m4, + lib/gl/m4/uintmax_t.m4, lib/gl/m4/ungetc.m4, lib/gl/m4/unistd_h.m4, + lib/gl/m4/vasnprintf.m4, lib/gl/m4/vasprintf.m4, + lib/gl/m4/visibility.m4, lib/gl/m4/vsnprintf.m4, + lib/gl/m4/warn-on-use.m4, lib/gl/m4/wchar_h.m4, + lib/gl/m4/wchar_t.m4, lib/gl/m4/wint_t.m4, lib/gl/m4/xsize.m4, + lib/gl/malloc.c, lib/gl/memchr.c, lib/gl/memmem.c, lib/gl/minmax.h, + lib/gl/netdb.in.h, lib/gl/printf-args.c, lib/gl/printf-args.h, + lib/gl/printf-parse.c, lib/gl/printf-parse.h, lib/gl/read-file.c, + lib/gl/read-file.h, lib/gl/realloc.c, lib/gl/size_max.h, + lib/gl/snprintf.c, lib/gl/sockets.c, lib/gl/sockets.h, + lib/gl/stdbool.in.h, lib/gl/stddef.in.h, lib/gl/stdint.in.h, + lib/gl/stdio-impl.h, lib/gl/stdio-write.c, lib/gl/stdio.in.h, + lib/gl/stdlib.in.h, lib/gl/str-two-way.h, lib/gl/strcasecmp.c, + lib/gl/string.in.h, lib/gl/strings.in.h, lib/gl/strncasecmp.c, + lib/gl/strverscmp.c, lib/gl/sys_socket.in.h, lib/gl/sys_stat.in.h, + lib/gl/tests/Makefile.am, lib/gl/tests/binary-io.h, + lib/gl/tests/dummy.c, lib/gl/tests/fcntl.in.h, + lib/gl/tests/getpagesize.c, lib/gl/tests/init.sh, + lib/gl/tests/intprops.h, lib/gl/tests/macros.h, + lib/gl/tests/signature.h, lib/gl/tests/test-alloca-opt.c, + lib/gl/tests/test-binary-io.c, lib/gl/tests/test-byteswap.c, + lib/gl/tests/test-c-ctype.c, lib/gl/tests/test-errno.c, + lib/gl/tests/test-fcntl-h.c, lib/gl/tests/test-fseeko.c, + lib/gl/tests/test-ftello.c, lib/gl/tests/test-ftello3.c, + lib/gl/tests/test-func.c, lib/gl/tests/test-memchr.c, + lib/gl/tests/test-netdb.c, lib/gl/tests/test-read-file.c, + lib/gl/tests/test-snprintf.c, lib/gl/tests/test-sockets.c, + lib/gl/tests/test-stdbool.c, lib/gl/tests/test-stddef.c, + lib/gl/tests/test-stdint.c, lib/gl/tests/test-stdio.c, + lib/gl/tests/test-stdlib.c, lib/gl/tests/test-string.c, + lib/gl/tests/test-strings.c, lib/gl/tests/test-strverscmp.c, + lib/gl/tests/test-sys_socket.c, lib/gl/tests/test-sys_stat.c, + lib/gl/tests/test-sys_wait.h, lib/gl/tests/test-time.c, + lib/gl/tests/test-unistd.c, lib/gl/tests/test-vasnprintf.c, + lib/gl/tests/test-vasprintf.c, lib/gl/tests/test-verify.c, + lib/gl/tests/test-vsnprintf.c, lib/gl/tests/test-wchar.c, + lib/gl/tests/zerosize-ptr.h, lib/gl/time.in.h, lib/gl/time_r.c, + lib/gl/unistd.in.h, lib/gl/vasnprintf.c, lib/gl/vasnprintf.h, + lib/gl/vasprintf.c, lib/gl/verify.h, lib/gl/vsnprintf.c, + lib/gl/w32sock.h, lib/gl/wchar.in.h, lib/gl/xsize.h, + libextra/build-aux/config.rpath, libextra/gl/gnulib.mk, + libextra/gl/hmac-md5.c, libextra/gl/hmac.h, + libextra/gl/m4/00gnulib.m4, libextra/gl/m4/extensions.m4, + libextra/gl/m4/gnulib-cache.m4, libextra/gl/m4/gnulib-common.m4, + libextra/gl/m4/gnulib-comp.m4, libextra/gl/m4/gnulib-tool.m4, + libextra/gl/m4/hmac-md5.m4, libextra/gl/m4/ld-output-def.m4, + libextra/gl/m4/ld-version-script.m4, libextra/gl/m4/lib-ld.m4, + libextra/gl/m4/lib-link.m4, libextra/gl/m4/lib-prefix.m4, + libextra/gl/m4/md5.m4, libextra/gl/m4/memxor.m4, libextra/gl/md5.c, + libextra/gl/md5.h, libextra/gl/memxor.c, libextra/gl/memxor.h, + maint.mk: Update gnulib files. + +2011-02-18 Nikos Mavrogiannopoulos + + * lib/gnutls_sig.c: DSA keys in TLS 1.x, x<2 and SSL 3.0 use SHA-1 + as hash. That is we reverted to previous gnutls behavior. That + violates DSS but all implementations handle it like that. + +2011-02-16 Nikos Mavrogiannopoulos + + * doc/cha-intro-tls.texi: reorganization of ciphersuite discussion. + +2011-02-15 Nikos Mavrogiannopoulos + + * lib/gnutls_priority.c: Allow using the minus "-" in the -ALL + priority strings. + +2011-02-15 Nikos Mavrogiannopoulos + + * lib/gnutls_algorithms.c: The safe renegotiation ciphersuite is not + required to be registered. + +2011-02-15 Nikos Mavrogiannopoulos + + * lib/auth_dhe_psk.c: Corrected bug in DHE-PSK in freeing + username/key. + +2011-02-12 Nikos Mavrogiannopoulos + + * NEWS, lib/gnutls_extensions.c, lib/gnutls_sig.c: Corrected + signature generation and verification in the Certificate Verify + message when in TLS 1.2. Reported by Todd A. Ouska. + +2011-02-11 Nikos Mavrogiannopoulos + + * lib/gnutls_state.c: removed duplicate assignments. + +2011-02-10 Nikos Mavrogiannopoulos + + * NEWS: documented DHE-PSK fix. + +2011-02-10 Nikos Mavrogiannopoulos + + * lib/gnutlsxx.cpp: deprecated the old priority functions in C++ + API. + +2011-02-10 Nikos Mavrogiannopoulos + + * lib/auth_psk.c: fix in PSK. + +2011-02-07 Nikos Mavrogiannopoulos + + * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, + src/common.c, src/common.h, src/serv-gaa.c, src/serv-gaa.h, + src/serv.c, src/serv.gaa: Removed deprecated option such as + --protocols, ciphers etc. + +2011-02-10 Nikos Mavrogiannopoulos + + * lib/auth_dh_common.c, lib/auth_dh_common.h, lib/auth_dhe_psk.c, + lib/auth_psk.c, lib/auth_psk.h: Callback function is being called in + both PSK-DHE and PSK. Using the callback function will not + overwrite the credentials, which were wrongly being overwritten + using the retrieved username/key. The credentials structure is now + accessed for reading only, as it should have been. (backported) + +2011-02-09 Nikos Mavrogiannopoulos + + * libextra/gnutls_openssl.c, libextra/includes/gnutls/openssl.h: + updated openssl layer to new priority functions (untested). + +2011-02-09 Nikos Mavrogiannopoulos + + * lib/gnutls_sig.c: removed unused variable. + +2011-02-09 Nikos Mavrogiannopoulos + + * NEWS, lib/gnutls_sig.c: Allow DSA2 even in protocols before TLS + 1.2. + +2011-02-09 Nikos Mavrogiannopoulos + + * lib/ext_signature.c, lib/ext_signature.h, lib/gnutls_pk.c, + lib/gnutls_sig.c: In TLS 1.2 under DSS use the hash algorithm + required by DSS. + +2011-02-09 Nikos Mavrogiannopoulos + + * tests/anonself.c, tests/dhepskself.c, tests/mini-eagain.c, + tests/mini.c, tests/openpgp-auth.c, tests/pskself.c, tests/resume.c: + Modernized the test applications that now use the + gnutls_priority_set_direct(). + +2011-02-09 Nikos Mavrogiannopoulos + + * lib/ext_signature.c: corrected bug in reading signature algorithms + for including in the signature algo extension. + +2011-02-09 Nikos Mavrogiannopoulos + + * lib/gnutls_priority.c: SRP and PSK are no longer set on the + default priorities. They have to be explicitly set. + +2011-02-08 Nikos Mavrogiannopoulos + + * doc/cha-programs.texi: Added documentation on p11tool. + +2011-02-08 Nikos Mavrogiannopoulos + + * doc/cha-intro-tls.texi: removed GCM mode from documentation. + +2011-02-08 Nikos Mavrogiannopoulos + + * doc/cha-intro-tls.texi, doc/cha-library.texi, + doc/manpages/gnutls-cli.1, doc/manpages/gnutls-serv.1, + lib/gnutls_priority.c, src/common.c: Moved documentation of priority + strings to manual and removed information from manpages and function + pages that now reference the manual section. + +2011-02-08 Nikos Mavrogiannopoulos + + * lib/includes/gnutls/compat.h, lib/includes/gnutls/gnutls.h.in: + deprecated the old set_priority functions. + +2011-02-08 Nikos Mavrogiannopoulos + + * lib/auth_cert.c, lib/auth_dhe.c, lib/ext_signature.c, + lib/gnutls_algorithms.c, lib/gnutls_algorithms.h: Several updates in + signature algorithms parsing and sending to avoid sending invalid + signature algorithms. + +2011-02-07 Nikos Mavrogiannopoulos + + * lib/gnutls_record.c: Corrected return message from + check_recv_type(). + +2011-02-06 Nikos Mavrogiannopoulos + + * lib/gnutls_hash_int.c: check the error of hash set_key. + +2011-02-06 Nikos Mavrogiannopoulos + + * doc/Makefile.am, doc/cha-gtls-app.texi, doc/examples/Makefile.am, + doc/examples/ex-client-tlsia.c, libextra/includes/gnutls/extra.h, + tests/Makefile.am, tests/tlsia.c: Removed documentation and tests + related to TLS/IA. + +2011-02-06 Nikos Mavrogiannopoulos + + * lib/gnutls_int.h: Added IV to max_record_overhead. + +2011-02-06 Nikos Mavrogiannopoulos + + * libextra/includes/gnutls/extra.h: Deprecated the Inner Application + extension. + +2011-02-06 Nikos Mavrogiannopoulos + + * lib/includes/gnutls/compat.h, lib/includes/gnutls/gnutls.h.in: + gnutls_certificate_verify_peers is deprecated. + +2011-02-05 Nikos Mavrogiannopoulos + + * lib/Makefile.am, lib/gnutls.pc.in, lib/m4/hooks.m4: Add the nettle + libs into gnutls.pc. + +2011-02-05 Andreas Metzler + + * lib/configure.ac, lib/gnutls.pc.in, lib/m4/hooks.m4: [PATCH 1/4] + adapt pkg-config file for switch from AM_PATH_LIBGCRYPT to + AC_LIB_HAVE_LINKFLAGS [PATCH 2/4] pkg-config: Move libtasn1 from + Libs.private to Requires.private since libtasn1 provides a .pc file. + [PATCH 3/4] pkg-config: drop @LIBGNUTLS_LIBS@ from Libs.private. + This library only contains gnutls itself nowadays, which is in Libs + already. [PATCH 4/4] pkg-config: If gnutls is built with zlib + support list zlib in Requires.private. + +2011-02-04 Simon Josefsson + + * doc/cha-ciphersuites.texi, doc/signatures.texi: Fix MD2 + documentation. Suggested by "brian m. carlson" in + debian bug #464625. + +2011-02-02 Nikos Mavrogiannopoulos + + * doc/README.CODING_STYLE: updated coding style. + +2011-02-05 Nikos Mavrogiannopoulos + + * NEWS, lib/includes/gnutls/compat.h, + lib/includes/gnutls/gnutls.h.in: Deprecated gnutls_certificate_get_* + functions. + +2011-02-01 Nikos Mavrogiannopoulos + + * doc/cha-bib.texi: Updated references of rfc5081 to rfc6091. + +2011-01-31 Nikos Mavrogiannopoulos + + * tests/x509paths/chain: better output in chain output. + +2011-01-30 Nikos Mavrogiannopoulos + + * NEWS, lib/includes/gnutls/x509.h, lib/x509/crl.c, + lib/x509/verify.c, lib/x509/x509.c: exported + gnutls_x509_crl_get_raw_issuer_dn() + +2011-01-30 Nikos Mavrogiannopoulos + + * lib/x509/x509.c: corrected typos + +2011-01-19 Nikos Mavrogiannopoulos + + * lib/pakchois/pakchois.c: CKR_CRYPTOKI_ALREADY_INITIALIZED is not + treated as an error, and Finalize is not called in that case. + +2011-01-16 Nikos Mavrogiannopoulos + + * NEWS, lib/gnutls_privkey.c, lib/includes/gnutls/compat.h, + lib/openpgp/privkey.c: Reverted removal of + gnutls_openpgp_privkey_sign_hash() to retain compatibility with + 2.10.x. That function is now deprecated instead. + +2011-01-16 Nikos Mavrogiannopoulos + + * lib/gnutls_privkey.c: Added checks before importing keys and + updated documentation. + +2011-01-15 Nikos Mavrogiannopoulos + + * tests/suite/Makefile.in: updated Makefile.in + +2011-01-15 Nikos Mavrogiannopoulos + + * doc/examples/ex-crq.c, lib/configure.ac, + lib/includes/gnutls/compat.h, lib/includes/gnutls/gnutls.h.in, + lib/includes/gnutls/x509.h, src/certtool.c, tests/crq_key_id.c: + fixes in internal build with the new deprecated functions. We allow + them to be used since they are inter-dependent. + +2011-01-15 Nikos Mavrogiannopoulos + + * lib/x509/x509_int.h: replaced old gnutls_pk_algorithm. + +2011-01-15 Nikos Mavrogiannopoulos + + * lib/includes/gnutls/compat.h: depends on gnutls/x509.h to compile. + +2011-01-15 Nikos Mavrogiannopoulos + + * NEWS, lib/includes/gnutls/compat.h, lib/includes/gnutls/x509.h, + lib/x509/crl_write.c: deprecated gnutls_x509_crl_sign(), + gnutls_x509_crl_sign2() and + gnutls_x509_crq_get_preferred_hash_algorithm(). + +2011-01-15 Nikos Mavrogiannopoulos + + * NEWS, lib/includes/gnutls/compat.h, lib/includes/gnutls/x509.h, + lib/x509/crq.c: Deprecated gnutls_x509_crq_sign2() and + gnutls_x509_crq_sign() in favor for gnutls_x509_crq_privkey_sign(). + +2011-01-15 Nikos Mavrogiannopoulos + + * NEWS, lib/libgnutls.map: minor fixes. + +2011-01-15 Nikos Mavrogiannopoulos + + * NEWS, lib/includes/gnutls/compat.h, lib/includes/gnutls/x509.h, + lib/libgnutls.map, lib/x509/privkey.c, lib/x509/x509.c, + src/certtool.c, tests/cve-2009-1415.c, tests/x509sign-verify.c: + gnutls_x509_crt_verify_hash: DEPRECATED gnutls_x509_crt_verify_data: + DEPRECATED gnutls_x509_crt_get_verify_algorithm: DEPRECATED + gnutls_x509_crt_get_preferred_hash_algorithm: DEPRECATED Removed the + new gnutls_x509_privkey_sign_data2() and + gnutls_x509_privkey_sign_hash2(). That functionality will be only in the abstract.h pubkey and privkey + structures, to avoid duplication for every certificate type. + +2011-01-15 Nikos Mavrogiannopoulos + + * src/serv.c: Simplified macro to snprintf() in order to prevent + issues caused when snprintf() is a macro itself. Reported and + initial patch by Camillo Lugaresi. + +2011-01-11 Nikos Mavrogiannopoulos + + * tests/suite/Makefile.in: Revert "Remove, it is generated." This reverts commit de3a601e502b24f047412a161085f7fbd898b3f3 because + this file is not automatically generated (not included in top + Makefile.am). + +2011-01-02 Simon Josefsson + + * lib/m4/hooks.m4: Specify minimum libgcrypt version. + +2010-12-23 Nikos Mavrogiannopoulos + + * doc/cha-internals.texi: Added discussion on crypto backend for + crypto libraries and /dev/crypto. + +2010-12-21 Nikos Mavrogiannopoulos + + * NEWS, lib/gnutls_privkey.c, lib/includes/gnutls/abstract.h, + lib/includes/gnutls/compat.h, lib/includes/gnutls/x509.h, + lib/x509/crq.c, lib/x509/privkey.c, lib/x509/sign.c: Renamed + gnutls_privkey_sign_data() to gnutls_privkey_sign_data2() to match + the similar function gnutls_x509_privkey_sign_data2(). + gnutls_x509_privkey_sign_data() was deprecated. + +2010-12-19 Nikos Mavrogiannopoulos + + * lib/gnutls_str.c: Extra sanity check. + +2010-12-19 Nikos Mavrogiannopoulos + + * lib/auth_srp_passwd.c: Use snprintf() to print an integer. + +2010-12-19 Nikos Mavrogiannopoulos + + * lib/x509/output.c: Use snprintf() to print IPs. There was a check + just before that, but be safe, just in case. + +2010-12-19 Nikos Mavrogiannopoulos + + * doc/cha-auth.texi: Use SRP for password authentication. + +2010-12-19 Nikos Mavrogiannopoulos + + * doc/cha-auth.texi, lib/gnutls_cert.c, lib/gnutls_extensions.c, + lib/gnutls_psk_netconf.c, lib/gnutls_state.c, + lib/includes/gnutls/compat.h, lib/x509/privkey.c: Do not include + deprecated functions to library documentation. + +2010-12-19 Nikos Mavrogiannopoulos + + * NEWS, lib/includes/gnutls/compat.h, lib/includes/gnutls/x509.h, + lib/x509/privkey.c: gnutls_x509_privkey_verify_data() was + deprecated. + +2010-12-19 Nikos Mavrogiannopoulos + + * lib/gnutls_pubkey.c: Documented key usage of pubkey. + +2010-12-19 Nikos Mavrogiannopoulos + + * lib/gnutls_pubkey.c: Set public key bits on all import functions. + Issue reported by Murray Kucheawy. + +2010-12-19 Nikos Mavrogiannopoulos + + * NEWS, lib/gnutls_privkey.c, lib/includes/gnutls/pkcs11.h, + lib/pkcs11_int.h, lib/pkcs11_privkey.c: + gnutls_pkcs11_privkey_sign_data(), + gnutls_pkcs11_privkey_sign_hash2() and + gnutls_pkcs11_privkey_decrypt_data() were removed. The abstract.h + functions should be used instead. + +2010-12-19 Nikos Mavrogiannopoulos + + * NEWS, lib/gnutls_privkey.c, lib/includes/gnutls/openpgp.h, + lib/openpgp/gnutls_openpgp.h, lib/openpgp/pgp.c, + lib/openpgp/privkey.c: Removed the newly added functions: + gnutls_openpgp_privkey_sign_hash2(), + gnutls_openpgp_privkey_sign_data2(), + gnutls_openpgp_crt_verify_hash() That way the operations in + abstract.h should be used to get the same functionality, and API + will be kept simple and easier to maintain. The corresponding + gnutls_x509_* are kept for backwards compatibility. + +2010-12-18 Nikos Mavrogiannopoulos + + * lib/gnutls_sig.c: Do not be strict on RSA hash algorithm selection + for signatures. + +2010-12-18 Nikos Mavrogiannopoulos + + * lib/gnutls_cert.h, lib/gnutls_sig.c, lib/gnutls_x509.c: Removed + unneeded definitions, and more careful deinitializations in + parse_der_cert_mem(). + +2010-12-18 Nikos Mavrogiannopoulos + + * tests/pathlen/ca-no-pathlen.pem, + tests/pathlen/no-ca-or-pathlen.pem: updated certificates to account + for extra null byte added in negative numbers. + +2010-12-18 Nikos Mavrogiannopoulos + + * tests/cve-2009-1415.c: Account for GNUTLS_E_PK_SIG_VERIFY_FAILED. + +2010-12-18 Nikos Mavrogiannopoulos + + * lib/gnutls_privkey.c: Corrected bug in gnutls_privkey_sign_data(). + +2010-12-18 Nikos Mavrogiannopoulos + + * lib/gnutls_sig.c: some fixes in pk_prepare_hash(). + +2010-12-18 Nikos Mavrogiannopoulos + + * NEWS, lib/gnutls_pubkey.c, lib/openpgp/pgp.c, lib/x509/privkey.c, + lib/x509/verify.c, lib/x509/x509.c, tests/x509sign-verify.c: The + verification functions now return a GNUTLS_E_PK_SIG_VERIFY_FAILED on + signature verification error. + +2010-12-18 Nikos Mavrogiannopoulos + + * src/p11tool-gaa.c, src/p11tool.gaa: The default input format for + p11tool is PEM. + +2010-12-16 Nikos Mavrogiannopoulos + + * lib/gnutls_pubkey.c: importing a pubkey from raw params will set + the bits field correctly. + +2010-12-16 Nikos Mavrogiannopoulos + + * NEWS: Documented the addtion of gnutls_pubkey_import_privkey() and + gnutls_pubkey_verify_data() + +2010-12-16 Nikos Mavrogiannopoulos + + * lib/gnutls_pubkey.c, lib/includes/gnutls/abstract.h, + lib/libgnutls.map, lib/x509/verify.c, tests/x509sign-verify.c: Added + gnutls_pubkey_verify_data and test vectors. + +2010-12-16 Nikos Mavrogiannopoulos + + * doc/errcodes.c, doc/examples/ex-alert.c, + doc/examples/ex-cert-select-pkcs11.c, + doc/examples/ex-cert-select.c, doc/examples/ex-client-psk.c, + doc/examples/ex-client-resume.c, doc/examples/ex-client-srp.c, + doc/examples/ex-client-tlsia.c, doc/examples/ex-client1.c, + doc/examples/ex-client2.c, doc/examples/ex-crq.c, + doc/examples/ex-pkcs12.c, doc/examples/ex-rfc2818.c, + doc/examples/ex-serv-anon.c, doc/examples/ex-serv-pgp.c, + doc/examples/ex-serv-psk.c, doc/examples/ex-serv-srp.c, + doc/examples/ex-serv1.c, doc/examples/ex-session-info.c, + doc/examples/ex-verify.c, doc/examples/ex-x509-info.c, + doc/examples/examples.h, doc/examples/tcp.c, doc/printlist.c, + guile/src/core.c, guile/src/extra.c, guile/src/utils.h, + lib/abstract_int.h, lib/auth_anon.c, lib/auth_cert.c, + lib/auth_cert.h, lib/auth_dh_common.c, lib/auth_dh_common.h, + lib/auth_dhe.c, lib/auth_dhe_psk.c, lib/auth_psk.c, + lib/auth_psk_passwd.c, lib/auth_psk_passwd.h, lib/auth_rsa.c, + lib/auth_rsa_export.c, lib/auth_srp.c, lib/auth_srp.h, + lib/auth_srp_passwd.c, lib/auth_srp_passwd.h, lib/auth_srp_rsa.c, + lib/auth_srp_sb64.c, lib/crypto-api.c, lib/crypto.c, lib/crypto.h, + lib/cryptodev.c, lib/debug.c, lib/ext_cert_type.c, + lib/ext_max_record.c, lib/ext_safe_renegotiation.c, + lib/ext_safe_renegotiation.h, lib/ext_server_name.c, + lib/ext_session_ticket.c, lib/ext_signature.c, lib/ext_signature.h, + lib/ext_srp.c, lib/gcrypt/cipher.c, lib/gcrypt/init.c, + lib/gcrypt/mac.c, lib/gcrypt/mpi.c, lib/gcrypt/pk.c, + lib/gnutls_alert.c, lib/gnutls_algorithms.c, + lib/gnutls_algorithms.h, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, + lib/gnutls_auth.h, lib/gnutls_buffers.c, lib/gnutls_buffers.h, + lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_cipher.c, + lib/gnutls_cipher.h, lib/gnutls_cipher_int.c, + lib/gnutls_cipher_int.h, lib/gnutls_compress.c, + lib/gnutls_compress.h, lib/gnutls_constate.c, + lib/gnutls_constate.h, lib/gnutls_datum.c, lib/gnutls_datum.h, + lib/gnutls_db.c, lib/gnutls_db.h, lib/gnutls_dh.c, lib/gnutls_dh.h, + lib/gnutls_dh_primes.c, lib/gnutls_errors.c, + lib/gnutls_extensions.c, lib/gnutls_extensions.h, + lib/gnutls_global.c, lib/gnutls_handshake.c, + lib/gnutls_handshake.h, lib/gnutls_hash_int.c, + lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_kx.c, + lib/gnutls_kx.h, lib/gnutls_mbuffers.c, lib/gnutls_mbuffers.h, + lib/gnutls_mem.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h, + lib/gnutls_num.c, lib/gnutls_pk.c, lib/gnutls_pk.h, + lib/gnutls_priority.c, lib/gnutls_privkey.c, lib/gnutls_psk.c, + lib/gnutls_psk_netconf.c, lib/gnutls_pubkey.c, lib/gnutls_record.c, + lib/gnutls_record.h, lib/gnutls_rsa_export.c, lib/gnutls_session.c, + lib/gnutls_session_pack.c, lib/gnutls_session_pack.h, + lib/gnutls_sig.c, lib/gnutls_sig.h, lib/gnutls_srp.c, + lib/gnutls_srp.h, lib/gnutls_state.c, lib/gnutls_state.h, + lib/gnutls_str.c, lib/gnutls_str.h, lib/gnutls_supplemental.c, + lib/gnutls_supplemental.h, lib/gnutls_ui.c, lib/gnutls_v2_compat.c, + lib/gnutls_v2_compat.h, lib/gnutls_x509.c, lib/gnutls_x509.h, + lib/includes/gnutls/abstract.h, lib/includes/gnutls/compat.h, + lib/includes/gnutls/crypto.h, lib/includes/gnutls/gnutls.h.in, + lib/includes/gnutls/gnutlsxx.h, lib/includes/gnutls/openpgp.h, + lib/includes/gnutls/pkcs11.h, lib/includes/gnutls/pkcs12.h, + lib/includes/gnutls/x509.h, lib/locks.c, lib/nettle/cipher.c, + lib/nettle/egd.c, lib/nettle/mpi.c, lib/nettle/pk.c, + lib/nettle/rnd.c, lib/opencdk/armor.c, lib/opencdk/context.h, + lib/opencdk/dummy.c, lib/opencdk/filters.h, lib/opencdk/hash.c, + lib/opencdk/kbnode.c, lib/opencdk/keydb.c, lib/opencdk/keydb.h, + lib/opencdk/literal.c, lib/opencdk/main.c, lib/opencdk/main.h, + lib/opencdk/misc.c, lib/opencdk/new-packet.c, + lib/opencdk/opencdk.h, lib/opencdk/packet.h, lib/opencdk/pubkey.c, + lib/opencdk/read-packet.c, lib/opencdk/seskey.c, + lib/opencdk/sig-check.c, lib/opencdk/stream.c, + lib/opencdk/stream.h, lib/opencdk/verify.c, + lib/opencdk/write-packet.c, lib/openpgp/compat.c, + lib/openpgp/extras.c, lib/openpgp/gnutls_openpgp.c, + lib/openpgp/gnutls_openpgp.h, lib/openpgp/openpgp_int.h, + lib/openpgp/output.c, lib/openpgp/pgp.c, lib/openpgp/pgpverify.c, + lib/openpgp/privkey.c, lib/pakchois/pakchois.c, + lib/pakchois/pakchois.h, lib/pakchois/pakchois11.h, lib/pkcs11.c, + lib/pkcs11_int.h, lib/pkcs11_privkey.c, lib/pkcs11_secret.c, + lib/pkcs11_write.c, lib/random.c, lib/system.c, lib/system.h, + lib/x509/common.c, lib/x509/common.h, lib/x509/crl.c, + lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/dn.c, + lib/x509/extensions.c, lib/x509/mpi.c, lib/x509/output.c, + lib/x509/pbkdf2-sha1.c, lib/x509/pbkdf2-sha1.h, lib/x509/pkcs12.c, + lib/x509/pkcs12_bag.c, lib/x509/pkcs12_encr.c, lib/x509/pkcs7.c, + lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, + lib/x509/rfc2818_hostname.c, lib/x509/sign.c, lib/x509/verify.c, + lib/x509/x509.c, lib/x509/x509_int.h, lib/x509/x509_write.c, + lib/x509_b64.c, lib/x509_b64.h, libextra/ext_inner_application.c, + libextra/ext_inner_application.h, libextra/gnutls_extra.c, + libextra/gnutls_ia.c, libextra/gnutls_openssl.c, + libextra/includes/gnutls/extra.h, + libextra/includes/gnutls/openssl.h, libextra/openssl_compat.c, + libextra/openssl_compat.h, maint.mk, src/benchmark.c, + src/certtool-cfg.c, src/certtool-cfg.h, src/certtool-common.c, + src/certtool-common.h, src/certtool.c, src/cli.c, src/common.c, + src/common.h, src/crypt.c, src/p11tool.c, src/p11tool.h, + src/pkcs11.c, src/prime.c, src/psk.c, src/serv.c, src/tests.c, + src/tests.h, src/tls_test.c, tests/anonself.c, + tests/certificate_set_x509_crl.c, tests/chainverify.c, + tests/crq_apis.c, tests/crq_key_id.c, tests/cve-2008-4989.c, + tests/dhepskself.c, tests/dn.c, tests/dn2.c, tests/gc.c, + tests/mini-eagain.c, tests/mini-x509-rehandshake.c, + tests/mini-x509.c, tests/mini.c, tests/mpi.c, + tests/nul-in-x509-names.c, tests/openpgp-auth.c, + tests/openpgp-keyring.c, tests/openpgp_test.c, tests/openpgpself.c, + tests/openssl.c, tests/pgps2kgnu.c, tests/pkcs12_encode.c, + tests/pkcs12_s2k.c, tests/pkcs12_s2k_pem.c, tests/pskself.c, + tests/resume.c, tests/safe-renegotiation/srn0.c, + tests/safe-renegotiation/srn1.c, tests/safe-renegotiation/srn2.c, + tests/safe-renegotiation/srn3.c, tests/safe-renegotiation/srn4.c, + tests/safe-renegotiation/srn5.c, tests/set_pkcs12_cred.c, + tests/simple.c, tests/tlsia.c, tests/utils.c, tests/utils.h, + tests/x509_altname.c, tests/x509_test.c, tests/x509dn.c, + tests/x509self.c, tests/x509sign-verify.c: Indented code. Use same + indentation but with -nut to avoid usage of tabs. In several editors + tabs can be configured not to be 8 spaces and this produces + artifacts with the current indentation that is a mixture of tabs and + spaces. + +2010-12-16 Nikos Mavrogiannopoulos + + * lib/gnutls_privkey.c: _gnutls_privkey_get_public_mpis() handles + openpgp keys. + +2010-12-16 Nikos Mavrogiannopoulos + + * lib/abstract_int.h, lib/gnutls_privkey.c, lib/gnutls_pubkey.c, + lib/includes/gnutls/abstract.h, lib/libgnutls.map: Added + gnutls_pubkey_import_privkey(), that will copy the public key from a + gnutls_privkey_t structure. + +2010-12-15 Nikos Mavrogiannopoulos + + * NEWS, lib/libgnutls.map: Do not export the non-existant symbols + gnutls_pkcs11_privkey_sign_hash and gnutls_privkey_sign_hash. + +2010-12-13 Nikos Mavrogiannopoulos + + * NEWS: documented new functions + +2010-12-13 Nikos Mavrogiannopoulos + + * NEWS: Added new functions. + +2010-12-13 Nikos Mavrogiannopoulos + + * lib/libgnutls.map: Added new functions. + +2010-12-13 Nikos Mavrogiannopoulos + + * lib/includes/gnutls/compat.h, lib/includes/gnutls/x509.h: + de-deprecated gnutls_x509_crt_verify_hash() + +2010-12-13 Nikos Mavrogiannopoulos + + * lib/includes/gnutls/openpgp.h, lib/libgnutls.map, + lib/openpgp/pgp.c, tests/x509sign-verify.c: Added + gnutls_openpgp_crt_verify_hash(). + +2010-12-13 Nikos Mavrogiannopoulos + + * lib/includes/gnutls/pkcs11.h, lib/pkcs11_privkey.c: added + gnutls_privkey_sign_hash2() + +2010-12-13 Nikos Mavrogiannopoulos + + * lib/gnutls_privkey.c, lib/gnutls_sig.c, lib/gnutls_sig.h, + lib/openpgp/privkey.c, lib/pkcs11_privkey.c, lib/x509/privkey.c: + Simplified preparation of signing code. + +2010-12-12 Nikos Mavrogiannopoulos + + * lib/gnutls_privkey.c, lib/gnutls_pubkey.c, lib/gnutls_sig.c, + lib/gnutls_sig.h, lib/openpgp/gnutls_openpgp.h, + lib/openpgp/privkey.c, lib/pkcs11_int.h, lib/pkcs11_privkey.c, + lib/x509/Makefile.am, lib/x509/privkey.c, lib/x509/sign.c, + lib/x509/sign.h: deprecated x509/sign.h and moved functionality of + it in gnutls_sig.h. + +2010-12-12 Nikos Mavrogiannopoulos + + * lib/x509/sign.c: pk_hash_data() will fail unless DSA or RSA are + specified. + +2010-12-12 Nikos Mavrogiannopoulos + + * lib/x509/privkey.c: better comments + +2010-12-12 Nikos Mavrogiannopoulos + + * lib/openpgp/gnutls_openpgp.c, lib/openpgp/privkey.c: + reorganization of the privkey_ functions(). + +2010-12-11 Nikos Mavrogiannopoulos + + * lib/gnutls_privkey.c, lib/includes/gnutls/abstract.h, + lib/includes/gnutls/compat.h, lib/includes/gnutls/openpgp.h, + lib/includes/gnutls/x509.h, lib/libgnutls.map, + lib/openpgp/gnutls_openpgp.c, lib/x509/privkey.c: Introduced + gnutls_*_privkey_sign_hash2() that is a high level function to + produce signatures. + +2010-12-11 Nikos Mavrogiannopoulos + + * lib/gnutls_privkey.c, lib/pkcs11_privkey.c, lib/x509/privkey.c, + lib/x509/sign.c, lib/x509/sign.h: Separated the sign_data functions + to a hashing phase, a preparing phase, and the actual signing. + +2010-12-11 Nikos Mavrogiannopoulos + + * NEWS: documented deprecated functions. + +2010-12-09 Nikos Mavrogiannopoulos + + * lib/includes/gnutls/compat.h, lib/includes/gnutls/openpgp.h, + lib/includes/gnutls/pkcs11.h: All the sign hash functions were + deprecated. + +2010-12-09 Nikos Mavrogiannopoulos + + * lib/includes/gnutls/compat.h, lib/includes/gnutls/x509.h: + gnutls_x509_privkey_sign_hash() is dangerous and was deprecated. + Added some text explaining why some functions were deprecated. + +2010-12-08 Nikos Mavrogiannopoulos + + * NEWS: documented previous update. + +2010-12-08 Nikos Mavrogiannopoulos + + * lib/x509/privkey.c, lib/x509/x509.c: export_raw() functions now + add leading zero in mpis. + +2010-12-07 Simon Josefsson + + * NEWS: Add. + +2010-12-07 Simon Josefsson + + * lib/includes/gnutls/crypto.h: C++ fixes, tiny patch from "Brendan + Doherty" . + +2010-12-07 Simon Josefsson + + * gl/m4/getdelim.m4, gl/m4/getline.m4, gl/m4/memchr.m4, + gl/m4/printf.m4, gl/m4/stdint.m4, lib/gl/m4/fcntl-o.m4, + lib/gl/m4/iconv.m4, lib/gl/m4/intdiv0.m4, lib/gl/m4/memchr.m4, + lib/gl/m4/memmem.m4, lib/gl/m4/printf.m4, lib/gl/m4/stdint.m4: + Update gnulib files. + +2010-12-07 Simon Josefsson + + * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, + libextra/configure.ac: Bump versions. + +2010-12-07 Simon Josefsson + + * ChangeLog: Generated. + +2010-12-07 Simon Josefsson + + * configure.ac, lib/configure.ac, lib/m4/hooks.m4, + libextra/configure.ac: Bump versions. + +2010-12-06 Simon Josefsson + + * ChangeLog: Generated. + +2010-12-06 Simon Josefsson + + * tests/Makefile.am: Don't fail on 'make distcheck'. + +2010-12-06 Simon Josefsson + + * NEWS: Version 2.11.6. + +2010-12-06 Simon Josefsson + + * lib/gnutls_str.c: Indent. + +2010-12-06 Nikos Mavrogiannopoulos + + * NEWS: documented SSL 3.0 record version change. + +2010-12-06 Nikos Mavrogiannopoulos + + * lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_priority.c: + SSL3_RECORD_VERSION priority option is now the default. That is in + order to not confuse non TLS 1.2 compliant implementations that + don't like a TLS 1.2 record. + +2010-12-06 Nikos Mavrogiannopoulos + + * lib/gnutls_str.c: simplified escape and unescape. + +2010-12-05 Nikos Mavrogiannopoulos + + * THANKS: Added Michael. + +2010-12-06 Simon Josefsson + + * cfg.mk, lib/gnutls_priority.c, lib/gnutls_state.c, + lib/includes/gnutls/compat.h, lib/includes/gnutls/gnutls.h.in, + lib/includes/gnutls/pkcs11.h, lib/nettle/rnd.c, lib/pkcs11.c, + lib/pkcs11_int.h, lib/pkcs11_secret.c, lib/pkcs11_write.c, + lib/x509/verify.c, src/certtool-common.c, src/certtool-common.h, + src/certtool.c, src/cli.c, src/common.c, src/p11tool.c, + src/p11tool.h, src/pkcs11.c, src/serv.c, tests/chainverify.c, + tests/openpgp-auth.c: Indent code. + +2010-12-06 Simon Josefsson + + * maint.mk: Update gnulib files. + +2010-12-06 Simon Josefsson + + * gl/override/top/maint.mk.diff: Remove. + +2010-12-06 Simon Josefsson + + * .gitignore: Update. + +2010-12-06 Simon Josefsson + + * lib/gnutls_priority.c, lib/pkcs11_secret.c, src/p11tool.c, + src/p11tool.gaa: Fix syntax-check nits. + +2010-12-06 Simon Josefsson + + * .x-sc_bindtextdomain: Ignore more. + +2010-12-06 Simon Josefsson + + * GNUmakefile, build-aux/gendocs.sh, build-aux/pmccabe.css, + build-aux/pmccabe2html, gl/Makefile.am, gl/arpa_inet.in.h, + gl/float+.h, gl/gettext.h, gl/inet_ntop.c, gl/intprops.h, + gl/m4/alloca.m4, gl/m4/arpa_inet_h.m4, gl/m4/getdelim.m4, + gl/m4/getline.m4, gl/m4/getpass.m4, gl/m4/gnulib-common.m4, + gl/m4/gnulib-comp.m4, gl/m4/mmap-anon.m4, gl/m4/printf.m4, + gl/m4/readline.m4, gl/m4/string_h.m4, gl/m4/sys_ioctl_h.m4, + gl/m4/sys_select_h.m4, gl/m4/sys_socket_h.m4, gl/m4/unistd_h.m4, + gl/m4/vasnprintf.m4, gl/m4/wchar_h.m4, gl/printf-parse.c, + gl/printf-parse.h, gl/stdint.in.h, gl/stdio.in.h, gl/stdlib.in.h, + gl/string.in.h, gl/sys_select.in.h, gl/sys_socket.in.h, + gl/tests/Makefile.am, gl/tests/init.sh, + gl/tests/test-select-stdin.c, gl/tests/test-select.c, + gl/tests/test-update-copyright.sh, gl/tests/verify.h, gl/time.in.h, + gl/unistd.in.h, gl/vasnprintf.c, gl/verify.h, gl/wchar.in.h, + lib/gl/Makefile.am, lib/gl/float+.h, lib/gl/gettext.h, + lib/gl/m4/alloca.m4, lib/gl/m4/glibc2.m4, lib/gl/m4/glibc21.m4, + lib/gl/m4/gnulib-common.m4, lib/gl/m4/gnulib-comp.m4, + lib/gl/m4/iconv.m4, lib/gl/m4/memmem.m4, lib/gl/m4/mmap-anon.m4, + lib/gl/m4/printf.m4, lib/gl/m4/string_h.m4, + lib/gl/m4/sys_socket_h.m4, lib/gl/m4/unistd_h.m4, + lib/gl/m4/vasnprintf.m4, lib/gl/m4/wchar_h.m4, + lib/gl/printf-parse.c, lib/gl/printf-parse.h, lib/gl/stdint.in.h, + lib/gl/stdio.in.h, lib/gl/stdlib.in.h, lib/gl/string.in.h, + lib/gl/sys_socket.in.h, lib/gl/tests/Makefile.am, + lib/gl/tests/init.sh, lib/gl/tests/intprops.h, + lib/gl/tests/verify.h, lib/gl/time.in.h, lib/gl/unistd.in.h, + lib/gl/vasnprintf.c, lib/gl/verify.h, lib/gl/wchar.in.h, + libextra/gl/m4/gnulib-common.m4, maint.mk: Update gnulib files. + +2010-12-05 Nikos Mavrogiannopoulos + + * tests/Makefile.am: Temporarily remove gendh test. It takes + extremely long time under valgrind. + +2010-12-05 Nikos Mavrogiannopoulos + + * NEWS, lib/gnutls_sig.c, lib/x509/common.c, lib/x509/common.h, + lib/x509/mpi.c, lib/x509/sign.c, lib/x509/verify.c: Use ASN1_NULL + when writing parameters for RSA signatures. This makes us comply + with RFC3279. Reported by Michael Rommel. + +2010-12-05 Nikos Mavrogiannopoulos + + * NEWS, src/serv.c: Corrected buffer overflow in gnutls-serv by + Tomas Mraz. The gnutls-serv uses fixed allocated buffer for the response which + can be pretty long if a client certificate is presented to it and + the http header is large. This causes buffer overflow and heap + corruption which then leads to random segfaults or aborts. It was reported originally here: + https://bugzilla.redhat.com/show_bug.cgi?id=659259 The attached patch changes sprintf calls in peer_print_info() to + snprintf so the buffer is never overflowed. + +2010-12-01 Nikos Mavrogiannopoulos + + * lib/m4/hooks.m4: increased revision + +2010-12-01 Nikos Mavrogiannopoulos + + * src/Makefile.am: Added p11tool.h + +2010-12-01 Nikos Mavrogiannopoulos + + * NEWS: released 2.11.5 + +2010-12-01 Nikos Mavrogiannopoulos + + * doc/cha-internals.texi: escaped chars. + +2010-12-01 Nikos Mavrogiannopoulos + + * doc/cha-internals.texi: Updated extension writing code. Still not + clear enough. + +2010-12-01 Nikos Mavrogiannopoulos + + * doc/cha-cert-auth.texi: PKCS #11 fixes + +2010-12-01 Nikos Mavrogiannopoulos + + * doc/examples/ex-cert-select-pkcs11.c: Corrected pkcs11 example + URLs + +2010-11-30 Nikos Mavrogiannopoulos + + * src/pkcs11.c: Prefix mechanism number with 0x. + +2010-11-30 Nikos Mavrogiannopoulos + + * lib/pakchois/pakchois11.h, src/pkcs11.c: Added camellia and + SHA224. + +2010-11-27 Nikos Mavrogiannopoulos + + * configure.ac, lib/configure.ac, lib/nettle/rnd.c: Use rusage if + present. Moved check to correct config and included resource.h + header. + +2010-11-27 Nikos Mavrogiannopoulos + + * lib/nettle/rnd.c: More details on the text + +2010-11-27 Nikos Mavrogiannopoulos + + * lib/pkcs11.c: Corrected copyright statement + +2010-11-27 Nikos Mavrogiannopoulos + + * lib/nettle/rnd.c: Corrected copyright header. Added Niels. + +2010-11-26 Nikos Mavrogiannopoulos + + * NEWS, lib/gnutls_cert.c, lib/includes/gnutls/x509.h, + lib/x509/verify.c, src/certtool.c, src/cli.c, tests/chainverify.c: + Reverted default behavior for verification and introduced + GNUTLS_VERIFY_DO_NOT_ALLOW_X509_V1_CA_CRT. Thus by default V1 + trusted CAs are allowed, unless the new flag is specified. + +2010-11-25 Simon Josefsson + + * NEWS: Typo. + +2010-11-25 Simon Josefsson + + * tests/suite/Makefile.in: Remove, it is generated. + +2010-11-25 Simon Josefsson + + * README: No space at eol. + +2010-11-25 Simon Josefsson + + * tests/safe-renegotiation/Makefile.am: Fix syntax-check warning. + +2010-11-25 Simon Josefsson + + * cfg.mk: Ignore tests/suite for syntax-checks, not our code. + +2010-11-25 Simon Josefsson + + * README: Recommend git format-patch rather than git diff. + +2010-11-24 Jeffrey Walton + + * README: Attached is a proposed modification to the README file, + including recent comments by Simon. + +2010-11-23 Simon Josefsson + + * guile/src/Makefile.am: Fix dependencies, fixes parallel builds. Tiny patch from Graham Gower . + +2010-11-19 Simon Josefsson + + * doc/Makefile.am: Remove file. + +2010-11-19 Simon Josefsson + + * doc/manpages/Makefile.am: Generated. + +2010-11-19 Nikos Mavrogiannopoulos + + * configure.ac, tests/suite/Makefile.in: Create Makefile in + tests/suite/ + +2010-11-19 Nikos Mavrogiannopoulos + + * src/cli.c, src/psk-gaa.c, src/psk-gaa.h, src/psk.c, src/psk.gaa, + tests/Makefile.am, tests/netconf-psk.c: Deprecate the netconf + password and use a key only. + +2010-11-19 Nikos Mavrogiannopoulos + + * doc/credentials/gnutls-http-serv: correctly set psk params. + +2010-11-16 Nikos Mavrogiannopoulos + + * NEWS: added info + +2010-11-16 Nikos Mavrogiannopoulos + + * lib/x509/privkey_pkcs8.c: Correctly write DSA public key in ASN.1 + (add leading zero). Reported by Jeffrey Walton. + +2010-11-16 Nikos Mavrogiannopoulos + + * lib/x509/mpi.c: cleanups + +2010-11-16 Nikos Mavrogiannopoulos + + * doc/cha-auth.texi, lib/includes/gnutls/compat.h, + lib/includes/gnutls/gnutls.h.in: Deprecated the key derivation + method from netconf. The published RFC does not include this method + and it is not known whether it has been used at all in practice. No + need to support it. + +2010-11-16 Nikos Mavrogiannopoulos + + * NEWS, lib/gnutls_priority.c: Added SIGN-ALL, CTYPE-ALL, COMP-ALL, + and VERS-TLS-ALL priority strings. + +2010-11-11 Nikos Mavrogiannopoulos + + * lib/gnutls_x509.c: Removed redundant error check. Reported by + Nicolas Kaiser. + +2010-11-11 Nikos Mavrogiannopoulos + + * lib/includes/gnutls/pkcs11.h, lib/libgnutls.map, lib/pkcs11.c, + src/p11tool-gaa.c, src/p11tool-gaa.h, src/p11tool.c, + src/p11tool.gaa, src/p11tool.h, src/pkcs11.c: Added + --list-mechanisms option to p11tool. Lists all mechanisms supported + by a token. + +2010-11-11 Nikos Mavrogiannopoulos + + * doc/manpages/Makefile.am, doc/manpages/p11tool.1: Added manpage + for p11tool. + +2010-11-11 Nikos Mavrogiannopoulos + + * doc/manpages/certtool.1, doc/manpages/gnutls-cli.1, + doc/manpages/gnutls-serv.1, doc/manpages/srptool.1: Corrected my + name. + +2010-11-11 Nikos Mavrogiannopoulos + + * src/p11tool-gaa.c, src/p11tool.gaa: In p11tool --url was renamed + to --export. + +2010-11-11 Nikos Mavrogiannopoulos + + * src/p11tool-gaa.c, src/p11tool-gaa.h, src/p11tool.gaa, + src/pkcs11.c: Corrected bug in secret key copy. Rationalized the + --help of p11tool. + +2010-11-11 Nikos Mavrogiannopoulos + + * lib/pkcs11.c, lib/pkcs11_secret.c: * Corrected flag conversion to internal representation. * When generating secret keys include a generic key type and a + random ID. + +2010-11-11 Nikos Mavrogiannopoulos + + * src/p11tool-gaa.c, src/p11tool-gaa.h, src/p11tool.gaa: Added + option --no-detailed-url to p11tool. More detailed url is the + default now. + +2010-11-07 Nikos Mavrogiannopoulos + + * NEWS, lib/Makefile.am, lib/includes/gnutls/pkcs11.h, + lib/libgnutls.map, lib/pkcs11.c, lib/pkcs11_int.h, + lib/pkcs11_secret.c, lib/pkcs11_write.c, src/pkcs11.c: Added + gnutls_pkcs11_token_set_pin() and gnutls_pkcs11_token_init() to + enable manipulating tokens purely from PKCS #11. + +2010-11-07 Nikos Mavrogiannopoulos + + * doc/README.gaa: Removed README.gaa. + +2010-11-07 Nikos Mavrogiannopoulos + + * .gitignore, src/Makefile.am, src/certtool-common.c, + src/certtool-common.h, src/certtool-gaa.c, src/certtool-gaa.h, + src/certtool.c, src/certtool.gaa, src/p11tool-gaa.c, + src/p11tool-gaa.h, src/p11tool.c, src/p11tool.gaa, src/p11tool.h, + src/pkcs11.c: Introduced p11tool to separate PKCS #11 functionality + from certtool. + +2010-11-07 Nikos Mavrogiannopoulos + + * tests/Makefile.am, tests/finished.c: Removed check on deprecated + feature (finished). + +2010-11-04 Nikos Mavrogiannopoulos + + * lib/includes/gnutls/compat.h, lib/includes/gnutls/gnutls.h.in: + Deprecated old functions. + +2010-11-01 Nikos Mavrogiannopoulos + + * doc/cha-intro-tls.texi: use @code for SAFE_RENEGOTIATION string. + +2010-06-07 Simon Josefsson + + * lib/gnutls_priority.c: Doc fix. + +2010-10-16 Simon Josefsson + + * .gitignore: Add. + +2010-10-16 Nikos Mavrogiannopoulos + + * tests/Makefile.am, tests/safe-renegotiation/Makefile.am, + tests/safe-renegotiation/params.dh, + tests/safe-renegotiation/testsrn, tests/suite/Makefile.am, + tests/suite/README, tests/suite/eagain, + tests/suite/ecore/eina_config.h, + tests/suite/ecore/src/include/Eina.h, + tests/suite/ecore/src/include/eina_accessor.h, + tests/suite/ecore/src/include/eina_array.h, + tests/suite/ecore/src/include/eina_benchmark.h, + tests/suite/ecore/src/include/eina_binshare.h, + tests/suite/ecore/src/include/eina_config.h, + tests/suite/ecore/src/include/eina_convert.h, + tests/suite/ecore/src/include/eina_counter.h, + tests/suite/ecore/src/include/eina_cpu.h, + tests/suite/ecore/src/include/eina_error.h, + tests/suite/ecore/src/include/eina_file.h, + tests/suite/ecore/src/include/eina_fp.h, + tests/suite/ecore/src/include/eina_hamster.h, + tests/suite/ecore/src/include/eina_hash.h, + tests/suite/ecore/src/include/eina_inline_array.x, + tests/suite/ecore/src/include/eina_inline_f16p16.x, + tests/suite/ecore/src/include/eina_inline_f32p32.x, + tests/suite/ecore/src/include/eina_inline_f8p24.x, + tests/suite/ecore/src/include/eina_inline_fp.x, + tests/suite/ecore/src/include/eina_inline_hash.x, + tests/suite/ecore/src/include/eina_inline_list.x, + tests/suite/ecore/src/include/eina_inline_log.x, + tests/suite/ecore/src/include/eina_inline_mempool.x, + tests/suite/ecore/src/include/eina_inline_rbtree.x, + tests/suite/ecore/src/include/eina_inline_rectangle.x, + tests/suite/ecore/src/include/eina_inline_str.x, + tests/suite/ecore/src/include/eina_inline_stringshare.x, + tests/suite/ecore/src/include/eina_inline_tiler.x, + tests/suite/ecore/src/include/eina_inline_trash.x, + tests/suite/ecore/src/include/eina_inline_ustringshare.x, + tests/suite/ecore/src/include/eina_inlist.h, + tests/suite/ecore/src/include/eina_iterator.h, + tests/suite/ecore/src/include/eina_lalloc.h, + tests/suite/ecore/src/include/eina_list.h, + tests/suite/ecore/src/include/eina_log.h, + tests/suite/ecore/src/include/eina_magic.h, + tests/suite/ecore/src/include/eina_main.h, + tests/suite/ecore/src/include/eina_matrixsparse.h, + tests/suite/ecore/src/include/eina_mempool.h, + tests/suite/ecore/src/include/eina_module.h, + tests/suite/ecore/src/include/eina_quadtree.h, + tests/suite/ecore/src/include/eina_rbtree.h, + tests/suite/ecore/src/include/eina_rectangle.h, + tests/suite/ecore/src/include/eina_safety_checks.h, + tests/suite/ecore/src/include/eina_sched.h, + tests/suite/ecore/src/include/eina_str.h, + tests/suite/ecore/src/include/eina_strbuf.h, + tests/suite/ecore/src/include/eina_stringshare.h, + tests/suite/ecore/src/include/eina_tiler.h, + tests/suite/ecore/src/include/eina_trash.h, + tests/suite/ecore/src/include/eina_types.h, + tests/suite/ecore/src/include/eina_unicode.h, + tests/suite/ecore/src/include/eina_ustrbuf.h, + tests/suite/ecore/src/include/eina_ustringshare.h, + tests/suite/ecore/src/lib/Ecore.h, + tests/suite/ecore/src/lib/Ecore_Getopt.h, + tests/suite/ecore/src/lib/ecore.c, + tests/suite/ecore/src/lib/ecore_anim.c, + tests/suite/ecore/src/lib/ecore_app.c, + tests/suite/ecore/src/lib/ecore_events.c, + tests/suite/ecore/src/lib/ecore_exe.c, + tests/suite/ecore/src/lib/ecore_getopt.c, + tests/suite/ecore/src/lib/ecore_glib.c, + tests/suite/ecore/src/lib/ecore_idle_enterer.c, + tests/suite/ecore/src/lib/ecore_idle_exiter.c, + tests/suite/ecore/src/lib/ecore_idler.c, + tests/suite/ecore/src/lib/ecore_job.c, + tests/suite/ecore/src/lib/ecore_main.c, + tests/suite/ecore/src/lib/ecore_pipe.c, + tests/suite/ecore/src/lib/ecore_poll.c, + tests/suite/ecore/src/lib/ecore_private.h, + tests/suite/ecore/src/lib/ecore_signal.c, + tests/suite/ecore/src/lib/ecore_thread.c, + tests/suite/ecore/src/lib/ecore_time.c, + tests/suite/ecore/src/lib/ecore_timer.c, + tests/suite/ecore/src/lib/eina_accessor.c, + tests/suite/ecore/src/lib/eina_array.c, + tests/suite/ecore/src/lib/eina_benchmark.c, + tests/suite/ecore/src/lib/eina_binshare.c, + tests/suite/ecore/src/lib/eina_chained_mempool.c, + tests/suite/ecore/src/lib/eina_convert.c, + tests/suite/ecore/src/lib/eina_counter.c, + tests/suite/ecore/src/lib/eina_cpu.c, + tests/suite/ecore/src/lib/eina_error.c, + tests/suite/ecore/src/lib/eina_file.c, + tests/suite/ecore/src/lib/eina_fp.c, + tests/suite/ecore/src/lib/eina_hamster.c, + tests/suite/ecore/src/lib/eina_hash.c, + tests/suite/ecore/src/lib/eina_inlist.c, + tests/suite/ecore/src/lib/eina_iterator.c, + tests/suite/ecore/src/lib/eina_lalloc.c, + tests/suite/ecore/src/lib/eina_list.c, + tests/suite/ecore/src/lib/eina_log.c, + tests/suite/ecore/src/lib/eina_magic.c, + tests/suite/ecore/src/lib/eina_main.c, + tests/suite/ecore/src/lib/eina_matrixsparse.c, + tests/suite/ecore/src/lib/eina_mempool.c, + tests/suite/ecore/src/lib/eina_module.c, + tests/suite/ecore/src/lib/eina_private.h, + tests/suite/ecore/src/lib/eina_quadtree.c, + tests/suite/ecore/src/lib/eina_rbtree.c, + tests/suite/ecore/src/lib/eina_rectangle.c, + tests/suite/ecore/src/lib/eina_safety_checks.c, + tests/suite/ecore/src/lib/eina_sched.c, + tests/suite/ecore/src/lib/eina_share_common.c, + tests/suite/ecore/src/lib/eina_share_common.h, + tests/suite/ecore/src/lib/eina_str.c, + tests/suite/ecore/src/lib/eina_strbuf.c, + tests/suite/ecore/src/lib/eina_strbuf_common.c, + tests/suite/ecore/src/lib/eina_strbuf_common.h, + tests/suite/ecore/src/lib/eina_strbuf_template_c.x, + tests/suite/ecore/src/lib/eina_stringshare.c, + tests/suite/ecore/src/lib/eina_tiler.c, + tests/suite/ecore/src/lib/eina_unicode.c, + tests/suite/ecore/src/lib/eina_ustrbuf.c, + tests/suite/ecore/src/lib/eina_ustringshare.c, + tests/suite/ecore/src/lib/eina_value.c, tests/suite/mini-eagain2.c, + tests/suite/params.dh, tests/suite/testsrn: