2011-04-09 Nikos Mavrogiannopoulos * .gitignore, doc/cha-gtls-app.texi, doc/cha-intro-tls.texi, doc/examples/Makefile.am, doc/examples/ex-client-udp.c, doc/examples/udp.c, lib/gnutls_state.c: Added documentation for Datagram TLS. 2011-04-09 Nikos Mavrogiannopoulos * cfg.mk: updated 2011-04-08 Nikos Mavrogiannopoulos * tests/chainverify.c: disable test in windows. 2011-04-08 Nikos Mavrogiannopoulos * tests/mini-x509-rehandshake.c, tests/openpgp-auth.c, tests/openpgp-auth2.c: corrected leaks in tests. 2011-04-08 Nikos Mavrogiannopoulos * lib/auth_cert.c, lib/gnutls_pk.c: corrected memory leak on RSA signatures. 2011-04-08 Nikos Mavrogiannopoulos * lib/x509/common.c: more leaks fixed in common.c 2011-04-08 Nikos Mavrogiannopoulos * lib/gnutls_pubkey.c: Corrected leaks in gnutls_pubkey_t deinitialization. 2011-04-08 Nikos Mavrogiannopoulos * lib/x509/verify-high.c: fix in trusted_list certificate deinitialization. 2011-04-08 Nikos Mavrogiannopoulos * lib/gnutls_privkey.c: correction in deinitialization of privkey. 2011-04-08 Nikos Mavrogiannopoulos * tests/mini-x509-rehandshake.c, tests/mini-x509.c: combined more tests with eagain-common.h. 2011-04-08 Nikos Mavrogiannopoulos * lib/auth_dh_common.c, lib/gnutls_privkey.c, lib/gnutls_x509.c, lib/nettle/pk.c, lib/pakchois/pakchois.c, lib/pakchois/pakchois.h, lib/pkcs11.c, lib/x509/verify-high.c, tests/mini-x509.c: Corrected memory leaks. 2011-04-08 Nikos Mavrogiannopoulos * build-aux/arg-nonnull.h, build-aux/c++defs.h, build-aux/config.rpath, build-aux/warn-on-use.h, cfg.mk, gl/Makefile.am, gl/m4/.gitignore, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4: added valgrind from gnulib. 2011-04-08 Nikos Mavrogiannopoulos * tests/dsa/testdsa, tests/openpgp-certs/testcerts: Do not run the test scripts in win32 environment. 2011-04-08 Nikos Mavrogiannopoulos * cfg.mk: use the system wide gnulib-tool. 2011-04-08 Nikos Mavrogiannopoulos * .gitignore: updated 2011-04-08 Nikos Mavrogiannopoulos * NEWS: updated 2011-04-08 Nikos Mavrogiannopoulos * tests/suite/ecore/src/lib/ecore_exe.c: include priority headers unconditionally. 2011-04-08 Nikos Mavrogiannopoulos * configure.ac, tests/Makefile.am, tests/suite/Makefile.am, tests/suite/Makefile.in: Better way of not including the tests/suite directory. Based on discussion with LRN and Vincent Torri. 2011-04-08 Nikos Mavrogiannopoulos * .gitignore, Makefile.am, cfg.mk, configure.ac, doc/examples/Makefile.am, doc/gendocs_template, gl/.gitignore, gl/Makefile.am, gl/accept.c, gl/alignof.h, gl/alloca.c, gl/alloca.in.h, gl/arpa_inet.in.h, gl/asnprintf.c, gl/bind.c, gl/c-ctype.c, gl/c-ctype.h, gl/close-hook.c, gl/close-hook.h, gl/close.c, gl/connect.c, gl/errno.in.h, gl/error.c, gl/error.h, gl/fclose.c, gl/float+.h, gl/float.in.h, gl/fseeko.c, gl/ftello.c, gl/gai_strerror.c, gl/getaddrinfo.c, gl/getdelim.c, gl/getline.c, gl/getpass.c, gl/getpass.h, gl/gettext.h, gl/gettime.c, gl/gettimeofday.c, gl/inet_ntop.c, gl/inet_pton.c, gl/intprops.h, gl/listen.c, gl/lseek.c, gl/m4/.gitignore, gl/m4/00gnulib.m4, gl/m4/alloca.m4, gl/m4/arpa_inet_h.m4, gl/m4/asm-underscore.m4, gl/m4/autobuild.m4, gl/m4/clock_time.m4, gl/m4/close.m4, gl/m4/errno_h.m4, gl/m4/error.m4, gl/m4/extensions.m4, gl/m4/fclose.m4, gl/m4/float_h.m4, gl/m4/fseeko.m4, gl/m4/ftello.m4, gl/m4/getaddrinfo.m4, gl/m4/getdelim.m4, gl/m4/getline.m4, gl/m4/getpagesize.m4, gl/m4/getpass.m4, gl/m4/gettime.m4, gl/m4/gettimeofday.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-common.m4, gl/m4/gnulib-comp.m4, gl/m4/gnulib-tool.m4, gl/m4/hostent.m4, gl/m4/include_next.m4, gl/m4/inet_ntop.m4, gl/m4/inet_pton.m4, gl/m4/intmax_t.m4, gl/m4/inttypes_h.m4, gl/m4/ioctl.m4, gl/m4/lib-ld.m4, gl/m4/lib-link.m4, gl/m4/lib-prefix.m4, gl/m4/longlong.m4, gl/m4/lseek.m4, gl/m4/malloc.m4, gl/m4/manywarnings.m4, gl/m4/memchr.m4, gl/m4/minmax.m4, gl/m4/mmap-anon.m4, gl/m4/multiarch.m4, gl/m4/netdb_h.m4, gl/m4/netinet_in_h.m4, gl/m4/perror.m4, gl/m4/printf.m4, gl/m4/read-file.m4, gl/m4/readline.m4, gl/m4/realloc.m4, gl/m4/select.m4, gl/m4/servent.m4, gl/m4/size_max.m4, gl/m4/snprintf.m4, gl/m4/socketlib.m4, gl/m4/sockets.m4, gl/m4/socklen.m4, gl/m4/sockpfaf.m4, gl/m4/stdarg.m4, gl/m4/stdbool.m4, gl/m4/stddef_h.m4, gl/m4/stdint.m4, gl/m4/stdint_h.m4, gl/m4/stdio_h.m4, gl/m4/stdlib_h.m4, gl/m4/strerror.m4, gl/m4/string_h.m4, gl/m4/sys_ioctl_h.m4, gl/m4/sys_select_h.m4, gl/m4/sys_socket_h.m4, gl/m4/sys_stat_h.m4, gl/m4/sys_time_h.m4, gl/m4/time_h.m4, gl/m4/timespec.m4, gl/m4/ungetc.m4, gl/m4/unistd_h.m4, gl/m4/valgrind-tests.m4, gl/m4/vasnprintf.m4, gl/m4/version-etc.m4, gl/m4/warn-on-use.m4, gl/m4/warnings.m4, gl/m4/wchar_h.m4, gl/m4/wchar_t.m4, gl/m4/wint_t.m4, gl/m4/xsize.m4, gl/malloc.c, gl/memchr.c, gl/minmax.h, gl/netdb.in.h, gl/netinet_in.in.h, gl/perror.c, gl/printf-args.c, gl/printf-args.h, gl/printf-parse.c, gl/printf-parse.h, gl/progname.c, gl/progname.h, gl/read-file.c, gl/read-file.h, gl/readline.c, gl/readline.h, gl/realloc.c, gl/recv.c, gl/select.c, gl/send.c, gl/setsockopt.c, gl/shutdown.c, gl/size_max.h, gl/snprintf.c, gl/socket.c, gl/sockets.c, gl/sockets.h, gl/stdarg.in.h, gl/stdbool.in.h, gl/stddef.in.h, gl/stdint.in.h, gl/stdio-impl.h, gl/stdio-write.c, gl/stdio.in.h, gl/stdlib.in.h, gl/strerror.c, gl/string.in.h, gl/sys_select.in.h, gl/sys_socket.in.h, gl/sys_stat.in.h, gl/sys_time.in.h, gl/tests/.gitignore, gl/tests/Makefile.am, gl/tests/binary-io.h, gl/tests/dummy.c, gl/tests/fcntl.in.h, gl/tests/getpagesize.c, gl/tests/init.sh, gl/tests/ioctl.c, gl/tests/macros.h, gl/tests/signature.h, gl/tests/sys_ioctl.in.h, gl/tests/test-alignof.c, gl/tests/test-alloca-opt.c, gl/tests/test-arpa_inet.c, gl/tests/test-binary-io.c, gl/tests/test-c-ctype.c, gl/tests/test-errno.c, gl/tests/test-fcntl-h.c, gl/tests/test-fseeko.c, gl/tests/test-ftello.c, gl/tests/test-ftello3.c, gl/tests/test-getaddrinfo.c, gl/tests/test-getdelim.c, gl/tests/test-getline.c, gl/tests/test-gettimeofday.c, gl/tests/test-inet_ntop.c, gl/tests/test-inet_pton.c, gl/tests/test-lseek.c, gl/tests/test-lseek.sh, gl/tests/test-memchr.c, gl/tests/test-netdb.c, gl/tests/test-netinet_in.c, gl/tests/test-perror.c, gl/tests/test-perror.sh, gl/tests/test-read-file.c, gl/tests/test-select-fd.c, gl/tests/test-select-in.sh, gl/tests/test-select-out.sh, gl/tests/test-select-stdin.c, gl/tests/test-select.c, gl/tests/test-snprintf.c, gl/tests/test-sockets.c, gl/tests/test-stdbool.c, gl/tests/test-stddef.c, gl/tests/test-stdint.c, gl/tests/test-stdio.c, gl/tests/test-stdlib.c, gl/tests/test-strerror.c, gl/tests/test-string.c, gl/tests/test-sys_ioctl.c, gl/tests/test-sys_select.c, gl/tests/test-sys_socket.c, gl/tests/test-sys_stat.c, gl/tests/test-sys_time.c, gl/tests/test-sys_wait.h, gl/tests/test-time.c, gl/tests/test-unistd.c, gl/tests/test-update-copyright.sh, gl/tests/test-vasnprintf.c, gl/tests/test-vc-list-files-cvs.sh, gl/tests/test-vc-list-files-git.sh, gl/tests/test-verify.c, gl/tests/test-version-etc.c, gl/tests/test-version-etc.sh, gl/tests/test-wchar.c, gl/tests/w32sock.h, gl/tests/zerosize-ptr.h, gl/time.in.h, gl/timespec.h, gl/unistd.in.h, gl/vasnprintf.c, gl/vasnprintf.h, gl/verify.h, gl/version-etc-fsf.c, gl/version-etc.c, gl/version-etc.h, gl/w32sock.h, gl/wchar.in.h, gl/xsize.h, guile/src/Makefile.am, lib/Makefile.am, lib/configure.ac, lib/gcrypt/Makefile.am, lib/gl/Makefile.am, lib/gl/alignof.h, lib/gl/alloca.in.h, lib/gl/asnprintf.c, lib/gl/asprintf.c, lib/gl/byteswap.in.h, lib/gl/c-ctype.c, lib/gl/c-ctype.h, lib/gl/close-hook.c, lib/gl/close-hook.h, lib/gl/errno.in.h, lib/gl/float+.h, lib/gl/float.in.h, lib/gl/fseeko.c, lib/gl/ftello.c, lib/gl/gettext.h, lib/gl/lseek.c, lib/gl/m4/00gnulib.m4, lib/gl/m4/alloca.m4, lib/gl/m4/asm-underscore.m4, lib/gl/m4/byteswap.m4, lib/gl/m4/codeset.m4, lib/gl/m4/errno_h.m4, lib/gl/m4/extensions.m4, lib/gl/m4/fcntl-o.m4, lib/gl/m4/float_h.m4, lib/gl/m4/fseeko.m4, lib/gl/m4/ftello.m4, lib/gl/m4/func.m4, lib/gl/m4/getpagesize.m4, lib/gl/m4/gettext.m4, lib/gl/m4/glibc2.m4, lib/gl/m4/glibc21.m4, lib/gl/m4/gnulib-cache.m4, lib/gl/m4/gnulib-common.m4, lib/gl/m4/gnulib-comp.m4, lib/gl/m4/gnulib-tool.m4, lib/gl/m4/iconv.m4, lib/gl/m4/include_next.m4, lib/gl/m4/intdiv0.m4, lib/gl/m4/intl.m4, lib/gl/m4/intldir.m4, lib/gl/m4/intlmacosx.m4, lib/gl/m4/intmax.m4, lib/gl/m4/intmax_t.m4, lib/gl/m4/inttypes-pri.m4, lib/gl/m4/inttypes_h.m4, lib/gl/m4/lcmessage.m4, lib/gl/m4/ld-output-def.m4, lib/gl/m4/ld-version-script.m4, lib/gl/m4/lib-ld.m4, lib/gl/m4/lib-link.m4, lib/gl/m4/lib-prefix.m4, lib/gl/m4/lock.m4, lib/gl/m4/longlong.m4, lib/gl/m4/lseek.m4, lib/gl/m4/malloc.m4, lib/gl/m4/memchr.m4, lib/gl/m4/memmem.m4, lib/gl/m4/minmax.m4, lib/gl/m4/mmap-anon.m4, lib/gl/m4/multiarch.m4, lib/gl/m4/netdb_h.m4, lib/gl/m4/nls.m4, lib/gl/m4/po.m4, lib/gl/m4/printf-posix.m4, lib/gl/m4/printf.m4, lib/gl/m4/progtest.m4, lib/gl/m4/read-file.m4, lib/gl/m4/realloc.m4, lib/gl/m4/size_max.m4, lib/gl/m4/snprintf.m4, lib/gl/m4/socketlib.m4, lib/gl/m4/sockets.m4, lib/gl/m4/socklen.m4, lib/gl/m4/sockpfaf.m4, lib/gl/m4/stdbool.m4, lib/gl/m4/stddef_h.m4, lib/gl/m4/stdint.m4, lib/gl/m4/stdint_h.m4, lib/gl/m4/stdio_h.m4, lib/gl/m4/stdlib_h.m4, lib/gl/m4/strcase.m4, lib/gl/m4/string_h.m4, lib/gl/m4/strings_h.m4, lib/gl/m4/strverscmp.m4, lib/gl/m4/sys_socket_h.m4, lib/gl/m4/sys_stat_h.m4, lib/gl/m4/threadlib.m4, lib/gl/m4/time_h.m4, lib/gl/m4/time_r.m4, lib/gl/m4/uintmax_t.m4, lib/gl/m4/ungetc.m4, lib/gl/m4/unistd_h.m4, lib/gl/m4/vasnprintf.m4, lib/gl/m4/vasprintf.m4, lib/gl/m4/visibility.m4, lib/gl/m4/vsnprintf.m4, lib/gl/m4/warn-on-use.m4, lib/gl/m4/wchar_h.m4, lib/gl/m4/wchar_t.m4, lib/gl/m4/wint_t.m4, lib/gl/m4/xsize.m4, lib/gl/malloc.c, lib/gl/memchr.c, lib/gl/memchr.valgrind, lib/gl/memmem.c, lib/gl/minmax.h, lib/gl/netdb.in.h, lib/gl/override/lib/gc-libgcrypt.c.diff, lib/gl/override/lib/gettext.h.diff, lib/gl/printf-args.c, lib/gl/printf-args.h, lib/gl/printf-parse.c, lib/gl/printf-parse.h, lib/gl/read-file.c, lib/gl/read-file.h, lib/gl/realloc.c, lib/gl/size_max.h, lib/gl/snprintf.c, lib/gl/sockets.c, lib/gl/sockets.h, lib/gl/stdbool.in.h, lib/gl/stddef.in.h, lib/gl/stdint.in.h, lib/gl/stdio-impl.h, lib/gl/stdio-write.c, lib/gl/stdio.in.h, lib/gl/stdlib.in.h, lib/gl/str-two-way.h, lib/gl/strcasecmp.c, lib/gl/string.in.h, lib/gl/strings.in.h, lib/gl/strncasecmp.c, lib/gl/strverscmp.c, lib/gl/sys_socket.in.h, lib/gl/sys_stat.in.h, lib/gl/tests/Makefile.am, lib/gl/tests/binary-io.h, lib/gl/tests/dummy.c, lib/gl/tests/getpagesize.c, lib/gl/tests/init.sh, lib/gl/tests/intprops.h, lib/gl/tests/macros.h, lib/gl/tests/signature.h, lib/gl/tests/test-alloca-opt.c, lib/gl/tests/test-binary-io.c, lib/gl/tests/test-binary-io.sh, lib/gl/tests/test-byteswap.c, lib/gl/tests/test-c-ctype.c, lib/gl/tests/test-errno.c, lib/gl/tests/test-fseeko.c, lib/gl/tests/test-fseeko.sh, lib/gl/tests/test-fseeko2.sh, lib/gl/tests/test-ftello.c, lib/gl/tests/test-ftello.sh, lib/gl/tests/test-ftello2.sh, lib/gl/tests/test-ftello3.c, lib/gl/tests/test-func.c, lib/gl/tests/test-memchr.c, lib/gl/tests/test-netdb.c, lib/gl/tests/test-read-file.c, lib/gl/tests/test-snprintf.c, lib/gl/tests/test-sockets.c, lib/gl/tests/test-stdbool.c, lib/gl/tests/test-stddef.c, lib/gl/tests/test-stdint.c, lib/gl/tests/test-stdio.c, lib/gl/tests/test-stdlib.c, lib/gl/tests/test-string.c, lib/gl/tests/test-strings.c, lib/gl/tests/test-strverscmp.c, lib/gl/tests/test-sys_socket.c, lib/gl/tests/test-sys_stat.c, lib/gl/tests/test-sys_wait.h, lib/gl/tests/test-time.c, lib/gl/tests/test-unistd.c, lib/gl/tests/test-vasnprintf.c, lib/gl/tests/test-vasprintf.c, lib/gl/tests/test-verify.c, lib/gl/tests/test-verify.sh, lib/gl/tests/test-vsnprintf.c, lib/gl/tests/test-wchar.c, lib/gl/tests/zerosize-ptr.h, lib/gl/time.in.h, lib/gl/time_r.c, lib/gl/unistd.in.h, lib/gl/vasnprintf.c, lib/gl/vasnprintf.h, lib/gl/vasprintf.c, lib/gl/verify.h, lib/gl/vsnprintf.c, lib/gl/w32sock.h, lib/gl/wchar.in.h, lib/gl/xsize.h, lib/gnutls_int.h, lib/m4/hooks.m4, lib/minitasn1/Makefile.am, lib/nettle/Makefile.am, lib/opencdk/Makefile.am, lib/openpgp/Makefile.am, lib/po/LINGUAS, lib/po/Makevars, lib/po/POTFILES.in, lib/po/cs.po.in, lib/po/de.po.in, lib/po/fr.po.in, lib/po/it.po.in, lib/po/ms.po.in, lib/po/nl.po.in, lib/po/pl.po.in, lib/po/sv.po.in, lib/po/vi.po.in, lib/po/zh_CN.po.in, lib/x509/Makefile.am, libextra/Makefile.am, libextra/configure.ac, libextra/gl/Makefile.am, libextra/gl/gnulib.mk, libextra/gl/hmac-md5.c, libextra/gl/hmac.h, libextra/gl/m4/00gnulib.m4, libextra/gl/m4/extensions.m4, libextra/gl/m4/gnulib-cache.m4, libextra/gl/m4/gnulib-common.m4, libextra/gl/m4/gnulib-comp.m4, libextra/gl/m4/gnulib-tool.m4, libextra/gl/m4/hmac-md5.m4, libextra/gl/m4/ld-output-def.m4, libextra/gl/m4/ld-version-script.m4, libextra/gl/m4/lib-ld.m4, libextra/gl/m4/lib-link.m4, libextra/gl/m4/lib-prefix.m4, libextra/gl/m4/md5.m4, libextra/gl/m4/memxor.m4, libextra/gl/md5.c, libextra/gl/md5.h, libextra/gl/memxor.c, libextra/gl/memxor.h, libextra/gl/override/lib/md5.c.diff, libextra/m4/hooks.m4, m4/hooks.m4, po/LINGUAS, po/Makevars, po/POTFILES.in, po/cs.po.in, po/de.po.in, po/fr.po.in, po/it.po.in, po/ms.po.in, po/nl.po.in, po/pl.po.in, po/sv.po.in, po/vi.po.in, po/zh_CN.po.in, src/Makefile.am, tests/suite/Makefile.in: Use a single configure.ac. This speed ups compilation and reduces duplication of code (multiple gl/ libraries etc.). This saves about 2mb in distributed size (compressed). 2011-04-08 Nikos Mavrogiannopoulos * src/certtool-cfg.c: Avoid using readline. 2011-04-08 Nikos Mavrogiannopoulos * lib/gnutls_buffers.c: initialized ret in _gnutls_writev_emu(). 2011-04-08 Nikos Mavrogiannopoulos * lib/includes/gnutls/x509.h: doc fix 2011-04-08 Nikos Mavrogiannopoulos * lib/system.c: removed unneeded variable. 2011-04-08 Nikos Mavrogiannopoulos * lib/auth_cert.c: Corrected check for an unknown sign algorithm. Patch by LRN. 2011-04-08 Nikos Mavrogiannopoulos * lib/openpgp/output.c: Do not use %e in strftime. Use %d instead which is identically available in windows as well. Based on patch by LRN. 2011-04-08 Nikos Mavrogiannopoulos * lib/x509/output.c, tests/certuniqueid.c: Fixed mismatch in size_t size. Patch by LRN. 2011-04-07 Nikos Mavrogiannopoulos * lib/system.c, lib/system_override.c: Correctly set errno in win32 using gnutls_transport_set_global_errno(). Based on patch by LRN. 2011-04-07 Nikos Mavrogiannopoulos * tests/eagain-common.h, tests/mini-eagain-dtls.c, tests/mini-eagain.c, tests/mini.c: Avoid using gnutls_transport_set_global_errno() and use gnutls_transport_set_errno() instead. 2011-04-07 Nikos Mavrogiannopoulos * lib/system_override.c: win32 fixes for set_global_errno(). Suggested by LRN. 2011-04-07 Nikos Mavrogiannopoulos * src/benchmark.c: Win32 changes for benchmark. Patch by LRN. 2011-04-07 Nikos Mavrogiannopoulos * tests/anonself.c, tests/dhepskself.c, tests/openpgpself.c, tests/pskself.c, tests/resume.c, tests/rng-fork.c, tests/x509dn.c, tests/x509self.c: win32 fixes. Patch by LRN. 2011-04-07 Nikos Mavrogiannopoulos * lib/gnutls_buffers.c: minor modification in write_emu(). 2011-04-07 Nikos Mavrogiannopoulos * lib/opencdk/literal.c, lib/opencdk/main.h, lib/opencdk/misc.c: simplified cdk_trim_string() to make it safer to use. 2011-04-07 Nikos Mavrogiannopoulos * lib/x509/privkey_pkcs8.c: correctly reset params. 2011-04-07 Nikos Mavrogiannopoulos * lib/x509/crl.c, lib/x509/x509.c: use correct pointer size. 2011-04-07 Nikos Mavrogiannopoulos * lib/gnutls_algorithms.c: correctly compare sign algorithm_st. 2011-04-07 Nikos Mavrogiannopoulos * lib/opencdk/Makefile.am, lib/opencdk/context.h, lib/opencdk/main.c, lib/opencdk/main.h, lib/opencdk/opencdk.h, lib/opencdk/verify.c: removed unused code 2011-04-07 Nikos Mavrogiannopoulos * lib/opencdk/armor.c: null terminate the armored string 2011-04-07 Nikos Mavrogiannopoulos * src/cli.c: properly null terminate string. 2011-04-07 Nikos Mavrogiannopoulos * src/common.c, src/pkcs11.c: check PIN size. 2011-04-07 Nikos Mavrogiannopoulos * src/srptool.c: check salt size. 2011-04-07 Nikos Mavrogiannopoulos * lib/opencdk/read-packet.c: more clear bounds checking 2011-04-06 Nikos Mavrogiannopoulos * lib/x509/privkey.c: initialize e and d. 2011-04-06 Nikos Mavrogiannopoulos * lib/pkcs11_write.c: deinitialize pks variable only when needed. 2011-04-06 Nikos Mavrogiannopoulos * lib/openpgp/pgpverify.c: Initialize verify. 2011-04-06 Nikos Mavrogiannopoulos * src/cli.c: initialize session_id_size. 2011-04-06 Nikos Mavrogiannopoulos * lib/opencdk/misc.c, lib/opencdk/opencdk.h: removed unneeded function. 2011-04-06 Nikos Mavrogiannopoulos * lib/pakchois/pakchois.c: correctly traverse slots 2011-04-05 Nikos Mavrogiannopoulos * guile/src/core.c: avoid using a freed pointer. 2011-04-05 Nikos Mavrogiannopoulos * lib/pkcs11.c: Initialize tinfo using the initially available information. 2011-04-05 Nikos Mavrogiannopoulos * lib/gnutls_dtls.c: corrected debugging info. 2011-04-04 Nikos Mavrogiannopoulos * tests/eagain-common.h, tests/mini-eagain-dtls.c, tests/mini-eagain.c, tests/mini.c: The mini-* programs were combined. 2011-04-04 Nikos Mavrogiannopoulos * lib/gnutls_record.c: Do not cleanup bufel after it has been inserted into buffer. 2011-04-04 Nikos Mavrogiannopoulos * lib/gnutls_mbuffers.c: Combined dequeue with remove_front() and pop_first(). 2011-04-03 Nikos Mavrogiannopoulos * doc/examples/Makefile.am: Compile ex-cert-select-pkcs11 as a separate program. 2011-04-03 Nikos Mavrogiannopoulos * .gitignore, lib/gnutls_buffers.c, lib/gnutls_dtls.c, lib/gnutls_int.h, lib/gnutls_state.c, lib/includes/gnutls/gnutls.h.in, lib/system.h, tests/Makefile.am, tests/eagain-common.h, tests/mini-eagain-dtls.c, tests/mini-eagain.c, tests/utils.c: Added support for non-blocking DTLS. Added mini-eagain-dtls to test its operation. Improved mini-eagain. 2011-04-03 Nikos Mavrogiannopoulos * lib/nettle/init.c: gcrypt.h is not really needed. Reported by David Reiser. 2011-04-03 Nikos Mavrogiannopoulos * src/srptool.c: corrected header inclusion. 2011-04-03 Nikos Mavrogiannopoulos * src/Makefile.am, src/crypt-gaa.c, src/crypt-gaa.h, src/crypt.c, src/crypt.gaa, src/srptool-gaa.c, src/srptool-gaa.h, src/srptool.c, src/srptool.gaa: crypt.* renamed to srptool.*. 2011-04-03 Nikos Mavrogiannopoulos * lib/gnutls_srp.c: Corrected bug in gnutls_srp_verifier() that prevented the allocation of a verifier. Reported by Andrew Wiseman. 2011-04-03 Nikos Mavrogiannopoulos * src/crypt-gaa.c, src/crypt-gaa.h, src/crypt.c, src/crypt.gaa: Added debug option to srptool. 2011-04-03 Nikos Mavrogiannopoulos * doc/cha-cert-auth.texi: Documented p11-kit. 2011-04-02 Nikos Mavrogiannopoulos * doc/cha-library.texi: corrected typo 2011-03-30 Nikos Mavrogiannopoulos * tests/scripts/common.sh: Added copyright. 2011-03-30 Nikos Mavrogiannopoulos * configure.ac, tests/Makefile.am, tests/dsa/testdsa, tests/openpgp-certs/testcerts, tests/scripts/Makefile.am, tests/scripts/common.sh: Reorganized scripts that use test servers, based on patch by Cedric Arbogast. 2011-03-30 Nikos Mavrogiannopoulos * src/certtool-gaa.c, src/certtool.gaa: Create certificate request with stricter permissions. Reported by Luca Capello. 2011-03-28 Nikos Mavrogiannopoulos * tests/openpgp-certs/Makefile.am: enabled testcerts. 2011-03-28 Nikos Mavrogiannopoulos * tests/openpgp-certs/testcerts: made more silent. 2011-03-28 Nikos Mavrogiannopoulos * tests/dsa/testdsa, tests/openpgp-certs/testcerts: Made scripts bourne shell compliant and not bash. 2011-03-26 Nikos Mavrogiannopoulos * THANKS: e-mail addresses are not directly recognizable. 2011-03-26 Nikos Mavrogiannopoulos * lib/opencdk/stream.c: Corrected access to freed memory location. Reported by Vitaly Kruglikov. 2011-03-26 Nikos Mavrogiannopoulos * THANKS: added Mark and Vitaly to THANKS. 2011-03-26 Nikos Mavrogiannopoulos * lib/system.c: Corrected windows system_errno() function. Reported and patch by Mark Brand. 2011-03-26 Nikos Mavrogiannopoulos * lib/includes/gnutls/compat.h: C++ compatibility fix for compat.h. Suggested by Mark Brand. 2011-03-25 Nikos Mavrogiannopoulos * lib/opencdk/verify.c: Corrected uninitialized var deinitiation. Reported by Vitaly Kruglikov. 2011-03-25 Nikos Mavrogiannopoulos * lib/gnutls_sig.c: eliminate compiler warning. Reported by Andreas Metzler. 2011-03-25 Nikos Mavrogiannopoulos * lib/includes/gnutls/openpgp.h, lib/openpgp/gnutls_openpgp.c, lib/openpgp/pgp.c, lib/openpgp/privkey.c: Fix size of gnutls_openpgp_keyid_t by using the GNUTLS_OPENPGP_KEYID_SIZE definition. Reported by Andreas Metzler. 2011-03-24 Nikos Mavrogiannopoulos * NEWS: included news of 2.12.0 2011-03-24 Nikos Mavrogiannopoulos * guile/tests/Makefile.am: added missing files. 2011-03-23 Nikos Mavrogiannopoulos * lib/includes/gnutls/abstract.h, lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/pkcs11.h, lib/includes/gnutls/x509.h, lib/pkcs11.c, lib/x509/crl.c: documentation fixes. 2011-03-23 Nikos Mavrogiannopoulos * tests/dsa/testdsa: Added DSA tests for client certificates as well. 2011-03-23 Nikos Mavrogiannopoulos * lib/ext_signature.c, lib/ext_signature.h, lib/gnutls_handshake.c, lib/gnutls_sig.c, lib/includes/gnutls/abstract.h, lib/x509/verify.c: Simplified signature algorithm selection. 2011-03-23 Nikos Mavrogiannopoulos * src/cli.c: The processed messages go to stdout. 2011-03-23 Nikos Mavrogiannopoulos * lib/gnutls_privkey.c: updated documentation 2011-03-23 Nikos Mavrogiannopoulos * lib/gnutls_algorithms.c, lib/gnutls_int.h, lib/includes/gnutls/gnutls.h.in: Increased GNUTLS_MAX_ALGORITHM_NUM to 32. The gnutls_*_list() functions generate the list of algorithm on the spot and no longer require a static duplicate list of algorithms. This comes at a cost of not being thread safe (which is not significant since those functions are only used for special purposes). 2011-03-21 Nikos Mavrogiannopoulos * lib/gnutls_privkey.c: corrected parameter. 2011-03-21 Nikos Mavrogiannopoulos * lib/gnutls_pubkey.c, lib/includes/gnutls/pkcs11.h, lib/pkcs11.c, lib/pkcs11_privkey.c, lib/pkcs11_secret.c, lib/x509/privkey.c: Documentation fixes and cleanups. 2011-03-20 Nikos Mavrogiannopoulos * src/cli.c: define variable locally 2011-03-20 Nikos Mavrogiannopoulos * src/cli.c, src/serv.c: use IP_DONTFRAG if it is defined. 2011-03-20 Nikos Mavrogiannopoulos * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_dtls.c, lib/gnutls_dtls.h, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_record.c, lib/includes/gnutls/gnutls.h.in, lib/system.c, lib/system.h, src/cli.c, src/common.h, src/serv.c, src/udp-serv.c: Avoided waiting for peer's retransmission to ensure receipt of finished messages, and used a 'timer'-like to retransmit packets. 2011-03-20 Nikos Mavrogiannopoulos * lib/gnutls_dtls.c, lib/includes/gnutls/dtls.h, lib/libgnutls.map: added gnutls_dtls_get_data_mtu(). 2011-03-19 Nikos Mavrogiannopoulos * tests/dsa/testdsa: make gnutls-cli more quiet. 2011-03-19 Nikos Mavrogiannopoulos * configure.ac, tests/Makefile.am, tests/dsa/Makefile.am, tests/dsa/cert.dsa.1024.pem, tests/dsa/cert.dsa.2048.pem, tests/dsa/cert.dsa.3072.pem, tests/dsa/dsa.1024.pem, tests/dsa/dsa.2048.pem, tests/dsa/dsa.3072.pem, tests/dsa/testdsa, tests/suite/Makefile.in: Added test to verify connections with DSA keys of various sizes. 2011-03-19 Nikos Mavrogiannopoulos * src/certtool.c: warn on generation of DSA keys of over 1024 bits. 2011-03-19 Nikos Mavrogiannopoulos * lib/gnutls_alert.c, lib/gnutls_errors.c, lib/gnutls_sig.c, lib/includes/gnutls/gnutls.h.in: Return a special error code if DSA keys with over 1024 are being used with TLS 1.x, x<2. 2011-03-19 Nikos Mavrogiannopoulos * lib/nettle/pk.c: truncate hash size when asking to sign or verify DSA with a longer hash. 2011-03-18 Nikos Mavrogiannopoulos * lib/gnutls_buffers.c, lib/system.c: Check for rejected connections in system_recv_timeout(). 2011-03-18 Nikos Mavrogiannopoulos * lib/system_override.c: quickly discuss callback format. 2011-03-16 Nikos Mavrogiannopoulos * lib/gnutls_dtls.c: When sending multiple cookies due to verification errors do not increase the handshake sequence number only the record sequence. 2011-03-16 Nikos Mavrogiannopoulos * AUTHORS: updated Jonathan 2011-03-16 Nikos Mavrogiannopoulos * tests/openpgp-auth.c: Added check for RSA ciphersuite in openpgp keys. 2011-03-16 Nikos Mavrogiannopoulos * lib/openpgp/privkey.c: read correct algorithm when decrypting data and use correct number of private parameters. 2011-03-16 Nikos Mavrogiannopoulos * libextra/gnutls_extra.c: added missing ret. 2011-03-16 Nikos Mavrogiannopoulos * lib/auth_cert.c: Set type when sending empty openpgp key. 2011-03-16 Nikos Mavrogiannopoulos * lib/nettle/rnd.c, tests/Makefile.am, tests/rng-fork.c: Corrected nettle's RNG behavior on fork and added a test case. 2011-03-16 Nikos Mavrogiannopoulos * guile/tests/openpgp-auth.scm: enabled RSA and removed debugging. 2011-03-16 Nikos Mavrogiannopoulos * lib/gnutls_privkey.c, lib/gnutls_pubkey.c, lib/includes/gnutls/abstract.h, lib/openpgp/gnutls_openpgp.c, tests/openpgp-auth.c, tests/openpgp-auth2.c: gnutls_pubkey_t and gnutls_privkey_t can import either an openpgp subkey or a master key. 2011-03-16 Nikos Mavrogiannopoulos * guile/tests/openpgp-auth.scm, guile/tests/openpgp-elg-pub.asc, guile/tests/openpgp-elg-sec.asc, guile/tests/openpgp-keys.scm, guile/tests/openpgp-pub.asc, guile/tests/openpgp-sec.asc: split the pgp keys to elgamal and dsa. 2011-03-16 Nikos Mavrogiannopoulos * lib/gnutls_errors.c, lib/includes/gnutls/gnutls.h.in, lib/openpgp/pgp.c, lib/openpgp/privkey.c: introduced GNUTLS_E_OPENPGP_PREFERRED_KEY_ERROR 2011-03-16 Nikos Mavrogiannopoulos * lib/gnutls_algorithms.c: On unknown public key algorithms return Unknown name. 2011-03-16 Nikos Mavrogiannopoulos * lib/gnutls_privkey.c: Read the public key algorithm from the selected subkey and not the master key when importing to a gnutls_privkey. 2011-03-16 Nikos Mavrogiannopoulos * lib/openpgp/gnutls_openpgp.c, tests/openpgpself.c: Documentation fixed. Added fresh keys to test. 2011-03-15 Nikos Mavrogiannopoulos * tests/openpgpself.c: Test openpgp authentication with DSA-2048 bit keys as well. 2011-03-15 Nikos Mavrogiannopoulos * lib/openpgp/pgp.c: gnutls_openpgp_crt_get_auth_subkey() will no longer return an unsupported subkey. 2011-03-15 Nikos Mavrogiannopoulos * lib/x509/verify.c: Corrected verification of DSA-2048 keys. Reported by teddy@fukt.bsnet.se. 2011-03-14 Nikos Mavrogiannopoulos * doc/cha-intro-tls.texi: Added gnutls_transport_set_vec_push_function(). 2011-03-13 Nikos Mavrogiannopoulos * lib/gnutls_dtls.c, lib/includes/gnutls/dtls.h, lib/libgnutls.map, src/udp-serv.c: updated cookie negotiation to use only a prestate structure and avoids setting data to cookie. 2011-03-13 Nikos Mavrogiannopoulos * lib/gnutls_handshake.c: Use DTLS 1.0 instead of SSL 3.0 headers on client hello in DTLS. 2011-03-13 Nikos Mavrogiannopoulos * lib/gnutls_dtls.c, lib/gnutls_errors.c, lib/includes/gnutls/dtls.h, lib/libgnutls.map, src/udp-serv.c: Added photuris-like resource protection on the server. Added gnutls_dtls_cookie_send(), gnutls_dtls_cookie_verify() and gnutls_dtls_cookie_set() to avoid initializing a session before cookie is verified. 2011-03-13 Nikos Mavrogiannopoulos * lib/crypto-api.c, lib/ext_session_ticket.c, lib/includes/gnutls/gnutls.h.in: added gnutls_key_generate() to API. 2011-03-13 Nikos Mavrogiannopoulos * lib/ext_session_ticket.c: Avoid the usage of structures where the attribute packed is assumed. 2011-03-13 Nikos Mavrogiannopoulos * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_handshake.c: renamed gnutls_handshake_buffer_* functions to gnutls_handshake_hash_buffer_* to separate from new API functions and corrected its usage. 2011-03-13 Nikos Mavrogiannopoulos * lib/gnutls_algorithms.c: Added DSA-SHA256, DSA-SHA224 and RSA-SHA224 to the supported signature algorithms list. Suggested by teddy@fukt.bsnet.se 2011-03-13 Nikos Mavrogiannopoulos * lib/gnutls_constate.c, lib/gnutls_constate.h, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_v2_compat.c: session->internals.compression_method was removed. It was no longer required since the new compression algorithm was stored to next epoch as well. 2011-03-12 Nikos Mavrogiannopoulos * lib/gnutls_buffers.c, lib/gnutls_cipher.c, lib/gnutls_constate.c, lib/gnutls_handshake.c, lib/gnutls_record.c, lib/gnutls_state.h: _gnutls_is_dtls() is no more. IS_DTLS() is being used instead. 2011-03-12 Nikos Mavrogiannopoulos * lib/ext_session_ticket.c: do not print debugging output on non-fatal errors. 2011-03-12 Nikos Mavrogiannopoulos * lib/ext_session_ticket.c, lib/gnutls_cipher.c, lib/gnutls_cipher_int.c, lib/gnutls_constate.c, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_record.c: Properly reset the SSL 3.0 MAC algorithm. 2011-03-12 Nikos Mavrogiannopoulos * lib/gnutls_buffers.c, lib/gnutls_errors.h, lib/gnutls_handshake.c, lib/x509/verify-high.c: cleanups. Introduced gnutls_assert_val_fatal() that only prints debugging messages on non-fatal errors. 2011-03-12 Nikos Mavrogiannopoulos * lib/gnutls_alert.c: Added string for GNUTLS_A_SSL3_NO_CERTIFICATE. 2011-03-12 Nikos Mavrogiannopoulos * lib/gnutls_algorithms.c, lib/gnutls_algorithms.h: gnutls_version_has_variable_padding is not really needed. A check for SSL3.0 is more clear. 2011-03-12 Nikos Mavrogiannopoulos * lib/debug.c, lib/gnutls_buffers.c, lib/gnutls_constate.c, lib/gnutls_handshake.c, lib/gnutls_record.c, lib/gnutls_v2_compat.c: Corrected SSL2 client hello handling. 2011-03-12 Nikos Mavrogiannopoulos * lib/gnutls_record.c: do not set default record version (i.e. SSL 3.0) during a re-handshake. 2011-03-12 Nikos Mavrogiannopoulos * lib/gnutls_priority.c: default behavior is to send SSL3.0 client hellos. 2011-03-12 Nikos Mavrogiannopoulos * lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_priority.c: corrected ssl3 record version sending in client hello. 2011-03-12 Nikos Mavrogiannopoulos * NEWS, doc/cha-intro-tls.texi, lib/gnutls_buffers.c, lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_state.c, lib/includes/gnutls/compat.h, lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map: gnutls_transport_set_lowat() is no more. 2011-03-12 Nikos Mavrogiannopoulos * lib/gnutls_buffers.c, lib/gnutls_record.c: some cleanups 2011-03-12 Nikos Mavrogiannopoulos * lib/x509/common.h, lib/x509/verify-high.c, lib/x509/verify.c: gnutls_x509_trust_list_verify_crt shortens the provided certificate list based on the existing trusted CAs. 2011-03-12 Nikos Mavrogiannopoulos * lib/gnutls_int.h, lib/gnutls_state.c, lib/gnutlsxx.cpp, lib/includes/gnutls/compat.h, lib/includes/gnutls/dtls.h, lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/gnutlsxx.h, lib/libgnutls.map, libextra/includes/gnutls/openssl.h, src/cli.c, src/serv.c: gnutls_init_dtls() was made redundant. The same for gnutls_end_connection_t which was replaced by a flags integer.. 2011-03-12 Nikos Mavrogiannopoulos * lib/auth_psk.c, lib/auth_psk.h, lib/ext_session_ticket.c, lib/ext_srp.c, lib/gnutls_sig.c, lib/gnutls_x509.c, lib/pkcs11_int.h, lib/system.c, lib/system.h, lib/x509/mpi.c, lib/x509/verify.c, src/certtool-common.h, src/certtool.c, src/common.c, src/pkcs11.c, src/udp-serv.c: Corrected types. 2011-03-11 Nikos Mavrogiannopoulos * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, src/serv-gaa.c, src/serv-gaa.h, src/serv.c, src/serv.gaa, src/udp-serv.c, src/udp-serv.h: Added --mtu option. 2011-03-11 Nikos Mavrogiannopoulos * lib/gnutls_buffers.c: properly re-generate headers of fragmented packets. 2011-03-11 Nikos Mavrogiannopoulos * lib/gnutls_state.c: increased initial retransmission time to 1 sec. 2011-03-11 Nikos Mavrogiannopoulos * lib/gnutls_handshake.c: In DTLS do not hash messages that shouldn't be hashed (i.e. hello verify request). 2011-03-11 Nikos Mavrogiannopoulos * lib/gnutls_cipher.c: Corrected size check in block encrypted records. 2011-03-10 Nikos Mavrogiannopoulos * lib/gnutls_buffers.c, lib/gnutls_handshake.c: Corrected behavior in normal TLS handshake. 2011-03-10 Nikos Mavrogiannopoulos * libextra/Makefile.am: link libgnutls-extra against libgcrypt if required. Based on patch by Andreas Metzler 2011-03-10 Nikos Mavrogiannopoulos * NEWS, lib/m4/hooks.m4, libextra/Makefile.am: increased the so version of libgnutls-openssl. 2011-03-05 Nikos Mavrogiannopoulos * lib/ext_session_ticket.c, lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cipher.c, lib/gnutls_dtls.c, lib/gnutls_errors.c, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_mbuffers.c, lib/gnutls_mbuffers.h, lib/gnutls_record.c, lib/gnutls_state.c, lib/gnutls_str.c, lib/gnutls_v2_compat.c, lib/includes/gnutls/gnutls.h.in: Added intermediate handshake layer that will order handshake packets and drop duplicates. 2011-03-05 Nikos Mavrogiannopoulos * lib/gnutls_record.c: handle non fatal errors when receiving record headers. 2011-03-05 Nikos Mavrogiannopoulos * lib/gnutls_cipher.c: memcpy -> memmove. 2011-03-05 Nikos Mavrogiannopoulos * lib/gnutls_buffers.c, lib/gnutls_int.h: removed GMAX 2011-03-02 Nikos Mavrogiannopoulos * src/certtool.c: Allow providing no password for PKCS #12 structure generation. Reported by Daniel Kahn Gillmor. 2011-03-02 Nikos Mavrogiannopoulos * src/certtool-cfg.c: consistently print all interactive questions to stderr. Reported by Daniel Kahn Gillmor. 2011-02-26 Nikos Mavrogiannopoulos * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_dtls.c, lib/gnutls_int.h, lib/gnutls_mbuffers.c, lib/gnutls_mbuffers.h, lib/gnutls_record.c, lib/gnutls_state.c: combined all the record buffers in one. 2011-02-26 Nikos Mavrogiannopoulos * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_dtls.c, lib/gnutls_int.h, lib/gnutls_mbuffers.c, lib/gnutls_mbuffers.h, lib/gnutls_record.c, lib/gnutls_record.h, lib/gnutls_state.c: internal buffering for record and handshake data changed from gnutls_buffers to gnutls_mbuffers. 2011-02-26 Nikos Mavrogiannopoulos * lib/debug.c, lib/gnutls_buffers.c, lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_state.c, lib/includes/gnutls/gnutls.h.in: Removed last pieces of inner application. 2011-02-26 Nikos Mavrogiannopoulos * lib/gnutls_record.c: some cleanups 2011-03-01 Ludovic Courtès * guile/tests/anonymous-auth.scm, guile/tests/openpgp-auth.scm, guile/tests/x509-auth.scm: guile: Change tests to use priority strings. 