diff options
author | Simon Josefsson <simon@josefsson.org> | 2005-11-15 15:50:52 +0000 |
---|---|---|
committer | Simon Josefsson <simon@josefsson.org> | 2005-11-15 15:50:52 +0000 |
commit | fdc1b6e4cfc59784c4a16d2dbb7b977d947fb1ca (patch) | |
tree | 7aa6086ae0c49714e1859387c672a8e8ca431e6f /ChangeLog.1 | |
parent | 95c5d91372eb0815d93e3f5b0ef7bb22c69a949f (diff) | |
download | gnutls-fdc1b6e4cfc59784c4a16d2dbb7b977d947fb1ca.tar.gz |
Add, generated using cvs2cl --utc --fsf --FSF --usermap .cvsusers -I
ChangeLog -I .cvs --window 120 -l "-d""<2005-11-08""", and manually
adjusting the start and end of the file.
Diffstat (limited to 'ChangeLog.1')
-rw-r--r-- | ChangeLog.1 | 19558 |
1 files changed, 19558 insertions, 0 deletions
diff --git a/ChangeLog.1 b/ChangeLog.1 new file mode 100644 index 0000000000..40cd524fb6 --- /dev/null +++ b/ChangeLog.1 @@ -0,0 +1,19558 @@ +2005-11-07 Simon Josefsson <simon@josefsson.org> + + * NEWS: Version 1.2.9. + +2005-11-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool.c: corrected bug in pkcs 12 ID key setting. Found + and reported by Fran <e_agf@yahoo.es>. + +2005-11-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/gnutls.texi: fixed typos etc. + +2005-11-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/gnutls.texi: [no log message] + +2005-11-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/signatures.texi: supported algorithms were moved in a + different subsection. + +2005-11-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * README: [no log message] + +2005-11-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/signatures.texi: [no log message] + +2005-11-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/signatures.texi: [no log message] + +2005-11-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/gnutls.texi, doc/signatures.texi: better output for non-tex + formats. + +2005-11-01 Simon Josefsson <simon@josefsson.org> + + * NEWS: Fix. + +2005-11-01 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2005-11-01 Simon Josefsson <simon@josefsson.org> + + * doc/signatures.texi: Fix. + +2005-11-01 Simon Josefsson <simon@josefsson.org> + + * doc/signatures.texi: Add. + +2005-11-01 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Fix. + +2005-11-01 Simon Josefsson <simon@josefsson.org> + + * doc/signatures.texi: Add. + +2005-11-01 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/x509.h: Remove + GNUTLS_CERTIFICATE_VERIFY_FLAGS_LAST hack, use version number + defines instead. + +2005-11-01 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2005-11-01 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/gnutls.h.in: Add numeric version numbers, for CPP + version comparisons. + +2005-11-01 Simon Josefsson <simon@josefsson.org> + + * configure.in: Compute numeric version numbers, for CPP version + comparisons. + +2005-11-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/libgnutls.vers: this is gnutls_1_3 + +2005-11-01 Simon Josefsson <simon@josefsson.org> + + * libextra/gnutls_ia.c: Fix mem leaks. + +2005-11-01 Simon Josefsson <simon@josefsson.org> + + * libextra/gnutls_ia.c: Fix. + +2005-11-01 Simon Josefsson <simon@josefsson.org> + + * libextra/gnutls_ia.c: Remove some debug code. + +2005-11-01 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_int.h: Remove TLS/IA stuff (moved to its own + credential), suggested by Nikos. + +2005-11-01 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Fix. + +2005-11-01 Simon Josefsson <simon@josefsson.org> + + * libextra/gnutls_ia.c: Indent. + +2005-11-01 Simon Josefsson <simon@josefsson.org> + + * libextra/gnutls_ia.c: Fix. + +2005-11-01 Simon Josefsson <simon@josefsson.org> + + * libextra/gnutls_ia.c: Doc fix. + +2005-11-01 Simon Josefsson <simon@josefsson.org> + + * libextra/gnutls_ia.c: Use a TLS/IA credential to store TLS/IA + specific data, suggested by Nikos. + +2005-11-01 Simon Josefsson <simon@josefsson.org> + + * tests/tlsia.c: Use new TLS/IA credential API. + +2005-11-01 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/extra.h: Typo. + +2005-11-01 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/extra.h: Fix. + +2005-11-01 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/extra.h: Add TLS/IA credential functions. + +2005-11-01 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/gnutls.h.in: Move TLS/IA credential to extra.h. + +2005-11-01 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/gnutls.h.in: Add TLS/IA credential enum type. + +2005-11-01 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/gnutls.h.in: Add TLS/IA credential prototypes. + +2005-11-01 Simon Josefsson <simon@josefsson.org> + + * tests/tlsia.c: Accept session parameter in callback. + +2005-11-01 Simon Josefsson <simon@josefsson.org> + + * libextra/gnutls_ia.c: Pass on session parameter to callback. + +2005-11-01 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/extra.h: Have callback accept session parameter + too. + +2005-11-01 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/x509.h: Add GNUTLS_CERTIFICATE_VERIFY_FLAGS_LAST, + based on report by Daniel Stenberg <daniel@haxx.se>. + +2005-11-01 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_ui.c: Doc fix, suggested by Daniel Stenberg + <daniel@haxx.se>. + +2005-11-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2005-11-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/pkcs12.c, lib/x509/privkey_pkcs8.c: some type fixes. + +2005-10-31 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/gnutls.texi: [no log message] + +2005-10-31 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/Makefile.am, doc/bibliography.texi, doc/gnutls.texi, + doc/signatures.texi: added some text about digital signatures. + +2005-10-31 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Add TLS/IA stuff. + +2005-10-31 Simon Josefsson <simon@josefsson.org> + + * libextra/gnutls_ia.c: Successful handshake! + +2005-10-31 Simon Josefsson <simon@josefsson.org> + + * tests/tlsia.c: Fix. + +2005-10-31 Simon Josefsson <simon@josefsson.org> + + * tests/tlsia.c: Log more. + +2005-10-31 Simon Josefsson <simon@josefsson.org> + + * libextra/gnutls_ia.c: Some prf stuff. + +2005-10-31 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_constate.c: Copy TLS/IA inner secret, for resumed + sessions. + +2005-10-31 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_int.h: Add TLS/IA inner secret. + +2005-10-31 Simon Josefsson <simon@josefsson.org> + + * tests/Makefile.am: Link with readline, for tlsia. + +2005-10-31 Simon Josefsson <simon@josefsson.org> + + * tests/tlsia.c: Add callbacks. + +2005-10-31 Simon Josefsson <simon@josefsson.org> + + * libextra/gnutls_ia.c: Add. + +2005-10-31 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/extra.h: Fix. + +2005-10-31 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/extra.h: Add TLS/IA prototypes. + +2005-10-31 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/extra.h: Fix prototype. + +2005-10-31 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_int.h: Add TLS/IA variables. + +2005-10-31 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/extra.h: Fix typo. + +2005-10-31 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/extra.h: Add TLS/IA prototypes. + +2005-10-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am: [no log message] + +2005-10-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, doc/manpages/Makefile.am, doc/manpages/psktool.1, + lib/Makefile.am, src/Makefile.am, src/crypt.c, src/psk-gaa.c, + src/psk-gaa.h, src/psk.c, src/psk.gaa: added psktool to generate + random keys. + +2005-10-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/x509/clicert-dsa.pem, src/x509/clicert.pem: appended the + intermediate CA certificates to client certificates. + +2005-10-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/serv-gaa.c, src/serv-gaa.h, src/serv.c, src/serv.gaa: added + the --require-cert option to gnutls-serv + +2005-10-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_alert.c, lib/gnutls_kx.c: Some fixes in the + certificate handling. + +2005-10-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2005-10-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2005-10-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/bibliography.texi, doc/gnutls.texi, src/cli.c, src/serv.c: + [no log message] + +2005-10-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/gnutls.texi: documentation updated for PSK + +2005-10-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/auth_psk.c, lib/gnutls_compress_int.c, + lib/gnutls_db.c, lib/gnutls_int.h, lib/gnutls_session.c, + lib/gnutls_session_pack.c, lib/gnutls_session_pack.h, src/cli.c, + src/gnutls-http-serv, src/serv.c: The session resumption is now + system independent. Improvments in the PSK ciphersuites. + +2005-10-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, includes/gnutls/gnutls.h.in, lib/Makefile.am, + lib/auth_psk.c, lib/auth_psk.h, lib/auth_psk_passwd.c, + lib/auth_psk_passwd.h, lib/auth_srp.h, lib/auth_srp_sb64.c, + lib/ext_srp.c, lib/gnutls_algorithms.c, lib/gnutls_helper.c, + lib/gnutls_helper.h, lib/gnutls_int.h, lib/gnutls_psk.c, + lib/gnutls_srp.c, lib/gnutls_str.c, lib/gnutls_str.h, + src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, src/common.c, + src/serv-gaa.c, src/serv-gaa.h, src/serv.c, src/serv.gaa: first + version of PSK. It seems to work. + +2005-10-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/bibliography.texi, doc/gnutls.texi: [no log message] + +2005-10-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/bibliography.texi, doc/gnutls.texi: the bibliography stuff is + a bit sorted... I hate that texinfo stuff. + +2005-10-28 Simon Josefsson <simon@josefsson.org> + + * gl/inet_ntop.c: Update. + +2005-10-28 Simon Josefsson <simon@josefsson.org> + + * gl/inet_ntop.h: Update. + +2005-10-28 Simon Josefsson <simon@josefsson.org> + + * gl/gc-gnulib.c, gl/gc-libgcrypt.c, gl/md2.c, gl/md2.h: Update. + +2005-10-28 Simon Josefsson <simon@josefsson.org> + + * libextra/openpgp/pgpverify.c: Doc fix. + +2005-10-28 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Add. + +2005-10-28 Simon Josefsson <simon@josefsson.org> + + * doc/scripts/gdoc: Revert. + +2005-10-28 Simon Josefsson <simon@josefsson.org> + + * libextra/Makefile.am: Fix warnings. + +2005-10-28 Simon Josefsson <simon@josefsson.org> + + * libextra/Makefile.am: Don't include openpgp stuff in api manual. + +2005-10-28 Simon Josefsson <simon@josefsson.org> + + * doc/scripts/gdoc: Remove @anchor, texinfo @deftypefun create them + implicitly. + +2005-10-28 Simon Josefsson <simon@josefsson.org> + + * lib/Makefile.am: Fix. + +2005-10-28 Simon Josefsson <simon@josefsson.org> + + * lib/Makefile.am: Fix depends. + +2005-10-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2005-10-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/gnutls.texi, doc/scripts/gdoc: some changes to allow cross + referencing of functions. + +2005-10-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * gl/arctwo.c: [no log message] + +2005-10-28 Simon Josefsson <simon@josefsson.org> + + * doc/TODO: Add. + +2005-10-28 Simon Josefsson <simon@josefsson.org> + + * NEWS: Fix. + +2005-10-28 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2005-10-28 Simon Josefsson <simon@josefsson.org> + + * NEWS: Fix. + +2005-10-28 Simon Josefsson <simon@josefsson.org> + + * gl/gc-libgcrypt.c, gl/m4/md2.m4: Update. + +2005-10-28 Simon Josefsson <simon@josefsson.org> + + * gl/gc-libgcrypt.c: Support MD2. + +2005-10-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/gnutls.texi: some more updates. + +2005-10-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/gnutls.texi: added text about + gnutls_certificate_verify_flags. + +2005-10-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/gnutls.texi: [no log message] + +2005-10-28 Simon Josefsson <simon@josefsson.org> + + * gl/gc-gnulib.c, gl/gc-libgcrypt.c, gl/gc.h: Update. + +2005-10-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/bibliography.texi, doc/gnutls.texi, doc/my-bib-macros.texi: + some more changes for better pdf output + +2005-10-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/Makefile.am, doc/bibliography.texi, doc/gnutls-logo.png, + doc/gnutls.texi, doc/my-bib-macros.texi: added bibliography\! + +2005-10-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/gnutls-logo.png: [no log message] + +2005-10-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/gnutls-logo.pdf, doc/internals.pdf, doc/layers.pdf, + doc/pgp1.pdf, doc/x509-1.pdf, doc/gnutls-logo.png: pdf files + generated with png2pdf. The output is a bit better than eps2pdf. + +2005-10-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/errcodes.c: some updates and improvments in the pdf output. + +2005-10-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/gnutls-logo.pdf, doc/gnutls.texi, doc/internals.pdf, + doc/internals.png, doc/layers.pdf, doc/pgp1.pdf, doc/x509-1.pdf: + some updates and improvments in the pdf output. + +2005-10-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/verify.c: [no log message] + +2005-10-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/verify.c: The check for insecure algorithms is only + performed on non-self signed certificates. + +2005-10-27 Simon Josefsson <simon@josefsson.org> + + * gl/gc-gnulib.c: Update. + +2005-10-27 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2005-10-27 Simon Josefsson <simon@josefsson.org> + + * lib/x509/verify.c: Don't accept MD2/MD5 hashes when verifying + X.509 certificate signatures. + +2005-10-27 Simon Josefsson <simon@josefsson.org> + + * src/certtool.c: Print whether verification failed due to an + insecure algorithm. + +2005-10-27 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2005-10-27 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/gnutls.h.in: Add GNUTLS_CERT_INSECURE_ALGORITHM. + +2005-10-27 Simon Josefsson <simon@josefsson.org> + + * lib/x509/x509.h, lib/x509/verify.h: Get public prototypes from + gnutls/x509.h instead. + +2005-10-27 Simon Josefsson <simon@josefsson.org> + + * lib/x509/privkey.h, lib/x509/pkcs7.h: Get public prototypes from + gnutls/x509.h instead. + +2005-10-27 Simon Josefsson <simon@josefsson.org> + + * lib/x509/crq.c: Fix prototype. + +2005-10-27 Simon Josefsson <simon@josefsson.org> + + * lib/x509/crq.h: Get exported function prototypes from + gnutls/x509.h instead. + +2005-10-27 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/x509.h: Fix. + +2005-10-27 Simon Josefsson <simon@josefsson.org> + + * lib/x509/x509.h: Add. + +2005-10-27 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_hash_int.c: Add MD2. + +2005-10-27 Simon Josefsson <simon@josefsson.org> + + * gl/gc-gnulib.c: Fix link errors. + +2005-10-27 Simon Josefsson <simon@josefsson.org> + + * gl/md2.o: Remove. + +2005-10-27 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/x509.h: Add MD2/MD5 verify flags. + +2005-10-27 Simon Josefsson <simon@josefsson.org> + + * gl/Makefile.am, gl/gc-gnulib.c, gl/gc-libgcrypt.c, gl/gc.h, + gl/md2.c, gl/md2.h, gl/md2.o, gl/m4/gc-md2.m4, + gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/md2.m4: Add MD2. + +2005-10-27 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/gnutls.h.in, lib/gnutls_algorithms.c: Add MD2. + +2005-10-24 Simon Josefsson <simon@josefsson.org> + + * gl/gc-gnulib.c, gl/inet_ntop.c, gl/inet_ntop.h, gl/md4.h, + gl/md5.c, gl/md5.h, gl/m4/inet_ntop.m4: Update. + +2005-10-24 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-hajjeh-tls-sign-01.txt: Add. + +2005-10-23 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2005-10-23 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_record.c: Fix zero size send. + +2005-10-22 Simon Josefsson <simon@josefsson.org> + + * gl/arcfour.c, gl/arcfour.h, gl/arctwo.h, gl/md4.c, gl/md4.h, + gl/m4/gc.m4, gl/m4/gnulib-comp.m4: Update. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * NEWS: Fix. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * gl/gc-gnulib.c: Update. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * gl/Makefile.am, gl/hmac-md5.c, gl/hmac-sha1.c, gl/md4.c, + gl/rijndael-alg-fst.h, gl/m4/gc.m4, gl/m4/gnulib-comp.m4: Update. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * gl/gc-gnulib.c: Update. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * gl/Makefile.am, gl/des.c, gl/des.h, gl/gc-gnulib.c, gl/m4/des.m4, + gl/m4/gc-des.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4: + Update. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * gl/Makefile.am, gl/arctwo.c, gl/arctwo.h, gl/gc-gnulib.c, + gl/gc-libgcrypt.c, gl/m4/arctwo.m4, gl/m4/gc-arctwo.m4, + gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4: Update. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_record.c: Fix unexpected tls/ia data. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_record.c: Support TLS/IA record types. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_state.c: Init/free TLS/IA data buffer. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_buffers.c: Extract TLS/IA data from buffers. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_buffers.c: Handle TLS/IA buffer sizes. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_buffers.c: Store TLS/IA data. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_int.h: Add buffer for TLS/IA data. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_record.c: Recognize TLS/IA record type. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * libextra/openpgp/pgpverify.c: Doc fix. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Fix. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Add TLS/IA section. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * libextra/Makefile.am: Fix. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * doc/Makefile.am: Add gnutls-ia-api.texi. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * libextra/Makefile.am: Fix *.texi generation. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * libextra/Makefile.am: Typo. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * NEWS: FIx. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * tests/tlsia.c: Use new names. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * tests/tlsia.c: Use new api. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * libextra/gnutls_ia.c: Use new names. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * doc/reference/Makefile.am: Ignore IA header. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * libextra/gnutls_ia.c: Use new API. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * lib/ext_inner_application.c: Use new enum names. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/gnutls.h.in: Rename TLS/IA enum's. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * lib/ext_inner_application.c: Use new variables. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_int.h: Rename TLS/IA variables. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_int.h: Indent. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_int.h: Use new types. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * lib/ext_inner_application.c: Use new API. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/extra.h: Fix. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/gnutls.h.in: Remove TLS/IA prototypes (moved to + extra.h). Rename TLS/IA mode enum. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/extra.h: Add TLS/IA prototypes. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * libextra/gnutls_ia.c: Doc fix. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * lib/ext_inner_application.c: Doc fix. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * lib/ext_inner_application.c: Doc fixes. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * lib/ext_inner_application.c: Fix. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * tests/tlsia.c: Use new api. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * lib/ext_inner_application.c: Fixes. + +2005-10-21 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-salowey-tls-ticket-05.txt: Add. + +2005-10-20 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/gnutls.h.in: Add TLS/IA function. + +2005-10-20 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/gnutls.h.in: Change TLS/IA _get signature. + +2005-10-20 Simon Josefsson <simon@josefsson.org> + + * NEWS: Fix. + +2005-10-20 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/gnutls.h.in: Change TLS/IA hooks. + +2005-10-20 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_int.h: Need two app_phase_on_resumption variables. + +2005-10-20 Simon Josefsson <simon@josefsson.org> + + * libextra/gnutls_ia.c: Fix. + +2005-10-20 Simon Josefsson <simon@josefsson.org> + + * tests/tlsia.c, tests/anonself.c: Fix bug. + +2005-10-20 Simon Josefsson <simon@josefsson.org> + + * tests/tlsia.c: Include gnutls/extra.h. + +2005-10-20 Simon Josefsson <simon@josefsson.org> + + * tests/tlsia.c: Do TLS/IA handshake. + +2005-10-20 Simon Josefsson <simon@josefsson.org> + + * tests/tlsia.c: Initialize libgnutls-extra. + +2005-10-20 Simon Josefsson <simon@josefsson.org> + + * tests/Makefile.am: Link tlsia with libgnutls-extra. + +2005-10-20 Simon Josefsson <simon@josefsson.org> + + * libextra/Makefile.am: Build gnutls_ia.c. + +2005-10-20 Simon Josefsson <simon@josefsson.org> + + * libextra/gnutls_ia.c: New file. + +2005-10-20 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/extra.h: Add TLS/IA function prototype. + +2005-10-20 Simon Josefsson <simon@josefsson.org> + + * configure.in: Bump versions. + +2005-10-20 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2005-10-20 Simon Josefsson <simon@josefsson.org> + + * lib/debug.c: Add TLS/IA record type. + +2005-10-20 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_int.h: Add TLS/IA record type. + +2005-10-20 Simon Josefsson <simon@josefsson.org> + + * tests/tlsia.c: Test alerts. + +2005-10-20 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_alert.c: Add TLS/IA alert codes. + +2005-10-20 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/gnutls.h.in: Add TLS/IA alert codes. + +2005-10-20 Simon Josefsson <simon@josefsson.org> + + * tests/tlsia.c: Add, based on anonself.c. + +2005-10-20 Simon Josefsson <simon@josefsson.org> + + * tests/Makefile.am: Add tlsia. + +2005-10-20 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-modadugu-tls-ctr-00.txt: Add. + +2005-10-19 Simon Josefsson <simon@josefsson.org> + + * gl/Makefile.am, gl/arcfour.c, gl/arcfour.h, gl/gc-gnulib.c, + gl/m4/arcfour.m4, gl/m4/gc-arcfour.m4, gl/m4/gc-hmac-md5.m4, + gl/m4/gc-hmac-sha1.m4, gl/m4/gc-md4.m4, gl/m4/gc-md5.m4, + gl/m4/gc-rijndael.m4, gl/m4/gc-sha1.m4, gl/m4/gnulib-cache.m4, + gl/m4/gnulib-comp.m4: Update. + +2005-10-19 Simon Josefsson <simon@josefsson.org> + + * gl/gc-gnulib.c: Cleanup. + +2005-10-19 Simon Josefsson <simon@josefsson.org> + + * gl/gc.h: Add ecb. + +2005-10-19 Simon Josefsson <simon@josefsson.org> + + * gl/rijndael-api-fst.c: Fix CBC IV bugs. + +2005-10-19 Simon Josefsson <simon@josefsson.org> + + * gl/Makefile.am, gl/gc-gnulib.c, gl/hmac-md5.c, gl/hmac-sha1.c, + gl/rijndael-alg-fst.c, gl/rijndael-alg-fst.h, + gl/rijndael-api-fst.c, gl/rijndael-api-fst.h, gl/m4/gc-rijndael.m4, + gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/rijndael.m4: + Update. + +2005-10-19 Simon Josefsson <simon@josefsson.org> + + * configure.in: Reverse logic. + +2005-10-19 Simon Josefsson <simon@josefsson.org> + + * README: Update --with-builtin-crypto documentation. + +2005-10-19 Simon Josefsson <simon@josefsson.org> + + * configure.in: Add --with-builtin-crypto to enable gnulib + functions. + +2005-10-18 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_global.c: Initialize gcrypt here, for now, to make + sure it is done even if gnulib's GC uses the non-libgcrypt + functions. + +2005-10-18 Simon Josefsson <simon@josefsson.org> + + * configure.in: Remove unused USE_GCRYPT. + +2005-10-18 Simon Josefsson <simon@josefsson.org> + + * gl/Makefile.am, gl/gc-gnulib.c, gl/gc-libgcrypt.c, gl/gc.h, + gl/md4.c, gl/md4.h, gl/m4/gc-md4.m4, gl/m4/gnulib-cache.m4, + gl/m4/gnulib-comp.m4, gl/m4/md4.m4: Add gc-md4. + +2005-10-18 Simon Josefsson <simon@josefsson.org> + + * gl/m4/stdbool.m4: Update. + +2005-10-17 Simon Josefsson <simon@josefsson.org> + + * gl/Makefile.am, gl/gc-libgcrypt.c, gl/m4/gc-sha1.m4, + gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4: Update. + +2005-10-17 Simon Josefsson <simon@josefsson.org> + + * tests/Makefile.am, tests/gc.c: Add self tests of gc. + +2005-10-17 Simon Josefsson <simon@josefsson.org> + + * gl/Makefile.am, gl/hmac-md5.c, gl/md5.c, gl/md5.h, + gl/m4/gc-hmac-md5.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, + gl/m4/hmac-md5.m4, gl/m4/md5.m4: Update. + +2005-10-17 Simon Josefsson <simon@josefsson.org> + + * gl/gc.h, lib/gnutls_cipher_int.h, lib/gnutls_hash_int.h, + lib/x509/pkcs12_encr.c, lib/x509/privkey_pkcs8.c, + libextra/Makefile.am: Fixes to make GC work again. + +2005-10-17 Simon Josefsson <simon@josefsson.org> + + * lib/Makefile.am, lib/x509/Makefile.am, libextra/Makefile.am, + src/Makefile.am: Don't link to gc directly. + +2005-10-17 Simon Josefsson <simon@josefsson.org> + + * Makefile.am, configure.in: Replace nettle+crypto with gnulib. + +2005-10-17 Simon Josefsson <simon@josefsson.org> + + * gl/Makefile.am, gl/gc-libgcrypt.c, gl/gc-pbkdf2-sha1.c, gl/gc.h, + gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/stdbool.m4: + UPdate. + +2005-10-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c: added some more verbose messages to the client to + report whether it sent any certificates or not. + +2005-10-12 Simon Josefsson <simon@josefsson.org> + + * lib/ext_inner_application.c: Fix recv function. + +2005-10-12 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_extensions.c: Handle extension types > 64. Optimize + loop. + +2005-10-12 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_extensions.c: Add TLS/IA extension. + +2005-10-12 Simon Josefsson <simon@josefsson.org> + + * lib/ext_inner_application.c: Add. + +2005-10-12 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_int.h: Fix. + +2005-10-12 Simon Josefsson <simon@josefsson.org> + + * lib/ext_inner_application.c: Typo. + +2005-10-12 Simon Josefsson <simon@josefsson.org> + + * lib/Makefile.am: Add ext_inner_application.c. + +2005-10-12 Simon Josefsson <simon@josefsson.org> + + * lib/ext_inner_application.c: Add. + +2005-10-12 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_int.h: Add TLS/IA extension data. + +2005-10-12 Simon Josefsson <simon@josefsson.org> + + * lib/ext_inner_application.h: Move to gnutls.h. + +2005-10-12 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/gnutls.h.in: Fix. + +2005-10-12 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/gnutls.h.in: Fix. + +2005-10-12 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/gnutls.h.in: Add TLS/IA API. + +2005-10-12 Simon Josefsson <simon@josefsson.org> + + * lib/ext_server_name.h: Remove unused prototypes. + +2005-10-12 Simon Josefsson <simon@josefsson.org> + + * lib/Makefile.am: Add ext_inner_application.h. + +2005-10-12 Simon Josefsson <simon@josefsson.org> + + * lib/ext_inner_application.h: Add file. + +2005-10-12 Simon Josefsson <simon@josefsson.org> + + * gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4: + Don't use gc just yet. + +2005-10-12 Simon Josefsson <simon@josefsson.org> + + * gl/m4/gc-md5.m4: Add. + +2005-10-12 Simon Josefsson <simon@josefsson.org> + + * gl/Makefile.am, gl/gc-gnulib.c, gl/gc-libgcrypt.c, + gl/gc-pbkdf2-sha1.c, gl/gc.h, gl/hmac-sha1.c, gl/hmac.h, + gl/memxor.c, gl/memxor.h, gl/sha1.c, gl/sha1.h, gl/stdint_.h, + gl/m4/gc-hmac-sha1.m4, gl/m4/gc-pbkdf2-sha1.m4, gl/m4/gc.m4, + gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/hmac-sha1.m4, + gl/m4/inttypes.m4, gl/m4/memxor.m4, gl/m4/restrict.m4, + gl/m4/sha1.m4, gl/m4/stdint.m4: Update. + +2005-10-12 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-badra-hajjeh-mtls-00.txt: Add. + +2005-10-11 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-ietf-tls-srp-10.txt: Add. + +2005-10-07 Simon Josefsson <simon@josefsson.org> + + * NEWS, configure.in: Bump versions. + +2005-10-07 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2005-10-07 Simon Josefsson <simon@josefsson.org> + + * NEWS: Version 1.2.8. + +2005-10-07 Simon Josefsson <simon@josefsson.org> + + * src/crypt.c: Don't use error. + +2005-10-07 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2005-10-07 Simon Josefsson <simon@josefsson.org> + + * doc/manpages/Makefile.am: Update. + +2005-10-07 Simon Josefsson <simon@josefsson.org> + + * gl/getdelim.c, gl/m4/gnulib-comp.m4, gl/m4/stdbool.m4: Update. + +2005-10-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2005-10-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: depends on libgcrypt 1.2.2 + +2005-10-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c: handle better EOF from stdin. + +2005-10-01 Simon Josefsson <simon@josefsson.org> + + * NEWS, THANKS: Add. + +2005-10-01 Simon Josefsson <simon@josefsson.org> + + * doc/examples/Makefile.am: Don't install libexamples.la. + +2005-09-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/manpages/Makefile.am, lib/auth_dh_common.c, + lib/auth_rsa_export.c, lib/auth_srp.c, lib/gnutls_dh_primes.c, + lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_pk.c, + lib/gnutls_srp.c, lib/x509/pkcs12.c, lib/x509/pkcs12_encr.c, + lib/x509/privkey.c, lib/x509/privkey_pkcs8.c: Made the PKCS #12 API + handle null passwords. Based on patch by Anton Altaparmakov + <aia21@cam.ac.uk>. + +2005-09-27 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/rfc4158.txt: Add. + +2005-09-24 Simon Josefsson <simon@josefsson.org> + + * configure.in, src/common.c, src/common.h: Use gnulib for + inet_ntop. + +2005-09-24 Simon Josefsson <simon@josefsson.org> + + * gl/Makefile.am, gl/inet_ntop.c, gl/inet_ntop.h, + gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/inet_ntop.m4, + gl/m4/sockpfaf.m4: Add inet_ntop. + +2005-09-23 Simon Josefsson <simon@josefsson.org> + + * NEWS: Fix. + +2005-09-23 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Add --insecure. + +2005-09-23 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2005-09-23 Simon Josefsson <simon@josefsson.org> + + * src/cli-gaa.c, src/cli-gaa.h: Generated. + +2005-09-23 Simon Josefsson <simon@josefsson.org> + + * src/cli.c, src/cli.gaa: Add --insecure. Make the default be to + abort connections if the peer doesn't verify, when a ca certificate + or PGP trust database has been supplied. + +2005-09-23 Simon Josefsson <simon@josefsson.org> + + * src/common.c: Fix warnings. + +2005-09-22 Simon Josefsson <simon@josefsson.org> + + * doc/examples/ex-cert-select.c, doc/examples/ex-serv-anon.c, + doc/examples/ex-serv-export.c, doc/examples/ex-serv-pgp.c, + doc/examples/ex-serv-srp.c, doc/examples/ex-serv1.c: Don't use + mmap. Use memset instead of bzero. + +2005-09-21 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2005-09-21 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_global.c: Revert stupid program_name workaround, patch + from Martin Lambers <marlam@marlam.de>. + +2005-09-21 Simon Josefsson <simon@josefsson.org> + + * gl/Makefile.am, gl/error.c, gl/error.h, gl/getdelim.c, + gl/getline.c, gl/getpass.c, gl/memmove.c, gl/readline.c, + gl/m4/error.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, + gl/m4/strerror_r.m4: Remove error module. Update gnulib files. + +2005-09-21 Simon Josefsson <simon@josefsson.org> + + * src/certtool-cfg.c, src/certtool.c: Don't use error module until + program_name problem is solved. + +2005-09-19 Simon Josefsson <simon@josefsson.org> + + * configure.in: Use gnulib for socklen test. + +2005-09-19 Simon Josefsson <simon@josefsson.org> + + * gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, + gl/m4/socklen.m4: Update. + +2005-09-19 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2005-09-19 Simon Josefsson <simon@josefsson.org> + + * src/cli.c: Don't use mmap, patch from Martin Lambers + <marlam@marlam.de>. + +2005-09-19 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-ietf-tls-ecc-11.txt: Add. + +2005-09-14 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-funk-tls-inner-application-extension-00.txt, + doc/protocol/draft-funk-tls-inner-application-extension-01.txt: + Add. + +2005-09-12 Simon Josefsson <simon@josefsson.org> + + * doc/README.CVS: gtk-doc in debian should work fine now + +2005-09-12 Simon Josefsson <simon@josefsson.org> + + * doc/reference/tmpl/gnutls-unused.sgml: Add (to workaround gtk-doc + makefile bug.) + +2005-09-10 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-chudov-cryptopro-cptls-02.txt: Add. + +2005-09-09 Simon Josefsson <simon@josefsson.org> + + * THANKS: Add. + +2005-09-09 Simon Josefsson <simon@josefsson.org> + + * NEWS, configure.in: Bump versions. + +2005-09-09 Simon Josefsson <simon@josefsson.org> + + * NEWS: Version 1.2.7. + +2005-09-09 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-salowey-tls-ticket-04.txt: Add. + +2005-09-08 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2005-09-08 Simon Josefsson <simon@josefsson.org> + + * NEWS: Fix. + +2005-09-08 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2005-09-06 Simon Josefsson <simon@josefsson.org> + + * gl/Makefile.am, gl/getpass.c: Update. + +2005-09-03 Simon Josefsson <simon@josefsson.org> + + * gl/m4/lib-ld.m4, gl/m4/lib-prefix.m4, gl/m4/gnulib-tool.m4: Add. + +2005-09-03 Simon Josefsson <simon@josefsson.org> + + * gl/m4/gnulib.m4, gl/Makefile.am, gl/m4/gnulib-cache.m4: Update. + +2005-09-02 Simon Josefsson <simon@josefsson.org> + + * configure.in, gl/Makefile.am, gl/getdelim.c, + gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/lib-link.m4: + Update gnulib. + +2005-09-02 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/rfc4162.txt: Add. + +2005-08-31 Simon Josefsson <simon@josefsson.org> + + * AUTHORS: Update my PGP key. + +2005-08-31 Simon Josefsson <simon@josefsson.org> + + * lib/minitasn1/libtasn1.h: Update. + +2005-08-31 Simon Josefsson <simon@josefsson.org> + + * libextra/Makefile.am: Dist libgnutls-extra.vers. + +2005-08-31 Simon Josefsson <simon@josefsson.org> + + * lib/Makefile.am: Dist libgnutls.vers. + +2005-08-31 Simon Josefsson <simon@josefsson.org> + + * lib/Makefile.am: Fix typo. + +2005-08-31 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2005-08-31 Simon Josefsson <simon@josefsson.org> + + * libextra/Makefile.am: Use version script. + +2005-08-31 Simon Josefsson <simon@josefsson.org> + + * libextra/libgnutls-extra.vers: Add version script. + +2005-08-31 Simon Josefsson <simon@josefsson.org> + + * lib/libgnutls.vers: Add. + +2005-08-31 Simon Josefsson <simon@josefsson.org> + + * lib/Makefile.am: Use version script. + +2005-08-31 Simon Josefsson <simon@josefsson.org> + + * configure.in: Add --enable-ld-version-script. + +2005-08-30 Simon Josefsson <simon@josefsson.org> + + * configure.in: Fix typo. + +2005-08-30 Simon Josefsson <simon@josefsson.org> + + * lib/Makefile.am: Link with libz. + +2005-08-30 Simon Josefsson <simon@josefsson.org> + + * gl/Makefile.am, gl/isascii.c, gl/isascii.h, gl/m4/gnulib.m4, + gl/m4/isascii.m4: Update. + +2005-08-30 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_global.c: Add program_name, to shut up error module. + +2005-08-30 Simon Josefsson <simon@josefsson.org> + + * configure.in: Remove isascii gnulib module. + +2005-08-30 Simon Josefsson <simon@josefsson.org> + + * lib/defines.h: Let's pretend all system has isascii until we find + one that actually hasn't. + +2005-08-30 Simon Josefsson <simon@josefsson.org> + + * doc/examples/ex-verify.c: Don't use C99 features. + +2005-08-30 Simon Josefsson <simon@josefsson.org> + + * configure.in: Disable zlib code if we don't find zlib.h too. + +2005-08-30 Simon Josefsson <simon@josefsson.org> + + * lib/Makefile.am: Remove gnutls_random.h. + +2005-08-30 Simon Josefsson <simon@josefsson.org> + + * gl/getpass.c, gl/m4/gnulib.m4: Update. + +2005-08-30 Simon Josefsson <simon@josefsson.org> + + * lib/auth_cert.c, lib/auth_rsa.c, lib/auth_rsa_export.c, + lib/auth_srp_passwd.c, lib/gnutls_cipher.c, lib/gnutls_handshake.c, + lib/gnutls_pk.c, lib/gnutls_v2_compat.c, lib/gnutls_x509.c: Don't + include gnutls_random.h. + +2005-08-30 Simon Josefsson <simon@josefsson.org> + + * lib/x509/pkcs12.c, lib/x509/privkey_pkcs8.c: Pull up from HEAD. + +2005-08-30 Simon Josefsson <simon@josefsson.org> + + * lib/x509/pkcs12.c, lib/x509/privkey_pkcs8.c: Don't include + gnutls_random.h. + +2005-08-30 Simon Josefsson <simon@josefsson.org> + + * lib/Makefile.am, lib/gnutls_random.c, lib/gnutls_random.h: Pull + up from HEAD. + +2005-08-30 Simon Josefsson <simon@josefsson.org> + + * lib/Makefile.am, lib/gnutls_random.c, lib/gnutls_random.h: + (_gnutls_get_random): Removed, not used any more. + +2005-08-30 Simon Josefsson <simon@josefsson.org> + + * lib/auth_rsa.c, lib/auth_srp_passwd.c, lib/gnutls_cipher.c, + lib/gnutls_handshake.c, lib/gnutls_pk.c, lib/x509/pkcs12.c, + lib/x509/privkey_pkcs8.c: Pull up from HEAD. + +2005-08-30 Simon Josefsson <simon@josefsson.org> + + * lib/auth_rsa.c: Call gc directly instead of _gnutls_get_random. + +2005-08-30 Simon Josefsson <simon@josefsson.org> + + * src/crypt.c: Pull up from HEAD. + +2005-08-30 Simon Josefsson <simon@josefsson.org> + + * lib/x509/pkcs12.c: Call gc directly instead of + _gnutls_get_random. + +2005-08-30 Simon Josefsson <simon@josefsson.org> + + * src/crypt.c: Prototype error(). + +2005-08-30 Simon Josefsson <simon@josefsson.org> + + * lib/x509/privkey_pkcs8.c: Call gc directly instead of + _gnutls_get_random. + +2005-08-30 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_pk.c: Fix last commit. + +2005-08-30 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_handshake.c, lib/gnutls_pk.c: Call gc directly instead + of _gnutls_get_random. + +2005-08-30 Simon Josefsson <simon@josefsson.org> + + * lib/auth_srp_passwd.c, lib/gnutls_cipher.c: Call gc directly + instead of _gnutls_get_random. + +2005-08-30 Simon Josefsson <simon@josefsson.org> + + * src/Makefile.am, src/crypt.c: Pull up from HEAD. + +2005-08-30 Simon Josefsson <simon@josefsson.org> + + * src/Makefile.am: Add libgc.la for crypt.c. + +2005-08-30 Simon Josefsson <simon@josefsson.org> + + * src/crypt.c: Avoid gcrypt. + +2005-08-30 Simon Josefsson <simon@josefsson.org> + + * src/Makefile.am: Fix typo. + +2005-08-30 Simon Josefsson <simon@josefsson.org> + + * src/Makefile.am: Add -I for ../crypto. Remove unneeded OpenCDK + CFLAGS. + +2005-08-25 Simon Josefsson <simon@josefsson.org> + + * doc/manpages/Makefile.am: Update. + +2005-08-25 Simon Josefsson <simon@josefsson.org> + + * gl/Makefile.am, gl/getpass.c, gl/m4/gnulib.m4, gl/m4/minmax.m4: + Update. + +2005-08-25 Simon Josefsson <simon@josefsson.org> + + * NEWS: Fix. + +2005-08-24 Simon Josefsson <simon@josefsson.org> + + * gl/getpass.c: Update. + +2005-08-24 Simon Josefsson <simon@josefsson.org> + + * gl/Makefile.am, gl/getpass.c, gl/m4/getpass.m4, gl/m4/gnulib.m4: + Update. + +2005-08-24 Simon Josefsson <simon@josefsson.org> + + * configure.in: Only use getpass, not getpass-gnu (the later is + always built on glibc platforms). + +2005-08-24 Simon Josefsson <simon@josefsson.org> + + * src/common.c: Fix copyright. Fix rc/status checking in last + commit. + +2005-08-24 Simon Josefsson <simon@josefsson.org> + + * src/common.c: Use gnutls_certificate_verify_peers2, suggested by + Daniel Stenberg <daniel@haxx.se>. + +2005-08-24 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_x509.c, lib/gnutls_cert.c: Doc fix. + +2005-08-24 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_cert.c: + (gnutls_certificate_verify_peers2): Doc fix, suggested by Daniel + Stenberg <daniel@haxx.se>. + +2005-08-24 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/x509.h: Indent. + +2005-08-24 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/x509.h: + (gnutls_certificate_verify_flags): Doc fix. + +2005-08-23 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2005-08-23 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2005-08-23 Simon Josefsson <simon@josefsson.org> + + * doc/examples/Makefile.am: Fix objdir!=srcdir builds once again. + +2005-08-23 Simon Josefsson <simon@josefsson.org> + + * doc/examples/Makefile.am: Add -I for objdir!=srcdir builds. + +2005-08-23 Simon Josefsson <simon@josefsson.org> + + * lib/minitasn1/Makefile.am: Add -I for gl. + +2005-08-23 Simon Josefsson <simon@josefsson.org> + + * src/common.h: Don't re-map socklen_t (done by configure now), + suggested by Martin Lambers <marlam@marlam.de>. + +2005-08-23 Simon Josefsson <simon@josefsson.org> + + * configure.in: Define socklen_t to int, not size_t, if it is + missing, suggested by Martin Lambers <marlam@marlam.de>. + +2005-08-23 Simon Josefsson <simon@josefsson.org> + + * gl/getpass.c, gl/m4/getpass.m4: Update. + +2005-08-23 Simon Josefsson <simon@josefsson.org> + + * libextra/openpgp/openpgp.h: Protect config.h #include. + +2005-08-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/internals.dia, doc/internals.eps, doc/internals.png, + doc/layers.dia, doc/layers.eps, doc/layers.png, doc/pgp1.dia, + doc/pgp1.eps, doc/pgp1.png: updated figures + +2005-08-15 Simon Josefsson <simon@josefsson.org> + + * src/certtool-cfg.c: + (read_int): Use readline. Use strtol, and catch out of range + inputs. Suggested by Fran. + +2005-08-15 Simon Josefsson <simon@josefsson.org> + + * configure.in: Add readline. + +2005-08-15 Simon Josefsson <simon@josefsson.org> + + * src/Makefile.am: Possibly link with readline. + +2005-08-15 Simon Josefsson <simon@josefsson.org> + + * gl/Makefile.am, gl/readline.c, gl/readline.h, gl/m4/gnulib.m4, + gl/m4/lib-link.m4, gl/m4/readline.m4: Update. + +2005-08-12 Simon Josefsson <simon@josefsson.org> + + * lib/minitasn1/errors.c, lib/minitasn1/errors.h, + lib/minitasn1/libtasn1.h: Update to 0.2.15. + +2005-08-12 Simon Josefsson <simon@josefsson.org> + + * gl/m4/isascii.m4: Update. + +2005-08-12 Simon Josefsson <simon@josefsson.org> + + * configure.in, gl/Makefile.am, gl/isascii.c, gl/isascii.h, + gl/m4/gnulib.m4, gl/m4/isascii.m4, lib/defines.h: Use isascii from + gnulib. + +2005-08-12 Simon Josefsson <simon@josefsson.org> + + * lib/defines.h: Protect config.h include. Assume C89 platform. + +2005-08-12 Simon Josefsson <simon@josefsson.org> + + * configure.in, gl/Makefile.am, gl/memmove.c, gl/m4/gnulib.m4, + gl/m4/memmove.m4, lib/defines.h: Cleanup memmove. + +2005-08-12 Simon Josefsson <simon@josefsson.org> + + * doc/examples/tcp.c: Add, from ex-client2.c. + +2005-08-12 Simon Josefsson <simon@josefsson.org> + + * doc/examples/ex-client2.c: Use external tcp_*. + +2005-08-12 Simon Josefsson <simon@josefsson.org> + + * src/certtool.c: Don't call progname stuff. + +2005-08-12 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2005-08-12 Simon Josefsson <simon@josefsson.org> + + * lib/memmem.c, lib/memmem.h: Remove. + +2005-08-12 Simon Josefsson <simon@josefsson.org> + + * lib/Makefile.am: Link with gnulib for memmem. + +2005-08-12 Simon Josefsson <simon@josefsson.org> + + * gl/Makefile.am, gl/alloca_.h, gl/asnprintf.c, gl/error.c, + gl/error.h, gl/getdelim.c, gl/getdelim.h, gl/getline.c, + gl/getline.h, gl/getpass.c, gl/getpass.h, gl/memmem.c, gl/memmem.h, + gl/minmax.h, gl/printf-args.c, gl/printf-args.h, gl/printf-parse.c, + gl/printf-parse.h, gl/progname.c, gl/progname.h, gl/size_max.h, + gl/snprintf.c, gl/snprintf.h, gl/stdbool_.h, gl/vasnprintf.c, + gl/vasnprintf.h, gl/xsize.h, gl/m4/gnulib.m4, gl/m4/memmem.m4: + Update. + +2005-08-12 Simon Josefsson <simon@josefsson.org> + + * src/certtool.c: Replace GPL progname.h with simple workaround. + +2005-08-12 Simon Josefsson <simon@josefsson.org> + + * configure.in: Avoid progname module (only GPL one left). Add + memmem gnulib module. Force gnulib files to be LGPL. + +2005-08-12 Simon Josefsson <simon@josefsson.org> + + * gl/Makefile.am, gl/getdelim.c, gl/getdelim.h, gl/getline.c, + gl/getline.h, gl/getndelim2.c, gl/getndelim2.h, gl/m4/getdelim.m4, + gl/m4/getline.m4, gl/m4/gnulib.m4, gl/m4/onceonly_2_57.m4, + gl/m4/ssize_t.m4, gl/m4/getndelim2.m4: Update. + +2005-08-10 Simon Josefsson <simon@josefsson.org> + + * doc/examples/ex-alert.c, doc/examples/ex-cert-select.c, + doc/examples/ex-client-resume.c, doc/examples/ex-client-srp.c, + doc/examples/ex-client1.c, doc/examples/ex-client2.c, + doc/examples/ex-crq.c, doc/examples/ex-pkcs12.c, + doc/examples/ex-rfc2818.c, doc/examples/ex-serv-anon.c, + doc/examples/ex-serv-export.c, doc/examples/ex-serv-pgp.c, + doc/examples/ex-serv-srp.c, doc/examples/ex-serv1.c, + doc/examples/ex-session-info.c, doc/examples/ex-verify.c, + doc/examples/ex-x509-info.c: Indent. + +2005-08-10 Simon Josefsson <simon@josefsson.org> + + * NEWS, configure.in, doc/Makefile.am, doc/examples/Makefile.am, + doc/examples/ex-cert-select.c, doc/examples/ex-client-resume.c, + doc/examples/ex-client-srp.c, doc/examples/ex-client1.c, + doc/examples/ex-client2.c, doc/examples/ex-crq.c, + doc/examples/ex-pkcs12.c, doc/examples/ex-rfc2818.c, + doc/examples/ex-serv-anon.c, doc/examples/ex-serv-export.c, + doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-srp.c, + doc/examples/ex-serv1.c, doc/examples/ex-session-info.c, + doc/examples/ex-verify.c, doc/examples/ex-x509-info.c: Build + examples. Fix errors. + +2005-07-25 Simon Josefsson <simon@josefsson.org> + + * THANKS, NEWS: Add. + +2005-07-25 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_global.c: Doc fixes, tiny patch from Ralph Giles + <giles@onlinegamegroup.com>. + +2005-07-24 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/rfc4132.txt: Add. + +2005-07-16 Simon Josefsson <simon@josefsson.org> + + * NEWS, configure.in: Bump versions. + +2005-07-16 Simon Josefsson <simon@josefsson.org> + + * NEWS: Version 1.2.6. + +2005-07-16 Simon Josefsson <simon@josefsson.org> + + * configure.in: Bump versions. + +2005-07-16 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2005-07-16 Simon Josefsson <simon@josefsson.org> + + * lib/minitasn1/libtasn1.h: Sync with 0.2.14. + +2005-07-16 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_alert.c, lib/gnutls_anon_cred.c: Fix GTK-DOC warnings. + +2005-07-16 Simon Josefsson <simon@josefsson.org> + + * doc/README.CVS: gtk-doc 1.4 is ok + +2005-07-16 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_auth.c, lib/gnutls_cert.c, lib/gnutls_ui.c, + includes/gnutls/gnutls.h.in, includes/gnutls/openpgp.h: Fix GTK-DOC + warnings. + +2005-07-16 Simon Josefsson <simon@josefsson.org> + + * lib/x509/x509.h: Fix GTK-DOC warning. + +2005-07-16 Simon Josefsson <simon@josefsson.org> + + * lib/x509/crq.c, lib/x509/privkey.c, lib/x509/x509.c: Fix GTK-DOC + warnings. + +2005-07-15 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-salowey-tls-ticket-03.txt: Add. + +2005-07-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/examples/ex-x509-info.c: corrected wrong number of arguments + in gnutls_x509_crt_import(). Reported by Fco J. Arias. + +2005-07-15 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_compress_int.c, libextra/gnutls_extra.c, configure.in: + Fix LZO 1.x vs 2.x header file #include mess. + +2005-07-14 Simon Josefsson <simon@josefsson.org> + + * THANKS: Add. + +2005-07-14 Simon Josefsson <simon@josefsson.org> + + * gl/size_max.h, gl/m4/size_max.m4: Update. + +2005-07-14 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2005-07-14 Simon Josefsson <simon@josefsson.org> + + * THANKS: Add. + +2005-07-14 Simon Josefsson <simon@josefsson.org> + + * configure.in: Check for lzo1x_1_compress in -llzo2 too, and + prefer -llzo2 if available, reported by Thomas Klausner + <tk@giga.or.at>. + +2005-07-12 Simon Josefsson <simon@josefsson.org> + + * configure.in, lib/gnutls_compress_int.c, libextra/Makefile.am, + libextra/gnutls_extra.c, libextra/lzoconf.h, libextra/lzodefs.h, + libextra/minilzo.c, libextra/minilzo.h, + libextra/minilzo/Makefile.am, libextra/minilzo/README.LZO, + libextra/minilzo/lzoconf.h, libextra/minilzo/lzodefs.h, + libextra/minilzo/minilzo.c, libextra/minilzo/minilzo.h, + libextra/minilzo/testmini.c: Move MiniLZO to separate directory. + Update from MiniLZO 2.00 to 2.01. + +2005-07-12 Simon Josefsson <simon@josefsson.org> + + * NEWS: Fix. + +2005-07-12 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2005-07-03 Simon Josefsson <simon@josefsson.org> + + * NEWS: Version 1.2.5. + +2005-07-03 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2005-07-02 Simon Josefsson <simon@josefsson.org> + + * libextra/libgnutls-extra-config.in: Fix --help for distcheck. + +2005-07-02 Simon Josefsson <simon@josefsson.org> + + * lib/libgnutls-config.in: Send --help output to stdout. + +2005-07-02 Simon Josefsson <simon@josefsson.org> + + * lib/libgnutls-config.in: Exit with 0 for --help. + +2005-06-27 Simon Josefsson <simon@josefsson.org> + + * tests/pkcs12_neon: Fix. + +2005-06-27 Simon Josefsson <simon@josefsson.org> + + * tests/pkcs12_neon: Fix objdir!=srcdir (for distcheck). + +2005-06-27 Simon Josefsson <simon@josefsson.org> + + * doc/Makefile.am: Dist gnutls-logo.eps. + +2005-06-24 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-rescorla-dtls-05.txt: Add. + +2005-06-24 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-ietf-tls-rfc2246-bis-13.txt: Add. + +2005-06-23 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-ietf-tls-psk-09.txt: Add. + +2005-06-17 Simon Josefsson <simon@josefsson.org> + + * Makefile.am: Use --enable-gtk-doc during distcheck. + +2005-06-15 Simon Josefsson <simon@josefsson.org> + + * NEWS, THANKS: Add. + +2005-06-15 Simon Josefsson <simon@josefsson.org> + + * libextra/opencdk/Makefile.am: Add license. + +2005-06-15 Simon Josefsson <simon@josefsson.org> + + * libextra/opencdk/Makefile.am: Fix srcdir!=objdir builds. + +2005-06-15 Simon Josefsson <simon@josefsson.org> + + * libextra/openpgp/Makefile.am: Add license. + +2005-06-15 Simon Josefsson <simon@josefsson.org> + + * lib/x509/Makefile.am, libextra/openpgp/Makefile.am: Fix + srcdir!=objdir builds. + +2005-06-14 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2005-06-14 Simon Josefsson <simon@josefsson.org> + + * libextra/lzodefs.h: Add. + +2005-06-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, THANKS: [no log message] + +2005-06-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/gnutls_compress_int.c, libextra/Makefile.am, + libextra/gnutls_extra.c, libextra/lzoconf.h, libextra/minilzo.c, + libextra/minilzo.h: Updated to minilzo 2.0 and corrected stuff + pointed out by + +2005-06-03 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-ietf-tls-rfc2246-bis-12.txt: Add. + +2005-06-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/x509_write.c: some updates to prevent warnings for non + constant initializers + +2005-05-31 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-ietf-tls-ecc-10.txt: Add. + +2005-05-31 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2005-05-31 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_int.h, lib/gnutls_ui.c, lib/x509/crl_write.c, + lib/x509/crq.c, lib/x509/mpi.c, lib/x509/sign.c, + lib/x509/x509_write.c: fixed some type conflicts. + +2005-05-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/x509.c: crt_list_import() now works with DER + certificates (although only 1 can be imported). + +2005-05-29 Simon Josefsson <simon@josefsson.org> + + * NEWS: Fix. + +2005-05-29 Simon Josefsson <simon@josefsson.org> + + * NEWS, THANKS: Add. + +2005-05-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/dn.c: [no log message] + +2005-05-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/dn.c: correct the behaviour in DN parsing. Return the + correct size when requested. + +2005-05-28 Simon Josefsson <simon@josefsson.org> + + * NEWS, configure.in: Bump versions. + +2005-05-28 Simon Josefsson <simon@josefsson.org> + + * NEWS: Fix. + +2005-05-28 Simon Josefsson <simon@josefsson.org> + + * NEWS: Version 1.2.4. + +2005-05-28 Simon Josefsson <simon@josefsson.org> + + * configure.in: Bump versions. + +2005-05-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool.c: print the correct issuer in verify_chain() + +2005-05-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/auth_anon.c, lib/auth_cert.c, lib/auth_dhe.c, + lib/auth_rsa.c, lib/auth_rsa_export.c, lib/auth_srp.c, + lib/auth_srp_passwd.c, lib/auth_srp_rsa.c, lib/ext_srp.c, + lib/gnutls_cert.c, lib/gnutls_handshake.c, lib/gnutls_state.c, + lib/gnutls_ui.c, lib/gnutls_x509.c, lib/x509/pkcs12_bag.c, + src/certtool.c: eliminated some warnings. + +2005-05-26 Simon Josefsson <simon@josefsson.org> + + * doc/manpages/Makefile.am: Generated. + +2005-05-26 Simon Josefsson <simon@josefsson.org> + + * doc/gendocs.sh: Update. + +2005-05-26 Simon Josefsson <simon@josefsson.org> + + * doc/fdl.texi, doc/gendocs.sh, doc/gendocs_template: Update FSF + office address in license. + +2005-05-26 Simon Josefsson <simon@josefsson.org> + + * config.rpath: Update. + +2005-05-26 Simon Josefsson <simon@josefsson.org> + + * Makefile.am, includes/Makefile.am, includes/gnutls/extra.h, + includes/gnutls/gnutls.h.in, includes/gnutls/openpgp.h, + includes/gnutls/openssl.h, includes/gnutls/pkcs12.h, + includes/gnutls/x509.h: Update FSF office address in license. + +2005-05-26 Simon Josefsson <simon@josefsson.org> + + * AUTHORS, COPYING, COPYING.LIB, Makefile.am, NEWS, configure.in, + doc/Makefile.am, lib/Makefile.am, lib/auth_anon.c, lib/auth_anon.h, + lib/auth_cert.c, lib/auth_cert.h, lib/auth_dh_common.c, + lib/auth_dh_common.h, lib/auth_dhe.c, lib/auth_rsa.c, + lib/auth_rsa_export.c, lib/auth_srp.c, lib/auth_srp.h, + lib/auth_srp_passwd.c, lib/auth_srp_passwd.h, lib/auth_srp_rsa.c, + lib/auth_srp_sb64.c, lib/debug.c, lib/debug.h, lib/defines.h, + lib/ext_cert_type.c, lib/ext_cert_type.h, lib/ext_max_record.c, + lib/ext_max_record.h, lib/ext_server_name.c, lib/ext_server_name.h, + lib/ext_srp.c, lib/ext_srp.h, lib/gnutls_alert.c, + lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, + lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_auth.h, + lib/gnutls_auth_int.h, lib/gnutls_buffer.h, lib/gnutls_buffers.c, + lib/gnutls_buffers.h, lib/gnutls_cert.c, lib/gnutls_cert.h, + lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_cipher_int.c, + lib/gnutls_cipher_int.h, lib/gnutls_compress.c, + lib/gnutls_compress.h, lib/gnutls_compress_int.c, + lib/gnutls_compress_int.h, lib/gnutls_constate.c, + lib/gnutls_constate.h, lib/gnutls_datum.c, lib/gnutls_datum.h, + lib/gnutls_db.c, lib/gnutls_db.h, lib/gnutls_dh.c, lib/gnutls_dh.h, + lib/gnutls_dh_primes.c, lib/gnutls_errors.c, lib/gnutls_errors.h, + lib/gnutls_extensions.c, lib/gnutls_extensions.h, + lib/gnutls_global.c, lib/gnutls_global.h, lib/gnutls_handshake.c, + lib/gnutls_handshake.h, lib/gnutls_hash_int.c, + lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_kx.c, + lib/gnutls_kx.h, lib/gnutls_mem.c, lib/gnutls_mem.h, + lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_num.c, + lib/gnutls_num.h, lib/gnutls_pk.c, lib/gnutls_pk.h, + lib/gnutls_priority.c, lib/gnutls_priority.h, lib/gnutls_random.c, + lib/gnutls_random.h, lib/gnutls_record.c, lib/gnutls_record.h, + lib/gnutls_rsa_export.c, lib/gnutls_rsa_export.h, + lib/gnutls_session.c, lib/gnutls_session.h, + lib/gnutls_session_pack.c, lib/gnutls_session_pack.h, + lib/gnutls_sig.c, lib/gnutls_sig.h, lib/gnutls_srp.c, + lib/gnutls_srp.h, lib/gnutls_state.c, lib/gnutls_state.h, + lib/gnutls_str.c, lib/gnutls_str.h, lib/gnutls_ui.c, + lib/gnutls_v2_compat.c, lib/gnutls_v2_compat.h, lib/gnutls_x509.c, + lib/gnutls_x509.h, lib/io_debug.h, lib/memmem.c, lib/memmem.h, + lib/strfile.h, lib/x509_b64.c, lib/x509_b64.h, + lib/minitasn1/coding.c, lib/minitasn1/decoding.c, + lib/minitasn1/element.c, lib/minitasn1/errors.c, + lib/minitasn1/errors.h, lib/minitasn1/gstr.c, lib/minitasn1/int.h, + lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, + lib/minitasn1/structure.c, lib/x509/Makefile.am, lib/x509/common.c, + lib/x509/common.h, lib/x509/compat.c, lib/x509/compat.h, + lib/x509/crl.c, lib/x509/crl_write.c, lib/x509/crq.c, + lib/x509/crq.h, lib/x509/dn.c, lib/x509/dn.h, lib/x509/dsa.c, + lib/x509/dsa.h, lib/x509/extensions.c, lib/x509/extensions.h, + lib/x509/mpi.c, lib/x509/mpi.h, lib/x509/pkcs12.c, + lib/x509/pkcs12.h, lib/x509/pkcs12_bag.c, lib/x509/pkcs12_encr.c, + lib/x509/pkcs7.c, lib/x509/pkcs7.h, lib/x509/privkey.c, + lib/x509/privkey.h, lib/x509/privkey_pkcs8.c, lib/x509/rfc2818.h, + lib/x509/rfc2818_hostname.c, lib/x509/sign.c, lib/x509/sign.h, + lib/x509/verify.c, lib/x509/verify.h, lib/x509/x509.c, + lib/x509/x509.h, lib/x509/x509_write.c, lib/x509/xml.c, + libextra/Makefile.am, libextra/gnutls_extra.c, + libextra/gnutls_extra.h, libextra/gnutls_openpgp.c, + libextra/gnutls_openssl.c, libextra/lzoconf.h, libextra/minilzo.c, + libextra/minilzo.h, libextra/openssl_compat.c, + libextra/openssl_compat.h, libextra/opencdk/armor.c, + libextra/opencdk/cipher.c, libextra/opencdk/cipher.h, + libextra/opencdk/compress.c, libextra/opencdk/context.h, + libextra/opencdk/encrypt.c, libextra/opencdk/filters.h, + libextra/opencdk/kbnode.c, libextra/opencdk/keydb.c, + libextra/opencdk/keygen.c, libextra/opencdk/keylist.c, + libextra/opencdk/keyserver.c, libextra/opencdk/main.c, + libextra/opencdk/main.h, libextra/opencdk/md.c, + libextra/opencdk/md.h, libextra/opencdk/misc.c, + libextra/opencdk/new-packet.c, libextra/opencdk/opencdk.h, + libextra/opencdk/packet.h, libextra/opencdk/plaintext.c, + libextra/opencdk/pubkey.c, libextra/opencdk/read-packet.c, + libextra/opencdk/seskey.c, libextra/opencdk/sig-check.c, + libextra/opencdk/sign.c, libextra/opencdk/stream.c, + libextra/opencdk/stream.h, libextra/opencdk/sym-cipher.c, + libextra/opencdk/trustdb.c, libextra/opencdk/types.h, + libextra/opencdk/verify.c, libextra/opencdk/write-packet.c, + libextra/openpgp/compat.c, libextra/openpgp/extras.c, + libextra/openpgp/pgp.c, libextra/openpgp/pgpverify.c, + libextra/openpgp/privkey.c, libextra/openpgp/xml.c, + src/Makefile.am, src/certtool-cfg.c, src/certtool.c, src/cli.c, + src/common.c, src/crypt.c, src/list.h, src/prime.c, src/serv.c, + src/tests.c, src/tls_test.c, tests/Makefile.am, tests/anonself.c, + tests/chain, tests/openssl.c, tests/pkcs12_neon, tests/pkits, + tests/pkits_crl, tests/pkits_crt, tests/pkits_pkcs12, + tests/pkits_smime, tests/simple.c, tests/utils.c, tests/utils.h: + Update FSF office address in license. + +2005-05-26 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2005-05-26 Simon Josefsson <simon@josefsson.org> + + * gl/Makefile.am, gl/alloca_.h, gl/asnprintf.c, gl/error.c, + gl/error.h, gl/getline.c, gl/getline.h, gl/getndelim2.c, + gl/getndelim2.h, gl/getpass.c, gl/getpass.h, gl/minmax.h, + gl/printf-args.c, gl/printf-args.h, gl/printf-parse.c, + gl/printf-parse.h, gl/progname.c, gl/progname.h, gl/snprintf.c, + gl/snprintf.h, gl/stdbool_.h, gl/vasnprintf.c, gl/vasnprintf.h, + gl/xsize.h, gl/m4/gnulib.m4, gl/m4/minmax.m4: Update. + +2005-05-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/manpages/certtool.1: [no log message] + +2005-05-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2005-05-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/examples/ex-verify.c: improved the verification example. + +2005-05-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2005-05-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h, lib/x509/verify.c: Corrected a bug in + certificate verification that could lead to a trusted certificate + path to be marked as non-trusted, if it included the last + self-signed certificate in the chain. + +2005-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/examples/ex-cert-select.c: [no log message] + +2005-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, doc/manpages/Makefile.am, src/certtool-gaa.c, + src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: Introduced to + --fix-key option to certtool, which can be used to regenerate the + (optional) parameters in a private key. It should be used together + with --key-info. + +2005-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2005-05-20 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-ietf-tls-rfc3546bis-01.txt: Add. + +2005-05-20 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Typo. + +2005-05-20 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_int.h: Include defines.h before gnutls.h, to pull in + config.h, to make sure memmem.h prototype memmem properly, from + Yoann Vandoorselaere <yoann.v@prelude-ids.com>. + +2005-05-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool.c: removed unneeded gnutls_x509_crt_init(). + +2005-05-16 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-ietf-tls-rfc2246-bis-10.txt: Add. + +2005-05-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/common.c: [no log message] + +2005-05-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/common.c, lib/x509/pkcs12.c: corrected some things that + could affect 64 bit machines. + +2005-05-01 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_int.h: Use gnutls/extra.h to get + gnutls_openpgp_recv_key_func type. + +2005-05-01 Simon Josefsson <simon@josefsson.org> + + * libextra/openpgp/openpgp.h: Remove, defined in gnutls.h. + +2005-04-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: added date + +2005-04-27 Simon Josefsson <simon@josefsson.org> + + * doc/manpages/Makefile.am: Update. + +2005-04-27 Simon Josefsson <simon@josefsson.org> + + * NEWS: Version 1.0.25. + +2005-04-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2005-04-27 Simon Josefsson <simon@josefsson.org> + + * configure.in: Bump version. + +2005-04-27 Simon Josefsson <simon@josefsson.org> + + * configure.in: Revert fully, LT_CURRENT was also updated. Sorry. + +2005-04-27 Simon Josefsson <simon@josefsson.org> + + * configure.in: Revert partially, LT_AGE already incremented. + +2005-04-27 Simon Josefsson <simon@josefsson.org> + + * configure.in: Bump versions. + +2005-04-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * THANKS: for the gnutls_cipher.c bug, that could cause denial of + service + +2005-04-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: increased age + +2005-04-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, includes/gnutls/x509.h, + lib/gnutls_rsa_export.c, lib/x509/privkey.c, src/certtool.c: + certtool can now fix the old RSA private keys. This is done by using + the -k parameter. + +2005-04-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/privkey.c, lib/x509/x509.h: at the export phase, encode + the key. + +2005-04-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/privkey.c: [no log message] + +2005-04-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_cipher.c, lib/gnutls_mpi.h, lib/x509/privkey.c: + Backported from the new stable branch: + - Corrected bug in record packet parsing that could lead + to a denial of service attack. + - Corrected bug in RSA key export. + +2005-04-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2005-04-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_mpi.h, lib/x509/privkey.c, lib/x509/x509.h: corrected + bugs in RSA key export. + +2005-04-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cipher.c: added an extra check while checking the + padding. + +2005-04-25 Simon Josefsson <simon@josefsson.org> + + * NEWS: Version 1.2.2. + +2005-04-25 Simon Josefsson <simon@josefsson.org> + + * doc/Makefile.am: Don't regenerate error_codes.texi when gnutls.h + is newer, because it will always be, and this causes texinfo to be + run on the manual. + +2005-04-25 Simon Josefsson <simon@josefsson.org> + + * doc/Makefile.am: Dist more. + +2005-04-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_alert.c: some updates in the description of + gnutls_alert_get() + +2005-04-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_alert.c: gnutls_alert_send_appropriate() is no longer + marked as deprecated. + +2005-04-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/x509.c: [no log message] + +2005-04-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/x509.c: [no log message] + +2005-04-21 Simon Josefsson <simon@josefsson.org> + + * NEWS: Typo. + +2005-04-21 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_alert.c: Make it compile. + +2005-04-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2005-04-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.h: [no log message] + +2005-04-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.h, lib/gnutls_cert.c, lib/gnutls_session_pack.c, + lib/gnutls_ui.c: some cleanups, and changes in the resuming code to + avoid freeing non-allocated stuff. + +2005-04-19 Simon Josefsson <simon@josefsson.org> + + * configure.in: Remove some warnings. + +2005-04-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool.c: some cleanups in certtool + +2005-04-15 Simon Josefsson <simon@josefsson.org> + + * configure.in, includes/Makefile.am, includes/gnutls/Makefile.am: + Remove includes/gnutls/Makefile.am. Fix includes/Makefile.am to + compensate. + +2005-04-15 Simon Josefsson <simon@josefsson.org> + + * lib/Makefile.am: Remove gnutls_alert.h. + +2005-04-15 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/Makefile.am: Add license. + +2005-04-15 Simon Josefsson <simon@josefsson.org> + + * includes/Makefile.am: Simplify. Add license. + +2005-04-15 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/Makefile.am: Don't dist gnutls.h, it is + generated. + +2005-04-15 Simon Josefsson <simon@josefsson.org> + + * configure.in, includes/gnutls/gnutls.h.in, lib/gnutls.h.in.in: + Move lib/gnutls.h.in.in into includes/gnutls/gnutls.h.in. Fix + #warning about missing components, it didn't work in config.status. + Simplify configure.ac wrt to gnutls.h. + +2005-04-14 Simon Josefsson <simon@josefsson.org> + + * configure.in: Add more warnings (likely to be trimmed later). + +2005-04-14 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_int.h: Remove. + +2005-04-14 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_global.h: Remove dupe definition. + +2005-04-14 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls.h.in.in: Revert. + +2005-04-14 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls.h.in.in: Moved from gnutls_mem.h. + +2005-04-14 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_mem.h: Cleanup. + +2005-04-14 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_algorithms.h: Fix warning. + +2005-04-14 Simon Josefsson <simon@josefsson.org> + + * libextra/opencdk/main.c, libextra/opencdk/misc.c: Fix warning. + +2005-04-14 Simon Josefsson <simon@josefsson.org> + + * libextra/opencdk/main.c: Fix warning. + +2005-04-14 Simon Josefsson <simon@josefsson.org> + + * lib/auth_cert.c, lib/auth_srp_passwd.c, lib/gnutls_constate.c, + lib/gnutls_v2_compat.c, lib/gnutls_x509.c: Fix warning. + +2005-04-14 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_compress.c, lib/gnutls_compress.h, + lib/gnutls_hash_int.c, lib/gnutls_kx.c: Fix warning. + +2005-04-14 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_handshake.c: Fix warnings. + +2005-04-14 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_handshake.c, lib/gnutls_handshake.h, + lib/gnutls_state.c, lib/gnutls_state.h: Fix warning. + +2005-04-14 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_cipher.c: Fix warning. + +2005-04-14 Simon Josefsson <simon@josefsson.org> + + * gl/Makefile.am, gl/m4/getpass.m4: Update. + +2005-04-14 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_handshake.h: Cleanup. + +2005-04-14 Simon Josefsson <simon@josefsson.org> + + * gl/Makefile.am, gl/progname.c, gl/size_max.h, gl/vasnprintf.c, + gl/m4/getline.m4, gl/m4/getpass.m4: Update. + +2005-04-14 Simon Josefsson <simon@josefsson.org> + + * configure.in: Improve warning CFLAGS. + +2005-04-14 Simon Josefsson <simon@josefsson.org> + + * THANKS: Add. + +2005-04-14 Simon Josefsson <simon@josefsson.org> + + * lib/x509/common.c: + (_gnutls_x509_oid_data2string): Fix memory leak, tiny patch from + Rupert Kittinger <rkit@mur.at>. + +2005-04-14 Simon Josefsson <simon@josefsson.org> + + * doc/manpages/Makefile.am: Generated. + +2005-04-14 Simon Josefsson <simon@josefsson.org> + + * doc/Makefile.am: Make error_codes.texi build, after removing + gnutls_errors_int.h. + +2005-04-14 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_alert.c: Make it build. + +2005-04-14 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_algorithms.h, lib/ext_srp.c: Simplify. + +2005-04-14 Simon Josefsson <simon@josefsson.org> + + * lib/auth_srp.c, lib/gnutls_alert.h, lib/gnutls_handshake.c, + lib/gnutls_kx.c, lib/gnutls_record.c: Simplify. + +2005-04-14 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_auth_int.h: Cleanup. + +2005-04-14 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_db.h: Cleanup. + +2005-04-14 Simon Josefsson <simon@josefsson.org> + + * doc/README.CODING_STYLE, lib/Makefile.am, lib/gnutls_errors.h, + lib/gnutls_errors_int.h: Simplify. + +2005-04-14 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_ui.h: Remove. (Everything moved to gnutls.h.in.in.) + +2005-04-14 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2005-04-14 Simon Josefsson <simon@josefsson.org> + + * configure.in, lib/Makefile.am, lib/auth_anon.c, lib/auth_anon.h, + lib/auth_cert.c, lib/auth_cert.h, lib/auth_dhe.c, lib/auth_rsa.c, + lib/auth_rsa_export.c, lib/auth_srp.h, lib/auth_srp_passwd.c, + lib/auth_srp_rsa.c, lib/debug.c, lib/debug.h, lib/gnutls.h.in.in, + lib/gnutls_alert.h, lib/gnutls_auth_int.h, lib/gnutls_buffers.c, + lib/gnutls_buffers.h, lib/gnutls_cert.c, lib/gnutls_cert.h, + lib/gnutls_dh.h, lib/gnutls_errors_int.h, lib/gnutls_handshake.c, + lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_kx.c, + lib/gnutls_mem.h, lib/gnutls_record.c, lib/gnutls_record.h, + lib/gnutls_rsa_export.h, lib/gnutls_session.h, lib/gnutls_sig.h, + lib/gnutls_state.c, lib/gnutls_state.h, lib/gnutls_ui.c, + lib/gnutls_x509.c, lib/x509/crl_write.c, lib/x509/crq.c, + lib/x509/rfc2818_hostname.c, lib/x509/x509.c, lib/x509/x509.h, + lib/x509/x509_write.c, libextra/openpgp/openpgp.h: Clean up + #include situation, merge from gnutls_1_2_1_with_include_fixes. Now + lib/gnutls_int.h start by including gnutls/gnutls.h, to check + prototypes during compile time. More cleanups are expected. + +2005-04-14 Simon Josefsson <simon@josefsson.org> + + * NEWS: Mention API/ABI changes more clearly. + +2005-04-14 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_sig.h: Cleanup. + +2005-04-14 Simon Josefsson <simon@josefsson.org> + + * configure.in, lib/Makefile.am, lib/auth_anon.c, lib/auth_anon.h, + lib/auth_cert.c, lib/auth_cert.h, lib/auth_dhe.c, lib/auth_rsa.c, + lib/auth_rsa_export.c, lib/auth_srp.h, lib/auth_srp_passwd.c, + lib/auth_srp_rsa.c, lib/debug.c, lib/debug.h, lib/gnutls.h.in.in, + lib/gnutls_alert.h, lib/gnutls_auth_int.h, lib/gnutls_buffers.c, + lib/gnutls_buffers.h, lib/gnutls_cert.c, lib/gnutls_cert.h, + lib/gnutls_dh.h, lib/gnutls_errors_int.h, lib/gnutls_handshake.c, + lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_kx.c, + lib/gnutls_mem.h, lib/gnutls_record.c, lib/gnutls_record.h, + lib/gnutls_rsa_export.h, lib/gnutls_session.h, lib/gnutls_state.c, + lib/gnutls_state.h, lib/gnutls_ui.c, lib/gnutls_ui.h, + lib/gnutls_x509.c, lib/x509/crl_write.c, lib/x509/crq.c, + lib/x509/rfc2818_hostname.c, lib/x509/x509.c, lib/x509/x509.h, + lib/x509/x509_write.c, libextra/openpgp/openpgp.h: Initial include + mess cleanup. Now lib/gnutls_int.h start by including + gnutls/gnutls.h, to check prototypes. More cleanups are expected. + +2005-04-14 Simon Josefsson <simon@josefsson.org> + + * NEWS: Typo. + +2005-04-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/pkix.asn, lib/pkix_asn1_tab.c: Some fixes for + AuthorityKeyIdentifier parsing. Suggested by Fabio. + +2005-04-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/gnutls.texi: [no log message] + +2005-04-12 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-rescorla-dtls-04.txt: Add. + +2005-04-12 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-ietf-tls-ecc-09.txt: Add. + +2005-04-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/TODO, doc/manpages/Makefile.am, lib/x509/common.c, + lib/x509/common.h, lib/x509/dn.c, lib/x509/pkcs12.c: Fixed pkcs12 + friendly name and local key identifier decoding. + +2005-04-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2005-04-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool.c: print some more information for PKCS #12 + structures. + +2005-04-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/serv.c: [no log message] + +2005-04-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/x509_write.c, NEWS: [no log message] + +2005-04-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_alert.c: return unexpected_message alert in the case + of a handshake unexpected message. + +2005-04-04 Simon Josefsson <simon@josefsson.org> + + * NEWS, configure.in: Bump versions. + +2005-04-04 Simon Josefsson <simon@josefsson.org> + + * NEWS: Typo. + +2005-04-04 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_record.c: Doc fix, suggested by Nikos + Mavrogiannopoulos <nmav@gnutls.org>. + +2005-04-04 Simon Josefsson <simon@josefsson.org> + + * NEWS: Version 1.2.1. + +2005-04-04 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_record.c: Doc fixes, adapted from suggestions by + Martin Lambers <marlam@web.de>. + +2005-04-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2005-04-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: added warning to libraries compiled with features + disabled. + +2005-04-02 Simon Josefsson <simon@josefsson.org> + + * doc/manpages/Makefile.am: Fix. + +2005-03-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/x509.c: [no log message] + +2005-03-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_record.c: some more documentation fixes. + +2005-03-29 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_record.c: Doc fix, reported by Martin Lambers + <marlam@web.de>. + +2005-03-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2005-03-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2005-03-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2005-03-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2005-03-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2005-03-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/x509.c: [no log message] + +2005-03-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h, lib/x509/x509.c, lib/x509/x509.h, + src/certtool.c, src/cli.c: more improvments to + gnutls_x509_crt_list_import() + +2005-03-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h, lib/x509/x509.c, lib/x509/x509.h, + src/cli.c: improved gnutls_x509_crt_list_import(). + +2005-03-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool.c: certtool can now print certificate information in + files containing multiple certificates. + +2005-03-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/x509.c: [no log message] + +2005-03-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/gnutls/x509.h, lib/x509/x509.c, src/cli.c: Added + the function gnutls_x509_crt_list_import(). This is a convinience + function to import many certificates with a single call. + +2005-03-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/gnutls/x509.h, lib/x509/x509_write.c: Added + gnutls_x509_crt_set_extension_by_oid(). + +2005-03-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2005-03-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/common.c, lib/x509/crq.c: corrected bug in + gnutls_crq_get_attribute_by_oid() + +2005-03-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: fixed the library number. + +2005-03-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h, lib/gnutls_hash_int.h, lib/x509/common.c, + lib/x509/crq.c, lib/x509/privkey_pkcs8.c, lib/x509/x509.h, + lib/x509/xml.c, libextra/opencdk/opencdk.h: [no log message] + +2005-03-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/x509/crq.c: Added the functions: + gnutls_x509_crq_get_attribute_by_oid() and + gnutls_x509_crq_set_attribute_by_oid(). + +2005-03-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c, lib/auth_cert.h, lib/auth_dh_common.c, + lib/auth_dh_common.h, lib/gnutls_auth.c, lib/gnutls_record.c, + lib/gnutls_session_pack.c: eliminated some memory leaks caused by + DHE and RSA-EXPORT ciphersuites. Thanks to Yoann Vandoorselaere for + reporting them. + +2005-03-18 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-ietf-tls-srp-09.txt: Add. + +2005-03-11 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2005-03-10 Simon Josefsson <simon@josefsson.org> + + * NEWS: Flow. + +2005-03-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/verify.c, libextra/openssl_compat.c, + libextra/openpgp/pgpverify.c: some doc fixes. + +2005-03-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/verify.c: [no log message] + +2005-03-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/dsa.c, lib/x509/privkey.c: [no log message] + +2005-03-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_algorithms.c, lib/x509/common.h, lib/x509/pkcs12.c, + lib/x509/privkey_pkcs8.c, lib/x509/x509.h: gnutls will now + recognize the GOST signature and public key OIDs. However no support + is planned. + +2005-03-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_dh.c: added a check to test whether the DH secret is + zero. + +2005-03-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c: [no log message] + +2005-03-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/gnutls/x509.h, lib/x509/verify.c, + lib/x509/verify.h: Improved the semantics of + GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT, to allow only trusted Version 1 + CAs and introduced GNUTLS_VERIFY_ALLOW_ANY_X509_V1_CA_CRT which has + the old semantics. + +2005-03-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: test commit + +2005-03-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool.c: [no log message] + +2005-03-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_algorithms.c, + lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_int.h, + lib/gnutls_priority.c, lib/gnutls_sig.c, lib/gnutls_srp.c, + lib/gnutls_state.c, lib/x509/crl_write.c, lib/x509/crq.c, + lib/x509/pkcs12.c, lib/x509/privkey.c, lib/x509/sign.c, + lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509_write.c, + libextra/gnutls_openssl.c, src/certtool.c, src/cli.c, src/common.c, + src/serv.c, src/tests.c: renamed all instances of _SHA to _SHA1 to + make naming more consistent and clear. + +2005-03-05 Simon Josefsson <simon@josefsson.org> + + * NEWS: Fix. + +2005-03-05 Simon Josefsson <simon@josefsson.org> + + * NEWS, THANKS: Add. + +2005-03-05 Simon Josefsson <simon@josefsson.org> + + * configure.in: Don't force -O2 -finline-functions. + +2005-03-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, + src/certtool.gaa, src/prime.c: Added the option --get-dh-params to + certtool, in order to get the included primes and generators + +2005-03-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, src/certtool.c: added warning when MD5 is being used. + +2005-03-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c: [no log message] + +2005-03-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_srp.c, NEWS: added more strict checks for g,n + +2005-03-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-salowey-tls-ticket-00.txt, + doc/protocol/draft-salowey-tls-ticket-02.txt: new ticket + +2005-02-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2005-02-24 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-ietf-tls-psk-06.txt: Add. + +2005-02-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2005-02-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_record.c: some modifications for gnutls_bye() + semantics. + +2005-02-22 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-rescorla-dtls-03.txt: Add. + +2005-02-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/manpages/srptool.1: updated documentation for srptool.1 + +2005-02-12 Simon Josefsson <simon@josefsson.org> + + * configure.in: Add -Wshadow for --enable-developer-mode. + +2005-02-12 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_ui.h, lib/gnutls_ui.c: + (gnutls_rsa_export_get_pubkey): Don't use reserved word "exp", + reported by Neil Spring <nspring@cs.washington.edu>. + +2005-02-12 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/x509.h, lib/x509/crl.c: + (gnutls_x509_crl_get_crt_serial): Don't use reserved word "time", + reported by Neil Spring <nspring@cs.washington.edu>. + +2005-02-12 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/x509.h: Fix last commit. + +2005-02-12 Simon Josefsson <simon@josefsson.org> + + * lib/x509/crl.c: + (gnutls_x509_crl_get_crt_serial): Don't use reserved word "index", + reported by Neil Spring <nspring@cs.washington.edu>. + +2005-02-12 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/x509.h: + (gnutls_x509_crl_get_crt_serial): Don't use reserved word "index" in + prototype, reported by Neil Spring <nspring@cs.washington.edu>. + +2005-02-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/serv.c: [no log message] + +2005-02-06 Simon Josefsson <simon@josefsson.org> + + * THANKS: Add. + +2005-02-06 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/extra.h: Protect for C++, tiny patch from Daniel + Black <dragonheart@gentoo.org>. + +2005-02-06 Simon Josefsson <simon@josefsson.org> + + * doc/reference/Makefile.am: Scan in lib/x509/ too, sources now + fixed. + +2005-02-06 Simon Josefsson <simon@josefsson.org> + + * lib/x509/x509.c, lib/x509/privkey.c: Doc fix. + +2005-02-06 Simon Josefsson <simon@josefsson.org> + + * lib/x509/x509.c, lib/x509/crq.c, lib/x509/dn.c: Doc fix. + +2005-02-06 Simon Josefsson <simon@josefsson.org> + + * lib/x509/crq.c, lib/x509/pkcs12.c, lib/x509/pkcs7.c, + lib/x509/privkey.c, lib/x509/privkey_pkcs8.c: Doc fix. + +2005-02-06 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Markup fixes. + +2005-02-05 Simon Josefsson <simon@josefsson.org> + + * doc/manpages/Makefile.am: Generated. + +2005-02-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-openpgp-keys-04.txt, + doc/protocol/draft-ietf-tls-srp-07.txt: [no log message] + +2005-01-31 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-lee-tls-seed-01.txt: Add. + +2005-01-30 Simon Josefsson <simon@josefsson.org> + + * doc/README.CVS: Fix gtk-doc. + +2005-01-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/privkey_pkcs8.c, lib/x509/x509.c, lib/x509/xml.c: some + changes for 64bit machines. + +2005-01-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_ui.c: [no log message] + +2005-01-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/compat.c: these functions are not exported in the API + documentation. + +2005-01-27 Simon Josefsson <simon@josefsson.org> + + * Makefile.am: Don't use "devel" directory. + +2005-01-27 Simon Josefsson <simon@josefsson.org> + + * NEWS, configure.in: Bump versions. + +2005-01-27 Simon Josefsson <simon@josefsson.org> + + * NEWS: Version 1.2.0. + +2005-01-27 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_algorithms.c: Make it compile. + +2005-01-27 Simon Josefsson <simon@josefsson.org> + + * doc/manpages/Makefile.am: Update + +2005-01-27 Simon Josefsson <simon@josefsson.org> + + * doc/gendocs_template: Add. + +2005-01-27 Simon Josefsson <simon@josefsson.org> + + * doc/gendocs_template, doc/gendocs.sh: Update. + +2005-01-27 Simon Josefsson <simon@josefsson.org> + + * doc/TODO: Add. + +2005-01-27 Simon Josefsson <simon@josefsson.org> + + * libextra/Makefile.am: Fix gnutls-extra-api.texi. + +2005-01-27 Simon Josefsson <simon@josefsson.org> + + * lib/x509/Makefile.am: Fix x509-api.texi. + +2005-01-27 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Fix indices, suggested by Nikos. + +2005-01-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/internals.pdf, doc/layers.pdf, doc/pgp1.pdf, doc/x509-1.pdf: + converted the eps to pdf (using epstopdf), resulting in a better + output in gnutls.pdf. + +2005-01-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/gnutls.texi: corrected types. + +2005-01-26 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Add, from Nikos. + +2005-01-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/gnutls.texi: [no log message] + +2005-01-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-openpgp-keys-05.txt, doc/gnutls.texi, + doc/manpages/Makefile.am: [no log message] + +2005-01-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/crypt-gaa.c, src/crypt-gaa.h, src/crypt.gaa: srptool has now + the --version parameter. + +2005-01-26 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-ietf-tls-openpgp-keys-05.txt: Add. + +2005-01-26 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-ietf-tls-openpgp-keys-06.txt: Add. + +2005-01-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c: [no log message] + +2005-01-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/crypt.c: print version in srptool + +2005-01-26 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Fix. + +2005-01-26 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2005-01-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/crypt.c: [no log message] + +2005-01-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/common.c: --disable-extra-pki works again. + +2005-01-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/auth_cert.c, lib/auth_cert.h, lib/auth_srp.h, + lib/gnutls_algorithms.c, lib/gnutls_extensions.c, + lib/gnutls_handshake.c, lib/gnutls_priority.c, + lib/gnutls_session_pack.c, lib/gnutls_sig.h, + libextra/gnutls_extra.c, libextra/gnutls_extra.h, + libextra/openpgp/gnutls_openpgp.h, libextra/openpgp/openpgp.h: + Changes to make the --disable-* options work again. + +2005-01-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_handshake.c: changes to make the + --disable-srp-authentication work again. + +2005-01-26 Simon Josefsson <simon@josefsson.org> + + * doc/manpages/Makefile.am: Update. + +2005-01-26 Simon Josefsson <simon@josefsson.org> + + * doc/Makefile.am: Typo. + +2005-01-26 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Fix license header. Mention TLS 1.1 more. Talk + about TLS instead of TLS 1.0 in general. + +2005-01-26 Simon Josefsson <simon@josefsson.org> + + * gl/Makefile.am, gl/error.c, gl/gettext.h, gl/size_max.h, + gl/m4/alloca.m4, gl/m4/codeset.m4, gl/m4/eoverflow.m4, + gl/m4/error.m4, gl/m4/getline.m4, gl/m4/getndelim2.m4, + gl/m4/getpass.m4, gl/m4/gettext.m4, gl/m4/glibc21.m4, + gl/m4/gnulib.m4, gl/m4/iconv.m4, gl/m4/intdiv0.m4, gl/m4/intmax.m4, + gl/m4/intmax_t.m4, gl/m4/inttypes-pri.m4, gl/m4/inttypes.m4, + gl/m4/inttypes_h.m4, gl/m4/isc-posix.m4, gl/m4/lcmessage.m4, + gl/m4/lib-ld.m4, gl/m4/lib-link.m4, gl/m4/lib-prefix.m4, + gl/m4/longdouble.m4, gl/m4/longlong.m4, gl/m4/nls.m4, gl/m4/po.m4, + gl/m4/printf-posix.m4, gl/m4/progtest.m4, gl/m4/signed.m4, + gl/m4/size_max.m4, gl/m4/snprintf.m4, gl/m4/ssize_t.m4, + gl/m4/stdbool.m4, gl/m4/stdint_h.m4, gl/m4/strerror_r.m4, + gl/m4/uintmax_t.m4, gl/m4/ulonglong.m4, gl/m4/vasnprintf.m4, + gl/m4/wchar_t.m4, gl/m4/wint_t.m4, gl/m4/xsize.m4: Update. + +2005-01-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2005-01-24 Simon Josefsson <simon@josefsson.org> + + * tests/Makefile.am, tests/anonself.c, tests/chain, + tests/openssl.c, tests/pkcs12_neon, tests/simple.c, tests/utils.c, + tests/utils.h: Clean up license templates. + +2005-01-24 Simon Josefsson <simon@josefsson.org> + + * tests/Makefile.am: Clean up license templates. + +2005-01-24 Simon Josefsson <simon@josefsson.org> + + * doc/Makefile.am: Clean up license templates. + +2005-01-24 Simon Josefsson <simon@josefsson.org> + + * Makefile.am, configure.in: Clean up license templates. + +2005-01-24 Simon Josefsson <simon@josefsson.org> + + * libextra/Makefile.am, libextra/gnutls-extra.pc.in, + libextra/gnutls_extra.h, libextra/openssl_compat.h, + lib/Makefile.am, lib/gnutls.pc.in: Clean up license templates. + +2005-01-24 Simon Josefsson <simon@josefsson.org> + + * lib/x509/Makefile.am, lib/x509/common.h, lib/x509/compat.h, + lib/x509/crq.h, lib/x509/dn.h, lib/x509/dsa.h, + lib/x509/extensions.h, lib/x509/mpi.h, lib/x509/pkcs12.h, + lib/x509/pkcs7.h, lib/x509/privkey.h, lib/x509/rfc2818.h, + lib/x509/sign.h, lib/x509/verify.h, lib/x509/x509.h: Clean up + license templates. + +2005-01-24 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls.pc.in: Clean up license templates. + +2005-01-24 Simon Josefsson <simon@josefsson.org> + + * lib/Makefile.am, lib/gnutls_int_compat.c: Remove + gnutls_int_compat.c (not used). + +2005-01-24 Simon Josefsson <simon@josefsson.org> + + * lib/Makefile.am, lib/gnutls.h.in.in, lib/auth_anon.h, + lib/auth_cert.h, lib/auth_dh_common.h, lib/auth_srp.h, + lib/auth_srp_passwd.h, lib/debug.h, lib/defines.h, + lib/ext_cert_type.h, lib/ext_max_record.h, lib/ext_server_name.h, + lib/ext_srp.h, lib/gnutls_alert.h, lib/gnutls_algorithms.h, + lib/gnutls_auth.h, lib/gnutls_auth_int.h, lib/gnutls_buffer.h, + lib/gnutls_buffers.h, lib/gnutls_cert.h, lib/gnutls_cipher.h, + lib/gnutls_cipher_int.h, lib/gnutls_compress.h, + lib/gnutls_compress_int.h, lib/gnutls_constate.h, + lib/gnutls_datum.h, lib/gnutls_db.h, lib/gnutls_dh.h, + lib/gnutls_errors.h, lib/gnutls_errors_int.h, + lib/gnutls_extensions.h, lib/gnutls_global.h, + lib/gnutls_handshake.h, lib/gnutls_hash_int.h, lib/gnutls_int.h, + lib/gnutls_kx.h, lib/gnutls_mem.h, lib/gnutls_mpi.h, + lib/gnutls_num.h, lib/gnutls_pk.h, lib/gnutls_priority.h, + lib/gnutls_random.h, lib/gnutls_record.h, lib/gnutls_rsa_export.h, + lib/gnutls_session.h, lib/gnutls_session_pack.h, lib/gnutls_sig.h, + lib/gnutls_srp.h, lib/gnutls_state.h, lib/gnutls_str.h, + lib/gnutls_ui.h, lib/gnutls_v2_compat.h, lib/gnutls_x509.h, + lib/io_debug.h, lib/strfile.h, lib/x509_b64.c, lib/x509_b64.h: + Clean up license templates. + +2005-01-24 Simon Josefsson <simon@josefsson.org> + + * lib/auth_anon.h, lib/auth_cert.h, lib/auth_dh_common.h, + lib/auth_srp.h, lib/auth_srp_passwd.h, lib/debug.h, lib/defines.h, + lib/ext_cert_type.h, lib/ext_max_record.h, lib/ext_server_name.h, + lib/ext_srp.h, lib/gnutls_alert.h, lib/gnutls_algorithms.h, + lib/gnutls_auth.h, lib/gnutls_auth_int.h, lib/gnutls_buffer.h, + lib/gnutls_buffers.h, lib/gnutls_cert.h, lib/gnutls_cipher.h, + lib/gnutls_cipher_int.h, lib/gnutls_compress.h, + lib/gnutls_compress_int.h, lib/gnutls_constate.h, + lib/gnutls_datum.h, lib/gnutls_db.h, lib/gnutls_dh.h, + lib/gnutls_errors.h, lib/gnutls_errors_int.h, + lib/gnutls_extensions.h, lib/gnutls_global.h, + lib/gnutls_handshake.h, lib/gnutls_hash_int.h, lib/gnutls_int.h, + lib/gnutls_kx.h, lib/gnutls_mem.h, lib/gnutls_mpi.h, + lib/gnutls_num.h, lib/gnutls_pk.h, lib/gnutls_priority.h, + lib/gnutls_random.h, lib/gnutls_record.h, lib/gnutls_rsa_export.h, + lib/gnutls_session.h, lib/gnutls_session_pack.h, lib/gnutls_sig.h, + lib/gnutls_srp.h, lib/gnutls_state.h, lib/gnutls_str.h, + lib/gnutls_ui.h, lib/gnutls_v2_compat.h, lib/gnutls_x509.h, + lib/io_debug.h, lib/memmem.h, lib/strfile.h, lib/x509_b64.h: Clean + up license templates. + +2005-01-24 Simon Josefsson <simon@josefsson.org> + + * lib/ext_server_name.c: File is LGPL. + +2005-01-24 Simon Josefsson <simon@josefsson.org> + + * lib/debug.c: File is LGPL. + +2005-01-22 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/extra.h, includes/gnutls/openpgp.h, + includes/gnutls/openssl.h, includes/gnutls/pkcs12.h, + includes/gnutls/x509.h: Clean up license templates. + +2005-01-22 Simon Josefsson <simon@josefsson.org> + + * libextra/openssl_compat.c, libextra/openpgp/compat.c, + libextra/openpgp/extras.c, libextra/openpgp/pgp.c, + libextra/openpgp/pgpverify.c, libextra/openpgp/privkey.c, + libextra/openpgp/xml.c: Clean up license templates. + +2005-01-22 Simon Josefsson <simon@josefsson.org> + + * libextra/gnutls_extra.c, libextra/gnutls_openpgp.c, + libextra/gnutls_openssl.c, libextra/openssl_compat.c: Clean up + license templates. + +2005-01-22 Simon Josefsson <simon@josefsson.org> + + * lib/x509/common.c, lib/x509/compat.c, lib/x509/crl.c, + lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/dn.c, + lib/x509/dsa.c, lib/x509/extensions.c, lib/x509/mpi.c, + lib/x509/pkcs12.c, lib/x509/pkcs12_bag.c, lib/x509/pkcs12_encr.c, + lib/x509/pkcs7.c, lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, + lib/x509/rfc2818_hostname.c, lib/x509/sign.c, lib/x509/verify.c, + lib/x509/x509.c, lib/x509/x509_write.c, lib/x509/xml.c: Clean up + license templates. + +2005-01-22 Simon Josefsson <simon@josefsson.org> + + * lib/auth_anon.c, lib/auth_cert.c, lib/auth_dh_common.c, + lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, + lib/auth_srp.c, lib/auth_srp_passwd.c, lib/auth_srp_rsa.c, + lib/auth_srp_sb64.c, lib/debug.c, lib/ext_cert_type.c, + lib/ext_max_record.c, lib/ext_server_name.c, lib/ext_srp.c, + lib/gnutls_alert.c, lib/gnutls_algorithms.c, + lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_buffers.c, + lib/gnutls_cert.c, lib/gnutls_cipher.c, lib/gnutls_cipher_int.c, + lib/gnutls_compress.c, lib/gnutls_compress_int.c, + lib/gnutls_constate.c, lib/gnutls_datum.c, lib/gnutls_db.c, + lib/gnutls_dh.c, lib/gnutls_dh_primes.c, lib/gnutls_errors.c, + lib/gnutls_extensions.c, lib/gnutls_global.c, + lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_int.h, + lib/gnutls_kx.c, lib/gnutls_mem.c, lib/gnutls_mpi.c, + lib/gnutls_num.c, lib/gnutls_num.h, lib/gnutls_pk.c, + lib/gnutls_priority.c, lib/gnutls_random.c, lib/gnutls_record.c, + lib/gnutls_rsa_export.c, lib/gnutls_session.c, + lib/gnutls_session.h, lib/gnutls_session_pack.c, lib/gnutls_sig.c, + lib/gnutls_srp.c, lib/gnutls_state.c, lib/gnutls_str.c, + lib/gnutls_ui.c, lib/gnutls_v2_compat.c, lib/gnutls_x509.c, + lib/x509_b64.c: Clean up license templates. + +2005-01-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_algorithms.c, src/certtool.c: some cleanups. + +2005-01-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/gnutls/x509.h, lib/gnutls.h.in.in, + lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/mpi.c, + lib/x509/mpi.h, lib/x509/sign.c, lib/x509/sign.h, + lib/x509/x509_write.c, src/certtool-gaa.c, src/certtool-gaa.h, + src/certtool.c, src/certtool.gaa: introduced + gnutls_x509_crt_sign2(), gnutls_x509_crq_sign2() and + gnutls_x509_crl_sign2(). Also added the --hash option to certtool in + order to be able to generate certificates signed with different hash + algorithms. + +2005-01-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c, lib/gnutls.h.in.in, lib/gnutls_handshake.c, + lib/gnutls_int.h: changed the values of GNUTLS_PK_UNKNOWN and + GNUTLS_SIGN_UNKNOWN to zero. + +2005-01-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2005-01-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_algorithms.c, + lib/gnutls_algorithms.h, lib/gnutls_int.h, lib/x509/common.c, + lib/x509/common.h, lib/x509/x509.h: Simplified the algorithm to OID + and vice versa functions, and added the RSA-RMD160 and the RMD160 + OID. + +2005-01-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/crq.c, lib/x509/dn.c, lib/x509/pkcs12.c, + lib/x509/pkcs7.c, lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, + lib/x509/x509.c: updated documentation + +2005-01-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/privkey_pkcs8.c: [no log message] + +2005-01-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/openssl_compat.c: These compatibility functions will no + longer show up in the documentation. + +2005-01-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-rescorla-dtls-00.txt, + doc/protocol/draft-rescorla-dtls-02.txt: updated dtls draft + +2005-01-19 Simon Josefsson <simon@josefsson.org> + + * Makefile.am: + (ChangeLog): Only log 1.0 entries. + +2005-01-19 Simon Josefsson <simon@josefsson.org> + + * Makefile.am: + (ChangeLog): Add --tags. + +2005-01-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/tests.c: increased a buffer. + +2005-01-18 Simon Josefsson <simon@josefsson.org> + + * NEWS, configure.in: Bump versions. + +2005-01-18 Simon Josefsson <simon@josefsson.org> + + * NEWS: Version 1.0.24. + +2005-01-18 Simon Josefsson <simon@josefsson.org> + + * Makefile.am: + (release): Fix. + +2005-01-18 Simon Josefsson <simon@josefsson.org> + + * Makefile.am: Fix. + +2005-01-18 Simon Josefsson <simon@josefsson.org> + + * Makefile.am: + (ChangeLog): Use other syntax. + +2005-01-18 Simon Josefsson <simon@josefsson.org> + + * Makefile.am: + (release): Fix. + +2005-01-18 Simon Josefsson <simon@josefsson.org> + + * THANKS: Pull up from trunk. + +2005-01-18 Simon Josefsson <simon@josefsson.org> + + * NEWS: Version 1.1.23. + +2005-01-18 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2005-01-18 Simon Josefsson <simon@josefsson.org> + + * src/cli.c: Fix last commit better. + +2005-01-18 Simon Josefsson <simon@josefsson.org> + + * src/cli.c: Fix client cert callback, to make X.509 client + authentication work. + +2005-01-18 Simon Josefsson <simon@josefsson.org> + + * Makefile.am: + (ChangeLog): Make it more like FSF format. + +2005-01-18 Simon Josefsson <simon@josefsson.org> + + * src/errcodes.c: Fix warning. + +2005-01-18 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_x509.c: Fix warning. + +2005-01-18 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2005-01-18 Simon Josefsson <simon@josefsson.org> + + * lib/minitasn1/coding.c, lib/minitasn1/decoding.c, + lib/minitasn1/element.c, lib/minitasn1/errors.c, + lib/minitasn1/int.h, lib/minitasn1/libtasn1.h, + lib/minitasn1/parser_aux.c, lib/minitasn1/structure.c: Sync with + libtasn1 0.2.13. + +2005-01-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2005-01-16 Simon Josefsson <simon@josefsson.org> + + * NEWS: Fix. + +2005-01-15 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-hajjeh-tls-sign-00.txt: Add. + +2005-01-15 Simon Josefsson <simon@josefsson.org> + + * doc/README.CVS: Fix. + +2005-01-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/tests.c, src/tests.h, src/tls_test.c: added a check in + verbose mode to print the HTTPS server's name. + +2005-01-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/tls_test.c: [no log message] + +2005-01-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2005-01-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool.c: print RSA and DSA parameters in both certificates + and private keys. + +2005-01-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c: rolled back incorrect commit in cli.c + +2005-01-07 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2005-01-07 Simon Josefsson <simon@josefsson.org> + + * lib/x509/common.c: + (_gnutls_x509_data2hex): Make sure bin2hex will convert entire + string first, because bin2hex will not return NULL any longer. + +2005-01-07 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_constate.c: + (_gnutls_set_keys): Use larger buffer, to hold entire hex output. + Reported by Michael.Ringe@aachen.utimaco.de. + +2005-01-07 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_kx.c: + (generate_normal_master): Use larger buffer, to hold entire hex + output. Reported by Michael.Ringe@aachen.utimaco.de. + +2005-01-07 Simon Josefsson <simon@josefsson.org> + + * THANKS: Add. + +2005-01-07 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_str.c: + (_gnutls_bin2hex): Return truncated string instead of NULL, to make + it easier to use directly as a parameter to printf. Reported by + Michael.Ringe@aachen.utimaco.de. + +2005-01-05 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2005-01-05 Simon Josefsson <simon@josefsson.org> + + * THANKS: Add. + +2005-01-05 Simon Josefsson <simon@josefsson.org> + + * lib/x509/dn.c: + (_gnutls_x509_parse_dn): Return buffer size, not string size, in + *sizeof_buf. Reported by Martin Lambers <marlam@web.de>. + +2005-01-05 Simon Josefsson <simon@josefsson.org> + + * doc/README.CVS: Add gtk-doc URLs. + +2005-01-05 Simon Josefsson <simon@josefsson.org> + + * doc/README.CVS: Fix gtk-doc stuff. + +2004-12-30 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-ietf-tls-rfc3546bis-00.txt: Add. + +2004-12-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2004-12-26 Simon Josefsson <simon@josefsson.org> + + * doc/README.CVS: Update. + +2004-12-26 Simon Josefsson <simon@josefsson.org> + + * THANKS: Add. + +2004-12-26 Simon Josefsson <simon@josefsson.org> + + * gl/alloca_.h, gl/progname.c, gl/progname.h: Update. + +2004-12-17 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-ietf-tls-psk-05.txt: Add. + +2004-12-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, THANKS: [no log message] + +2004-12-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2004-12-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/pkcs12.c: [no log message] + +2004-12-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/common.c: [no log message] + +2004-12-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/common.c: corrected bug in gnutls_x509_set_time() + +2004-12-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/gnutls.texi: some additions for certtool + +2004-12-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/gnutls.texi: added documentation for the export/import to + pkcs3 and pkcs1 formats for RSA and DH parameters. + +2004-12-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c, libextra/gnutls_openssl.c, src/certtool.c, + src/cli.c, src/common.c: Corrected bugs found by Marcin Garski + <mgarski@post.pl> + +2004-12-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c, lib/x509/verify.c, libextra/gnutls_openssl.c, + src/certtool.c: Corrected bugs found by Marcin Garski + <mgarski@post.pl> + +2004-12-14 Simon Josefsson <simon@josefsson.org> + + * doc/TODO: Fix. + +2004-12-09 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-ietf-tls-kerb-01.txt: Add. + +2004-12-09 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-ietf-tls-rfc2246-bis-09.txt: Add. + +2004-12-07 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-ietf-tls-ecc-07.txt: Add. + +2004-12-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/pkix_asn1_tab.c, lib/x509/verify.c: The certificate + chain verification function now checks certificates in the reverse + order to minimize the resources spent. This has not be thoroughtly + tested. + +2004-11-29 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-ietf-tls-psk-04.txt: Add. + +2004-11-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/dn.c: corrected bug in parse_dn_oid(). Traced and + reported by Pelle Johansson. + +2004-11-23 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/rfc3943.txt: Add. + +2004-11-19 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_ui.c: Doc fix. + +2004-11-17 Simon Josefsson <simon@josefsson.org> + + * doc/TODO: Add. + +2004-11-16 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-ietf-tls-psk-03.txt: Add. + +2004-11-16 Simon Josefsson <simon@josefsson.org> + + * doc/TODO: Add. + +2004-11-13 Simon Josefsson <simon@josefsson.org> + + * NEWS, configure.in: Bump versions. + +2004-11-13 Simon Josefsson <simon@josefsson.org> + + * NEWS: Version 1.0.23. + +2004-11-13 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-11-13 Simon Josefsson <simon@josefsson.org> + + * src/certtool.c: Make private key optional in --to-p12, suggested + by Fabian Fagerholm <fabbe@paniq.net>. + +2004-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/minitasn1/coding.c, lib/minitasn1/decoding.c, + lib/minitasn1/parser_aux.c, lib/minitasn1/structure.c, + lib/minitasn1/errors.c: updated to the new libtasn1. + +2004-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/extensions.c: [no log message] + +2004-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/x509/extensions.c: backported the fix for CRL + distribution points from unstable branch. + +2004-11-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2004-11-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/extensions.c: corrected CRL dist points handling. + +2004-11-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/extensions.c: corrected a sigsegv when writing CRL + distribution points. It does not work properly though. + +2004-11-08 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-11-08 Simon Josefsson <simon@josefsson.org> + + * src/certtool.c: Make private key optional in --to-p12, suggested + by Fabian Fagerholm <fabbe@paniq.net>. + +2004-11-04 Simon Josefsson <simon@josefsson.org> + + * NEWS, configure.in: Bump versions. + +2004-11-04 Simon Josefsson <simon@josefsson.org> + + * NEWS: Version 1.1.22. + +2004-11-04 Simon Josefsson <simon@josefsson.org> + + * NEWS: Fix. + +2004-11-04 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-11-04 Simon Josefsson <simon@josefsson.org> + + * libextra/openpgp/Makefile.am: Need minitasn1 -I's. + +2004-11-04 Simon Josefsson <simon@josefsson.org> + + * gl/getpass.c, gl/m4/getpass.m4: Update. + +2004-11-04 Simon Josefsson <simon@josefsson.org> + + * AUTHORS: Pull up from trunk. + +2004-11-04 Simon Josefsson <simon@josefsson.org> + + * AUTHORS: Add link to PGP key. + +2004-11-03 Simon Josefsson <simon@josefsson.org> + + * libextra/Makefile.am: Forgot a source file. + +2004-11-03 Simon Josefsson <simon@josefsson.org> + + * libextra/Makefile.am: Remove leftovers. + +2004-11-03 Simon Josefsson <simon@josefsson.org> + + * libextra/Makefile.am, libextra/opencdk/Makefile.am, + libextra/openpgp/Makefile.am: Use convenience libraries for + openpgp/ and opencdk/. + +2004-11-03 Simon Josefsson <simon@josefsson.org> + + * lib/Makefile.am: Use LDFLAGS instead of LIBADD, for + $(LIBTASN1_LIBS). + +2004-11-03 Simon Josefsson <simon@josefsson.org> + + * libextra/Makefile.am: Simplify. + +2004-11-03 Simon Josefsson <simon@josefsson.org> + + * libextra/Makefile.am: Need libtasn1 for libgnutls-openssl. + +2004-11-03 Simon Josefsson <simon@josefsson.org> + + * lib/minitasn1/Makefile.am: Add -I for alloca.h in gl (why wasn't + this needed before?). + +2004-11-03 Simon Josefsson <simon@josefsson.org> + + * NEWS: Fix. + +2004-11-03 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-10-31 Simon Josefsson <simon@josefsson.org> + + * doc/reference/gnutls.types: Remove. + +2004-10-30 Simon Josefsson <simon@josefsson.org> + + * lib/minitasn1/decoding.c, lib/minitasn1/errors.c, + lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, + lib/minitasn1/structure.c: GTK-DOC fixes. + +2004-10-30 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/openpgp.h: GTK-DOC fixes. + +2004-10-30 Simon Josefsson <simon@josefsson.org> + + * lib/x509/crl.c, lib/x509/x509_write.c: Doc fix. + +2004-10-30 Simon Josefsson <simon@josefsson.org> + + * lib/minitasn1/structure.c: GTK-DOC fix. + +2004-10-30 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Editorial fixes. + +2004-10-30 Simon Josefsson <simon@josefsson.org> + + * src/errcodes.c: Fix. + +2004-10-30 Simon Josefsson <simon@josefsson.org> + + * libextra/Makefile.am: No need for libgnutls-extra.vers. + +2004-10-30 Simon Josefsson <simon@josefsson.org> + + * libextra/Makefile.am: Need libgc.la for libgnutls_openssl. + +2004-10-30 Simon Josefsson <simon@josefsson.org> + + * tests/Makefile.am: Add openssl self test. + +2004-10-30 Simon Josefsson <simon@josefsson.org> + + * tests/openssl.c: Add. + +2004-10-30 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/openssl.h: Declare MD_CTX. Add + MD5_DIGEST_LENGTH. + +2004-10-30 Simon Josefsson <simon@josefsson.org> + + * libextra/gnutls_openssl.c: Remove MD_CTX (should never have been + here). + +2004-10-30 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-10-30 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/openssl.h, libextra/gnutls_openssl.c: Port + openssl glue to generic crypto API. + +2004-10-30 Simon Josefsson <simon@josefsson.org> + + * tests/simple.c: Fix. + +2004-10-30 Simon Josefsson <simon@josefsson.org> + + * lib/Makefile.am: Recurse into minitasn1/. + +2004-10-30 Simon Josefsson <simon@josefsson.org> + + * lib/Makefile.am: Remove libgnutls.vers. + +2004-10-30 Simon Josefsson <simon@josefsson.org> + + * lib/Makefile.am: Use AM_CPPFLAGS instead of obsoleted INCLUDES. + Use only one of -Iminitasn1 or $(LIBTASN1_CFLAGS), depending on + ENABLE_MINITASN1. Link with minitasn1/libminitasn1.la, instead of + building files here. Don't use $(LIBTASN1_LIBS) unless + ENABLE_MINITASN1. + +2004-10-30 Simon Josefsson <simon@josefsson.org> + + * lib/minitasn1/Makefile.am: Build library in this directory. + +2004-10-30 Simon Josefsson <simon@josefsson.org> + + * lib/Makefile.am: Put .la libraries in LIBADD, not LDFLAGS, as + recommended. + +2004-10-29 Simon Josefsson <simon@josefsson.org> + + * lib/Makefile.am, lib/x509/Makefile.am: Build x509 files inside + x509/, to avoid scattering *.o and *.lo for every file in x509/ in + lib/. + +2004-10-29 Simon Josefsson <simon@josefsson.org> + + * buildconf: Fix. + +2004-10-29 Simon Josefsson <simon@josefsson.org> + + * src/Makefile.am: Remove SERV_LIBS (not used). + +2004-10-29 Simon Josefsson <simon@josefsson.org> + + * configure.in: Use AS_HELP_STRING. Remove SERV_LIBS (unused). + Various indentation and cleanup. + +2004-10-29 Simon Josefsson <simon@josefsson.org> + + * NEWS, configure.in, lib/Makefile.am, libextra/Makefile.am: + Replace GNU LD version script with Libtool -export-symbols-regex, + tiny patch from Joe Orton <joe@manyfish.co.uk>. + +2004-10-29 Simon Josefsson <simon@josefsson.org> + + * doc/TODO: Add. + +2004-10-29 Simon Josefsson <simon@josefsson.org> + + * NEWS, configure.in, lib/Makefile.am, lib/libgnutls.vers, + libextra/Makefile.am, libextra/libgnutls-extra.vers: Replace GNU LD + version script with Libtool -export-symbols-regex, tiny patch from + Joe Orton <joe@manyfish.co.uk>. + +2004-10-28 Simon Josefsson <simon@josefsson.org> + + * THANKS: Add. + +2004-10-28 Simon Josefsson <simon@josefsson.org> + + * lib/minitasn1/coding.c, lib/minitasn1/decoding.c, + lib/minitasn1/element.c, lib/minitasn1/errors.c, + lib/minitasn1/errors.h, lib/minitasn1/errors_int.h, + lib/minitasn1/gstr.c, lib/minitasn1/gstr.h, lib/minitasn1/int.h, + lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c: Doc fixes, + from Martijn Koster <mak@greenhills.co.uk>. + +2004-10-28 Simon Josefsson <simon@josefsson.org> + + * lib/minitasn1/structure.c: GTK-DOC fix. + +2004-10-28 Simon Josefsson <simon@josefsson.org> + + * lib/minitasn1/coding.c, lib/minitasn1/decoding.c, + lib/minitasn1/element.c, lib/minitasn1/errors.c, + lib/minitasn1/errors.h, lib/minitasn1/errors_int.h, + lib/minitasn1/gstr.c, lib/minitasn1/gstr.h, lib/minitasn1/int.h, + lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c: Doc fixes, + from Martijn Koster <mak@greenhills.co.uk>. + +2004-10-28 Simon Josefsson <simon@josefsson.org> + + * NEWS, lib/minitasn1/decoding.c, lib/minitasn1/int.h, + lib/minitasn1/libtasn1.h: Sync libtasn1 files with 0.2.11. + +2004-10-28 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-10-28 Simon Josefsson <simon@josefsson.org> + + * lib/ext_server_name.c, lib/gnutls_alert.c, + lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_buffers.c, + lib/gnutls_cert.c, lib/gnutls_db.c, lib/gnutls_handshake.c, + lib/gnutls_priority.c, lib/gnutls_record.c, lib/gnutls_session.c, + lib/gnutls_srp.c, lib/gnutls_state.c, lib/gnutls_ui.c, + lib/gnutls_x509.c, lib/minitasn1/structure.c, + libextra/gnutls_openpgp.c: Doc fix. + +2004-10-28 Simon Josefsson <simon@josefsson.org> + + * doc/reference/Makefile.am: Reenable --sgml-mode. + +2004-10-28 Simon Josefsson <simon@josefsson.org> + + * doc/scripts/gdoc: Change struct-marker & to #, to align with + modern GTK-DOC. Improve texinfo and man output. + +2004-10-28 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_int.h, lib/gnutls_ui.h, libextra/gnutls_openpgp.c, + libextra/minilzo.c, libextra/openpgp/gnutls_openpgp.h, src/serv.c: + Indent. + +2004-10-28 Simon Josefsson <simon@josefsson.org> + + * Makefile.am: Fix. + +2004-10-28 Simon Josefsson <simon@josefsson.org> + + * lib/auth_anon.h, lib/auth_cert.c, lib/auth_cert.h, + lib/auth_dh_common.c, lib/auth_dh_common.h, lib/auth_rsa.c, + lib/auth_rsa_export.c, lib/auth_srp.h, lib/auth_srp_passwd.c, + lib/auth_srp_passwd.h, lib/ext_server_name.c, + lib/ext_server_name.h, lib/ext_srp.h, lib/gnutls_algorithms.c, + lib/gnutls_algorithms.h, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, + lib/gnutls_auth.h, lib/gnutls_auth_int.h, lib/gnutls_buffers.c, + lib/gnutls_buffers.h, lib/gnutls_cert.c, lib/gnutls_cert.h, + lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, + lib/gnutls_compress_int.c, lib/gnutls_constate.c, + lib/gnutls_datum.c, lib/gnutls_datum.h, lib/gnutls_db.c, + lib/gnutls_db.h, lib/gnutls_dh_primes.c, lib/gnutls_errors.c, + lib/gnutls_errors_int.h, lib/gnutls_extensions.c, + lib/gnutls_global.c, lib/gnutls_handshake.c, + lib/gnutls_handshake.h, lib/gnutls_hash_int.c, + lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_kx.c, + lib/gnutls_kx.h, lib/gnutls_mem.h, lib/gnutls_pk.c, + lib/gnutls_pk.h, lib/gnutls_random.c, lib/gnutls_record.c, + lib/gnutls_record.h, lib/gnutls_rsa_export.c, lib/gnutls_session.h, + lib/gnutls_session_pack.c, lib/gnutls_sig.c, lib/gnutls_sig.h, + lib/gnutls_srp.c, lib/gnutls_srp.h, lib/gnutls_state.c, + lib/gnutls_state.h, lib/gnutls_ui.c, lib/gnutls_ui.h, + lib/gnutls_x509.c, lib/gnutls_x509.h, lib/memmem.c, lib/memmem.h, + lib/x509_b64.c, lib/x509/common.c, lib/x509/common.h, + lib/x509/compat.c, lib/x509/compat.h, lib/x509/crl.c, + lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/crq.h, + lib/x509/dn.c, lib/x509/dn.h, lib/x509/dsa.h, + lib/x509/extensions.c, lib/x509/extensions.h, lib/x509/mpi.h, + lib/x509/pkcs12.c, lib/x509/pkcs12.h, lib/x509/pkcs12_bag.c, + lib/x509/pkcs12_encr.c, lib/x509/pkcs7.c, lib/x509/pkcs7.h, + lib/x509/privkey.c, lib/x509/privkey.h, lib/x509/privkey_pkcs8.c, + lib/x509/sign.c, lib/x509/sign.h, lib/x509/verify.c, + lib/x509/verify.h, lib/x509/x509.c, lib/x509/x509.h, + lib/x509/x509_write.c, libextra/gnutls_extra.h, + libextra/gnutls_openpgp.c, libextra/gnutls_openssl.c, + libextra/lzoconf.h, libextra/minilzo.c, libextra/minilzo.h, + libextra/openssl_compat.c, libextra/openssl_compat.h, + libextra/openpgp/compat.c, libextra/openpgp/extras.c, + libextra/openpgp/gnutls_openpgp.h, libextra/openpgp/openpgp.h, + libextra/openpgp/pgpverify.c, src/certtool-cfg.h, src/certtool.c, + src/common.c, src/common.h, src/list.h, src/serv.c, src/tests.c, + src/tests.h: Indent. + +2004-10-28 Simon Josefsson <simon@josefsson.org> + + * Makefile.am: Add indent target. + +2004-10-28 Simon Josefsson <simon@josefsson.org> + + * NEWS, configure.in: Bump versions. + +2004-10-28 Simon Josefsson <simon@josefsson.org> + + * gl/Makefile.am: Update. + +2004-10-28 Simon Josefsson <simon@josefsson.org> + + * NEWS: Version 1.0.22. + +2004-10-28 Simon Josefsson <simon@josefsson.org> + + * lib/x509/common.c: Make it compile. + +2004-10-28 Simon Josefsson <simon@josefsson.org> + + * NEWS: Typo. + +2004-10-27 Simon Josefsson <simon@josefsson.org> + + * buildconf: Mention --enable-gtk-doc. + +2004-10-27 Simon Josefsson <simon@josefsson.org> + + * NEWS, configure.in: Bump versions. + +2004-10-27 Simon Josefsson <simon@josefsson.org> + + * Makefile.am: Fix release target for new GTK-DOC. + +2004-10-27 Simon Josefsson <simon@josefsson.org> + + * NEWS: Version 1.1.21. + +2004-10-27 Simon Josefsson <simon@josefsson.org> + + * buildconf: Run gtkdocize. + +2004-10-27 Simon Josefsson <simon@josefsson.org> + + * doc/reference/gnutls-docs.tmpl: Remove. + +2004-10-27 Simon Josefsson <simon@josefsson.org> + + * doc/reference/Makefile.am, doc/reference/gnutls-docs.sgml: Add + opencdk and libtasn1 to GTK-DOC manual. + +2004-10-27 Simon Josefsson <simon@josefsson.org> + + * doc/reference/Makefile.am: Rewrite, GTK-DOC from CVS (plus + patches) seem to work reasonably well now. + +2004-10-27 Simon Josefsson <simon@josefsson.org> + + * doc/reference/gnutls-docs.sgml: Add. + +2004-10-27 Simon Josefsson <simon@josefsson.org> + + * lib/x509/common.c: Make it compile. + +2004-10-27 Simon Josefsson <simon@josefsson.org> + + * tests/Makefile.am: Dist *.p12. + +2004-10-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/pkcs12_encr.c: allow for NULL and empty passwords in + pkcs12 string to key + +2004-10-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/pkcs12_encr.c, lib/x509/privkey_pkcs8.c: [no log + message] + +2004-10-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c: some minor fixes. + +2004-10-25 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-10-25 Simon Josefsson <simon@josefsson.org> + + * configure.in: Move LIBS (i.e., -lz) to end of LIBGNUTLS_LIBS, to + fix libgnutls*-config --libs output, reported by Yoann + Vandoorselaere <yoann@prelude-ids.org>. + +2004-10-25 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-10-25 Simon Josefsson <simon@josefsson.org> + + * configure.in: Move LIBS (i.e., -lz) to end of LIBGNUTLS_LIBS, to + fix libgnutls*-config --libs output, reported by Yoann + Vandoorselaere <yoann@prelude-ids.org>. + +2004-10-25 Simon Josefsson <simon@josefsson.org> + + * doc/reference/Makefile.am: Revert to my own Makefile.am for now. + +2004-10-24 Simon Josefsson <simon@josefsson.org> + + * AUTHORS: Resign PGP key. + +2004-10-24 Simon Josefsson <simon@josefsson.org> + + * doc/reference/Makefile.am: Fix. + +2004-10-24 Simon Josefsson <simon@josefsson.org> + + * doc/reference/Makefile.am: Fix. + +2004-10-24 Simon Josefsson <simon@josefsson.org> + + * doc/reference/Makefile.am: Rewrite, align with upstream + recommendations. + +2004-10-24 Simon Josefsson <simon@josefsson.org> + + * doc/reference/gnutls.types: Add. + +2004-10-24 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-10-24 Simon Josefsson <simon@josefsson.org> + + * tests/Makefile.am, tests/client.p12, tests/noclient.p12, + tests/pkcs12_neon, tests/unclient.p12: Add. Test vectors from Joe + Orton <joe@manyfish.co.uk>, by permission + (<20041024155032.GB26275@manyfish.co.uk>). + +2004-10-24 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-10-24 Simon Josefsson <simon@josefsson.org> + + * src/certtool.c: Fix --password. + +2004-10-24 Simon Josefsson <simon@josefsson.org> + + * NEWS, THANKS: Add. + +2004-10-24 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_x509.c: + (gnutls_certificate_set_x509_trust): Fix memory bug, tiny patch by + Aleix Conchillo Flaque <aleix@member.fsf.org>. + +2004-10-24 Simon Josefsson <simon@josefsson.org> + + * NEWS, THANKS, configure.in, lib/Makefile.am, lib/gnutls.pc.in, + libextra/Makefile.am, libextra/gnutls-extra.pc.in: + Add pkg-config meta files, suggested by Stéphane LOEUILLET + <stephane.loeuillet@tiscali.fr>. + +2004-10-24 Simon Josefsson <simon@josefsson.org> + + * NEWS, THANKS: Add. + +2004-10-24 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_x509.c: + (gnutls_certificate_set_x509_trust): Fix memory bug, tiny patch by + Aleix Conchillo Flaque <aleix@member.fsf.org>. + +2004-10-24 Simon Josefsson <simon@josefsson.org> + + * NEWS, THANKS, configure.in, lib/Makefile.am, lib/gnutls.pc.in, + libextra/Makefile.am, libextra/gnutls-extra.pc.in: Add pkg-config + meta files, suggested by Stéphane LOEUILLET + <stephane.loeuillet@tiscali.fr>. + +2004-10-24 Simon Josefsson <simon@josefsson.org> + + * doc/manpages/Makefile.am: Generated. + +2004-10-24 Simon Josefsson <simon@josefsson.org> + + * NEWS, THANKS, lib/libgnutls-config.in, + libextra/libgnutls-extra-config.in: Add parameter --la-file to + libgnutls-config and libgnutls-extra-config, tiny patch contributed + by Joe Orton <joe@manyfish.co.uk>. + +2004-10-24 Simon Josefsson <simon@josefsson.org> + + * NEWS, THANKS, lib/libgnutls-config.in, + libextra/libgnutls-extra-config.in: Add parameter --la-file to + libgnutls-config and libgnutls-extra-config, tiny patch contributed + by Joe Orton <joe@manyfish.co.uk>. + +2004-10-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/common.c: print teletex strings if they contain only + ASCII characters. + +2004-10-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/x509/common.c: Added second precision to the X.509 + parsing functions. (backported from the unstable) + +2004-10-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2004-10-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/dn.c: corrected bug in _gnutls_x509_get_dn_oid(). + +2004-10-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2004-10-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/x509/common.c: [no log message] + +2004-10-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/common.c, lib/x509/common.h, lib/x509/dn.c, + lib/x509/dn.h: print DN of certificates with unknown characters in + them, but in hex form only. + +2004-10-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/common.c, lib/x509/common.h, lib/x509/dn.c, + lib/x509/dn.h: print the hex value of the name in certificates with + unknown character sets. + +2004-10-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/rfc2253.txt: added the LDAP string rfc. + +2004-10-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/common.c, src/certtool.c: some fixes + +2004-10-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/common.c: reject printing DN in certificates that + contain non-UTF-8 characters in DN. + +2004-10-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * AUTHORS: [no log message] + +2004-10-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/manpages/Makefile.am, lib/x509/common.c: Increased the + precision in ASN.1 time to seconds from minutes. In certificate + names disallow non UTF8 strings such as UCS-2 and UCS-4. + +2004-10-12 Simon Josefsson <simon@josefsson.org> + + * NEWS, configure.in: Bump versions. + +2004-10-12 Simon Josefsson <simon@josefsson.org> + + * NEWS: Version 1.1.20. + +2004-10-12 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-10-12 Simon Josefsson <simon@josefsson.org> + + * NEWS, configure.in: Bump versions. + +2004-10-12 Simon Josefsson <simon@josefsson.org> + + * gl/getpass.c, gl/snprintf.c, gl/snprintf.h: Update gnulib. + +2004-10-07 Simon Josefsson <simon@josefsson.org> + + * NEWS: Version 1.1.19. + +2004-10-07 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-10-06 Simon Josefsson <simon@josefsson.org> + + * NEWS, configure.in: Bump versions. + +2004-10-06 Simon Josefsson <simon@josefsson.org> + + * configure.in: Oops, forgot to bump version. + +2004-10-06 Simon Josefsson <simon@josefsson.org> + + * NEWS: Version 1.0.21. + +2004-10-06 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-10-06 Simon Josefsson <simon@josefsson.org> + + * THANKS: Pull up from trunk. + +2004-10-05 Simon Josefsson <simon@josefsson.org> + + * NEWS: Fix. + +2004-10-05 Simon Josefsson <simon@josefsson.org> + + * doc/reference/Makefile.am: + (HIGNORE): Add. + +2004-10-05 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-10-05 Simon Josefsson <simon@josefsson.org> + + * NEWS: Fix. + +2004-10-05 Simon Josefsson <simon@josefsson.org> + + * configure.in: Look for memmem, for lib/memmem.c test. + +2004-10-05 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-10-05 Simon Josefsson <simon@josefsson.org> + + * configure.in: Check for getpass, for opencdk, reported by Yoann + Vandoorselaere <yoann@prelude-ids.org>. + +2004-10-05 Simon Josefsson <simon@josefsson.org> + + * libextra/opencdk/main.c: + (getpass): Only implement when !HAVE_GETPASS. + +2004-10-05 Simon Josefsson <simon@josefsson.org> + + * NEWS: Typo. + +2004-10-05 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-10-05 Simon Josefsson <simon@josefsson.org> + + * configure.in, gl/Makefile.am, gl/alloca_.h, gl/asnprintf.c, + gl/printf-args.c, gl/printf-args.h, gl/printf-parse.c, + gl/printf-parse.h, gl/snprintf.c, gl/snprintf.h, gl/vasnprintf.c, + gl/vasnprintf.h, gl/xsize.h, gl/m4/alloca.m4, gl/m4/eoverflow.m4, + gl/m4/gnulib.m4, gl/m4/intmax_t.m4, gl/m4/snprintf.m4, + gl/m4/vasnprintf.m4: Add GNULib module, for missing snprintf on + OSF1 V4.0, reported by Yoann Vandoorselaere <yoann@prelude-ids.org>. + Note that lib/ does not yet use it. + +2004-10-05 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/compat.h, lib/gnutls_ui.h: + (gnutls_certificate_verify_peers): Fix prototype. + +2004-10-05 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/compat.h: Fix warning. + +2004-10-05 Simon Josefsson <simon@josefsson.org> + + * src/certtool.c: Don't use exit.h (not needed, EXIT_* is C89). + +2004-10-05 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-10-05 Simon Josefsson <simon@josefsson.org> + + * gl/exit.h, gl/m4/extensions.m4, gl/m4/gnulib.m4, + gl/m4/unlocked-io.m4: Update Gnulib. + +2004-10-05 Simon Josefsson <simon@josefsson.org> + + * configure.in, gl/Makefile.am, gl/memmem.c, gl/memmem.h, + gl/m4/gnulib.m4, gl/m4/memmem.m4, lib/Makefile.am, lib/memmem.c, + lib/memmem.h: Don't link to gnulib in lib/ until issues are solved + (see bug-gnulib). Move memmem from gl/ to lib/, since it is the + only gnulib module lib/ needs. + +2004-10-05 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-10-05 Simon Josefsson <simon@josefsson.org> + + * configure.in, gl/Makefile.am, gl/error.c, gl/getndelim2.c, + gl/getpass.c, gl/memmem.c, gl/memmem.h, gl/memstr.c, gl/memstr.h, + gl/unlocked-io.h, gl/m4/gnulib.m4, gl/m4/memmem.m4, + gl/m4/memstr.m4, lib/defines.h, lib/gnutls_x509.c, lib/x509_b64.c: + Update Gnulib. Replace memstr with memmem, see continued discussion + on bug-gnulib. + +2004-10-04 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-SP800-52.pdf: Add. + +2004-10-01 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/compat.h: + (gnutls_certificate_verify_peers): Add. + +2004-09-30 Simon Josefsson <simon@josefsson.org> + + * configure.in, gl/Makefile.am, gl/memstr.c, gl/memstr.h, + gl/strnstr.c, gl/strnstr.h, gl/m4/gnulib.m4, gl/m4/memstr.m4, + gl/m4/strnstr.m4, lib/defines.h, lib/gnutls_x509.c, lib/x509_b64.c: + Replace strnstr with memstr. See discussion on bug-gnulib list. + +2004-09-29 Simon Josefsson <simon@josefsson.org> + + * lib/Makefile.am: Link with gnulib. Currently only minmax.h and + strnstr are used, which are under LGPL. The license templates in + gl/ will be fixed as soon as gnulib-tool support combined GPL/LGPL + projects. + +2004-09-29 Simon Josefsson <simon@josefsson.org> + + * configure.in, gl/Makefile.am, gl/minmax.h, gl/progname.c, + gl/progname.h, gl/strnstr.c, gl/strnstr.h, gl/m4/gnulib.m4, + gl/m4/strnstr.m4, lib/Makefile.am, lib/defines.h, lib/strnstr.c: + Use strnstr from gnulib. Gnulib sync. + +2004-09-26 Simon Josefsson <simon@josefsson.org> + + * gl/minmax.h: Use version from Lesser GNULib. + +2004-09-21 Simon Josefsson <simon@josefsson.org> + + * THANKS: Add. + +2004-09-21 Simon Josefsson <simon@josefsson.org> + + * libextra/Makefile.am, libextra/opencdk/main.c: Use gnulib getpass + in opencdk. + +2004-09-19 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Add. + +2004-09-19 Simon Josefsson <simon@josefsson.org> + + * doc/examples/ex-rfc2818.c: Fix. + +2004-09-19 Simon Josefsson <simon@josefsson.org> + + * doc/examples/ex-rfc2818.c: Add. + +2004-09-17 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-09-17 Simon Josefsson <simon@josefsson.org> + + * libextra/Makefile.am: Fix objdir != srcdir in -I, reported by + "Gerrit P. Haase" <gp@familiehaase.de>. + +2004-09-17 Simon Josefsson <simon@josefsson.org> + + * src/Makefile.am: Fix objdir != srcdir in -I, reported by "Gerrit + P. Haase" <gp@familiehaase.de>. + +2004-09-17 Simon Josefsson <simon@josefsson.org> + + * libextra/Makefile.am: Fix objdir != srcdir in -I, reported by + "Gerrit P. Haase" <gp@familiehaase.de>. + +2004-09-17 Simon Josefsson <simon@josefsson.org> + + * configure.in, lib/Makefile.am: Fix objdir != srcdir in -I, + reported by "Gerrit P. Haase" <gp@familiehaase.de>. + +2004-09-17 Simon Josefsson <simon@josefsson.org> + + * tests/Makefile.am: Fix objdir != srcdir in -I, reported by + "Gerrit P. Haase" <gp@familiehaase.de>. + +2004-09-17 Simon Josefsson <simon@josefsson.org> + + * THANKS: Add. + +2004-09-17 Simon Josefsson <simon@josefsson.org> + + * THANKS: Add. + +2004-09-17 Simon Josefsson <simon@josefsson.org> + + * lib/minitasn1/Makefile.am: Fix objdir != srcdir in -I, reported + by "Gerrit P. Haase" <gp@familiehaase.de>. + +2004-09-17 Simon Josefsson <simon@josefsson.org> + + * lib/minitasn1/Makefile.am: Fix objdir != srcdir in -I, reported + by "Gerrit P. Haase" <gp@familiehaase.de>. + +2004-09-17 Simon Josefsson <simon@josefsson.org> + + * buildconf: Cleanup. + +2004-09-15 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-09-15 Simon Josefsson <simon@josefsson.org> + + * src/certtool.c: + (load_cert): Fix crash in `certtool --to-p12 --load-privkey foo'. + +2004-09-11 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-09-10 Simon Josefsson <simon@josefsson.org> + + * src/certtool.c: + (load_cert): Fix crash in `certtool --to-p12 --load-privkey foo'. + +2004-09-09 Simon Josefsson <simon@josefsson.org> + + * lib/minitasn1/decoding.c: Sync with libtasn1 0.2.11. + +2004-09-02 Simon Josefsson <simon@josefsson.org> + + * tests/PKITS_data.zip: New version, solve the S/MIME bugs I + reported. Downloaded from + http://csrc.nist.gov/pki/testing/x509paths.html on 2004-09-03 with + SHA1 ada0f267e0ff4eb16a0e19964cf518a833f00093. + +2004-08-31 Simon Josefsson <simon@josefsson.org> + + * NEWS: Ad. + +2004-08-31 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-08-31 Simon Josefsson <simon@josefsson.org> + + * lib/x509/x509.c: Fix mem leak. + +2004-08-31 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_cert.c, lib/x509/x509.c: Fix mem leak (tiny patch). + From Simon Posnjak <simon.posnjak@cetrtapot.si>. + +2004-08-31 Simon Josefsson <simon@josefsson.org> + + * THANKS: Pull up from trunk. + +2004-08-31 Simon Josefsson <simon@josefsson.org> + + * THANKS: Add. + +2004-08-31 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_cert.c, lib/x509/x509.c: Fix mem leak (tiny patch). + From Simon Posnjak <simon.posnjak@cetrtapot.si>. + +2004-08-27 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_state.c: Typo. + +2004-08-26 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-ietf-tls-srp-08.txt: Add. + +2004-08-25 Simon Josefsson <simon@josefsson.org> + + * doc/manpages/Makefile.am: Update. + +2004-08-25 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/extra.h, lib/gnutls.h.in.in: Move remaining SRP + functions to lib/. + +2004-08-25 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/extra.h, lib/gnutls_anon_cred.c, + lib/gnutls_dh_primes.c, lib/gnutls_srp.c, lib/gnutls_ui.c, + lib/gnutls_ui.h: Doc fix. + +2004-08-25 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_alert.c: Doc fix. + +2004-08-25 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/extra.h, libextra/gnutls_extra.c, + libextra/gnutls_openpgp.c: Doc fix. + +2004-08-25 Simon Josefsson <simon@josefsson.org> + + * libextra/openpgp/Makefile.am: Hack to fix texinfo docs. + +2004-08-25 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/extra.h, libextra/gnutls_openpgp.c: Fix + prototypes. + +2004-08-25 Simon Josefsson <simon@josefsson.org> + + * doc/reference/Makefile.am: Add. + +2004-08-25 Simon Josefsson <simon@josefsson.org> + + * Makefile.am: + (release): Copy gtk-doc. + +2004-08-25 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls.h.in.in, lib/gnutls_global.c, lib/gnutls_ui.c, + lib/gnutls_ui.h: Fix prototypes. + +2004-08-25 Simon Josefsson <simon@josefsson.org> + + * doc/reference/Makefile.am: Clean more. + +2004-08-25 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/x509.h, lib/gnutls.h.in.in, lib/gnutls_ui.h, + lib/x509/pkcs12.c, lib/x509/privkey.c: Fix prototypes. (Unfinished, + there should be a tool to do this...) + +2004-08-25 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-ietf-tls-psk-01.txt: Add. + +2004-08-24 Simon Josefsson <simon@josefsson.org> + + * doc/TODO, doc/protocol/draft-badra-tls-express-00.txt, + doc/protocol/draft-salowey-tls-ticket-00.txt: Add. + +2004-08-24 Simon Josefsson <simon@josefsson.org> + + * NEWS, configure.in: Bump version. + +2004-08-24 Simon Josefsson <simon@josefsson.org> + + * NEWS: Version 1.1.18. + +2004-08-24 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-08-24 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-08-24 Simon Josefsson <simon@josefsson.org> + + * configure.in: Add Nettle self tests. + +2004-08-24 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-08-24 Simon Josefsson <simon@josefsson.org> + + * doc/Makefile.am: Fix. + +2004-08-24 Simon Josefsson <simon@josefsson.org> + + * doc/README.CVS: Add. + +2004-08-24 Simon Josefsson <simon@josefsson.org> + + * m4/gtk-doc.m4: Update. + +2004-08-24 Simon Josefsson <simon@josefsson.org> + + * configure.in, doc/Makefile.am, doc/README.CVS, + doc/reference/Makefile.am, doc/reference/gnutls-docs.tmpl, + m4/gtk-doc.m4: Generate GTK-DOC manuals (libextra/openpgp/ part + doesn't work yet). + +2004-08-24 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_algorithms.c: Make gtk-doc happy. + +2004-08-24 Simon Josefsson <simon@josefsson.org> + + * includes/gnutls/openssl.h: Make gtk-doc happy. + +2004-08-24 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls.h.in.in: Make gtk-doc happy. + +2004-08-23 Simon Josefsson <simon@josefsson.org> + + * src/cfg/platon/str/strdyn.c: Fix. Reported by Dimitri + Papadopoulos-Orfanos <papadopo@shfj.cea.fr>. + +2004-08-23 Simon Josefsson <simon@josefsson.org> + + * configure.in: Check for ctype.h to shut up Sun CC warnings in + src/cfg/shared.c. Reported by Dimitri Papadopoulos-Orfanos + <papadopo@shfj.cea.fr>. + +2004-08-23 Simon Josefsson <simon@josefsson.org> + + * tests/chain: Fix. + +2004-08-23 Simon Josefsson <simon@josefsson.org> + + * tests/pkits: Add. + +2004-08-23 Simon Josefsson <simon@josefsson.org> + + * NEWS: ISO certify. + +2004-08-23 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-08-23 Simon Josefsson <simon@josefsson.org> + + * m4/gc_random.m4: Fix. + +2004-08-23 Simon Josefsson <simon@josefsson.org> + + * configure.in, m4/gc_random.m4: Move /dev/*random stuff to + separate m4 file. + +2004-08-22 Simon Josefsson <simon@josefsson.org> + + * AUTHORS: Add copying conditions, and PGP release key. + +2004-08-22 Simon Josefsson <simon@josefsson.org> + + * README, THANKS: Add copying conditions. + +2004-08-22 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add copying conditions. Markup. + +2004-08-22 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-08-22 Simon Josefsson <simon@josefsson.org> + + * tests/pkits_pkcs12, tests/pkits_smime: Typo. + +2004-08-22 Simon Josefsson <simon@josefsson.org> + + * lib/minitasn1/int.h: Bump version. + +2004-08-22 Simon Josefsson <simon@josefsson.org> + + * src/Makefile.am: Remove stale -I. + +2004-08-22 Simon Josefsson <simon@josefsson.org> + + * lib/minitasn1/libtasn1.h: Bump version. + +2004-08-22 Simon Josefsson <simon@josefsson.org> + + * configure.in: Need newer libtasn1. + +2004-08-22 Simon Josefsson <simon@josefsson.org> + + * lib/minitasn1/decoding.c: Only apply BER indefinite logic when we + have actually encountered BER indefinite lengths. Pending upstream + review. Triggered by PKITS test case + pkcs12/CPSPointerQualifierTest20EE.p12 (and others) as invoked by + tests/pkits_pkcs12. + +2004-08-22 Simon Josefsson <simon@josefsson.org> + + * tests/pkits_pkcs12: Fix. + +2004-08-22 Simon Josefsson <simon@josefsson.org> + + * tests/pkits_crl, tests/pkits_crt, tests/pkits_smime: Fix. + +2004-08-22 Simon Josefsson <simon@josefsson.org> + + * src/certtool.c: + (print_certificate_info): Don't crash on large X.509 extensions + (thanks to PKITS test suite). Also output ASCII representation of + printable extension data (some extension contain humanly readable + strings). + +2004-08-22 Simon Josefsson <simon@josefsson.org> + + * tests/pkits_crt: Add. + +2004-08-22 Simon Josefsson <simon@josefsson.org> + + * tests/pkits_crl: Add. + +2004-08-22 Simon Josefsson <simon@josefsson.org> + + * tests/pkits_smime: Add. + +2004-08-22 Simon Josefsson <simon@josefsson.org> + + * src/certtool.c: + (smime_to_pkcs7): Make sure PKCS#7 output use LF EOL. + +2004-08-22 Simon Josefsson <simon@josefsson.org> + + * tests/pkits_pkcs12: Add. + +2004-08-22 Simon Josefsson <simon@josefsson.org> + + * src/certtool.c: + (smime_to_pkcs7): Handle LF EOF. + +2004-08-22 Simon Josefsson <simon@josefsson.org> + + * src/certtool.c: Fix --password. + +2004-08-22 Simon Josefsson <simon@josefsson.org> + + * tests/PKITS.pdf, tests/PKITS_data.zip: Add NIST's Public Key + Interoperability Test Suite. Taken from + <http://csrc.nist.gov/pki/testing/x509paths.html>. + c8b1230c34f175f0fe479692e65c7ecc04117dfc PKITS_data.zip + e823aa3a8ece752aa7211153312b364dc578e789 PKITS.pdf + +2004-08-22 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-08-22 Simon Josefsson <simon@josefsson.org> + + * doc/manpages/Makefile.am: Handle different #include's for PKCS12 + functions. + +2004-08-22 Simon Josefsson <simon@josefsson.org> + + * configure.in: Want gzip too. + +2004-08-22 Simon Josefsson <simon@josefsson.org> + + * configure.in, Makefile.am: Use bz2. + +2004-08-22 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-08-22 Simon Josefsson <simon@josefsson.org> + + * doc/scripts/gdoc: Support -include. + +2004-08-22 Simon Josefsson <simon@josefsson.org> + + * doc/manpages/Makefile.am: Add man pages for lib/x509/, libextra/, + and libextra/openpgp/. + +2004-08-22 Simon Josefsson <simon@josefsson.org> + + * doc/manpages/Makefile.am: Add man pages for API. + +2004-08-22 Simon Josefsson <simon@josefsson.org> + + * configure.in, lib/gnutls.h.in.in: Revert ssize_t change. + +2004-08-22 Simon Josefsson <simon@josefsson.org> + + * configure.in, lib/gnutls.h.in.in: Assume POSIX system (which we + already do), so it has ssize_t. Redefining ssize_t locally, if it + doesn't exist, already handled by gnulib. + +2004-08-22 Simon Josefsson <simon@josefsson.org> + + * lib/Makefile.am: Simplify further. + +2004-08-22 Simon Josefsson <simon@josefsson.org> + + * lib/Makefile.am: Move things from EXTRA_DIST, to improve + dependency tracking. + +2004-08-22 Simon Josefsson <simon@josefsson.org> + + * src/Makefile.am: Move things from EXTRA_DIST to *_SOURCES, to + improve dependency tracking. Simplify. + +2004-08-21 Simon Josefsson <simon@josefsson.org> + + * lib/x509/Makefile.am, lib/Makefile.am: Remove pkcs5. + +2004-08-21 Simon Josefsson <simon@josefsson.org> + + * lib/x509/pkcs5.c, lib/x509/pkcs5.h, lib/x509/privkey_pkcs8.c: + Replace PKCS5 with GC. + +2004-08-21 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-08-21 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/rrc2.doc: Add. + +2004-08-21 Simon Josefsson <simon@josefsson.org> + + * doc/TODO: Add. + +2004-08-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/privkey.c: Corrected a memory leak. Patch got from + debian bug report logs. Reported by Modestas Vainius + <geromanas@mailas.com>. + +2004-08-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/common.c: corrected bug with generalTime ASN.1 encoding. + +2004-08-21 Simon Josefsson <simon@josefsson.org> + + * lib/x509/pkcs12_encr.c: Fix. + +2004-08-21 Simon Josefsson <simon@josefsson.org> + + * lib/x509/pkcs12_encr.c: Use gc. + +2004-08-21 Simon Josefsson <simon@josefsson.org> + + * tests/chain: Cleanup. + +2004-08-21 Simon Josefsson <simon@josefsson.org> + + * tests/chain: Add CRL's. + +2004-08-21 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-08-21 Simon Josefsson <simon@josefsson.org> + + * tests/anonself.c, tests/Makefile.am: Add. + +2004-08-21 Simon Josefsson <simon@josefsson.org> + + * configure.in: Bump version. + +2004-08-21 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-08-21 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Add examples. + +2004-08-21 Simon Josefsson <simon@josefsson.org> + + * doc/examples/ex-client2.c, doc/examples/ex-serv1.c: Doc fix. + +2004-08-21 Simon Josefsson <simon@josefsson.org> + + * doc/examples/ex-serv-anon.c: Add. + +2004-08-21 Simon Josefsson <simon@josefsson.org> + + * doc/examples/ex-client1.c: Add. + +2004-08-21 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Markup. + +2004-08-21 Simon Josefsson <simon@josefsson.org> + + * configure.in: Enable gnits in automake. + +2004-08-21 Simon Josefsson <simon@josefsson.org> + + * configure.in: Allow AC_PROG_CC to modify CFLAGS (why not?). + Don't check for install (handled by automake). + +2004-08-20 Simon Josefsson <simon@josefsson.org> + + * configure.in: Simplify shared library versioning. + +2004-08-20 Simon Josefsson <simon@josefsson.org> + + * libextra/gnutls_extra.c: Use automake VERSION. + +2004-08-20 Simon Josefsson <simon@josefsson.org> + + * libextra/Makefile.am, libextra/opencdk/armor.c: Fix version + number. + +2004-08-20 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_global.c: Use automake VERSION instead of + GNUTLS_VERSION. + +2004-08-20 Simon Josefsson <simon@josefsson.org> + + * configure.in: Use modern AC_INIT. Remove GNUTLS_*VERSION. + Separate libtool versioning from package versioning. + +2004-08-20 Simon Josefsson <simon@josefsson.org> + + * Makefile.am: Remove, all are dist'ed by automake automatically. + +2004-08-20 Simon Josefsson <simon@josefsson.org> + + * configure.in: Typo. + +2004-08-20 Simon Josefsson <simon@josefsson.org> + + * lib/defines.h: Remove size_t, time_t, ptrdiff_t definitions. + +2004-08-20 Simon Josefsson <simon@josefsson.org> + + * configure.in: Assume time_t and ptrdiff_t (ANSI C89). + +2004-08-20 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls.h.in.in: Assume time_t is in time.h (ANSI C89). + +2004-08-20 Simon Josefsson <simon@josefsson.org> + + * configure.in, lib/gnutls.h.in.in: Assume size_t is in stddef.h + (C89). + +2004-08-20 Simon Josefsson <simon@josefsson.org> + + * configure.in: + (T_CPU, T_VENDOR, T_OS): Remove (unused). + +2004-08-18 Simon Josefsson <simon@josefsson.org> + + * NEWS: Version 1.1.17. + +2004-08-18 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Fix, suggested by Stepan Kasal <kasal@ucw.cz>. + +2004-08-18 Simon Josefsson <simon@josefsson.org> + + * Makefile.am: [no log message] + +2004-08-18 Simon Josefsson <simon@josefsson.org> + + * Makefile.am: + (release): Fix. + +2004-08-18 Simon Josefsson <simon@josefsson.org> + + * NEWS: Version 1.0.20. + +2004-08-18 Simon Josefsson <simon@josefsson.org> + + * tests/simple.c: Fix warning. + +2004-08-18 Simon Josefsson <simon@josefsson.org> + + * Makefile.am: + (release): Add. + +2004-08-18 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_mpi.h: Reorder, to get config.h included before + gcrypt.h. + +2004-08-18 Simon Josefsson <simon@josefsson.org> + + * libextra/opencdk/keyserver.c: Pull up from trunk. + +2004-08-18 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_mpi.h: Reorder, to get config.h included before + gcrypt.h. + +2004-08-18 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Revert. + +2004-08-18 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Fix example indentation. + +2004-08-17 Simon Josefsson <simon@josefsson.org> + + * src/cli.c: Fix mem leak. + +2004-08-17 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_pk.c: Typo. + +2004-08-17 Simon Josefsson <simon@josefsson.org> + + * THANKS: Pull up from trunk. + +2004-08-17 Simon Josefsson <simon@josefsson.org> + + * NEWS, THANKS: Add. + +2004-08-17 Simon Josefsson <simon@josefsson.org> + + * configure.in: Bump version. + +2004-08-17 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_pk.c: Simplify computation of PKCS#1 version 1.5 type + 2 non-zero pad bytes, reported by Robey Pointer <robey@danger.com>. + +2004-08-17 Simon Josefsson <simon@josefsson.org> + + * configure.in, gl/Makefile.am, gl/minmax.h, gl/m4/gnulib.m4, + lib/Makefile.am, lib/auth_srp_passwd.c, lib/ext_srp.c, + lib/gnutls_buffers.c, lib/gnutls_num.h, lib/gnutls_pk.c, + lib/gnutls_str.c, lib/x509/dn.c, lib/x509/pkcs12.c, + lib/x509/privkey_pkcs8.c, lib/x509/sign.c, lib/x509/verify.c, + libextra/Makefile.am: Use minmax.h from gnulib instead of + GMIN/GMAX. + +2004-08-16 Simon Josefsson <simon@josefsson.org> + + * src/common.c: Oops, revert DES, not supported. + +2004-08-16 Simon Josefsson <simon@josefsson.org> + + * src/common.c: Support AES-256 and DES in --ciphers too. + +2004-08-16 Simon Josefsson <simon@josefsson.org> + + * NEWS, README: Fix. + +2004-08-16 Simon Josefsson <simon@josefsson.org> + + * README: Add. + +2004-08-16 Simon Josefsson <simon@josefsson.org> + + * NEWS: Fix. + +2004-08-16 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_hash_int.c, lib/gnutls_hash_int.h: Move hashing to + generic crypto API. Implement hashing for nettle/libgcrypt in + generic crypto API. + +2004-08-16 Simon Josefsson <simon@josefsson.org> + + * configure.in, lib/gnutls_errors.c, lib/gnutls_errors_int.h, + lib/gnutls_random.c, lib/gnutls_random.h: Move randomness calls to + generic crypto API. Implement randomness for libgcrypt and nettle + wrappers. + +2004-08-16 Simon Josefsson <simon@josefsson.org> + + * gl/Makefile.am, gl/m4/gnulib.m4: Update. + +2004-08-15 Simon Josefsson <simon@josefsson.org> + + * NEWS: Typo. + +2004-08-15 Simon Josefsson <simon@josefsson.org> + + * NEWS: Fix. + +2004-08-15 Simon Josefsson <simon@josefsson.org> + + * Makefile.am, configure.in, m4/ax_create_stdint_h.m4: Add Nettle. + +2004-08-15 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_cipher_int.c, lib/gnutls_global.c: Fix warnings. + +2004-08-15 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_cipher_int.c: Fix. + +2004-08-15 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-08-15 Simon Josefsson <simon@josefsson.org> + + * Makefile.am, configure.in, lib/Makefile.am, + lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, + lib/gnutls_errors_int.h, lib/gnutls_global.c, lib/gnutls_mpi.h, + libextra/Makefile.am: Initiate move of all libgcrypt calls to + crypto/gc* wrapper. Currently only encryption/decryption goes + through generic API. + +2004-08-15 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-08-15 Simon Josefsson <simon@josefsson.org> + + * Makefile.am: + (release): Fix tag name. + +2004-08-15 Simon Josefsson <simon@josefsson.org> + + * configure.in, gl/Makefile.am, gl/getpass.c, gl/getpass.h, + gl/stdbool_.h, gl/m4/getpass.m4, gl/m4/gnulib.m4, gl/m4/stdbool.m4, + src/Makefile.am, src/certtool-cfg.c, src/certtool.c, src/crypt.c, + src/getpass.c, src/getpass.h: Replace ad-hoc 'read_pass' with + gnulib module 'getpass-gnu'. + +2004-08-15 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Improve markup. + +2004-08-15 Simon Josefsson <simon@josefsson.org> + + * src/errcodes.c: Fix. + +2004-08-15 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Use @finalout, to avoid ugly black boxes. + +2004-08-15 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Fixes. + +2004-08-15 Simon Josefsson <simon@josefsson.org> + + * doc/examples/ex-alert.c, doc/examples/ex-cert-select.c, + doc/examples/ex-client-resume.c, doc/examples/ex-client-srp.c, + doc/examples/ex-client2.c, doc/examples/ex-crq.c, + doc/examples/ex-pkcs12.c, doc/examples/ex-serv-export.c, + doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-srp.c, + doc/examples/ex-serv1.c, doc/examples/ex-session-info.c, + doc/examples/ex-verify.c, doc/examples/ex-x509-info.c: Indent. + +2004-08-15 Simon Josefsson <simon@josefsson.org> + + * configure.in: Bump version. + +2004-08-15 Simon Josefsson <simon@josefsson.org> + + * Makefile.am: + (release): Abort if tag exists. + +2004-08-15 Simon Josefsson <simon@josefsson.org> + + * Makefile.am: + (release): Fix tag name. + +2004-08-15 Simon Josefsson <simon@josefsson.org> + + * NEWS: Version 1.1.16. + +2004-08-15 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-08-15 Simon Josefsson <simon@josefsson.org> + + * src/certtool.c: Use progname. + +2004-08-15 Simon Josefsson <simon@josefsson.org> + + * configure.in, gl/Makefile.am, gl/progname.c, gl/progname.h: Add + progname gnulib module. + +2004-08-15 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-08-15 Simon Josefsson <simon@josefsson.org> + + * src/Makefile.am: Fix -I's, for srcdir != objdir builds (e.g., + 'make distcheck'). + +2004-08-15 Simon Josefsson <simon@josefsson.org> + + * configure.in, lib/Makefile.am, libextra/Makefile.am, + src/Makefile.am: Fix -I's, for srcdir != objdir builds (e.g., 'make + distcheck'). + +2004-08-14 Simon Josefsson <simon@josefsson.org> + + * configure.in: Bump version. + +2004-08-14 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-08-14 Simon Josefsson <simon@josefsson.org> + + * src/Makefile.am: Link gnulib. + +2004-08-14 Simon Josefsson <simon@josefsson.org> + + * Makefile.am: + (release): Fix. + +2004-08-14 Simon Josefsson <simon@josefsson.org> + + * NEWS: Version 1.1.15. + +2004-08-14 Simon Josefsson <simon@josefsson.org> + + * NEWS: Reorder. + +2004-08-14 Simon Josefsson <simon@josefsson.org> + + * config.rpath: Add, needed by gnulib. When we support gettext, + this will be generated. + +2004-08-14 Simon Josefsson <simon@josefsson.org> + + * src/certtool-gaa.c, src/certtool-gaa.h: Generated. + +2004-08-14 Simon Josefsson <simon@josefsson.org> + + * NEWS, src/Makefile.am, src/certtool.c, src/certtool.gaa: Add + --smime-to-p7. + +2004-08-14 Simon Josefsson <simon@josefsson.org> + + * configure.in, gl/Makefile.am, gl/error.c, gl/error.h, gl/exit.h, + gl/gettext.h, gl/m4/codeset.m4, gl/m4/error.m4, gl/m4/gettext.m4, + gl/m4/glibc21.m4, gl/m4/gnulib.m4, gl/m4/iconv.m4, + gl/m4/intdiv0.m4, gl/m4/intmax.m4, gl/m4/inttypes-pri.m4, + gl/m4/inttypes.m4, gl/m4/inttypes_h.m4, gl/m4/isc-posix.m4, + gl/m4/lcmessage.m4, gl/m4/lib-ld.m4, gl/m4/lib-link.m4, + gl/m4/lib-prefix.m4, gl/m4/longdouble.m4, gl/m4/longlong.m4, + gl/m4/nls.m4, gl/m4/po.m4, gl/m4/printf-posix.m4, + gl/m4/progtest.m4, gl/m4/signed.m4, gl/m4/size_max.m4, + gl/m4/stdint_h.m4, gl/m4/strerror_r.m4, gl/m4/uintmax_t.m4, + gl/m4/ulonglong.m4, gl/m4/wchar_t.m4, gl/m4/wint_t.m4, + gl/m4/xsize.m4: Add error and exit gnulib modules. + +2004-08-14 Simon Josefsson <simon@josefsson.org> + + * configure.in: Add gl/Makefile. + +2004-08-14 Simon Josefsson <simon@josefsson.org> + + * Makefile.am: Recurse into gl/. + +2004-08-14 Simon Josefsson <simon@josefsson.org> + + * Makefile.am, configure.in, gl/Makefile.am, gl/getline.c, + gl/getline.h, gl/getndelim2.c, gl/getndelim2.h, gl/unlocked-io.h, + gl/m4/extensions.m4, gl/m4/getline.m4, gl/m4/getndelim2.m4, + gl/m4/gnulib.m4, gl/m4/onceonly_2_57.m4, gl/m4/ssize_t.m4, + gl/m4/unlocked-io.m4: Set up GnuTLS to use gnulib for portability + files. Initially only adding "getline", I will need it for S/MIME + parsing. + +2004-08-12 Simon Josefsson <simon@josefsson.org> + + * tests/chain: Be nicer. + +2004-08-12 Simon Josefsson <simon@josefsson.org> + + * tests/chain: Add. + +2004-08-12 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-badra-tls-key-exchange-00.txt: Add. + +2004-08-12 Simon Josefsson <simon@josefsson.org> + + * tests/x509tests.tgz: Add NIST X.509 Path Validation Test Suite, + Version 1.07. See + http://csrc.nist.gov/pki/testing/x509paths_old.html. Taken from + http://csrc.nist.gov/pki/testing/x509tests.tgz, with MD5sum + 5e6c15b7920e33a3e171258828c980f5. + +2004-08-11 Simon Josefsson <simon@josefsson.org> + + * doc/protocol/draft-ietf-tls-rfc2246-bis-08.txt: Add. + +2004-08-11 Simon Josefsson <simon@josefsson.org> + + * configure.in: Typo. + +2004-08-11 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Fix direntry. + +2004-08-11 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Add. + +2004-08-11 Simon Josefsson <simon@josefsson.org> + + * doc/manpages/gnutls-cli.1: Update. + +2004-08-10 Simon Josefsson <simon@josefsson.org> + + * m4/autobuild.m4: Update. + +2004-08-10 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-08-10 Simon Josefsson <simon@josefsson.org> + + * libextra/opencdk/keyserver.c: Need sys/types.h, for FreeBSD 4.10. + +2004-08-10 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-08-10 Simon Josefsson <simon@josefsson.org> + + * Makefile.am: + (release): Remove ChangeLog stuff. + +2004-08-10 Simon Josefsson <simon@josefsson.org> + + * configure.in: Bump version. + +2004-08-10 Simon Josefsson <simon@josefsson.org> + + * configure.in: If socklen_t doesn't exist, use size_t (needed for + Darwin). + +2004-08-10 Simon Josefsson <simon@josefsson.org> + + * doc/TODO: Add. + +2004-08-09 Simon Josefsson <simon@josefsson.org> + + * src/Makefile.am: Replace $(RM) with rm, the former doesn't seem + to exist, and automake generated makefile use rm directly anyway. + +2004-08-09 Simon Josefsson <simon@josefsson.org> + + * configure.in: Move AB_INIT to where it actually works. + +2004-08-09 Simon Josefsson <simon@josefsson.org> + + * NEWS: Version 1.1.14. + +2004-08-09 Simon Josefsson <simon@josefsson.org> + + * Makefile.am: Add release target. + +2004-08-09 Simon Josefsson <simon@josefsson.org> + + * NEWS: Version 1.0.19. + +2004-08-09 Simon Josefsson <simon@josefsson.org> + + * THANKS: Pull up from trunk. + +2004-08-09 Simon Josefsson <simon@josefsson.org> + + * NEWS, configure.in, m4/autobuild.m4, THANKS: Add. + +2004-08-09 Simon Josefsson <simon@josefsson.org> + + * NEWS: Add. + +2004-08-09 Simon Josefsson <simon@josefsson.org> + + * THANKS: Pull up from trunk. + +2004-08-09 Simon Josefsson <simon@josefsson.org> + + * tests/Makefile.am: Typo, reported by Michael Heironimus + <mkh01@earthlink.net>. + +2004-08-09 Simon Josefsson <simon@josefsson.org> + + * configure.in: Bump version. + +2004-08-07 Simon Josefsson <simon@josefsson.org> + + * THANKS: Add. + +2004-08-07 Simon Josefsson <simon@josefsson.org> + + * tests/Makefile.am: Typo, reported by Michael Heironimus + <mkh01@earthlink.net>. + +2004-08-06 Simon Josefsson <simon@josefsson.org> + + * NEWS: Terminology consistency. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * tests/simple.c: Fix warning. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * lib/Makefile.am, lib/x509/Makefile.am, libextra/Makefile.am, + libextra/openpgp/Makefile.am: Remove *.tex stuff. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * doc/manpages/Makefile.am: Simplify. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * src/Makefile.am, src/retcodes.c: Remove retcodes. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * configure.in: Fix last commit. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * configure.in, doc/Makefile.am, doc/internals.dia, doc/layers.dia, + doc/pgp1.dia, doc/x509-1.dia, doc/examples/Makefile.am, + doc/examples/ex-alert.c, doc/examples/ex-cert-select.c, + doc/examples/ex-client-resume.c, doc/examples/ex-client-srp.c, + doc/examples/ex-client2.c, doc/examples/ex-crq.c, + doc/examples/ex-pkcs12.c, doc/examples/ex-serv-export.c, + doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-srp.c, + doc/examples/ex-serv1.c, doc/examples/ex-session-info.c, + doc/examples/ex-verify.c, doc/examples/ex-x509-info.c, + doc/scripts/Makefile.am, doc/scripts/sort1.pl: Remove old manual. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi, configure.in: Fix copyright. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * buildconf, doc/README.CVS: Revert. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * NEWS: Fix. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * doc/TODO: Done. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * doc/Makefile.am, doc/README.CVS: Fix. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Save gnutls.bib. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * doc/Makefile.am: Fix deps. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * doc/Makefile.am: Reorder. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * doc/gendocs.sh, doc/gendocs_template: Add. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * doc/Makefile.am: Fix HTML. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls-logo.eps, doc/gnutls-logo.pdf: Add. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Add logo. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Fix image size. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * doc/Makefile.am: Fix deps. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * doc/Makefile.am: Build more. Dist ps/pdf/html. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * doc/internals.pdf, doc/layers.pdf, doc/pgp1.pdf, doc/x509-1.pdf: + Add. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * doc/Makefile.am, doc/gnutls.texi, doc/scripts/sort2.pl: Add + Texinfo API documentation. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * libextra/openpgp/Makefile.am: Build pgp-api.texi. Dist + pgp-api.tex{,i}. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * libextra/Makefile.am: Build gnutls-extra-api.texi. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * lib/Makefile.am: Build gnutls-api.texi. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * lib/x509/Makefile.am: Build x509-api.texi. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls.h.in.in: + (gnutls_is_secure_function): Add. + (gnutls_global_set_mem_functions): Use it. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_global.c: + (gnutls_global_set_mem_functions): Use typedefs in prototype, for + gdoc. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * lib/gnutls_mem.h: + (gnutls_is_secure_function): Add. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * configure.in: Bump version. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * doc/Makefile.am: Dist more. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * doc/internals.eps, doc/internals.png, doc/layers.eps, + doc/layers.png, doc/pgp1.eps, doc/pgp1.png, doc/x509-1.eps, + doc/x509-1.png, NEWS: Add. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Fix. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Fix. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Fix. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Fix. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * src/errcodes.c: Fix. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Fix. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Add. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Add error_codes.texi. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * src/errcodes.c: Fix. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * doc/Makefile.am: Build error_codes.texi using errcodes. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * src/Makefile.am, src/errcodes.c: + (errcodes): Add, same as retcodes, but for texinfo. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Fix. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Add. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Add. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Add. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Add. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Fix. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Add. + +2004-08-05 Simon Josefsson <simon@josefsson.org> + + * doc/gnutls.texi: Add. + +2004-08-04 Simon Josefsson <simon@josefsson.org> + + * Makefile.am, acinclude.m4, libgcrypt.m4, libtasn1.m4, opencdk.m4, + m4/libgcrypt.m4, m4/libtasn1.m4, m4/opencdk.m4: Move *.m4's to m4/. + +2004-08-04 Simon Josefsson <simon@josefsson.org> + + * buildconf: Simplify. + +2004-08-04 Simon Josefsson <simon@josefsson.org> + + * configure.in: Add copying condition. Remove useless prefix + setting. + +2004-08-04 Simon Josefsson <simon@josefsson.org> + + * buildconf, configure.in: Don't use maintainer mode (see Autoconf + manual for rationale). + +2004-08-04 Simon Josefsson <simon@josefsson.org> + + * doc/Makefile.am, doc/fdl.texi, doc/gnutls.texi: Start Texinfo + manual. + +2004-08-04 Simon Josefsson <simon@josefsson.org> + + * Makefile.am: Fix cvs2cl target. + +2004-08-04 Simon Josefsson <simon@josefsson.org> + + * NEWS: Version 1.1.13. + +2004-08-04 Simon Josefsson <simon@josefsson.org> + + * NEWS: Version 1.0.18. + +2004-08-04 Simon Josefsson <simon@josefsson.org> + + * Makefile.am: More cvs2cl ignores. + +2004-08-04 Simon Josefsson <simon@josefsson.org> + + * Makefile.am: cvs2cl --prune doesn't work with version 2.55 nor + 2.57. + +2004-08-02 Simon Josefsson <simon@josefsson.org> + + * configure.in: Bump version. + +2004-08-02 Simon Josefsson <simon@josefsson.org> + + * Makefile.am, NEWS, configure.in, tests/Makefile, + tests/Makefile.am, tests/simple.c, tests/utils.c, tests/utils.h: + Add (start of) self test suite. + +2004-08-02 Simon Josefsson <simon@josefsson.org> + + * buildconf: Use autoreconf. + +2004-08-02 Simon Josefsson <simon@josefsson.org> + + * NEWS: Added simple self test suite. + +2004-08-02 Simon Josefsson <simon@josefsson.org> + + * Makefile.am, configure.in, tests/Makefile, tests/Makefile.am, + tests/simple.c, tests/utils.c, tests/utils.h: Add (start of) self + test suite. + +2004-08-02 Simon Josefsson <simon@josefsson.org> + + * buildconf: Use autoreconf. + +2004-08-02 Simon Josefsson <simon@josefsson.org> + + * configure.in: Bump version. + +2004-08-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2004-08-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_cert.c: [no log message] + +2004-08-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_srp.c, lib/gnutls_cert.c, lib/gnutls_srp.c, + lib/gnutls_srp.h: _gnutls_calc_srp_u() has been modified to be + better. + +2004-08-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2004-08-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/examples/Makefile.am: [no log message] + +2004-07-31 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO, lib/gnutls_int.h: [no log message] + +2004-07-31 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool.c: print the number of bits of the public key in a + certificate. + +2004-07-31 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/TODO: [no log message] + +2004-07-31 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/TODO, lib/auth_cert.h, lib/gnutls.h.in.in, + lib/gnutls_cert.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, + lib/gnutls_int.h, lib/gnutls_ui.c, lib/gnutls_ui.h, + lib/gnutls_x509.c, lib/gnutls_x509.h, libextra/gnutls_extra.h, + libextra/openpgp/compat.c, libextra/openpgp/extras.c, + libextra/openpgp/gnutls_openpgp.h: Added some default limits in the + verification of certificate chains, to avoid denial of service + attacks. Also added gnutls_certificate_set_verify_limits() to + override them. + +2004-07-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cert.c: corrected documentation. + +2004-07-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * README: [no log message] + +2004-07-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, libgcrypt.m4, opencdk.m4, includes/gnutls/extra.h, + lib/Makefile.am, lib/auth_srp.c, lib/auth_srp.h, + lib/auth_srp_passwd.c, lib/auth_srp_passwd.h, lib/auth_srp_rsa.c, + lib/auth_srp_sb64.c, lib/ext_srp.c, lib/ext_srp.h, + lib/gnutls.h.in.in, lib/gnutls_algorithms.c, + lib/gnutls_extensions.c, lib/gnutls_srp.c, lib/gnutls_srp.h, + libextra/Makefile.am, libextra/auth_srp.c, libextra/auth_srp.h, + libextra/auth_srp_passwd.c, libextra/auth_srp_passwd.h, + libextra/auth_srp_rsa.c, libextra/auth_srp_sb64.c, + libextra/ext_srp.c, libextra/ext_srp.h, libextra/gnutls_extra.c, + libextra/gnutls_srp.c, libextra/gnutls_srp.h: SRP ciphersuites were + moved to the gnutls (lgpl) library. + +2004-07-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/openssl_compat.h: [no log message] + +2004-07-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: [no log message] + +2004-07-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/openssl_compat.c: [no log message] + +2004-07-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cfg/Makefile.am, src/cfg/cfg+.c, src/cfg/cfg+.h, + src/cfg/cfgfile.c, src/cfg/cfgfile.h, src/cfg/cmdline.c, + src/cfg/cmdline.h, src/cfg/parse.c, src/cfg/props.c, + src/cfg/shared.c, src/cfg/shared.h, src/cfg/platon/Makefile.am, + src/cfg/platon/str/Makefile.am, src/cfg/platon/str/dynfgets.c, + src/cfg/platon/str/dynfgets.h, src/cfg/platon/str/strctype.c, + src/cfg/platon/str/strctype.h, src/cfg/platon/str/strdyn.c, + src/cfg/platon/str/strdyn.h, src/cfg/platon/str/strplus.c, + src/cfg/platon/str/strplus.h: added missing files. + +2004-07-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/Makefile.am, lib/minitasn1/Makefile.am, + lib/x509/Makefile.am, libextra/Makefile.am, + libextra/gnutls_openpgp.c, libextra/opencdk/Makefile.am, + libextra/openpgp/Makefile.am, libextra/openpgp/openpgp.c, + libextra/openpgp/pgp.c, libextra/openpgp/pgpverify.c, + libextra/openpgp/privkey.c, libextra/openpgp/verify.c, + libextra/openpgp/xml.c: avoid using libtool's convenience libraries + since they are buggy and cause conflicts in linking. + +2004-07-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/Makefile.am, libextra/gnutls_openpgp.c, + libextra/openpgp/extras.c, libextra/openpgp/pgp.c, + libextra/openpgp/privkey.c, libextra/openpgp/xml.c: [no log + message] + +2004-07-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, libextra/auth_srp.c, libextra/gnutls_srp.c, + libextra/gnutls_srp.h: + * Updated the SRP authentication to conform to the + latest (yet unreleased) draft. Unfortunately this breaks + compatibility with previous versions. + +2004-07-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/minitasn1/Makefile.am, lib/x509/Makefile.am, + libextra/Makefile.am, libextra/opencdk/Makefile.am, + libextra/openpgp/Makefile.am, libextra/openpgp/openpgp.c, + libextra/openpgp/pgp.c, libextra/openpgp/pgpverify.c, + libextra/openpgp/verify.c: avoid using libtool's convenience + libraries since they are buggy and cause conflicts in linking. + +2004-07-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/opencdk/encrypt.c, libextra/opencdk/main.c, + libextra/opencdk/misc.c: removed the malloc.h include. + +2004-07-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-compression-07.txt, + doc/protocol/rfc3749.txt: added the tls compression rfc. + +2004-07-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in: [no log message] + +2004-07-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c, NEWS: [no log message] + +2004-07-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2004-07-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in: gnutls 1.0.16 + +2004-07-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c, lib/x509/verify.c, lib/x509/x509.c, + lib/gnutls_pk.c: eliminated some memory leaks. Reported by Yoann + Vandoorselaere <yoann@prelude-ids.org>. + +2004-07-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-ssl-mods-00.txt: added + draft-ietf-tls-ssl-mods + +2004-07-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/Makefile.am: [no log message] + +2004-07-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/Makefile.am: corrected a makefile problem when the + included opencdk was used. Reported by Robey Pointer + <robey@danger.com>. + +2004-06-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2004-06-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/auth_srp.c, libextra/auth_srp.h, + libextra/auth_srp_passwd.c, libextra/gnutls_srp.c: Do not free the + SRP (n/g) parameters from the callback if they are the static ones + defined in extra.h + +2004-06-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/TODO, lib/auth_anon.h, lib/auth_cert.h, + lib/auth_dh_common.h, lib/gnutls_cert.c, lib/gnutls_cert.h, + lib/gnutls_datum.c, lib/gnutls_datum.h, lib/gnutls_record.c, + lib/gnutls_session_pack.c, lib/gnutls_sig.c, lib/gnutls_state.c, + lib/gnutls_ui.c, lib/gnutls_x509.c, libextra/gnutls_openpgp.c, + libextra/openpgp/verify.c, src/serv.c: The ephemeral DH and RSA + parameters are no longer stored in the session resume DB. This saves + space, but will cause resumed sessions not to be able to access the + original session parameters (which is ok). + +2004-06-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_record.c: Reject hello packets with major version + higher than 3. + +2004-06-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in: released 1.0.15 + +2004-06-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/x509/ca.pem, src/x509/cert-dsa.pem, src/x509/cert.pem, + src/x509/clicert-dsa.pem, src/x509/clicert.pem, + src/x509/key-dsa.pem, src/x509/key.pem: added some new + certificates. + +2004-06-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/x509/verify.c, libextra/gnutls_srp.c: Corrected a bug + in certificate verification. Pointed out by Yoann Vandoorselaere + <yoann@prelude-ids.org> + +2004-06-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/TODO, includes/gnutls/x509.h, lib/x509/verify.c, + lib/x509/verify.h, libextra/gnutls_srp.c, + libextra/openpgp/verify.c: + * Corrected a bug in certificate verification. Pointed out by + Yoann Vandoorselaere <yoann@prelude-ids.org> + * Added the GNUTLS_VERIFY_DO_NOT_ALLOW_SAME flags to the + verification functions. + +2004-06-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_pk.c: Corrected bug in PKCS #1 encryption. + +2004-06-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, doc/TODO, includes/Makefile.am, + includes/gnutls/Makefile.am, includes/gnutls/compat.h, + includes/gnutls/extra.h, includes/gnutls/openpgp.h, + includes/gnutls/openssl.h, includes/gnutls/pkcs12.h, + includes/gnutls/x509.h, lib/auth_anon.c, lib/auth_anon.h, + lib/auth_cert.c, lib/auth_cert.h, lib/auth_dh_common.c, + lib/auth_dh_common.h, lib/auth_dhe.c, lib/auth_rsa.c, + lib/auth_rsa_export.c, lib/debug.c, lib/debug.h, + lib/ext_cert_type.c, lib/ext_cert_type.h, lib/ext_max_record.c, + lib/ext_max_record.h, lib/ext_server_name.c, lib/ext_server_name.h, + lib/gnutls.h.in.in, lib/gnutls_alert.c, lib/gnutls_alert.h, + lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, + lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_auth.h, + lib/gnutls_auth_int.h, lib/gnutls_buffers.c, lib/gnutls_buffers.h, + lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_cipher.c, + lib/gnutls_cipher.h, lib/gnutls_cipher_int.c, + lib/gnutls_cipher_int.h, lib/gnutls_compress.c, + lib/gnutls_compress.h, lib/gnutls_compress_int.c, + lib/gnutls_compress_int.h, lib/gnutls_constate.c, + lib/gnutls_constate.h, lib/gnutls_datum.c, lib/gnutls_datum.h, + lib/gnutls_db.c, lib/gnutls_db.h, lib/gnutls_dh.h, + lib/gnutls_dh_primes.c, lib/gnutls_extensions.c, + lib/gnutls_extensions.h, lib/gnutls_global.c, + lib/gnutls_handshake.c, lib/gnutls_handshake.h, + lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, + lib/gnutls_kx.c, lib/gnutls_kx.h, lib/gnutls_mpi.c, + lib/gnutls_mpi.h, lib/gnutls_pk.c, lib/gnutls_pk.h, + lib/gnutls_priority.c, lib/gnutls_priority.h, lib/gnutls_record.c, + lib/gnutls_record.h, lib/gnutls_rsa_export.c, + lib/gnutls_rsa_export.h, lib/gnutls_session.c, + lib/gnutls_session.h, lib/gnutls_session_pack.c, + lib/gnutls_session_pack.h, lib/gnutls_sig.c, lib/gnutls_sig.h, + lib/gnutls_state.c, lib/gnutls_state.h, lib/gnutls_str.c, + lib/gnutls_str.h, lib/gnutls_ui.c, lib/gnutls_ui.h, + lib/gnutls_v2_compat.c, lib/gnutls_v2_compat.h, lib/gnutls_x509.c, + lib/gnutls_x509.h, lib/x509_b64.c, lib/x509/common.c, + lib/x509/common.h, lib/x509/compat.c, lib/x509/compat.h, + lib/x509/crl.c, lib/x509/crl_write.c, lib/x509/crq.c, + lib/x509/crq.h, lib/x509/dn.c, lib/x509/extensions.c, + lib/x509/extensions.h, lib/x509/mpi.c, lib/x509/mpi.h, + lib/x509/pkcs12.c, lib/x509/pkcs12.h, lib/x509/pkcs12_bag.c, + lib/x509/pkcs7.c, lib/x509/pkcs7.h, lib/x509/privkey.c, + lib/x509/privkey.h, lib/x509/privkey_pkcs8.c, + lib/x509/rfc2818_hostname.c, lib/x509/sign.c, lib/x509/sign.h, + lib/x509/verify.c, lib/x509/verify.h, lib/x509/x509.c, + lib/x509/x509.h, lib/x509/x509_write.c, lib/x509/xml.c, + libextra/auth_srp.c, libextra/auth_srp.h, + libextra/auth_srp_passwd.c, libextra/auth_srp_passwd.h, + libextra/auth_srp_rsa.c, libextra/auth_srp_sb64.c, + libextra/ext_srp.c, libextra/ext_srp.h, libextra/gnutls_extra.h, + libextra/gnutls_openpgp.c, libextra/gnutls_openssl.c, + libextra/gnutls_srp.c, libextra/gnutls_srp.h, + libextra/openssl_compat.c, libextra/openssl_compat.h, + libextra/openpgp/compat.c, libextra/openpgp/extras.c, + libextra/openpgp/gnutls_openpgp.h, libextra/openpgp/openpgp.c, + libextra/openpgp/openpgp.h, libextra/openpgp/privkey.c, + libextra/openpgp/verify.c, libextra/openpgp/xml.c: Added the '_t' + suffix to all exported symbols. + +2004-06-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-srp-06.txt, + doc/protocol/draft-ietf-tls-srp-07.txt: added new srp draft + +2004-06-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_ui.c, libextra/openpgp/openpgp.c: [no log message] + +2004-06-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/gnutls/openpgp.h, libextra/openpgp/openpgp.c: [no + log message] + +2004-06-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/gnutls/openpgp.h, libextra/openpgp/extras.c, + libextra/openpgp/openpgp.h, libextra/openpgp/verify.c: [no log + message] + +2004-06-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/openpgp/verify.c, libextra/openpgp/Makefile.am: Added + gnutls_openpgp_keyring_check_id() + +2004-06-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/examples/Makefile.am, includes/gnutls/x509.h, + lib/x509/verify.c, lib/x509/verify.h, lib/x509/x509.c, + lib/x509/x509.h, libextra/openpgp/Makefile.am: added an improved + verification example. + +2004-06-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-rescorla-dtls-00.txt: added datagram tls + draft. + +2004-06-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_handshake.c, lib/gnutls_state.c, lib/x509/x509.c, + lib/gnutls_record.c: some fixes in the session resuming code. + +2004-06-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/extra.h, includes/gnutls/openpgp.h, + includes/gnutls/pkcs12.h, includes/gnutls/x509.h, lib/auth_anon.c, + lib/auth_anon.h, lib/auth_cert.c, lib/auth_cert.h, + lib/auth_dh_common.c, lib/auth_dh_common.h, lib/auth_dhe.c, + lib/auth_rsa.c, lib/auth_rsa_export.c, lib/debug.c, lib/debug.h, + lib/defines.h, lib/ext_cert_type.c, lib/ext_cert_type.h, + lib/ext_max_record.c, lib/ext_max_record.h, lib/ext_server_name.c, + lib/ext_server_name.h, lib/gnutls.h.in.in, lib/gnutls_alert.c, + lib/gnutls_alert.h, lib/gnutls_algorithms.c, + lib/gnutls_algorithms.h, lib/gnutls_anon_cred.c, + lib/gnutls_asn1_tab.c, lib/gnutls_auth.c, lib/gnutls_auth.h, + lib/gnutls_auth_int.h, lib/gnutls_buffer.h, lib/gnutls_buffers.c, + lib/gnutls_buffers.h, lib/gnutls_cert.c, lib/gnutls_cert.h, + lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_cipher_int.c, + lib/gnutls_cipher_int.h, lib/gnutls_compress.c, + lib/gnutls_compress.h, lib/gnutls_compress_int.c, + lib/gnutls_compress_int.h, lib/gnutls_constate.c, + lib/gnutls_constate.h, lib/gnutls_datum.c, lib/gnutls_datum.h, + lib/gnutls_db.c, lib/gnutls_db.h, lib/gnutls_dh.c, lib/gnutls_dh.h, + lib/gnutls_dh_primes.c, lib/gnutls_errors.c, lib/gnutls_errors.h, + lib/gnutls_errors_int.h, lib/gnutls_extensions.c, + lib/gnutls_extensions.h, lib/gnutls_global.c, lib/gnutls_global.h, + lib/gnutls_handshake.c, lib/gnutls_handshake.h, + lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, + lib/gnutls_int_compat.c, lib/gnutls_kx.c, lib/gnutls_kx.h, + lib/gnutls_mem.c, lib/gnutls_mem.h, lib/gnutls_mpi.c, + lib/gnutls_mpi.h, lib/gnutls_num.c, lib/gnutls_num.h, + lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_priority.c, + lib/gnutls_priority.h, lib/gnutls_random.c, lib/gnutls_random.h, + lib/gnutls_record.c, lib/gnutls_record.h, lib/gnutls_rsa_export.c, + lib/gnutls_rsa_export.h, lib/gnutls_session.c, + lib/gnutls_session.h, lib/gnutls_session_pack.c, + lib/gnutls_session_pack.h, lib/gnutls_sig.c, lib/gnutls_sig.h, + lib/gnutls_state.c, lib/gnutls_state.h, lib/gnutls_str.c, + lib/gnutls_str.h, lib/gnutls_ui.c, lib/gnutls_ui.h, + lib/gnutls_v2_compat.c, lib/gnutls_v2_compat.h, lib/gnutls_x509.c, + lib/gnutls_x509.h, lib/io_debug.h, lib/pkix_asn1_tab.c, + lib/strfile.h, lib/strnstr.c, lib/x509_b64.c, lib/x509_b64.h, + lib/x509/common.c, lib/x509/compat.c, lib/x509/crl.c, + lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/dn.c, + lib/x509/dsa.c, lib/x509/extensions.c, lib/x509/mpi.c, + lib/x509/pkcs12.c, lib/x509/pkcs12_bag.c, lib/x509/pkcs12_encr.c, + lib/x509/pkcs5.c, lib/x509/pkcs7.c, lib/x509/privkey.c, + lib/x509/privkey_pkcs8.c, lib/x509/rfc2818_hostname.c, + lib/x509/sign.c, lib/x509/verify.c, lib/x509/x509.c, + lib/x509/x509_write.c, lib/x509/xml.c, libextra/auth_srp.c, + libextra/auth_srp_passwd.c, libextra/auth_srp_rsa.c, + libextra/auth_srp_sb64.c, libextra/ext_srp.c, + libextra/gnutls_extra.c, libextra/gnutls_openpgp.c, + libextra/gnutls_openssl.c, libextra/gnutls_srp.c, + libextra/minilzo.c, libextra/openssl_compat.c, + libextra/openpgp/compat.c, libextra/openpgp/extras.c, + libextra/openpgp/openpgp.c, libextra/openpgp/openpgp.h, + libextra/openpgp/privkey.c, libextra/openpgp/verify.c, + libextra/openpgp/xml.c, src/certtool-cfg.c, src/certtool-gaa.c, + src/certtool.c, src/cli-gaa.c, src/cli.c, src/common.c, + src/crypt-gaa.c, src/crypt.c, src/getpass.c, src/prime.c, + src/retcodes.c, src/serv-gaa.c, src/serv.c, src/tests.c, + src/tls_test-gaa.c, src/tls_test.c: changed indentation to 4 spaces + instead of tabs. + +2004-06-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_record.c, lib/x509/x509.c: [no log message] + +2004-06-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/gnutls/x509.h, lib/gnutls_int.h, lib/gnutls_mpi.c, + lib/gnutls_mpi.h, lib/x509/x509.c: Added the functions + gnutls_x509_crt_get_pk_rsa_raw() and + gnutls_x509_crt_get_pk_dsa_raw() to retrieve parameters from + certificates. + +2004-06-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_mpi.h, libextra/auth_srp.c, + libextra/gnutls_srp.c: Updated to conform to the latest srp draft + (draft-ietf-tls-srp-07). Some documentation updates. + +2004-06-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO, lib/gnutls_mpi.c, lib/x509/pkcs12_bag.c, src/cli.c: [no + log message] + +2004-06-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_datum.c, lib/gnutls_ui.c, lib/x509/pkcs12_bag.c, + src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, src/common.c, + src/gnutls-http-serv, src/serv-gaa.c, src/serv-gaa.h, src/serv.c, + src/serv.gaa, src/tests.c, src/tests.h, src/tls_test.c: several + improvements + +2004-06-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/tests.c, src/tls_test-gaa.c, src/tls_test.gaa: [no log + message] + +2004-06-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c, lib/auth_cert.h, lib/auth_dh_common.h, + lib/gnutls_compress_int.c, lib/gnutls_state.c, src/cli.c, + src/common.c, src/common.h, src/tests.c, src/tests.h, + src/tls_test.c: updated gnutls-cli-debug to print DHE and + RSA-EXPORT information if verbose is set. Some other minor fixes. + +2004-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/README.CODING_STYLE, lib/auth_anon.c, lib/auth_anon.h, + lib/auth_cert.h, lib/auth_dh_common.h, lib/auth_dhe.c, + lib/auth_rsa.c, lib/auth_rsa_export.c, lib/debug.c, lib/debug.h, + lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, + lib/gnutls_auth.c, lib/gnutls_auth.h, lib/gnutls_auth_int.h, + lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cipher.c, + lib/gnutls_cipher.h, lib/gnutls_cipher_int.c, + lib/gnutls_cipher_int.h, lib/gnutls_compress_int.c, + lib/gnutls_compress_int.h, lib/gnutls_constate.c, lib/gnutls_db.c, + lib/gnutls_dh_primes.c, lib/gnutls_handshake.c, + lib/gnutls_handshake.h, lib/gnutls_hash_int.c, + lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_record.c, + lib/gnutls_record.h, lib/gnutls_session_pack.c, lib/gnutls_sig.c, + lib/gnutls_state.c, lib/gnutls_ui.c, lib/gnutls_v2_compat.c, + lib/x509/pkcs12.c, lib/x509/privkey_pkcs8.c, libextra/auth_srp.c, + libextra/auth_srp_rsa.c, libextra/ext_srp.c, + libextra/gnutls_extra.c: some other changes to the internal types + names. + +2004-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_anon.c, lib/auth_anon.h, lib/auth_cert.c, + lib/auth_cert.h, lib/auth_dh_common.c, lib/auth_dh_common.h, + lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/debug.c, + lib/debug.h, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, + lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_dh.c, + lib/gnutls_dh.h, lib/gnutls_dh_primes.c, lib/gnutls_int.h, + lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_rsa_export.c, + lib/gnutls_rsa_export.h, lib/gnutls_session_pack.c, + lib/gnutls_sig.c, lib/gnutls_sig.h, lib/gnutls_state.c, + lib/gnutls_ui.c, lib/gnutls_ui.h, lib/gnutls_x509.c, + lib/gnutls_x509.h, libextra/auth_srp.c, libextra/auth_srp.h, + libextra/auth_srp_rsa.c, libextra/gnutls_srp.c: several internal + types fix. + +2004-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/gnutls/x509.h, lib/auth_rsa_export.c, + lib/gnutls_mpi.h, lib/x509/common.c, lib/x509/common.h, + lib/x509/dsa.c, lib/x509/dsa.h, lib/x509/mpi.c, lib/x509/mpi.h, + lib/x509/pkcs12_encr.c, lib/x509/privkey.c, lib/x509/sign.c, + lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509.h: Added the + functions gnutls_x509_crt_get_pk_rsa_raw() and + gnutls_x509_crt_get_pk_dsa_raw() to retrieve parameters from + certificates. + +2004-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_anon.c, lib/auth_cert.h, lib/auth_dh_common.c, + lib/auth_dh_common.h, lib/auth_dhe.c, lib/auth_rsa_export.c, + lib/gnutls_state.c, lib/gnutls_state.h, lib/gnutls_ui.c, + lib/gnutls_ui.h: Allow access to the RSA-EXPORT parameters. + +2004-06-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_dh_common.c, lib/auth_dh_common.h, + lib/gnutls_compress_int.c, lib/gnutls_mpi.c, lib/gnutls_state.c, + lib/gnutls_state.h, lib/gnutls_ui.c, lib/gnutls_ui.h: added + function to access the DH (peer's) public key. + +2004-06-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/auth_anon.c, lib/auth_anon.h, lib/auth_cert.h, + lib/auth_dh_common.c, lib/auth_dh_common.h, lib/auth_dhe.c, + lib/gnutls_auth.c, lib/gnutls_cipher_int.c, lib/gnutls_int.h, + lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_state.c, + lib/gnutls_state.h, lib/gnutls_ui.c, lib/gnutls_ui.h, src/serv.c: + Added news functions to allow access to the ephemeral Diffie Hellman + parameters. + +2004-06-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO, lib/gnutls_pk.c: [no log message] + +2004-06-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, libtasn1.m4: [no log message] + +2004-05-31 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c: ciphers are sorted according to a strength order. + +2004-05-31 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, libextra/auth_srp.c, libextra/gnutls_srp.c: Updated to + conform to the latest srp draft (draft-ietf-tls-srp-07). + +2004-05-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, libtasn1.m4, lib/gnutls_handshake.c, + lib/gnutls_mpi.h, libextra/auth_srp.c, libextra/openpgp/compat.c: + [no log message] + +2004-05-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/auth_srp.c: only static parameters from the TLS-SRP + draft are now allowed (to be conservative in security) + +2004-05-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_handshake.c, lib/gnutls_v2_compat.c: added some extra + checks in hello packet parsing. + +2004-05-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/Makefile.am, lib/x509/Makefile.am, + libextra/Makefile.am, libextra/openpgp/Makefile.am, + src/Makefile.am, src/certtool-cfg.h, src/retcodes.c, acinclude.m4: + some libtasn1 related compilation fixes + +2004-05-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: [no log message] + +2004-05-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * acinclude.m4, lib/gnutls_handshake.c: [no log message] + +2004-05-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, libextra/opencdk/keydb.c, libextra/opencdk/main.h, + libextra/opencdk/opencdk.h, libextra/opencdk/pubkey.c, + libextra/opencdk/read-packet.c, libextra/opencdk/sig-check.c, + libextra/openpgp/verify.c: added dependency on opencdk 0.5.5 + +2004-05-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/opencdk/keydb.c, libextra/opencdk/main.h, + libextra/opencdk/opencdk.h, libextra/opencdk/pubkey.c, + libextra/opencdk/read-packet.c, libextra/opencdk/sig-check.c, + libextra/openpgp/verify.c: added new opencdk + +2004-05-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/README.autoconf, doc/certtool.cfg, + lib/gnutls_handshake.c, lib/pkix.asn, lib/pkix_asn1_tab.c, + libextra/libgnutls-extra.m4: Corrected session resuming in SRP + ciphersuites. + +2004-05-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2004-05-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_state.c, lib/libgnutls.m4: [no log message] + +2004-05-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls.h.in.in, lib/gnutls_state.c: _gnutls_deinit() is + no longer used. Sessions are not automatically removed any more, on + abnormal termination. + +2004-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2004-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_int.h, lib/gnutls_record.c: some cleanups and better + handling of EOF in record_recv. + +2004-05-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/minitasn1/decoding.c: [no log message] + +2004-05-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/minitasn1/int.h: [no log message] + +2004-05-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * acinclude.m4, configure.in, libtasn1.m4, + lib/minitasn1/libtasn1.h, NEWS, lib/minitasn1/int.h, + lib/minitasn1/structure.c: added proper libtasn1 version detection. + +2004-05-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/minitasn1/decoding.c: Applied patch by Max Vozeler + <max@hinterhof.net>, sent by Ivo Timmermans. + +2004-05-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, doc/certtool.cfg, lib/pkix.asn, + libextra/Makefile.am, src/certtool-cfg.c, src/certtool.c: certtool + has now support for more X.520 DN attribute types. + +2004-05-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, doc/certtool.cfg: [no log message] + +2004-05-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool-cfg.c, src/certtool-cfg.h, src/certtool.c: certtool + can now read and set the UID field to a DN. + +2004-05-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h: [no log message] + +2004-05-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_int.h, lib/x509/pkcs12_bag.c, + src/certtool.c: removed gnutls_const_datum type. + +2004-05-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/pkcs12.h, lib/gnutls.h.in.in, + lib/x509/pkcs12_bag.c, src/certtool.c, lib/gnutls_int.h: removed + gnutls_const_datum type. + +2004-05-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in: [no log message] + +2004-05-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/opencdk/Makefile.am, libextra/opencdk/README, + libextra/opencdk/opencdk.h, libextra/opencdk/sig-check.c, + libextra/openpgp/verify.c: updated opencdk to report if any key + signer was found. + +2004-05-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/opencdk/Makefile.am, libextra/opencdk/README: [no log + message] + +2004-05-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, libextra/openpgp/Makefile.am, + libextra/openpgp/gnutls_openpgp.h, libextra/openpgp/openpgp.h: [no + log message] + +2004-05-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/Makefile.am, libextra/gnutls_extra.c, + libextra/openpgp/Makefile.am, libextra/openpgp/compat.c, + libextra/openpgp/extras.c, libextra/openpgp/gnutls_openpgp.h, + libextra/openpgp/openpgp.c, libextra/openpgp/openpgp.h, + libextra/openpgp/privkey.c, libextra/openpgp/verify.c, + libextra/openpgp/xml.c, configure.in: [no log message] + +2004-05-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool-cfg.c, src/certtool-cfg.h: [no log message] + +2004-05-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/prime.c, src/certtool-cfg.c: [no log message] + +2004-05-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/gnutls_compress_int.c, lib/gnutls_handshake.c, + lib/gnutls_priority.c, libextra/Makefile.am, + libextra/gnutls_extra.c, libextra/gnutls_openpgp.c, + libextra/openpgp/compat.c, libextra/openpgp/extras.c, + libextra/openpgp/openpgp.c, libextra/openpgp/privkey.c, + libextra/openpgp/verify.c, libextra/openpgp/xml.c, src/cli.c, + src/common.c, src/serv.c: some fixes in the compilation system. + +2004-05-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/Makefile.am, libextra/Makefile.am, + libextra/opencdk/Makefile.am, libextra/opencdk/armor.c, + libextra/opencdk/cipher.c, libextra/opencdk/cipher.h, + libextra/opencdk/compress.c, libextra/opencdk/context.h, + libextra/opencdk/encrypt.c, libextra/opencdk/filters.h, + libextra/opencdk/kbnode.c, libextra/opencdk/keydb.c, + libextra/opencdk/keygen.c, libextra/opencdk/keylist.c, + libextra/opencdk/keyserver.c, libextra/opencdk/main.c, + libextra/opencdk/main.h, libextra/opencdk/md.c, + libextra/opencdk/md.h, libextra/opencdk/misc.c, + libextra/opencdk/new-packet.c, libextra/opencdk/opencdk.h, + libextra/opencdk/packet.h, libextra/opencdk/plaintext.c, + libextra/opencdk/pubkey.c, libextra/opencdk/read-packet.c, + libextra/opencdk/seskey.c, libextra/opencdk/sig-check.c, + libextra/opencdk/sign.c, libextra/opencdk/stream.c, + libextra/opencdk/stream.h, libextra/opencdk/sym-cipher.c, + libextra/opencdk/trustdb.c, libextra/opencdk/types.h, + libextra/opencdk/verify.c, libextra/opencdk/write-packet.c: Opencdk + library is being included if not found. + +2004-05-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, libextra/Makefile.am: [no log message] + +2004-05-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, libextra/Makefile.am, libextra/gnutls_extra.c: + Added configure option to disable lzo completely. + +2004-05-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, doc/certtool.cfg, lib/Makefile.am, + libextra/Makefile.am, libextra/opencdk/Makefile.am, + libextra/opencdk/armor.c, libextra/opencdk/cipher.c, + libextra/opencdk/cipher.h, libextra/opencdk/compress.c, + libextra/opencdk/context.h, libextra/opencdk/encrypt.c, + libextra/opencdk/filters.h, libextra/opencdk/kbnode.c, + libextra/opencdk/keydb.c, libextra/opencdk/keygen.c, + libextra/opencdk/keylist.c, libextra/opencdk/keyserver.c, + libextra/opencdk/main.c, libextra/opencdk/main.h, + libextra/opencdk/md.c, libextra/opencdk/md.h, + libextra/opencdk/misc.c, libextra/opencdk/new-packet.c, + libextra/opencdk/opencdk.h, libextra/opencdk/packet.h, + libextra/opencdk/plaintext.c, libextra/opencdk/pubkey.c, + libextra/opencdk/read-packet.c, libextra/opencdk/seskey.c, + libextra/opencdk/sig-check.c, libextra/opencdk/sign.c, + libextra/opencdk/stream.c, libextra/opencdk/stream.h, + libextra/opencdk/sym-cipher.c, libextra/opencdk/trustdb.c, + libextra/opencdk/types.h, libextra/opencdk/verify.c, + libextra/opencdk/write-packet.c, libextra/openpgp/Makefile.am: + opencdk is being included if not found. + +2004-05-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/certtool.cfg, src/certtool.c, src/crypt-gaa.c, + src/crypt-gaa.h, src/crypt.gaa, src/certtool-cfg.c, + src/certtool-cfg.h: certtool can now add ip address SAN extension. + +2004-05-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_handshake.c: the TLS hello message random values no + longer use strong random data. + +2004-05-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_algorithms.c: [no log message] + +2004-05-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/Makefile.am, src/README.srpcrypt, src/README.srptool: [no log + message] + +2004-05-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/Makefile.am, doc/certtool.cfg: [no log message] + +2004-05-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_rsa.c: Fixed some things in the random number usage. + Weak levels are used where possible to avoid emptying the strong + random pool. + +2004-05-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_handshake.c, libextra/auth_srp_passwd.c, + libextra/gnutls_srp.c: Fixed some things in the random number + usage. Weak levels are used where possible to avoid emptying the + strong random pool. + +2004-05-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_rsa.c, lib/gnutls_handshake.c, lib/gnutls_handshake.h, + lib/gnutls_v2_compat.c, libextra/auth_srp_passwd.c, + libextra/gnutls_openpgp.c, libextra/gnutls_srp.c: Fixed some things + in the random number usage. Weak levels are used where possible to + avoid emptying the strong random pool. + +2004-05-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-eronen-tls-psk-00.txt: [no log message] + +2004-05-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, doc/manpages/Makefile.am, + doc/manpages/gnutls-srpcrypt.1, doc/manpages/srptool.1: [no log + message] + +2004-05-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_auth.c, lib/gnutls_handshake.c, lib/gnutls_kx.c, + lib/gnutls_pk.c, lib/gnutls_ui.h: Added + gnutls_auth_client_get_type() and gnutls_auth_server_get_type(). + +2004-04-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/auth_cert.c, lib/ext_cert_type.c, + lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_state.c: + Automatically disable certificate types that do not have + corresponding certificates. + +2004-04-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/ext_cert_type.c, lib/gnutls_cert.c, lib/gnutls_state.c: Fixes + in the automatic disabling of certificate types. + +2004-04-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/auth_cert.c, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_state.c: Automatically disable certificate types that do + not have corresponding certificates. + +2004-04-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2004-04-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, + src/certtool.gaa: added xml exporting capabilities to certtool + utility. + +2004-04-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/Makefile.am, src/Makefile.am: some + complilation fixes. Reported by Jerry Lundstroem + <prox@lunar-linux.org> + +2004-04-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/gnutls_cert.c: [no log message] + +2004-04-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cert.c: [no log message] + +2004-04-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c, lib/gnutls_cert.c, NEWS, src/cli.c, + configure.in, src/Makefile.am: [no log message] + +2004-04-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, includes/gnutls/x509.h, + lib/gnutls_cipher_int.c, lib/gnutls_global.c, lib/x509/Makefile.am, + lib/x509/extensions.c, lib/x509/extensions.h, lib/x509/rc2.c, + lib/x509/rc2.h, lib/x509/x509.c, lib/x509/x509_write.c, + src/Makefile.am, src/certtool-gaa.c, src/certtool-gaa.h, + src/certtool.c, src/certtool.gaa: + * Changes backported from the development brach: + - Added support for authority key identifier and the extended key + usage X.509 extension fields. The certtoool was updated to support + them. + - Added batch support to certtool. Now it can use templates. + - The RC2 cipher is no more included. The one in libgcrypt is now + used. + +2004-04-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: [no log message] + +2004-04-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, doc/TODO, lib/gnutls_global.c, + lib/gnutls_record.c: [no log message] + +2004-04-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/TODO, lib/gnutls_record.c: allow unexpected handshake + requests by the client. + +2004-04-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_global.c: [no log message] + +2004-04-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/Makefile.am: srptool is now linked to gnutls-srpcrypt + +2004-04-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_global.c: [no log message] + +2004-04-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_global.c: [no log message] + +2004-04-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_global.c, lib/gnutls_random.h, src/common.c: [no log + message] + +2004-04-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, src/Makefile.am, doc/TODO: Renamed gnutls-srpcrypt to + srptool + +2004-04-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, includes/gnutls/openpgp.h, lib/auth_cert.c: + Corrected bug in OpenPGP key loading using a callback. + +2004-04-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/gnutls/openpgp.h, lib/auth_cert.c: Corrected bug + in OpenPGP key loading using a callback. + +2004-04-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_str.c, lib/gnutls_record.c: Corrected bug in TLS + renegotiation. + +2004-04-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2004-04-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, + src/certtool.c: Added gnutls_sign_algorithm_get_name() and + gnutls_pk_algorithm_get_name(). + +2004-04-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_algorithms.c: [no log message] + +2004-04-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/TODO, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, + src/certtool.c, src/crypt-gaa.c, src/crypt-gaa.h: Added + gnutls_sign_algorithm_get_name() and gnutls_pk_algorithm_get_name(). + +2004-04-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_rsa.c, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, + lib/gnutls_auth.c, lib/gnutls_constate.c, lib/gnutls_handshake.c, + lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_state.c, + lib/gnutls_v2_compat.c, lib/x509/verify.c, libextra/ext_srp.c, + src/certtool-cfg.c, src/certtool-gaa.c, src/certtool-gaa.h, + src/cli-gaa.c, src/cli-gaa.h, src/serv-gaa.c, src/serv-gaa.h, + src/tls_test-gaa.c, src/tls_test-gaa.h: Some updates in order to + compile with tcc. + +2004-04-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/minitasn1/int.h, lib/minitasn1/libtasn1.h, + lib/minitasn1/structure.c: added the new libtasn1. + +2004-04-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool-cfg.c, src/certtool-cfg.h, src/certtool.c: some + cleanups in the parsing code. + +2004-04-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-rfc2246-bis-05.txt, + doc/protocol/draft-ietf-tls-rfc2246-bis-06.txt: [no log message] + +2004-04-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool.c: [no log message] + +2004-04-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/x509/extensions.c, src/certtool.c: minor bugfixes. + +2004-04-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/extensions.c, lib/x509/x509_write.c: [no log message] + +2004-04-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/certtool.cfg: [no log message] + +2004-04-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/certtool.cfg, src/certtool-cfg.c, src/certtool-cfg.h, + src/certtool.c: [no log message] + +2004-04-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/Makefile.am, doc/certtool.cfg, doc/manpages/certtool.1, + src/certtool.cfg, src/tests.c: [no log message] + +2004-04-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am: [no log message] + +2004-04-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, src/Makefile.am: certtool will use the system's + libcfg if available. + +2004-04-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, doc/TODO, src/Makefile.am, + src/certtool-cfg.c, src/certtool-cfg.h, src/certtool-gaa.c, + src/certtool-gaa.h, src/certtool.c, src/certtool.cfg, + src/certtool.gaa, src/getpass.c, src/getpass.h, + src/cfg/Makefile.am, src/cfg/cfg+.c, src/cfg/cfg+.h, + src/cfg/cfgfile.c, src/cfg/cfgfile.h, src/cfg/cmdline.c, + src/cfg/cmdline.h, src/cfg/parse.c, src/cfg/props.c, + src/cfg/shared.c, src/cfg/shared.h, src/cfg/platon/Makefile.am, + src/cfg/platon/str/Makefile.am, src/cfg/platon/str/dynfgets.c, + src/cfg/platon/str/dynfgets.h, src/cfg/platon/str/strctype.c, + src/cfg/platon/str/strctype.h, src/cfg/platon/str/strdyn.c, + src/cfg/platon/str/strdyn.h, src/cfg/platon/str/strplus.c, + src/cfg/platon/str/strplus.h: Added batch support to certtool. Now + can use templates. + +2004-04-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_cipher_int.c, lib/gnutls_global.c, + lib/x509/Makefile.am, lib/x509/rc2.c, lib/x509/rc2.h: The RC2 + cipher is no more included. The one in libgcrypt is now used. + +2004-04-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/x509/extensions.c, lib/x509/extensions.h, + lib/x509/x509_write.c, src/certtool.c: updated the extensions + handling. + +2004-04-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/TODO, includes/gnutls/x509.h, lib/x509/extensions.c, + lib/x509/extensions.h, lib/x509/x509.c, lib/x509/x509_write.c, + src/certtool.c: + - Added support for authority key identifier X.509 extension + field. + - Added support for the extended key usage X.509 extension field. + +2004-04-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO, lib/gnutls_cipher.c, lib/gnutls_int.h, + lib/gnutls_record.c, lib/gnutls_state.c: The record receive buffer + is now stored in the session data, to avoid memory allocations per + receive. + +2004-04-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in: [no log message] + +2004-04-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_rsa_export.c, lib/x509/privkey.c, lib/x509/x509.h: + Optimized (a bit) the rsa_parameter copying. I don't like it. + +2004-04-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_algorithms.c, lib/gnutls_compress_int.c, + lib/gnutls_handshake.c, lib/gnutls_int.h: [no log message] + +2004-04-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2004-04-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/auth_cert.c, lib/gnutls_cert.c, lib/gnutls_cert.h, + lib/gnutls_extensions.c, lib/gnutls_extensions.h, + lib/gnutls_handshake.c, lib/gnutls_sig.c: + - Corrected bug in SSL 3.0 authentication. + (backported changes from the development branch) + +2004-04-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/gnutls_state.c: + - Corrected bug in RSA parameters handling which could cause + unexpected crashes. + +2004-04-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/gnutls_state.c: + - Corrected bug in RSA parameters handling which could cause + unexpected crashes. + +2004-04-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/auth_cert.c, lib/gnutls_cert.c, lib/gnutls_cert.h: [no + log message] + +2004-04-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/auth_srp.c: implemented all the check for SRP group + parameters from the latest SRP draft. + +2004-04-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/auth_srp.h, libextra/auth_srp_passwd.c, + libextra/gnutls_srp.c: [no log message] + +2004-03-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/libgnutls.vers, libextra/libgnutls-extra.vers: + [no log message] + +2004-03-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in: [no log message] + +2004-03-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_extensions.c, lib/gnutls_extensions.h, + lib/gnutls_handshake.c, lib/gnutls_x509.c: some improvements that + lead to fewer calls to malloc(). + +2004-03-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/gnutls/compat8.h, includes/gnutls/extra.h, + lib/gnutls_ui.h: [no log message] + +2004-03-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, includes/gnutls/extra.h, lib/auth_cert.c, + lib/gnutls_cert.c, lib/gnutls_global.c, lib/gnutls_int.h, + lib/gnutls_ui.h, libextra/auth_srp_passwd.c, libextra/gnutls_srp.c, + src/cli.c, src/tests.c: Deprecated: + gnutls_srp_server_set_select_function(), + gnutls_certificate_client_set_select_function(), + gnutls_srp_server_set_select_function(). + +2004-03-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, libgcrypt.m4, doc/examples/Makefile.am, + includes/gnutls/x509.h, lib/Makefile.am, lib/auth_anon.c, + lib/auth_anon.h, lib/auth_cert.h, lib/auth_dhe.c, lib/auth_rsa.c, + lib/auth_rsa_export.c, lib/gnutls.h.in.in, lib/gnutls_anon_cred.c, + lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_dh.h, + lib/gnutls_dh_primes.c, lib/gnutls_global.c, lib/gnutls_int.h, + lib/gnutls_rsa_export.c, lib/gnutls_rsa_export.h, lib/gnutls_sig.c, + lib/gnutls_state.c, lib/gnutls_ui.c, lib/gnutls_ui.h, + lib/x509/privkey.c, lib/x509/privkey.h, libextra/openpgp/openpgp.c, + libextra/openpgp/xml.c, src/Makefile.am, src/certtool.c, + src/crypt.c, src/getpass.c, src/getpass.h, src/serv.c: Backported + changes from the development cvs version. Those are: + - Added gnutls_certificate_set_params_function() and + gnutls_anon_set_params_function() that set the RSA or DH + parameters using a callback. + - Added functions gnutls_rsa_params_cpy(), gnutls_dh_params_cpy() + and gnutls_x509_privkey_cpy(). + - Corrected a compilation issue when opencdk was installed in a + non standard directory. + +2004-03-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, src/Makefile.am, src/certtool.c, src/crypt.c, + src/getpass.c, src/getpass.h: replaced the getpass() call with an + internal one. + +2004-03-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/examples/Makefile.am: removed the openpgp key retrieval + example. + +2004-03-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/Makefile.am, libextra/openpgp/openpgp.c, + libextra/openpgp/xml.c: Finally corrected a compilation issue when + opencdk was installed in a non-base directory. Some other minor + fixes. + +2004-03-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libgcrypt.m4, src/serv.c: [no log message] + +2004-03-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, includes/gnutls/x509.h, lib/gnutls.h.in.in, + lib/gnutls_anon_cred.c, lib/gnutls_cert.c, lib/gnutls_dh.h, + lib/gnutls_dh_primes.c, lib/gnutls_int.h, lib/gnutls_rsa_export.c, + lib/gnutls_rsa_export.h, lib/gnutls_state.c, lib/gnutls_ui.h, + lib/x509/privkey.c, lib/x509/privkey.h: + * Added functions gnutls_rsa_params_cpy(), gnutls_dh_params_cpy() + and gnutls_x509_privkey_cpy(). + +2004-03-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_handshake.c, lib/gnutls_state.c: + * Added some preliminary documentation for the new libgcrypt locking + interface. + * Added some documentation for the parameters setting using + callback. + +2004-03-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/auth_anon.c, lib/auth_anon.h, lib/auth_cert.h, + lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, + lib/gnutls.h.in.in, lib/gnutls_anon_cred.c, lib/gnutls_cert.c, + lib/gnutls_cert.h, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_sig.c, lib/gnutls_state.c, lib/gnutls_ui.c, + lib/gnutls_ui.h, src/serv.c: Added + gnutls_certificate_set_params_function() and + gnutls_anon_set_params_function() that set the RSA or DH parameters + using a callback. + +2004-02-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/openpgp/openpgp.h: [no log message] + +2004-02-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/openpgp/openpgp.h: [no log message] + +2004-02-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/openpgp/openpgp.h: compilation fixes for the case where + --disable-openpgp-authentication is specified. + +2004-02-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/minitasn1/coding.c, lib/minitasn1/decoding.c, + lib/minitasn1/element.c, lib/minitasn1/int.h, + lib/minitasn1/libtasn1.h, lib/minitasn1/structure.c: added new + libtasn1 (0.2.7) + +2004-02-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/gnutls_handshake.c, lib/gnutls_hash_int.c: some + bugfixes. No longer allow sending client hello if a TLS version is + not set. + +2004-02-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c, lib/gnutls_cipher.c, lib/gnutls_constate.c, + lib/gnutls_hash_int.c, lib/gnutls_kx.c, lib/gnutls_kx.h, + lib/gnutls_sig.c: patch to fix the bug in mutual certificate + authentication in SSL 3.0 + +2004-02-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_handshake.c, lib/gnutls_sig.c: Corrected bug in mutual + certificate authentication in SSL 3.0 (part 2). + +2004-02-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/gnutls/compat8.h, lib/auth_cert.c, + lib/gnutls_cipher.c, lib/gnutls_constate.c, lib/gnutls_handshake.c, + lib/gnutls_hash_int.c, lib/gnutls_kx.c, lib/gnutls_kx.h, + lib/gnutls_sig.c: Corrected bug in mutual certificate + authentication in SSL 3.0. + +2004-02-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/minitasn1/coding.c, lib/minitasn1/decoding.c, + lib/minitasn1/element.c, lib/minitasn1/int.h, + lib/minitasn1/libtasn1.h: added new minitasn1. + +2004-02-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-compression-06.txt, + doc/protocol/draft-ietf-tls-compression-07.txt, + doc/protocol/draft-ietf-tls-srp-05.txt, + doc/protocol/draft-ietf-tls-srp-06.txt: [no log message] + +2004-02-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, + lib/gnutls_cipher.c, src/cli.c, src/common.c, src/serv.c, + src/tests.c, src/tests.h, src/tls_test-gaa.c, src/tls_test.c: [no + log message] + +2004-02-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2004-02-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/openpgp/openpgp.c: [no log message] + +2004-02-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, opencdk.m4, lib/gnutls_errors.c, lib/gnutls_errors_int.h, + lib/x509/Makefile.am, lib/x509/rfc2818_hostname.c: Corrected the + return values of gnutls_x509_crt_check_hostname(). + +2004-02-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, opencdk.m4, lib/gnutls_errors.c, lib/gnutls_errors_int.h, + lib/x509/Makefile.am, lib/x509/rfc2818_hostname.c: Corrected the + return values of gnutls_x509_crt_check_hostname(). + +2004-02-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/Makefile.am: [no log message] + +2004-02-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/common.h: [no log message] + +2004-02-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/pkix.asn, lib/pkix_asn1_tab.c: fixed CRLDistpoints ASN.1 + definitions. + +2004-02-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, includes/gnutls/openpgp.h, + includes/gnutls/openssl.h, lib/Makefile.am, lib/auth_anon.c, + lib/auth_cert.c, lib/auth_cert.h, lib/auth_dh_common.c, + lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/debug.c, + lib/dh_compat.c, lib/ext_cert_type.c, lib/ext_max_record.c, + lib/ext_server_name.c, lib/gnutls.h.in.in, lib/gnutls_alert.c, + lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, + lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_buffers.c, + lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_cipher.c, + lib/gnutls_cipher_int.c, lib/gnutls_compress.c, + lib/gnutls_compress_int.c, lib/gnutls_constate.c, + lib/gnutls_datum.c, lib/gnutls_db.c, lib/gnutls_dh.c, + lib/gnutls_dh.h, lib/gnutls_dh_primes.c, lib/gnutls_errors.c, + lib/gnutls_extensions.c, lib/gnutls_global.c, + lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_int_compat.c, + lib/gnutls_kx.c, lib/gnutls_mem.c, lib/gnutls_mpi.c, + lib/gnutls_num.c, lib/gnutls_pk.c, lib/gnutls_priority.c, + lib/gnutls_random.c, lib/gnutls_record.c, lib/gnutls_rsa_export.c, + lib/gnutls_session.c, lib/gnutls_session_pack.c, lib/gnutls_sig.c, + lib/gnutls_state.c, lib/gnutls_str.c, lib/gnutls_ui.c, + lib/gnutls_ui.h, lib/gnutls_v2_compat.c, lib/gnutls_x509.c, + lib/gnutls_x509.h, lib/rsa_compat.c, lib/strnstr.c, lib/x509_b64.c, + lib/x509/compat.c, lib/x509/compat.h, lib/x509/x509.h, + libextra/Makefile.am, libextra/auth_srp.c, + libextra/auth_srp_passwd.c, libextra/auth_srp_rsa.c, + libextra/auth_srp_sb64.c, libextra/ext_srp.c, + libextra/gnutls_extra.c, libextra/gnutls_extra.h, + libextra/gnutls_openpgp.c, libextra/gnutls_openssl.c, + libextra/gnutls_srp.c, libextra/openpgp/Makefile.am, + libextra/openpgp/compat.c, libextra/openpgp/extras.c, + libextra/openpgp/gnutls_openpgp.h, libextra/openpgp/openpgp.c, + libextra/openpgp/openpgp.h, libextra/openpgp/privkey.c, + libextra/openpgp/verify.c, libextra/openpgp/xml.c, src/serv.c: + backported all the changes from the development branch to 1.0.x, + except for TLS 1.1 which is untested. + +2004-02-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/auth_srp.c, lib/gnutls_cipher.c: [no log message] + +2004-02-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_mpi.h, libextra/auth_srp.c: added check for + a%n==0,1,-1 + +2004-02-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c: ported the client from the development branch. + +2004-02-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/pkix.asn, lib/pkix_asn1_tab.c: [no log message] + +2004-02-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/minitasn1/structure.c, src/common.c: [no log message] + +2004-02-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/gnutls.h.in.in, lib/gnutls_hash_int.c, + lib/gnutls_hash_int.h, lib/x509/dsa.c, lib/x509/dsa.h, + src/common.c: some other bugfixes ported from the development + branch. + +2004-02-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_extensions.c: [no log message] + +2004-02-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/ext_server_name.c, lib/gnutls.h.in.in, + lib/gnutls_extensions.c, src/cli.c, src/common.c: Fixed a bug where + 'server name' extension was always sent. + +2004-02-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/ext_server_name.c, lib/gnutls.h.in.in, src/cli.c: some + bugfixes. + +2004-02-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, includes/gnutls/x509.h, lib/Makefile.am, + lib/gnutls.h.in.in, lib/gnutls_cipher.c, lib/gnutls_errors.c, + lib/gnutls_errors_int.h, lib/gnutls_hash_int.c, lib/gnutls_int.h, + lib/gnutls_mpi.h, lib/gnutls_rsa_export.c, lib/gnutls_rsa_export.h, + lib/gnutls_ui.h, lib/rsa_compat.c, lib/x509/Makefile.am, + lib/x509/common.c, lib/x509/common.h, lib/x509/crl.c, + lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/dn.c, + lib/x509/extensions.c, lib/x509/extensions.h, lib/x509/mpi.c, + lib/x509/mpi.h, lib/x509/pkcs12.c, lib/x509/pkcs12_bag.c, + lib/x509/pkcs12_encr.c, lib/x509/pkcs5.c, lib/x509/pkcs7.c, + lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, lib/x509/rc2.c, + lib/x509/rfc2818_hostname.c, lib/x509/sign.c, lib/x509/sign.h, + lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509.h, + lib/x509/x509_write.c, lib/x509/xml.c, src/certtool-gaa.c, + src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: Backported + several things from the development branch. + +2004-02-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_dh_primes.c: Fixed some bugs. Patch by Brieuc + Jeunhomme <bbp@via.ecp.fr>. + +2004-01-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, src/certtool.c: added getpass() check. + +2004-01-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/gnutls_algorithms.c, + lib/gnutls_algorithms.h, lib/gnutls_cert.c, lib/gnutls_cipher.c, + lib/gnutls_constate.c, lib/gnutls_errors.c, lib/gnutls_global.c, + lib/gnutls_handshake.c, lib/gnutls_hash_int.c, + lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_record.c, + lib/gnutls_state.c, lib/x509_b64.c, lib/x509/crl.c, lib/x509/crq.c, + lib/x509/pkcs12.c, lib/x509/pkcs7.c, lib/x509/x509.c, + lib/x509/x509_write.c, lib/x509/xml.c, libextra/gnutls_extra.c, + libextra/gnutls_srp.c, src/certtool-gaa.c, src/certtool.c, + src/cli-gaa.c, src/common.c, src/crypt-gaa.c, src/serv-gaa.c, + src/serv.c, src/tls_test-gaa.c: Several bug fixes and cleanups by + Arne Thomassen. + +2004-01-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/pkix.asn, lib/pkix_asn1_tab.c: [no log + message] + +2004-01-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/TODO, includes/gnutls/x509.h, lib/gnutls.h.in.in, + lib/gnutls_handshake.c, lib/gnutls_int.h, lib/pkix.asn, + lib/pkix_asn1_tab.c, lib/x509/common.c, lib/x509/common.h, + lib/x509/crl.c, lib/x509/crq.c, lib/x509/dn.c, lib/x509/mpi.c, + lib/x509/pkcs12.c, lib/x509/sign.c, lib/x509/x509.c, + src/certtool.c: + * Added the gnutls_sign_algorithm type. + * Improved the DN parser. + +2004-01-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO, doc/protocol/rfc3039.txt, lib/gnutls_handshake.c: [no + log message] + +2004-01-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c, lib/x509/common.c, lib/x509/privkey_pkcs8.c: + [no log message] + +2004-01-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/Makefile.am: [no log message] + +2004-01-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in: the -D_REENTRANT is now used. + +2004-01-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in: the -D_REENTRANT cflag is now used. + +2004-01-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool.c: [no log message] + +2004-01-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool.c: [no log message] + +2004-01-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2004-01-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509/common.c, + lib/x509/dn.c, src/certtool.c: Corrected problem printing the DC + attributes in a DN. + +2004-01-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/tests.c, src/tests.h, src/tls_test.c: [no log message] + +2004-01-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_handshake.c, src/common.c: + * Changed handshake behaviour to send the lowest TLS version + when an unsupported version was advertized. The current behaviour + is to send the maximum version we support. + +2004-01-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/gnutls_handshake.c, lib/gnutls_int.h, + src/certtool.c, src/common.c: [no log message] + +2004-01-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/x509/compat.c, libextra/gnutls_openpgp.c, + libextra/openpgp/gnutls_openpgp.h, src/cli.c: [no log message] + +2004-01-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/crl_write.c: [no log message] + +2004-01-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/compat.h, lib/x509/rfc2818_hostname.c, src/cli.c: + Updated gnutls-cli's SRP behaviour. Some other fixes. + +2003-12-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool.c: [no log message] + +2003-12-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_ui.h, src/certtool.c, src/common.c: [no log message] + +2003-12-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_algorithms.c, lib/gnutls_ui.h, + lib/x509/rfc2818_hostname.c, lib/x509/x509.c, src/certtool.c: [no + log message] + +2003-12-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_errors.c, lib/gnutls_errors_int.h, + lib/x509/rfc2818_hostname.c, libextra/openpgp/openpgp.c: [no log + message] + +2003-12-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/TODO, lib/gnutls_cipher.c: [no log message] + +2003-12-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/tests.c, src/tests.h, src/tls_test.c: added TLS 1.1 protocol + detection. + +2003-12-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/x509/rfc2818_hostname.c: [no log message] + +2003-12-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/tests.c, src/tests.h, src/tls_test.c: added arcfour 40 cipher + detection. + +2003-12-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/pkix.asn, lib/pkix_asn1_tab.c, + lib/x509/extensions.c: [no log message] + +2003-12-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, + lib/gnutls_cipher.c, lib/gnutls_int.h, lib/gnutls_record.c, + lib/gnutls_state.c, src/common.c, src/serv.c: Added support for TLS + 1.1 + +2003-12-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2003-12-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c, lib/auth_cert.h, lib/gnutls_cert.c, + lib/gnutls_random.c, lib/gnutls_ui.h: updated the client retrieval + certificate callback. + +2003-12-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h, lib/x509/x509.c, lib/x509/x509_write.c, + src/certtool.c: Added gnutls_x509_crt_cpy_crl_dist_points() + +2003-12-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/gnutls/extra.h, includes/gnutls/x509.h, + lib/gnutls.h.in.in, lib/pkix.asn, lib/pkix_asn1_tab.c, + lib/x509/extensions.c, lib/x509/x509.c, lib/x509/x509.h, + src/certtool.c: Corrected the CRL distribution point extension + handling. + +2003-12-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cert.c, lib/x509/compat.h, libextra/gnutls_extra.c, + libextra/openpgp/compat.c, libextra/openpgp/gnutls_openpgp.h: [no + log message] + +2003-12-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * AUTHORS, NEWS, configure.in, includes/Makefile.am, + includes/gnutls/Makefile.am, includes/gnutls/compat8.h, + includes/gnutls/openssl.h, lib/auth_anon.c, lib/auth_cert.c, + lib/auth_dh_common.c, lib/auth_dhe.c, lib/auth_rsa.c, + lib/auth_rsa_export.c, lib/debug.c, lib/ext_cert_type.c, + lib/ext_max_record.c, lib/ext_server_name.c, lib/gnutls_alert.c, + lib/gnutls_algorithms.c, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, + lib/gnutls_buffers.c, lib/gnutls_cert.c, lib/gnutls_cipher.c, + lib/gnutls_cipher_int.c, lib/gnutls_compress.c, + lib/gnutls_compress_int.c, lib/gnutls_constate.c, + lib/gnutls_datum.c, lib/gnutls_db.c, lib/gnutls_dh.c, + lib/gnutls_dh_primes.c, lib/gnutls_errors.c, + lib/gnutls_extensions.c, lib/gnutls_global.c, + lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_kx.c, + lib/gnutls_mem.c, lib/gnutls_mpi.c, lib/gnutls_num.c, + lib/gnutls_pk.c, lib/gnutls_priority.c, lib/gnutls_random.c, + lib/gnutls_record.c, lib/gnutls_rsa_export.c, lib/gnutls_session.c, + lib/gnutls_session_pack.c, lib/gnutls_sig.c, lib/gnutls_state.c, + lib/gnutls_str.c, lib/gnutls_ui.c, lib/gnutls_v2_compat.c, + lib/gnutls_x509.c, lib/strnstr.c, lib/x509_b64.c, + lib/x509/common.c, lib/x509/compat.c, lib/x509/compat.h, + lib/x509/crl.c, lib/x509/crq.c, lib/x509/dn.c, lib/x509/dsa.c, + lib/x509/extensions.c, lib/x509/mpi.c, lib/x509/pkcs12.c, + lib/x509/pkcs12_bag.c, lib/x509/pkcs12_encr.c, lib/x509/pkcs5.c, + lib/x509/pkcs7.c, lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, + lib/x509/rc2.c, lib/x509/rfc2818_hostname.c, lib/x509/sign.c, + lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509_write.c, + lib/x509/xml.c, libextra/Makefile.am, libextra/auth_srp.c, + libextra/auth_srp_passwd.c, libextra/auth_srp_rsa.c, + libextra/auth_srp_sb64.c, libextra/ext_srp.c, + libextra/gnutls_extra.c, libextra/gnutls_openpgp.c, + libextra/gnutls_openssl.c, libextra/gnutls_srp.c, + libextra/openssl_compat.c, libextra/openssl_compat.h, + libextra/openpgp/compat.c, libextra/openpgp/extras.c, + libextra/openpgp/openpgp.c, libextra/openpgp/privkey.c, + libextra/openpgp/verify.c, libextra/openpgp/xml.c, + src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, + src/certtool.gaa, src/cli.c, src/crypt.c, src/prime.c, src/serv.c, + src/tests.c, src/tls_test.c: + * Added CRL verification functionality to certtool. + * Added the FSF copyright notices. + * Moved all the compatibility interface to the openssl + compatibility library. + +2003-12-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2003-12-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/crq.c, lib/x509/mpi.c, lib/x509/mpi.h, lib/x509/sign.c, + lib/x509/verify.c: corrected signing and verifying with DSA keys. + +2003-12-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/TODO, includes/gnutls/x509.h, lib/Makefile.am, + lib/x509/Makefile.am, lib/x509/crl.c, lib/x509/sign.c, + lib/x509/sign.h, lib/x509/x509_write.c, src/certtool-gaa.c, + src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: Added support + for generating CRLs in the library and the certtool utility. + +2003-12-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/gnutls/x509.h, lib/gnutls_mpi.h, lib/pkix.asn, + lib/pkix_asn1_tab.c, lib/x509/extensions.c, lib/x509/extensions.h, + lib/x509/privkey.c, lib/x509/x509.c, lib/x509/x509.h, + lib/x509/x509_write.c, src/certtool.c: Added support for the + Subject Key ID PKIX extension. + +2003-12-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/ext_server_name.c, libextra/gnutls_srp.c: [no log message] + +2003-12-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/TODO, includes/gnutls/x509.h, lib/pkix.asn, + lib/pkix_asn1_tab.c, lib/x509/common.c, lib/x509/dsa.c, + lib/x509/extensions.c, lib/x509/extensions.h, lib/x509/x509.c, + lib/x509/x509_write.c, src/certtool.c: Added support for reading + and generating CRL distribution points extensions in certificates + (not working yet). + +2003-12-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_mpi.h, libextra/auth_srp.c: Added checks (in SRP) for + A%n==0,1,-1 in server side. + +2003-12-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, doc/TODO, src/certtool-gaa.c, + src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: Added PKCS #7 + support to certtool utility. + +2003-12-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/examples/Makefile.am, doc/manpages/certtool.1, + lib/auth_cert.c, lib/auth_cert.h, lib/gnutls_cert.c, + lib/gnutls_int.h, lib/gnutls_ui.h, lib/x509/compat.c, + libextra/gnutls_openssl.c: [no log message] + +2003-12-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c: [no log message] + +2003-12-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/x509/extensions.c: [no log message] + +2003-12-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/TODO, includes/Makefile.am, + includes/gnutls/Makefile.am, includes/gnutls/compat4.h, + includes/gnutls/compat8.h, includes/gnutls/openpgp.h, + includes/gnutls/x509.h, lib/dh_compat.c, lib/gnutls_ui.h, + lib/rsa_compat.c, libextra/gnutls_openpgp.c, + libextra/openpgp/openpgp.c, libextra/openpgp/verify.c, + libextra/openpgp/xml.c: Added gnutls_openpgp_key_get_key_usage(), + and removed several compatibility functions. + +2003-12-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/openpgp.h, lib/Makefile.am, lib/auth_cert.c, + lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, + lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_x509.c, + lib/gnutls_x509.h, lib/x509/common.c, lib/x509/mpi.c, + lib/x509/rfc2818_hostname.c, libextra/Makefile.am, + libextra/auth_srp_rsa.c, libextra/gnutls_extra.c, + libextra/gnutls_extra.h, libextra/gnutls_openpgp.c, + libextra/openpgp/gnutls_openpgp.h, libextra/openpgp/openpgp.h, + libextra/openpgp/privkey.c: several cleanups. + +2003-12-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_handshake.c: Corrected bug which disallowed + ciphersuites other than the CERTIFICATE ones to work. + +2003-12-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/openpgp/privkey.c: [no log message] + +2003-12-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO, includes/gnutls/compat8.h, includes/gnutls/openpgp.h, + lib/auth_cert.c, lib/gnutls_cert.c, lib/gnutls_int.h, + lib/gnutls_ui.h, lib/gnutls_x509.c, lib/gnutls_x509.h, + libextra/Makefile.am, libextra/gnutls_extra.h, + libextra/gnutls_openpgp.c, libextra/openpgp/Makefile.am, + libextra/openpgp/gnutls_openpgp.h, libextra/openpgp/openpgp.c, + libextra/openpgp/openpgp.h: Improved + gnutls_certificate_client_retrieve_function() and + gnutls_certificate_server_retrieve_function() so that the parsing + time spent within them is minimized. Also added + gnutls_openpgp_privkey struct. No testing yet. + +2003-12-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h, lib/gnutls_cert.h, lib/x509/extensions.c, + lib/x509/x509_write.c: [no log message] + +2003-12-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h, lib/gnutls_cert.h: [no log message] + +2003-12-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/gnutls/x509.h, lib/gnutls_cert.h: Corrected a bug + in the GNUTLS_KEY key usage definitions. + +2003-12-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/gnutls/x509.h, lib/gnutls_cert.h, + lib/x509/extensions.c, lib/x509/extensions.h, + lib/x509/x509_write.c, src/certtool.c, src/tests.c, src/tests.h, + src/tls_test.c: Added gnutls_x509_crt_set_key_usage() and certtool + can now set the certificate's key usage. + +2003-12-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, doc/protocol/draft-ietf-tls-emailaddr-00.txt: [no + log message] + +2003-12-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/serv.c: [no log message] + +2003-12-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_int.h, lib/gnutls_record.c, src/cli.c, + lib/auth_cert.c, src/serv.c: Corrected bug in gnutls_bye() which + made it return an error code of INVALID_REQUEST instead of success. + +2003-12-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * opencdk.m4: [no log message] + +2003-12-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/x509/privkey.c: Corrected a bug in the + RSA key generation. This was generating unusable RSA keys. + +2003-12-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/TODO, includes/gnutls/x509.h, lib/Makefile.am, + lib/gnutls_pk.c, lib/gnutls_rsa_export.c, lib/gnutls_rsa_export.h, + lib/gnutls_sig.c, lib/gnutls_ui.h, lib/rsa_compat.c, + lib/x509/Makefile.am, lib/x509/common.c, lib/x509/crq.c, + lib/x509/dsa.c, lib/x509/dsa.h, lib/x509/mpi.c, lib/x509/mpi.h, + lib/x509/privkey.c, lib/x509/sign.c, lib/x509/x509.c, + lib/x509/x509_write.c, src/certtool-gaa.c, src/certtool-gaa.h, + src/certtool.c, src/certtool.gaa: Added support for generating and + exporting DSA private keys. Exporting to PKCS #8 is still not + supported due to lack of standards. + +2003-12-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/auth_cert.c, lib/auth_cert.h, lib/auth_dhe.c, + lib/auth_rsa.c, lib/auth_rsa_export.c, lib/gnutls_cert.c, + lib/gnutls_cert.h, lib/gnutls_int.h, lib/gnutls_state.c, + lib/gnutls_ui.h, lib/gnutls_x509.c, lib/gnutls_x509.h, + libextra/auth_srp_rsa.c, libextra/gnutls_extra.c, + libextra/gnutls_extra.h, libextra/gnutls_openpgp.c, + libextra/openpgp/gnutls_openpgp.h: Added the callbacks + gnutls_certificate_client_retrieve_function() and + gnutls_certificate_server_retrieve_function(), to allow a client or + a server to specify certificates for the handshake without storing + them to the credentials structure. + +2003-12-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, opencdk.m4, lib/auth_anon.c, lib/auth_cert.c, + lib/auth_cert.h, lib/auth_dhe.c, lib/auth_rsa.c, + lib/auth_rsa_export.c, lib/dh_compat.c, lib/gnutls.h.in.in, + lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, + lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_dh.h, + lib/gnutls_dh_primes.c, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_kx.c, lib/gnutls_rsa_export.c, lib/gnutls_ui.c, + lib/libgnutls.vers, lib/x509/common.c, libextra/auth_srp_rsa.c, + libextra/gnutls_extra.c, libextra/libgnutls-extra.vers: + * The error codes GNUTLS_E_NO_TEMPORARY_DH_PARAMS and + GNUTLS_E_NO_TEMPORARY_RSA_PARAMS are no longer returned by the + handshake function. Ciphersuites that require temporary parameters + are removed when such parameters do not exist. + * Several internal changes to allow adding the callback function to + retrieve the certificate and the private key. + +2003-12-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/gnutls.h.in.in, lib/gnutls_dh_primes.c, + lib/gnutls_rsa_export.c, lib/gnutls_state.c: Included + gnutls_1_0_0_patches. + +2003-12-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/gnutls_dh_primes.c: Corrected a bug in + gnutls_dh_params_export_pkcs3() which made it report a wrong size + for the output data. + +2003-12-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/gnutls.h.in.in, lib/gnutls_dh_primes.c, + lib/gnutls_rsa_export.c, lib/gnutls_state.c: Added + gnutls_rsa_params_export_pkcs1() and + gnutls_rsa_params_import_pkcs1(). + +2003-12-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, THANKS, lib/Makefile.am, lib/gnutls_handshake.c, + lib/gnutls_record.c, libextra/Makefile.am, + libextra/openpgp/Makefile.am, src/cli.c, src/tests.c, src/tests.h, + src/tls_test.c: Included gnutls_1_0_0_patches. + +2003-12-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2003-12-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * THANKS: [no log message] + +2003-12-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_handshake.c, lib/gnutls_record.c: Some documentation + fixes. + +2003-12-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, src/tests.c, src/tests.h, src/tls_test.c: Fixed the SRP + detection test in gnutls-cli-debug. + +2003-12-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/Makefile.am, libextra/Makefile.am, + libextra/openpgp/Makefile.am, src/cli.c: Some minor fixes in the + makefiles. They now include CFLAGS from libgcrypt or opencdk if + installed in a non standard directory. + +2003-12-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO, lib/gnutls_dh_primes.c, lib/gnutls_mpi.c, src/prime.c: + some minor fixes and cleanups. + +2003-12-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, src/common.c: [no log message] + +2003-12-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cipher.c, lib/gnutls_cipher_int.c: some cleanups in + the record protocol processing. + +2003-12-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/TODO, includes/gnutls/extra.h, lib/gnutls.h.in.in, + lib/gnutls_errors.c, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_state.c, libextra/auth_srp.c, libextra/auth_srp.h, + libextra/ext_srp.c, libextra/ext_srp.h, libextra/gnutls_srp.c, + src/cli.c: Improved the support for draft-ietf-tls-srp-05. The + two-phase handshake is now fully supported without any interaction + with the application layer (except for a callback). + +2003-12-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/manpages/Makefile.am, doc/manpages/certtool.1, + doc/manpages/gnutls-cli-debug.1, doc/manpages/gnutls-cli.1, + doc/manpages/gnutls-serv.1, doc/manpages/gnutls-srpcrypt.1: Added + new manpages by Ivo. + +2003-12-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/common.c: removed twofish + +2003-12-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/gnutls_hash_int.c, lib/gnutls_random.c, + lib/x509/dn.c, src/common.c: eliminated some memory leaks and other + fixes. + +2003-11-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/tests.c, src/tests.h, src/tls_test.c: added detection for + ZLIB compression. + +2003-11-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/tests.c, src/tls_test.c: improved srp detection. + +2003-11-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_cipher.c, libextra/auth_srp.c, src/cli.c: Some + fixes in the certificate authenticated SRP ciphersuites. + +2003-11-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/README.autoconf, lib/gnutls_alert.c, lib/gnutls_errors.c, + lib/gnutls_errors_int.h, lib/gnutls_handshake.c, + libextra/auth_srp.c, src/serv-gaa.c, src/serv.c: some fixes to + comply with the SRP draft. The handshake is now repeated if an empty + SRP username is received. + +2003-11-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/gnutls/extra.h, lib/gnutls_anon_cred.c, + lib/gnutls_cert.c, lib/gnutls_x509.c, lib/libgnutls.vers, + lib/x509_b64.c, libextra/auth_srp.c, libextra/auth_srp_sb64.c, + libextra/gnutls_openpgp.c, libextra/gnutls_srp.c, + libextra/libgnutls-extra.vers, libextra/openpgp/gnutls_openpgp.h, + libextra/openpgp/openpgp.c, libextra/openpgp/verify.c, + src/common.c, src/crypt.c: several corrections in the + documentation. + +2003-11-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/libgnutls.vers, libextra/libgnutls-extra.vers: + [no log message] + +2003-11-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2003-11-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, + lib/gnutls_cipher_int.c, lib/gnutls_int.h, lib/gnutls_state.c: + Removed the TWOFISH cipher. Documented the supported ciphersuites. + +2003-11-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-benaloh-pct-00.txt, + doc/protocol/draft-benaloh-pct-01.txt, + doc/protocol/draft-hickman-netscape-ssl-00.txt: Added historical + documents. Got from + http://www21.ocn.ne.jp/~k-west/SSLandTLS/index-e.html + +2003-11-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2003-11-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/TODO, lib/auth_cert.c, lib/auth_rsa_export.c, + lib/gnutls.h.in.in, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_mem.