Added tests/suite which + contains tests to be executed during development time and will not + be distributed (not included in make dist). Added "ecore" and a new + mini-eagain to test EAGAIN behavior. + +2010-10-16 Nikos Mavrogiannopoulos + + * .gitignore: updated .gitignore. + +2010-10-16 Simon Josefsson + + * NEWS, src/common.c: gnutls-cli: Print channel binding only in + verbose mode. Before it printed it after the 'Compression:' output, thus breaking + Emacs starttls.el string searches. + +2010-10-15 Simon Josefsson + + * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, + libextra/configure.ac: Bump versions. + +2010-10-15 Simon Josefsson + + * ChangeLog: Generated. + +2010-10-15 Simon Josefsson + + * NEWS: Version 2.11.4. + +2010-10-15 Simon Josefsson + + * lib/libgnutls.map: Rename new symbol prefix after next stable + branch instead of development branch. + +2010-10-15 Simon Josefsson + + * NEWS: Add. + +2010-10-15 Simon Josefsson + + * NEWS, doc/cha-bib.texi, doc/cha-gtls-app.texi: Document channel + binding API. + +2010-10-15 Simon Josefsson + + * lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_state.c, + src/common.c: Implement RFC 5929 tls-unique channel binding. + +2010-10-14 Simon Josefsson + + * NEWS, doc/manpages/Makefile.am, lib/gnutls_errors.c, + lib/gnutls_state.c, lib/includes/gnutls/gnutls.h.in, + lib/libgnutls.map: Add gnutls_session_channel_binding API. + +2010-10-14 Simon Josefsson + + * doc/manpages/Makefile.am: Generated. + +2010-10-14 Simon Josefsson + + * NEWS: Add. + +2010-10-14 Simon Josefsson + + * tests/Makefile.am, tests/gendh.c: Add self test gendh to check DH + generation. + +2010-10-14 Simon Josefsson + + * tests/openpgp-auth.c: Fix compiler warnings. + +2010-10-14 Simon Josefsson + + * guile/tests/Makefile.am, guile/tests/anonymous-auth.scm, + guile/tests/dh-parameters.pem, guile/tests/openpgp-auth.scm, + guile/tests/pkcs-import-export.scm, + guile/tests/session-record-port.scm, guile/tests/x509-auth.scm: + Don't generate DH primes in Guile self checks (for speed). + +2010-10-14 Simon Josefsson + + * tests/userid/userid: Cleanup, fixing distcheck. + +2010-10-14 Simon Josefsson + + * tests/openpgp-auth.c: Make it work with srcdir != objdir. + +2010-10-14 Simon Josefsson + + * doc/reference/gnutls-docs.sgml: Improve GTK-DOC manual. + +2010-10-14 Simon Josefsson + + * NEWS: Add. + +2010-10-14 Simon Josefsson + + * .x-sc_two_space_separator_in_usage, lib/cryptodev.c, + lib/m4/hooks.m4, lib/pakchois/pakchois11.h: Fix syntax-check + warning. + +2010-10-14 Simon Josefsson + + * build-aux/gendocs.sh, build-aux/pmccabe2html, doc/fdl-1.3.texi, + gl/Makefile.am, gl/arpa_inet.in.h, gl/errno.in.h, gl/float.in.h, + gl/ftello.c, gl/getaddrinfo.c, gl/m4/errno_h.m4, gl/m4/error.m4, + gl/m4/float_h.m4, gl/m4/ftello.m4, gl/m4/getpagesize.m4, + gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/hostent.m4, + gl/m4/include_next.m4, gl/m4/intmax_t.m4, gl/m4/inttypes_h.m4, + gl/m4/lib-ld.m4, gl/m4/lib-link.m4, gl/m4/lseek.m4, + gl/m4/malloc.m4, gl/m4/memchr.m4, gl/m4/minmax.m4, gl/m4/printf.m4, + gl/m4/realloc.m4, gl/m4/servent.m4, gl/m4/size_max.m4, + gl/m4/socketlib.m4, gl/m4/sockets.m4, gl/m4/socklen.m4, + gl/m4/sockpfaf.m4, gl/m4/stdarg.m4, gl/m4/stdbool.m4, + gl/m4/stdint.m4, gl/m4/stdint_h.m4, gl/m4/stdlib_h.m4, + gl/m4/time_h.m4, gl/m4/wchar_t.m4, gl/m4/wint_t.m4, gl/malloc.c, + gl/netdb.in.h, gl/netinet_in.in.h, gl/read-file.c, gl/realloc.c, + gl/select.c, gl/stdarg.in.h, gl/stddef.in.h, gl/stdint.in.h, + gl/stdio.in.h, gl/stdlib.in.h, gl/strerror.c, gl/string.in.h, + gl/sys_select.in.h, gl/sys_socket.in.h, gl/sys_stat.in.h, + gl/sys_time.in.h, gl/tests/Makefile.am, gl/tests/binary-io.h, + gl/tests/getpagesize.c, gl/tests/init.sh, gl/tests/sys_ioctl.in.h, + gl/tests/test-binary-io.c, gl/tests/test-binary-io.sh, + gl/tests/test-ftello.c, gl/tests/test-ftello.sh, + gl/tests/test-ftello2.sh, gl/tests/test-ftello3.c, + gl/tests/test-getaddrinfo.c, gl/tests/test-memchr.c, + gl/tests/test-netdb.c, gl/tests/test-read-file.c, + gl/tests/test-stdbool.c, gl/tests/test-stddef.c, + gl/tests/test-stdlib.c, gl/tests/test-sys_socket.c, + gl/tests/test-sys_wait.h, gl/tests/test-update-copyright.sh, + gl/tests/test-vc-list-files-cvs.sh, + gl/tests/test-vc-list-files-git.sh, gl/tests/test-verify.c, + gl/time.in.h, gl/timespec.h, gl/unistd.in.h, gl/wchar.in.h, + lib/build-aux/config.rpath, lib/gl/Makefile.am, lib/gl/errno.in.h, + lib/gl/float.in.h, lib/gl/ftello.c, lib/gl/m4/codeset.m4, + lib/gl/m4/errno_h.m4, lib/gl/m4/fcntl-o.m4, lib/gl/m4/float_h.m4, + lib/gl/m4/ftello.m4, lib/gl/m4/getpagesize.m4, + lib/gl/m4/gettext.m4, lib/gl/m4/gnulib-cache.m4, + lib/gl/m4/gnulib-comp.m4, lib/gl/m4/iconv.m4, + lib/gl/m4/include_next.m4, lib/gl/m4/intdiv0.m4, lib/gl/m4/intl.m4, + lib/gl/m4/intlmacosx.m4, lib/gl/m4/intmax.m4, + lib/gl/m4/intmax_t.m4, lib/gl/m4/inttypes-pri.m4, + lib/gl/m4/inttypes_h.m4, lib/gl/m4/lcmessage.m4, + lib/gl/m4/ld-version-script.m4, lib/gl/m4/lib-ld.m4, + lib/gl/m4/lib-link.m4, lib/gl/m4/lock.m4, lib/gl/m4/lseek.m4, + lib/gl/m4/malloc.m4, lib/gl/m4/memchr.m4, lib/gl/m4/memmem.m4, + lib/gl/m4/minmax.m4, lib/gl/m4/printf-posix.m4, + lib/gl/m4/printf.m4, lib/gl/m4/progtest.m4, lib/gl/m4/realloc.m4, + lib/gl/m4/size_max.m4, lib/gl/m4/socketlib.m4, + lib/gl/m4/sockets.m4, lib/gl/m4/socklen.m4, lib/gl/m4/sockpfaf.m4, + lib/gl/m4/stdbool.m4, lib/gl/m4/stdint.m4, lib/gl/m4/stdint_h.m4, + lib/gl/m4/stdlib_h.m4, lib/gl/m4/threadlib.m4, lib/gl/m4/time_h.m4, + lib/gl/m4/visibility.m4, lib/gl/m4/wchar_t.m4, lib/gl/m4/wint_t.m4, + lib/gl/malloc.c, lib/gl/netdb.in.h, lib/gl/read-file.c, + lib/gl/realloc.c, lib/gl/stddef.in.h, lib/gl/stdint.in.h, + lib/gl/stdio.in.h, lib/gl/stdlib.in.h, lib/gl/str-two-way.h, + lib/gl/string.in.h, lib/gl/strings.in.h, lib/gl/sys_socket.in.h, + lib/gl/sys_stat.in.h, lib/gl/tests/Makefile.am, + lib/gl/tests/binary-io.h, lib/gl/tests/getpagesize.c, + lib/gl/tests/init.sh, lib/gl/tests/test-binary-io.c, + lib/gl/tests/test-binary-io.sh, lib/gl/tests/test-ftello.c, + lib/gl/tests/test-ftello.sh, lib/gl/tests/test-ftello2.sh, + lib/gl/tests/test-ftello3.c, lib/gl/tests/test-memchr.c, + lib/gl/tests/test-netdb.c, lib/gl/tests/test-read-file.c, + lib/gl/tests/test-stdbool.c, lib/gl/tests/test-stddef.c, + lib/gl/tests/test-stdlib.c, lib/gl/tests/test-sys_socket.c, + lib/gl/tests/test-sys_wait.h, lib/gl/tests/test-verify.c, + lib/gl/time.in.h, lib/gl/unistd.in.h, lib/gl/wchar.in.h, + libextra/gl/gnulib.mk, libextra/gl/m4/gnulib-cache.m4, + libextra/gl/m4/gnulib-comp.m4, libextra/gl/m4/ld-version-script.m4, + libextra/gl/m4/lib-ld.m4, libextra/gl/m4/lib-link.m4, maint.mk: + Update gnulib files. + +2010-10-14 Simon Josefsson + + * cfg.mk: Don't assume chmod +x on gendocs.sh. + +2010-10-14 Simon Josefsson + + * cfg.mk: Use gnulib --add-import. + +2010-10-14 Simon Josefsson + + * .gitignore: Sort and update. + +2010-10-14 Simon Josefsson + + * lib/po/nl.po.in: Sync with TP. + +2010-10-14 Simon Josefsson + + * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, + libextra/configure.ac: Bump versions. + +2010-10-14 Simon Josefsson + + * ChangeLog: Generated. + +2010-10-14 Simon Josefsson + + * NEWS: Version 2.11.3. + +2010-10-14 Simon Josefsson + + * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, + libextra/configure.ac: Bump versions. + +2010-10-14 Simon Josefsson + + * doc/errcodes.c, doc/examples/ex-alert.c, + doc/examples/ex-cert-select-pkcs11.c, + doc/examples/ex-cert-select.c, doc/examples/ex-client-psk.c, + doc/examples/ex-client-resume.c, doc/examples/ex-client-srp.c, + doc/examples/ex-client-tlsia.c, doc/examples/ex-client1.c, + doc/examples/ex-client2.c, doc/examples/ex-crq.c, + doc/examples/ex-pkcs12.c, doc/examples/ex-rfc2818.c, + doc/examples/ex-serv-anon.c, doc/examples/ex-serv-pgp.c, + doc/examples/ex-serv-psk.c, doc/examples/ex-serv-srp.c, + doc/examples/ex-serv1.c, doc/examples/ex-session-info.c, + doc/examples/ex-verify.c, doc/examples/ex-x509-info.c, + doc/examples/examples.h, doc/examples/tcp.c, guile/src/core.c, + guile/src/errors.c, guile/src/extra.c, guile/src/utils.c, + guile/src/utils.h, lib/auth_cert.c, lib/auth_cert.h, + lib/auth_dh_common.c, lib/auth_dh_common.h, lib/auth_psk.h, + lib/auth_rsa.c, lib/auth_rsa_export.c, lib/auth_srp.c, + lib/auth_srp.h, lib/crypto-api.c, lib/crypto.h, lib/cryptodev.c, + lib/debug.c, lib/debug.h, lib/ext_cert_type.c, + lib/ext_max_record.c, lib/ext_safe_renegotiation.c, + lib/ext_safe_renegotiation.h, lib/ext_server_name.c, + lib/ext_server_name.h, lib/ext_session_ticket.c, + lib/ext_session_ticket.h, lib/ext_signature.c, lib/ext_signature.h, + lib/ext_srp.c, lib/ext_srp.h, lib/gcrypt/init.c, lib/gcrypt/mpi.c, + lib/gcrypt/pk.c, lib/gnutls_alert.c, lib/gnutls_algorithms.c, + lib/gnutls_algorithms.h, lib/gnutls_auth.h, lib/gnutls_buffers.c, + lib/gnutls_buffers.h, lib/gnutls_cert.c, lib/gnutls_cert.h, + lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_cipher_int.c, + lib/gnutls_cipher_int.h, lib/gnutls_compress.c, + lib/gnutls_compress.h, lib/gnutls_constate.c, + lib/gnutls_constate.h, lib/gnutls_datum.h, lib/gnutls_dh.h, + lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_extensions.c, + lib/gnutls_extensions.h, lib/gnutls_global.c, lib/gnutls_global.h, + lib/gnutls_handshake.c, lib/gnutls_handshake.h, + lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, + lib/gnutls_kx.c, lib/gnutls_mbuffers.c, lib/gnutls_mbuffers.h, + lib/gnutls_mem.h, lib/gnutls_mpi.h, lib/gnutls_num.h, + lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_priority.c, + lib/gnutls_privkey.c, lib/gnutls_pubkey.c, lib/gnutls_record.c, + lib/gnutls_record.h, lib/gnutls_session_pack.c, lib/gnutls_sig.c, + lib/gnutls_sig.h, lib/gnutls_srp.c, lib/gnutls_state.c, + lib/gnutls_state.h, lib/gnutls_str.c, lib/gnutls_str.h, + lib/gnutls_supplemental.c, lib/gnutls_supplemental.h, + lib/gnutls_x509.c, lib/includes/gnutls/abstract.h, + lib/includes/gnutls/compat.h, lib/includes/gnutls/crypto.h, + lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/gnutlsxx.h, + lib/includes/gnutls/openpgp.h, lib/includes/gnutls/pkcs11.h, + lib/includes/gnutls/pkcs12.h, lib/includes/gnutls/x509.h, + lib/locks.c, lib/locks.h, lib/nettle/cipher.c, lib/nettle/egd.c, + lib/nettle/egd.h, lib/nettle/init.c, lib/nettle/mac.c, + lib/nettle/mpi.c, lib/nettle/pk.c, lib/nettle/rnd.c, + lib/opencdk/armor.c, lib/opencdk/hash.c, lib/opencdk/kbnode.c, + lib/opencdk/keydb.c, lib/opencdk/literal.c, lib/opencdk/main.c, + lib/opencdk/misc.c, lib/opencdk/new-packet.c, lib/opencdk/pubkey.c, + lib/opencdk/read-packet.c, lib/opencdk/seskey.c, + lib/opencdk/sig-check.c, lib/opencdk/stream.c, lib/opencdk/types.h, + lib/opencdk/verify.c, lib/openpgp/gnutls_openpgp.c, + lib/openpgp/openpgp_int.h, lib/openpgp/output.c, lib/openpgp/pgp.c, + lib/openpgp/privkey.c, lib/pakchois/dlopen.c, + lib/pakchois/dlopen.h, lib/pakchois/errors.c, + lib/pakchois/pakchois.c, lib/pakchois/pakchois.h, + lib/pakchois/pakchois11.h, lib/pkcs11.c, lib/pkcs11_int.h, + lib/pkcs11_privkey.c, lib/pkcs11_write.c, lib/random.c, + lib/random.h, lib/system.c, lib/system.h, lib/x509/common.c, + lib/x509/common.h, lib/x509/crl_write.c, lib/x509/crq.c, + lib/x509/dn.c, lib/x509/mpi.c, lib/x509/output.c, + lib/x509/privkey.c, lib/x509/sign.c, lib/x509/sign.h, + lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509_int.h, + lib/x509/x509_write.c, lib/x509_b64.c, + libextra/ext_inner_application.c, libextra/ext_inner_application.h, + libextra/gnutls_extra.c, libextra/gnutls_ia.c, + libextra/includes/gnutls/extra.h, libextra/openssl_compat.h, + src/benchmark.c, src/certtool-cfg.h, src/certtool-common.h, + src/certtool.c, src/cli.c, src/common.c, src/common.h, src/crypt.c, + src/pkcs11.c, src/prime.c, src/psk.c, src/serv.c, src/tests.c, + tests/anonself.c, tests/certder.c, + tests/certificate_set_x509_crl.c, tests/certuniqueid.c, + tests/chainverify.c, tests/crq_apis.c, tests/crq_key_id.c, + tests/crypto_rng.c, tests/cve-2008-4989.c, tests/cve-2009-1415.c, + tests/cve-2009-1416.c, tests/dhepskself.c, tests/dn.c, tests/dn2.c, + tests/finished.c, tests/gc.c, tests/hostname-check.c, + tests/init_roundtrip.c, tests/mini-eagain.c, + tests/mini-x509-rehandshake.c, tests/mini-x509.c, tests/mini.c, + tests/moredn.c, tests/mpi.c, tests/netconf-psk.c, + tests/nul-in-x509-names.c, tests/openpgp-auth.c, + tests/openpgp-keyring.c, tests/openpgpself.c, tests/openssl.c, + tests/parse_ca.c, tests/pgps2kgnu.c, tests/pkcs12_encode.c, + tests/pkcs12_s2k.c, tests/pkcs12_s2k_pem.c, tests/pskself.c, + tests/resume.c, tests/safe-renegotiation/srn0.c, + tests/safe-renegotiation/srn1.c, tests/safe-renegotiation/srn2.c, + tests/safe-renegotiation/srn3.c, tests/safe-renegotiation/srn4.c, + tests/safe-renegotiation/srn5.c, tests/set_pkcs12_cred.c, + tests/setcredcrash.c, tests/simple.c, tests/tlsia.c, tests/utils.c, + tests/utils.h, tests/x509_altname.c, tests/x509dn.c, + tests/x509self.c, tests/x509sign-verify.c: Indent (using GNU indent + 2.2.11). + +2010-10-08 Nikos Mavrogiannopoulos + + * NEWS, configure.ac, lib/m4/hooks.m4: bumped version + +2010-10-08 Nikos Mavrogiannopoulos + + * src/certtool.c: Revert "Applied last patch of Micah Anderson on + IKE status." This reverts commit a6b2f5ce7316b4774649ee9b421da2ee7fef461f. + +2010-10-08 Nikos Mavrogiannopoulos + + * libextra/fipsmd5.c: removed unneeded code. + +2010-10-08 Nikos Mavrogiannopoulos + + * src/certtool.c: Applied last patch of Micah Anderson on IKE + status. + +2010-10-02 Nikos Mavrogiannopoulos + + * src/certtool.c: Applied patch on IKE extension by Micah Anderson + +2010-10-02 Nikos Mavrogiannopoulos + + * lib/cryptodev.c, lib/gcrypt/mac.c, lib/gnutls_hash_int.c, + lib/includes/gnutls/crypto.h, lib/nettle/mac.c: Updated cryptodev + code to support the linux cryptodev extensions. Removed the clone() + capability from HMAC. It was never used and having it prevents using + it with hardware accelerators that might not have this capability. + +2010-09-29 Nikos Mavrogiannopoulos + + * THANKS: Added Micah + +2010-10-01 Simon Josefsson + + * doc/cha-cert-auth.texi, doc/cha-internals.texi, + doc/cha-library.texi, lib/ext_safe_renegotiation.c, + lib/ext_server_name.c, lib/gcrypt/init.c, lib/gnutls_record.c, + lib/gnutls_str.c, lib/locks.c, lib/nettle/egd.c, lib/nettle/init.c, + lib/system.c, lib/system.h, libextra/ext_inner_application.c, + src/certtool-common.h, src/common.c, src/pkcs11.c: Fix some + syntax-check errors. + +2010-10-01 Simon Josefsson + + * lib/gnutls_int.h, lib/includes/gnutls/gnutls.h.in, + lib/includes/gnutls/pkcs11.h: Fix compiler warnings. + +2010-10-01 Simon Josefsson + + * NEWS, doc/manpages/Makefile.am: Mention new APIs. + +2010-09-30 Simon Josefsson + + * tests/openpgp-certs/testselfsigs: Avoid bashism. Reported by m.drochner@fz-juelich.de in + . + +2010-09-30 Simon Josefsson + + * lib/crypto-api.c: Don't return from void functions. Reported by Dagobert Michelsen in + + . + +2010-09-30 Simon Josefsson + + * lib/includes/gnutls/gnutls.h.in: Remove spurious comma. + +2010-09-30 Simon Josefsson + + * lib/includes/gnutls/x509.h: Remove spurious comma. + +2010-09-30 Simon Josefsson + + * tests/pkcs8-decode/Makefile.am, tests/pkcs8-decode/pkcs8: Make + pkcs8-decode test work on Windows. + +2010-09-29 Nikos Mavrogiannopoulos + + * NEWS: updated + +2010-09-29 Nikos Mavrogiannopoulos + + * lib/ext_session_ticket.c: treat absence of parameters the same as + having them disabled. + +2010-09-29 Nikos Mavrogiannopoulos + + * tests/resume.c: Corrected behavior on failure (don't crash). + +2010-09-29 Nikos Mavrogiannopoulos + + * lib/ext_session_ticket.c, lib/gnutls_extensions.c: Corrected bugs + when restoring extensions during session resumtion. + +2010-09-29 Nikos Mavrogiannopoulos + + * lib/gnutls_extensions.c: Use more informative logging for + extensions. + +2010-09-29 Micah Anderson + + * NEWS, doc/certtool.cfg, doc/cha-programs.texi, + lib/includes/gnutls/x509.h, lib/x509/output.c, src/certtool-cfg.c, + src/certtool-cfg.h, src/certtool.c: Add new extended key usage + ipsecIKE According to RFC 4945 § 5.1.3.12 section title + "ExtendedKeyUsage"[0] the following extended key usage has been + added: ... this document defines an ExtendedKeyUsage keyPurposeID that MAY + be used to limit a certificate's use: id-kp-ipsecIKE OBJECT IDENTIFIER ::= { id-kp 17 } where id-kp is defined in RFC 3280 [5]. If a certificate is + intended to be used with both IKE and other applications, and one + of the other applications requires use of an EKU value, then such + certificates MUST contain either the keyPurposeID id-kp-ipsecIKE or anyExtendedKeyUsage [5], as well as the keyPurposeID values associated with the other applications. Similarly, if a CA + issues multiple otherwise-similar certificates for multiple + applications including IKE, and it is intended that the IKE + certificate NOT be used with another application, the IKE + certificate MAY contain an EKU extension listing a keyPurposeID of + id-kp-ipsecIKE to discourage its use with the other application. + Recall, however, that EKU extensions in certificates meant for use + in IKE are NOT RECOMMENDED. Conforming IKE implementations are not required to support EKU. + If a critical EKU extension appears in a certificate and EKU is + not supported by the implementation, then RFC 3280 requires that the certificate be rejected. Implementations that do support EKU + MUST support the following logic for certificate validation: o If no EKU extension, continue. o If EKU present AND contains either id-kp-ipsecIKE or anyExtendedKeyUsage, continue. o Otherwise, reject cert. Signed-off-by: Nikos Mavrogiannopoulos + +2010-09-27 Nikos Mavrogiannopoulos + + * NEWS, src/certtool-gaa.c, src/certtool.gaa: --pkcs11-* in certtool + was renamed to --p11-*. + +2010-09-25 Nikos Mavrogiannopoulos + + * lib/ext_session_ticket.c: Added some comments and removed unused + code. + +2010-09-25 Nikos Mavrogiannopoulos + + * NEWS, lib/ext_session_ticket.c: Corrected advertizing issue for + session tickets. + +2010-09-24 Nikos Mavrogiannopoulos + + * doc/TODO: cleanup of TODO list. Removed very old entries, entries + already fixed and added new ones. + +2010-09-24 Nikos Mavrogiannopoulos + + * lib/gnutls_handshake.c: IMED_RET parameters are easier to grasp. + +2010-09-24 Nikos Mavrogiannopoulos + + * lib/crypto.c, lib/gcrypt/cipher.c, lib/gcrypt/mac.c, + lib/nettle/cipher.c, lib/nettle/mac.c: cipher,mac and digest + priorities moved to crypto.c + +2010-09-23 Nikos Mavrogiannopoulos + + * lib/gnutls_errors.c: changed the fatality level of some errors. + +2010-09-23 Nikos Mavrogiannopoulos + + * lib/gnutls_handshake.c: No longer use is_fatal() during handshake. + Explicitely treat EAGAIN and INTERRUPTED as non-fatal during + handshake. If the check_fatal flag is set then + GNUTLS_E_WARNING_ALERT_RECEIVED could interrupt a handshake as well. + +2010-09-23 Nikos Mavrogiannopoulos + + * src/cli.c: fflush stdout and stderr before the call to setbuf. + This fixes issue in solaris where lines dissappeared from output. + Reported and suggested fix by Knut Anders Hatlen. + +2010-09-20 Nikos Mavrogiannopoulos + + * NEWS: documented change + +2010-09-19 Nikos Mavrogiannopoulos + + * lib/nettle/pk.c: Corrected bug in wrap_nettle_pk_fixup that was + importing DSA keys are RSA ones. + +2010-09-19 Nikos Mavrogiannopoulos + + * lib/nettle/pk.c, lib/openpgp/privkey.c: indented some code + +2010-09-19 Nikos Mavrogiannopoulos + + * lib/m4/hooks.m4: updated revision + +2010-09-18 Ludovic Courtès + + * .gitignore, tests/Makefile.am, tests/openpgp-auth.c: Add an + OpenPGP authentication unit test. * tests/Makefile.am (ctests)[ENABLE_OPENPGP]: Add `openpgp-auth'. (TESTS_ENVIRONMENT): Add `srcdir'. * tests/openpgp-auth.c: New file. Signed-off-by: Nikos Mavrogiannopoulos + +2010-09-16 Jonathan Bastien-Filiatrault + + * lib/ext_session_ticket.c, lib/gnutls_alert.c, + lib/gnutls_buffers.c, lib/gnutls_cipher.c, lib/gnutls_cipher.h, + lib/gnutls_compress.c, lib/gnutls_compress.h, + lib/gnutls_constate.c, lib/gnutls_constate.h, + lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_num.h, + lib/gnutls_record.c, lib/gnutls_record.h, + lib/gnutls_session_pack.c, lib/gnutls_state.c, libextra/gnutls_ia.c: + Explicit symmetric cipher state versionning. This introduces the concept of a "cipher epoch". The epoch number is + the number of successful handshakes and is incremented by one each + time. This concept is native to DTLS and this patch makes the + symmetric cipher state explicit for TLS in preparation for DTLS. + This concept was implicit in plain TLS and ChangeCipherSpec messages + triggered a "pending state copy". Now, we the current epoch number + is simply incremented to the parameters negotiated by the handshake. The main side effects of this patch is a slightly more abstract + internal API and, in some cases, simpler code. The session blob + format is also changed a bit since this patch avoids storing + information that is now redundant. If this breaks library users' + expectations, this side effect can be negated. The cipher_specs structure has been removed. The conn_state has + become record_state_st. Only symmetric cipher information is + versioned. Things such as key exchange algorithm and the master + secret are not versioned and their handling is unchanged. I have tested this patch as much as I could. It introduces no test + suite regressions on my x64 Debian GNU/Linux system. Do not hesitate to point out shortcomings or suggest changes. Since + this is a big diff, I am expecting this to be an iterative process. Signed-off-by: Jonathan Bastien-Filiatrault + Signed-off-by: Nikos Mavrogiannopoulos + +2010-09-16 Jonathan Bastien-Filiatrault + + * lib/gnutls_errors.h: Add gnutls_assert_val idiom. This warrants being made in an inline function or macro since it is used throughout the code. This converts 4 line repetitive blocks + into 1 line. Signed-off-by: Jonathan Bastien-Filiatrault + Signed-off-by: Nikos Mavrogiannopoulos + +2010-09-14 Nikos Mavrogiannopoulos + + * AUTHORS, NEWS, configure.ac: updated for 2.11.1 + +2010-09-10 Nikos Mavrogiannopoulos + + * lib/includes/gnutls/pkcs11.h, lib/pkcs11.c, lib/pkcs11_int.h, + lib/pkcs11_privkey.c, src/certtool-gaa.c, src/certtool-gaa.h, + src/certtool.gaa, src/pkcs11.c: Added 3 levels of details in PKCS + #11 URLs. 1st level: Token level. Object is unique up to token. + 2nd level: Object is unique up to token and module used to access + it. 3rd level: Object is unique up to token and module and version + of module used to access it. + +2010-09-10 Nikos Mavrogiannopoulos + + * NEWS: Documented changes. + +2010-09-10 Nikos Mavrogiannopoulos + + * lib/x509_b64.c: Be liberal in the PEM decoding. That is spaces and + tabs are being skipped. + +2010-09-08 Jonathan Bastien-Filiatrault + + * lib/gnutls_buffers.c: Fully mbufferize _gnutls_read and + _gnutls_read_buffered. Signed-off-by: Jonathan Bastien-Filiatrault + Signed-off-by: Nikos Mavrogiannopoulos + +2010-09-08 Jonathan Bastien-Filiatrault + + * lib/gnutls_mbuffers.h: mbuffers: Add _mbuffer_xfree operation. Signed-off-by: Jonathan Bastien-Filiatrault + Signed-off-by: Nikos Mavrogiannopoulos + +2010-09-08 Jonathan Bastien-Filiatrault + + * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_int.h, + lib/gnutls_record.c, lib/gnutls_state.c: mbuffers: make + _gnutls_io_read_buffered use mbuffers. This will be needed by the DTLS code to make sure reads are stored + in segments that correspond to datagram boundaries. Signed-off-by: Jonathan Bastien-Filiatrault + Signed-off-by: Nikos Mavrogiannopoulos + +2010-09-08 Jonathan Bastien-Filiatrault + + * lib/gnutls_int.h: Parenthesize size calculations. This is standard practice and the DTLS code got bit by this. Signed-off-by: Jonathan Bastien-Filiatrault + Signed-off-by: Nikos Mavrogiannopoulos + +2010-09-08 Jonathan Bastien-Filiatrault + + * lib/gnutls_mbuffers.c, lib/gnutls_mbuffers.h: mbuffers: Add + mbuffer_linearize. Signed-off-by: Jonathan Bastien-Filiatrault + Signed-off-by: Nikos Mavrogiannopoulos + +2010-09-08 Jonathan Bastien-Filiatrault + + * lib/gnutls_mbuffers.c: mbuffers: fix wrong size calculation. maximum_size is the maximum size of the payload, not including + overhead. Signed-off-by: Jonathan Bastien-Filiatrault + Signed-off-by: Nikos Mavrogiannopoulos + +2010-09-08 Jonathan Bastien-Filiatrault + + * lib/gnutls_mbuffers.c: mbuffers: Make _mbuffer_remove_bytes return + a meaningful error code. Signed-off-by: Jonathan Bastien-Filiatrault + Signed-off-by: Nikos Mavrogiannopoulos + +2010-09-08 Jonathan Bastien-Filiatrault + + * lib/gnutls_mbuffers.c: mbuffers: Document the internal mbuffer + API. After a year of not hacking GnuTLS, I needed to look at the code to + know how mbuffers work. This will make it much easier for anybody + not familiar with this code. Signed-off-by: Jonathan Bastien-Filiatrault + Signed-off-by: Nikos Mavrogiannopoulos + +2010-09-08 Nikos Mavrogiannopoulos + + * NEWS: updated NEWS. + +2010-09-08 Nikos Mavrogiannopoulos + + * lib/includes/gnutls/pkcs11.h, lib/pkcs11.c, lib/pkcs11_int.h, + lib/pkcs11_privkey.c, lib/pkcs11_write.c, src/certtool-common.h, + src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, + src/certtool.gaa, src/pkcs11.c: PKCS#11 URL support updated to + conform to draft-pechanec-pkcs11uri-02. Now in the URL the pkcs11 + provider library (module) can be specified thus restricting objects + within a single provider. + +2010-09-01 Nikos Mavrogiannopoulos + + * NEWS, lib/gnutls_int.h, lib/gnutls_priority.c, + lib/gnutls_record.c: When the %COMPAT flag is specified, larger + records that would otherwise violate the TLS spec, are accepted. + +2010-08-28 Brad Hards + + * src/certtool.c, src/pkcs11.c: Show which option is the default for + command line tools. We use "y/N" is most places - this just adapts two places that use + "Y/N" to match the behavior of read_yesno(). Signed-off-by: Nikos Mavrogiannopoulos + +2010-08-20 Nikos Mavrogiannopoulos + + * lib/x509/x509.c: prevent a memory leak in the unique_id functions. + +2010-08-20 Brad Hards + + * lib/includes/gnutls/x509.h, lib/libgnutls.map, lib/x509/output.c, + lib/x509/x509.c, tests/Makefile.am, tests/certuniqueid.c: As + identified in a previous mail, I've added support for accessing / + displaying the subjectUniqueID and issuerUniqueID fields within an + X.509 certificate. This is provided (along with a test case) in the + attached patch. Signed-off-by: Nikos Mavrogiannopoulos + +2010-08-20 Nikos Mavrogiannopoulos + + * NEWS, lib/gnutls_int.h: By default lowat is set to zero. + +2010-08-19 Nikos Mavrogiannopoulos + + * lib/pkcs11.c: Revert "When scanning for terminator character for + PKCS #11 URLs ignore escaped \;." This reverts commit 583fad076506421c9007a3349784496e2927dcd1. + +2010-08-18 Nikos Mavrogiannopoulos + + * THANKS: Added Sjoerd. + +2010-08-18 Nikos Mavrogiannopoulos + + * NEWS, lib/m4/hooks.m4: libnettle is the default crypto library. + +2010-08-18 Nikos Mavrogiannopoulos + + * lib/gnutls_handshake.c: oldstate var removed. + +2010-08-17 Nikos Mavrogiannopoulos + + * tests/mini-eagain.c: mini-eagain will fail with EAGAIN error one + every two attempts. That is to remove probabilities. + +2010-08-11 Sjoerd Simons + + * lib/gnutls_int.h, lib/gnutls_record.c: Remember the amount of user + data we're sending out Partially reverts 3ef62950845f551ebc629e50d5ddf75f71b84294. + gnutls_record_send needs to return the amount of user-data we sent, + so we need to keep this information somewhere to return it when we + succeed in sending that data. Signed-off-by: Nikos Mavrogiannopoulos + +2010-08-11 Sjoerd Simons + + * lib/gnutls_handshake.c: Check whether the error is fatal in more + cases When stressing the async API of gnutls a lot of internal errors are + hit as IMED_RET clears the handshake hash buffers as a result of + -EAGAIN even though it would never be re-initialized at that point, + but is still needed in later stages. Signed-off-by: Nikos Mavrogiannopoulos + +2010-08-11 Sjoerd Simons + + * lib/gnutls_handshake.c, lib/gnutls_int.h: Add state for flushing + the handshake buffer A seperate state is needed between flushing the handshake buffers + and sending the chipher spec change otherwise it's impossible to + determine whether _gnutls_send_change_cipher_spec is called for the + first time or again. Signed-off-by: Nikos Mavrogiannopoulos + +2010-08-01 Simon Josefsson + + * lib/nettle/mpi.c: Fix warning. + +2010-07-29 Nikos Mavrogiannopoulos + + * lib/m4/hooks.m4: Define HAVE_GCRYPT when using gcrypt. nettle is + no longer marked as unsupported. + +2010-07-29 Nikos Mavrogiannopoulos + + * NEWS, doc/manpages/Makefile.am, lib/gnutls_extensions.c, + lib/m4/hooks.m4, lib/nettle/cipher.c, lib/nettle/mac.c, + lib/nettle/pk.c, libextra/gnutls_extra.c: Added Camellia-128/256, + SHA-224/384/512 and support for DSA2 when using nettle. + +2010-07-28 Nikos Mavrogiannopoulos + + * lib/pkcs11.c: When scanning for terminator character for PKCS #11 + URLs ignore escaped \;. + +2010-07-26 Nikos Mavrogiannopoulos + + * lib/gnutls_priority.c: Modified the example to work in TLS 1.2. + +2010-07-26 Nikos Mavrogiannopoulos + + * NEWS, lib/gnutls_algorithms.c: Added RSA_NULL_SHA1 and SHA256 + ciphersuites. + +2010-07-26 Nikos Mavrogiannopoulos + + * lib/ext_signature.c: When signature algorithms extension is not + received allow SHA1 and SHA256. + +2010-07-26 Nikos Mavrogiannopoulos + + * lib/gnutls_algorithms.c: NULL MAC renamed to MAC-NULL + +2010-07-25 Simon Josefsson + + * src/common.c: Avoid fixed size buffers (now handles the big >100 + SAN cert). + +2010-07-25 Simon Josefsson + + * doc/manpages/Makefile.am: Generated. + +2010-07-25 Simon Josefsson + + * NEWS: Re-add old NEWS entries. + +2010-07-25 Simon Josefsson + + * lib/gnutls_buffers.c: Doc fix. + +2010-07-24 Nikos Mavrogiannopoulos + + * lib/x509/privkey.c: Do not trust fbase64_decode to return 0 on + success. + +2010-07-24 Nikos Mavrogiannopoulos + + * NEWS, lib/gnutls_x509.c, lib/x509/privkey.c, src/certtool.c: + gnutls_x509_privkey_import() will fallback to + gnutls_x509_privkey_import_pkcs8() without a password, if it is + unable to decode the key. + +2010-07-24 Nikos Mavrogiannopoulos + + * lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, + lib/includes/gnutls/gnutls.h.in, lib/nettle/mpi.c, src/prime.c: + Added GNUTLS_PK_DH to differentiate in the generation of parameters + with PK_DSA that requires special treatment. + +2010-07-24 Nikos Mavrogiannopoulos + + * lib/gnutls_algorithms.c: Corrected wrong descriptions of security + levels. + +2010-07-24 Nikos Mavrogiannopoulos + + * lib/gnutls_algorithms.c: use RSA-SHA1 as an indicator of RSA + certificates. + +2010-07-24 Nikos Mavrogiannopoulos + + * lib/gnutls_algorithms.c: Fix DSA key values to avoid generating + normal and reporting them as low. + +2010-07-23 Nikos Mavrogiannopoulos + + * NEWS, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, + lib/includes/gnutls/openpgp.h, lib/includes/gnutls/x509.h, + lib/libgnutls.map, lib/nettle/mpi.c, lib/openpgp/privkey.c, + lib/x509/privkey.c, src/certtool.c, + tests/pathlen/no-ca-or-pathlen.pem: Better handling of security + parameters to key sizes matching (via a single table). Added + functions to return the security parameter of a private key. + +2010-07-23 Nikos Mavrogiannopoulos + + * doc/cha-intro-tls.texi: Simplified documentation. + +2010-07-23 Nikos Mavrogiannopoulos + + * lib/nettle/mpi.c: Follow ECRYPT II recommendations. + +2010-07-23 Nikos Mavrogiannopoulos + + * NEWS, doc/cha-bib.texi, doc/cha-intro-tls.texi, + lib/gnutls_algorithms.c: Updated documentation and + gnutls_pk_params_t mappings to ECRYPT II recommendations. + +2010-07-23 Nikos Mavrogiannopoulos + + * lib/gnutls_priority.c: HMAC-MD5 deprecated according to ECRYPT II + yearly report (2009-2010) recommendations. + +2010-07-23 Nikos Mavrogiannopoulos + + * tests/sha2/Makefile.am: added missing file key-subca-dsa.pem + +2010-07-22 Nikos Mavrogiannopoulos + + * gtk-doc.make: ignore html errors otherwise make dist doesn't work. + +2010-07-22 Nikos Mavrogiannopoulos + + * NEWS: updated NEWS + +2010-07-22 Nikos Mavrogiannopoulos + + * src/certtool-common.h, src/certtool-gaa.c, src/certtool-gaa.h, + src/certtool.c, src/certtool.gaa: Added option for certtool to print + certificate public key. + +2010-07-21 Nikos Mavrogiannopoulos + + * lib/gnutls_algorithms.c: Added SIG_RSA_MD5_OID as an indicator of + RSA. Some microsoft products were using it. Reported by Mads + Kiilerich. + +2010-07-19 Nikos Mavrogiannopoulos + + * lib/gnutls_algorithms.c, lib/x509/common.h: Added RSA with SHA224. + +2010-07-17 Nikos Mavrogiannopoulos + + * lib/nettle/pk.c: Added blinding to RSA decryption AND signing. + Will stay there until it is moved to nettle itself. + +2010-07-11 Nikos Mavrogiannopoulos + + * lib/system.h: fixed + +2010-07-11 Nikos Mavrogiannopoulos + + * NEWS, lib/nettle/Makefile.am, lib/nettle/egd.c, lib/nettle/egd.h, + lib/nettle/rnd.c: Added support for EGD daemon in nettle's RNG. It + is used if /dev/urandom is not present. + +2010-07-11 Nikos Mavrogiannopoulos + + * lib/gnutls_buffers.c, lib/system.c, lib/system.h: Corrected the + lowat behavior. Documented that it will be deprecated in later + versions. + +2010-07-11 Nikos Mavrogiannopoulos + + * src/serv.c: gnutls-serv: Do not print CR/LF if received, but + instead print LF only. + +2010-07-10 Nikos Mavrogiannopoulos + + * lib/Makefile.am, lib/gnutls_buffers.c, lib/gnutls_state.c, + lib/locks.c, lib/locks.h, lib/pakchois/pakchois.c, lib/system.c, + lib/system.h: system specific functions were moved to system.c + +2010-07-10 Nikos Mavrogiannopoulos + + * NEWS, configure.ac, lib/gnutls_alert.c, lib/gnutls_buffers.c, + lib/gnutls_buffers.h, lib/gnutls_global.c, lib/gnutls_handshake.c, + lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_mbuffers.c, + lib/gnutls_mbuffers.h, lib/gnutls_record.c, lib/gnutls_record.h, + lib/gnutls_state.c, lib/includes/gnutls/gnutls.h.in, + lib/libgnutls.map, libextra/gnutls_ia.c: Support scattered write + using writev(). This takes advantage of the new buffering layer and + allows queuing of packets and flushing them. This is currently used + for handshake messages only. Performance-wise the difference of + packing several TLS records in a single write doesn't seem to offer + anything over ethernet (that my tests were on). Probably on links + with higher latency there would be a benefit. + +2010-07-08 Nikos Mavrogiannopoulos + + * doc/cha-gtls-app.texi: Removed old reference. + +2010-07-08 Nikos Mavrogiannopoulos + + * doc/cha-gtls-app.texi, doc/examples/Makefile.am, + doc/examples/ex-rfc2818.c: ex-rfc2818 is now a functional program + demonstrating the verification procedure. + +2010-07-08 Nikos Mavrogiannopoulos + + * doc/Makefile.am, doc/cha-gtls-app.texi, doc/examples/Makefile.am, + doc/examples/ex-serv-export.c: Example with export ciphersuites was + removed. + +2010-07-08 Nikos Mavrogiannopoulos + + * lib/gnutls_pubkey.c: corrected typo + +2010-07-07 Nikos Mavrogiannopoulos + + * lib/nettle/pk.c: Use the same "e" for RSA as libgcrypt. It's the + fastest choice. + +2010-07-05 Nikos Mavrogiannopoulos + + * src/certtool-cfg.c: Do not crash if input is redirected from + /dev/null. + +2010-07-05 Nikos Mavrogiannopoulos + + * NEWS, src/certtool-gaa.c, src/certtool.c, src/certtool.gaa: + Changed the default pkcs-cipher to AES-128. Allowed specifying the + 3des-pkcs12 cipher with the --pkcs-cipher option. + +2010-07-04 Nikos Mavrogiannopoulos + + * src/benchmark.c: Use double to count bytes. + +2010-07-04 Nikos Mavrogiannopoulos + + * lib/nettle/rnd.c: Added a windows version of the RNG. + +2010-07-04 Nikos Mavrogiannopoulos + + * lib/nettle/rnd.c: Corrected locking usage in nettle's random + subsystem. + +2010-07-03 Nikos Mavrogiannopoulos + + * lib/gcrypt/Makefile.am, lib/gnutls_privkey.c, + lib/gnutls_pubkey.c, lib/nettle/Makefile.am, lib/pakchois/dlopen.h: + Fixed to compile under mingw32. + +2010-07-03 Nikos Mavrogiannopoulos + + * lib/m4/hooks.m4: only warn if dlopen or pthreads are not found. + +2010-07-03 Nikos Mavrogiannopoulos + + * lib/gcrypt/init.c, lib/includes/gnutls/gnutls.h.in, lib/locks.c, + lib/pakchois/pakchois.c: Locks were converted to be in align with + posix locks to easier wrap around them. + +2010-07-03 Nikos Mavrogiannopoulos + + * lib/Makefile.am, lib/locks.c, lib/locks.h, lib/pakchois/dlopen.c, + lib/pakchois/dlopen.h, lib/pakchois/pakchois.c: The included + pakchois will use gnutls locks and will use a portable dlopen() to + allow compilation in win32 (untested). + +2010-07-03 Nikos Mavrogiannopoulos + + * lib/nettle/rnd.c: Read from /dev/urandom every 20 minutes. + +2010-07-03 Nikos Mavrogiannopoulos + + * lib/Makefile.am, lib/x509/Makefile.am: Added missing files + +2010-07-03 Nikos Mavrogiannopoulos + + * lib/crypto-api.c, lib/gnutls_cipher_int.c, + lib/gnutls_cipher_int.h, lib/includes/gnutls/crypto.h, + lib/libgnutls.map: Allow encryption and decryption that are not + in-place only. + +2010-07-03 Nikos Mavrogiannopoulos + + * src/benchmark.c: Print values in a human-readable format and do + the calculations in fixed time to prevent stalling in slow systems. + +2010-07-02 Nikos Mavrogiannopoulos + + * lib/m4/hooks.m4: corrected library version + +2010-07-02 Nikos Mavrogiannopoulos + + * doc/examples/ex-cert-select-pkcs11.c, + lib/includes/gnutls/pkcs11.h, lib/pkcs11.c, lib/pkcs11_int.h, + src/common.c, src/pkcs11.c: PIN callback supplies the token URL. The + callback function in common.c will cache PIN if requested for second + time. + +2010-07-02 Nikos Mavrogiannopoulos + + * lib/gnutls_errors.c, lib/includes/gnutls/gnutls.h.in, + lib/pkcs11.c, lib/pkcs11_int.h, lib/pkcs11_privkey.c, + lib/pkcs11_write.c, src/common.c: Reverted the SAVE_PIN approach in + PIN callback. The new approach will be to provide enough information + for the callback to save the PIN itself. + +2010-07-02 Nikos Mavrogiannopoulos + + * lib/gcrypt/init.c: removed unneeded function. + +2010-07-02 Nikos Mavrogiannopoulos + + * lib/gnutls_cert.c: More uses of gnutls_certificate_free_ca_names + +2010-07-02 Nikos Mavrogiannopoulos + + * lib/locks.c: Do not allow setting NULL lock functions + +2010-07-02 Nikos Mavrogiannopoulos + + * lib/nettle/rnd.c: corrected lock usage. + +2010-07-02 Nikos Mavrogiannopoulos + + * lib/m4/hooks.m4: bumped library version + +2010-07-01 Nikos Mavrogiannopoulos + + * lib/includes/Makefile.am: Include abstract.h in releases. + +2010-06-30 Nikos Mavrogiannopoulos + + * lib/crypto-api.c: Correctly deinitialize crypto API handles. + +2010-06-29 Nikos Mavrogiannopoulos + + * lib/gnutls_int.h: commented obscure HANDSHAKE_MAC_TYPE_10 and + HANDSHAKE_MAC_TYPE_12. + +2010-06-29 Nikos Mavrogiannopoulos + + * lib/locks.c, lib/locks.h, lib/nettle/rnd.c: simplified locking + code. Locking functions always exist but are dummies if no locks + have been set. + +2010-06-29 Nikos Mavrogiannopoulos + + * lib/gcrypt/Makefile.am, lib/gcrypt/init.c, lib/gnutls_errors.c, + lib/gnutls_global.c, lib/gnutls_global.h, + lib/includes/gnutls/gnutls.h.in, lib/locks.c, lib/locks.h, + lib/nettle/Makefile.am, lib/nettle/init.c, lib/nettle/rnd.c: + Initialization of crypto libraries moved outside main gnutls code. + +2010-06-29 Nikos Mavrogiannopoulos + + * lib/Makefile.am, lib/gnutls_global.c, lib/gnutls_global.h, + lib/locks.c, lib/locks.h: Moved locking code to special file. + +2010-06-29 Simon Josefsson + + * doc/Makefile.am, doc/pkcs11-vision.eps: Add pkcs11-vision rules. + +2010-06-29 Simon Josefsson + + * doc/manpages/Makefile.am: Generated. + +2010-06-28 Nikos Mavrogiannopoulos + + * lib/includes/gnutls/pkcs11.h, lib/pkcs11_write.c, src/pkcs11.c: + When copying a private key the sensitive flag can be set or not. + This allows copying private keys that can be exported. + +2010-06-28 Nikos Mavrogiannopoulos + + * lib/includes/gnutls/pkcs11.h, lib/pkcs11.c, lib/pkcs11_int.h, + lib/pkcs11_write.c, src/certtool-common.h, src/certtool.c, + src/pkcs11.c: Combined object flags. No implicit login any more. + Login has to be specified with a flag on every call that could use + it. + +2010-06-28 Nikos Mavrogiannopoulos + + * lib/gnutls_privkey.c, lib/gnutls_pubkey.c, lib/pkcs11.c, + lib/pkcs11_int.h, lib/pkcs11_privkey.c, lib/pkcs11_write.c: Indented + code. + +2010-06-28 Nikos Mavrogiannopoulos + + * doc/examples/ex-cert-select-pkcs11.c, lib/gnutls_pubkey.c, + lib/gnutls_x509.c, lib/includes/gnutls/abstract.h, + lib/includes/gnutls/pkcs11.h, lib/pkcs11.c, lib/pkcs11_write.c, + src/certtool-common.h, src/certtool-gaa.c, src/certtool-gaa.h, + src/certtool.c, src/certtool.gaa, src/cli.c, src/pkcs11.c: Allow + flags when importing objects from PKCS11 URLs. The only flag + supported now is the PKCS11_OBJ_FLAG_LOGIN, which forces login + before accessing object on a token. The reason is that some tokens + do not allow access of any data without login. + +2010-06-27 Nikos Mavrogiannopoulos + + * src/tests.c: Added AES-128 to block ciphers. + +2010-06-27 Nikos Mavrogiannopoulos + + * lib/gnutls_session_pack.c: Corrected writing and reading order of + security parameters. + +2010-06-27 Nikos Mavrogiannopoulos + + * lib/configure.ac, libextra/configure.ac: use 2.11.0 everywhere + +2010-06-27 Nikos Mavrogiannopoulos + + * NEWS, doc/cha-gtls-app.texi, lib/configure.ac, + lib/gnutls_errors.c, lib/gnutls_global.c, lib/gnutls_global.h, + lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, + lib/nettle/rnd.c, lib/pkcs11.c: Added gnutls_global_set_mutex() to + allow setting alternative locking procedures. By default the system + available locking is used. In *NIX pthreads are used and in windows + the critical section API. As a side effect this change avoids any API dependance on libgcrypt + even if threads are used. + +2010-06-27 Nikos Mavrogiannopoulos + + * tests/chainverify.c: Modified the cacertrsamd5 short-cut. The test + was checking whether verification using a trusted insecurely signed + self signed certificate will fail against a chain that has this as + intermediate. However this test should have succeeded since the + insecure certificate is trusted. This isn't the purpose of this test however. It should have checked + whether using the same certificate as trusted and to be verified and + the GNUTLS_VERIFY_DO_NOT_ALLOW_SAME flag should return an error. + +2010-06-27 Nikos Mavrogiannopoulos + + * tests/chainverify.c: Fail on error. + +2010-06-26 Nikos Mavrogiannopoulos + + * src/certtool.c: When generating private key allow usage of + --pkcs-cipher flag. + +2010-06-22 Nikos Mavrogiannopoulos + + * lib/auth_dhe_psk.c, lib/auth_psk.c, lib/auth_psk.h, + lib/auth_srp.c, lib/auth_srp.h, lib/ext_srp.c, lib/gnutls_int.h: + MAX_SRP_USERNAME -> MAX_USERNAME_SIZE + +2010-06-24 Simon Josefsson + + * README-alpha: We also require GNU make. + +2010-06-24 Simon Josefsson + + * THANKS, configure.ac, lib/configure.ac, libextra/configure.ac: Use + silent build rules. Suggested by Vincent Torri in + + . + +2010-06-22 Nikos Mavrogiannopoulos + + * lib/includes/gnutls/gnutls.h.in: removed OPRFI extension + functions. + +2010-06-22 Nikos Mavrogiannopoulos + + * lib/Makefile.am: removed OPRFI from makefile. + +2010-06-21 Nikos Mavrogiannopoulos + + * lib/x509/verify.c: When verifying certificates use the same + algorithm whether the DO_NOT_ALLOW_SAME flag is set or not. Before + we were shortening certificate list if the flag was not set by the + size of the first certificate found in the trusted list, and keep + the list intact otherwise. Now we shorten the list in the latter + case as well, except for the first certificate. + +2010-06-19 Nikos Mavrogiannopoulos + + * NEWS: Added news entry for EV-certificates. + +2010-06-19 Nikos Mavrogiannopoulos + + * src/tests.c, src/tests.h, src/tls_test.c: Corrected some tests. + Added test to check whether the %COMPAT option is required for this + server. + +2010-06-19 Nikos Mavrogiannopoulos + + * lib/gnutls_extensions.c, lib/gnutls_session_pack.c: Corrections in + the new session packing code. Saving absolute positions in buffers + is no longer done. Now we store only and offset to allow + reallocating the buffer and still do the correct reference. + +2010-06-19 Nikos Mavrogiannopoulos + + * lib/ext_safe_renegotiation.c, lib/ext_safe_renegotiation.h, + lib/ext_signature.c, lib/gnutls_handshake.c: Fixes in new extensions + code that relate to SSL 3.0. + +2010-06-19 Nikos Mavrogiannopoulos + + * configure.ac: version is 2.11.0 + +2010-06-19 Nikos Mavrogiannopoulos + + * doc/cha-cert-auth.texi: Some updates in the PKCS11 text. + +2010-06-19 Nikos Mavrogiannopoulos + + * doc/cha-intro-tls.texi: Some updates on renegotiation text + +2010-06-19 Nikos Mavrogiannopoulos + + * doc/cha-intro-tls.texi: Removed links for discussion of the COMPAT + topic. I don't think they should be in the documentation. + +2010-06-19 Nikos Mavrogiannopoulos + + * doc/cha-intro-tls.texi: Corrected example with %COMPAT. + +2010-06-19 Nikos Mavrogiannopoulos + + * doc/cha-intro-tls.texi: Added gnutls_sec_param_to_pk_bits() + discussion. + +2010-06-19 Nikos Mavrogiannopoulos + + * doc/cha-intro-tls.texi: corrected text on AES + +2010-06-19 Nikos Mavrogiannopoulos + + * lib/pkcs11.c: Only save PIN if login was successful. + +2010-06-19 Nikos Mavrogiannopoulos + + * doc/cha-auth.texi, lib/ext_signature.c: Applied patch by Andreas + Metzler + +2010-06-19 Nikos Mavrogiannopoulos + + * src/benchmark.c: Allow setting debug level via cmd. + +2010-06-19 Nikos Mavrogiannopoulos + + * lib/cryptodev.c: Explicitely terminate cryptodev sessions. + +2010-06-19 Nikos Mavrogiannopoulos + + * lib/gnutls_hash_int.c, lib/gnutls_hash_int.h: Removed the no + longer needed "active" variable. + +2010-06-18 Nikos Mavrogiannopoulos + + * NEWS: documented some of the changes + +2010-06-18 Nikos Mavrogiannopoulos + + * lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, + lib/gnutls_hash_int.c, lib/gnutls_hash_int.h: Greatly simplified the + internal hash/hmac and cipher functions. + +2010-06-18 Nikos Mavrogiannopoulos + + * lib/includes/gnutls/pkcs11.h, lib/pkcs11.c, + src/certtool-common.h, src/certtool-gaa.c, src/certtool-gaa.h, + src/certtool.gaa, src/pkcs11.c: Allow listing of private keys only. + Certtool has now the --pkcs11-list-privkeya option. + +2010-06-18 Nikos Mavrogiannopoulos + + * lib/pkcs11_privkey.c: Send correct token name to callback. + +2010-06-18 Nikos Mavrogiannopoulos + + * lib/gnutls_errors.c, lib/includes/gnutls/gnutls.h.in, + lib/pkcs11.c, lib/pkcs11_int.h, lib/pkcs11_privkey.c, + lib/pkcs11_write.c: Added more gnutls errors to map closer to PKCS11 + actual errors. + +2010-06-17 Nikos Mavrogiannopoulos + + * lib/gnutls_errors.c, lib/includes/gnutls/gnutls.h.in, + lib/includes/gnutls/pkcs11.h, lib/pkcs11.c, lib/pkcs11_int.h, + lib/pkcs11_privkey.c, lib/pkcs11_write.c, src/cli.c, src/common.c: + Added option to the PKCS11 PIN callback to save PIN if the token is + being used with a single pkcs11_privkey structure. + +2010-06-17 Nikos Mavrogiannopoulos + + * lib/pkcs11_privkey.c: For Private key operations new sessions are + opened when are needed. This makes the usage of the PKCS11 API + thread safe. The only drawback is the requirement to enter PIN on + every operation. + +2010-06-15 Simon Josefsson + + * src/cli.c: gnutls-cli: Make --starttls work again. Problem introduced in patch to use read() instead of fgets() + committed on 2010-01-27. + +2010-06-14 Nikos Mavrogiannopoulos + + * src/certtool.c, tests/sha2/key-ca-dsa.pem, + tests/sha2/key-subca-dsa.pem, tests/sha2/sha2, tests/sha2/sha2-dsa: + Allow SHA224 hash in certtool. Added tests for SHA-256 and SHA-224 + for DSA. + +2010-06-14 Nikos Mavrogiannopoulos + + * src/certtool.c: Do not warn multiple times for the deprecation of + --bits. + +2010-06-14 Nikos Mavrogiannopoulos + + * lib/ext_session_ticket.c, lib/gnutls_handshake.c, + lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_mbuffers.c, + lib/gnutls_mbuffers.h, lib/gnutls_record.c: Appending data in + mbuffers is now cheaper by avoiding realloc, at the cost of + requiring to specify a maximum mbuffer size at creation. + +2010-06-13 Nikos Mavrogiannopoulos + + * lib/ext_safe_renegotiation.c: Removed unused functions. + +2010-06-13 Nikos Mavrogiannopoulos + + * lib/gnutls_handshake.c, lib/gnutls_int.h: Combined the max ticket + length with the maximum extension data length. + +2010-06-11 Nikos Mavrogiannopoulos + + * NEWS, doc/cha-gtls-app.texi, lib/auth_srp.c, lib/ext_cert_type.c, + lib/ext_cert_type.h, lib/ext_max_record.c, lib/ext_max_record.h, + lib/ext_oprfi.c, lib/ext_oprfi.h, lib/ext_safe_renegotiation.c, + lib/ext_safe_renegotiation.h, lib/ext_server_name.c, + lib/ext_server_name.h, lib/ext_session_ticket.c, + lib/ext_session_ticket.h, lib/ext_signature.c, lib/ext_signature.h, + lib/ext_srp.c, lib/ext_srp.h, lib/gnutls_buffers.c, + lib/gnutls_constate.c, lib/gnutls_extensions.c, + lib/gnutls_extensions.h, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_kx.c, lib/gnutls_mbuffers.c, lib/gnutls_mbuffers.h, + lib/gnutls_record.c, lib/gnutls_session_pack.c, lib/gnutls_state.c, + lib/gnutls_str.c, lib/gnutls_str.h, lib/includes/gnutls/compat.h, + lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, lib/pkcs11.c, + lib/x509/dn.c, libextra/ext_inner_application.c, + libextra/ext_inner_application.h, libextra/gnutls_extra.c, + libextra/gnutls_ia.c, src/cli.c, src/serv.c, tests/Makefile.am, + tests/oprfi.c, tests/tlsia.c: Simplified and made more safe the + packing of data for session storage. Extensions use the internal API + to store/retrieve during resumption. Removed OPRFI since it was never standardized and was never actually + included in gnutls since it was in inactive ifdef. This was instead + of rewriting it to use the new API. + +2010-06-11 Nikos Mavrogiannopoulos + + * lib/gnutls_buffers.c, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_str.c, lib/gnutls_str.h, lib/gnutls_supplemental.c, + lib/gnutls_supplemental.h, lib/openpgp/output.c, lib/pkcs11.c, + lib/x509/dn.c, lib/x509/output.c: The gnutls_string code was + simplified and integrated with the buffer to avoid having two named + for the same thing. + +2010-06-11 Nikos Mavrogiannopoulos + + * lib/pakchois/pakchois.c: Properly handle fork() case. + +2010-06-09 Nikos Mavrogiannopoulos + + * libextra/gnutls_extra.c: Register the md5 handler if gcrypt is in + fips mode once gnutls_global_init_extra() is called. + +2010-06-09 Nikos Mavrogiannopoulos + + * src/tests.c: corrected tests. + +2010-06-09 Nikos Mavrogiannopoulos + + * lib/pakchois/pakchois.c, lib/pakchois/pakchois.h, lib/pkcs11.c: + Added new calls to pakchois to open an absolute filename. + +2010-06-07 Nikos Mavrogiannopoulos + + * lib/includes/gnutls/pkcs11.h: Removed several comments that + pointed to Alon's implementation comments. We use inline C comments + to generate documentation (not doxygen). + +2010-06-04 Nikos Mavrogiannopoulos + + * lib/Makefile.am, lib/ext_session_ticket.c, + lib/gnutls_algorithms.c, lib/gnutls_buffers.c, + lib/gnutls_buffers.h, lib/gnutls_handshake.c, + lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_kx.c, + lib/gnutls_mbuffers.c, lib/gnutls_record.c, lib/gnutls_state.c: More + fixes for the rebase. + +2010-06-04 Nikos Mavrogiannopoulos + + * AUTHORS: Added Jonathan. + +2010-06-04 Nikos Mavrogiannopoulos + + * lib/pakchois/pakchois.c: Provider unref must be done after all + sessions have been closed. + +2010-06-03 Nikos Mavrogiannopoulos + + * lib/Makefile.am: Several fixes for the broken rebase. + +2010-06-03 Nikos Mavrogiannopoulos + + * doc/cha-intro-tls.texi: Merged with master. + +2010-06-03 Nikos Mavrogiannopoulos + + * lib/gnutls_handshake.c, lib/gnutls_mbuffers.h, + lib/gnutls_record.c: Some other changes to mbuffers to make gnutls + (a bit more) agnostic on their internal structure. + +2010-06-03 Nikos Mavrogiannopoulos + + * lib/x509/verify.c: Corrected prefered hash algorithm return value + on RSA. + +2010-06-03 Nikos Mavrogiannopoulos + + * lib/gnutls_global.c: Use GCRYCTL_ENABLE_QUICK_RANDOM when using + libgcrypt. + +2010-05-31 Nikos Mavrogiannopoulos + + * .gitignore: Ignore more files. + +2010-05-31 Nikos Mavrogiannopoulos + + * tests/sha2/sha2-dsa: Remove the correct file + +2010-05-31 Nikos Mavrogiannopoulos + + * tests/sha2/key-ca-dsa.pem, tests/sha2/key-dsa.pem: Added missing + files. + +2010-05-31 Nikos Mavrogiannopoulos + + * lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_pubkey.c, + lib/includes/gnutls/abstract.h, lib/includes/gnutls/x509.h, + lib/x509/crq.c, lib/x509/x509.c, src/certtool.c: The + get_preferred_hash_algorithm() functions have now an extra argument + to indicate whether it is mandatory to use this algorithm. + +2010-05-31 Nikos Mavrogiannopoulos + + * doc/examples/ex-crq.c, lib/includes/gnutls/x509.h, + lib/libgnutls.map, lib/x509/crq.c: Added + gnutls_x509_crq_get_preferred_hash_algorithm(). + +2010-05-31 Nikos Mavrogiannopoulos + + * NEWS, lib/gnutls_pubkey.c, lib/includes/gnutls/abstract.h, + lib/includes/gnutls/x509.h, lib/libgnutls.map, lib/x509/privkey.c, + lib/x509/verify.c, lib/x509/x509.c, src/certtool.c: Added + gnutls_pubkey_get_preferred_hash_algorithm() and + gnutls_x509_crt_get_preferred_hash_algorithm() to allow determining + the hash algorithm to use during signing. This is needed in the case + of DSA that uses specific versions of SHA depending on the size of + the parameters. + +2010-05-31 Nikos Mavrogiannopoulos + + * doc/gnutls.texi, lib/Makefile.am, lib/build-aux/config.rpath, + lib/gcrypt/pk.c, lib/gnutls_privkey.c, lib/pkcs11.c, + lib/pkcs11_privkey.c, lib/x509/privkey.c, lib/x509/sign.c, + lib/x509/sign.h, lib/x509/verify.c, lib/x509/x509.c, src/pkcs11.c: + Several fixes after big rebase. + +2010-05-30 Nikos Mavrogiannopoulos + + * tests/sha2/Makefile.am, tests/sha2/sha2-dsa: Test the DSA with + SHA256 as well. + +2010-05-30 Nikos Mavrogiannopoulos + + * lib/x509/mpi.c: Print debugging information on error. + +2010-05-30 Nikos Mavrogiannopoulos + + * NEWS, lib/gcrypt/pk.c, lib/gnutls_pk.c, lib/gnutls_sig.c, + lib/nettle/mpi.c, lib/nettle/pk.c, lib/opencdk/pubkey.c, + lib/opencdk/sig-check.c, lib/opencdk/verify.c, + lib/openpgp/gnutls_openpgp.c, lib/openpgp/pgp.c, + lib/openpgp/privkey.c, lib/pkcs11_privkey.c, lib/x509/privkey.c, + lib/x509/x509_int.h: Nettle library can now parse the PGP integers. + Except for SHA-224/384/512 nettle seems to be fully working now. + +2010-05-30 Nikos Mavrogiannopoulos + + * src/certtool.c: use --sec-param to generate privkey. + +2010-05-30 Nikos Mavrogiannopoulos + + * tests/openpgpself.c: reduced log level to a sane one + +2010-05-30 Nikos Mavrogiannopoulos + + * tests/pathlen/ca-no-pathlen.pem, + tests/pathlen/no-ca-or-pathlen.pem: Corrected for new output of + --print-certificate-info + +2010-05-30 Nikos Mavrogiannopoulos + + * tests/sha2/sha2: Print information on failure. + +2010-05-30 Nikos Mavrogiannopoulos + + * lib/libgnutls.map, src/certtool.c: Print exp1 and exp2 if they are + available. + +2010-05-30 Nikos Mavrogiannopoulos + + * tests/pkcs1-padding/pkcs1-pad, tests/pkcs12-decode/pkcs12, + tests/pkcs8-decode/pkcs8, tests/userid/userid: Only print output if + something fails + +2010-05-30 Nikos Mavrogiannopoulos + + * lib/m4/hooks.m4, lib/pakchois/pakchois.c: Some pakchois fixes. + +2010-05-30 Nikos Mavrogiannopoulos + + * lib/gnutls_global.c: Fixup to compile with nettle + +2010-05-29 Nikos Mavrogiannopoulos + + * lib/m4/hooks.m4: Do not bother with MODPATH. We don't use it. + +2010-05-29 Nikos Mavrogiannopoulos + + * lib/debug.c, lib/debug.h: Added again _gnutls_dump_mpi() to assist + in debugging. + +2010-05-29 Nikos Mavrogiannopoulos + + * tests/pkcs12_encode.c: Added debugging + +2010-05-29 Nikos Mavrogiannopoulos + + * lib/gnutls_sig.c: Allow DSA with other than SHA1 algorithms in + TLS. + +2010-05-29 Nikos Mavrogiannopoulos + + * lib/pkix_asn1_tab.c: removed more stuff. + +2010-05-29 Nikos Mavrogiannopoulos + + * lib/pkix.asn, lib/x509/common.c: LocalKeyId and XmppAddr were + incorporated. + +2010-05-29 Nikos Mavrogiannopoulos + + * lib/pkix.asn, lib/pkix_asn1_tab.c: No need for those OIDs any + more. + +2010-05-29 Nikos Mavrogiannopoulos + + * tests/dn2.c: Corrected to support new EV_ values. + +2010-05-29 Nikos Mavrogiannopoulos + + * tests/crq_key_id.c, tests/cve-2009-1416.c, tests/pkcs12_s2k_pem.c: + avoid calling gcrypt directly. + +2010-05-29 Nikos Mavrogiannopoulos + + * NEWS, lib/includes/gnutls/crypto.h, lib/libgnutls.map, + lib/random.c, lib/random.h, src/crypt.c, src/psk.c, + tests/mini-eagain.c: exported gnutls_rnd(). + +2010-05-29 Nikos Mavrogiannopoulos + + * lib/x509/common.c, lib/x509/common.h, lib/x509/dn.c: The + recognition of DN elements is now self contained. It does not need + entries in pkix.asn. + +2010-05-29 Nikos Mavrogiannopoulos + + * lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509/common.c: Added + support for EV certificate attributes. + +2010-05-29 Nikos Mavrogiannopoulos + + * lib/m4/hooks.m4, lib/nettle/cipher.c: Fixed nettle detection and + AES. + +2010-05-29 Nikos Mavrogiannopoulos + + * lib/gnutls_dh_primes.c: documentation updates + +2010-05-29 Nikos Mavrogiannopoulos + + * src/certtool-common.h, src/certtool.c, src/prime.c: Generate + dh-params also used --sec-param. + +2010-05-29 Nikos Mavrogiannopoulos + + * lib/nettle/mpi.c: Document that the generator is the generator of + the subgroup and not the group. + +2010-05-29 Nikos Mavrogiannopoulos + + * src/cli.c: Corrected certificate callback. + +2010-05-28 Nikos Mavrogiannopoulos + + * lib/gcrypt/Makefile.am, lib/nettle/Makefile.am, + lib/nettle/cipher.c: More AES stuff (still doesn't work). + +2010-05-28 Nikos Mavrogiannopoulos + + * lib/nettle/pk.c: Correction in RSA encryption. + +2010-05-28 Nikos Mavrogiannopoulos + + * lib/nettle/cipher.c: Fixed issue with AES. + +2010-05-28 Nikos Mavrogiannopoulos + + * NEWS, lib/gnutls_algorithms.c, lib/includes/gnutls/gnutls.h.in, + lib/libgnutls.map, lib/openpgp/output.c, lib/x509/output.c, + lib/x509/privkey.c, src/certtool-gaa.c, src/certtool-gaa.h, + src/certtool.c, src/certtool.gaa: Added + gnutls_sec_param_to_pk_bits() et al. to allow select bit sizes for + private keys using a human understandable scale. + +2010-05-28 Nikos Mavrogiannopoulos + + * NEWS, lib/gnutls_algorithms.c, lib/includes/gnutls/gnutls.h.in, + lib/x509/common.h: Added support for SHA224 and SHA256 in DSA. + +2010-05-28 Nikos Mavrogiannopoulos + + * lib/m4/hooks.m4: Always use included pakchois. + +2010-05-27 Nikos Mavrogiannopoulos + + * doc/examples/ex-cert-select-pkcs11.c: make sure all lines fit in + page. + +2010-05-26 Nikos Mavrogiannopoulos + + * doc/cha-cert-auth.texi: make example more compact by removing + error checking. + +2010-05-26 Nikos Mavrogiannopoulos + + * doc/cha-bib.texi, doc/cha-cert-auth.texi: Added bibliographic + reference to PKCS #11. + +2010-05-26 Nikos Mavrogiannopoulos + + * doc/cha-cert-auth.texi: Added sketch for PKCS #11 usage. + +2010-05-26 Nikos Mavrogiannopoulos + + * doc/credentials/x509-server-dsa.pem, + doc/credentials/x509-server-key-dsa.pem: Added 2048 bit DSA key + +2010-05-26 Nikos Mavrogiannopoulos + + * lib/opencdk/armor.c, lib/opencdk/read-packet.c, + lib/opencdk/stream.c, lib/opencdk/write-packet.c: Increased log + level of several messages. + +2010-05-25 Nikos Mavrogiannopoulos + + * doc/credentials/x509/key.pem: Corrected coefficient and exp[12] + values in key. + +2010-05-25 Nikos Mavrogiannopoulos + + * lib/nettle/pk.c: Added blinding in RSA. Correct broken private + keys on import. Nettle uses more values than gcrypt does from RSA + decryption and it seemed that some values in our stored private keys + were messy (generated by very old gnutls). + +2010-05-24 Nikos Mavrogiannopoulos + + * doc/examples/ex-cert-select-pkcs11.c, lib/gnutls_x509.c, + lib/includes/gnutls/pkcs11.h, lib/pkcs11.c, lib/pkcs11_int.h, + lib/pkcs11_privkey.c, lib/pkcs11_write.c, src/cli.c: Simplified + internal API. The only question that remains now is how to handle + the gnutls_pkcs11_privkey_t. Currently it opens a session and + maintains a handle to the object. This will require locks to be + added on operations. Alternatively new sessions may be opened for + each operation performed. This is guarranteed by PKCS #11 to be + thread safe but will of course require to ask for the PIN again. + +2010-05-24 Nikos Mavrogiannopoulos + + * lib/pakchois/pakchois.c: Removed debugging print. + +2010-05-24 Nikos Mavrogiannopoulos + + * lib/Makefile.am, lib/configure.ac, lib/m4/hooks.m4, + lib/pakchois/errors.c, lib/pakchois/pakchois.c, + lib/pakchois/pakchois.h, lib/pakchois/pakchois11.h: Added a modified + pakchois library (to open arbitrary pkcs11 modules). Current gnutls + works only with this one. + +2010-05-24 Nikos Mavrogiannopoulos + + * doc/cha-gtls-app.texi: Added missing file. + +2010-05-24 Nikos Mavrogiannopoulos + + * doc/TODO: Removed finished items. + +2010-05-24 Nikos Mavrogiannopoulos + + * lib/pkcs11_write.c: Noted that there things to be done. + +2010-05-24 Nikos Mavrogiannopoulos + + * doc/Makefile.am, doc/cha-cert-auth.texi: Added documentation on + abstract types. + +2010-05-23 Nikos Mavrogiannopoulos + + * lib/gcrypt/pk.c, lib/gnutls_pk.c, lib/gnutls_pk.h, + lib/opencdk/pubkey.c, lib/openpgp/privkey.c, lib/x509/privkey.c: + Common code for calculation of RSA exp1 and exp2. Also update the + openpgp code to calculate those values. + +2010-05-23 Nikos Mavrogiannopoulos + + * lib/auth_dh_common.c, lib/gnutls_dh_primes.c, lib/x509/privkey.c: + More fixes. + +2010-05-23 Nikos Mavrogiannopoulos + + * lib/auth_dh_common.c, lib/gcrypt/mpi.c, lib/gnutls_mpi.c: + Corrected nicely hidden bug that caused accesses to uninitialized + variables if the gcry_mpi_print() functions were pessimists and + returned more size than actually needed for the print. + +2010-05-23 Nikos Mavrogiannopoulos + + * lib/gcrypt/pk.c: Added some sanity checks. + +2010-05-23 Nikos Mavrogiannopoulos + + * NEWS, doc/cha-auth.texi, doc/cha-bib.texi, + doc/cha-cert-auth.texi, doc/cha-ciphersuites.texi, + doc/cha-copying.texi, doc/cha-functions.texi, + doc/cha-internals.texi, doc/cha-intro-tls.texi, + doc/cha-library.texi, doc/cha-preface.texi, doc/cha-programs.texi, + doc/cha-tls-app.texi, doc/gnutls.texi, + lib/includes/gnutls/pkcs11.h, lib/libgnutls.map, lib/pkcs11.c: + Documentation updates. Separated big gnutls.texi to chapter to allow + easier maintainance. + +2010-05-23 Nikos Mavrogiannopoulos + + * lib/Makefile.am, lib/gcrypt/mpi.c, lib/gcrypt/pk.c, + lib/includes/gnutls/crypto.h, lib/includes/gnutls/pkcs11.h, + lib/includes/gnutls/x509.h, lib/libgnutls.map, lib/nettle/pk.c, + lib/pkcs11.c, lib/pkcs11_int.h, lib/pkcs11_privkey.c, + lib/pkcs11_write.c, lib/x509/privkey.c, lib/x509/x509_int.h, + src/certtool-common.h, src/certtool-gaa.c, src/certtool-gaa.h, + src/certtool.c, src/certtool.gaa, src/crypt-gaa.c, src/pkcs11.c: + Added support to copy certificates and private keys to tokens. New + functions: gnutls_pkcs11_copy_x509_crt() + gnutls_pkcs11_copy_x509_privkey() gnutls_pkcs11_delete_url() Certtool was updated to allow copying certificates and private keys + to tokens. Deleting an object has issues (segfault) but it seems to + be related with libopensc and its pkcs11 API. + +2010-05-22 Nikos Mavrogiannopoulos + + * lib/x509/verify.c: Added gnutls_pubkey_verify_hash(), + gnutls_pubkey_get_verify_algorithm(). + +2010-05-22 Nikos Mavrogiannopoulos + + * lib/pkcs11.c, src/pkcs11.c: Added gnutls_pubkey_import_pkcs11(), + gnutls_pubkey_import_rsa_raw(), gnutls_pubkey_import_dsa_raw(), + gnutls_pkcs11_obj_export(). + +2010-05-22 Nikos Mavrogiannopoulos + + * NEWS: Tried to document recent changes. + +2010-05-22 Nikos Mavrogiannopoulos + + * lib/gnutls_x509.c, lib/pkcs11.c, lib/pkcs11_int.h, + src/certtool-gaa.c, src/certtool.gaa, src/pkcs11.c: Added + gnutls_pubkey_t abstract type to handle public keys. It can + currently import/export public keys from existing certificate types + as well as from PKCS #11 URL. This allows generating a certificate + or certificate request from a given public key (currently one could + only generate them from a given private key). PKCS#11 API augmented to allow reading arbitrary objects instead of + just certificates. Certtool updated to list those objects. + +2010-05-22 Nikos Mavrogiannopoulos + + * lib/pkcs11.c: Added gnutls_pkcs11_token_get_flags() to distinguish + between hardware and soft tokens. + +2010-05-21 Nikos Mavrogiannopoulos + + * lib/Makefile.am: Added support for libnettle backend. This uses + gmp for big number operations. It is not currently completed. It + lacks RSA blinding as well as optimizations. + +2010-05-18 Nikos Mavrogiannopoulos + + * lib/x509/sign.c: Corrected bug in DSA signature generation. + +2010-05-18 Nikos Mavrogiannopoulos + + * lib/x509/x509_int.h: Added operations to sign CRLs, certificates + and requests with an abstract key and thus with a PKCS #11 key as + well. + +2010-05-18 Nikos Mavrogiannopoulos + + * lib/includes/gnutls/privkey.h: privkey.h -> abstract.h + +2010-05-18 Nikos Mavrogiannopoulos + + * lib/gnutls_x509.c: The gnutls-cli --x509cafile can now be a PKCS + #11 URL. It can read gnome-keyring's certificates and use them in + the trusted list. + +2010-05-16 Nikos Mavrogiannopoulos + + * lib/gnutls_x509.c: Corrections in openpgp private key usage. + +2010-05-16 Nikos Mavrogiannopoulos + + * tests/x509self.c: Updated self tests and examples to avoid using + deprecated functions such as + gnutls_certificate_server_set_retrieve_function and the sign + callback. + +2010-05-16 Nikos Mavrogiannopoulos + + * lib/includes/gnutls/privkey.h, lib/pkcs11_int.h: Added + documentation for most of the new functions. + +2010-05-16 Nikos Mavrogiannopoulos + + * lib/pkcs11.c: Documented that it was initially based on neon + pkcs11 and got ideas from pkcs11-helper library. + +2010-05-15 Nikos Mavrogiannopoulos + + * lib/pkcs11.c: Corrections to properly handle token removal and + insert. + +2010-05-15 Nikos Mavrogiannopoulos + + * lib/Makefile.am, lib/gnutls_x509.c, lib/includes/gnutls/pkcs11.h, + lib/includes/gnutls/privkey.h, lib/pkcs11.c, lib/x509/sign.c: Added + gnutls_pkcs11_privkey_t and gnutls_privkey_t types. Those are an + abstract private key type that can be used to sign/encrypt any + private key of pkcs11,x509 or openpgp types. Added support for + PKCS11 in gnutls-cli/gnutls-serv. + +2010-05-10 Nikos Mavrogiannopoulos + + * src/certtool.c, src/pkcs11.c: Added several helper functions, to + allow printing of tokens. + +2010-05-10 Nikos Mavrogiannopoulos + + * lib/pkcs11.c, src/certtool-gaa.c, src/certtool.c, + src/certtool.gaa, src/pkcs11.c: Added ability to export certificates + from PKCS #11 tokens. Added ability to list trusted certificates, + or only certificates with a corresponding private key or just all. + +2010-05-09 Nikos Mavrogiannopoulos + + * lib/Makefile.am, lib/configure.ac, lib/includes/gnutls/pkcs11.h, + lib/pkcs11.c, src/certtool-gaa.c, src/certtool-gaa.h, + src/certtool.gaa, src/pkcs11.c: Added initial PKCS #11 support. + Certtool can now print lists of certificates available in system. + +2010-05-22 Nikos Mavrogiannopoulos + + * NEWS, lib/gnutls_pubkey.c, lib/includes/gnutls/abstract.h, + lib/libgnutls.map, lib/x509/common.h, lib/x509/verify.c, + lib/x509/x509.c, lib/x509/x509_int.h: Added + gnutls_pubkey_verify_hash(), gnutls_pubkey_get_verify_algorithm(). + +2010-05-22 Nikos Mavrogiannopoulos + + * NEWS, configure.ac, lib/gnutls_pubkey.c, + lib/includes/gnutls/abstract.h, lib/includes/gnutls/pkcs11.h, + lib/libgnutls.map, lib/pkcs11.c, lib/pkcs11_int.h, lib/x509/x509.c, + src/pkcs11.c: Added gnutls_pubkey_import_pkcs11(), + gnutls_pubkey_import_rsa_raw(), gnutls_pubkey_import_dsa_raw(), + gnutls_pkcs11_obj_export(). + +2010-05-22 Nikos Mavrogiannopoulos + + * .gitignore: Ignore files that should be ignored. + +2010-05-22 Nikos Mavrogiannopoulos + + * NEWS, src/certtool-gaa.c, src/certtool.gaa: Tried to document + recent changes. + +2010-05-22 Nikos Mavrogiannopoulos + + * lib/Makefile.am, lib/gnutls_pubkey.c, lib/gnutls_x509.c, + lib/includes/gnutls/abstract.h, lib/includes/gnutls/pkcs11.h, + lib/libgnutls.map, lib/pkcs11.c, lib/pkcs11_int.h, + lib/pkcs11_privkey.c, lib/x509/common.c, lib/x509/common.h, + lib/x509/mpi.c, lib/x509/x509.c, lib/x509/x509_int.h, + src/certtool-common.h, src/certtool-gaa.c, src/certtool-gaa.h, + src/certtool.c, src/certtool.gaa, src/pkcs11.c: Added + gnutls_pubkey_t abstract type to handle public keys. It can + currently import/export public keys from existing certificate types + as well as from PKCS #11 URL. This allows generating a certificate + or certificate request from a given public key (currently one could + only generate them from a given private key). PKCS#11 API augmented to allow reading arbitrary objects instead of + just certificates. Certtool updated to list those objects. + +2010-05-22 Nikos Mavrogiannopoulos + + * lib/includes/gnutls/pkcs11.h, lib/pkcs11.c: Added + gnutls_pkcs11_token_get_flags() to distinguish between hardware and + soft tokens. + +2010-05-22 Nikos Mavrogiannopoulos + + * lib/Makefile.am, lib/libgnutlsxx.map, lib/m4/hooks.m4: Export all + symbols from C++ library. This library doesn't contain any internal + symbols anyway and there is no reason to mess with the C++ ABI that + hasn't got the problems of C. + +2010-05-21 Nikos Mavrogiannopoulos + + * configure.ac, doc/examples/ex-serv-export.c, + doc/examples/ex-serv-psk.c, doc/examples/ex-serv1.c, + lib/Makefile.am, lib/auth_srp.c, lib/cipher-libgcrypt.c, + lib/configure.ac, lib/gcrypt/Makefile.am, lib/gcrypt/cipher.c, + lib/gcrypt/mac.c, lib/gcrypt/mpi.c, lib/gcrypt/pk.c, + lib/gcrypt/rnd.c, lib/gnutls_global.c, lib/gnutls_mpi.c, + lib/gnutls_srp.c, lib/m4/hooks.m4, lib/mac-libgcrypt.c, + lib/mpi-libgcrypt.c, lib/nettle/Makefile.am, lib/nettle/cipher.c, + lib/nettle/mac.c, lib/nettle/mpi.c, lib/nettle/pk.c, + lib/nettle/rnd.c, lib/pk-libgcrypt.c, lib/rnd-libgcrypt.c, + src/certtool.c, src/cli.c, src/serv.c, tests/chainverify.c: Added + support for libnettle backend. This uses gmp for big number + operations. It is not currently completed. It lacks RSA blinding as + well as optimizations. + +2010-05-18 Nikos Mavrogiannopoulos + + * doc/manpages/gnutls-cli.1, src/cli-gaa.c, src/cli.gaa, + src/serv-gaa.c, src/serv.gaa: Documented that the --file options in + gnutls-cli and gnutls-serv can accept a PKCS #11 URL. + +2010-05-18 Nikos Mavrogiannopoulos + + * lib/x509/sign.c: Corrected bug in DSA signature generation. + +2010-05-18 Nikos Mavrogiannopoulos + + * lib/gnutls_privkey.c, lib/includes/gnutls/abstract.h, + lib/libgnutls.map, lib/x509/crl_write.c, lib/x509/crq.c, + lib/x509/mpi.c, lib/x509/sign.c, lib/x509/x509_int.h, + lib/x509/x509_write.c: Added operations to sign CRLs, certificates + and requests with an abstract key and thus with a PKCS #11 key as + well. + +2010-05-18 Nikos Mavrogiannopoulos + + * lib/auth_cert.c, lib/auth_cert.h, lib/gnutls_privkey.c, + lib/gnutls_sig.h, lib/gnutls_x509.h, + lib/includes/gnutls/abstract.h, lib/includes/gnutls/privkey.h, + lib/openpgp/gnutls_openpgp.h: privkey.h -> abstract.h + +2010-05-18 Nikos Mavrogiannopoulos + + * lib/Makefile.am, lib/configure.ac, lib/gnutls_x509.c, src/cli.c: + The gnutls-cli --x509cafile can now be a PKCS #11 URL. It can read + gnome-keyring's certificates and use them in the trusted list. + +2010-05-16 Nikos Mavrogiannopoulos + + * lib/pkcs11.c: Documented that gnutls_global_init calls + gnutls_pkcs11_init. + +2010-05-16 Nikos Mavrogiannopoulos + + * src/cli.c: Only send termination request to avoid stalling on + servers that do not reply. + +2010-05-16 Nikos Mavrogiannopoulos + + * lib/gnutls_handshake.c, lib/gnutls_state.c, lib/gnutls_state.h: + Corrected issue on the %SSL3_RECORD_VERSION priority string. It now + works even when resuming a session. + +2010-05-16 Nikos Mavrogiannopoulos + + * doc/examples/Makefile.am, doc/examples/ex-cert-select-pkcs11.c, + doc/gnutls.texi: Added initial example. + +2010-05-16 Nikos Mavrogiannopoulos + + * lib/auth_cert.h, lib/gnutls_x509.c, lib/openpgp/gnutls_openpgp.c: + Corrections in openpgp private key usage. + +2010-05-16 Nikos Mavrogiannopoulos + + * doc/examples/ex-cert-select.c, tests/Makefile.am, + tests/pkcs12_s2k.c, tests/x509dn.c, tests/x509signself.c: Updated + self tests and examples to avoid using deprecated functions such as + gnutls_certificate_server_set_retrieve_function and the sign + callback. + +2010-05-16 Nikos Mavrogiannopoulos + + * lib/gnutlsxx.cpp, lib/includes/gnutls/gnutlsxx.h, src/tests.c: Use + the new callback function. + +2010-05-16 Nikos Mavrogiannopoulos + + * lib/gnutls_privkey.c, lib/includes/gnutls/pkcs11.h, + lib/includes/gnutls/privkey.h, lib/libgnutls.map, lib/pkcs11.c, + lib/pkcs11_int.h, lib/pkcs11_privkey.c, lib/x509/privkey.c: Added + documentation for most of the new functions. + +2010-05-16 Nikos Mavrogiannopoulos + + * lib/pkcs11.c: Documented that it was initially based on neon + pkcs11 and got ideas from pkcs11-helper library. + +2010-05-15 Nikos Mavrogiannopoulos + + * lib/gnutls_x509.c, lib/libgnutls.map, lib/pkcs11.c, + lib/pkcs11_int.h, lib/pkcs11_privkey.c, src/common.c: Corrections to + properly handle token removal and insert. + +2010-05-15 Nikos Mavrogiannopoulos + + * lib/includes/gnutls/compat.h, lib/includes/gnutls/gnutls.h.in: + Deprecated the sign callback. + +2010-05-15 Nikos Mavrogiannopoulos + + * doc/manpages/Makefile.am, lib/Makefile.am, lib/auth_cert.c, + lib/auth_cert.h, lib/auth_dhe.c, lib/auth_rsa.c, + lib/auth_rsa_export.c, lib/auth_srp_rsa.c, lib/gnutls_cert.c, + lib/gnutls_cert.h, lib/gnutls_global.c, lib/gnutls_int.h, + lib/gnutls_privkey.c, lib/gnutls_sig.c, lib/gnutls_sig.h, + lib/gnutls_state.c, lib/gnutls_str.c, lib/gnutls_x509.c, + lib/gnutls_x509.h, lib/includes/gnutls/compat.h, + lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/openpgp.h, + lib/includes/gnutls/pkcs11.h, lib/includes/gnutls/privkey.h, + lib/includes/gnutls/x509.h, lib/libgnutls.map, + lib/openpgp/gnutls_openpgp.c, lib/openpgp/gnutls_openpgp.h, + lib/openpgp/openpgp_int.h, lib/pkcs11.c, lib/pkcs11_int.h, + lib/pkcs11_privkey.c, lib/x509/privkey.c, lib/x509/sign.c, + lib/x509/sign.h, lib/x509/x509_int.h, src/cli.c, src/common.c, + src/common.h, src/pkcs11.c, src/serv.c: Added + gnutls_pkcs11_privkey_t and gnutls_privkey_t types. Those are an + abstract private key type that can be used to sign/encrypt any + private key of pkcs11,x509 or openpgp types. Added support for + PKCS11 in gnutls-cli/gnutls-serv. + +2010-05-15 Nikos Mavrogiannopoulos + + * .gitignore: ignore unrelated to gnutls files. + +2010-05-10 Nikos Mavrogiannopoulos + + * lib/includes/gnutls/pkcs11.h, lib/libgnutls.map, lib/pkcs11.c, + src/certtool-common.h, src/certtool-gaa.c, src/certtool-gaa.h, + src/certtool.c, src/certtool.gaa, src/pkcs11.c: Added several helper + functions, to allow printing of tokens. + +2010-05-10 Nikos Mavrogiannopoulos + + * lib/gnutls_errors.c, lib/gnutls_str.c, + lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/pkcs11.h, + lib/pkcs11.c, src/certtool-common.h, src/certtool-gaa.c, + src/certtool-gaa.h, src/certtool.c, src/certtool.gaa, src/pkcs11.c: + Added ability to export certificates from PKCS #11 tokens. Added + ability to list trusted certificates, or only certificates with a + corresponding private key or just all. + +2010-05-09 Nikos Mavrogiannopoulos + + * lib/Makefile.am, lib/auth_srp.c, lib/configure.ac, + lib/gnutls.pc.in, lib/gnutls_constate.c, lib/gnutls_errors.c, + lib/gnutls_handshake.c, lib/gnutls_kx.c, lib/gnutls_psk.c, + lib/gnutls_str.c, lib/gnutls_str.h, lib/includes/Makefile.am, + lib/includes/gnutls/pkcs11.h, lib/libgnutls.map, + lib/openpgp/gnutls_openpgp.c, lib/pkcs11.c, lib/x509/common.c, + lib/x509/dn.c, src/Makefile.am, src/certtool-common.h, + src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, + src/certtool.gaa, src/pkcs11.c: Added initial PKCS #11 support. + Certtool can now print lists of certificates available in system. + +2010-03-07 Nikos Mavrogiannopoulos + + * lib/x509/verify.c: Optimized the check_if_same(). + +2010-02-24 Nikos Mavrogiannopoulos + + * lib/gnutls_algorithms.c, lib/x509/common.c, lib/x509/common.h: + Added a forgoten by god OID for RSA. Warn using the actual OID on + unknown public key algorithms. + +2009-12-09 Jonathan Bastien-Filiatrault + + * lib/ext_session_ticket.c: Adapt session ticket support to mbuffer + API. + +2009-08-16 Jonathan Bastien-Filiatrault + + * lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_kx.c, + lib/gnutls_mbuffers.c, lib/gnutls_mbuffers.h: Use mbuffers for + handshake synthesis. + +2009-08-15 Jonathan Bastien-Filiatrault + + * lib/gnutls_buffers.c, lib/gnutls_buffers.h, + lib/gnutls_handshake.c: Make _gnutls_handshake_io_send_int accept a + mbuffer_st. + +2009-08-15 Jonathan Bastien-Filiatrault + + * lib/gnutls_buffers.c, lib/gnutls_buffers.h, + lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_state.c: + Simplify handshake send buffer logic. + +2009-08-15 Jonathan Bastien-Filiatrault + + * lib/gnutls_buffers.c: Fix interrupted write braino. + +2009-08-15 Jonathan Bastien-Filiatrault + + * lib/gnutls_mbuffers.c: Avoid pointer warning. + +2009-08-15 Jonathan Bastien-Filiatrault + + * lib/gnutls_buffers.c, lib/gnutls_mbuffers.c, + lib/gnutls_mbuffers.h: Remove now useless + _gnutls_mbuffer_enqueue{,copy} functions. + +2009-08-15 Jonathan Bastien-Filiatrault + + * lib/gnutls_buffers.c, lib/gnutls_buffers.h, + lib/gnutls_mbuffers.c, lib/gnutls_record.c: Allocate data buffer + with mbuffer_st structure as suggested by Nikos. + +2009-08-15 Jonathan Bastien-Filiatrault + + * lib/gnutls_mbuffers.c, lib/gnutls_mbuffers.h: Prepare for mbuffer + allocation by the caller. + +2009-08-15 Jonathan Bastien-Filiatrault + + * lib/gnutls_buffers.c: GNUify some missed GNUification. + +2009-08-15 Jonathan Bastien-Filiatrault + + * lib/gnutls_buffers.c: Harmonize read and write function names. + +2009-08-15 Jonathan Bastien-Filiatrault + + * lib/gnutls_buffers.c: Now that LEVEL and LEVEL_EQ are fixed, use + less lines. + +2009-08-15 Jonathan Bastien-Filiatrault + + * lib/gnutls_errors.h: Make LEVEL and LEVEL_EQ macros safer. Once again, I got bit by this pretty hard. + +2009-08-09 Jonathan Bastien-Filiatrault + + * lib/gnutls_record.c: Use a datum for ciphered data in + _gnutls_send_int. + +2009-08-09 Jonathan Bastien-Filiatrault + + * lib/gnutls_buffers.h: Remove the prototype for the non-existant + function _gnutls_io_write_buffered2. + +2009-08-09 Jonathan Bastien-Filiatrault + + * lib/gnutls_int.h, lib/gnutls_record.c: Cleanup of the remaining + internals.record_send_buffer mess. + +2009-08-09 Jonathan Bastien-Filiatrault + + * lib/gnutls_buffers.c: Remove yet another !@#$% instance of + redundant hexadecimal dumping. + +2009-08-09 Jonathan Bastien-Filiatrault + + * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_record.c: + Modify slightly the contract of _gnutls_io_write_buffered as + suggested by Nikos Mavrogiannopoulos. + +2009-08-09 Jonathan Bastien-Filiatrault + + * lib/gnutls_buffers.c, lib/gnutls_mbuffers.c, + lib/gnutls_mbuffers.h: Pass datums to mbuffers by address instead of + by value. + +2009-08-08 Nikos Mavrogiannopoulos + + * lib/gnutls_handshake.c, lib/gnutls_record.c: Corrected case where + handshake data were received during a session. It now stores them + for future use by a gnutls_handshake(). Reported by Peter + Hendrickson . + +2009-08-06 Jonathan Bastien-Filiatrault + + * lib/gnutls_buffers.c: Simplify _gnutls_io_write_buffered and + _gnutls_io_write_flush with mbuffers. + +2009-08-06 Jonathan Bastien-Filiatrault + + * lib/gnutls_int.h, lib/gnutls_state.c: Change type of + internals.record_send_buffer to a mbuffer. + +2009-08-06 Jonathan Bastien-Filiatrault + + * lib/gnutls_buffers.c: Extract a simple_write function from + _gnutls_io_write_buffered. + +2009-08-06 Jonathan Bastien-Filiatrault + + * lib/gnutls_buffers.c: Add dump_bytes function. + +2009-08-06 Jonathan Bastien-Filiatrault + + * lib/Makefile.am, lib/gnutls_int.h, lib/gnutls_mbuffers.c, + lib/gnutls_mbuffers.h: Add gnutls_mbuffers.