2011-03-01 Ludovic Courtès * src/Makefile.am: Add `udp-serv.h' to the distribution. 2011-02-28 Andreas Metzler * lib/libgnutls.map: fix duplicate symbols in version script These three symbols are listed both in the GNUTLS_2_8 and the GNUTLS_2_10 section. binutils uses the first occurence, drop the second one. Signed-off-by: Nikos Mavrogiannopoulos 2011-02-28 Nikos Mavrogiannopoulos * doc/cha-intro-tls.texi: updates on -ALL priorities. 2011-02-28 Nikos Mavrogiannopoulos * lib/ext_signature.c: Restrict the signature algorithms we advertize to SHA1 and SHA256. 2011-02-28 Ludovic Courtès * lib/includes/Makefile.am: Add `gnutls/dtls.h' to the distribution. 2011-02-27 Ludovic Courtès * guile/modules/system/documentation/c-snarf.scm: guile: Fix docstring extraction with CPP 4.5+. 2011-02-27 Ludovic Courtès * doc/Makefile.am: Pass the right CPPFLAGS when building Guile doc. 2011-02-27 Ludovic Courtès * doc/cha-intro-tls.texi, guile/src/core.c: Add nodes for the subsections of "The TLS Handshake Protocol". 2011-02-27 Ludovic Courtès * lib/Makefile.am: Add `lib/gnutls_dtls.h' to the distribution. 2011-02-27 Ludovic Courtès * guile/modules/gnutls.scm, guile/modules/gnutls/build/enums.scm, guile/modules/gnutls/build/priorities.scm, guile/src/core.c, guile/src/errors.c, guile/src/errors.h, guile/tests/Makefile.am, guile/tests/priorities.scm: guile: Wrap `gnutls_priority_set_direct'; deprecate the old method. 2011-02-27 Ludovic Courtès * doc/scripts/gdoc, doc/scripts/sort2.pl: Avoid hard-coded /usr/bin/perl (trick taken from Gnulib.) 2011-02-27 Ludovic Courtès * libextra/gnutls_extra.c: Fix LZO-enabled builds. 2011-02-24 Nikos Mavrogiannopoulos * lib/nettle/rnd.c: Detect fork() in the random number generator and reseed. 2011-02-23 Nikos Mavrogiannopoulos * lib/gnutls_dtls.c, lib/gnutls_state.c: use timeouts closer to DTLS RFC. 2011-02-23 Nikos Mavrogiannopoulos * lib/gnutls_state.c, lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, lib/system_override.c: Renamed gnutls_transport_set_push_function2() to gnutls_transport_set_vec_push_function(). 2011-02-20 Simon Josefsson * NEWS, doc/manpages/Makefile.am, lib/includes/gnutls/compat.h, lib/libgnutls.map, lib/x509/crq.c: Remove gnutls_x509_crq_get_preferred_hash_algorithm. 2011-02-20 Simon Josefsson * lib/libgnutls.map: Remove dropped functions. 2011-02-20 Simon Josefsson * lib/x509/crl_write.c: Add deprecated docstring. 2011-02-20 Simon Josefsson * lib/x509/crq.c: Fix deprecated docstring. 2011-02-20 Simon Josefsson * lib/x509/privkey.c: Fix docstring. 2011-02-20 Simon Josefsson * lib/gnutls_pubkey.c: Fix docstring of new function. 2011-02-20 Simon Josefsson * lib/gnutls_cert.c: Fix docstring for deprecated functions. 2011-02-20 Simon Josefsson * lib/gnutls_sig.c: Make it build. 2011-02-20 Simon Josefsson * lib/openpgp/privkey.c: Fix docstring of deprecated function. 2011-02-20 Simon Josefsson * lib/gnutls_pubkey.c: Fix docstrinf of new function. 2011-02-20 Simon Josefsson * doc/reference/gnutls-docs.sgml: Fix typo. 2011-02-20 Simon Josefsson * doc/reference/gnutls-docs.sgml: Improve text. 2011-02-20 Simon Josefsson * lib/x509/crl.c: Doc fix of new function. 2011-02-20 Simon Josefsson * lib/gnutls_cert.c, lib/gnutls_privkey.c, lib/x509/privkey.c: Fix docstring of deprecated functions. 2011-02-20 Simon Josefsson * NEWS, lib/gnutls_privkey.c, lib/includes/gnutls/abstract.h, lib/includes/gnutls/compat.h, lib/libgnutls.map, lib/x509/crq.c, lib/x509/sign.c, tests/x509sign-verify.c: Rename gnutls_privkey_sign_data2 to gnutls_privkey_sign_data and gnutls_privkey_sign_hash2 to gnutls_privkey_sign_hash. These were added during the 2.11 cycle where we don't promise ABI compatibility. 2011-02-20 Simon Josefsson * doc/gnutls-crypto-layers.eps: Add doc/gnutls-crypto-layers.eps. 2011-02-20 Simon Josefsson * doc/Makefile.am: Dist gnutls-crypto-layers.*. 2011-02-20 Simon Josefsson * lib/Makefile.am: Add abstract_int.h. 2011-02-20 Simon Josefsson * .gitignore: Ignore more. 2011-02-20 Simon Josefsson * lib/Makefile.am: Link with -lnettle too. 2011-02-20 Simon Josefsson * doc/Makefile.am, doc/cha-programs.texi, lib/gnutls_privkey.c, lib/includes/gnutls/compat.h, lib/includes/gnutls/x509.h, lib/openpgp/pgp.c: Fix syntax-check warnings. 2011-02-22 Ludovic Courtès * guile/modules/gnutls/build/enums.scm: guile: Remove GNUTLS_A_INNER_APPLICATION_FAILURE and GNUTLS_A_INNER_APPLICATION_VERIFICATION. 2011-02-22 Nikos Mavrogiannopoulos * lib/gnutls_session_pack.c: store entities as numbers to avoid issues in big-little endian machines. 2011-02-22 Nikos Mavrogiannopoulos * lib/gnutls_record.c: documented the DTLS sequence particularities. 2011-02-22 Nikos Mavrogiannopoulos * lib/gnutls_buffers.c, lib/gnutls_handshake.c, lib/gnutls_record.c, lib/gnutls_record.h, lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, src/udp-serv.c: Added gnutls_record_recv_seq() that can return the sequence number of the record packet, in addition to data. 2011-02-21 Nikos Mavrogiannopoulos * lib/gnutls_record.c: reorganized and simplified gnutls_recv_int(). It will discard invalid DTLS packets. 2011-02-20 Nikos Mavrogiannopoulos * lib/gnutls_constate.h, lib/gnutls_record.c: Discard messages that contain a different epoch than the current one. 2011-02-20 Nikos Mavrogiannopoulos * lib/gnutls_record.c: renamed internal function to reflect functionality. 2011-02-20 Nikos Mavrogiannopoulos * lib/gnutls_buffers.c, lib/gnutls_dtls.c, lib/gnutls_dtls.h, lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_state.c: Implemented a sliding window-like thing to discard replayed packets. 2011-02-20 Nikos Mavrogiannopoulos * src/cli.c: gnutls-cli shouldn't print errors on EAGAIN and INTERRUPTED. 2011-02-20 Nikos Mavrogiannopoulos * lib/gnutls_num.c: corrected uint48pp. 2011-02-20 Nikos Mavrogiannopoulos * lib/gnutls_constate.c, lib/gnutls_mbuffers.c, lib/gnutls_state.c: Epoch garbage collector is being run when handshake is being cleaned up. 2011-02-20 Nikos Mavrogiannopoulos * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_dtls.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_num.c, lib/gnutls_state.c: skip replays in handshake packets. 2011-02-20 Nikos Mavrogiannopoulos * lib/gnutls_record.c: Forbid SSL v.2 client hello in DTLS. 2011-02-20 Nikos Mavrogiannopoulos * lib/gnutls_buffers.c, lib/gnutls_int.h: removed unneeded variables. 2011-02-20 Nikos Mavrogiannopoulos * lib/gnutls_buffers.c, lib/gnutls_constate.h, lib/gnutls_dtls.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_mbuffers.c: Cleanups in combination of DTLS and TLS buffers. 2011-02-20 Nikos Mavrogiannopoulos * lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/auth_srp.c, lib/gnutls_algorithms.c, lib/gnutls_dh_primes.c, lib/gnutls_errors.h, lib/gnutls_handshake.c, lib/gnutls_sig.c, lib/opencdk/main.h, lib/openpgp/pgp.c, lib/openpgp/pgpverify.c, lib/openpgp/privkey.c, lib/x509/common.c, lib/x509/dn.c, lib/x509/pkcs12.c, lib/x509/pkcs7.c, lib/x509/privkey_pkcs8.c, lib/x509/verify.c, lib/x509/x509_write.c, lib/x509_b64.c: gnutls_x509_log replaced with gnutls_audit_log. 2011-02-20 Nikos Mavrogiannopoulos * lib/gnutls_algorithms.h, lib/gnutls_cipher.c, lib/gnutls_dtls.c, lib/gnutls_int.h, lib/gnutls_state.c, lib/gnutls_state.h: Return a more precise mtu unit to applications. 2011-02-20 Nikos Mavrogiannopoulos * src/udp-serv.c: restart handshake on signals. 2011-02-20 Nikos Mavrogiannopoulos * lib/gnutls_buffers.c, lib/gnutls_constate.h, lib/gnutls_dtls.c: reference counting in epochs is being done using functions. 2011-02-20 Nikos Mavrogiannopoulos * lib/gnutls_cipher.c, lib/gnutls_compress.c, lib/gnutls_dtls.c, lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_state.c, lib/includes/gnutls/dtls.h, lib/libgnutls.map: Added gnutls_dtls_g/set_mtu() to allow setting and getting the DTLS mtu from application. 2011-02-20 Nikos Mavrogiannopoulos * lib/gnutls_buffers.c, lib/gnutls_dtls.c, lib/gnutls_dtls.h, lib/gnutls_int.h, lib/gnutls_state.c: Combined DTLS buffers and normal TLS buffers. 2011-02-19 Nikos Mavrogiannopoulos * lib/Makefile.am, lib/ext_session_ticket.c, lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_constate.c, lib/gnutls_dtls.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_state.c, lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, lib/system.c, lib/system.h, lib/system_override.c, src/Makefile.am, src/serv-gaa.c, src/serv-gaa.h, src/serv.c, src/serv.gaa, src/udp-serv.c, src/udp-serv.h: Changes to allow DTLS server side to operate. Added a simple UDP server on gnutls-serv. Server other cleanups. 2011-02-19 Nikos Mavrogiannopoulos * lib/gnutls_dtls.c, lib/gnutls_errors.c, lib/gnutls_int.h, lib/gnutls_state.c, lib/includes/gnutls/dtls.h, lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, src/cli.c: Allow setting the DTLS timeouts explicitly. 2011-02-19 Nikos Mavrogiannopoulos * doc/TODO: updated. 2011-02-18 Nikos Mavrogiannopoulos * lib/auth_cert.c, lib/debug.c, lib/gnutls_algorithms.c, lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_dtls.c, lib/gnutls_dtls.h, lib/gnutls_errors.h, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_mbuffers.h, lib/gnutls_num.c, lib/gnutls_num.h, lib/gnutls_record.c, lib/gnutls_record.h, lib/gnutls_state.c, lib/includes/gnutls/gnutls.h.in, lib/system.c, lib/system.h, src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa: Several updates for DTLS (client side only) to work. 2011-02-18 Nikos Mavrogiannopoulos * lib/opencdk/main.h: Increased level of opencdk debug messages. 2011-02-18 Nikos Mavrogiannopoulos * lib/gnutls_sig.c: DSA keys in TLS 1.x, x<2 and SSL 3.0 use SHA-1 as hash. That is we reverted to previous gnutls behavior. That violates DSS but all implementations handle it like that. 2011-02-18 Nikos Mavrogiannopoulos * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_dtls.c, lib/gnutls_dtls.h, lib/gnutls_handshake.c, lib/gnutls_int.h: use similar API when caching messages in DTLS or TLS. 2011-02-18 Nikos Mavrogiannopoulos * lib/gnutls_algorithms.c: corrected is_version_supported(). 2011-02-18 Nikos Mavrogiannopoulos * lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_kx.c: Simplified _gnutls_recv_handshake(). 2011-02-18 Nikos Mavrogiannopoulos * lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_dtls.c, lib/gnutls_handshake.c: ciphersuites have a bit that indicates whether they are usable with DTLS or not. 2011-02-17 Nikos Mavrogiannopoulos * lib/auth_dhe.c, lib/gnutls_algorithms.c, lib/gnutls_cipher.c: fix for dtls. 2010-10-02 Jonathan Bastien-Filiatrault * lib/gnutls_dtls.c, lib/gnutls_dtls.h, lib/gnutls_num.c, lib/gnutls_num.h: dtls: Add uint48 handling functions. Signed-off-by: Nikos Mavrogiannopoulos 2010-10-02 Jonathan Bastien-Filiatrault * lib/gnutls_record.c: dtls: Bring epoch choice on receive closer to the first usage. Signed-off-by: Nikos Mavrogiannopoulos 2010-09-24 Jonathan Bastien-Filiatrault * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa: Add DTLS support to command-line client. Signed-off-by: Nikos Mavrogiannopoulos 2010-09-17 Jonathan Bastien-Filiatrault * lib/gnutls_constate.c: dtls: Write epoch to sequence number. Signed-off-by: Nikos Mavrogiannopoulos 2010-09-06 Jonathan Bastien-Filiatrault * lib/gnutls_handshake.c: dtls: Send consistent a client_random. This is necessary when challenged by HelloVerifiyRequest as we MUST send the same client parameters. Signed-off-by: Nikos Mavrogiannopoulos 2010-09-05 Jonathan Bastien-Filiatrault * lib/gnutls_handshake.c, lib/gnutls_int.h: dtls: Limit the number of HelloVerifyRequest round trips. Signed-off-by: Nikos Mavrogiannopoulos 2010-09-05 Jonathan Bastien-Filiatrault * lib/gnutls_dtls.c, lib/gnutls_handshake.c: dtls: TEMP: Sprinkle transmits. Signed-off-by: Nikos Mavrogiannopoulos 2010-09-05 Jonathan Bastien-Filiatrault * lib/gnutls_handshake.c, lib/gnutls_int.h: dtls: Do HANDSHAKE_HELLO_VERIFY_REQUEST processing. Signed-off-by: Nikos Mavrogiannopoulos 2010-09-05 Jonathan Bastien-Filiatrault * lib/gnutls_handshake.c: dtls: Add _gnutls_recv_hello_verify_request. Signed-off-by: Nikos Mavrogiannopoulos 2010-09-05 Jonathan Bastien-Filiatrault * lib/gnutls_record.c: Decrypt using the proper sequence number. Signed-off-by: Nikos Mavrogiannopoulos 2010-09-05 Jonathan Bastien-Filiatrault * lib/gnutls_cipher.c, lib/gnutls_cipher.h: dtls: Use proper record sequence for DTLS decrypt. Signed-off-by: Nikos Mavrogiannopoulos 2011-02-17 Nikos Mavrogiannopoulos * lib/gnutls_handshake.c: corrected extdatalen 2010-09-05 Jonathan Bastien-Filiatrault * lib/gnutls_buffers.c: dtls: Read whole datagrams. Signed-off-by: Nikos Mavrogiannopoulos 2009-08-03 Jonathan Bastien-Filiatrault * lib/gnutls_handshake.c: dtls: Queue outgoing handshake messages in the retransmission layer. Signed-off-by: Nikos Mavrogiannopoulos 2009-08-03 Jonathan Bastien-Filiatrault * lib/gnutls_dtls.c, lib/gnutls_dtls.h: Add outgoing flight buffer handling code. Signed-off-by: Nikos Mavrogiannopoulos 2009-08-03 Jonathan Bastien-Filiatrault * lib/gnutls_errors.h: Define _gnutls_dtls_log for DTLS. Signed-off-by: Nikos Mavrogiannopoulos 2009-08-03 Jonathan Bastien-Filiatrault * lib/gnutls_int.h, lib/gnutls_state.c: Add structures for the buffered outgoing flight. Signed-off-by: Nikos Mavrogiannopoulos 2009-08-03 Jonathan Bastien-Filiatrault * lib/gnutls_int.h, lib/gnutls_state.c: Add state for handshake mtu. Signed-off-by: Nikos Mavrogiannopoulos 2009-08-03 Jonathan Bastien-Filiatrault * lib/gnutls_handshake.c: dtls: Fixup outgoing ClientHello hashing. Signed-off-by: Nikos Mavrogiannopoulos 2009-08-03 Jonathan Bastien-Filiatrault * lib/gnutls_handshake.c, lib/gnutls_int.h: Add proper handshake outgoing sequence number. Signed-off-by: Nikos Mavrogiannopoulos 2009-08-03 Jonathan Bastien-Filiatrault * lib/Makefile.am, lib/gnutls_dtls.c, lib/gnutls_dtls.h: Add gnutls_dtls.{c,h}. Signed-off-by: Nikos Mavrogiannopoulos 2009-08-02 Jonathan Bastien-Filiatrault * lib/gnutls_handshake.c: dtls: Remove unsuitable ciphers. Signed-off-by: Nikos Mavrogiannopoulos 2009-07-28 Jonathan Bastien-Filiatrault * lib/debug.c, lib/gnutls_handshake.c, lib/includes/gnutls/gnutls.h.in: dtls: Add hanshake fragment headers when sending handshake. Signed-off-by: Nikos Mavrogiannopoulos 2009-07-28 Jonathan Bastien-Filiatrault * lib/gnutls_cipher.c, lib/gnutls_int.h, lib/gnutls_record.c: dtls: Add epoch and sequence number to DTLS packets. Signed-off-by: Nikos Mavrogiannopoulos 2009-07-28 Jonathan Bastien-Filiatrault * lib/gnutls_record.c: Use increment functions for sequence number. Signed-off-by: Nikos Mavrogiannopoulos 2009-07-27 Jonathan Bastien-Filiatrault * lib/gnutls_int.h, lib/gnutls_num.c, lib/gnutls_num.h, lib/gnutls_record.c: dtls: Add types and operations required for the DTLS epoch and sequence. Signed-off-by: Nikos Mavrogiannopoulos 2009-07-29 Jonathan Bastien-Filiatrault * lib/gnutls_algorithms.c, lib/gnutls_priority.c: Make version lookup transport dependent. Signed-off-by: Nikos Mavrogiannopoulos 2009-08-03 Jonathan Bastien-Filiatrault * lib/gnutls_state.h: dtls: Add _gnutls_is_dtls to check if a session uses DTLS. Signed-off-by: Nikos Mavrogiannopoulos 2009-07-25 Jonathan Bastien-Filiatrault * lib/gnutls_int.h, lib/gnutls_state.c, lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map: Add gnutls_init_dtls function. Signed-off-by: Nikos Mavrogiannopoulos 2009-07-25 Jonathan Bastien-Filiatrault * lib/gnutls_int.h: Add DTLS state. Signed-off-by: Nikos Mavrogiannopoulos 2009-07-15 Jonathan Bastien-Filiatrault * lib/gnutls_algorithms.c, lib/includes/gnutls/gnutls.h.in: Add DTLS1.0 protocol entry. Signed-off-by: Nikos Mavrogiannopoulos 2010-09-17 Jonathan Bastien-Filiatrault * lib/ext_session_ticket.c, lib/gnutls_handshake.c, lib/gnutls_kx.c, lib/gnutls_mbuffers.h: Allocate session buffers of size, depending on type of session. Signed-off-by: Nikos Mavrogiannopoulos 2010-09-25 Jonathan Bastien-Filiatrault * lib/gnutls_constate.c: Harmonize "d" argument between constate.c and compress.c. Signed-off-by: Nikos Mavrogiannopoulos 2010-09-24 Jonathan Bastien-Filiatrault * src/cli-gaa.c, src/cli.gaa: Fix typo. Signed-off-by: Nikos Mavrogiannopoulos 2010-09-21 Jonathan Bastien-Filiatrault * lib/gnutls_num.h: Parenthesize UINT64DATA again. Signed-off-by: Nikos Mavrogiannopoulos 2011-02-16 Nikos Mavrogiannopoulos * doc/cha-intro-tls.texi: reorganization of ciphersuite discussion. 2011-02-15 Nikos Mavrogiannopoulos * lib/gnutls_priority.c: Allow using the minus "-" in the -ALL priority strings. 2011-02-15 Nikos Mavrogiannopoulos * lib/gnutls_algorithms.c: Added fixme note on TLS 1.2 PRF per ciphersuite. 2011-02-15 Nikos Mavrogiannopoulos * lib/gnutls_algorithms.c: The safe renegotiation ciphersuite is not required to be registered. 2011-02-15 Nikos Mavrogiannopoulos * lib/auth_dhe_psk.c: Corrected bug in DHE-PSK in freeing username/key. 2011-02-15 Nikos Mavrogiannopoulos * lib/gnutls_algorithms.c: Added ciphersuites (from RFC5487): TLS_PSK_WITH_AES_128_GCM_SHA256 TLS_DHE_PSK_WITH_AES_128_GCM_SHA256 TLS_PSK_WITH_AES_128_CBC_SHA256 TLS_DHE_PSK_WITH_AES_128_CBC_SHA256 TLS_PSK_WITH_NULL_SHA256 TLS_DHE_PSK_WITH_NULL_SHA256 2011-02-12 Nikos Mavrogiannopoulos * NEWS, lib/gnutls_extensions.c, lib/gnutls_sig.c: Corrected signature generation and verification in the Certificate Verify message when in TLS 1.2. Reported by Todd A. Ouska. 2011-02-11 Nikos Mavrogiannopoulos * lib/gnutls_state.c: removed duplicate assignments. 2011-02-10 Nikos Mavrogiannopoulos * lib/nettle/cipher.c: upgraded to nettle's new GCM API. 2011-02-10 Nikos Mavrogiannopoulos * lib/m4/hooks.m4: increased the C++ library current version. 2011-02-10 Nikos Mavrogiannopoulos * NEWS, lib/gnutlsxx.cpp: The C++ interface returns exception on every error and not only on fatal ones. This allows easier handling of errors. 2011-02-10 Nikos Mavrogiannopoulos * lib/gnutlsxx.cpp, lib/includes/gnutls/gnutlsxx.h: removed the old set_priority functions. 2011-02-10 Nikos Mavrogiannopoulos * src/cli.c, src/serv.c: removed more deprecated stuff. 2011-02-09 Nikos Mavrogiannopoulos * libextra/gnutls_openssl.c, libextra/includes/gnutls/openssl.h: updated openssl layer to new priority functions (untested). 2011-02-09 Nikos Mavrogiannopoulos * lib/gnutls_sig.c: removed unused variable. 2011-02-09 Nikos Mavrogiannopoulos * NEWS, lib/gnutls_sig.c: Allow DSA2 even in protocols before TLS 1.2. 2011-02-09 Nikos Mavrogiannopoulos * src/cli.c: set the psk callback only if username/key were not supplied at command line. 2011-02-09 Nikos Mavrogiannopoulos * lib/ext_signature.c, lib/ext_signature.h, lib/gnutls_pk.c, lib/gnutls_sig.c: In TLS 1.2 under DSS use the hash algorithm required by DSS. 2011-02-09 Nikos Mavrogiannopoulos * tests/Makefile.am, tests/openpgp-auth.c, tests/openpgp-auth2.c: Added new test openpgp-auth2.c that tests openpgp under TLS1.2 and DSS as well. 2011-02-09 Nikos Mavrogiannopoulos * tests/anonself.c, tests/dhepskself.c, tests/mini-eagain.c, tests/mini.c, tests/openpgp-auth.c, tests/pskself.c, tests/resume.c: Modernized the test applications that now use the gnutls_priority_set_direct(). 2011-02-09 Nikos Mavrogiannopoulos * lib/includes/gnutls/compat.h, lib/includes/gnutls/gnutls.h.in: deprecated gnutls_*_set_priority(). 2011-02-09 Nikos Mavrogiannopoulos * lib/auth_cert.c, lib/ext_cert_type.c, lib/ext_max_record.c, lib/ext_safe_renegotiation.c, lib/ext_server_name.c, lib/ext_session_ticket.c, lib/ext_signature.c, lib/ext_srp.c, lib/gnutls_extensions.c, lib/gnutls_extensions.h, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_pk.c, lib/gnutls_sig.c, lib/gnutls_state.c, lib/includes/gnutls/gnutls.h.in, lib/nettle/pk.c: The extensions code is now using the gnutls_buffer_st. 2011-02-09 Nikos Mavrogiannopoulos * lib/gnutls_algorithms.c, lib/x509/x509_int.h: Added sha224 to the list of MACs. 2011-02-09 Nikos Mavrogiannopoulos * lib/gnutls_priority.c: The PSK and SRP key exchange algorithms are not included in the preset priority strings. 2011-02-09 Nikos Mavrogiannopoulos * lib/auth_dh_common.c, lib/auth_dh_common.h, lib/auth_dhe_psk.c, lib/auth_psk.c, lib/auth_psk.h: Callback function is being called in both PSK-DHE and PSK. Using the callback function will not overwrite the credentials, which were wrongly being overwritten using the retrieved username/key. The credentials structure is now accessed for reading only, as it should have been. 2011-02-09 Nikos Mavrogiannopoulos * configure.ac: bumped version. 2011-02-08 Nikos Mavrogiannopoulos * doc/cha-programs.texi: Added documentation on p11tool. 2011-02-08 Nikos Mavrogiannopoulos * doc/cha-intro-tls.texi, doc/cha-library.texi, doc/manpages/gnutls-cli.1, doc/manpages/gnutls-serv.1, lib/gnutls_priority.c, src/common.c: Moved documentation of priority strings to manual and removed information from manpages and function pages that now reference the manual section. 2011-02-08 Nikos Mavrogiannopoulos * lib/auth_anon.c, lib/auth_cert.c, lib/auth_cert.h, lib/auth_dh_common.c, lib/auth_dh_common.h, lib/auth_dhe.c, lib/auth_dhe_psk.c, lib/auth_psk.c, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/auth_srp.c, lib/auth_srp.h, lib/auth_srp_rsa.c, lib/gnutls_auth.h, lib/gnutls_kx.c, lib/gnutls_str.c, lib/gnutls_str.h: Simplified code in authentication methods by using gnutls_buffer_st instead of malloc/realloc. 2011-02-08 Nikos Mavrogiannopoulos * lib/gnutls_algorithms.c, lib/includes/gnutls/gnutls.h.in: Combined same functions. 2011-02-08 Nikos Mavrogiannopoulos * lib/auth_cert.c, lib/auth_dhe.c, lib/ext_signature.c, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h: Several updates in signature algorithms parsing and sending to avoid sending invalid signature algorithms. 2011-02-08 Nikos Mavrogiannopoulos * lib/gnutls_algorithms.c: Removed unused debugging code. 2011-02-07 Nikos Mavrogiannopoulos * lib/nettle/cipher.c: Removed unneeded initialization. 2011-02-07 Nikos Mavrogiannopoulos * NEWS, doc/cha-auth.texi, doc/cha-programs.texi, lib/Makefile.am, lib/gnutls_psk_netconf.c, lib/includes/gnutls/compat.h: Removed gnutls_psk_netconf_derive_key. 2011-02-07 Nikos Mavrogiannopoulos * NEWS, lib/gnutls_cert.c, lib/includes/gnutls/compat.h: Removed gnutls_certificate_verify_peers. 2011-02-07 Nikos Mavrogiannopoulos * NEWS, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_state.c, lib/includes/gnutls/compat.h: Removed gnutls_session_set_finished_function(). 2011-02-07 Nikos Mavrogiannopoulos * lib/gnutls_alert.c, lib/includes/gnutls/gnutls.h.in: Removed remaining TLS/IA stuff. 2011-02-07 Nikos Mavrogiannopoulos * src/cli-gaa.c, src/cli-gaa.h, src/cli.gaa, src/serv-gaa.c, src/serv-gaa.h, src/serv.gaa: Removed more leftovers from opaque PRF output. 2011-02-07 Nikos Mavrogiannopoulos * lib/gnutls_record.c: Corrected return message from check_recv_type(). 2011-02-07 Nikos Mavrogiannopoulos * lib/nettle/mac.c: Removed upper limit on MAC algorithm key. 2011-02-07 Nikos Mavrogiannopoulos * lib/gnutls_errors.c: improved premature_termination error message 2011-02-07 Nikos Mavrogiannopoulos * doc/reference/Makefile.am, lib/libgnutls.map: Removed leftovers from OPRFI extension. 2011-02-07 Nikos Mavrogiannopoulos * NEWS, lib/gnutls_errors.c, lib/gnutls_record.c, lib/includes/gnutls/gnutls.h.in: gnutls_recv() returns GNUTLS_E_PREMATURE_TERMINATION on EOF. 2011-02-07 Nikos Mavrogiannopoulos * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, src/common.c, src/common.h, src/serv-gaa.c, src/serv-gaa.h, src/serv.c, src/serv.gaa: Removed deprecated option such as --protocols, ciphers etc. 2011-02-07 Nikos Mavrogiannopoulos * NEWS: not untested. 2011-02-07 Nikos Mavrogiannopoulos * src/benchmark.c: Set correct iv in GCM. 2011-02-07 Nikos Mavrogiannopoulos * lib/gnutls_cipher.c, lib/gnutls_int.h: Cleanups and moved definitions to gnutls_int.h. AEAD modes now use the record packet counter as nonce. 2011-02-07 Nikos Mavrogiannopoulos * lib/nettle/cipher.c: Reset GCM mode when setting IV. 2011-02-07 Nikos Mavrogiannopoulos * lib/gnutls_algorithms.c: Added more GCM ciphersuites (DHE-* and anonymous). 2011-02-07 Nikos Mavrogiannopoulos * lib/gnutls_priority.c: updated priorities. Removed ARCFOUR from the secure ciphersuites and moved GCM to bottom of the ciphers in performance. 2011-02-07 Nikos Mavrogiannopoulos * NEWS, lib/crypto-api.c, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, lib/includes/gnutls/crypto.h, lib/libgnutls.map, src/benchmark.c: Added gnutls_cipher_add_auth() gnutls_cipher_tag() to export the GCM interface. Updated the benchmark. 2011-02-07 Nikos Mavrogiannopoulos * lib/gnutls_cert.c: removed gnutls_certificate_get_openpgp_keyring(). 2011-02-07 Nikos Mavrogiannopoulos * lib/gnutls_hash_int.c: minor optimizations. 2011-02-07 Nikos Mavrogiannopoulos * lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h: inlined several small functions. 2011-02-07 Nikos Mavrogiannopoulos * lib/gnutls_cipher.c, lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_sig.c: Better error checking on SSL3. 2011-02-07 Nikos Mavrogiannopoulos * lib/gnutls_cipher.c: calculation for c_length occurs in a single place. 2011-02-06 Nikos Mavrogiannopoulos * NEWS: unstable -> untested. 2011-02-06 Nikos Mavrogiannopoulos * lib/nettle/mac.c: Increase the maximum HMAC key to account for anonymous ciphersuites. 2011-02-06 Nikos Mavrogiannopoulos * lib/gnutls_hash_int.c: check the error of hash set_key. 2011-02-06 Nikos Mavrogiannopoulos * lib/gnutls_kx.c: do not use strlen for fixed string. 2011-02-06 Nikos Mavrogiannopoulos * NEWS: updated NEWS on GCM mode. 2011-02-06 Nikos Mavrogiannopoulos * lib/nettle/cipher.c: Use nettle's new API for GCM. 2011-02-06 Nikos Mavrogiannopoulos * src/cli.c: removed old comment 2011-02-06 Nikos Mavrogiannopoulos * NEWS, doc/Makefile.am, doc/cha-functions.texi, doc/cha-gtls-app.texi, doc/examples/Makefile.am, doc/examples/ex-client-tlsia.c, lib/gnutls_kx.c, libextra/Makefile.am, libextra/ext_inner_application.c, libextra/ext_inner_application.h, libextra/gnutls_extra.c, libextra/gnutls_ia.c, libextra/libgnutls-extra.map, tests/Makefile.am, tests/tlsia.c: Removed inner application extension. 2011-02-06 Nikos Mavrogiannopoulos * lib/includes/gnutls/compat.h, lib/includes/gnutls/gnutls.h.in: gnutls_certificate_verify_peers is deprecated. 2011-02-04 Nikos Mavrogiannopoulos * lib/gcrypt/mac.c, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, lib/gnutls_constate.c, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_priority.c, lib/includes/gnutls/crypto.h, lib/includes/gnutls/gnutls.h.in, lib/m4/hooks.m4, lib/nettle/cipher.c, lib/nettle/mac.c: Added support for GCM ciphersuites (not tested with other implementation). 2011-02-05 Nikos Mavrogiannopoulos * lib/gnutls_int.h: Added missing definitions (GNUTLS_MASTER_SIZE etc). 2011-02-05 Nikos Mavrogiannopoulos * NEWS, lib/gnutls_state.c, lib/includes/gnutls/compat.h: Removed: gnutls_session_get_server_random, gnutls_session_get_client_random, gnutls_session_get_master_secret 2011-02-05 Nikos Mavrogiannopoulos * lib/build-aux/config.rpath, tests/suite/Makefile.in: updated. 2011-02-05 Nikos Mavrogiannopoulos * lib/Makefile.am, lib/gnutls.pc.in, lib/m4/hooks.m4: Add the nettle libs into gnutls.pc. 2011-02-05 Nikos Mavrogiannopoulos * NEWS, lib/gnutls_cert.c, lib/gnutls_extensions.c, lib/includes/gnutls/compat.h, lib/m4/hooks.m4: Removed functions: gnutls_ext_register, gnutls_certificate_get_x509_crls, gnutls_certificate_get_x509_cas and bumped library version number. 2011-02-05 Andreas Metzler * lib/configure.ac, lib/gnutls.pc.in, lib/m4/hooks.m4: [PATCH 1/4] adapt pkg-config file for switch from AM_PATH_LIBGCRYPT to AC_LIB_HAVE_LINKFLAGS [PATCH 2/4] pkg-config: Move libtasn1 from Libs.private to Requires.private since libtasn1 provides a .pc file. [PATCH 3/4] pkg-config: drop @LIBGNUTLS_LIBS@ from Libs.private. This library only contains gnutls itself nowadays, which is in Libs already. [PATCH 4/4] pkg-config: If gnutls is built with zlib support list zlib in Requires.private. 2011-02-04 Simon Josefsson * doc/cha-ciphersuites.texi, doc/signatures.texi: Fix MD2 documentation. Suggested by "brian m. carlson" in debian bug #464625. 2011-02-02 Nikos Mavrogiannopoulos * doc/README.CODING_STYLE: updated coding style. 2011-02-02 Nikos Mavrogiannopoulos * NEWS: documented gnutls_session_get_* deprecated functions. 2011-02-02 Nikos Mavrogiannopoulos * tests/x509paths/README: updated README on certificate verifications that fail. 2011-02-02 Nikos Mavrogiannopoulos * NEWS, src/certtool-common.h, src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: Added new functionality to certtool, and can verify certificates against a list of CAs using the --verify option. 2011-02-02 Nikos Mavrogiannopoulos * lib/x509/verify.c, tests/chainverify.c: Time checks were moved to _gnutls_verify_certificate2(). This allows for straightforward chain verification, and thus better printing of the chain output, although some checks might be performed in duplicate. As a side-effect better errors are returned (or precisely more combinations of verification errors), thus chainverify test was affected. 2011-02-02 Nikos Mavrogiannopoulos * lib/x509/verify-high.c: Set memory to zero on allocation. 2011-02-02 Nikos Mavrogiannopoulos * doc/cha-gtls-app.texi: fix in contents. 2011-02-02 Nikos Mavrogiannopoulos * doc/examples/examples.h: prototype fix. 2011-02-02 Nikos Mavrogiannopoulos * doc/examples/ex-verify.c, lib/gnutls_cert.c, lib/includes/gnutls/x509.h, lib/x509/verify-high.c, src/certtool.c: gnutls_x509_trust_list_init() has an extra argument that allows fine-tuning of the used memory. 2011-02-01 Nikos Mavrogiannopoulos * doc/cha-bib.texi: Updated references of rfc5081 to rfc6091. 2011-02-01 Nikos Mavrogiannopoulos * doc/cha-cert-auth.texi, doc/cha-gtls-app.texi, doc/examples/ex-verify.c: Documented the new verification functions. 2011-01-31 Nikos Mavrogiannopoulos * src/certtool.c, tests/sha2/sha2: Modified output to not confuse earlier scripts. 2011-01-31 Nikos Mavrogiannopoulos * lib/x509/verify.c: Better output when removing certificates from list. 2011-01-31 Nikos Mavrogiannopoulos * tests/pkcs1-padding/pkcs1-pad: Modified to work on new certtool -e output. 2011-01-31 Nikos Mavrogiannopoulos * NEWS, doc/examples/ex-verify.c, lib/auth_cert.h, lib/gnutls_cert.c, lib/gnutls_x509.c, lib/includes/gnutls/compat.h, lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/x509.h, lib/libgnutls.map, lib/x509/crl.c, lib/x509/x509.c, src/certtool.c, tests/certificate_set_x509_crl.c: The internal subsystem uses the new certificate verification functions. This has the side effect of deprecating gnutls_certificate_get_x509_crls() and gnutls_certificate_get_x509_cas() that can no longer operation since they relied on internal structures. 2011-01-31 Nikos Mavrogiannopoulos * NEWS, doc/cha-gtls-app.texi, doc/examples/ex-verify.c, lib/Makefile.am, lib/hash.c, lib/hash.h, lib/includes/gnutls/x509.h, lib/libgnutls.map, lib/x509/Makefile.am, lib/x509/crl.c, lib/x509/verify-high.c, lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509_int.h, src/certtool.c: Added a new API to verify certificates. It is more efficient and can be used to get details about the verification procedure. 2011-01-31 Nikos Mavrogiannopoulos * tests/x509paths/chain: better output in chain output. 2011-01-30 Nikos Mavrogiannopoulos * NEWS, lib/includes/gnutls/x509.h, lib/x509/crl.c, lib/x509/verify.c, lib/x509/x509.c: exported gnutls_x509_crl_get_raw_issuer_dn() 2011-01-30 Nikos Mavrogiannopoulos * lib/x509/x509.c: corrected typos 2011-01-19 Nikos Mavrogiannopoulos * lib/pakchois/pakchois.c: CKR_CRYPTOKI_ALREADY_INITIALIZED is not treated as an error, and Finalize is not called in that case. 2011-01-16 Nikos Mavrogiannopoulos * NEWS, lib/gnutls_privkey.c, lib/includes/gnutls/compat.h, lib/openpgp/privkey.c: Reverted removal of gnutls_openpgp_privkey_sign_hash() to retain compatibility with 2.10.x. That function is now deprecated instead. 2011-01-16 Nikos Mavrogiannopoulos * lib/gnutls_privkey.c: Added checks before importing keys and updated documentation. 2011-01-15 Nikos Mavrogiannopoulos * tests/suite/Makefile.in: updated Makefile.in 2011-01-15 Nikos Mavrogiannopoulos * doc/examples/ex-crq.c, lib/configure.ac, lib/includes/gnutls/compat.h, lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/x509.h, src/certtool.c, tests/crq_key_id.c: fixes in internal build with the new deprecated functions. We allow them to be used since they are inter-dependent. 2011-01-15 Nikos Mavrogiannopoulos * lib/x509/x509_int.h: replaced old gnutls_pk_algorithm. 2011-01-15 Nikos Mavrogiannopoulos * lib/includes/gnutls/compat.h: depends on gnutls/x509.h to compile. 2011-01-15 Nikos Mavrogiannopoulos * NEWS, lib/includes/gnutls/compat.h, lib/includes/gnutls/x509.h, lib/x509/crl_write.c: deprecated gnutls_x509_crl_sign(), gnutls_x509_crl_sign2() and gnutls_x509_crq_get_preferred_hash_algorithm(). 2011-01-15 Nikos Mavrogiannopoulos * NEWS, lib/includes/gnutls/compat.h, lib/includes/gnutls/x509.h, lib/x509/crq.c: Deprecated gnutls_x509_crq_sign2() and gnutls_x509_crq_sign() in favor for gnutls_x509_crq_privkey_sign(). 2011-01-15 Nikos Mavrogiannopoulos * NEWS, lib/libgnutls.map: minor fixes. 2011-01-15 Nikos Mavrogiannopoulos * NEWS, lib/includes/gnutls/compat.h, lib/includes/gnutls/x509.h, lib/libgnutls.map, lib/x509/privkey.c, lib/x509/x509.c, src/certtool.c, tests/cve-2009-1415.c, tests/x509sign-verify.c: gnutls_x509_crt_verify_hash: DEPRECATED gnutls_x509_crt_verify_data: DEPRECATED gnutls_x509_crt_get_verify_algorithm: DEPRECATED gnutls_x509_crt_get_preferred_hash_algorithm: DEPRECATED Removed the new gnutls_x509_privkey_sign_data2() and gnutls_x509_privkey_sign_hash2(). That functionality will be only in the abstract.h pubkey and privkey structures, to avoid duplication for every certificate type. 2011-01-15 Nikos Mavrogiannopoulos * src/serv.c: Simplified macro to snprintf() in order to prevent issues caused when snprintf() is a macro itself. Reported and initial patch by Camillo Lugaresi. 2011-01-11 Nikos Mavrogiannopoulos * tests/suite/Makefile.in: Revert "Remove, it is generated." This reverts commit de3a601e502b24f047412a161085f7fbd898b3f3 because this file is not automatically generated (not included in top Makefile.am). 