summaryrefslogtreecommitdiff
path: root/NEWS
Commit message (Collapse)AuthorAgeFilesLines
* released 3.0.3gnutls_3_0_3Nikos Mavrogiannopoulos2011-09-181-1/+1
|
* VIA is disabled by default.Nikos Mavrogiannopoulos2011-09-181-0/+4
|
* Corrected memory leak in privkey deinitialization. Reported by Dan Winship.Nikos Mavrogiannopoulos2011-09-181-0/+3
|
* Added gnutls_record_get_discarded() to return the number of discardedNikos Mavrogiannopoulos2011-09-171-0/+4
| | | | record packets in a DTLS session.
* updated documentation. The function descriptions were converted to floats.Nikos Mavrogiannopoulos2011-09-131-0/+3
|
* disable the 64-bit padlock until it is tested.Nikos Mavrogiannopoulos2011-09-121-0/+2
|
* Memory leak fixes in ECC ciphersuites and the trust_list.Nikos Mavrogiannopoulos2011-09-091-1/+4
|
* Do not send an empty extension structure in server hello. This affectsNikos Mavrogiannopoulos2011-09-081-0/+4
| | | | | old implementations that do not support extensions. Reported by J. Cameijo Cerdeira.
* Added support to read elliptic curve public keys from PKCS #11 tokens ↵Nikos Mavrogiannopoulos2011-09-061-0/+6
| | | | (untested).
* Added gnutls_pkcs11_privkey_generate().Nikos Mavrogiannopoulos2011-09-061-0/+12
| | | | p11tool can be used to generate keys in tokens.
* libgnutls: Allow CA importing of 0 certificates to succeed.Simon Josefsson2011-09-061-0/+4
| | | | | Reported by Jonathan Nieder <jrnieder@gmail.com> in <http://bugs.debian.org/640639>.
* updatedNikos Mavrogiannopoulos2011-09-011-1/+1
|
* OpenPGP certificate type priority is not enabled by default.Nikos Mavrogiannopoulos2011-08-311-0/+3
|
* Added %NO_EXTENSIONS priority string.Nikos Mavrogiannopoulos2011-08-311-0/+5
|
* removed unneeded header. Documented updates.Nikos Mavrogiannopoulos2011-08-291-0/+3
|
* Benchmark applications were incorporated to gnutls-cliNikos Mavrogiannopoulos2011-08-281-0/+3
|
* XmppAddr -> UTF8StringNikos Mavrogiannopoulos2011-08-271-0/+3
|
* gnutls_certificate_set_x509_key() and gnutls_certificate_set_openpgp_key() ↵Nikos Mavrogiannopoulos2011-08-271-0/+14
| | | | operate as in gnutls 2.10.x and do not require to hold the structures.
* updated for releaseNikos Mavrogiannopoulos2011-08-201-4/+4
|
* Removed the limitation of one name per certificate.Nikos Mavrogiannopoulos2011-08-191-2/+1
|
* updated crywrapNikos Mavrogiannopoulos2011-08-171-1/+2
|
* documented changesNikos Mavrogiannopoulos2011-08-171-5/+11
|
* Added AES-256-GCM. Reported by Benjamin Hof.Nikos Mavrogiannopoulos2011-08-151-0/+3
|
* documented fixNikos Mavrogiannopoulos2011-08-141-0/+1
|
* documented fixNikos Mavrogiannopoulos2011-08-141-0/+4
|
* corrected child process cleanup and added option to specify diffie hellman ↵Nikos Mavrogiannopoulos2011-08-131-0/+2
| | | | parameters file.
* If a module is dlopened twice, then deinitialize the second load.Nikos Mavrogiannopoulos2011-08-131-0/+3
|
* documented fixesNikos Mavrogiannopoulos2011-08-111-0/+2
|
* corrected typoNikos Mavrogiannopoulos2011-08-091-1/+1
|
* Add NEWS entries. Use copyright ranges (now permitted).Simon Josefsson2011-08-031-2/+5
|
* the deprecated_config_file from 2.12.x was incorporated.Nikos Mavrogiannopoulos2011-08-021-0/+3
|
* Added GNUTLS_X509_CRT_LIST_FAIL_IF_UNSORTED flag for ↵Nikos Mavrogiannopoulos2011-07-311-1/+5
| | | | | | gnutls_x509_crt_list_import. It checks whether the list to be imported is properly sorted.
* Added GNUTLS_E_CERTIFICATE_LIST_UNSORTED.Nikos Mavrogiannopoulos2011-07-311-0/+10
| | | | | | | | If a certificate list is loaded then verify that it is sorted with order to starts with the subject and finished with the trusted root. That way we make sure we don't send data that violate the TLS protocol.
* released 3.0.0Nikos Mavrogiannopoulos2011-07-291-1/+1
|
* documented updates.Nikos Mavrogiannopoulos2011-07-271-2/+9
|
* documented changes.Nikos Mavrogiannopoulos2011-07-251-0/+8
|
* released 2.99.4Nikos Mavrogiannopoulos2011-07-231-3/+3
|
* updated.Nikos Mavrogiannopoulos2011-07-231-0/+7
|
* Upgraded to LGPLv3.Nikos Mavrogiannopoulos2011-06-231-0/+2
|
* gnutls_srp_verifier() returns data allocated with gnutls_malloc()Nikos Mavrogiannopoulos2011-06-211-0/+9
| | | | for consistency.
* bumped version.Nikos Mavrogiannopoulos2011-06-181-1/+5
|
* Added new PKCS #11 flags to force an object being private or not.Nikos Mavrogiannopoulos2011-06-181-0/+6
| | | | | Those are GNUTLS_PKCS11_OBJ_FLAG_MARK_PRIVATE and GNUTLS_PKCS11_OBJ_FLAG_MARK_NOT_PRIVATE. p11tool supports now the --no-private and --private options.
* Added gnutls_x509_trust_list_add_named_crt() andNikos Mavrogiannopoulos2011-06-041-1/+8
| | | | | | gnutls_x509_trust_list_verify_named_crt() that allow having a list of certificates in the trusted list that will be associated with a name (e.g. server name) and will not be used as CAs.
* Added SuiteB ciphersuites. Added SUITEB128 and SUITEB192 priority strings.Nikos Mavrogiannopoulos2011-06-041-0/+3
| | | | | SECURE256 was renamed to SECURE192 (because TLS ciphersuite's security level was not enough to justify 256-bits).
* gnutls_ecc_curve_get() was added.Nikos Mavrogiannopoulos2011-06-041-0/+12
|
* gnutls/crypto.h no longer includes functions to register ciphers.Nikos Mavrogiannopoulos2011-06-021-0/+9
| | | | | | | | | | | | | | Thus the following functions - gnutls_crypto_bigint_register - gnutls_crypto_cipher_register - gnutls_crypto_digest_register - gnutls_crypto_mac_register - gnutls_crypto_pk_register - gnutls_crypto_rnd_register - gnutls_crypto_single_cipher_register - gnutls_crypto_single_digest_register - gnutls_crypto_single_mac_register are only available internally via crypto-backend.h.
* Added AES-GCM optimizations using the PCLMULQDQ instruction. Uses Andy ↵Nikos Mavrogiannopoulos2011-06-011-0/+3
| | | | Polyakov's assembly code.
* Added ECDHE-PSK ciphersuites for TLS (RFC 5489).Nikos Mavrogiannopoulos2011-05-271-0/+8
|
* document elliptic curves addition.Nikos Mavrogiannopoulos2011-05-261-1/+8
|
* listed newly added functions.Nikos Mavrogiannopoulos2011-05-261-0/+23
|
View Lorry Controller Status