{c,h} with some basic + mbuffer operations. + +2009-08-01 Jonathan Bastien-Filiatrault + + * lib/gnutls_algorithms.c: Do not rely on version ordering; use + switch..case instead. + +2009-08-01 Jonathan Bastien-Filiatrault + + * lib/auth_cert.c: Remove hardcoded version checks in auth_cert.c. + +2009-08-01 Jonathan Bastien-Filiatrault + + * lib/gnutls_state.c: Remove hardcoded version check in + gnutls_state.c. + +2009-08-01 Jonathan Bastien-Filiatrault + + * lib/gnutls_cipher.c: Remove hardcoded version checks in + gnutls_cipher.c. + +2009-08-01 Jonathan Bastien-Filiatrault + + * lib/gnutls_sig.c: Remove hardcoded version checks in gnutls_sig.c. + +2009-08-01 Jonathan Bastien-Filiatrault + + * lib/gnutls_handshake.c: Remove hardcoded version checks in + gnutls_handshake.c. + +2009-08-01 Jonathan Bastien-Filiatrault + + * lib/gnutls_algorithms.c: Add version check function for selectable + signature/hash certificate algorithms. + +2009-08-01 Jonathan Bastien-Filiatrault + + * lib/gnutls_algorithms.c: Add version check functions for + non-minimal padding. + +2009-08-01 Jonathan Bastien-Filiatrault + + * lib/gnutls_algorithms.c, lib/gnutls_algorithms.h: Add version + check function for explicit IV. + +2009-08-01 Jonathan Bastien-Filiatrault + + * lib/gnutls_algorithms.h: Add version check functions for + selectable PRF and extension handling. + +2010-06-01 Nikos Mavrogiannopoulos + + * doc/announce.txt, doc/gnutls.texi, doc/manpages/gnutls-cli.1, + doc/manpages/gnutls-serv.1, lib/ext_safe_renegotiation.c, + lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_priority.c, + lib/gnutls_state.c, tests/safe-renegotiation/srn1.c, + tests/safe-renegotiation/srn5.c, tests/safe-renegotiation/testsrn: + Splitted safe renegotiation capabilities to %SAFE_RENEGOTIATION: will enable safe renegotiation. This is the + most secure and recommended option for clients. However this will + prevent from connecting to legacy servers. %PARTIAL_RENEGOTIATION: Prevents renegotiation with clients and + servers not supporting the safe renegotiation extension. (this is + the default) %UNSAFE_RENEGOTIATION: Permits (re-)handshakes even unsafe ones. + +2010-05-31 Simon Josefsson + + * doc/gnutls.texi: Minor fix. + +2010-05-31 Simon Josefsson + + * GNUmakefile, maint.mk: Update gnulib files. + +2010-05-29 Nikos Mavrogiannopoulos + + * doc/gnutls.texi: Documented the defaults. + +2010-05-28 Nikos Mavrogiannopoulos + + * doc/gnutls.texi: Added INITIAL_SAFE_RENEGOTIATION and other small + updates. + +2010-05-28 Simon Josefsson + + * doc/gnutls.texi: Update. + +2010-05-28 Simon Josefsson + + * tests/safe-renegotiation/README: Add. + +2010-05-28 Simon Josefsson + + * .x-sc_prohibit_strings_without_use, build-aux/c++defs.h, + build-aux/gendocs.sh, build-aux/gnupload, build-aux/vc-list-files, + configure.ac, doc/gendocs_template, gl/Makefile.am, gl/error.c, + gl/m4/asm-underscore.m4, gl/m4/gnulib-cache.m4, + gl/m4/gnulib-common.m4, gl/m4/gnulib-comp.m4, gl/m4/netdb_h.m4, + gl/m4/stdio_h.m4, gl/m4/unistd_h.m4, gl/m4/valgrind-tests.m4, + gl/netdb.in.h, gl/stdio-write.c, gl/stdio.in.h, + gl/tests/Makefile.am, gl/tests/init.sh, gl/tests/test-lseek.sh, + gl/tests/test-vc-list-files-cvs.sh, + gl/tests/test-vc-list-files-git.sh, gl/tests/test-verify.c, + gl/tests/test-verify.sh, gl/tests/verify.h, gl/unistd.in.h, + gl/vasnprintf.c, gl/wchar.in.h, gtk-doc.make, + lib/build-aux/c++defs.h, lib/gl/Makefile.am, + lib/gl/m4/asm-underscore.m4, lib/gl/m4/fcntl-o.m4, + lib/gl/m4/gettext.m4, lib/gl/m4/gnulib-common.m4, + lib/gl/m4/gnulib-comp.m4, lib/gl/m4/iconv.m4, lib/gl/m4/intl.m4, + lib/gl/m4/netdb_h.m4, lib/gl/m4/po.m4, lib/gl/m4/stdio_h.m4, + lib/gl/m4/unistd_h.m4, lib/gl/netdb.in.h, lib/gl/stdio-write.c, + lib/gl/stdio.in.h, lib/gl/tests/Makefile.am, lib/gl/tests/init.sh, + lib/gl/tests/test-vasprintf.c, lib/gl/tests/test-verify.c, + lib/gl/tests/test-verify.sh, lib/gl/tests/verify.h, + lib/gl/unistd.in.h, lib/gl/vasnprintf.c, lib/gl/wchar.in.h, + libextra/gl/m4/gnulib-common.m4, m4/valgrind.m4, maint.mk: Update + gnulib files, use valgrind-tests module, fix syntax-check problems. + +2010-05-28 Simon Josefsson + + * doc/announce.txt: Doc fix. + +2010-05-25 Nikos Mavrogiannopoulos + + * lib/x509/common.h, lib/x509/privkey.c, lib/x509/sign.c, + lib/x509/verify.c: Use correct hashing algorithms for DSA with q + over 160 bits. + +2010-05-24 Nikos Mavrogiannopoulos + + * lib/gnutls_algorithms.c: Better checks in loops. + +2010-05-22 Simon Josefsson + + * lib/x509/crl.c: Doc fix. + +2010-05-22 Simon Josefsson + + * NEWS: Add. + +2010-05-22 Simon Josefsson + + * NEWS: Add. + +2010-05-22 Simon Josefsson + + * doc/reference/Makefile.am, gtk-doc.make, m4/gtk-doc.m4: Support + GTK-DOC PDF file. + +2010-05-22 Simon Josefsson + + * cfg.mk: Also build PDF manual. + +2010-05-22 Simon Josefsson + + * doc/gnutls.texi: Fix node/section usage. + +2010-05-22 Simon Josefsson + + * tests/safe-renegotiation/srn5.c: Fix self test. + +2010-05-22 Simon Josefsson + + * lib/gnutls_handshake.c: Readd lost fix from Nikos. + +2010-05-22 Simon Josefsson + + * lib/ext_safe_renegotiation.c: Readd lost fix from Nikos. + +2010-05-22 Simon Josefsson + + * NEWS: Add. + +2010-05-22 Simon Josefsson + + * lib/gnutls_errors.c, libextra/includes/gnutls/openssl.h, + libextra/openssl_compat.c: Doc fixes. + +2010-05-22 Simon Josefsson + + * lib/x509/x509.c: Doc fix. + +2010-05-22 Simon Josefsson + + * Makefile.am, NEWS, README, cfg.mk, configure.ac, doc/Makefile.am, + doc/credentials/Makefile.am, doc/cyclo/Makefile.am, doc/errcodes.c, + doc/examples/Makefile.am, doc/examples/ex-client-srp.c, + doc/examples/ex-serv-anon.c, doc/examples/ex-serv-pgp.c, + doc/examples/ex-serv-psk.c, doc/examples/ex-serv-srp.c, + doc/examples/ex-serv1.c, doc/gnutls.texi, doc/manpages/Makefile.am, + doc/printlist.c, guile/Makefile.am, guile/modules/Makefile.am, + guile/modules/gnutls.scm, guile/modules/gnutls/build/enums.scm, + guile/modules/gnutls/build/priorities.scm, + guile/modules/gnutls/build/smobs.scm, + guile/modules/gnutls/build/utils.scm, + guile/modules/gnutls/extra.scm, guile/src/Makefile.am, + guile/src/core.c, guile/src/errors.c, guile/src/errors.h, + guile/src/extra.c, guile/src/make-enum-header.scm, + guile/src/make-enum-map.scm, guile/src/make-session-priorities.scm, + guile/src/make-smob-header.scm, guile/src/make-smob-types.scm, + guile/src/utils.c, guile/src/utils.h, guile/tests/Makefile.am, + guile/tests/anonymous-auth.scm, guile/tests/errors.scm, + guile/tests/openpgp-auth.scm, guile/tests/openpgp-keyring.scm, + guile/tests/openpgp-keys.scm, guile/tests/pkcs-import-export.scm, + guile/tests/session-record-port.scm, guile/tests/srp-base64.scm, + guile/tests/x509-auth.scm, guile/tests/x509-certificates.scm, + lib/Makefile.am, lib/auth_anon.c, lib/auth_anon.h, lib/auth_cert.c, + lib/auth_cert.h, lib/auth_dh_common.c, lib/auth_dh_common.h, + lib/auth_dhe.c, lib/auth_dhe_psk.c, lib/auth_psk.c, lib/auth_psk.h, + lib/auth_psk_passwd.c, lib/auth_psk_passwd.h, lib/auth_rsa.c, + lib/auth_rsa_export.c, lib/auth_srp.c, lib/auth_srp.h, + lib/auth_srp_passwd.c, lib/auth_srp_passwd.h, lib/auth_srp_rsa.c, + lib/auth_srp_sb64.c, lib/cipher-libgcrypt.c, lib/configure.ac, + lib/crypto-api.c, lib/crypto.c, lib/crypto.h, lib/cryptodev.c, + lib/debug.c, lib/debug.h, lib/ext_cert_type.c, lib/ext_cert_type.h, + lib/ext_max_record.c, lib/ext_max_record.h, lib/ext_oprfi.c, + lib/ext_oprfi.h, lib/ext_safe_renegotiation.c, + lib/ext_safe_renegotiation.h, lib/ext_server_name.c, + lib/ext_server_name.h, lib/ext_session_ticket.c, + lib/ext_session_ticket.h, lib/ext_signature.c, lib/ext_signature.h, + lib/ext_srp.c, lib/ext_srp.h, lib/gnutls_alert.c, + lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, + lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_auth.h, + lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cert.c, + lib/gnutls_cert.h, lib/gnutls_cipher.c, lib/gnutls_cipher.h, + lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, + lib/gnutls_compress.c, lib/gnutls_compress.h, + lib/gnutls_constate.c, lib/gnutls_constate.h, lib/gnutls_datum.c, + lib/gnutls_datum.h, lib/gnutls_db.c, lib/gnutls_db.h, + lib/gnutls_dh.c, lib/gnutls_dh.h, lib/gnutls_dh_primes.c, + lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_extensions.c, + lib/gnutls_extensions.h, lib/gnutls_global.c, lib/gnutls_global.h, + lib/gnutls_handshake.c, lib/gnutls_handshake.h, + lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_helper.c, + lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_kx.h, + lib/gnutls_mem.c, lib/gnutls_mem.h, lib/gnutls_mpi.c, + lib/gnutls_mpi.h, lib/gnutls_num.c, lib/gnutls_num.h, + lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_priority.c, + lib/gnutls_psk.c, lib/gnutls_psk_netconf.c, lib/gnutls_record.c, + lib/gnutls_record.h, lib/gnutls_rsa_export.c, + lib/gnutls_rsa_export.h, lib/gnutls_session.c, + lib/gnutls_session_pack.c, lib/gnutls_session_pack.h, + lib/gnutls_sig.c, lib/gnutls_sig.h, lib/gnutls_srp.c, + lib/gnutls_srp.h, lib/gnutls_state.c, lib/gnutls_state.h, + lib/gnutls_str.c, lib/gnutls_str.h, lib/gnutls_supplemental.c, + lib/gnutls_supplemental.h, lib/gnutls_ui.c, lib/gnutls_v2_compat.c, + lib/gnutls_v2_compat.h, lib/gnutls_x509.c, lib/gnutls_x509.h, + lib/includes/Makefile.am, lib/includes/gnutls/crypto.h, + lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/openpgp.h, + lib/includes/gnutls/pkcs12.h, lib/includes/gnutls/x509.h, + lib/libgnutls.map, lib/libgnutlsxx.map, lib/m4/hooks.m4, + lib/mac-libgcrypt.c, lib/minitasn1/Makefile.am, + lib/mpi-libgcrypt.c, lib/opencdk/Makefile.am, + lib/openpgp/Makefile.am, lib/openpgp/compat.c, + lib/openpgp/extras.c, lib/openpgp/gnutls_openpgp.c, + lib/openpgp/output.c, lib/openpgp/pgp.c, lib/openpgp/pgpverify.c, + lib/openpgp/privkey.c, lib/pk-libgcrypt.c, lib/random.c, + lib/random.h, lib/rnd-libgcrypt.c, lib/x509/Makefile.am, + lib/x509/common.c, lib/x509/common.h, lib/x509/crl.c, + lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/dn.c, + lib/x509/extensions.c, lib/x509/mpi.c, lib/x509/output.c, + lib/x509/pkcs12.c, lib/x509/pkcs12_bag.c, lib/x509/pkcs12_encr.c, + lib/x509/pkcs7.c, lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, + lib/x509/rfc2818_hostname.c, lib/x509/sign.c, lib/x509/verify.c, + lib/x509/x509.c, lib/x509/x509_int.h, lib/x509/x509_write.c, + lib/x509_b64.c, lib/x509_b64.h, libextra/Makefile.am, + libextra/configure.ac, libextra/ext_inner_application.c, + libextra/ext_inner_application.h, libextra/fipsmd5.c, + libextra/gl/Makefile.am, libextra/gnutls_extra.c, + libextra/gnutls_ia.c, libextra/gnutls_openssl.c, + libextra/includes/Makefile.am, libextra/includes/gnutls/extra.h, + libextra/includes/gnutls/openssl.h, libextra/libgnutls-extra.map, + libextra/m4/hooks.m4, libextra/openssl_compat.c, + libextra/openssl_compat.h, src/Makefile.am, src/benchmark.c, + src/certtool-cfg.c, src/certtool.c, src/cli.c, src/common.c, + src/crypt.c, src/list.h, src/prime.c, src/psk.c, src/serv.c, + src/tests.c, src/tls_test.c, tests/Makefile.am, tests/anonself.c, + tests/certder.c, tests/certificate_set_x509_crl.c, + tests/chainverify.c, tests/crq_apis.c, tests/crq_key_id.c, + tests/crypto_rng.c, tests/cve-2008-4989.c, tests/cve-2009-1415.c, + tests/cve-2009-1416.c, tests/dhepskself.c, tests/dn.c, tests/dn2.c, + tests/finished.c, tests/gc.c, tests/hostname-check.c, + tests/init_roundtrip.c, tests/key-id/Makefile.am, + tests/key-id/key-id, tests/mini-eagain.c, + tests/mini-x509-rehandshake.c, tests/mini-x509.c, tests/mini.c, + tests/moredn.c, tests/mpi.c, tests/netconf-psk.c, + tests/nist-pkits/pkits, tests/nist-pkits/pkits_crl, + tests/nist-pkits/pkits_crt, tests/nist-pkits/pkits_pkcs12, + tests/nist-pkits/pkits_smime, tests/nul-in-x509-names.c, + tests/openpgp-certs/Makefile.am, tests/openpgp-certs/testcerts, + tests/openpgp-certs/testselfsigs, tests/openpgp-keyring.c, + tests/openpgpself.c, tests/openssl.c, tests/oprfi.c, + tests/parse_ca.c, tests/pathlen/Makefile.am, tests/pathlen/pathlen, + tests/pgps2kgnu.c, tests/pkcs1-padding/Makefile.am, + tests/pkcs1-padding/pkcs1-pad, tests/pkcs12-decode/Makefile.am, + tests/pkcs12-decode/pkcs12, tests/pkcs12_encode.c, + tests/pkcs12_s2k.c, tests/pkcs12_s2k_pem.c, + tests/pkcs8-decode/Makefile.am, tests/pkcs8-decode/pkcs8, + tests/pskself.c, tests/resume.c, tests/rfc2253-escape-test, + tests/rsa-md5-collision/Makefile.am, + tests/rsa-md5-collision/rsa-md5-collision, + tests/safe-renegotiation/Makefile.am, + tests/safe-renegotiation/srn0.c, tests/safe-renegotiation/srn1.c, + tests/safe-renegotiation/srn2.c, tests/safe-renegotiation/srn3.c, + tests/safe-renegotiation/srn4.c, tests/safe-renegotiation/srn5.c, + tests/safe-renegotiation/testsrn, tests/set_pkcs12_cred.c, + tests/setcredcrash.c, tests/sha2/Makefile.am, tests/sha2/sha2, + tests/simple.c, tests/tlsia.c, tests/userid/Makefile.am, + tests/userid/userid, tests/utils.c, tests/utils.h, + tests/x509_altname.c, tests/x509dn.c, tests/x509paths/chain, + tests/x509self.c, tests/x509sign-verify.c, tests/x509signself.c: + Change GNUTLS into GnuTLS. + +2010-05-22 Simon Josefsson + + * AUTHORS, ChangeLog.1, NEWS, README, README-alpha, THANKS, + doc/gnutls.texi, doc/manpages/gnutls-cli-debug.1, + doc/manpages/gnutls-cli.1, doc/manpages/gnutls-serv.1, + doc/manpages/srptool.1, doc/reference/gnutls-docs.sgml, + lib/ext_safe_renegotiation.c, lib/gnutls_handshake.c, + src/cli-gaa.c, src/cli.gaa, src/serv-gaa.c, src/serv.gaa, + src/tls_test-gaa.c, src/tls_test.gaa: Change GNU TLS into GnuTLS. + +2010-05-22 Nikos Mavrogiannopoulos + + * lib/ext_safe_renegotiation.c, lib/gnutls_handshake.c: Ignore + parsing of ciphersuite or extensions when safe renegotiation is + disabled. + +2010-05-22 Simon Josefsson + + * tests/safe-renegotiation/Makefile.am, + tests/safe-renegotiation/srn5.c: Add test of self renegotiation + APIs. + +2010-05-22 Simon Josefsson + + * tests/safe-renegotiation/Makefile.am, + tests/safe-renegotiation/README, tests/safe-renegotiation/srn4.c: + Add more rengotiation self tests. + +2010-05-22 Simon Josefsson + + * tests/safe-renegotiation/Makefile.am, + tests/safe-renegotiation/README, tests/safe-renegotiation/srn0.c: + Add more safe renegotiation self test. + +2010-05-21 Simon Josefsson + + * NEWS, doc/announce.txt, doc/gnutls.texi, + doc/manpages/Makefile.am, lib/ext_safe_renegotiation.c, + lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, + tests/safe-renegotiation/srn2.c: Remove + gnutls_safe_negotiation_set_initial and + gnutls_safe_renegotiation_set. + +2010-05-18 Nikos Mavrogiannopoulos + + * lib/gnutls_priority.c: Documented behavioral change. + +2010-05-18 Nikos Mavrogiannopoulos + + * lib/gnutls_int.h, lib/gnutls_priority.c: Because we want to + differentiate the behavior of server and client with regards to safe + renegotiation. If a server didn't have either SAFE_RENEGOTIATION or + UNSAFE_RENEGOTIATION set the safe renegotiation will be the default. + This (as well as the safe_renegotiation_set flag) has to be removed + once safe renegotiation is default in both server and client side. + +2010-05-18 Nikos Mavrogiannopoulos + + * lib/gnutls_state.c: Emulate old gnutls behavior regarding safe + renegotiation if the priority_* functions are not called. + +2010-05-11 Nikos Mavrogiannopoulos + + * lib/includes/gnutls/x509.h: Corrected typo. Reported by Clint + Adams. + +2010-05-03 Simon Josefsson + + * tests/safe-renegotiation/Makefile.am, + tests/safe-renegotiation/srn1.c, tests/safe-renegotiation/srn3.c: + tests: Add srn3 to test inverse of what srn1 is testing. + +2010-05-03 Simon Josefsson + + * tests/safe-renegotiation/Makefile.am, + tests/safe-renegotiation/srn2.c: tests: Add another safe + renegotiation self tests. + +2010-05-03 Simon Josefsson + + * tests/safe-renegotiation/srn1.c: Also test + gnutls_safe_renegotiation_status API. + +2010-05-03 Simon Josefsson + + * tests/safe-renegotiation/Makefile.am, + tests/safe-renegotiation/srn1.c: tests: Add first self-test of safe + renegotiation extension. + +2010-05-03 Simon Josefsson + + * tests/Makefile.am, tests/mini-x509-rehandshake.c: tests: Add small + X.509 rehandshake test. + +2010-05-03 Simon Josefsson + + * tests/mini-x509.c: Protect against infloops. + +2010-05-03 Simon Josefsson + + * tests/Makefile.am, tests/mini-x509.c: tests: Add mini-x509 + self-test. + +2010-04-30 Simon Josefsson + + * doc/gnutls.texi: Improve text, based on suggestions from Tomas + Hoger . + +2010-04-29 Simon Josefsson + + * lib/gnutls_handshake.c: Fix typo. + +2010-04-29 Simon Josefsson + + * lib/gnutls_handshake.c: Improve renegotiation debug messages. + +2010-04-29 Simon Josefsson + + * doc/announce.txt: Add. + +2010-04-29 Simon Josefsson + + * .gitignore: Add. + +2010-04-29 Simon Josefsson + + * doc/gnutls.texi: Add section on safe renegotiation. + +2010-04-29 Simon Josefsson + + * lib/gnutls_record.c: Remove debug code. + +2010-04-25 Simon Josefsson + + * doc/gnutls.texi: Mention shared library map file and GTK-DOC + guidelines. + +2010-04-22 Simon Josefsson + + * doc/announce.txt: Update URL. + +2010-04-22 Simon Josefsson + + * AUTHORS: Update my OpenPGP key. + +2010-04-22 Simon Josefsson + + * doc/announce.txt: Update my key. + +2010-04-22 Simon Josefsson + + * doc/announcement-template.txt: Remove. + +2010-04-22 Simon Josefsson + + * doc/ANNOUNCE, doc/announce.txt: Prepare 2.10.0 release notes. + +2010-04-22 Simon Josefsson + + * NEWS: Add 2.8.x NEWS entries. + +2010-04-22 Simon Josefsson + + * libextra/configure.ac: Also bump libgnutls-extra version. + +2010-04-22 Simon Josefsson + + * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4: Bump + versions. + +2010-04-22 Simon Josefsson + + * build-aux/gendocs.sh: Chmod +x. + +2010-04-22 Simon Josefsson + + * ChangeLog: Generated. + +2010-04-22 Simon Josefsson + + * NEWS: Version 2.9.10. + +2010-04-21 Simon Josefsson + + * NEWS, lib/minitasn1/Makefile.am, lib/minitasn1/coding.c, + lib/minitasn1/decoding.c, lib/minitasn1/element.h, + lib/minitasn1/gstr.h, lib/minitasn1/libtasn1.h, + lib/minitasn1/parser_aux.c, lib/minitasn1/parser_aux.h, + lib/minitasn1/structure.h, lib/minitasn1/version.c: Upgrade to + libtasn1 version 2.6. + +2010-04-21 Simon Josefsson + + * gl/Makefile.am, gl/m4/gnulib-comp.m4, gl/m4/ioctl.m4, + gl/m4/netdb_h.m4, gl/stdbool.in.h, gl/tests/test-lseek.sh, + gl/tests/test-select-in.sh, gl/tests/test-stdbool.c, + gl/tests/test-stdint.c, lib/gl/Makefile.am, lib/gl/m4/netdb_h.m4, + lib/gl/m4/visibility.m4, lib/gl/stdbool.in.h, + lib/gl/tests/test-stdbool.c, lib/gl/tests/test-stdint.c, + lib/gl/tests/test-vasprintf.c, maint.mk: Update gnulib files. + +2010-04-21 Simon Josefsson + + * configure.ac: Structure fork check together. + +2010-04-15 Simon Josefsson + + * lib/gnutls_priority.c: Fix compiler warning. + +2010-04-15 Simon Josefsson + + * gl/override/top/maint.mk.diff, libextra/gl/hmac-md5.c, + libextra/gl/md5.c, maint.mk: Update gnulib files. + +2010-04-15 Simon Josefsson + + * lib/crypto-api.c, lib/gnutls_priority.c: Indent code. + +2010-04-14 Nikos Mavrogiannopoulos + + * lib/crypto-api.c, lib/includes/gnutls/crypto.h: Use size_t instead + of int for input variables that represent sizes. + +2010-04-02 Nikos Mavrogiannopoulos + + * lib/gnutls_priority.c: Free the priority structure on error. + Reported by Paul Aurich. + +2010-04-02 Nikos Mavrogiannopoulos + + * lib/gnutls_priority.c: The string is colon separated. Reported by + Paul Aurich. + +2010-04-14 Simon Josefsson + + * lib/includes/gnutls/gnutls.h.in: Fix indent bug. + +2010-04-14 Simon Josefsson + + * cfg.mk, doc/examples/examples.h, guile/src/errors.h, + guile/src/utils.h, lib/auth_cert.h, lib/auth_dh_common.h, + lib/crypto.h, lib/ext_oprfi.h, lib/ext_safe_renegotiation.h, + lib/ext_session_ticket.h, lib/ext_signature.h, + lib/gnutls_algorithms.h, lib/gnutls_cipher_int.h, + lib/gnutls_compress.h, lib/gnutls_cryptodev.h, lib/gnutls_errors.h, + lib/gnutls_extensions.h, lib/gnutls_hash_int.h, lib/gnutls_int.h, + lib/gnutls_mpi.h, lib/gnutls_pk.h, lib/gnutls_sig.h, + lib/gnutls_srp.h, lib/gnutls_state.h, lib/gnutls_str.h, + lib/gnutls_supplemental.h, lib/includes/gnutls/crypto.h, + lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/openpgp.h, + lib/includes/gnutls/pkcs12.h, lib/includes/gnutls/x509.h, + lib/opencdk/context.h, lib/opencdk/filters.h, lib/opencdk/keydb.h, + lib/opencdk/main.h, lib/opencdk/opencdk.h, lib/opencdk/packet.h, + lib/opencdk/stream.h, lib/opencdk/types.h, + lib/openpgp/gnutls_openpgp.h, lib/openpgp/openpgp_int.h, + lib/x509/pbkdf2-sha1.h, lib/x509/x509_int.h, + libextra/includes/gnutls/extra.h, + libextra/includes/gnutls/openssl.h, src/certtool-cfg.h, + src/certtool-common.h, src/common.h: More indentation. + +2010-04-14 Simon Josefsson + + * NEWS: Add. + +2010-04-14 Simon Josefsson + + * NEWS: Add. + +2010-04-14 Simon Josefsson + + * NEWS: Add. + +2010-04-14 Simon Josefsson + + * doc/manpages/Makefile.am: Generated. + +2010-04-14 Simon Josefsson + + * doc/examples/ex-client-tlsia.c, doc/examples/ex-verify.c, + doc/examples/ex-x509-info.c, lib/auth_cert.c, lib/auth_rsa.c, + lib/ext_cert_type.c, lib/ext_max_record.c, lib/ext_oprfi.c, + lib/ext_safe_renegotiation.c, lib/ext_server_name.c, + lib/ext_session_ticket.c, lib/ext_signature.c, + lib/gnutls_algorithms.c, lib/gnutls_auth.c, lib/gnutls_buffers.c, + lib/gnutls_cert.c, lib/gnutls_cipher.c, lib/gnutls_compress.c, + lib/gnutls_constate.c, lib/gnutls_extensions.c, + lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_kx.c, + lib/gnutls_priority.c, lib/gnutls_record.c, + lib/gnutls_session_pack.c, lib/gnutls_sig.c, lib/gnutls_state.c, + lib/gnutls_v2_compat.c, lib/gnutls_x509.c, + lib/minitasn1/decoding.c, lib/opencdk/read-packet.c, + lib/opencdk/sig-check.c, lib/x509/pkcs12.c, lib/x509/verify.c, + libextra/gl/hmac-md5.c, libextra/gl/md5.c, src/benchmark.c, + src/certtool.c, src/cli.c, src/serv.c, src/tests.c, src/tls_test.c, + tests/anonself.c, tests/certder.c, tests/chainverify.c, + tests/crq_apis.c, tests/crq_key_id.c, tests/cve-2008-4989.c, + tests/dhepskself.c, tests/dn.c, tests/dn2.c, tests/finished.c, + tests/gc.c, tests/hostname-check.c, tests/init_roundtrip.c, + tests/mini-eagain.c, tests/mini.c, tests/netconf-psk.c, + tests/nul-in-x509-names.c, tests/openpgp-keyring.c, + tests/openpgpself.c, tests/parse_ca.c, tests/pkcs12_encode.c, + tests/pkcs12_s2k.c, tests/pkcs12_s2k_pem.c, tests/pskself.c, + tests/resume.c, tests/set_pkcs12_cred.c, tests/simple.c, + tests/tlsia.c, tests/utils.c, tests/x509_altname.c, tests/x509dn.c, + tests/x509self.c, tests/x509sign-verify.c, tests/x509signself.c: + Indent code. + +2010-04-14 Simon Josefsson + + * NEWS, lib/crypto-api.c, lib/ext_safe_renegotiation.c, + lib/gnutls_algorithms.c, lib/gnutls_cert.c, lib/libgnutls.map, + lib/x509/x509.c: Export new ABIs. Doc fixes for new APIs. + +2010-04-14 Simon Josefsson + + * tests/safe-renegotiation/Makefile.am: Disable self-test + temporarily until we make it work cross-platform. + +2010-04-13 Simon Josefsson + + * NEWS, lib/ext_safe_renegotiation.c, lib/gnutls_algorithms.c, + lib/includes/gnutls/gnutls.h.in: Doc fixes. + +2010-04-13 Simon Josefsson + + * doc/manpages/Makefile.am, src/certtool-gaa.c: Generated. + +2010-04-13 Simon Josefsson + + * doc/reference/Makefile.am: Ignore c++defs.h. + +2010-04-13 Simon Josefsson + + * .x-sc_prohibit_empty_lines_at_EOF, GNUmakefile, + build-aux/c++defs.h, build-aux/warn-on-use.h, doc/certtool.cfg, + doc/credentials/gnutls-http-serv, doc/credentials/params.pem, + doc/credentials/x509/Makefile.am, doc/credentials/x509/cert.pem, + doc/credentials/x509/clicert-dsa.pem, gl/Makefile.am, gl/fseeko.c, + gl/m4/fseeko.m4, gl/m4/gnulib-common.m4, gl/m4/gnulib-comp.m4, + gl/m4/lib-link.m4, gl/m4/memchr.m4, gl/m4/stdio_h.m4, + gl/m4/stdlib_h.m4, gl/m4/string_h.m4, gl/m4/time_h.m4, + gl/m4/unistd_h.m4, gl/m4/vasnprintf.m4, gl/stdio-impl.h, + gl/stdio.in.h, gl/stdlib.in.h, gl/string.in.h, gl/sys_socket.in.h, + gl/sys_stat.in.h, gl/sys_time.in.h, gl/tests/Makefile.am, + gl/tests/ioctl.c, gl/tests/sys_ioctl.in.h, + gl/tests/test-vasnprintf.c, gl/time.in.h, gl/unistd.in.h, + gl/vasnprintf.c, gl/wchar.in.h, guile/modules/gnutls/extra.scm, + guile/tests/x509-auth.scm, guile/tests/x509-certificate.pem, + lib/build-aux/c++defs.h, lib/build-aux/warn-on-use.h, + lib/ext_cert_type.h, lib/gl/Makefile.am, lib/gl/fseeko.c, + lib/gl/m4/fseeko.m4, lib/gl/m4/gnulib-common.m4, + lib/gl/m4/gnulib-comp.m4, lib/gl/m4/lib-link.m4, + lib/gl/m4/memchr.m4, lib/gl/m4/stdio_h.m4, lib/gl/m4/stdlib_h.m4, + lib/gl/m4/string_h.m4, lib/gl/m4/threadlib.m4, lib/gl/m4/time_h.m4, + lib/gl/m4/time_r.m4, lib/gl/m4/unistd_h.m4, + lib/gl/m4/vasnprintf.m4, lib/gl/stdio-impl.h, lib/gl/stdio.in.h, + lib/gl/stdlib.in.h, lib/gl/string.in.h, lib/gl/sys_socket.in.h, + lib/gl/sys_stat.in.h, lib/gl/tests/Makefile.am, + lib/gl/tests/test-vasnprintf.c, lib/gl/time.in.h, lib/gl/time_r.c, + lib/gl/unistd.in.h, lib/gl/vasnprintf.c, lib/gl/wchar.in.h, + lib/minitasn1/Makefile.am, lib/minitasn1/README, + lib/opencdk/keydb.h, lib/opencdk/packet.h, + libextra/gl/m4/gnulib-common.m4, libextra/gl/m4/gnulib-comp.m4, + libextra/gl/m4/lib-link.m4, maint.mk, src/certtool.gaa, + src/cfg/Makefile.am, src/crypt.gaa, src/tls_test.gaa, + tests/key-id/ca-gnutls-keyid.pem, tests/key-id/ca-no-keyid.pem, + tests/key-id/ca-weird-keyid.pem, + tests/pkcs1-padding/pkcs1-pad-broken.pem, + tests/pkcs1-padding/pkcs1-pad-broken2.pem, + tests/pkcs1-padding/pkcs1-pad-broken3.pem, + tests/pkcs1-padding/pkcs1-pad-ok.pem, + tests/pkcs1-padding/pkcs1-pad-ok2.pem, + tests/safe-renegotiation/Makefile.am, tests/test25.pem: Update + gnulib files, fix syntax-check warnings. + +2010-03-31 Simon Josefsson + + * .gitignore, gl/m4/wchar_h.m4, lib/gl/m4/wchar_h.m4: Add forgotten + gnulib files, and fix .gitignore. + +2010-03-31 Simon Josefsson + + * NEWS: Add. + +2010-03-31 Simon Josefsson + + * lib/po/LINGUAS, lib/po/it.po.in, lib/po/nl.po.in: Sync with TP. + +2010-03-31 Simon Josefsson + + * .x-sc_program_name, .x-sc_the_the, cfg.mk, + lib/ext_safe_renegotiation.c, lib/gnutls_handshake.c, + lib/m4/hooks.m4, lib/opencdk/sig-check.c, src/certtool.c, + src/serv.c, tests/dn.c, tests/mini.c: Update gnulib files. Fix + syntax-check warnings. + +2010-03-31 Simon Josefsson + + * build-aux/c++defs.h, build-aux/vc-list-files, + build-aux/warn-on-use.h, gl/Makefile.am, gl/accept.c, + gl/arpa_inet.in.h, gl/bind.c, gl/connect.c, gl/getaddrinfo.c, + gl/gettext.h, gl/gettimeofday.c, gl/m4/arpa_inet_h.m4, + gl/m4/getaddrinfo.m4, gl/m4/gettimeofday.m4, + gl/m4/gnulib-common.m4, gl/m4/gnulib-comp.m4, gl/m4/inet_ntop.m4, + gl/m4/inet_pton.m4, gl/m4/lseek.m4, gl/m4/netdb_h.m4, + gl/m4/stddef_h.m4, gl/m4/stdio_h.m4, gl/m4/stdlib_h.m4, + gl/m4/string_h.m4, gl/m4/sys_ioctl_h.m4, gl/m4/sys_select_h.m4, + gl/m4/sys_socket_h.m4, gl/m4/sys_stat_h.m4, gl/m4/sys_time_h.m4, + gl/m4/time_h.m4, gl/m4/unistd_h.m4, gl/m4/warn-on-use.m4, + gl/m4/wchar.m4, gl/netdb.in.h, gl/netinet_in.in.h, gl/recv.c, + gl/select.c, gl/send.c, gl/stdint.in.h, gl/stdio.in.h, + gl/stdlib.in.h, gl/string.in.h, gl/sys_select.in.h, + gl/sys_socket.in.h, gl/sys_stat.in.h, gl/sys_time.in.h, + gl/tests/Makefile.am, gl/tests/ioctl.c, gl/tests/sys_ioctl.in.h, + gl/tests/test-vc-list-files-git.sh, gl/time.in.h, gl/unistd.in.h, + gl/wchar.in.h, lib/build-aux/c++defs.h, + lib/build-aux/warn-on-use.h, lib/gl/Makefile.am, lib/gl/gettext.h, + lib/gl/m4/gnulib-common.m4, lib/gl/m4/gnulib-comp.m4, + lib/gl/m4/intldir.m4, lib/gl/m4/lseek.m4, lib/gl/m4/netdb_h.m4, + lib/gl/m4/printf-posix.m4, lib/gl/m4/stddef_h.m4, + lib/gl/m4/stdio_h.m4, lib/gl/m4/stdlib_h.m4, lib/gl/m4/string_h.m4, + lib/gl/m4/strings_h.m4, lib/gl/m4/sys_socket_h.m4, + lib/gl/m4/sys_stat_h.m4, lib/gl/m4/time_h.m4, + lib/gl/m4/unistd_h.m4, lib/gl/m4/visibility.m4, + lib/gl/m4/warn-on-use.m4, lib/gl/m4/wchar.m4, lib/gl/netdb.in.h, + lib/gl/stdint.in.h, lib/gl/stdio.in.h, lib/gl/stdlib.in.h, + lib/gl/string.in.h, lib/gl/sys_socket.in.h, lib/gl/sys_stat.in.h, + lib/gl/tests/Makefile.am, lib/gl/time.in.h, lib/gl/unistd.in.h, + lib/gl/wchar.in.h, libextra/gl/m4/gnulib-common.m4, + libextra/gl/m4/gnulib-comp.m4, maint.mk: Update gnulib files. + +2010-03-30 Simon Josefsson + + * m4/valgrind.m4: Check for what we use. Bump serial. + +2010-03-30 Nikos Mavrogiannopoulos + + * m4/valgrind.m4, tests/Makefile.am: Valgrind -q is now set by the + valgrind detection script to avoid issue when running tests without + valgrind. + +2010-03-27 Nikos Mavrogiannopoulos + + * lib/gnutls_cert.c: increased small value for certificates. Typical + certificates are much longer than that. + +2010-03-20 Nikos Mavrogiannopoulos + + * configure.ac, tests/Makefile.am, tests/anonself.c, + tests/certder.c, tests/chainverify.c, tests/crq_apis.c, + tests/crq_key_id.c, tests/cve-2009-1415.c, tests/dhepskself.c, + tests/dn.c, tests/dn2.c, tests/finished.c, tests/gc.c, + tests/hostname-check.c, tests/init_roundtrip.c, + tests/mini-eagain.c, tests/mini.c, tests/moredn.c, tests/mpi.c, + tests/netconf-psk.c, tests/nul-in-x509-names.c, + tests/openpgp-keyring.c, tests/openpgpself.c, tests/openssl.c, + tests/parse_ca.c, tests/pkcs12_encode.c, tests/pkcs12_s2k.c, + tests/pskself.c, tests/resume.c, tests/set_pkcs12_cred.c, + tests/sha2/sha2, tests/simple.c, tests/tlsia.c, + tests/x509_altname.c, tests/x509dn.c, tests/x509self.c, + tests/x509sign-verify.c, tests/x509signself.c: Reduced several + unneeded messages during the make check procedure. Verbose messages + can be obtained with --verbose. + +2010-03-20 Nikos Mavrogiannopoulos + + * doc/Makefile.am: use mv -f to avoid interactiveness. + +2010-03-20 Nikos Mavrogiannopoulos + + * tests/dn2.c: Modified to account for postalcode. + +2010-03-20 Nikos Mavrogiannopoulos + + * NEWS: added news entry for postalcode. + +2010-03-20 Nikos Mavrogiannopoulos + + * lib/includes/gnutls/x509.h, lib/pkix.asn, lib/pkix_asn1_tab.c, + lib/x509/common.c: Display postalCode and Name X.509 DN attributes + correctly. Based on patch by Pavan Konjarla. + +2010-03-20 Nikos Mavrogiannopoulos + + * lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, + lib/includes/gnutls/gnutls.h.in, src/serv-gaa.c, src/serv.gaa: Each + ciphersuite is now tight with a minimum TLS version and a maximum + one. It is valid if it is between (and including) those. This was + added to deprecate TLS_RSA_EXPORT_WITH_RC4_40_MD5 which is not + available with TLS 1.1. Reported by Adrian F. Dimcev. + +2010-03-20 Nikos Mavrogiannopoulos + + * .gitignore: Ignore more files. + +2010-03-17 Nikos Mavrogiannopoulos + + * NEWS, lib/auth_cert.c, lib/auth_cert.h, lib/gnutls_alert.c, + lib/gnutls_cert.c, lib/includes/gnutls/gnutls.h.in, + lib/libgnutls.map, src/cli.c: Added + gnutls_certificate_set_verify_function() to allow checking + (verifying) certificate before the handshake is completed. + +2010-03-17 Nikos Mavrogiannopoulos + + * doc/examples/ex-rfc2818.c, doc/examples/ex-verify.c: Use the flags + for expiration instead of getting the time of each certificate. + +2010-03-17 Simon Josefsson + + * README-alpha: Mention datefudge. + +2010-03-17 Simon Josefsson + + * tests/pkcs1-padding/pkcs1-pad: Skip test if datefudge is not + available. + +2010-03-17 Nikos Mavrogiannopoulos + + * lib/gnutls_priority.c: INITIAL_SAFE_RENEGOTIATION implies + SAFE_RENEGOTIATION. + +2010-03-16 Nikos Mavrogiannopoulos + + * lib/includes/gnutls/gnutls.h.in: Added missing prototype. + +2010-03-16 Nikos Mavrogiannopoulos + + * tests/safe-renegotiation/testsrn: made SAFE_RENEGOTIATION flags + explicit. + +2010-03-16 Nikos Mavrogiannopoulos + + * lib/x509/verify.c, src/certtool.c: gnutls_x509_crt_verify() and + gnutls_x509_crt_list_verify() behave identically. That means that + gnutls_x509_crt_verify() will now check dates as well. Certool --verify-chain will use the GNUTLS_VERIFY_DO_NOT_ALLOW_SAME + flag to gnutls_x509_crt_verify() to force verification even if + certificates are the same. The only exception is at the final + certificate (self-checking) where the extra flag + GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT is specified to allow for v1 CA + certificates. + +2010-03-16 Nikos Mavrogiannopoulos + + * lib/x509/common.c: Handle dates before 1-1-1970 (handle as being + equal to 1-1-1970). + +2010-03-16 Nikos Mavrogiannopoulos + + * tests/pkcs1-padding/pkcs1-pad: Fail if required programs are not + found. + +2010-03-15 Nikos Mavrogiannopoulos + + * NEWS, doc/manpages/gnutls-cli.1, doc/manpages/gnutls-serv.1, + lib/ext_safe_renegotiation.c, lib/gnutls_priority.c, + lib/gnutls_record.c: Safe renegotiation is not enabled by default in + client side. + +2010-03-15 Nikos Mavrogiannopoulos + + * doc/manpages/gnutls-cli.1, lib/gnutls_priority.c: better + documentation for %INITIAL_SAFE_RENEGOTIATION + +2010-03-15 Simon Josefsson + + * NEWS: Fix. + +2010-03-15 Simon Josefsson + + * tests/openpgp-certs/Makefile.am, tests/openpgp-certs/testselfsigs: + Rewrite tests/openpgp-certs/testselfsigs portably for Solaris. Fix + EXTRA_DIST. + +2010-03-15 Nikos Mavrogiannopoulos + + * tests/safe-renegotiation/testsrn: localhost -> 127.0.0.1 to work + in places where localhost does not resolve. + +2010-03-14 Nikos Mavrogiannopoulos + + * NEWS, lib/includes/gnutls/x509.h, lib/x509/verify.c: Extended time + verification to trusted certificate list as well. Introduced the + flag GNUTLS_VERIFY_DISABLE_TRUSTED_TIME_CHECKS that will prevent the + trusted certificate list verification. + +2010-03-11 Nikos Mavrogiannopoulos + + * src/tests.c, src/tests.h, src/tls_test.c: Added tests for safe + renegotiation. Removed old tests for obsolete features (lzo) and + tests that were not actually working (srp). + +2010-03-11 Nikos Mavrogiannopoulos + + * lib/gnutls_extensions.c, lib/gnutls_extensions.h, + lib/gnutls_handshake.c, lib/includes/gnutls/gnutls.h.in, + tests/safe-renegotiation/testsrn: Extension generation in SSL 3.0 + (as a reply to SCSV) is not using common code with normal extension + generation. Solve issue reported by Tomas Mraz that caused SSL 3.0 + renegotiation fail. + +2010-03-07 Nikos Mavrogiannopoulos + + * lib/x509/verify.c: Removed artificial constrained that prevented + end-user certificates, being added to the trusted list, treated as + trusted. Suggestion and patch by Tomas Mraz. + +2010-03-07 Nikos Mavrogiannopoulos + + * doc/manpages/gnutls-cli.1: Documented that + initial_safe_renegotiation is the default. + +2010-03-03 Nikos Mavrogiannopoulos + + * src/serv.c: gnutls-serv will terminate connection on rehandshake + errors. + +2010-03-03 Nikos Mavrogiannopoulos + + * lib/gnutls_alert.c, lib/gnutls_errors.c, lib/gnutls_handshake.c, + lib/includes/gnutls/gnutls.h.in: Avoid sending alerts during + handshake. Alerts might be interrupted and return a non-fatal error + which will propagate and in many cases it shouldn't. Avoid sending no renegotiation alert when a client connects to an + unsafe server. Thanks to Tomas Hoger for the report. + +2010-02-26 Nikos Mavrogiannopoulos + + * src/cli.c: On handshake error send appropriate alert and terminate + stream. + +2010-02-18 Simon Josefsson + + * doc/reference/gnutls-docs.sgml: Add id's to chapters. + +2010-02-18 Simon Josefsson + + * .gitignore: Update. + +2010-02-18 Simon Josefsson + + * lib/po/zh_CN.po: Remove. + +2010-02-18 Simon Josefsson + + * src/Makefile.am: Fix -lrt usage. + +2010-02-18 Simon Josefsson + + * src/benchmark.c: Use gnulib gettime module. Indent. + +2010-02-18 Simon Josefsson + + * lib/po/zh_CN.po: Add. + +2010-02-18 Simon Josefsson + + * lib/gl/netdb.in.h: Update gnulib files. + +2010-02-18 Simon Josefsson + + * gl/Makefile.am, gl/gettime.c, gl/gettimeofday.c, + gl/m4/clock_time.m4, gl/m4/gettime.m4, gl/m4/gnulib-cache.m4, + gl/m4/gnulib-comp.m4, gl/m4/timespec.m4, gl/netdb.in.h, + gl/tests/Makefile.am, gl/tests/gettimeofday.c, gl/timespec.h: Update + gnulib files. + +2010-02-17 Simon Josefsson + + * lib/cryptodev.c: Indent. Don't include fcntl.h and sys/ioctl.h on + (for example) Windows. + +2010-02-17 Simon Josefsson + + * tests/safe-renegotiation/testsrn: Fix objdir != srcdir. + +2010-02-17 Simon Josefsson + + * tests/safe-renegotiation/testsrn: Drop bashism. Make it work on + Windows. + +2010-02-17 Simon Josefsson + + * NEWS: Fix. + +2010-02-17 Simon Josefsson + + * NEWS: Add. + +2010-02-17 Simon Josefsson + + * doc/manpages/Makefile.am: Generated. + +2010-02-17 Simon Josefsson + + * doc/reference/Makefile.am, doc/reference/gnutls-docs.sgml, + lib/ext_safe_renegotiation.c, lib/ext_signature.c, + lib/gnutls_supplemental.c: More GTK-DOC fixes. + +2010-02-17 Simon Josefsson + + * lib/gnutls_db.c: Doc fix. + +2010-02-17 Simon Josefsson + + * lib/openpgp/gnutls_openpgp.c: Doc fix. + +2010-02-17 Simon Josefsson + + * lib/includes/gnutls/gnutls.h.in: Doc fix. + +2010-02-17 Simon Josefsson + + * lib/includes/gnutls/gnutls.h.in: Fix enum doc. + +2010-02-17 Simon Josefsson + + * lib/includes/gnutls/gnutls.h.in: More enum docs. + +2010-02-17 Simon Josefsson + + * lib/includes/gnutls/crypto.h: More enum documentation. + +2010-02-17 Simon Josefsson + + * libextra/gnutls_ia.c: Doc fix. + +2010-02-17 Simon Josefsson + + * lib/includes/gnutls/x509.h: More enum documentation. + +2010-02-17 Simon Josefsson + + * libextra/includes/gnutls/extra.h: Document more. + +2010-02-17 Simon Josefsson + + * lib/includes/gnutls/openpgp.h: Document more. + +2010-02-17 Simon Josefsson + + * lib/includes/gnutls/pkcs12.h: Document enum. + +2010-02-17 Simon Josefsson + + * lib/includes/gnutls/gnutls.h.in: More enum. + +2010-02-17 Simon Josefsson + + * lib/includes/gnutls/gnutls.h.in: Fix typo. + +2010-02-17 Simon Josefsson + + * lib/includes/gnutls/gnutls.h.in: More GTK-DOC documentation. + +2010-02-17 Simon Josefsson + + * lib/includes/gnutls/gnutls.h.in: Improve GTK-DOC coverage. + +2010-02-17 Simon Josefsson + + * lib/includes/gnutls/crypto.h: Fix comments, for GTK-DOC. + +2010-02-17 Simon Josefsson + + * doc/reference/Makefile.am: Ignore more headers. + +2010-02-17 Simon Josefsson + + * lib/x509/crl.c: Doc fix. + +2010-02-17 Simon Josefsson + + * lib/includes/gnutls/crypto.h: Fix for GTK-DOC parse breakage. + +2010-02-17 Simon Josefsson + + * doc/reference/Makefile.am: Ignore gnutlsxx.h too, GTK-DOC doesn't + handle C++. + +2010-02-17 Simon Josefsson + + * doc/reference/Makefile.am: Need crypto.h too. + +2010-02-17 Simon Josefsson + + * doc/reference/Makefile.am: Improve header ignores. + +2010-02-17 Simon Josefsson + + * lib/minitasn1/coding.c, lib/minitasn1/decoding.c, + lib/minitasn1/element.c, lib/minitasn1/errors.c, + lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, + lib/minitasn1/structure.c: Upgrade to libtasn1 2.5 snapshot, for + GTK-DOC comments. + +2010-02-17 Simon Josefsson + + * lib/includes/gnutls/openpgp.h: Another GTK-DOC fix. + +2010-02-17 Simon Josefsson + + * lib/auth_srp_sb64.c, lib/crypto-api.c, lib/crypto.c, + lib/ext_safe_renegotiation.c, lib/ext_server_name.c, + lib/ext_signature.c, lib/gnutls_alert.c, lib/gnutls_algorithms.c, + lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_buffers.c, + lib/gnutls_cert.c, lib/gnutls_compress.c, lib/gnutls_db.c, + lib/gnutls_dh_primes.c, lib/gnutls_errors.c, + lib/gnutls_extensions.c, lib/gnutls_global.c, + lib/gnutls_handshake.c, lib/gnutls_mem.c, lib/gnutls_priority.c, + lib/gnutls_psk.c, lib/gnutls_psk_netconf.c, lib/gnutls_record.c, + lib/gnutls_rsa_export.c, lib/gnutls_session.c, lib/gnutls_srp.c, + lib/gnutls_state.c, lib/gnutls_str.c, lib/gnutls_ui.c, + lib/gnutls_x509.c, lib/includes/gnutls/crypto.h, + lib/opencdk/stream.c, lib/openpgp/compat.c, lib/openpgp/extras.c, + lib/openpgp/gnutls_openpgp.c, lib/openpgp/output.c, + lib/openpgp/pgp.c, lib/openpgp/pgpverify.c, lib/openpgp/privkey.c, + lib/x509/common.c, lib/x509/crl.c, lib/x509/crl_write.c, + lib/x509/crq.c, lib/x509/dn.c, lib/x509/output.c, + lib/x509/pkcs12.c, lib/x509/pkcs12_bag.c, lib/x509/pkcs7.c, + lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, + lib/x509/rfc2818_hostname.c, lib/x509/verify.c, lib/x509/x509.c, + lib/x509/x509_write.c, lib/x509_b64.c, libextra/gnutls_extra.c, + libextra/gnutls_ia.c, libextra/openssl_compat.c: Fix GTK-DOC syntax. + Unfortunately this looses some information. + +2010-02-17 Simon Josefsson + + * lib/auth_srp_sb64.c, lib/crypto-api.c, + lib/ext_safe_renegotiation.c, lib/gnutls_anon_cred.c, + lib/gnutls_auth.c, lib/gnutls_cert.c, lib/gnutls_db.c, + lib/gnutls_dh.c, lib/gnutls_handshake.c, lib/gnutls_mem.c, + lib/gnutls_priority.c, lib/gnutls_psk.c, lib/gnutls_record.c, + lib/gnutls_session.c, lib/gnutls_srp.c, lib/gnutls_state.c, + lib/gnutls_x509.c, lib/x509/crl.c, lib/x509/crl_write.c, + lib/x509/pkcs12.c, lib/x509/pkcs12_bag.c, lib/x509/pkcs7.c, + lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, lib/x509/sign.c, + lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509_write.c, + libextra/openssl_compat.c: Align indentation of GTK-DOC comments. + +2010-02-17 Simon Josefsson + + * lib/po/vi.po.in: Sync with TP. + +2010-02-17 Simon Josefsson + + * doc/examples/Makefile.am: Silence gnulib warning about fseek. + +2010-02-17 Simon Josefsson + + * build-aux/gendocs.sh, build-aux/gnupload, gl/Makefile.am, + gl/m4/getdelim.m4, gl/m4/getline.m4, gl/m4/gettimeofday.m4, + gl/m4/gnulib-comp.m4, gl/m4/stdio_h.m4, gl/m4/sys_time_h.m4, + gl/netdb.in.h, gl/stdio.in.h, gl/sys_time.in.h, + gl/tests/test-getdelim.c, gl/tests/test-getline.c, + gl/tests/test-gettimeofday.c, lib/gl/Makefile.am, + lib/gl/m4/stdio_h.m4, lib/gl/netdb.in.h, lib/gl/stdio.in.h, + maint.mk: Update gnulib files. + +2010-02-05 Nikos Mavrogiannopoulos + + * lib/gnutls_session_pack.c: Corrected calculation of session data + for PSK ciphersuites. Solves issue #107256 reported by Wolfgang + Glas. + +2010-02-03 Simon Josefsson + + * doc/ANNOUNCE: Add announcement message. + +2010-01-27 Simon Josefsson + + * NEWS: Fix. + +2010-01-27 Simon Josefsson + + * NEWS: Add. + +2010-01-27 Simon Josefsson + + * lib/po/LINGUAS, lib/po/cs.po.in, lib/po/de.po.in, + lib/po/fr.po.in, lib/po/ms.po.in, lib/po/nl.po.in, lib/po/pl.po.in, + lib/po/sv.po.in, lib/po/zh_CN.po.in: Sync with TP. + +2010-01-27 Simon Josefsson + + * build-aux/gnupload, doc/gendocs_template, + gl/tests/test-gettimeofday.c, gl/tests/test-memchr.c, + gl/tests/test-read-file.c, gl/tests/test-sockets.c, + lib/gl/tests/test-memchr.c, lib/gl/tests/test-read-file.c, + lib/gl/tests/test-sockets.c: Update gnulib files. + +2010-01-27 Simon Josefsson + + * AUTHORS: Add. + +2010-01-27 Simon Josefsson + + * NEWS, lib/minitasn1/coding.c, lib/minitasn1/decoding.c, + lib/minitasn1/element.c, lib/minitasn1/errors.c, + lib/minitasn1/gstr.c, lib/minitasn1/int.h, + lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, + lib/minitasn1/structure.c: Use libtasn1 v2.4. + +2010-01-27 Simon Josefsson + + * lib/gnutls.pc.in: Fix license. + +2010-01-27 Simon Josefsson + + * .clcopying: Fix license. + +2010-01-27 Simon Josefsson + + * AUTHORS: Fix license. + +2010-01-27 Simon Josefsson + + * tests/key-id/README, tests/libgcrypt.supp, + tests/rsa-md5-collision/Makefile.am, + tests/rsa-md5-collision/README, tests/rsa-md5-collision/mbox, + tests/userid/userid.pem: License fix. + +2010-01-27 Simon Josefsson + + * ChangeLog, cfg.mk, configure.ac, doc/Makefile.am, + doc/credentials/Makefile.am, doc/cyclo/Makefile.am, doc/errcodes.c, + doc/examples/Makefile.am, doc/extract-guile-c-doc.scm, + doc/gendocs_template, doc/manpages/Makefile.am, doc/printlist.c, + gl/gnulib.mk, gl/m4/onceonly_2_57.m4, gl/tests/gnulib.mk, + guile/Makefile.am, guile/modules/Makefile.am, + guile/modules/gnutls.scm, guile/modules/gnutls/build/enums.scm, + guile/modules/gnutls/build/priorities.scm, + guile/modules/gnutls/build/smobs.scm, + guile/modules/gnutls/build/utils.scm, + guile/modules/gnutls/extra.scm, + guile/modules/system/documentation/c-snarf.scm, + guile/modules/system/documentation/output.scm, + guile/pre-inst-guile.in, guile/src/Makefile.am, guile/src/core.c, + guile/src/errors.c, guile/src/errors.h, guile/src/extra.c, + guile/src/make-enum-header.scm, guile/src/make-enum-map.scm, + guile/src/make-session-priorities.scm, + guile/src/make-smob-header.scm, guile/src/make-smob-types.scm, + guile/src/utils.c, guile/src/utils.h, guile/tests/Makefile.am, + guile/tests/anonymous-auth.scm, guile/tests/errors.scm, + guile/tests/openpgp-auth.scm, guile/tests/openpgp-keyring.scm, + guile/tests/openpgp-keys.scm, guile/tests/pkcs-import-export.scm, + guile/tests/session-record-port.scm, guile/tests/srp-base64.scm, + guile/tests/x509-auth.scm, guile/tests/x509-certificates.scm, + lib/Makefile.am, lib/auth_anon.c, lib/auth_anon.h, lib/auth_cert.c, + lib/auth_cert.h, lib/auth_dh_common.c, lib/auth_dh_common.h, + lib/auth_dhe.c, lib/auth_dhe_psk.c, lib/auth_psk.c, lib/auth_psk.h, + lib/auth_psk_passwd.c, lib/auth_psk_passwd.h, lib/auth_rsa.c, + lib/auth_rsa_export.c, lib/auth_srp.c, lib/auth_srp.h, + lib/auth_srp_passwd.c, lib/auth_srp_passwd.h, lib/auth_srp_rsa.c, + lib/auth_srp_sb64.c, lib/cipher-libgcrypt.c, lib/configure.ac, + lib/crypto-api.c, lib/crypto.c, lib/crypto.h, lib/cryptodev.c, + lib/debug.c, lib/debug.h, lib/ext_cert_type.c, lib/ext_cert_type.h, + lib/ext_max_record.c, lib/ext_max_record.h, lib/ext_oprfi.c, + lib/ext_oprfi.h, lib/ext_safe_renegotiation.c, + lib/ext_safe_renegotiation.h, lib/ext_server_name.c, + lib/ext_server_name.h, lib/ext_session_ticket.c, + lib/ext_session_ticket.h, lib/ext_signature.c, lib/ext_signature.h, + lib/ext_srp.c, lib/ext_srp.h, lib/gnutls_alert.c, + lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, + lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_auth.h, + lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cert.c, + lib/gnutls_cert.h, lib/gnutls_cipher.c, lib/gnutls_cipher.h, + lib/gnutls_cipher_int.h, lib/gnutls_compress.c, + lib/gnutls_compress.h, lib/gnutls_constate.c, + lib/gnutls_constate.h, lib/gnutls_datum.c, lib/gnutls_datum.h, + lib/gnutls_db.c, lib/gnutls_db.h, lib/gnutls_dh.c, lib/gnutls_dh.h, + lib/gnutls_dh_primes.c, lib/gnutls_errors.c, lib/gnutls_errors.h, + lib/gnutls_extensions.c, lib/gnutls_extensions.h, + lib/gnutls_global.c, lib/gnutls_global.h, lib/gnutls_handshake.c, + lib/gnutls_handshake.h, lib/gnutls_hash_int.c, + lib/gnutls_hash_int.h, lib/gnutls_helper.c, lib/gnutls_int.h, + lib/gnutls_kx.c, lib/gnutls_kx.h, lib/gnutls_mem.c, + lib/gnutls_mem.