2011-01-02 Simon Josefsson * lib/m4/hooks.m4: Specify minimum libgcrypt version. 2010-12-23 Nikos Mavrogiannopoulos * doc/cha-internals.texi: Added discussion on crypto backend for crypto libraries and /dev/crypto. 2010-12-21 Nikos Mavrogiannopoulos * NEWS, lib/gnutls_privkey.c, lib/includes/gnutls/abstract.h, lib/includes/gnutls/compat.h, lib/includes/gnutls/x509.h, lib/x509/crq.c, lib/x509/privkey.c, lib/x509/sign.c: Renamed gnutls_privkey_sign_data() to gnutls_privkey_sign_data2() to match the similar function gnutls_x509_privkey_sign_data2(). gnutls_x509_privkey_sign_data() was deprecated. 2010-12-19 Nikos Mavrogiannopoulos * lib/gnutls_str.c: Extra sanity check. 2010-12-19 Nikos Mavrogiannopoulos * lib/auth_srp_passwd.c: Use snprintf() to print an integer. 2010-12-19 Nikos Mavrogiannopoulos * lib/x509/output.c: Use snprintf() to print IPs. There was a check just before that, but be safe, just in case. 2010-12-19 Nikos Mavrogiannopoulos * doc/cha-auth.texi: Use SRP for password authentication. 2010-12-19 Nikos Mavrogiannopoulos * doc/cha-auth.texi, lib/gnutls_cert.c, lib/gnutls_extensions.c, lib/gnutls_psk_netconf.c, lib/gnutls_state.c, lib/includes/gnutls/compat.h, lib/x509/privkey.c: Do not include deprecated functions to library documentation. 2010-12-19 Nikos Mavrogiannopoulos * NEWS, lib/includes/gnutls/compat.h, lib/includes/gnutls/x509.h, lib/x509/privkey.c: gnutls_x509_privkey_verify_data() was deprecated. 2010-12-19 Nikos Mavrogiannopoulos * lib/gnutls_pubkey.c: Documented key usage of pubkey. 2010-12-19 Nikos Mavrogiannopoulos * lib/gnutls_pubkey.c: Set public key bits on all import functions. Issue reported by Murray Kucheawy. 2010-12-19 Nikos Mavrogiannopoulos * NEWS, lib/gnutls_privkey.c, lib/includes/gnutls/pkcs11.h, lib/pkcs11_int.h, lib/pkcs11_privkey.c: gnutls_pkcs11_privkey_sign_data(), gnutls_pkcs11_privkey_sign_hash2() and gnutls_pkcs11_privkey_decrypt_data() were removed. The abstract.h functions should be used instead. 2010-12-19 Nikos Mavrogiannopoulos * NEWS, lib/gnutls_privkey.c, lib/includes/gnutls/openpgp.h, lib/openpgp/gnutls_openpgp.h, lib/openpgp/pgp.c, lib/openpgp/privkey.c: Removed the newly added functions: gnutls_openpgp_privkey_sign_hash2(), gnutls_openpgp_privkey_sign_data2(), gnutls_openpgp_crt_verify_hash() That way the operations in abstract.h should be used to get the same functionality, and API will be kept simple and easier to maintain. The corresponding gnutls_x509_* are kept for backwards compatibility. 2010-12-18 Nikos Mavrogiannopoulos * lib/gnutls_sig.c: Do not be strict on RSA hash algorithm selection for signatures. 2010-12-18 Nikos Mavrogiannopoulos * lib/gnutls_cert.h, lib/gnutls_sig.c, lib/gnutls_x509.c: Removed unneeded definitions, and more careful deinitializations in parse_der_cert_mem(). 2010-12-18 Nikos Mavrogiannopoulos * tests/pathlen/ca-no-pathlen.pem, tests/pathlen/no-ca-or-pathlen.pem: updated certificates to account for extra null byte added in negative numbers. 2010-12-18 Nikos Mavrogiannopoulos * tests/cve-2009-1415.c: Account for GNUTLS_E_PK_SIG_VERIFY_FAILED. 2010-12-18 Nikos Mavrogiannopoulos * lib/gnutls_privkey.c: Corrected bug in gnutls_privkey_sign_data(). 2010-12-18 Nikos Mavrogiannopoulos * lib/gnutls_sig.c: some fixes in pk_prepare_hash(). 2010-12-18 Nikos Mavrogiannopoulos * NEWS, lib/gnutls_pubkey.c, lib/openpgp/pgp.c, lib/x509/privkey.c, lib/x509/verify.c, lib/x509/x509.c, tests/x509sign-verify.c: The verification functions now return a GNUTLS_E_PK_SIG_VERIFY_FAILED on signature verification error. 2010-12-18 Nikos Mavrogiannopoulos * src/p11tool-gaa.c, src/p11tool.gaa: The default input format for p11tool is PEM. 2010-12-16 Nikos Mavrogiannopoulos * lib/gnutls_pubkey.c: importing a pubkey from raw params will set the bits field correctly. 2010-12-16 Nikos Mavrogiannopoulos * NEWS: Documented the addtion of gnutls_pubkey_import_privkey() and gnutls_pubkey_verify_data() 2010-12-16 Nikos Mavrogiannopoulos * lib/gnutls_pubkey.c, lib/includes/gnutls/abstract.h, lib/libgnutls.map, lib/x509/verify.c, tests/x509sign-verify.c: Added gnutls_pubkey_verify_data and test vectors. 2010-12-16 Nikos Mavrogiannopoulos * doc/errcodes.c, doc/examples/ex-alert.c, doc/examples/ex-cert-select-pkcs11.c, doc/examples/ex-cert-select.c, doc/examples/ex-client-psk.c, doc/examples/ex-client-resume.c, doc/examples/ex-client-srp.c, doc/examples/ex-client-tlsia.c, doc/examples/ex-client1.c, doc/examples/ex-client2.c, doc/examples/ex-crq.c, doc/examples/ex-pkcs12.c, doc/examples/ex-rfc2818.c, doc/examples/ex-serv-anon.c, doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-psk.c, doc/examples/ex-serv-srp.c, doc/examples/ex-serv1.c, doc/examples/ex-session-info.c, doc/examples/ex-verify.c, doc/examples/ex-x509-info.c, doc/examples/examples.h, doc/examples/tcp.c, doc/printlist.c, guile/src/core.c, guile/src/extra.c, guile/src/utils.h, lib/abstract_int.h, lib/auth_anon.c, lib/auth_cert.c, lib/auth_cert.h, lib/auth_dh_common.c, lib/auth_dh_common.h, lib/auth_dhe.c, lib/auth_dhe_psk.c, lib/auth_psk.c, lib/auth_psk_passwd.c, lib/auth_psk_passwd.h, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/auth_srp.c, lib/auth_srp.h, lib/auth_srp_passwd.c, lib/auth_srp_passwd.h, lib/auth_srp_rsa.c, lib/auth_srp_sb64.c, lib/crypto-api.c, lib/crypto.c, lib/crypto.h, lib/cryptodev.c, lib/debug.c, lib/ext_cert_type.c, lib/ext_max_record.c, lib/ext_safe_renegotiation.c, lib/ext_safe_renegotiation.h, lib/ext_server_name.c, lib/ext_session_ticket.c, lib/ext_signature.c, lib/ext_signature.h, lib/ext_srp.c, lib/gcrypt/cipher.c, lib/gcrypt/init.c, lib/gcrypt/mac.c, lib/gcrypt/mpi.c, lib/gcrypt/pk.c, lib/gnutls_alert.c, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_auth.h, lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, lib/gnutls_compress.c, lib/gnutls_compress.h, lib/gnutls_constate.c, lib/gnutls_constate.h, lib/gnutls_datum.c, lib/gnutls_datum.h, lib/gnutls_db.c, lib/gnutls_db.h, lib/gnutls_dh.c, lib/gnutls_dh.h, lib/gnutls_dh_primes.c, lib/gnutls_errors.c, lib/gnutls_extensions.c, lib/gnutls_extensions.h, lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_kx.h, lib/gnutls_mbuffers.c, lib/gnutls_mbuffers.h, lib/gnutls_mem.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_num.c, lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_priority.c, lib/gnutls_privkey.c, lib/gnutls_psk.c, lib/gnutls_psk_netconf.c, lib/gnutls_pubkey.c, lib/gnutls_record.c, lib/gnutls_record.h, lib/gnutls_rsa_export.c, lib/gnutls_session.c, lib/gnutls_session_pack.c, lib/gnutls_session_pack.h, lib/gnutls_sig.c, lib/gnutls_sig.h, lib/gnutls_srp.c, lib/gnutls_srp.h, lib/gnutls_state.c, lib/gnutls_state.h, lib/gnutls_str.c, lib/gnutls_str.h, lib/gnutls_supplemental.c, lib/gnutls_supplemental.h, lib/gnutls_ui.c, lib/gnutls_v2_compat.c, lib/gnutls_v2_compat.h, lib/gnutls_x509.c, lib/gnutls_x509.h, lib/includes/gnutls/abstract.h, lib/includes/gnutls/compat.h, lib/includes/gnutls/crypto.h, lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/gnutlsxx.h, lib/includes/gnutls/openpgp.h, lib/includes/gnutls/pkcs11.h, lib/includes/gnutls/pkcs12.h, lib/includes/gnutls/x509.h, lib/locks.c, lib/nettle/cipher.c, lib/nettle/egd.c, lib/nettle/mpi.c, lib/nettle/pk.c, lib/nettle/rnd.c, lib/opencdk/armor.c, lib/opencdk/context.h, lib/opencdk/dummy.c, lib/opencdk/filters.h, lib/opencdk/hash.c, lib/opencdk/kbnode.c, lib/opencdk/keydb.c, lib/opencdk/keydb.h, lib/opencdk/literal.c, lib/opencdk/main.c, lib/opencdk/main.h, lib/opencdk/misc.c, lib/opencdk/new-packet.c, lib/opencdk/opencdk.h, lib/opencdk/packet.h, lib/opencdk/pubkey.c, lib/opencdk/read-packet.c, lib/opencdk/seskey.c, lib/opencdk/sig-check.c, lib/opencdk/stream.c, lib/opencdk/stream.h, lib/opencdk/verify.c, lib/opencdk/write-packet.c, lib/openpgp/compat.c, lib/openpgp/extras.c, lib/openpgp/gnutls_openpgp.c, lib/openpgp/gnutls_openpgp.h, lib/openpgp/openpgp_int.h, lib/openpgp/output.c, lib/openpgp/pgp.c, lib/openpgp/pgpverify.c, lib/openpgp/privkey.c, lib/pakchois/pakchois.c, lib/pakchois/pakchois.h, lib/pakchois/pakchois11.h, lib/pkcs11.c, lib/pkcs11_int.h, lib/pkcs11_privkey.c, lib/pkcs11_secret.c, lib/pkcs11_write.c, lib/random.c, lib/system.c, lib/system.h, lib/x509/common.c, lib/x509/common.h, lib/x509/crl.c, lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/dn.c, lib/x509/extensions.c, lib/x509/mpi.c, lib/x509/output.c, lib/x509/pbkdf2-sha1.c, lib/x509/pbkdf2-sha1.h, lib/x509/pkcs12.c, lib/x509/pkcs12_bag.c, lib/x509/pkcs12_encr.c, lib/x509/pkcs7.c, lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, lib/x509/rfc2818_hostname.c, lib/x509/sign.c, lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509_int.h, lib/x509/x509_write.c, lib/x509_b64.c, lib/x509_b64.h, libextra/ext_inner_application.c, libextra/ext_inner_application.h, libextra/gnutls_extra.c, libextra/gnutls_ia.c, libextra/gnutls_openssl.c, libextra/includes/gnutls/extra.h, libextra/includes/gnutls/openssl.h, libextra/openssl_compat.c, libextra/openssl_compat.h, maint.mk, src/benchmark.c, src/certtool-cfg.c, src/certtool-cfg.h, src/certtool-common.c, src/certtool-common.h, src/certtool.c, src/cli.c, src/common.c, src/common.h, src/crypt.c, src/p11tool.c, src/p11tool.h, src/pkcs11.c, src/prime.c, src/psk.c, src/serv.c, src/tests.c, src/tests.h, src/tls_test.c, tests/anonself.c, tests/certificate_set_x509_crl.c, tests/chainverify.c, tests/crq_apis.c, tests/crq_key_id.c, tests/cve-2008-4989.c, tests/dhepskself.c, tests/dn.c, tests/dn2.c, tests/gc.c, tests/mini-eagain.c, tests/mini-x509-rehandshake.c, tests/mini-x509.c, tests/mini.c, tests/mpi.c, tests/nul-in-x509-names.c, tests/openpgp-auth.c, tests/openpgp-keyring.c, tests/openpgp_test.c, tests/openpgpself.c, tests/openssl.c, tests/pgps2kgnu.c, tests/pkcs12_encode.c, tests/pkcs12_s2k.c, tests/pkcs12_s2k_pem.c, tests/pskself.c, tests/resume.c, tests/safe-renegotiation/srn0.c, tests/safe-renegotiation/srn1.c, tests/safe-renegotiation/srn2.c, tests/safe-renegotiation/srn3.c, tests/safe-renegotiation/srn4.c, tests/safe-renegotiation/srn5.c, tests/set_pkcs12_cred.c, tests/simple.c, tests/tlsia.c, tests/utils.c, tests/utils.h, tests/x509_altname.c, tests/x509_test.c, tests/x509dn.c, tests/x509self.c, tests/x509sign-verify.c: Indented code. Use same indentation but with -nut to avoid usage of tabs. In several editors tabs can be configured not to be 8 spaces and this produces artifacts with the current indentation that is a mixture of tabs and spaces. 2010-12-16 Nikos Mavrogiannopoulos * lib/gnutls_privkey.c: _gnutls_privkey_get_public_mpis() handles openpgp keys. 2010-12-16 Nikos Mavrogiannopoulos * lib/abstract_int.h, lib/gnutls_privkey.c, lib/gnutls_pubkey.c, lib/includes/gnutls/abstract.h, lib/libgnutls.map: Added gnutls_pubkey_import_privkey(), that will copy the public key from a gnutls_privkey_t structure. 2010-12-15 Nikos Mavrogiannopoulos * NEWS, lib/libgnutls.map: Do not export the non-existant symbols gnutls_pkcs11_privkey_sign_hash and gnutls_privkey_sign_hash. 2010-12-13 Nikos Mavrogiannopoulos * NEWS: documented new functions 2010-12-13 Nikos Mavrogiannopoulos * NEWS: Added new functions. 2010-12-13 Nikos Mavrogiannopoulos * lib/libgnutls.map: Added new functions. 2010-12-13 Nikos Mavrogiannopoulos * lib/includes/gnutls/compat.h, lib/includes/gnutls/x509.h: de-deprecated gnutls_x509_crt_verify_hash() 2010-12-13 Nikos Mavrogiannopoulos * lib/includes/gnutls/openpgp.h, lib/libgnutls.map, lib/openpgp/pgp.c, tests/x509sign-verify.c: Added gnutls_openpgp_crt_verify_hash(). 2010-12-13 Nikos Mavrogiannopoulos * lib/includes/gnutls/pkcs11.h, lib/pkcs11_privkey.c: added gnutls_privkey_sign_hash2() 2010-12-13 Nikos Mavrogiannopoulos * lib/gnutls_privkey.c, lib/gnutls_sig.c, lib/gnutls_sig.h, lib/openpgp/privkey.c, lib/pkcs11_privkey.c, lib/x509/privkey.c: Simplified preparation of signing code. 2010-12-12 Nikos Mavrogiannopoulos * lib/gnutls_privkey.c, lib/gnutls_pubkey.c, lib/gnutls_sig.c, lib/gnutls_sig.h, lib/openpgp/gnutls_openpgp.h, lib/openpgp/privkey.c, lib/pkcs11_int.h, lib/pkcs11_privkey.c, lib/x509/Makefile.am, lib/x509/privkey.c, lib/x509/sign.c, lib/x509/sign.h: deprecated x509/sign.h and moved functionality of it in gnutls_sig.h. 2010-12-12 Nikos Mavrogiannopoulos * lib/x509/sign.c: pk_hash_data() will fail unless DSA or RSA are specified. 2010-12-12 Nikos Mavrogiannopoulos * lib/x509/privkey.c: better comments 2010-12-12 Nikos Mavrogiannopoulos * lib/openpgp/gnutls_openpgp.c, lib/openpgp/privkey.c: reorganization of the privkey_ functions(). 2010-12-11 Nikos Mavrogiannopoulos * lib/gnutls_privkey.c, lib/includes/gnutls/abstract.h, lib/includes/gnutls/compat.h, lib/includes/gnutls/openpgp.h, lib/includes/gnutls/x509.h, lib/libgnutls.map, lib/openpgp/gnutls_openpgp.c, lib/x509/privkey.c: Introduced gnutls_*_privkey_sign_hash2() that is a high level function to produce signatures. 2010-12-11 Nikos Mavrogiannopoulos * lib/gnutls_privkey.c, lib/pkcs11_privkey.c, lib/x509/privkey.c, lib/x509/sign.c, lib/x509/sign.h: Separated the sign_data functions to a hashing phase, a preparing phase, and the actual signing. 2010-12-11 Nikos Mavrogiannopoulos * NEWS: documented deprecated functions. 2010-12-09 Nikos Mavrogiannopoulos * lib/includes/gnutls/compat.h, lib/includes/gnutls/openpgp.h, lib/includes/gnutls/pkcs11.h: All the sign hash functions were deprecated. 2010-12-09 Nikos Mavrogiannopoulos * lib/includes/gnutls/compat.h, lib/includes/gnutls/x509.h: gnutls_x509_privkey_sign_hash() is dangerous and was deprecated. Added some text explaining why some functions were deprecated. 2010-12-08 Nikos Mavrogiannopoulos * NEWS: documented previous update. 2010-12-08 Nikos Mavrogiannopoulos * lib/x509/privkey.c, lib/x509/x509.c: export_raw() functions now add leading zero in mpis. 2010-12-07 Simon Josefsson * NEWS: Add. 2010-12-07 Simon Josefsson * lib/includes/gnutls/crypto.h: C++ fixes, tiny patch from "Brendan Doherty" . 2010-12-07 Simon Josefsson * gl/m4/getdelim.m4, gl/m4/getline.m4, gl/m4/memchr.m4, gl/m4/printf.m4, gl/m4/stdint.m4, lib/gl/m4/fcntl-o.m4, lib/gl/m4/iconv.m4, lib/gl/m4/intdiv0.m4, lib/gl/m4/memchr.m4, lib/gl/m4/memmem.m4, lib/gl/m4/printf.m4, lib/gl/m4/stdint.m4: Update gnulib files. 2010-12-07 Simon Josefsson * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, libextra/configure.ac: Bump versions. 2010-12-07 Simon Josefsson * ChangeLog: Generated. 2010-12-07 Simon Josefsson * configure.ac, lib/configure.ac, lib/m4/hooks.m4, libextra/configure.ac: Bump versions. 2010-12-06 Simon Josefsson * ChangeLog: Generated. 2010-12-06 Simon Josefsson * tests/Makefile.am: Don't fail on 'make distcheck'. 2010-12-06 Simon Josefsson * NEWS: Version 2.11.6. 2010-12-06 Simon Josefsson * lib/gnutls_str.c: Indent. 2010-12-06 Nikos Mavrogiannopoulos * NEWS: documented SSL 3.0 record version change. 2010-12-06 Nikos Mavrogiannopoulos * lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_priority.c: SSL3_RECORD_VERSION priority option is now the default. That is in order to not confuse non TLS 1.2 compliant implementations that don't like a TLS 1.2 record. 2010-12-06 Nikos Mavrogiannopoulos * lib/gnutls_str.c: simplified escape and unescape. 2010-12-05 Nikos Mavrogiannopoulos * THANKS: Added Michael. 2010-12-06 Simon Josefsson * cfg.mk, lib/gnutls_priority.c, lib/gnutls_state.c, lib/includes/gnutls/compat.h, lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/pkcs11.h, lib/nettle/rnd.c, lib/pkcs11.c, lib/pkcs11_int.h, lib/pkcs11_secret.c, lib/pkcs11_write.c, lib/x509/verify.c, src/certtool-common.c, src/certtool-common.h, src/certtool.c, src/cli.c, src/common.c, src/p11tool.c, src/p11tool.h, src/pkcs11.c, src/serv.c, tests/chainverify.c, tests/openpgp-auth.c: Indent code. 2010-12-06 Simon Josefsson * maint.mk: Update gnulib files. 2010-12-06 Simon Josefsson * gl/override/top/maint.mk.diff: Remove. 2010-12-06 Simon Josefsson * .gitignore: Update. 2010-12-06 Simon Josefsson * lib/gnutls_priority.c, lib/pkcs11_secret.c, src/p11tool.c, src/p11tool.gaa: Fix syntax-check nits. 2010-12-06 Simon Josefsson * .x-sc_bindtextdomain: Ignore more. 2010-12-06 Simon Josefsson * GNUmakefile, build-aux/gendocs.sh, build-aux/pmccabe.css, build-aux/pmccabe2html, gl/Makefile.am, gl/arpa_inet.in.h, gl/float+.h, gl/gettext.h, gl/inet_ntop.c, gl/intprops.h, gl/m4/alloca.m4, gl/m4/arpa_inet_h.m4, gl/m4/getdelim.m4, gl/m4/getline.m4, gl/m4/getpass.m4, gl/m4/gnulib-common.m4, gl/m4/gnulib-comp.m4, gl/m4/mmap-anon.m4, gl/m4/printf.m4, gl/m4/readline.m4, gl/m4/string_h.m4, gl/m4/sys_ioctl_h.m4, gl/m4/sys_select_h.m4, gl/m4/sys_socket_h.m4, gl/m4/unistd_h.m4, gl/m4/vasnprintf.m4, gl/m4/wchar_h.m4, gl/printf-parse.c, gl/printf-parse.h, gl/stdint.in.h, gl/stdio.in.h, gl/stdlib.in.h, gl/string.in.h, gl/sys_select.in.h, gl/sys_socket.in.h, gl/tests/Makefile.am, gl/tests/init.sh, gl/tests/test-select-stdin.c, gl/tests/test-select.c, gl/tests/test-update-copyright.sh, gl/tests/verify.h, gl/time.in.h, gl/unistd.in.h, gl/vasnprintf.c, gl/verify.h, gl/wchar.in.h, lib/gl/Makefile.am, lib/gl/float+.h, lib/gl/gettext.h, lib/gl/m4/alloca.m4, lib/gl/m4/glibc2.m4, lib/gl/m4/glibc21.m4, lib/gl/m4/gnulib-common.m4, lib/gl/m4/gnulib-comp.m4, lib/gl/m4/iconv.m4, lib/gl/m4/memmem.m4, lib/gl/m4/mmap-anon.m4, lib/gl/m4/printf.m4, lib/gl/m4/string_h.m4, lib/gl/m4/sys_socket_h.m4, lib/gl/m4/unistd_h.m4, lib/gl/m4/vasnprintf.m4, lib/gl/m4/wchar_h.m4, lib/gl/printf-parse.c, lib/gl/printf-parse.h, lib/gl/stdint.in.h, lib/gl/stdio.in.h, lib/gl/stdlib.in.h, lib/gl/string.in.h, lib/gl/sys_socket.in.h, lib/gl/tests/Makefile.am, lib/gl/tests/init.sh, lib/gl/tests/intprops.h, lib/gl/tests/verify.h, lib/gl/time.in.h, lib/gl/unistd.in.h, lib/gl/vasnprintf.c, lib/gl/verify.h, lib/gl/wchar.in.h, libextra/gl/m4/gnulib-common.m4, maint.mk: Update gnulib files. 2010-12-05 Nikos Mavrogiannopoulos * tests/Makefile.am: Temporarily remove gendh test. It takes extremely long time under valgrind. 2010-12-05 Nikos Mavrogiannopoulos * NEWS, lib/gnutls_sig.c, lib/x509/common.c, lib/x509/common.h, lib/x509/mpi.c, lib/x509/sign.c, lib/x509/verify.c: Use ASN1_NULL when writing parameters for RSA signatures. This makes us comply with RFC3279. Reported by Michael Rommel. 2010-12-05 Nikos Mavrogiannopoulos * NEWS, src/serv.c: Corrected buffer overflow in gnutls-serv by Tomas Mraz. The gnutls-serv uses fixed allocated buffer for the response which can be pretty long if a client certificate is presented to it and the http header is large. This causes buffer overflow and heap corruption which then leads to random segfaults or aborts. It was reported originally here: https://bugzilla.redhat.com/show_bug.cgi?id=659259 The attached patch changes sprintf calls in peer_print_info() to snprintf so the buffer is never overflowed. 2010-12-01 Nikos Mavrogiannopoulos * lib/m4/hooks.m4: increased revision 2010-12-01 Nikos Mavrogiannopoulos * src/Makefile.am: Added p11tool.h 2010-12-01 Nikos Mavrogiannopoulos * NEWS: released 2.11.5 2010-12-01 Nikos Mavrogiannopoulos * doc/cha-internals.texi: escaped chars. 2010-12-01 Nikos Mavrogiannopoulos * doc/cha-internals.texi: Updated extension writing code. Still not clear enough. 2010-12-01 Nikos Mavrogiannopoulos * doc/cha-cert-auth.texi: PKCS #11 fixes 2010-12-01 Nikos Mavrogiannopoulos * doc/examples/ex-cert-select-pkcs11.c: Corrected pkcs11 example URLs 2010-11-30 Nikos Mavrogiannopoulos * src/pkcs11.c: Prefix mechanism number with 0x. 2010-11-30 Nikos Mavrogiannopoulos * lib/pakchois/pakchois11.h, src/pkcs11.c: Added camellia and SHA224. 2010-11-27 Nikos Mavrogiannopoulos * configure.ac, lib/configure.ac, lib/nettle/rnd.c: Use rusage if present. Moved check to correct config and included resource.h header. 2010-11-27 Nikos Mavrogiannopoulos * lib/nettle/rnd.c: More details on the text 2010-11-27 Nikos Mavrogiannopoulos * lib/pkcs11.c: Corrected copyright statement 2010-11-27 Nikos Mavrogiannopoulos * lib/nettle/rnd.c: Corrected copyright header. Added Niels. 2010-11-26 Nikos Mavrogiannopoulos * NEWS, lib/gnutls_cert.c, lib/includes/gnutls/x509.h, lib/x509/verify.c, src/certtool.c, src/cli.c, tests/chainverify.c: Reverted default behavior for verification and introduced GNUTLS_VERIFY_DO_NOT_ALLOW_X509_V1_CA_CRT. Thus by default V1 trusted CAs are allowed, unless the new flag is specified. 2010-11-25 Simon Josefsson * NEWS: Typo. 2010-11-25 Simon Josefsson * tests/suite/Makefile.in: Remove, it is generated. 2010-11-25 Simon Josefsson * README: No space at eol. 2010-11-25 Simon Josefsson * tests/safe-renegotiation/Makefile.am: Fix syntax-check warning. 2010-11-25 Simon Josefsson * cfg.mk: Ignore tests/suite for syntax-checks, not our code. 2010-11-25 Simon Josefsson * README: Recommend git format-patch rather than git diff. 2010-11-24 Jeffrey Walton * README: Attached is a proposed modification to the README file, including recent comments by Simon. 2010-11-23 Simon Josefsson * guile/src/Makefile.am: Fix dependencies, fixes parallel builds. Tiny patch from Graham Gower . 2010-11-19 Simon Josefsson * doc/Makefile.am: Remove file. 2010-11-19 Simon Josefsson * doc/manpages/Makefile.am: Generated. 2010-11-19 Nikos Mavrogiannopoulos * configure.ac, tests/suite/Makefile.in: Create Makefile in tests/suite/ 2010-11-19 Nikos Mavrogiannopoulos * src/cli.c, src/psk-gaa.c, src/psk-gaa.h, src/psk.c, src/psk.gaa, tests/Makefile.am, tests/netconf-psk.c: Deprecate the netconf password and use a key only. 2010-11-19 Nikos Mavrogiannopoulos * doc/credentials/gnutls-http-serv: correctly set psk params. 2010-11-16 Nikos Mavrogiannopoulos * NEWS: added info 2010-11-16 Nikos Mavrogiannopoulos * lib/x509/privkey_pkcs8.c: Correctly write DSA public key in ASN.1 (add leading zero). Reported by Jeffrey Walton. 2010-11-16 Nikos Mavrogiannopoulos * lib/x509/mpi.c: cleanups 2010-11-16 Nikos Mavrogiannopoulos * doc/cha-auth.texi, lib/includes/gnutls/compat.h, lib/includes/gnutls/gnutls.h.in: Deprecated the key derivation method from netconf. The published RFC does not include this method and it is not known whether it has been used at all in practice. No need to support it. 2010-11-16 Nikos Mavrogiannopoulos * NEWS, lib/gnutls_priority.c: Added SIGN-ALL, CTYPE-ALL, COMP-ALL, and VERS-TLS-ALL priority strings. 2010-11-11 Nikos Mavrogiannopoulos * lib/gnutls_x509.c: Removed redundant error check. Reported by Nicolas Kaiser. 2010-11-11 Nikos Mavrogiannopoulos * lib/includes/gnutls/pkcs11.h, lib/libgnutls.map, lib/pkcs11.c, src/p11tool-gaa.c, src/p11tool-gaa.h, src/p11tool.c, src/p11tool.gaa, src/p11tool.h, src/pkcs11.c: Added --list-mechanisms option to p11tool. Lists all mechanisms supported by a token. 2010-11-11 Nikos Mavrogiannopoulos * doc/manpages/Makefile.am, doc/manpages/p11tool.1: Added manpage for p11tool. 2010-11-11 Nikos Mavrogiannopoulos * doc/manpages/certtool.1, doc/manpages/gnutls-cli.1, doc/manpages/gnutls-serv.1, doc/manpages/srptool.1: Corrected my name. 2010-11-11 Nikos Mavrogiannopoulos * src/p11tool-gaa.c, src/p11tool.gaa: In p11tool --url was renamed to --export. 2010-11-11 Nikos Mavrogiannopoulos * src/p11tool-gaa.c, src/p11tool-gaa.h, src/p11tool.gaa, src/pkcs11.c: Corrected bug in secret key copy. Rationalized the --help of p11tool. 2010-11-11 Nikos Mavrogiannopoulos * lib/pkcs11.c, lib/pkcs11_secret.c: * Corrected flag conversion to internal representation. * When generating secret keys include a generic key type and a random ID. 2010-11-11 Nikos Mavrogiannopoulos * src/p11tool-gaa.c, src/p11tool-gaa.h, src/p11tool.gaa: Added option --no-detailed-url to p11tool. More detailed url is the default now. 2010-11-07 Nikos Mavrogiannopoulos * NEWS, lib/Makefile.am, lib/includes/gnutls/pkcs11.h, lib/libgnutls.map, lib/pkcs11.c, lib/pkcs11_int.h, lib/pkcs11_secret.c, lib/pkcs11_write.c, src/pkcs11.c: Added gnutls_pkcs11_token_set_pin() and gnutls_pkcs11_token_init() to enable manipulating tokens purely from PKCS #11. 2010-11-07 Nikos Mavrogiannopoulos * doc/README.gaa: Removed README.gaa. 2010-11-07 Nikos Mavrogiannopoulos * .gitignore, src/Makefile.am, src/certtool-common.c, src/certtool-common.h, src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa, src/p11tool-gaa.c, src/p11tool-gaa.h, src/p11tool.c, src/p11tool.gaa, src/p11tool.h, src/pkcs11.c: Introduced p11tool to separate PKCS #11 functionality from certtool. 2010-11-07 Nikos Mavrogiannopoulos * tests/Makefile.am, tests/finished.c: Removed check on deprecated feature (finished). 2010-11-04 Nikos Mavrogiannopoulos * lib/includes/gnutls/compat.h, lib/includes/gnutls/gnutls.h.in: Deprecated old functions. 2010-11-01 Nikos Mavrogiannopoulos * doc/cha-intro-tls.texi: use @code for SAFE_RENEGOTIATION string. 2010-06-07 Simon Josefsson * lib/gnutls_priority.c: Doc fix. 2010-10-16 Simon Josefsson * .gitignore: Add. 2010-10-16 Nikos Mavrogiannopoulos * tests/Makefile.am, tests/safe-renegotiation/Makefile.am, tests/safe-renegotiation/params.dh, tests/safe-renegotiation/testsrn, tests/suite/Makefile.am, tests/suite/README, tests/suite/eagain, tests/suite/ecore/eina_config.h, tests/suite/ecore/src/include/Eina.h, tests/suite/ecore/src/include/eina_accessor.h, tests/suite/ecore/src/include/eina_array.h, tests/suite/ecore/src/include/eina_benchmark.h, tests/suite/ecore/src/include/eina_binshare.h, tests/suite/ecore/src/include/eina_config.h, tests/suite/ecore/src/include/eina_convert.h, tests/suite/ecore/src/include/eina_counter.h, tests/suite/ecore/src/include/eina_cpu.h, tests/suite/ecore/src/include/eina_error.h, tests/suite/ecore/src/include/eina_file.h, tests/suite/ecore/src/include/eina_fp.h, tests/suite/ecore/src/include/eina_hamster.h, tests/suite/ecore/src/include/eina_hash.h, tests/suite/ecore/src/include/eina_inline_array.x, tests/suite/ecore/src/include/eina_inline_f16p16.x, tests/suite/ecore/src/include/eina_inline_f32p32.x, tests/suite/ecore/src/include/eina_inline_f8p24.x, tests/suite/ecore/src/include/eina_inline_fp.x, tests/suite/ecore/src/include/eina_inline_hash.x, tests/suite/ecore/src/include/eina_inline_list.x, tests/suite/ecore/src/include/eina_inline_log.x, tests/suite/ecore/src/include/eina_inline_mempool.x, tests/suite/ecore/src/include/eina_inline_rbtree.x, tests/suite/ecore/src/include/eina_inline_rectangle.x, tests/suite/ecore/src/include/eina_inline_str.x, tests/suite/ecore/src/include/eina_inline_stringshare.x, tests/suite/ecore/src/include/eina_inline_tiler.x, tests/suite/ecore/src/include/eina_inline_trash.x, tests/suite/ecore/src/include/eina_inline_ustringshare.x, tests/suite/ecore/src/include/eina_inlist.h, tests/suite/ecore/src/include/eina_iterator.h, tests/suite/ecore/src/include/eina_lalloc.h, tests/suite/ecore/src/include/eina_list.h, tests/suite/ecore/src/include/eina_log.h, tests/suite/ecore/src/include/eina_magic.h, tests/suite/ecore/src/include/eina_main.h, tests/suite/ecore/src/include/eina_matrixsparse.h, tests/suite/ecore/src/include/eina_mempool.h, tests/suite/ecore/src/include/eina_module.h, tests/suite/ecore/src/include/eina_quadtree.h, tests/suite/ecore/src/include/eina_rbtree.h, tests/suite/ecore/src/include/eina_rectangle.h, tests/suite/ecore/src/include/eina_safety_checks.h, tests/suite/ecore/src/include/eina_sched.h, tests/suite/ecore/src/include/eina_str.h, tests/suite/ecore/src/include/eina_strbuf.h, tests/suite/ecore/src/include/eina_stringshare.h, tests/suite/ecore/src/include/eina_tiler.h, tests/suite/ecore/src/include/eina_trash.h, tests/suite/ecore/src/include/eina_types.h, tests/suite/ecore/src/include/eina_unicode.h, tests/suite/ecore/src/include/eina_ustrbuf.h, tests/suite/ecore/src/include/eina_ustringshare.h, tests/suite/ecore/src/lib/Ecore.h, tests/suite/ecore/src/lib/Ecore_Getopt.h, tests/suite/ecore/src/lib/ecore.c, tests/suite/ecore/src/lib/ecore_anim.c, tests/suite/ecore/src/lib/ecore_app.c, tests/suite/ecore/src/lib/ecore_events.c, tests/suite/ecore/src/lib/ecore_exe.c, tests/suite/ecore/src/lib/ecore_getopt.c, tests/suite/ecore/src/lib/ecore_glib.c, tests/suite/ecore/src/lib/ecore_idle_enterer.c, tests/suite/ecore/src/lib/ecore_idle_exiter.c, tests/suite/ecore/src/lib/ecore_idler.c, tests/suite/ecore/src/lib/ecore_job.c, tests/suite/ecore/src/lib/ecore_main.c, tests/suite/ecore/src/lib/ecore_pipe.c, tests/suite/ecore/src/lib/ecore_poll.c, tests/suite/ecore/src/lib/ecore_private.h, tests/suite/ecore/src/lib/ecore_signal.c, tests/suite/ecore/src/lib/ecore_thread.c, tests/suite/ecore/src/lib/ecore_time.c, tests/suite/ecore/src/lib/ecore_timer.c, tests/suite/ecore/src/lib/eina_accessor.c, tests/suite/ecore/src/lib/eina_array.c, tests/suite/ecore/src/lib/eina_benchmark.c, tests/suite/ecore/src/lib/eina_binshare.c, tests/suite/ecore/src/lib/eina_chained_mempool.c, tests/suite/ecore/src/lib/eina_convert.c, tests/suite/ecore/src/lib/eina_counter.c, tests/suite/ecore/src/lib/eina_cpu.c, tests/suite/ecore/src/lib/eina_error.c, tests/suite/ecore/src/lib/eina_file.c, tests/suite/ecore/src/lib/eina_fp.c, tests/suite/ecore/src/lib/eina_hamster.c, tests/suite/ecore/src/lib/eina_hash.c, tests/suite/ecore/src/lib/eina_inlist.c, tests/suite/ecore/src/lib/eina_iterator.c, tests/suite/ecore/src/lib/eina_lalloc.c, tests/suite/ecore/src/lib/eina_list.c, tests/suite/ecore/src/lib/eina_log.c, tests/suite/ecore/src/lib/eina_magic.c, tests/suite/ecore/src/lib/eina_main.c, tests/suite/ecore/src/lib/eina_matrixsparse.c, tests/suite/ecore/src/lib/eina_mempool.c, tests/suite/ecore/src/lib/eina_module.c, tests/suite/ecore/src/lib/eina_private.h, tests/suite/ecore/src/lib/eina_quadtree.c, tests/suite/ecore/src/lib/eina_rbtree.c, tests/suite/ecore/src/lib/eina_rectangle.c, tests/suite/ecore/src/lib/eina_safety_checks.c, tests/suite/ecore/src/lib/eina_sched.c, tests/suite/ecore/src/lib/eina_share_common.c, tests/suite/ecore/src/lib/eina_share_common.h, tests/suite/ecore/src/lib/eina_str.c, tests/suite/ecore/src/lib/eina_strbuf.c, tests/suite/ecore/src/lib/eina_strbuf_common.c, tests/suite/ecore/src/lib/eina_strbuf_common.h, tests/suite/ecore/src/lib/eina_strbuf_template_c.x, tests/suite/ecore/src/lib/eina_stringshare.c, tests/suite/ecore/src/lib/eina_tiler.c, tests/suite/ecore/src/lib/eina_unicode.c, tests/suite/ecore/src/lib/eina_ustrbuf.c, tests/suite/ecore/src/lib/eina_ustringshare.c, tests/suite/ecore/src/lib/eina_value.c, tests/suite/mini-eagain2.c, tests/suite/params.dh, tests/suite/testsrn: Added tests/suite which contains tests to be executed during development time and will not be distributed (not included in make dist). Added "ecore" and a new mini-eagain to test EAGAIN behavior. 2010-10-16 Nikos Mavrogiannopoulos * .gitignore: updated .gitignore. 2010-10-16 Simon Josefsson * NEWS, src/common.c: gnutls-cli: Print channel binding only in verbose mode. Before it printed it after the 'Compression:' output, thus breaking Emacs starttls.el string searches. 2010-10-15 Simon Josefsson * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, libextra/configure.ac: Bump versions. 2010-10-15 Simon Josefsson * ChangeLog: Generated. 2010-10-15 Simon Josefsson * NEWS: Version 2.11.4. 2010-10-15 Simon Josefsson * lib/libgnutls.map: Rename new symbol prefix after next stable branch instead of development branch. 2010-10-15 Simon Josefsson * NEWS: Add. 2010-10-15 Simon Josefsson * NEWS, doc/cha-bib.texi, doc/cha-gtls-app.texi: Document channel binding API. 2010-10-15 Simon Josefsson * lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_state.c, src/common.c: Implement RFC 5929 tls-unique channel binding. 2010-10-14 Simon Josefsson * NEWS, doc/manpages/Makefile.am, lib/gnutls_errors.c, lib/gnutls_state.c, lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map: Add gnutls_session_channel_binding API. 2010-10-14 Simon Josefsson * doc/manpages/Makefile.am: Generated. 2010-10-14 Simon Josefsson * NEWS: Add. 2010-10-14 Simon Josefsson * tests/Makefile.am, tests/gendh.c: Add self test gendh to check DH generation. 2010-10-14 Simon Josefsson * tests/openpgp-auth.c: Fix compiler warnings. 2010-10-14 Simon Josefsson * guile/tests/Makefile.am, guile/tests/anonymous-auth.scm, guile/tests/dh-parameters.pem, guile/tests/openpgp-auth.scm, guile/tests/pkcs-import-export.scm, guile/tests/session-record-port.scm, guile/tests/x509-auth.scm: Don't generate DH primes in Guile self checks (for speed). 2010-10-14 Simon Josefsson * tests/userid/userid: Cleanup, fixing distcheck. 2010-10-14 Simon Josefsson * tests/openpgp-auth.c: Make it work with srcdir != objdir. 2010-10-14 Simon Josefsson * doc/reference/gnutls-docs.sgml: Improve GTK-DOC manual. 2010-10-14 Simon Josefsson * NEWS: Add. 2010-10-14 Simon Josefsson * .x-sc_two_space_separator_in_usage, lib/cryptodev.c, lib/m4/hooks.m4, lib/pakchois/pakchois11.h: Fix syntax-check warning. 2010-10-14 Simon Josefsson * build-aux/gendocs.sh, build-aux/pmccabe2html, doc/fdl-1.3.texi, gl/Makefile.am, gl/arpa_inet.in.h, gl/errno.in.h, gl/float.in.h, gl/ftello.c, gl/getaddrinfo.c, gl/m4/errno_h.m4, gl/m4/error.m4, gl/m4/float_h.m4, gl/m4/ftello.m4, gl/m4/getpagesize.