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h, + lib/gnutls_x509.c, libextra/gnutls_openpgp.c, src/serv.c: corrected + some bugs that affected openpgp authentication. + +2003-11-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/protocol/rfc3279.txt, includes/gnutls/x509.h, + lib/gnutls_pk.c, lib/x509/privkey.c, lib/x509/verify.c, + lib/x509/verify.h, lib/x509/x509.c: Exported the + gnutls_x509_privkey_sign_data(), gnutls_x509_privkey_verify_data() + and gnutls_x509_crt_verify_data(). + +2003-11-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool.c: only generate v3 certificates, since we always + use the CA (basicConstraints) extension. + +2003-11-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/common.c, lib/x509/privkey.c: ensure that the leading + zero is there on RSA keys. + +2003-11-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/crq.c, lib/x509/sign.c, lib/x509/x509_write.c: [no log + message] + +2003-11-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/crq.c: added crq_get_version(). + +2003-11-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/crq.c, lib/x509/x509_write.c, src/certtool.c: Some + documentation fixes. Changed gnutls_x509_*_set_version() to have a + compatible input with gnutls_x509_*_get_version(). + +2003-11-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/rfc2459.txt, doc/protocol/rfc3280.txt: added the + newest PKIX rfc. + +2003-11-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2003-11-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_record.c: [no log message] + +2003-11-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/README.autoconf, includes/gnutls/x509.h, lib/x509/pkcs5.c, + src/common.c, src/serv.c: [no log message] + +2003-11-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-compression-05.txt, + doc/protocol/draft-ietf-tls-compression-06.txt, + doc/protocol/draft-ietf-tls-ecc-03.txt, + doc/protocol/draft-ietf-tls-ecc-04.txt: [no log message] + +2003-11-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool.c: generated certificates by certtool now have + version 1 if they do not include extensions. + +2003-11-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * opencdk.m4: [no log message] + +2003-11-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/ext_server_name.c, lib/gnutls.h.in.in: [no log message] + +2003-11-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c: [no log + message] + +2003-11-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * THANKS, lib/gnutls_session.c, lib/x509/pkcs12.c, + libextra/gnutls_openssl.c, src/certtool.gaa, src/serv-gaa.c, + src/serv.c, src/serv.gaa: Some fixes pointed out by Dimitri + Papadopoulos-Orfanos <papadopo@shfj.cea.fr> + +2003-11-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool-gaa.c, src/certtool.gaa, src/serv.c, src/tests.c: + [no log message] + +2003-11-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/pkcs5.c: [no log message] + +2003-11-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool.c: some changes in password reading. + +2003-11-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/pkcs5.c: some corrections in the pkcs5 module by Simon + Josefsson. + +2003-11-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/ext_server_name.c, lib/gnutls_int.h: [no log message] + +2003-11-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_int.h, lib/gnutls_session_pack.c, + lib/gnutls_session_pack.h: [no log message] + +2003-11-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/auth_cert.c, lib/defines.h, + lib/ext_server_name.c, lib/gnutls.h.in.in, lib/gnutls_cert.c, + lib/gnutls_record.c, lib/gnutls_session.c, lib/gnutls_state.c, + lib/gnutls_str.c, lib/gnutls_ui.c, lib/gnutls_ui.h, lib/x509_b64.c, + lib/x509/crl.c, lib/x509/crq.c, lib/x509/dn.c, + lib/x509/extensions.c, lib/x509/pkcs12.h, lib/x509/pkcs12_bag.c, + lib/x509/pkcs12_encr.c, lib/x509/pkcs5.c, lib/x509/privkey.c, + lib/x509/privkey_pkcs8.c, lib/x509/verify.c, lib/x509/x509.c, + lib/x509/x509_write.c, libextra/gnutls_srp.c, src/certtool.c, + src/common.c, src/serv.c: Several minor fixes in code and function + documentation. + +2003-11-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2003-11-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h, lib/x509/common.c, lib/x509/crl.c, + lib/x509/crq.c, lib/x509/x509.c, lib/x509/x509_write.c: [no log + message] + +2003-11-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/gnutls/x509.h, lib/x509/crl.c, lib/x509/crq.c, + lib/x509/dn.c, lib/x509/dn.h, lib/x509/extensions.c, + lib/x509/extensions.h, lib/x509/x509.c, src/certtool.c: + * Added gnutls_x509_*_get_dn_oid() and + gnutls_x509_crt_get_extension_oid() functions which return the + available OIDs. + * The certtool utility now prints all available extension OIDs and + values. + +2003-11-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/gnutls/x509.h, lib/gnutls_str.c, lib/gnutls_str.h, + lib/x509/common.c, lib/x509/compat.c, lib/x509/crl.c, + lib/x509/crq.c, lib/x509/crq.h, lib/x509/dn.c, lib/x509/dn.h, + lib/x509/rfc2818_hostname.c, lib/x509/x509.c, lib/x509/x509.h, + libextra/openpgp/openpgp.h: gnutls_x509_*_get_*_dn_by_oid() + functions have a raw_flag parameter added. Several other fixes. + +2003-11-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, includes/gnutls/compat8.h, + includes/gnutls/openpgp.h, includes/gnutls/pkcs12.h, + includes/gnutls/x509.h, lib/gnutls_errors.c, + lib/gnutls_errors_int.h, lib/x509/compat.c, lib/x509/crl.c, + lib/x509/crq.c, lib/x509/dn.c, lib/x509/dn.h, lib/x509/pkcs12.c, + lib/x509/pkcs7.c, lib/x509/pkcs7.h, lib/x509/privkey.c, + lib/x509/privkey_pkcs8.c, lib/x509/x509.c, lib/x509/x509.h, + lib/x509/x509_write.c, libextra/openpgp/openpgp.c, src/certtool.c, + src/cli.c, src/common.c, src/tests.c: gnutls_x509_*_set_dn_by_oid() + functions have a raw_flag parameter added. Some other fixes in + function types. + +2003-11-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2003-11-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, includes/gnutls/compat8.h, includes/gnutls/x509.h, + lib/gnutls.h.in.in, lib/x509/crq.c, lib/x509/crq.h, + lib/x509/x509.c, lib/x509/x509.h: Compatibility header for gnutls4 + is no longer included in gnutls.h. Added deprecated warnings to + gnutls8 stuff. + +2003-11-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/openssl.h: [no log message] + +2003-11-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/crq.c, lib/x509/x509.c: [no log message] + +2003-11-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h, lib/x509/common.c, lib/x509/crq.c, + lib/x509/x509_write.c: added gnutls_x509_oid_known() to report + known OIDs. + +2003-11-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/defines.h, lib/gnutls.h.in.in, + src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.gaa, + src/crypt-gaa.c, src/crypt-gaa.h, src/crypt.gaa, src/prime.c, + src/tls_test-gaa.c, src/tls_test-gaa.h, src/tls_test.gaa: [no log + message] + +2003-11-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c: [no log message] + +2003-11-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c, lib/ext_max_record.c, lib/gnutls_extensions.c, + lib/gnutls_int.h, src/cli.c: [no log message] + +2003-11-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/auth_cert.c, lib/debug.c, + lib/ext_server_name.c, lib/gnutls_buffers.c, lib/gnutls_constate.c, + lib/gnutls_dh_primes.c, lib/gnutls_extensions.c, + lib/gnutls_extensions.h, lib/gnutls_global.c, + lib/gnutls_handshake.c, lib/gnutls_handshake.h, + lib/gnutls_hash_int.c, lib/gnutls_int.h, lib/gnutls_mem.c, + lib/gnutls_record.c, lib/gnutls_record.h, lib/gnutls_state.c, + lib/gnutls_state.h, lib/gnutls_v2_compat.c, lib/gnutls_x509.c, + lib/x509_b64.c, lib/x509/crl.c, libextra/auth_srp.c, + libextra/auth_srp_sb64.c, libextra/gnutls_openpgp.c, + libextra/gnutls_openssl.c, libextra/openpgp/gnutls_openpgp.h, + libextra/openpgp/verify.c, src/common.h: Some bugfixes, and type + corrections. + +2003-11-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in: [no log message] + +2003-11-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, + lib/gnutls_hash_int.c, lib/gnutls_int.h, lib/gnutls_priority.c, + lib/x509/common.c, src/cli.c, src/common.c, src/serv.c: Added the + RIPEMD ciphersuites defined in draft-ietf-tls-openpgp-keys-04. + +2003-11-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/libgnutls.m4, libextra/libgnutls-extra.m4: [no log message] + +2003-11-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, includes/Makefile.am, lib/minitasn1/mem.h, + libextra/Makefile.am, libextra/libgnutls-extra.vers: The openssl + compatibility layer was moved to gnutls-openssl to allow the + extension of it without bloating the libgnutls-extra. + +2003-11-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/defines.h: [no log message] + +2003-11-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool.c: [no log message] + +2003-11-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool.c: Prints certificate information before signing. + +2003-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_random.h: [no log message] + +2003-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/gnutls_random.c, src/crypt.c: Patch by Werner + Koch: + * configure.in: Check for gcry_create_nonce. + * lib/gnutls_random.c (_gnutls_get_random): Ditto. + * src/crypt.c (_srp_crypt): Use gcry_create_nonce if available. + + Also removed some unneeded code in random.c. + +2003-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in: [no log message] + +2003-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h, src/certtool-gaa.c, src/certtool-gaa.h, + src/certtool.c, src/certtool.gaa: Added capability to read CRLs to + certtool. + +2003-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h, lib/gnutls_x509.c, lib/x509/compat.c, + lib/x509/crl.c, lib/x509/pkcs7.c, lib/x509/pkcs7.h, + lib/x509/x509.c, lib/x509/x509.h: Renamed several pkcs #7 related + functions. That is to allow future extensions to the API. + +2003-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/scripts/gdoc: [no log message] + +2003-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/crl.c, lib/x509/crq.c, lib/x509/pkcs12_bag.c, + lib/x509/x509.c, lib/x509/x509_write.c: [no log message] + +2003-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/scripts/gdoc: [no log message] + +2003-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/scripts/gdoc: [no log message] + +2003-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h: [no log message] + +2003-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, includes/gnutls/x509.h, lib/gnutls.h.in.in, + lib/gnutls_dh_primes.c, lib/gnutls_ui.h, lib/x509_b64.c, + lib/x509/pkcs7.c, src/cli-gaa.c: Added + gnutls_pkcs7_set_certificate2() and gnutls_pkcs7_set_crl2() + functions. + +2003-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/crl.c, lib/x509/crq.c, lib/x509/pkcs12.c, + lib/x509/pkcs12_bag.c, lib/x509/privkey.c, + lib/x509/privkey_pkcs8.c, lib/x509/x509.c: added some check for the + input parameters. + +2003-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libgcrypt.m4, doc/TODO: [no log message] + +2003-11-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/x509/common.c, lib/x509/crl.c, + lib/x509/crq.c, lib/x509/dn.c, lib/x509/x509.c: Removed the + gnutls_handshake_set_rsa_pms_check() prototype from gnutls.h. + Corrected the *_get_dn() functions to return the data size if the + data argument is NULL, and *data_size == 0. Bugs reported by Gergely + Nagy <algernon@bonehunter.rulez.org>. + +2003-11-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c, lib/ext_cert_type.c, lib/ext_cert_type.h, + lib/gnutls_constate.c, lib/gnutls_extensions.c, + lib/gnutls_session_pack.c: some fixes to have the correct cert_type + on resumed sessions. + +2003-11-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, src/certtool.c: The certtool utility can now generate PKCS + #12 structures without specifying a certificate. + +2003-11-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in: [no log message] + +2003-11-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/minitasn1/errors.c, lib/minitasn1/int.h, + lib/minitasn1/libtasn1.h, lib/minitasn1/mem.h, + lib/minitasn1/structure.c: Included the new libtasn 0.2.6. + +2003-11-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-openpgp-keys-03.txt, + doc/protocol/draft-ietf-tls-openpgp-keys-04.txt: [no log message] + +2003-11-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.gaa, + src/cli.c, src/common.c, src/common.h, src/crypt-gaa.c, + src/crypt-gaa.h, src/crypt.gaa, src/prime.c, src/serv.c, + src/tests.c, src/tls_test-gaa.c, src/tls_test-gaa.h, + src/tls_test.c, src/tls_test.gaa: some code cleanups. + +2003-11-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cert.c, libextra/gnutls_srp.c: [no log message] + +2003-11-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.gaa, + src/common.c, src/crypt-gaa.c, src/crypt-gaa.h, src/crypt.gaa, + src/tests.c, src/tests.h, src/tls_test-gaa.c, src/tls_test-gaa.h, + src/tls_test.c, src/tls_test.gaa: [no log message] + +2003-11-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, src/certtool-gaa.c, src/certtool.gaa, src/cli.c, + src/common.c, src/common.h, src/crypt-gaa.c, src/crypt.gaa, + src/serv.c, src/tls_test.c: [no log message] + +2003-11-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/gnutls_openpgp.c, src/certtool-gaa.c, + src/certtool-gaa.h, src/certtool.gaa, src/crypt-gaa.c, + src/crypt-gaa.h, src/crypt.c, src/crypt.gaa: [no log message] + +2003-11-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in: Corrected the types in + gnutls_anon_free_client_credentials() and + gnutls_anon_allocate_client_credentials(). Reported by Ivo. + +2003-11-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, src/crypt.c, src/tests.c, src/tls_test.c: [no log + message] + +2003-11-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, libgcrypt.m4, lib/gnutls_buffers.c, + libextra/auth_srp_passwd.c, libextra/gnutls_openpgp.c, + src/Makefile.am, src/certtool.c, src/cli-gaa.c, src/cli.c, + src/crypt.c, src/serv.c, src/tests.c, src/tests.h, + src/tls_test-gaa.c, src/tls_test.c: some changes to compile in + mingw32. + +2003-11-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/scripts/gdoc: added the new gdoc by Simon. + +2003-11-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_buffers.c, lib/gnutls_buffers.h, + lib/gnutls_compress.c, lib/gnutls_handshake.c, lib/gnutls_ui.c, + lib/x509/privkey.c: [no log message] + +2003-11-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/pkcs12.h, lib/ext_server_name.c, + lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cert.c, + lib/gnutls_cipher.c, lib/gnutls_cipher.h, + lib/gnutls_compress_int.c, lib/gnutls_compress_int.h, + lib/gnutls_db.c, lib/gnutls_int.h, lib/gnutls_kx.c, + lib/gnutls_state.h, lib/gnutls_ui.c, lib/gnutls_v2_compat.c, + lib/x509_b64.c, lib/x509_b64.h, lib/x509/common.c, + lib/x509/common.h, lib/x509/crl.c, lib/x509/crq.c, lib/x509/dn.c, + lib/x509/dn.h, lib/x509/extensions.h, lib/x509/pkcs12.c, + lib/x509/pkcs5.c, lib/x509/pkcs5.h, lib/x509/pkcs7.c, + lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, + lib/x509/rfc2818_hostname.c, lib/x509/verify.c, lib/x509/x509.c: + some type fixes. Based on build logs sent by Dimitri + Papadopoulos-Orfanos <papadopo@shfj.cea.fr>. + +2003-11-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/verify.c: preserve the flags from the last certificate + verification, in a chain. + +2003-11-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2003-11-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/openpgp/verify.c: added gnutls_openpgp_key_verify_self() + which verifies the self signature in the key. + +2003-11-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/openpgp.h, libextra/gnutls_openpgp.c, + libextra/openpgp/compat.c, libextra/openpgp/openpgp.c, + libextra/openpgp/verify.c, src/common.c: added + gnutls_openpgp_key_export() function. + +2003-11-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/verify.c: [no log message] + +2003-11-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/openpgp.h, includes/gnutls/x509.h: [no log + message] + +2003-11-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/openpgp/compat.c, libextra/openpgp/openpgp.h, + libextra/openpgp/verify.c: [no log message] + +2003-11-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_int.h, lib/x509/pkcs12_bag.c, + lib/x509/privkey.h, lib/x509/privkey_pkcs8.c: Some changes to + preserve binary compatibility. + +2003-11-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, + src/certtool.gaa: Added option to certtool to use export-grade + algorithms. If password is set in pkcs8 mode, then the output + structure will be encrypted. + +2003-11-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/x509/verify.c, libextra/openpgp/verify.c, + src/certtool-gaa.c, src/certtool.gaa, tests/test25.pem: [no log + message] + +2003-11-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/prime-gaa.c, src/prime-gaa.h, src/prime.gaa: [no log message] + +2003-11-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/scripts/Makefile.am: gdoc and sort1.pl are now included in + the distribution. + +2003-11-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls.h.in.in, lib/gnutls_cert.c, lib/gnutls_int.h, + lib/x509/compat.c, lib/x509/verify.c, libextra/openpgp/compat.c, + libextra/openpgp/extras.c, libextra/openpgp/verify.c, + src/Makefile.am, src/certtool-gaa.c, src/certtool-gaa.h, + src/certtool.c, src/certtool.gaa, src/common.c, src/prime.c: + * Several changes in certificate and key verification. + * GNUTLS_CERT_NOT_TRUSTED was replaced by GNUTLS_CERT_INVALID, to + avoid having two flags for the same thing. + * Updated documentation for openpgp key verification. + * The prime tool was combined with the certtool. + +2003-10-31 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_errors.c, lib/gnutls_errors_int.h, + libextra/gnutls_openpgp.c, libextra/openpgp/extras.c: [no log + message] + +2003-10-31 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool.c, src/certtool.gaa, src/common.c: [no log message] + +2003-10-31 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/openpgp/openpgp.c, libextra/openpgp/openpgp.h: [no log + message] + +2003-10-31 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/pkcs12.h, libextra/gnutls_openpgp.c, + src/certtool.c, src/common.c: more openpgp related changes. + +2003-10-31 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/pkcs12_bag.c: Added gnutls_pkcs12_bag_set_crl() and + gnutls_pkcs12_bag_set_crt() functions. + +2003-10-31 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/gnutls_openpgp.c: [no log message] + +2003-10-31 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/gnutls_x509.c, lib/strfile.h, + libextra/gnutls_openpgp.c, libextra/openpgp/openpgp.h, src/serv.c: + some openpgp related changes. + +2003-10-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/crypt.c: [no log message] + +2003-10-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/gnutls_errors.c, lib/gnutls_errors_int.h, + lib/gnutls_global.c: added version check against libtasn1 + +2003-10-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool-gaa.c, src/certtool.c, src/certtool.gaa, + src/common.c: [no log message] + +2003-10-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool.c, src/cli.c, src/crypt.c, src/serv.c: Added error + checking to global_init() calls. + +2003-10-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/x509/pkcs12_bag.c, + libextra/openpgp/compat.c, libextra/openpgp/extras.c, + libextra/openpgp/verify.c: [no log message] + +2003-10-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/pkcs12.h, lib/gnutls.h.in.in, + lib/x509/pkcs12_bag.c, lib/x509/verify.c, src/certtool.c: + introduced gnutls_const_datum for gnutls_pkcs12_bag_get_data(). Some + other cleanups in the verification functions. + +2003-10-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/verify.c: corrected some bugs in the verification + functions. + +2003-10-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * tests/test22.pem: [no log message] + +2003-10-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/verify.c, src/certtool.c, tests/test23.pem: [no log + message] + +2003-10-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/gnutls.h.in.in, lib/gnutls_int.h, + lib/x509/compat.c, lib/x509/verify.c, src/certtool.c, src/common.c, + tests/test1.pem, tests/test10.pem, tests/test13.pem, + tests/test2.pem, tests/test20.pem, tests/test21.pem, + tests/test22.pem, tests/test23.pem, tests/test24.pem, + tests/test25.pem, tests/test26.pem, tests/test3.pem: Improved the + certificate verification functions and the certtool program's + verification capability. + +2003-10-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool.c, src/crypt.c: Certtool is only compiled when + ENABLE_PKI is defined. + +2003-10-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/openpgp/Makefile.am: [no log message] + +2003-10-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509_b64.c, lib/x509_b64.h, lib/x509/common.c: Made the + B64FSIZE to return an accurate value. + +2003-10-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/x509_b64.c, lib/x509/common.c, + src/certtool.c: some fixes. + +2003-10-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool.c: [no log message] + +2003-10-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, + src/certtool.gaa: added capability to print pkcs12 structures. + +2003-10-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/libgnutls-extra.vers: exported OpenSSL* symbols. + +2003-10-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/rfc2818.h: added missing file. + +2003-10-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/gnutls/pkcs12.h, lib/x509/common.c, + src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, + src/certtool.gaa: added pkcs #12 support to certtool. Corrected + some bugs in the export functions. + +2003-10-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-sharedkeys-01.txt, + doc/protocol/draft-ietf-tls-sharedkeys-02.txt: [no log message] + +2003-10-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, + src/certtool.gaa: [no log message] + +2003-10-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool-gaa.c, src/certtool.c, src/certtool.gaa: [no log + message] + +2003-10-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/gnutls_dh_primes.c: Used the new gcrypt API for + generating primes and groups. + +2003-10-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, + src/certtool.gaa: added the --der option to certtool. + +2003-10-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, includes/gnutls/openpgp.h, lib/x509/x509.c, + lib/x509/x509_write.c, src/certtool-gaa.c, src/certtool-gaa.h, + src/certtool.c, src/certtool.gaa: several improvements for the + certtool utility. + +2003-10-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/common.c: [no log message] + +2003-10-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/Makefile.am, doc/manpages/Makefile.am, + doc/manpages/gnutls-cli-debug.1, doc/manpages/gnutls-cli.1, + doc/manpages/gnutls-serv.1, doc/manpages/gnutls-srpcrypt.1: Added + manpages created by Ivo Timmermans <ivo@o2w.nl> + +2003-10-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool.c, src/cli-gaa.c, src/cli-gaa.h, src/cli.c, + src/cli.gaa, src/common.c: Added the --print-cert option to + gnutls-cli. + +2003-10-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, src/Makefile.am: [no log message] + +2003-10-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c, lib/x509_b64.c, lib/x509/common.c, + lib/x509/mpi.c, lib/x509/mpi.h, lib/x509/privkey.c, + lib/x509/privkey.h, lib/x509/x509.c, src/certtool-gaa.c, + src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: Added + capability to print the keyid of a certificate or a private key to + certtool. Updated the key_id functions to return the hash of the + SubjectPublicKey. + +2003-10-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool.c: Added fingerprint calculation to certtool. + +2003-10-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, libextra/gnutls_openssl.c: added configure option + to disable the openssl compatibility layer. + +2003-10-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/x509.c: a fix in the get_subject_alt_name, to return + GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE when finished reading. + +2003-10-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool.c: Added capability to decode some X.509v3 + extensions. + +2003-10-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, + src/certtool.gaa: Added certificate chain verification capability + to certtool + +2003-10-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/crq.c: [no log message] + +2003-10-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509/common.c, + lib/x509/crq.c, lib/x509/privkey_pkcs8.c, src/Makefile.am, + src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, + src/certtool.gaa: Several improvments in the certtool. + +2003-10-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/privkey_pkcs8.c, src/Makefile.am, src/certtool-gaa.c, + src/certtool-gaa.h, src/certtool.c, src/certtool.gaa, src/common.c: + Added a certtool primitive command line utility + +2003-10-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h, lib/x509/common.c, lib/x509/common.h, + lib/x509/crl.c, lib/x509/dn.c, lib/x509/extensions.c, + lib/x509/extensions.h, lib/x509/mpi.c, lib/x509/verify.c, + lib/x509/x509.c, lib/x509/x509.h, lib/x509/x509_write.c: Improved + the certificate generation stuff. + +2003-10-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/TODO, includes/gnutls/x509.h, lib/pkix.asn, + lib/pkix_asn1_tab.c, lib/x509/common.c, lib/x509/common.h, + lib/x509/dn.c, lib/x509/dn.h, lib/x509/sign.c, + lib/x509/x509_write.c: Almost finished the X.509 certificate + generation. + +2003-10-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/x509_b64.c, libextra/gnutls_openpgp.c: + - Some fixes in the opencdk code. Patch by Ivo Timmermans + <ivo@o2w.nl> + - CR is now allowed in the base64 decoder. + +2003-10-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, THANKS, configure.in, libgcrypt.m4, includes/gnutls/x509.h, + lib/Makefile.am, lib/pkix.asn, lib/pkix_asn1_tab.c, + lib/x509/Makefile.am, lib/x509/common.c, lib/x509/common.h, + lib/x509/crq.c, lib/x509/crq.h, lib/x509/dn.c, lib/x509/dn.h, + lib/x509/extensions.c, lib/x509/extensions.h, lib/x509/x509.c, + lib/x509/x509_write.c: Added some support for writable + gnutls_x509_crt structures. Not ready yet. + +2003-10-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/gnutls_mem.h, lib/minitasn1/mem.h: some + alloca-related fixes. Patch by Philip Brown <phil@bolthole.com>. + +2003-10-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/rfc2818_hostname.c: The hostname verification in the + certificate is now case insensitive. + +2003-10-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in: [no log message] + +2003-10-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_handshake.c: corrected a bug in the debugging + output of handshake. Pointed out by Mark McLoughlin + <mark@skynet.ie>. + +2003-10-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/openpgp/gnutls_openpgp.h, libextra/openpgp/openpgp.h: + Corrected issue in openpgp code, which did not allow compilation + when opencdk was not present. + +2003-10-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: [no log message] + +2003-10-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2003-10-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: opencdk is now mandatory in the base installation. + +2003-10-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2003-10-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/openpgp.h, includes/gnutls/x509.h, + lib/gnutls_dh.h, lib/gnutls_dh_primes.c, lib/gnutls_rsa_export.c, + lib/gnutls_state.c, lib/gnutls_state.h, lib/gnutls_ui.c, + lib/x509/common.c, lib/x509/pkcs5.c, lib/x509/pkcs7.c, + lib/x509/privkey.c, lib/x509/x509.c, lib/x509/x509.h, + libextra/openpgp/openpgp.c: Some changes in types. + +2003-10-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h: [no log message] + +2003-10-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/extensions.c, lib/x509/x509.c, lib/x509/x509.h: [no log + message] + +2003-10-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h, lib/gnutls_errors.c, lib/gnutls_global.c, + lib/gnutls_int.h, lib/x509_b64.c, lib/x509/common.c, + lib/x509/common.h, lib/x509/crl.c, lib/x509/crq.c, lib/x509/crq.h, + lib/x509/dn.c, lib/x509/pkcs7.c, lib/x509/pkcs7.h, + lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, lib/x509/x509.c, + lib/x509/x509.h, libextra/auth_srp_sb64.c: Corrected some of the + return types. Several other minor corrections. + +2003-10-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, doc/README.autoconf, lib/gnutls_pk.c: [no log + message] + +2003-10-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in: [no log message] + +2003-10-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/gnutls_handshake.c, + libextra/gnutls_openpgp.c, libextra/gnutls_srp.c, src/serv.c: + - Updated to use opencdk 0.5.1 (patch by Mikhail + Teterin <mi+mx@aldan.algebra.com>) + - Corrected some alignment problems in IA64 (patch by + Ian Wienand <ianw@gelato.unsw.edu.au>) + - Corrected bug in SRP. Patch by Casey Marshall + <rsdio@metastatic.org> + +2003-10-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/gnutls_openpgp.c: [no log message] + +2003-10-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/Makefile.am, libextra/gnutls_openpgp.c, + libextra/openpgp/Makefile.am, libextra/openpgp/gnutls_openpgp.c: + [no log message] + +2003-10-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/Makefile.am, src/cli.c, src/common.c, src/serv.c: [no + log message] + +2003-10-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, includes/Makefile.am, + includes/gnutls/openpgp.h, lib/x509/crl.c, lib/x509/crq.c, + lib/x509/pkcs12.c, lib/x509/pkcs12_bag.c, lib/x509/pkcs7.c, + lib/x509/privkey.c, lib/x509/x509.c, libextra/Makefile.am, + libextra/gnutls_extra.c, libextra/openpgp/Makefile.am, + libextra/openpgp/gnutls_openpgp.h, libextra/openpgp/openpgp.c, + libextra/openpgp/openpgp.h, src/common.c: Updated the openpgp key + API. + +2003-10-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/Makefile.am: [no log message] + +2003-10-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, includes/gnutls/openpgp.h, libextra/Makefile.am, + libextra/gnutls_openpgp.h, libextra/openpgp/Makefile.am, + libextra/openpgp/gnutls_openpgp.c, + libextra/openpgp/gnutls_openpgp.h, libextra/openpgp/openpgp.c, + libextra/openpgp/openpgp.h: Converted the pgp verification + functions to the new API. + +2003-10-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/extra.h, includes/gnutls/openpgp.h: [no log + message] + +2003-10-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/openpgp/gnutls_openpgp.c: [no log message] + +2003-10-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/openpgp/xml.c: the place where the XML stuff were moved. + +2003-10-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/openpgp/Makefile.am, libextra/openpgp/gnutls_openpgp.c, + libextra/openpgp/openpgp.c, libextra/openpgp/openpgp.h: Updated the + old opencdk code and moved the XML stuff. Based on patch by Mikhail + Teterin <mi+mx@aldan.algebra.com>. + +2003-10-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/Makefile.am, lib/gnutls_alert.c, + lib/gnutls_algorithms.c, lib/x509/Makefile.am, + lib/x509/rfc2818_hostname.c, libextra/Makefile.am, src/cli.c, + src/common.c, src/common.h, src/serv.c: Applied patch by Arne that + fixes several possible NULL pointer dereferences. + +2003-10-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c: Disable buffering. Clear FD set. Patch by Simon + Josefsson <jas@extundo.com> + +2003-10-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/gnutls_openpgp.c: [no log message] + +2003-10-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/Makefile.am, libextra/gnutls_openpgp.c, + libextra/openpgp/Makefile.am, libextra/openpgp/gnutls_openpgp.c, + libextra/openpgp/openpgp.c, libextra/openpgp/openpgp.h: started + some rewrite of the openpgp stuff. + +2003-10-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.gaa, src/cli-gaa.c: [no log message] + +2003-10-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c, src/common.h, src/serv.c: Rolled back some of Arne's + changes. Now the ciphers can be set in the client/server. + +2003-10-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2003-10-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/scripts/gdoc, lib/gnutls_errors.c: Patch by Arne. Fixes a + linking problem with _gnutls_handshake2str() and + _gnutls_packet2str(). + + Some other fixes in the documentation creation. + +2003-10-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_alert.c, lib/gnutls_errors.c, lib/gnutls_record.c, + lib/gnutls_state.c, lib/minitasn1/structure.c, src/cli.c, + src/common.c, src/serv.c: A new patch by Arne. More bug fixes and + optimizations. + +2003-10-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_handshake.c: Corrected some unaligned accesses in + IA64. Initial patch by Ian Wienand <ianw@gelato.unsw.edu.au>. + +2003-10-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/gnutls_srp.c: Corrected a bug in the SRP U calculation. + Reported by Casey Marshall <rsdio@metastatic.org>. + +2003-10-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c, src/common.c: Applied Simos' patch for the SIGALRM + triggered handshake. + +2003-09-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_errors.c, lib/gnutls_pk.c, + lib/x509/rfc2818_hostname.c: some cleanups. + +2003-09-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/gnutls/x509.h, src/cli.c, src/common.c, + src/common.h, src/serv.c, src/tests.c: Added a hostname check with + the certificate in the gnutls-cli. + +2003-09-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, + lib/gnutls_cipher_int.c, lib/gnutls_int.h, lib/gnutls_priority.c, + libextra/gnutls_openssl.c, src/cli.c, src/serv.c, src/tests.c: + RIJNDAEL ciphersuites were renamed to AES. + +2003-09-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c: [no log message] + +2003-09-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_handshake.c: [no log message] + +2003-09-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_constate.c, lib/gnutls_errors.c, + lib/gnutls_handshake.c, lib/gnutls_v2_compat.c, src/cli.c, + src/serv.c: some more cleanups. + +2003-09-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_handshake.c, src/cli.c, src/serv.c: Corrected the + client's behaviour in the handshake handling. Some fixes in the + documentation. + +2003-09-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, src/crypt.c: [no log message] + +2003-09-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, src/cli.c: [no log message] + +2003-09-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/libgnutls.vers, libextra/libgnutls-extra.vers: [no log + message] + +2003-09-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/Makefile.am, lib/libgnutls.vers, + libextra/Makefile.am, libextra/libgnutls-extra.vers: Some additions + to export only the documented API, and some support for versioning. + +2003-09-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/debug.c, lib/debug.h, lib/gnutls_errors.c, + src/cli.c: cleanups. + +2003-09-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/auth_srp.c, src/crypt-gaa.c, src/crypt-gaa.h, + src/crypt.c, src/crypt.gaa, src/srp/tpasswd, src/srp/tpasswd.conf: + Corrected and improved SRP support. The gnutls-srpcrypt now + generates several primes. + +2003-09-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/auth_srp.c: added a size check in the group generator + received by the server. + +2003-09-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, doc/README.autoconf, doc/TODO, + includes/gnutls/x509.h, lib/x509/privkey_pkcs8.c, src/cli.c: + Improved the error handling in the gnutls-cli. + +2003-09-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_alert.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, + libextra/auth_srp.c: [no log message] + +2003-09-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_alert.c, lib/gnutls_errors.c, + lib/gnutls_errors_int.h, libextra/auth_srp.c, src/crypt.c, + src/srp/tpasswd, src/srp/tpasswd.conf: Updated the SRP + implementation to follow the latest draft. + +2003-09-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/tests.c, src/tls_test.c: corrected bug which made some tests + now to be compiled. + +2003-09-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_errors.c, lib/gnutls_extensions.c, + lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_priority.c, + lib/x509_b64.c, src/retcodes.c: More more fixes by Arne. + +2003-09-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509_b64.c: [no log message] + +2003-08-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/ext_server_name.c: [no log message] + +2003-08-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/serv.c, src/tests.c, src/tls_test-gaa.c, src/tls_test-gaa.h, + src/tls_test.c, src/tls_test.gaa: corrected bug in the session + resumption detection in the gnutls-cli-debug, and other minor fixes. + +2003-08-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/tls_test.c: [no log message] + +2003-08-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2003-08-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/openssl.h, lib/gnutls_compress_int.c, + src/tls_test.c: minor cleanups. + +2003-08-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_global.c: [no log message] + +2003-08-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/x509_b64.c: CR is now allowed in the base64 decoder. + +2003-08-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, doc/README.CVS: [no log message] + +2003-08-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_errors.c: _gnutls_bin2hex function was removed from + gnutls_errors.c + +2003-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c, src/serv.c: [no log message] + +2003-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/gnutls_global.c, lib/rc2.c, lib/rc2.h, + lib/x509/Makefile.am, lib/x509/rc2.c, lib/x509/rc2.h: RC2 is not + included when PKCS#12 is disabled. + +2003-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, doc/README.CODING_STYLE, doc/README.CVS: [no log + message] + +2003-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_global.c: [no log message] + +2003-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/defines.h, lib/rc2.c: RC2 was made reentrant. + The stddef.h is now included if found. + +2003-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/gnutls_global.c: [no log message] + +2003-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_errors.c, lib/gnutls_errors_int.h, + lib/gnutls_global.c: added better check for gcrypt library. + +2003-08-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/gnutls_global.c, lib/gnutls_handshake.c, + lib/gnutls_record.c, lib/gnutls_state.c, lib/gnutls_v2_compat.c, + libextra/ext_srp.c: Arne: + - gcry_check_version() _must_ be called nowadays, says + libgcrypt-1.1.42/NEWS. + - configure.in: the respective test in configure.in included + <sys/stddef.h> (which doesn't exist) instead of the usual + <stddef.h>. + - lib/gnutls_errors.c: declaration of function _gnutls_bin2hex() + doesn't match prototype from file lib/gnutls_str.h, causing + compilation failure + - configure.in: -Wsign-compare removed. + +2003-08-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_anon.c, lib/dh_compat.c, lib/gnutls_cipher_int.c, + lib/gnutls_compress.c, lib/gnutls_dh_primes.c, lib/gnutls_errors.c, + lib/gnutls_errors_int.h, lib/gnutls_mem.c, lib/gnutls_record.c, + lib/gnutls_rsa_export.c, lib/rsa_compat.c, lib/x509_b64.c, + lib/x509/common.c, libextra/ext_srp.c: more fixes by Arne. + +2003-08-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/rc2.c: Cleaned up the RC2 cipher. + +2003-08-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c, lib/auth_cert.h, lib/auth_dh_common.c, + lib/auth_rsa_export.c, lib/dh_compat.c, lib/gnutls_algorithms.c, + lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_cert.c, + lib/gnutls_compress_int.c, lib/gnutls_dh_primes.c, + lib/gnutls_errors.c, lib/gnutls_extensions.c, lib/gnutls_global.c, + lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_mem.c, + lib/gnutls_num.c, lib/gnutls_pk.c, lib/gnutls_record.c, + lib/gnutls_state.c, lib/gnutls_x509.c, lib/io_debug.h, + lib/x509/compat.c, lib/x509/verify.c, libextra/auth_srp_sb64.c, + src/retcodes.c: still more patches by Arne Thomassen + +2003-08-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_buffers.c, lib/gnutls_compress_int.c, + lib/gnutls_record.c: some more cleanups. + +2003-08-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_buffers.c, + lib/gnutls_cert.c, lib/gnutls_compress_int.c, lib/gnutls_db.c, + lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_mem.c, + lib/gnutls_record.c, lib/x509_b64.c, lib/x509/pkcs7.c, + libextra/auth_srp_passwd.h, libextra/auth_srp_sb64.c, + libextra/ext_srp.c: more patches by Arne Thomassen. + +2003-08-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in: released 0.8.10 + +2003-08-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/ext_server_name.c: backported the ext_server_name from 0.9.x + releases. + +2003-08-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_handshake.c, lib/gnutls_kx.c, lib/gnutls_mpi.c: [no + log message] + +2003-08-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_anon_cred.c: [no log message] + +2003-08-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, doc/README.CODING_STYLE, doc/README.CVS, + doc/protocol/draft-ietf-tls-rfc2246-bis-04.txt, + doc/protocol/draft-ietf-tls-rfc2246-bis-05.txt, + includes/gnutls/x509.h, lib/auth_anon.c, lib/auth_cert.c, + lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, + lib/gnutls_alert.c, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, + lib/gnutls_cert.c, lib/gnutls_compress_int.c, lib/gnutls_errors.c, + lib/gnutls_errors_int.h, lib/gnutls_extensions.c, + lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_hash_int.c, + lib/gnutls_int.h, lib/gnutls_num.c, lib/gnutls_pk.c, + lib/gnutls_random.c, lib/gnutls_state.c, lib/gnutls_v2_compat.c, + lib/gnutls_x509.c, lib/rc2.c, lib/minitasn1/errors.c, + libextra/auth_srp.c, libextra/auth_srp_passwd.c, + libextra/auth_srp_rsa.c, libextra/gnutls_extra.c, + libextra/gnutls_openssl.c, libextra/gnutls_srp.h, src/common.c, + src/serv.c, tests/x509_test.c: Applied patch from Arne Thomassen + <arne@arne-thomassen.de>, which corrects several things in the + library. + +2003-08-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/debug.c, lib/gnutls_algorithms.c, + lib/gnutls_cert.h, lib/gnutls_cipher_int.c, + lib/gnutls_cipher_int.h, lib/gnutls_dh.h, lib/gnutls_global.c, + lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, + lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_pk.c, + lib/gnutls_pk.h, lib/gnutls_rsa_export.c, lib/rc2.c, lib/rc2.h, + lib/x509/pkcs12.c, lib/x509/pkcs12.h, lib/x509/pkcs12_encr.c, + lib/x509/pkcs5.c, lib/x509/privkey.c, lib/x509/privkey.h, + lib/x509/privkey_pkcs8.c, lib/x509/x509.h: Ported to the new + libgcrypt (still unstable). Also added the RC2 cipher and improved + the PKCS #12 stuff in order to support it. + +2003-08-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/minitasn1/coding.c, + lib/minitasn1/decoding.c, lib/minitasn1/element.c: + * Added the new libtasn1. + * the tex files are included in the distribution. + +2003-07-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am: added missing rfc2818_hostname.lo object. + +2003-06-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/pkcs12_encr.c: Removed the salt size restriction + (multiple of 8) to allow parsing IE5 generated structures. + +2003-06-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/compat4.h: [no log message] + +2003-06-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_auth_int.h, lib/gnutls_state.c: [no log message] + +2003-06-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/openssl.h, libextra/gnutls_openssl.c, + libextra/auth_srp_passwd.c: [no log message] + +2003-06-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/gnutls.h.in.in, lib/gnutls_int.h: + - The gnutls_transport_ptr type was changed to a pointer type + (void*). (programs would need recompile, since the library version + has changed) + +2003-06-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/gnutls.h.in.in: [no log message] + +2003-06-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/pkcs12_encr.c, doc/TODO: [no log message] + +2003-06-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/Makefile.am, includes/gnutls/Makefile.am, + includes/gnutls/pkcs12.h, includes/gnutls/x509.h: [no log message] + +2003-06-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/pkcs12_encr.c: [no log message] + +2003-06-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/examples/Makefile.am: some reorganization on the + documentation. Added also stuff about PKCS #12 structures. + +2003-06-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2003-06-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_ui.c: Corrected a null pointer dereference in + gnutls_certificate_get_ours(). Report and Patch by Steve Langasek. + +2003-06-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/x509/dn.c, lib/x509/pkcs12.c, lib/x509/privkey_pkcs8.c: + some cleanups. + +2003-06-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2003-06-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h, lib/gnutls_buffers.c, + lib/gnutls_dh_primes.c, lib/gnutls_errors.c, + lib/gnutls_errors_int.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h, + lib/gnutls_pk.c, lib/x509/mpi.c, lib/x509/mpi.h, lib/x509/pkcs12.c, + lib/x509/privkey.c, lib/x509/privkey_pkcs8.c: Added function to do + the MAC verification in the PKCS #12 structure. + +2003-06-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h, lib/x509/common.h, lib/x509/dn.c, + lib/x509/dn.h, lib/x509/pkcs12.c, lib/x509/pkcs12.h: Added stuff + needed to read PKCS #12 bag attributes. + +2003-06-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509/common.c, + lib/x509/dn.c, lib/x509/pkcs12.c, lib/x509/pkcs12.h, + lib/x509/pkcs12_bag.c: Added ability to write Bag attributes + LocalKeyId and friendlyName, in order for browsers to be able to + import our structures. + +2003-06-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h, lib/gnutls_state.c, lib/pkix.asn, + lib/pkix_asn1_tab.c, lib/x509/pkcs12_encr.c, + lib/x509/privkey_pkcs8.c: some cleanups. + +2003-06-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/minitasn1/decoding.c, lib/minitasn1/element.c: added new + Fabio's fixes. + +2003-06-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/pkcs12.c, lib/x509/privkey_pkcs8.c: PKCS #12 generation, + finaly can interoperate with openssl even in the encrypted case. + +2003-06-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/common.c, lib/x509/common.h, lib/x509/pkcs12.c, + lib/x509/pkcs12.h, lib/x509/pkcs12_bag.c, lib/x509/privkey_pkcs8.c: + Some more improvements in the PKCS #12 part. Now it interoperates + with openssl pkcs12, in the unencrypted case. + +2003-06-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_dh_primes.c, lib/gnutls_int.h, lib/x509/common.c, + lib/x509/common.h, lib/x509/pkcs12.c, lib/x509/pkcs12.h, + lib/x509/pkcs12_bag.c, lib/x509/pkcs5.c, lib/x509/privkey.h, + lib/x509/privkey_pkcs8.c: Several more additions to PKCS #12 to + allow encrypting bags. Still not interoperable. + +2003-06-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, includes/gnutls/x509.h, lib/gnutls_algorithms.c, + lib/gnutls_cipher_int.c, lib/gnutls_errors.c, lib/gnutls_int.h, + lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_session.c, + lib/gnutls_state.c, lib/pkix.asn, lib/pkix_asn1_tab.c, + lib/x509/common.c, lib/x509/common.h, lib/x509/pkcs12.c, + lib/x509/pkcs12.h, lib/x509/pkcs12_bag.c, lib/x509/pkcs12_encr.c, + lib/x509/pkcs7.c, lib/x509/privkey_pkcs8.c: More PKCS #12 + additions. Now the code can generate PKCS #12 files. Also added the + ability to decrypt plain DES encrypted PKCS #8 keys. + +2003-06-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h, lib/gnutls_cert.c, lib/gnutls_errors.c, + lib/gnutls_errors_int.h, lib/x509/pkcs12.c, lib/x509/pkcs12.h, + lib/x509/pkcs12_encr.c, lib/x509/pkcs5.c: Passwords in PKCS5 and + PKCS12 are now restricted to ASCII ones. + +2003-06-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h, lib/x509/pkcs12.c, lib/x509/pkcs12.h, + lib/x509/pkcs12_bag.c, lib/x509/pkcs12_encr.c: Some changes in + PKCS12 to allow a bag to hold more than one elements. + +2003-06-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_errors.c, lib/x509/common.h, lib/x509/pkcs12.c, + lib/x509/pkcs12.h, lib/x509/pkcs12_bag.c, lib/x509/privkey_pkcs8.c: + some pkcs12 improvements. + +2003-06-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/pkix.asn, lib/pkix_asn1_tab.c, + lib/x509/Makefile.am, lib/x509/common.h, lib/x509/pkcs12.h, + lib/x509/pkcs12_bag.c, lib/x509/pkcs12_encr.c, + lib/x509/privkey_pkcs8.c: Some additions to allow decrypting PKCS + #5 encrypted data, with PKCS #12 schema OIDs. + +2003-06-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h, lib/Makefile.am, lib/gnutls_alert.c, + lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/x509/Makefile.am, + lib/x509/common.c, lib/x509/common.h, lib/x509/pkcs12.c, + lib/x509/pkcs12.h, lib/x509/pkcs12_bag.c, lib/x509/privkey.h: Some + improvements in PKCS12 parser. Now it can extract private keys from + the structure. + +2003-06-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/protocol/draft-ietf-tls-extensions-06.txt, + doc/protocol/rfc3546.txt: new extensions RFC + +2003-06-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2003-06-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-srp-04.txt, + doc/protocol/draft-ietf-tls-srp-05.txt: new srp draft. + +2003-06-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/auth_srp.c: [no log message] + +2003-06-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2003-06-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_priority.c: added the most compatible ciphers in + default priorities. + +2003-06-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, src/cli.c, src/crypt.c: Corrected bug in SRP where a non + allocated value was freed. Reported by Hiroshi Hayakawa + <deuva@rapid.ocn.ne.jp>. + + Also the SRP programs are now build by default (they weren't due to + a bug). + +2003-06-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, src/crypt.c, src/serv.c: Corrected bug in SRP + where a non allocated value was freed. Reported by Hiroshi Hayakawa + <deuva@rapid.ocn.ne.jp>. + +2003-06-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-ecc-01.txt, + doc/protocol/draft-ietf-tls-ecc-03.txt: [no log message] + +2003-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-rfc2246-bis-03.txt, + doc/protocol/draft-ietf-tls-rfc2246-bis-04.txt: [no log message] + +2003-06-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h: [no log message] + +2003-06-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_dh_common.c, lib/gnutls_auth.c, lib/gnutls_auth_int.h, + lib/gnutls_dh.c, lib/x509/privkey.c, lib/x509/x509.c: [no log + message] + +2003-06-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-compression-04.txt, + doc/protocol/draft-ietf-tls-compression-05.txt, + doc/protocol/draft-ietf-tls-sharedkeys-01.txt: [no log message] + +2003-05-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_buffers.c: Corrected a bug in the record layer + buffering, which affected the case where external pull function was + used. Report and a patch by Sergey Poznyakoff + <gray@Mirddin.farlep.net>. + +2003-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/ext_server_name.c, lib/ext_server_name.h, lib/gnutls.h.in.in: + [no log message] + +2003-05-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/defines.h, lib/pkix.asn, lib/pkix_asn1_tab.c, + lib/minitasn1/decoding.c, lib/minitasn1/element.c, + lib/x509/pkcs12.c, lib/x509/pkcs12.h: some more stuff about PKCS12. + Still on early stage and incomplete. + +2003-05-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/minitasn1/coding.c, lib/minitasn1/decoding.c: [no log + message] + +2003-05-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2003-05-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/defines.h: [no log message] + +2003-05-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/openssl.h: [no log message] + +2003-05-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_cipher.c, lib/minitasn1/decoding.c, + lib/minitasn1/der.h, lib/minitasn1/int.h, lib/minitasn1/libtasn1.h, + lib/x509/privkey.c, lib/x509/x509.c, libextra/gnutls_openssl.c, + libextra/gnutls_srp.c, src/serv-gaa.c, src/serv.c, src/serv.gaa: + Several fixes in several places. Patch by Sean Gao + <sean.gao@sun.com>. + +2003-05-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2003-05-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, src/common.c: [no log message] + +2003-05-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c: Corrections in the TLS layer openpgp certificate + packet parser. + +2003-04-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * README: [no log message] + +2003-04-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/gnutls/x509.h, lib/gnutls_x509.c, + lib/x509/privkey.c, lib/x509/privkey.h, lib/x509/x509.c, + src/serv.c: + * Added gnutls_x509_privkey_get_key_id() and + gnutls_x509_crt_get_key_id() functions which return a unique (per + public key) ID. These can be used to check if the private key + corresponds to a given certificate. + +2003-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/crq.c: [no log message] + +2003-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/x509guide.txt: [no log message] + +2003-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/crq.c: The PEM header for certificate requests is now + BEGIN NEW CERTIFICATE REQUEST. + +2003-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/gnutls_errors.c, lib/gnutls_errors_int.h, + lib/gnutls_x509.c, lib/pkix.asn, lib/pkix_asn1_tab.c, + lib/x509/crq.c, lib/x509/pkcs7.c: Renamed all of the PKCS #xx stuff + names, to pkcs-x-name. + +2003-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/pkix.asn, lib/x509/Makefile.am, lib/x509/common.h, + lib/x509/pkcs7.c, lib/x509/privkey_pkcs8.c: [no log message] + +2003-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/pkix.asn, lib/pkix_asn1_tab.c: added definitions for pkcs12 + +2003-04-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c: Corrected a bug in gnutls-cli while resuming sessions. + Reported by Ivo Timmermans, patch by Gergely Nagy + <algernon@boszorka.mad.hu>. + +2003-04-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/ext_server_name.c: Corrected bug in server_name extension + which made the client to send the wrong size of data. + +2003-04-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c, src/common.c, src/serv.c: [no log message] + +2003-04-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_state.c: Increased the default DH bits limit. + +2003-04-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/verify.c: some prototype fixes. + +2003-04-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2003-04-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-openpgp-keys-02.txt, + doc/protocol/draft-ietf-tls-openpgp-keys-03.txt: [no log message] + +2003-04-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/gnutls_extra.c, src/cli.c, src/common.c, src/crypt.c, + src/serv.c, src/tests.c, src/tls_test.c: Some fixes to allow proper + compiling when --disable-srp-authentication and + --disable-anon-authentication are specified. Patch by Paul Sheer. + +2003-04-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/gnutls_cert.c, lib/gnutls_x509.c, + lib/x509/common.c, lib/x509/common.h, lib/x509/compat.c, + lib/x509/crl.c, lib/x509/crq.c, lib/x509/pkcs5.c, lib/x509/pkcs7.c, + lib/x509/privkey_pkcs8.c, lib/x509/sign.c, lib/x509/verify.c, + lib/x509/x509.c, lib/x509/xml.c, src/cli.c, src/common.c, + src/serv.c: Added the --disable-extra-pki configure option, which + disables all extra PKI stuff like PKCS #7, PKCS #10 etc. To be used + in constraint systems. + +2003-04-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/common.c, lib/x509/x509.c: [no log message] + +2003-04-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_mpi.c, lib/minitasn1/decoding.c, lib/x509/crl.c, + lib/x509/x509.c, libextra/gnutls_openpgp.c: several bug fixes in + the certificate parsing, and some in the asn1 parser. + +2003-03-31 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_int.h, lib/gnutls_x509.c, lib/x509/crl.c, + lib/x509/x509.c: More fixes to eliminate constants. + +2003-03-31 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_algorithms.c, lib/gnutls_dh_primes.c, + lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_pk.c, + lib/x509/mpi.c, lib/x509/privkey.c, lib/x509/x509.h: Eliminated the + need for a hard coded max MPI parameter size. + +2003-03-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.sym, libextra/gnutls-extra.sym: [no log message] + +2003-03-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h, lib/x509/common.h, lib/x509/xml.c, + src/common.c: Some fixes in the gnutls_x509_crt_to_xml() function. + +2003-03-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/x509/pkcs7.c, libextra/Makefile.am: [no log + message] + +2003-03-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, libextra/Makefile.am, NEWS, configure.in: [no + log message] + +2003-03-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509_b64.c: some cleanups. + +2003-03-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, includes/gnutls/x509.h, lib/pkix.asn, + lib/pkix_asn1_tab.c, lib/x509/crl.c, lib/x509/pkcs7.c: Several + improvments in the PKCS #7 handling. Added capability to delete + certificates, and handle CRLs. + +2003-03-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2003-03-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_alert.c, lib/gnutls_alert.h, + lib/x509/common.c, lib/x509/common.h, lib/x509/privkey_pkcs8.c, + lib/x509/x509.c, lib/x509/x509.h: several cleanups. + +2003-03-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509_b64.c, lib/x509_b64.h: [no log message] + +2003-03-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509_b64.c, + lib/x509_b64.h, lib/x509/pkcs7.c, lib/x509/x509.c: Several fixes to + allow exporting the PKCS #7 structures. + +2003-03-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/pkcs7.c, lib/x509/privkey_pkcs8.c: [no log message] + +2003-03-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_algorithms.c, lib/gnutls_handshake.c, + lib/gnutls_v2_compat.c: Some improvements in the version detection + in the client hello. + +2003-03-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/gnutls/x509.h, lib/gnutls_errors.c, + lib/gnutls_errors_int.h, lib/x509/pkcs7.c, + lib/x509/privkey_pkcs8.c, lib/x509/x509.c, lib/x509/x509.h: Added + functionality to generate PKCS #7 structures. Currently only + certificates can be put there. (untested) + +2003-03-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/serv-gaa.c, src/serv-gaa.h, src/serv.c, src/serv.gaa: Added + the --debug option to the gnutls-serv. + +2003-03-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_record.c, lib/gnutls_state.c, lib/gnutls_state.h, + lib/pkix.asn, lib/minitasn1/coding.c, lib/minitasn1/element.c, + lib/minitasn1/int.h, lib/minitasn1/libtasn1.h, + lib/minitasn1/parser_aux.c, src/tests.c, src/tests.h, + src/tls_test.c: Added bogus TLS record version check in the + gnutls-cli-debug tool. + +2003-03-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c, lib/ext_server_name.c, lib/gnutls_errors.c, + lib/gnutls_errors_int.h, lib/gnutls_session_pack.c, + lib/gnutls_sig.c, lib/x509/crl.c, lib/x509/crq.c, lib/x509/mpi.c, + lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, lib/x509/sign.c, + lib/x509/verify.c, lib/x509/x509.c: Several + GNUTLS_E_UNIMPLEMENTED_FEATURE errors were replaced with meaningful + error values. + +2003-03-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2003-03-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/auth_cert.c, lib/gnutls_kx.c: + * Corrected a parsing error in the Certificate request message. + * Corrected behaviour when a certificate request message is + received. Now a certificate packet is always sent, and in SSL 3.0 + cipher suites a no_certificate alert is sent instead. + * Some fixes in the certificate callback function. + +2003-03-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa: Added the + --debug option in the client. + +2003-03-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/auth_cert.c, lib/gnutls_buffers.c, lib/gnutls_global.c, + lib/gnutls_kx.c: + * Corrected behaviour when a certificate request message is + received. Now a certificate packet is always sent, and in SSL 3.0 + cipher suites a no_certificate alert is sent instead. + +2003-03-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c: Corrected a parsing error in the Certificate + request message. + +2003-03-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/x509/Makefile.am: last changes for 0.9.3 release. + +2003-03-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c, lib/x509/mpi.c, lib/x509/pkcs7.c, + lib/x509/verify.c: reduced the FIXMEs. + +2003-03-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h, lib/x509/privkey.h, + lib/x509/privkey_pkcs8.c, src/cli-gaa.c, src/cli.gaa: Allow for + unencrypted PKCS #8 private keys. + +2003-03-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/common.c: [no log message] + +2003-03-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_global.c, lib/gnutls_global.h, + lib/gnutls_rsa_export.c: The functions that return the pkix_asn and + gnutls_asn types were converted to macros. + +2003-03-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/common.c, lib/x509/common.h, lib/x509/privkey_pkcs8.c, + lib/x509/xml.c: Some cleanups. + +2003-03-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/gnutls/x509.h, lib/Makefile.am, + lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, + lib/gnutls_constate.c, lib/gnutls_errors.c, + lib/x509/privkey_pkcs8.c, lib/x509/x509.c, lib/x509/x509.h: + * Added support for encoding and decoding PKCS #8 2.0 encrypted + RSA private keys. + +2003-03-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in: [no log message] + +2003-03-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_cert.c, lib/x509/Makefile.am: the idea of using + a separate library for x509 stuff was dropped for now. + +2003-03-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cert.c: more cleanups. + +2003-03-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cert.c, lib/gnutls_x509.c: [no log message] + +2003-03-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/gnutls/x509.h, lib/gnutls.h.in.in, + lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_x509.c, + lib/pkix.asn, lib/minitasn1/coding.c, lib/x509/crl.c, + lib/x509/x509.c, lib/x509/x509.h: + * Added the new functions: gnutls_certificate_set_x509_key() + gnutls_certificate_set_x509_trust(), + gnutls_certificate_set_x509_crl(), gnutls_x509_crt_export(), + gnutls_x509_crl_export(). + +2003-03-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/gnutls/x509.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h, + lib/x509/mpi.c, lib/x509/mpi.h, lib/x509/privkey_pkcs8.c: [no log + message] + +2003-03-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_global.c, lib/gnutls_mpi.c, lib/gnutls_mpi.h, + lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509/Makefile.am, + lib/x509/common.c, lib/x509/common.h, lib/x509/pkcs5.c, + lib/x509/pkcs5.h, lib/x509/privkey.c, lib/x509/privkey.h, + lib/x509/privkey_pkcs8.c: Added ability to import PKCS8 encrypted + keys. + +2003-03-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/gnutls/compat8.h, lib/gnutls.h.in.in, + lib/gnutls_ui.c, src/prime-gaa.c, src/prime.gaa: + * The gnutls_certificate_set_rsa_params() was renamed to + gnutls_certificate_set_rsa_export_params(). + +2003-03-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/auth_rsa.c: + * Implemented the counter measure discussed in the paper "Attacking + RSA-based Sessions in SSL/TLS", against the attack discussed in + the same paper. + +2003-03-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_rsa.c, lib/gnutls_int.h, lib/gnutls_pk.c: [no log + message] + +2003-03-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_cert.h: [no log message] + +2003-03-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/auth_rsa.c, lib/gnutls.h.in.in, lib/gnutls_alert.c, + lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_pk.c, lib/gnutls_state.c, src/tests.c, src/tests.h, + src/tls_test.c: + * The RSA premaster secret version check can no longer be disabled. + * Implemented the counter measure discussed in the paper "Attacking + RSA-based Sessions in SSL/TLS", against the attack discussed in + the same paper. + * Added the functions: gnutls_handshake_get_last_in(), + gnutls_handshake_get_last_out(). + +2003-03-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_priority.c, lib/minitasn1/coding.c, + lib/minitasn1/decoding.c, lib/minitasn1/element.c, + lib/minitasn1/errors.c, lib/minitasn1/errors_int.h, + lib/minitasn1/int.h, lib/minitasn1/libtasn1.h, + lib/minitasn1/structure.c, lib/x509/dn.c: + * The diffie Hellman ciphersuites are now of higher priority than + the plain RSA. + * Added the new libtasn1. + +2003-03-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/auth_rsa.c, lib/debug.c, lib/debug.h, + lib/dh_compat.c, lib/gnutls.h.in.in, lib/gnutls_alert.c, + lib/gnutls_alert.h, lib/gnutls_buffers.c, lib/gnutls_constate.c, + lib/gnutls_dh_primes.c, lib/gnutls_errors.c, lib/gnutls_errors.h, + lib/gnutls_extensions.c, lib/gnutls_global.c, + lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, + lib/gnutls_pk.c, lib/gnutls_sig.c, lib/rsa_compat.c, lib/x509/dn.c, + lib/x509/x509.c, libextra/auth_srp.c, libextra/gnutls_openpgp.c, + src/cli.c: + * Improved the error logging functions, by adding a level, and + by allowing debugging messages just by increasing the level. + +2003-03-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/examples/Makefile.am: [no log message] + +2003-03-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in: [no log message] + +2003-03-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/Makefile.am, lib/x509/Makefile.am: some of the extra + X.509 functionality was moved to libgnutls-x509 library. + +2003-03-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_dh_primes.c, lib/gnutls_errors.c, lib/gnutls_pk.c, + lib/x509/crq.c, lib/x509/dn.c, lib/x509/mpi.c, lib/x509/sign.c, + lib/x509/verify.c, lib/x509/x509.c: better use of asn1_der_coding() + to avoid using static buffers. + +2003-03-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_hash_int.c: [no log message] + +2003-03-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, + lib/gnutls_hash_int.c, lib/gnutls_int.h, lib/x509/common.c, + lib/x509/verify.c, lib/x509/x509.h: MD2 support was dropped this is + an algorithm we cannot use. + +2003-03-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_hash_int.c, lib/x509/common.c, lib/x509/common.h, + lib/x509/sign.c, lib/x509/verify.c: some cleanups. + +2003-03-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h, lib/x509/crq.c, lib/x509/x509.c: Added + gnutls_x509_crq_get_challenge_password(). + +2003-03-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/README.CVS: [no log message] + +2003-03-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/examples/Makefile.am: added an example about certificate + request and private key generation. + +2003-03-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_int.h, lib/x509/crq.c, lib/x509/x509.c, NEWS: [no log + message] + +2003-03-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, includes/gnutls/x509.h, lib/pkix.asn, + lib/pkix_asn1_tab.c, lib/x509/common.c, lib/x509/common.h, + lib/x509/crq.c, lib/x509/dn.c, lib/x509/dn.h, lib/x509/x509.c, + libextra/auth_srp_rsa.c: Added support for PKCS#10 certificate + requests generation. + +2003-03-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/rfc2985.txt: added pkcs9 rfc. + +2003-03-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_int.