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h, + lib/gnutls_num.c, lib/gnutls_num.h, lib/gnutls_pk.c, + lib/gnutls_pk.h, lib/gnutls_priority.c, lib/gnutls_psk.c, + lib/gnutls_psk_netconf.c, lib/gnutls_record.c, lib/gnutls_record.h, + lib/gnutls_rsa_export.c, lib/gnutls_rsa_export.h, + lib/gnutls_session.c, lib/gnutls_session_pack.c, + lib/gnutls_session_pack.h, lib/gnutls_sig.c, lib/gnutls_sig.h, + lib/gnutls_srp.c, lib/gnutls_srp.h, lib/gnutls_state.c, + lib/gnutls_state.h, lib/gnutls_str.c, lib/gnutls_str.h, + lib/gnutls_supplemental.c, lib/gnutls_supplemental.h, + lib/gnutls_ui.c, lib/gnutls_v2_compat.c, lib/gnutls_v2_compat.h, + lib/gnutls_x509.c, lib/gnutls_x509.h, lib/includes/Makefile.am, + lib/includes/gnutls/crypto.h, lib/includes/gnutls/gnutls.h.in, + lib/includes/gnutls/openpgp.h, lib/includes/gnutls/pkcs12.h, + lib/includes/gnutls/x509.h, lib/libgnutls.map, lib/libgnutlsxx.map, + lib/m4/hooks.m4, lib/mac-libgcrypt.c, lib/minitasn1/Makefile.am, + lib/minitasn1/gstr.c, lib/minitasn1/int.h, + lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, + lib/minitasn1/structure.c, lib/mpi-libgcrypt.c, + lib/opencdk/Makefile.am, lib/opencdk/armor.c, + lib/opencdk/context.h, lib/opencdk/filters.h, lib/opencdk/hash.c, + lib/opencdk/kbnode.c, lib/opencdk/keydb.c, lib/opencdk/literal.c, + lib/opencdk/main.c, lib/opencdk/main.h, lib/opencdk/misc.c, + lib/opencdk/new-packet.c, lib/opencdk/opencdk.h, + lib/opencdk/packet.h, lib/opencdk/pubkey.c, + lib/opencdk/read-packet.c, lib/opencdk/seskey.c, + lib/opencdk/sig-check.c, lib/opencdk/stream.c, + lib/opencdk/stream.h, lib/opencdk/types.h, lib/opencdk/verify.c, + lib/opencdk/write-packet.c, lib/openpgp/Makefile.am, + lib/openpgp/compat.c, lib/openpgp/extras.c, + lib/openpgp/gnutls_openpgp.c, lib/openpgp/output.c, + lib/openpgp/pgp.c, lib/openpgp/pgpverify.c, lib/openpgp/privkey.c, + lib/pk-libgcrypt.c, lib/po/cs.po.in, lib/po/de.po.in, + lib/po/fr.po.in, lib/po/ms.po.in, lib/po/nl.po.in, lib/po/pl.po.in, + lib/po/sv.po.in, lib/random.c, lib/random.h, lib/rnd-libgcrypt.c, + lib/x509/Makefile.am, lib/x509/common.c, lib/x509/common.h, + lib/x509/crl.c, lib/x509/crl_write.c, lib/x509/crq.c, + lib/x509/dn.c, lib/x509/extensions.c, lib/x509/mpi.c, + lib/x509/output.c, lib/x509/pbkdf2-sha1.c, lib/x509/pkcs12.c, + lib/x509/pkcs12_bag.c, lib/x509/pkcs12_encr.c, lib/x509/pkcs7.c, + lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, + lib/x509/rfc2818_hostname.c, lib/x509/sign.c, lib/x509/verify.c, + lib/x509/x509.c, lib/x509/x509_int.h, lib/x509/x509_write.c, + lib/x509_b64.c, lib/x509_b64.h, libextra/Makefile.am, + libextra/configure.ac, libextra/ext_inner_application.c, + libextra/ext_inner_application.h, libextra/fipsmd5.c, + libextra/gl/Makefile.am, libextra/gnutls-extra.pc.in, + libextra/gnutls_extra.c, libextra/gnutls_ia.c, + libextra/gnutls_openssl.c, libextra/includes/Makefile.am, + libextra/includes/gnutls/extra.h, + libextra/includes/gnutls/openssl.h, libextra/libgnutls-extra.map, + libextra/m4/hooks.m4, libextra/openssl_compat.c, + libextra/openssl_compat.h, m4/guile.m4, m4/valgrind.m4, + src/Makefile.am, src/common.c, src/serv.c, tests/Makefile.am, + tests/anonself.c, tests/certder.c, + tests/certificate_set_x509_crl.c, tests/chainverify.c, + tests/crq_apis.c, tests/crq_key_id.c, tests/crypto_rng.c, + tests/cve-2008-4989.c, tests/cve-2009-1415.c, + tests/cve-2009-1416.c, tests/dhepskself.c, tests/dn.c, tests/dn2.c, + tests/finished.c, tests/gc.c, tests/hostname-check.c, + tests/init_roundtrip.c, tests/key-id/Makefile.am, + tests/key-id/key-id, tests/mini-eagain.c, tests/mini.c, + tests/moredn.c, tests/mpi.c, tests/netconf-psk.c, + tests/nist-pkits/pkits, tests/nist-pkits/pkits_crl, + tests/nist-pkits/pkits_crt, tests/nist-pkits/pkits_pkcs12, + tests/nist-pkits/pkits_smime, tests/nul-in-x509-names.c, + tests/openpgp-certs/Makefile.am, tests/openpgp-keyring.c, + tests/openpgpself.c, tests/openssl.c, tests/oprfi.c, + tests/parse_ca.c, tests/pathlen/Makefile.am, tests/pathlen/pathlen, + tests/pgps2kgnu.c, tests/pkcs1-padding/Makefile.am, + tests/pkcs1-padding/pkcs1-pad, tests/pkcs12-decode/Makefile.am, + tests/pkcs12-decode/pkcs12, tests/pkcs12_encode.c, + tests/pkcs12_s2k.c, tests/pkcs12_s2k_pem.c, + tests/pkcs8-decode/Makefile.am, tests/pkcs8-decode/pkcs8, + tests/pskself.c, tests/resume.c, tests/rfc2253-escape-test, + tests/rsa-md5-collision/Makefile.am, + tests/rsa-md5-collision/rsa-md5-collision, tests/set_pkcs12_cred.c, + tests/setcredcrash.c, tests/sha2/Makefile.am, tests/sha2/sha2, + tests/simple.c, tests/tlsia.c, tests/userid/Makefile.am, + tests/userid/userid, tests/utils.c, tests/utils.h, + tests/x509_altname.c, tests/x509dn.c, tests/x509paths/chain, + tests/x509self.c, tests/x509sign-verify.c, tests/x509signself.c: + Update copyright years. + +2010-01-27 Simon Josefsson + + * Makefile.am: Fix license. + +2010-01-27 Simon Josefsson + + * README: Fix license. + +2010-01-27 Simon Josefsson + + * README-alpha: Fix license. + +2010-01-27 Simon Josefsson + + * src/cli.c: Fix license. + +2010-01-27 Simon Josefsson + + * src/crypt.c: Fix license. + +2010-01-27 Simon Josefsson + + * src/tls_test.c: Fix license. + +2010-01-27 Simon Josefsson + + * src/tests.c: Fix license. + +2010-01-27 Simon Josefsson + + * src/psk.c: Fix license. + +2010-01-27 Simon Josefsson + + * src/prime.c: Fix license. + +2010-01-27 Simon Josefsson + + * src/certtool.c: Fix license. + +2010-01-27 Simon Josefsson + + * src/certtool-cfg.c: Fix copyright/license. + +2010-01-27 Simon Josefsson + + * src/benchmark.c: Indent and fix copyright notices. + +2010-01-27 Simon Josefsson + + * build-aux/gnupload, gl/tests/test-gettimeofday.c, + gl/tests/test-memchr.c, gl/tests/test-read-file.c, + gl/tests/test-sockets.c, lib/gl/tests/test-memchr.c, + lib/gl/tests/test-read-file.c, lib/gl/tests/test-sockets.c: Update + gnulib files. + +2010-01-27 Simon Josefsson + + * ChangeLog, ChangeLog.1, THANKS, build-aux/gnupload, cfg.mk, + doc/Makefile.am, doc/credentials/Makefile.am, + doc/cyclo/Makefile.am, doc/errcodes.c, doc/examples/Makefile.am, + doc/extract-guile-c-doc.scm, doc/manpages/Makefile.am, + doc/printlist.c, gl/tests/test-gettimeofday.c, + gl/tests/test-memchr.c, gl/tests/test-read-file.c, + gl/tests/test-sockets.c, guile/Makefile.am, + guile/modules/Makefile.am, guile/modules/gnutls.scm, + guile/modules/gnutls/build/enums.scm, + guile/modules/gnutls/build/priorities.scm, + guile/modules/gnutls/build/smobs.scm, + guile/modules/gnutls/build/utils.scm, + guile/modules/gnutls/extra.scm, + guile/modules/system/documentation/c-snarf.scm, + guile/modules/system/documentation/output.scm, + guile/pre-inst-guile.in, guile/src/errors.h, + guile/src/make-enum-header.scm, guile/src/make-enum-map.scm, + guile/src/make-session-priorities.scm, + guile/src/make-smob-header.scm, guile/src/make-smob-types.scm, + guile/src/utils.h, guile/tests/anonymous-auth.scm, + guile/tests/errors.scm, guile/tests/openpgp-auth.scm, + guile/tests/openpgp-keyring.scm, guile/tests/openpgp-keys.scm, + guile/tests/pkcs-import-export.scm, + guile/tests/session-record-port.scm, guile/tests/srp-base64.scm, + guile/tests/x509-auth.scm, guile/tests/x509-certificates.scm, + lib/Makefile.am, lib/auth_anon.c, lib/auth_anon.h, lib/auth_cert.c, + lib/auth_cert.h, lib/auth_dh_common.c, lib/auth_dh_common.h, + lib/auth_dhe.c, lib/auth_dhe_psk.c, lib/auth_psk.c, lib/auth_psk.h, + lib/auth_psk_passwd.c, lib/auth_psk_passwd.h, lib/auth_rsa.c, + lib/auth_rsa_export.c, lib/auth_srp.c, lib/auth_srp.h, + lib/auth_srp_passwd.c, lib/auth_srp_passwd.h, lib/auth_srp_rsa.c, + lib/auth_srp_sb64.c, lib/cipher-libgcrypt.c, lib/crypto-api.c, + lib/crypto.c, lib/crypto.h, lib/cryptodev.c, lib/debug.c, + lib/debug.h, lib/ext_cert_type.c, lib/ext_cert_type.h, + lib/ext_max_record.c, lib/ext_max_record.h, lib/ext_oprfi.c, + lib/ext_oprfi.h, lib/ext_safe_renegotiation.c, + lib/ext_safe_renegotiation.h, lib/ext_server_name.c, + lib/ext_server_name.h, lib/ext_session_ticket.c, + lib/ext_session_ticket.h, lib/ext_signature.c, lib/ext_signature.h, + lib/ext_srp.c, lib/ext_srp.h, lib/gl/tests/test-memchr.c, + lib/gl/tests/test-read-file.c, lib/gl/tests/test-sockets.c, + lib/gnutls_alert.c, lib/gnutls_algorithms.c, + lib/gnutls_algorithms.h, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, + lib/gnutls_auth.h, lib/gnutls_buffers.c, lib/gnutls_buffers.h, + lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_cipher.c, + lib/gnutls_cipher.h, lib/gnutls_cipher_int.c, + lib/gnutls_cipher_int.h, lib/gnutls_compress.c, + lib/gnutls_compress.h, lib/gnutls_constate.c, + lib/gnutls_constate.h, lib/gnutls_datum.c, lib/gnutls_datum.h, + lib/gnutls_db.c, lib/gnutls_db.h, lib/gnutls_dh.c, lib/gnutls_dh.h, + lib/gnutls_dh_primes.c, lib/gnutls_errors.c, lib/gnutls_errors.h, + lib/gnutls_extensions.c, lib/gnutls_extensions.h, + lib/gnutls_global.c, lib/gnutls_global.h, lib/gnutls_handshake.c, + lib/gnutls_handshake.h, lib/gnutls_hash_int.c, + lib/gnutls_hash_int.h, lib/gnutls_helper.c, lib/gnutls_int.h, + lib/gnutls_kx.c, lib/gnutls_kx.h, lib/gnutls_mem.c, + lib/gnutls_mem.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h, + lib/gnutls_num.c, lib/gnutls_num.h, lib/gnutls_pk.c, + lib/gnutls_pk.h, lib/gnutls_priority.c, lib/gnutls_psk.c, + lib/gnutls_psk_netconf.c, lib/gnutls_record.c, lib/gnutls_record.h, + lib/gnutls_rsa_export.c, lib/gnutls_rsa_export.h, + lib/gnutls_session.c, lib/gnutls_session_pack.c, + lib/gnutls_session_pack.h, lib/gnutls_sig.c, lib/gnutls_sig.h, + lib/gnutls_srp.c, lib/gnutls_srp.h, lib/gnutls_state.c, + lib/gnutls_state.h, lib/gnutls_str.c, lib/gnutls_str.h, + lib/gnutls_supplemental.c, lib/gnutls_supplemental.h, + lib/gnutls_ui.c, lib/gnutls_v2_compat.c, lib/gnutls_v2_compat.h, + lib/gnutls_x509.c, lib/gnutls_x509.h, lib/includes/Makefile.am, + lib/includes/gnutls/crypto.h, lib/includes/gnutls/gnutls.h.in, + lib/includes/gnutls/openpgp.h, lib/includes/gnutls/pkcs12.h, + lib/includes/gnutls/x509.h, lib/libgnutls.map, lib/libgnutlsxx.map, + lib/mac-libgcrypt.c, lib/minitasn1/Makefile.am, + lib/minitasn1/coding.c, lib/minitasn1/decoding.c, + lib/minitasn1/element.c, lib/minitasn1/gstr.c, + lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, + lib/minitasn1/structure.c, lib/mpi-libgcrypt.c, + lib/opencdk/Makefile.am, lib/opencdk/hash.c, + lib/openpgp/Makefile.am, lib/openpgp/compat.c, + lib/openpgp/extras.c, lib/openpgp/gnutls_openpgp.c, + lib/openpgp/output.c, lib/openpgp/pgp.c, lib/openpgp/pgpverify.c, + lib/openpgp/privkey.c, lib/pk-libgcrypt.c, lib/random.c, + lib/random.h, lib/rnd-libgcrypt.c, lib/x509/Makefile.am, + lib/x509/common.c, lib/x509/common.h, lib/x509/crl.c, + lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/dn.c, + lib/x509/extensions.c, lib/x509/mpi.c, lib/x509/output.c, + lib/x509/pkcs12.c, lib/x509/pkcs12_bag.c, lib/x509/pkcs7.c, + lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, + lib/x509/rfc2818_hostname.c, lib/x509/sign.c, lib/x509/verify.c, + lib/x509/x509.c, lib/x509/x509_int.h, lib/x509/x509_write.c, + lib/x509_b64.c, lib/x509_b64.h, libextra/Makefile.am, + libextra/ext_inner_application.c, libextra/ext_inner_application.h, + libextra/fipsmd5.c, libextra/gl/Makefile.am, + libextra/gnutls-extra.pc.in, libextra/gnutls_extra.c, + libextra/gnutls_ia.c, libextra/gnutls_openssl.c, + libextra/includes/Makefile.am, libextra/includes/gnutls/extra.h, + libextra/includes/gnutls/openssl.h, libextra/libgnutls-extra.map, + libextra/openssl_compat.c, libextra/openssl_compat.h, + src/Makefile.am, src/benchmark.c, src/certtool-cfg.c, + src/certtool.c, src/common.c, src/crypt.c, src/prime.c, src/psk.c, + src/serv.c, src/tests.c, src/tls_test.c, tests/Makefile.am, + tests/anonself.c, tests/certder.c, tests/chainverify.c, + tests/crq_apis.c, tests/crq_key_id.c, tests/crypto_rng.c, + tests/cve-2008-4989.c, tests/cve-2009-1415.c, + tests/cve-2009-1416.c, tests/dhepskself.c, tests/dn.c, tests/dn2.c, + tests/finished.c, tests/gc.c, tests/hostname-check.c, + tests/init_roundtrip.c, tests/key-id/Makefile.am, + tests/key-id/key-id, tests/mini-eagain.c, tests/mini.c, + tests/moredn.c, tests/mpi.c, tests/netconf-psk.c, + tests/nist-pkits/pkits, tests/nist-pkits/pkits_crl, + tests/nist-pkits/pkits_crt, tests/nist-pkits/pkits_pkcs12, + tests/nist-pkits/pkits_smime, tests/nul-in-x509-names.c, + tests/openpgp-certs/Makefile.am, tests/openpgp-certs/testcerts, + tests/openpgp-certs/testselfsigs, tests/openpgp-keyring.c, + tests/openpgpself.c, tests/openssl.c, tests/oprfi.c, + tests/parse_ca.c, tests/pathlen/Makefile.am, tests/pathlen/pathlen, + tests/pkcs1-padding/Makefile.am, tests/pkcs1-padding/pkcs1-pad, + tests/pkcs12-decode/Makefile.am, tests/pkcs12-decode/pkcs12, + tests/pkcs12_encode.c, tests/pkcs12_s2k.c, tests/pkcs12_s2k_pem.c, + tests/pkcs8-decode/Makefile.am, tests/pkcs8-decode/pkcs8, + tests/pskself.c, tests/resume.c, tests/rfc2253-escape-test, + tests/rsa-md5-collision/Makefile.am, + tests/rsa-md5-collision/rsa-md5-collision, + tests/safe-renegotiation/Makefile.am, + tests/safe-renegotiation/testsrn, tests/set_pkcs12_cred.c, + tests/setcredcrash.c, tests/sha2/Makefile.am, tests/sha2/sha2, + tests/simple.c, tests/tlsia.c, tests/userid/Makefile.am, + tests/userid/userid, tests/utils.c, tests/utils.h, + tests/x509_altname.c, tests/x509dn.c, tests/x509paths/chain, + tests/x509self.c, tests/x509sign-verify.c, tests/x509signself.c: Fix + FSF copyright notices. + +2010-01-27 Simon Josefsson + + * THANKS, doc/gnutls.texi: doc: Fix pkg-config recommendation. Reported by Claudio Saavedra in + + . + +2010-01-27 Simon Josefsson + + * NEWS, THANKS, src/cli.c: gnutls-cli: Handle reading binary data + from server. Reported by and tiny patch from Vitaly Mayatskikh + in + + . + +2010-01-26 Simon Josefsson + + * build-aux/update-copyright, gl/Makefile.am, + gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/tests/Makefile.am, + gl/tests/test-update-copyright.sh: Update gnulib files. + +2010-01-26 Nikos Mavrogiannopoulos + + * tests/openpgp-certs/testcerts, tests/openpgp-certs/testselfsigs, + tests/safe-renegotiation/testsrn: Added copyright notices! + +2010-01-26 Simon Josefsson + + * NEWS, doc/manpages/Makefile.am: Generated. + +2010-01-26 Simon Josefsson + + * .gitignore: Improve. + +2010-01-26 Simon Josefsson + + * doc/reference/Makefile.am: Ignore more. + +2010-01-26 Simon Josefsson + + * .gitignore, lib/gl/m4/warn-on-use.m4: Update gnulib files. + +2010-01-26 Simon Josefsson + + * gl/m4/warn-on-use.m4, lib/build-aux/arg-nonnull.h, + lib/build-aux/warn-on-use.h: Update gnulib files. + +2010-01-26 Simon Josefsson + + * .gitignore: Fix. + +2010-01-26 Simon Josefsson + + * lib/gl/tests/macros.h, lib/gl/tests/signature.h: Update gnulib + files. + +2010-01-26 Simon Josefsson + + * .gitignore: Fix + +2010-01-26 Simon Josefsson + + * gl/tests/macros.h, gl/tests/signature.h, + gl/tests/test-sys_ioctl.c: Update gnulib files. + +2010-01-26 Simon Josefsson + + * GNUmakefile, build-aux/arg-nonnull.h, build-aux/config.rpath, + build-aux/gendocs.sh, build-aux/gnupload, build-aux/link-warning.h, + build-aux/pmccabe2html, build-aux/useless-if-before-free, + build-aux/vc-list-files, build-aux/warn-on-use.h, gl/Makefile.am, + gl/accept.c, gl/alignof.h, gl/alloca.c, gl/alloca.in.h, + gl/arpa_inet.in.h, gl/asnprintf.c, gl/bind.c, gl/c-ctype.c, + gl/c-ctype.h, gl/close-hook.c, gl/close-hook.h, gl/close.c, + gl/connect.c, gl/errno.in.h, gl/error.c, gl/error.h, gl/fclose.c, + gl/float+.h, gl/float.in.h, gl/fseeko.c, gl/gai_strerror.c, + gl/getaddrinfo.c, gl/getdelim.c, gl/getline.c, gl/getpass.c, + gl/getpass.h, gl/gettext.h, gl/inet_ntop.c, gl/inet_pton.c, + gl/intprops.h, gl/listen.c, gl/lseek.c, gl/m4/00gnulib.m4, + gl/m4/alloca.m4, gl/m4/arpa_inet_h.m4, gl/m4/autobuild.m4, + gl/m4/close.m4, gl/m4/errno_h.m4, gl/m4/error.m4, + gl/m4/extensions.m4, gl/m4/fclose.m4, gl/m4/float_h.m4, + gl/m4/fseeko.m4, gl/m4/getaddrinfo.m4, gl/m4/getdelim.m4, + gl/m4/getline.m4, gl/m4/getpass.m4, gl/m4/gettimeofday.m4, + gl/m4/gnulib-cache.m4, gl/m4/gnulib-common.m4, + gl/m4/gnulib-comp.m4, gl/m4/gnulib-tool.m4, gl/m4/hostent.m4, + gl/m4/include_next.m4, gl/m4/inet_ntop.m4, gl/m4/inet_pton.m4, + gl/m4/intmax_t.m4, gl/m4/inttypes_h.m4, gl/m4/lib-ld.m4, + gl/m4/lib-link.m4, gl/m4/lib-prefix.m4, gl/m4/longlong.m4, + gl/m4/lseek.m4, gl/m4/malloc.m4, gl/m4/manywarnings.m4, + gl/m4/memchr.m4, gl/m4/minmax.m4, gl/m4/mmap-anon.m4, + gl/m4/multiarch.m4, gl/m4/netdb_h.m4, gl/m4/netinet_in_h.m4, + gl/m4/perror.m4, gl/m4/printf.m4, gl/m4/read-file.m4, + gl/m4/readline.m4, gl/m4/realloc.m4, gl/m4/select.m4, + gl/m4/servent.m4, gl/m4/size_max.m4, gl/m4/snprintf.m4, + gl/m4/sockets.m4, gl/m4/socklen.m4, gl/m4/sockpfaf.m4, + gl/m4/stdarg.m4, gl/m4/stdbool.m4, gl/m4/stddef_h.m4, + gl/m4/stdint.m4, gl/m4/stdint_h.m4, gl/m4/stdio_h.m4, + gl/m4/stdlib_h.m4, gl/m4/strerror.m4, gl/m4/string_h.m4, + gl/m4/sys_ioctl_h.m4, gl/m4/sys_select_h.m4, gl/m4/sys_socket_h.m4, + gl/m4/sys_stat_h.m4, gl/m4/sys_time_h.m4, gl/m4/time_h.m4, + gl/m4/ungetc.m4, gl/m4/unistd_h.m4, gl/m4/vasnprintf.m4, + gl/m4/version-etc.m4, gl/m4/warnings.m4, gl/m4/wchar.m4, + gl/m4/wchar_t.m4, gl/m4/wint_t.m4, gl/m4/xsize.m4, gl/memchr.c, + gl/minmax.h, gl/netdb.in.h, gl/netinet_in.in.h, + gl/override/lib/gettext.h.diff, gl/perror.c, gl/printf-args.c, + gl/printf-args.h, gl/printf-parse.c, gl/printf-parse.h, + gl/progname.c, gl/progname.h, gl/read-file.c, gl/read-file.h, + gl/readline.c, gl/readline.h, gl/realloc.c, gl/recv.c, gl/select.c, + gl/send.c, gl/setsockopt.c, gl/shutdown.c, gl/size_max.h, + gl/snprintf.c, gl/socket.c, gl/sockets.c, gl/sockets.h, + gl/stdarg.in.h, gl/stdbool.in.h, gl/stddef.in.h, gl/stdint.in.h, + gl/stdio-impl.h, gl/stdio-write.c, gl/stdio.in.h, gl/stdlib.in.h, + gl/strerror.c, gl/string.in.h, gl/sys_select.in.h, + gl/sys_socket.in.h, gl/sys_stat.in.h, gl/sys_time.in.h, + gl/tests/Makefile.am, gl/tests/dummy.c, gl/tests/gettimeofday.c, + gl/tests/ioctl.c, gl/tests/sys_ioctl.in.h, gl/tests/test-alignof.c, + gl/tests/test-alloca-opt.c, gl/tests/test-arpa_inet.c, + gl/tests/test-c-ctype.c, gl/tests/test-errno.c, + gl/tests/test-fseeko.c, gl/tests/test-getaddrinfo.c, + gl/tests/test-getdelim.c, gl/tests/test-getline.c, + gl/tests/test-gettimeofday.c, gl/tests/test-inet_ntop.c, + gl/tests/test-inet_pton.c, gl/tests/test-lseek.c, + gl/tests/test-memchr.c, gl/tests/test-netdb.c, + gl/tests/test-netinet_in.c, gl/tests/test-perror.c, + gl/tests/test-read-file.c, gl/tests/test-select-fd.c, + gl/tests/test-select-stdin.c, gl/tests/test-select.c, + gl/tests/test-snprintf.c, gl/tests/test-stdbool.c, + gl/tests/test-stddef.c, gl/tests/test-stdint.c, + gl/tests/test-stdio.c, gl/tests/test-stdlib.c, + gl/tests/test-strerror.c, gl/tests/test-string.c, + gl/tests/test-sys_select.c, gl/tests/test-sys_socket.c, + gl/tests/test-sys_stat.c, gl/tests/test-sys_time.c, + gl/tests/test-time.c, gl/tests/test-unistd.c, + gl/tests/test-vasnprintf.c, gl/tests/test-vc-list-files-cvs.sh, + gl/tests/test-vc-list-files-git.sh, gl/tests/test-version-etc.c, + gl/tests/test-version-etc.sh, gl/tests/test-wchar.c, + gl/tests/verify.h, gl/tests/w32sock.h, gl/tests/zerosize-ptr.h, + gl/time.in.h, gl/unistd.in.h, gl/vasnprintf.c, gl/vasnprintf.h, + gl/version-etc-fsf.c, gl/version-etc.c, gl/version-etc.h, + gl/w32sock.h, gl/wchar.in.h, gl/xsize.h, + lib/build-aux/config.rpath, lib/build-aux/link-warning.h, + lib/gl/Makefile.am, lib/gl/alignof.h, lib/gl/alloca.in.h, + lib/gl/asnprintf.c, lib/gl/asprintf.c, lib/gl/byteswap.in.h, + lib/gl/c-ctype.c, lib/gl/c-ctype.h, lib/gl/close-hook.c, + lib/gl/close-hook.h, lib/gl/errno.in.h, lib/gl/float+.h, + lib/gl/float.in.h, lib/gl/fseeko.c, lib/gl/gettext.h, + lib/gl/lseek.c, lib/gl/m4/00gnulib.m4, lib/gl/m4/alloca.m4, + lib/gl/m4/byteswap.m4, lib/gl/m4/codeset.m4, lib/gl/m4/errno_h.m4, + lib/gl/m4/extensions.m4, lib/gl/m4/float_h.m4, lib/gl/m4/fseeko.m4, + lib/gl/m4/func.m4, lib/gl/m4/gettext.m4, lib/gl/m4/glibc2.m4, + lib/gl/m4/glibc21.m4, lib/gl/m4/gnulib-cache.m4, + lib/gl/m4/gnulib-common.m4, lib/gl/m4/gnulib-comp.m4, + lib/gl/m4/gnulib-tool.m4, lib/gl/m4/iconv.m4, + lib/gl/m4/include_next.m4, lib/gl/m4/intdiv0.m4, lib/gl/m4/intl.m4, + lib/gl/m4/intldir.m4, lib/gl/m4/intlmacosx.m4, lib/gl/m4/intmax.m4, + lib/gl/m4/intmax_t.m4, lib/gl/m4/inttypes-pri.m4, + lib/gl/m4/inttypes_h.m4, lib/gl/m4/lcmessage.m4, + lib/gl/m4/ld-output-def.m4, lib/gl/m4/ld-version-script.m4, + lib/gl/m4/lib-ld.m4, lib/gl/m4/lib-link.m4, + lib/gl/m4/lib-prefix.m4, lib/gl/m4/lock.m4, lib/gl/m4/longlong.m4, + lib/gl/m4/lseek.m4, lib/gl/m4/malloc.m4, lib/gl/m4/memchr.m4, + lib/gl/m4/memmem.m4, lib/gl/m4/minmax.m4, lib/gl/m4/mmap-anon.m4, + lib/gl/m4/multiarch.m4, lib/gl/m4/netdb_h.m4, lib/gl/m4/nls.m4, + lib/gl/m4/po.m4, lib/gl/m4/printf-posix.m4, lib/gl/m4/printf.m4, + lib/gl/m4/progtest.m4, lib/gl/m4/read-file.m4, + lib/gl/m4/realloc.m4, lib/gl/m4/size_max.m4, lib/gl/m4/snprintf.m4, + lib/gl/m4/sockets.m4, lib/gl/m4/socklen.m4, lib/gl/m4/sockpfaf.m4, + lib/gl/m4/stdbool.m4, lib/gl/m4/stddef_h.m4, lib/gl/m4/stdint.m4, + lib/gl/m4/stdint_h.m4, lib/gl/m4/stdio_h.m4, lib/gl/m4/stdlib_h.m4, + lib/gl/m4/strcase.m4, lib/gl/m4/string_h.m4, + lib/gl/m4/strings_h.m4, lib/gl/m4/strverscmp.m4, + lib/gl/m4/sys_socket_h.m4, lib/gl/m4/sys_stat_h.m4, + lib/gl/m4/threadlib.m4, lib/gl/m4/time_h.m4, lib/gl/m4/time_r.m4, + lib/gl/m4/uintmax_t.m4, lib/gl/m4/ungetc.m4, lib/gl/m4/unistd_h.m4, + lib/gl/m4/vasnprintf.m4, lib/gl/m4/vasprintf.m4, + lib/gl/m4/visibility.m4, lib/gl/m4/vsnprintf.m4, + lib/gl/m4/wchar.m4, lib/gl/m4/wchar_t.m4, lib/gl/m4/wint_t.m4, + lib/gl/m4/xsize.m4, lib/gl/memchr.c, lib/gl/memmem.c, + lib/gl/minmax.h, lib/gl/netdb.in.h, + lib/gl/override/lib/gettext.h.diff, lib/gl/printf-args.c, + lib/gl/printf-args.h, lib/gl/printf-parse.c, lib/gl/printf-parse.h, + lib/gl/read-file.c, lib/gl/read-file.h, lib/gl/realloc.c, + lib/gl/size_max.h, lib/gl/snprintf.c, lib/gl/sockets.c, + lib/gl/sockets.h, lib/gl/stdbool.in.h, lib/gl/stddef.in.h, + lib/gl/stdint.in.h, lib/gl/stdio-impl.h, lib/gl/stdio-write.c, + lib/gl/stdio.in.h, lib/gl/stdlib.in.h, lib/gl/str-two-way.h, + lib/gl/strcasecmp.c, lib/gl/string.in.h, lib/gl/strings.in.h, + lib/gl/strncasecmp.c, lib/gl/strverscmp.c, lib/gl/sys_socket.in.h, + lib/gl/sys_stat.in.h, lib/gl/tests/Makefile.am, + lib/gl/tests/dummy.c, lib/gl/tests/intprops.h, + lib/gl/tests/test-alloca-opt.c, lib/gl/tests/test-byteswap.c, + lib/gl/tests/test-c-ctype.c, lib/gl/tests/test-errno.c, + lib/gl/tests/test-fseeko.c, lib/gl/tests/test-func.c, + lib/gl/tests/test-memchr.c, lib/gl/tests/test-netdb.c, + lib/gl/tests/test-read-file.c, lib/gl/tests/test-snprintf.c, + lib/gl/tests/test-stdbool.c, lib/gl/tests/test-stddef.c, + lib/gl/tests/test-stdint.c, lib/gl/tests/test-stdio.c, + lib/gl/tests/test-stdlib.c, lib/gl/tests/test-string.c, + lib/gl/tests/test-strings.c, lib/gl/tests/test-strverscmp.c, + lib/gl/tests/test-sys_socket.c, lib/gl/tests/test-sys_stat.c, + lib/gl/tests/test-time.c, lib/gl/tests/test-unistd.c, + lib/gl/tests/test-vasnprintf.c, lib/gl/tests/test-vasprintf.c, + lib/gl/tests/test-vsnprintf.c, lib/gl/tests/test-wchar.c, + lib/gl/tests/verify.h, lib/gl/tests/zerosize-ptr.h, + lib/gl/time.in.h, lib/gl/time_r.c, lib/gl/unistd.in.h, + lib/gl/vasnprintf.c, lib/gl/vasnprintf.h, lib/gl/vasprintf.c, + lib/gl/vsnprintf.c, lib/gl/w32sock.h, lib/gl/wchar.in.h, + lib/gl/xsize.h, libextra/build-aux/config.rpath, + libextra/gl/gnulib.mk, libextra/gl/hmac-md5.c, libextra/gl/hmac.h, + libextra/gl/m4/00gnulib.m4, libextra/gl/m4/extensions.m4, + libextra/gl/m4/gnulib-cache.m4, libextra/gl/m4/gnulib-common.m4, + libextra/gl/m4/gnulib-comp.m4, libextra/gl/m4/gnulib-tool.m4, + libextra/gl/m4/hmac-md5.m4, libextra/gl/m4/ld-output-def.m4, + libextra/gl/m4/ld-version-script.m4, libextra/gl/m4/lib-ld.m4, + libextra/gl/m4/lib-link.m4, libextra/gl/m4/lib-prefix.m4, + libextra/gl/m4/md5.m4, libextra/gl/m4/memxor.m4, libextra/gl/md5.c, + libextra/gl/md5.h, libextra/gl/memxor.c, libextra/gl/memxor.h, + maint.mk: Update gnulib files. + +2010-01-22 Nikos Mavrogiannopoulos + + * NEWS: Documented addition of new priority strings. + +2010-01-22 Nikos Mavrogiannopoulos + + * NEWS: Documented Steve Dispensa's patch addition. + +2010-01-22 Nikos Mavrogiannopoulos + + * tests/safe-renegotiation/testsrn: Added tests for new behaviour of + client. + +2010-01-22 Nikos Mavrogiannopoulos + + * lib/gnutls_handshake.c: Revert "Always allow initial negotiation. + Disable subsequent unsafe renegotiations." This reverts commit + 1e4981cfbec360a19cfb7470ce96093aaa95b32e. Ah, this was to twart the attack (description by Daniel Kahn + Gilmor): The problem, as i understand it, is that the client is + incapable of telling whether the plaintext prefix injection attack + has already happened. I don't think disabling renegotiation for the + session resolves the problem. For a server which does not announce and enforce safe renegotiation, + what the client sees as an initial connection may unknowingly + actually be renegotiating an existing session that was started by an + attacker. The concern isn't that the (legitimate) client will have their + session re-negotiated by an attacker; it's that the MITM attacker + can trick the server into viewing the client's initial + authentication as a re-negotiation of a TLS session already + underway. for servers which do odd things like apply the credentials of the + post-renegotiation client to the traffic that happened before the + renegotiation (e.g. HTTPS, with client-side certificates required + only for certain subdirectories), a safe-renegotiation-aware client + *should* refuse to connect to servers which do not announce safe + renegotiation if they want to resist this attack. + +2010-01-21 Nikos Mavrogiannopoulos + + * configure.ac: Added safe-renegotiation subdir. + +2010-01-21 Nikos Mavrogiannopoulos + + * lib/ext_safe_renegotiation.c, lib/gnutls_handshake.c, + lib/gnutls_int.h, lib/gnutls_priority.c, tests/Makefile.am, + tests/safe-renegotiation/Makefile.am, + tests/safe-renegotiation/params.dh, + tests/safe-renegotiation/testsrn: Added safe renegotiation test + cases. Added priority string option to completely disable + renegotiation to assist in testing more cases. + +2010-01-21 Nikos Mavrogiannopoulos + + * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa: Added the + --rehandshake option to gnutls-cli to allow connection and immediate + rehandshake. + +2010-01-21 Nikos Mavrogiannopoulos + + * lib/ext_safe_renegotiation.c: More carefull copying of data. Check + for the malicious case where a server does initial unsafe + negotiation and proceeds with a safe renegotiation. + +2010-01-21 Nikos Mavrogiannopoulos + + * lib/gnutls_handshake.c: Always allow initial negotiation. Disable + subsequent unsafe renegotiations. Signed-off-by: Nikos Mavrogiannopoulos + +2010-01-21 Nikos Mavrogiannopoulos + + * lib/ext_safe_renegotiation.c, lib/gnutls_handshake.c, + lib/gnutls_int.h, lib/gnutls_state.c: Safe renegotiation variable + cleanup. No longer clear variables that should stay across + rehandshakes. + +2010-01-21 Nikos Mavrogiannopoulos + + * lib/crypto-api.c, lib/gnutls_cipher_int.c: Documented the + crypto-api functions and made the API tolerant to NULL IV. + +2010-01-21 Nikos Mavrogiannopoulos + + * lib/gnutls_handshake.c: Added documentation of rehandshake usage + in gnutls if full-duplex capability is required. + +2010-01-21 Nikos Mavrogiannopoulos + + * lib/gnutls_buffers.c: Reduced asserts to reduce unneeded + printings. + +2010-01-21 Nikos Mavrogiannopoulos + + * src/cli.c, src/serv.c: Removed rehandshake initiation capability + from client and transferred it to the echo server. Once the server + receives a string **REHANDSHAKE** will request a rehandshake. + +2010-01-19 Steve Dispensa + + * lib/gnutls_handshake.c: Here is another patch that fixes an + interoperability problem with safe renegotiation and resumption. In + copying forward the safe renegotiation state across resumptions, I + got a little carried away and copied too much data (new connections + should start with empty RI data). Signed-off-by: Nikos Mavrogiannopoulos + +2010-01-15 Nikos Mavrogiannopoulos + + * lib/ext_oprfi.c, lib/ext_session_ticket.c, lib/gnutls_constate.c, + lib/gnutls_handshake.c, lib/gnutls_int.h: Modified extensions + (session ticket, oprfi) to store internal data in gnutls internal + structure and input data only in the security_parameters extension + structure. Session ticket extension will call the user supplied hello function + on resumption. (the current API to handle that is inexistant. To be revised) + +2010-01-14 Nikos Mavrogiannopoulos + + * lib/ext_session_ticket.c, lib/gnutls_constate.c, + lib/gnutls_int.h, lib/gnutls_session_pack.c: Further cleanup the + extension internal structure. Now if values are not saved and + restored when resumming they will be initialized to zero. + +2010-01-13 Nikos Mavrogiannopoulos + + * tests/chainverify.c, tests/crq_apis.c, tests/crq_key_id.c, + tests/cve-2008-4989.c, tests/dn2.c, tests/finished.c, tests/mini.c, + tests/pkcs12_s2k_pem.c, tests/tlsia.c, tests/x509sign-verify.c: + Tests compile with --enable-gcc-warnings. + +2010-01-13 Nikos Mavrogiannopoulos + + * lib/ext_safe_renegotiation.h, lib/gnutls_constate.c, + lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_state.c, tests/resume.c, tests/simple.c: Specify in + detail what to be copied when resuming. It seems there are + extensions (like safe renegotiation) that do not need to read the + stored values. Moreover this might overcome any bugs by the + extensions that used to store pointers in the extension structure. + +2010-01-13 Nikos Mavrogiannopoulos + + * lib/ext_safe_renegotiation.c: Initialize the default value to 0. + It seemed to have default value of 0 when non resuming :) + +2010-01-13 Nikos Mavrogiannopoulos + + * doc/examples/ex-client-tlsia.c, tests/utils.c: Removed warnings. + +2010-01-13 Nikos Mavrogiannopoulos + + * configure.ac: Added -Wno-int-to-pointer-cast to enable compilation + when enable-gcc-warnings is given. + +2010-01-13 Steve Dispensa + + * lib/gnutls_handshake.c: Here are two more patches. The first adds + support for renegotiation of resumption. Also, I found a bug in my initial implementation - I was incorrectly + sending the SCSV on all connections, not only those using SSLv3, as + should have been the case. Signed-off-by: Nikos Mavrogiannopoulos + +2010-01-12 Nikos Mavrogiannopoulos + + * NEWS, doc/manpages/gnutls-cli.1, doc/manpages/gnutls-serv.1: + Documentation updates. + +2010-01-12 Nikos Mavrogiannopoulos + + * lib/gnutls_handshake.c: When denying an initial negotiation due to + missing safe renegotiation extension reply with NO_RENEGOTIATION + alert. + +2010-01-12 Nikos Mavrogiannopoulos + + * lib/gnutls_extensions.c, lib/gnutls_handshake.c, + lib/includes/gnutls/gnutls.h.in, tests/resume.c: When resuming no + extensions were parsed thus the safe renegotiation extension was + ignored as well causing a false detection of unsafe session. + Corrected by making a special class of extensions called RESUMED. + Those are parsed even when resuming (normally we don't do it to + prevent clients overwriting capabilities and credentials). + +2010-01-12 Nikos Mavrogiannopoulos + + * lib/ext_safe_renegotiation.c, lib/ext_safe_renegotiation.h, + lib/gnutls_alert.c, lib/gnutls_algorithms.c, + lib/gnutls_algorithms.h, lib/gnutls_extensions.c, + lib/gnutls_extensions.h, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_priority.c, lib/includes/gnutls/gnutls.h.in: Added Steve + Dispensa's patch for safe renegotiation (with artistic changes). + Effectively reverted my previous patch + 1a338cbaaeec11d958de8da4d1ae036979fccf3e. + +2010-01-12 Nikos Mavrogiannopoulos + + * THANKS: Updated thanks file. + +2010-01-12 Nikos Mavrogiannopoulos + + * NEWS, lib/opencdk/sig-check.c, src/certtool.c, + tests/openpgp-certs/Makefile.am, tests/openpgp-certs/testselfsigs: + When checking self signature also check the signatures of all + subkeys. Ilari Liusvaara noticed and reported the issue and + provided test vectors as well. certtool --pgp-certificate-info will check self signatures. Added self tests for self-sigs. + +2010-01-11 Nikos Mavrogiannopoulos + + * tests/gc.c: hash_fast -> hmac_fast + +2010-01-10 Nikos Mavrogiannopoulos + + * doc/manpages/gnutls-cli.1, doc/manpages/gnutls-serv.1, + lib/Makefile.am, lib/ext_safe_renegotiation.c, + lib/ext_safe_renegotiation.h, lib/gnutls_errors.c, + lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_priority.c, lib/includes/gnutls/gnutls.h.in, src/cli.c, + src/serv.c: Added safe renegotiation patch from Steve Dispensa, + modified to suit gnutls code style and error checking. Modified to + conform to draft-ietf-tls-renegotiation-03.txt. gnutls-cli will search input for **RENEGOTIATION** to perform a + renegotiation and gnutls-serv will perform one if requested. + +2010-01-10 Nikos Mavrogiannopoulos + + * lib/x509/mpi.c: Corrections for --disable-extra-pki configure flag + to work. Patch by Bill Randle. + +2010-01-04 Andreas Metzler + + * ChangeLog, doc/certtool.cfg, doc/gnutls.texi, lib/gnutls_auth.c, + lib/gnutls_priority.c, lib/gnutls_session.c, lib/openpgp/pgp.c, + lib/openpgp/privkey.c: Typo fixes: successful, precedence, preferred + +2009-12-18 Nikos Mavrogiannopoulos + + * lib/cryptodev.c: define EALG_MAX_BLOCK_LEN if not there. + +2009-12-05 Nikos Mavrogiannopoulos + + * libextra/fipsmd5.c: use C99 initializations + +2009-12-05 Nikos Mavrogiannopoulos + + * NEWS, lib/Makefile.am, lib/compat.c, lib/crypto-api.c, + lib/crypto.c, lib/crypto.h, lib/gnutls_cipher.c, + lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, + lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, + lib/includes/gnutls/crypto.h, lib/includes/gnutls/gnutls.h.in, + lib/libgnutls.map, libextra/fipsmd5.c, src/benchmark.c: Reverted all + previous changes to combine hashes with MAC algorithms. It is now + permissible to register a hash algorithm separately from a MAC. + +2009-12-05 Nikos Mavrogiannopoulos + + * lib/crypto-api.c, lib/crypto.c, lib/crypto.h, + lib/ext_session_ticket.c, lib/gnutls_algorithms.c, + lib/gnutls_algorithms.h, lib/gnutls_cipher.c, + lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, + lib/gnutls_constate.c, lib/gnutls_constate.h, + lib/gnutls_handshake.c, lib/gnutls_hash_int.c, + lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_priority.c, + lib/gnutls_psk_netconf.c, lib/gnutls_sig.c, lib/gnutls_srp.c, + lib/gnutls_state.c, lib/gnutls_ui.c, lib/includes/gnutls/crypto.h, + lib/includes/gnutls/gnutls.h.in, lib/mac-libgcrypt.c, + lib/opencdk/dummy.c, lib/opencdk/filters.h, lib/opencdk/hash.c, + lib/opencdk/kbnode.c, lib/opencdk/main.h, lib/opencdk/opencdk.h, + lib/opencdk/pubkey.c, lib/opencdk/sig-check.c, + lib/opencdk/verify.c, lib/x509/crq.c, lib/x509/pbkdf2-sha1.c, + lib/x509/pkcs12.c, lib/x509/pkcs12_encr.c, lib/x509/privkey.c, + lib/x509/sign.c, lib/x509/verify.c, lib/x509/x509.c, + lib/x509/x509_int.h, libextra/fipsmd5.c, libextra/gnutls_openssl.c: + Revert "Merged the two internal hash API functions, to simplify and + reduce code." This reverts commit bc3e43d5f121e404aa32212dcfcc5027de807056. Conflicts: lib/crypto.c lib/gnutls_cipher.c lib/gnutls_hash_int.c lib/gnutls_hash_int.h lib/includes/gnutls/crypto.h lib/mac-libgcrypt.c + +2009-12-05 Nikos Mavrogiannopoulos + + * lib/gnutls_hash_int.c, lib/includes/gnutls/crypto.h, + lib/mac-libgcrypt.c, libextra/gnutls_openssl.c, tests/gc.c: Revert + "Added plain MD5 hash check and corrected gnutls_hash_fast() usage + in openssl.c" This reverts commit 54486afbfcf3398846d5c20d3094bdb7d0a43ff2. + +2009-12-04 Simon Josefsson + + * doc/examples/ex-x509-info.c: Improve example of printing cert + info. + +2009-12-04 Simon Josefsson + + * doc/gnutls.texi: Typo fix. Reported by Laurence in + + . + +2009-12-04 Nikos Mavrogiannopoulos + + * lib/compat.c, lib/gnutls_algorithms.h: fixes for compilation. + +2009-12-03 Simon Josefsson + + * lib/gnutls_cert.c: Check return value from + gnutls_x509_crt_get_key_usage. + +2009-12-02 Nikos Mavrogiannopoulos + + * NEWS, tests/pathlen/ca-no-pathlen.pem, + tests/pathlen/no-ca-or-pathlen.pem: This is a follow-up to commit + 3d8da5765133c6ced37bf29b5a07f950b8c26cd7, that fixes some issues + with DSA and RSA certificate encoding. Due to that the shown public + key IDs are different than the ones in previous gnutls versions. + +2009-12-02 Nikos Mavrogiannopoulos + + * lib/gnutls_cipher.c: reduced calls to gnutls_hash on + encryption/decryption. Only initialize MAC when needed. + +2009-12-02 Nikos Mavrogiannopoulos + + * lib/gnutls_hash_int.c, lib/includes/gnutls/crypto.h, + lib/mac-libgcrypt.c, libextra/gnutls_openssl.c, tests/gc.c: Added + plain MD5 hash check and corrected gnutls_hash_fast() usage in + openssl.c Corrected new hash API bug that prevented usage of plain + hash functions. + +2009-12-02 Nikos Mavrogiannopoulos + + * NEWS, doc/gnutls.texi, lib/Makefile.am, lib/compat.c, + lib/crypto.c, lib/ext_session_ticket.c, lib/gnutls_algorithms.c, + lib/gnutls_algorithms.h, lib/gnutls_cipher.c, + lib/includes/gnutls/crypto.h, lib/libgnutls.map, + lib/opencdk/read-packet.c, lib/x509/privkey_pkcs8.c, + src/benchmark.c, tests/gc.c: Exported gnutls_cipher_get_block_size() + and all hash functions added to libgnutls.map. Expanded benchmark + with 3DES and ARCFOUR. Corrected test that used non-existing symbol. + +2009-12-02 Nikos Mavrogiannopoulos + + * lib/m4/hooks.m4: Corrected check for cryptodev. Only enable it if + --enable-cryptodev is specified. + +2009-12-01 Nikos Mavrogiannopoulos + + * lib/cryptodev.c, lib/gnutls_cryptodev.h, lib/gnutls_hash_int.c, + lib/gnutls_hash_int.h, lib/mac-libgcrypt.c, lib/x509/mpi.c: + Corrected compilation issues. + +2009-11-30 Nikos Mavrogiannopoulos + + * configure.ac, lib/m4/hooks.m4: Moved cryptodev check to + lib/m4/hooks.m4 and now --enable-cryptodev actually works. + +2009-11-30 Simon Josefsson + + * lib/gnutls_x509.c: Doc fix. + +2009-11-30 Nikos Mavrogiannopoulos + + * lib/cryptodev.c: corrected old type. + +2009-11-30 Nikos Mavrogiannopoulos + + * lib/cryptodev.c: Only include cryptodev.h if cryptodev is there. + +2009-11-29 Nikos Mavrogiannopoulos + + * lib/crypto-api.c, lib/crypto.c, lib/crypto.h, + lib/ext_session_ticket.c, lib/gnutls_algorithms.c, + lib/gnutls_algorithms.h, lib/gnutls_cipher.c, + lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, + lib/gnutls_constate.c, lib/gnutls_constate.h, + lib/gnutls_handshake.c, lib/gnutls_hash_int.c, + lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_priority.c, + lib/gnutls_psk_netconf.c, lib/gnutls_sig.c, lib/gnutls_srp.c, + lib/gnutls_state.c, lib/gnutls_ui.c, lib/includes/gnutls/crypto.h, + lib/includes/gnutls/gnutls.h.in, lib/mac-libgcrypt.c, + lib/opencdk/dummy.c, lib/opencdk/filters.h, lib/opencdk/hash.c, + lib/opencdk/kbnode.c, lib/opencdk/main.h, lib/opencdk/opencdk.h, + lib/opencdk/pubkey.c, lib/opencdk/sig-check.c, + lib/opencdk/verify.c, lib/x509/crq.c, lib/x509/pbkdf2-sha1.c, + lib/x509/pkcs12.c, lib/x509/pkcs12_encr.c, lib/x509/privkey.c, + lib/x509/sign.c, lib/x509/verify.c, lib/x509/x509.c, + lib/x509/x509_int.h, libextra/fipsmd5.c, libextra/gnutls_openssl.c: + Merged the two internal hash API functions, to simplify and reduce + code. gnutls_hmac* and gnutls_hash* were merged to gnutls_hash API. + +2009-11-29 Nikos Mavrogiannopoulos + + * .gitignore, configure.ac, lib/Makefile.am, lib/crypto-api.c, + lib/crypto.c, lib/cryptodev.c, lib/gnutls_cipher_int.c, + lib/gnutls_cryptodev.h, lib/gnutls_errors.c, lib/gnutls_global.c, + lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, + lib/includes/gnutls/crypto.h, lib/includes/gnutls/gnutls.h.in, + lib/libgnutls.map, src/Makefile.am, src/benchmark.c: Added cryptodev + support (/dev/crypto). Tested with + http://www.logix.cz/michal/devel/cryptodev/. Added benchmark + utility for AES. Exported API to access encryption algorithms. + +2009-11-28 Nikos Mavrogiannopoulos + + * NEWS: Documented certtool's certificate request generation fix. + +2009-11-28 Nikos Mavrogiannopoulos + + * lib/x509/mpi.c: Corrected two issues that affected certificate + request generation. 