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/hostent.m4, gl/m4/include_next.m4, gl/m4/intmax_t.m4, gl/m4/inttypes_h.m4, gl/m4/lib-ld.m4, gl/m4/lib-link.m4, gl/m4/lseek.m4, gl/m4/malloc.m4, gl/m4/memchr.m4, gl/m4/minmax.m4, gl/m4/printf.m4, gl/m4/realloc.m4, gl/m4/servent.m4, gl/m4/size_max.m4, gl/m4/socketlib.m4, gl/m4/sockets.m4, gl/m4/socklen.m4, gl/m4/sockpfaf.m4, gl/m4/stdarg.m4, gl/m4/stdbool.m4, gl/m4/stdint.m4, gl/m4/stdint_h.m4, gl/m4/stdlib_h.m4, gl/m4/time_h.m4, gl/m4/wchar_t.m4, gl/m4/wint_t.m4, gl/malloc.c, gl/netdb.in.h, gl/netinet_in.in.h, gl/read-file.c, gl/realloc.c, gl/select.c, gl/stdarg.in.h, gl/stddef.in.h, gl/stdint.in.h, gl/stdio.in.h, gl/stdlib.in.h, gl/strerror.c, gl/string.in.h, gl/sys_select.in.h, gl/sys_socket.in.h, gl/sys_stat.in.h, gl/sys_time.in.h, gl/tests/Makefile.am, gl/tests/binary-io.h, gl/tests/getpagesize.c, gl/tests/init.sh, gl/tests/sys_ioctl.in.h, gl/tests/test-binary-io.c, gl/tests/test-binary-io.sh, gl/tests/test-ftello.c, gl/tests/test-ftello.sh, gl/tests/test-ftello2.sh, gl/tests/test-ftello3.c, gl/tests/test-getaddrinfo.c, gl/tests/test-memchr.c, gl/tests/test-netdb.c, gl/tests/test-read-file.c, gl/tests/test-stdbool.c, gl/tests/test-stddef.c, gl/tests/test-stdlib.c, gl/tests/test-sys_socket.c, gl/tests/test-sys_wait.h, gl/tests/test-update-copyright.sh, gl/tests/test-vc-list-files-cvs.sh, gl/tests/test-vc-list-files-git.sh, gl/tests/test-verify.c, gl/time.in.h, gl/timespec.h, gl/unistd.in.h, gl/wchar.in.h, lib/build-aux/config.rpath, lib/gl/Makefile.am, lib/gl/errno.in.h, lib/gl/float.in.h, lib/gl/ftello.c, lib/gl/m4/codeset.m4, lib/gl/m4/errno_h.m4, lib/gl/m4/fcntl-o.m4, lib/gl/m4/float_h.m4, lib/gl/m4/ftello.m4, lib/gl/m4/getpagesize.m4, lib/gl/m4/gettext.m4, lib/gl/m4/gnulib-cache.m4, lib/gl/m4/gnulib-comp.m4, lib/gl/m4/iconv.m4, lib/gl/m4/include_next.m4, lib/gl/m4/intdiv0.m4, lib/gl/m4/intl.m4, lib/gl/m4/intlmacosx.m4, lib/gl/m4/intmax.m4, lib/gl/m4/intmax_t.m4, lib/gl/m4/inttypes-pri.m4, lib/gl/m4/inttypes_h.m4, lib/gl/m4/lcmessage.m4, lib/gl/m4/ld-version-script.m4, lib/gl/m4/lib-ld.m4, lib/gl/m4/lib-link.m4, lib/gl/m4/lock.m4, lib/gl/m4/lseek.m4, lib/gl/m4/malloc.m4, lib/gl/m4/memchr.m4, lib/gl/m4/memmem.m4, lib/gl/m4/minmax.m4, lib/gl/m4/printf-posix.m4, lib/gl/m4/printf.m4, lib/gl/m4/progtest.m4, lib/gl/m4/realloc.m4, lib/gl/m4/size_max.m4, lib/gl/m4/socketlib.m4, lib/gl/m4/sockets.m4, lib/gl/m4/socklen.m4, lib/gl/m4/sockpfaf.m4, lib/gl/m4/stdbool.m4, lib/gl/m4/stdint.m4, lib/gl/m4/stdint_h.m4, lib/gl/m4/stdlib_h.m4, lib/gl/m4/threadlib.m4, lib/gl/m4/time_h.m4, lib/gl/m4/visibility.m4, lib/gl/m4/wchar_t.m4, lib/gl/m4/wint_t.m4, lib/gl/malloc.c, lib/gl/netdb.in.h, lib/gl/read-file.c, lib/gl/realloc.c, lib/gl/stddef.in.h, lib/gl/stdint.in.h, lib/gl/stdio.in.h, lib/gl/stdlib.in.h, lib/gl/str-two-way.h, lib/gl/string.in.h, lib/gl/strings.in.h, lib/gl/sys_socket.in.h, lib/gl/sys_stat.in.h, lib/gl/tests/Makefile.am, lib/gl/tests/binary-io.h, lib/gl/tests/getpagesize.c, lib/gl/tests/init.sh, lib/gl/tests/test-binary-io.c, lib/gl/tests/test-binary-io.sh, lib/gl/tests/test-ftello.c, lib/gl/tests/test-ftello.sh, lib/gl/tests/test-ftello2.sh, lib/gl/tests/test-ftello3.c, lib/gl/tests/test-memchr.c, lib/gl/tests/test-netdb.c, lib/gl/tests/test-read-file.c, lib/gl/tests/test-stdbool.c, lib/gl/tests/test-stddef.c, lib/gl/tests/test-stdlib.c, lib/gl/tests/test-sys_socket.c, lib/gl/tests/test-sys_wait.h, lib/gl/tests/test-verify.c, lib/gl/time.in.h, lib/gl/unistd.in.h, lib/gl/wchar.in.h, libextra/gl/gnulib.mk, libextra/gl/m4/gnulib-cache.m4, libextra/gl/m4/gnulib-comp.m4, libextra/gl/m4/ld-version-script.m4, libextra/gl/m4/lib-ld.m4, libextra/gl/m4/lib-link.m4, maint.mk: Update gnulib files. 2010-10-14 Simon Josefsson * cfg.mk: Don't assume chmod +x on gendocs.sh. 2010-10-14 Simon Josefsson * cfg.mk: Use gnulib --add-import. 2010-10-14 Simon Josefsson * .gitignore: Sort and update. 2010-10-14 Simon Josefsson * lib/po/nl.po.in: Sync with TP. 2010-10-14 Simon Josefsson * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, libextra/configure.ac: Bump versions. 2010-10-14 Simon Josefsson * ChangeLog: Generated. 2010-10-14 Simon Josefsson * NEWS: Version 2.11.3. 2010-10-14 Simon Josefsson * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, libextra/configure.ac: Bump versions. 2010-10-14 Simon Josefsson * doc/errcodes.c, doc/examples/ex-alert.c, doc/examples/ex-cert-select-pkcs11.c, doc/examples/ex-cert-select.c, doc/examples/ex-client-psk.c, doc/examples/ex-client-resume.c, doc/examples/ex-client-srp.c, doc/examples/ex-client-tlsia.c, doc/examples/ex-client1.c, doc/examples/ex-client2.c, doc/examples/ex-crq.c, doc/examples/ex-pkcs12.c, doc/examples/ex-rfc2818.c, doc/examples/ex-serv-anon.c, doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-psk.c, doc/examples/ex-serv-srp.c, doc/examples/ex-serv1.c, doc/examples/ex-session-info.c, doc/examples/ex-verify.c, doc/examples/ex-x509-info.c, doc/examples/examples.h, doc/examples/tcp.c, guile/src/core.c, guile/src/errors.c, guile/src/extra.c, guile/src/utils.c, guile/src/utils.h, lib/auth_cert.c, lib/auth_cert.h, lib/auth_dh_common.c, lib/auth_dh_common.h, lib/auth_psk.h, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/auth_srp.c, lib/auth_srp.h, lib/crypto-api.c, lib/crypto.h, lib/cryptodev.c, lib/debug.c, lib/debug.h, lib/ext_cert_type.c, lib/ext_max_record.c, lib/ext_safe_renegotiation.c, lib/ext_safe_renegotiation.h, lib/ext_server_name.c, lib/ext_server_name.h, lib/ext_session_ticket.c, lib/ext_session_ticket.h, lib/ext_signature.c, lib/ext_signature.h, lib/ext_srp.c, lib/ext_srp.h, lib/gcrypt/init.c, lib/gcrypt/mpi.c, lib/gcrypt/pk.c, lib/gnutls_alert.c, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_auth.h, lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, lib/gnutls_compress.c, lib/gnutls_compress.h, lib/gnutls_constate.c, lib/gnutls_constate.h, lib/gnutls_datum.h, lib/gnutls_dh.h, lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_extensions.c, lib/gnutls_extensions.h, lib/gnutls_global.c, lib/gnutls_global.h, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_mbuffers.c, lib/gnutls_mbuffers.h, lib/gnutls_mem.h, lib/gnutls_mpi.h, lib/gnutls_num.h, lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_priority.c, lib/gnutls_privkey.c, lib/gnutls_pubkey.c, lib/gnutls_record.c, lib/gnutls_record.h, lib/gnutls_session_pack.c, lib/gnutls_sig.c, lib/gnutls_sig.h, lib/gnutls_srp.c, lib/gnutls_state.c, lib/gnutls_state.h, lib/gnutls_str.c, lib/gnutls_str.h, lib/gnutls_supplemental.c, lib/gnutls_supplemental.h, lib/gnutls_x509.c, lib/includes/gnutls/abstract.h, lib/includes/gnutls/compat.h, lib/includes/gnutls/crypto.h, lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/gnutlsxx.h, lib/includes/gnutls/openpgp.h, lib/includes/gnutls/pkcs11.h, lib/includes/gnutls/pkcs12.h, lib/includes/gnutls/x509.h, lib/locks.c, lib/locks.h, lib/nettle/cipher.c, lib/nettle/egd.c, lib/nettle/egd.h, lib/nettle/init.c, lib/nettle/mac.c, lib/nettle/mpi.c, lib/nettle/pk.c, lib/nettle/rnd.c, lib/opencdk/armor.c, lib/opencdk/hash.c, lib/opencdk/kbnode.c, lib/opencdk/keydb.c, lib/opencdk/literal.c, lib/opencdk/main.c, lib/opencdk/misc.c, lib/opencdk/new-packet.c, lib/opencdk/pubkey.c, lib/opencdk/read-packet.c, lib/opencdk/seskey.c, lib/opencdk/sig-check.c, lib/opencdk/stream.c, lib/opencdk/types.h, lib/opencdk/verify.c, lib/openpgp/gnutls_openpgp.c, lib/openpgp/openpgp_int.h, lib/openpgp/output.c, lib/openpgp/pgp.c, lib/openpgp/privkey.c, lib/pakchois/dlopen.c, lib/pakchois/dlopen.h, lib/pakchois/errors.c, lib/pakchois/pakchois.c, lib/pakchois/pakchois.h, lib/pakchois/pakchois11.h, lib/pkcs11.c, lib/pkcs11_int.h, lib/pkcs11_privkey.c, lib/pkcs11_write.c, lib/random.c, lib/random.h, lib/system.c, lib/system.h, lib/x509/common.c, lib/x509/common.h, lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/dn.c, lib/x509/mpi.c, lib/x509/output.c, lib/x509/privkey.c, lib/x509/sign.c, lib/x509/sign.h, lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509_int.h, lib/x509/x509_write.c, lib/x509_b64.c, libextra/ext_inner_application.c, libextra/ext_inner_application.h, libextra/gnutls_extra.c, libextra/gnutls_ia.c, libextra/includes/gnutls/extra.h, libextra/openssl_compat.h, src/benchmark.c, src/certtool-cfg.h, src/certtool-common.h, src/certtool.c, src/cli.c, src/common.c, src/common.h, src/crypt.c, src/pkcs11.c, src/prime.c, src/psk.c, src/serv.c, src/tests.c, tests/anonself.c, tests/certder.c, tests/certificate_set_x509_crl.c, tests/certuniqueid.c, tests/chainverify.c, tests/crq_apis.c, tests/crq_key_id.c, tests/crypto_rng.c, tests/cve-2008-4989.c, tests/cve-2009-1415.c, tests/cve-2009-1416.c, tests/dhepskself.c, tests/dn.c, tests/dn2.c, tests/finished.c, tests/gc.c, tests/hostname-check.c, tests/init_roundtrip.c, tests/mini-eagain.c, tests/mini-x509-rehandshake.c, tests/mini-x509.c, tests/mini.c, tests/moredn.c, tests/mpi.c, tests/netconf-psk.c, tests/nul-in-x509-names.c, tests/openpgp-auth.c, tests/openpgp-keyring.c, tests/openpgpself.c, tests/openssl.c, tests/parse_ca.c, tests/pgps2kgnu.c, tests/pkcs12_encode.c, tests/pkcs12_s2k.c, tests/pkcs12_s2k_pem.c, tests/pskself.c, tests/resume.c, tests/safe-renegotiation/srn0.c, tests/safe-renegotiation/srn1.c, tests/safe-renegotiation/srn2.c, tests/safe-renegotiation/srn3.c, tests/safe-renegotiation/srn4.c, tests/safe-renegotiation/srn5.c, tests/set_pkcs12_cred.c, tests/setcredcrash.c, tests/simple.c, tests/tlsia.c, tests/utils.c, tests/utils.h, tests/x509_altname.c, tests/x509dn.c, tests/x509self.c, tests/x509sign-verify.c: Indent (using GNU indent 2.2.11). 2010-10-08 Nikos Mavrogiannopoulos * NEWS, configure.ac, lib/m4/hooks.m4: bumped version 2010-10-08 Nikos Mavrogiannopoulos * src/certtool.c: Revert "Applied last patch of Micah Anderson on IKE status." This reverts commit a6b2f5ce7316b4774649ee9b421da2ee7fef461f. 2010-10-08 Nikos Mavrogiannopoulos * libextra/fipsmd5.c: removed unneeded code. 2010-10-08 Nikos Mavrogiannopoulos * src/certtool.c: Applied last patch of Micah Anderson on IKE status. 2010-10-02 Nikos Mavrogiannopoulos * src/certtool.c: Applied patch on IKE extension by Micah Anderson 2010-10-02 Nikos Mavrogiannopoulos * lib/cryptodev.c, lib/gcrypt/mac.c, lib/gnutls_hash_int.c, lib/includes/gnutls/crypto.h, lib/nettle/mac.c: Updated cryptodev code to support the linux cryptodev extensions. Removed the clone() capability from HMAC. It was never used and having it prevents using it with hardware accelerators that might not have this capability. 2010-09-29 Nikos Mavrogiannopoulos * THANKS: Added Micah 2010-10-01 Simon Josefsson * doc/cha-cert-auth.texi, doc/cha-internals.texi, doc/cha-library.texi, lib/ext_safe_renegotiation.c, lib/ext_server_name.c, lib/gcrypt/init.c, lib/gnutls_record.c, lib/gnutls_str.c, lib/locks.c, lib/nettle/egd.c, lib/nettle/init.c, lib/system.c, lib/system.h, libextra/ext_inner_application.c, src/certtool-common.h, src/common.c, src/pkcs11.c: Fix some syntax-check errors. 2010-10-01 Simon Josefsson * lib/gnutls_int.h, lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/pkcs11.h: Fix compiler warnings. 2010-10-01 Simon Josefsson * NEWS, doc/manpages/Makefile.am: Mention new APIs. 2010-09-30 Simon Josefsson * tests/openpgp-certs/testselfsigs: Avoid bashism. Reported by m.drochner@fz-juelich.de in . 2010-09-30 Simon Josefsson * lib/crypto-api.c: Don't return from void functions. Reported by Dagobert Michelsen in . 2010-09-30 Simon Josefsson * lib/includes/gnutls/gnutls.h.in: Remove spurious comma. 2010-09-30 Simon Josefsson * lib/includes/gnutls/x509.h: Remove spurious comma. 2010-09-30 Simon Josefsson * tests/pkcs8-decode/Makefile.am, tests/pkcs8-decode/pkcs8: Make pkcs8-decode test work on Windows. 2010-09-29 Nikos Mavrogiannopoulos * NEWS: updated 2010-09-29 Nikos Mavrogiannopoulos * lib/ext_session_ticket.c: treat absence of parameters the same as having them disabled. 2010-09-29 Nikos Mavrogiannopoulos * tests/resume.c: Corrected behavior on failure (don't crash). 2010-09-29 Nikos Mavrogiannopoulos * lib/ext_session_ticket.c, lib/gnutls_extensions.c: Corrected bugs when restoring extensions during session resumtion. 2010-09-29 Nikos Mavrogiannopoulos * lib/gnutls_extensions.c: Use more informative logging for extensions. 2010-09-29 Micah Anderson * NEWS, doc/certtool.cfg, doc/cha-programs.texi, lib/includes/gnutls/x509.h, lib/x509/output.c, src/certtool-cfg.c, src/certtool-cfg.h, src/certtool.c: Add new extended key usage ipsecIKE According to RFC 4945 § 5.1.3.12 section title "ExtendedKeyUsage"[0] the following extended key usage has been added: ... this document defines an ExtendedKeyUsage keyPurposeID that MAY be used to limit a certificate's use: id-kp-ipsecIKE OBJECT IDENTIFIER ::= { id-kp 17 } where id-kp is defined in RFC 3280 [5]. If a certificate is intended to be used with both IKE and other applications, and one of the other applications requires use of an EKU value, then such certificates MUST contain either the keyPurposeID id-kp-ipsecIKE or anyExtendedKeyUsage [5], as well as the keyPurposeID values associated with the other applications. Similarly, if a CA issues multiple otherwise-similar certificates for multiple applications including IKE, and it is intended that the IKE certificate NOT be used with another application, the IKE certificate MAY contain an EKU extension listing a keyPurposeID of id-kp-ipsecIKE to discourage its use with the other application. Recall, however, that EKU extensions in certificates meant for use in IKE are NOT RECOMMENDED. Conforming IKE implementations are not required to support EKU. If a critical EKU extension appears in a certificate and EKU is not supported by the implementation, then RFC 3280 requires that the certificate be rejected. Implementations that do support EKU MUST support the following logic for certificate validation: o If no EKU extension, continue. o If EKU present AND contains either id-kp-ipsecIKE or anyExtendedKeyUsage, continue. o Otherwise, reject cert. Signed-off-by: Nikos Mavrogiannopoulos 2010-09-27 Nikos Mavrogiannopoulos * NEWS, src/certtool-gaa.c, src/certtool.gaa: --pkcs11-* in certtool was renamed to --p11-*. 2010-09-25 Nikos Mavrogiannopoulos * lib/ext_session_ticket.c: Added some comments and removed unused code. 2010-09-25 Nikos Mavrogiannopoulos * NEWS, lib/ext_session_ticket.c: Corrected advertizing issue for session tickets. 2010-09-24 Nikos Mavrogiannopoulos * doc/TODO: cleanup of TODO list. Removed very old entries, entries already fixed and added new ones. 2010-09-24 Nikos Mavrogiannopoulos * lib/gnutls_handshake.c: IMED_RET parameters are easier to grasp. 2010-09-24 Nikos Mavrogiannopoulos * lib/crypto.c, lib/gcrypt/cipher.c, lib/gcrypt/mac.c, lib/nettle/cipher.c, lib/nettle/mac.c: cipher,mac and digest priorities moved to crypto.c 2010-09-23 Nikos Mavrogiannopoulos * lib/gnutls_errors.c: changed the fatality level of some errors. 2010-09-23 Nikos Mavrogiannopoulos * lib/gnutls_handshake.c: No longer use is_fatal() during handshake. Explicitely treat EAGAIN and INTERRUPTED as non-fatal during handshake. If the check_fatal flag is set then GNUTLS_E_WARNING_ALERT_RECEIVED could interrupt a handshake as well. 2010-09-23 Nikos Mavrogiannopoulos * src/cli.c: fflush stdout and stderr before the call to setbuf. This fixes issue in solaris where lines dissappeared from output. Reported and suggested fix by Knut Anders Hatlen. 2010-09-20 Nikos Mavrogiannopoulos * NEWS: documented change 2010-09-19 Nikos Mavrogiannopoulos * lib/nettle/pk.c: Corrected bug in wrap_nettle_pk_fixup that was importing DSA keys are RSA ones. 2010-09-19 Nikos Mavrogiannopoulos * lib/nettle/pk.c, lib/openpgp/privkey.c: indented some code 2010-09-19 Nikos Mavrogiannopoulos * lib/m4/hooks.m4: updated revision 2010-09-18 Ludovic Courtès * .gitignore, tests/Makefile.am, tests/openpgp-auth.c: Add an OpenPGP authentication unit test. * tests/Makefile.am (ctests)[ENABLE_OPENPGP]: Add `openpgp-auth'. (TESTS_ENVIRONMENT): Add `srcdir'. * tests/openpgp-auth.c: New file. Signed-off-by: Nikos Mavrogiannopoulos 2010-09-16 Jonathan Bastien-Filiatrault * lib/ext_session_ticket.c, lib/gnutls_alert.c, lib/gnutls_buffers.c, lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_compress.c, lib/gnutls_compress.h, lib/gnutls_constate.c, lib/gnutls_constate.h, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_num.h, lib/gnutls_record.c, lib/gnutls_record.h, lib/gnutls_session_pack.c, lib/gnutls_state.c, libextra/gnutls_ia.c: Explicit symmetric cipher state versionning. This introduces the concept of a "cipher epoch". The epoch number is the number of successful handshakes and is incremented by one each time. This concept is native to DTLS and this patch makes the symmetric cipher state explicit for TLS in preparation for DTLS. This concept was implicit in plain TLS and ChangeCipherSpec messages triggered a "pending state copy". Now, we the current epoch number is simply incremented to the parameters negotiated by the handshake. The main side effects of this patch is a slightly more abstract internal API and, in some cases, simpler code. The session blob format is also changed a bit since this patch avoids storing information that is now redundant. If this breaks library users' expectations, this side effect can be negated. The cipher_specs structure has been removed. The conn_state has become record_state_st. Only symmetric cipher information is versioned. Things such as key exchange algorithm and the master secret are not versioned and their handling is unchanged. I have tested this patch as much as I could. It introduces no test suite regressions on my x64 Debian GNU/Linux system. Do not hesitate to point out shortcomings or suggest changes. Since this is a big diff, I am expecting this to be an iterative process. Signed-off-by: Jonathan Bastien-Filiatrault Signed-off-by: Nikos Mavrogiannopoulos 2010-09-16 Jonathan Bastien-Filiatrault * lib/gnutls_errors.h: Add gnutls_assert_val idiom. This warrants being made in an inline function or macro since it is used throughout the code. This converts 4 line repetitive blocks into 1 line. Signed-off-by: Jonathan Bastien-Filiatrault Signed-off-by: Nikos Mavrogiannopoulos 2010-09-14 Nikos Mavrogiannopoulos * AUTHORS, NEWS, configure.ac: updated for 2.11.1 2010-09-10 Nikos Mavrogiannopoulos * lib/includes/gnutls/pkcs11.h, lib/pkcs11.c, lib/pkcs11_int.h, lib/pkcs11_privkey.c, src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.gaa, src/pkcs11.c: Added 3 levels of details in PKCS #11 URLs. 1st level: Token level. Object is unique up to token. 2nd level: Object is unique up to token and module used to access it. 3rd level: Object is unique up to token and module and version of module used to access it. 2010-09-10 Nikos Mavrogiannopoulos * NEWS: Documented changes. 2010-09-10 Nikos Mavrogiannopoulos * lib/x509_b64.c: Be liberal in the PEM decoding. That is spaces and tabs are being skipped. 2010-09-08 Jonathan Bastien-Filiatrault * lib/gnutls_buffers.c: Fully mbufferize _gnutls_read and _gnutls_read_buffered. Signed-off-by: Jonathan Bastien-Filiatrault Signed-off-by: Nikos Mavrogiannopoulos 2010-09-08 Jonathan Bastien-Filiatrault * lib/gnutls_mbuffers.h: mbuffers: Add _mbuffer_xfree operation. Signed-off-by: Jonathan Bastien-Filiatrault Signed-off-by: Nikos Mavrogiannopoulos 2010-09-08 Jonathan Bastien-Filiatrault * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_state.c: mbuffers: make _gnutls_io_read_buffered use mbuffers. This will be needed by the DTLS code to make sure reads are stored in segments that correspond to datagram boundaries. Signed-off-by: Jonathan Bastien-Filiatrault Signed-off-by: Nikos Mavrogiannopoulos 2010-09-08 Jonathan Bastien-Filiatrault * lib/gnutls_int.h: Parenthesize size calculations. This is standard practice and the DTLS code got bit by this. Signed-off-by: Jonathan Bastien-Filiatrault Signed-off-by: Nikos Mavrogiannopoulos 2010-09-08 Jonathan Bastien-Filiatrault * lib/gnutls_mbuffers.c, lib/gnutls_mbuffers.h: mbuffers: Add mbuffer_linearize. Signed-off-by: Jonathan Bastien-Filiatrault Signed-off-by: Nikos Mavrogiannopoulos 2010-09-08 Jonathan Bastien-Filiatrault * lib/gnutls_mbuffers.c: mbuffers: fix wrong size calculation. maximum_size is the maximum size of the payload, not including overhead. Signed-off-by: Jonathan Bastien-Filiatrault Signed-off-by: Nikos Mavrogiannopoulos 2010-09-08 Jonathan Bastien-Filiatrault * lib/gnutls_mbuffers.c: mbuffers: Make _mbuffer_remove_bytes return a meaningful error code. Signed-off-by: Jonathan Bastien-Filiatrault Signed-off-by: Nikos Mavrogiannopoulos 2010-09-08 Jonathan Bastien-Filiatrault * lib/gnutls_mbuffers.c: mbuffers: Document the internal mbuffer API. After a year of not hacking GnuTLS, I needed to look at the code to know how mbuffers work. This will make it much easier for anybody not familiar with this code. Signed-off-by: Jonathan Bastien-Filiatrault Signed-off-by: Nikos Mavrogiannopoulos 2010-09-08 Nikos Mavrogiannopoulos * NEWS: updated NEWS. 2010-09-08 Nikos Mavrogiannopoulos * lib/includes/gnutls/pkcs11.h, lib/pkcs11.c, lib/pkcs11_int.h, lib/pkcs11_privkey.c, lib/pkcs11_write.c, src/certtool-common.h, src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa, src/pkcs11.c: PKCS#11 URL support updated to conform to draft-pechanec-pkcs11uri-02. Now in the URL the pkcs11 provider library (module) can be specified thus restricting objects within a single provider. 2010-09-01 Nikos Mavrogiannopoulos * NEWS, lib/gnutls_int.h, lib/gnutls_priority.c, lib/gnutls_record.c: When the %COMPAT flag is specified, larger records that would otherwise violate the TLS spec, are accepted. 2010-08-28 Brad Hards * src/certtool.c, src/pkcs11.c: Show which option is the default for command line tools. We use "y/N" is most places - this just adapts two places that use "Y/N" to match the behavior of read_yesno(). Signed-off-by: Nikos Mavrogiannopoulos 2010-08-20 Nikos Mavrogiannopoulos * lib/x509/x509.c: prevent a memory leak in the unique_id functions. 2010-08-20 Brad Hards * lib/includes/gnutls/x509.h, lib/libgnutls.map, lib/x509/output.c, lib/x509/x509.c, tests/Makefile.am, tests/certuniqueid.c: As identified in a previous mail, I've added support for accessing / displaying the subjectUniqueID and issuerUniqueID fields within an X.509 certificate. This is provided (along with a test case) in the attached patch. Signed-off-by: Nikos Mavrogiannopoulos 2010-08-20 Nikos Mavrogiannopoulos * NEWS, lib/gnutls_int.h: By default lowat is set to zero. 2010-08-19 Nikos Mavrogiannopoulos * lib/pkcs11.c: Revert "When scanning for terminator character for PKCS #11 URLs ignore escaped \;." This reverts commit 583fad076506421c9007a3349784496e2927dcd1. 2010-08-18 Nikos Mavrogiannopoulos * THANKS: Added Sjoerd. 2010-08-18 Nikos Mavrogiannopoulos * NEWS, lib/m4/hooks.m4: libnettle is the default crypto library. 2010-08-18 Nikos Mavrogiannopoulos * lib/gnutls_handshake.c: oldstate var removed. 2010-08-17 Nikos Mavrogiannopoulos * tests/mini-eagain.c: mini-eagain will fail with EAGAIN error one every two attempts. That is to remove probabilities. 2010-08-11 Sjoerd Simons * lib/gnutls_int.h, lib/gnutls_record.c: Remember the amount of user data we're sending out Partially reverts 3ef62950845f551ebc629e50d5ddf75f71b84294. gnutls_record_send needs to return the amount of user-data we sent, so we need to keep this information somewhere to return it when we succeed in sending that data. Signed-off-by: Nikos Mavrogiannopoulos 2010-08-11 Sjoerd Simons * lib/gnutls_handshake.c: Check whether the error is fatal in more cases When stressing the async API of gnutls a lot of internal errors are hit as IMED_RET clears the handshake hash buffers as a result of -EAGAIN even though it would never be re-initialized at that point, but is still needed in later stages. Signed-off-by: Nikos Mavrogiannopoulos 2010-08-11 Sjoerd Simons * lib/gnutls_handshake.c, lib/gnutls_int.h: Add state for flushing the handshake buffer A seperate state is needed between flushing the handshake buffers and sending the chipher spec change otherwise it's impossible to determine whether _gnutls_send_change_cipher_spec is called for the first time or again. Signed-off-by: Nikos Mavrogiannopoulos 2010-08-01 Simon Josefsson * lib/nettle/mpi.c: Fix warning. 2010-07-29 Nikos Mavrogiannopoulos * lib/m4/hooks.m4: Define HAVE_GCRYPT when using gcrypt. nettle is no longer marked as unsupported. 2010-07-29 Nikos Mavrogiannopoulos * NEWS, doc/manpages/Makefile.am, lib/gnutls_extensions.c, lib/m4/hooks.m4, lib/nettle/cipher.c, lib/nettle/mac.c, lib/nettle/pk.c, libextra/gnutls_extra.c: Added Camellia-128/256, SHA-224/384/512 and support for DSA2 when using nettle. 2010-07-28 Nikos Mavrogiannopoulos * lib/pkcs11.c: When scanning for terminator character for PKCS #11 URLs ignore escaped \;. 2010-07-26 Nikos Mavrogiannopoulos * lib/gnutls_priority.c: Modified the example to work in TLS 1.2. 2010-07-26 Nikos Mavrogiannopoulos * NEWS, lib/gnutls_algorithms.c: Added RSA_NULL_SHA1 and SHA256 ciphersuites. 2010-07-26 Nikos Mavrogiannopoulos * lib/ext_signature.c: When signature algorithms extension is not received allow SHA1 and SHA256. 2010-07-26 Nikos Mavrogiannopoulos * lib/gnutls_algorithms.c: NULL MAC renamed to MAC-NULL 2010-07-25 Simon Josefsson * src/common.c: Avoid fixed size buffers (now handles the big >100 SAN cert). 2010-07-25 Simon Josefsson * doc/manpages/Makefile.am: Generated. 2010-07-25 Simon Josefsson * NEWS: Re-add old NEWS entries. 2010-07-25 Simon Josefsson * lib/gnutls_buffers.c: Doc fix. 2010-07-24 Nikos Mavrogiannopoulos * lib/x509/privkey.c: Do not trust fbase64_decode to return 0 on success. 2010-07-24 Nikos Mavrogiannopoulos * NEWS, lib/gnutls_x509.c, lib/x509/privkey.c, src/certtool.c: gnutls_x509_privkey_import() will fallback to gnutls_x509_privkey_import_pkcs8() without a password, if it is unable to decode the key. 2010-07-24 Nikos Mavrogiannopoulos * lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/includes/gnutls/gnutls.h.in, lib/nettle/mpi.c, src/prime.c: Added GNUTLS_PK_DH to differentiate in the generation of parameters with PK_DSA that requires special treatment. 2010-07-24 Nikos Mavrogiannopoulos * lib/gnutls_algorithms.c: Corrected wrong descriptions of security levels. 2010-07-24 Nikos Mavrogiannopoulos * lib/gnutls_algorithms.c: use RSA-SHA1 as an indicator of RSA certificates. 2010-07-24 Nikos Mavrogiannopoulos * lib/gnutls_algorithms.c: Fix DSA key values to avoid generating normal and reporting them as low. 2010-07-23 Nikos Mavrogiannopoulos * NEWS, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/includes/gnutls/openpgp.h, lib/includes/gnutls/x509.h, lib/libgnutls.map, lib/nettle/mpi.c, lib/openpgp/privkey.c, lib/x509/privkey.c, src/certtool.c, tests/pathlen/no-ca-or-pathlen.pem: Better handling of security parameters to key sizes matching (via a single table). Added functions to return the security parameter of a private key. 2010-07-23 Nikos Mavrogiannopoulos * doc/cha-intro-tls.texi: Simplified documentation. 2010-07-23 Nikos Mavrogiannopoulos * lib/nettle/mpi.c: Follow ECRYPT II recommendations. 2010-07-23 Nikos Mavrogiannopoulos * NEWS, doc/cha-bib.texi, doc/cha-intro-tls.texi, lib/gnutls_algorithms.c: Updated documentation and gnutls_pk_params_t mappings to ECRYPT II recommendations. 2010-07-23 Nikos Mavrogiannopoulos * lib/gnutls_priority.c: HMAC-MD5 deprecated according to ECRYPT II yearly report (2009-2010) recommendations. 2010-07-23 Nikos Mavrogiannopoulos * tests/sha2/Makefile.am: added missing file key-subca-dsa.pem 2010-07-22 Nikos Mavrogiannopoulos * gtk-doc.make: ignore html errors otherwise make dist doesn't work. 2010-07-22 Nikos Mavrogiannopoulos * NEWS: updated NEWS 2010-07-22 Nikos Mavrogiannopoulos * src/certtool-common.h, src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: Added option for certtool to print certificate public key. 2010-07-21 Nikos Mavrogiannopoulos * lib/gnutls_algorithms.c: Added SIG_RSA_MD5_OID as an indicator of RSA. Some microsoft products were using it. Reported by Mads Kiilerich. 2010-07-19 Nikos Mavrogiannopoulos * lib/gnutls_algorithms.c, lib/x509/common.h: Added RSA with SHA224. 2010-07-17 Nikos Mavrogiannopoulos * lib/nettle/pk.c: Added blinding to RSA decryption AND signing. Will stay there until it is moved to nettle itself. 2010-07-11 Nikos Mavrogiannopoulos * lib/system.h: fixed 2010-07-11 Nikos Mavrogiannopoulos * NEWS, lib/nettle/Makefile.am, lib/nettle/egd.c, lib/nettle/egd.h, lib/nettle/rnd.c: Added support for EGD daemon in nettle's RNG. It is used if /dev/urandom is not present. 2010-07-11 Nikos Mavrogiannopoulos * lib/gnutls_buffers.c, lib/system.c, lib/system.h: Corrected the lowat behavior. Documented that it will be deprecated in later versions. 2010-07-11 Nikos Mavrogiannopoulos * src/serv.c: gnutls-serv: Do not print CR/LF if received, but instead print LF only. 2010-07-10 Nikos Mavrogiannopoulos * lib/Makefile.am, lib/gnutls_buffers.c, lib/gnutls_state.c, lib/locks.c, lib/locks.h, lib/pakchois/pakchois.c, lib/system.c, lib/system.h: system specific functions were moved to system.c 2010-07-10 Nikos Mavrogiannopoulos * NEWS, configure.ac, lib/gnutls_alert.c, lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_mbuffers.c, lib/gnutls_mbuffers.h, lib/gnutls_record.c, lib/gnutls_record.h, lib/gnutls_state.c, lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, libextra/gnutls_ia.c: Support scattered write using writev(). This takes advantage of the new buffering layer and allows queuing of packets and flushing them. This is currently used for handshake messages only. Performance-wise the difference of packing several TLS records in a single write doesn't seem to offer anything over ethernet (that my tests were on). Probably on links with higher latency there would be a benefit. 2010-07-08 Nikos Mavrogiannopoulos * doc/cha-gtls-app.texi: Removed old reference. 2010-07-08 Nikos Mavrogiannopoulos * doc/cha-gtls-app.texi, doc/examples/Makefile.am, doc/examples/ex-rfc2818.c: ex-rfc2818 is now a functional program demonstrating the verification procedure. 2010-07-08 Nikos Mavrogiannopoulos * doc/Makefile.am, doc/cha-gtls-app.texi, doc/examples/Makefile.am, doc/examples/ex-serv-export.c: Example with export ciphersuites was removed. 2010-07-08 Nikos Mavrogiannopoulos * lib/gnutls_pubkey.c: corrected typo 2010-07-07 Nikos Mavrogiannopoulos * lib/nettle/pk.c: Use the same "e" for RSA as libgcrypt. It's the fastest choice. 2010-07-05 Nikos Mavrogiannopoulos * src/certtool-cfg.c: Do not crash if input is redirected from /dev/null. 2010-07-05 Nikos Mavrogiannopoulos * NEWS, src/certtool-gaa.c, src/certtool.c, src/certtool.gaa: Changed the default pkcs-cipher to AES-128. Allowed specifying the 3des-pkcs12 cipher with the --pkcs-cipher option. 2010-07-04 Nikos Mavrogiannopoulos * src/benchmark.c: Use double to count bytes. 2010-07-04 Nikos Mavrogiannopoulos * lib/nettle/rnd.c: Added a windows version of the RNG. 2010-07-04 Nikos Mavrogiannopoulos * lib/nettle/rnd.c: Corrected locking usage in nettle's random subsystem. 2010-07-03 Nikos Mavrogiannopoulos * lib/gcrypt/Makefile.am, lib/gnutls_privkey.c, lib/gnutls_pubkey.c, lib/nettle/Makefile.am, lib/pakchois/dlopen.h: Fixed to compile under mingw32. 2010-07-03 Nikos Mavrogiannopoulos * lib/m4/hooks.m4: only warn if dlopen or pthreads are not found. 2010-07-03 Nikos Mavrogiannopoulos * lib/gcrypt/init.c, lib/includes/gnutls/gnutls.h.in, lib/locks.c, lib/pakchois/pakchois.c: Locks were converted to be in align with posix locks to easier wrap around them. 2010-07-03 Nikos Mavrogiannopoulos * lib/Makefile.am, lib/locks.c, lib/locks.h, lib/pakchois/dlopen.c, lib/pakchois/dlopen.h, lib/pakchois/pakchois.c: The included pakchois will use gnutls locks and will use a portable dlopen() to allow compilation in win32 (untested). 2010-07-03 Nikos Mavrogiannopoulos * lib/nettle/rnd.c: Read from /dev/urandom every 20 minutes. 2010-07-03 Nikos Mavrogiannopoulos * lib/Makefile.am, lib/x509/Makefile.am: Added missing files 2010-07-03 Nikos Mavrogiannopoulos * lib/crypto-api.c, lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, lib/includes/gnutls/crypto.h, lib/libgnutls.map: Allow encryption and decryption that are not in-place only. 2010-07-03 Nikos Mavrogiannopoulos * src/benchmark.c: Print values in a human-readable format and do the calculations in fixed time to prevent stalling in slow systems. 2010-07-02 Nikos Mavrogiannopoulos * lib/m4/hooks.m4: corrected library version 2010-07-02 Nikos Mavrogiannopoulos * doc/examples/ex-cert-select-pkcs11.c, lib/includes/gnutls/pkcs11.h, lib/pkcs11.c, lib/pkcs11_int.h, src/common.c, src/pkcs11.c: PIN callback supplies the token URL. The callback function in common.c will cache PIN if requested for second time. 2010-07-02 Nikos Mavrogiannopoulos * lib/gnutls_errors.c, lib/includes/gnutls/gnutls.h.in, lib/pkcs11.c, lib/pkcs11_int.h, lib/pkcs11_privkey.c, lib/pkcs11_write.c, src/common.c: Reverted the SAVE_PIN approach in PIN callback. The new approach will be to provide enough information for the callback to save the PIN itself. 2010-07-02 Nikos Mavrogiannopoulos * lib/gcrypt/init.c: removed unneeded function. 2010-07-02 Nikos Mavrogiannopoulos * lib/gnutls_cert.c: More uses of gnutls_certificate_free_ca_names 2010-07-02 Nikos Mavrogiannopoulos * lib/locks.c: Do not allow setting NULL lock functions 2010-07-02 Nikos Mavrogiannopoulos * lib/nettle/rnd.c: corrected lock usage. 2010-07-02 Nikos Mavrogiannopoulos * lib/m4/hooks.m4: bumped library version 2010-07-01 Nikos Mavrogiannopoulos * lib/includes/Makefile.am: Include abstract.h in releases. 2010-06-30 Nikos Mavrogiannopoulos * lib/crypto-api.c: Correctly deinitialize crypto API handles. 2010-06-29 Nikos Mavrogiannopoulos * lib/gnutls_int.h: commented obscure HANDSHAKE_MAC_TYPE_10 and HANDSHAKE_MAC_TYPE_12. 2010-06-29 Nikos Mavrogiannopoulos * lib/locks.c, lib/locks.h, lib/nettle/rnd.c: simplified locking code. Locking functions always exist but are dummies if no locks have been set. 2010-06-29 Nikos Mavrogiannopoulos * lib/gcrypt/Makefile.am, lib/gcrypt/init.c, lib/gnutls_errors.c, lib/gnutls_global.c, lib/gnutls_global.h, lib/includes/gnutls/gnutls.h.in, lib/locks.c, lib/locks.h, lib/nettle/Makefile.am, lib/nettle/init.c, lib/nettle/rnd.c: Initialization of crypto libraries moved outside main gnutls code. 2010-06-29 Nikos Mavrogiannopoulos * lib/Makefile.am, lib/gnutls_global.c, lib/gnutls_global.h, lib/locks.c, lib/locks.h: Moved locking code to special file. 2010-06-29 Simon Josefsson * doc/Makefile.am, doc/pkcs11-vision.eps: Add pkcs11-vision rules. 2010-06-29 Simon Josefsson * doc/manpages/Makefile.am: Generated. 2010-06-28 Nikos Mavrogiannopoulos * lib/includes/gnutls/pkcs11.h, lib/pkcs11_write.c, src/pkcs11.c: When copying a private key the sensitive flag can be set or not. This allows copying private keys that can be exported. 