diff options
author | Nikos Mavrogiannopoulos <nmav@gnutls.org> | 2010-01-12 18:34:39 +0100 |
---|---|---|
committer | Nikos Mavrogiannopoulos <nmav@gnutls.org> | 2010-01-12 18:49:39 +0100 |
commit | 3275e1c09bc9c74946ebdaa87c71b71371aeccc4 (patch) | |
tree | 2a7e9ec01578197be39ee3bb532a66ecb0967568 /NEWS | |
parent | a20d9828ae55f032752addcad4228c624f9094fa (diff) | |
download | gnutls-3275e1c09bc9c74946ebdaa87c71b71371aeccc4.tar.gz |
When checking self signature also check the signatures of all subkeys.
Ilari Liusvaara noticed and reported the issue and provided test vectors as well.
certtool --pgp-certificate-info will check self signatures.
Added self tests for self-sigs.
Diffstat (limited to 'NEWS')
-rw-r--r-- | NEWS | 4 |
1 files changed, 4 insertions, 0 deletions
@@ -5,6 +5,9 @@ See the end for copying conditions. * Version 2.9.10 (unreleased) +** libgnutls: When checking self signature also check the signatures of all subkeys. +Ilari Liusvaara noticed and reported the issue and provided test vectors as well. + ** libgnutls: Added cryptodev support (/dev/crypto). Tested with http://www.logix.cz/michal/devel/cryptodev/. Added benchmark utility for AES. Exported API to access encryption and hash algorithms. @@ -18,6 +21,7 @@ them does not seem to offer anything (anyway you need the signer's certificate to verify thus public key will be available). Found thanks to Boyan Kasarov. This however has the side-effect that public key IDs shown by certtool are now different than previous gnutls releases. +(3) the option --pgp-certificate-info will verify self signatures ** certtool: Allow exporting of Certificate requests on DER format. |