1. Null padding is added on integers (found thanks to Wilankar + Trupti ) 2. In optional SignatureAlgorithm parameters field for DSA keys the + DSA parameters were added. Those were rejected by verisign. Gnutls + no longer adds those parameters there since other implementations + don't do either and having them does not seem to offer anything + (anyway you need the signer's certificate to verify thus public key + will be available). + +2009-11-27 Simon Josefsson + + * doc/manpages/Makefile.am, tests/key-id/key-id, + tests/nist-pkits/gnutls_test_entry, tests/x509paths/chain: More + fixes of grep -q problem. + +2009-11-27 Simon Josefsson + + * NEWS: Add. + +2009-11-24 Nikos Mavrogiannopoulos + + * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, + src/certtool.gaa: Allow exporting of Certificate requests to DER + format. Added option --no-crq-extensions to avoid adding extensions + to a request. + +2009-11-23 Simon Josefsson + + * tests/rfc2253-escape-test: Don't use 'grep -q', to fix portability + to OpenSolaris. Reported by "Dr. David Kirkby" in + + . + +2009-11-16 Simon Josefsson + + * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, + libextra/configure.ac: Bump versions. + +2009-11-15 Simon Josefsson + + * doc/guile.texi: Doc fix. + +2009-11-15 Simon Josefsson + + * gl/Makefile.am, gl/intprops.h, gl/m4/sys_stat_h.m4, + gl/m4/unistd_h.m4, gl/sys_stat.in.h, gl/unistd.in.h, + gl/version-etc.c, lib/gl/Makefile.am, lib/gl/m4/sys_stat_h.m4, + lib/gl/m4/unistd_h.m4, lib/gl/sys_stat.in.h, + lib/gl/tests/intprops.h, lib/gl/unistd.in.h, maint.mk: Update gnulib + files. + +2009-11-09 Simon Josefsson + + * ChangeLog: Generated. + +2009-11-09 Simon Josefsson + + * NEWS: Version 2.9.9. + +2009-11-09 Simon Josefsson + + * build-aux/pmccabe2html, gl/Makefile.am, gl/getpagesize.c, + gl/m4/getpagesize.m4, gl/m4/gnulib-comp.m4, gl/tests/test-fseeko.c, + lib/gl/Makefile.am, lib/gl/getpagesize.c, lib/gl/m4/getpagesize.m4, + lib/gl/m4/gnulib-comp.m4, lib/gl/tests/test-fseeko.c: Update gnulib + files. + +2009-11-09 Simon Josefsson + + * NEWS: Add. + +2009-11-09 Simon Josefsson + + * src/certtool.c: Cleanup header inclusion. + +2009-11-09 Simon Josefsson + + * NEWS: Fix. + +2009-11-06 Nikos Mavrogiannopoulos + + * lib/gnutls_algorithms.c: More dead code removed. Based on + suggestions by Steve Grubb and Tomaz Mraz + +2009-11-06 Simon Josefsson + + * NEWS: Add. + +2009-11-06 Simon Josefsson + + * configure.ac, m4/valgrind.m4: Fix --disable-valgrind-tests. + +2009-11-06 Simon Josefsson + + * gl/tests/Makefile.am: Update gnulib files. + +2009-11-06 Simon Josefsson + + * gl/m4/getaddrinfo.m4, gl/m4/gnulib-comp.m4, maint.mk: Update + gnulib files. + +2009-11-06 Simon Josefsson + + * src/Makefile.am: Link to libgcrypt explicitly when libgcrypt + functions are used. + +2009-11-06 Simon Josefsson + + * src/certtool.c, src/serv.c: Fix libgcrypt usage. + +2009-11-05 Nikos Mavrogiannopoulos + + * lib/gnutls_handshake.c: Simplified code which was based on older + version of internal structures. Based on observations by Steve + Grubb and Tomas Mraz. + +2009-11-05 Nikos Mavrogiannopoulos + + * NEWS: Corrected bug fix author. + +2009-11-05 Nikos Mavrogiannopoulos + + * NEWS: Documented previous commit. + +2009-11-05 Nikos Mavrogiannopoulos + + * lib/auth_cert.c, lib/gnutls_constate.c, lib/gnutls_sig.c, + libextra/gnutls_openssl.c, src/certtool.c, src/cfg/cfg+.c, + src/cfg/platon/str/strdyn.c, src/serv.c: Cleanups and several bug + fixes found by Tomas Mraz. "I've patched the following problems in the code found by review of + gnutls-2.8.5 code done by Steve Grubb. See the patch attached. The gnutls_constate.c bug might be potentially serious so I've + decided to mail it to you directly, not to the public mailing list. The auth_cert.c change is just cleanup of the code. In gnutls_openssl.c I've just fixed the potential crasher, correct + fix would require using asprintf or precomputed length of the buffer + to allocate a memory. The certtool.c change is again just a cleanup." + +2009-11-05 Simon Josefsson + + * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, + libextra/configure.ac: Bump versions. + +2009-11-05 Simon Josefsson + + * ChangeLog: Generated. + +2009-11-05 Simon Josefsson + + * NEWS: Version 2.9.8. + +2009-11-05 Simon Josefsson + + * lib/gl/tests/test-func.c: Update gnulib files. + +2009-11-05 Simon Josefsson + + * gl/m4/gnulib-comp.m4, gl/m4/inet_ntop.m4, gl/m4/inet_pton.m4, + gl/tests/Makefile.am, gl/tests/test-inet_ntop.c, + gl/tests/test-inet_pton.c, gl/tests/test-sys_socket.c, + lib/gl/tests/test-func.c, lib/gl/tests/test-sys_socket.c, + libextra/gl/md5.c: Update gnulib files. + +2009-11-05 Simon Josefsson + + * lib/m4/hooks.m4: Make sure libgcrypt's dependency on libgpg-error + is known. + +2009-11-05 Simon Josefsson + + * doc/manpages/Makefile.am: Fix API name change. + +2009-11-05 Simon Josefsson + + * doc/gnutls.texi: Fix API name change. + +2009-11-05 Simon Josefsson + + * doc/examples/ex-cert-select.c, doc/examples/ex-client-psk.c, + doc/examples/ex-pkcs12.c, doc/examples/ex-serv-anon.c, + doc/examples/ex-serv-export.c, doc/examples/ex-serv-pgp.c, + doc/examples/ex-serv-psk.c, doc/examples/ex-serv-srp.c, + doc/examples/ex-serv1.c, guile/src/core.c, lib/auth_cert.c, + lib/auth_dhe.c, lib/auth_rsa_export.c, lib/auth_srp.c, + lib/auth_srp_passwd.c, lib/auth_srp_rsa.c, lib/ext_cert_type.c, + lib/ext_server_name.c, lib/ext_session_ticket.c, + lib/ext_signature.c, lib/gnutls_algorithms.c, lib/gnutls_buffers.c, + lib/gnutls_cert.c, lib/gnutls_cipher.c, lib/gnutls_errors.c, + lib/gnutls_extensions.c, lib/gnutls_handshake.c, + lib/gnutls_hash_int.c, lib/gnutls_mpi.c, lib/gnutls_priority.c, + lib/gnutls_psk.c, lib/gnutls_record.c, lib/gnutls_session_pack.c, + lib/gnutls_sig.c, lib/gnutls_state.c, lib/gnutls_str.c, + lib/gnutls_supplemental.c, lib/gnutls_ui.c, lib/gnutls_x509.c, + lib/minitasn1/decoding.c, lib/opencdk/armor.c, lib/opencdk/keydb.c, + lib/opencdk/literal.c, lib/opencdk/misc.c, + lib/opencdk/new-packet.c, lib/opencdk/read-packet.c, + lib/opencdk/sig-check.c, lib/opencdk/stream.c, + lib/opencdk/verify.c, lib/openpgp/gnutls_openpgp.c, + lib/openpgp/output.c, lib/openpgp/pgp.c, lib/x509/crq.c, + lib/x509/dn.c, lib/x509/pkcs12.c, lib/x509/pkcs12_bag.c, + lib/x509/privkey_pkcs8.c, lib/x509/verify.c, lib/x509/x509_write.c, + libextra/gl/md5.c, libextra/gnutls_openssl.c, src/certtool-cfg.c, + src/cli.c, src/common.c, src/crypt.c, src/psk.c, src/serv.c, + tests/anonself.c, tests/chainverify.c, tests/crq_apis.c, + tests/cve-2008-4989.c, tests/cve-2009-1415.c, tests/dhepskself.c, + tests/dn2.c, tests/finished.c, tests/hostname-check.c, + tests/mini-eagain.c, tests/mini.c, tests/nul-in-x509-names.c, + tests/openpgpself.c, tests/oprfi.c, tests/pkcs12_encode.c, + tests/pkcs12_s2k.c, tests/pkcs12_s2k_pem.c, tests/pskself.c, + tests/resume.c, tests/tlsia.c, tests/x509_altname.c, + tests/x509dn.c, tests/x509self.c, tests/x509sign-verify.c, + tests/x509signself.c: Indent code. + +2009-11-05 Simon Josefsson + + * doc/examples/ex-cert-select.c, src/cli.c: Fix API name change. + +2009-11-05 Simon Josefsson + + * NEWS, doc/manpages/Makefile.am, lib/ext_signature.c, + lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map: Fix NEWS blurb. + Shorten new API name. + +2009-11-05 Simon Josefsson + + * lib/ext_signature.c: Doc fix, add Since tag. + +2009-11-05 Simon Josefsson + + * lib/ext_signature.c: Indent code. + +2009-11-05 Simon Josefsson + + * gl/m4/inet_ntop.m4, gl/m4/inet_pton.m4: Fix compile error. Tiny patch by Brad Hards in + + . + +2009-11-05 Simon Josefsson + + * lib/ext_signature.c: Fix compile errors. Tiny patch from Brad Hards in + + . + +2009-11-05 Simon Josefsson + + * lib/auth_cert.c: Fix compile errors. Tiny patch from Brad Hards in + + . + +2009-11-05 Simon Josefsson + + * gl/Makefile.am, gl/m4/stdlib_h.m4, gl/stdlib.in.h, + gl/tests/test-getaddrinfo.c, lib/gl/Makefile.am, + lib/gl/m4/stdlib_h.m4, lib/gl/stdlib.in.h: Update gnulib files. + +2009-11-05 Simon Josefsson + + * NEWS: Add. + +2009-11-05 Simon Josefsson + + * lib/po/vi.po.in: Sync with TP. + +2009-11-03 Simon Josefsson + + * doc/examples/Makefile.am, src/Makefile.am, tests/Makefile.am: Use + INET_NTOP_LIB and INET_PTON_LIB. + +2009-11-03 Simon Josefsson + + * build-aux/pmccabe2html, build-aux/useless-if-before-free, + gl/m4/fseeko.m4, gl/m4/gnulib-comp.m4, gl/m4/inet_ntop.m4, + gl/m4/inet_pton.m4, gl/m4/pmccabe2html.m4, gl/m4/ungetc.m4, + gl/sockets.c, gl/stdio.in.h, gl/sys_stat.in.h, + gl/tests/test-arpa_inet.c, gl/tests/test-getaddrinfo.c, + gl/tests/test-getdelim.c, gl/tests/test-getline.c, + gl/tests/test-gettimeofday.c, gl/tests/test-memchr.c, + gl/tests/test-netinet_in.c, gl/tests/test-select-stdin.c, + gl/tests/test-select.c, gl/tests/test-sockets.c, + gl/tests/test-stddef.c, gl/tests/test-stdint.c, + gl/tests/test-stdio.c, gl/tests/test-stdlib.c, + gl/tests/test-strerror.c, gl/tests/test-string.c, + gl/tests/test-sys_select.c, gl/tests/test-sys_socket.c, + gl/tests/test-sys_stat.c, gl/tests/test-sys_time.c, + gl/tests/test-time.c, gl/tests/test-unistd.c, + gl/tests/test-version-etc.c, gl/tests/test-wchar.c, + lib/gl/m4/fseeko.m4, lib/gl/m4/ungetc.m4, lib/gl/sockets.c, + lib/gl/stdio.in.h, lib/gl/sys_stat.in.h, + lib/gl/tests/test-memchr.c, lib/gl/tests/test-sockets.c, + lib/gl/tests/test-stddef.c, lib/gl/tests/test-stdint.c, + lib/gl/tests/test-stdio.c, lib/gl/tests/test-stdlib.c, + lib/gl/tests/test-string.c, lib/gl/tests/test-strverscmp.c, + lib/gl/tests/test-sys_socket.c, lib/gl/tests/test-sys_stat.c, + lib/gl/tests/test-time.c, lib/gl/tests/test-unistd.c, + lib/gl/tests/test-wchar.c, libextra/gl/md5.c, maint.mk: Update + gnulib files. + +2009-11-02 Simon Josefsson + + * NEWS: Fix. + +2009-11-02 Simon Josefsson + + * tests/chainverify.c: Fix time bomb in chainverify self-test. Reported by Andreas Metzler in + + . + +2009-11-01 Nikos Mavrogiannopoulos + + * NEWS: Documented change for certificate retrieval callbacks. + +2009-11-01 Nikos Mavrogiannopoulos + + * src/cli.c: do not use gnutls_x509_crt_get_signature_algorithm() on + null certificates. + +2009-11-01 Nikos Mavrogiannopoulos + + * lib/auth_cert.c: Do not check signature algorithms for certificate + selection when using openpgp certificates. + +2009-11-01 Nikos Mavrogiannopoulos + + * doc/manpages/gnutls-cli.1: Avoid code duplication by using all the + functions defined in gnutls_algorithms to map from TLS 1.2 signature + algorithm numbers to gnutls signature algorithms. Added minimal documentation for SIGN-* in gnutls-cli priority + strings. Corrected bug in signature algorithm extension generation. + +2009-11-01 Nikos Mavrogiannopoulos + + * lib/auth_cert.c, lib/auth_dhe.c, lib/ext_signature.c, + lib/ext_signature.h, lib/gnutls_algorithms.c, + lib/gnutls_algorithms.h, lib/gnutls_int.h, lib/gnutls_sig.c: Avoid + code duplication by using all the functions defined in + gnutls_algorithms to map from TLS 1.2 signature algorithm numbers to + gnutls signature algorithms. Added minimal documentation for SIGN-* in gnutls-cli priority + strings. Corrected bug in signature algorithm extension generation. + +2009-11-01 Nikos Mavrogiannopoulos + + * lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa_export.c, + lib/auth_srp_rsa.c, lib/gnutls_sig.c, lib/gnutls_sig.h: Rationalized + function names for signature generation and verification during + handshake. _gnutls_tls_sign_hdata -> + _gnutls_handshake_sign_cert_vrfy _gnutls_verify_sig_hdata -> + _gnutls_handshake_verify_cert_vrfy _gnutls_tls_sign_params -> + _gnutls_handshake_sign_data _gnutls_verify_sig_params -> + _gnutls_handshake_verify_data + +2009-11-01 Nikos Mavrogiannopoulos + + * lib/ext_signature.c: Do not output error if a server replies with + a SignatureAlgorithms extension. + +2009-11-01 Nikos Mavrogiannopoulos + + * tests/dn2.c, tests/pathlen/ca-no-pathlen.pem: RSA_SHA -> RSA_SHA1 + +2009-11-01 Nikos Mavrogiannopoulos + + * NEWS: Documented memory leak fix. + +2009-11-01 Nikos Mavrogiannopoulos + + * NEWS, doc/examples/ex-cert-select.c, doc/gnutls.texi, + lib/auth_cert.c, lib/ext_cert_type.c, lib/ext_cert_type.h, + lib/ext_signature.c, lib/ext_signature.h, lib/gnutls_alert.c, + lib/gnutls_sig.c, lib/gnutls_state.c, lib/gnutls_state.h, + lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, src/cli.c: Final + touch on signature algorithms in TLS 1.2 support. Added function + gnutls_session_sign_algorithm_get_requested() for callbacks to be + able to verify they return a correct certificate as well as + documentation for its usage. + +2009-11-01 Nikos Mavrogiannopoulos + + * lib/Makefile.am, lib/auth_cert.c, lib/auth_cert.h, + lib/ext_signature.c, lib/ext_signature.h, lib/gnutls_algorithms.c, + lib/gnutls_algorithms.h, lib/gnutls_cert.c, lib/gnutls_cert.h, + lib/gnutls_errors.c, lib/gnutls_extensions.c, + lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_priority.c, + lib/gnutls_sig.c, lib/gnutls_sig.h, lib/gnutls_state.c, + lib/gnutls_state.h, lib/gnutls_x509.c, + lib/includes/gnutls/gnutls.h.in, lib/openpgp/gnutls_openpgp.c: + Improved TLS 1.2 support. Added support for the SignatureAlgorithm + extension as well for the SignatureAlgorithm in certificate request. Limitation for TLS 1.2 clients: Only SHA1 or SHA256 are supported for generating signatures in + certificate verify message. That is to avoid storing all handshake + messages in memory. To be reconsidered in the future. + +2009-11-01 Nikos Mavrogiannopoulos + + * lib/gnutls_global.c: fixes in order to compile with -Werror + +2009-10-31 Nikos Mavrogiannopoulos + + * lib/ext_cert_type.c, lib/gnutls_cipher.c: remove unnessesary + warning. + +2009-10-31 Nikos Mavrogiannopoulos + + * lib/ext_cert_type.c: correctly check extension size. + +2009-10-28 Nikos Mavrogiannopoulos + + * NEWS, lib/gnutls_handshake.c: When resuming a session do not + overwrite the initial session data with resumed session data. + Discovered on discussion at help-gnutls with Sebastien Decugis. + +2009-10-26 Simon Josefsson + + * lib/gnutls_cipher.c, lib/gnutls_handshake.c, src/certtool.c: Fix + code style so it compiles with gcc 4.4 with warnings. + +2009-10-26 Simon Josefsson + + * gl/Makefile.am, gl/m4/sys_stat_h.m4, gl/sys_stat.in.h, + lib/gl/Makefile.am, lib/gl/m4/sys_stat_h.m4, lib/gl/sys_stat.in.h: + Update gnulib files. + +2009-10-26 Simon Josefsson + + * .gitignore: Drop unknown mini-hfail. + +2009-10-26 Simon Josefsson + + * NEWS: Add. + +2009-10-25 Daiki Ueno + + * lib/gnutls_handshake.c: Enable ClientHello to carry arbitrary + length extension data. + +2009-10-25 Nikos Mavrogiannopoulos + + * lib/includes/gnutls/pkcs12.h, lib/pkix.asn, lib/pkix_asn1_tab.c, + lib/x509/pkcs12.c, lib/x509/pkcs12_bag.c, lib/x509/x509_int.h, + src/certtool.c: Added GNUTLS_BAG_SECRET that adds support for + storing a randomly generated key into a PKCS-12 structure. This is a + gnutls extension, since PKCS-12 does not specify what should be in + the secret bag. What we do is store the key as OCTET string and + specify an OID of the PKCS-9 random nonce. + +2009-10-25 Nikos Mavrogiannopoulos + + * NEWS, lib/x509/privkey_pkcs8.c: Corrected warnings in picky + compilers and rearanged code. + +2009-10-24 Nikos Mavrogiannopoulos + + * doc/manpages/certtool.1, lib/cipher-libgcrypt.c, + lib/gnutls_algorithms.c, lib/includes/gnutls/gnutls.h.in, + lib/includes/gnutls/x509.h, lib/pkix.asn, lib/pkix_asn1_tab.c, + lib/x509/pkcs12_bag.c, lib/x509/privkey_pkcs8.c, + lib/x509/x509_int.h, src/certtool-gaa.c, src/certtool-gaa.h, + src/certtool.c, src/certtool.gaa: Added support for the AES family + of ciphers in the PKCS8 and 12 encryption options. + +2009-10-24 Nikos Mavrogiannopoulos + + * .gitignore: Do not print auto-generated files. + +2009-10-23 Simon Josefsson + + * THANKS: Add. + +2009-10-23 Simon Josefsson + + * lib/gnutlsxx.cpp: Fix forgotten braces. Reported by Jason Pettiss . + +2009-10-23 Simon Josefsson + + * lib/gnutlsxx.cpp: Indent code. + +2009-10-22 Nikos Mavrogiannopoulos + + * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cipher.c, + lib/gnutls_handshake.c, lib/gnutls_handshake.h, + lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, + lib/gnutls_sig.c, lib/gnutls_state.c: 1. Fix for memory leaks on interrupted handshake. 2. Fixes issue where a TLS 1.2 client will wrongly calculate hashes + if the server will select a different than 1.2 protocol. 3. In TLS 1.2 when a certificate request is sent, support is not + complete. In that case abort the handshake. By checking TLS 1.2 it + seems that the algorithms to be used for the signature in the + certificate verify message are negotiated not at the client/server + hello messages but rather selected by the server at the certificate + request. This might not look as bad, but since in this message we + have to sign all previous handshake messages, it forces us to keep + all the handshake messages into a buffer until this point... I don't + know who proposed this change to the TLS WG, but it seems it wasn't + really thought of. + +2009-10-20 Simon Josefsson + + * tests/chainverify.c: Fix expired cert. + +2009-10-16 Simon Josefsson + + * src/cli.c: Make sure we use libgcrypt correctly. + +2009-10-15 Simon Josefsson + + * gl/m4/time_h.m4: Update gnulib files. + +2009-10-15 Simon Josefsson + + * gl/Makefile.am, gl/m4/gnulib-comp.m4, gl/m4/sys_stat_h.m4, + gl/sys_stat.in.h, gl/tests/Makefile.am, gl/tests/test-sys_stat.c, + gl/tests/test-time.c, gl/time.in.h, gl/unistd.in.h, + lib/gl/Makefile.am, lib/gl/m4/gnulib-comp.m4, + lib/gl/m4/sys_stat_h.m4, lib/gl/sys_stat.in.h, + lib/gl/tests/test-sys_stat.c, lib/gl/unistd.in.h: Update gnulib + files. + +2009-10-15 Simon Josefsson + + * lib/libgnutlsxx.map: Export C++ symbol visibility. Tiny patch from Boyan Kasarov . + +2009-10-14 Simon Josefsson + + * lib/pkix_asn1_tab.c: Regenerate. + +2009-10-14 Simon Josefsson + + * NEWS: Add. + +2009-10-14 Simon Josefsson + + * tests/pkcs12_encode.c: Fix MAC password. + +2009-10-14 Simon Josefsson + + * tests/pkcs12_encode.c: Use better friendly names. + +2009-10-14 Simon Josefsson + + * tests/Makefile.am, tests/pkcs12_encode.c: Add self test to test + PKCS#12 functions. + +2009-10-14 Simon Josefsson + + * lib/pkix.asn: Work around 'Cannot find OID: 1.2.840.113549.1.9.21' + PKCS#12 problem. Reported by Michael Welsh Duggan in + . + +2009-10-14 Simon Josefsson + + * doc/gnutls.texi: Mention that sometimes CA certs needs to be + included in PKCS#12 files. Reported by Ivars Suba . + +2009-10-07 Simon Josefsson + + * lib/gnutls_priority.c: After setting priorities using new API, + update current TLS version. + +2009-10-06 Simon Josefsson + + * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, + libextra/configure.ac: Bump versions. + +2009-10-06 Simon Josefsson + + * ChangeLog: Generated. + +2009-10-06 Simon Josefsson + + * NEWS: Version 2.9.7. + +2009-10-06 Simon Josefsson + + * gl/Makefile.am, gl/m4/gnulib-comp.m4, gl/m4/stdio_h.m4, + gl/m4/unistd_h.m4, gl/progname.c, gl/stdio.in.h, gl/unistd.in.h, + lib/gl/Makefile.am, lib/gl/m4/stdio_h.m4, lib/gl/m4/unistd_h.m4, + lib/gl/stdio.in.h, lib/gl/unistd.in.h, maint.mk: Update gnulib + files. + +2009-10-06 Simon Josefsson + + * NEWS: Add. + +2009-10-06 Simon Josefsson + + * lib/libgnutlsxx.map: Fix symbol export rules. Tiny patch by Boyan Kasarov . + +2009-10-06 Simon Josefsson + + * lib/gnutlsxx.cpp: Include config.h. Tiny patch from Boyan Kasarov . + +2009-10-01 Daiki Ueno + + * lib/gnutls_sig.c: Reserve enough room for hash buffers. This fixes x509self self-test. + +2009-09-30 Simon Josefsson + + * gl/Makefile.am, gl/m4/sys_stat_h.m4, gl/m4/unistd_h.m4, + gl/tests/Makefile.am, gl/unistd.in.h, lib/gl/Makefile.am, + lib/gl/m4/sys_stat_h.m4, lib/gl/m4/unistd_h.m4, + lib/gl/tests/Makefile.am, lib/gl/unistd.in.h: Update gnulib files. + +2009-09-30 Simon Josefsson + + * NEWS: Add. + +2009-09-30 Simon Josefsson + + * lib/gnutls_priority.c: Attempt to negotiate TLS 1.2 by default. + +2009-09-30 Simon Josefsson + + * NEWS: Add. + +2009-09-30 Simon Josefsson + + * lib/auth_cert.c: Fix comment. + +2009-09-30 Daiki Ueno + + * lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa_export.c, + lib/auth_srp_rsa.c, lib/gnutls_sig.c, lib/gnutls_sig.h: Fix + server-side TLS 1.2 support. + +2009-09-30 Daiki Ueno + + * lib/gnutls_sig.c: Calculate DER-encoded DigestInfo on-the-fly + rather than hard code it. + +2009-09-28 Ludovic Courtès + + * configure.ac, guile/src/core.c: guile: Adjust for Guile 1.9.3+. * guile/src/core.c (mark_session_record_port, + free_session_record_port): Conditionalize on `SCM_MAJOR_VERSION == 1 + && SCM_MINOR_VERSION <= 8'. (scm_init_gnutls_session_record_port_type): Adjust accordingly. (make_session_record_port): Use `scm_gc_malloc_pointerless ()' + when available. + +2009-09-28 Ludovic Courtès + + * guile/src/core.c: guile: Syntactic nitpicking. * guile/src/core.c (SCM_GNUTLS_MAKE_SESSION_DATA, SCM_GNUTLS_SET_SESSION_RECORD_PORT): Remove extraneous semicolon. + +2009-09-28 Ludovic Courtès + + * guile/src/core.c: guile: Use Guile's malloc routines. * guile/src/core.c (scm_init_gnutls): Use Guile's malloc routines. + +2009-09-23 Simon Josefsson + + * lib/ext_server_name.c: Clarify gnutls_server_name_set usage. Reported by Daniel Black in + + . + +2009-09-23 Ludovic Courtès + + * guile/src/core.c: Fix integer/pointer cast warnings in the Guile + bindings on x86_64. * guile/src/core.c (do_fill_port, fill_session_record_port_input, scm_gnutls_set_session_transport_fd_x): Make sure pointer/integer + casts use integers of the right size. + +2009-09-23 Ludovic Courtès + + * guile/src/extra.c: Update Guile bindings to the current OpenPGP + API. * guile/src/extra.c (scm_gnutls_openpgp_certificate_id, scm_gnutls_openpgp_certificate_id_x): Use the newer `gnutls_openpgp_crt_get_key_id ()'. + +2009-09-23 Ludovic Courtès + + * doc/Makefile.am, guile/src/Makefile.am, guile/tests/Makefile.am: + Turn off auto-compilation when using Guile 1.9+. * guile/src/Makefile.am (GUILE_FOR_BUILD): Turn off auto-compilation with Guile 1.9+. * guile/tests/Makefile.am (TESTS_ENVIRONMENT): Likewise. * doc/Makefile.am (GUILE_FOR_BUILD): Likewise. + +2009-09-23 Ludovic Courtès + + * guile/src/core.c, guile/src/errors.c, guile/src/extra.c, + guile/src/utils.c, guile/src/utils.h: Fix inclusion of in + Guile bindings. * guile/src/core.c, guile/src/errors.c, guile/src/extra.c, guile/src/utils.c: Include first, as suggested by Simon Josefsson. * guile/src/utils.h: Don't include . + +2009-09-22 Simon Josefsson + + * gl/unistd.in.h, lib/gl/unistd.in.h: Update gnulib files. + +2009-09-22 Simon Josefsson + + * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, + libextra/configure.ac: Bump versions. + +2009-09-22 Simon Josefsson + + * build-aux/gendocs.sh: Chmod. + +2009-09-22 Simon Josefsson + + * ChangeLog: Generated. + +2009-09-22 Simon Josefsson + + * NEWS: Version 2.9.6. + +2009-09-22 Simon Josefsson + + * gl/Makefile.am, gl/m4/getdelim.m4, gl/m4/stdio_h.m4, + gl/m4/stdlib_h.m4, gl/m4/sys_stat_h.m4, gl/m4/unistd_h.m4, + gl/stdio.in.h, gl/stdlib.in.h, gl/sys_stat.in.h, gl/unistd.in.h, + lib/gl/Makefile.am, lib/gl/m4/stdio_h.m4, lib/gl/m4/stdlib_h.m4, + lib/gl/m4/sys_stat_h.m4, lib/gl/m4/unistd_h.m4, lib/gl/stdio.in.h, + lib/gl/stdlib.in.h, lib/gl/sys_stat.in.h, lib/gl/unistd.in.h, + maint.mk: Update gnulib files. + +2009-09-13 Brad Hards + + * lib/x509/x509.c: Add forgotten documentation bits for issuer + altname Signed-off-by: Simon Josefsson + +2009-09-11 Simon Josefsson + + * build-aux/gendocs.sh, gl/m4/getaddrinfo.m4, gl/m4/getline.m4, + gl/m4/readline.m4, gl/m4/select.m4, gl/m4/sockets.m4, + gl/m4/socklen.m4, gl/m4/sockpfaf.m4, lib/gl/m4/sockets.m4, + lib/gl/m4/socklen.m4, lib/gl/m4/sockpfaf.m4, lib/gl/m4/time_r.m4: + Update gnulib files. + +2009-09-11 Simon Josefsson + + * lib/gnutls_cipher.c: Add debug message. Tiny patch from Miroslav + Kratochvil in + . + +2009-09-11 Daiki Ueno + + * lib/Makefile.am: Fix out-of-tree build. Fix out-of-tree build; gnutls.h is generated in the build tree. + +2009-09-10 Simon Josefsson + + * NEWS, lib/m4/hooks.m4: Enable Camellia by default. + +2009-09-10 Simon Josefsson + + * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, + libextra/configure.ac: Bump versions. + +2009-09-10 Simon Josefsson + + * ChangeLog: Generated. + +2009-09-10 Simon Josefsson + + * NEWS: Version 2.9.5. + +2009-09-10 Simon Josefsson + + * configure.ac: Bump version. + +2009-09-10 Simon Josefsson + + * gl/Makefile.am, gl/m4/stdio_h.m4, gl/m4/string_h.m4, + gl/m4/sys_stat_h.m4, gl/m4/unistd_h.m4, gl/stdio.in.h, + gl/string.in.h, gl/sys_stat.in.h, gl/unistd.in.h, + lib/gl/Makefile.am, lib/gl/m4/stdio_h.m4, lib/gl/m4/string_h.m4, + lib/gl/m4/sys_stat_h.m4, lib/gl/m4/unistd_h.m4, lib/gl/stdio.in.h, + lib/gl/string.in.h, lib/gl/sys_stat.in.h, lib/gl/unistd.in.h, + maint.mk: Update gnulib files. + +2009-09-10 Simon Josefsson + + * NEWS: Add. + +2009-09-10 Simon Josefsson + + * AUTHORS: Add. + +2009-09-10 Simon Josefsson + + * lib/m4/hooks.m4: Bump library version for new APIs. + +2009-09-10 Simon Josefsson + + * lib/x509/output.c, lib/x509/x509.c: Indent. + +2009-09-10 Simon Josefsson + + * lib/libgnutls.map: Move the new ABIs to the GNUTLS_2_10 section. + +2009-09-09 Brad Hards + + * doc/manpages/Makefile.am, lib/includes/gnutls/x509.h, + lib/libgnutls.map, lib/x509/output.c, lib/x509/x509.c, + tests/Makefile.am, tests/x509_altname.c: Add X509 Issuer Altname + functions Signed-off-by: Simon Josefsson + +2009-09-07 Simon Josefsson + + * tests/key-id/key-id: Don't use ! to negate exit status. Reported + by "Tom G. Christensen" in + + . + +2009-09-03 Simon Josefsson + + * gl/Makefile.am, gl/close.c, gl/inet_ntop.c, gl/inet_pton.c, + gl/m4/sys_stat_h.m4, gl/sys_stat.in.h, gl/tests/Makefile.am, + gl/unistd.in.h, lib/gl/Makefile.am, lib/gl/m4/sys_stat_h.m4, + lib/gl/sys_stat.in.h, lib/gl/unistd.in.h, maint.mk: Update gnulib + files. + +2009-09-03 Simon Josefsson + + * NEWS, lib/configure.ac, lib/m4/hooks.m4, libextra/configure.ac: + Bump versions. + +2009-09-03 Simon Josefsson + + * cfg.mk: Commit cyclo/ dir too. + +2009-09-03 Simon Josefsson + + * ChangeLog: Generated. + +2009-09-03 Simon Josefsson + + * NEWS: Version 2.9.4. + +2009-09-03 Simon Josefsson + + * tests/hostname-check.c: Build when OpenPGP is disabled. + +2009-09-03 Simon Josefsson + + * cfg.mk: Fix! + +2009-09-03 Simon Josefsson + + * cfg.mk: Typo. + +2009-09-03 Simon Josefsson + + * cfg.mk: Ugly hack for autobuilder. + +2009-09-01 Simon Josefsson + + * NEWS: Add. + +2009-09-01 Simon Josefsson + + * lib/gnutls_priority.c: Use SHA256 as MAC by default. + +2009-09-01 Simon Josefsson + + * NEWS: Add. + +2009-09-01 Daiki Ueno + + * lib/gnutls_algorithms.c: Add SHA-2 cipher suites. Signed-off-by: Simon Josefsson + +2009-09-01 Daiki Ueno + + * lib/debug.c: Print NewSessionTicket handshake. Signed-off-by: Simon Josefsson + +2009-08-31 Simon Josefsson + + * NEWS: Add. + +2009-08-31 Simon Josefsson + + * lib/x509/x509.c: Handle XMPP SANs properly. Reported by Howard + Chu in . + +2009-08-31 Simon Josefsson + + * lib/auth_dhe.c: Need another header. + +2009-08-31 Simon Josefsson + + * AUTHORS, NEWS: Add. + +2009-08-31 Simon Josefsson + + * lib/gnutls_algorithms.c: Add comment explaining where magic values + come from. + +2009-08-31 Daiki Ueno + + * lib/auth_cert.c: Fix parsing Certificate Request for TLS 1.2. Fix the logic to skip supported_signature_algorithms in Certificate + Request. Signed-off-by: Simon Josefsson + +2009-08-31 Daiki Ueno + + * lib/gnutls_handshake.c, lib/gnutls_pk.c, lib/gnutls_state.c: Use + SHA256 for PRF if TLS 1.2. Use SHA256 for the basis of PRF, and for the hash over handshake + messages. Signed-off-by: Simon Josefsson + +2009-08-31 Daiki Ueno + + * lib/auth_dhe.c, lib/auth_rsa_export.c, lib/auth_srp_rsa.c, + lib/gnutls_sig.c, lib/gnutls_sig.h: Respect TLS signature algorithm + in server KX. Verify signature of DH parameters in Server Key Exchange with the + embedded signature algorithm. Signed-off-by: Simon Josefsson + +2009-08-31 Daiki Ueno + + * lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, + lib/gnutls_int.h: Add functions for TLS signature algorithm. Add functions to convert TLS signature algorithm from/to constants + defined by GnuTLS. Signed-off-by: Simon Josefsson + +2009-08-31 Simon Josefsson + + * NEWS: Add. + +2009-08-31 Simon Josefsson + + * maint.mk: Update gnulib files. + +2009-08-31 Simon Josefsson + + * THANKS: Add. + +2009-08-25 Fabian Keil + + * src/serv.c: Remove dead store in listen_socket(). Signed-off-by: Simon Josefsson + +2009-08-25 Fabian Keil + + * lib/gnutls_buffers.c: Remove dead store in + _gnutls_io_write_buffered(). Signed-off-by: Simon Josefsson + +2009-08-24 Fabian Keil + + * lib/x509/x509.c: Remove dead store in + gnutls_x509_crt_list_import(). Signed-off-by: Simon Josefsson + +2009-08-24 Fabian Keil + + * lib/auth_srp_passwd.c: Remove dead store in pwd_put_values(). Signed-off-by: Simon Josefsson + +2009-08-24 Fabian Keil + + * src/certtool.c: Remove dead store in pkcs12_info(). Signed-off-by: Simon Josefsson + +2009-08-25 Fabian Keil + + * lib/auth_cert.c: Remove write-only variable info in + _gnutls_proc_cert_cert_req(). Signed-off-by: Simon Josefsson + +2009-08-25 Fabian Keil + + * lib/auth_rsa_export.c: Remove write-only variable info in + gen_rsa_export_server_kx(). Signed-off-by: Simon Josefsson + +2009-08-25 Fabian Keil + + * src/cfg/shared.c: Remove write-only variable sep_ar_idx in + split_multi_arg(). Signed-off-by: Simon Josefsson + +2009-08-24 Fabian Keil + + * lib/x509/pkcs12.c: Remove write-only variable tmp_size in + _pkcs12_decode_safe_content(). Signed-off-by: Simon Josefsson + +2009-08-29 Fabian Keil + + * THANKS: Remove duplicates. Two exact ones and a pretty close one. Signed-off-by: Simon Josefsson + +2009-08-25 Fabian Keil + + * lib/auth_srp_passwd.c: Mark what looks like a bug in in + _gnutls_srp_pwd_read_entry() Signed-off-by: Simon Josefsson + +2009-08-24 Fabian Keil + + * src/crypt.c: In main(), rename salt to salt_size and don't bother + reading info.salt which we don't use anyway. Signed-off-by: Simon Josefsson + +2009-08-31 Simon Josefsson + + * lib/opencdk/misc.c: (cdk_strlist_next): Handle NULL root value better. Based on report + by Fabian Keil . + +2009-08-24 Fabian Keil + + * lib/x509/output.c: In print_extensions(), declare the *_idx + variables as int instead of size_t. While it shouldn't make a difference, it makes more sense to me. + It's also consistent with (at least) print_crl(). Signed-off-by: Simon Josefsson + +2009-08-24 Fabian Keil + + * lib/x509/output.c: In print_extensions(), initialize *_idx + variables once before entering the for loop instead of each run. Otherwise checking them is pointless as they always will be zero. Signed-off-by: Simon Josefsson + +2009-08-24 Fabian Keil + + * lib/x509/output.c: In print_crq(), initialize challenge and + extensions once before entering the for loop instead of each run. Signed-off-by: Simon Josefsson + +2009-08-24 Fabian Keil + + * lib/x509/output.c: In print_crl(), initialize aki_idx and crl_nr + once before entering the for loop instead of each run. Otherwise the "error: more than one AKI extension\n" and "error: + more than one CRL number\n" checks want work. Signed-off-by: Simon Josefsson + +2009-08-28 Simon Josefsson + + * tests/x509dn.c: Likewise. + +2009-08-28 Simon Josefsson + + * tests/x509dn.c: Don't use deprecated type. + +2009-08-28 Simon Josefsson + + * cfg.mk: Overwrite gettext's size_max.m4 to make sure we use one + that works. + +2009-08-28 Simon Josefsson + + * gl/Makefile.am, gl/m4/gnulib-comp.m4, gl/m4/stdlib_h.m4, + gl/m4/sys_socket_h.m4, gl/m4/unistd_h.m4, gl/progname.c, + gl/stdlib.in.h, gl/sys_socket.in.h, gl/tests/Makefile.am, + gl/unistd.in.h, gl/vasnprintf.c, lib/gl/Makefile.am, + lib/gl/m4/stdlib_h.m4, lib/gl/m4/sys_socket_h.m4, + lib/gl/m4/unistd_h.m4, lib/gl/stdlib.in.h, lib/gl/sys_socket.in.h, + lib/gl/tests/test-func.c, lib/gl/unistd.in.h, lib/gl/vasnprintf.c, + libextra/gl/override/lib/md5.c.diff: Update gnulib files. + +2009-08-28 Simon Josefsson + + * configure.ac, lib/configure.ac, lib/gnutls_handshake.c, + lib/gnutls_handshake.h, lib/gnutls_str.h, lib/opencdk/Makefile.am, + lib/x509/privkey_pkcs8.c, libextra/configure.ac: Fix use of + deprecated types, for now and the future. + +2009-08-28 Simon Josefsson + + * NEWS: Add. + +2009-08-28 Simon Josefsson + + * lib/x509/crq.c: Fix gnutls_datum usage. + +2009-08-28 Simon Josefsson + + * lib/gnutls_buffers.c, lib/gnutls_pk.c, lib/gnutls_str.c, + lib/gnutls_x509.c, lib/includes/gnutls/gnutls.h.in, + lib/opencdk/pubkey.c, lib/openpgp/gnutls_openpgp.c, + lib/x509/common.c, lib/x509/extensions.c, lib/x509/mpi.c, + lib/x509/privkey_pkcs8.c, lib/x509/x509_write.c, src/certtool.c, + tests/openpgp_test.c, tests/resume.c, tests/x509_test.c, + tests/x509dn.c, tests/x509sign-verify.c: Fix deprecated usage of + gnutls_datum. + +2009-08-27 Dan Fandrich + + * lib/opencdk/new-packet.c, lib/opencdk/packet.h, + lib/opencdk/pubkey.c, lib/opencdk/read-packet.c, + lib/opencdk/stream.c, lib/opencdk/stream.h, lib/opencdk/verify.c, + lib/x509/crq.c: Fix compiler warning bugs for OpenWatcom. Signed-off-by: Simon Josefsson + +2009-08-25 Daiki Ueno + + * tests/resume.c: Fix double-free Signed-off-by: Simon Josefsson + +2009-08-24 Simon Josefsson + + * .gitattributes: Disable whitespace for file that need it. + +2009-08-20 Simon Josefsson + + * tests/hostname-check.c: Add check of OpenPGP cert too. + +2009-08-20 Simon Josefsson + + * THANKS: Add. + +2009-08-20 Simon Josefsson + + * libextra/gl/override/lib/md5.c.diff: Work around whitespace commit + hook. + +2009-08-20 Simon Josefsson + + * gl/Makefile.am, gl/m4/stdio_h.m4, gl/select.c, gl/stdio.in.h, + lib/gl/Makefile.am, lib/gl/m4/stdio_h.m4, lib/gl/stdio.in.h, + maint.mk: Update gnulib files. + +2009-08-20 Simon Josefsson + + * libextra/gl/gnulib.mk, libextra/gl/m4/gnulib-cache.m4, + libextra/gl/md5.c, libextra/gl/override/lib/md5.c.diff: Reduce stack + usage and remove code. + +2009-08-20 Simon Josefsson + + * lib/gnutls_int.h: Remove unused constant. + +2009-08-20 Simon Josefsson + + * lib/gnutls_errors.c: Reduce stack usage. + +2009-08-20 Simon Josefsson + + * lib/openpgp/pgp.c: Fix OpenPGP hostname comparison. + +2009-08-20 Simon Josefsson + + * lib/openpgp/output.c, lib/openpgp/pgp.c: Reduce stack usage. + +2009-08-20 Simon Josefsson + + * lib/x509/output.c: Reduce stack usage. + +2009-08-20 Simon Josefsson + + * .x-sc_m4_quote_check, lib/gnutls_sig.c, + lib/opencdk/write-packet.c: Fix syntax-check nits. + +2009-08-20 Daiki Ueno + + * lib/libgnutls.map, lib/opencdk/keydb.c, tests/dn2.c, tests/mpi.c, + tests/resume.c: Fix memleaks. Signed-off-by: Simon Josefsson + +2009-08-19 Simon Josefsson + + * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, + libextra/configure.ac: Bump versions. + +2009-08-19 Simon Josefsson + + * doc/gnutls.texi: Fix references. + +2009-08-19 Simon Josefsson + + * cfg.mk: Also commit devel/ web pages. + +2009-08-19 Simon Josefsson + + * ChangeLog: Fix ChangeLog. + +2009-08-19 Simon Josefsson + + * ChangeLog: Generated. + +2009-08-19 Simon Josefsson + + * NEWS: Version 2.9.3. + +2009-08-19 Simon Josefsson + + * lib/ext_session_ticket.c: Typo. + +2009-08-19 Simon Josefsson + + * lib/gnutls_sig.c: Need gnutls_algorithms.h for prototypes. + +2009-08-19 Simon Josefsson + + * AUTHORS: Add. + +2009-08-18 Jonathan Bastien-Filiatrault + + * lib/auth_cert.c, lib/gnutls_algorithms.c, + lib/gnutls_algorithms.h, lib/gnutls_cipher.c, + lib/gnutls_handshake.c, lib/gnutls_sig.c, lib/gnutls_state.c: + Replace explicit version checks with feature checks Signed-off-by: Simon Josefsson + +2009-08-19 Simon Josefsson + + * doc/gnutls.texi: Reformat paragraphs. + +2009-08-19 Simon Josefsson + + * doc/manpages/Makefile.am, src/cli-gaa.c, src/cli-gaa.h, + src/serv-gaa.c, src/serv-gaa.h: Generated. + +2009-08-19 Simon Josefsson + + * doc/gnutls.texi: Typo. + +2009-08-19 Simon Josefsson + + * doc/gnutls.texi: Add cross reference. + +2009-08-19 Simon Josefsson + + * doc/gnutls.texi: Add. + +2009-08-19 Simon Josefsson + + * doc/reference/gnutls-docs.sgml, lib/ext_session_ticket.c: Fix + GTK-DOC output. + +2009-08-19 Simon Josefsson + + * NEWS: Add. + +2009-08-19 Simon Josefsson + + * lib/libgnutls.map: Fix namespace of new APIs. + +2009-08-19 Simon Josefsson + + * lib/ext_session_ticket.c, lib/gnutls_extensions.c, + lib/gnutls_session_pack.c: Fix whitespace. + +2009-08-19 Daiki Ueno + + * doc/TODO, lib/Makefile.am, lib/ext_session_ticket.c, + lib/ext_session_ticket.h, lib/gnutls_constate.c, + lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_session_pack.c, lib/gnutls_state.c, + lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, + lib/m4/hooks.m4, src/cli.c, src/cli.gaa, src/serv.c, src/serv.gaa, + tests/resume.c: session ticket support Signed-off-by: Simon Josefsson + +2009-08-19 Simon Josefsson + + * cfg.mk: Fix indent rule. + +2009-08-19 Daiki Ueno + + * doc/gnutls.texi: internals doc update Hi, When I wrote SessionTicket extension I referred to the manual node + "Adding a New TLS Extension", and noticed that it is not up to date. + So, here is a patch. Signed-off-by: Simon Josefsson + +2009-08-18 Simon Josefsson + + * gl/stdio.in.h, lib/gl/Makefile.am, lib/gl/m4/gnulib-cache.m4, + lib/gl/m4/gnulib-comp.m4, lib/gl/m4/memmove.m4, lib/gl/memmove.c, + lib/gl/stdio.in.h, maint.mk: Update gnulib files. + +2009-08-15 Simon Josefsson + + * gl/m4/stddef_h.m4, lib/gl/m4/stddef_h.m4: Update gnulib files. + +2009-08-15 Simon Josefsson + + * .gitignore: Don't ignore gl/ files! + +2009-08-15 Simon Josefsson + + * gl/tests/test-stddef.c, lib/gl/tests/test-stddef.c: Update gnulib + files. + +2009-08-15 Simon Josefsson + + * gl/Makefile.am, gl/m4/gnulib-comp.m4, gl/m4/wchar.m4, + gl/stddef.in.h, gl/stdlib.in.h, gl/string.in.h, + gl/tests/Makefile.am, gl/tests/test-stdio.c, + gl/tests/test-stdlib.c, gl/tests/test-string.c, + gl/tests/test-unistd.c, gl/tests/test-wchar.c, gl/unistd.in.h, + lib/gl/Makefile.am, lib/gl/m4/gnulib-comp.m4, lib/gl/m4/wchar.m4, + lib/gl/stddef.in.h, lib/gl/stdlib.in.h, lib/gl/string.in.h, + lib/gl/tests/Makefile.am, lib/gl/tests/test-stdio.c, + lib/gl/tests/test-stdlib.c, lib/gl/tests/test-string.c, + lib/gl/tests/test-time.c, lib/gl/tests/test-unistd.c, + lib/gl/tests/test-wchar.c, lib/gl/time.in.h, lib/gl/unistd.in.h, + maint.mk: Update gnulib files. + +2009-08-14 Simon Josefsson + + * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, + libextra/configure.ac: Bump versions. + +2009-08-14 Simon Josefsson + + * ChangeLog: Generated. + +2009-08-14 Simon Josefsson + + * NEWS: Version 2.9.2. + +2009-08-14 Simon Josefsson + + * NEWS: Add 2.8.3 entry. + +2009-08-14 Simon Josefsson + + * gl/Makefile.am, gl/m4/close.m4, gl/m4/fclose.m4, + gl/m4/gnulib-comp.m4, gl/m4/sys_ioctl_h.m4, gl/m4/sys_socket_h.m4, + gl/m4/unistd_h.m4, gl/tests/Makefile.am, gl/tests/sys_ioctl.in.h, + gl/tests/test-stdio.c, gl/tests/test-stdlib.c, + gl/tests/test-string.c, gl/tests/test-unistd.c, + gl/tests/test-version-etc.sh, gl/unistd.in.h, gl/vasnprintf.c, + lib/gl/Makefile.am, lib/gl/m4/sys_socket_h.m4, + lib/gl/m4/threadlib.m4, lib/gl/m4/unistd_h.m4, + lib/gl/tests/test-stdio.c, lib/gl/tests/test-stdlib.c, + lib/gl/tests/test-string.c, lib/gl/tests/test-unistd.c, + lib/gl/unistd.in.h, lib/gl/vasnprintf.c: Update gnulib files. + +2009-08-13 Simon Josefsson + + * gl/tests/test-version-etc.sh: Update gnulib files. + +2009-08-13 Simon Josefsson + + * gl/tests/test-version-etc.sh: Update gnulib files. + +2009-08-13 Simon Josefsson + + * configure.ac: Don't generate gzip archives. + +2009-08-13 Simon Josefsson + + * lib/Makefile.am, lib/gnutls_buffers.c, lib/gnutls_int.h, + lib/io_debug.h: Remove io_debug.h stuff, it is superseded by + self-tests like mini-eagain.c. + +2009-08-13 Simon Josefsson + + * NEWS: Fix. + +2009-08-13 Simon Josefsson + + * NEWS: Add. + +2009-08-13 Simon Josefsson + + * lib/x509/x509.c: (gnutls_x509_crt_import): Re-initialize the ASN.1 structure. If this is not done here, the next certificate loading may fail + because asn1_der_decoding modified the ASN.1 structure. Triggered + by the hostname-check self-test. + +2009-08-13 Simon Josefsson + + * cfg.mk: Revert "Always build vc checkouts with debugging." This reverts commit b68235be4d1ff7739456e0c5d8c28c6e96e15a14. It + breaks because -Wdisabled-optimizations will cause an error when + optimizations are disabled. + +2009-08-13 Simon Josefsson + + * cfg.mk: Always build vc checkouts with debugging. + +2009-08-13 Simon Josefsson + + * tests/hostname-check.c: Fix. + +2009-08-13 Simon Josefsson + + * tests/hostname-check.c: Add another SAN/CN collision test. + Reported by Daniel Stenberg in + . + +2009-08-12 Simon Josefsson + + * tests/hostname-check.c: Fix logic. + +2009-08-12 Simon Josefsson + + * tests/hostname-check.c: Test when SAN and CN differs. Inspired by + report by Daniel Stenberg in + . + +2009-08-12 Simon Josefsson + + * libextra/Makefile.am, libextra/gl/m4/sockets.m4: Use include + instead of copy. + +2009-08-12 Simon Josefsson + + * libextra/gl/m4/sockets.m4: Add, needed for -lws2_32 in libextra. + +2009-08-12 Simon Josefsson + + * libextra/m4/hooks.m4: Add. + +2009-08-11 Simon Josefsson + + * lib/gnutls_algorithms.c: Doc fix. + +2009-08-11 Simon Josefsson + + * lib/gnutls_algorithms.c, lib/gnutls_anon_cred.c, + lib/gnutls_auth.c, lib/gnutls_cert.c, lib/gnutls_psk.c, + lib/gnutls_srp.c, lib/gnutls_state.c, lib/gnutls_x509.c, + lib/openpgp/gnutls_openpgp.c, lib/openpgp/pgp.c, + libextra/gnutls_ia.c: Fix typos in documentation. Reported by Daiki + Ueno in . + +2009-08-10 Simon Josefsson + + * gl/m4/gnulib-comp.m4, gl/m4/sys_select_h.m4, gl/stdio-write.c, + gl/sys_select.in.h, gl/tests/gettimeofday.c, + gl/tests/test-sys_select.c, gl/tests/test-version-etc.sh, + lib/gl/m4/gnulib-comp.m4, lib/gl/stdio-write.c, maint.mk: Update + gnulib files. + +2009-08-10 Simon Josefsson + + * libextra/Makefile.am: Need to add LIBSOCKET because we link to + ../lib's gnulib library, for mingw. + +2009-08-10 Simon Josefsson + + * lib/po/cs.po.in, lib/po/fr.po.in, lib/po/nl.po.in, + lib/po/pl.po.in, lib/po/sv.po.in: Sync with TP. + +2009-08-10 Simon Josefsson + + * NEWS: Add 2.8.x news entries. + +2009-08-10 Simon Josefsson + + * cfg.mk: Fix usage. + +2009-08-10 Simon Josefsson + + * cfg.mk: Copy cyclomatic code complexity charts too. + +2009-08-10 Simon Josefsson + + * NEWS: Add. + +2009-08-10 Simon Josefsson + + * lib/gnutls_global.c: Look only for latest _required_ + libgcrypt/libtasn1 version. Reported by Marco d'Itri via Andreas Metzler + as Debian BTS #540449. + +2009-08-10 Simon Josefsson + + * NEWS: Add. + +2009-08-08 Nikos Mavrogiannopoulos + + * : commit c529f792e4c899080eb1f6e104c8552fa0770356 Author: Nikos + Mavrogiannopoulos Date: Sat Aug 8 09:06:57 2009 + +0300 + +2009-08-07 Simon Josefsson + + * NEWS: Fix. + +2009-08-07 Simon Josefsson + + * NEWS: Fix. + +2009-08-07 Simon Josefsson + + * NEWS: Add. + +2009-08-07 Simon Josefsson + + * lib/x509/output.c: Check for NUL in SANs and replace accordingly. + +2009-08-07 Simon Josefsson + + * tests/Makefile.am, tests/hostname-check.README, + tests/hostname-check.c: Move comment into source. + +2009-08-07 Simon Josefsson + + * lib/x509/common.c: Refuse to return DNs with embedded NULs which + breaks other code. Problem published by Dan Kaminsky and Moxie Marlinspike at + BlackHat09. + +2009-08-07 Simon Josefsson + + * lib/x509/common.c: Revert everything since last release, to allow + minimal patch to be applied. + +2009-08-06 Simon Josefsson + + * tests/Makefile.am: Fix invocation of rfc2253-escape-test. Reported by Brad Hards in + + . + +2009-08-06 Simon Josefsson + + * build-aux/vc-list-files, gl/Makefile.am, gl/error.c, gl/fseeko.c, + gl/m4/gnulib-comp.m4, gl/m4/lib-link.m4, gl/m4/stdio_h.m4, + gl/m4/unistd_h.m4, gl/socket.c, gl/sockets.c, gl/stdio.in.h, + gl/tests/Makefile.am, gl/tests/test-select.c, + gl/tests/test-stdio.c, gl/tests/test-stdlib.c, + gl/tests/test-string.c, gl/tests/test-unistd.c, + gl/tests/test-version-etc.c, gl/tests/test-version-etc.sh, + gl/unistd.in.h, gl/version-etc.c, gl/version-etc.h, + lib/gl/Makefile.am, lib/gl/fseeko.c, lib/gl/m4/iconv.m4, + lib/gl/m4/lib-link.m4, lib/gl/m4/stdio_h.m4, lib/gl/m4/time_h.m4, + lib/gl/m4/unistd_h.m4, lib/gl/sockets.c, lib/gl/stdio.in.h, + lib/gl/tests/test-stdio.c, lib/gl/tests/test-stdlib.c, + lib/gl/tests/test-string.c, lib/gl/tests/test-unistd.c, + lib/gl/time.in.h, lib/gl/unistd.in.h, libextra/gl/m4/lib-link.m4, + libextra/gl/md5.h, maint.mk: Update gnulib files. + +2009-08-05 Simon Josefsson + + * tests/Makefile.am, tests/rfc2253-escape-test: Add self-test of RFC + 2253 escaping. + +2009-08-04 Simon Josefsson + + * lib/x509/common.c: Simplify and fix mem leak. + +2009-08-04 Simon Josefsson + + * lib/x509/common.c: Don't use fixed size buffer for strings. + +2009-08-04 Simon Josefsson + + * tests/nul-in-x509-names.c: Exit with failure on failure. + +2009-08-04 Simon Josefsson + + * tests/nul-in-x509-names.c: Fix output. + +2009-08-04 Simon Josefsson + + * lib/gnutls_str.c: Cleanup code. + +2009-08-04 Tomas Hoger + + * lib/gnutls_str.c, lib/gnutls_str.h, lib/openpgp/pgp.c, + lib/x509/rfc2818_hostname.c: GnuTLS vs. NULL chars in CNs Check cert name size in _gnutls_hostname_compare() This is needed to protect against NULL (\0) characters embedded + in X509 certificates' CNs or subjectAltNames, that can be used + to fool SSL certificate verification as was demonstrated by Moxie + Marlinspike on BH USA 2009: + http://www.blackhat.com/html/bh-usa-09/bh-usa-09-archives.html#MarlinspikeSigned-off-by: Simon Josefsson + +2009-08-04 Simon Josefsson + + * tests/Makefile.am, tests/nul-in-x509-names.c: Add self-test for + NUL in X.509 CN/SAN problem. + +2009-08-03 Simon Josefsson + + * lib/x509/common.c: Fix typo. + +2009-08-03 Simon Josefsson + + * tests/chainverify.c: Fix expected output, a cert have expired. + +2009-08-03 Simon Josefsson + + * lib/x509/common.c: Fix crash. + +2009-08-03 Simon Josefsson + + * tests/mini-eagain.c: Make it build. + +2009-07-29 Simon Josefsson + + * .gitignore: Drop .c and sort. + +2009-07-29 Simon Josefsson + + * NEWS, lib/minitasn1/errors.c, lib/minitasn1/libtasn1.h: Use + libtasn1 v2.3. + +2009-07-29 Simon Josefsson + + * NEWS: Add. + +2009-07-26 Nikos Mavrogiannopoulos + + * : commit c02e9f1459330119d2947a4e46fb60c0e12fa32d Author: Nikos + Mavrogiannopoulos Date: Sun Jul 26 15:22:06 2009 + +0300 + +2009-07-26 Nikos Mavrogiannopoulos + + * lib/x509/common.c: do not allow null character in DN. + +2009-07-16 Nikos Mavrogiannopoulos + + * .gitignore: updated files to be ignored. + +2009-07-16 Nikos Mavrogiannopoulos + + * tests/dn.c: Typo fix in test output. Patch by Brad Hards + + +2009-07-15 Nikos Mavrogiannopoulos + + * THANKS: Removed duplicate entry of Daniel and added Fabian, Brad + and Daiki. + +2009-07-15 Nikos Mavrogiannopoulos + + * doc/examples/ex-serv-anon.c, doc/examples/ex-serv-export.c, + doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-psk.c, + doc/examples/ex-serv-srp.c, doc/examples/ex-serv1.c, + lib/auth_cert.c, lib/gnutls_buffers.c, lib/gnutls_mpi.c, + lib/gnutls_pk.c, lib/gnutls_sig.c, lib/opencdk/stream.c, + lib/opencdk/write-packet.c, lib/openpgp/pgp.c, + lib/openpgp/privkey.c, lib/x509/privkey_pkcs8.c, src/certtool.c, + src/psk.c: Several bug fixes by Fabian Keil (some were modified by + me). + +2009-07-15 Nikos Mavrogiannopoulos + + * tests/mini-eagain.c: reduced transferred data size. + +2009-07-13 Nikos Mavrogiannopoulos + + * lib/auth_srp.c, lib/gnutls_buffers.c, lib/gnutls_errors.c, + lib/gnutls_record.c, lib/gnutls_supplemental.c, + lib/opencdk/armor.c, lib/opencdk/keydb.c, lib/opencdk/literal.c, + lib/opencdk/read-packet.c, lib/opencdk/sig-check.c, + lib/opencdk/stream.c, src/certtool-cfg.c, tests/chainverify.c: Added + casts to reduce warnings (based on report by Brad Hards). + +2009-07-13 Nikos Mavrogiannopoulos + + * .gitignore: Added more stuff to have a clean status. + +2009-07-13 Nikos Mavrogiannopoulos + + * README-alpha: Documentation corrections by Brad Hards. + +2009-07-13 Nikos Mavrogiannopoulos + + * lib/x509/crq.c: size_t and unsigned int fixes. + +2009-07-01 Nikos Mavrogiannopoulos + + * lib/gnutls_str.c: There are cases where those buffers might + overlap + +2009-07-01 Nikos Mavrogiannopoulos + + * lib/gnutls_handshake.c: Patch by Tim Kosse: "If + _gnutls_send_finished fails with GNUTLS_E_AGAIN or GNUTLS_E_AGAIN it + eventually gets called a second time. It however does not call _gnutls_send_handshake with a NULL pointer + on repeated calls, ultimately leading to an internal error in + _gnutls_handshake_io_send_int." + +2009-07-01 Nikos Mavrogiannopoulos + + * lib/auth_cert.h, lib/gnutls_ui.c: Corrected + gnutls_certificate_client_get_request_status(). Based on observation + by Peter Hendrickson . + +2009-07-01 Nikos Mavrogiannopoulos + + * lib/gnutls_buffers.c, tests/Makefile.am, tests/mini-eagain.c: + Added bug fix that allows gnutls_record_recv/send resuming from + previously interrupted actions. Patch by from Tim Kosse + . Added a self test to check those functions in handling interrupted + states. + +2009-06-30 Nikos Mavrogiannopoulos + + * : commit 21a7186bf83084a2bc85bbb7ddb600ccd070f1c2 Author: Simon + Josefsson Date: Tue Jun 23 23:04:51 2009 + +0200 + +2009-06-23 Simon Josefsson + + * lib/gnutls_errors.c: Doc fix. + +2009-06-22 Simon Josefsson + + * NEWS: Fix. + +2009-06-22 Simon Josefsson + + * tests/Makefile.am, tests/dn2.c: Add self-test of off-by-one size + error. + +2009-06-22 Simon Josefsson + + * THANKS: Add. + +2009-06-22 Simon Josefsson + + * NEWS: Add. + +2009-06-22 Simon Josefsson + + * lib/x509/dn.c: Fix off-by-one size computation that leads to + truncated strings. Reported by Tim Kosse + in + + . + +2009-06-18 Simon Josefsson + + * gl/Makefile.am, gl/errno.in.h, gl/getpagesize.c, + gl/m4/errno_h.m4, gl/m4/gnulib-comp.m4, gl/m4/memchr.m4, + gl/m4/string_h.m4, gl/memchr.valgrind, gl/strerror.c, + gl/string.in.h, gl/tests/Makefile.am, gl/tests/getpagesize.c, + lib/gl/Makefile.am, lib/gl/errno.in.h, lib/gl/getpagesize.c, + lib/gl/m4/errno_h.m4, lib/gl/m4/gnulib-comp.m4, + lib/gl/m4/memchr.m4, lib/gl/m4/string_h.m4, lib/gl/memchr.valgrind, + lib/gl/string.in.h, lib/gl/tests/Makefile.am, + lib/gl/tests/getpagesize.c: Update gnulib files. + +2009-06-18 Simon Josefsson + + * libextra/m4/hooks.m4: Fix --disable-openssl-compatibility + parameter. Reported by Matthias Drochner + in + + . + +2009-06-17 Simon Josefsson + + * doc/gnutls.texi: Typo. + +2009-06-17 Simon Josefsson + + * tests/mpi.c: Fix build error. + +2009-06-17 Simon Josefsson + + * NEWS: Add. + +2009-06-17 Simon Josefsson + + * lib/gnutls_ui.c: Return proper MPI lengths in bits. Reported by + Peter Hendrickson in + + . + +2009-06-13 Nikos Mavrogiannopoulos + + * : commit fad0d9b3289087dbd56176e7a1ccb498cf5ef099 Author: Simon + Josefsson Date: Wed Jun 10 17:55:05 2009 + +0200 + +2009-06-10 Simon Josefsson + + * NEWS: Add. + +2009-06-10 Simon Josefsson + + * tests/pkcs12_s2k.c: Improve test vectors. + +2009-06-10 Simon Josefsson + + * NEWS, tests/Makefile.am, tests/pkcs12_s2k_pem.c: Added new + self-test pkcs12_s2k_pem. + +2009-06-10 Simon Josefsson + + * NEWS: Fix. + +2009-06-10 Simon Josefsson + + * NEWS: Add. + +2009-06-10 Simon Josefsson + + * lib/x509/pkcs12_encr.c: Fix PKCS#12 string to key function for + 1/128 inputs. Reported by "Kukosa, Tomas" + in + . + +2009-06-09 Simon Josefsson + + * gl/Makefile.am, gl/m4/getpagesize.m4, gl/m4/gnulib-comp.m4, + gl/m4/memchr.m4, gl/m4/mmap-anon.m4, gl/memchr.c, + gl/tests/Makefile.am, gl/tests/getpagesize.c, + gl/tests/test-memchr.c, gl/tests/zerosize-ptr.h, + lib/gl/Makefile.am, lib/gl/m4/getpagesize.m4, + lib/gl/m4/gnulib-comp.m4, lib/gl/m4/memchr.m4, + lib/gl/m4/mmap-anon.m4, lib/gl/memchr.c, lib/gl/tests/Makefile.am, + lib/gl/tests/getpagesize.c, lib/gl/tests/test-memchr.c, + lib/gl/tests/zerosize-ptr.h: Update gnulib files. + +2009-06-09 Simon Josefsson + + * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, + libextra/configure.ac: Bump versions. + +2009-06-09 Simon Josefsson + + * ChangeLog: Generated. + +2009-06-09 Simon Josefsson + + * gl/m4/gnulib-comp.m4, gl/m4/version-etc.m4, + gl/tests/test-alignof.c, gl/version-etc.c: Update gnulib files. + +2009-06-08 Simon Josefsson + + * NEWS: Version 2.9.1. + +2009-06-08 Simon Josefsson + + * lib/gnutls_extensions.c: Mark global extfunc_size as having static + scope. + +2009-06-08 Simon Josefsson + + * NEWS: Add. + +2009-06-08 Simon Josefsson + + * tests/Makefile.am, tests/init_roundtrip.c: Add self-test to detect + extension init/deinit problem. + +2009-06-08 Simon Josefsson + + * lib/gnutls_extensions.c: Deinitalize extension global variable + properly. See . + +2009-06-03 Simon Josefsson + + * gl/Makefile.am, gl/alignof.h, gl/m4/gnulib-cache.m4, + gl/m4/gnulib-comp.m4, gl/tests/Makefile.am, + gl/tests/test-alignof.c, lib/gl/alignof.h: Update gnulib files. + +2009-06-03 Simon Josefsson + + * lib/auth_srp.c, lib/debug.c, lib/debug.h, lib/gnutls_errors.c, + lib/gnutls_errors.h, lib/libgnutls.map, lib/pk-libgcrypt.c, + tests/mpi.c: Rename _gnutls_dump_mpi to _gnutls_mpi_log. Rewrite to + use less stack space. + +2009-06-03 Simon Josefsson + + * configure.ac: Reduce stack size limit check. + +2009-06-03 Simon Josefsson + + * lib/x509/output.c: Reduce stack size. + +2009-06-03 Simon Josefsson + + * lib/x509/output.c: Fix malloc failure error strings. + +2009-06-03 Simon Josefsson + + * tests/crq_apis.c: Test more. + +2009-06-03 Simon Josefsson + + * lib/x509/common.c: (_gnutls_x509_oid_data2string): Return proper @res_size for NULL + res. + +2009-06-03 Simon Josefsson + + * lib/x509/crq.c: Indent. + +2009-06-03 Simon Josefsson + + * lib/x509/crq.c: Doc fix. + +2009-06-03 Simon Josefsson + + * lib/x509/crq.c: Reduce stack usage. + +2009-06-03 Simon Josefsson + + * lib/x509/crq.c: Doc fix. + +2009-06-03 Simon Josefsson + + * lib/x509/crq.c: Simplify. + +2009-06-03 Simon Josefsson + + * tests/crq_apis.c: Test more. + +2009-06-03 Simon Josefsson + + * lib/x509/crq.c: Reduce stack usage. + +2009-06-03 Simon Josefsson + + * tests/crq_apis.c: Test more. + +2009-06-03 Simon Josefsson + + * lib/x509/crq.c: Reduce stack usage. + +2009-06-03 Simon Josefsson + + * lib/x509/crq.c: Fix uninitialized variable access. + +2009-06-03 Simon Josefsson + + * lib/x509/crq.c: Reduce stack frame usage. + +2009-06-03 Simon Josefsson + + * lib/x509/x509_write.c: Reduce stack usage. + +2009-06-02 Simon Josefsson + + * gl/m4/manywarnings.m4: Update gnulib files. + +2009-06-02 Simon Josefsson + + * tests/crq_apis.c: Add. + +2009-06-02 Simon Josefsson + + * lib/x509/crq.c: Don't assert on expected errors. + +2009-06-01 Simon Josefsson + + * NEWS: Add. + +2009-06-01 Simon Josefsson + + * tests/Makefile.am: Add crq self-test. + +2009-06-01 Simon Josefsson + + * lib/x509/extensions.c: Reduce stack usage. + +2009-06-01 Simon Josefsson + + * lib/x509/crq.c: Reduce stack usage. Fix build failure wrt + variable names. + +2009-06-01 Simon Josefsson + + * lib/includes/gnutls/x509.h: Doc fix. + +2009-06-01 Simon Josefsson + + * lib/x509/crq.c: Doc fix. + +2009-06-01 Simon Josefsson + + * lib/x509/crq.c: Return buffer size for NULL/0 inputs. Fix output + buffer size computation. + +2009-06-01 Simon Josefsson + + * lib/x509/extensions.c: Fix mem leak. + +2009-06-01 Simon Josefsson + + * lib/x509/crq.c: Don't assert for expected errors. + +2009-06-01 Simon Josefsson + + * configure.ac: Export wstack. + +2009-06-01 Simon Josefsson + + * lib/configure.ac, libextra/configure.ac: Fix WSTACK_CFLAGS. + +2009-06-01 Simon Josefsson + + * src/serv.c: Improve logging and fix warnings. + +2009-06-01 Simon Josefsson + + * configure.ac, lib/Makefile.am, lib/openpgp/Makefile.am, + lib/x509/Makefile.am, libextra/Makefile.am: Check stack size. + +2009-06-01 Simon Josefsson + + * gl/m4/manywarnings.m4: Update gnulib files. + +2009-05-31 Nikos Mavrogiannopoulos + + * doc/TODO: Added gnutls_dh_get_prime_bits limitation. + +2009-05-28 Simon Josefsson + + * lib/x509/pkcs12_bag.c, lib/x509/verify.c, lib/x509/x509.c, + lib/x509/x509_write.c: Doc fix. Reported by Peter Hendrickson + . + +2009-05-28 Simon Josefsson + + * NEWS: Add. + +2009-05-28 Simon Josefsson + + * configure.ac, lib/configure.ac, lib/m4/hooks.m4, + libextra/configure.ac: Bump versions. + +2009-05-28 Simon Josefsson + + * cfg.mk: Fix paths. + +2009-05-28 Simon Josefsson + + * ChangeLog: Generated. + +2009-05-28 Simon Josefsson + + * NEWS: Version 2.9.0. + +2009-05-28 Simon Josefsson + + * cfg.mk: Fix paths for alpha release. + +2009-05-28 Simon Josefsson + + * lib/gnutls_ui.c: Doc fix. + +2009-05-28 Simon Josefsson + + * build-aux/gnupload: Update gnulib files. + +2009-05-27 Simon Josefsson + + * doc/manpages/srptool.1: Fix. + +2009-05-27 Simon Josefsson + + * NEWS: Add. + +2009-05-27 Simon Josefsson + + * doc/manpages/gnutls-serv.1: Doc fix. + +2009-05-27 Simon Josefsson + + * lib/gnutls_psk.c: Doc fix. + +2009-05-27 Simon Josefsson + + * lib/x509/pkcs7.c: Doc fix. + +2009-05-27 Simon Josefsson + + * doc/Makefile.am: Cleanup rules. + +2009-05-27 Simon Josefsson + + * doc/Makefile.am, doc/gnutls.texi, lib/Makefile.am, + lib/openpgp/Makefile.am, lib/x509/Makefile.am, libextra/Makefile.am: + Move API texinfo generation into doc/. + +2009-05-27 Simon Josefsson + + * gl/m4/include_next.m4, gl/m4/size_max.m4, + lib/gl/m4/include_next.m4, lib/gl/m4/size_max.m4: Update gnulib + files. + +2009-05-27 Simon Josefsson + + * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, + libextra/configure.ac: Bump versions. + +2009-05-27 Simon Josefsson + + * ChangeLog: Generated. + +2009-05-27 Simon Josefsson + + * NEWS: Version 2.8.0. + +2009-05-27 Simon Josefsson + + * NEWS: Add. + +2009-05-27 Simon Josefsson + + * doc/announcement-template.txt: Typo. + +2009-05-27 Simon Josefsson + + * NEWS: Fix. + +2009-05-27 Simon Josefsson + + * NEWS, cfg.mk, configure.ac, lib/configure.ac, + libextra/configure.ac: Prepare for stable release. + +2009-05-27 Simon Josefsson + + * configure.ac, lib/configure.ac, lib/m4/hooks.m4, + libextra/configure.ac: Bump versions. + +2009-05-27 Simon Josefsson + + * NEWS: Add. + +2009-05-27 Simon Josefsson + + * lib/gnutls_ui.c: Doc fix. Reported by Peter Hendrickson + . + +2009-05-26 Simon Josefsson + + * src/select.c: Remove unused file, replaced by poll from gnulib. + +2009-05-26 Simon Josefsson + + * doc/Makefile.am: Fix generation of error_codes.texi and + algorithms.texi. + +2009-05-26 Simon Josefsson + + * ChangeLog: Generated. + +2009-05-26 Simon Josefsson + + * doc/announcement-template.txt: Fix. + +2009-05-26 Simon Josefsson + + * NEWS: Version 2.7.14. + +2009-05-26 Simon Josefsson + + * src/certtool-gaa.c, src/serv-gaa.c: Regenerate. + +2009-05-26 Simon Josefsson + + * NEWS: Add. + +2009-05-26 Simon Josefsson + + * NEWS: Add. + +2009-05-26 Simon Josefsson + + * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, + libextra/configure.ac: Bump versions. + +2009-05-26 Simon Josefsson + + * lib/gnutls_global.c, lib/includes/gnutls/compat.h, + libextra/gnutls_extra.c, libextra/includes/gnutls/extra.h, + libextra/includes/gnutls/openssl.h, tests/openssl.c, tests/simple.c: + Fix version symbol namespace. + +2009-05-26 Simon Josefsson + + * doc/examples/ex-serv-anon.c, doc/examples/ex-serv-export.c, + doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-psk.c, + doc/examples/ex-serv1.c, doc/examples/ex-session-info.c, + doc/gnutls.texi, doc/manpages/certtool.1, + doc/manpages/gnutls-serv.1, lib/auth_anon.c, lib/auth_dh_common.c, + lib/auth_dhe.c, lib/auth_dhe_psk.c, lib/gnutls_anon_cred.c, + lib/gnutls_errors.c, lib/gnutls_handshake.c, lib/gnutls_psk.c, + lib/gnutls_record.c, lib/gnutls_ui.c, + lib/includes/gnutls/gnutls.h.in, libextra/gnutls_ia.c, + src/certtool.gaa, src/prime.c, src/serv.c, src/serv.gaa, + src/tls_test.c, tests/anonself.c, tests/dhepskself.c, + tests/openpgpself.c, tests/oprfi.c, tests/resume.c, tests/tlsia.c, + tests/x509dn.c, tests/x509self.c, tests/x509signself.c: Doc fixes. + Suggested by Peter Hendrickson . + +2009-05-26 Simon Josefsson + + * lib/gnutls_auth.c: Doc fix. Reported by Peter Hendrickson + . + +2009-05-25 Simon Josefsson + + * ChangeLog: Generated. + +2009-05-25 Simon Josefsson + + * NEWS: Version 2.7.13. + +2009-05-25 Simon Josefsson + + * doc/announcement-template.txt: Fix. + +2009-05-25 Simon Josefsson + + * NEWS: Fix. + +2009-05-25 Simon Josefsson + + * NEWS: Add. + +2009-05-25 Simon Josefsson + + * doc/announcement-template.txt: Improve. + +2009-05-25 Simon Josefsson + + * lib/libgnutls.map: Sort symbols. + +2009-05-25 Simon Josefsson + + * lib/libgnutls.map: Auto-generate from GnuTLS 2.6.x list of + exported symbols. No substantial change. + +2009-05-25 Simon Josefsson + + * lib/libgnutls.map: Move functions. Reported by Andreas Metzler + in + + . + +2009-05-25 Simon Josefsson + + * lib/libgnutls.map: Move gnutls_x509_crq_set_key back to old ABI + namespace. Reported by Andreas Metzler + in + + . + +2009-05-25 Simon Josefsson + + * NEWS: Add. + +2009-05-25 Simon Josefsson + + * tests/chainverify.c: Fix expired certs. Exit early to make it + easier to find failing test. Reported by Andreas Metzler + in + + . + +2009-05-20 Simon Josefsson + + * .clcopying: Fix. + +2009-05-20 Simon Josefsson + + * AUTHORS: Fix PGP key. + +2009-05-20 Simon Josefsson + + * doc/gnutls.texi, src/Makefile.am, src/README, src/README.srptool: + Removed duplicated documentation. + +2009-05-20 Simon Josefsson + + * THANKS: Add. + +2009-05-20 Simon Josefsson + + * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, + libextra/configure.ac: Bump versions. + +2009-05-20 Simon Josefsson + + * ChangeLog: Generated. + +2009-05-20 Simon Josefsson + + * NEWS: Version 2.7.12. + +2009-05-20 Simon Josefsson + + * NEWS, src/serv.c, src/tls_test.c: Fix gnutls-serv and + gnutls-cli-debug on Windows. + +2009-05-20 Simon Josefsson + + * gl/getdelim.c: Update gnulib files. + +2009-05-20 Simon Josefsson + + * NEWS, doc/reference/Makefile.am, lib/minitasn1/libtasn1.h, + lib/minitasn1/parser_aux.c: Use libtasn1 2.2. + +2009-05-20 Simon Josefsson + + * NEWS: Add. + +2009-05-20 Simon Josefsson + + * build-aux/gnupload, gl/Makefile.am, gl/m4/sys_socket_h.m4, + gl/sys_socket.in.h, gl/tests/test-sys_socket.c, lib/gl/Makefile.am, + lib/gl/m4/sys_socket_h.m4, lib/gl/sys_socket.in.h, + lib/gl/tests/test-sys_socket.c, maint.mk: Update gnulib files. + +2009-05-20 Simon Josefsson + + * lib/gl/Makefile.am, lib/gl/m4/gnulib-cache.m4, + lib/gl/m4/gnulib-comp.m4, lib/gl/m4/vsnprintf.m4, + lib/gl/tests/Makefile.am, lib/gl/tests/test-vsnprintf.c, + lib/gl/vsnprintf.c: Replace vsnprintf if needed. + +2009-05-20 Simon Josefsson + + * NEWS: Add. + +2009-05-20 Simon Josefsson + + * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, + libextra/configure.ac: Bump versions. + +2009-05-20 Simon Josefsson + + * tests/crq_key_id.c: Reorder gcry quick random to make it + effective. Reported by Andreas Metzler + in + + . + +2009-05-18 Simon Josefsson + + * ChangeLog: Generated. + +2009-05-18 Simon Josefsson + + * NEWS: Version 2.7.11. + +2009-05-18 Simon Josefsson + + * NEWS, cfg.mk, configure.ac, doc/examples/Makefile.am, + lib/Makefile.am, lib/configure.ac, lib/openpgp/Makefile.am, + lib/x509/Makefile.am, libextra/Makefile.am, libextra/configure.ac, + src/Makefile.am, tests/Makefile.am: Don't build with warnings all + the time. Use a WERROR_CFLAGS. + +2009-05-18 Simon Josefsson + + * maint.mk: Update gnulib files. + +2009-05-18 Simon Josefsson + + * NEWS: Add. + +2009-05-18 Simon Josefsson + + * src/serv.c: Don't use unportable NI_MAXHOST/NI_MAXSERV. + +2009-05-17 Simon Josefsson + + * src/Makefile.am: Link getaddrinfo libraries. Reported by "Tom G. + Christensen" in + + . + +2009-05-17 Simon Josefsson + + * NEWS, configure.ac, lib/configure.ac: Need to run AC_PROG_CXX + unconditionally. + +2009-05-16 Simon Josefsson + + * doc/doxygen/Doxyfile.in, libextra/gl/Makefile.am: Fix old gnulib + lgpl/ paths. Reported by "Tom G. Christensen" + in + + . + +2009-05-14 Simon Josefsson + + * NEWS: Fix. + +2009-05-14 Simon Josefsson + + * lib/minitasn1/Makefile.am: Need -DASN1_BUILDING for libtasn1. + +2009-05-14 Simon Josefsson + + * doc/announcement-template.txt: Add. + +2009-05-14 Simon Josefsson + + * NEWS: Add. + +2009-05-14 Simon Josefsson + + * lib/minitasn1/Makefile.am: Fix -I's after gnulib changes. + Reported by "Tom G. Christensen" in + + . + +2009-05-14 Simon Josefsson + + * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, + libextra/configure.ac: Bump versions. + +2009-05-13 Simon Josefsson + + * ChangeLog: Generated. + +2009-05-13 Simon Josefsson + + * NEWS: Version 2.7.10. + +2009-05-13 Simon Josefsson + + * gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, + gl/tests/Makefile.am, gl/tests/test-alignof.c, lib/gl/Makefile.am, + lib/gl/m4/gnulib-cache.m4, lib/gl/m4/gnulib-comp.m4, + lib/gl/tests/Makefile.am, lib/gl/tests/test-alignof.c: Avoid failing + tests. + +2009-05-13 Simon Josefsson + + * lib/gnutls_algorithms.c, lib/gnutls_auth.c, lib/gnutls_buffers.c, + lib/gnutls_cert.c, lib/gnutls_global.c, lib/gnutls_priority.c, + lib/gnutls_psk.c, lib/gnutls_session.c, lib/gnutls_state.c, + lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/openpgp.h, + lib/includes/gnutls/pkcs12.h, lib/includes/gnutls/x509.h, + lib/openpgp/extras.c, lib/openpgp/gnutls_openpgp.c, + lib/openpgp/pgp.c, lib/openpgp/privkey.c, lib/x509/crq.c, + lib/x509/dn.c, lib/x509/pkcs12_bag.c, lib/x509/x509.c, + lib/x509/x509_write.c, libextra/gnutls_ia.c: Doc fixes for GTK-DOC. + +2009-05-13 Simon Josefsson + + * lib/ext_server_name.c, lib/gnutls_priority.c, + lib/gnutls_record.c, lib/gnutls_srp.c, lib/gnutls_state.c, + lib/gnutls_ui.c, lib/gnutls_x509.c, + lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/x509.h, + lib/x509/crq.c, lib/x509/dn.c, lib/x509/pkcs7.c, + lib/x509/privkey.c, lib/x509/verify.c, lib/x509/x509.c, + lib/x509/x509_write.c: Doc fixes for GTK-DOC. + +2009-05-13 Simon Josefsson + + * lib/includes/gnutls/crypto.h, lib/includes/gnutls/openpgp.h, + lib/includes/gnutls/x509.h, lib/openpgp/gnutls_openpgp.c, + lib/x509/dn.c, lib/x509/output.c, lib/x509/pkcs7.c, + lib/x509/verify.c, lib/x509/x509.c: Doc fixes for GTK-DOC. + +2009-05-13 Simon Josefsson + + * NEWS: Add. + +2009-05-13 Simon Josefsson + + * doc/examples/ex-alert.c, doc/examples/ex-cert-select.c, + doc/examples/ex-client-psk.c, doc/examples/ex-client-resume.c, + doc/examples/ex-client-srp.c, doc/examples/ex-client-tlsia.c, + doc/examples/ex-client1.c, doc/examples/ex-client2.c, + doc/examples/ex-crq.c, doc/examples/ex-pkcs12.c, + doc/examples/ex-rfc2818.c, doc/examples/ex-serv-anon.c, + doc/examples/ex-serv-export.c, doc/examples/ex-serv-pgp.c, + doc/examples/ex-serv-psk.c, doc/examples/ex-serv-srp.c, + doc/examples/ex-serv1.c, doc/examples/ex-session-info.c, + doc/examples/ex-verify.c, doc/examples/ex-x509-info.c, + doc/examples/tcp.c: Place examples in public domain. After + discussion with Karl. + +2009-05-13 Simon Josefsson + + * gl/alignof.h, gl/m4/gnulib-comp.m4, gl/tests/Makefile.am, + gl/tests/test-alignof.c, lib/gl/alignof.h, + lib/gl/m4/gnulib-comp.m4, lib/gl/tests/Makefile.am, + lib/gl/tests/test-alignof.c, maint.mk: Update gnulib files. + +2009-05-13 Simon Josefsson + + * lib/opencdk/keydb.c: Avoid sprintf. + +2009-05-13 Simon Josefsson + + * doc/examples/ex-client-tlsia.c, lib/opencdk/literal.c, + lib/opencdk/misc.c, src/common.c, tests/chainverify.c, + tests/tlsia.c: Fix warnings. + +2009-05-13 Simon Josefsson + + * NEWS: Fix. + +2009-05-13 Simon Josefsson + + * doc/gnutls.texi: Fix. + +2009-05-13 Simon Josefsson + + * NEWS: Add. + +2009-05-13 Simon Josefsson + + * lib/pk-libgcrypt.c: Fix crash. + +2009-05-12 Simon Josefsson + + * lib/gnutls_cert.c: Doc fix. + +2009-05-12 Simon Josefsson + + * lib/gnutls_dh_primes.c: Doc fix. + +2009-05-12 Simon Josefsson + + * lib/minitasn1/Makefile.am, lib/minitasn1/errors.h: Drop removed + libtasn1 file. + +2009-05-12 Simon Josefsson + + * NEWS, lib/minitasn1/coding.c, lib/minitasn1/decoding.c, + lib/minitasn1/element.c, lib/minitasn1/element.h, + lib/minitasn1/errors.c, lib/minitasn1/gstr.c, lib/minitasn1/gstr.h, + lib/minitasn1/int.h, lib/minitasn1/libtasn1.h, + lib/minitasn1/parser_aux.c, lib/minitasn1/parser_aux.h, + lib/minitasn1/structure.c, lib/minitasn1/structure.h: Upgrade + libtasn1 to v2.1. + +2009-05-12 Simon Josefsson + + * lib/gnutls_global.c, libextra/gnutls_extra.c: Doc fixes. Remove + debugging code. + +2009-05-12 Simon Josefsson + + * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, + libextra/configure.ac: Bump versions. + +2009-05-11 Simon Josefsson + + * ChangeLog: Generated. + +2009-05-11 Simon Josefsson + + * NEWS: Version 2.7.9. + +2009-05-11 Simon Josefsson + + * lib/configure.ac, libextra/configure.ac: Drop obsolete stuff. + +2009-05-11 Simon Josefsson + + * configure.ac: Drop obsolete stuff. + +2009-05-11 Simon Josefsson + + * gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, + gl/m4/ld-output-def.m4, gl/m4/ld-version-script.m4, + lib/gl/Makefile.am, lib/gl/m4/gnulib-cache.m4, + lib/gl/m4/gnulib-comp.m4, lib/gl/m4/ld-output-def.m4, + lib/gl/m4/ld-version-script.m4, libextra/gl/gnulib.mk, + libextra/gl/m4/gnulib-cache.m4, libextra/gl/m4/gnulib-comp.m4, + libextra/gl/m4/ld-output-def.m4, + libextra/gl/m4/ld-version-script.m4: Move gnulib tests into proper + directory. + +2009-05-11 Simon Josefsson + + * NEWS: Fix. + +2009-05-11 Simon Josefsson + + * doc/manpages/Makefile.am: Generated. + +2009-05-11 Simon Josefsson + + * doc/scripts/gdoc: Fix gnutls_priority_init documentation. + +2009-05-11 Simon Josefsson + + * doc/scripts/gdoc: Revert "Fix man output for "%COMPAT" in + docstrings." This reverts commit d10f1872bcbf7eb63632a8ce2e50728f42bd03fa. + +2009-05-11 Simon Josefsson + + * doc/scripts/gdoc: Fix man output for "%COMPAT" in docstrings. + +2009-05-11 Simon Josefsson + + * doc/manpages/Makefile.am: When writing man pages, don't append to + any existing file. + +2009-05-11 Simon Josefsson + + * lib/gnutls_priority.c: Doc fix. + +2009-05-11 Simon Josefsson + + * NEWS, doc/examples/Makefile.am, lib/gl/Makefile.am, + lib/gl/m4/gnulib-cache.m4, lib/gl/m4/gnulib-comp.m4, + lib/gl/tests/Makefile.am, lib/gl/tests/test-lseek.c, + lib/gl/tests/test-lseek.sh, src/Makefile.am, tests/Makefile.am: Fix + MinGW build failures. + +2009-05-11 Simon Josefsson + + * lib/autogen.sh: Add. + +2009-05-11 Simon Josefsson + + * maint.mk: Update gnulib files. + +2009-05-11 Simon Josefsson + + * gtk-doc.make: Fix syntax-check. + +2009-05-11 Simon Josefsson + + * gtk-doc.make, m4/gtk-doc.m4: Upgrade gtk-doc files. + +2009-05-11 Simon Josefsson + + * cfg.mk, gl/sys_socket.in.h, gl/tests/test-vc-list-files-git.sh, + lib/gl/Makefile.am, lib/gl/m4/gnulib-cache.m4, + lib/gl/m4/gnulib-comp.m4, lib/gl/sys_socket.in.h, + lib/gl/tests/Makefile.am, lib/gl/tests/test-lseek.c, + lib/gl/tests/test-lseek.sh, libextra/gl/gnulib.mk, + libextra/gl/m4/gnulib-cache.m4, libextra/gl/m4/gnulib-comp.m4: + Update gnulib files. + +2009-05-10 Simon Josefsson + + * tests/chainverify.c: Verisign CA v1 cert has expired! Change + expected results. Also test expiration code more. + +2009-05-08 Simon Josefsson + + * doc/Makefile.am: Don't always rebuild manual. + +2009-05-08 Simon Josefsson + + * gl/m4/sys_socket_h.m4, lib/gl/m4/sys_socket_h.m4: Update gnulib + files. + +2009-05-08 Simon Josefsson + + * gl/Makefile.am, lib/gl/Makefile.am: Update gnulib files. + +2009-05-08 Simon Josefsson + + * gl/Makefile.am, gl/alignof.h, lib/gl/Makefile.am: Update gnulib + files. + +2009-05-08 Simon Josefsson + + * cfg.mk: Fix. + +2009-05-08 Simon Josefsson + + * cfg.mk: Fix. + +2009-05-08 Simon Josefsson + + * build-aux/gnupload, gl/Makefile.am, gl/m4/errno_h.m4, + gl/m4/gnulib-comp.m4, gl/m4/multiarch.m4, gl/m4/sys_socket_h.m4, + gl/m4/vasnprintf.m4, gl/sys_socket.in.h, + gl/tests/test-sys_socket.c, lib/gl/Makefile.am, lib/gl/alignof.h, + lib/gl/m4/errno_h.m4, lib/gl/m4/gnulib-comp.m4, + lib/gl/m4/multiarch.m4, lib/gl/m4/sys_socket_h.m4, + lib/gl/m4/vasnprintf.m4, lib/gl/sys_socket.in.h, + lib/gl/tests/test-sys_socket.c, maint.mk: Update gnulib files. + +2009-05-08 Simon Josefsson + + * cfg.mk: Fix -Werror handling. + +2009-05-08 Simon Josefsson + + * lib/x509/output.c: Fix warnings. + +2009-05-07 Simon Josefsson + + * doc/examples/ex-serv-anon.c, doc/examples/ex-serv-export.c, + doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-psk.c, + doc/examples/ex-serv-srp.c, doc/examples/ex-serv1.c, + tests/anonself.c, tests/dhepskself.c, tests/openpgpself.c, + tests/oprfi.c, tests/pskself.c, tests/resume.c, tests/tlsia.c, + tests/x509dn.c, tests/x509self.c, tests/x509signself.c: Fix + warnings. + +2009-05-07 Simon Josefsson + + * NEWS: Fix. + +2009-05-07 Simon Josefsson + + * tests/anonself.c, tests/dhepskself.c, tests/openpgpself.c, + tests/oprfi.c, tests/pskself.c, tests/resume.c, tests/tlsia.c, + tests/x509dn.c, tests/x509self.c, tests/x509signself.c: Use memset + instead of deprecated bzero. + +2009-05-07 Simon Josefsson + + * NEWS, src/certtool-cfg.c, src/serv.c: Fix build failure on systems + without AF_INET6, e.g., Solaris 2.6. Reported by "Tom G. + Christensen" in + + . + +2009-05-06 Simon Josefsson + + * doc/Makefile.am: Drop README.GIT. + +2009-05-06 Simon Josefsson + + * tests/Makefile.am: Need to link directly to libgcrypt here. + +2009-05-06 Simon Josefsson + + * lib/mpi-libgcrypt.c: Don't use casts that break strict-aliasing + rules. + +2009-05-06 Simon Josefsson + + * README-alpha: Fix. + +2009-05-06 Simon Josefsson + + * configure.ac: Fix. + +2009-05-05 Simon Josefsson + + * README-alpha, doc/README.GIT: Replace doc/README.GIT with + README-alpha. + +2009-05-05 Simon Josefsson + + * README-alpha: Fix. + +2009-05-05 Simon Josefsson + + * README-alpha: Add. + +2009-05-03 Simon Josefsson + + * NEWS, lib/libgnutls.map: Fix build failure when LZO is enabled. + +2009-05-03 Simon Josefsson + + * lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/openpgp.h, + libextra/includes/gnutls/extra.h: Fix gtk-doc warnings. + +2009-05-03 Simon Josefsson + + * NEWS: Fix. + +2009-05-03 Simon Josefsson + + * lib/gnutls_asn1_tab.c, lib/pkix_asn1_tab.c: Regenerated libtasn1 + files. + +2009-05-03 Simon Josefsson + + * doc/Makefile.am: Build tools before using them. + +2009-05-03 Simon Josefsson + + * .x-sc_GPL_version, .x-sc_avoid_if_before_free, + .x-sc_cast_of_alloca_return_value, .x-sc_cast_of_argument_to_free, + .x-sc_file_system, .x-sc_m4_quote_check, .x-sc_makefile_check, + .x-sc_program_name, .x-sc_prohibit_HAVE_MBRTOWC, + .x-sc_prohibit_S_IS_definition, .x-sc_space_tab, .x-sc_the_the, + .x-sc_two_space_separator_in_usage, .x-sc_useless_cpp_parens, NEWS, + cfg.mk, doc/examples/ex-serv-export.c, doc/gnutls.texi, + gtk-doc.make, lib/gnutls.asn, lib/m4/hooks.m4, + lib/openpgp/Makefile.am, lib/pkix.asn, lib/x509/Makefile.am, + libextra/m4/hooks.m4, m4/valgrind.m4, src/Makefile.am, + src/certtool-cfg.c, src/certtool.c, src/crypt.c, src/psk.c, + src/serv.c, src/tls_test.c, tests/Makefile.am, tests/resume.c, + tests/x509dn.c: Fix syntax-check warnings. + +2009-05-03 Simon Josefsson + + * doc/reference/Makefile.am, gtk-doc.make: Upgrade gtk-doc files. + +2009-05-03 Simon Josefsson + + * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, + libextra/configure.ac: Bump versions. + +2009-05-03 Simon Josefsson + + * ChangeLog: Generated. + +2009-05-03 Simon Josefsson + + * NEWS: Version 2.7.8. + +2009-05-03 Simon Josefsson + + * gl/Makefile.am, gl/gettext.h, gl/m4/wchar.m4, gl/wchar.in.h, + lib/gl/Makefile.am, lib/gl/gettext.h, lib/gl/m4/wchar.m4, + lib/gl/wchar.in.h: Update gnulib files. + +2009-05-03 Simon Josefsson + + * tests/pkcs1-padding/pkcs1-pad: Fix self test fails because of + expired certs using datefudge. + +2009-05-01 Simon Josefsson + + * tests/chainverify.c: Print cert details. Fix verifying expired + cert. + +2009-05-01 Simon Josefsson + + * tests/cve-2008-4989.c: Avoid time checks. + +2009-04-30 Simon Josefsson + + * tests/Makefile.am, tests/cve-2009-1415.c, tests/cve-2009-1416.c: + Add self-tests for security problems. + +2009-04-30 Simon Josefsson + + * NEWS: Add. + +2009-04-30 Simon Josefsson + + * lib/gnutls_cert.c, lib/includes/gnutls/gnutls.h.in, + lib/includes/gnutls/x509.h, lib/x509/verify.c, src/common.c: + libgnutls: Check activation/expiration times on untrusted + certificates. Reported by Romain Francoise. + +2009-04-30 Simon Josefsson + + * lib/gnutls_pk.c: Fix DSA key generation. + +2009-04-30 Simon Josefsson + + * cfg.mk: Use modern git names. + +2009-04-30 Simon Josefsson + + * NEWS: Add old NEWS entries. + +2009-04-30 Simon Josefsson + + * doc/gnutls.texi: Document how to use TLS exporters. + +2009-04-30 Simon Josefsson + + * src/serv.c: Fix getaddrinfo/bind loop. + +2009-04-28 Simon Josefsson + + * maint.mk: Update gnulib files. + +2009-04-27 Simon Josefsson + + * : Replace PDF with official ZIP file. The PDFs have the same + SHA-1. The file was downloaded from: + + http://csrc.nist.gov/groups/ST/crypto_apps_infra/documents/PKI%20Testing%20Page.htmUsing the direct link: + + http://csrc.nist.gov/groups/ST/crypto_apps_infra/documents/certpath1.07.zip + +2009-04-27 Simon Josefsson + + * cfg.mk: Fix. + +2009-04-27 Simon Josefsson + + * build-aux/useless-if-before-free, build-aux/vc-list-files, + gl/Makefile.am, gl/m4/gnulib-comp.m4, gl/tests/Makefile.am, + gl/tests/test-vc-list-files-cvs.sh, + gl/tests/test-vc-list-files-git.sh, maint.mk: Update gnulib files. + +2009-04-27 Simon Josefsson + + * src/certtool.c: Fix some error messages. + +2009-04-27 Simon Josefsson + + * gl/m4/lib-link.m4, gl/m4/lib-prefix.m4, gl/vasnprintf.c, + lib/gl/m4/lib-link.m4, lib/gl/m4/lib-prefix.m4, + lib/gl/vasnprintf.c, libextra/gl/m4/lib-link.m4, + libextra/gl/m4/lib-prefix.m4, maint.mk: Update gnulib files. + +2009-04-27 Simon Josefsson + + * NEWS: Fix. + +2009-04-27 Simon Josefsson + + * NEWS: Fix. + +2009-04-27 Simon Josefsson + + * lib/libgnutls.map: Move symbols new with gnutls 2.8.x under + GNUTLS_2_8 version. + +2009-04-24 Simon Josefsson + + * NEWS, src/serv.c: gnutls-serv: Listen on all interfaces. + +2009-04-24 Simon Josefsson + + * maint.mk: Update gnulib files. + +2009-04-24 Simon Josefsson + + * lib/pk-libgcrypt.c: Cleanup code and fix memory leaks. + +2009-04-23 Simon Josefsson + + * doc/gendocs_template: Update gnulib files. + +2009-04-23 Simon Josefsson + + * NEWS, doc/gnutls.texi: Improve texinfo section names. + +2009-04-23 Simon Josefsson + + * tests/x509sign-verify.c: Also test DSA keys. + +2009-04-21 Nikos Mavrogiannopoulos + + * lib/x509/verify.c: release allocated mpis in + _gnutls_x509_verify_algorithm(). + +2009-04-21 Simon Josefsson + + * tests/libgcrypt.supp: Suppress more for modern libgcrypt. + +2009-04-21 Simon Josefsson + + * tests/x509sign-verify.c: Cleanup code. + +2009-04-21 Simon Josefsson + + * src/cli.c: Pass proper socket to libgnutls on Windows. + +2009-04-21 Simon Josefsson + + * gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, + gl/sockets.c, gl/sockets.h, gl/tests/Makefile.am, gl/tests/dummy.c, + gl/tests/sockets.c, gl/tests/sockets.h: Need sockets module. + +2009-04-20 Simon Josefsson + + * lib/libgnutls.map: Make check needs more symbols. + +2009-04-20 Simon Josefsson + + * NEWS, lib/Makefile.am, lib/libgnutls.map, libextra/Makefile.am, + libextra/libgnutls-extra.map, libextra/libgnutls-extra.vers: Improve + version scripts. Limit exported symbols on systems without linker + script. + +2009-04-20 Simon Josefsson + + * NEWS: Add. + +2009-04-20 Simon Josefsson + + * NEWS, build-aux/gendocs.sh, configure.ac, lib/configure.ac, + lib/m4/hooks.m4, libextra/configure.ac: Bump version. + +2009-04-20 Simon Josefsson + + * ChangeLog: Generated. + +2009-04-20 Simon Josefsson + + * NEWS: Version 2.7.7. + +2009-04-20 Simon Josefsson + + * doc/manpages/Makefile.am: Generated. + +2009-04-20 Simon Josefsson + + * doc/gnutls.texi: Really generate DSA key in example. + +2009-04-20 Simon Josefsson + + * lib/x509/x509.c: Fix return value. Doc fix. + +2009-04-20 Simon Josefsson + + * doc/gnutls.texi: Explain how to generate DSA key. + +2009-04-20 Simon Josefsson + + * lib/gnutls_x509.c, lib/x509/x509.c: Doc fix for new APIs. + +2009-04-20 Nikos Mavrogiannopoulos + + * NEWS, lib/pk-libgcrypt.c: Corrected possible memory corruption on + signature verification failure. Reported by Miroslav Kratochvil + + +2009-04-18 Nikos Mavrogiannopoulos + + * doc/printlist.c: Added small patch from Romain Francoise to remove + unneeded include. + +2009-04-18 Nikos Mavrogiannopoulos + + * lib/includes/gnutls/x509.h, lib/x509/privkey.c, lib/x509/x509.c, + tests/Makefile.am, tests/x509sign-verify.c: Added self test for + gnutls_x509_crt_verify_hash() and + gnutls_x509_crt_get_verify_algorithm(). Added some notes in + gnutls_x509_privkey_sign_hash(). + +2009-04-17 Nikos Mavrogiannopoulos + + * NEWS, lib/includes/gnutls/x509.h, lib/x509/verify.c, + lib/x509/x509.c: gnutls_x509_crt_get_sig_algorithm was renamed to + gnutls_x509_crt_get_verify_algorithm. Corrected some issues with + the code. + +2009-04-17 Simon Josefsson + + * NEWS: Reorder. + +2009-04-17 Simon Josefsson + + * NEWS, lib/gnutls.pc.in: Add -ltasn1 to pkg-config file. Reported + by Andreas Metzler in + + . + +2009-04-17 Simon Josefsson + + * NEWS: Add. + +2009-04-17 Simon Josefsson + + * cfg.mk: Use new po domain. + +2009-04-17 Simon Josefsson + + * lib/po/de.po.in: Sync with TP. + +2009-04-17 Simon