2010-06-28 Nikos Mavrogiannopoulos * lib/includes/gnutls/pkcs11.h, lib/pkcs11.c, lib/pkcs11_int.h, lib/pkcs11_write.c, src/certtool-common.h, src/certtool.c, src/pkcs11.c: Combined object flags. No implicit login any more. Login has to be specified with a flag on every call that could use it. 2010-06-28 Nikos Mavrogiannopoulos * lib/gnutls_privkey.c, lib/gnutls_pubkey.c, lib/pkcs11.c, lib/pkcs11_int.h, lib/pkcs11_privkey.c, lib/pkcs11_write.c: Indented code. 2010-06-28 Nikos Mavrogiannopoulos * doc/examples/ex-cert-select-pkcs11.c, lib/gnutls_pubkey.c, lib/gnutls_x509.c, lib/includes/gnutls/abstract.h, lib/includes/gnutls/pkcs11.h, lib/pkcs11.c, lib/pkcs11_write.c, src/certtool-common.h, src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa, src/cli.c, src/pkcs11.c: Allow flags when importing objects from PKCS11 URLs. The only flag supported now is the PKCS11_OBJ_FLAG_LOGIN, which forces login before accessing object on a token. The reason is that some tokens do not allow access of any data without login. 2010-06-27 Nikos Mavrogiannopoulos * src/tests.c: Added AES-128 to block ciphers. 2010-06-27 Nikos Mavrogiannopoulos * lib/gnutls_session_pack.c: Corrected writing and reading order of security parameters. 2010-06-27 Nikos Mavrogiannopoulos * lib/configure.ac, libextra/configure.ac: use 2.11.0 everywhere 2010-06-27 Nikos Mavrogiannopoulos * NEWS, doc/cha-gtls-app.texi, lib/configure.ac, lib/gnutls_errors.c, lib/gnutls_global.c, lib/gnutls_global.h, lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, lib/nettle/rnd.c, lib/pkcs11.c: Added gnutls_global_set_mutex() to allow setting alternative locking procedures. By default the system available locking is used. In *NIX pthreads are used and in windows the critical section API. As a side effect this change avoids any API dependance on libgcrypt even if threads are used. 2010-06-27 Nikos Mavrogiannopoulos * tests/chainverify.c: Modified the cacertrsamd5 short-cut. The test was checking whether verification using a trusted insecurely signed self signed certificate will fail against a chain that has this as intermediate. However this test should have succeeded since the insecure certificate is trusted. This isn't the purpose of this test however. It should have checked whether using the same certificate as trusted and to be verified and the GNUTLS_VERIFY_DO_NOT_ALLOW_SAME flag should return an error. 2010-06-27 Nikos Mavrogiannopoulos * tests/chainverify.c: Fail on error. 2010-06-26 Nikos Mavrogiannopoulos * src/certtool.c: When generating private key allow usage of --pkcs-cipher flag. 2010-06-22 Nikos Mavrogiannopoulos * lib/auth_dhe_psk.c, lib/auth_psk.c, lib/auth_psk.h, lib/auth_srp.c, lib/auth_srp.h, lib/ext_srp.c, lib/gnutls_int.h: MAX_SRP_USERNAME -> MAX_USERNAME_SIZE 2010-06-24 Simon Josefsson * README-alpha: We also require GNU make. 2010-06-24 Simon Josefsson * THANKS, configure.ac, lib/configure.ac, libextra/configure.ac: Use silent build rules. Suggested by Vincent Torri in . 2010-06-22 Nikos Mavrogiannopoulos * lib/includes/gnutls/gnutls.h.in: removed OPRFI extension functions. 2010-06-22 Nikos Mavrogiannopoulos * lib/Makefile.am: removed OPRFI from makefile. 2010-06-21 Nikos Mavrogiannopoulos * lib/x509/verify.c: When verifying certificates use the same algorithm whether the DO_NOT_ALLOW_SAME flag is set or not. Before we were shortening certificate list if the flag was not set by the size of the first certificate found in the trusted list, and keep the list intact otherwise. Now we shorten the list in the latter case as well, except for the first certificate. 2010-06-19 Nikos Mavrogiannopoulos * NEWS: Added news entry for EV-certificates. 2010-06-19 Nikos Mavrogiannopoulos * src/tests.c, src/tests.h, src/tls_test.c: Corrected some tests. Added test to check whether the %COMPAT option is required for this server. 2010-06-19 Nikos Mavrogiannopoulos * lib/gnutls_extensions.c, lib/gnutls_session_pack.c: Corrections in the new session packing code. Saving absolute positions in buffers is no longer done. Now we store only and offset to allow reallocating the buffer and still do the correct reference. 2010-06-19 Nikos Mavrogiannopoulos * lib/ext_safe_renegotiation.c, lib/ext_safe_renegotiation.h, lib/ext_signature.c, lib/gnutls_handshake.c: Fixes in new extensions code that relate to SSL 3.0. 2010-06-19 Nikos Mavrogiannopoulos * configure.ac: version is 2.11.0 2010-06-19 Nikos Mavrogiannopoulos * doc/cha-cert-auth.texi: Some updates in the PKCS11 text. 2010-06-19 Nikos Mavrogiannopoulos * doc/cha-intro-tls.texi: Some updates on renegotiation text 2010-06-19 Nikos Mavrogiannopoulos * doc/cha-intro-tls.texi: Removed links for discussion of the COMPAT topic. I don't think they should be in the documentation. 2010-06-19 Nikos Mavrogiannopoulos * doc/cha-intro-tls.texi: Corrected example with %COMPAT. 2010-06-19 Nikos Mavrogiannopoulos * doc/cha-intro-tls.texi: Added gnutls_sec_param_to_pk_bits() discussion. 2010-06-19 Nikos Mavrogiannopoulos * doc/cha-intro-tls.texi: corrected text on AES 2010-06-19 Nikos Mavrogiannopoulos * lib/pkcs11.c: Only save PIN if login was successful. 2010-06-19 Nikos Mavrogiannopoulos * doc/cha-auth.texi, lib/ext_signature.c: Applied patch by Andreas Metzler 2010-06-19 Nikos Mavrogiannopoulos * src/benchmark.c: Allow setting debug level via cmd. 2010-06-19 Nikos Mavrogiannopoulos * lib/cryptodev.c: Explicitely terminate cryptodev sessions. 2010-06-19 Nikos Mavrogiannopoulos * lib/gnutls_hash_int.c, lib/gnutls_hash_int.h: Removed the no longer needed "active" variable. 2010-06-18 Nikos Mavrogiannopoulos * NEWS: documented some of the changes 2010-06-18 Nikos Mavrogiannopoulos * lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h: Greatly simplified the internal hash/hmac and cipher functions. 2010-06-18 Nikos Mavrogiannopoulos * lib/includes/gnutls/pkcs11.h, lib/pkcs11.c, src/certtool-common.h, src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.gaa, src/pkcs11.c: Allow listing of private keys only. Certtool has now the --pkcs11-list-privkeya option. 2010-06-18 Nikos Mavrogiannopoulos * lib/pkcs11_privkey.c: Send correct token name to callback. 2010-06-18 Nikos Mavrogiannopoulos * lib/gnutls_errors.c, lib/includes/gnutls/gnutls.h.in, lib/pkcs11.c, lib/pkcs11_int.h, lib/pkcs11_privkey.c, lib/pkcs11_write.c: Added more gnutls errors to map closer to PKCS11 actual errors. 2010-06-17 Nikos Mavrogiannopoulos * lib/gnutls_errors.c, lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/pkcs11.h, lib/pkcs11.c, lib/pkcs11_int.h, lib/pkcs11_privkey.c, lib/pkcs11_write.c, src/cli.c, src/common.c: Added option to the PKCS11 PIN callback to save PIN if the token is being used with a single pkcs11_privkey structure. 2010-06-17 Nikos Mavrogiannopoulos * lib/pkcs11_privkey.c: For Private key operations new sessions are opened when are needed. This makes the usage of the PKCS11 API thread safe. The only drawback is the requirement to enter PIN on every operation. 2010-06-15 Simon Josefsson * src/cli.c: gnutls-cli: Make --starttls work again. Problem introduced in patch to use read() instead of fgets() committed on 2010-01-27. 2010-06-14 Nikos Mavrogiannopoulos * src/certtool.c, tests/sha2/key-ca-dsa.pem, tests/sha2/key-subca-dsa.pem, tests/sha2/sha2, tests/sha2/sha2-dsa: Allow SHA224 hash in certtool. Added tests for SHA-256 and SHA-224 for DSA. 2010-06-14 Nikos Mavrogiannopoulos * src/certtool.c: Do not warn multiple times for the deprecation of --bits. 2010-06-14 Nikos Mavrogiannopoulos * lib/ext_session_ticket.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_mbuffers.c, lib/gnutls_mbuffers.h, lib/gnutls_record.c: Appending data in mbuffers is now cheaper by avoiding realloc, at the cost of requiring to specify a maximum mbuffer size at creation. 2010-06-13 Nikos Mavrogiannopoulos * lib/ext_safe_renegotiation.c: Removed unused functions. 2010-06-13 Nikos Mavrogiannopoulos * lib/gnutls_handshake.c, lib/gnutls_int.h: Combined the max ticket length with the maximum extension data length. 2010-06-11 Nikos Mavrogiannopoulos * NEWS, doc/cha-gtls-app.texi, lib/auth_srp.c, lib/ext_cert_type.c, lib/ext_cert_type.h, lib/ext_max_record.c, lib/ext_max_record.h, lib/ext_oprfi.c, lib/ext_oprfi.h, lib/ext_safe_renegotiation.c, lib/ext_safe_renegotiation.h, lib/ext_server_name.c, lib/ext_server_name.h, lib/ext_session_ticket.c, lib/ext_session_ticket.h, lib/ext_signature.c, lib/ext_signature.h, lib/ext_srp.c, lib/ext_srp.h, lib/gnutls_buffers.c, lib/gnutls_constate.c, lib/gnutls_extensions.c, lib/gnutls_extensions.h, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_mbuffers.c, lib/gnutls_mbuffers.h, lib/gnutls_record.c, lib/gnutls_session_pack.c, lib/gnutls_state.c, lib/gnutls_str.c, lib/gnutls_str.h, lib/includes/gnutls/compat.h, lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, lib/pkcs11.c, lib/x509/dn.c, libextra/ext_inner_application.c, libextra/ext_inner_application.h, libextra/gnutls_extra.c, libextra/gnutls_ia.c, src/cli.c, src/serv.c, tests/Makefile.am, tests/oprfi.c, tests/tlsia.c: Simplified and made more safe the packing of data for session storage. Extensions use the internal API to store/retrieve during resumption. Removed OPRFI since it was never standardized and was never actually included in gnutls since it was in inactive ifdef. This was instead of rewriting it to use the new API. 2010-06-11 Nikos Mavrogiannopoulos * lib/gnutls_buffers.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_str.c, lib/gnutls_str.h, lib/gnutls_supplemental.c, lib/gnutls_supplemental.h, lib/openpgp/output.c, lib/pkcs11.c, lib/x509/dn.c, lib/x509/output.c: The gnutls_string code was simplified and integrated with the buffer to avoid having two named for the same thing. 2010-06-11 Nikos Mavrogiannopoulos * lib/pakchois/pakchois.c: Properly handle fork() case. 2010-06-09 Nikos Mavrogiannopoulos * libextra/gnutls_extra.c: Register the md5 handler if gcrypt is in fips mode once gnutls_global_init_extra() is called. 2010-06-09 Nikos Mavrogiannopoulos * src/tests.c: corrected tests. 2010-06-09 Nikos Mavrogiannopoulos * lib/pakchois/pakchois.c, lib/pakchois/pakchois.h, lib/pkcs11.c: Added new calls to pakchois to open an absolute filename. 2010-06-07 Nikos Mavrogiannopoulos * lib/includes/gnutls/pkcs11.h: Removed several comments that pointed to Alon's implementation comments. We use inline C comments to generate documentation (not doxygen). 2010-06-04 Nikos Mavrogiannopoulos * lib/Makefile.am, lib/ext_session_ticket.c, lib/gnutls_algorithms.c, lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_mbuffers.c, lib/gnutls_record.c, lib/gnutls_state.c: More fixes for the rebase. 2010-06-04 Nikos Mavrogiannopoulos * AUTHORS: Added Jonathan. 2010-06-04 Nikos Mavrogiannopoulos * lib/pakchois/pakchois.c: Provider unref must be done after all sessions have been closed. 2010-06-03 Nikos Mavrogiannopoulos * lib/Makefile.am: Several fixes for the broken rebase. 2010-06-03 Nikos Mavrogiannopoulos * doc/cha-intro-tls.texi: Merged with master. 2010-06-03 Nikos Mavrogiannopoulos * lib/gnutls_handshake.c, lib/gnutls_mbuffers.h, lib/gnutls_record.c: Some other changes to mbuffers to make gnutls (a bit more) agnostic on their internal structure. 2010-06-03 Nikos Mavrogiannopoulos * lib/x509/verify.c: Corrected prefered hash algorithm return value on RSA. 2010-06-03 Nikos Mavrogiannopoulos * lib/gnutls_global.c: Use GCRYCTL_ENABLE_QUICK_RANDOM when using libgcrypt. 2010-05-31 Nikos Mavrogiannopoulos * .gitignore: Ignore more files. 2010-05-31 Nikos Mavrogiannopoulos * tests/sha2/sha2-dsa: Remove the correct file 2010-05-31 Nikos Mavrogiannopoulos * tests/sha2/key-ca-dsa.pem, tests/sha2/key-dsa.pem: Added missing files. 2010-05-31 Nikos Mavrogiannopoulos * lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_pubkey.c, lib/includes/gnutls/abstract.h, lib/includes/gnutls/x509.h, lib/x509/crq.c, lib/x509/x509.c, src/certtool.c: The get_preferred_hash_algorithm() functions have now an extra argument to indicate whether it is mandatory to use this algorithm. 2010-05-31 Nikos Mavrogiannopoulos * doc/examples/ex-crq.c, lib/includes/gnutls/x509.h, lib/libgnutls.map, lib/x509/crq.c: Added gnutls_x509_crq_get_preferred_hash_algorithm(). 2010-05-31 Nikos Mavrogiannopoulos * NEWS, lib/gnutls_pubkey.c, lib/includes/gnutls/abstract.h, lib/includes/gnutls/x509.h, lib/libgnutls.map, lib/x509/privkey.c, lib/x509/verify.c, lib/x509/x509.c, src/certtool.c: Added gnutls_pubkey_get_preferred_hash_algorithm() and gnutls_x509_crt_get_preferred_hash_algorithm() to allow determining the hash algorithm to use during signing. This is needed in the case of DSA that uses specific versions of SHA depending on the size of the parameters. 2010-05-31 Nikos Mavrogiannopoulos * doc/gnutls.texi, lib/Makefile.am, lib/build-aux/config.rpath, lib/gcrypt/pk.c, lib/gnutls_privkey.c, lib/pkcs11.c, lib/pkcs11_privkey.c, lib/x509/privkey.c, lib/x509/sign.c, lib/x509/sign.h, lib/x509/verify.c, lib/x509/x509.c, src/pkcs11.c: Several fixes after big rebase. 2010-05-30 Nikos Mavrogiannopoulos * tests/sha2/Makefile.am, tests/sha2/sha2-dsa: Test the DSA with SHA256 as well. 2010-05-30 Nikos Mavrogiannopoulos * lib/x509/mpi.c: Print debugging information on error. 2010-05-30 Nikos Mavrogiannopoulos * NEWS, lib/gcrypt/pk.c, lib/gnutls_pk.c, lib/gnutls_sig.c, lib/nettle/mpi.c, lib/nettle/pk.c, lib/opencdk/pubkey.c, lib/opencdk/sig-check.c, lib/opencdk/verify.c, lib/openpgp/gnutls_openpgp.c, lib/openpgp/pgp.c, lib/openpgp/privkey.c, lib/pkcs11_privkey.c, lib/x509/privkey.c, lib/x509/x509_int.h: Nettle library can now parse the PGP integers. Except for SHA-224/384/512 nettle seems to be fully working now. 2010-05-30 Nikos Mavrogiannopoulos * src/certtool.c: use --sec-param to generate privkey. 2010-05-30 Nikos Mavrogiannopoulos * tests/openpgpself.c: reduced log level to a sane one 2010-05-30 Nikos Mavrogiannopoulos * tests/pathlen/ca-no-pathlen.pem, tests/pathlen/no-ca-or-pathlen.pem: Corrected for new output of --print-certificate-info 2010-05-30 Nikos Mavrogiannopoulos * tests/sha2/sha2: Print information on failure. 2010-05-30 Nikos Mavrogiannopoulos * lib/libgnutls.map, src/certtool.c: Print exp1 and exp2 if they are available. 2010-05-30 Nikos Mavrogiannopoulos * tests/pkcs1-padding/pkcs1-pad, tests/pkcs12-decode/pkcs12, tests/pkcs8-decode/pkcs8, tests/userid/userid: Only print output if something fails 2010-05-30 Nikos Mavrogiannopoulos * lib/m4/hooks.m4, lib/pakchois/pakchois.c: Some pakchois fixes. 2010-05-30 Nikos Mavrogiannopoulos * lib/gnutls_global.c: Fixup to compile with nettle 2010-05-29 Nikos Mavrogiannopoulos * lib/m4/hooks.m4: Do not bother with MODPATH. We don't use it. 2010-05-29 Nikos Mavrogiannopoulos * lib/debug.c, lib/debug.h: Added again _gnutls_dump_mpi() to assist in debugging. 2010-05-29 Nikos Mavrogiannopoulos * tests/pkcs12_encode.c: Added debugging 2010-05-29 Nikos Mavrogiannopoulos * lib/gnutls_sig.c: Allow DSA with other than SHA1 algorithms in TLS. 2010-05-29 Nikos Mavrogiannopoulos * lib/pkix_asn1_tab.c: removed more stuff. 2010-05-29 Nikos Mavrogiannopoulos * lib/pkix.asn, lib/x509/common.c: LocalKeyId and XmppAddr were incorporated. 2010-05-29 Nikos Mavrogiannopoulos * lib/pkix.asn, lib/pkix_asn1_tab.c: No need for those OIDs any more. 2010-05-29 Nikos Mavrogiannopoulos * tests/dn2.c: Corrected to support new EV_ values. 2010-05-29 Nikos Mavrogiannopoulos * tests/crq_key_id.c, tests/cve-2009-1416.c, tests/pkcs12_s2k_pem.c: avoid calling gcrypt directly. 2010-05-29 Nikos Mavrogiannopoulos * NEWS, lib/includes/gnutls/crypto.h, lib/libgnutls.map, lib/random.c, lib/random.h, src/crypt.c, src/psk.c, tests/mini-eagain.c: exported gnutls_rnd(). 2010-05-29 Nikos Mavrogiannopoulos * lib/x509/common.c, lib/x509/common.h, lib/x509/dn.c: The recognition of DN elements is now self contained. It does not need entries in pkix.asn. 2010-05-29 Nikos Mavrogiannopoulos * lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509/common.c: Added support for EV certificate attributes. 2010-05-29 Nikos Mavrogiannopoulos * lib/m4/hooks.m4, lib/nettle/cipher.c: Fixed nettle detection and AES. 2010-05-29 Nikos Mavrogiannopoulos * lib/gnutls_dh_primes.c: documentation updates 2010-05-29 Nikos Mavrogiannopoulos * src/certtool-common.h, src/certtool.c, src/prime.c: Generate dh-params also used --sec-param. 2010-05-29 Nikos Mavrogiannopoulos * lib/nettle/mpi.c: Document that the generator is the generator of the subgroup and not the group. 2010-05-29 Nikos Mavrogiannopoulos * src/cli.c: Corrected certificate callback. 2010-05-28 Nikos Mavrogiannopoulos * lib/gcrypt/Makefile.am, lib/nettle/Makefile.am, lib/nettle/cipher.c: More AES stuff (still doesn't work). 2010-05-28 Nikos Mavrogiannopoulos * lib/nettle/pk.c: Correction in RSA encryption. 2010-05-28 Nikos Mavrogiannopoulos * lib/nettle/cipher.c: Fixed issue with AES. 2010-05-28 Nikos Mavrogiannopoulos * NEWS, lib/gnutls_algorithms.c, lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, lib/openpgp/output.c, lib/x509/output.c, lib/x509/privkey.c, src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: Added gnutls_sec_param_to_pk_bits() et al. to allow select bit sizes for private keys using a human understandable scale. 2010-05-28 Nikos Mavrogiannopoulos * NEWS, lib/gnutls_algorithms.c, lib/includes/gnutls/gnutls.h.in, lib/x509/common.h: Added support for SHA224 and SHA256 in DSA. 2010-05-28 Nikos Mavrogiannopoulos * lib/m4/hooks.m4: Always use included pakchois. 2010-05-27 Nikos Mavrogiannopoulos * doc/examples/ex-cert-select-pkcs11.c: make sure all lines fit in page. 2010-05-26 Nikos Mavrogiannopoulos * doc/cha-cert-auth.texi: make example more compact by removing error checking. 2010-05-26 Nikos Mavrogiannopoulos * doc/cha-bib.texi, doc/cha-cert-auth.texi: Added bibliographic reference to PKCS #11. 2010-05-26 Nikos Mavrogiannopoulos * doc/cha-cert-auth.texi: Added sketch for PKCS #11 usage. 2010-05-26 Nikos Mavrogiannopoulos * doc/credentials/x509-server-dsa.pem, doc/credentials/x509-server-key-dsa.pem: Added 2048 bit DSA key 2010-05-26 Nikos Mavrogiannopoulos * lib/opencdk/armor.c, lib/opencdk/read-packet.c, lib/opencdk/stream.c, lib/opencdk/write-packet.c: Increased log level of several messages. 2010-05-25 Nikos Mavrogiannopoulos * doc/credentials/x509/key.pem: Corrected coefficient and exp[12] values in key. 2010-05-25 Nikos Mavrogiannopoulos * lib/nettle/pk.c: Added blinding in RSA. Correct broken private keys on import. Nettle uses more values than gcrypt does from RSA decryption and it seemed that some values in our stored private keys were messy (generated by very old gnutls). 2010-05-24 Nikos Mavrogiannopoulos * doc/examples/ex-cert-select-pkcs11.c, lib/gnutls_x509.c, lib/includes/gnutls/pkcs11.h, lib/pkcs11.c, lib/pkcs11_int.h, lib/pkcs11_privkey.c, lib/pkcs11_write.c, src/cli.c: Simplified internal API. The only question that remains now is how to handle the gnutls_pkcs11_privkey_t. Currently it opens a session and maintains a handle to the object. This will require locks to be added on operations. Alternatively new sessions may be opened for each operation performed. This is guarranteed by PKCS #11 to be thread safe but will of course require to ask for the PIN again. 2010-05-24 Nikos Mavrogiannopoulos * lib/pakchois/pakchois.c: Removed debugging print. 2010-05-24 Nikos Mavrogiannopoulos * lib/Makefile.am, lib/configure.ac, lib/m4/hooks.m4, lib/pakchois/errors.c, lib/pakchois/pakchois.c, lib/pakchois/pakchois.h, lib/pakchois/pakchois11.h: Added a modified pakchois library (to open arbitrary pkcs11 modules). Current gnutls works only with this one. 2010-05-24 Nikos Mavrogiannopoulos * doc/cha-gtls-app.texi: Added missing file. 2010-05-24 Nikos Mavrogiannopoulos * doc/TODO: Removed finished items. 2010-05-24 Nikos Mavrogiannopoulos * lib/pkcs11_write.c: Noted that there things to be done. 2010-05-24 Nikos Mavrogiannopoulos * doc/Makefile.am, doc/cha-cert-auth.texi: Added documentation on abstract types. 2010-05-23 Nikos Mavrogiannopoulos * lib/gcrypt/pk.c, lib/gnutls_pk.c, lib/gnutls_pk.h, lib/opencdk/pubkey.c, lib/openpgp/privkey.c, lib/x509/privkey.c: Common code for calculation of RSA exp1 and exp2. Also update the openpgp code to calculate those values. 2010-05-23 Nikos Mavrogiannopoulos * lib/auth_dh_common.c, lib/gnutls_dh_primes.c, lib/x509/privkey.c: More fixes. 2010-05-23 Nikos Mavrogiannopoulos * lib/auth_dh_common.c, lib/gcrypt/mpi.c, lib/gnutls_mpi.c: Corrected nicely hidden bug that caused accesses to uninitialized variables if the gcry_mpi_print() functions were pessimists and returned more size than actually needed for the print. 2010-05-23 Nikos Mavrogiannopoulos * lib/gcrypt/pk.c: Added some sanity checks. 2010-05-23 Nikos Mavrogiannopoulos * NEWS, doc/cha-auth.texi, doc/cha-bib.texi, doc/cha-cert-auth.texi, doc/cha-ciphersuites.texi, doc/cha-copying.texi, doc/cha-functions.texi, doc/cha-internals.texi, doc/cha-intro-tls.texi, doc/cha-library.texi, doc/cha-preface.texi, doc/cha-programs.texi, doc/cha-tls-app.texi, doc/gnutls.texi, lib/includes/gnutls/pkcs11.h, lib/libgnutls.map, lib/pkcs11.c: Documentation updates. Separated big gnutls.texi to chapter to allow easier maintainance. 2010-05-23 Nikos Mavrogiannopoulos * lib/Makefile.am, lib/gcrypt/mpi.c, lib/gcrypt/pk.c, lib/includes/gnutls/crypto.h, lib/includes/gnutls/pkcs11.h, lib/includes/gnutls/x509.h, lib/libgnutls.map, lib/nettle/pk.c, lib/pkcs11.c, lib/pkcs11_int.h, lib/pkcs11_privkey.c, lib/pkcs11_write.c, lib/x509/privkey.c, lib/x509/x509_int.h, src/certtool-common.h, src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa, src/crypt-gaa.c, src/pkcs11.c: Added support to copy certificates and private keys to tokens. New functions: gnutls_pkcs11_copy_x509_crt() gnutls_pkcs11_copy_x509_privkey() gnutls_pkcs11_delete_url() Certtool was updated to allow copying certificates and private keys to tokens. Deleting an object has issues (segfault) but it seems to be related with libopensc and its pkcs11 API. 2010-05-22 Nikos Mavrogiannopoulos * lib/x509/verify.c: Added gnutls_pubkey_verify_hash(), gnutls_pubkey_get_verify_algorithm(). 2010-05-22 Nikos Mavrogiannopoulos * lib/pkcs11.c, src/pkcs11.c: Added gnutls_pubkey_import_pkcs11(), gnutls_pubkey_import_rsa_raw(), gnutls_pubkey_import_dsa_raw(), gnutls_pkcs11_obj_export(). 2010-05-22 Nikos Mavrogiannopoulos * NEWS: Tried to document recent changes. 2010-05-22 Nikos Mavrogiannopoulos * lib/gnutls_x509.c, lib/pkcs11.c, lib/pkcs11_int.h, src/certtool-gaa.c, src/certtool.gaa, src/pkcs11.c: Added gnutls_pubkey_t abstract type to handle public keys. It can currently import/export public keys from existing certificate types as well as from PKCS #11 URL. This allows generating a certificate or certificate request from a given public key (currently one could only generate them from a given private key). PKCS#11 API augmented to allow reading arbitrary objects instead of just certificates. Certtool updated to list those objects. 2010-05-22 Nikos Mavrogiannopoulos * lib/pkcs11.c: Added gnutls_pkcs11_token_get_flags() to distinguish between hardware and soft tokens. 2010-05-21 Nikos Mavrogiannopoulos * lib/Makefile.am: Added support for libnettle backend. This uses gmp for big number operations. It is not currently completed. It lacks RSA blinding as well as optimizations. 2010-05-18 Nikos Mavrogiannopoulos * lib/x509/sign.c: Corrected bug in DSA signature generation. 2010-05-18 Nikos Mavrogiannopoulos * lib/x509/x509_int.h: Added operations to sign CRLs, certificates and requests with an abstract key and thus with a PKCS #11 key as well. 2010-05-18 Nikos Mavrogiannopoulos * lib/includes/gnutls/privkey.h: privkey.h -> abstract.h 2010-05-18 Nikos Mavrogiannopoulos * lib/gnutls_x509.c: The gnutls-cli --x509cafile can now be a PKCS #11 URL. It can read gnome-keyring's certificates and use them in the trusted list. 2010-05-16 Nikos Mavrogiannopoulos * lib/gnutls_x509.c: Corrections in openpgp private key usage. 2010-05-16 Nikos Mavrogiannopoulos * tests/x509self.c: Updated self tests and examples to avoid using deprecated functions such as gnutls_certificate_server_set_retrieve_function and the sign callback. 2010-05-16 Nikos Mavrogiannopoulos * lib/includes/gnutls/privkey.h, lib/pkcs11_int.h: Added documentation for most of the new functions. 2010-05-16 Nikos Mavrogiannopoulos * lib/pkcs11.c: Documented that it was initially based on neon pkcs11 and got ideas from pkcs11-helper library. 2010-05-15 Nikos Mavrogiannopoulos * lib/pkcs11.c: Corrections to properly handle token removal and insert. 2010-05-15 Nikos Mavrogiannopoulos * lib/Makefile.am, lib/gnutls_x509.c, lib/includes/gnutls/pkcs11.h, lib/includes/gnutls/privkey.h, lib/pkcs11.c, lib/x509/sign.c: Added gnutls_pkcs11_privkey_t and gnutls_privkey_t types. Those are an abstract private key type that can be used to sign/encrypt any private key of pkcs11,x509 or openpgp types. Added support for PKCS11 in gnutls-cli/gnutls-serv. 2010-05-10 Nikos Mavrogiannopoulos * src/certtool.c, src/pkcs11.c: Added several helper functions, to allow printing of tokens. 2010-05-10 Nikos Mavrogiannopoulos * lib/pkcs11.c, src/certtool-gaa.c, src/certtool.c, src/certtool.gaa, src/pkcs11.c: Added ability to export certificates from PKCS #11 tokens. Added ability to list trusted certificates, or only certificates with a corresponding private key or just all. 2010-05-09 Nikos Mavrogiannopoulos * lib/Makefile.am, lib/configure.ac, lib/includes/gnutls/pkcs11.h, lib/pkcs11.c, src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.gaa, src/pkcs11.c: Added initial PKCS #11 support. Certtool can now print lists of certificates available in system. 2010-05-22 Nikos Mavrogiannopoulos * NEWS, lib/gnutls_pubkey.c, lib/includes/gnutls/abstract.h, lib/libgnutls.map, lib/x509/common.h, lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509_int.h: Added gnutls_pubkey_verify_hash(), gnutls_pubkey_get_verify_algorithm(). 2010-05-22 Nikos Mavrogiannopoulos * NEWS, configure.ac, lib/gnutls_pubkey.c, lib/includes/gnutls/abstract.h, lib/includes/gnutls/pkcs11.h, lib/libgnutls.map, lib/pkcs11.c, lib/pkcs11_int.h, lib/x509/x509.c, src/pkcs11.c: Added gnutls_pubkey_import_pkcs11(), gnutls_pubkey_import_rsa_raw(), gnutls_pubkey_import_dsa_raw(), gnutls_pkcs11_obj_export(). 2010-05-22 Nikos Mavrogiannopoulos * .gitignore: Ignore files that should be ignored. 2010-05-22 Nikos Mavrogiannopoulos * NEWS, src/certtool-gaa.c, src/certtool.gaa: Tried to document recent changes. 2010-05-22 Nikos Mavrogiannopoulos * lib/Makefile.am, lib/gnutls_pubkey.c, lib/gnutls_x509.c, lib/includes/gnutls/abstract.h, lib/includes/gnutls/pkcs11.h, lib/libgnutls.map, lib/pkcs11.c, lib/pkcs11_int.h, lib/pkcs11_privkey.c, lib/x509/common.c, lib/x509/common.h, lib/x509/mpi.c, lib/x509/x509.c, lib/x509/x509_int.h, src/certtool-common.h, src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa, src/pkcs11.c: Added gnutls_pubkey_t abstract type to handle public keys. It can currently import/export public keys from existing certificate types as well as from PKCS #11 URL. This allows generating a certificate or certificate request from a given public key (currently one could only generate them from a given private key). PKCS#11 API augmented to allow reading arbitrary objects instead of just certificates. Certtool updated to list those objects. 2010-05-22 Nikos Mavrogiannopoulos * lib/includes/gnutls/pkcs11.h, lib/pkcs11.c: Added gnutls_pkcs11_token_get_flags() to distinguish between hardware and soft tokens. 2010-05-22 Nikos Mavrogiannopoulos * lib/Makefile.am, lib/libgnutlsxx.map, lib/m4/hooks.m4: Export all symbols from C++ library. This library doesn't contain any internal symbols anyway and there is no reason to mess with the C++ ABI that hasn't got the problems of C. 2010-05-21 Nikos Mavrogiannopoulos * configure.ac, doc/examples/ex-serv-export.c, doc/examples/ex-serv-psk.c, doc/examples/ex-serv1.c, lib/Makefile.am, lib/auth_srp.c, lib/cipher-libgcrypt.c, lib/configure.ac, lib/gcrypt/Makefile.am, lib/gcrypt/cipher.c, lib/gcrypt/mac.c, lib/gcrypt/mpi.c, lib/gcrypt/pk.c, lib/gcrypt/rnd.c, lib/gnutls_global.c, lib/gnutls_mpi.c, lib/gnutls_srp.c, lib/m4/hooks.m4, lib/mac-libgcrypt.c, lib/mpi-libgcrypt.c, lib/nettle/Makefile.am, lib/nettle/cipher.c, lib/nettle/mac.c, lib/nettle/mpi.c, lib/nettle/pk.c, lib/nettle/rnd.c, lib/pk-libgcrypt.c, lib/rnd-libgcrypt.c, src/certtool.c, src/cli.c, src/serv.c, tests/chainverify.c: Added support for libnettle backend. This uses gmp for big number operations. It is not currently completed. It lacks RSA blinding as well as optimizations. 2010-05-18 Nikos Mavrogiannopoulos * doc/manpages/gnutls-cli.1, src/cli-gaa.c, src/cli.gaa, src/serv-gaa.c, src/serv.gaa: Documented that the --file options in gnutls-cli and gnutls-serv can accept a PKCS #11 URL. 2010-05-18 Nikos Mavrogiannopoulos * lib/x509/sign.c: Corrected bug in DSA signature generation. 2010-05-18 Nikos Mavrogiannopoulos * lib/gnutls_privkey.c, lib/includes/gnutls/abstract.h, lib/libgnutls.map, lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/mpi.c, lib/x509/sign.c, lib/x509/x509_int.h, lib/x509/x509_write.c: Added operations to sign CRLs, certificates and requests with an abstract key and thus with a PKCS #11 key as well. 2010-05-18 Nikos Mavrogiannopoulos * lib/auth_cert.c, lib/auth_cert.h, lib/gnutls_privkey.c, lib/gnutls_sig.h, lib/gnutls_x509.h, lib/includes/gnutls/abstract.h, lib/includes/gnutls/privkey.h, lib/openpgp/gnutls_openpgp.h: privkey.h -> abstract.h 2010-05-18 Nikos Mavrogiannopoulos * lib/Makefile.am, lib/configure.ac, lib/gnutls_x509.c, src/cli.c: The gnutls-cli --x509cafile can now be a PKCS #11 URL. It can read gnome-keyring's certificates and use them in the trusted list. 2010-05-16 Nikos Mavrogiannopoulos * lib/pkcs11.c: Documented that gnutls_global_init calls gnutls_pkcs11_init. 2010-05-16 Nikos Mavrogiannopoulos * src/cli.c: Only send termination request to avoid stalling on servers that do not reply. 2010-05-16 Nikos Mavrogiannopoulos * lib/gnutls_handshake.c, lib/gnutls_state.c, lib/gnutls_state.h: Corrected issue on the %SSL3_RECORD_VERSION priority string. It now works even when resuming a session. 2010-05-16 Nikos Mavrogiannopoulos * doc/examples/Makefile.am, doc/examples/ex-cert-select-pkcs11.c, doc/gnutls.texi: Added initial example. 2010-05-16 Nikos Mavrogiannopoulos * lib/auth_cert.h, lib/gnutls_x509.c, lib/openpgp/gnutls_openpgp.c: Corrections in openpgp private key usage. 2010-05-16 Nikos Mavrogiannopoulos * doc/examples/ex-cert-select.c, tests/Makefile.am, tests/pkcs12_s2k.c, tests/x509dn.c, tests/x509signself.c: Updated self tests and examples to avoid using deprecated functions such as gnutls_certificate_server_set_retrieve_function and the sign callback. 2010-05-16 Nikos Mavrogiannopoulos * lib/gnutlsxx.cpp, lib/includes/gnutls/gnutlsxx.h, src/tests.c: Use the new callback function. 2010-05-16 Nikos Mavrogiannopoulos * lib/gnutls_privkey.c, lib/includes/gnutls/pkcs11.h, lib/includes/gnutls/privkey.h, lib/libgnutls.map, lib/pkcs11.c, lib/pkcs11_int.h, lib/pkcs11_privkey.c, lib/x509/privkey.c: Added documentation for most of the new functions. 2010-05-16 Nikos Mavrogiannopoulos * lib/pkcs11.c: Documented that it was initially based on neon pkcs11 and got ideas from pkcs11-helper library. 2010-05-15 Nikos Mavrogiannopoulos * lib/gnutls_x509.c, lib/libgnutls.map, lib/pkcs11.c, lib/pkcs11_int.h, lib/pkcs11_privkey.c, src/common.c: Corrections to properly handle token removal and insert. 2010-05-15 Nikos Mavrogiannopoulos * lib/includes/gnutls/compat.h, lib/includes/gnutls/gnutls.h.in: Deprecated the sign callback. 2010-05-15 Nikos Mavrogiannopoulos * doc/manpages/Makefile.am, lib/Makefile.am, lib/auth_cert.c, lib/auth_cert.h, lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/auth_srp_rsa.c, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_global.c, lib/gnutls_int.h, lib/gnutls_privkey.c, lib/gnutls_sig.c, lib/gnutls_sig.h, lib/gnutls_state.c, lib/gnutls_str.c, lib/gnutls_x509.c, lib/gnutls_x509.h, lib/includes/gnutls/compat.h, lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/openpgp.h, lib/includes/gnutls/pkcs11.h, lib/includes/gnutls/privkey.h, lib/includes/gnutls/x509.h, lib/libgnutls.map, lib/openpgp/gnutls_openpgp.c, lib/openpgp/gnutls_openpgp.h, lib/openpgp/openpgp_int.h, lib/pkcs11.c, lib/pkcs11_int.h, lib/pkcs11_privkey.c, lib/x509/privkey.c, lib/x509/sign.c, lib/x509/sign.h, lib/x509/x509_int.h, src/cli.c, src/common.c, src/common.h, src/pkcs11.c, src/serv.c: Added gnutls_pkcs11_privkey_t and gnutls_privkey_t types. Those are an abstract private key type that can be used to sign/encrypt any private key of pkcs11,x509 or openpgp types. Added support for PKCS11 in gnutls-cli/gnutls-serv. 2010-05-15 Nikos Mavrogiannopoulos * .gitignore: ignore unrelated to gnutls files. 2010-05-10 Nikos Mavrogiannopoulos * lib/includes/gnutls/pkcs11.h, lib/libgnutls.map, lib/pkcs11.c, src/certtool-common.h, src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa, src/pkcs11.c: Added several helper functions, to allow printing of tokens. 2010-05-10 Nikos Mavrogiannopoulos * lib/gnutls_errors.c, lib/gnutls_str.c, lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/pkcs11.h, lib/pkcs11.c, src/certtool-common.h, src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa, src/pkcs11.c: Added ability to export certificates from PKCS #11 tokens. Added ability to list trusted certificates, or only certificates with a corresponding private key or just all. 2010-05-09 Nikos Mavrogiannopoulos * lib/Makefile.am, lib/auth_srp.c, lib/configure.ac, lib/gnutls.pc.in, lib/gnutls_constate.c, lib/gnutls_errors.c, lib/gnutls_handshake.c, lib/gnutls_kx.c, lib/gnutls_psk.c, lib/gnutls_str.c, lib/gnutls_str.h, lib/includes/Makefile.am, lib/includes/gnutls/pkcs11.h, lib/libgnutls.map, lib/openpgp/gnutls_openpgp.c, lib/pkcs11.c, lib/x509/common.c, lib/x509/dn.c, src/Makefile.am, src/certtool-common.h, src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa, src/pkcs11.c: Added initial PKCS #11 support. Certtool can now print lists of certificates available in system. 2010-03-07 Nikos Mavrogiannopoulos * lib/x509/verify.c: Optimized the check_if_same(). 2010-02-24 Nikos Mavrogiannopoulos * lib/gnutls_algorithms.c, lib/x509/common.c, lib/x509/common.h: Added a forgoten by god OID for RSA. Warn using the actual OID on unknown public key algorithms. 2009-12-09 Jonathan Bastien-Filiatrault * lib/ext_session_ticket.c: Adapt session ticket support to mbuffer API. 2009-08-16 Jonathan Bastien-Filiatrault * lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_kx.c, lib/gnutls_mbuffers.c, lib/gnutls_mbuffers.h: Use mbuffers for handshake synthesis. 