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h, + lib/x509/common.c, lib/x509/common.h, lib/x509/crq.c, + lib/x509/dn.c, lib/x509/dn.h, lib/x509/mpi.c, lib/x509/mpi.h, + lib/x509/sign.c, lib/x509/sign.h: several other additions and fixes + for the certificate request stuff. + +2003-03-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2003-03-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * tests/Makefile, tests/openpgp_test.c: [no log message] + +2003-03-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/rfc2986.txt: added rfc for certificate requests. + +2003-03-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, + lib/auth_rsa_export.c, lib/gnutls_pk.c, lib/gnutls_pk.h, + lib/gnutls_sig.c, lib/gnutls_sig.h, lib/pkix.asn, + lib/pkix_asn1_tab.c, lib/x509/Makefile.am, lib/x509/crl.c, + lib/x509/crq.c, lib/x509/crq.h, lib/x509/pkcs7.c, + lib/x509/privkey.c, lib/x509/sign.c, lib/x509/sign.h, + lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509.h: Added some + stuff needed in PKCS#10 certificate request generation. Some other + fixes as well. + +2003-03-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in: [no log message] + +2003-03-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2003-03-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h, lib/auth_rsa_export.c, lib/gnutls_int.h, + lib/gnutls_rsa_export.c, lib/gnutls_rsa_export.h, + lib/x509/privkey.c, lib/x509/x509.h: The RSA parameters handling + functions, are now implemented using the rsa privkey functions. + +2003-03-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h, lib/x509/privkey.c: added flags to + privkey_generate() + +2003-03-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c: unmap data and close the file descriptor after + the mmap(). + +2003-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_int.h: [no log message] + +2003-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/gnutls_srp.c: [no log message] + +2003-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2003-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2003-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/gnutls_srp.c: fixed a memory leak. Reported by Rupert + Kittinger <r.kittinger@efkon.com> + +2003-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/gnutls_dh_primes.c, lib/gnutls_x509.c, + src/cli.c: Use mmap() if available to read files. + +2003-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/Makefile.am, lib/defines.h, + lib/gnutls_dh_primes.c, lib/gnutls_x509.c, lib/strnstr.c, + lib/x509_b64.c, lib/x509/crl.c, lib/x509/pkcs7.c, + lib/x509/privkey.c: + * Added an strnstr() function and the requirement in some functions + to use null terminated PEM structures is no more. + +2003-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cert.c: [no log message] + +2003-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/gnutls/x509.h, lib/auth_cert.c, lib/auth_cert.h, + lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, + lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_mpi.h, + lib/gnutls_sig.c, lib/gnutls_sig.h, lib/gnutls_x509.c, + lib/x509/privkey.c, lib/x509/verify.c, lib/x509/x509.c, + lib/x509/x509.h, libextra/auth_srp_rsa.c, + libextra/gnutls_openpgp.c: + * Added ability to generate RSA keys. + * Increased the maximum parameter size in order to read some large + keys by some CAs. Patch by Ian Peters <itp@ximian.com>. + * Rolled back some of yesterdays changes. The gnutls_x509_privkey, + was replaced (again) by the gnutls_privkey. + +2003-03-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/auth_cert.c, lib/auth_cert.h, + lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, + lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_int.h, + lib/gnutls_privkey.c, lib/gnutls_privkey.h, lib/gnutls_sig.c, + lib/gnutls_sig.h, lib/gnutls_x509.c, lib/gnutls_x509.h, + lib/x509/privkey.c, lib/x509/x509.h: some improvements in the + private key handling api. It is now used internally. + +2003-03-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_int.h, lib/gnutls_ui.c: [no log message] + +2003-03-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_ui.c: The fingerprint now accepts + a pointer to an int instead of a ptr to a size_t. + +2003-03-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/common.c: [no log message] + +2003-03-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, THANKS, configure.in, lib/Makefile.am, + libextra/Makefile.am: changes for 0.8.4 release. + +2003-03-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, THANKS: [no log message] + +2003-03-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-rfc2246-bis-02.txt, + doc/protocol/draft-ietf-tls-rfc2246-bis-03.txt: added the new tls + 1.1 draft + +2003-03-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: [no log message] + +2003-03-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/Makefile.am, lib/gnutls_buffers.c, + lib/x509/Makefile.am, libextra/Makefile.am: the documentation is + now created on dist time. + +2003-03-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_buffers.c: [no log message] + +2003-03-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_buffers.c, NEWS: Corrected a broken buffer check in + _gnutls_io_read_buffered() + +2003-03-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/Makefile.am: [no log message] + +2003-03-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/README.CODING_STYLE: some documentation fixes. + +2003-03-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2003-03-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: changes for 0.8.3 release. + +2003-03-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/defines.h, lib/gnutls.h.in.in, + lib/gnutls_alert.c, lib/gnutls_cipher.c, lib/gnutls_constate.c, + lib/gnutls_dh_primes.c, lib/gnutls_int.h, lib/gnutls_num.c, + lib/gnutls_num.h, lib/gnutls_ui.c, lib/gnutls_x509.c, src/serv.c: + * Corrected a bug in 64 bit architectures, which affected the + serial number calculation in the record layer. + * Added gnutls_certificate_free_keys() which deletes all the + private keys and certificates from the credentials structure. + +2003-03-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/defines.h, lib/gnutls_cipher.c, + lib/gnutls_constate.c, lib/gnutls_num.c, lib/gnutls_num.h: + Corrected a bug in 64 bit architectures, which affected the serial + number calculation in the record layer. + +2003-03-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/minitasn1/coding.c, lib/minitasn1/decoding.c, + lib/minitasn1/element.c, lib/minitasn1/int.h, + lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c: updated to + the new libtasn1. + +2003-03-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in: [no log message] + +2003-03-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cipher.c, NEWS: Commited the TLS 1.0 record layer, + timing attack fix in the 0.8.x branch. + +2003-03-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_cipher.c, lib/gnutls_cipher_int.c: Added + protection against the new TLS 1.0 record layer timing attack. + +2003-03-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h, lib/auth_cert.h, lib/gnutls.h.in.in, + lib/gnutls_ui.c, lib/gnutls_x509.c, lib/x509/verify.c, + lib/x509/verify.h, src/cli.c, src/common.c: Added a flag to allow + signing by v1 X.509 certificates. Also added a function to allow + setting the verification flags in the credentials structure. + +2003-03-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/tests.c, src/tls_test.c: some fixes in tests + +2003-02-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, + lib/gnutls_hash_int.c, lib/gnutls_int.h, lib/x509/verify.c: Added + support for MD2 signature verification in X.509 certificates. + +2003-02-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, + src/tests.c, src/tls_test.c: Added option to disable all TLS 1.0 + extensions. + +2003-02-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/tests.c: [no log message] + +2003-02-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/Makefile.am: some fixes in makefiles. + +2003-02-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_cipher.c, lib/gnutls_global.c, + lib/gnutls_dh_primes.c: [no log message] + +2003-02-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c: [no log message] + +2003-02-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/examples/Makefile.am: Added a small example on how to use the + certificate selection callback in client side. + +2003-02-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2003-02-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_auth.c, lib/gnutls_mpi.c, lib/gnutls_pk.c, + libextra/auth_srp.c, libextra/gnutls_srp.c: some fixes in types. + +2003-02-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c, lib/gnutls_cert.c, src/cli.c, src/tests.c: The + client certificate selection callback is no longer called twice. It + is called once if it is set. + +2003-02-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_priority.c, lib/gnutls_record.c, lib/gnutls_session.c: + [no log message] + +2003-02-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/common.c: [no log message] + +2003-02-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/tests.c, src/tls_test.c: works better in buggy servers. + +2003-02-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c: [no log message] + +2003-02-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/gnutls/compat8.h, includes/gnutls/x509.h, + lib/Makefile.am, lib/dh_compat.c, lib/gnutls.h.in.in, + lib/gnutls_dh_primes.c, lib/gnutls_int.h, lib/gnutls_rsa_export.c, + lib/gnutls_rsa_export.h, lib/rsa_compat.c, lib/x509/mpi.c, + libextra/Makefile.am, src/prime.c, src/serv.c: The RSA and DH + parameter handling has been updated. + +2003-02-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c, lib/gnutls_x509.c, lib/x509/x509.c: Added a + primitive function to load a file into memory, so that no + certificate files are truncated. Also fixed a bug in the client + certificate callback function. + +2003-02-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_ui.c, lib/x509/dn.c, lib/x509/pkcs7.c, + lib/x509/pkcs7.h, lib/x509/x509.c: Null, as the data value, is now + an acceptable value in functions that may return the size of the + data. + +2003-02-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_buffers.c: [no log message] + +2003-02-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/common.c: [no log message] + +2003-02-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c, lib/gnutls.h.in.in, lib/gnutls_cert.c, + lib/gnutls_ui.h, lib/x509/dn.c, lib/x509/rfc2818_hostname.c, + src/cli.c, src/common.c, src/tests.c, src/tests.h, src/tls_test.c: + Corrected bugs in gnutls_x509_rdn_get(). Added a test to print the + server's trusted CAs in gnutls-cli-debug, and in gnutls-cli. + +2003-02-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/prime.c: [no log message] + +2003-02-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: [no log message] + +2003-02-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, includes/gnutls/x509.h, lib/gnutls_cert.c, + lib/gnutls_dh_primes.c, lib/gnutls_mpi.c, lib/gnutls_mpi.h, + lib/gnutls_pk.c, lib/gnutls_privkey.c, lib/gnutls_x509.c, + lib/minitasn1/coding.c, lib/minitasn1/decoding.c, + lib/minitasn1/element.c, lib/minitasn1/errors.c, + lib/minitasn1/gstr.h, lib/minitasn1/int.h, + lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, + lib/minitasn1/structure.c, lib/x509/common.c, lib/x509/compat.c, + lib/x509/crl.c, lib/x509/dn.c, lib/x509/dn.h, + lib/x509/extensions.c, lib/x509/mpi.c, lib/x509/pkcs7.c, + lib/x509/verify.c, lib/x509/x509.c, lib/x509/xml.c: ported to + libtasn1 0.2.x. Also the included minitasn1 was replaced by the + 0.2.1 version of libtasn1. + +2003-02-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h, lib/gnutls.h.in.in, lib/gnutls_int.h, + lib/x509/crl.c, lib/x509/dn.c, lib/x509/x509.c: gnutls_const_datum + was removed from exported types, for the time being. + +2003-02-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/extra.h: [no log message] + +2003-02-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/common.c: [no log message] + +2003-02-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * README, doc/TODO, lib/auth_cert.c, lib/gnutls_int.h, + lib/gnutls_state.c, lib/gnutls_x509.c: Added option to allow an + X.509 server not to send the trusted CA list to the peer. + +2003-02-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2003-02-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c, src/serv.c: [no log message] + +2003-02-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/tests.c: [no log message] + +2003-02-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, src/tests.c, src/tests.h, src/tls_test.c: Added + test which prints the Diffie Hellman prime bits used. + +2003-02-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2003-02-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/gnutls/compat8.h, includes/gnutls/x509.h, + lib/gnutls.h.in.in, lib/gnutls_dh_primes.c, lib/gnutls_int.h, + lib/gnutls_privkey.c, lib/gnutls_ui.h, lib/gnutls_x509.c, + lib/x509/Makefile.am, lib/x509/compat.c, lib/x509/crl.c, + lib/x509/pkcs7.c, lib/x509/pkcs7.h, lib/x509/privkey.c, + lib/x509/x509.c, lib/x509/x509.h: Added some private key handling + functions. They are primitive enough for now. + +2003-02-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/gnutls_openpgp.c, libextra/gnutls_openpgp.h: some fixes + to compile. + +2003-02-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-extensions-05.txt, + doc/protocol/draft-ietf-tls-extensions-06.txt: added new extensions + draft. + +2003-02-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/gnutls/compat8.h, includes/gnutls/x509.h, + lib/auth_cert.c, lib/auth_cert.h, lib/gnutls.h.in.in, + lib/gnutls_cert.c, lib/gnutls_dh_primes.c, lib/gnutls_int.h, + lib/gnutls_ui.h, lib/gnutls_x509.c, lib/x509/compat.c, + lib/x509/crl.c, lib/x509/extensions.c, lib/x509/extensions.h, + lib/x509/mpi.c, lib/x509/mpi.h, lib/x509/pkcs7.c, lib/x509/pkcs7.h, + lib/x509/rfc2818_hostname.c, lib/x509/verify.c, lib/x509/verify.h, + lib/x509/x509.c, lib/x509/x509.h, lib/x509/xml.c, + tests/x509_test.c: gnutls_x509_certificate_* were renamed + gnutls_x509_crt_*. + +2003-02-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_int.h, lib/gnutls_ui.c, + lib/x509/x509.c, includes/gnutls/x509.h: added + gnutls_x509_certificate_get_fingerprint(). Untested yet. + +2003-02-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/compat8.h, lib/debug.c, lib/debug.h, + lib/gnutls.h.in.in, lib/gnutls_errors.c, lib/gnutls_global.c, + lib/gnutls_ui.c, lib/gnutls_ui.h, lib/x509/compat.h, + lib/x509/rfc2818_hostname.c, lib/x509/x509.c: renamed + gnutls_x509_fingerprint to gnutls_fingerprint. + +2003-02-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_dh_primes.c, src/prime.c: fixes in pkcs3 DH parameter + generation. + +2003-02-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/auth_srp_rsa.c: [no log message] + +2003-02-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/Makefile.am, includes/gnutls/Makefile.am, + includes/gnutls/compat8.h, lib/Makefile.am, lib/auth_cert.c, + lib/auth_cert.h, lib/auth_dhe.c, lib/auth_rsa.c, + lib/auth_rsa_export.c, lib/gnutls.h.in.in, lib/gnutls_cert.c, + lib/gnutls_cert.h, lib/gnutls_dh_primes.c, lib/gnutls_handshake.c, + lib/gnutls_rsa_export.c, lib/gnutls_ui.h, lib/gnutls_x509.c, + lib/gnutls_x509.h, lib/x509_extensions.c, lib/x509_extensions.h, + lib/x509_sig_check.c, lib/x509_verify.c, lib/x509_verify.h, + lib/x509/compat.c, lib/x509/extensions.c, lib/x509/pkcs7.h, + lib/x509/x509.h, libextra/auth_srp_rsa.c, libextra/gnutls_extra.h, + libextra/gnutls_openpgp.c, libextra/gnutls_openpgp.h, + src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, + src/serv-gaa.c, src/serv-gaa.h, src/serv.c, src/serv.gaa: Several + internal changes to use the new certificate API. CRL support is + complete. + +2003-02-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h, lib/x509/Makefile.am, lib/x509/common.c, + lib/x509/crl.c, lib/x509/crl.h, lib/x509/dn.c, lib/x509/dn.h, + lib/x509/pkcs7.c, lib/x509/verify.c, lib/x509/x509.c, + lib/x509/x509.h, tests/test20.pem, tests/test21.pem, + tests/x509_test.c: Certificate revocation support is almost + complete. + +2003-02-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h, lib/gnutls.h.in.in, lib/gnutls_int.h, + lib/x509/crl.c, lib/x509/crl.h, lib/x509/verify.c, + lib/x509/verify.h, lib/x509/x509.c, lib/x509/x509.h: added a crl + verification function (untested yet). + +2003-02-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/gnutls_openpgp.c, src/common.c: [no log message] + +2003-02-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h, lib/Makefile.am, lib/gnutls_x509.c, + lib/x509_b64.c, lib/x509/Makefile.am, lib/x509/compat.c, + lib/x509/compat.h, lib/x509/crl.c, lib/x509/dn.c, lib/x509/dn.h, + lib/x509/extensions.c, lib/x509/extensions.h, lib/x509/mpi.c, + lib/x509/mpi.h, lib/x509/rfc2818_hostname.c, lib/x509/verify.c, + lib/x509/verify.h, lib/x509/x509.c, lib/x509/x509.h, + tests/test2.pem, tests/x509_test.c: Added some new certificate + verification functions. + +2003-02-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/gnutls/x509.h, lib/gnutls_cert.c, lib/x509/dn.c: + [no log message] + +2003-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/gnutls_cert.c, lib/gnutls_cert.h, + lib/gnutls_privkey.c: removed the raw part in the gnutls_privkey + internal structure.. + +2003-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h, lib/x509/compat.c, lib/x509/extensions.c, + lib/x509/extensions.h, lib/x509/rfc2818_hostname.c, + lib/x509/x509.c, lib/x509/x509.h: Criticality of an X.509 extension + can now be extracted. + +2003-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/extensions.c, lib/x509/extensions.h: Added function to + extract the key usage extension from an X.509 certificate, and + combined some code. + +2003-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h, lib/x509_extensions.c, lib/x509/x509.c: + Added function to extract the key usage extension from an X.509 + certificate, and combined some code. + +2003-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am: [no log message] + +2003-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/gnutls/x509.h, lib/Makefile.am, + lib/gnutls_dh_primes.c, lib/gnutls_ui.h, lib/gnutls_x509.h, + lib/rfc2818_hostname.c, lib/x509_xml.c, lib/x509/Makefile.am, + lib/x509/compat.h, lib/x509/dn.h, lib/x509/rfc2818_hostname.c, + lib/x509/x509.h, lib/x509/xml.c: More stuff for the new certificate + API. + +2003-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/gnutls/x509.h, lib/Makefile.am, lib/gnutls_cert.c, + lib/gnutls_errors.h, lib/gnutls_errors_int.h, lib/gnutls_x509.c, + lib/x509/Makefile.am, lib/x509/compat.c, lib/x509/dn.c: The old + certificate parsing API was reimplemented over the new one. It will + stay in the 1.0.0 release for compatibility reasons. + +2003-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h, lib/Makefile.am, lib/gnutls_x509.h, + lib/x509/Makefile.am, lib/x509/common.h, lib/x509/crl.c, + lib/x509/pkcs7.c, lib/x509/pkcs7.h, lib/x509/x509.c: Added the new + PKCS7 parsing functions. + +2003-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509/x509.c, lib/x509/x509.h: Added the new certificate + handling functions. + +2003-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h, lib/Makefile.am, lib/gnutls_x509.c, + lib/gnutls_x509.h, lib/x509_xml.c, lib/x509/Makefile.am, + lib/x509/common.c, lib/x509/common.h, lib/x509/crl.c, + lib/x509/crl.h: Added the new certificate handling functions. + +2003-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * THANKS, includes/gnutls/x509.h, lib/Makefile.am, + lib/gnutls_x509.c, lib/gnutls_x509.h, lib/x509_extensions.c, + lib/x509_xml.c, lib/x509/Makefile.am, lib/x509/common.c, + lib/x509/common.h, lib/x509/crl.c, lib/x509/dn.c, lib/x509/dn.h: + More improvements in the CRL support, and the X.509 backend. Added a + function to get some parts of the DN using an OID. + +2003-02-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h, lib/gnutls.h.in.in, lib/gnutls_x509.c, + lib/gnutls_x509.h, lib/x509/crl.c, lib/x509/crl.h: CRL parsing + support is almost complete. + +2003-02-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/x509.h, lib/debug.c, lib/debug.h, + lib/gnutls_dh_primes.c, lib/gnutls_rsa_export.c, lib/gnutls_str.c, + lib/gnutls_str.h, lib/gnutls_x509.c, lib/gnutls_x509.h, + lib/x509/crl.c, lib/x509/dn.c, lib/x509/dn.h: Several fixes and + improvements in CRL support. + +2003-02-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, includes/Makefile.am, + includes/gnutls/Makefile.am, includes/gnutls/x509.h, + lib/Makefile.am, lib/gnutls_int.h, lib/gnutls_x509.c, + lib/x509/Makefile.am, lib/x509/crl.c, lib/x509/crl.h, + lib/x509/dn.c, lib/x509/dn.h: Added preliminary CRL support. This + will be under the new X.509 API. Other x509 functions will be + updated later. + +2003-02-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_dh_primes.c, lib/gnutls_pk.c: some fixes. There wasn't + any limitation in libtasn1 code... just my lazyness. + +2003-02-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/prime-gaa.c, src/prime-gaa.h, src/prime.c, src/prime.gaa: use + options to print DH parameters. + +2003-02-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_dh_primes.c, lib/gnutls_int.h, lib/gnutls_ui.h, + lib/minitasn1/coding.c, src/prime.c: + * Added gnutls_pkcs3_extract_dh_params() and + gnutls_pkcs3_export_dh_params() which extracts and export parameters + from and to PKCS#3 encoded structures. These were added to read + parameters generated using the openssl dhparam tool. + * The prime program was modified to also print the generated prime + and generator using the PKCS#3 format. + +2003-02-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/TODO, lib/Makefile.am, lib/auth_anon.c, lib/auth_dhe.c, + lib/gnutls.asn, lib/gnutls.h.in.in, lib/gnutls_alert.c, + lib/gnutls_anon_cred.c, lib/gnutls_asn1_tab.c, lib/gnutls_cert.c, + lib/gnutls_dh.h, lib/gnutls_dh_primes.c, lib/gnutls_errors.c, + lib/gnutls_errors_int.h, lib/gnutls_global.c, lib/gnutls_int.h, + lib/gnutls_mpi.c, lib/gnutls_rsa_export.c, lib/gnutls_state.c, + lib/gnutls_ui.h, src/serv-gaa.c, src/serv-gaa.h, src/serv.c, + src/serv.gaa: + * gnutls_dh_params_generate() and gnutls_rsa_params_generate() now + use gnutls_malloc() to allocate the output parameters. + + * Added gnutls_pkcs3_extract_dh_params() which extracts parameters + from PKCS#3 encoded structures. This was in order to read parameters + generated using the openssl dhparam tool. + + * Several changes in the temporary (DH/RSA) parameter codebase. No + DH parameters are now included in the library. Also a credentials + structure can now hold only one temporary parameter. + +2003-01-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_ui.c: more doc for the gnutls_set_dh_prime_bits(). + +2003-01-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/gnutls.sym, lib/gnutls_alert.c, + lib/gnutls_int_compat.c: removed backward compatibility functions + for 0.9.0 version. + +2003-01-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_errors.c, lib/gnutls_errors_int.h, + libextra/auth_srp.c: use RECEIVED_ILLEGAL_PARAMETER instead of + SRP_PROTOCOL_FAILURE, when the SRP protocol fails. + +2003-01-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_global.c: The gcrypt log handler is only set when we + are in debugging mode. + +2003-01-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_global.c: [no log message] + +2003-01-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/auth_rsa.c, lib/debug.c, lib/gnutls_algorithms.c, + lib/gnutls_compress_int.c, lib/gnutls_dh_primes.c, + lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_extensions.c, + lib/gnutls_global.c, lib/gnutls_rsa_export.c, lib/gnutls_x509.c, + src/cli.c: Added ability to send some messages back to the + application using the gnutls_global_set_log_function(). This is + quite experimental. + +2003-01-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_mpi.h, + libextra/auth_srp.c: Added check and error code for some SRP fatal + protocol failures. + +2003-01-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/tls_test.c: [no log message] + +2003-01-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/auth_srp_passwd.c, libextra/gnutls_srp.c: more cleanups. + +2003-01-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_alert.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h: + [no log message] + +2003-01-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_alert.c, lib/gnutls_auth_int.h, + lib/gnutls_handshake.c, libextra/auth_srp.c, + libextra/auth_srp_passwd.c, libextra/ext_srp.c, + libextra/gnutls_openpgp.c, src/cli.c: The library notifies the + application on empty and illegal SRP usernames, so that proper + notification (via an alert) is sent to the peer. Currently when the + SRP ciphersuite is advertized but no username is sent by the peer, + the library returns GNUTLS_E_EMPTY_SRP_USERNAME, and the alert + associated with this is GNUTLS_A_ACCESS_DENIED (to be changed when + the srp draft defines something more appropriate). + +2003-01-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/auth_srp_passwd.c: Some cleanups. + +2003-01-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, libextra/auth_srp_passwd.c, configure.in: [no log message] + +2003-01-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/Makefile.am, doc/scripts/Makefile.am: [no log message] + +2003-01-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c: [no log message] + +2003-01-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/tests.c, src/tls_test.c: improved srp detection + +2003-01-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_dh.h, lib/gnutls_dh_primes.c, + libextra/auth_srp.c, libextra/auth_srp_passwd.c, + libextra/auth_srp_passwd.h, libextra/gnutls_srp.c, src/cli.c, + src/tests.c: Improved the SRP support, to prevent attackers + guessing the available usernames by brute force. The g,n values sent + are now obtained by the password conf file. (they were static ones) + +2003-01-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/auth_anon.c, lib/auth_cert.c, + lib/auth_dh_common.c, lib/auth_dhe.c, lib/auth_rsa.c, + lib/auth_rsa_export.c, lib/debug.c, lib/ext_cert_type.c, + lib/ext_server_name.c, lib/gnutls_alert.c, lib/gnutls_algorithms.c, + lib/gnutls_auth.c, lib/gnutls_buffers.c, lib/gnutls_cert.c, + lib/gnutls_cipher.c, lib/gnutls_compress_int.c, + lib/gnutls_constate.c, lib/gnutls_datum.c, lib/gnutls_db.c, + lib/gnutls_dh.c, lib/gnutls_errors.c, lib/gnutls_extensions.c, + lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_mem.c, + lib/gnutls_mpi.c, lib/gnutls_pk.c, lib/gnutls_record.c, + lib/gnutls_rsa_export.c, lib/gnutls_state.c, lib/gnutls_ui.c, + lib/gnutls_x509.c, lib/x509_extensions.c, lib/x509_sig_check.c, + lib/x509_verify.c, lib/x509_xml.c: [no log message] + +2003-01-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2003-01-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: [no log message] + +2003-01-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libmcrypt.m4, includes/gnutls/compat4.h: [no log message] + +2003-01-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_alert.c, lib/gnutls_buffers.c, lib/gnutls_handshake.c, + lib/gnutls_handshake.h, lib/gnutls_record.c, lib/gnutls_record.h: + Prefixed with underscore some internal functions. + +2003-01-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2003-01-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/gnutls_errors.c, lib/gnutls_errors_int.h, + lib/gnutls_x509.c, lib/x509_b64.c, libextra/auth_srp.c, + libextra/auth_srp_passwd.c, libextra/gnutls_openpgp.c: + GNUTLS_E_PARSING_ERROR error code was replaced by + GNUTLS_E_BASE64_DECODING_ER and GNUTLS_E_SRP_PWD_PARSING_ERROR. + GNUTLS_E_ASCII_ARMOR_ERROR was also replaced by + GNUTLS_E_BASE64_DECODING_ERROR. + +2003-01-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/Makefile.am: Added some information about the SRP + patents in the documentation. + +2003-01-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_hash_int.c: [no log message] + +2003-01-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, acinclude.m4, configure.in, doc/README.CODING_STYLE, + lib/Makefile.am, lib/defines.h, lib/gnutls.h.in.in, lib/gnutls.sym, + lib/gnutls_auth.c, lib/gnutls_cipher_int.c, + lib/gnutls_cipher_int.h, lib/gnutls_hash_int.c, + lib/gnutls_hash_int.h, lib/gnutls_state.c, libextra/Makefile.am, + libextra/gnutls-extra.sym: Only the documented symbols are now + exported. + +2003-01-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c: If the certificate does not contain the + basicConstraints extension GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE + will be returned by gnutls_x509_extract_certificate_ca_status(). + +2003-01-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c, lib/x509_extensions.c: [no log message] + +2003-01-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_ui.h, lib/gnutls_x509.c: Added + gnutls_x509_extract_certificate_ca_status() which returns the CA + status of the given certificate. + +2003-01-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2003-01-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in: [no log message] + +2003-01-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/gnutls_compress_int.c, + lib/minitasn1/Makefile.am, libextra/Makefile.am: If liblzo is found + in the system then libgnutls-extra will depend on it, instead of + including minilzo. + +2002-12-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_mpi.c: Added a test for null (zero) integers in MPI + scanning. + +2002-12-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/tests.c, src/tls_test.c: some fixes in the gnutls-cli-debug + program + +2002-12-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/gnutls_openpgp.c: Added missing stub function. + +2002-12-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * tests/Makefile: [no log message] + +2002-12-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/minitasn1/Makefile.am, lib/minitasn1/README, configure.in: + [no log message] + +2002-12-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/Makefile.am: [no log message] + +2002-12-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * Makefile.am, NEWS, configure.in, doc/README.CVS, lib/Makefile.am, + lib/defines.h, lib/minitasn1/coding.c, lib/minitasn1/decoding.c, + lib/minitasn1/der.h, lib/minitasn1/element.c, + lib/minitasn1/element.h, lib/minitasn1/errors.c, + lib/minitasn1/errors.h, lib/minitasn1/errors_int.h, + lib/minitasn1/gstr.c, lib/minitasn1/gstr.h, lib/minitasn1/int.h, + lib/minitasn1/libtasn1.h, lib/minitasn1/mem.h, + lib/minitasn1/parser_aux.c, lib/minitasn1/parser_aux.h, + lib/minitasn1/structure.c, lib/minitasn1/structure.h: [no log + message] + +2002-12-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: depends on libgcrypt 1.1.11 + +2002-12-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_anon.c, lib/auth_dhe.c, lib/auth_rsa.c, + lib/auth_rsa_export.c, lib/gnutls_auth.h, lib/gnutls_handshake.c, + lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_kx.h, + libextra/auth_srp.c, libextra/auth_srp.h, libextra/auth_srp_rsa.c: + Dropped the support for the client key exchange message 0, and + server key exchange message 2. + +2002-12-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/debug.c, lib/gnutls_mpi.h, + lib/gnutls_record.c, libextra/auth_srp.c: Finished SRP-6 stuff. It + should work fine now. + +2002-12-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/auth_srp.c, libextra/auth_srp_rsa.c, libextra/ext_srp.c, + libextra/gnutls_srp.c, libextra/gnutls_srp.h: First part of SRP-6 + support. Follows draft-ietf-tls-srp-04 and does not need the second + key exchange part. Does not work yet. + +2002-12-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-compression-03.txt, + doc/protocol/draft-ietf-tls-compression-04.txt, + doc/protocol/draft-ietf-tls-srp-03.txt, + doc/protocol/draft-ietf-tls-srp-04.txt: [no log message] + +2002-12-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/gnutls/extra.h, libextra/gnutls_openpgp.c: Added + gnutls_openpgp_extract_key_name_string() which returns a single + string for a pgp user id. + +2002-12-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/serv.c: updated some example and the server to use the new + gnutls_malloc() in callbacks. + +2002-12-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c, lib/gnutls_ui.h: Added the + gnutls_x509_extract_dn_string() function. + +2002-12-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/README.CODING_STYLE, NEWS: [no log message] + +2002-12-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_errors.c: [no log message] + +2002-12-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * README, doc/TODO: [no log message] + +2002-12-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_mem.c: [no log message] + +2002-12-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/gnutls_openpgp.c: [no log message] + +2002-12-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2002-12-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in: [no log message] + +2002-12-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/serv.c: updated to include a callback for receiving openpgp + keys, using libopencdk. + +2002-12-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/ext_cert_type.c, lib/gnutls_errors.c, + lib/gnutls_errors_int.h, lib/gnutls_sig.c, lib/x509_b64.c, + libextra/auth_srp_sb64.c: some cleanups + +2002-12-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/gnutls_openpgp.c: minor cleanups + +2002-12-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/ext_server_name.c: some fixes in server_name extension + +2002-12-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/serv-gaa.c, src/serv-gaa.h, src/serv.c, src/serv.gaa: [no log + message] + +2002-12-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls.h.in.in, lib/gnutls_db.c, lib/gnutls_global.c, + lib/gnutls_mem.c, lib/x509_b64.c, libextra/auth_srp_sb64.c, + libextra/gnutls_srp.c: Exported the more convenient gnutls_malloc() + and gnutls_free() functions. Actually pointers to functions. + +2002-12-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_global.c, lib/gnutls.h.in.in: [no log message] + +2002-12-07 Timo Schulz <twoaday@gnutls.org> + + * libextra/gnutls_openpgp.c: + + Some bug fixes for the OpenPGP code. + +2002-12-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2002-12-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_db.c, libextra/gnutls_srp.c: [no log message] + +2002-12-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/x509_b64.c, libextra/auth_srp_sb64.c: Changed the + semantics of gnutls_pem_base64_encode_alloc() and + gnutls_pem_base64_decode_alloc(). In the default case were the + gnutls library is used with malloc/realloc/free, these are binary + compatible. + + They now require the returned data to be freed using the + gnutls_global_get_free_function(). + +2002-12-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/extra.h, lib/gnutls_int.h, lib/gnutls_ui.h, + libextra/auth_srp_passwd.c, libextra/gnutls_srp.c, + libextra/gnutls_srp.h: some cleanups. + +2002-12-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/TODO, lib/gnutls.h.in.in, lib/gnutls_datum.c, + lib/gnutls_datum.h, lib/gnutls_db.c, lib/gnutls_global.c, + lib/gnutls_mem.c, lib/gnutls_mem.h, lib/gnutls_state.c, + lib/gnutls_str.c, lib/gnutls_str.h, libextra/auth_srp_passwd.c, + libextra/auth_srp_passwd.h, libextra/gnutls_srp.c, src/cli.c, + src/serv.c: Added the new functions gnutls_get_malloc_function(), + gnutls_get_free_function(). Also changed the way callback functions + must allocate data. They now need to use these functions, instead of + just calling malloc(). + +2002-12-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/auth_srp.c, libextra/auth_srp_passwd.c, + libextra/auth_srp_passwd.h, libextra/gnutls_srp.c: more updates in + the SRP parameter callback. + +2002-12-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, includes/gnutls/extra.h: [no log message] + +2002-12-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/ext_srp.c, libextra/gnutls_srp.c: Some updates in the + srp codebase, to detect illegal usernames etc. + +2002-12-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_errors.c, lib/gnutls_errors_int.h, + lib/gnutls_extensions.c, lib/gnutls_handshake.c: added error code + to report illegal srp usernames. Some fixes in the extension parsing + to report fatal errors. + +2002-12-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509_extensions.c, lib/x509_verify.c: some optimizations in + string handling of the x.509 asn.1 parsers. + +2002-12-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * tests/openpgp_test.c: [no log message] + +2002-12-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_global.c: [no log message] + +2002-12-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: depends on opencdk 0.3.5 + +2002-12-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_extensions.c: Corrected bug in extension parsing. + +2002-12-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/gnutls_extra.c: [no log message] + +2002-12-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2002-12-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/extra.h, libextra/gnutls_srp.c: some updates on + srp documentation. + +2002-12-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, + lib/auth_rsa_export.c, lib/ext_cert_type.c, lib/ext_server_name.c, + lib/gnutls_alert.c, lib/gnutls_algorithms.c, + lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_buffers.c, + lib/gnutls_cert.c, lib/gnutls_cipher.c, lib/gnutls_compress.c, + lib/gnutls_compress_int.c, lib/gnutls_constate.c, + lib/gnutls_datum.c, lib/gnutls_datum.h, lib/gnutls_db.c, + lib/gnutls_dh.c, lib/gnutls_dh_primes.c, lib/gnutls_global.c, + lib/gnutls_handshake.c, lib/gnutls_kx.c, lib/gnutls_mem.c, + lib/gnutls_mpi.c, lib/gnutls_num.c, lib/gnutls_pk.c, + lib/gnutls_priority.c, lib/gnutls_privkey.c, lib/gnutls_random.c, + lib/gnutls_record.c, lib/gnutls_rsa_export.c, lib/gnutls_session.c, + lib/gnutls_session_pack.c, lib/gnutls_sig.c, lib/gnutls_state.c, + lib/gnutls_str.c, lib/gnutls_ui.c, lib/gnutls_v2_compat.c, + lib/gnutls_x509.c, lib/x509_extensions.c, lib/x509_sig_check.c, + libextra/auth_srp.c, libextra/auth_srp_passwd.c, + libextra/auth_srp_rsa.c, libextra/ext_srp.c, + libextra/gnutls_extra.c, libextra/gnutls_openpgp.c, + libextra/gnutls_srp.c: Cleanups. Prefixed some internal function + with underscore. + +2002-12-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2002-12-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c: more fixes in + gnutls_x509_extract_certificate_dn_string() + +2002-12-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_dh_primes.c: [no log message] + +2002-12-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/gnutls/extra.h, lib/gnutls_dh.h, + lib/gnutls_dh_primes.c, libextra/auth_srp.c, libextra/auth_srp.h, + libextra/auth_srp_passwd.c, libextra/auth_srp_passwd.h, + libextra/gnutls_openpgp.c, libextra/gnutls_srp.c, + libextra/gnutls_srp.h, src/common.c: Added the function + gnutls_srp_server_set_credentials_function() to allow retrieving SRP + parameters from an external backend - other than password files. + +2002-12-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/auth_cert.c, libextra/gnutls_extra.h, + libextra/gnutls_openpgp.c, libextra/gnutls_openpgp.h: Enabled the + OpenPGP key retrieval callback function (untested yet). + +2002-12-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/Makefile.am, libextra/crypt.c, libextra/crypt.h, + libextra/crypt_srpsha1.c, libextra/crypt_srpsha1.h: removed all + files related to srpsha1 encoding. The are not needed any more. + +2002-12-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2002-12-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/gnutls/extra.h, lib/x509_b64.c, + libextra/auth_srp_sb64.c, libextra/crypt.c, + libextra/crypt_srpsha1.c, libextra/gnutls_srp.c, + libextra/gnutls_srp.h, src/common.c, src/crypt-gaa.c, src/crypt.c, + src/crypt.gaa: Added the functions: + gnutls_srp_verifier() + gnutls_srp_base64_encode() + gnutls_srp_base64_decode() + + and modified the gnutls-srpcrypt, to use the exported functions. + +2002-12-01 Timo Schulz <twoaday@gnutls.org> + + * libextra/gnutls_openpgp.c: + + Some new code for the OpenPGP lib. + +2002-12-01 Timo Schulz <twoaday@gnutls.org> + + * tests/openpgp_test.c: + + Some enhancements for the OpenPGP test program. + +2002-11-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in: [no log message] + +2002-11-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2002-11-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_int.h, lib/gnutls_x509.c: + gnutls_x509_extract_certificate_dn_string() now behaves as described + in RFC2253. + +2002-11-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/README.CODING_STYLE, includes/gnutls/extra.h, + lib/gnutls_int.h: some changes in the callback function behaviour. + +2002-11-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am: linked against libgcrypt (I saw that in debian) + +2002-11-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/README.CODING_STYLE, doc/README.CVS: [no log message] + +2002-11-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/README.CODING_STYLE: [no log message] + +2002-11-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/compat.h: [no log message] + +2002-11-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, + lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_errors.c, + lib/gnutls_extensions.c, libextra/auth_srp_rsa.c, + libextra/gnutls_extra.c: Several cleanups and elimination of + warnings. + +2002-11-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/compat4.h, lib/ext_server_name.c, + lib/gnutls_int_compat.c: updated documentation to include record + layer weaknesses and counter-measures, and the supported TLS + extensions. + +2002-11-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/Makefile.am, includes/gnutls/Makefile.am: [no log + message] + +2002-11-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/compat4.h, lib/gnutls.h.in.in: compat4.h was + added, and is included by default in gnutls.h. + +2002-11-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/compat.h, lib/gnutls_algorithms.c, + lib/gnutls_algorithms.h, lib/gnutls_cert.h, lib/gnutls_sig.c, + lib/gnutls_ui.h, lib/gnutls_x509.c, lib/rfc2818_hostname.c, + libextra/gnutls_extra.c: Moved the GNUTLS_X509KEY_* to + gnutls_cert.h and renamed them to KEY_*. Improved the checking of + key usage. + +2002-11-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_algorithms.c: added the AES ciphersuites for + certificate srp authentication. + +2002-11-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/README.autoconf, doc/TODO: [no log message] + +2002-11-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_alert.c, lib/gnutls_algorithms.c, + lib/gnutls_cert.c, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_x509.c, libextra/auth_srp_rsa.c, libextra/ext_srp.c, + libextra/gnutls_extra.c, src/cli.c, src/common.c, src/common.h, + src/serv.c: Added support for the DSS certificate SRP authenticated + cipher suites (currently only with 3DES cipher). Cleaned up the + client and server code, which was duplicated. + +2002-11-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/auth_cert.c, lib/gnutls.h.in.in, + lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, + lib/gnutls_auth.c, lib/gnutls_auth_int.h, lib/gnutls_cert.c, + lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_v2_compat.c, + lib/gnutls_x509.c, libextra/Makefile.am, libextra/auth_srp.c, + libextra/auth_srp.h, libextra/auth_srp_rsa.c, libextra/ext_srp.c, + libextra/gnutls_extra.c, libextra/gnutls_extra.h, src/cli.c, + src/common.c, src/serv.c: Added certificate authenticated SRP + cipher suites. + +2002-11-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c: [no log message] + +2002-11-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_int_compat.c: added compatibility function for the + openpgp_keyserver. + +2002-11-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/examples/Makefile.am, includes/gnutls/extra.h, + lib/gnutls_int.h: updated pgp key retrieval callback and added + example. + +2002-11-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, doc/Makefile.am, doc/examples/Makefile.am: + example programs are now located in doc/examples directory. + +2002-11-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_alert.c, lib/gnutls_alert.h: Added + some new alert codes from the extensions draft. + +2002-11-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_ui.c: [no log message] + +2002-11-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in: [no log message] + +2002-11-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, includes/Makefile.am, includes/gnutls/Makefile.am: [no log + message] + +2002-11-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_anon.c, lib/auth_cert.c, lib/auth_dh_common.c, + lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, + lib/gnutls_auth.c, lib/gnutls_cert.c, lib/gnutls_handshake.c, + lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_session_pack.c, + lib/gnutls_state.c, lib/gnutls_ui.c, lib/gnutls_v2_compat.c, + lib/gnutls_x509.c, libextra/auth_srp.c, libextra/auth_srp_passwd.c, + libextra/ext_srp.c: The session->gnutls_key was renamed to + session->key. + +2002-11-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/compat.h, includes/gnutls/extra.h: added compat.h + which has definitions for compatibility with older (0.4.x and 0.5.y, + y<5) versions. + +2002-11-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_ui.h: [no log message] + +2002-11-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/extra.h, lib/gnutls_int.h: The + gnutls_openpgp_recv_key_func() callback function now accepts a key + fingerprint, instead of the key id. + +2002-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c, src/common.h, src/serv.c, src/tests.c, src/tests.h, + src/tls_test.c: [no log message] + +2002-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c, src/serv.c, src/tests.c: cleanups + +2002-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/extra.h, lib/gnutls.h.in.in: dropped source + backwards compatibility + +2002-11-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, includes/gnutls/extra.h, lib/gnutls_int.h, + libextra/gnutls_openpgp.c: Added callback for OpenPGP key + retrieval. + +2002-11-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-rfc2246-bis-01.txt, + doc/protocol/draft-ietf-tls-rfc2246-bis-02.txt: added new + rfc2246bis draft + +2002-11-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * opencdk.m4: updated url for opencdk + +2002-11-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_algorithms.c, lib/gnutls_buffers.c, lib/gnutls_db.c, + lib/gnutls_global.c, lib/gnutls_state.c, lib/gnutls_x509.c: some + updated in the documentation + +2002-11-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2002-11-04 Timo Schulz <twoaday@gnutls.org> + + * libextra/gnutls_openpgp.c: + + Applied patch to make the error handling with keyservers more + easier. + +2002-11-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_alert.c, lib/gnutls_alert.h, + lib/gnutls_errors_int.h: Added new alert (certificate unobtainable) + from draft-ietf-tls-extensions. + +2002-11-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in: depends on opencdk 0.3.2 + +2002-11-04 Timo Schulz <twoaday@gnutls.org> + + * libextra/gnutls_openpgp.c: + + Some debug code for the OpenPGP part. + +2002-11-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/common.c: [no log message] + +2002-11-03 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_errors.c, lib/gnutls_errors_int.h, + libextra/gnutls_openpgp.c: + + Use the old error codes for OpenPGP again. + +2002-11-03 Timo Schulz <twoaday@gnutls.org> + + * lib/auth_cert.c: + + Fixed an off-by-one bug for OpenPGP fingerprint handling. + +2002-11-03 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_errors_int.h: + + Corrected error number (the old was reserved). + +2002-11-03 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_errors.c, lib/gnutls_errors_int.h, + libextra/gnutls_openpgp.c: + + Unification for the OpenPGP error code. + +2002-11-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cert.c: corrected behaviour of verification in openpgp + keys. + +2002-11-03 Timo Schulz <twoaday@gnutls.org> + + * libextra/gnutls_openpgp.c: + + Set the OpenPGP certificate status to GNUTLS_CERT_NOT_TRUSTED if the + function failed. + +2002-11-03 Timo Schulz <twoaday@gnutls.org> + + * libextra/gnutls_openpgp.c, tests/openpgp_test.c: + + Bug fix for the OpenPGP secret key order. + +2002-11-03 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_errors.c, lib/gnutls_errors_int.h, + libextra/gnutls_openpgp.c: + + Add OpenPGP error description + +2002-11-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_sig.c, + lib/gnutls_x509.c: Renamed GNUTLS_E_X509_KEY_USAGE_VIOLATION to + GNUTLS_E_KEY_USAGE_VIOLATION, in order to apply to PGP keys as well. + +2002-11-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_pk.c, + lib/gnutls_sig.c, lib/x509_sig_check.c, src/cli-gaa.c, + src/cli-gaa.h, src/cli.c, src/cli.gaa, src/common.c: Added some new + error codes and updated client. + +2002-11-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/gnutls_openpgp.c: [no log message] + +2002-11-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: [no log message] + +2002-11-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_errors.c: [no log message] + +2002-11-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/gnutls_openpgp.c: fixed stub + +2002-11-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2002-11-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/ext_cert_type.c, lib/ext_max_record.c, + lib/ext_server_name.c, lib/gnutls_alert.c, lib/gnutls_buffers.c, + lib/gnutls_cert.c, lib/gnutls_dh_primes.c, lib/gnutls_errors.c, + lib/gnutls_errors_int.h, lib/gnutls_handshake.c, + lib/gnutls_record.c, lib/gnutls_rsa_export.c, + lib/gnutls_session_pack.c, lib/gnutls_ui.c, lib/x509_b64.c, + libextra/gnutls_openpgp.c, libextra/gnutls_srp.c: Combined + GNUTLS_E_INVALID_PARAMETERS wich GNUTLS_E_INVALID_REQUEST. + Introduced GNUTLS_E_SHORT_MEMORY_BUFFER. + +2002-11-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c, lib/x509_xml.c: Fixed some memory leaks which + may occured on error cases. + +2002-11-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_x509.c, src/common.c: + gnutls_x509_extract_certificate_dn_string() was rewritten. + +2002-11-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am: [no log message] + +2002-11-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c: Added a check for dn extraction failure in + gnutls_x509_extract_certificate_dn_string(). + +2002-11-01 Timo Schulz <twoaday@gnutls.org> + + * libextra/gnutls_openpgp.c, libextra/gnutls_openpgp.h: + + Adjust the keydb search code. + +2002-10-29 Timo Schulz <twoaday@gnutls.org> + + * configure.in: + + Bump OpenCDK version to 0.3.0 + +2002-10-29 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_errors_int.h, libextra/gnutls_openpgp.c, + libextra/gnutls_openpgp.h, tests/Makefile, tests/openpgp_test.c: + + Add new regression test for OpenPGP. New code for the OpenCDK 0.3.0 + version. A new error code for the OpenPGP part. + +2002-10-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_buffer.h: added missing file + +2002-10-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, + lib/auth_rsa_export.c, lib/gnutls_buffers.c, lib/gnutls_cert.c, + lib/gnutls_cipher_int.c, lib/gnutls_constate.c, + lib/gnutls_errors.c, lib/gnutls_errors_int.h, + lib/gnutls_handshake.c, lib/gnutls_pk.c, lib/gnutls_record.c, + lib/gnutls_rsa_export.c, lib/gnutls_state.c, lib/gnutls_ui.c, + lib/gnutls_x509.c, lib/x509_verify.c, lib/x509_xml.c, + libextra/auth_srp_passwd.c, libextra/gnutls_openpgp.c: + GNUTLS_E_UNKNOWN_ERROR was removed, and was replaced by + GNUTLS_E_INTERNAL_ERROR. + +2002-10-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_errors.c: [no log message] + +2002-10-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/scripts/Makefile.am: [no log message] + +2002-10-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_buffers.c, lib/gnutls_buffers.h, + lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_record.c, + lib/gnutls_state.c, lib/gnutls_str.c, lib/gnutls_str.h: + Optimizations in buffering code, which reduce the number of + malloc/realloc calls. + +2002-10-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_errors.c, src/retcodes.c: The error code table now + contains all the error codes sorted. + +2002-10-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/gnutls_errors.c, lib/gnutls_pk.c, + src/Makefile.am, src/retcodes.c: Documented error codes in an + appendix. This documentation is generated automatically using the + retcodes program. + +2002-10-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/scripts/gdoc: [no log message] + +2002-10-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/scripts/gdoc, doc/scripts/sort1.pl: Added script to sort + function names in function reference. + +2002-10-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_errors.c: [no log message] + +2002-10-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c, lib/gnutls_cipher.c, lib/gnutls_constate.c, + lib/gnutls_errors.c, lib/gnutls_errors_int.h, + lib/gnutls_handshake.c, lib/gnutls_pk.c, lib/gnutls_v2_compat.c: + Added more descriptive error codes to be returned by + gnutls_strerror(). Removed old and unused error codes. + +2002-10-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/tls_test-gaa.c, src/tls_test-gaa.h, src/tls_test.c, + src/tls_test.gaa: gnutls-cli-debug now accepts one hostname only + +2002-10-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa: gnutls-cli + now accepts one hostname only + +2002-10-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-compression-02.txt, + doc/protocol/draft-ietf-tls-compression-03.txt: [no log message] + +2002-10-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO, lib/Makefile.am, lib/auth_anon.c, lib/auth_dh_common.c, + lib/auth_dh_common.h, lib/auth_dhe.c, lib/rfc2818_hostname.c: + Merged common stuff in DHE and anonymous DH key exchange. + +2002-10-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: Example programs found in the documentation can now be + generated by running "make examples" in doc/tex directory. + +2002-10-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/Makefile.am, THANKS: Fixed interlibrary dependencies. By + Ivo Timmermans. This requires the debian libtool 1.4.2-7.1 + +2002-10-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/ext_max_record.c, lib/ext_server_name.c: cleanups in the + server name extension. + +2002-10-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, src/cli.c: Some fixes in 'gnutls-cli' client program to + prevent some segmentation faults at exit. + +2002-10-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2002-10-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_algorithms.c: ZLIB's number was changed according to + draft-ietf-tls-compression-02 + +2002-10-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/auth_anon.c, lib/auth_cert.c, + lib/auth_cert.h, lib/auth_dhe.c, lib/auth_rsa.c, + lib/auth_rsa_export.c, lib/defines.h, lib/ext_cert_type.c, + lib/ext_cert_type.h, lib/ext_max_record.c, lib/ext_max_record.h, + lib/ext_server_name.c, lib/ext_server_name.h, lib/gnutls.h.in.in, + lib/gnutls_alert.c, lib/gnutls_alert.h, lib/gnutls_algorithms.c, + lib/gnutls_auth.c, lib/gnutls_auth.h, lib/gnutls_buffers.c, + lib/gnutls_buffers.h, lib/gnutls_cert.c, lib/gnutls_cipher.c, + lib/gnutls_cipher.h, lib/gnutls_compress_int.c, + lib/gnutls_compress_int.h, lib/gnutls_db.c, lib/gnutls_dh_primes.c, + lib/gnutls_extensions.h, lib/gnutls_global.c, + lib/gnutls_handshake.c, lib/gnutls_hash_int.c, + lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_mem.c, + lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_record.c, + lib/gnutls_rsa_export.c, lib/gnutls_session_pack.c, + lib/gnutls_sig.c, lib/gnutls_sig.h, lib/gnutls_state.c, + lib/gnutls_ui.c, lib/gnutls_ui.h, lib/gnutls_x509.c, + lib/gnutls_x509.h, lib/rfc2818_hostname.c, lib/x509_b64.c, + lib/x509_b64.h, lib/x509_sig_check.c, libextra/auth_srp.c, + libextra/auth_srp.h, libextra/auth_srp_passwd.c, + libextra/auth_srp_passwd.h, libextra/auth_srp_sb64.c, + libextra/crypt.c, libextra/crypt_srpsha1.c, libextra/ext_srp.c, + libextra/ext_srp.h, libextra/gnutls_openpgp.c: several fixes in the + codebase, mostly in signed/unsigned checkings. + +2002-10-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/ext_max_record.c, lib/ext_max_record.h: Corrected some types, + to work in 64 bits machines. Suggested by Ivo Timmermans + <ivo@o2w.nl>. + +2002-10-12 Andrew McDonald <admcd@gnutls.org> + + * includes/gnutls/openssl.h: Enclose in extern "C" (from Debian bug + #163394). + +2002-10-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/serv.c: now does not require carriage return + +2002-10-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/ext_server_name.c: Fixes (or not) in server name extension + parsing + +2002-10-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/ext_server_name.c, lib/gnutls_int.h, + lib/gnutls_priority.c, src/serv.c: Improved the server name + extension. Resumed sessions can now use it. + +2002-10-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/Makefile.am, lib/ext_server_name.c, + lib/ext_server_name.h, lib/gnutls.h.in.in, lib/gnutls_extensions.c, + lib/gnutls_int.h, src/cli.c, src/common.c, src/serv.c: Added server + name extension, from draft-ietf-tls-extension-05. + +2002-10-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-compression-01.txt, + doc/protocol/draft-ietf-tls-compression-02.txt, + doc/protocol/draft-ietf-tls-rfc2246-bis-01.txt: [no log message] + +2002-10-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/rfc2818_hostname.c: more documentation updates + +2002-10-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, src/serv.c: Separated alert checking from the + example programs, to make them cleaner. Added an example which + demonstrates the alert checking. + +2002-10-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: last minute changes for 0.5.9 release. + +2002-10-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/Makefile.am, lib/gnutls_ui.h, lib/rfc2818_hostname.c: + Added int gnutls_x509_check_certificates_hostname() which check + whether the given hostname matches the owner of the given X.509 + certificate. + +2002-10-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/gnutls_extensions.c, lib/x509_xml.c: + cleanups + +2002-10-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_priority.c: [no log message] + +2002-10-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c: [no log message] + +2002-10-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls.h.in.in, lib/gnutls_priority.c, src/cli-gaa.c: + Added gnutls_set_default_priority() and + gnutls_set_default_export_priority() functions, to avoid calling all + the *_priority() functions if the defaults are ok. + +2002-10-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c: [no log message] + +2002-10-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_ui.h, lib/gnutls_x509.c: Added + gnutls_x509_extract_certificate_dn_string() which returns the peer's + Distinguished name in a single string. + +2002-10-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/TODO, lib/gnutls.h.in.in, lib/gnutls_auth.c, + lib/gnutls_errors.h, lib/gnutls_handshake.c, lib/gnutls_kx.c, + src/cli.c, src/cli.gaa: several cleanups + +2002-10-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa: Changes in + gnutls-cli, to allow testing of starttls implementations. + +2002-10-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_ui.c, lib/gnutls_ui.h: rolled back addition of + certificate_get_our_issuer() function. + +2002-10-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/extra.h, libextra/gnutls_extra.c, + libextra/libgnutls-extra.m4: Corrected the broken detection of + libgnutls-extra. Bug reported by Ivo Timmermans. + +2002-10-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2002-10-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/TODO, lib/gnutls_state.c, lib/gnutls_ui.c, + lib/gnutls_ui.h: Corrected bug which prevented + gnutls_certificate_get_ours() from working. Added + gnutls_certificate_get_our_issuer() function. + +2002-10-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_privkey.c, lib/gnutls_privkey.h, lib/gnutls_ui.h, + lib/gnutls_x509.c, lib/x509_b64.c: Improved + gnutls_x509_extract_key_pk_algorithm(), which can now distinguish + DSA keys from unknown keys. + +2002-10-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/gnutls_buffers.c: some fixes to compile with + gcc-2.95. + +2002-10-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2002-10-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2002-10-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, doc/TODO, lib/gnutls.h.in.in, lib/gnutls_privkey.c, + lib/gnutls_privkey.h, lib/gnutls_ui.h: Added function to extract + the public key algorithm of a DER encoded private key. + +2002-09-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-compression-00.txt, + doc/protocol/draft-ietf-tls-compression-01.txt: [no log message] + +2002-09-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/auth_rsa.c, lib/gnutls_cert.c: [no log + message] + +2002-09-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/gnutls_cert.c: [no log message] + +2002-09-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_global.c: enabled error messages of libgcrypt in debug + mode + +2002-09-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/defines.h, lib/gnutls.h.in.in, + lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, + libextra/Makefile.am, libextra/gnutls_extra.c, libextra/lzoconf.h, + libextra/minilzo.c, libextra/minilzo.h, src/cli.c, src/serv.c, + lib/gnutls_compress_int.c, lib/gnutls_errors.c, + lib/gnutls_errors_int.h, lib/gnutls_handshake.c, lib/gnutls_int.h: + Added support for the LZO compression library in gnutls-extra. Some + fixes in the hello message parsing. + +2002-09-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls.h.in.in, lib/gnutls_state.c: [no log message] + +2002-09-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_buffers.c, lib/gnutls_handshake.c, + lib/gnutls_int.h, lib/gnutls_int_compat.c, lib/gnutls_state.c: + replaced gnutls_handshake_get_direction() with + gnutls_record_get_direction(). + +2002-09-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * README, src/serv.c: [no log message] + +2002-09-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_record.c: [no log message] + +2002-09-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_global.c: [no log message] + +2002-09-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, doc/TODO, lib/gnutls_alert.c, src/crypt.c: [no log + message] + +2002-09-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * README, lib/gnutls.h.in.in, lib/gnutls_alert.c: Added a new + function to convert from an error to an alert code. + +2002-09-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_alert.c, lib/gnutls_algorithms.c, + lib/gnutls_algorithms.h, lib/gnutls_compress_int.c, + lib/gnutls_handshake.c, lib/gnutls_int.h: Improved support for + zlib. + +2002-09-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-srp-02.txt, + doc/protocol/draft-ietf-tls-srp-03.txt: [no log message] + +2002-09-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-compression-00.txt, + doc/protocol/draft-ietf-tls-extensions-03.txt, + doc/protocol/draft-ietf-tls-extensions-05.txt: updated drafts + +2002-09-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2002-09-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, src/cli.c, tests/x509_test.c: [no log message] + +2002-09-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_db.c, lib/gnutls_dh_primes.c, + lib/gnutls_rsa_export.c: Corrected bug in gnutls_dh_params_set(). + Corrected bug in session resuming code of server side. + +2002-09-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/ext_cert_type.c, lib/ext_max_record.c, libextra/ext_srp.c: + some cleanups in the extension parsing + +2002-09-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * acconfig.h: [no log message] + +2002-09-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/scripts/gdoc: Added Simon Josefsson's patch for gdoc. Now + gdoc supports texinfo output. + +2002-09-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, buildconf, configure.in, libmcrypt.m4, lib/gnutls.h.in.in, + lib/gnutls_global.c, libextra/gnutls_extra.c: changes for autoconf + 2.50 + +2002-09-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, src/serv.c: Removed dependency on libgdbm + library. + +2002-09-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_dhe.c, lib/auth_rsa_export.c, lib/gnutls_algorithms.c, + lib/gnutls_compress_int.c, lib/gnutls_extensions.c, + lib/gnutls_handshake.c, lib/gnutls_mem.c, lib/gnutls_mem.h, + lib/gnutls_str.c, lib/gnutls_x509.c, lib/x509_xml.c, + libextra/gnutls_openpgp.c, libextra/gnutls_srp.c: Some fixes for + the used realloc() function. Now we have gnutls_realloc_fast() which + frees the given pointer if the new allocation failed. + +2002-09-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/gnutls_num.h, lib/gnutls_str.c: updated string + functions + +2002-09-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_rsa_export.c: [no log message] + +2002-09-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/common.c: [no log message] + +2002-09-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: last changes for 0.5.6 release + +2002-09-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/x509_xml.c, libextra/gnutls_openpgp.c, src/common.c, + src/gnutls-http-serv: added versioning in the XML output of + certificate functions. + +2002-09-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO, NEWS, lib/gnutls_global.h: [no log message] + +2002-09-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * tests/Makefile, tests/Makefile.am, tests/Makefile.in: [no log + message] + +2002-09-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * tests/test22.pem: [no log message] + +2002-09-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * Makefile.am, configure.in, tests/Makefile, tests/Makefile.am, + tests/Makefile.in, tests/ca.pem, tests/test1.pem, tests/test10.pem, + tests/test13.pem, tests/test2.pem, tests/test23.pem, + tests/test24.pem, tests/test26.pem, tests/test3.pem, + tests/x509_test.c: Added more tests for the X.509 certificate + validation. These tests are now only included in the CVS not the + distribution. + +2002-09-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/auth_srp.c: [no log message] + +2002-09-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_int.h: [no log message] + +2002-09-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_extensions.c, lib/gnutls_int.h: Corrected + extension type checks which used an 8 bit extension size, instead of + 16 bits. + +2002-09-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/auth_srp.c, libextra/gnutls_srp.c: Corrected the SRP 'u' + generation, and the size part of 's' changed to 8bits. + +2002-09-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_anon.c, lib/auth_anon.h, lib/auth_cert.c, + lib/auth_cert.h, lib/auth_dhe.c, lib/auth_rsa.c, + lib/auth_rsa_export.c, lib/gnutls.h.in.in, lib/gnutls_anon_cred.c, + lib/gnutls_auth.c, lib/gnutls_cert.c, lib/gnutls_handshake.c, + lib/gnutls_ui.c, lib/gnutls_x509.c, libextra/auth_srp.c, + libextra/auth_srp.h, libextra/auth_srp_passwd.c, + libextra/ext_srp.c, libextra/gnutls_extra.h, + libextra/gnutls_openpgp.c, libextra/gnutls_openpgp.h, + libextra/gnutls_srp.c, src/cli.c, src/serv.c, src/tests.c, + src/tls_test.c: [no log message] + +2002-09-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, THANKS, configure.in, libextra/ext_srp.c: [no log message] + +2002-09-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/auth_srp.c: corrected the SRP key exchange (bugs pointed + out by D. Taylor) + +2002-09-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/ext_cert_type.c, lib/gnutls_int.h, lib/gnutls_x509.c: + corrected the cert_type extension. (bug pointed out by D. Taylor) + +2002-09-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_priority.c, lib/gnutls_priority.h: gnutls_list + replaced by const int* + +2002-09-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, tests/Makefile.am: last changes for 0.5.5 release + +2002-09-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-openpgp-keys-02.txt: [no log message] + +2002-09-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2002-09-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: [no log message] + +2002-09-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls.h.in.in, lib/gnutls_int_compat.c, + lib/gnutls_state.c, lib/gnutls_x509.c, lib/x509_extensions.c, + libextra/gnutls_openssl.c, src/cli.c, src/serv.c, src/tls_test.c: + [no log message] + +2002-09-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_ui.c: [no log message] + +2002-09-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/extra.h, lib/gnutls.h.in.in, + lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_auth_int.h, + lib/gnutls_cert.c, lib/gnutls_handshake.c, lib/gnutls_int_compat.c, + lib/gnutls_record.c, lib/x509_b64.c, libextra/gnutls_openssl.c, + libextra/gnutls_srp.c, src/tests.c: more cleanups + +2002-09-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_int.h, lib/gnutls_int_compat.c, + lib/gnutls_ui.h, lib/gnutls_x509.c, lib/gnutls_x509.h, + lib/x509_b64.c, lib/x509_b64.h, tests/x509_test.c: Updated the + base64 encoding/decoding functions. + +2002-09-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_anon.c, lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, + lib/auth_rsa_export.c, lib/gnutls_cert.c, lib/gnutls_errors.c, + lib/gnutls_errors_int.h, lib/gnutls_handshake.c, + lib/gnutls_state.c, lib/gnutls_v2_compat.c, lib/gnutls_x509.c, + libextra/gnutls_openpgp.c: several clean ups + +2002-09-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_state.c, src/common.c: [no log message] + +2002-08-31 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_x509.c, lib/gnutls_x509.h: Improved the + certificate and key read functions. They can now read a PEM encoded + key and certificate from the same file. + +2002-08-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c, lib/ext_cert_type.c, lib/gnutls.h.in.in, + lib/gnutls_algorithms.c, lib/gnutls_cert.c, + lib/gnutls_int_compat.c, lib/gnutls_priority.c, + lib/gnutls_priority.h, lib/gnutls_state.c, lib/gnutls_state.h, + libextra/gnutls_openssl.c, src/cli.c, src/common.c, src/serv.c, + src/tests.c: cert_type abreviation was expanded to + certificate_type. + +2002-08-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in: [no log message] + +2002-08-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/extra.h, includes/gnutls/openssl.h, + lib/auth_anon.c, lib/auth_anon.h, lib/auth_cert.c, lib/auth_cert.h, + lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/debug.c, + lib/debug.h, lib/ext_cert_type.c, lib/ext_cert_type.h, + lib/ext_max_record.c, lib/ext_max_record.h, lib/gnutls.h.in.in, + lib/gnutls_alert.c, lib/gnutls_alert.h, lib/gnutls_algorithms.c, + lib/gnutls_algorithms.h, lib/gnutls_auth.c, lib/gnutls_auth.h, + lib/gnutls_auth_int.h, lib/gnutls_buffers.c, lib/gnutls_buffers.h, + lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_cipher.c, + lib/gnutls_cipher.h, lib/gnutls_cipher_int.c, + lib/gnutls_cipher_int.h, lib/gnutls_compress.c, + lib/gnutls_compress.h, lib/gnutls_compress_int.c, + lib/gnutls_compress_int.h, lib/gnutls_constate.c, + lib/gnutls_constate.h, lib/gnutls_db.c, lib/gnutls_db.h, + lib/gnutls_dh.h, lib/gnutls_dh_primes.c, lib/gnutls_extensions.c, + lib/gnutls_extensions.h, lib/gnutls_global.c, + lib/gnutls_handshake.c, lib/gnutls_handshake.h, + lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, + lib/gnutls_int_compat.c, lib/gnutls_kx.c, lib/gnutls_kx.h, + lib/gnutls_priority.c, lib/gnutls_priority.h, lib/gnutls_record.c, + lib/gnutls_record.h, lib/gnutls_rsa_export.c, + lib/gnutls_rsa_export.h, lib/gnutls_session.c, + lib/gnutls_session.h, lib/gnutls_session_pack.c, + lib/gnutls_session_pack.h, lib/gnutls_sig.c, lib/gnutls_sig.h, + lib/gnutls_state.c, lib/gnutls_state.h, lib/gnutls_ui.c, + lib/gnutls_ui.h, lib/gnutls_v2_compat.c, lib/gnutls_v2_compat.h, + lib/gnutls_x509.c, lib/gnutls_x509.h, lib/x509_sig_check.c, + lib/x509_verify.c, libextra/auth_srp.c, libextra/auth_srp.h, + libextra/auth_srp_passwd.c, libextra/auth_srp_passwd.h, + libextra/ext_srp.c, libextra/ext_srp.h, libextra/gnutls_openssl.c, + libextra/gnutls_srp.c, src/cli.c, src/common.c, src/serv.c, + src/tests.c, src/tls_test.c: Renamed all the constructed types to + have more consisten names, and some other minor improvements. + +2002-08-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * Makefile.am, PGPKEYS: removed PGPKEYS from the distribution. + +2002-08-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/gnutls_openpgp.c: [no log message] + +2002-08-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_buffers.c, lib/gnutls_record.c: Allow the NULL pointer + for data in gnutls_record_send(), if the previous call was + interrupted. + +2002-08-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_record.c: Corrected possible bug in decompression + code. Well compressed packets may have been rejected due to limited + buffer. + +2002-08-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/README.autoconf, doc/TODO, + doc/protocol/draft-ietf-tls-srp-01.txt, + doc/protocol/draft-ietf-tls-srp-02.txt, lib/gnutls_algorithms.c, + lib/gnutls_int.h, libextra/Makefile.am, libextra/auth_srp.c, + libextra/auth_srp_passwd.c, libextra/auth_srp_passwd.h, + libextra/crypt.c, libextra/crypt.h, libextra/crypt_bcrypt.c, + libextra/crypt_bcrypt.h, libextra/crypt_srpsha1.c, + libextra/crypt_srpsha1.h, libextra/gnutls_srp.c, + libextra/gnutls_srp.h, src/crypt-gaa.c, src/crypt-gaa.h, + src/crypt.c, src/crypt.gaa: Added support for the new SRP draft by + D. Taylor. This includes the removal of the blowfish crypt hash + option, and the change of SRP cipher suite numbers. + +2002-08-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/debug.c, lib/gnutls_hash_int.c, lib/gnutls_x509.c: removed + old FIXME stuff. + +2002-08-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2002-08-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c: [no log message] + +2002-08-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_algorithms.c, + lib/gnutls_cipher_int.c, lib/gnutls_int.h, + libextra/gnutls_openssl.c, src/cli.c, src/serv.c, src/tests.c: + Renamed GNUTLS_CIPHER_ARCFOUR to GNUTLS_CIPHER_ARCFOUR_128 + +2002-08-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * README: [no log message] + +2002-08-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_state.c: better export ciphersuite detection + +2002-08-26 Andrew McDonald <admcd@gnutls.org> + + * libextra/gnutls_openssl.c: Update SSL_CIPHER_get_name() to use + gnutls_cipher_suite_get_name() + +2002-08-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_rsa_export.c: [no log message] + +2002-08-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/Makefile.am, src/common.c, src/common.h, src/tests.c, + src/tests.h, src/tls_test.c: Improved the gnutls-cli-debug program + +2002-08-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/gnutls_state.c: [no log message] + +2002-08-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_algorithms.c, + lib/gnutls_cipher_int.c, lib/gnutls_int.h, src/cli.c, src/serv.c, + src/tests.c: renamed ARCFOUR-EXPORT to ARCFOUR-40 + +2002-08-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_rsa.c, lib/auth_rsa_export.c, lib/gnutls_kx.c, + lib/gnutls_rsa_export.h, lib/gnutls_state.c, lib/gnutls_state.h: + Added support for RSA_EXPORT_WITH_RC4_EXPORT_MD5 with RSA + certificates with modulus less than 512 bits. This change made the + code a bit messy. + +2002-08-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/serv.c: [no log message] + +2002-08-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/serv.c, src/tests.c, src/tests.h, src/tls_test.c: + improvements in server html output + +2002-08-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_rsa_export.c: [no log message] + +2002-08-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2002-08-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_dhe.c: corrected bug in DHE key exchange + +2002-08-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_int.h: [no log message] + +2002-08-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c, src/serv.c: changes for export cipher suites + +2002-08-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: Added the first EXPORT-grade ciphersuite + +2002-08-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/auth_cert.h, lib/auth_dhe.c, lib/auth_rsa.c, + lib/auth_rsa_export.c, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, + lib/gnutls_cert.c, lib/gnutls_dh_primes.c, lib/gnutls_errors.c, + lib/gnutls_errors_int.h, lib/gnutls_int.h, lib/gnutls_kx.c, + lib/gnutls_rsa_export.c, lib/gnutls_rsa_export.h, + lib/gnutls_state.c, lib/gnutls_state.h, lib/gnutls_ui.c, + lib/gnutls_ui.h, lib/gnutls_x509.c: Corrected bug in DHE key + exchange which prevented from parsing the given certificates + properly. + +2002-08-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2002-08-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/extra.h, libextra/gnutls_openpgp.c, + libextra/gnutls_openpgp.h: Exported + gnutls_openpgp_extract_key_id(). This is the gnutls_openpgp_keyid() + function renamed. + +2002-08-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in: changes for 0.5.3 release + +2002-08-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_auth.c: [no log message] + +2002-08-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_int_compat.c, src/serv.c: + gnutls_handshake_set_exportable_detection() was obsoleted. + +2002-08-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2002-08-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2002-08-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c: [no log message] + +2002-08-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_constate.c, lib/gnutls_hash_int.c: corrected bug in + SSL3 random generation function. Now the export ciphersuite works in + SSL3 mode too. + +2002-08-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_constate.c, + lib/gnutls_handshake.c, lib/gnutls_hash_int.c, + lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_state.c: Added + the first exportable ciphersuite (TLS_RSA_WITH_RC4_EXPORT_MD5). This + one only works in servers that have certificates of 512 bits length. + +2002-08-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_int.h: [no log message] + +2002-08-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_algorithms.c, + lib/gnutls_algorithms.h, lib/gnutls_cipher_int.c, + lib/gnutls_constate.c, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_state.c, src/cli.c: Added some initials for the export + cipher suites. + +2002-08-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-openpgp-keys-01.txt, + doc/protocol/draft-ietf-tls-openpgp-keys-02.txt: updated openpgp + draft + +2002-08-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_handshake.c: included the change cipher specs in + gnutls_handshake_get_direction(). + +2002-08-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c: [no log message] + +2002-08-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls.h.in.in, lib/gnutls_handshake.c: + gnutls_handshake_check_direction() renamed to + gnutls_handshake_get_direction(). + +2002-08-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/tls_test-gaa.c, src/tls_test-gaa.h, src/tls_test.c, + src/tls_test.gaa: Added verbose option to gnutls-cli-debug. + +2002-08-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls.h.in.in, lib/gnutls_handshake.c, + lib/gnutls_int.h, lib/gnutls_state.c: Added the + gnutls_handshake_set_exportable_detection() function, which is used + to control whether the handshake will check for exportable cipher + suites in the server. In that case an error of + GNUTLS_E_EXPORT_CIPHER_SUITE is returned. + +2002-08-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_algorithms.c: [no log message] + +2002-08-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * AUTHORS: included cvs aliases into authors file + +2002-08-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_algorithms.c: [no log message] + +2002-08-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_algorithms.c, lib/gnutls.h.in.in: Added + gnutls_cipher_suite_get_name(). This functions constructs the name + of a cipher suite using the given algorithms. + +2002-08-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2002-08-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_handshake.c, lib/gnutls_int.h: + Added new function gnutls_handshake_check_direction(), which returns + the state where the handshake function was interrupted. + +2002-08-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * buildconf, configure.in, doc/README.CVS: Added the + --enable-maintainer-mode configure option, and renamed the old one + to --enable-developer-mode. + +2002-08-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/gnutls.h.in.in, lib/gnutls_x509.c: added + some missing consts + +2002-07-21 Andrew McDonald <admcd@gnutls.org> + + * includes/gnutls/openssl.h, libextra/gnutls_openssl.c: add ability + to use separate file descriptors for send() and recv() using new + set_transport_ptr2() function + +2002-07-21 Andrew McDonald <admcd@gnutls.org> + + * includes/gnutls/openssl.h, libextra/gnutls_openssl.c: some + initial support for TLS/SSL server applications + +2002-07-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_errors.c, lib/gnutls_errors_int.h, + lib/gnutls_handshake.c: Added a special error code for cases where + the peer (server) supports only export ciphersuites. + +2002-07-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2002-07-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_int.h: [no log message] + +2002-07-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2002-07-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: [no log message] + +2002-07-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, + lib/ext_max_record.c, lib/gnutls_cert.c, lib/gnutls_compress.c, + lib/gnutls_compress_int.c, lib/gnutls_constate.c, + lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_global.c, + lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_state.c, + libextra/gnutls_extra.c: Fixes in zlib compression code. + gnutls_global_init_extra() in libgnutls-extra fails if library + versions do not match. Semantic changes in + gnutls_record_set_max_size(). The requested size is now immediately + enforced at the output buffers. + +2002-07-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c, src/serv.c: Client and server now accept the null + cipher option. + +2002-07-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls.h.in.in, lib/gnutls_buffers.c, lib/gnutls_int.h, + lib/gnutls_record.c: Added gnutls_transport_set_ptr2() which + accepts two pointers. + +2002-07-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c: [no log message] + +2002-07-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/gnutls_mpi.h, lib/gnutls_privkey.c: moved to + libgcrypt 1.1.8 + +2002-07-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2002-07-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/libgnutls.m4, libextra/libgnutls-extra.m4: corrected m4 + macros for gnutls + +2002-07-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-ciphersuite-05.txt, + doc/protocol/rfc3268.txt: [no log