Josefsson + + * lib/po/de.po.in: Sync with TP. + +2009-04-17 Simon Josefsson + + * maint.mk: Update gnulib files. + +2009-04-17 Simon Josefsson + + * lib/po/de.po.in: Sync with TP. + +2009-04-16 Simon Josefsson + + * : commit 934102c33ac89ace9a1e1d02047d54f2fea6b59b Merge: bc279f4 + d720f3f Author: Nikos Mavrogiannopoulos Date: + Wed Apr 15 22:43:03 2009 +0300 + +2009-04-14 Simon Josefsson + + * build-aux/gendocs.sh, doc/gendocs_template, doc/lgpl-2.1.texi: + Update gnulib files. + +2009-04-11 Simon Josefsson + + * gl/Makefile.am, gl/m4/inet_ntop.m4, maint.mk: Update gnulib files. + +2009-04-03 Nikos Mavrogiannopoulos + + * NEWS: documented Cedric Bail's function addition + +2009-04-03 Nikos Mavrogiannopoulos + + * : commit 258d2e873f61d5543c674f46a6247b4a379d2cca Author: Simon + Josefsson Date: Fri Apr 3 15:20:09 2009 + +0200 + +2009-04-03 Simon Josefsson + + * lib/po/POTFILES.in: Fix filenames. + +2009-04-03 Simon Josefsson + + * cfg.mk: Fix PODIR. + +2009-04-03 Simon Josefsson + + * Makefile.am, configure.ac, lib/Makefile.am, lib/configure.ac, + lib/po/LINGUAS, lib/po/Makevars, lib/po/POTFILES.in, + lib/po/cs.po.in, lib/po/de.po.in, lib/po/fr.po.in, lib/po/ms.po.in, + lib/po/nl.po.in, lib/po/pl.po.in, lib/po/sv.po.in, lib/po/vi.po.in, + po/LINGUAS, po/Makevars, po/POTFILES.in, po/cs.po.in, po/de.po.in, + po/fr.po.in, po/ms.po.in, po/nl.po.in, po/pl.po.in, po/sv.po.in, + po/vi.po.in: Move i18n dir back to lib/, after discussion with + Bruno. + +2009-04-03 Simon Josefsson + + * configure.ac, gl/Makefile.am, gl/m4/gnulib-cache.m4, + gl/m4/gnulib-comp.m4, gl/m4/ld-version-script.m4, + m4/linker-script.m4: Use linker-script from gnulib. + +2009-04-03 Simon Josefsson + + * configure.ac, gl/Makefile.am, gl/m4/gnulib-cache.m4, + gl/m4/gnulib-comp.m4, gl/m4/ld-output-def.m4, lib/configure.ac, + libextra/configure.ac, m4/output-def.m4: Use output-def test from + gnulib. + +2009-04-03 Simon Josefsson + + * configure.ac, lib/Makefile.am, lib/libgnutls.map, + lib/libgnutls.vers, lib/libgnutlsxx.map, lib/libgnutlsxx.vers: + Rename linker script. + +2009-04-03 Simon Josefsson + + * lib/Makefile.am, lib/m4/hooks.m4, libextra/Makefile.am: Use + DLL_VERSION variable name. + +2009-03-30 Simon Josefsson + + * po/LINGUAS, po/cs.po.in: Sync with TP. + +2009-03-30 Simon Josefsson + + * lib/gnutls_global.c, lib/openpgp/output.c, lib/x509/output.c: Fix + warnings. + +2009-03-30 Simon Josefsson + + * configure.ac: Only add warnings when using gcc. Don't use + -Wformat-nonliteral. + +2009-03-30 Simon Josefsson + + * GNUmakefile, build-aux/gnupload, gl/Makefile.am, gl/close-hook.c, + gl/close-hook.h, gl/close.c, gl/fseeko.c, gl/gai_strerror.c, + gl/m4/close.m4, gl/m4/gnulib-common.m4, gl/m4/gnulib-comp.m4, + gl/m4/printf.m4, gl/m4/select.m4, gl/m4/stdarg.m4, + gl/m4/sys_select_h.m4, gl/readline.c, gl/select.c, gl/setsockopt.c, + gl/stdint.in.h, gl/sys_select.in.h, gl/sys_socket.in.h, + gl/tests/Makefile.am, gl/tests/sockets.c, gl/tests/sockets.h, + gl/tests/test-getaddrinfo.c, gl/tests/test-sockets.c, + gl/unistd.in.h, gl/vasnprintf.c, gl/winsock-select.c, + lib/gl/Makefile.am, lib/gl/close-hook.c, lib/gl/close-hook.h, + lib/gl/fseeko.c, lib/gl/m4/gnulib-common.m4, + lib/gl/m4/gnulib-comp.m4, lib/gl/m4/printf.m4, lib/gl/sockets.c, + lib/gl/sockets.h, lib/gl/stdint.in.h, lib/gl/sys_socket.in.h, + lib/gl/tests/test-sockets.c, lib/gl/unistd.in.h, + lib/gl/vasnprintf.c, lib/gl/w32sock.h, + libextra/gl/m4/gnulib-common.m4, maint.mk: Update gnulib files. + +2009-03-26 Nikos Mavrogiannopoulos + + * lib/includes/gnutls/x509.h, lib/x509/verify.c, lib/x509/x509.c, + lib/x509/x509_int.h: Applied patch by Cedric Bail to add functions + gnutls_x509_crt_verify_hash() and + gnutls_x509_crt_get_sig_algorithm(). + +2009-03-23 Simon Josefsson + + * cfg.mk: Fix bootstrap. + +2009-03-23 Simon Josefsson + + * Makefile.am, cfg.mk, configure.ac, lib/Makefile.am, + lib/configure.ac: Fix po paths. + +2009-03-23 Simon Josefsson + + * lib/po/LINGUAS, lib/po/Makevars, lib/po/POTFILES.in, + lib/po/de.po.in, lib/po/fr.po.in, lib/po/ms.po.in, lib/po/nl.po.in, + lib/po/pl.po.in, lib/po/sv.po.in, lib/po/vi.po.in, po/LINGUAS, + po/Makevars, po/POTFILES.in, po/de.po.in, po/fr.po.in, po/ms.po.in, + po/nl.po.in, po/pl.po.in, po/sv.po.in, po/vi.po.in: Move lib/po to + po/ since the gettext domain is global for gnutls. + +2009-03-04 Simon Josefsson + + * lib/x509/Makefile.am: Cosmetic fix. + +2009-03-04 Simon Josefsson + + * lib/gnutls_global.c, lib/x509/x509_int.h: Be compatible with + libtasn1 before v1.6. + +2009-03-04 Simon Josefsson + + * NEWS: Add. + +2009-03-04 Simon Josefsson + + * NEWS, lib/minitasn1/coding.c, lib/minitasn1/decoding.c, + lib/minitasn1/element.c, lib/minitasn1/errors.c, + lib/minitasn1/errors.h, lib/minitasn1/gstr.c, lib/minitasn1/int.h, + lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, + lib/minitasn1/structure.c: Update to minitasn1 v1.8. + +2009-03-04 Simon Josefsson + + * lib/gnutls_global.c, lib/gnutls_global.h, lib/x509/common.c, + lib/x509/crl.c, lib/x509/crq.c, lib/x509/dn.c, + lib/x509/extensions.c, lib/x509/pkcs12.c, lib/x509/pkcs7.c, + lib/x509/x509.c: Use modern libtasn1 interfaces. + +2009-03-02 Simon Josefsson + + * NEWS: Add. + +2009-03-02 Simon Josefsson + + * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, + libextra/configure.ac: Bump version. + +2009-03-02 Simon Josefsson + + * doc/Makefile.am: Add -I's for errcodes/printlist. Reported by + Roman Bogorodskiy in + + . + +2009-02-27 Simon Josefsson + + * ChangeLog: Generated. + +2009-02-27 Simon Josefsson + + * doc/Makefile.am: Fix distcheck. + +2009-02-27 Simon Josefsson + + * doc/Makefile.am: Fix. + +2009-02-27 Simon Josefsson + + * doc/Makefile.am: Remove error_codes.texi and algorithms.texi to + fix make distcheck. + +2009-02-27 Simon Josefsson + + * doc/Makefile.am: Update --css-include path to fix distcheck. + +2009-02-27 Simon Josefsson + + * NEWS: Version 2.7.6. + +2009-02-27 Simon Josefsson + + * .gitignore: Fix. + +2009-02-27 Simon Josefsson + + * gl/tests/test-fseeko2.sh, lib/gl/tests/test-fseeko2.sh: Update + gnulib files. + +2009-02-27 Simon Josefsson + + * gl/m4/gnulib-comp.m4, gl/m4/printf.m4, gl/m4/stdint.m4, + gl/m4/stdlib_h.m4, gl/m4/vasnprintf.m4, gl/tests/Makefile.am, + gl/tests/test-fseeko.c, gl/tests/test-getaddrinfo.c, + gl/vasnprintf.c, lib/gl/m4/gnulib-comp.m4, lib/gl/m4/printf.m4, + lib/gl/m4/stdint.m4, lib/gl/m4/stdlib_h.m4, + lib/gl/m4/vasnprintf.m4, lib/gl/tests/Makefile.am, + lib/gl/tests/test-fseeko.c, lib/gl/vasnprintf.c: Update gnulib + files. + +2009-02-27 Simon Josefsson + + * gl/m4/ungetc.m4, lib/gl/m4/ungetc.m4: Update gnulib files. + +2009-02-27 Simon Josefsson + + * doc/scripts/gdoc: Revert %-hack that lead to syntax errors in + texinfo output. + +2009-02-24 Simon Josefsson + + * src/certtool.c: Minor cleanup. + +2009-02-24 Simon Josefsson + + * NEWS, src/certtool-cfg.c: certtool: Query for multiple dnsName + subjectAltName in interactive mode. + +2009-02-23 Simon Josefsson + + * gl/m4/include_next.m4, lib/gl/m4/include_next.m4: Update gnulib + files. + +2009-02-22 Nikos Mavrogiannopoulos + + * NEWS: documented pkix.asn change + +2009-02-22 Nikos Mavrogiannopoulos + + * lib/pkix.asn: Removed several unneeded parameters from pkix tree. + This reduces initial memory usage after gnutls_global_init() from + 140kb (in amd64) to 50kb. + +2009-02-22 Nikos Mavrogiannopoulos + + * lib/x509/dn.c, tests/crq_key_id.c: Added more verbose information. + +2009-02-22 Nikos Mavrogiannopoulos + + * lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509/dn.c, + tests/crq_key_id.c: Revert "Added more verbose debugging info" This reverts commit c2d3596cddbb54ac4f19c44b15a03ee1fcceab12. + +2009-02-22 Nikos Mavrogiannopoulos + + * lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509/dn.c, + tests/crq_key_id.c: Added more verbose debugging info + +2009-02-22 Nikos Mavrogiannopoulos + + * doc/TODO: removed items that have already been done or solved. + +2009-02-22 Nikos Mavrogiannopoulos + + * NEWS: documented the SSL3_RECORD_VERSION priority string + +2009-02-22 Nikos Mavrogiannopoulos + + * doc/scripts/gdoc, lib/gnutls_priority.c: Applied patch by Martin + von Gagern: The attached patch fixes gnutls_priority_init(3), but in + a very hackish way, treating a percent sign as indicating a constant + only if it is not immediately preceded by a double quote. + +2009-02-21 Nikos Mavrogiannopoulos + + * doc/manpages/gnutls-cli.1: Corrected listing of special keywords. + Reported by Martin von Gagern. + +2009-02-21 Nikos Mavrogiannopoulos + + * doc/manpages/gnutls-cli.1, lib/gnutls_handshake.c, + lib/gnutls_int.h, lib/gnutls_priority.c: Added %SSL3_RECORD_VERSION + priority option that allows to specify the client hello message + record version. Used to overcome buggy TLS servers. Report by Martin + von Gagern. + +2009-02-15 Nikos Mavrogiannopoulos + + * lib/x509/verify.c: Corrected bit disable (was flipping instead). + Initialy reported by Daniel Kahn Gillmor on 9/1/2008. Many thanks to + moog@sysdev.oucs.ox.ac.uk for bringing this into my attention. + +2009-02-11 Simon Josefsson + + * NEWS: Fix. + +2009-02-11 Simon Josefsson + + * NEWS, src/serv.c: gnutls-serv: No longer disable MAC padding by + default. + +2009-02-11 Simon Josefsson + + * src/serv.c: More gnulib usage. + +2009-02-11 Simon Josefsson + + * src/cli.c: Use more gnulib interfaces. + +2009-02-11 Simon Josefsson + + * NEWS: Add. + +2009-02-11 Simon Josefsson + + * doc/gnutls.texi: Update gnutls-serv --help output. + +2009-02-11 Simon Josefsson + + * doc/gnutls.texi: Update gnutls-cli --help output. + +2009-02-11 Simon Josefsson + + * NEWS, lib/gnutls_int.h, lib/gnutls_priority.c, lib/gnutls_x509.c: + libgnutls: Add new priority strings for allowing RSA-MD5 and V1-CA. + +2009-02-11 Simon Josefsson + + * NEWS, src/cli.c: gnutls-cli: Don't permit V1 CAs by default. + +2009-02-11 Simon Josefsson + + * doc/Makefile.am, doc/errcodes.c, doc/printlist.c, + src/Makefile.am, src/errcodes.c, src/printlist.c: Move doc related + tools from src/ to doc/. + +2009-02-11 Simon Josefsson + + * src/common.c: Typo. + +2009-02-11 Simon Josefsson + + * src/common.c: Typo. + +2009-02-11 Simon Josefsson + + * src/common.c: Print OpenPGP cert info using libgnutls. + +2009-02-11 Simon Josefsson + + * NEWS, lib/openpgp/output.c: libgnutls: gnutls_openpgp_crt_print + supports oneline mode. + +2009-02-11 Simon Josefsson + + * tests/pathlen/ca-no-pathlen.pem, + tests/pathlen/no-ca-or-pathlen.pem: Fix expected test vectors. + +2009-02-11 Simon Josefsson + + * NEWS, lib/x509/output.c: libgnutls: gnutls_x509_crt_print prints + signature algorithm in oneline mode. + +2009-02-11 Simon Josefsson + + * gl/m4/close.m4, gl/m4/sockets.m4, gl/tests/sockets.h, + gl/tests/test-sockets.c, lib/gl/m4/sockets.m4, lib/gl/sockets.h, + lib/gl/tests/test-sockets.c: Update gnulib files. + +2009-02-11 Simon Josefsson + + * NEWS, src/common.c: gnutls-cli: Print certificate info using + libgnutls. + +2009-02-11 Simon Josefsson + + * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, + libextra/configure.ac: Bump versions. + +2009-02-11 Simon Josefsson + + * lib/x509/output.c: Print bit size of RSA exponents. + +2009-02-06 Simon Josefsson + + * ChangeLog: Generated. + +2009-02-06 Simon Josefsson + + * src/Makefile.am: Need -lgnutls etc for certtool-cfg.c. + +2009-02-06 Simon Josefsson + + * NEWS: Version 2.7.5. + +2009-02-06 Simon Josefsson + + * NEWS: Merge in old NEWS entries. + +2009-02-06 Simon Josefsson + + * lib/x509/verify.c: Move down revocation check to revert code to + how it looked before. The idea is that if you have marked a cert as + trusted, you may want to trust it even though some authority has + revoked it. This changes back how this code used to work. + +2009-02-02 Simon Josefsson + + * NEWS, doc/TODO, lib/x509/verify.c, tests/chainverify.c: Make it + possible to trust intermediary certificates. Based on tiny patch + from "Douglas E. Engert" in + + . + +2009-02-02 Simon Josefsson + + * tests/chainverify.c: Add another chain from bug reports. + +2009-02-02 Simon Josefsson + + * src/common.c: Print more certificate status values. + +2009-02-02 Simon Josefsson + + * lib/x509/x509.c: Assert less for expected errors. + +2009-02-02 Simon Josefsson + + * lib/x509/output.c: Simplify keyid printing to avoid allocation and + asserts. + +2009-02-01 Simon Josefsson + + * doc/manpages/Makefile.am, doc/scripts/gdoc: Update gdoc and use + -pkg-name. + +2009-02-01 Simon Josefsson + + * build-aux/gnupload, gl/Makefile.am, gl/m4/00gnulib.m4, + gl/m4/errno_h.m4, gl/m4/extensions.m4, gl/m4/gnulib-common.m4, + gl/m4/gnulib-comp.m4, gl/m4/multiarch.m4, gl/m4/pmccabe2html.m4, + gl/m4/stdlib_h.m4, gl/stdlib.in.h, gl/tests/test-getaddrinfo.c, + gl/version-etc.c, gl/version-etc.h, lib/gl/Makefile.am, + lib/gl/m4/00gnulib.m4, lib/gl/m4/errno_h.m4, + lib/gl/m4/extensions.m4, lib/gl/m4/gnulib-common.m4, + lib/gl/m4/gnulib-comp.m4, lib/gl/m4/multiarch.m4, + lib/gl/m4/stdlib_h.m4, lib/gl/stdlib.in.h, + libextra/gl/m4/00gnulib.m4, libextra/gl/m4/extensions.m4, + libextra/gl/m4/gnulib-common.m4, libextra/gl/m4/gnulib-comp.m4: + Update gnulib files. + +2009-01-27 Nikos Mavrogiannopoulos + + * NEWS, lib/gnutls_handshake.c: gnutls_handshake when sending client + hello during a rehandshake, will not offer a version number larger + than the current. Reported by Tristan Hill . + +2009-01-27 Nikos Mavrogiannopoulos + + * lib/gnutls_psk.c: result_size in gnutls_hex_encode behaves as + documented. It now holds the size of the result. Reported by John + Brooks. + +2009-01-21 Simon Josefsson + + * gl/Makefile.am, gl/arpa_inet.in.h, gl/fseeko.c, gl/m4/alloca.m4, + gl/m4/errno_h.m4, gl/m4/getaddrinfo.m4, gl/m4/getline.m4, + gl/m4/getpass.m4, gl/m4/gettimeofday.m4, gl/m4/gnulib-common.m4, + gl/m4/inet_ntop.m4, gl/m4/inet_pton.m4, gl/m4/intmax_t.m4, + gl/m4/inttypes_h.m4, gl/m4/lib-ld.m4, gl/m4/lib-link.m4, + gl/m4/longlong.m4, gl/m4/malloc.m4, gl/m4/minmax.m4, + gl/m4/printf.m4, gl/m4/readline.m4, gl/m4/realloc.m4, + gl/m4/sockets.m4, gl/m4/sockpfaf.m4, gl/m4/stdbool.m4, + gl/m4/stdint.m4, gl/m4/stdint_h.m4, gl/m4/stdio_h.m4, + gl/m4/unistd_h.m4, gl/m4/vasnprintf.m4, gl/m4/wchar_t.m4, + gl/m4/wint_t.m4, gl/progname.c, gl/stdint.in.h, gl/stdio.in.h, + gl/strerror.c, gl/sys_stat.in.h, gl/tests/gettimeofday.c, + gl/tests/ioctl.c, gl/tests/test-unistd.c, gl/unistd.in.h, + gl/wchar.in.h, lib/gl/Makefile.am, lib/gl/fseeko.c, + lib/gl/m4/alloca.m4, lib/gl/m4/byteswap.m4, lib/gl/m4/codeset.m4, + lib/gl/m4/errno_h.m4, lib/gl/m4/gettext.m4, + lib/gl/m4/gnulib-common.m4, lib/gl/m4/iconv.m4, + lib/gl/m4/intldir.m4, lib/gl/m4/intlmacosx.m4, lib/gl/m4/intmax.m4, + lib/gl/m4/intmax_t.m4, lib/gl/m4/inttypes-pri.m4, + lib/gl/m4/inttypes_h.m4, lib/gl/m4/lcmessage.m4, + lib/gl/m4/lib-ld.m4, lib/gl/m4/lib-link.m4, lib/gl/m4/lock.m4, + lib/gl/m4/longlong.m4, lib/gl/m4/malloc.m4, lib/gl/m4/memmem.m4, + lib/gl/m4/memmove.m4, lib/gl/m4/minmax.m4, lib/gl/m4/nls.m4, + lib/gl/m4/po.m4, lib/gl/m4/printf-posix.m4, lib/gl/m4/printf.m4, + lib/gl/m4/progtest.m4, lib/gl/m4/realloc.m4, lib/gl/m4/sockets.m4, + lib/gl/m4/sockpfaf.m4, lib/gl/m4/stdbool.m4, lib/gl/m4/stdint.m4, + lib/gl/m4/stdint_h.m4, lib/gl/m4/stdio_h.m4, lib/gl/m4/strcase.m4, + lib/gl/m4/strverscmp.m4, lib/gl/m4/threadlib.m4, + lib/gl/m4/uintmax_t.m4, lib/gl/m4/unistd_h.m4, + lib/gl/m4/vasnprintf.m4, lib/gl/m4/wchar_t.m4, lib/gl/m4/wint_t.m4, + lib/gl/stdint.in.h, lib/gl/stdio.in.h, lib/gl/sys_stat.in.h, + lib/gl/tests/test-unistd.c, lib/gl/unistd.in.h, lib/gl/wchar.in.h: + Update gnulib files. + +2009-01-21 Simon Josefsson + + * THANKS: Add. + +2009-01-21 Simon Josefsson + + * libextra/gl/Makefile.am, libextra/gl/gnulib.mk, + libextra/gl/m4/gnulib-cache.m4, libextra/gl/m4/gnulib-common.m4, + libextra/gl/m4/lib-ld.m4, libextra/gl/m4/lib-link.m4, + libextra/gl/m4/md5.m4: Add -I's in libextra/gl for stdint.h on + Solaris. Reported by Dagobert Michelsen in + + http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3388 + +2009-01-13 Simon Josefsson + + * lib/gnutls_state.c: Check return value properly. + +2009-01-13 Simon Josefsson + + * lib/gnutls_state.c: Fix mem leak because buffer is not expanded + correctly. + +2009-01-09 Simon Josefsson + + * NEWS: Fix typos. + +2009-01-09 Simon Josefsson + + * NEWS, lib/x509/verify.c: Permit V1 Certificate Authorities + properly. Before they were mistakenly rejected even though + GNUTLS_VERIFY_ALLOW_ANY_X509_V1_CA_CRT and/or + GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT were supplied. Reported by + "Douglas E. Engert" in + + . + +2009-01-09 Simon Josefsson + + * src/certtool.c: Permit V1 CA's in new --verify-chain code. + +2009-01-09 Simon Josefsson + + * THANKS: Add. + +2009-01-09 Simon Josefsson + + * tests/chainverify.c: Added chain supplied by "Douglas E. Engert" + . + +2009-01-07 Simon Josefsson + + * src/errcodes.c, src/printlist.c: Fix license header. + +2009-01-07 Simon Josefsson + + * lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_global.c, + lib/gnutls_global.h, lib/gnutls_int.h: Cleanup logger function type. + +2009-01-07 Simon Josefsson + + * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, + libextra/configure.ac: Bump versions. + +2009-01-07 Simon Josefsson + + * ChangeLog: Generated. + +2009-01-07 Simon Josefsson + + * NEWS: Version 2.7.4. + +2009-01-07 Simon Josefsson + + * lib/gnutls_rsa_export.c: Doc fixes. + +2009-01-07 Simon Josefsson + + * doc/examples/ex-client-psk.c, doc/examples/ex-client-resume.c, + doc/examples/ex-client-srp.c, doc/examples/ex-client-tlsia.c, + doc/examples/ex-client1.c, lib/gnutls_algorithms.c, + lib/gnutls_rsa_export.c, lib/openpgp/output.c, lib/x509/output.c, + lib/x509/privkey.c, src/cli.c, src/common.c, src/serv.c, + src/tls_test.c, tests/dhepskself.c: Fix warnings. + +2009-01-07 Simon Josefsson + + * build-aux/gendocs.sh, doc/gendocs_template, gl/Makefile.am, + gl/m4/errno_h.m4, gl/m4/extensions.m4, gl/m4/getaddrinfo.m4, + gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/inttypes_h.m4, + gl/m4/lib-link.m4, gl/m4/manywarnings.m4, gl/m4/multiarch.m4, + gl/m4/printf.m4, gl/m4/size_max.m4, gl/m4/stdint.m4, + gl/m4/stdint_h.m4, gl/m4/wchar.m4, gl/m4/wchar_t.m4, + gl/m4/wint_t.m4, gl/m4/xsize.m4, gl/stdint.in.h, gl/stdlib.in.h, + gl/sys_select.in.h, gl/tests/Makefile.am, + gl/tests/test-select-in.sh, gl/unistd.in.h, gl/version-etc.c, + gl/wchar.in.h, lib/gl/Makefile.am, lib/gl/m4/codeset.m4, + lib/gl/m4/errno_h.m4, lib/gl/m4/extensions.m4, + lib/gl/m4/gettext.m4, lib/gl/m4/glibc2.m4, lib/gl/m4/glibc21.m4, + lib/gl/m4/gnulib-cache.m4, lib/gl/m4/gnulib-comp.m4, + lib/gl/m4/iconv.m4, lib/gl/m4/intdiv0.m4, lib/gl/m4/intlmacosx.m4, + lib/gl/m4/intmax.m4, lib/gl/m4/inttypes-pri.m4, + lib/gl/m4/inttypes_h.m4, lib/gl/m4/lcmessage.m4, + lib/gl/m4/lib-link.m4, lib/gl/m4/multiarch.m4, lib/gl/m4/nls.m4, + lib/gl/m4/po.m4, lib/gl/m4/printf-posix.m4, lib/gl/m4/printf.m4, + lib/gl/m4/progtest.m4, lib/gl/m4/size_max.m4, lib/gl/m4/stdint.m4, + lib/gl/m4/stdint_h.m4, lib/gl/m4/threadlib.m4, + lib/gl/m4/uintmax_t.m4, lib/gl/m4/visibility.m4, + lib/gl/m4/wchar.m4, lib/gl/m4/wchar_t.m4, lib/gl/m4/wint_t.m4, + lib/gl/m4/xsize.m4, lib/gl/stdint.in.h, lib/gl/stdlib.in.h, + lib/gl/tests/Makefile.am, lib/gl/unistd.in.h, lib/gl/wchar.in.h, + libextra/gl/Makefile.am, libextra/gl/m4/extensions.m4, + libextra/gl/m4/gnulib-cache.m4, libextra/gl/m4/gnulib-comp.m4, + libextra/gl/m4/lib-link.m4: Update gnulib files. + +2009-01-07 Simon Josefsson + + * NEWS: Fix NEWS entry. + +2009-01-07 Simon Josefsson + + * tests/sha2/sha2: Fix self-test with new certtool --verify-chain + output. + +2009-01-06 Daniel Kahn Gillmor + + * NEWS: added NEWS item about MD5 deprecation + +2009-01-06 Simon Josefsson + + * tests/pkcs1-padding/pkcs1-pad: Fix expect strings to compensate + for new certtool -e output. + +2009-01-06 Simon Josefsson + + * NEWS, src/certtool.c: certtool: Make --verify-chain use libgnutls + verification algorithm. + +2009-01-06 Simon Josefsson + + * tests/chainverify.c: Test chain with EE cert signed using RSA-MD5. + +2009-01-06 Daniel Kahn Gillmor + + * lib/x509/verify.c: actually deprecate MD5 and MD2 signatures + during X.509 verification by treating them as invalid unless the + GNUTLS_VERIFY_ALLOW_SIGN_RSA_{MD5,MD2} flags are present. + +2008-12-12 Simon Josefsson + + * NEWS: Add NEWS entries from 2.6.3. + +2008-12-12 Simon Josefsson + + * tests/crq_key_id.c: Fix. + +2008-12-12 Simon Josefsson + + * tests/crq_key_id.c: Make it compile. Speed up key generation. + +2008-12-12 Simon Josefsson + + * tests/crq_key_id.c: Indent. + +2008-12-12 Simon Josefsson + + * NEWS, tests/Makefile.am, tests/crq_key_id.c: Add crq_key_id + self-test from David Marín Carreño. + +2008-12-11 Simon Josefsson + + * configure.ac: Update manywarnings usage. + +2008-12-11 Simon Josefsson + + * NEWS: Add. + +2008-12-11 Simon Josefsson + + * lib/x509/output.c: Print public key id for certificate requests + too. + +2008-12-11 Simon Josefsson + + * doc/manpages/Makefile.am: Generated. + +2008-12-11 Simon Josefsson + + * configure.ac, lib/configure.ac, lib/m4/hooks.m4, + libextra/configure.ac: Bump versions. + +2008-12-11 Simon Josefsson + + * AUTHORS, NEWS, lib/includes/gnutls/x509.h, lib/x509/crq.c: gnutls: + New interface to get key id for certificate requests. Patch from + David Marín Carreño in + + . + +2008-12-10 Simon Josefsson + + * ChangeLog: Generated. + +2008-12-10 Simon Josefsson + + * NEWS: Version 2.7.3. + +2008-12-10 Simon Josefsson + + * tests/chainverify.c: Check ca=false with flags too. + +2008-12-10 Simon Josefsson + + * gl/override/tests/test-lseek.sh.diff, gl/tests/test-lseek.sh, + lib/gl/tests/test-lseek.sh: Disable parts of gnulib self-tests that + fail on mingw. + +2008-12-10 Simon Josefsson + + * lib/gl/tests/test-lseek.c, maint.mk: Update gnulib files. + +2008-12-10 Simon Josefsson + + * gl/override/tests/test-lseek.c.diff, + gl/override/tests/test-select-in.sh.diff, gl/tests/test-lseek.c, + gl/tests/test-select-in.sh: Disable parts of gnulib self-tests that + fail on mingw. + +2008-12-10 Simon Josefsson + + * doc/examples/ex-cxx.cpp: Drop config.h, not needed (hopefully?) + and breaks mingw due to rpl_gmtime. + +2008-12-10 Simon Josefsson + + * src/Makefile.am: Certtool need libgnutls etc for + libcmd-certtool.la too, due to certtool-cfg.c. + +2008-12-10 Simon Josefsson + + * tests/x509self.c: Fix comments. + +2008-12-10 Simon Josefsson + + * NEWS: Add. + +2008-12-10 Simon Josefsson + + * NEWS: Add. + +2008-12-10 Simon Josefsson + + * tests/cve-2008-4989.c: Align with Nikos' patch. + +2008-12-10 Simon Josefsson + + * lib/opencdk/Makefile.am, lib/opencdk/armor.c, + lib/opencdk/keydb.c, lib/opencdk/literal.c, lib/opencdk/misc.c, + lib/opencdk/new-packet.c, lib/opencdk/read-packet.c, + lib/opencdk/sig-check.c, lib/opencdk/stream.c: Revert "Fix warnings + in opencdk." This reverts commit 59cddc711e55bbd094bdf95986277fb33ba964ee. + +2008-12-10 Simon Josefsson + + * lib/x509/verify.c: Revert last commit. + +2008-12-10 Simon Josefsson + + * tests/chainverify.c: Add GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT flag + when needed. + +2008-12-10 Simon Josefsson + + * tests/chainverify.c: Add hbci chain. + +2008-12-10 Simon Josefsson + + * tests/chainverify.c: Fix comments. + +2008-12-10 Simon Josefsson + + * tests/chainverify.c: Fix order to match comments. + +2008-12-10 Simon Josefsson + + * tests/chainverify.c: Don't fail on expect errors, to allow more + information to be collected. + +2008-12-10 Simon Josefsson + + * NEWS, lib/x509/verify.c: Revert Nikos revert, and fix verification + hopefully better. The new logic is to include the CA cert in + validation, but short-cut full validation of trusted certificates. + +2008-12-10 Simon Josefsson + + * tests/chainverify.c: Add chain with CA having a basic constraint + saying CA=FALSE. + +2008-12-10 Simon Josefsson + + * tests/cve-2008-4989.c: Add note. + +2008-12-10 Simon Josefsson + + * NEWS, tests/Makefile.am, tests/chainverify.c: Add self-test of + chain verification logic. + +2008-12-09 Simon Josefsson + + * tests/libgcrypt.supp: Ignore more. + +2008-12-05 Simon Josefsson + + * NEWS: Add. + +2008-12-05 Nikos Mavrogiannopoulos + + * lib/x509/verify.c: reintroduced the self signed certificate + removal code. This time shouldn't have the drawbacks that used to. + +2008-12-05 Simon Josefsson + + * lib/gnutls_global.c: Disable secmem rather than overriding + libgcrypt memory allocators. Suggested by Werner Koch in + + . + +2008-12-04 Nikos Mavrogiannopoulos + + * lib/gnutls_global.c: rearranged initialization stuff based on + Werner's suggestions. + +2008-12-04 Nikos Mavrogiannopoulos + + * src/certtool.c: gcry_control (GCRYCTL_ENABLE_QUICK_RANDOM, 0) is + being called after libgcrypt initialization (gnutls_global_init). + +2008-12-03 Simon Josefsson + + * lib/opencdk/Makefile.am, lib/opencdk/armor.c, + lib/opencdk/keydb.c, lib/opencdk/literal.c, lib/opencdk/misc.c, + lib/opencdk/new-packet.c, lib/opencdk/read-packet.c, + lib/opencdk/sig-check.c, lib/opencdk/stream.c: Fix warnings in + opencdk. + +2008-12-03 Simon Josefsson + + * gl/m4/manywarnings.m4: Add. + +2008-12-01 Simon Josefsson + + * configure.ac, gl/Makefile.am, gl/m4/gnulib-cache.m4, + gl/m4/gnulib-comp.m4, gl/m4/include_next.m4, gl/m4/warnings.m4, + gl/stdint.in.h, gl/sys_time.in.h, lib/gl/m4/include_next.m4, + lib/gl/stdint.in.h: Update gnulib files. + +2008-11-29 Nikos Mavrogiannopoulos + + * tests/x509self.c: Incorporated patch (with modifications) from Joe + Orton that also checks the rehandshake capabilities. + +2008-11-25 Simon Josefsson + + * lib/opencdk/Makefile.am, lib/openpgp/Makefile.am, + libextra/Makefile.am, tests/Makefile.am: Fix minitasn1 -I's. + +2008-11-25 Simon Josefsson + + * lib/x509/Makefile.am: Fix minitasn1 -I. + +2008-11-25 Simon Josefsson + + * lib/gnutls_buffers.c: Fix compiler warning. + +2008-11-23 Simon Josefsson + + * src/Makefile.am: Libreadline is needed by libcmd_certtool.la, not + certtool. Reported by Arfrever Frehtes Taifersar Arahesis + in + + . + +2008-11-23 Nikos Mavrogiannopoulos + + * lib/opencdk/context.h, lib/opencdk/literal.c, lib/opencdk/misc.c, + lib/opencdk/new-packet.c, lib/opencdk/opencdk.h, + lib/opencdk/read-packet.c: Converted non-C compliant code to + standard C. The usage of structures like: struct x { int el1; char str[1]; } and the trick of using a single allocation for str and the structure + itself by allocating sizeof(x) + strlen()-1, are questionable. They + were converted to: struct x { int el1; char *str; } and there is a single allocation of sizeof(x)+strlen() but then the + str pointer is updated to point to the rest of the data. + +2008-11-23 Nikos Mavrogiannopoulos + + * lib/gnutls_buffers.c, lib/gnutls_int.h, lib/gnutls_str.c, + lib/gnutls_str.h, lib/x509/dn.c: When reading data from a buffer + (gnutls_string) avoid memmoving all remaining data. This will speed + up short byte reads. + +2008-11-21 Nikos Mavrogiannopoulos + + * doc/TODO: reorganized goals + +2008-11-21 Nikos Mavrogiannopoulos + + * src/cli.c: return non zero error code on error conditions. + +2008-11-21 Nikos Mavrogiannopoulos + + * doc/certtool.cfg: better grouping of configuration directives + +2008-11-21 Nikos Mavrogiannopoulos + + * : commit 8b14ab18cf5e5214ac3d28412e0c503e83a753c1 Author: Nikos + Mavrogiannopoulos Date: Fri Nov 21 21:02:45 + 2008 +0200 + +2008-11-18 Simon Josefsson + + * lib/gnutls_compress.c: Clean up LZO initialization. + +2008-11-18 Simon Josefsson + + * lib/auth_cert.c: Don't use // comments. + +2008-11-18 Simon Josefsson + + * src/Makefile.am: Change link order, so that gnulib is last. + +2008-11-18 Simon Josefsson + + * maint.mk: Update gnulib files. + +2008-11-18 Simon Josefsson + + * lib/po/LINGUAS: Sync with TP. + +2008-11-18 Simon Josefsson + + * lib/po/LINGUAS: Sync with TP. + +2008-11-18 Simon Josefsson + + * lib/po/LINGUAS, lib/po/ms.po.in: Sync with TP. + +2008-11-18 Simon Josefsson + + * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, + libextra/configure.ac: Bump versions. + +2008-11-18 Simon Josefsson + + * ChangeLog: Generated. + +2008-11-18 Simon Josefsson + + * NEWS: Version 2.7.2. + +2008-11-18 Simon Josefsson + + * doc/reference/Makefile.am: Add deprecated guard for libtasn1. + +2008-11-18 Simon Josefsson + + * NEWS, lib/minitasn1/coding.c, lib/minitasn1/decoding.c, + lib/minitasn1/element.c, lib/minitasn1/element.h, + lib/minitasn1/errors.c, lib/minitasn1/gstr.h, + lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, + lib/minitasn1/parser_aux.h, lib/minitasn1/structure.c, + lib/minitasn1/structure.h: Sync with libtasn1 v1.7. + +2008-11-18 Simon Josefsson + + * doc/examples/Makefile.am, lib/Makefile.am, + lib/openpgp/Makefile.am, libextra/Makefile.am: Fix WARN_CFLAGS uses. + +2008-11-18 Simon Josefsson + + * lib/gnutls_compress.c: Fix warnings. + +2008-11-18 Simon Josefsson + + * tests/Makefile.am: Respect ENABLE_OPENSSL. + +2008-11-18 Simon Josefsson + + * configure.ac: Move gnulib EARLY early. + +2008-11-18 Simon Josefsson + + * configure.ac, lib/configure.ac, lib/m4/hooks.m4, + lib/m4/output-def.m4, libextra/configure.ac, m4/output-def.m4: Move + C++ and -output-def detection. + +2008-11-18 Simon Josefsson + + * configure.ac, lib/configure.ac, lib/m4/hooks.m4, + lib/m4/linker-script.m4, libextra/configure.ac, m4/linker-script.m4: + Fix linker script test. + +2008-11-18 Simon Josefsson + + * configure.ac: Fix typo. + +2008-11-18 Simon Josefsson + + * configure.ac, libextra/m4/hooks.m4: Print Openssl status. + +2008-11-18 Simon Josefsson + + * configure.ac, lib/m4/hooks.m4: Print C++ status. + +2008-11-18 Simon Josefsson + + * configure.ac: Cleanup guile tests. + +2008-11-17 Simon Josefsson + + * gl/m4/warnings.m4: Update gnulib files. + +2008-11-17 Simon Josefsson + + * configure.ac: Rewrite warning initializations. + +2008-11-17 Simon Josefsson + + * configure.ac: Typo. + +2008-11-17 Simon Josefsson + + * gl/m4/warnings.m4: Update gnulib files. + +2008-11-17 Simon Josefsson + + * doc/examples/examples.h: Add. + +2008-11-17 Simon Josefsson + + * configure.ac, doc/examples/Makefile.am, doc/examples/ex-alert.c, + doc/examples/ex-client-psk.c, doc/examples/ex-pkcs12.c, + doc/examples/ex-rfc2818.c, doc/examples/ex-session-info.c, + doc/examples/ex-verify.c, doc/examples/ex-x509-info.c, + doc/examples/tcp.c, gl/gettext.h, gl/override/lib/gettext.h.diff, + lib/gl/gettext.h, lib/gl/override/lib/gettext.h.diff, + lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_state.c, + lib/gnutls_str.h, lib/openpgp/output.c, lib/x509/Makefile.am, + lib/x509/dn.c, lib/x509/output.c, lib/x509/privkey.c, + libextra/fipsmd5.c, libextra/gnutls_extra.c, + libextra/gnutls_openssl.c, src/Makefile.am, src/cli.c, + src/common.h, src/crypt.c, src/prime.c, src/psk.c, src/serv.c, + src/tls_test.c, tests/Makefile.am, tests/anonself.c, + tests/crypto_rng.c, tests/dhepskself.c, tests/dn.c, + tests/finished.c, tests/gc.c, tests/mini.c, tests/openpgpself.c, + tests/pkcs12_s2k.c, tests/pskself.c, tests/resume.c, + tests/set_pkcs12_cred.c, tests/tlsia.c, tests/utils.c, + tests/utils.h, tests/x509dn.c, tests/x509self.c, + tests/x509signself.c: Use more warnings. Fix many warnings. + +2008-11-17 Simon Josefsson + + * gl/m4/warnings.m4, gl/override/tests/test-select-out.sh.diff, + gl/tests/test-select-out.sh: Update gnulib files. + +2008-11-17 Simon Josefsson + + * lib/includes/gnutls/compat.h, lib/includes/gnutls/crypto.h, + lib/includes/gnutls/gnutlsxx.h, lib/includes/gnutls/openpgp.h, + lib/includes/gnutls/pkcs12.h, lib/includes/gnutls/x509.h: Fix + cosmetic nits in header files. + +2008-11-17 Simon Josefsson + + * NEWS, lib/includes/gnutls/compat.h, + lib/includes/gnutls/gnutls.h.in: Fix namespace of version symbols. + +2008-11-17 Simon Josefsson + + * NEWS: Add. + +2008-11-17 Simon Josefsson + + * lib/includes/gnutls/gnutls.h.in: Move #include's outside of C++ + markers. + +2008-11-17 Simon Josefsson + + * src/cli-gaa.c, src/cli-gaa.h, src/serv-gaa.c, src/serv-gaa.h: + Generated. + +2008-11-17 Simon Josefsson + + * src/common.c: Work around gnulib+mingw problem. + +2008-11-17 Simon Josefsson + + * src/cli.gaa, src/common.h, src/serv.c, src/serv.gaa: Never include + config.h in *.h files. + +2008-11-17 Simon Josefsson + + * gl/m4/hostent.m4, gl/m4/servent.m4: Update gnulib files. + +2008-11-17 Simon Josefsson + + * gl/override/tests/test-select-out.sh.diff, + gl/tests/test-select-out.sh: Work around reported bug in gnulib + self-tests. + +2008-11-17 Simon Josefsson + + * gl/m4/getaddrinfo.m4, gl/m4/gnulib-comp.m4, gl/m4/sockets.m4, + gl/tests/test-select-out.sh, lib/gl/m4/sockets.m4: Update gnulib + files. + +2008-11-17 Simon Josefsson + + * Makefile.am, build-aux/gnupload, gl/m4/getaddrinfo.m4, + gl/m4/netdb_h.m4, gl/netdb.in.h, gl/tests/sockets.h, + lib/gl/Makefile.am, lib/gl/m4/gnulib-cache.m4, + lib/gl/m4/gnulib-comp.m4, lib/gl/m4/netdb_h.m4, lib/gl/netdb.in.h, + lib/gl/sockets.h, lib/gl/tests/Makefile.am, + libextra/gl/Makefile.am, libextra/gl/m4/gnulib-cache.m4, + libextra/gl/m4/gnulib-comp.m4: Update gnulib files. + +2008-11-17 Simon Josefsson + + * lib/gnutls_auth.c: Make it build. + +2008-11-15 Nikos Mavrogiannopoulos + + * lib/gnutls_auth.c: Corrected memory leak in + _gnutls_free_auth_info(). Trace and patch by Michael Weiser. + +2008-11-14 Simon Josefsson + + * tests/Makefile.am: Disable openpgp-keyring when not building + openpgp. + +2008-11-14 Simon Josefsson + + * tests/Makefile.am: Add -I for libextra too. + +2008-11-14 Simon Josefsson + + * lib/gnutlsxx.cpp: Make it compile with --disable-openpgp. + +2008-11-14 Simon Josefsson + + * tests/resume.c: Fix warning. + +2008-11-14 Simon Josefsson + + * lib/mpi-libgcrypt.c: Don't return from void function. Reported by + Jeff Cai in + https://savannah.gnu.org/support/?106549 + +2008-11-14 Simon Josefsson + + * lib/gnutls_int.h, libextra/ext_inner_application.c, + libextra/gnutls_ia.c: Include gnutls/extra.h at the right places. + +2008-11-14 Simon Josefsson + + * lib/mac-libgcrypt.c: Don't return from void function. Reported by + Jeff Cai in + https://savannah.gnu.org/support/?106549 + +2008-11-14 Simon Josefsson + + * tests/Makefile.am, tests/pkcs12-decode/Makefile.am, + tests/pkcs12-decode/pkcs12_s2k.c, tests/pkcs12_s2k.c: Move + pkcs12_s2k.c test to top-level to avoid -I/etc flag duplication. + +2008-11-14 Simon Josefsson + + * tests/pkcs12-decode/pkcs12: Test pkcs12_2certs.p12 too. + +2008-11-14 Simon Josefsson + + * tests/pkcs12-decode/Makefile.am: Dist pkcs12_2certs.p12. + +2008-11-14 Simon Josefsson + + * doc/Makefile.am: Dist README.gaa. + +2008-11-14 Simon Josefsson + + * doc/Makefile.am: Remove README.autoconf. + +2008-11-14 Simon Josefsson + + * lib/m4/hooks.m4: Run AC_PROG_CXX only when needed. Reported by + Daniel Black in + . + +2008-11-13 Simon Josefsson + + * configure.ac: Use more warnings. + +2008-11-13 Simon Josefsson + + * libextra/gnutls_openssl.c: Fix warning. + +2008-11-13 Simon Josefsson + + * lib/Makefile.am: Drop incorrect -I. + +2008-11-13 Simon Josefsson + + * doc/README.gaa: Add. + +2008-11-13 Simon Josefsson + + * configure.ac, doc/examples/ex-serv-export.c, + libextra/gnutls_ia.c, src/Makefile.am, src/certtool-gaa.c, + src/cli-gaa.c, src/crypt-gaa.c, src/psk-gaa.c, src/serv-gaa.c, + src/tests.c, src/tls_test-gaa.c: Use more warnings. Fix warnings. + +2008-11-12 Simon Josefsson + + * lib/auth_cert.c, lib/gnutls_mpi.c, lib/gnutls_pk.c, + lib/mac-libgcrypt.c: Fix warnings. + +2008-11-12 Simon Josefsson + + * cfg.mk: Add -Werror again, code is fixed. + +2008-11-12 Simon Josefsson + + * doc/examples/Makefile.am: Use warning flags, but not for C++ code. + +2008-11-12 Simon Josefsson + + * tests/Makefile.am, tests/cve-2008-4989.c: Use more warnings. Fix + warnings. + +2008-11-12 Simon Josefsson + + * src/Makefile.am, src/certtool-cfg.h, src/certtool-gaa.c: Use more + warnings. Fix warnings. + +2008-11-12 Simon Josefsson + + * lib/openpgp/Makefile.am, libextra/Makefile.am, + libextra/gl/Makefile.am, libextra/gl/m4/extensions.m4, + libextra/gl/m4/gnulib-cache.m4, libextra/gl/m4/gnulib-comp.m4: Use + more warning flags. Need extensions in libextra. + +2008-11-12 Simon Josefsson + + * lib/gnutls_buffers.c, lib/gnutls_extensions.c, + lib/gnutls_extensions.h, lib/gnutls_handshake.c, lib/gnutls_mpi.c, + lib/gnutls_x509.c: Fix warnings. + +2008-11-12 Simon Josefsson + + * lib/includes/gnutls/gnutls.h.in: Add prototype for + gnutls_certificate_set_x509_simple_pkcs12_mem. + +2008-11-12 Simon Josefsson + + * lib/x509/Makefile.am: Use WARN_CFLAGS. + +2008-11-12 Simon Josefsson + + * lib/ext_server_name.c, lib/gnutls_cipher.c, + lib/gnutls_constate.c, lib/gnutls_extensions.c, + lib/gnutls_handshake.c, lib/gnutls_record.c, + lib/gnutls_supplemental.c, lib/gnutls_v2_compat.c: Fix warnings. + +2008-11-12 Simon Josefsson + + * Makefile.am: Build gl/ later. + +2008-11-12 Simon Josefsson + + * cfg.mk: Drop -Werror because gnutls code doesn't compile with it. + +2008-11-12 Simon Josefsson + + * configure.ac, lib/Makefile.am: Disable pointer sign warnings. Use + WARN_CFLAGS more. + +2008-11-12 Simon Josefsson + + * configure.ac: Better warning flag hangling. + +2008-11-12 Simon Josefsson + + * cfg.mk, doc/README.GIT: Drop --enable-developer-mode. + +2008-11-12 Simon Josefsson + + * configure.ac: Remove debug code. + +2008-11-12 Simon Josefsson + + * cfg.mk, configure.ac: Use warnings module. + +2008-11-12 Simon Josefsson + + * cfg.mk, configure.ac, gl/m4/gnulib-comp.m4, gl/m4/warnings.m4, + lib/configure.ac, libextra/configure.ac: Use gnulib warnings module. + +2008-11-12 Simon Josefsson + + * NEWS: Add v2.6.2 entries. + +2008-11-12 Simon Josefsson + + * lib/m4/hooks.m4, lib/m4/output-def.m4: Use output-def.m4. + +2008-11-12 Simon Josefsson + + * lib/gnutls.pc.in, libextra/gnutls-extra.pc.in: Add URL fields. + +2008-11-12 Simon Josefsson + + * lib/m4/hooks.m4, lib/m4/linker-script.m4: Fix version script + detection. + +2008-11-12 Simon Josefsson + + * configure.ac, lib/configure.ac, lib/m4/hooks.m4, + lib/m4/linker-script.m4, libextra/configure.ac, m4/valgrind.m4: Use + external m4 files for shared tests. + +2008-11-12 Simon Josefsson + + * NEWS: Fix. + +2008-11-12 Simon Josefsson + + * tests/cve-2008-4989.c: Frob expected verify status code. With + latest verify.c patch it just say the chain is invalid, rather than + complaining about missing signer certificate. This is arguable more + correct. + +2008-11-12 Simon Josefsson + + * lib/x509/verify.c: Remove check of last certificate in path is + self signed. Causes crashes further down in the code for + certificate chains that only contain one self-signed certificate. + Still protects against the GNUTLS-SA-2008-3 vulnerabillity. + Reported by Michael Meskes in + . + +2008-11-12 Simon Josefsson + + * gl/tests/test-select-out.sh: Comment out broken test. + +2008-11-11 Simon Josefsson + + * gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, + gl/m4/warnings.m4, lib/gl/Makefile.am, lib/gl/m4/gnulib-cache.m4, + lib/gl/m4/gnulib-comp.m4, lib/gl/m4/warnings.m4: Update gnulib + files. + +2008-11-11 Simon Josefsson + + * Makefile.am: Need more -I's. + +2008-11-11 Simon Josefsson + + * gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, + lib/gl/Makefile.am, lib/gl/m4/gnulib-cache.m4, + lib/gl/m4/gnulib-comp.m4, lib/gl/m4/warnings.m4: Update gnulib + files. + +2008-11-11 Simon Josefsson + + * gl/Makefile.am, gl/fseeko.c, gl/m4/getaddrinfo.m4, + gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/netdb_h.m4, + gl/m4/printf.m4, gl/netdb.in.h, gl/tests/test-select-fd.c, + gl/tests/test-select-in.sh, gl/tests/test-select-out.sh, + lib/gl/Makefile.am, lib/gl/fseeko.c, lib/gl/m4/netdb_h.m4, + lib/gl/m4/printf.m4, lib/gl/netdb.in.h: Update gnulib files. + +2008-11-11 Simon Josefsson + + * tests/cve-2008-4989.c: Also test chain length of 1 since the + security patch caused a crash. + +2008-11-11 Simon Josefsson + + * tests/libgcrypt.supp: Add another gcrypt leak. + +2008-11-11 Simon Josefsson + + * lib/gnutls_extensions.c, lib/gnutls_extensions.h, + lib/gnutls_global.c: Fix mem leak. + +2008-11-11 Simon Josefsson + + * tests/cve-2008-4989.c: Fix mem leaks. + +2008-11-11 Simon Josefsson + + * NEWS, tests/Makefile.am, tests/cve-2008-4989.c: Add + cve-2008-4989.c self-test. + +2008-11-10 Simon Josefsson + + * gl/tests/gettimeofday.c, gl/tests/test-gettimeofday.c, + gl/tests/test-select-fd.c, gl/tests/test-select-in.sh, + gl/tests/test-select-out.sh, gl/tests/test-select-stdin.c: Update + gnulib files. + +2008-11-10 Simon Josefsson + + * gl/m4/gettimeofday.m4, gl/m4/gnulib-comp.m4, + gl/m4/sys_ioctl_h.m4, gl/tests/Makefile.am, + lib/gl/m4/include_next.m4, lib/gl/sys_stat.in.h: Update gnulib + files. + +2008-11-10 Simon Josefsson + + * NEWS, THANKS, lib/x509/verify.c: Merge in v2.6.1 fixes. + +2008-11-07 Simon Josefsson + + * NEWS, lib/m4/hooks.m4: Use modern -Wl,--version-script check. + +2008-11-07 Simon Josefsson + + * doc/cyclo/Makefile.am: Cover more files. + +2008-11-07 Simon Josefsson + + * lib/opencdk/opencdk.h: Fix C++ rule, for pmccabe2html. + +2008-11-07 Simon Josefsson + + * Add cyclomatic code complexity charts. + + ----- + + Copyright (C) 2005, 2006, 2007, 2008, 2009, 2010 Free Software + Foundation, Inc. + + Copying and distribution of this file, with or without + modification, are permitted provided the copyright notice + and this notice are preserved. diff --git a/cfg.mk b/cfg.mk index 2c9d101c4..d7d193ed0 100644 --- a/cfg.mk +++ b/cfg.mk @@ -100,7 +100,7 @@ mingw32: autoreconf # Release ChangeLog: - git log --pretty --numstat --summary --since="2005 November 07" -- | git2cl > ChangeLog + git log --pretty --numstat --summary --since="2008 November 07" -- | git2cl > ChangeLog cat .clcopying >> ChangeLog tag = $(PACKAGE)_`echo $(VERSION) | sed 's/\./_/g'` -- 2.11.4.GIT