2009-08-15 Jonathan Bastien-Filiatrault * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_handshake.c: Make _gnutls_handshake_io_send_int accept a mbuffer_st. 2009-08-15 Jonathan Bastien-Filiatrault * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_state.c: Simplify handshake send buffer logic. 2009-08-15 Jonathan Bastien-Filiatrault * lib/gnutls_buffers.c: Fix interrupted write braino. 2009-08-15 Jonathan Bastien-Filiatrault * lib/gnutls_mbuffers.c: Avoid pointer warning. 2009-08-15 Jonathan Bastien-Filiatrault * lib/gnutls_buffers.c, lib/gnutls_mbuffers.c, lib/gnutls_mbuffers.h: Remove now useless _gnutls_mbuffer_enqueue{,copy} functions. 2009-08-15 Jonathan Bastien-Filiatrault * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_mbuffers.c, lib/gnutls_record.c: Allocate data buffer with mbuffer_st structure as suggested by Nikos. 2009-08-15 Jonathan Bastien-Filiatrault * lib/gnutls_mbuffers.c, lib/gnutls_mbuffers.h: Prepare for mbuffer allocation by the caller. 2009-08-15 Jonathan Bastien-Filiatrault * lib/gnutls_buffers.c: GNUify some missed GNUification. 2009-08-15 Jonathan Bastien-Filiatrault * lib/gnutls_buffers.c: Harmonize read and write function names. 2009-08-15 Jonathan Bastien-Filiatrault * lib/gnutls_buffers.c: Now that LEVEL and LEVEL_EQ are fixed, use less lines. 2009-08-15 Jonathan Bastien-Filiatrault * lib/gnutls_errors.h: Make LEVEL and LEVEL_EQ macros safer. Once again, I got bit by this pretty hard. 2009-08-09 Jonathan Bastien-Filiatrault * lib/gnutls_record.c: Use a datum for ciphered data in _gnutls_send_int. 2009-08-09 Jonathan Bastien-Filiatrault * lib/gnutls_buffers.h: Remove the prototype for the non-existant function _gnutls_io_write_buffered2. 2009-08-09 Jonathan Bastien-Filiatrault * lib/gnutls_int.h, lib/gnutls_record.c: Cleanup of the remaining internals.record_send_buffer mess. 2009-08-09 Jonathan Bastien-Filiatrault * lib/gnutls_buffers.c: Remove yet another !@#$% instance of redundant hexadecimal dumping. 2009-08-09 Jonathan Bastien-Filiatrault * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_record.c: Modify slightly the contract of _gnutls_io_write_buffered as suggested by Nikos Mavrogiannopoulos. 2009-08-09 Jonathan Bastien-Filiatrault * lib/gnutls_buffers.c, lib/gnutls_mbuffers.c, lib/gnutls_mbuffers.h: Pass datums to mbuffers by address instead of by value. 2009-08-08 Nikos Mavrogiannopoulos * lib/gnutls_handshake.c, lib/gnutls_record.c: Corrected case where handshake data were received during a session. It now stores them for future use by a gnutls_handshake(). Reported by Peter Hendrickson . 2009-08-06 Jonathan Bastien-Filiatrault * lib/gnutls_buffers.c: Simplify _gnutls_io_write_buffered and _gnutls_io_write_flush with mbuffers. 2009-08-06 Jonathan Bastien-Filiatrault * lib/gnutls_int.h, lib/gnutls_state.c: Change type of internals.record_send_buffer to a mbuffer. 2009-08-06 Jonathan Bastien-Filiatrault * lib/gnutls_buffers.c: Extract a simple_write function from _gnutls_io_write_buffered. 2009-08-06 Jonathan Bastien-Filiatrault * lib/gnutls_buffers.c: Add dump_bytes function. 2009-08-06 Jonathan Bastien-Filiatrault * lib/Makefile.am, lib/gnutls_int.h, lib/gnutls_mbuffers.c, lib/gnutls_mbuffers.h: Add gnutls_mbuffers.{c,h} with some basic mbuffer operations. 2009-08-01 Jonathan Bastien-Filiatrault * lib/gnutls_algorithms.c: Do not rely on version ordering; use switch..case instead. 2009-08-01 Jonathan Bastien-Filiatrault * lib/auth_cert.c: Remove hardcoded version checks in auth_cert.c. 2009-08-01 Jonathan Bastien-Filiatrault * lib/gnutls_state.c: Remove hardcoded version check in gnutls_state.c. 2009-08-01 Jonathan Bastien-Filiatrault * lib/gnutls_cipher.c: Remove hardcoded version checks in gnutls_cipher.c. 2009-08-01 Jonathan Bastien-Filiatrault * lib/gnutls_sig.c: Remove hardcoded version checks in gnutls_sig.c. 2009-08-01 Jonathan Bastien-Filiatrault * lib/gnutls_handshake.c: Remove hardcoded version checks in gnutls_handshake.c. 2009-08-01 Jonathan Bastien-Filiatrault * lib/gnutls_algorithms.c: Add version check function for selectable signature/hash certificate algorithms. 2009-08-01 Jonathan Bastien-Filiatrault * lib/gnutls_algorithms.c: Add version check functions for non-minimal padding. 2009-08-01 Jonathan Bastien-Filiatrault * lib/gnutls_algorithms.c, lib/gnutls_algorithms.h: Add version check function for explicit IV. 2009-08-01 Jonathan Bastien-Filiatrault * lib/gnutls_algorithms.h: Add version check functions for selectable PRF and extension handling. 2010-06-01 Nikos Mavrogiannopoulos * doc/announce.txt, doc/gnutls.texi, doc/manpages/gnutls-cli.1, doc/manpages/gnutls-serv.1, lib/ext_safe_renegotiation.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_priority.c, lib/gnutls_state.c, tests/safe-renegotiation/srn1.c, tests/safe-renegotiation/srn5.c, tests/safe-renegotiation/testsrn: Splitted safe renegotiation capabilities to %SAFE_RENEGOTIATION: will enable safe renegotiation. This is the most secure and recommended option for clients. However this will prevent from connecting to legacy servers. %PARTIAL_RENEGOTIATION: Prevents renegotiation with clients and servers not supporting the safe renegotiation extension. (this is the default) %UNSAFE_RENEGOTIATION: Permits (re-)handshakes even unsafe ones. 2010-05-31 Simon Josefsson * doc/gnutls.texi: Minor fix. 2010-05-31 Simon Josefsson * GNUmakefile, maint.mk: Update gnulib files. 2010-05-29 Nikos Mavrogiannopoulos * doc/gnutls.texi: Documented the defaults. 2010-05-28 Nikos Mavrogiannopoulos * doc/gnutls.texi: Added INITIAL_SAFE_RENEGOTIATION and other small updates. 2010-05-28 Simon Josefsson * doc/gnutls.texi: Update. 2010-05-28 Simon Josefsson * tests/safe-renegotiation/README: Add. 2010-05-28 Simon Josefsson * .x-sc_prohibit_strings_without_use, build-aux/c++defs.h, build-aux/gendocs.sh, build-aux/gnupload, build-aux/vc-list-files, configure.ac, doc/gendocs_template, gl/Makefile.am, gl/error.c, gl/m4/asm-underscore.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-common.m4, gl/m4/gnulib-comp.m4, gl/m4/netdb_h.m4, gl/m4/stdio_h.m4, gl/m4/unistd_h.m4, gl/m4/valgrind-tests.m4, gl/netdb.in.h, gl/stdio-write.c, gl/stdio.in.h, gl/tests/Makefile.am, gl/tests/init.sh, gl/tests/test-lseek.sh, gl/tests/test-vc-list-files-cvs.sh, gl/tests/test-vc-list-files-git.sh, gl/tests/test-verify.c, gl/tests/test-verify.sh, gl/tests/verify.h, gl/unistd.in.h, gl/vasnprintf.c, gl/wchar.in.h, gtk-doc.make, lib/build-aux/c++defs.h, lib/gl/Makefile.am, lib/gl/m4/asm-underscore.m4, lib/gl/m4/fcntl-o.m4, lib/gl/m4/gettext.m4, lib/gl/m4/gnulib-common.m4, lib/gl/m4/gnulib-comp.m4, lib/gl/m4/iconv.m4, lib/gl/m4/intl.m4, lib/gl/m4/netdb_h.m4, lib/gl/m4/po.m4, lib/gl/m4/stdio_h.m4, lib/gl/m4/unistd_h.m4, lib/gl/netdb.in.h, lib/gl/stdio-write.c, lib/gl/stdio.in.h, lib/gl/tests/Makefile.am, lib/gl/tests/init.sh, lib/gl/tests/test-vasprintf.c, lib/gl/tests/test-verify.c, lib/gl/tests/test-verify.sh, lib/gl/tests/verify.h, lib/gl/unistd.in.h, lib/gl/vasnprintf.c, lib/gl/wchar.in.h, libextra/gl/m4/gnulib-common.m4, m4/valgrind.m4, maint.mk: Update gnulib files, use valgrind-tests module, fix syntax-check problems. 2010-05-28 Simon Josefsson * doc/announce.txt: Doc fix. 2010-05-25 Nikos Mavrogiannopoulos * lib/x509/common.h, lib/x509/privkey.c, lib/x509/sign.c, lib/x509/verify.c: Use correct hashing algorithms for DSA with q over 160 bits. 2010-05-24 Nikos Mavrogiannopoulos * lib/gnutls_algorithms.c: Better checks in loops. 2010-05-22 Simon Josefsson * lib/x509/crl.c: Doc fix. 2010-05-22 Simon Josefsson * NEWS: Add. 2010-05-22 Simon Josefsson * NEWS: Add. 2010-05-22 Simon Josefsson * doc/reference/Makefile.am, gtk-doc.make, m4/gtk-doc.m4: Support GTK-DOC PDF file. 2010-05-22 Simon Josefsson * cfg.mk: Also build PDF manual. 2010-05-22 Simon Josefsson * doc/gnutls.texi: Fix node/section usage. 2010-05-22 Simon Josefsson * tests/safe-renegotiation/srn5.c: Fix self test. 2010-05-22 Simon Josefsson * lib/gnutls_handshake.c: Readd lost fix from Nikos. 2010-05-22 Simon Josefsson * lib/ext_safe_renegotiation.c: Readd lost fix from Nikos. 2010-05-22 Simon Josefsson * NEWS: Add. 2010-05-22 Simon Josefsson * lib/gnutls_errors.c, libextra/includes/gnutls/openssl.h, libextra/openssl_compat.c: Doc fixes. 2010-05-22 Simon Josefsson * lib/x509/x509.c: Doc fix. 2010-05-22 Simon Josefsson * Makefile.am, NEWS, README, cfg.mk, configure.ac, doc/Makefile.am, doc/credentials/Makefile.am, doc/cyclo/Makefile.am, doc/errcodes.c, doc/examples/Makefile.am, doc/examples/ex-client-srp.c, doc/examples/ex-serv-anon.c, doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-psk.c, doc/examples/ex-serv-srp.c, doc/examples/ex-serv1.c, doc/gnutls.texi, doc/manpages/Makefile.am, doc/printlist.c, guile/Makefile.am, guile/modules/Makefile.am, guile/modules/gnutls.scm, guile/modules/gnutls/build/enums.scm, guile/modules/gnutls/build/priorities.scm, guile/modules/gnutls/build/smobs.scm, guile/modules/gnutls/build/utils.scm, guile/modules/gnutls/extra.scm, guile/src/Makefile.am, guile/src/core.c, guile/src/errors.c, guile/src/errors.h, guile/src/extra.c, guile/src/make-enum-header.scm, guile/src/make-enum-map.scm, guile/src/make-session-priorities.scm, guile/src/make-smob-header.scm, guile/src/make-smob-types.scm, guile/src/utils.c, guile/src/utils.h, guile/tests/Makefile.am, guile/tests/anonymous-auth.scm, guile/tests/errors.scm, guile/tests/openpgp-auth.scm, guile/tests/openpgp-keyring.scm, guile/tests/openpgp-keys.scm, guile/tests/pkcs-import-export.scm, guile/tests/session-record-port.scm, guile/tests/srp-base64.scm, guile/tests/x509-auth.scm, guile/tests/x509-certificates.scm, lib/Makefile.am, lib/auth_anon.c, lib/auth_anon.h, lib/auth_cert.c, lib/auth_cert.h, lib/auth_dh_common.c, lib/auth_dh_common.h, lib/auth_dhe.c, lib/auth_dhe_psk.c, lib/auth_psk.c, lib/auth_psk.h, lib/auth_psk_passwd.c, lib/auth_psk_passwd.h, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/auth_srp.c, lib/auth_srp.h, lib/auth_srp_passwd.c, lib/auth_srp_passwd.h, lib/auth_srp_rsa.c, lib/auth_srp_sb64.c, lib/cipher-libgcrypt.c, lib/configure.ac, lib/crypto-api.c, lib/crypto.c, lib/crypto.h, lib/cryptodev.c, lib/debug.c, lib/debug.h, lib/ext_cert_type.c, lib/ext_cert_type.h, lib/ext_max_record.c, lib/ext_max_record.h, lib/ext_oprfi.c, lib/ext_oprfi.h, lib/ext_safe_renegotiation.c, lib/ext_safe_renegotiation.h, lib/ext_server_name.c, lib/ext_server_name.h, lib/ext_session_ticket.c, lib/ext_session_ticket.h, lib/ext_signature.c, lib/ext_signature.h, lib/ext_srp.c, lib/ext_srp.h, lib/gnutls_alert.c, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_auth.h, lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, lib/gnutls_compress.c, lib/gnutls_compress.h, lib/gnutls_constate.c, lib/gnutls_constate.h, lib/gnutls_datum.c, lib/gnutls_datum.h, lib/gnutls_db.c, lib/gnutls_db.h, lib/gnutls_dh.c, lib/gnutls_dh.h, lib/gnutls_dh_primes.c, lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_extensions.c, lib/gnutls_extensions.h, lib/gnutls_global.c, lib/gnutls_global.h, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_helper.c, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_kx.h, lib/gnutls_mem.c, lib/gnutls_mem.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_num.c, lib/gnutls_num.h, lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_priority.c, lib/gnutls_psk.c, lib/gnutls_psk_netconf.c, lib/gnutls_record.c, lib/gnutls_record.h, lib/gnutls_rsa_export.c, lib/gnutls_rsa_export.h, lib/gnutls_session.c, lib/gnutls_session_pack.c, lib/gnutls_session_pack.h, lib/gnutls_sig.c, lib/gnutls_sig.h, lib/gnutls_srp.c, lib/gnutls_srp.h, lib/gnutls_state.c, lib/gnutls_state.h, lib/gnutls_str.c, lib/gnutls_str.h, lib/gnutls_supplemental.c, lib/gnutls_supplemental.h, lib/gnutls_ui.c, lib/gnutls_v2_compat.c, lib/gnutls_v2_compat.h, lib/gnutls_x509.c, lib/gnutls_x509.h, lib/includes/Makefile.am, lib/includes/gnutls/crypto.h, lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/openpgp.h, lib/includes/gnutls/pkcs12.h, lib/includes/gnutls/x509.h, lib/libgnutls.map, lib/libgnutlsxx.map, lib/m4/hooks.m4, lib/mac-libgcrypt.c, lib/minitasn1/Makefile.am, lib/mpi-libgcrypt.c, lib/opencdk/Makefile.am, lib/openpgp/Makefile.am, lib/openpgp/compat.c, lib/openpgp/extras.c, lib/openpgp/gnutls_openpgp.c, lib/openpgp/output.c, lib/openpgp/pgp.c, lib/openpgp/pgpverify.c, lib/openpgp/privkey.c, lib/pk-libgcrypt.c, lib/random.c, lib/random.h, lib/rnd-libgcrypt.c, lib/x509/Makefile.am, lib/x509/common.c, lib/x509/common.h, lib/x509/crl.c, lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/dn.c, lib/x509/extensions.c, lib/x509/mpi.c, lib/x509/output.c, lib/x509/pkcs12.c, lib/x509/pkcs12_bag.c, lib/x509/pkcs12_encr.c, lib/x509/pkcs7.c, lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, lib/x509/rfc2818_hostname.c, lib/x509/sign.c, lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509_int.h, lib/x509/x509_write.c, lib/x509_b64.c, lib/x509_b64.h, libextra/Makefile.am, libextra/configure.ac, libextra/ext_inner_application.c, libextra/ext_inner_application.h, libextra/fipsmd5.c, libextra/gl/Makefile.am, libextra/gnutls_extra.c, libextra/gnutls_ia.c, libextra/gnutls_openssl.c, libextra/includes/Makefile.am, libextra/includes/gnutls/extra.h, libextra/includes/gnutls/openssl.h, libextra/libgnutls-extra.map, libextra/m4/hooks.m4, libextra/openssl_compat.c, libextra/openssl_compat.h, src/Makefile.am, src/benchmark.c, src/certtool-cfg.c, src/certtool.c, src/cli.c, src/common.c, src/crypt.c, src/list.h, src/prime.c, src/psk.c, src/serv.c, src/tests.c, src/tls_test.c, tests/Makefile.am, tests/anonself.c, tests/certder.c, tests/certificate_set_x509_crl.c, tests/chainverify.c, tests/crq_apis.c, tests/crq_key_id.c, tests/crypto_rng.c, tests/cve-2008-4989.c, tests/cve-2009-1415.c, tests/cve-2009-1416.c, tests/dhepskself.c, tests/dn.c, tests/dn2.c, tests/finished.c, tests/gc.c, tests/hostname-check.c, tests/init_roundtrip.c, tests/key-id/Makefile.am, tests/key-id/key-id, tests/mini-eagain.c, tests/mini-x509-rehandshake.c, tests/mini-x509.c, tests/mini.c, tests/moredn.c, tests/mpi.c, tests/netconf-psk.c, tests/nist-pkits/pkits, tests/nist-pkits/pkits_crl, tests/nist-pkits/pkits_crt, tests/nist-pkits/pkits_pkcs12, tests/nist-pkits/pkits_smime, tests/nul-in-x509-names.c, tests/openpgp-certs/Makefile.am, tests/openpgp-certs/testcerts, tests/openpgp-certs/testselfsigs, tests/openpgp-keyring.c, tests/openpgpself.c, tests/openssl.c, tests/oprfi.c, tests/parse_ca.c, tests/pathlen/Makefile.am, tests/pathlen/pathlen, tests/pgps2kgnu.c, tests/pkcs1-padding/Makefile.am, tests/pkcs1-padding/pkcs1-pad, tests/pkcs12-decode/Makefile.am, tests/pkcs12-decode/pkcs12, tests/pkcs12_encode.c, tests/pkcs12_s2k.c, tests/pkcs12_s2k_pem.c, tests/pkcs8-decode/Makefile.am, tests/pkcs8-decode/pkcs8, tests/pskself.c, tests/resume.c, tests/rfc2253-escape-test, tests/rsa-md5-collision/Makefile.am, tests/rsa-md5-collision/rsa-md5-collision, tests/safe-renegotiation/Makefile.am, tests/safe-renegotiation/srn0.c, tests/safe-renegotiation/srn1.c, tests/safe-renegotiation/srn2.c, tests/safe-renegotiation/srn3.c, tests/safe-renegotiation/srn4.c, tests/safe-renegotiation/srn5.c, tests/safe-renegotiation/testsrn, tests/set_pkcs12_cred.c, tests/setcredcrash.c, tests/sha2/Makefile.am, tests/sha2/sha2, tests/simple.c, tests/tlsia.c, tests/userid/Makefile.am, tests/userid/userid, tests/utils.c, tests/utils.h, tests/x509_altname.c, tests/x509dn.c, tests/x509paths/chain, tests/x509self.c, tests/x509sign-verify.c, tests/x509signself.c: Change GNUTLS into GnuTLS. 2010-05-22 Simon Josefsson * AUTHORS, ChangeLog.1, NEWS, README, README-alpha, THANKS, doc/gnutls.texi, doc/manpages/gnutls-cli-debug.1, doc/manpages/gnutls-cli.1, doc/manpages/gnutls-serv.1, doc/manpages/srptool.1, doc/reference/gnutls-docs.sgml, lib/ext_safe_renegotiation.c, lib/gnutls_handshake.c, src/cli-gaa.c, src/cli.gaa, src/serv-gaa.c, src/serv.gaa, src/tls_test-gaa.c, src/tls_test.gaa: Change GNU TLS into GnuTLS. 2010-05-22 Nikos Mavrogiannopoulos * lib/ext_safe_renegotiation.c, lib/gnutls_handshake.c: Ignore parsing of ciphersuite or extensions when safe renegotiation is disabled. 2010-05-22 Simon Josefsson * tests/safe-renegotiation/Makefile.am, tests/safe-renegotiation/srn5.c: Add test of self renegotiation APIs. 2010-05-22 Simon Josefsson * tests/safe-renegotiation/Makefile.am, tests/safe-renegotiation/README, tests/safe-renegotiation/srn4.c: Add more rengotiation self tests. 2010-05-22 Simon Josefsson * tests/safe-renegotiation/Makefile.am, tests/safe-renegotiation/README, tests/safe-renegotiation/srn0.c: Add more safe renegotiation self test. 2010-05-21 Simon Josefsson * NEWS, doc/announce.txt, doc/gnutls.texi, doc/manpages/Makefile.am, lib/ext_safe_renegotiation.c, lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, tests/safe-renegotiation/srn2.c: Remove gnutls_safe_negotiation_set_initial and gnutls_safe_renegotiation_set. 2010-05-18 Nikos Mavrogiannopoulos * lib/gnutls_priority.c: Documented behavioral change. 2010-05-18 Nikos Mavrogiannopoulos * lib/gnutls_int.h, lib/gnutls_priority.c: Because we want to differentiate the behavior of server and client with regards to safe renegotiation. If a server didn't have either SAFE_RENEGOTIATION or UNSAFE_RENEGOTIATION set the safe renegotiation will be the default. This (as well as the safe_renegotiation_set flag) has to be removed once safe renegotiation is default in both server and client side. 2010-05-18 Nikos Mavrogiannopoulos * lib/gnutls_state.c: Emulate old gnutls behavior regarding safe renegotiation if the priority_* functions are not called. 2010-05-11 Nikos Mavrogiannopoulos * lib/includes/gnutls/x509.h: Corrected typo. Reported by Clint Adams. 2010-05-03 Simon Josefsson * tests/safe-renegotiation/Makefile.am, tests/safe-renegotiation/srn1.c, tests/safe-renegotiation/srn3.c: tests: Add srn3 to test inverse of what srn1 is testing. 2010-05-03 Simon Josefsson * tests/safe-renegotiation/Makefile.am, tests/safe-renegotiation/srn2.c: tests: Add another safe renegotiation self tests. 2010-05-03 Simon Josefsson * tests/safe-renegotiation/srn1.c: Also test gnutls_safe_renegotiation_status API. 2010-05-03 Simon Josefsson * tests/safe-renegotiation/Makefile.am, tests/safe-renegotiation/srn1.c: tests: Add first self-test of safe renegotiation extension. 2010-05-03 Simon Josefsson * tests/Makefile.am, tests/mini-x509-rehandshake.c: tests: Add small X.509 rehandshake test. 2010-05-03 Simon Josefsson * tests/mini-x509.c: Protect against infloops. 2010-05-03 Simon Josefsson * tests/Makefile.am, tests/mini-x509.c: tests: Add mini-x509 self-test. 2010-04-30 Simon Josefsson * doc/gnutls.texi: Improve text, based on suggestions from Tomas Hoger . 2010-04-29 Simon Josefsson * lib/gnutls_handshake.c: Fix typo. 2010-04-29 Simon Josefsson * lib/gnutls_handshake.c: Improve renegotiation debug messages. 2010-04-29 Simon Josefsson * doc/announce.txt: Add. 2010-04-29 Simon Josefsson * .gitignore: Add. 2010-04-29 Simon Josefsson * doc/gnutls.texi: Add section on safe renegotiation. 2010-04-29 Simon Josefsson * lib/gnutls_record.c: Remove debug code. 2010-04-25 Simon Josefsson * doc/gnutls.texi: Mention shared library map file and GTK-DOC guidelines. 2010-04-22 Simon Josefsson * doc/announce.txt: Update URL. 2010-04-22 Simon Josefsson * AUTHORS: Update my OpenPGP key. 2010-04-22 Simon Josefsson * doc/announce.txt: Update my key. 2010-04-22 Simon Josefsson * doc/announcement-template.txt: Remove. 2010-04-22 Simon Josefsson * doc/ANNOUNCE, doc/announce.txt: Prepare 2.10.0 release notes. 2010-04-22 Simon Josefsson * NEWS: Add 2.8.x NEWS entries. 2010-04-22 Simon Josefsson * libextra/configure.ac: Also bump libgnutls-extra version. 2010-04-22 Simon Josefsson * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4: Bump versions. 2010-04-22 Simon Josefsson * build-aux/gendocs.sh: Chmod +x. 2010-04-22 Simon Josefsson * ChangeLog: Generated. 2010-04-22 Simon Josefsson * NEWS: Version 2.9.10. 2010-04-21 Simon Josefsson * NEWS, lib/minitasn1/Makefile.am, lib/minitasn1/coding.c, lib/minitasn1/decoding.c, lib/minitasn1/element.h, lib/minitasn1/gstr.h, lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, lib/minitasn1/parser_aux.h, lib/minitasn1/structure.h, lib/minitasn1/version.c: Upgrade to libtasn1 version 2.6. 2010-04-21 Simon Josefsson * gl/Makefile.am, gl/m4/gnulib-comp.m4, gl/m4/ioctl.m4, gl/m4/netdb_h.m4, gl/stdbool.in.h, gl/tests/test-lseek.sh, gl/tests/test-select-in.sh, gl/tests/test-stdbool.c, gl/tests/test-stdint.c, lib/gl/Makefile.am, lib/gl/m4/netdb_h.m4, lib/gl/m4/visibility.m4, lib/gl/stdbool.in.h, lib/gl/tests/test-stdbool.c, lib/gl/tests/test-stdint.c, lib/gl/tests/test-vasprintf.c, maint.mk: Update gnulib files. 2010-04-21 Simon Josefsson * configure.ac: Structure fork check together. 2010-04-15 Simon Josefsson * lib/gnutls_priority.c: Fix compiler warning. 2010-04-15 Simon Josefsson * gl/override/top/maint.mk.diff, libextra/gl/hmac-md5.c, libextra/gl/md5.c, maint.mk: Update gnulib files. 2010-04-15 Simon Josefsson * lib/crypto-api.c, lib/gnutls_priority.c: Indent code. 2010-04-14 Nikos Mavrogiannopoulos * lib/crypto-api.c, lib/includes/gnutls/crypto.h: Use size_t instead of int for input variables that represent sizes. 2010-04-02 Nikos Mavrogiannopoulos * lib/gnutls_priority.c: Free the priority structure on error. Reported by Paul Aurich. 2010-04-02 Nikos Mavrogiannopoulos * lib/gnutls_priority.c: The string is colon separated. Reported by Paul Aurich. 2010-04-14 Simon Josefsson * lib/includes/gnutls/gnutls.h.in: Fix indent bug. 2010-04-14 Simon Josefsson * cfg.mk, doc/examples/examples.h, guile/src/errors.h, guile/src/utils.h, lib/auth_cert.h, lib/auth_dh_common.h, lib/crypto.h, lib/ext_oprfi.h, lib/ext_safe_renegotiation.h, lib/ext_session_ticket.h, lib/ext_signature.h, lib/gnutls_algorithms.h, lib/gnutls_cipher_int.h, lib/gnutls_compress.h, lib/gnutls_cryptodev.h, lib/gnutls_errors.h, lib/gnutls_extensions.h, lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_mpi.h, lib/gnutls_pk.h, lib/gnutls_sig.h, lib/gnutls_srp.h, lib/gnutls_state.h, lib/gnutls_str.h, lib/gnutls_supplemental.h, lib/includes/gnutls/crypto.h, lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/openpgp.h, lib/includes/gnutls/pkcs12.h, lib/includes/gnutls/x509.h, lib/opencdk/context.h, lib/opencdk/filters.h, lib/opencdk/keydb.h, lib/opencdk/main.h, lib/opencdk/opencdk.h, lib/opencdk/packet.h, lib/opencdk/stream.h, lib/opencdk/types.h, lib/openpgp/gnutls_openpgp.h, lib/openpgp/openpgp_int.h, lib/x509/pbkdf2-sha1.h, lib/x509/x509_int.h, libextra/includes/gnutls/extra.h, libextra/includes/gnutls/openssl.h, src/certtool-cfg.h, src/certtool-common.h, src/common.h: More indentation. 2010-04-14 Simon Josefsson * NEWS: Add. 2010-04-14 Simon Josefsson * NEWS: Add. 2010-04-14 Simon Josefsson * NEWS: Add. 2010-04-14 Simon Josefsson * doc/manpages/Makefile.am: Generated. 2010-04-14 Simon Josefsson * doc/examples/ex-client-tlsia.c, doc/examples/ex-verify.c, doc/examples/ex-x509-info.c, lib/auth_cert.c, lib/auth_rsa.c, lib/ext_cert_type.c, lib/ext_max_record.c, lib/ext_oprfi.c, lib/ext_safe_renegotiation.c, lib/ext_server_name.c, lib/ext_session_ticket.c, lib/ext_signature.c, lib/gnutls_algorithms.c, lib/gnutls_auth.c, lib/gnutls_buffers.c, lib/gnutls_cert.c, lib/gnutls_cipher.c, lib/gnutls_compress.c, lib/gnutls_constate.c, lib/gnutls_extensions.c, lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_kx.c, lib/gnutls_priority.c, lib/gnutls_record.c, lib/gnutls_session_pack.c, lib/gnutls_sig.c, lib/gnutls_state.c, lib/gnutls_v2_compat.c, lib/gnutls_x509.c, lib/minitasn1/decoding.c, lib/opencdk/read-packet.c, lib/opencdk/sig-check.c, lib/x509/pkcs12.c, lib/x509/verify.c, libextra/gl/hmac-md5.c, libextra/gl/md5.c, src/benchmark.c, src/certtool.c, src/cli.c, src/serv.c, src/tests.c, src/tls_test.c, tests/anonself.c, tests/certder.c, tests/chainverify.c, tests/crq_apis.c, tests/crq_key_id.c, tests/cve-2008-4989.c, tests/dhepskself.c, tests/dn.c, tests/dn2.c, tests/finished.c, tests/gc.c, tests/hostname-check.c, tests/init_roundtrip.c, tests/mini-eagain.c, tests/mini.c, tests/netconf-psk.c, tests/nul-in-x509-names.c, tests/openpgp-keyring.c, tests/openpgpself.c, tests/parse_ca.c, tests/pkcs12_encode.c, tests/pkcs12_s2k.c, tests/pkcs12_s2k_pem.c, tests/pskself.c, tests/resume.c, tests/set_pkcs12_cred.c, tests/simple.c, tests/tlsia.c, tests/utils.c, tests/x509_altname.c, tests/x509dn.c, tests/x509self.c, tests/x509sign-verify.c, tests/x509signself.c: Indent code. 2010-04-14 Simon Josefsson * NEWS, lib/crypto-api.c, lib/ext_safe_renegotiation.c, lib/gnutls_algorithms.c, lib/gnutls_cert.c, lib/libgnutls.map, lib/x509/x509.c: Export new ABIs. Doc fixes for new APIs. 2010-04-14 Simon Josefsson * tests/safe-renegotiation/Makefile.am: Disable self-test temporarily until we make it work cross-platform. 2010-04-13 Simon Josefsson * NEWS, lib/ext_safe_renegotiation.c, lib/gnutls_algorithms.c, lib/includes/gnutls/gnutls.h.in: Doc fixes. 2010-04-13 Simon Josefsson * doc/manpages/Makefile.am, src/certtool-gaa.c: Generated. 2010-04-13 Simon Josefsson * doc/reference/Makefile.am: Ignore c++defs.h. 2010-04-13 Simon Josefsson * .x-sc_prohibit_empty_lines_at_EOF, GNUmakefile, build-aux/c++defs.h, build-aux/warn-on-use.h, doc/certtool.cfg, doc/credentials/gnutls-http-serv, doc/credentials/params.pem, doc/credentials/x509/Makefile.am, doc/credentials/x509/cert.pem, doc/credentials/x509/clicert-dsa.pem, gl/Makefile.am, gl/fseeko.c, gl/m4/fseeko.m4, gl/m4/gnulib-common.m4, gl/m4/gnulib-comp.m4, gl/m4/lib-link.m4, gl/m4/memchr.m4, gl/m4/stdio_h.m4, gl/m4/stdlib_h.m4, gl/m4/string_h.m4, gl/m4/time_h.m4, gl/m4/unistd_h.m4, gl/m4/vasnprintf.m4, gl/stdio-impl.h, gl/stdio.in.h, gl/stdlib.in.h, gl/string.in.h, gl/sys_socket.in.h, gl/sys_stat.in.h, gl/sys_time.in.h, gl/tests/Makefile.am, gl/tests/ioctl.c, gl/tests/sys_ioctl.in.h, gl/tests/test-vasnprintf.c, gl/time.in.h, gl/unistd.in.h, gl/vasnprintf.c, gl/wchar.in.h, guile/modules/gnutls/extra.scm, guile/tests/x509-auth.scm, guile/tests/x509-certificate.pem, lib/build-aux/c++defs.h, lib/build-aux/warn-on-use.h, lib/ext_cert_type.h, lib/gl/Makefile.am, lib/gl/fseeko.c, lib/gl/m4/fseeko.m4, lib/gl/m4/gnulib-common.m4, lib/gl/m4/gnulib-comp.m4, lib/gl/m4/lib-link.m4, lib/gl/m4/memchr.m4, lib/gl/m4/stdio_h.m4, lib/gl/m4/stdlib_h.m4, lib/gl/m4/string_h.m4, lib/gl/m4/threadlib.m4, lib/gl/m4/time_h.m4, lib/gl/m4/time_r.m4, lib/gl/m4/unistd_h.m4, lib/gl/m4/vasnprintf.m4, lib/gl/stdio-impl.h, lib/gl/stdio.in.h, lib/gl/stdlib.in.h, lib/gl/string.in.h, lib/gl/sys_socket.in.h, lib/gl/sys_stat.in.h, lib/gl/tests/Makefile.am, lib/gl/tests/test-vasnprintf.c, lib/gl/time.in.h, lib/gl/time_r.c, lib/gl/unistd.in.h, lib/gl/vasnprintf.c, lib/gl/wchar.in.h, lib/minitasn1/Makefile.am, lib/minitasn1/README, lib/opencdk/keydb.h, lib/opencdk/packet.h, libextra/gl/m4/gnulib-common.m4, libextra/gl/m4/gnulib-comp.m4, libextra/gl/m4/lib-link.m4, maint.mk, src/certtool.gaa, src/cfg/Makefile.am, src/crypt.gaa, src/tls_test.gaa, tests/key-id/ca-gnutls-keyid.pem, tests/key-id/ca-no-keyid.pem, tests/key-id/ca-weird-keyid.pem, tests/pkcs1-padding/pkcs1-pad-broken.pem, tests/pkcs1-padding/pkcs1-pad-broken2.pem, tests/pkcs1-padding/pkcs1-pad-broken3.pem, tests/pkcs1-padding/pkcs1-pad-ok.pem, tests/pkcs1-padding/pkcs1-pad-ok2.pem, tests/safe-renegotiation/Makefile.am, tests/test25.pem: Update gnulib files, fix syntax-check warnings. 2010-03-31 Simon Josefsson * .gitignore, gl/m4/wchar_h.m4, lib/gl/m4/wchar_h.m4: Add forgotten gnulib files, and fix .gitignore. 2010-03-31 Simon Josefsson * NEWS: Add. 2010-03-31 Simon Josefsson * lib/po/LINGUAS, lib/po/it.po.in, lib/po/nl.po.in: Sync with TP. 2010-03-31 Simon Josefsson * .x-sc_program_name, .x-sc_the_the, cfg.mk, lib/ext_safe_renegotiation.c, lib/gnutls_handshake.c, lib/m4/hooks.m4, lib/opencdk/sig-check.c, src/certtool.c, src/serv.c, tests/dn.c, tests/mini.c: Update gnulib files. Fix syntax-check warnings. 2010-03-31 Simon Josefsson * build-aux/c++defs.h, build-aux/vc-list-files, build-aux/warn-on-use.h, gl/Makefile.am, gl/accept.c, gl/arpa_inet.in.h, gl/bind.c, gl/connect.c, gl/getaddrinfo.c, gl/gettext.h, gl/gettimeofday.c, gl/m4/arpa_inet_h.m4, gl/m4/getaddrinfo.m4, gl/m4/gettimeofday.m4, gl/m4/gnulib-common.m4, gl/m4/gnulib-comp.m4, gl/m4/inet_ntop.m4, gl/m4/inet_pton.m4, gl/m4/lseek.m4, gl/m4/netdb_h.m4, gl/m4/stddef_h.m4, gl/m4/stdio_h.m4, gl/m4/stdlib_h.m4, gl/m4/string_h.m4, gl/m4/sys_ioctl_h.m4, gl/m4/sys_select_h.m4, gl/m4/sys_socket_h.m4, gl/m4/sys_stat_h.m4, gl/m4/sys_time_h.m4, gl/m4/time_h.m4, gl/m4/unistd_h.m4, gl/m4/warn-on-use.m4, gl/m4/wchar.m4, gl/netdb.in.h, gl/netinet_in.in.h, gl/recv.c, gl/select.c, gl/send.c, gl/stdint.in.h, gl/stdio.in.h, gl/stdlib.in.h, gl/string.in.h, gl/sys_select.in.h, gl/sys_socket.in.h, gl/sys_stat.in.h, gl/sys_time.in.h, gl/tests/Makefile.am, gl/tests/ioctl.c, gl/tests/sys_ioctl.in.h, gl/tests/test-vc-list-files-git.sh, gl/time.in.h, gl/unistd.in.h, gl/wchar.in.h, lib/build-aux/c++defs.h, lib/build-aux/warn-on-use.h, lib/gl/Makefile.am, lib/gl/gettext.h, lib/gl/m4/gnulib-common.m4, lib/gl/m4/gnulib-comp.m4, lib/gl/m4/intldir.m4, lib/gl/m4/lseek.m4, lib/gl/m4/netdb_h.m4, lib/gl/m4/printf-posix.m4, lib/gl/m4/stddef_h.m4, lib/gl/m4/stdio_h.m4, lib/gl/m4/stdlib_h.m4, lib/gl/m4/string_h.m4, lib/gl/m4/strings_h.m4, lib/gl/m4/sys_socket_h.m4, lib/gl/m4/sys_stat_h.m4, lib/gl/m4/time_h.m4, lib/gl/m4/unistd_h.m4, lib/gl/m4/visibility.m4, lib/gl/m4/warn-on-use.m4, lib/gl/m4/wchar.m4, lib/gl/netdb.in.h, lib/gl/stdint.in.h, lib/gl/stdio.in.h, lib/gl/stdlib.in.h, lib/gl/string.in.h, lib/gl/sys_socket.in.h, lib/gl/sys_stat.in.h, lib/gl/tests/Makefile.am, lib/gl/time.in.h, lib/gl/unistd.in.h, lib/gl/wchar.in.h, libextra/gl/m4/gnulib-common.m4, libextra/gl/m4/gnulib-comp.m4, maint.mk: Update gnulib files. 2010-03-30 Simon Josefsson * m4/valgrind.m4: Check for what we use. Bump serial. 2010-03-30 Nikos Mavrogiannopoulos * m4/valgrind.m4, tests/Makefile.am: Valgrind -q is now set by the valgrind detection script to avoid issue when running tests without valgrind. 2010-03-27 Nikos Mavrogiannopoulos * lib/gnutls_cert.c: increased small value for certificates. Typical certificates are much longer than that. 2010-03-20 Nikos Mavrogiannopoulos * configure.ac, tests/Makefile.am, tests/anonself.c, tests/certder.c, tests/chainverify.c, tests/crq_apis.c, tests/crq_key_id.c, tests/cve-2009-1415.c, tests/dhepskself.c, tests/dn.c, tests/dn2.c, tests/finished.c, tests/gc.c, tests/hostname-check.c, tests/init_roundtrip.c, tests/mini-eagain.c, tests/mini.c, tests/moredn.c, tests/mpi.c, tests/netconf-psk.c, tests/nul-in-x509-names.c, tests/openpgp-keyring.c, tests/openpgpself.c, tests/openssl.c, tests/parse_ca.c, tests/pkcs12_encode.c, tests/pkcs12_s2k.c, tests/pskself.c, tests/resume.c, tests/set_pkcs12_cred.c, tests/sha2/sha2, tests/simple.c, tests/tlsia.c, tests/x509_altname.c, tests/x509dn.c, tests/x509self.c, tests/x509sign-verify.c, tests/x509signself.c: Reduced several unneeded messages during the make check procedure. Verbose messages can be obtained with --verbose. 2010-03-20 Nikos Mavrogiannopoulos * doc/Makefile.am: use mv -f to avoid interactiveness. 2010-03-20 Nikos Mavrogiannopoulos * tests/dn2.c: Modified to account for postalcode. 2010-03-20 Nikos Mavrogiannopoulos * NEWS: added news entry for postalcode. 2010-03-20 Nikos Mavrogiannopoulos * lib/includes/gnutls/x509.h, lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509/common.c: Display postalCode and Name X.509 DN attributes correctly. Based on patch by Pavan Konjarla. 2010-03-20 Nikos Mavrogiannopoulos * lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/includes/gnutls/gnutls.h.in, src/serv-gaa.c, src/serv.gaa: Each ciphersuite is now tight with a minimum TLS version and a maximum one. It is valid if it is between (and including) those. This was added to deprecate TLS_RSA_EXPORT_WITH_RC4_40_MD5 which is not available with TLS 1.1. Reported by Adrian F. Dimcev. 2010-03-20 Nikos Mavrogiannopoulos * .gitignore: Ignore more files. 2010-03-17 Nikos Mavrogiannopoulos * NEWS, lib/auth_cert.c, lib/auth_cert.h, lib/gnutls_alert.c, lib/gnutls_cert.c, lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, src/cli.c: Added gnutls_certificate_set_verify_function() to allow checking (verifying) certificate before the handshake is completed. 2010-03-17 Nikos Mavrogiannopoulos * doc/examples/ex-rfc2818.c, doc/examples/ex-verify.c: Use the flags for expiration instead of getting the time of each certificate. 2010-03-17 Simon Josefsson * README-alpha: Mention datefudge. 2010-03-17 Simon Josefsson * tests/pkcs1-padding/pkcs1-pad: Skip test if datefudge is not available. 2010-03-17 Nikos Mavrogiannopoulos * lib/gnutls_priority.c: INITIAL_SAFE_RENEGOTIATION implies SAFE_RENEGOTIATION. 2010-03-16 Nikos Mavrogiannopoulos * lib/includes/gnutls/gnutls.h.in: Added missing prototype. 2010-03-16 Nikos Mavrogiannopoulos * tests/safe-renegotiation/testsrn: made SAFE_RENEGOTIATION flags explicit. 2010-03-16 Nikos Mavrogiannopoulos * lib/x509/verify.c, src/certtool.c: gnutls_x509_crt_verify() and gnutls_x509_crt_list_verify() behave identically. That means that gnutls_x509_crt_verify() will now check dates as well. Certool --verify-chain will use the GNUTLS_VERIFY_DO_NOT_ALLOW_SAME flag to gnutls_x509_crt_verify() to force verification even if certificates are the same. The only exception is at the final certificate (self-checking) where the extra flag GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT is specified to allow for v1 CA certificates. 2010-03-16 Nikos Mavrogiannopoulos * lib/x509/common.c: Handle dates before 1-1-1970 (handle as being equal to 1-1-1970). 2010-03-16 Nikos Mavrogiannopoulos * tests/pkcs1-padding/pkcs1-pad: Fail if required programs are not found. 