message] + +2002-07-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_anon.c, lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, + lib/ext_cert_type.c, lib/ext_max_record.c, lib/gnutls_buffers.c, + lib/gnutls_cert.c, lib/gnutls_cipher.c, lib/gnutls_compress.c, + lib/gnutls_constate.c, lib/gnutls_datum.c, lib/gnutls_db.c, + lib/gnutls_extensions.c, lib/gnutls_handshake.c, + lib/gnutls_hash_int.c, lib/gnutls_int.h, lib/gnutls_kx.c, + lib/gnutls_mpi.c, lib/gnutls_num.c, lib/gnutls_pk.c, + lib/gnutls_priority.c, lib/gnutls_privkey.c, lib/gnutls_random.c, + lib/gnutls_record.c, lib/gnutls_session_pack.c, lib/gnutls_state.c, + lib/gnutls_state.h, lib/gnutls_ui.c, lib/gnutls_v2_compat.c, + lib/x509_b64.c, lib/x509_extensions.c, lib/x509_sig_check.c, + lib/x509_verify.c, lib/x509_xml.c: Added some hints on the file + purpose, and some other cleanups. + +2002-07-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_db.h, lib/gnutls_state.c: [no log message] + +2002-07-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_db.c, lib/gnutls_state.c: Now gnutls_deinit() removes + abnormally terminated sessions. Added the _gnutls_deinit() function + which has the behaviour of the older gnutls_deinit(). + +2002-07-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/serv.c: corrected possible bug in http server + +2002-07-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c, src/serv.c: [no log message] + +2002-07-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: [no log message] + +2002-07-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2002-07-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/common.h: [no log message] + +2002-07-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/Makefile.am: added gnutls_openssl.c + +2002-07-06 Andrew McDonald <admcd@gnutls.org> + + * includes/gnutls/openssl.h, libextra/gnutls_openssl.c: get rid of + some warnings during build + +2002-07-06 Timo Schulz <twoaday@gnutls.org> + + * libextra/gnutls_openpgp.c, libextra/gnutls_openpgp.h: + + Minor fixes for the OpenPGP code. + +2002-07-05 Andrew McDonald <admcd@gnutls.org> + + * includes/gnutls/openssl.h, libextra/gnutls_openssl.c: yet more + functions, and some fixes + +2002-07-05 Andrew McDonald <admcd@gnutls.org> + + * includes/gnutls/openssl.h, libextra/gnutls_openssl.c: some more + functions implemented + +2002-07-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509_xml.c, libextra/gnutls_openpgp.c: [no log message] + +2002-07-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/extra.h, lib/gnutls.h.in.in, lib/gnutls_ui.h: + Added defines for old function names. + +2002-07-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/common.c, src/serv.c: [no log message] + +2002-07-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/gnutls_openpgp.c: Fixed stub for xml keys. Added support + for the new string functions in xml key generation. + +2002-07-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/README.srpcrypt, src/crypt-gaa.c, src/crypt-gaa.h, + src/crypt.gaa, src/serv.c: updated the parameters of srpcrypt + program. Other minor changes in included programs. + +2002-07-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c: Corrected bug in the mpi extraction function + from X.509 certificates (affects DSA certificates). + +2002-06-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/extra.h, libextra/gnutls_openpgp.c, + libextra/gnutls_openpgp.h: [no log message] + +2002-06-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/common.c, lib/auth_cert.c, lib/gnutls_cipher.c, + lib/gnutls_handshake.c, lib/gnutls_mpi.c, lib/gnutls_mpi.h, + lib/gnutls_ui.h, lib/x509_xml.c, libextra/gnutls_openpgp.c: Made + the xml convertion functions more mnemonic. Several other fixes in + the core library. + +2002-06-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_alert.c, lib/gnutls_algorithms.c, + lib/gnutls_algorithms.h, lib/gnutls_auth.h, lib/gnutls_cipher.c, + lib/gnutls_compress_int.c, lib/gnutls_compress_int.h, + lib/gnutls_errors.c, lib/gnutls_extensions.c, + lib/gnutls_extensions.h, lib/gnutls_handshake.c, + lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, + lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_state.c, + lib/gnutls_state.h, lib/gnutls_x509.c, lib/x509_extensions.c, + lib/x509_extensions.h, lib/x509_xml.c: Several (internal) cleanups. + Const flags are better used now. + +2002-06-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c, lib/gnutls_x509.c: Better organization of + cert2gnutls_cert function. + +2002-06-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, + lib/gnutls_x509.c, lib/gnutls_x509.h, lib/x509_xml.c: Now + certificate decoding makes use of partial DER decoding of the + libtasn1 library. It speedups a bit the handshake in client side, + which needs to decode the certificate, in order to read the public + key parameters. + +2002-06-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509_xml.c: Improved XML output. + +2002-06-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2002-06-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/gnutls_pk.c: [no log message] + +2002-06-24 Andrew McDonald <admcd@gnutls.org> + + * libextra/gnutls_openssl.c: fix SSL_CIPHER_get_bits to return key + size in bits rather than bytes + +2002-06-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: Depends on opencdk 0.2.0 + +2002-06-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, includes/Makefile.am, includes/gnutls/Makefile.am: + [no log message] + +2002-06-23 Timo Schulz <twoaday@gnutls.org> + + * libextra/gnutls_openpgp.c: + + Changes for the new OpenCDK version. + +2002-06-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * tests/x509_test.c: [no log message] + +2002-06-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/gnutls_openpgp.c: [no log message] + +2002-06-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, + lib/gnutls_cert.h, lib/gnutls_record.c, lib/gnutls_str.h, + lib/gnutls_x509.c, lib/gnutls_x509.h, lib/x509_extensions.c, + lib/x509_extensions.h, lib/x509_sig_check.c: The TLS handshake no + longer fails if the X.509 extensions in the Certificate are critical + and unsupported. The unsupported critical extensions are now only + catched by the verification functions. + +2002-06-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_str.c, lib/gnutls_str.h, lib/x509_xml.c: Added new + string functions to handle the XML string stuff. + +2002-06-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO, includes/gnutls/Makefile.am, includes/gnutls/extra.h, + lib/gnutls.h.in.in, lib/gnutls_algorithms.c, + lib/gnutls_anon_cred.c, lib/gnutls_cert.c, lib/gnutls_x509.c, + lib/gnutls_x509.h, lib/x509_xml.c, libextra/gnutls_openssl.c, + libextra/gnutls_srp.c, src/cli.c, src/serv.c, src/tls_test.c: + Renamed credential allocation functions from *_sc() to *_cred(). + +2002-06-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/gnutls/Makefile.am, includes/gnutls/gnutls.h: [no log + message] + +2002-06-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_algorithms.c: [no log message] + +2002-06-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_int_compat.c, lib/gnutls_x509.c, + tests/Makefile.am: [no log message] + +2002-06-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/Makefile.am, libextra/extra.h, + libextra/gnutls_openssl.c, libextra/openssl.h, src/Makefile.am, + src/cli.c, src/common.c, src/prime.c, src/serv.c, src/tests.c, + src/tls_test.c, lib/Makefile.am, Makefile.am, configure.in: [no log + message] + +2002-06-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * includes/Makefile.am, includes/gnutls/Makefile.am, + includes/gnutls/extra.h, includes/gnutls/gnutls.h, + includes/gnutls/openssl.h: Installed headers moved to includes/ + directory. + +2002-06-21 Andrew McDonald <admcd@gnutls.org> + + * libextra/gnutls_openssl.c, libextra/openssl.h: changes to way + SSL_CIPHER allocation is handled make use of option SSL_OP_NO_TLSv1 + +2002-06-21 Andrew McDonald <admcd@gnutls.org> + + * libextra/gnutls_openssl.c: use gnutls_cipher_get_key_size() in + SSL_CIPHER_get_bits() + +2002-06-21 Andrew McDonald <admcd@gnutls.org> + + * libextra/gnutls_openssl.c, libextra/openssl.h: make arrays for + priority information in SSL_METHOD statically allocated + +2002-06-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c: [no log message] + +2002-06-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509_xml.c, lib/pkix.asn, lib/pkix_asn1_tab.c: [no log + message] + +2002-06-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c: corrected countryName + +2002-06-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/common.c: [no log message] + +2002-06-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_algorithms.c, lib/gnutls_x509.c, lib/gnutls_x509.h: + [no log message] + +2002-06-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/extra.h, libextra/openssl.h: changed <gnutls.h> with + <gnutls/gnutls.h> + +2002-06-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_algorithms.c, + lib/gnutls_algorithms.h, lib/gnutls_constate.c, lib/gnutls_int.h: + Exported gnutls_cipher_get_key_size(). Better name printing for MAC + algorithms. + +2002-06-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c, src/common.c, src/serv.c, src/tests.c, src/tls_test.c: + [no log message] + +2002-06-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2002-06-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/Makefile.am, libextra/extra.h, libextra/gnutls-extra.h, + libextra/gnutls-openssl.h, libextra/openssl.h, configure.in: New + install directory for headers is /gnutls + +2002-06-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c, lib/gnutls_x509.h: [no log message] + +2002-06-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/gnutls.h.in.in, lib/gnutls_global.c: [no log + message] + +2002-06-19 Andrew McDonald <admcd@gnutls.org> + + * libextra/gnutls-openssl.h, libextra/gnutls_openssl.c: Implemented + some more functions. Basic TLS/SSL operations tested with: slrn, + wget, lynx + +2002-06-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_cert.c, lib/gnutls_db.c, + lib/gnutls_global.c, lib/gnutls_int_compat.c, lib/gnutls_ui.h, + libextra/gnutls-extra.h, libextra/gnutls_srp.c, src/serv.c: _func + abreviation is no longer used. Functions renamed to _function. + +2002-06-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509_xml.c: x509_xml.c + +2002-06-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/serv.c: removed ioctl stuff. + +2002-06-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/serv-gaa.c, src/serv-gaa.h, src/serv.c, src/serv.gaa, + src/tls_test.c: added 'nodb' and 'quiet' options to server. + +2002-06-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_pk.c, src/cli.c: [no log message] + +2002-06-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_pk.c: Corrected bug in PKCS-1 RSA encryption. + +2002-06-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/common.c: [no log message] + +2002-06-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * AUTHORS: [no log message] + +2002-06-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/Makefile.am, src/common.c, src/list.h, src/serv.c: The server + used was changed to a non blocking one. The server was created by + Paul Sheer. + +2002-06-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/gnutls_openpgp.c: cleanups + +2002-06-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/gnutls_openpgp.c: fixed stubs + +2002-06-17 Timo Schulz <twoaday@gnutls.org> + + * libextra/gnutls_openpgp.c: + + Minor changes and a XML stub if OpenCDK is not used. + +2002-06-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509_xml.c: [no log message] + +2002-06-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_int_compat.c, lib/gnutls_x509.c, lib/x509_xml.c: [no + log message] + +2002-06-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/gnutls-extra.h, libextra/gnutls-openssl.h, + libextra/gnutls_openssl.c: [no log message] + +2002-06-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cert.c: [no log message] + +2002-06-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/gnutls_openssl.c: [no log message] + +2002-06-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/Makefile.am, libextra/gnutls-openssl.h: Added Andrew's + openssl compatible interface. + +2002-06-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_ui.h, lib/x509_xml.c, libextra/gnutls-extra.h: [no log + message] + +2002-06-16 Timo Schulz <twoaday@gnutls.org> + + * libextra/gnutls_openpgp.c, libextra/gnutls_openpgp.h: + + Changed the xml function name to fit into the GnuTLS API. New + memory handling for gnutls_datum. + +2002-06-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/serv.c: [no log message] + +2002-06-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/gnutls-extra.h: [no log message] + +2002-06-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: [no log message] + +2002-06-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * acconfig.h, configure.in, doc/TODO, src/Makefile.am: Corrected + libgdbm issues + +2002-06-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: [no log message] + +2002-06-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: [no log message] + +2002-06-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, doc/TODO, lib/defines.h, lib/gnutls.h.in.in, + lib/gnutls_db.c, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_int_compat.c, lib/gnutls_state.c, lib/x509_xml.c, + src/Makefile.am, src/common.c, src/serv.c: Removed the gdbm backend + for resuming TLS sessions. Program gnutls-serv was modified to + include support for resuming sessions with the callback api. + +2002-06-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509_xml.c: [no log message] + +2002-06-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/gnutls_ui.h, lib/x509_xml.c: [no log message] + +2002-06-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/gnutls_ui.h, lib/x509_xml.c: Added XML + extraction from an X.509 certificate. Only some basic functionality + is now available. + +2002-06-14 Timo Schulz <twoaday@gnutls.org> + + * libextra/gnutls_openpgp.c: + + Corrected the key length calcuation for the key data fields. + +2002-06-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/crypt_bcrypt.c: [no log message] + +2002-06-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/pkix.asn, lib/pkix_asn1_tab.c: [no log message] + +2002-06-12 Timo Schulz <twoaday@gnutls.org> + + * libextra/gnutls_openpgp.c: + + Some minor improvements for the XML code. + +2002-06-12 Timo Schulz <twoaday@gnutls.org> + + * libextra/gnutls_openpgp.c: + + Implemented verbosity level for XML output. + +2002-06-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509_ASN.c: [no log message] + +2002-06-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/Makefile.am, src/Makefile.am, tests/Makefile.am: [no log + message] + +2002-06-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, doc/README.CVS: [no log message] + +2002-06-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/auth_cert.c, lib/auth_rsa.c, + lib/gnutls_asn1_tab.c, lib/gnutls_cert.c, lib/gnutls_cert.h, + lib/gnutls_errors.c, lib/gnutls_global.c, lib/gnutls_global.h, + lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_privkey.c, + lib/gnutls_sig.c, lib/gnutls_x509.c, lib/gnutls_x509.h, + lib/pkix_asn1_tab.c, lib/x509_extensions.c, lib/x509_sig_check.c, + lib/x509_verify.c: renamed libasn1 to libtasn1 + +2002-06-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: [no log message] + +2002-06-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/README.CVS: renamed libasn1 to libtasn1 + +2002-06-10 Timo Schulz <twoaday@gnutls.org> + + * libextra/gnutls_openpgp.c: + + A small fix for the XML code. + +2002-06-10 Timo Schulz <twoaday@gnutls.org> + + * libextra/gnutls_openpgp.c, libextra/gnutls_openpgp.h: + + Basic XML output for OpenPGP certificates. + +2002-06-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: [no log message] + +2002-06-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * Makefile.am, buildconf, configure.in, lib/Makefile.am: Added + configure option to use the included libasn1. + +2002-06-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * Makefile.am, NEWS, configure.in, libextra/Makefile.am, + tests/Makefile.am: [no log message] + +2002-06-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/README.CVS: [no log message] + +2002-06-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/auth_cert.c, lib/auth_rsa.c, + lib/gnutls_asn1_tab.c, lib/gnutls_cert.c, lib/gnutls_cert.h, + lib/gnutls_errors.c, lib/gnutls_global.c, lib/gnutls_global.h, + lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_pk.c, + lib/gnutls_privkey.c, lib/gnutls_sig.c, lib/gnutls_x509.c, + lib/gnutls_x509.h, lib/pkix_asn1_tab.c, lib/x509_ASN.y, + lib/x509_asn1.c, lib/x509_asn1.h, lib/x509_der.c, lib/x509_der.h, + lib/x509_extensions.c, lib/x509_extensions.h, lib/x509_sig_check.c, + lib/x509_verify.c: Adapted codebase to the new libasn1 0.1.0. + +2002-06-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/Makefile.am, src/asn1c.c: removed asn1c.c program. Moved to + libasn1. + +2002-06-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_ui.h: [no log message] + +2002-06-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * tests/x509_test.c: [no log message] + +2002-06-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_datum.c, lib/gnutls_datum.h, + lib/gnutls_global.c, lib/gnutls_mem.c, lib/gnutls_mem.h, + lib/x509_b64.c: Added gnutls_b64_encode_fmt2() and + gnutls_b64_decode_fmt2(). These functions return allocated data. + Cleaned up the gnutls_datum code and some of memory stuff. + +2002-06-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, acconfig.h, configure.in, lib/gnutls_alert.c, + lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_global.c, + lib/gnutls_mem.c, lib/gnutls_mem.h: Added check for C99 macro + support. Stubs are used if they are not supported by the compile. A + more elegant solution is required. + +2002-06-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_global.c, lib/gnutls_mem.c, lib/gnutls_mem.h: only use + the libc's strdup, if using the libc's malloc function. + +2002-06-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c: [no log message] + +2002-06-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_mem.c, lib/gnutls_mem.h: Removed gnutls_strdup(). + Replaced with a pointer to libc's strdup() function. + +2002-06-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_algorithms.c, lib/gnutls_record.c, lib/gnutls_state.c: + [no log message] + +2002-06-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_buffers.c: No longer realloc() the record buffers. It + had some meaning when gnutls_realloc_fast() was there, but now they + one cause a slowdown. + +2002-06-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, + lib/gnutls_int.h, lib/gnutls_state.c, src/cli.c, src/serv.c: + Created gnutls_handshake_set_private_extensions() function. + +2002-06-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_state.c: [no log message] + +2002-06-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/defines.h, lib/gnutls_algorithms.c, + lib/gnutls_int.h, lib/gnutls_state.c, libextra/crypt_bcrypt.c: + Corrected issues with ptrdiff_t. Added option to enable private + (experimental) cipher suites. They are now disabled by default so + they do not create interoperability problems. + +2002-06-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, libextra/crypt_bcrypt.c, libextra/crypt_srpsha1.c: + added check for ptrdiff_t type. + +2002-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c, src/serv.c: [no log message] + +2002-06-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, + src/serv-gaa.c, src/serv-gaa.h, src/serv.gaa: [no log message] + +2002-06-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am: asn1.ps is no longer generated in the gnutls + package. It is included in the libasn1 package. + +2002-06-03 Timo Schulz <twoaday@gnutls.org> + + * libextra/gnutls-extra.h, libextra/gnutls_openpgp.c, + libextra/gnutls_openpgp.h: + + Corrected some data types and more documentation. + +2002-06-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * tests/x509_test.c: [no log message] + +2002-06-02 Timo Schulz <twoaday@gnutls.org> + + * libextra/gnutls-extra.h: [no log message] + +2002-06-02 Timo Schulz <twoaday@gnutls.org> + + * libextra/gnutls-extra.h, libextra/gnutls_openpgp.c, + libextra/gnutls_openpgp.h: + + More fixes for the keyid and some changes for the _mem functions. + +2002-06-02 Timo Schulz <twoaday@gnutls.org> + + * libextra/gnutls_openpgp.c, libextra/gnutls_openpgp.h: + + Applied the patches. Changed the keyid from u32[2] to byte[8]. + +2002-06-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2002-06-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * Makefile.am, NEWS, configure.in, doc/TODO, + lib/gnutls_anon_cred.c, lib/gnutls_x509.c, lib/gnutls_x509.h, + libextra/gnutls_srp.c: Removed stubs for srp and anonymous + authentication. Added test suite directory. + +2002-06-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * tests/Makefile.am, tests/test1.pem, tests/test10.pem, + tests/test2.pem, tests/test25.pem, tests/test3.pem, + tests/x509_test.c: added test suite + +2002-06-02 Timo Schulz <twoaday@gnutls.org> + + * libextra/gnutls_openpgp.c: + + Some modifications for the newest OpenCDK snapshot. + +2002-05-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_handshake.c: [no log message] + +2002-05-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_handshake.c, lib/gnutls_record.c: [no log message] + +2002-05-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/gnutls_openpgp.c: Minor fixes. Added documentation for + gnutls_certificate_set_openpgp_trustdb() function. + +2002-05-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, + src/common.c, src/serv-gaa.c, src/serv.c, src/serv.gaa, + src/tls_test-gaa.c, src/tls_test.gaa: [no log message] + +2002-05-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_errors.c, lib/gnutls_errors_int.h, + libextra/gnutls_openpgp.c: Added error code for unsupported + trustdb. + +2002-05-27 Timo Schulz <twoaday@gnutls.org> + + * libextra/gnutls_openpgp.c: + + Check the trustdb format before the handshake begins. + +2002-05-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2002-05-27 Timo Schulz <twoaday@gnutls.org> + + * libextra/gnutls_openpgp.c: + + Added a check for the trustdb so we can figure out if the format is + useable for OpenCDK. + +2002-05-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/gnutls-extra.h: [no log message] + +2002-05-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c, src/common.c, src/serv.c: [no log message] + +2002-05-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/CertificateExample.c, src/CrlExample.c, src/Makefile.am, + src/cli-gaa.c, src/cli.gaa, src/crypt.c, src/serv-gaa.c, + src/serv.gaa: some parts were moved to libasn1. + +2002-05-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_mem.h: [no log message] + +2002-05-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2002-05-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_auth.c, lib/gnutls_buffers.c, lib/gnutls_mem.h, + lib/gnutls_priority.c: reintroduced realloc_fast() which prevents + some malloc(0) situations. + +2002-05-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * Makefile.am: [no log message] + +2002-05-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO, lib/auth_cert.c, lib/auth_rsa.c, lib/gnutls_int.h, + lib/gnutls_num.h, lib/gnutls_record.c, libextra/auth_srp.c, + libextra/auth_srp_passwd.c, libextra/gnutls_srp.c, + libextra/gnutls_srp.h: Several clean ups and bug fixes. + +2002-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, THANKS, acconfig.h, configure.in, lib/auth_cert.c, + lib/gnutls.h.in.in, lib/gnutls_algorithms.c, lib/gnutls_auth.c, + lib/gnutls_buffers.c, lib/gnutls_constate.c, lib/gnutls_datum.c, + lib/gnutls_dh_primes.c, lib/gnutls_global.c, + lib/gnutls_handshake.c, lib/gnutls_mem.c, lib/gnutls_mem.h, + lib/gnutls_pk.c, lib/gnutls_x509.c, lib/x509_b64.c, + libextra/auth_srp.c, libextra/auth_srp_passwd.c, + libextra/crypt_bcrypt.c, libextra/crypt_srpsha1.c, + libextra/gnutls_openpgp.c, libextra/gnutls_srp.c, src/common.c: + Applied Jeff Johnson's patch which fixes type problems in 64 bit + machines. Removed the default allocation handlers, and made the + libc's functions to be defaults. Added function which sets the + memory allocation functions to be used. + +2002-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/gnutls_extra.h: [no log message] + +2002-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/gnutls.h.in.in, libextra/gnutls-extra.h, + libextra/gnutls_openpgp.c, libextra/gnutls_openpgp.h: [no log + message] + +2002-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/gnutls_openpgp.c: corrected function declaration + +2002-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/README.CVS: Updated documentation for the gnutls-extra + library + +2002-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_anon.c, lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, + lib/gnutls_cipher.c, lib/gnutls_constate.c, lib/gnutls_datum.c, + lib/gnutls_datum.h, lib/gnutls_extensions.c, + lib/gnutls_handshake.c, lib/gnutls_num.c, lib/gnutls_num.h, + lib/gnutls_record.c, lib/gnutls_session_pack.c, + lib/gnutls_v2_compat.c, lib/gnutls_x509.c, libextra/auth_srp.c: + Prefixed internal functions with _gnutls_ + +2002-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in: [no log message] + +2002-05-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: [no log message] + +2002-05-20 Timo Schulz <twoaday@gnutls.org> + + * libextra/gnutls_openpgp.c, libextra/gnutls_openpgp.h: + + Modifications for the new OpenCDK version and some minor fixes. + +2002-05-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, doc/README.autoconf, lib/Makefile.am, + libextra/Makefile.am, libextra/libgnutls-extra-config.in, + libextra/libgnutls-extra.m4, src/crypt.c, src/tests.c: [no log + message] + +2002-05-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * README, lib/Makefile.am, libextra/Makefile.am, src/Makefile.am, + src/cli.c, src/common.c, src/serv.c, src/tls_test.c: [no log + message] + +2002-05-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * README, NEWS: [no log message] + +2002-05-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * libextra/auth_srp.c, libextra/auth_srp_passwd.c, + libextra/auth_srp_sb64.c, libextra/crypt.c, + libextra/crypt_bcrypt.c, libextra/crypt_srpsha1.c, + libextra/ext_srp.c, libextra/gnutls_extra.c, + libextra/gnutls_openpgp.c, libextra/gnutls_srp.c, README: [no log + message] + +2002-05-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * Makefile.am, configure.in: [no log message] + +2002-05-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/auth_srp.c, lib/auth_srp.h, + lib/auth_srp_passwd.c, lib/auth_srp_passwd.h, lib/auth_srp_sb64.c, + lib/crypt.c, lib/crypt.h, lib/crypt_bcrypt.c, lib/crypt_bcrypt.h, + lib/crypt_srpsha1.c, lib/crypt_srpsha1.h, lib/ext_srp.c, + lib/ext_srp.h, lib/gnutls-extra.h, lib/gnutls_extra.c, + lib/gnutls_extra.h, lib/gnutls_openpgp.c, lib/gnutls_openpgp.h, + lib/gnutls_srp.c, lib/gnutls_srp.h, libextra/Makefile.am, + libextra/auth_srp.c, libextra/auth_srp.h, + libextra/auth_srp_passwd.c, libextra/auth_srp_passwd.h, + libextra/auth_srp_sb64.c, libextra/crypt.c, libextra/crypt.h, + libextra/crypt_bcrypt.c, libextra/crypt_bcrypt.h, + libextra/crypt_srpsha1.c, libextra/crypt_srpsha1.h, + libextra/ext_srp.c, libextra/ext_srp.h, libextra/gnutls-extra.h, + libextra/gnutls_extra.c, libextra/gnutls_extra.h, + libextra/gnutls_openpgp.c, libextra/gnutls_openpgp.h, + libextra/gnutls_srp.c, libextra/gnutls_srp.h: Moved the + gnutls-extra files to libextra directory. + +2002-05-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am: removed html version of the documentation + +2002-05-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c, src/serv.c: [no log message] + +2002-05-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls-extra.h, lib/gnutls_extra.c, lib/gnutls_extra.h: [no + log message] + +2002-05-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, README, configure.in, lib/Makefile.am, lib/auth_cert.c, + lib/auth_dhe.c, lib/auth_rsa.c, lib/gnutls.h.in.in, + lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, + lib/gnutls_cert.c, lib/gnutls_extensions.c, + lib/gnutls_extensions.h, lib/gnutls_openpgp.h, lib/gnutls_ui.h, + lib/libgnutls-config.in, src/Makefile.am, src/cli.c, src/common.c, + src/serv.c, src/tests.c, src/tls_test.c: Separated the library to + gnutls and gnutls-extra. gnutls-extra library contains the GPL parts + of gnutls + +2002-05-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * README, configure.in, src/prime.c, src/tests.c: [no log message] + +2002-05-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * README, configure.in, lib/auth_anon.c, lib/auth_dhe.c, + lib/auth_rsa.c, lib/auth_srp.c, lib/libgnutls-config.in, + src/prime.c: Added --modules option to libgnutls-config. This + option prints the extra modules that have been enabled into the + library. + +2002-05-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_global.c: [no log message] + +2002-05-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: configure script now prints the library license + +2002-05-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2002-05-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_dh_primes.c: Replaced group1 prime with a prime of + 1024 bits + +2002-05-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * COPYING.LIB, NEWS, README, lib/auth_anon.c, lib/auth_cert.c, + lib/auth_dhe.c, lib/auth_rsa.c, lib/debug.c, lib/ext_cert_type.c, + lib/ext_max_record.c, lib/gnutls.h.in.in, lib/gnutls_alert.c, + lib/gnutls_algorithms.c, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, + lib/gnutls_buffers.c, lib/gnutls_cert.c, lib/gnutls_cipher.c, + lib/gnutls_cipher_int.c, lib/gnutls_compress.c, + lib/gnutls_compress_int.c, lib/gnutls_constate.c, + lib/gnutls_datum.c, lib/gnutls_db.c, lib/gnutls_dh_primes.c, + lib/gnutls_errors.c, lib/gnutls_extensions.c, lib/gnutls_global.c, + lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_int.h, + lib/gnutls_kx.c, lib/gnutls_mem.c, lib/gnutls_mpi.c, + lib/gnutls_num.c, lib/gnutls_pk.c, lib/gnutls_priority.c, + lib/gnutls_privkey.c, lib/gnutls_random.c, lib/gnutls_record.c, + lib/gnutls_session.c, lib/gnutls_session_pack.c, lib/gnutls_sig.c, + lib/gnutls_state.c, lib/gnutls_str.c, lib/gnutls_ui.c, + lib/gnutls_v2_compat.c, lib/gnutls_x509.c, lib/x509_asn1.c, + lib/x509_b64.c, lib/x509_der.c, lib/x509_extensions.c, + lib/x509_sig_check.c, lib/x509_verify.c: License changed to LGPL + +2002-05-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_dh.c: [no log message] + +2002-05-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_dh.c: Some cleanups in the Diffie Hellman code. + +2002-05-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_int.h: Added the missing user_ptr pointer in + gnutls_internals. + +2002-05-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2002-05-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls.h.in.in, lib/gnutls_state.c: Added + gnutls_state_set_ptr() and gnutls_state_get_ptr() functions, to + assist in callback functions. + +2002-05-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_ui.h: Corrected prototypes for callback selector + functions, which now accept the state. + +2002-05-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2002-05-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_anon.c, lib/gnutls_anon_cred.c, lib/gnutls_cert.c, + lib/gnutls_dh.c, lib/gnutls_dh_primes.c, lib/gnutls_kx.c, + lib/gnutls_openpgp.c, lib/gnutls_pk.c, lib/gnutls_privkey.c, + lib/gnutls_sig.c, lib/gnutls_srp.c, lib/x509_sig_check.c: [no log + message] + +2002-05-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_dh.c: [no log message] + +2002-05-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/gnutls_gcry.c, lib/gnutls_gcry.h, + lib/gnutls_int.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h: renamed + gnutls_gcry* to gnutls_mpi* + +2002-05-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/gnutls_gcry.c, lib/gnutls_gcry.h, + lib/gnutls_global.c, lib/gnutls_int.h, lib/gnutls_mpi.c, + lib/gnutls_mpi.h: renamed gnutls_gcry* to gnutls_mpi* + +2002-05-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/gnutls_global.c: Updated libgcrypt + initialization stuff. Now depends on libgcrypt 1.1.7, and only + initializes libgcrypt if this has not been done before. + +2002-05-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_dh.c: [no log message] + +2002-05-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_anon.c, lib/auth_dhe.c, lib/gnutls_dh.c, + lib/gnutls_dh.h: DH Public keys now have a more reasonable + (smaller) size. + +2002-05-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_anon.c, lib/auth_dhe.c, lib/auth_srp_passwd.c, + lib/gnutls.h.in.in, lib/gnutls_dh.c, lib/gnutls_dh.h, + lib/gnutls_dh_primes.c, lib/gnutls_int.h, src/prime.c, src/serv.c: + The Diffie Hellman method was optimized. Now the number of bits of q + is used (q is used to generate p), and the server DH secret key is + less than the number of bits of q (see RFC2631 2.2). All these + changes are experimental and may be totaly wrong. + +2002-05-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_anon.c, lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_srp.c, + lib/auth_srp_passwd.c, lib/crypt.c, lib/crypt_bcrypt.c, + lib/crypt_srpsha1.c, lib/debug.c, lib/gnutls_auth.c, + lib/gnutls_dh.c, lib/gnutls_dh_primes.c, lib/gnutls_gcry.c, + lib/gnutls_gcry.h, lib/gnutls_openpgp.c, lib/gnutls_openpgp.h, + lib/gnutls_pk.c, lib/gnutls_privkey.c, lib/gnutls_srp.c, + lib/gnutls_x509.c, lib/x509_ASN.c, lib/x509_sig_check.c: Cleaned up + the big number support. + +2002-05-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_alert.h: [no log message] + +2002-04-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/common.c: [no log message] + +2002-04-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in: [no log message] + +2002-04-21 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_openpgp.c: + + Adjust the code for the new OpenCDK version. + +2002-04-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_buffers.c, lib/gnutls_cipher.c, lib/gnutls_cipher.h, + lib/gnutls_compress.c, lib/gnutls_compress.h, + lib/gnutls_compress_int.c, lib/gnutls_int.h, lib/gnutls_record.c, + lib/gnutls_srp.c, lib/gnutls_state.h: Optimized memory handling in + the record protocol. + +2002-04-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_srp.h, lib/gnutls_anon_cred.c, lib/gnutls_srp.c, + lib/gnutls_ui.c, src/cli.c, src/serv.c: Added stubs when SRP or + anonymous authentication are disabled, to preserve binary + compatibility + +2002-04-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/TODO, lib/gnutls.h.in.in, lib/gnutls_state.c, + src/cli.c, src/serv.c: gnutls_session_resumed() was renamed to + gnutls_session_is_resumed(), and changed semantics, to make the + return value be the obvious one. + +2002-04-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO, lib/gnutls.h.in.in, lib/gnutls_int.h, + lib/gnutls_privkey.c, lib/gnutls_state.c, src/cli.c, src/serv.c: + Added function to report if a session is a resumed one. See + gnutls_session_resumed(). + +2002-04-18 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_openpgp.c: + + Applied the fixes for the new code. + +2002-04-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_srp.c: [no log message] + +2002-04-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/auth_srp.c, lib/auth_srp.h, + lib/auth_srp_passwd.c, lib/ext_cert_type.c, lib/ext_cert_type.h, + lib/ext_max_record.c, lib/ext_max_record.h, lib/ext_srp.c, + lib/ext_srp.h, lib/gnutls_extensions.c, lib/gnutls_srp.c, + src/gnutls-http-serv, src/serv.c: Some minor fixes in SRP support. + Changed extension generation. Now less allocation with malloc are + done. + +2002-04-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_anon.c, lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_srp.c, + lib/auth_srp_passwd.c, lib/crypt.c, lib/crypt_bcrypt.c, + lib/crypt_srpsha1.c, lib/debug.c, lib/gnutls_auth.c, + lib/gnutls_dh.c, lib/gnutls_dh_primes.c, lib/gnutls_gcry.c, + lib/gnutls_gcry.h, lib/gnutls_openpgp.c, lib/gnutls_openpgp.h, + lib/gnutls_pk.c, lib/gnutls_privkey.c, lib/gnutls_srp.c, + lib/gnutls_x509.c, lib/x509_sig_check.c: first changes for libgmp + support + +2002-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_dh.c: [no log message] + +2002-04-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-56-bit-ciphersuites-01.txt: [no log + message] + +2002-04-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c: Fixed description of + gnutls_x509_extract_certificate_subject_alt_name(). + +2002-04-13 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_openpgp.c: + + Some modifications for the new OpenCDK code. + +2002-04-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/crypt.c: Documentation fixes + +2002-04-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2002-04-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, src/Makefile.am: [no log message] + +2002-04-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * acconfig.h, configure.in: fixed opencdk detection problem + +2002-04-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c, lib/gnutls_x509.h: better doc (internal) for + _gnutls_int2str() + +2002-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2002-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2002-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_state.c: [no log message] + +2002-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/auth_rsa.c, lib/gnutls_int.h, lib/gnutls_state.c: Added + function which disables the version check in the RSA premaster + secret -only needed in server side + +2002-04-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2002-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/Makefile.am: separated asn1 parser library and tls + library documentation + +2002-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_pk.c: changes for 0.4.1 + +2002-04-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_errors.h: [no log message] + +2002-04-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509_verify.c: fixed case where a certificate could be both + invalid and trusted. + +2002-04-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: [no log message] + +2002-04-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * opencdk.m4, Makefile.am: [no log message] + +2002-04-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * Makefile.am: [no log message] + +2002-04-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * acinclude.m4, buildconf, libgcrypt.m4, libmcrypt.m4, opencdk.m4: + m4 files were removed from acinclude.m4 + +2002-04-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * acinclude.m4, configure.in: added detection of opencdk + +2002-04-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/README.autoconf: [no log message] + +2002-04-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in: [no log message] + +2002-04-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c, lib/gnutls_x509.h, lib/x509_verify.c, + lib/x509_verify.h: Improved X.509 time convertion functions + +2002-04-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_x509.c: + GNUTLS_E_UNIX_TIME_LIMIT_REACHED error code was removed + +2002-04-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509_verify.c: Added kludge in order to work with dates over + 2036 + +2002-04-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_cert.c, lib/gnutls_int.h, + lib/gnutls_int_compat.c, lib/gnutls_openpgp.c, lib/gnutls_ui.h, + lib/gnutls_x509.c, lib/gnutls_x509.h, lib/x509_verify.c, + src/common.c: GNUTLS_CERT_EXPIRED is no longer returned by + verification functions. Added functions to check the expiration and + activation date of peer's certificate. See + gnutls_certificate_expiration_time_peers(). + +2002-04-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/defines.h, lib/x509_verify.c: Replaced mktime() + with mktime_utc(). This corrects a bug with the localtime returned + by mktime(). + +2002-04-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c, lib/defines.h, lib/gnutls_algorithms.c, + lib/gnutls_buffers.c, lib/gnutls_handshake.c, lib/gnutls_mem.h, + lib/gnutls_x509.c, lib/x509_asn1.c, lib/x509_der.c: merged changes + from gnutls_0_4_with_alloca. + +2002-04-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in: merged changes from gnutls_0_4_with_alloca. + +2002-04-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cert.h: [no log message] + +2002-04-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO, lib/gnutls_cert.h, lib/gnutls_pk.c: Optimized RSA + signature calculation + +2002-04-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2002-04-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c: [no log message] + +2002-04-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c: In gnutls_find_acceptable_client_cert() + corrected bug in callback parameters, and used alloca for issuers_dn + allocation. + +2002-04-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/defines.h, lib/gnutls_mem.h, lib/gnutls_x509.c: removed + unneeded memsets + +2002-04-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/serv-gaa.c, src/serv.c, src/serv.gaa: added --quit parameter + +2002-04-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/auth_cert.c, lib/defines.h, + lib/gnutls_algorithms.c, lib/gnutls_buffers.c, + lib/gnutls_handshake.c, lib/gnutls_mem.h, lib/x509_asn1.c, + lib/x509_der.c, src/serv-gaa.c, src/serv-gaa.h, src/serv.c, + src/serv.gaa: preliminary support for alloca() + +2002-04-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_rsa.c, lib/gnutls_int.h: [no log message] + +2002-04-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_rsa.c: [no log message] + +2002-04-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, doc/TODO: [no log message] + +2002-03-31 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_pk.c: [no log message] + +2002-03-31 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cipher.c: [no log message] + +2002-03-31 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c, lib/gnutls_errors.c, lib/gnutls_errors.h, + lib/gnutls_gcry.c, lib/gnutls_global.c, lib/gnutls_pk.c, + lib/gnutls_privkey.c, lib/gnutls_x509.c, lib/x509_asn1.h, + lib/x509_extensions.c, lib/x509_sig_check.c, lib/x509_verify.c: + Error codes of ASN.1 parser are now independent, with a map to + gnutls' error codes. + +2002-03-31 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cipher.c: cleanups + +2002-03-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_openpgp.c: Added the text for + gnutls_openpgp_extract_key_pk_algorithm. + +2002-03-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_x509.c, src/cli.c, src/serv.c: + Removed the CRL list parameter from + gnutls_certificate_set_x509_trust_*. + +2002-03-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c: gnutls_certificate_set_x509_trust_*() now + accept single DER certificates or PEM certificate lists. + +2002-03-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c: [no log message] + +2002-03-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c, lib/crypt_srpsha1.c, lib/gnutls_x509.c: Added + ability to read DSA DER formatted keys, and corrected bugs in DER + certificate reading. + +2002-03-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_db.c: [no log message] + +2002-03-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_algorithms.c, lib/gnutls_cipher.c, + lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, + lib/gnutls_compress.c, lib/gnutls_compress_int.c, + lib/gnutls_compress_int.h, lib/gnutls_constate.c, + lib/gnutls_handshake.c, lib/gnutls_hash_int.c, + lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_kx.c, + lib/gnutls_sig.c, lib/gnutls_srp.c, lib/gnutls_state.c, + lib/gnutls_ui.c, lib/x509_sig_check.c: Prefixed with underscore + several internal functions. + +2002-03-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c: [no log message] + +2002-03-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, + lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, + lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_global.c, + lib/gnutls_x509.c: removed unneeded functions + +2002-03-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa: added crlf + option + +2002-03-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO, lib/auth_rsa.c, lib/gnutls_int.h, lib/gnutls_pk.c, + lib/gnutls_pk.h, lib/gnutls_sig.c, lib/x509_der.c, + lib/x509_sig_check.c, src/cli.c, src/serv-gaa.c, src/serv-gaa.h, + src/serv.gaa: Some cleanups in the certificate authentication. + Parameters are passed together with the length, to avoid abuse. + +2002-03-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_pk.c: [no log message] + +2002-03-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2002-03-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/TODO: [no log message] + +2002-03-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c, lib/x509_b64.c: Cleaned up the return values + of several functions. + +2002-03-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, + src/serv-gaa.c, src/serv-gaa.h, src/serv.c, src/serv.gaa: added + option to read DER encoded certificates + +2002-03-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_rsa.c, lib/gnutls_cert.h, lib/gnutls_pk.c, + lib/gnutls_privkey.c: Optimized RSA decryption. (Very) Much faster + now + +2002-03-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c: read PKCS7 certificate chains in the reverse + order. + +2002-03-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_compress_int.c: [no log message] + +2002-03-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_ui.h: [no log message] + +2002-03-26 Fabio Fiorina <fiorinaf@gnutls.org> + + * lib/x509_asn1.c, lib/x509_asn1.h: add asn1_number_of_elements + function + +2002-03-26 Fabio Fiorina <fiorinaf@gnutls.org> + + * lib/x509_der.c: fix bug in asn1_get_start_end_der function + +2002-03-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/common.c: [no log message] + +2002-03-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, src/common.c: [no log message] + +2002-03-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c, src/common.c: changed semantics of + gnutls_x509_extract_certificate_pk_algorithm() + +2002-03-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_openpgp.c: [no log message] + +2002-03-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, + lib/gnutls_buffers.c, lib/gnutls_global.c, lib/gnutls_record.c: + Several optimizations + +2002-03-26 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_openpgp.c: + + Now the pk algorithm is returned and not only the key size in bits. + +2002-03-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_int.h, lib/gnutls_x509.c, lib/gnutls_pk.h: [no log + message] + +2002-03-26 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_openpgp.c, lib/gnutls_openpgp.h: + + Function which is used to extract key parameters for openpgp keys. + +2002-03-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/TODO, lib/gnutls.h.in.in, lib/gnutls_errors.c, + lib/gnutls_errors_int.h, lib/gnutls_pk.h, lib/gnutls_ui.h, + lib/gnutls_x509.c, src/common.c, src/gnutls-http-serv, src/serv.c: + added gnutls_x509_extract_certificate_pk_algorithm() + +2002-03-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_int.h, lib/gnutls_x509.c, + src/cli-gaa.c, src/cli.c, src/cli.gaa, src/serv-gaa.c, src/serv.c, + src/serv.gaa: Improved PKCS7 support + +2002-03-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_x509.c: Added function which reads + the DER encoded certificate and key. (now only works for RSA keys) + +2002-03-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: [no log message] + +2002-03-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/Makefile.am, lib/auth_cert.c, lib/gnutls_global.c, + lib/gnutls_hash_int.c, lib/gnutls_random.c, lib/gnutls_ui.h, + lib/gnutls_x509.c, lib/pkix.asn, lib/pkix_asn1_tab.c, + lib/x509_asn1.c, lib/x509_extensions.c, lib/x509_sig_check.c, + lib/x509_verify.c, src/gnutls-http-serv, src/serv.c: Added support + for RFC2630 - PKCS7 formated structures + +2002-03-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_openpgp.c: [no log message] + +2002-03-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c: more cleanups + +2002-03-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/auth_cert.c: [no log message] + +2002-03-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c: Cleanups and fixes in X.509 certificate message + parsing + +2002-03-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli-gaa.c, src/common.h, src/serv-gaa.c, src/serv.c, + src/tls_test-gaa.c: [no log message] + +2002-03-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_openpgp.c: [no log message] + +2002-03-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_buffers.c: Corrected code to avoid compiler's warnings + +2002-03-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: [no log message] + +2002-03-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * acconfig.h, configure.in, lib/auth_anon.c, lib/auth_srp.c, + lib/auth_srp.h, lib/auth_srp_passwd.c, lib/auth_srp_passwd.h, + lib/auth_srp_sb64.c, lib/crypt.c, lib/crypt_bcrypt.c, + lib/crypt_srpsha1.c, lib/ext_srp.c, lib/ext_srp.h, + lib/gnutls_algorithms.c, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, + lib/gnutls_extensions.c, lib/gnutls_session_pack.c, + lib/gnutls_srp.c, lib/gnutls_srp.h, lib/gnutls_ui.c, src/serv.c: + Added hooks not to include SRP and Anonymous authentication + +2002-03-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cert.c, lib/gnutls_x509.c: Corrected behaviour when no + certificate is got by the peer. + +2002-03-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/Makefile.am, src/gnutls-http-serv: Added script which runs an + http server with the appropriate parameters. + +2002-03-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_record.c, lib/gnutls_state.c: CBC protection + support is disabled by default. + +2002-03-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2002-03-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_constate.c: [no log message] + +2002-03-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_constate.c: [no log message] + +2002-03-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_algorithms.c, lib/gnutls_cipher.c, + lib/gnutls_compress_int.c, lib/gnutls_compress_int.h, + lib/gnutls_constate.c: Optimizations and fixes in compression + +2002-03-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_srp_passwd.c, lib/gnutls_cipher.c, lib/gnutls_x509.c: + [no log message] + +2002-03-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c, lib/gnutls_cipher.c, lib/gnutls_compress.c, + lib/gnutls_compress_int.c, lib/gnutls_compress_int.h, + lib/gnutls_constate.c, lib/gnutls_int.h, lib/gnutls_state.c, + lib/x509_ASN.c, lib/x509_ASN.y, lib/x509_asn1.c: Improved + compression support. Corrected several bugs in empty fragment + sending and receiving. + +2002-03-19 Fabio Fiorina <fiorinaf@gnutls.org> + + * lib/x509_asn1.c: segmentation fault bug fix + +2002-03-18 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_openpgp.c: + + New OpenCDK interface for secure memory. + +2002-03-18 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_errors_int.h, lib/gnutls_openpgp.c: + + Detection of revoked OpenPGP userID's. + +2002-03-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/common.c: [no log message] + +2002-03-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_ui.h: added missing prototypes + +2002-03-18 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_openpgp.c, lib/gnutls_openpgp.h: + + Support for multiple userID's. + +2002-03-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_srp.c: [no log message] + +2002-03-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c, src/serv.c: removed default parameters arguments + +2002-03-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * THANKS, acconfig.h, configure.in, lib/gnutls_handshake.c, + lib/gnutls_int.h, lib/gnutls_mem.c, lib/gnutls_mem.h, src/cli.c: + Added hooks for electric fence + +2002-03-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/Makefile.am, doc/README.CVS: [no log message] + +2002-03-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509_verify.c: Checking of certificate lists even if the CA + size is zero. Pointed out by Andrew McDonald + +2002-03-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/README.CVS: [no log message] + +2002-03-13 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_openpgp.c: + + Improved code for the various keyrings and support for armored + keyring files. + +2002-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in: [no log message] + +2002-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, acconfig.h, configure.in, lib/gnutls_int.h, + lib/gnutls_record.c, lib/gnutls_state.c: made CBC chosen plaintext + protection configurable + +2002-03-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: [no log message] + +2002-03-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_ui.h: [no log message] + +2002-03-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c: [no log message] + +2002-03-11 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_openpgp.c: + + Added missing stub for one function. + +2002-03-10 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_openpgp.c: + + New error codes. + +2002-03-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_constate.c, lib/gnutls_errors.c, + lib/gnutls_errors_int.h, lib/gnutls_handshake.c, lib/gnutls_pk.c, + lib/gnutls_privkey.c, lib/gnutls_record.c, lib/gnutls_sig.c, + lib/gnutls_state.c, lib/gnutls_x509.c, lib/x509_asn1.h: some error + codes were renamed to more appropriate names + +2002-03-09 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_openpgp.c, lib/x509_ASN.c: + + Patches for the new OpenCDK version and some stricter checks for + memory leaks. + +2002-03-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, + lib/gnutls_cert.c, lib/gnutls_constate.c, lib/gnutls_handshake.c, + lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_record.c, + lib/gnutls_state.c, lib/gnutls_state.h, lib/x509_verify.c, + src/common.c: removed GNUTLS_CERT_TRUSTED enumeration + +2002-03-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_state.c: [no log message] + +2002-03-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_errors.c, lib/gnutls_errors_int.h, + lib/gnutls_record.c: Added protection against denial of service + attacks, while receiving empty packets. + +2002-03-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_buffers.c: [no log message] + +2002-03-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_buffers.c: corrected memory leak + +2002-03-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cipher.c, + lib/gnutls_cipher.h, lib/gnutls_openpgp.c, lib/gnutls_record.c, + lib/gnutls_state.h: Added protection against the newly discovered + CBC attacks against TLS. Experimental code. + +2002-03-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/CertificateExample.c, src/CrlExample.c, src/asn1c.c: [no log + message] + +2002-03-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_algorithms.c: Added references to internet drafts. + Added DHE_DSS with ARCFOUR from 56 bit draft. + +2002-03-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, doc/README.autoconf, doc/TODO: [no log message] + +2002-03-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-extensions-02.txt, + doc/protocol/draft-ietf-tls-extensions-03.txt: Added new draft + +2002-03-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/Makefile.am, lib/auth_cert.c, lib/gnutls_alert.c, + lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_gcry.c, + lib/gnutls_global.c, lib/gnutls_pk.c, lib/gnutls_privkey.c, + lib/gnutls_x509.c, lib/x509_ASN.c, lib/x509_ASN.y, lib/x509_asn1.h, + lib/x509_extensions.c, lib/x509_sig_check.c, lib/x509_verify.c: + Combined error codes of gnutls and ASN.1 parser. Also several + cleanups in the X.509 code. + +2002-03-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_x509.c, + lib/x509_ASN.c, lib/x509_asn1.c, lib/x509_der.c, lib/x509_verify.c: + Added the error UNIX_TIME_LIMIT_EXCEEDED, and corrected bugs in + X.509 certificate parsing. + +2002-03-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in: updated + +2002-03-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, doc/scripts/gdoc, lib/gnutls_cert.c, + lib/gnutls_handshake.c, lib/x509_ASN.y, lib/x509_asn1.c, + lib/x509_der.c: changes for pretty documentation and cleanups. + +2002-03-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_state.c: pgp_fingerprint indicator is not cleared. + +2002-03-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/tls_test.c: [no log message] + +2002-03-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/tls_test.c: last minute changes for 0.3.91 release + +2002-03-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/auth_anon.c, lib/auth_cert.c, + lib/auth_dhe.c, lib/auth_srp.c, lib/gnutls_auth.c, + lib/gnutls_auth_int.h, lib/gnutls_errors.c, src/cli.c: Added checks + in authentication type renegotiation procedure. + +2002-03-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2002-03-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c, lib/gnutls_auth.c, lib/gnutls_handshake.c, + lib/gnutls_int.h, lib/gnutls_state.c, lib/gnutls_state.h: Changed + behaviour in rehandshake procedure. Now can use rehandshake with a + different authentication method (ie. perform anonymous + authentication, and after that perform a certificate authentication, + or srp). + +2002-03-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_mem.h, lib/gnutls_x509.c: corrected certificate type + checking. + +2002-03-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/Makefile.am, src/cli-gaa.c, src/cli-gaa.h, src/cli.c, + src/cli.gaa, src/common.h, src/crypt.c, src/serv-gaa.c, + src/serv-gaa.h, src/serv.c, src/serv.gaa, src/tls_test-gaa.c, + src/tls_test.gaa: Updated cli and server to read certificate and + keys from command line parameters. client, client-debug and server + are now being installed. + +2002-03-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, + lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_priority.c: + Cleanups in gnutls_handshake.c and gnutls_algorithms.c. Now cipher + suites get associated with a protocol version. This will allow + disabling several ciphersuites which are only defined in TLS 1.0, + when using SSL 3.0. + +2002-03-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_handshake.c: No extensions are now sent if SSL 3.0 is + the only protocol advertized. + +2002-02-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_session.c: added a check in the given parameters for + null + +2002-02-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/tests.c, src/tests.h, src/tls_test.c: added session + resumption test + +2002-02-28 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_openpgp.c: + + Changed the interface for the new OpenCDK version. + +2002-02-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli-gaa.c, src/cli.c, src/cli.gaa, src/serv-gaa.c, + src/tls_test-gaa.c, src/tls_test-gaa.h, src/tls_test.c, + src/tls_test.gaa: updated gaa files, and client options. + +2002-02-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/tests.c, lib/gnutls.h.in.in, lib/gnutls_state.c, + lib/gnutls_state.h: gnutls_record_set_default_version() was + prefixed with underscore, and it is no longer exported. + +2002-02-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_db.c, lib/gnutls_int.h, + lib/gnutls_session_pack.c, lib/gnutls_state.c: Corrected session + resuming in certificate authentication. gnutls_deinit, does not + remove the session entry any more if it is invalid. Added + gnutls_db_remove_session() function, which does this. + +2002-02-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/tls_test-gaa.c, src/tls_test-gaa.h, src/tls_test.gaa: added + missing files + +2002-02-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_mem.c: removed cycle from gnutls_free and + gnutls_secure_free. + +2002-02-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, src/tests.c, src/tests.h, src/tls_test.c: added check for + TLS closure alerts + +2002-02-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/tests.c, src/tests.h, src/tls_test.c: added openpgp + authentication test, and unknown cipher suites test + +2002-02-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/ext_srp.c: Now we do not send the srp username as an + extension, if SRP is disabled. + +2002-02-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c, src/tests.c, src/tests.h, src/tls_test.c: added check + for client hello extensions. + +2002-02-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/Makefile.am, src/cli.c, src/tests.c, src/tests.h, + src/tls_test.c: Added tls_test. This is program that can be used to + test TLS servers' parameters. + +2002-02-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_errors.c, lib/gnutls_handshake.c, + lib/gnutls_int.h, lib/gnutls_state.c: Added + gnutls_record_set_default_version(). This is a low level function. + +2002-02-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in: SOCKET_PTR was removed + +2002-02-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in: corrected record_send() prototype + +2002-02-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: updated for fcdump + +2002-02-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2002-02-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_pk.c: added (an impossible situation) check + +2002-02-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_algorithms.c: [no log message] + +2002-02-24 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_openpgp.c: + + Fixed a possible buffer overflow. + +2002-02-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/openpgp/Makefile.am: added missing makefile.am + +2002-02-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_anon.c, lib/auth_anon.h, lib/auth_cert.h, + lib/auth_dhe.c, lib/auth_srp_passwd.c, lib/gnutls.h.in.in, + lib/gnutls_anon_cred.c, lib/gnutls_cert.c, lib/gnutls_dh.h, + lib/gnutls_dh_primes.c, lib/gnutls_int.h, lib/gnutls_ui.c, + src/cli.c, src/serv.c: The Diffie Hellman parameters are now stored + in the credentials structures. This will allow precomputation of + signatures (for DHE cipher suites). + +2002-02-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c: [no log message] + +2002-02-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/gnutls_int.h, lib/gnutls_ui.h, + lib/x509_verify.c: [no log message] + +2002-02-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c, src/common.c, src/serv.c: [no log message] + +2002-02-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_openpgp.c: [no log message] + +2002-02-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_cert.c, lib/gnutls_handshake.c, + lib/gnutls_int.h, lib/gnutls_openpgp.c, lib/gnutls_record.c, + lib/gnutls_x509.c, lib/x509_sig_check.c, lib/x509_verify.c: removed + GNUTLS_CERT_NONE (replaced by GNUTLS_E_NO_CERTIFICATE_FOUND). + removed GNUTLS_CERT_VALID (it's valid if it's not invalid) + +2002-02-23 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_openpgp.c, lib/gnutls_openpgp.h: + + Bug fixes for _verify_key and basic trust handling for keys. + +2002-02-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c, lib/debug.c: [no log message] + +2002-02-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509_verify.c: [no log message] + +2002-02-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509_verify.c: [no log message] + +2002-02-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_openpgp.c: includes moved before #ifdef + +2002-02-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c: [no log message] + +2002-02-22 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_openpgp.c: + + Added stubs for the case we don't have OpenCDK support. + +2002-02-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, + lib/gnutls.h.in.in, lib/gnutls_cert.c, lib/gnutls_x509.c, + lib/x509_sig_check.c, lib/x509_verify.c, src/common.c, src/serv.c: + Changed certificate verification functions. + +2002-02-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_int.h: [no log message] + +2002-02-22 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_openpgp.c, lib/gnutls_openpgp.h: + + Implemented gnutls_certificate_set_openpgp_key_mem. Some basic + routines for key ownertrust. + +2002-02-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.h, lib/gnutls.h.in.in, lib/gnutls_cert.c: added + trustdb stuff + +2002-02-22 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_openpgp.c: + + Modified code for the new OpenCDK code. + +2002-02-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_record.c: [no log message] + +2002-02-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_errors.c: [no log message] + +2002-02-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_algorithms.c: moved private cipher suites to 0xFF + space. + +2002-02-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_alert.c, lib/gnutls_alert.h, + lib/gnutls_algorithms.c, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_kx.c, lib/gnutls_record.c, src/cli.c, src/serv.c: + Several alert protocol changes. + +2002-02-21 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_openpgp.c: + + Fixed return code check for GnuTLS functions. + +2002-02-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_alert.c: [no log message] + +2002-02-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_openpgp.c: set_key_server renamed + to set_keyserver + +2002-02-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/debug.c, lib/debug.h, lib/gnutls.h.in.in, + lib/gnutls_alert.c, src/cli.c: Added gnutls_alert_str (allows + printing alert number descriptions) + +2002-02-21 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_openpgp.c: + + Fixed a segfault in the OpenPGP code. + +2002-02-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c: Updated the openpgp certificate message, + fingerprint handling. + +2002-02-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli-gaa.c, src/cli-gaa.h, src/cli.gaa, src/common.c, + src/common.h, src/serv-gaa.c, src/serv-gaa.h, src/serv.gaa: [no log + message] + +2002-02-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509_verify.c: some fixes in verification procedure + +2002-02-19 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_cert.h, lib/gnutls_errors_int.h, lib/gnutls_openpgp.c, + lib/gnutls_openpgp.h: + + Applied the patches to fix the GDOC problem. Some bug fixes all + over the place and the implementation of some function stubs. + +2002-02-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_cert.c, lib/gnutls_int.h, + lib/gnutls_x509.c, lib/x509_sig_check.c, src/common.c: removed + CERT_CORRUPTED + +2002-02-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c: openpgp fingerprint is calculated dynamically. + +2002-02-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c, lib/auth_cert.h, lib/gnutls.h.in.in: Added some + support the OpenPGP Certificate message, with key fingerprints. + +2002-02-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c, lib/gnutls.h.in.in, lib/gnutls_int.h, + lib/gnutls_state.c, lib/gnutls_state.h, src/cli-gaa.c, + src/cli-gaa.h, src/cli.c, src/cli.gaa, src/common.c: Added some + stuff for the client to send the OpenPGP fingerprint. + +2002-02-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_rsa.c, lib/gnutls_pk.c: Corrected bug in RSA + authentication, responsible for random (very very rare, and + difficult to reproduce) failures. + +2002-02-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c, lib/x509_verify.c: [no log message] + +2002-02-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c, lib/x509_verify.c: Improved X.509 verification + functions. They are still too primitive. + +2002-02-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_rsa.c, lib/gnutls_dh.c: [no log message] + +2002-02-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_rsa.c: Some cleanups. + +2002-02-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_record.c, src/cli.c, src/serv.c: + [no log message] + +2002-02-15 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_openpgp.c: + + Fixed some memory leaks. Code to handle ElGamal keys. Some minor + bug fixes. + +2002-02-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_record.c: renamed gnutls_read to + gnutls_record_read and gnutls_write to gnutls_record_write. + +2002-02-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2002-02-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, + src/serv-gaa.c, src/serv.gaa: updated client and server + +2002-02-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-openpgp-keys-00.txt: removed + +2002-02-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2002-02-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_extensions.c, + lib/gnutls_extensions.h, lib/gnutls_record.c: Extension types now + use a 16 bit type field (following the current draft). Some fixes + in the max record size extension. + +2002-02-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-openpgp-keys-01.txt: [no log message] + +2002-02-14 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_openpgp.c, lib/gnutls_openpgp.h: + + Basic HKP keyserver support. Function to retrieve the key from the + keyring by keyid, fingerprint. + +2002-02-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cert.c, lib/x509_verify.c: Verification function + returns the GNUTLS_CERT_VALID flag. + +2002-02-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_srp_passwd.c, lib/gnutls_int.h, lib/gnutls_srp.c, + lib/gnutls_ui.h: Changed srp callback function parameters. + +2002-02-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_dh_primes.c, src/serv.c: Corrected bugs in prime + generation. + +2002-02-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/Makefile.am, src/cli.c, src/common.c, src/serv-gaa.c, + src/serv-gaa.h, src/serv.c, src/serv.gaa: Server updated. Now + command line parameters are available. + +2002-02-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli-gaa.c, src/cli.c, src/cli.gaa: [no log message] + +2002-02-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509_ASN.c, configure.in: [no log message] + +2002-02-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, + src/common.c: Updated client + +2002-02-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2002-02-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_anon.c, lib/gnutls_cipher.c, lib/gnutls_handshake.c, + lib/gnutls_kx.c, lib/gnutls_record.c: Direct access to version + field in the state was replaced by the function + gnutls_protocol_get_version(). + +2002-02-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_rsa.c: Corrected bugs in RSA authentication. Random + value is not generated using the GNUTLS_STRONG_RANDOM flag, and + fixed client key exchange packet formating, to depend on the correct + version. + +2002-02-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in: [no log message] + +2002-02-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_int.h, lib/x509_sig_check.c, lib/x509_verify.c: Added + GNUTLS_CERT_INVALID and GNUTLS_CERT_VALID of CertificateStatus + flags, which replace GNUTLS_CERT_NOT_TRUSTED. + +2002-02-13 Fabio Fiorina <fiorinaf@gnutls.org> + + * lib/x509_ASN.y: bug fix with bison 1.32 + +2002-02-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_anon.c, lib/auth_anon.h, lib/auth_cert.h, + lib/auth_dhe.c, lib/gnutls.h.in.in, lib/gnutls_dh.c, + lib/gnutls_dh.h, lib/gnutls_dh_primes.c, lib/gnutls_errors.c, + lib/gnutls_errors.h, lib/gnutls_errors_int.h, + lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_state.c, + lib/gnutls_state.h, lib/gnutls_ui.c, lib/gnutls_ui.h, src/cli.c, + src/common.c, src/serv.c: Added more functions to allow access to + Diffie Hellman parameters (partially at least). Corrected Diffie + Hellman stuff. + +2002-02-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c: [no log message] + +2002-02-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/Makefile.am, src/cli-gaa.c, src/cli-gaa.h, src/cli.c, + src/cli.gaa: Made most ifdefs in client program, configurable via + command line. + +2002-02-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/ext_cert_type.c: It does not send the cert_type extension if + only x.509 certificates are used. + +2002-02-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_priority.c: Priority cannot be set if not using the + OPENCDK library. + +2002-02-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c, src/openpgp/cli_pub.asc, src/openpgp/cli_ring.gpg, + src/openpgp/cli_sec.asc: Added new client pgp keys and a keyring + +2002-02-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c: [no log message] + +2002-02-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_srp_passwd.c: [no log message] + +2002-02-10 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_openpgp.c, lib/gnutls_openpgp.h: + + High level support for OpenPGP keyrings. + +2002-02-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509_verify.c: [no log message] + +2002-02-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/common.c: [no log message] + +2002-02-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2002-02-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in: [no log message] + +2002-02-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cert.c: [no log message] + +2002-02-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c, src/common.c, src/serv.c: [no log message] + +2002-02-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_algorithms.c: [no log message] + +2002-02-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_algorithms.c: Added + gnutls_certificate_type_get_name() function. + +2002-02-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_cert.c, lib/gnutls_ui.h, + doc/protocol/draft-ietf-tls-openpgp-keys-01.txt: [no log message] + +2002-02-09 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_openpgp.c: + + * Applied the fixed for the memory leaks. + +2002-02-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c, src/serv.c: [no log message] + +2002-02-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_srp.c, lib/auth_srp.h, lib/auth_srp_passwd.c, + lib/auth_srp_passwd.h, lib/gnutls_cert.c, lib/gnutls_int.h, + lib/gnutls_srp.c, lib/gnutls_srp.h, lib/gnutls_ui.h, + lib/gnutls_x509.c: Added ability for an SRP server to use multiple + password files. The password file is selected on the fly (handshake) + using a callback function. + +2002-02-09 Timo Schulz <twoaday@gnutls.org> + + * lib/auth_cert.h, lib/gnutls_openpgp.c, lib/gnutls_openpgp.h: + + * auth_cert.h: Added OpenPGP keyring item. + + * gnutls_openpgp.c: Improved support for keyring handling. + +2002-02-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cipher.c: Some fixes in ciphertext2compressed handling + +2002-02-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_alert.c, lib/gnutls_cipher.c, lib/gnutls_errors.c, + lib/gnutls_errors_int.h: Removed the GNUTLS_E_MAC_FAILED error. Now + only GNUTLS_E_DECRYPTION_FAILED error is used. That we don't leak + any information about the result of a possible attack. + +2002-02-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, + lib/gnutls_cert.c, lib/gnutls_openpgp.h: Added LIBOPENCDK ifdefs + (suggested by Andrew McDonald) + +2002-02-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509_ASN.c: Added bison generated file + +2002-02-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-openpgp-keys-01.txt: [no log message] + +2002-02-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-openpgp-keys-01.txt: changed the + introduction (again) + +2002-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_priority.c: [no log message] + +2002-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c, src/cli.c, src/openpgp/cli_pub.asc, + src/openpgp/cli_sec.asc: Corrected behaviour of client openpgp + certificate selection. + +2002-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.c: [no log message] + +2002-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_ui.c, lib/gnutls_ui.h: removed + gnutls_certificate_get_ours_index() + +2002-02-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_asn1_tab.c, lib/pkcs1_asn1_tab.c: Added asn1 file + +2002-02-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_ui.h, lib/gnutls_x509.c: Modified + gnutls_x509_extract_subject_alt_name() to return the type, instead + of storing it to a pointer. + +2002-02-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_ui.h, + lib/gnutls_x509.c, lib/x509_extensions.c: Added function which + returns the subjectAltName (subject_dns_name was obsoleted). + +2002-02-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * AUTHORS: added Timo + +2002-02-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-openpgp-keys-01.txt: [no log message] + +2002-02-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/crypt_bcrypt.c, lib/gnutls_cert.c, lib/gnutls_num.c, + lib/gnutls_num.h, lib/x509_extensions.c, src/common.c: [no log + message] + +2002-02-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509_verify.c: Changed the X.509 certificate verification + algorithm. Now if any of the certificates in the certificate path is + expired (except the first one), we return GNUTLS_CERT_NOT_TRUSTED. + +2002-02-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_ui.h: [no log message] + +2002-02-05 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_openpgp.c, lib/gnutls_openpgp.h: + + Changes the function name to make clear OpenPGP uses keys and not + certificates like X.509. + +2002-02-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cert.c, lib/gnutls_ui.h, src/common.c: Changes for + gnutls_openpgp_name structure + +2002-02-04 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_openpgp.c, lib/gnutls_openpgp.h, lib/gnutls_ui.h: + + Now OpenPGP uses its own context for DN. + +2002-02-03 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_openpgp.c: + + More fixes for the GnuTLS OpenPGP code. + +2002-02-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_ui.h, lib/gnutls_x509.c, + src/common.c: renamed the gnutls_dn structure to gnutls_x509_dn + +2002-02-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/Makefile.am, src/common.c, src/common.h: made the print_info + stuff much cleaner. + +2002-02-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_openpgp.c: some changes in gnutls_cert handling + +2002-02-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_int.h: [no log message] + +2002-02-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cert.h: keyUsage is now 16 bits + +2002-02-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/common.h: [no log message] + +2002-02-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/common.h: [no log message] + +2002-02-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/auth_cert.c, lib/auth_cert.h, + lib/auth_dhe.c, lib/auth_rsa.c, lib/gnutls_alert.c, + lib/gnutls_algorithms.c, lib/gnutls_cert.c, lib/gnutls_cert.h, + lib/gnutls_errors.c, lib/gnutls_errors_int.h, + lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_privkey.c, lib/gnutls_x509.c, lib/x509_verify.c, + lib/x509_verify.h, src/cli.c, src/common.h, src/serv.c: Added + OpenPGP certificate support in gnutls. Several changes. + +2002-02-03 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_openpgp.c, lib/gnutls_openpgp.h: + + * gnutls_openpgp.c (_gnutls_openpgp_cert2gnutls_cert): New. Set the + keyUsage flag to indicate what the key is useful for. + +2002-02-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_openpgp.h: [no log message] + +2002-02-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_openpgp.c, lib/gnutls_ui.h: Exported openpgp keys' + related functions. + +2002-02-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_record.c, lib/gnutls_record.h, lib/gnutls_state.c, + lib/gnutls_state.h: Moved functions unrelated to record layer to + gnutls_state.c + +2002-02-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_int.h: several modifications for cert_type extension + etc + +2002-02-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_priority.c, lib/gnutls_priority.h: + Added option to set the cert_type priority. + +2002-02-03 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_openpgp.c: + + * Applied the patch and minor changes. + + * Now it's also possible to use binary certificates. + +2002-02-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/ext_cert_type.c, lib/ext_cert_type.h: Added stuff for parsing + the CertType extension type. + +2002-02-03 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_openpgp.c: + + * gnutls_openpgp.c: Fixed some memory leaks. + +2002-02-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_ui.c: renamed gnutls_fingerprint() + to gnutls_x509_fingerprint(). + +2002-02-02 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_openpgp.c, lib/gnutls_openpgp.h: + + * gnutls_openpgp.c: Now all functions use gnutls_datum. Change the + function headers of internal functions. + +2002-02-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/Makefile.am, lib/gnutls_openpgp.c, + src/Makefile.am: Added gnutls_openpgp in the makefiles. Added some + kind of opencdk library detection. + +2002-02-01 Timo Schulz <twoaday@gnutls.org> + + * src/openpgp/pub.asc, src/openpgp/sec.asc: + + New files for OpenPGP tests. + +2002-02-01 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_openpgp.c, lib/gnutls_openpgp.h: + + * gnutls_openpgp.c: Added gdoc compatible function descriptions. + + (gnutls_openpgp_add_fingerprint): New function to register keyrings. + +2002-02-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_x509.h: added new header file + +2002-02-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, doc/protocol/draft-ietf-tls-openpgp-keys-01.txt, + lib/Makefile.am, lib/auth_cert.c, lib/auth_cert.h, + lib/gnutls.h.in.in, lib/gnutls_cert.c, lib/gnutls_cert.h, + lib/gnutls_int_compat.c, lib/gnutls_session_pack.c, + lib/gnutls_ui.h, lib/gnutls_x509.c, lib/x509_extensions.c, + src/cli.c, src/common.h, src/serv.c: Several changes in certificate + and key handling. + * gnutls_certificate_allocate_sc() does not require the ncerts + argument + +2002-01-31 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * Makefile.am, doc/protocol/draft-ietf-tls-openpgp-keys-01.txt, + lib/Makefile.am, lib/auth_cert.c, lib/debug.c, lib/gnutls.h.in.in, + lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_state.h, + lib/gnutls_ui.c, lib/gnutls_ui.h, lib/gnutls_x509.c, src/cli.c, + src/common.h: Renamed gnutls_x509pki_extract_* to + gnutls_x509_extract_*. Separated gnutls_x509_extract_* functions. + Now are in gnutls_x509.c. + +2002-01-31 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509_asn1.c, lib/x509_der.c: corrected _gnutls_str_cpy() + usage. + +2002-01-31 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-openpgp-keys-01.txt: [no log message] + +2002-01-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-openpgp-keys-01.txt: updated + +2002-01-30 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_openpgp.c: + + Fixed some memory leaks. + +2002-01-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-openpgp-keys-01.txt: updated + candidate draft + +2002-01-29 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_openpgp.c: + + Fixed a typo. + +2002-01-29 Timo Schulz <twoaday@gnutls.org> + + * lib/gnutls_cert.h, lib/gnutls_openpgp.c, lib/gnutls_openpgp.h: + + Basic GnuTLS OpenPGP support. + +2002-01-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, src/common.h: updated for + gnutls_certificate_get_peers() + +2002-01-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_ui.c, lib/gnutls_ui.h: Added + gnutls_certificate_get_peers() Added gnutls_certificate_get_ours() + Added gnutls_certificate_get_ours_index() + +2002-01-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c, lib/gnutls.h.in.in, lib/gnutls_cert.h, + lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_record.h, + lib/gnutls_state.c, lib/gnutls_state.h: CertificateType is now + accesible from the API. + +2002-01-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_handshake.c: corrected bug in certificate selection. + +2002-01-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_state.c, lib/gnutls_state.h: Added this + gnutls_state.c/h files. Are added in order to access some of the + GNUTLS_STATE structures members, indirectly. It's not possible to + move all the members of this structure here, yet, but it is + desirable. + +2002-01-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * Makefile.am: [no log message] + +2002-01-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_x509.c: corrected bug in server certificate callback. + +2002-01-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/auth_cert.c, lib/gnutls_cert.c, + lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_ui.h: Modified + the state's parameters to hold the negotiated certificate type. + Modified the certificate selection procedure to take the certificate + type in account, when choosing the most appropriate certificate. + +2002-01-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c, lib/gnutls.h.in.in, lib/gnutls_int.h, + lib/x509_sig_check.c, src/cli.c, src/common.h, src/serv.c: Added in + CertificateStatus: GNUTLS_CERT_CORRUPTED (replaces + GNUTLS_CERT_INVALID) GNUTLS_CERT_REVOKED + +2002-01-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_cert.c: + gnutls_x509pki_allocate_sc() renamed to + gnutls_certificate_allocate_sc() and similar functions too. They + share too common properties with OpenPGP certificates, that it is + not needed a separate function. + +2002-01-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_ui.c, lib/gnutls_ui.h: Updated function names. + +2002-01-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_cert.c, lib/auth_cert.h: Separated X509 specific stuff + in the CERTIFICATE_CREDENTIALS structure. + +2002-01-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.asn: Removed fake OID. + +2002-01-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * Makefile.am: better ChangeLog output + +2002-01-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_record.c, src/cli.c, src/serv.c: Identified a race + condition in the example client. If application data is sent after + a rehandshake request, the server thinks we ignored his request, and + breaks the connection. This is a bad design of this client. + +2002-01-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_datum.c: minor fixes + +2002-01-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_buffers.c: changed some buffering code, to use the + cleaner gnutls_datum_append(). Leads to a much cleaner code. + +2002-01-28 Fabio Fiorina <fiorinaf@gnutls.org> + + * lib/x509_ASN.y: Modules without OID + +2002-01-28 Fabio Fiorina <fiorinaf@gnutls.org> + + * lib/x509_der.c: gnutls_str_... functions substitution + +2002-01-28 Fabio Fiorina <fiorinaf@gnutls.org> + + * lib/x509_asn1.c: _gnutls_str_... functions substitution + +2002-01-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_datum.c, lib/gnutls_datum.h: added + gnutls_datum_append() + +2002-01-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cert.c, lib/gnutls_cert.h, lib/x509_sig_check.c: + signature is now a gnutls_datum + +2002-01-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/auth_anon.c, lib/auth_cert.c, + lib/auth_cert.h, lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_srp.c, + lib/auth_srp_passwd.c, lib/auth_x509.c, lib/auth_x509.h, + lib/debug.c, lib/ext_srp.c, lib/gnutls.h.in.in, + lib/gnutls_algorithms.c, lib/gnutls_auth.c, lib/gnutls_cert.c, + lib/gnutls_cert.h, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_kx.c, lib/gnutls_privkey.c, lib/gnutls_session_pack.c, + lib/gnutls_sig.c, lib/gnutls_sig.h, lib/gnutls_ui.c, + lib/gnutls_ui.h, lib/x509_sig_check.c, src/cli.c, src/common.h, + src/serv.c: GNUTLS_X509PKI -> GNUTLS_CRD_X509PKI GNUTLS_SRP -> + GNUTLS_CRD_SRP GNUTLS_ANON -> GNUTLS_CRD_ANON + +2002-01-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO, lib/auth_x509.c, lib/gnutls_int.h, src/cli.c: [no log + message] + +2002-01-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_buffers.c, lib/gnutls_buffers.h, + lib/gnutls_handshake.c: corrected and optimized handshake. + +2002-01-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_int_compat.c: not used by default + +2002-01-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_dhe.c, lib/auth_x509.c, lib/gnutls_cert.c, + lib/gnutls_cert.h, lib/gnutls_int.h, lib/gnutls_record.c: Added + ability of the client to choose a certificate depending on the + server's sign algorithm preference. Added CertType in gnutls_cert + structure (which identified X509, OPENPGP certificates) + +2002-01-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_buffers.c, lib/gnutls_buffers.h, + lib/gnutls_handshake.c: Optimizations in the handshake messages + hashing. (no more mallocs) + +2002-01-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_int.h, + lib/x509_b64.c, lib/x509_extensions.c, lib/x509_sig_check.c, + src/cli.c, src/serv.c: cleanups + +2002-01-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_gcry.c, lib/gnutls_gcry.h, lib/gnutls_pk.c: corrected + bug in DSA signing. + +2002-01-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cert.c: corrected bug in file read + +2002-01-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_rsa.c, lib/auth_x509.c, lib/auth_x509.h, + lib/gnutls_handshake.c, lib/gnutls_handshake.h, + lib/gnutls_v2_compat.c: Added support to select a certificate based + on the peer's cipher suite list. (ie if DSS cipher suites are + requested and a DSA certificate is available, then this will be + used) + +2002-01-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-openpgp-keys-01.txt: Added an updated + version of the submited draft + +2002-01-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/x509/Makefile.am: [no log message] + +2002-01-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_dhe.c, lib/auth_dhe_dss.c, lib/auth_dhe_dss.h, + lib/auth_dhe_rsa.c, src/x509/cert-dsa.pem, src/x509/key-dsa.pem: + added missing files + +2002-01-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/Makefile.am, lib/gnutls_algorithms.c, + lib/gnutls_cert.c, lib/gnutls_int.h, lib/gnutls_sig.c, src/cli.c, + src/serv.c: added support for DHE_DSS cipher suites. + +2002-01-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_dhe_rsa.c, lib/auth_rsa.c, lib/auth_x509.c, + lib/gnutls.asn, lib/gnutls_cert.c, lib/gnutls_cert.h, + lib/gnutls_gcry.c, lib/gnutls_gcry.h, lib/gnutls_pk.c, + lib/gnutls_pk.h, lib/gnutls_privkey.c, lib/gnutls_sig.c, + lib/x509_sig_check.c, src/cli.c: added support for DSS + certificates. + +2002-01-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/auth_x509.c, lib/ext_max_record.c, + lib/gnutls.asn, lib/gnutls_buffers.c, lib/gnutls_cert.c, + lib/gnutls_cert.h, lib/gnutls_errors.c, lib/gnutls_errors_int.h, + lib/gnutls_extensions.c, lib/gnutls_global.c, lib/gnutls_global.h, + lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_pk.c, + lib/gnutls_pk.h, lib/gnutls_privkey.c, lib/gnutls_privkey.h, + lib/gnutls_sig.c, lib/pkcs1.asn, lib/pkix.asn, + lib/x509_sig_check.c: Added stuff for DSS certificates (not ready + yet) + +2002-01-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/x509/Makefile.am, src/x509/ca.pem, src/x509/cert.pem, + src/x509/clicert-dsa.pem, src/x509/clicert.pem, + src/x509/clikey-dsa.pem, src/x509/clikey.pem, src/x509/key.pem: + added new DSA certificates.. + +2002-01-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * acinclude.m4, lib/auth_srp_passwd.c, lib/gnutls.h.in.in, + lib/gnutls_buffers.c, lib/gnutls_global.c, lib/gnutls_handshake.c, + lib/gnutls_int.h, lib/gnutls_record.c: [no log message] + +2002-01-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_str.c, lib/gnutls_str.h: added _gnutls_mem_cpy() + +2002-01-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509_asn1.c, lib/x509_der.c: Added checks after malloc for + null. + +2002-01-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/auth_x509.c, lib/gnutls.h.in.in, + lib/gnutls_int_compat.c, lib/gnutls_record.c, lib/gnutls_record.h, + src/common.h, src/serv.c: gnutls_*_get_algo() renamed to + gnutls_*_get() (suggested by Simon Josefsson) + +2002-01-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_extensions.c, lib/gnutls_int.h: [no log message] + +2002-01-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c: [no log message] + +2002-01-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_errors.c, lib/gnutls_errors_int.h, + lib/gnutls_extensions.c, lib/gnutls_int.h, lib/gnutls_int_compat.c, + src/cli.c: added check for requested TLS extensions + +2002-01-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_int_compat.c: [no log message] + +2002-01-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: changes for 0.3.5 + +2002-01-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: preparing for 0.3.5 + +2002-01-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/gnutls.h.in.in, lib/gnutls_buffers.c, + lib/gnutls_handshake.c, lib/gnutls_handshake.h, + lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, + lib/gnutls_record.c, lib/gnutls_sig.c, lib/gnutls_sig.h: Handshake + messages are not kept in memory any more. Now we use less memory + during a handshake. + +2002-01-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_buffers.c: [no log message] + +2002-01-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_random.c: added an #error + +2002-01-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_int.h, lib/gnutls_kx.c: + GNUTLS_A_NETSCAPE_NO_CLIENT_CERTIFICATE -> + GNUTLS_A_SSL3_NO_CERTIFICATE + +2002-01-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-openpgp-01.txt, + doc/protocol/draft-ietf-tls-openpgp-keys-00.txt: added our openpgp + draft + +2002-01-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/debug.c, lib/gnutls_alert.c, lib/gnutls_buffers.c, + lib/gnutls_constate.c, lib/gnutls_errors.h, + lib/gnutls_errors_int.h, lib/gnutls_handshake.c, lib/gnutls_kx.c, + lib/gnutls_record.c, lib/gnutls_ui.h, lib/gnutls_v2_compat.c: added + _gnutls_record_log(), gnutls_handshake_log(), to avoid that #ifdef + XXX stuff. Done some cleanups in record layer. + +2002-01-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_str.c: [no log message] + +2002-01-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/TODO, lib/Makefile.am, lib/auth_srp.c, + lib/auth_srp_passwd.c, lib/crypt_srpsha1.c, lib/gnutls_cert.c, + lib/gnutls_str.c, lib/gnutls_str.h, lib/x509_extensions.c, + lib/x509_sig_check.c, lib/x509_verify.c: Added a minimal string + library to assist in safer ASN.1 parsing + +2002-01-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/common.h: in server side now prints srp username + +2002-01-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_x509.c, lib/crypt_bcrypt.c, lib/crypt_srpsha1.c, + lib/debug.c, lib/gnutls_cert.c, lib/gnutls_errors.c, + lib/gnutls_global.c, lib/x509_b64.c, lib/x509_extensions.c, + lib/x509_sig_check.c, lib/x509_verify.c: Some corrections done ( + found by using flawfinder). Added several tags for flawfinder to + ignore. + +2002-01-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: added string library + +2002-01-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/scripts/gdoc, lib/auth_x509.c, lib/gnutls_buffers.c, + lib/gnutls_cert.c, lib/gnutls_errors.c, lib/gnutls_errors.h, + lib/x509_extensions.c, lib/x509_sig_check.c: cleanups + +2002-01-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_record.c: more cleanups in the recv_int() function + +2002-01-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/auth_rsa.c: corrected behaviour against PKCS-1 attacks. + (it seems that debugging code has made it to release) + +2002-01-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_record.c: Made recv_int() cleaner (needs a lot of + improvement) + +2002-01-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_handshake.c, lib/gnutls_record.c, src/cli.c, + src/serv.c: Now a server in a case of rehandshake can continue + normaly if the handshake request is ignored by the client. + +2002-01-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in: corrected gnutls_alert_send() prototype + +2002-01-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in: corrected gnutls_alert_send() prototype. + +2002-01-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2002-01-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: last changes for release + +2002-01-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: [no log message] + +2002-01-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_int.h: [no log message] + +2002-01-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_dhe_rsa.c, src/cli.c: corrected bugs in DHE_RSA cipher + suites + +2002-01-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_anon.c, lib/auth_anon.h, lib/auth_dhe_rsa.c, + lib/auth_srp.c, lib/auth_x509.c, lib/gnutls_algorithms.c, + lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_auth_int.h, + lib/gnutls_int.h: updated auth info structures handling. Corrected + bug in DHE_RSA. + +2002-01-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_handshake.c: corrected bug introduced in the buffering + code update + +2002-01-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_dh.c: [no log message] + +2002-01-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/auth_anon.c, lib/auth_dhe_rsa.c, + lib/gnutls.h.in.in, lib/gnutls_anon_cred.c, lib/gnutls_dh.c, + lib/gnutls_dh.h, lib/gnutls_int.h, lib/gnutls_int_compat.c, + lib/gnutls_record.c, lib/gnutls_ui.c, lib/gnutls_ui.h, + src/common.h, src/serv.c: Combined + gnutls_x509pki_(set/get)_dh_bits() and gnutls_anon_server/client_get + to gnutls_dh_(set/get)_bits(). gnutls_anon_set_server_cred() was + deprecated by gnutls_dh_set_bits(). + +2002-01-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cert.c: gnutls_x509pki_set_trust_(file/mem) can now be + called multiple times + +2002-01-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_record.c: added missing include of gnutls_alert.h + +2002-01-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-freier-ssl-version3-02.txt, + doc/protocol/ssl-2.txt, doc/protocol/ssl-draft302.txt, + doc/protocol/ssl-version2.txt: [no log message] + +2002-01-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/rfc2440.txt: added openpgp rfc + +2002-01-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/Makefile.am, lib/auth_srp_passwd.h, + lib/auth_x509.c, lib/debug.c, lib/gnutls.h.in.in, + lib/gnutls_alert.c, lib/gnutls_algorithms.c, + lib/gnutls_algorithms.h, lib/gnutls_auth.c, lib/gnutls_buffers.c, + lib/gnutls_buffers.h, lib/gnutls_cert.c, lib/gnutls_cert.h, + lib/gnutls_db.c, lib/gnutls_db.h, lib/gnutls_dh.h, + lib/gnutls_dh_primes.c, lib/gnutls_errors.c, lib/gnutls_global.c, + lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_ui.c, + lib/gnutls_ui.h, lib/x509_ASN.y, src/cli.c, src/common.h, + src/serv.c: several cleanups in order to move to gnutls 0.4.0 + +2002-01-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_int_compat.c: added file to hold functions for + backwards binary compatibility. + +2002-01-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/auth_srp_sb64.c, lib/auth_x509.c, + lib/gnutls.h.in.in, lib/gnutls_alert.h, lib/gnutls_cert.c, + lib/gnutls_handshake.c, lib/gnutls_random.c, lib/gnutls_ui.h, + lib/x509_b64.c, lib/x509_b64.h, src/crypt.c: added required changes + to release gnutls 0.3.3 (mostly bug fixes) + +2002-01-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_ui.h, lib/x509_b64.c: cleanups + +2002-01-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/auth_dhe_rsa.c, lib/gnutls_algorithms.c, + lib/gnutls_cert.c, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_ui.c, lib/gnutls_ui.h, src/common.h, src/serv.c: Renamed + gnutls_x509pki_s/get_dh_bits() to gnutls_dh_s/get_dhe_bits(). + Renamed gnutls_anon_server/client_get_dh_bits() to + gnutls_dh_get_dha_bits(). + +2002-01-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2002-01-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_algorithms.c, lib/gnutls_int.h: Key exchange + methods changed so they do not depend on the Certificate type + (GNUTLS_KX_X509PKI_* renamed to GNUTLS_KX_*). + +2002-01-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_srp_sb64.c, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, + lib/gnutls_buffers.c, lib/gnutls_buffers.h, + lib/gnutls_cipher_int.c, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_record.c, lib/gnutls_sig.c: changes in buffering code + (actually variables' names are more rational now). + +2002-01-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: corrected library interface numbers + +2002-01-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, THANKS: updated documentation + +2002-01-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_srp_sb64.c, lib/gnutls_handshake.c, lib/gnutls_random.c, + src/crypt.c: fixed bugs reported (with patches) by Marc Huber and + Guillaume Morin. + +2002-01-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, THANKS, lib/gnutls.h.in.in, lib/gnutls_cert.c, + lib/x509_b64.c, lib/x509_b64.h: Added + gnutls_x509pki_set_trust_mem() and gnutls_x509pki_set_key_mem() + +2002-01-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_int.h: [no log message] + +2002-01-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_alert.h, lib/gnutls_int.h, lib/gnutls_record.c: better + length checking in the record layer. + +2002-01-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-extensions-01.txt, + doc/protocol/draft-ietf-tls-extensions-02.txt: new extensions draft + +2002-01-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/auth_x509.c: added gnutls_x509pki_verify_certificate() + +2002-01-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_ui.c: renamed DigestAlgorithm to + GNUTLS_DigestAlgorithm (in order to be consistent with gnutls.h) + +2002-01-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/libgnutls.m4: corrected the temp file name + +2002-01-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/Makefile.am, lib/gnutls_errors.c: last minute changes + for 0.3.2 release + +2002-01-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_ui.h, lib/x509_b64.c: renamed + gnutls_b64_encode() to gnutls_b64_encode_fmt() + +2002-01-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_ui.h, lib/x509_b64.c: Added gnutls_b64_encode() + and gnutls_b64_decode() + +2002-01-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, src/common.h: updated documentation + +2002-01-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/auth_rsa.c, lib/gnutls_auth.c, + lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, + lib/gnutls_priority.c, lib/gnutls_record.c, lib/gnutls_record.h: + Cleanups + +2002-01-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/gnutls_alert.c, lib/gnutls_alert.h: + separated alert protocol functions + +2002-01-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/auth_rsa.c, lib/gnutls_handshake.c, + lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_priority.c, + lib/gnutls_record.c: corrected behaviour in version advertizing + +2002-01-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/libgnutls.m4: now removes the temp file + +2002-01-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in: check_version() updated + +2002-01-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_rsa.c, lib/gnutls_int.h: [no log message] + +2002-01-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/crypt_srpsha1.c, lib/gnutls.h.in.in, lib/gnutls_auth.c, + lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_hash_int.c, + lib/gnutls_int.h, lib/gnutls_sig.c, lib/gnutls_srp.c, + lib/gnutls_ui.c, lib/x509_sig_check.c: cleanups + +2002-01-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/auth_x509.c, lib/gnutls.h.in.in, + lib/gnutls_algorithms.h, lib/gnutls_ui.c, lib/gnutls_ui.h, + src/cli.c, src/common.h, src/serv.c: Added + gnutls_x509pki_extract_certificate_serial() and some cleanups. + +2002-01-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_ui.c: more error checking + +2002-01-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_ui.c: [no log message] + +2002-01-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in: prefixed all variable with GNUTLS_ + +2002-01-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_global.c: added support for calling global_init() + several times. + +2002-01-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_global.c: added static variable to check if + global_init() is called for a second time. + +2002-01-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, README, lib/crypt_srpsha1.c, lib/gnutls.h.in.in, + lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_int.h, + lib/gnutls_sig.c, lib/gnutls_srp.c, lib/gnutls_ui.c, + lib/x509_sig_check.c, src/cli.c: Cleanups in the digest code + (separated from HMAC). Added gnutls_fingerprint_calc(), which + calculates a fingerprint. + +2001-12-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * Makefile.am: added PGPKEYS + +2001-12-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/README.CVS: updated + +2001-12-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/auth_x509.c: corrected bug which did not allow a client + to accept multiple CA distinguished names. + +2001-12-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/README.srpcrypt: updated + +2001-12-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO, lib/gnutls_buffers.c: [no log message] + +2001-12-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cert.c: some corrections in documentation + +2001-12-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: releasing 0.3.0 + +2001-12-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509_ASN.y, lib/x509_asn1.c, lib/x509_der.c: cleaned up and + fixed ASN.1 documentation. + +2001-12-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/scripts/gdoc: corrected in order not to complain if + func(void) is used. + +2001-12-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/gnutls.h.in.in: cleanups + +2001-12-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO, lib/auth_anon.h, lib/auth_srp.c, lib/auth_srp.h, + lib/auth_srp_passwd.c, lib/auth_x509.c, lib/auth_x509.h, + lib/ext_srp.c, lib/gnutls.h.in.in, lib/gnutls_anon_cred.c, + lib/gnutls_cert.c, lib/gnutls_global.c, lib/gnutls_global.h, + lib/gnutls_handshake.c, lib/gnutls_sig.c, lib/gnutls_srp.c, + lib/gnutls_ui.h, src/cli.c, src/serv.c: some cleanups. + *_CREDENTIALS renamed to GNUTLS_*_CREDENTIALS. Added defines to + keep source compatibility. + +2001-12-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_anon.c: corrected bugs in AUTH_INFO allocation + +2001-12-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in.in, lib/gnutls_algorithms.c, lib/gnutls_int.h: + cleanups + +2001-12-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, THANKS, configure.in, lib/Makefile.am, lib/gnutls.h.in, + lib/gnutls.h.in.in, lib/gnutls_buffers.c, lib/gnutls_int.h: + corrections in the configuration files. + +2001-12-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: some corrections in assembler detection. Also chmod + -w gnutls.h was removed. + +2001-12-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_srp.c, lib/gnutls_extensions.c, lib/gnutls_handshake.c, + lib/gnutls_record.c: Corrections for big endian machines. Pointed + out by Mike Siers <mikes@poliac.com> + +2001-12-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls.h.in, lib/gnutls_buffers.c, lib/gnutls_cert.c, + lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_global.c, + lib/gnutls_handshake.c, lib/gnutls_record.c, lib/gnutls_session.c, + src/cli.c, src/serv.c: cleanups and documentation updates + +2001-12-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_int.h: [no log message] + +2001-12-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_anon.c, lib/auth_srp.c, lib/gnutls_record.c, + lib/gnutls_session_pack.c, src/cli.c: corrections in SRP and ANON + authentication. Also corrections in the session packing for + anonymous auth info. + +2001-12-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in, lib/gnutls_kx.c, lib/gnutls_record.c, + lib/gnutls_record.h, src/cli.c, src/serv.c: *_alert -> alert_* + +2001-12-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_anon.c, lib/auth_dhe_rsa.c, lib/auth_srp.c, + lib/auth_x509.c, lib/gnutls.h.in, lib/gnutls_auth.c, + lib/gnutls_auth_int.h, lib/gnutls_handshake.c, + lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_record.c, + lib/gnutls_session_pack.c, lib/gnutls_ui.c, lib/gnutls_ui.h, + src/cli.c, src/serv.c: gnutls_set_max_record_size -> + gnutls_record_set_max_size gnutls_get_max_record_size -> + gnutls_record_get_max_size gnutls_set_cred -> gnutls_cred_set + gnutls_get_auth_type -> gnutls_auth_get_type + +2001-12-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_handshake.c: documentation updated + +2001-12-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in, lib/gnutls_db.c, lib/gnutls_record.c: changed + function names + +2001-12-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/ASN1.readme.txt, doc/Makefile.am: removed ASN1.readme.txt + +2001-12-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2001-12-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in, lib/gnutls_srp.c, src/serv.c: [no log message] + +2001-12-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, buildconf, doc/README.autoconf, lib/gnutls.h.in, + lib/gnutls_cert.c, lib/gnutls_int.h, src/cli.c, src/serv.c: renamed + gnutls_x509pki_set_trust/key to + gnutls_x509pki_set_trust_file/key_file + +2001-12-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_x509.c, lib/gnutls.h.in, lib/gnutls_errors.c, + lib/gnutls_extensions.c, lib/gnutls_int.h: some corrections in the + DECR_LEN stuff added recently. + +2001-12-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, doc/README.autoconf, lib/auth_x509.c: updated + documentation + +2001-12-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_anon.c, lib/auth_dhe_rsa.c, lib/auth_srp.c, + lib/auth_x509.c, lib/gnutls_extensions.c, lib/gnutls_handshake.c: + More carefull parsing of incoming packets. + +2001-12-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: [no log message] + +2001-12-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, THANKS, lib/gnutls_int.h, lib/gnutls_pk.c: [no log message] + +2001-12-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_handshake.c: several cleanups + +2001-12-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_gcry.c, lib/gnutls_gcry.h: corrected bugs in STD + formating (back to USG). + +2001-12-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * COPYING: [no log message] + +2001-12-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: [no log message] + +2001-12-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_int.h: last commits for 0.2.91 + +2001-12-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO, lib/auth_anon.c, lib/auth_rsa.c, lib/gnutls_constate.c, + lib/gnutls_datum.c, lib/gnutls_datum.h, lib/gnutls_errors.c, + lib/gnutls_errors_int.h, lib/gnutls_global.c, + lib/gnutls_handshake.c, lib/gnutls_hash_int.c, + lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_kx.c, + lib/gnutls_mem.c, lib/gnutls_mem.h, lib/gnutls_record.c: + optimizations and fixes in the TLS PRF calculation (and the SSL3 + equivalent) + +2001-12-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c: [no log message] + +2001-12-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_anon_cred.c: fixed gnutls_anon_free_client_sc() + +2001-12-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/auth_anon.h, lib/gnutls.h.in, lib/gnutls_anon_cred.c, + lib/gnutls_auth.c, lib/gnutls_handshake.c, lib/gnutls_int.h, + src/cli.c: Fixes in anonymous authentication. Fixes in client + ciphersuite selection. + +2001-12-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/debug.c, lib/gnutls_cert.c: GET_CN() now works. (affects + debug mode only) + +2001-12-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/Makefile.am, src/README.crypt, src/README.srpcrypt: crypt -> + srpcrypt + +2001-12-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/auth_x509.c, lib/auth_x509.h, lib/gnutls_cert.c, + lib/gnutls_errors_int.h, lib/gnutls_handshake.c, lib/gnutls_int.h: + Optimizations in server certificate callback. + +2001-12-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls.h.in, lib/gnutls_db.c, lib/gnutls_int.h, + lib/gnutls_record.c: added gnutls_transport_get_ptr() and + gnutls_db_get_ptr() functions. + +2001-12-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/auth_x509.c, lib/ext_dnsname.c, + lib/ext_dnsname.h, lib/gnutls.h.in, lib/gnutls_extensions.c, + lib/gnutls_handshake.c, src/cli.c, src/serv.c: remove dnsname + (name_ind) extension + +2001-12-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_anon.c, lib/auth_dhe_dss.c, lib/auth_dhe_rsa.c, + lib/auth_srp.c, lib/auth_srp_passwd.c, lib/gnutls_buffers.c, + lib/gnutls_cert.c, lib/gnutls_dh_primes.c, lib/gnutls_gcry.c, + lib/gnutls_gcry.h, lib/gnutls_int.h, lib/gnutls_pk.c, + lib/gnutls_privkey.c, lib/gnutls_srp.c, lib/x509_extensions.c: + Cleanups. Now use GCRYMPI_FMT_STD instead of USG. + +2001-12-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_record.c: [no log message] + +2001-12-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2001-12-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: updated documentation + +2001-12-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_x509.c, lib/gnutls_int.h, lib/gnutls_ui.h: callbacks now + get a GNUTLS_STATE argument. + +2001-12-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_x509.c, lib/gnutls.h.in, lib/gnutls_algorithms.c, + lib/gnutls_cert.c, lib/gnutls_int.h, src/cli.c, src/serv.c: + GNUTLS_KX_RSA renamed to GNUTLS_KX_X509PKI_RSA (and the other X509 + key exchange methods). This will allow GNUTLS_KX_PGP_RSA etc. + +2001-12-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/defines.h, lib/gnutls.h.in, + lib/gnutls_algorithms.c, lib/gnutls_int.h, lib/gnutls_priority.c, + lib/gnutls_record.c, src/cli.c, src/serv.c: GNUTLS_LIST is now int* + +2001-12-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/debug.c, lib/gnutls.h.in, lib/gnutls_algorithms.c, + lib/gnutls_cipher.c, lib/gnutls_cipher_int.c, + lib/gnutls_compress_int.c, lib/gnutls_constate.c, + lib/gnutls_errors_int.h, lib/gnutls_hash_int.c, lib/gnutls_int.h, + lib/gnutls_kx.c, lib/gnutls_record.c, lib/gnutls_v2_compat.c, + src/cli.c, src/serv.c: cleanups again + +2001-12-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509_ASN.y, lib/x509_asn1.c, lib/x509_asn1.h, lib/x509_der.c, + lib/x509_der.h: some changes to keep gcc -Wall happy + +2001-12-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/auth_rsa.c, lib/auth_x509.c, lib/auth_x509.h, + lib/gnutls.h.in, lib/gnutls_algorithms.c, lib/gnutls_cert.c, + lib/gnutls_cert.h, lib/gnutls_errors_int.h, lib/gnutls_global.c, + lib/gnutls_int.h, lib/gnutls_priority.c, lib/gnutls_priority.h, + lib/gnutls_record.c, lib/gnutls_record.h, src/cli.c, src/serv.c: + Several cleanups. + +2001-12-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/gnutls.h.in, lib/gnutls_db.c, + lib/gnutls_db.h, lib/gnutls_session.c, lib/gnutls_session.h, + src/cli.c, src/serv.c: Changes in function names concerning _db_ + handling and _session_ handling. + +2001-12-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/TODO, lib/auth_dhe_rsa.c, lib/auth_x509.c, + lib/auth_x509.h, lib/gnutls.h.in, lib/gnutls_anon_cred.c, + lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_handshake.c, + lib/gnutls_int.h, lib/gnutls_srp.c, lib/gnutls_ui.h, src/cli.c, + src/serv.c: Added callback to select the server certificate. + +2001-12-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/auth_x509.c, lib/gnutls_record.c, lib/gnutls_ui.c, + lib/gnutls_ui.h, src/cli.c, src/common.h, src/serv.c: optimized + certificate handling API + +2001-12-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_dhe_rsa.c, lib/auth_x509.c, lib/auth_x509.h, + lib/gnutls_cert.h, lib/gnutls_ui.h, src/serv.c: several cleanups. + Removed old unneeded functions. certificate verification was moved + out of the handshake procedure. + +2001-12-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in, lib/gnutls_buffers.c, lib/gnutls_global.c, + lib/gnutls_int.h, lib/gnutls_record.c: some cleanups + +2001-12-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/auth_dhe_rsa.c, lib/auth_x509.c, + lib/auth_x509.h, lib/gnutls.h.in, lib/gnutls_auth.c, + lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_errors.c, + lib/gnutls_errors_int.h, lib/gnutls_int.h, lib/gnutls_kx.c, + lib/gnutls_record.c, lib/gnutls_session_pack.c, lib/gnutls_ui.c, + lib/gnutls_ui.h, lib/x509_extensions.c, lib/x509_extensions.h, + src/Makefile.am, src/cli.c, src/common.h, src/port.h, src/serv.c: + now the peer's certificate list is stored into auth info structure + (instead of the certificate). several other cleanups. + +2001-12-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_x509.c, lib/auth_x509.h, lib/debug.c, lib/debug.h, + lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_handshake.c, + lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_ui.c, + lib/gnutls_ui.h, lib/x509_extensions.c, src/cli.c, src/serv.c: + moving gnutls_DN structures out of gnutls_cert and auth_info + structures. Now they are generated upon request. + +2001-12-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * acconfig.h, configure.in, lib/defines.h, lib/gnutls.h.in: fixes + in autoconf scripts + +2001-12-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * AUTHORS, Makefile.am, NEWS, acconfig.h, configure.in, + lib/auth_x509.c, lib/defines.h, lib/gnutls_random.c: updated + detection of library settings + +2001-11-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * AUTHORS, lib/auth_x509.c, lib/auth_x509.h, lib/gnutls_cert.c, + lib/gnutls_int.h, lib/x509_extensions.c, src/cli.c: The RDN + sequence needed in the certificate request message is now generated + and cached into a x509pki_credentials structure. This would save a + lot of time in the server side. + +2001-11-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c: [no log message] + +2001-11-29 Fabio Fiorina <fiorinaf@gnutls.org> + + * doc/ASN1.readme.txt: overflow buffers check + +2001-11-29 Fabio Fiorina <fiorinaf@gnutls.org> + + * doc/ASN1.readme.txt, lib/x509_asn1.c, lib/x509_asn1.h, + lib/x509_ASN.y: "" + +2001-11-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/Makefile.am, lib/auth_anon.c, lib/auth_dhe_rsa.c, + lib/auth_rsa.c, lib/auth_srp.c, lib/auth_x509.c, lib/auth_x509.h, + lib/gnutls_algorithms.c, lib/gnutls_auth.c, lib/gnutls_db.c, + lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_session.c, + lib/gnutls_session_pack.c, lib/gnutls_session_pack.h, + lib/gnutls_ui.c, lib/gnutls_ui.h, src/cli.c: introduced + gnutls_x509pki_get_certificate(). This function returns the peer's + certificate DER encoded. This certificate is also stored in the + resume db. + +2001-11-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_db.h: [no log message] + +2001-11-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * THANKS, configure.in, doc/README.autoconf, doc/TODO, + lib/gnutls.h.in, lib/gnutls_db.c, lib/libgnutls.m4: cleanups and + some corrections. + +2001-11-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls.h.in, lib/gnutls_buffers.c, + lib/gnutls_buffers.h, lib/gnutls_db.c, lib/gnutls_handshake.c, + lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_kx.c, + lib/gnutls_kx.h, lib/gnutls_record.c, lib/gnutls_record.h, + src/cli.c, src/serv.c: gnutls_handshake(), gnutls_read() etc. + functions no longer require the 'SOCKET cd' argument. This argument + is set using the function gnutls_set_transport_ptr(). + +2001-11-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/README.autoconf: [no log message] + +2001-11-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/README.autoconf: gnutls.m4 -> libgnutls.m4 + +2001-11-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/Makefile.am: [no log message] + +2001-11-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/scripts/gdoc: [no log message] + +2001-11-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/scripts/gdoc: produces better tex output + +2001-11-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/scripts/gdoc, lib/gnutls_ui.c: updated documentation (and + generation of tex) + +2001-11-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * AUTHORS: updated + +2001-11-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_algorithms.c: fixed gnutls_kx_get_name() + +2001-11-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_handshake.c, lib/gnutls_ui.h: cleanups + +2001-11-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/scripts/gdoc, lib/gnutls_record.c, lib/x509_asn1.c: Gdoc + updated. Now handles powers and '->' symbol automatically for tex. + +2001-11-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/TODO: [no log message] + +2001-11-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509_der.c: corrected typo + +2001-11-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/ASN1.readme.txt, doc/scripts/gdoc, lib/Makefile.am, + lib/x509_ASN.y, lib/x509_asn1.c, lib/x509_der.c: Documentation for + ASN.1 has been moved to inline comments and to the tex + documentation. + +2001-11-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_errors.c, lib/gnutls_errors_int.h: removed E_TIMEOUT + +2001-11-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/auth_dhe_rsa.c, lib/auth_srp.c, + lib/auth_x509.c, lib/gnutls_buffers.c, lib/gnutls_buffers.h, + lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_record.c, + src/serv.c: corrected some obscure bugs in the handshake and record + send buffering code. + +2001-11-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_int.h: removed debugging stuff + +2001-11-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2001-11-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2001-11-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2001-11-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2001-11-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2001-11-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * THANKS: [no log message] + +2001-11-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_handshake.c: more fixes + +2001-11-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_rsa.c, lib/gnutls_algorithms.c, lib/gnutls_buffers.c, + lib/gnutls_cipher.c, lib/gnutls_constate.c, lib/gnutls_handshake.c, + lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_kx.c, + lib/gnutls_priority.c, lib/gnutls_record.c, lib/io_debug.h, + src/serv.c: more non blocking IO fixes + +2001-11-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c: now resolves hostnames. + +2001-11-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/defines.h, lib/gnutls_priority.c: va_copy macro renamed to + VA_COPY + +2001-11-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: now requires autoconf 2.50 + +2001-11-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/ext_max_record.c, lib/gnutls.h.in, + lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cert.c, + lib/gnutls_cert.h, lib/gnutls_compress_int.c, lib/gnutls_global.c, + lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_mem.c, + lib/gnutls_mem.h, lib/gnutls_privkey.c, lib/gnutls_record.c, + lib/io_debug.h, src/cli.c, src/serv.c: several fixes. Including: + - max_record_header extension. + - resume handshake sending wrong ssl version + - Non blocking IO (not ready yet) + +2001-11-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_buffers.c, lib/gnutls_int.h: [no log message] + +2001-11-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/auth_x509.c, lib/gnutls.h.in, lib/gnutls_buffers.c, + lib/gnutls_buffers.h, lib/gnutls_global.c, lib/gnutls_handshake.c, + lib/gnutls_int.h, lib/gnutls_record.c, src/cli.c: cleanups and + documentation updates + +2001-11-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_x509.c: rolled back previous change... + +2001-11-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_x509.c: made empty certificate message consistent with + other implementations. + +2001-11-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_anon.c, lib/auth_dhe_rsa.c, lib/auth_srp.c, + lib/auth_srp_passwd.c, lib/auth_x509.c, lib/gnutls_buffers.c, + lib/gnutls_cert.c, lib/gnutls_dh.c, lib/gnutls_dh_primes.c, + lib/gnutls_gcry.c, lib/gnutls_gcry.h, lib/gnutls_pk.c, + lib/gnutls_privkey.c, lib/gnutls_record.c, lib/gnutls_session.c, + lib/gnutls_sig.c, lib/gnutls_srp.c, lib/x509_sig_check.c: corrected + memory leaks and other bugs + +2001-11-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_buffers.c: added warning + +2001-11-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/Makefile.am, lib/ext_dnsname.c, + lib/ext_max_record.c, lib/ext_max_record.h, lib/ext_srp.c, + lib/gnutls.h.in, lib/gnutls_constate.c, lib/gnutls_errors.c, + lib/gnutls_errors_int.h, lib/gnutls_extensions.c, + lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_record.c, + src/cli.c: added max_record_size extension + +2001-11-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_session.c: corrected bug which made + get_current_session, not to return the right size of the session. + +2001-11-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/auth_dhe_rsa.c, lib/gnutls_buffers.c, + lib/gnutls_buffers.h, lib/gnutls_int.h, lib/gnutls_mem.c, + lib/gnutls_record.c: receive buffer is now dynamic. + +2001-11-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_handshake.c, lib/gnutls_record.c, src/cli.c: + changed semantics of the GNUTLS_E_REHANDSHAKE error code. + +2001-11-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * acconfig.h, configure.in, lib/defines.h, lib/gnutls_priority.c: + added support for va_copy + +2001-11-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2001-11-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_db.c, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_record.c, src/serv.c: cleanups + +2001-11-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_priority.h: list -> gnutls_list + +2001-11-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in, lib/gnutls_anon_cred.c, lib/gnutls_int.h, + lib/gnutls_priority.c: changed LIST to GNUTLS_LIST + +2001-11-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in, lib/gnutls_db.c: added new function to check for + expired sessions. + +2001-11-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_record.c: cleanups + +2001-11-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_buffers.c, lib/gnutls_buffers.h, + lib/gnutls_handshake.c, lib/gnutls_record.c, lib/gnutls_sig.c: + cleanups in function names + +2001-11-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_db.c: cleanups in the resuming code + +2001-11-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, THANKS, configure.in, lib/gnutls.h.in, lib/gnutls_db.c, + lib/gnutls_db.h, lib/gnutls_int.h, lib/gnutls_record.c: added hooks + in order to use external database to store session to be resumed. + Works but it is not finished. + +2001-11-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_buffers.c, lib/gnutls_global.c, lib/gnutls_int.h: + set_push() & set_pull() functions moved to state (instead of being + global) + +2001-11-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * README.CVS, doc/Makefile.am, doc/README.CVS: moved README.CVS to + doc/ + +2001-11-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * README.CVS: added documentation of the steps required to built + the cvs tree + +2001-11-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_srp.c, lib/auth_srp_passwd.c, lib/auth_x509.c, + lib/gnutls_auth.c, lib/gnutls_buffers.c, lib/gnutls_buffers.h, + lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h, + lib/gnutls_kx.c, lib/gnutls_mem.c, lib/gnutls_record.c, + lib/gnutls_record.h, lib/io_debug.h, src/cli.c, src/serv.c: Adopted + some of the patches of Jon Nelson. Fixes the non blocking behaviour. + +2001-10-31 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_int.h: [no log message] + +2001-10-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_buffers.c, lib/gnutls_record.c: corrected and fixed + several things in send_int() etc. + +2001-10-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: [no log message] + +2001-10-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/Makefile.am, doc/TODO, doc/scripts/Makefile.am: added scripts + into distribution + +2001-10-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_handshake.c: [no log message] + +2001-10-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_db.c, lib/gnutls_session.c: corrected bugs in session + resuming. + +2001-10-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/gnutls_db.c, lib/gnutls_int.h, + lib/gnutls_mem.c, lib/gnutls_session.c: [no log message] + +2001-10-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_buffers.c, lib/gnutls_int.h, lib/io_debug.h: cleanups + +2001-10-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/io_debug.h: added IO debugging code + +2001-10-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in: [no log message] + +2001-10-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_buffers.c, lib/gnutls_handshake.c, + lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_kx.c, + lib/gnutls_kx.h, lib/gnutls_record.c: added some checks for memory + allocation. Fixes in write interrupts. + +2001-10-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_buffers.c: corrected bugs which could break non + blocking IO + +2001-10-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * PGPKEYS: added file. Holds pgp keys + +2001-10-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_buffers.c, lib/gnutls_record.c: corrections for the + gnutls_read_buffered() function. + +2001-10-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_int.h, + lib/gnutls_record.c, src/serv.c: updated/fixed the handling of + interrupted writes + +2001-10-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_errors.c, + lib/gnutls_errors_int.h, lib/gnutls_int.h, lib/gnutls_record.c: + changed gnutls_write() semantics in order to cope with interrupted + system calls and non blocking IO + +2001-10-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_buffers.c: [no log message] + +2001-10-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in, lib/gnutls_int.h: [no log message] + +2001-10-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls.h.in, lib/gnutls_buffers.c, + lib/gnutls_buffers.h, lib/gnutls_global.c, lib/gnutls_handshake.c, + lib/gnutls_int.h, lib/gnutls_record.c: changes in order to be + independent of the berkeley style sockets (but it is still difficult + to use gnutls with any other api) + +2001-10-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_buffers.c: made gnutls_write() unaware of interrupted + system calls and eagain errors. + +2001-10-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * THANKS, lib/gnutls_buffers.c, lib/gnutls_int.h, lib/gnutls_kx.c, + lib/gnutls_record.c, lib/gnutls_ui.c, lib/gnutls_ui.h, src/serv.c: + several cleanups + +2001-10-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_buffers.c, lib/gnutls_int.h: Corrected short read bug + +2001-10-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_buffers.c: corrected _gnutls_write() + +2001-10-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_buffers.c: peeked data now stays also in handshake + +2001-10-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_kx.c: corrected bug which caused a fatal alert to be + sent even if it wasn't required + +2001-10-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_x509.c, lib/gnutls_record.c, lib/gnutls_sig.c: [no log + message] + +2001-10-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c: [no log message] + +2001-10-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls_buffers.c, lib/gnutls_errors.c, + lib/gnutls_errors_int.h, lib/gnutls_handshake.c, + lib/gnutls_record.c: introduced GNUTLS_E_INTERRUPTED, fixes in + error handling + +2001-10-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_buffers.c, lib/gnutls_handshake.c, lib/gnutls_int.h: + the gnutls handshake protocol can now hold it's state. Thus it may + be used in some kind of non blocking mode. Not tested at all + +2001-10-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/TODO, lib/gnutls_buffers.c, lib/gnutls_buffers.h, + lib/gnutls_errors.c, lib/gnutls_errors_int.h, + lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h, + lib/gnutls_record.c: clean ups in the handshake protocol + +2001-10-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, doc/TODO, lib/auth_dhe_rsa.c, lib/auth_rsa.c, + lib/auth_x509.c, lib/auth_x509.h, lib/gnutls.h.in, + lib/gnutls_auth.c, lib/gnutls_auth_int.h, lib/gnutls_errors.c, + lib/gnutls_errors_int.h, lib/gnutls_ui.c, lib/gnutls_ui.h, + src/cli.c, src/serv.c: auth_info types and structures were moved to + the internals of the library. This makes the library incompatible + (source & binary) with the previous versions. + +2001-10-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/ext_srp.c, lib/gnutls.h.in, lib/gnutls_cert.c, + lib/gnutls_dh_primes.c, lib/gnutls_errors.c, + lib/gnutls_errors_int.h, lib/gnutls_ui.h: added option to + regenerate primes and generators for EDH + +2001-10-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2001-10-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/auth_x509.c, lib/ext_dnsname.c, lib/ext_dnsname.h, + lib/gnutls.h.in, lib/gnutls_cert.c, lib/gnutls_cert.h, + lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_int.h, + src/cli.c, src/crypt.c, src/serv.c: updated name indication + extension (dnsname) + +2001-10-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/Makefile.am, src/crypt-gaa.c, src/crypt.gaa: renamed crypt to + srpcrypt. + +2001-10-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/TODO, lib/auth_anon.c, lib/gnutls_dh.h, + lib/gnutls_dh_primes.c, lib/gnutls_global.c, lib/gnutls_int.h, + src/crypt.c: better prime handling + +2001-10-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/auth_dhe_rsa.c, lib/auth_srp_passwd.c, + lib/auth_x509.c, lib/gnutls.h.in, lib/gnutls_dh.c, lib/gnutls_dh.h, + lib/gnutls_dh_primes.c, lib/gnutls_record.h, lib/gnutls_srp.c: + Updated the handling of prime numbers. + +2001-10-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_dhe_rsa.c, lib/auth_x509.c, lib/gnutls.h.in, + lib/gnutls_buffers.c, lib/gnutls_cert.c, lib/gnutls_cert.h, + lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h, + lib/gnutls_record.c, lib/gnutls_sig.c, lib/gnutls_sig.h: several + cleanups + +2001-10-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_sig.c: [no log message] + +2001-10-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, THANKS, configure.in, lib/auth_anon.c, lib/auth_dhe_rsa.c, + lib/auth_x509.c, lib/auth_x509.h, lib/gnutls_algorithms.c, + lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_datum.c, + lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_sig.c, + lib/gnutls_sig.h, lib/x509_extensions.c, src/cli.c, src/serv.c: + added DHE_RSA ciphersuites + +2001-10-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-ciphersuite-03.txt, + doc/protocol/draft-ietf-tls-ciphersuite-05.txt, + doc/protocol/draft-ietf-tls-extensions-00.txt, + doc/protocol/draft-ietf-tls-extensions-01.txt, + doc/protocol/draft-ietf-tls-kerb-00.txt, doc/protocol/rfc2712.txt: + updated documents + +2001-10-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_errors.c, lib/x509_extensions.c: [no log message] + +2001-10-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509_asn1.c, lib/x509_extensions.c: fixes in the certificate + extensions handling code. Bugs reported by Neil Spring + <nspring@saavie.org> + +2001-09-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * buildconf: [no log message] + +2001-09-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2001-09-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/auth_anon.c, lib/auth_rsa.c, + lib/auth_x509.c, lib/auth_x509.h, lib/gnutls_cert.c, + lib/gnutls_dh.h, lib/gnutls_ui.c, lib/gnutls_ui.h: several cleanups + in order to support DHE_RSA + +2001-09-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_dhe_rsa.c: Preliminary support for DHE_RSA + +2001-09-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2001-09-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_dhe_dss.c, lib/gnutls_compress_int.h, lib/gnutls_num.c: + [no log message] + +2001-09-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2001-09-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cert.c: updated documentation + +2001-09-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * README, doc/TODO: [no log message] + +2001-09-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/Makefile.am, lib/auth_rsa.c, lib/auth_x509.c, + lib/auth_x509.h, lib/gnutls.h.in, lib/gnutls_cert.c, + lib/gnutls_cert.h, lib/gnutls_errors.c, lib/gnutls_int.h, + lib/gnutls_ui.c, lib/gnutls_ui.h, lib/x509_extensions.c, src/cli.c, + src/serv.c: Client certificate callback has been improved + +2001-09-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2001-09-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2001-09-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/README.autoconf, doc/TODO: [no log message] + +2001-09-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/Makefile.am: updated documentation + generation + +2001-09-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2001-09-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_algorithms.c: updated documentation + +2001-08-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c: [no log message] + +2001-08-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_global.c, lib/gnutls_int.h, lib/gnutls_num.h: minor + bugfixes + +2001-08-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * acconfig.h, configure.in, lib/gnutls_global.c: use of sigaction + instead of signal(), to ignore SIGPIPE + +2001-08-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * buildconf: [no log message] + +2001-08-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/auth_rsa.c, lib/auth_x509.h, + lib/gnutls.h.in, lib/gnutls_cert.c, lib/gnutls_int.h, + lib/gnutls_ui.c, lib/gnutls_ui.h, src/serv.c: + gnutls_set_certificate_request() renamed to + gnutls_x509pki_set_cert_request(). Added + gnutls_x509pki_set_cert_callback(). + +2001-08-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/TODO, lib/gnutls.h.in, lib/gnutls_anon_cred.c, + lib/gnutls_cipher.c, lib/gnutls_record.c, lib/x509_asn1.c, + lib/x509_asn1.h, lib/x509_b64.c, lib/x509_der.c, src/serv.c: fixed + memory leaks + +2001-08-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/gnutls.h.in: updated gnutls.h file + +2001-08-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_record.c, + lib/gnutls_ui.c, src/serv.c: some memory optimization while + receiving packets + +2001-08-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_record.c: + header size is now written in gnutls_cipher.c + +2001-08-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2001-08-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_rsa.c, lib/gnutls.h.in, lib/gnutls_int.h, + lib/gnutls_record.c, src/cli.c, src/serv.c: bugfixes and minor + updates + +2001-08-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in, lib/gnutls_int.h, lib/gnutls_record.c, + src/cli.c, src/serv.c: changed gnutls_bye() behaviour + +2001-08-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2001-08-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in, lib/gnutls_buffers.c, lib/gnutls_int.h, + lib/gnutls_record.c: several fixes in gnutls_bye() function, and in + gnutls_recv_int() + +2001-08-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cert.c: corrected bugs in version handling and in + certificate initialization + +2001-08-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/auth_srp.c, lib/ext_srp.c, + lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_errors.c, + lib/gnutls_errors_int.h, lib/gnutls_int.h, lib/gnutls_record.c, + src/cli.c: better support for buffered read and several cleanups + +2001-08-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cipher.c, lib/gnutls_kx.c, lib/gnutls_record.c: gnutls + now sends (again) record packets using one write. + +2001-08-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_srp.c: corrected free for data not belonging to the + heap + +2001-08-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_anon.c, lib/auth_srp.c, lib/auth_srp_passwd.c, + lib/crypt_bcrypt.c, lib/gnutls_buffers.c, lib/gnutls_dh.c, + lib/gnutls_handshake.c, lib/gnutls_mem.c, lib/gnutls_mem.h, + lib/gnutls_srp.c: several checks for failed allocations and other + fixes + +2001-08-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c: [no log message] + +2001-08-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_anon.c, lib/auth_srp.c, lib/auth_srp.h, + lib/auth_srp_passwd.c, lib/ext_srp.c, lib/gnutls_dh.c, + lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_privkey.c, src/cli.c: fixes in SRP key exchange and + several others. + +2001-08-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/auth_rsa.c, lib/ext_srp.c, + lib/gnutls_auth_int.h, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_kx.c, lib/gnutls_sig.c, lib/gnutls_sig.h, + lib/gnutls_ui.h, lib/x509_sig_check.c, lib/x509_verify.c, + src/cli.c, src/serv.c: server side client authentication works + +2001-08-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO, lib/auth_anon.c, lib/auth_rsa.c, lib/auth_srp.c, + lib/auth_x509.h, lib/gnutls.h.in, lib/gnutls_auth.h, + lib/gnutls_cert.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, + lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, + lib/gnutls_kx.h, src/serv.c: additions in order for gnutls server + to support client authentication + +2001-08-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_rsa.c, lib/gnutls_buffers.c, lib/gnutls_cipher.c, + lib/gnutls_constate.c, lib/gnutls_errors.c, + lib/gnutls_errors_int.h, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_kx.c, lib/gnutls_pk.c: ssl3 fixes and several others. + +2001-08-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_mem.c: realloc does not realloc memory if less size is + requested. + +2001-08-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_rsa.c, lib/gnutls_cert.c, lib/gnutls_errors.c, + lib/gnutls_errors_int.h, lib/gnutls_handshake.c, lib/gnutls_int.h: + updated in key usage fields + +2001-08-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_int.h, lib/gnutls_sig.c, lib/gnutls_sig.h, + lib/x509_sig_check.c: cleanups in the signature generating + functions + +2001-08-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_kx.c: [no log message] + +2001-08-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/auth_anon.c, lib/auth_anon.h, lib/auth_rsa.c, + lib/auth_srp.c, lib/auth_srp.h, lib/auth_x509.c, lib/auth_x509.h, + lib/ext_srp.c, lib/gnutls.h.in, lib/gnutls_auth.c, + lib/gnutls_buffers.c, lib/gnutls_handshake.c, + lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_kx.c, + lib/gnutls_ui.c, lib/gnutls_ui.h, lib/gnutls_v2_compat.c, + src/cli.c, src/serv.c: several fixes. Added client authentication + with x509PKI + +2001-08-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/auth_rsa.c, lib/gnutls_buffers.c, + lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, + lib/gnutls_sig.c, lib/gnutls_sig_check.c, lib/x509_sig_check.c: + more x509 client certificate stuff + +2001-08-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/x509/clicert.pem, src/x509/clikey.pem: added client + certificates + +2001-08-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/auth_rsa.c, lib/gnutls_cert.h, + lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, + lib/gnutls_pk.c, lib/gnutls_sig.c, lib/gnutls_sig.h, src/cli.c, + src/x509/Makefile.am: several additions for x509 client + authentication + +2001-08-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_rsa.c, lib/gnutls_buffers.c, lib/gnutls_cert.c, + lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h, + lib/gnutls_kx.c, lib/gnutls_mem.c, lib/gnutls_mem.h, + lib/gnutls_record.c: added the concept of optional handshake + packets (like CERTIFICATE_REQUEST). several other fixes. + +2001-08-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_anon.c, lib/auth_anon.h, lib/auth_rsa.c, lib/auth_srp.c, + lib/auth_srp.h, lib/auth_x509.h, lib/ext_srp.c, + lib/gnutls_algorithms.c, lib/gnutls_auth.h, lib/gnutls_cert.c, + lib/gnutls_cert.h, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_kx.c, lib/gnutls_kx.h, lib/gnutls_record.c, + lib/gnutls_ui.c: several cleanups and updates in the handshake + protocol implementation iolaiiiiiCVS: + + ---------------------------------------------------------------------- + +2001-08-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/Makefile.am, lib/auth_x509.c, lib/auth_x509.h, + lib/gnutls.h.in, lib/gnutls_cert.h, lib/gnutls_errors_int.h, + lib/gnutls_int.h, lib/gnutls_ui.c, lib/gnutls_ui.h, src/cli.c, + src/serv.c: several cleanups. No longer export structures to the + API, but a bunch of functions in order to access them. + +2001-08-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO, doc/README.autoconf: [no log message] + +2001-08-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/x509_asn1.h, lib/x509_der.h: [no log message] + +2001-08-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/gnutls.h.in, lib/gnutls_global.c, + lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_record.c: + added new function gnutls_send_alert() to the api + +2001-08-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/auth_rsa.c, lib/auth_x509.c, + lib/auth_x509.h, lib/gnutls.h.in, lib/gnutls_cert.c, + lib/gnutls_cert.h: cleanups in certificate copying + +2001-08-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/CertificateExample.c, src/CrlExample.c, src/Makefile.am, + src/asn1c.c, src/prime.c: fixes for the new files + +2001-08-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/auth_rsa.c, lib/auth_srp_passwd.c, + lib/cert_ASN.y, lib/cert_asn1.c, lib/cert_asn1.h, lib/cert_b64.c, + lib/cert_b64.h, lib/cert_der.c, lib/cert_der.h, lib/cert_verify.c, + lib/cert_verify.h, lib/gnutls_cert.c, lib/gnutls_cert.h, + lib/gnutls_global.c, lib/gnutls_global.h, lib/gnutls_privkey.c, + lib/gnutls_sig_check.c, lib/pkcs1_asn1_tab.c, lib/pkix_asn1_tab.c, + lib/x509_ASN.y, lib/x509_asn1.c, lib/x509_asn1.h, lib/x509_b64.c, + lib/x509_b64.h, lib/x509_der.c, lib/x509_der.h, + lib/x509_extensions.c, lib/x509_extensions.h, lib/x509_verify.c, + lib/x509_verify.h: renamed cert_* to x509_* + +2001-08-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/cert_asn1.c, lib/cert_asn1.h, lib/cert_der.c, lib/cert_der.h, + lib/gnutls_cert.c: asn1_read_value() will no longer overflow the + given buffer. (this assumes that the caller provided the size of + the buffer) + +2001-08-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_rsa.c, lib/auth_x509.h, lib/gnutls.h.in, + lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_handshake.c, + lib/gnutls_int.h, lib/gnutls_sig_check.c: fixes in x509 cert + extensions handling + +2001-08-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_errors.c, + lib/gnutls_handshake.c, lib/gnutls_int.h: minor fixes + +2001-08-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_mem.c, lib/gnutls_mem.h: added internal memory + handlers + +2001-08-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/Makefile.am, lib/auth_rsa.c, lib/cert_b64.c, + lib/crypt_bcrypt.c, lib/crypt_srpsha1.c, lib/gnutls_algorithms.c, + lib/gnutls_datum.h, lib/gnutls_global.c, lib/gnutls_hash_int.c, + lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_pk.c, + src/serv.c: added internal memory handlers + +2001-08-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cert.c: [no log message] + +2001-08-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cert.c, src/cli.c: subjectAltName related fixes + +2001-08-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_rsa.c, lib/auth_x509.h, lib/cert_verify.c, + lib/cert_verify.h, lib/gnutls.h.in, lib/gnutls_auth.c, + lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_errors.c, + lib/gnutls_errors_int.h, lib/gnutls_int.h, lib/gnutls_record.c, + src/cli.c: added some kind of support for X509 Extensions + +2001-08-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_auth.c, lib/gnutls_record.c: documentation fixes + +2001-07-31 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/scripts/gdoc, lib/auth_anon.c, lib/auth_anon.h, + lib/auth_srp.c, lib/auth_srp.h, lib/auth_srp_passwd.c, + lib/ext_srp.c, lib/gnutls_anon_cred.c, lib/gnutls_srp.c: fixed api + documentation (for srp and anon cred allocation) + +2001-07-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_global.c, lib/gnutls_int.h, NEWS: [no log message] + +2001-07-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: added profiler option + +2001-07-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_srp_sb64.c, lib/cert_b64.c, lib/debug.c, + lib/gnutls.h.in, lib/gnutls_algorithms.c, lib/gnutls_buffers.c, + lib/gnutls_cert.c, lib/gnutls_constate.c, lib/gnutls_errors.c, + lib/gnutls_errors.h, lib/gnutls_global.c, lib/gnutls_handshake.c, + lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_record.c, + lib/gnutls_sig_check.c, lib/gnutls_v2_compat.c: added log function + (no longer use fprintf). + +2001-07-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_handshake.c, lib/gnutls_record.c: fixes in EOF + handling in handshake. + +2001-07-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_handshake.c: detect EOF + +2001-07-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/scripts/gdoc: [no log message] + +2001-07-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/scripts/gdoc: [no log message] + +2001-07-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2001-07-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/scripts/gdoc: fixes in tex production (gdoc) + +2001-07-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, doc/API-template.html, doc/Makefile.am, + doc/scripts/gdoc, lib/gnutls_record.c: Added documentation in TEX + +2001-07-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/API-template.html: [no log message] + +2001-07-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/API-template.html, doc/Makefile.am, doc/scripts/gdoc, + lib/gnutls.h.in, lib/gnutls_errors.c, lib/gnutls_errors_int.h, + lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_record.c, lib/gnutls_sig_check.c: added some + documentation. Bug fixes in CHANGECIPHER_SPEC packet. + +2001-07-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/gnutls.h.in, lib/gnutls_buffers.c, lib/gnutls_errors.c, + lib/gnutls_errors_int.h, lib/gnutls_global.c, lib/gnutls_record.c, + src/cli.c, src/serv.c: changed gnutls_read() semantics + +2001-07-26 Fabio Fiorina <fiorinaf@gnutls.org> + + * doc/TODO: Tools for Certificate + +2001-07-26 Fabio Fiorina <fiorinaf@gnutls.org> + + * lib/cert_der.c: get time bug fixed + +2001-07-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in: moving to 0.1.9 + +2001-07-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/cert_verify.c: fixed/updated compare_dn() function. + +2001-07-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO, lib/gnutls_cert.c, src/serv.c: [no log message] + +2001-07-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO, lib/gnutls_sig_check.c: updated sig_check() + +2001-07-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2001-07-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO, lib/auth_rsa.c, lib/cert_verify.c, lib/cert_verify.h, + lib/gnutls.h.in, lib/gnutls_auth.c, lib/gnutls_cert.c, + lib/gnutls_cert.h, lib/gnutls_int.h, lib/gnutls_sig_check.c, + src/cli.c: gnutls now checks the certificate's CN to see if it + matches the peer's name. + +2001-07-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO, lib/gnutls_pk.c, lib/gnutls_record.c: bugfixes + +2001-07-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c: support for multiple protocol versions. + +2001-07-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/cert_b64.c, lib/gnutls.h.in, lib/gnutls_algorithms.c, + lib/gnutls_algorithms.h, lib/gnutls_buffers.c, + lib/gnutls_buffers.h, lib/gnutls_cert.c, lib/gnutls_constate.c, + lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_priority.c, + lib/gnutls_priority.h, lib/gnutls_record.c, lib/gnutls_v2_compat.c, + src/serv.c: corrected bug in b64 decoding. Added support for + multiple TLS protocol versions. + +2001-07-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am: ignores some errors + +2001-07-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * README, lib/auth_rsa.c, lib/cert_verify.c, lib/gnutls_cert.c, + lib/gnutls_int.h, lib/gnutls_pk.c, lib/gnutls_pk.h, + lib/gnutls_sig_check.c: [no log message] + +2001-07-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_rsa.c, lib/cert_ASN.y, lib/cert_asn1.c, lib/cert_der.c, + lib/gnutls_cert.c, lib/gnutls_cipher.c, lib/gnutls_compress_int.c, + lib/gnutls_handshake.c, lib/gnutls_privkey.c, lib/gnutls_record.c, + src/serv.c: corrected memory leaks + +2001-07-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO, lib/Makefile.am, lib/cert_asn1.h, lib/cert_verify.c, + lib/ext_srp.c, lib/gnutls.h.in, lib/gnutls_cert.c, + lib/gnutls_cert.h, lib/gnutls_int.h, lib/gnutls_privkey.c, + lib/gnutls_record.c, lib/gnutls_sig_check.c, src/asn1c.c, + src/ca.pem, src/cli.c, src/pkcs1.asn, src/serv.c: several fixes + cleanups etc. + +2001-07-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_global.c: [no log message] + +2001-07-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/Makefile.am, lib/cert_asn1.c, lib/cert_asn1.h, + lib/gnutls.h.in, lib/gnutls_global.c, lib/pkcs1.asn, + lib/pkcs1_asn1_tab.c, lib/pkix.asn, src/Makefile.am, + src/PkixTabExample.c, src/asn1c.c, src/cli.c, src/pkix.asn, + src/serv.c, src/srp/Makefile.am, src/x509/Makefile.am: updated file + structure + +2001-07-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/Makefile.am, src/cert.pem, src/key.pem, src/serv.c, + src/tpasswd, src/tpasswd.conf, src/srp/tpasswd, + src/srp/tpasswd.conf, src/x509/ca.pem, src/x509/cert.pem, + src/x509/key.pem: updated directory structure + +2001-07-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, doc/protocol/draft-ietf-tls-srp-00.txt, + doc/protocol/draft-ietf-tls-srp-01.txt, doc/protocol/rfc2313.txt, + lib/Makefile.am, lib/auth_rsa.c, lib/cert_verify.c, + lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_errors.c, + lib/gnutls_errors_int.h, lib/gnutls_hash_int.h, lib/gnutls_int.h, + lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_sig.h, + lib/gnutls_sig_check.c, src/ca.pem, src/cert.pem, src/key.pem, + src/pkcs1.asn: added some kind of certificate checking + +2001-07-19 Fabio Fiorina <fiorinaf@gnutls.org> + + * src/pkcs1.asn: "" + +2001-07-19 Fabio Fiorina <fiorinaf@gnutls.org> + + * src/CrlExample.c: "" + +2001-07-19 Fabio Fiorina <fiorinaf@gnutls.org> + + * doc/ASN1.readme.txt, lib/cert_asn1.c, lib/cert_asn1.h, + lib/cert_ASN.y, src/CertificateExample.c: "" + +2001-07-19 Fabio Fiorina <fiorinaf@gnutls.org> + + * lib/pkcs1_asn1_tab.c, lib/pkix_asn1_tab.c: C structure management + +2001-07-19 Fabio Fiorina <fiorinaf@gnutls.org> + + * src/PkixTabExample.c: C structure management + +2001-07-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_hash_int.c: added mhash 0.8.10 support + +2001-07-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_rsa.c, lib/auth_x509.h, lib/gnutls.h.in, + lib/gnutls_auth.c, lib/gnutls_cert.c, lib/gnutls_cert.h, + lib/gnutls_constate.c, lib/gnutls_handshake.c, lib/gnutls_int.h, + src/cli.c: more certificate fields parsed. Cleanups + +2001-07-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/cert_verify.c, lib/cert_verify.h, lib/gnutls.h.in, + lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, + lib/gnutls_auth.c, lib/gnutls_cert.c, lib/gnutls_cert.h, + lib/gnutls_constate.c, lib/gnutls_errors.c, lib/gnutls_errors.h, + lib/gnutls_extensions.c, lib/gnutls_extensions.h, lib/gnutls_int.h, + src/cli.c, src/serv.c: several cleanups. Added check for + certificate's expiration time. + +2001-07-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/auth_rsa.c, lib/cert_verify.c, + lib/cert_verify.h, lib/gnutls.h.in, lib/gnutls_cert.c, + lib/gnutls_int.h, src/cli.c: updated cert_verify + +2001-07-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/CertificateExample.c: corrected copyright notice + +2001-07-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * Makefile.am, lib/gnutls_anon_cred.c, lib/gnutls_srp.c: minor + cleanups + +2001-07-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_rsa.c, lib/auth_x509.h, lib/gnutls.h.in, + lib/gnutls_cert.c, lib/gnutls_cert.h, src/cli.c: updated API + +2001-07-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/gnutls_anon_cred.c: added missing file + +2001-07-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_rsa.c, lib/auth_x509.h, lib/cert_verify.c, + lib/gnutls.h.in, lib/gnutls_cert.c, lib/gnutls_handshake.c, + lib/gnutls_int.h, lib/gnutls_priority.c, lib/gnutls_srp.c, + src/cli.c, src/serv.c: several bug fixes in ASN handling. + Fixes/additions in X509 structures handling. + +2001-07-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/Makefile.am, lib/auth_anon.c, lib/auth_anon.h, + lib/auth_rsa.c, lib/auth_srp.c, lib/auth_srp.h, lib/auth_x509.h, + lib/ext_srp.c, lib/gnutls.h.in, lib/gnutls_auth.c, + lib/gnutls_cert.c, lib/gnutls_global.c, lib/gnutls_privkey.c, + lib/gnutls_srp.c, src/cli.c, src/serv.c: several cleanups + +2001-07-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2001-07-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/cert_ASN.y: corrected copyright statement + +2001-07-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/README.autoconf: [no log message] + +2001-07-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/auth_x509.h, lib/cert_verify.c, + lib/gnutls.h.in, lib/gnutls_cert.c, lib/gnutls_handshake.c, + lib/gnutls_int.h: improved certificate handling + +2001-07-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/serv.c: updated + +2001-07-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * buildconf: added autoconf2.50 (for debian) + +2001-07-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * acinclude.m4: added required .m4s + +2001-07-12 Fabio Fiorina <fiorinaf@gnutls.org> + + * src/CrlExample.c: [no log message] + +2001-07-12 Fabio Fiorina <fiorinaf@gnutls.org> + + * lib/cert_asn1.h, lib/cert_der.c, lib/cert_der.h, lib/cert_ASN.y, + src/CertificateExample.c, src/pkix.asn: [no log message] + +2001-07-12 Fabio Fiorina <fiorinaf@gnutls.org> + + * doc/ASN1.readme.txt: [no log message] + +2001-07-12 Fabio Fiorina <fiorinaf@gnutls.org> + + * lib/cert_asn1.c: [no log message] + +2001-07-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_record.c: bug fixes + +2001-07-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/auth_srp.c, lib/crypt_bcrypt.c, lib/crypt_bcrypt.h, + lib/crypt_srpsha1.c, lib/gnutls_cipher.c, lib/gnutls_handshake.c, + lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, + lib/gnutls_record.c, lib/gnutls_srp.c, lib/gnutls_srp.h: + optimizations in hash functions (removed a lot of mallocs) + +2001-07-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cert.pem, src/key.pem: [no log message] + +2001-07-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_global.h: [no log message] + +2001-07-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/ASN1.readme.txt, lib/Makefile.am, lib/auth_rsa.c, + lib/cert_ASN.y, lib/cert_asn1.c, lib/cert_asn1.h, lib/cert_der.c, + lib/cert_der.h, lib/gnutls_cert.c, lib/gnutls_global.c, + lib/gnutls_int.h, lib/gnutls_privkey.c, src/CertificateExample.c, + src/Makefile.am, src/pkix.asn, src/serv.c: Updated ASN.1 Parser + (Fabio - commited by me). + +2001-07-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_rsa.c, lib/gnutls_algorithms.c, lib/gnutls_cert.c, + lib/gnutls_privkey.c: cleanups + +2001-06-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_rsa.c, lib/auth_srp_passwd.c, lib/ext_srp.c, + lib/gnutls.h.in, lib/gnutls_algorithms.c, lib/gnutls_cipher.c, + lib/gnutls_cipher_int.c, lib/gnutls_db.c, lib/gnutls_errors.c, + lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_kx.c, lib/gnutls_kx.h, src/cli.c, src/serv.c: Cleanups. + Mostly while sending client certificate (and client certificate + verify) + +2001-06-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/README.der: removed + +2001-06-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2001-06-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/ext_dnsname.c, lib/gnutls.h.in, lib/gnutls_constate.c, + lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_int.h, + src/cli.c, src/serv.c: added support for DNSNAME extension + (draft-ietf-tls-extensions) + +2001-06-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-ecc-01.txt, + doc/protocol/draft-ietf-tn3270e-telnet-tls-05.txt: [no log message] + +2001-06-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-pkix-ac509prof-05.txt, + doc/protocol/draft-ietf-tls-camellia-00.txt, + doc/protocol/draft-ietf-tls-extensions-00.txt, + doc/protocol/draft-ietf-tls-https-04.txt, + doc/protocol/draft-ietf-tls-misty1-00.txt, + doc/protocol/draft-ietf-tls-openpgp-00.txt, + doc/protocol/draft-ietf-tls-openpgp-01.txt, + doc/protocol/draft-ietf-tls-seedhas-00.txt, + doc/protocol/draft-ietf-tls-wireless-00.txt, + doc/protocol/rfc2817.txt: added more up to date documentation + +2001-06-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/x509guide.txt: added gutman's x509guide + +2001-06-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/TODO: [no log message] + +2001-06-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_handshake.c, lib/gnutls_priority.c: some portability + fixes + +2001-06-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/TODO, lib/Makefile.am, lib/auth_anon.c, + lib/auth_dhe_dss.c, lib/auth_rsa.c, lib/auth_srp.c, lib/auth_srp.h, + lib/auth_srp_passwd.c, lib/auth_srp_sb64.c, lib/cert_ASN.y, + lib/cert_asn1.c, lib/cert_b64.c, lib/cert_der.c, lib/crypt.c, + lib/crypt_bcrypt.c, lib/crypt_srpsha1.c, lib/debug.c, + lib/ext_dnsname.c, lib/ext_srp.c, lib/gnutls.h.in, + lib/gnutls_algorithms.c, lib/gnutls_auth.c, lib/gnutls_buffers.c, + lib/gnutls_cert.c, lib/gnutls_cipher.c, lib/gnutls_cipher.h, + lib/gnutls_cipher_int.c, lib/gnutls_compress.c, + lib/gnutls_compress_int.c, lib/gnutls_constate.c, + lib/gnutls_constate.h, lib/gnutls_datum.c, lib/gnutls_db.c, + lib/gnutls_dh.c, lib/gnutls_errors.c, lib/gnutls_extensions.c, + lib/gnutls_gcry.c, lib/gnutls_global.c, lib/gnutls_handshake.c, + lib/gnutls_hash_int.c, lib/gnutls_int.h, lib/gnutls_kx.c, + lib/gnutls_num.c, lib/gnutls_pk.c, lib/gnutls_priority.c, + lib/gnutls_privkey.c, lib/gnutls_privkey.h, lib/gnutls_random.c, + lib/gnutls_record.c, lib/gnutls_session.c, lib/gnutls_srp.c, + lib/gnutls_v2_compat.c, src/cli.c, src/serv.c: fixes in + ChangeCipherSpec handling (this also fixes rehandshake). Several + cleanups. + +2001-06-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/debug.c, lib/gnutls_buffers.c, + lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_cipher.c, + lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, + lib/gnutls_compress_int.c, lib/gnutls_datum.c, lib/gnutls_datum.h, + lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_int.h, + lib/gnutls_kx.c, lib/gnutls_record.c, lib/gnutls_v2_compat.c: + several cleanups + +2001-06-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/gnutls_global.c: added checks for signals + +2001-06-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cipher.c, src/serv.c: corrected bug in stream + decryption.. + +2001-06-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c: [no log message] + +2001-06-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_rsa.c, lib/auth_x509.h, lib/gnutls.h.in, + lib/gnutls_cert.c, lib/gnutls_cert.h: added internal representation + of pkcs1 rsa private keys. + +2001-06-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * Makefile.am, src/Makefile.am, src/serv.c: [no log message] + +2001-06-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2001-06-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, README, configure.in, doc/Makefile.am, doc/TODO, + lib/Makefile.am, lib/gnutls.h.in, lib/gnutls_buffers.c, + lib/gnutls_buffers.h, lib/gnutls_cert.c, lib/gnutls_global.c, + lib/gnutls_record.c, src/cli.c, src/pk.h, src/serv.c: added global + state. + +2001-06-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in, lib/gnutls_algorithms.c, lib/gnutls_cert.c, + lib/gnutls_cert.h, lib/gnutls_int.h, src/cli.c, src/serv.c: minor + cleanups + +2001-06-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in: gnutls_cert is not defined here + +2001-06-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cert.h, src/pk.h: added missing files + +2001-06-21 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, doc/TODO, lib/Makefile.am, lib/auth_rsa.c, + lib/auth_x509.h, lib/gnutls.h.in, lib/gnutls_algorithms.c, + lib/gnutls_auth.c, lib/gnutls_cert.c, lib/gnutls_datum.c, + lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h, + lib/gnutls_priority.c, lib/gnutls_v2_compat.c, src/serv.c: Updated + Ciphersuite selection algorithm. Added internal representation of + x509 structures. + +2001-06-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/TODO, lib/auth_rsa.c, lib/cert_asn1.c, lib/cert_der.c, + lib/gnutls_datum.c, lib/gnutls_datum.h, lib/gnutls_errors.c, + lib/gnutls_errors_int.h, lib/gnutls_int.h, lib/gnutls_kx.c, + lib/gnutls_pk.c, src/pkix.asn: client side RSA works (no + certificate checking) + +2001-06-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO, lib/auth_anon.c, lib/auth_rsa.c, lib/auth_srp.c, + lib/auth_x509.h, lib/gnutls.h.in, lib/gnutls_algorithms.c, + lib/gnutls_algorithms.h, lib/gnutls_auth.h, lib/gnutls_handshake.c, + lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_kx.c, + lib/gnutls_kx.h, lib/gnutls_v2_compat.c, src/cli.c, src/serv.c: + removed unneeded code and added some kind of client support for RSA + ciphersuites + +2001-06-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_int.h: [no log message] + +2001-06-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/TODO, lib/auth_rsa.c, lib/debug.c, lib/debug.h, + lib/gnutls.h.in, lib/gnutls_cipher.c, lib/gnutls_handshake.c, + lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_kx.h, + lib/gnutls_record.c, lib/gnutls_session.c, lib/gnutls_v2_compat.c, + src/serv.c: fixes in session resuming.. + +2001-06-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO, lib/gnutls_cipher.c, lib/gnutls_handshake.c, + lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_record.c, + lib/gnutls_v2_compat.c: fixes in session resuming + +2001-06-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_gcry.c, lib/gnutls_gcry.h: added missing files + +2001-06-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/debug.c, lib/gnutls.h.in, + lib/gnutls_algorithms.c, lib/gnutls_buffers.c, lib/gnutls_cipher.c, + lib/gnutls_cipher.h, lib/gnutls_cipher_int.c, + lib/gnutls_compress.c, lib/gnutls_compress.h, + lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, + lib/gnutls_plaintext.c, lib/gnutls_plaintext.h, + lib/gnutls_record.c, lib/gnutls_v2_compat.c, src/serv.c: several + cleanups in the low level record layer (the old code was a mess). + several other fixes. + +2001-06-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_x509.h, lib/ext_dnsname.c, lib/gnutls_int.h, + lib/gnutls_record.c, lib/gnutls_record.h, lib/gnutls_v2_compat.c: + cleanups. No longer checks for alerts between messages. + +2001-06-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * acconfig.h, doc/TODO, doc/protocol/draft-ietf-tls-https-04.txt, + lib/Makefile.am, lib/defines.h, lib/gnutls.h.in, + lib/gnutls_algorithms.c, lib/gnutls_buffers.c, + lib/gnutls_cipher_int.c, lib/gnutls_int.h, lib/gnutls_record.c, + src/cli.c, src/serv.c: cleanups and addition of a test http server + (serv.c) + +2001-06-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/TODO, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_record.c, lib/gnutls_v2_compat.c, src/serv.c: fixes in + V2 client hello. + +2001-06-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/auth_rsa.c, lib/gnutls_algorithms.h, + lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_pk.c, + lib/gnutls_v2_compat.c, src/pkcs1.asn, src/serv.c: several fixes + for RSA. gnutls server can now work with rsa certificates. + +2001-06-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/auth_rsa.c, lib/auth_srp.c, + lib/auth_srp_passwd.c, lib/auth_x509.h, lib/cert_asn1.h, + lib/cert_b64.c, lib/cert_b64.h, lib/crypt_bcrypt.c, + lib/crypt_srpsha1.c, lib/gnutls.c, lib/gnutls.h.in, + lib/gnutls_algorithms.c, lib/gnutls_cert.c, lib/gnutls_cipher.c, + lib/gnutls_errors.c, lib/gnutls_errors_int.h, + lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h, + lib/gnutls_kx.c, lib/gnutls_num.h, lib/gnutls_pk.c, + lib/gnutls_pk.h, lib/gnutls_random.c, lib/gnutls_random.h, + lib/gnutls_record.c, lib/gnutls_srp.c, lib/gnutls_v2_compat.c: + several additions for RSA (mostly unstable) + +2001-06-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_pk.c, lib/gnutls_pk.h: some support for public key + encryption (rsa) + +2001-06-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/auth_anon.c, lib/auth_dhe_dss.c, + lib/auth_rsa.c, lib/auth_srp.c, lib/auth_x509.h, lib/defines.h, + lib/ext_dnsname.c, lib/ext_dnsname.h, lib/gnutls.c, + lib/gnutls.h.in, lib/gnutls_auth_int.h, lib/gnutls_dh.c, + lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_kx.c, lib/gnutls_kx.h, lib/gnutls_srp.c: more rsa fixes. + Added dnsname extension. + +2001-06-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_anon.c, lib/auth_rsa.c, lib/auth_srp.c, lib/auth_x509.h, + lib/gnutls.h.in, lib/gnutls_algorithms.c, lib/gnutls_auth.h, + lib/gnutls_datum.c, lib/gnutls_datum.h, lib/gnutls_handshake.c, + lib/gnutls_int.h, src/serv.c: more rsa stuff -- and cleanups + +2001-06-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/pkcs1.asn: removed <CR> + +2001-06-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/Certificate.txt, src/CertificateExample.c, src/pkcs1.asn, + src/pkix.asn: updated ASN.1 files. + +2001-06-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/Certificate.txt: [no log message] + +2001-06-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/Makefile.am, lib/Makefile.am, lib/auth_rsa.c, + lib/auth_x509.h, lib/cert_asn1.h, lib/gnutls.h.in, + lib/gnutls_datum.c, lib/gnutls_datum.h, lib/gnutls_hash_int.c, + lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_kx.c: several + additions in order to support KX_RSA and X509PKI. + +2001-06-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_auth.c: updated get_auth_info() + +2001-06-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * Makefile.am, buildconf, src/cli.c, src/serv.c: changed the + setting of credentials + +2001-06-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_anon.c, lib/auth_anon.h, lib/auth_srp.c, + lib/auth_srp_passwd.c, lib/ext_srp.c, lib/gnutls.h.in, + lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, + lib/gnutls_auth.c, lib/gnutls_auth_int.h, lib/gnutls_int.h: better + handling of set/get credentials. + +2001-06-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.c, lib/gnutls_auth_int.h, lib/gnutls_buffers.c, + lib/gnutls_int.h: added gnutls_datum structure. + +2001-06-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * THANKS: [no log message] + +2001-06-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * AUTHORS, Makefile.am, changelog-update.sh: added Fabio in + AUTHORS, fixed the way ChangeLog is created. + +2001-06-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_algorithms.c: added a warning for the addition of new + algorithms + +2001-06-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/rfc2631.txt: added rfc on DH key exchange + +2001-06-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * buildconf, lib/cert_der.asn1: [no log message] + +2001-06-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/ASN1.readme.txt: [no log message] + +2001-06-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/Makefile.am, lib/cert_ASN.y, lib/cert_asn1.c, + lib/cert_asn1.h, lib/cert_der.c, lib/cert_der.h, lib/gnutls_der.c, + lib/gnutls_der.h, src/CertificateExample.c, src/Makefile.am: Added + Fabio's ASN1/DER parser. + +2001-06-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_db.c: more descriptive comments + +2001-06-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, NEWS: [no log message] + +2001-06-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_srp_sb64.c, lib/crypt.c, lib/crypt_bcrypt.c, + lib/crypt_bcrypt.h, lib/crypt_srpsha1.c, lib/gnutls_srp.c, + src/crypt.c: bugfixes in sbase64 decoding/encoding. Changes in the + included bcrypt algorithm. + +2001-06-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/auth_srp_passwd.h, lib/auth_srp_sb64.c, + lib/cert_b64.h, lib/cert_sb64.c, lib/crypt_bcrypt.c, + lib/crypt_srpsha1.c: renamed cert_sb64.c to auth_srp_sb64.c (since + it is only used in SRP KX) + +2001-06-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * acconfig.h, acinclude.m4, configure.in: [no log message] + +2001-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in: updated + +2001-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/defines.h, lib/gnutls.c, lib/gnutls_cipher.c, + lib/gnutls_errors.c, lib/gnutls_errors_int.h, + lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_num.c, + lib/gnutls_num.h: better handling of 64bit integers + +2001-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/crypt_bcrypt.c, lib/crypt_srpsha1.c: better checking of + return value of rindex + +2001-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c, src/serv.c: updated to new api + +2001-06-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.c, lib/gnutls.h.in, lib/gnutls_handshake.c, + lib/gnutls_int.h, lib/gnutls_priority.c, lib/gnutls_priority.h, + src/Makefile.am: updated documentation and functions + +2001-06-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, lib/crypt.c, lib/defines.h, lib/ext_srp.c, + lib/gnutls.c, lib/gnutls.h.in, lib/gnutls_cipher.c, + lib/gnutls_handshake.c, lib/gnutls_num.c, lib/gnutls_num.h, + lib/gnutls_srp.c, src/prime.c, src/tpasswd: gnutls now handles + uint64 even in systems without a native one. several bug fixes. + +2001-06-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/crypt_bcrypt.c, lib/crypt_srpsha1.c: corrected bug in verify + +2001-05-31 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * buildconf, configure.in, lib/gnutls.h.in: updated configuration + scripts to comply to autoconf 2.50 + +2001-05-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: [no log message] + +2001-05-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/Makefile.am, doc/scripts/gdoc: gdoc is now included in the + cvs + +2001-05-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/Makefile.am: [no log message] + +2001-05-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/API, doc/Makefile.am, doc/TODO, lib/gnutls.c, + lib/gnutls.h.in, lib/gnutls_algorithms.c, lib/gnutls_auth.c, + lib/gnutls_auth_int.h, lib/gnutls_buffers.c, lib/gnutls_cipher.c, + lib/gnutls_cipher.h, lib/gnutls_db.c, lib/gnutls_errors.c, + lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_plaintext.c, + lib/gnutls_plaintext.h, lib/gnutls_priority.c, + lib/gnutls_session.c, src/cli.c, src/serv.c: updated API and + documentation. Now we use the gnome way for creating API docs. + +2001-05-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2001-05-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/README.crypt: [no log message] + +2001-05-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/gnutls.h.in: [no log message] + +2001-05-27 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/Makefile.am, src/README: [no log message] + +2001-05-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_dh.c: some cleanups in Diffie Hellman key exchange + +2001-05-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/API, lib/auth_anon.c, lib/auth_anon.h, lib/auth_dhe_dss.c, + lib/auth_dhe_dss.h, lib/cert_b64.c, lib/cert_sb64.c, + lib/gnutls_algorithms.c, lib/gnutls_auth.c, lib/gnutls_dh.c, + lib/gnutls_dh.h, lib/gnutls_int.h, lib/gnutls_srp.c: removed + DHE_DSS. Added parameters to DH_ANON (size of prime). cleanups. + +2001-05-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c, src/prime.c, src/serv.c: several updates + +2001-05-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_int.h: [no log message] + +2001-05-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_srp_passwd.c, lib/cert_sb64.c, lib/crypt_bcrypt.c, + lib/crypt_srpsha1.c, lib/gnutls_int.h, src/crypt.c: Added decoding + function for the base64 encoding used in SRP. (this function is + more strict in characters than the previous one) + +2001-05-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/cert_b64.c: corrected memory leaks + +2001-05-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_anon.c, lib/auth_dhe_dss.c, lib/auth_srp.c, + lib/gnutls.c, lib/gnutls_extensions.c, lib/gnutls_handshake.c, + lib/gnutls_num.c, lib/gnutls_num.h, lib/gnutls_v2_compat.c: several + cleanups in numbers' handling + +2001-05-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/Makefile.am: [no log message] + +2001-05-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_num.c, + lib/gnutls_num.h: updated uint24 functions. + +2001-05-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_anon.c, lib/auth_dhe_dss.c, lib/auth_srp.c, + lib/gnutls.c, lib/gnutls_cipher.c, lib/gnutls_extensions.c, + lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, + lib/gnutls_num.c, lib/gnutls_num.h, lib/gnutls_v2_compat.c: + Cleanups in endian handling (convertions). + +2001-05-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.c, lib/gnutls_cipher.c, lib/gnutls_errors.c, + lib/gnutls_errors_int.h, lib/gnutls_handshake.c: several bug fixes + +2001-05-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/API: updated documentation + +2001-05-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/serv.c: updated + +2001-05-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/API: updated + +2001-05-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * README: [no log message] + +2001-05-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * README, configure.in, doc/API, lib/gnutls.c, lib/gnutls_errors.c, + lib/gnutls_errors_int.h, lib/gnutls_handshake.c, src/cli.c: [no log + message] + +2001-05-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cipher.c: sets the resumed_security_parameters to null + after initialization + +2001-05-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, doc/API: [no log message] + +2001-05-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c, src/serv.c: updated to new api + +2001-05-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.c, lib/gnutls.h.in, lib/gnutls_db.c, + lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h: + Updated API (gnutls_deinit()) gnutls_db: does not store anything if + db has not been opened for reading. Added some kind of support for + renegotiation of parameters. + +2001-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h.in, lib/gnutls_algorithms.c, lib/gnutls_handshake.h: + cleanups + +2001-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/defines.h, lib/gnutls.c, lib/gnutls_db.c, + lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_session.c: + cleanups and several fixes(and speedups) in the resume DB + +2001-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c, src/serv.c: updated client and servers + +2001-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_algorithms.c: cleanups + +2001-05-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_int.h: [no log message] + +2001-05-20 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/API, lib/gnutls.c, lib/gnutls_algorithms.c, + lib/gnutls_algorithms.h, lib/gnutls_dh.c, lib/gnutls_handshake.c, + lib/gnutls_int.h, lib/gnutls_priority.c, lib/gnutls_priority.h, + src/cli.c, src/serv.c: Changed gnutls_set_*_priority functions. + +2001-05-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/Makefile.am, src/crypt-gaa.c, src/crypt-gaa.h, src/crypt.c, + src/gaa.h, src/gaaout.c, src/prime-gaa.c, src/prime-gaa.h, + src/prime.gaa, src/tpasswd, src/tpasswd.conf, src/prime.c: [no log + message] + +2001-05-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/crypt.c: updated + +2001-05-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_errors.c, lib/gnutls_errors_int.h, + lib/gnutls_handshake.c, lib/gnutls_srp.c, lib/gnutls_srp.h: [no log + message] + +2001-05-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/cert_sb64.c: bugfixes + +2001-05-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c, src/crypt.c, src/crypt.gaa, src/gaa.h, src/gaaout.c, + src/tpasswd, src/tpasswd.conf: added option to generate random + primes (instead of using a default). Added option to specify a + specific prime to use (index) + +2001-05-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2001-05-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, doc/README.autoconf, lib/libgnutls-config.in: [no + log message] + +2001-05-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/libgnutls.m4: updated + +2001-05-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/gnutls.c, lib/libgnutls.m4: corrected scripts + +2001-05-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * acconfig.h, acinclude.m4, changelog-update.sh, configure.in, + lib/Makefile.am, lib/gnutls.c, lib/gnutls.h, lib/gnutls.h.in, + lib/gnutls_auth.c, lib/gnutls_errors.h, lib/gnutls_errors_int.h, + lib/libgnutls-config.in, lib/libgnutls.m4, src/Makefile.am, + src/serv.c: Added libgnutls-config script gnutls.h is automaticaly + generated by configure script Added libgnutls.m4 + +2001-05-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * changelog-update.sh: [no log message] + +2001-05-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2001-05-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/ext_srp.c: Added missing length in username. + +2001-05-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/API, lib/auth_anon.c, lib/auth_dhe_dss.c, + lib/auth_srp.c, lib/auth_srp.h, lib/ext_srp.c, lib/gnutls.c, + lib/gnutls.h, lib/gnutls_auth.c, lib/gnutls_auth_int.h, + lib/gnutls_cipher.c, lib/gnutls_db.c, lib/gnutls_int.h, + lib/gnutls_session.c, lib/gnutls_session.h, src/cli.c, src/serv.c: + added functions to access authentication data (like username), and + the key exchange algorithm used. + +2001-05-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/API, lib/gnutls_db.c: [no log message] + +2001-05-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/cert_sb64.c: cleanups + +2001-05-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO, lib/gnutls_db.c: clean_db() now clears expired entries + only + +2001-05-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/tpasswd, src/tpasswd.conf: example tpasswd files. + +2001-05-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_srp_passwd.c, lib/cert_sb64.c, lib/gnutls_int.h, + src/crypt.c: minor updates and fixes + +2001-05-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, doc/TODO: [no log message] + +2001-05-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/auth_srp.c, lib/auth_srp_passwd.c, + lib/auth_srp_passwd.h, lib/crypt.c, lib/crypt.h, + lib/crypt_bcrypt.c, lib/crypt_bcrypt.h, lib/crypt_srpsha1.c, + lib/crypt_srpsha1.h, lib/gnutls.h, lib/gnutls_srp.c, + lib/gnutls_srp.h, src/Makefile.am, src/README.crypt, src/cli.c, + src/crypt.c, src/crypt.gaa, src/gaa.h, src/gaaout.c, src/serv.c: + Added compatibility with Tom Wu's libsrp's password files. + +2001-05-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/cert_sb64.c: [no log message] + +2001-05-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/Makefile.am, lib/auth_srp.c, lib/auth_srp.h, + lib/auth_srp_passwd.c, lib/cert_b64.c, lib/cert_b64.h, lib/debug.c, + lib/gnutls.h, lib/gnutls_int.h, lib/gnutls_srp.c, src/port.h, + src/serv.c: added support for Tom Wu's srp library tpasswd and + tpasswd.conf files. + +2001-05-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2001-05-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2001-05-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/gnutls.c, lib/gnutls_int.h: fixes in memory + allocation + +2001-05-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.c, lib/gnutls_buffers.c, lib/gnutls_db.c, + lib/gnutls_hash_int.c, lib/gnutls_int.h: corrected memory leaks + +2001-05-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2001-05-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/Makefile.am: [no log message] + +2001-05-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/API, lib/gnutls.h, lib/gnutls_auth.c, lib/gnutls_auth_int.h, + src/cli.c, src/serv.c: credentials are now kept globaly (in order + to minimize memory usage). This makes no harm since these are never + modified by gnutls. + +2001-05-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/API, lib/gnutls.h: [no log message] + +2001-05-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_int.h: [no log message] + +2001-05-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: updated TODO list + +2001-05-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_srp.c, lib/auth_srp_passwd.c, lib/cert_b64.c, + lib/crypt_bcrypt.c, lib/crypt_srpsha1.c, lib/gnutls_errors.c, + lib/gnutls_errors.h, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_kx.c, lib/gnutls_srp.c, lib/gnutls_srp.h, src/cli.c, + src/serv.c: several fixes for srp. Seems to work now! + +2001-05-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_v2_compat.c: better version handling + +2001-05-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/TODO, lib/Makefile.am, lib/gnutls.c, + lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_v2_compat.c, + lib/gnutls_v2_compat.h, src/cli.c: added support for SSL 2.0 client + hello + +2001-05-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/auth_srp.c, lib/auth_srp_passwd.c, + lib/ext_srp.c, lib/gnutls.c, lib/gnutls.h, lib/gnutls_extensions.c, + lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, + lib/gnutls_srp.c, src/cli.c, src/serv.c: several fixes for srp + +2001-05-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/API, lib/auth_srp.c, lib/auth_srp_passwd.c, lib/ext_srp.c, + lib/gnutls_auth.c, lib/gnutls_auth_int.h, lib/gnutls_handshake.c: + gnutls_get_kx_cred() now returns err value. set_kx_cred() now + accepts size. + +2001-05-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/Makefile.am: added missing gaa.h + +2001-05-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_srp.c: some modulo fixes + +2001-05-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_srp.c, lib/auth_srp_passwd.c, lib/auth_srp_passwd.h, + lib/ext_srp.c, lib/gnutls_srp.c, lib/gnutls_srp.h: more srp related + fixes. No longer fails authentication if wrong username is provided. + +2001-05-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_srp.c, lib/crypt.c, lib/crypt_bcrypt.c, + lib/crypt_bcrypt.h, lib/crypt_srpsha1.c, lib/gnutls.h, + lib/gnutls_dh.c, lib/gnutls_errors.c, lib/gnutls_errors.h, + lib/gnutls_int.h, lib/gnutls_srp.c, lib/gnutls_srp.h: some hacks in + order to exchange the algorithm used to hash the password... + +2001-05-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_srp.c, lib/gnutls_srp.c, lib/gnutls_srp.h: cleanups for + srp. Most mpi code has moved to gnutls_srp.c + +2001-05-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/ext_srp.c, lib/gnutls_int.h: more srp related + fixes + +2001-05-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_srp.c, lib/gnutls.h, lib/gnutls_algorithms.c, + lib/gnutls_auth_int.h, lib/gnutls_extensions.c, + lib/gnutls_handshake.c: some fixes - srp related + +2001-05-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_srp.c: [no log message] + +2001-05-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_srp.c, lib/auth_srp.h, lib/auth_srp_passwd.c, + lib/auth_srp_passwd.h: more srp stuff + +2001-05-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/crypt_bcrypt.c, lib/crypt_srpsha1.c, + lib/ext_srp.c, lib/gnutls.c, lib/gnutls.h, lib/gnutls_algorithms.c, + lib/gnutls_auth.c, lib/gnutls_auth.h, lib/gnutls_auth_int.h, + lib/gnutls_dh.c, lib/gnutls_errors.c, lib/gnutls_errors.h, + lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_srp.c, + lib/gnutls_srp.h, src/crypt.c: more additions for SRP + +2001-05-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/crypt.c: fixed default case when no -s was specified + +2001-05-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/cert_b64.h, lib/crypt.c, lib/crypt_bcrypt.c, + lib/crypt_srpsha1.c, lib/crypt_srpsha1.h, lib/gnutls.h, + lib/gnutls_dh.c, lib/gnutls_srp.c, lib/gnutls_srp.h, src/crypt.c, + src/crypt.gaa, src/gaa.h, src/gaaout.c: More adds for SRP - SRPSHA1 + and bcrypt + +2001-05-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/cert_b64.c: corrected bug in decoding function + +2001-05-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/crypt_bcrypt.h: for bcrypt support + +2001-05-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * acconfig.h, configure.in, lib/Makefile.am, lib/cert_b64.c, + lib/crypt.c, lib/crypt_bcrypt.c, lib/defines.h, lib/gnutls.h, + lib/gnutls_cipher.c, lib/gnutls_cipher_int.h, + lib/gnutls_handshake.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, + lib/gnutls_random.c, lib/gnutls_random.h, src/Makefile.am, + src/crypt.c, src/crypt.gaa, src/gaa.h, src/gaaout.c: Changes in + random number handling. Added bcrypt (for use with SRP). Added test + program crypt for creating bcrypt passwd files. + +2001-05-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/API, lib/Makefile.am, lib/gnutls.c, lib/gnutls.h, + lib/gnutls_auth.c, lib/gnutls_auth.h, lib/gnutls_auth_int.h, + lib/gnutls_int.h: added support for setting authentication + algorithms' credentials + +2001-05-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_anon.c, lib/gnutls_algorithms.c, + lib/gnutls_algorithms.h, lib/gnutls_kx.c: cleanups... and more + modular design. + +2001-05-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/auth_anon.c, lib/auth_dhe_dss.c, lib/gnutls_algorithms.c, + lib/gnutls_algorithms.h, lib/gnutls_auth.h, lib/gnutls_handshake.c, + lib/gnutls_kx.c, lib/gnutls_kx.h: Added client kx0 and server kx2 + in order to be used with SRP + +2001-05-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * buildconf: updated + +2001-03-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/ssl-2.txt: added SSL v2 spec + +2001-03-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_extensions.c: in case there are no extensions + ext_gen() does not return anything (NULL); + +2001-03-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/debug.h, lib/gnutls.c, lib/gnutls_algorithms.c, + lib/gnutls_handshake.c: more cleanups + +2001-03-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/ext_srp.c, lib/gnutls_extensions.c: send extensions feature + was added. + +2001-03-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/auth_anon.c, lib/auth_dhe_dss.c, lib/debug.c, + lib/gnutls_buffers.c, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_kx.c, src/serv.c: several bugfixes and cleanups + +2001-03-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/ext_srp.c, lib/ext_srp.h, + lib/gnutls_extensions.c, lib/gnutls_extensions.h, + lib/gnutls_handshake.c, lib/gnutls_int.h: Added some preliminary + support for TLS extensions; + +2001-03-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: updated todo list + +2001-03-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/rfc2945.txt: added RFC for srp protocol + +2001-03-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_algorithms.c: updated with new files + +2001-03-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/auth_anon.c, lib/auth_anon.h, + lib/auth_dhe_dss.c, lib/auth_dhe_dss.h, lib/gnutls_anon.c, + lib/gnutls_anon.h, lib/gnutls_dhe_dss.c, lib/gnutls_dhe_dss.h: + moved gnutls_anon and gnutls_dhe_dss to auth_* + +2001-03-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-srp-00.txt: added srp draft + +2001-03-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/gnutls.c, lib/gnutls_algorithms.c, + lib/gnutls_algorithms.h, lib/gnutls_anon.c, lib/gnutls_anon.h, + lib/gnutls_auth.h, lib/gnutls_dhe_dss.c, lib/gnutls_dhe_dss.h, + lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c: Key + exchange (authentication) algorithms were reorganized, and now are + more modular. Most changes however are not much tested and only + anonymous authentication is currently used. + +2001-02-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_der.c: updated some functionality - no longer uses + stdin + +2001-02-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * THANKS: added Tarun + +2001-02-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: corrected bug with dmalloc mode + +2001-02-04 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: [no log message] + +2001-02-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/protocol/draft-ietf-tls-kerb-00.txt: added kerberos + ciphersuites + +2001-02-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.c, lib/gnutls.h, lib/gnutls_algorithms.c, + lib/gnutls_algorithms.h, lib/gnutls_cipher.c, + lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_plaintext.c: + TLS version handling is now more simple (no structures) + +2001-02-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_algorithms.c, lib/gnutls_cipher_int.c: corrected + rijndael256 + +2001-02-03 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h, lib/gnutls_algorithms.c, lib/gnutls_cipher_int.c, + lib/gnutls_db.c, lib/gnutls_int.h: added rijndael-256 as described + in draft-ietf-tls-ciphersuite-03 + +2001-02-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.c, lib/gnutls_cipher.c: comments are now more clear + +2001-02-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.c, lib/gnutls_cipher.c: gnutls_send_int() no longer + sends the packets with 2 Write() calls. One Write() call is enough + for everybody! + +2001-02-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/draft-ietf-tls-camellia-00.txt, + doc/draft-ietf-tls-ciphersuite-02.txt, + doc/draft-ietf-tls-https-04.txt, doc/draft-ietf-tls-misty1-00.txt, + doc/draft-ietf-tls-openpgp-00.txt, + doc/draft-ietf-tls-seedhas-00.txt, + doc/draft-ietf-tls-wireless-00.txt, + doc/draft-ietf-tn3270e-telnet-tls-05.txt, doc/rfc1422.txt, + doc/rfc1423.txt, doc/rfc2246.txt, doc/rfc2459.txt, doc/rfc2818.txt, + doc/ssl-draft302.txt, + doc/protocol/draft-ietf-pkix-ac509prof-05.txt, + doc/protocol/draft-ietf-tls-camellia-00.txt, + doc/protocol/draft-ietf-tls-ciphersuite-03.txt, + doc/protocol/draft-ietf-tls-https-04.txt, + doc/protocol/draft-ietf-tls-misty1-00.txt, + doc/protocol/draft-ietf-tls-openpgp-00.txt, + doc/protocol/draft-ietf-tls-seedhas-00.txt, + doc/protocol/draft-ietf-tls-wireless-00.txt, + doc/protocol/draft-ietf-tn3270e-telnet-tls-05.txt, + doc/protocol/rfc1422.txt, doc/protocol/rfc1423.txt, + doc/protocol/rfc2246.txt, doc/protocol/rfc2279.txt, + doc/protocol/rfc2459.txt, doc/protocol/rfc2818.txt, + doc/protocol/ssl-draft302.txt: drafts and rfcs were moved to + protocol/ directory + +2001-01-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * README: updated + +2001-01-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/debug.h, lib/defines.h, lib/gnutls_algorithms.h, + lib/gnutls_buffers.h, lib/gnutls_cipher.h, lib/gnutls_cipher_int.h, + lib/gnutls_compress.h, lib/gnutls_compress_int.h, lib/gnutls_db.h, + lib/gnutls_dh.h, lib/gnutls_errors.h, lib/gnutls_handshake.h, + lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_kx.h, + lib/gnutls_num.h, lib/gnutls_plaintext.h, lib/gnutls_priority.h, + lib/gnutls_session.h: added copyright notice + +2001-01-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.c, lib/gnutls_cipher.c, lib/gnutls_cipher.h: removed + large buffer + +2001-01-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, README, configure.in, src/cli.c, src/port.h: [no log + message] + +2001-01-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/cert_der.asn1, lib/gnutls_cert.lex: removed + unneeded files + +2001-01-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.c: corrected wrong buffer size + +2001-01-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am: [no log message] + +2001-01-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cipher.c, lib/gnutls_cipher.h: changes in + gnutls_encrypt() + +2001-01-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.c, lib/gnutls_int.h: tls packets are now send using + one write(that way ssldump understands us) + +2001-01-25 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: updated todo list + +2001-01-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/cert_b64.c: corrected license + +2001-01-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/cert_der.asn1: added asn1 rules for snacc (DER extended) + compiler + +2001-01-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/draft-ietf-tls-wireless-00.txt: added draft-ietf-tls-wireless + +2001-01-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * AUTHORS: updated authors - tarun left + +2001-01-16 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: updated todo list + +2001-01-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_handshake.c: removed time_t declarations. We need + exactly 32 bits. + +2001-01-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_der.h: corrected typo + +2001-01-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/cert_b64.c: added some support for pem encoded x509 + certificates + +2001-01-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.c: session gets deleted from the db if it is not + resumable + +2001-01-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_db.c, lib/gnutls_db.h: added db files + +2001-01-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: more fixes + +2001-01-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, src/cli.c: fixes for release + +2001-01-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * acinclude.m4: added hooks for new libgcrypt + +2001-01-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, doc/API, lib/Makefile.am, lib/gnutls.c, + lib/gnutls.h, lib/gnutls_algorithms.c, lib/gnutls_errors.c, + lib/gnutls_errors.h, lib/gnutls_handshake.c, + lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_session.c, + src/Makefile.am, src/cli.c, src/port.h, src/serv.c: added server + side session resuming (using gdbm) + +2001-01-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * acconfig.h, configure.in, lib/gnutls_dh.c, lib/gnutls_int.h, + src/Makefile.am: added hooks for dmalloc + +2001-01-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/Makefile.am, src/cli.c, src/serv.c: corrected client/server + +2001-01-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/gnutls.c, lib/gnutls.h, + lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, + lib/gnutls_cipher.c, lib/gnutls_cipher_int.c, + lib/gnutls_handshake.c, lib/gnutls_int.h: corrected buffer overruns + +2001-01-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/rfc1423.txt: [no log message] + +2001-01-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/rfc1422.txt: added PEM rfc + +2001-01-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.c: corrected return value + +2001-01-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.c: added a check in read return value + +2000-12-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_compress_int.c: more checks for zlib + +2000-12-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/API: [no log message] + +2000-12-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/API, lib/gnutls.c, lib/gnutls.h, lib/gnutls_int.h: added a + function to control the lowat size (the RCVLOWAT in socket) + +2000-12-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/Makefile.am: removed file + +2000-12-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, configure.in, doc/API, doc/TODO, lib/gnutls.c, + lib/gnutls.h, lib/gnutls_algorithms.c, lib/gnutls_buffers.c, + lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_handshake.c, + lib/gnutls_int.h, src/cli.c, src/port.h, src/serv.c: added some + support for non blocking IO and socket flags. Some function names + have been changed. + +2000-12-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_algorithms.c: qsort seems to work now + +2000-12-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_compress_int.c: added check for zlib.h + +2000-12-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_algorithms.c: updated sorting algorithm - it was a + mess - it is more than a mess now + +2000-12-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, doc/API, doc/TODO, lib/gnutls.c, lib/gnutls.h, + lib/gnutls_algorithms.c, lib/gnutls_cipher.c, + lib/gnutls_cipher_int.c, lib/gnutls_compress_int.c, + lib/gnutls_hash_int.c, lib/gnutls_int.h, src/cli.c, src/port.h, + src/serv.c: some minor updates + +2000-12-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.c: added a better(?) - not sure - xor function. + +2000-12-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_priority.h: added missing file + +2000-12-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: added option for profiling + +2000-12-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, + lib/gnutls_handshake.c, lib/gnutls_kx.c: improved some things found + from gcov + +2000-12-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.c, lib/gnutls_int.h: improved peek data handling - now + keeps only 1 byte in kernel buffer + +2000-12-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/gnutls.c: more changes + +2000-12-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_int.h: removed debug definitions + +2000-12-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, lib/Makefile.am, lib/debug.h, lib/gnutls.c, + lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_errors.h, + lib/gnutls_handshake.c, lib/gnutls_handshake.h, + lib/gnutls_hash_int.c, lib/gnutls_int.h, lib/gnutls_kx.c, + src/cli.c, src/serv.c: cleanups for gcc -Wall + +2000-12-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/HACKING: removed file. replaced by API + +2000-12-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/API, lib/gnutls.c, lib/gnutls.h, lib/gnutls_buffers.c, + lib/gnutls_int.h, lib/gnutls_session.c, src/cli.c: added some new + functions in the API. documentation updated. + +2000-12-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/API, doc/TODO: updated documentation + +2000-12-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.c: corrected peek data handling + +2000-12-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, doc/TODO, lib/defines.h, lib/gnutls.c, + lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_int.h, + src/cli.c: used MSG_PEEK flag in recv in order to used + gnutls_recv() with select(). This change will order select to treat + the socket as read even if we have read and localy buffered all data + - but the user hasn't call gnutls_recv() to get that data. + +2000-12-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c: [no log message] + +2000-12-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c, src/serv.c: updated client + +2000-12-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/debug.c, lib/gnutls.c, lib/gnutls_buffers.c, + lib/gnutls_cipher.c, lib/gnutls_handshake.c, lib/gnutls_int.h: + changes in close notify- alert handling + +2000-12-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_compress_int.c, lib/gnutls_compress_int.h: changes in + compression handling + +2000-12-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS: [no log message] + +2000-12-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_session.c, lib/gnutls_session.h: moved to r2 + +2000-12-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * NEWS, doc/HACKING, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_session.c, src/cli.c, src/port.h, src/serv.c: added + client side resuming + +2000-12-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_session.c, lib/gnutls_session.h: added support for + session resuming + +2000-12-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/gnutls.c, lib/gnutls.h, lib/gnutls_cipher.c, + lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h: + added some support for session resuming (in client) It does not seem + to work yet + +2000-12-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/debug.c, lib/gnutls.h, lib/gnutls_cipher.c, lib/gnutls_int.h: + removed all things about exportable algorithms + +2000-12-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_handshake.c: gnutls_handshake was broken to + gnutls_handshake_begin and gnutls_handshake_finish. This will help + the use of certificate API to check received certificates + +2000-12-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: added a warning if zlib was not found + +2000-12-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.c: Added default algorithm priorities so it can work + even if the user hasn't specified any + +2000-12-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_compress_int.c, lib/gnutls_compress_int.h: added + compression (ZLIB) + +2000-12-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/Makefile.am, lib/gnutls.c, lib/gnutls.h, + lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, + lib/gnutls_cipher.c, lib/gnutls_compress.c, lib/gnutls_errors.c, + lib/gnutls_errors.h, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_priority.c, src/cli.c, src/port.h, src/serv.c: Added + compression support (ZLIB) + +2000-12-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_handshake.c, lib/gnutls_hash_int.c, + lib/gnutls_hash_int.h, src/cli.c, src/port.h: SSL3 support was + added + +2000-12-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.c, lib/gnutls_buffers.c, lib/gnutls_buffers.h, + lib/gnutls_handshake.c, lib/gnutls_int.h: major cleanups + +2000-12-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.c, lib/gnutls_buffers.c, lib/gnutls_buffers.h, + lib/gnutls_cipher.c, lib/gnutls_handshake.c, lib/gnutls_hash_int.c, + lib/gnutls_hash_int.h, lib/gnutls_int.h: more ssl3 fixes + +2000-12-06 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.c, lib/gnutls.h, lib/gnutls_algorithms.c, + lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cipher.c, + lib/gnutls_cipher_int.c, lib/gnutls_handshake.c, + lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, + lib/gnutls_kx.c: A lot of fixes for SSL3 + +2000-12-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/Makefile.am: added API + +2000-12-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/API, doc/TODO: documentation update + +2000-12-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.c, lib/gnutls_priority.c, src/cli.c, src/serv.c: + Bugfixes mainly for the priority (which was moved to the state) + +2000-12-05 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.c, lib/gnutls.h, lib/gnutls_algorithms.c, + lib/gnutls_algorithms.h, lib/gnutls_cipher.c, + lib/gnutls_handshake.c, lib/gnutls_handshake.h, + lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, + lib/gnutls_kx.c, lib/gnutls_priority.c: Priorities were moved to + the state (were global) + +2000-11-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_algorithms.c, lib/gnutls_cipher.c, + lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h: + added ssl3 key generation function - more fixes in ssl3 mac + +2000-11-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_hash_int.c, lib/gnutls_hash_int.h: more bugfixes + +2000-11-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_hash_int.c: corrected nasty bugs + +2000-11-22 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_hash_int.c, lib/gnutls_hash_int.h: added support for + the MAC used in SSLv3 + +2000-11-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * README: updated readme + +2000-11-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: removed unneeded check + +2000-11-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/Makefile.am, doc/ssl3-vs-tls: cleanups + +2000-11-19 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: updated todo + +2000-11-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cipher_int.c: added ARCFOUR support when using gcrypt + +2000-11-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/draft-ietf-tls-ciphersuite-01.txt: removed old draft + +2000-11-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/draft-ietf-tls-ciphersuite-02.txt, lib/gnutls_algorithms.c: + added the new tls-ciphersuite draft, and the ciphersuite + TLS_DH_anon_RIJNDAEL_CBC_SHA + +2000-11-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/gnutls.c, lib/gnutls.h, + lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, + lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_cipher_int.c, + lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_handshake.c, + lib/gnutls_int.h: several cleanups in order to support ssl3 + +2000-11-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * AUTHORS, COPYING, Makefile.am, NEWS, README, THANKS, acconfig.h, + acinclude.m4, buildconf, configure.in, doc/HACKING, + doc/Makefile.am, doc/TODO, doc/draft-ietf-tls-camellia-00.txt, + doc/draft-ietf-tls-ciphersuite-01.txt, + doc/draft-ietf-tls-https-04.txt, doc/draft-ietf-tls-misty1-00.txt, + doc/draft-ietf-tls-openpgp-00.txt, + doc/draft-ietf-tls-seedhas-00.txt, + doc/draft-ietf-tn3270e-telnet-tls-05.txt, doc/rfc2246.txt, + doc/rfc2459.txt, doc/rfc2818.txt, doc/ssl-draft302.txt, + doc/ssl3-vs-tls, lib/Makefile.am, lib/README.der, lib/debug.c, + lib/debug.h, lib/defines.h, lib/gnutls.c, lib/gnutls.h, + lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, + lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cert.lex, + lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_cipher_int.c, + lib/gnutls_cipher_int.h, lib/gnutls_compress.c, + lib/gnutls_compress.h, lib/gnutls_der.c, lib/gnutls_der.h, + lib/gnutls_dh.c, lib/gnutls_dh.h, lib/gnutls_errors.c, + lib/gnutls_errors.h, lib/gnutls_handshake.c, + lib/gnutls_handshake.h, lib/gnutls_hash_int.c, + lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_kx.c, + lib/gnutls_kx.h, lib/gnutls_num.c, lib/gnutls_num.h, + lib/gnutls_plaintext.c, lib/gnutls_plaintext.h, + lib/gnutls_priority.c, src/Makefile.am, src/cli.c, src/port.h, + src/serv.c: Moving to release 2 + +2000-11-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/HACKING, lib/gnutls.c, lib/gnutls.h, lib/gnutls_algorithms.c, + lib/gnutls_handshake.c, lib/gnutls_hash_int.c, + lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_kx.c, + src/cli.c: roll backs and fixes + +2000-11-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/ssl3-vs-tls: added + +2000-11-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: updated for mhash + +2000-11-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: updated todo + +2000-11-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/debug.c, lib/debug.h, lib/gnutls.c, lib/gnutls.h, + lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, + lib/gnutls_cipher.c, lib/gnutls_dh.c, lib/gnutls_handshake.c, + lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, + lib/gnutls_kx.c: added some support for ssl3 (with mhash only) + +2000-11-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/rfc2818.txt, doc/ssl-draft302.txt: more drafs added + +2000-11-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/draft-ietf-tls-camellia-00.txt, + doc/draft-ietf-tls-https-04.txt, doc/draft-ietf-tls-misty1-00.txt, + doc/draft-ietf-tls-seedhas-00.txt, + doc/draft-ietf-tn3270e-telnet-tls-05.txt: added more draft's + +2000-11-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_der.c: removed main() + +2000-11-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: updated todo list + +2000-11-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.h, lib/gnutls_algorithms.c, lib/gnutls_cipher_int.c, + lib/gnutls_int.h: added preliminary support for AES (rijndael) + +2000-11-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/draft-ietf-tls-openpgp-00.txt: added + draft-ietf-tls-openpgp-00.txt + +2000-11-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/Makefile.am, doc/draft-ietf-tls-ciphersuite-01.txt: added + draft-ietf-tls-ciphersuite-01.txt + +2000-11-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cipher_int.c: fix for DES in mcrypt + +2000-11-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.c, lib/gnutls_cipher.c: fixes for the server... and + change_cipher_spec type packet. + +2000-11-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/debug.c, lib/gnutls.c, lib/gnutls.h, lib/gnutls_algorithms.c, + lib/gnutls_cipher.c, lib/gnutls_int.h: Changes in the client in + order to interoperate with an openssl server. + +2000-11-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * Makefile.am, acconfig.h, configure.in, lib/gnutls_algorithms.c, + lib/gnutls_cipher.c, lib/gnutls_cipher_int.c, + lib/gnutls_cipher_int.h, lib/gnutls_hash_int.c, lib/gnutls_int.h: + added hooks for both mhash and mcrypt + +2000-11-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h: + clean-ups + +2000-11-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_buffers.c, lib/gnutls_cipher.c, lib/gnutls_int.h: + corrected bugs in hmac and more. + +2000-11-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.c: corrected problem in our PRF function + +2000-11-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_int.h: removed mhash definitions + +2000-11-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.c, lib/gnutls_hash_int.c, lib/gnutls_int.h, + lib/gnutls_kx.c: more fixes + +2000-11-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/gnutls.c, lib/gnutls_cipher.c, + lib/gnutls_hash_int.c, lib/gnutls_kx.c: minor fixes and cleanups + +2000-11-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.c, lib/gnutls_cipher.c: more fixes... + +2000-11-02 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO, lib/gnutls.c, lib/gnutls_cipher.c, lib/gnutls_errors.c, + lib/gnutls_errors.h, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_kx.c: more fixes and bugs introduced + +2000-11-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_kx.c: cvs should stop messing with MY files + +2000-11-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_kx.c: [no log message] + +2000-11-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/gnutls_algorithms.c, lib/gnutls_dh.c, + lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_handshake.c, + lib/gnutls_kx.c, lib/gnutls_kx.h, src/cli.c, src/port.h: Some more + fixes and additions in order to interoperate with openssl + +2000-11-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/TODO: added a small todo list + +2000-11-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_handshake.c: memory leaks and overruns eliminated + +2000-11-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_handshake.c: corrected bug which made us to send the + double bytes of ciphersuites we had. + +2000-11-01 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/defines.h, lib/gnutls.c, lib/gnutls_algorithms.c, + lib/gnutls_buffers.c, lib/gnutls_cipher.c, lib/gnutls_errors.c, + lib/gnutls_errors.h, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_kx.c: added some preliminary support for DHE_DSS and + DHE_RSA algorithms... of course not certificates are used + +2000-10-31 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.c: some need gcry_ functions added. (for malloc etc) + +2000-10-31 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, doc/HACKING, lib/defines.h, lib/gnutls.c, + lib/gnutls_handshake.c, lib/gnutls_int.h, src/port.h, src/serv.c: + added assert() and some bug fixes + +2000-10-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/HACKING: some kind of updates + +2000-10-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_algorithms.h, lib/gnutls_handshake.c, + lib/gnutls_hash_int.c, lib/gnutls_int.h, lib/gnutls_kx.c: added + ability to receive certificates... + +2000-10-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, doc/HACKING: [no log message] + +2000-10-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/README.der: added Tarun's README.der + +2000-10-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h: added missing + files. They are to handle foreign encryption functions + +2000-10-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/gnutls_der.c, lib/gnutls_der.h: Added + Tarun's files + +2000-10-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * AUTHORS, configure.in, lib/gnutls_cert.lex, src/Makefile.am, + src/cli.c: added a DER parser from Tarun and updated authors + +2000-10-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/Makefile.am: changed in order for rfc's to be included in the + distribution + +2000-10-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * Makefile.am, acinclude.m4, configure.in: added checks for gcrypt + +2000-10-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/rfc2246.txt, doc/rfc2459.txt: Added rfc's which refer to what + we are implementing + +2000-10-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.c: corrected bug which made gnutls to wait for a + second closure alert after having received the first. + +2000-10-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/serv.c: [no log message] + +2000-10-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/gnutls.c, lib/gnutls_cipher.c, + lib/gnutls_dh.c, lib/gnutls_handshake.c, lib/gnutls_hash.c, + lib/gnutls_hash.h, lib/gnutls_int.h, lib/gnutls_kx.c: The + encryption api was fixed and gnutls_cipher.c was cleaned up a bit. + +2000-10-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_hash_int.c, lib/gnutls_hash_int.h: there files were + renamed + +2000-10-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * README, configure.in, src/Makefile.am: removed mhash support and + some changes in the docs + +2000-10-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_hash.c: bugfixes in gcrypt md functions handling + +2000-10-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/gnutls.c, lib/gnutls_cipher.c, + lib/gnutls_handshake.c, lib/gnutls_hash.c, lib/gnutls_hash.h, + lib/gnutls_int.h: Added support for the gcrypt hash and hmac + functions. Mhash support is almost removed. + +2000-10-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_dh.c, lib/gnutls_dh.h, lib/gnutls_kx.c: corrected the + problem with the double underscore + +2000-10-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: updated version number + +2000-10-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_dh.c, lib/gnutls_kx.c: removed double underscores + +2000-10-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * README: added some needed stuff + +2000-10-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/HACKING: outdated + +2000-10-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_priority.c: the file that handles some of the priority + stuff (most of the API things) + +2000-10-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/Makefile.am, lib/defines.h, lib/gnutls.h, + lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, + lib/gnutls_cipher.c, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_kx.c, src/cli.c, src/port.h, src/serv.c: Added support + for priorities. Some function names were renamed to be more + rational. + +2000-10-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.c, lib/gnutls_algorithms.c, lib/gnutls_handshake.c, + lib/gnutls_int.h, lib/gnutls_kx.c: some fixes in the comments, and + replaced KX_* with GNUTLS_KX_* + +2000-10-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.c, lib/gnutls_cipher.c, lib/gnutls_handshake.c, + lib/gnutls_kx.c: more inline documentation + +2000-10-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * AUTHORS: added my name + +2000-10-07 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.c, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, + lib/gnutls_cipher.c, lib/gnutls_errors.c, lib/gnutls_errors.h, + lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h, + lib/gnutls_kx.c: Added some kind of priorities for algorithms. + Still experimental. + +2000-05-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_int.h, src/cli.c, src/port.h, src/serv.c: + + Improved client/server examples. + +2000-04-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_int.h: + + removed an unneeded variable. + +2000-04-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/debug.c, lib/gnutls.c, lib/gnutls.h, lib/gnutls_algorithms.c, + lib/gnutls_buffers.c, lib/gnutls_cipher.c, lib/gnutls_compress.c, + lib/gnutls_dh.c, lib/gnutls_errors.c, lib/gnutls_handshake.c, + lib/gnutls_kx.c, lib/gnutls_num.c, lib/gnutls_plaintext.c, + src/cli.c, src/serv.c: + + Added copyright notices. + +2000-04-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/defines.h, lib/gnutls_handshake.c, lib/gnutls_int.h, + src/Makefile.am, src/port.h: [no log message] + +2000-04-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/defines.h, lib/gnutls.c, lib/gnutls_algorithms.c, + lib/gnutls_algorithms.h, lib/gnutls_cipher.c, + lib/gnutls_handshake.c, lib/gnutls_int.h, src/Makefile.am: + + Better mac algorithms handling. + +2000-04-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/HACKING, lib/defines.h, lib/gnutls.c, + lib/gnutls_algorithms.h, lib/gnutls_buffers.c, + lib/gnutls_buffers.h, lib/gnutls_cipher.c, lib/gnutls_handshake.c, + lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_kx.c, + src/Makefile.am, src/port.h: + + Changes in handshake messages handling. + +2000-04-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cipher.c, lib/gnutls_int.h: [no log message] + +2000-04-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.c, lib/gnutls_cipher.c, lib/gnutls_dh.c, + lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, + lib/gnutls_plaintext.c, lib/gnutls_plaintext.h, src/Makefile.am, + src/port.h: + + Corrected bug in gnutls_cipher.c that caused the library to fail in + certain (random) situations. + +2000-04-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_kx.c, src/serv.c: + + Better memory allocation in key exchange. + +2000-04-12 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.c, lib/gnutls_handshake.c, lib/gnutls_int.h, + lib/gnutls_kx.c, src/cli.c, src/port.h: + + Some changes in peer's version checks. + +2000-04-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.c, lib/gnutls_cipher.c, lib/gnutls_handshake.c, + lib/gnutls_int.h, src/port.h: + + Corrected bugs in MAC calculation. + +2000-04-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls_cipher.c, lib/gnutls_errors.h, lib/gnutls_handshake.c: + + Corrected bugs when setting cipher and mac. + +2000-04-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/Makefile.am, lib/gnutls.c, lib/gnutls.h, lib/gnutls_errors.c, + lib/gnutls_errors.h, lib/gnutls_handshake.c, lib/gnutls_kx.c, + lib/gnutls_kx.h, src/serv.c: + + Better error control. Moved key exchange functions to gnutls_kx.c/h + +2000-04-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * README: [no log message] + +2000-04-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.c, lib/gnutls_handshake.c, src/port.h: [no log + message] + +2000-04-11 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/gnutls.c, lib/gnutls_handshake.c, src/port.h: [no log + message] + +2000-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/debug.c, lib/debug.h, lib/gnutls_dh.c, + lib/gnutls_handshake.c, src/port.h: + + Bugfixes in the diffie hellman. + +2000-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * lib/debug.c, lib/defines.h, lib/gnutls.c, + lib/gnutls_algorithms.c, lib/gnutls_buffers.c, lib/gnutls_cipher.c, + lib/gnutls_compress.c, lib/gnutls_dh.c, lib/gnutls_dh.h, + lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_handshake.c, + lib/gnutls_int.h, lib/gnutls_num.c, lib/gnutls_plaintext.c, + src/port.h: + + Added anonymous diffie-hellman key exchange. It does not work yet, + and the whole code is mess. + +2000-04-10 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, lib/Makefile.am, lib/gnutls.c, + lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, + lib/gnutls_cipher.c, lib/gnutls_dh.c, lib/gnutls_dh.h, + lib/gnutls_handshake.c, lib/gnutls_int.h: + + Added the basics for key exchange. + +2000-04-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * COPYING: + + Added ChangeLog and COPYING. + +2000-04-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c, src/serv.c: [no log message] + +2000-04-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: [no log message] + +2000-04-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * Makefile.am, doc/Makefile.am, lib/Makefile.am, lib/debug.c, + lib/debug.h, lib/defines.h, lib/gnutls.c, lib/gnutls.h, + lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, + lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cipher.c, + lib/gnutls_cipher.h, lib/gnutls_compress.c, lib/gnutls_compress.h, + lib/gnutls_dh.c, lib/gnutls_errors.c, lib/gnutls_errors.h, + lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h, + lib/gnutls_num.c, lib/gnutls_num.h, lib/gnutls_plaintext.c, + lib/gnutls_plaintext.h, src/Makefile.am, src/debug.c, src/debug.h, + src/defines.h, src/gnutls.c, src/gnutls.h, src/gnutls_algorithms.c, + src/gnutls_algorithms.h, src/gnutls_buffers.c, + src/gnutls_buffers.h, src/gnutls_cipher.c, src/gnutls_cipher.h, + src/gnutls_compress.c, src/gnutls_compress.h, src/gnutls_dh.c, + src/gnutls_errors.c, src/gnutls_errors.h, src/gnutls_handshake.c, + src/gnutls_handshake.h, src/gnutls_int.h, src/gnutls_num.c, + src/gnutls_num.h, src/gnutls_plaintext.c, src/gnutls_plaintext.h: + + Changed directory structure. + +2000-04-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: + + corrected configure script + +2000-04-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in: [no log message] + +2000-04-09 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/gnutls.c, src/gnutls_handshake.c, src/gnutls_handshake.h, + src/gnutls_int.h, src/port.h: + + corrected bugs in handshake. + +2000-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/gnutls.c, src/gnutls_algorithms.c, src/gnutls_algorithms.h, + src/gnutls_cipher.c, src/gnutls_handshake.c, + src/gnutls_handshake.h, src/gnutls_int.h: + + Added some basics for key exchange. + +2000-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/gnutls_dh.c: + + I've add gnutls_dh.c but is not ready yet, I have to eat something + first:) It is taken from gsti. + +2000-04-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c, src/debug.c, src/gnutls.c, src/gnutls_algorithms.c, + src/gnutls_buffers.c, src/gnutls_cipher.c, src/gnutls_compress.c, + src/gnutls_errors.c, src/gnutls_errors.h, src/gnutls_handshake.c, + src/gnutls_handshake.h, src/gnutls_int.h, src/gnutls_num.c, + src/gnutls_plaintext.c, src/port.h, src/serv.c: + + Handshake implementation was improved. Still no key exchange + algorithm. + +2000-03-30 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/gnutls.c, src/gnutls_algorithms.c, src/gnutls_algorithms.h, + src/gnutls_cipher.c: + + Corrected bugs in gnutls_algorithms and added _gnutls_get_iv_size(). + +2000-03-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/Makefile.am, src/gnutls_algorithms.c, + src/gnutls_algorithms.h, src/gnutls_cipher.c: + + Algorithms/Ciphers interface has changes. + +2000-03-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/cli.c, src/gnutls.c, src/gnutls_buffers.c, + src/gnutls_errors.c, src/serv.c: + + The gnutls_recv() semantics were changed. It may return less data + than the specified. It operates similar to read(). + +2000-03-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/gnutls.c, src/gnutls_handshake.c, src/gnutls_handshake.h, + src/port.h: + + Server now generates a session_id. + +2000-03-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/gnutls_num.c, src/gnutls_num.h: [no log message] + +2000-03-29 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/Makefile.am, src/cli.c, src/gnutls.c, src/gnutls.h, + src/gnutls_errors.c, src/gnutls_errors.h, src/port.h, src/serv.c: + [no log message] + +2000-03-28 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/Makefile.am, src/cli.c, src/gnutls.c, src/gnutls.h, + src/gnutls_buffers.c, src/gnutls_errors.h, src/gnutls_handshake.c, + src/gnutls_handshake.h, src/gnutls_int.h, src/serv.c: + + Corrected a lot of bugs. Handshake protocol is ready to be coded. + +2000-03-26 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/gnutls.c, src/gnutls.h, src/gnutls_buffers.c, + src/gnutls_buffers.h: + + Included a reliable version of read/write (that read/write will + return exactly the bytes specified). + +2000-03-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/Makefile.am, src/cli.c, src/gnutls.c, src/gnutls.h, + src/gnutls_handshake.c, src/gnutls_handshake.h, src/serv.c, + src/test.c: [no log message] + +2000-03-24 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/gnutls.c, src/gnutls_buffers.c, src/gnutls_buffers.h, + src/gnutls_handshake.c: [no log message] + +2000-03-23 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/gnutls.c, src/gnutls_cipher.c, src/gnutls_handshake.c, + src/gnutls_int.h: + + Changes in the handshake. + +2000-03-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/gnutls.c: + + Some memory leaks were fixed. + +2000-03-18 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/gnutls.c, src/gnutls_cipher.c, src/gnutls_handshake.c, + src/gnutls_int.h: + + Corrected bug in the record protocol. Now it holds 2 states, 1 for + encryption and 1 for decryption (mac/cipher/iv/compression). + +2000-03-17 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/Makefile.am, src/defines.h, src/gnutls.c, + src/gnutls_handshake.c, src/gnutls_handshake.h, src/gnutls_int.h: + + Added the client hello handshake message. + +2000-03-15 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * doc/HACKING: + + documentation. + +2000-03-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/gnutls_handshake.h, src/gnutls_record.h: + + Incorporated in gnutls_int.h + +2000-03-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * src/Makefile.am, src/debug.c, src/gnutls.c, src/gnutls_buffers.c, + src/gnutls_buffers.h, src/gnutls_cipher.c, src/gnutls_compress.c, + src/gnutls_errors.h, src/gnutls_int.h, src/gnutls_plaintext.c: + + gnutls_recv() can now receive fatal alerts and closure alerts. + +2000-03-14 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * README, src/Makefile.am, src/debug.c, src/gnutls.c, src/gnutls.h, + src/gnutls_buffers.c, src/gnutls_buffers.h, src/gnutls_cipher.c, + src/gnutls_compress.c, src/gnutls_errors.h, src/gnutls_handshake.h, + src/gnutls_int.h, src/gnutls_plaintext.c, src/gnutls_record.h, + src/test.c: + + In case of failure gnutls_recv, sends an alert message. but, it + still cannot receive any. + +2000-03-13 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * configure.in, src/Makefile.am, src/gnutls.c, src/gnutls.h, + src/gnutls_cipher.c, src/test.c: + + Added gnutls_recv... Works only for application data, and it is not + tested. + +2000-03-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * AUTHORS, buildconf: [no log message] + +2000-03-08 Nikos Mavrogiannopoulos <nmav@gnutls.org> + + * Makefile.am, acconfig.h, buildconf, configure.in, + src/Makefile.am, src/debug.c, src/debug.h, src/defines.h, + src/gnutls.c, src/gnutls.h, src/gnutls_cipher.c, + src/gnutls_cipher.h, src/gnutls_compress.c, src/gnutls_compress.h, + src/gnutls_plaintext.c, src/gnutls_plaintext.h, src/test.c: [no log + message] + +2000-03-07 Werner Koch <wk@gnupg.org> + + * Makefile.am, NEWS, README, THANKS, acconfig.h, acinclude.m4, + configure.in, lib/Makefile.am, src/Makefile.am: Initialized + repository for GNU TLS + +---------------------------------------------------------------------- + Copyright (C) 2000, 2001, 2002, 2003, 2004, 2005 Free Software Foundation + Copying and distribution of this file, with or without modification, + are permitted in any medium without royalty provided the copyright + notice and this notice are preserved. |