2010-03-15 Nikos Mavrogiannopoulos * NEWS, doc/manpages/gnutls-cli.1, doc/manpages/gnutls-serv.1, lib/ext_safe_renegotiation.c, lib/gnutls_priority.c, lib/gnutls_record.c: Safe renegotiation is not enabled by default in client side. 2010-03-15 Nikos Mavrogiannopoulos * doc/manpages/gnutls-cli.1, lib/gnutls_priority.c: better documentation for %INITIAL_SAFE_RENEGOTIATION 2010-03-15 Simon Josefsson * NEWS: Fix. 2010-03-15 Simon Josefsson * tests/openpgp-certs/Makefile.am, tests/openpgp-certs/testselfsigs: Rewrite tests/openpgp-certs/testselfsigs portably for Solaris. Fix EXTRA_DIST. 2010-03-15 Nikos Mavrogiannopoulos * tests/safe-renegotiation/testsrn: localhost -> 127.0.0.1 to work in places where localhost does not resolve. 2010-03-14 Nikos Mavrogiannopoulos * NEWS, lib/includes/gnutls/x509.h, lib/x509/verify.c: Extended time verification to trusted certificate list as well. Introduced the flag GNUTLS_VERIFY_DISABLE_TRUSTED_TIME_CHECKS that will prevent the trusted certificate list verification. 2010-03-11 Nikos Mavrogiannopoulos * src/tests.c, src/tests.h, src/tls_test.c: Added tests for safe renegotiation. Removed old tests for obsolete features (lzo) and tests that were not actually working (srp). 2010-03-11 Nikos Mavrogiannopoulos * lib/gnutls_extensions.c, lib/gnutls_extensions.h, lib/gnutls_handshake.c, lib/includes/gnutls/gnutls.h.in, tests/safe-renegotiation/testsrn: Extension generation in SSL 3.0 (as a reply to SCSV) is not using common code with normal extension generation. Solve issue reported by Tomas Mraz that caused SSL 3.0 renegotiation fail. 2010-03-07 Nikos Mavrogiannopoulos * lib/x509/verify.c: Removed artificial constrained that prevented end-user certificates, being added to the trusted list, treated as trusted. Suggestion and patch by Tomas Mraz. 2010-03-07 Nikos Mavrogiannopoulos * doc/manpages/gnutls-cli.1: Documented that initial_safe_renegotiation is the default. 2010-03-03 Nikos Mavrogiannopoulos * src/serv.c: gnutls-serv will terminate connection on rehandshake errors. 2010-03-03 Nikos Mavrogiannopoulos * lib/gnutls_alert.c, lib/gnutls_errors.c, lib/gnutls_handshake.c, lib/includes/gnutls/gnutls.h.in: Avoid sending alerts during handshake. Alerts might be interrupted and return a non-fatal error which will propagate and in many cases it shouldn't. Avoid sending no renegotiation alert when a client connects to an unsafe server. Thanks to Tomas Hoger for the report. 2010-02-26 Nikos Mavrogiannopoulos * src/cli.c: On handshake error send appropriate alert and terminate stream. 2010-02-18 Simon Josefsson * doc/reference/gnutls-docs.sgml: Add id's to chapters. 2010-02-18 Simon Josefsson * .gitignore: Update. 2010-02-18 Simon Josefsson * lib/po/zh_CN.po: Remove. 2010-02-18 Simon Josefsson * src/Makefile.am: Fix -lrt usage. 2010-02-18 Simon Josefsson * src/benchmark.c: Use gnulib gettime module. Indent. 2010-02-18 Simon Josefsson * lib/po/zh_CN.po: Add. 2010-02-18 Simon Josefsson * lib/gl/netdb.in.h: Update gnulib files. 2010-02-18 Simon Josefsson * gl/Makefile.am, gl/gettime.c, gl/gettimeofday.c, gl/m4/clock_time.m4, gl/m4/gettime.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/timespec.m4, gl/netdb.in.h, gl/tests/Makefile.am, gl/tests/gettimeofday.c, gl/timespec.h: Update gnulib files. 2010-02-17 Simon Josefsson * lib/cryptodev.c: Indent. Don't include fcntl.h and sys/ioctl.h on (for example) Windows. 2010-02-17 Simon Josefsson * tests/safe-renegotiation/testsrn: Fix objdir != srcdir. 2010-02-17 Simon Josefsson * tests/safe-renegotiation/testsrn: Drop bashism. Make it work on Windows. 2010-02-17 Simon Josefsson * NEWS: Fix. 2010-02-17 Simon Josefsson * NEWS: Add. 2010-02-17 Simon Josefsson * doc/manpages/Makefile.am: Generated. 2010-02-17 Simon Josefsson * doc/reference/Makefile.am, doc/reference/gnutls-docs.sgml, lib/ext_safe_renegotiation.c, lib/ext_signature.c, lib/gnutls_supplemental.c: More GTK-DOC fixes. 2010-02-17 Simon Josefsson * lib/gnutls_db.c: Doc fix. 2010-02-17 Simon Josefsson * lib/openpgp/gnutls_openpgp.c: Doc fix. 2010-02-17 Simon Josefsson * lib/includes/gnutls/gnutls.h.in: Doc fix. 2010-02-17 Simon Josefsson * lib/includes/gnutls/gnutls.h.in: Fix enum doc. 2010-02-17 Simon Josefsson * lib/includes/gnutls/gnutls.h.in: More enum docs. 2010-02-17 Simon Josefsson * lib/includes/gnutls/crypto.h: More enum documentation. 2010-02-17 Simon Josefsson * libextra/gnutls_ia.c: Doc fix. 2010-02-17 Simon Josefsson * lib/includes/gnutls/x509.h: More enum documentation. 2010-02-17 Simon Josefsson * libextra/includes/gnutls/extra.h: Document more. 2010-02-17 Simon Josefsson * lib/includes/gnutls/openpgp.h: Document more. 2010-02-17 Simon Josefsson * lib/includes/gnutls/pkcs12.h: Document enum. 2010-02-17 Simon Josefsson * lib/includes/gnutls/gnutls.h.in: More enum. 2010-02-17 Simon Josefsson * lib/includes/gnutls/gnutls.h.in: Fix typo. 2010-02-17 Simon Josefsson * lib/includes/gnutls/gnutls.h.in: More GTK-DOC documentation. 2010-02-17 Simon Josefsson * lib/includes/gnutls/gnutls.h.in: Improve GTK-DOC coverage. 2010-02-17 Simon Josefsson * lib/includes/gnutls/crypto.h: Fix comments, for GTK-DOC. 2010-02-17 Simon Josefsson * doc/reference/Makefile.am: Ignore more headers. 2010-02-17 Simon Josefsson * lib/x509/crl.c: Doc fix. 2010-02-17 Simon Josefsson * lib/includes/gnutls/crypto.h: Fix for GTK-DOC parse breakage. 2010-02-17 Simon Josefsson * doc/reference/Makefile.am: Ignore gnutlsxx.h too, GTK-DOC doesn't handle C++. 2010-02-17 Simon Josefsson * doc/reference/Makefile.am: Need crypto.h too. 2010-02-17 Simon Josefsson * doc/reference/Makefile.am: Improve header ignores. 2010-02-17 Simon Josefsson * lib/minitasn1/coding.c, lib/minitasn1/decoding.c, lib/minitasn1/element.c, lib/minitasn1/errors.c, lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, lib/minitasn1/structure.c: Upgrade to libtasn1 2.5 snapshot, for GTK-DOC comments. 2010-02-17 Simon Josefsson * lib/includes/gnutls/openpgp.h: Another GTK-DOC fix. 2010-02-17 Simon Josefsson * lib/auth_srp_sb64.c, lib/crypto-api.c, lib/crypto.c, lib/ext_safe_renegotiation.c, lib/ext_server_name.c, lib/ext_signature.c, lib/gnutls_alert.c, lib/gnutls_algorithms.c, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_buffers.c, lib/gnutls_cert.c, lib/gnutls_compress.c, lib/gnutls_db.c, lib/gnutls_dh_primes.c, lib/gnutls_errors.c, lib/gnutls_extensions.c, lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_mem.c, lib/gnutls_priority.c, lib/gnutls_psk.c, lib/gnutls_psk_netconf.c, lib/gnutls_record.c, lib/gnutls_rsa_export.c, lib/gnutls_session.c, lib/gnutls_srp.c, lib/gnutls_state.c, lib/gnutls_str.c, lib/gnutls_ui.c, lib/gnutls_x509.c, lib/includes/gnutls/crypto.h, lib/opencdk/stream.c, lib/openpgp/compat.c, lib/openpgp/extras.c, lib/openpgp/gnutls_openpgp.c, lib/openpgp/output.c, lib/openpgp/pgp.c, lib/openpgp/pgpverify.c, lib/openpgp/privkey.c, lib/x509/common.c, lib/x509/crl.c, lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/dn.c, lib/x509/output.c, lib/x509/pkcs12.c, lib/x509/pkcs12_bag.c, lib/x509/pkcs7.c, lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, lib/x509/rfc2818_hostname.c, lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509_write.c, lib/x509_b64.c, libextra/gnutls_extra.c, libextra/gnutls_ia.c, libextra/openssl_compat.c: Fix GTK-DOC syntax. Unfortunately this looses some information. 2010-02-17 Simon Josefsson * lib/auth_srp_sb64.c, lib/crypto-api.c, lib/ext_safe_renegotiation.c, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_cert.c, lib/gnutls_db.c, lib/gnutls_dh.c, lib/gnutls_handshake.c, lib/gnutls_mem.c, lib/gnutls_priority.c, lib/gnutls_psk.c, lib/gnutls_record.c, lib/gnutls_session.c, lib/gnutls_srp.c, lib/gnutls_state.c, lib/gnutls_x509.c, lib/x509/crl.c, lib/x509/crl_write.c, lib/x509/pkcs12.c, lib/x509/pkcs12_bag.c, lib/x509/pkcs7.c, lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, lib/x509/sign.c, lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509_write.c, libextra/openssl_compat.c: Align indentation of GTK-DOC comments. 2010-02-17 Simon Josefsson * lib/po/vi.po.in: Sync with TP. 2010-02-17 Simon Josefsson * doc/examples/Makefile.am: Silence gnulib warning about fseek. 2010-02-17 Simon Josefsson * build-aux/gendocs.sh, build-aux/gnupload, gl/Makefile.am, gl/m4/getdelim.m4, gl/m4/getline.m4, gl/m4/gettimeofday.m4, gl/m4/gnulib-comp.m4, gl/m4/stdio_h.m4, gl/m4/sys_time_h.m4, gl/netdb.in.h, gl/stdio.in.h, gl/sys_time.in.h, gl/tests/test-getdelim.c, gl/tests/test-getline.c, gl/tests/test-gettimeofday.c, lib/gl/Makefile.am, lib/gl/m4/stdio_h.m4, lib/gl/netdb.in.h, lib/gl/stdio.in.h, maint.mk: Update gnulib files. 2010-02-05 Nikos Mavrogiannopoulos * lib/gnutls_session_pack.c: Corrected calculation of session data for PSK ciphersuites. Solves issue #107256 reported by Wolfgang Glas. 2010-02-03 Simon Josefsson * doc/ANNOUNCE: Add announcement message. 2010-01-27 Simon Josefsson * NEWS: Fix. 2010-01-27 Simon Josefsson * NEWS: Add. 2010-01-27 Simon Josefsson * lib/po/LINGUAS, lib/po/cs.po.in, lib/po/de.po.in, lib/po/fr.po.in, lib/po/ms.po.in, lib/po/nl.po.in, lib/po/pl.po.in, lib/po/sv.po.in, lib/po/zh_CN.po.in: Sync with TP. 2010-01-27 Simon Josefsson * build-aux/gnupload, doc/gendocs_template, gl/tests/test-gettimeofday.c, gl/tests/test-memchr.c, gl/tests/test-read-file.c, gl/tests/test-sockets.c, lib/gl/tests/test-memchr.c, lib/gl/tests/test-read-file.c, lib/gl/tests/test-sockets.c: Update gnulib files. 2010-01-27 Simon Josefsson * AUTHORS: Add. 2010-01-27 Simon Josefsson * NEWS, lib/minitasn1/coding.c, lib/minitasn1/decoding.c, lib/minitasn1/element.c, lib/minitasn1/errors.c, lib/minitasn1/gstr.c, lib/minitasn1/int.h, lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, lib/minitasn1/structure.c: Use libtasn1 v2.4. 2010-01-27 Simon Josefsson * lib/gnutls.pc.in: Fix license. 2010-01-27 Simon Josefsson * .clcopying: Fix license. 2010-01-27 Simon Josefsson * AUTHORS: Fix license. 2010-01-27 Simon Josefsson * tests/key-id/README, tests/libgcrypt.supp, tests/rsa-md5-collision/Makefile.am, tests/rsa-md5-collision/README, tests/rsa-md5-collision/mbox, tests/userid/userid.pem: License fix. 2010-01-27 Simon Josefsson * ChangeLog, cfg.mk, configure.ac, doc/Makefile.am, doc/credentials/Makefile.am, doc/cyclo/Makefile.am, doc/errcodes.c, doc/examples/Makefile.am, doc/extract-guile-c-doc.scm, doc/gendocs_template, doc/manpages/Makefile.am, doc/printlist.c, gl/gnulib.mk, gl/m4/onceonly_2_57.m4, gl/tests/gnulib.mk, guile/Makefile.am, guile/modules/Makefile.am, guile/modules/gnutls.scm, guile/modules/gnutls/build/enums.scm, guile/modules/gnutls/build/priorities.scm, guile/modules/gnutls/build/smobs.scm, guile/modules/gnutls/build/utils.scm, guile/modules/gnutls/extra.scm, guile/modules/system/documentation/c-snarf.scm, guile/modules/system/documentation/output.scm, guile/pre-inst-guile.in, guile/src/Makefile.am, guile/src/core.c, guile/src/errors.c, guile/src/errors.h, guile/src/extra.c, guile/src/make-enum-header.scm, guile/src/make-enum-map.scm, guile/src/make-session-priorities.scm, guile/src/make-smob-header.scm, guile/src/make-smob-types.scm, guile/src/utils.c, guile/src/utils.h, guile/tests/Makefile.am, guile/tests/anonymous-auth.scm, guile/tests/errors.scm, guile/tests/openpgp-auth.scm, guile/tests/openpgp-keyring.scm, guile/tests/openpgp-keys.scm, guile/tests/pkcs-import-export.scm, guile/tests/session-record-port.scm, guile/tests/srp-base64.scm, guile/tests/x509-auth.scm, guile/tests/x509-certificates.scm, lib/Makefile.am, lib/auth_anon.c, lib/auth_anon.h, lib/auth_cert.c, lib/auth_cert.h, lib/auth_dh_common.c, lib/auth_dh_common.h, lib/auth_dhe.c, lib/auth_dhe_psk.c, lib/auth_psk.c, lib/auth_psk.h, lib/auth_psk_passwd.c, lib/auth_psk_passwd.h, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/auth_srp.c, lib/auth_srp.h, lib/auth_srp_passwd.c, lib/auth_srp_passwd.h, lib/auth_srp_rsa.c, lib/auth_srp_sb64.c, lib/cipher-libgcrypt.c, lib/configure.ac, lib/crypto-api.c, lib/crypto.c, lib/crypto.h, lib/cryptodev.c, lib/debug.c, lib/debug.h, lib/ext_cert_type.c, lib/ext_cert_type.h, lib/ext_max_record.c, lib/ext_max_record.h, lib/ext_oprfi.c, lib/ext_oprfi.h, lib/ext_safe_renegotiation.c, lib/ext_safe_renegotiation.h, lib/ext_server_name.c, lib/ext_server_name.h, lib/ext_session_ticket.c, lib/ext_session_ticket.h, lib/ext_signature.c, lib/ext_signature.h, lib/ext_srp.c, lib/ext_srp.h, lib/gnutls_alert.c, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_auth.h, lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_cipher_int.h, lib/gnutls_compress.c, lib/gnutls_compress.h, lib/gnutls_constate.c, lib/gnutls_constate.h, lib/gnutls_datum.c, lib/gnutls_datum.h, lib/gnutls_db.c, lib/gnutls_db.h, lib/gnutls_dh.c, lib/gnutls_dh.h, lib/gnutls_dh_primes.c, lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_extensions.c, lib/gnutls_extensions.h, lib/gnutls_global.c, lib/gnutls_global.h, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_helper.c, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_kx.h, lib/gnutls_mem.c, lib/gnutls_mem.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_num.c, lib/gnutls_num.h, lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_priority.c, lib/gnutls_psk.c, lib/gnutls_psk_netconf.c, lib/gnutls_record.c, lib/gnutls_record.h, lib/gnutls_rsa_export.c, lib/gnutls_rsa_export.h, lib/gnutls_session.c, lib/gnutls_session_pack.c, lib/gnutls_session_pack.h, lib/gnutls_sig.c, lib/gnutls_sig.h, lib/gnutls_srp.c, lib/gnutls_srp.h, lib/gnutls_state.c, lib/gnutls_state.h, lib/gnutls_str.c, lib/gnutls_str.h, lib/gnutls_supplemental.c, lib/gnutls_supplemental.h, lib/gnutls_ui.c, lib/gnutls_v2_compat.c, lib/gnutls_v2_compat.h, lib/gnutls_x509.c, lib/gnutls_x509.h, lib/includes/Makefile.am, lib/includes/gnutls/crypto.h, lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/openpgp.h, lib/includes/gnutls/pkcs12.h, lib/includes/gnutls/x509.h, lib/libgnutls.map, lib/libgnutlsxx.map, lib/m4/hooks.m4, lib/mac-libgcrypt.c, lib/minitasn1/Makefile.am, lib/minitasn1/gstr.c, lib/minitasn1/int.h, lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, lib/minitasn1/structure.c, lib/mpi-libgcrypt.c, lib/opencdk/Makefile.am, lib/opencdk/armor.c, lib/opencdk/context.h, lib/opencdk/filters.h, lib/opencdk/hash.c, lib/opencdk/kbnode.c, lib/opencdk/keydb.c, lib/opencdk/literal.c, lib/opencdk/main.c, lib/opencdk/main.h, lib/opencdk/misc.c, lib/opencdk/new-packet.c, lib/opencdk/opencdk.h, lib/opencdk/packet.h, lib/opencdk/pubkey.c, lib/opencdk/read-packet.c, lib/opencdk/seskey.c, lib/opencdk/sig-check.c, lib/opencdk/stream.c, lib/opencdk/stream.h, lib/opencdk/types.h, lib/opencdk/verify.c, lib/opencdk/write-packet.c, lib/openpgp/Makefile.am, lib/openpgp/compat.c, lib/openpgp/extras.c, lib/openpgp/gnutls_openpgp.c, lib/openpgp/output.c, lib/openpgp/pgp.c, lib/openpgp/pgpverify.c, lib/openpgp/privkey.c, lib/pk-libgcrypt.c, lib/po/cs.po.in, lib/po/de.po.in, lib/po/fr.po.in, lib/po/ms.po.in, lib/po/nl.po.in, lib/po/pl.po.in, lib/po/sv.po.in, lib/random.c, lib/random.h, lib/rnd-libgcrypt.c, lib/x509/Makefile.am, lib/x509/common.c, lib/x509/common.h, lib/x509/crl.c, lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/dn.c, lib/x509/extensions.c, lib/x509/mpi.c, lib/x509/output.c, lib/x509/pbkdf2-sha1.c, lib/x509/pkcs12.c, lib/x509/pkcs12_bag.c, lib/x509/pkcs12_encr.c, lib/x509/pkcs7.c, lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, lib/x509/rfc2818_hostname.c, lib/x509/sign.c, lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509_int.h, lib/x509/x509_write.c, lib/x509_b64.c, lib/x509_b64.h, libextra/Makefile.am, libextra/configure.ac, libextra/ext_inner_application.c, libextra/ext_inner_application.h, libextra/fipsmd5.c, libextra/gl/Makefile.am, libextra/gnutls-extra.pc.in, libextra/gnutls_extra.c, libextra/gnutls_ia.c, libextra/gnutls_openssl.c, libextra/includes/Makefile.am, libextra/includes/gnutls/extra.h, libextra/includes/gnutls/openssl.h, libextra/libgnutls-extra.map, libextra/m4/hooks.m4, libextra/openssl_compat.c, libextra/openssl_compat.h, m4/guile.m4, m4/valgrind.m4, src/Makefile.am, src/common.c, src/serv.c, tests/Makefile.am, tests/anonself.c, tests/certder.c, tests/certificate_set_x509_crl.c, tests/chainverify.c, tests/crq_apis.c, tests/crq_key_id.c, tests/crypto_rng.c, tests/cve-2008-4989.c, tests/cve-2009-1415.c, tests/cve-2009-1416.c, tests/dhepskself.c, tests/dn.c, tests/dn2.c, tests/finished.c, tests/gc.c, tests/hostname-check.c, tests/init_roundtrip.c, tests/key-id/Makefile.am, tests/key-id/key-id, tests/mini-eagain.c, tests/mini.c, tests/moredn.c, tests/mpi.c, tests/netconf-psk.c, tests/nist-pkits/pkits, tests/nist-pkits/pkits_crl, tests/nist-pkits/pkits_crt, tests/nist-pkits/pkits_pkcs12, tests/nist-pkits/pkits_smime, tests/nul-in-x509-names.c, tests/openpgp-certs/Makefile.am, tests/openpgp-keyring.c, tests/openpgpself.c, tests/openssl.c, tests/oprfi.c, tests/parse_ca.c, tests/pathlen/Makefile.am, tests/pathlen/pathlen, tests/pgps2kgnu.c, tests/pkcs1-padding/Makefile.am, tests/pkcs1-padding/pkcs1-pad, tests/pkcs12-decode/Makefile.am, tests/pkcs12-decode/pkcs12, tests/pkcs12_encode.c, tests/pkcs12_s2k.c, tests/pkcs12_s2k_pem.c, tests/pkcs8-decode/Makefile.am, tests/pkcs8-decode/pkcs8, tests/pskself.c, tests/resume.c, tests/rfc2253-escape-test, tests/rsa-md5-collision/Makefile.am, tests/rsa-md5-collision/rsa-md5-collision, tests/set_pkcs12_cred.c, tests/setcredcrash.c, tests/sha2/Makefile.am, tests/sha2/sha2, tests/simple.c, tests/tlsia.c, tests/userid/Makefile.am, tests/userid/userid, tests/utils.c, tests/utils.h, tests/x509_altname.c, tests/x509dn.c, tests/x509paths/chain, tests/x509self.c, tests/x509sign-verify.c, tests/x509signself.c: Update copyright years. 2010-01-27 Simon Josefsson * Makefile.am: Fix license. 2010-01-27 Simon Josefsson * README: Fix license. 2010-01-27 Simon Josefsson * README-alpha: Fix license. 2010-01-27 Simon Josefsson * src/cli.c: Fix license. 2010-01-27 Simon Josefsson * src/crypt.c: Fix license. 2010-01-27 Simon Josefsson * src/tls_test.c: Fix license. 2010-01-27 Simon Josefsson * src/tests.c: Fix license. 2010-01-27 Simon Josefsson * src/psk.c: Fix license. 2010-01-27 Simon Josefsson * src/prime.c: Fix license. 2010-01-27 Simon Josefsson * src/certtool.c: Fix license. 2010-01-27 Simon Josefsson * src/certtool-cfg.c: Fix copyright/license. 2010-01-27 Simon Josefsson * src/benchmark.c: Indent and fix copyright notices. 2010-01-27 Simon Josefsson * build-aux/gnupload, gl/tests/test-gettimeofday.c, gl/tests/test-memchr.c, gl/tests/test-read-file.c, gl/tests/test-sockets.c, lib/gl/tests/test-memchr.c, lib/gl/tests/test-read-file.c, lib/gl/tests/test-sockets.c: Update gnulib files. 2010-01-27 Simon Josefsson * ChangeLog, ChangeLog.1, THANKS, build-aux/gnupload, cfg.mk, doc/Makefile.am, doc/credentials/Makefile.am, doc/cyclo/Makefile.am, doc/errcodes.c, doc/examples/Makefile.am, doc/extract-guile-c-doc.scm, doc/manpages/Makefile.am, doc/printlist.c, gl/tests/test-gettimeofday.c, gl/tests/test-memchr.c, gl/tests/test-read-file.c, gl/tests/test-sockets.c, guile/Makefile.am, guile/modules/Makefile.am, guile/modules/gnutls.scm, guile/modules/gnutls/build/enums.scm, guile/modules/gnutls/build/priorities.scm, guile/modules/gnutls/build/smobs.scm, guile/modules/gnutls/build/utils.scm, guile/modules/gnutls/extra.scm, guile/modules/system/documentation/c-snarf.scm, guile/modules/system/documentation/output.scm, guile/pre-inst-guile.in, guile/src/errors.h, guile/src/make-enum-header.scm, guile/src/make-enum-map.scm, guile/src/make-session-priorities.scm, guile/src/make-smob-header.scm, guile/src/make-smob-types.scm, guile/src/utils.h, guile/tests/anonymous-auth.scm, guile/tests/errors.scm, guile/tests/openpgp-auth.scm, guile/tests/openpgp-keyring.scm, guile/tests/openpgp-keys.scm, guile/tests/pkcs-import-export.scm, guile/tests/session-record-port.scm, guile/tests/srp-base64.scm, guile/tests/x509-auth.scm, guile/tests/x509-certificates.scm, lib/Makefile.am, lib/auth_anon.c, lib/auth_anon.h, lib/auth_cert.c, lib/auth_cert.h, lib/auth_dh_common.c, lib/auth_dh_common.h, lib/auth_dhe.c, lib/auth_dhe_psk.c, lib/auth_psk.c, lib/auth_psk.h, lib/auth_psk_passwd.c, lib/auth_psk_passwd.h, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/auth_srp.c, lib/auth_srp.h, lib/auth_srp_passwd.c, lib/auth_srp_passwd.h, lib/auth_srp_rsa.c, lib/auth_srp_sb64.c, lib/cipher-libgcrypt.c, lib/crypto-api.c, lib/crypto.c, lib/crypto.h, lib/cryptodev.c, lib/debug.c, lib/debug.h, lib/ext_cert_type.c, lib/ext_cert_type.h, lib/ext_max_record.c, lib/ext_max_record.h, lib/ext_oprfi.c, lib/ext_oprfi.h, lib/ext_safe_renegotiation.c, lib/ext_safe_renegotiation.h, lib/ext_server_name.c, lib/ext_server_name.h, lib/ext_session_ticket.c, lib/ext_session_ticket.h, lib/ext_signature.c, lib/ext_signature.h, lib/ext_srp.c, lib/ext_srp.h, lib/gl/tests/test-memchr.c, lib/gl/tests/test-read-file.c, lib/gl/tests/test-sockets.c, lib/gnutls_alert.c, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_auth.h, lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, lib/gnutls_compress.c, lib/gnutls_compress.h, lib/gnutls_constate.c, lib/gnutls_constate.h, lib/gnutls_datum.c, lib/gnutls_datum.h, lib/gnutls_db.c, lib/gnutls_db.h, lib/gnutls_dh.c, lib/gnutls_dh.h, lib/gnutls_dh_primes.c, lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_extensions.c, lib/gnutls_extensions.h, lib/gnutls_global.c, lib/gnutls_global.h, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_helper.c, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_kx.h, lib/gnutls_mem.c, lib/gnutls_mem.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_num.c, lib/gnutls_num.h, lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_priority.c, lib/gnutls_psk.c, lib/gnutls_psk_netconf.c, lib/gnutls_record.c, lib/gnutls_record.h, lib/gnutls_rsa_export.c, lib/gnutls_rsa_export.h, lib/gnutls_session.c, lib/gnutls_session_pack.c, lib/gnutls_session_pack.h, lib/gnutls_sig.c, lib/gnutls_sig.h, lib/gnutls_srp.c, lib/gnutls_srp.h, lib/gnutls_state.c, lib/gnutls_state.h, lib/gnutls_str.c, lib/gnutls_str.h, lib/gnutls_supplemental.c, lib/gnutls_supplemental.h, lib/gnutls_ui.c, lib/gnutls_v2_compat.c, lib/gnutls_v2_compat.h, lib/gnutls_x509.c, lib/gnutls_x509.h, lib/includes/Makefile.am, lib/includes/gnutls/crypto.h, lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/openpgp.h, lib/includes/gnutls/pkcs12.h, lib/includes/gnutls/x509.h, lib/libgnutls.map, lib/libgnutlsxx.map, lib/mac-libgcrypt.c, lib/minitasn1/Makefile.am, lib/minitasn1/coding.c, lib/minitasn1/decoding.c, lib/minitasn1/element.c, lib/minitasn1/gstr.c, lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, lib/minitasn1/structure.c, lib/mpi-libgcrypt.c, lib/opencdk/Makefile.am, lib/opencdk/hash.c, lib/openpgp/Makefile.am, lib/openpgp/compat.c, lib/openpgp/extras.c, lib/openpgp/gnutls_openpgp.c, lib/openpgp/output.c, lib/openpgp/pgp.c, lib/openpgp/pgpverify.c, lib/openpgp/privkey.c, lib/pk-libgcrypt.c, lib/random.c, lib/random.h, lib/rnd-libgcrypt.c, lib/x509/Makefile.am, lib/x509/common.c, lib/x509/common.h, lib/x509/crl.c, lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/dn.c, lib/x509/extensions.c, lib/x509/mpi.c, lib/x509/output.c, lib/x509/pkcs12.c, lib/x509/pkcs12_bag.c, lib/x509/pkcs7.c, lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, lib/x509/rfc2818_hostname.c, lib/x509/sign.c, lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509_int.h, lib/x509/x509_write.c, lib/x509_b64.c, lib/x509_b64.h, libextra/Makefile.am, libextra/ext_inner_application.c, libextra/ext_inner_application.h, libextra/fipsmd5.c, libextra/gl/Makefile.am, libextra/gnutls-extra.pc.in, libextra/gnutls_extra.c, libextra/gnutls_ia.c, libextra/gnutls_openssl.c, libextra/includes/Makefile.am, libextra/includes/gnutls/extra.h, libextra/includes/gnutls/openssl.h, libextra/libgnutls-extra.map, libextra/openssl_compat.c, libextra/openssl_compat.h, src/Makefile.am, src/benchmark.c, src/certtool-cfg.c, src/certtool.c, src/common.c, src/crypt.c, src/prime.c, src/psk.c, src/serv.c, src/tests.c, src/tls_test.c, tests/Makefile.am, tests/anonself.c, tests/certder.c, tests/chainverify.c, tests/crq_apis.c, tests/crq_key_id.c, tests/crypto_rng.c, tests/cve-2008-4989.c, tests/cve-2009-1415.c, tests/cve-2009-1416.c, tests/dhepskself.c, tests/dn.c, tests/dn2.c, tests/finished.c, tests/gc.c, tests/hostname-check.c, tests/init_roundtrip.c, tests/key-id/Makefile.am, tests/key-id/key-id, tests/mini-eagain.c, tests/mini.c, tests/moredn.c, tests/mpi.c, tests/netconf-psk.c, tests/nist-pkits/pkits, tests/nist-pkits/pkits_crl, tests/nist-pkits/pkits_crt, tests/nist-pkits/pkits_pkcs12, tests/nist-pkits/pkits_smime, tests/nul-in-x509-names.c, tests/openpgp-certs/Makefile.am, tests/openpgp-certs/testcerts, tests/openpgp-certs/testselfsigs, tests/openpgp-keyring.c, tests/openpgpself.c, tests/openssl.c, tests/oprfi.c, tests/parse_ca.c, tests/pathlen/Makefile.am, tests/pathlen/pathlen, tests/pkcs1-padding/Makefile.am, tests/pkcs1-padding/pkcs1-pad, tests/pkcs12-decode/Makefile.am, tests/pkcs12-decode/pkcs12, tests/pkcs12_encode.c, tests/pkcs12_s2k.c, tests/pkcs12_s2k_pem.c, tests/pkcs8-decode/Makefile.am, tests/pkcs8-decode/pkcs8, tests/pskself.c, tests/resume.c, tests/rfc2253-escape-test, tests/rsa-md5-collision/Makefile.am, tests/rsa-md5-collision/rsa-md5-collision, tests/safe-renegotiation/Makefile.am, tests/safe-renegotiation/testsrn, tests/set_pkcs12_cred.c, tests/setcredcrash.c, tests/sha2/Makefile.am, tests/sha2/sha2, tests/simple.c, tests/tlsia.c, tests/userid/Makefile.am, tests/userid/userid, tests/utils.c, tests/utils.h, tests/x509_altname.c, tests/x509dn.c, tests/x509paths/chain, tests/x509self.c, tests/x509sign-verify.c, tests/x509signself.c: Fix FSF copyright notices. 2010-01-27 Simon Josefsson * THANKS, doc/gnutls.texi: doc: Fix pkg-config recommendation. Reported by Claudio Saavedra in . 2010-01-27 Simon Josefsson * NEWS, THANKS, src/cli.c: gnutls-cli: Handle reading binary data from server. Reported by and tiny patch from Vitaly Mayatskikh in . 2010-01-26 Simon Josefsson * build-aux/update-copyright, gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/tests/Makefile.am, gl/tests/test-update-copyright.sh: Update gnulib files. 2010-01-26 Nikos Mavrogiannopoulos * tests/openpgp-certs/testcerts, tests/openpgp-certs/testselfsigs, tests/safe-renegotiation/testsrn: Added copyright notices! 2010-01-26 Simon Josefsson * NEWS, doc/manpages/Makefile.am: Generated. 2010-01-26 Simon Josefsson * .gitignore: Improve. 2010-01-26 Simon Josefsson * doc/reference/Makefile.am: Ignore more. 2010-01-26 Simon Josefsson * .gitignore, lib/gl/m4/warn-on-use.m4: Update gnulib files. 2010-01-26 Simon Josefsson * gl/m4/warn-on-use.m4, lib/build-aux/arg-nonnull.h, lib/build-aux/warn-on-use.h: Update gnulib files. 2010-01-26 Simon Josefsson * .gitignore: Fix. 2010-01-26 Simon Josefsson * lib/gl/tests/macros.h, lib/gl/tests/signature.h: Update gnulib files. 2010-01-26 Simon Josefsson * .gitignore: Fix 2010-01-26 Simon Josefsson * gl/tests/macros.h, gl/tests/signature.h, gl/tests/test-sys_ioctl.c: Update gnulib files. 2010-01-26 Simon Josefsson * GNUmakefile, build-aux/arg-nonnull.h, build-aux/config.rpath, build-aux/gendocs.sh, build-aux/gnupload, build-aux/link-warning.h, build-aux/pmccabe2html, build-aux/useless-if-before-free, build-aux/vc-list-files, build-aux/warn-on-use.h, gl/Makefile.am, gl/accept.c, gl/alignof.h, gl/alloca.c, gl/alloca.in.h, gl/arpa_inet.in.h, gl/asnprintf.c, gl/bind.c, gl/c-ctype.c, gl/c-ctype.h, gl/close-hook.c, gl/close-hook.h, gl/close.c, gl/connect.c, gl/errno.in.h, gl/error.c, gl/error.h, gl/fclose.c, gl/float+.h, gl/float.in.h, gl/fseeko.c, gl/gai_strerror.c, gl/getaddrinfo.c, gl/getdelim.c, gl/getline.c, gl/getpass.c, gl/getpass.h, gl/gettext.h, gl/inet_ntop.c, gl/inet_pton.c, gl/intprops.h, gl/listen.c, gl/lseek.c, gl/m4/00gnulib.m4, gl/m4/alloca.m4, gl/m4/arpa_inet_h.m4, gl/m4/autobuild.m4, gl/m4/close.m4, gl/m4/errno_h.m4, gl/m4/error.m4, gl/m4/extensions.m4, gl/m4/fclose.m4, gl/m4/float_h.m4, gl/m4/fseeko.m4, gl/m4/getaddrinfo.m4, gl/m4/getdelim.m4, gl/m4/getline.m4, gl/m4/getpass.m4, gl/m4/gettimeofday.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-common.m4, gl/m4/gnulib-comp.m4, gl/m4/gnulib-tool.m4, gl/m4/hostent.m4, gl/m4/include_next.m4, gl/m4/inet_ntop.m4, gl/m4/inet_pton.m4, gl/m4/intmax_t.m4, gl/m4/inttypes_h.m4, gl/m4/lib-ld.m4, gl/m4/lib-link.m4, gl/m4/lib-prefix.m4, gl/m4/longlong.m4, gl/m4/lseek.m4, gl/m4/malloc.m4, gl/m4/manywarnings.m4, gl/m4/memchr.m4, gl/m4/minmax.m4, gl/m4/mmap-anon.m4, gl/m4/multiarch.m4, gl/m4/netdb_h.m4, gl/m4/netinet_in_h.m4, gl/m4/perror.m4, gl/m4/printf.m4, gl/m4/read-file.m4, gl/m4/readline.m4, gl/m4/realloc.m4, gl/m4/select.m4, gl/m4/servent.m4, gl/m4/size_max.m4, gl/m4/snprintf.m4, gl/m4/sockets.m4, gl/m4/socklen.m4, gl/m4/sockpfaf.m4, gl/m4/stdarg.m4, gl/m4/stdbool.m4, gl/m4/stddef_h.m4, gl/m4/stdint.m4, gl/m4/stdint_h.m4, gl/m4/stdio_h.m4, gl/m4/stdlib_h.m4, gl/m4/strerror.m4, gl/m4/string_h.m4, gl/m4/sys_ioctl_h.m4, gl/m4/sys_select_h.m4, gl/m4/sys_socket_h.m4, gl/m4/sys_stat_h.m4, gl/m4/sys_time_h.m4, gl/m4/time_h.m4, gl/m4/ungetc.m4, gl/m4/unistd_h.m4, gl/m4/vasnprintf.m4, gl/m4/version-etc.m4, gl/m4/warnings.m4, gl/m4/wchar.m4, gl/m4/wchar_t.m4, gl/m4/wint_t.m4, gl/m4/xsize.m4, gl/memchr.c, gl/minmax.h, gl/netdb.in.h, gl/netinet_in.in.h, gl/override/lib/gettext.h.diff, gl/perror.c, gl/printf-args.c, gl/printf-args.h, gl/printf-parse.c, gl/printf-parse.h, gl/progname.c, gl/progname.h, gl/read-file.c, gl/read-file.h, gl/readline.c, gl/readline.h, gl/realloc.c, gl/recv.c, gl/select.c, gl/send.c, gl/setsockopt.c, gl/shutdown.c, gl/size_max.h, gl/snprintf.c, gl/socket.c, gl/sockets.c, gl/sockets.h, gl/stdarg.in.h, gl/stdbool.in.h, gl/stddef.in.h, gl/stdint.in.h, gl/stdio-impl.h, gl/stdio-write.c, gl/stdio.in.h, gl/stdlib.in.h, gl/strerror.c, gl/string.in.h, gl/sys_select.in.h, gl/sys_socket.in.h, gl/sys_stat.in.h, gl/sys_time.in.h, gl/tests/Makefile.am, gl/tests/dummy.c, gl/tests/gettimeofday.c, gl/tests/ioctl.c, gl/tests/sys_ioctl.in.h, gl/tests/test-alignof.c, gl/tests/test-alloca-opt.c, gl/tests/test-arpa_inet.c, gl/tests/test-c-ctype.c, gl/tests/test-errno.c, gl/tests/test-fseeko.c, gl/tests/test-getaddrinfo.c, gl/tests/test-getdelim.c, gl/tests/test-getline.c, gl/tests/test-gettimeofday.c, gl/tests/test-inet_ntop.c, gl/tests/test-inet_pton.c, gl/tests/test-lseek.c, gl/tests/test-memchr.c, gl/tests/test-netdb.c, gl/tests/test-netinet_in.c, gl/tests/test-perror.c, gl/tests/test-read-file.c, gl/tests/test-select-fd.c, gl/tests/test-select-stdin.c, gl/tests/test-select.c, gl/tests/test-snprintf.c, gl/tests/test-stdbool.c, gl/tests/test-stddef.c, gl/tests/test-stdint.c, gl/tests/test-stdio.c, gl/tests/test-stdlib.c, gl/tests/test-strerror.c, gl/tests/test-string.c, gl/tests/test-sys_select.c, gl/tests/test-sys_socket.c, gl/tests/test-sys_stat.c, gl/tests/test-sys_time.c, gl/tests/test-time.c, gl/tests/test-unistd.c, gl/tests/test-vasnprintf.c, gl/tests/test-vc-list-files-cvs.sh, gl/tests/test-vc-list-files-git.sh, gl/tests/test-version-etc.c, gl/tests/test-version-etc.sh, gl/tests/test-wchar.c, gl/tests/verify.h, gl/tests/w32sock.h, gl/tests/zerosize-ptr.h, gl/time.in.h, gl/unistd.in.h, gl/vasnprintf.c, gl/vasnprintf.h, gl/version-etc-fsf.c, gl/version-etc.c, gl/version-etc.h, gl/w32sock.h, gl/wchar.in.h, gl/xsize.h, lib/build-aux/config.rpath, lib/build-aux/link-warning.h, lib/gl/Makefile.am, lib/gl/alignof.h, lib/gl/alloca.in.h, lib/gl/asnprintf.c, lib/gl/asprintf.c, lib/gl/byteswap.in.h, lib/gl/c-ctype.c, lib/gl/c-ctype.h, lib/gl/close-hook.c, lib/gl/close-hook.h, lib/gl/errno.in.h, lib/gl/float+.h, lib/gl/float.in.h, lib/gl/fseeko.c, lib/gl/gettext.h, lib/gl/lseek.c, lib/gl/m4/00gnulib.m4, lib/gl/m4/alloca.m4, lib/gl/m4/byteswap.m4, lib/gl/m4/codeset.m4, lib/gl/m4/errno_h.m4, lib/gl/m4/extensions.m4, lib/gl/m4/float_h.m4, lib/gl/m4/fseeko.m4, lib/gl/m4/func.m4, lib/gl/m4/gettext.m4, lib/gl/m4/glibc2.m4, lib/gl/m4/glibc21.m4, lib/gl/m4/gnulib-cache.m4, lib/gl/m4/gnulib-common.m4, lib/gl/m4/gnulib-comp.m4, lib/gl/m4/gnulib-tool.m4, lib/gl/m4/iconv.m4, lib/gl/m4/include_next.m4, lib/gl/m4/intdiv0.m4, lib/gl/m4/intl.m4, lib/gl/m4/intldir.m4, lib/gl/m4/intlmacosx.m4, lib/gl/m4/intmax.m4, lib/gl/m4/intmax_t.m4, lib/gl/m4/inttypes-pri.m4, lib/gl/m4/inttypes_h.m4, lib/gl/m4/lcmessage.m4, lib/gl/m4/ld-output-def.m4, lib/gl/m4/ld-version-script.m4, lib/gl/m4/lib-ld.m4, lib/gl/m4/lib-link.m4, lib/gl/m4/lib-prefix.m4, lib/gl/m4/lock.m4, lib/gl/m4/longlong.m4, lib/gl/m4/lseek.m4, lib/gl/m4/malloc.m4, lib/gl/m4/memchr.m4, lib/gl/m4/memmem.m4, lib/gl/m4/minmax.m4, lib/gl/m4/mmap-anon.m4, lib/gl/m4/multiarch.m4, lib/gl/m4/netdb_h.m4, lib/gl/m4/nls.m4, lib/gl/m4/po.m4, lib/gl/m4/printf-posix.m4, lib/gl/m4/printf.m4, lib/gl/m4/progtest.m4, lib/gl/m4/read-file.m4, lib/gl/m4/realloc.m4, lib/gl/m4/size_max.m4, lib/gl/m4/snprintf.m4, lib/gl/m4/sockets.m4, lib/gl/m4/socklen.m4, lib/gl/m4/sockpfaf.m4, lib/gl/m4/stdbool.m4, lib/gl/m4/stddef_h.m4, lib/gl/m4/stdint.m4, lib/gl/m4/stdint_h.m4, lib/gl/m4/stdio_h.m4, lib/gl/m4/stdlib_h.m4, lib/gl/m4/strcase.m4, lib/gl/m4/string_h.m4, lib/gl/m4/strings_h.m4, lib/gl/m4/strverscmp.m4, lib/gl/m4/sys_socket_h.m4, lib/gl/m4/sys_stat_h.m4, lib/gl/m4/threadlib.m4, lib/gl/m4/time_h.m4, lib/gl/m4/time_r.m4, lib/gl/m4/uintmax_t.m4, lib/gl/m4/ungetc.m4, lib/gl/m4/unistd_h.m4, lib/gl/m4/vasnprintf.m4, lib/gl/m4/vasprintf.m4, lib/gl/m4/visibility.m4, lib/gl/m4/vsnprintf.m4, lib/gl/m4/wchar.m4, lib/gl/m4/wchar_t.m4, lib/gl/m4/wint_t.m4, lib/gl/m4/xsize.m4, lib/gl/memchr.c, lib/gl/memmem.c, lib/gl/minmax.h, lib/gl/netdb.in.h, lib/gl/override/lib/gettext.h.diff, lib/gl/printf-args.c, lib/gl/printf-args.h, lib/gl/printf-parse.c, lib/gl/printf-parse.h, lib/gl/read-file.c, lib/gl/read-file.h, lib/gl/realloc.c, lib/gl/size_max.h, lib/gl/snprintf.c, lib/gl/sockets.c, lib/gl/sockets.h, lib/gl/stdbool.in.h, lib/gl/stddef.in.h, lib/gl/stdint.in.h, lib/gl/stdio-impl.h, lib/gl/stdio-write.c, lib/gl/stdio.in.h, lib/gl/stdlib.in.h, lib/gl/str-two-way.h, lib/gl/strcasecmp.c, lib/gl/string.in.h, lib/gl/strings.in.h, lib/gl/strncasecmp.c, lib/gl/strverscmp.c, lib/gl/sys_socket.in.h, lib/gl/sys_stat.in.h, lib/gl/tests/Makefile.am, lib/gl/tests/dummy.c, lib/gl/tests/intprops.h, lib/gl/tests/test-alloca-opt.c, lib/gl/tests/test-byteswap.c, lib/gl/tests/test-c-ctype.c, lib/gl/tests/test-errno.c, lib/gl/tests/test-fseeko.c, lib/gl/tests/test-func.c, lib/gl/tests/test-memchr.c, lib/gl/tests/test-netdb.c, lib/gl/tests/test-read-file.c, lib/gl/tests/test-snprintf.c, lib/gl/tests/test-stdbool.c, lib/gl/tests/test-stddef.c, lib/gl/tests/test-stdint.c, lib/gl/tests/test-stdio.c, lib/gl/tests/test-stdlib.c, lib/gl/tests/test-string.c, lib/gl/tests/test-strings.c, lib/gl/tests/test-strverscmp.c, lib/gl/tests/test-sys_socket.c, lib/gl/tests/test-sys_stat.c, lib/gl/tests/test-time.c, lib/gl/tests/test-unistd.c, lib/gl/tests/test-vasnprintf.c, lib/gl/tests/test-vasprintf.c, lib/gl/tests/test-vsnprintf.c, lib/gl/tests/test-wchar.c, lib/gl/tests/verify.h, lib/gl/tests/zerosize-ptr.h, lib/gl/time.in.h, lib/gl/time_r.c, lib/gl/unistd.in.h, lib/gl/vasnprintf.c, lib/gl/vasnprintf.h, lib/gl/vasprintf.c, lib/gl/vsnprintf.c, lib/gl/w32sock.h, lib/gl/wchar.in.h, lib/gl/xsize.h, libextra/build-aux/config.rpath, libextra/gl/gnulib.mk, libextra/gl/hmac-md5.c, libextra/gl/hmac.h, libextra/gl/m4/00gnulib.m4, libextra/gl/m4/extensions.m4, libextra/gl/m4/gnulib-cache.m4, libextra/gl/m4/gnulib-common.m4, libextra/gl/m4/gnulib-comp.m4, libextra/gl/m4/gnulib-tool.m4, libextra/gl/m4/hmac-md5.m4, libextra/gl/m4/ld-output-def.m4, libextra/gl/m4/ld-version-script.m4, libextra/gl/m4/lib-ld.m4, libextra/gl/m4/lib-link.m4, libextra/gl/m4/lib-prefix.m4, libextra/gl/m4/md5.m4, libextra/gl/m4/memxor.m4, libextra/gl/md5.c, libextra/gl/md5.h, libextra/gl/memxor.c, libextra/gl/memxor.h, maint.mk: Update gnulib files. 2010-01-22 Nikos Mavrogiannopoulos * NEWS: Documented addition of new priority strings. 2010-01-22 Nikos Mavrogiannopoulos * NEWS: Documented Steve Dispensa's patch addition. 2010-01-22 Nikos Mavrogiannopoulos * tests/safe-renegotiation/testsrn: Added tests for new behaviour of client. 2010-01-22 Nikos Mavrogiannopoulos * lib/gnutls_handshake.c: Revert "Always allow initial negotiation. Disable subsequent unsafe renegotiations." This reverts commit 1e4981cfbec360a19cfb7470ce96093aaa95b32e. Ah, this was to twart the attack (description by Daniel Kahn Gilmor): The problem, as i understand it, is that the client is incapable of telling whether the plaintext prefix injection attack has already happened. I don't think disabling renegotiation for the session resolves the problem. For a server which does not announce and enforce safe renegotiation, what the client sees as an initial connection may unknowingly actually be renegotiating an existing session that was started by an attacker. The concern isn't that the (legitimate) client will have their session re-negotiated by an attacker; it's that the MITM attacker can trick the server into viewing the client's initial authentication as a re-negotiation of a TLS session already underway. for servers which do odd things like apply the credentials of the post-renegotiation client to the traffic that happened before the renegotiation (e.g. HTTPS, with client-side certificates required only for certain subdirectories), a safe-renegotiation-aware client *should* refuse to connect to servers which do not announce safe renegotiation if they want to resist this attack. 2010-01-21 Nikos Mavrogiannopoulos * configure.ac: Added safe-renegotiation subdir. 2010-01-21 Nikos Mavrogiannopoulos * lib/ext_safe_renegotiation.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_priority.c, tests/Makefile.am, tests/safe-renegotiation/Makefile.am, tests/safe-renegotiation/params.dh, tests/safe-renegotiation/testsrn: Added safe renegotiation test cases. Added priority string option to completely disable renegotiation to assist in testing more cases. 2010-01-21 Nikos Mavrogiannopoulos * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa: Added the --rehandshake option to gnutls-cli to allow connection and immediate rehandshake. 2010-01-21 Nikos Mavrogiannopoulos * lib/ext_safe_renegotiation.c: More carefull copying of data. Check for the malicious case where a server does initial unsafe negotiation and proceeds with a safe renegotiation. 2010-01-21 Nikos Mavrogiannopoulos * lib/gnutls_handshake.c: Always allow initial negotiation. Disable subsequent unsafe renegotiations. Signed-off-by: Nikos Mavrogiannopoulos 2010-01-21 Nikos Mavrogiannopoulos * lib/ext_safe_renegotiation.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_state.c: Safe renegotiation variable cleanup. No longer clear variables that should stay across rehandshakes. 2010-01-21 Nikos Mavrogiannopoulos * lib/crypto-api.c, lib/gnutls_cipher_int.c: Documented the crypto-api functions and made the API tolerant to NULL IV. 2010-01-21 Nikos Mavrogiannopoulos * lib/gnutls_handshake.c: Added documentation of rehandshake usage in gnutls if full-duplex capability is required. 2010-01-21 Nikos Mavrogiannopoulos * lib/gnutls_buffers.c: Reduced asserts to reduce unneeded printings. 2010-01-21 Nikos Mavrogiannopoulos * src/cli.c, src/serv.c: Removed rehandshake initiation capability from client and transferred it to the echo server. Once the server receives a string **REHANDSHAKE** will request a rehandshake. 2010-01-19 Steve Dispensa * lib/gnutls_handshake.c: Here is another patch that fixes an interoperability problem with safe renegotiation and resumption. In copying forward the safe renegotiation state across resumptions, I got a little carried away and copied too much data (new connections should start with empty RI data). Signed-off-by: Nikos Mavrogiannopoulos 2010-01-15 Nikos Mavrogiannopoulos * lib/ext_oprfi.c, lib/ext_session_ticket.c, lib/gnutls_constate.c, lib/gnutls_handshake.c, lib/gnutls_int.h: Modified extensions (session ticket, oprfi) to store internal data in gnutls internal structure and input data only in the security_parameters extension structure. Session ticket extension will call the user supplied hello function on resumption. (the current API to handle that is inexistant. To be revised) 2010-01-14 Nikos Mavrogiannopoulos * lib/ext_session_ticket.c, lib/gnutls_constate.c, lib/gnutls_int.h, lib/gnutls_session_pack.c: Further cleanup the extension internal structure. Now if values are not saved and restored when resumming they will be initialized to zero. 2010-01-13 Nikos Mavrogiannopoulos * tests/chainverify.c, tests/crq_apis.c, tests/crq_key_id.c, tests/cve-2008-4989.c, tests/dn2.c, tests/finished.c, tests/mini.c, tests/pkcs12_s2k_pem.c, tests/tlsia.c, tests/x509sign-verify.c: Tests compile with --enable-gcc-warnings. 2010-01-13 Nikos Mavrogiannopoulos * lib/ext_safe_renegotiation.h, lib/gnutls_constate.c, lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_state.c, tests/resume.c, tests/simple.c: Specify in detail what to be copied when resuming. It seems there are extensions (like safe renegotiation) that do not need to read the stored values. Moreover this might overcome any bugs by the extensions that used to store pointers in the extension structure. 2010-01-13 Nikos Mavrogiannopoulos * lib/ext_safe_renegotiation.c: Initialize the default value to 0. It seemed to have default value of 0 when non resuming :) 2010-01-13 Nikos Mavrogiannopoulos * doc/examples/ex-client-tlsia.c, tests/utils.c: Removed warnings. 2010-01-13 Nikos Mavrogiannopoulos * configure.ac: Added -Wno-int-to-pointer-cast to enable compilation when enable-gcc-warnings is given. 2010-01-13 Steve Dispensa * lib/gnutls_handshake.c: Here are two more patches. The first adds support for renegotiation of resumption. Also, I found a bug in my initial implementation - I was incorrectly sending the SCSV on all connections, not only those using SSLv3, as should have been the case. Signed-off-by: Nikos Mavrogiannopoulos 2010-01-12 Nikos Mavrogiannopoulos * NEWS, doc/manpages/gnutls-cli.1, doc/manpages/gnutls-serv.1: Documentation updates. 2010-01-12 Nikos Mavrogiannopoulos * lib/gnutls_handshake.c: When denying an initial negotiation due to missing safe renegotiation extension reply with NO_RENEGOTIATION alert. 2010-01-12 Nikos Mavrogiannopoulos * lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/includes/gnutls/gnutls.h.in, tests/resume.c: When resuming no extensions were parsed thus the safe renegotiation extension was ignored as well causing a false detection of unsafe session. Corrected by making a special class of extensions called RESUMED. Those are parsed even when resuming (normally we don't do it to prevent clients overwriting capabilities and credentials). 2010-01-12 Nikos Mavrogiannopoulos * lib/ext_safe_renegotiation.c, lib/ext_safe_renegotiation.h, lib/gnutls_alert.c, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_extensions.c, lib/gnutls_extensions.h, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_priority.c, lib/includes/gnutls/gnutls.h.in: Added Steve Dispensa's patch for safe renegotiation (with artistic changes). Effectively reverted my previous patch 1a338cbaaeec11d958de8da4d1ae036979fccf3e. 2010-01-12 Nikos Mavrogiannopoulos * THANKS: Updated thanks file. 2010-01-12 Nikos Mavrogiannopoulos * NEWS, lib/opencdk/sig-check.c, src/certtool.c, tests/openpgp-certs/Makefile.am, tests/openpgp-certs/testselfsigs: When checking self signature also check the signatures of all subkeys. Ilari Liusvaara noticed and reported the issue and provided test vectors as well. certtool --pgp-certificate-info will check self signatures. Added self tests for self-sigs. 2010-01-11 Nikos Mavrogiannopoulos * tests/gc.c: hash_fast -> hmac_fast 2010-01-10 Nikos Mavrogiannopoulos * doc/manpages/gnutls-cli.1, doc/manpages/gnutls-serv.1, lib/Makefile.am, lib/ext_safe_renegotiation.c, lib/ext_safe_renegotiation.h, lib/gnutls_errors.c, lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_priority.c, lib/includes/gnutls/gnutls.h.in, src/cli.c, src/serv.c: Added safe renegotiation patch from Steve Dispensa, modified to suit gnutls code style and error checking. Modified to conform to draft-ietf-tls-renegotiation-03.txt. gnutls-cli will search input for **RENEGOTIATION** to perform a renegotiation and gnutls-serv will perform one if requested. 2010-01-10 Nikos Mavrogiannopoulos * lib/x509/mpi.c: Corrections for --disable-extra-pki configure flag to work. Patch by Bill Randle. 2010-01-04 Andreas Metzler * ChangeLog, doc/certtool.cfg, doc/gnutls.texi, lib/gnutls_auth.c, lib/gnutls_priority.c, lib/gnutls_session.c, lib/openpgp/pgp.c, lib/openpgp/privkey.c: Typo fixes: successful, precedence, preferred 2009-12-18 Nikos Mavrogiannopoulos * lib/cryptodev.c: define EALG_MAX_BLOCK_LEN if not there. 2009-12-05 Nikos Mavrogiannopoulos * libextra/fipsmd5.c: use C99 initializations 2009-12-05 Nikos Mavrogiannopoulos * NEWS, lib/Makefile.am, lib/compat.c, lib/crypto-api.c, lib/crypto.c, lib/crypto.h, lib/gnutls_cipher.c, lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/includes/gnutls/crypto.h, lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, libextra/fipsmd5.c, src/benchmark.c: Reverted all previous changes to combine hashes with MAC algorithms. It is now permissible to register a hash algorithm separately from a MAC. 2009-12-05 Nikos Mavrogiannopoulos * lib/crypto-api.c, lib/crypto.c, lib/crypto.h, lib/ext_session_ticket.c, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_cipher.c, lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, lib/gnutls_constate.c, lib/gnutls_constate.h, lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_priority.c, lib/gnutls_psk_netconf.c, lib/gnutls_sig.c, lib/gnutls_srp.c, lib/gnutls_state.c, lib/gnutls_ui.c, lib/includes/gnutls/crypto.h, lib/includes/gnutls/gnutls.h.in, lib/mac-libgcrypt.c, lib/opencdk/dummy.c, lib/opencdk/filters.h, lib/opencdk/hash.c, lib/opencdk/kbnode.c, lib/opencdk/main.h, lib/opencdk/opencdk.h, lib/opencdk/pubkey.c, lib/opencdk/sig-check.c, lib/opencdk/verify.c, lib/x509/crq.c, lib/x509/pbkdf2-sha1.c, lib/x509/pkcs12.c, lib/x509/pkcs12_encr.c, lib/x509/privkey.c, lib/x509/sign.c, lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509_int.h, libextra/fipsmd5.c, libextra/gnutls_openssl.c: Revert "Merged the two internal hash API functions, to simplify and reduce code." This reverts commit bc3e43d5f121e404aa32212dcfcc5027de807056. Conflicts: lib/crypto.c lib/gnutls_cipher.c lib/gnutls_hash_int.c lib/gnutls_hash_int.h lib/includes/gnutls/crypto.h lib/mac-libgcrypt.c 2009-12-05 Nikos Mavrogiannopoulos * lib/gnutls_hash_int.c, lib/includes/gnutls/crypto.h, lib/mac-libgcrypt.c, libextra/gnutls_openssl.c, tests/gc.c: Revert "Added plain MD5 hash check and corrected gnutls_hash_fast() usage in openssl.c" This reverts commit 54486afbfcf3398846d5c20d3094bdb7d0a43ff2. 2009-12-04 Simon Josefsson * doc/examples/ex-x509-info.c: Improve example of printing cert info. 2009-12-04 Simon Josefsson * doc/gnutls.texi: Typo fix. Reported by Laurence in . 2009-12-04 Nikos Mavrogiannopoulos * lib/compat.c, lib/gnutls_algorithms.h: fixes for compilation. 2009-12-03 Simon Josefsson * lib/gnutls_cert.c: Check return value from gnutls_x509_crt_get_key_usage. 2009-12-02 Nikos Mavrogiannopoulos * NEWS, tests/pathlen/ca-no-pathlen.pem, tests/pathlen/no-ca-or-pathlen.pem: This is a follow-up to commit 3d8da5765133c6ced37bf29b5a07f950b8c26cd7, that fixes some issues with DSA and RSA certificate encoding. Due to that the shown public key IDs are different than the ones in previous gnutls versions. 2009-12-02 Nikos Mavrogiannopoulos * lib/gnutls_cipher.c: reduced calls to gnutls_hash on encryption/decryption. Only initialize MAC when needed. 2009-12-02 Nikos Mavrogiannopoulos * lib/gnutls_hash_int.c, lib/includes/gnutls/crypto.h, lib/mac-libgcrypt.c, libextra/gnutls_openssl.c, tests/gc.c: Added plain MD5 hash check and corrected gnutls_hash_fast() usage in openssl.c Corrected new hash API bug that prevented usage of plain hash functions. 2009-12-02 Nikos Mavrogiannopoulos * NEWS, doc/gnutls.texi, lib/Makefile.am, lib/compat.c, lib/crypto.c, lib/ext_session_ticket.c, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_cipher.c, lib/includes/gnutls/crypto.h, lib/libgnutls.map, lib/opencdk/read-packet.c, lib/x509/privkey_pkcs8.c, src/benchmark.c, tests/gc.c: Exported gnutls_cipher_get_block_size() and all hash functions added to libgnutls.map. Expanded benchmark with 3DES and ARCFOUR. Corrected test that used non-existing symbol. 2009-12-02 Nikos Mavrogiannopoulos * lib/m4/hooks.m4: Corrected check for cryptodev. Only enable it if --enable-cryptodev is specified. 2009-12-01 Nikos Mavrogiannopoulos * lib/cryptodev.c, lib/gnutls_cryptodev.h, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/mac-libgcrypt.c, lib/x509/mpi.c: Corrected compilation issues. 2009-11-30 Nikos Mavrogiannopoulos * configure.ac, lib/m4/hooks.m4: Moved cryptodev check to lib/m4/hooks.m4 and now --enable-cryptodev actually works. 2009-11-30 Simon Josefsson * lib/gnutls_x509.c: Doc fix. 2009-11-30 Nikos Mavrogiannopoulos * lib/cryptodev.c: corrected old type. 2009-11-30 Nikos Mavrogiannopoulos * lib/cryptodev.c: Only include cryptodev.h if cryptodev is there. 2009-11-29 Nikos Mavrogiannopoulos * lib/crypto-api.c, lib/crypto.c, lib/crypto.h, lib/ext_session_ticket.c, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_cipher.c, lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, lib/gnutls_constate.c, lib/gnutls_constate.h, lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_priority.c, lib/gnutls_psk_netconf.c, lib/gnutls_sig.c, lib/gnutls_srp.c, lib/gnutls_state.c, lib/gnutls_ui.c, lib/includes/gnutls/crypto.h, lib/includes/gnutls/gnutls.h.in, lib/mac-libgcrypt.c, lib/opencdk/dummy.c, lib/opencdk/filters.h, lib/opencdk/hash.c, lib/opencdk/kbnode.c, lib/opencdk/main.h, lib/opencdk/opencdk.h, lib/opencdk/pubkey.c, lib/opencdk/sig-check.c, lib/opencdk/verify.c, lib/x509/crq.c, lib/x509/pbkdf2-sha1.c, lib/x509/pkcs12.c, lib/x509/pkcs12_encr.c, lib/x509/privkey.c, lib/x509/sign.c, lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509_int.h, libextra/fipsmd5.c, libextra/gnutls_openssl.c: Merged the two internal hash API functions, to simplify and reduce code. gnutls_hmac* and gnutls_hash* were merged to gnutls_hash API. 2009-11-29 Nikos Mavrogiannopoulos * .gitignore, configure.ac, lib/Makefile.am, lib/crypto-api.c, lib/crypto.c, lib/cryptodev.c, lib/gnutls_cipher_int.c, lib/gnutls_cryptodev.h, lib/gnutls_errors.c, lib/gnutls_global.c, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/includes/gnutls/crypto.h, lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, src/Makefile.am, src/benchmark.c: Added cryptodev support (/dev/crypto). Tested with http://www.logix.cz/michal/devel/cryptodev/. Added benchmark utility for AES. Exported API to access encryption algorithms. 2009-11-28 Nikos Mavrogiannopoulos * NEWS: Documented certtool's certificate request generation fix. 2009-11-28 Nikos Mavrogiannopoulos * lib/x509/mpi.c: Corrected two issues that affected certificate request generation. 1. Null padding is added on integers (found thanks to Wilankar Trupti ) 2. In optional SignatureAlgorithm parameters field for DSA keys the DSA parameters were added. Those were rejected by verisign. Gnutls no longer adds those parameters there since other implementations don't do either and having them does not seem to offer anything (anyway you need the signer's certificate to verify thus public key will be available). 2009-11-27 Simon Josefsson * doc/manpages/Makefile.am, tests/key-id/key-id, tests/nist-pkits/gnutls_test_entry, tests/x509paths/chain: More fixes of grep -q problem. 2009-11-27 Simon Josefsson * NEWS: Add. 2009-11-24 Nikos Mavrogiannopoulos * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: Allow exporting of Certificate requests to DER format. Added option --no-crq-extensions to avoid adding extensions to a request. 2009-11-23 Simon Josefsson * tests/rfc2253-escape-test: Don't use 'grep -q', to fix portability to OpenSolaris. Reported by "Dr. David Kirkby" in . 2009-11-16 Simon Josefsson * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, libextra/configure.ac: Bump versions. 2009-11-15 Simon Josefsson * doc/guile.texi: Doc fix. 2009-11-15 Simon Josefsson * gl/Makefile.am, gl/intprops.h, gl/m4/sys_stat_h.m4, gl/m4/unistd_h.m4, gl/sys_stat.in.h, gl/unistd.in.h, gl/version-etc.c, lib/gl/Makefile.am, lib/gl/m4/sys_stat_h.m4, lib/gl/m4/unistd_h.m4, lib/gl/sys_stat.in.h, lib/gl/tests/intprops.h, lib/gl/unistd.in.h, maint.mk: Update gnulib files. 2009-11-09 Simon Josefsson * ChangeLog: Generated. 2009-11-09 Simon Josefsson * NEWS: Version 2.9.9. 2009-11-09 Simon Josefsson * build-aux/pmccabe2html, gl/Makefile.am, gl/getpagesize.c, gl/m4/getpagesize.m4, gl/m4/gnulib-comp.m4, gl/tests/test-fseeko.c, lib/gl/Makefile.am, lib/gl/getpagesize.c, lib/gl/m4/getpagesize.m4, lib/gl/m4/gnulib-comp.m4, lib/gl/tests/test-fseeko.c: Update gnulib files. 2009-11-09 Simon Josefsson * NEWS: Add. 2009-11-09 Simon Josefsson * src/certtool.c: Cleanup header inclusion. 2009-11-09 Simon Josefsson * NEWS: Fix. 2009-11-06 Nikos Mavrogiannopoulos * lib/gnutls_algorithms.c: More dead code removed. Based on suggestions by Steve Grubb and Tomaz Mraz 2009-11-06 Simon Josefsson * NEWS: Add. 2009-11-06 Simon Josefsson * configure.ac, m4/valgrind.m4: Fix --disable-valgrind-tests. 2009-11-06 Simon Josefsson * gl/tests/Makefile.am: Update gnulib files. 2009-11-06 Simon Josefsson * gl/m4/getaddrinfo.m4, gl/m4/gnulib-comp.m4, maint.mk: Update gnulib files. 2009-11-06 Simon Josefsson * src/Makefile.am: Link to libgcrypt explicitly when libgcrypt functions are used. 2009-11-06 Simon Josefsson * src/certtool.c, src/serv.c: Fix libgcrypt usage. 2009-11-05 Nikos Mavrogiannopoulos * lib/gnutls_handshake.c: Simplified code which was based on older version of internal structures. Based on observations by Steve Grubb and Tomas Mraz. 2009-11-05 Nikos Mavrogiannopoulos * NEWS: Corrected bug fix author. 2009-11-05 Nikos Mavrogiannopoulos * NEWS: Documented previous commit. 2009-11-05 Nikos Mavrogiannopoulos * lib/auth_cert.c, lib/gnutls_constate.c, lib/gnutls_sig.c, libextra/gnutls_openssl.c, src/certtool.c, src/cfg/cfg+.c, src/cfg/platon/str/strdyn.c, src/serv.c: Cleanups and several bug fixes found by Tomas Mraz. "I've patched the following problems in the code found by review of gnutls-2.8.5 code done by Steve Grubb. See the patch attached. The gnutls_constate.c bug might be potentially serious so I've decided to mail it to you directly, not to the public mailing list. The auth_cert.c change is just cleanup of the code. In gnutls_openssl.c I've just fixed the potential crasher, correct fix would require using asprintf or precomputed length of the buffer to allocate a memory. The certtool.c change is again just a cleanup." 2009-11-05 Simon Josefsson * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, libextra/configure.ac: Bump versions. 2009-11-05 Simon Josefsson * ChangeLog: Generated. 2009-11-05 Simon Josefsson * NEWS: Version 2.9.8. 2009-11-05 Simon Josefsson * lib/gl/tests/test-func.c: Update gnulib files. 2009-11-05 Simon Josefsson * gl/m4/gnulib-comp.m4, gl/m4/inet_ntop.m4, gl/m4/inet_pton.m4, gl/tests/Makefile.am, gl/tests/test-inet_ntop.c, gl/tests/test-inet_pton.c, gl/tests/test-sys_socket.c, lib/gl/tests/test-func.c, lib/gl/tests/test-sys_socket.c, libextra/gl/md5.c: Update gnulib files. 2009-11-05 Simon Josefsson * lib/m4/hooks.m4: Make sure libgcrypt's dependency on libgpg-error is known. 2009-11-05 Simon Josefsson * doc/manpages/Makefile.am: Fix API name change. 2009-11-05 Simon Josefsson * doc/gnutls.texi: Fix API name change. 2009-11-05 Simon Josefsson * doc/examples/ex-cert-select.c, doc/examples/ex-client-psk.c, doc/examples/ex-pkcs12.c, doc/examples/ex-serv-anon.c, doc/examples/ex-serv-export.c, doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-psk.c, doc/examples/ex-serv-srp.c, doc/examples/ex-serv1.c, guile/src/core.c, lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa_export.c, lib/auth_srp.c, lib/auth_srp_passwd.c, lib/auth_srp_rsa.c, lib/ext_cert_type.c, lib/ext_server_name.c, lib/ext_session_ticket.c, lib/ext_signature.c, lib/gnutls_algorithms.c, lib/gnutls_buffers.c, lib/gnutls_cert.c, lib/gnutls_cipher.c, lib/gnutls_errors.c, lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_mpi.c, lib/gnutls_priority.c, lib/gnutls_psk.c, lib/gnutls_record.c, lib/gnutls_session_pack.c, lib/gnutls_sig.c, lib/gnutls_state.c, lib/gnutls_str.c, lib/gnutls_supplemental.c, lib/gnutls_ui.c, lib/gnutls_x509.c, lib/minitasn1/decoding.c, lib/opencdk/armor.c, lib/opencdk/keydb.c, lib/opencdk/literal.c, lib/opencdk/misc.c, lib/opencdk/new-packet.c, lib/opencdk/read-packet.c, lib/opencdk/sig-check.c, lib/opencdk/stream.c, lib/opencdk/verify.c, lib/openpgp/gnutls_openpgp.c, lib/openpgp/output.c, lib/openpgp/pgp.c, lib/x509/crq.c, lib/x509/dn.c, lib/x509/pkcs12.c, lib/x509/pkcs12_bag.c, lib/x509/privkey_pkcs8.c, lib/x509/verify.c, lib/x509/x509_write.c, libextra/gl/md5.c, libextra/gnutls_openssl.c, src/certtool-cfg.c, src/cli.c, src/common.c, src/crypt.c, src/psk.c, src/serv.c, tests/anonself.c, tests/chainverify.c, tests/crq_apis.c, tests/cve-2008-4989.c, tests/cve-2009-1415.c, tests/dhepskself.c, tests/dn2.c, tests/finished.c, tests/hostname-check.c, tests/mini-eagain.c, tests/mini.c, tests/nul-in-x509-names.c, tests/openpgpself.c, tests/oprfi.c, tests/pkcs12_encode.c, tests/pkcs12_s2k.c, tests/pkcs12_s2k_pem.c, tests/pskself.c, tests/resume.c, tests/tlsia.c, tests/x509_altname.c, tests/x509dn.c, tests/x509self.c, tests/x509sign-verify.c, tests/x509signself.c: Indent code. 2009-11-05 Simon Josefsson * doc/examples/ex-cert-select.c, src/cli.c: Fix API name change. 2009-11-05 Simon Josefsson * NEWS, doc/manpages/Makefile.am, lib/ext_signature.c, lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map: Fix NEWS blurb. Shorten new API name. 2009-11-05 Simon Josefsson * lib/ext_signature.c: Doc fix, add Since tag. 2009-11-05 Simon Josefsson * lib/ext_signature.c: Indent code. 2009-11-05 Simon Josefsson * gl/m4/inet_ntop.m4, gl/m4/inet_pton.m4: Fix compile error. Tiny patch by Brad Hards in . 2009-11-05 Simon Josefsson * lib/ext_signature.c: Fix compile errors. Tiny patch from Brad Hards in . 2009-11-05 Simon Josefsson * lib/auth_cert.c: Fix compile errors. Tiny patch from Brad Hards in . 2009-11-05 Simon Josefsson * gl/Makefile.am, gl/m4/stdlib_h.m4, gl/stdlib.in.h, gl/tests/test-getaddrinfo.c, lib/gl/Makefile.am, lib/gl/m4/stdlib_h.m4, lib/gl/stdlib.in.h: Update gnulib files. 2009-11-05 Simon Josefsson * NEWS: Add. 2009-11-05 Simon Josefsson * lib/po/vi.po.in: Sync with TP. 2009-11-03 Simon Josefsson * doc/examples/Makefile.am, src/Makefile.am, tests/Makefile.am: Use INET_NTOP_LIB and INET_PTON_LIB. 2009-11-03 Simon Josefsson * build-aux/pmccabe2html, build-aux/useless-if-before-free, gl/m4/fseeko.m4, gl/m4/gnulib-comp.m4, gl/m4/inet_ntop.m4, gl/m4/inet_pton.m4, gl/m4/pmccabe2html.m4, gl/m4/ungetc.m4, gl/sockets.c, gl/stdio.in.h, gl/sys_stat.in.h, gl/tests/test-arpa_inet.c, gl/tests/test-getaddrinfo.c, gl/tests/test-getdelim.c, gl/tests/test-getline.c, gl/tests/test-gettimeofday.c, gl/tests/test-memchr.c, gl/tests/test-netinet_in.c, gl/tests/test-select-stdin.c, gl/tests/test-select.c, gl/tests/test-sockets.c, gl/tests/test-stddef.c, gl/tests/test-stdint.c, gl/tests/test-stdio.c, gl/tests/test-stdlib.c, gl/tests/test-strerror.c, gl/tests/test-string.c, gl/tests/test-sys_select.c, gl/tests/test-sys_socket.c, gl/tests/test-sys_stat.c, gl/tests/test-sys_time.c, gl/tests/test-time.c, gl/tests/test-unistd.c, gl/tests/test-version-etc.c, gl/tests/test-wchar.c, lib/gl/m4/fseeko.m4, lib/gl/m4/ungetc.m4, lib/gl/sockets.c, lib/gl/stdio.in.h, lib/gl/sys_stat.in.h, lib/gl/tests/test-memchr.c, lib/gl/tests/test-sockets.c, lib/gl/tests/test-stddef.c, lib/gl/tests/test-stdint.c, lib/gl/tests/test-stdio.c, lib/gl/tests/test-stdlib.c, lib/gl/tests/test-string.c, lib/gl/tests/test-strverscmp.c, lib/gl/tests/test-sys_socket.c, lib/gl/tests/test-sys_stat.c, lib/gl/tests/test-time.c, lib/gl/tests/test-unistd.c, lib/gl/tests/test-wchar.c, libextra/gl/md5.c, maint.mk: Update gnulib files. 2009-11-02 Simon Josefsson * NEWS: Fix. 2009-11-02 Simon Josefsson * tests/chainverify.c: Fix time bomb in chainverify self-test. Reported by Andreas Metzler in . 2009-11-01 Nikos Mavrogiannopoulos * NEWS: Documented change for certificate retrieval callbacks. 2009-11-01 Nikos Mavrogiannopoulos * src/cli.c: do not use gnutls_x509_crt_get_signature_algorithm() on null certificates. 2009-11-01 Nikos Mavrogiannopoulos * lib/auth_cert.c: Do not check signature algorithms for certificate selection when using openpgp certificates. 2009-11-01 Nikos Mavrogiannopoulos * doc/manpages/gnutls-cli.1: Avoid code duplication by using all the functions defined in gnutls_algorithms to map from TLS 1.2 signature algorithm numbers to gnutls signature algorithms. Added minimal documentation for SIGN-* in gnutls-cli priority strings. Corrected bug in signature algorithm extension generation. 2009-11-01 Nikos Mavrogiannopoulos * lib/auth_cert.c, lib/auth_dhe.c, lib/ext_signature.c, lib/ext_signature.h, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_int.h, lib/gnutls_sig.c: Avoid code duplication by using all the functions defined in gnutls_algorithms to map from TLS 1.2 signature algorithm numbers to gnutls signature algorithms. Added minimal documentation for SIGN-* in gnutls-cli priority strings. Corrected bug in signature algorithm extension generation. 2009-11-01 Nikos Mavrogiannopoulos * lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa_export.c, lib/auth_srp_rsa.c, lib/gnutls_sig.c, lib/gnutls_sig.h: Rationalized function names for signature generation and verification during handshake. _gnutls_tls_sign_hdata -> _gnutls_handshake_sign_cert_vrfy _gnutls_verify_sig_hdata -> _gnutls_handshake_verify_cert_vrfy _gnutls_tls_sign_params -> _gnutls_handshake_sign_data _gnutls_verify_sig_params -> _gnutls_handshake_verify_data 2009-11-01 Nikos Mavrogiannopoulos * lib/ext_signature.c: Do not output error if a server replies with a SignatureAlgorithms extension. 2009-11-01 Nikos Mavrogiannopoulos * tests/dn2.c, tests/pathlen/ca-no-pathlen.pem: RSA_SHA -> RSA_SHA1 2009-11-01 Nikos Mavrogiannopoulos * NEWS: Documented memory leak fix. 2009-11-01 Nikos Mavrogiannopoulos * NEWS, doc/examples/ex-cert-select.c, doc/gnutls.texi, lib/auth_cert.c, lib/ext_cert_type.c, lib/ext_cert_type.h, lib/ext_signature.c, lib/ext_signature.h, lib/gnutls_alert.c, lib/gnutls_sig.c, lib/gnutls_state.c, lib/gnutls_state.h, lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, src/cli.c: Final touch on signature algorithms in TLS 1.2 support. Added function gnutls_session_sign_algorithm_get_requested() for callbacks to be able to verify they return a correct certificate as well as documentation for its usage. 2009-11-01 Nikos Mavrogiannopoulos * lib/Makefile.am, lib/auth_cert.c, lib/auth_cert.h, lib/ext_signature.c, lib/ext_signature.h, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_errors.c, lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_priority.c, lib/gnutls_sig.c, lib/gnutls_sig.h, lib/gnutls_state.c, lib/gnutls_state.h, lib/gnutls_x509.c, lib/includes/gnutls/gnutls.h.in, lib/openpgp/gnutls_openpgp.c: Improved TLS 1.2 support. Added support for the SignatureAlgorithm extension as well for the SignatureAlgorithm in certificate request. Limitation for TLS 1.2 clients: Only SHA1 or SHA256 are supported for generating signatures in certificate verify message. That is to avoid storing all handshake messages in memory. To be reconsidered in the future. 2009-11-01 Nikos Mavrogiannopoulos * lib/gnutls_global.c: fixes in order to compile with -Werror 2009-10-31 Nikos Mavrogiannopoulos * lib/ext_cert_type.c, lib/gnutls_cipher.c: remove unnessesary warning. 2009-10-31 Nikos Mavrogiannopoulos * lib/ext_cert_type.c: correctly check extension size. 2009-10-28 Nikos Mavrogiannopoulos * NEWS, lib/gnutls_handshake.c: When resuming a session do not overwrite the initial session data with resumed session data. Discovered on discussion at help-gnutls with Sebastien Decugis. 2009-10-26 Simon Josefsson * lib/gnutls_cipher.c, lib/gnutls_handshake.c, src/certtool.c: Fix code style so it compiles with gcc 4.4 with warnings. 2009-10-26 Simon Josefsson * gl/Makefile.am, gl/m4/sys_stat_h.m4, gl/sys_stat.in.h, lib/gl/Makefile.am, lib/gl/m4/sys_stat_h.m4, lib/gl/sys_stat.in.h: Update gnulib files. 2009-10-26 Simon Josefsson * .gitignore: Drop unknown mini-hfail. 2009-10-26 Simon Josefsson * NEWS: Add. 2009-10-25 Daiki Ueno * lib/gnutls_handshake.c: Enable ClientHello to carry arbitrary length extension data. 2009-10-25 Nikos Mavrogiannopoulos * lib/includes/gnutls/pkcs12.h, lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509/pkcs12.c, lib/x509/pkcs12_bag.c, lib/x509/x509_int.h, src/certtool.c: Added GNUTLS_BAG_SECRET that adds support for storing a randomly generated key into a PKCS-12 structure. This is a gnutls extension, since PKCS-12 does not specify what should be in the secret bag. What we do is store the key as OCTET string and specify an OID of the PKCS-9 random nonce. 2009-10-25 Nikos Mavrogiannopoulos * NEWS, lib/x509/privkey_pkcs8.c: Corrected warnings in picky compilers and rearanged code. 2009-10-24 Nikos Mavrogiannopoulos * doc/manpages/certtool.1, lib/cipher-libgcrypt.c, lib/gnutls_algorithms.c, lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/x509.h, lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509/pkcs12_bag.c, lib/x509/privkey_pkcs8.c, lib/x509/x509_int.h, src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: Added support for the AES family of ciphers in the PKCS8 and 12 encryption options. 2009-10-24 Nikos Mavrogiannopoulos * .gitignore: Do not print auto-generated files. 2009-10-23 Simon Josefsson * THANKS: Add. 2009-10-23 Simon Josefsson * lib/gnutlsxx.cpp: Fix forgotten braces. Reported by Jason Pettiss . 2009-10-23 Simon Josefsson * lib/gnutlsxx.cpp: Indent code. 2009-10-22 Nikos Mavrogiannopoulos * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cipher.c, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_sig.c, lib/gnutls_state.c: 1. Fix for memory leaks on interrupted handshake. 2. Fixes issue where a TLS 1.2 client will wrongly calculate hashes if the server will select a different than 1.2 protocol. 3. In TLS 1.2 when a certificate request is sent, support is not complete. In that case abort the handshake. By checking TLS 1.2 it seems that the algorithms to be used for the signature in the certificate verify message are negotiated not at the client/server hello messages but rather selected by the server at the certificate request. This might not look as bad, but since in this message we have to sign all previous handshake messages, it forces us to keep all the handshake messages into a buffer until this point... I don't know who proposed this change to the TLS WG, but it seems it wasn't really thought of. 2009-10-20 Simon Josefsson * tests/chainverify.c: Fix expired cert. 2009-10-16 Simon Josefsson * src/cli.c: Make sure we use libgcrypt correctly. 2009-10-15 Simon Josefsson * gl/m4/time_h.m4: Update gnulib files. 2009-10-15 Simon Josefsson * gl/Makefile.am, gl/m4/gnulib-comp.m4, gl/m4/sys_stat_h.m4, gl/sys_stat.in.h, gl/tests/Makefile.am, gl/tests/test-sys_stat.c, gl/tests/test-time.c, gl/time.in.h, gl/unistd.in.h, lib/gl/Makefile.am, lib/gl/m4/gnulib-comp.m4, lib/gl/m4/sys_stat_h.m4, lib/gl/sys_stat.in.h, lib/gl/tests/test-sys_stat.c, lib/gl/unistd.in.h: Update gnulib files. 2009-10-15 Simon Josefsson * lib/libgnutlsxx.map: Export C++ symbol visibility. Tiny patch from Boyan Kasarov . 2009-10-14 Simon Josefsson * lib/pkix_asn1_tab.c: Regenerate. 2009-10-14 Simon Josefsson * NEWS: Add. 2009-10-14 Simon Josefsson * tests/pkcs12_encode.c: Fix MAC password. 2009-10-14 Simon Josefsson * tests/pkcs12_encode.c: Use better friendly names. 2009-10-14 Simon Josefsson * tests/Makefile.am, tests/pkcs12_encode.c: Add self test to test PKCS#12 functions. 2009-10-14 Simon Josefsson * lib/pkix.asn: Work around 'Cannot find OID: 1.2.840.113549.1.9.21' PKCS#12 problem. Reported by Michael Welsh Duggan in . 2009-10-14 Simon Josefsson * doc/gnutls.texi: Mention that sometimes CA certs needs to be included in PKCS#12 files. Reported by Ivars Suba . 2009-10-07 Simon Josefsson * lib/gnutls_priority.c: After setting priorities using new API, update current TLS version. 2009-10-06 Simon Josefsson * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, libextra/configure.ac: Bump versions. 2009-10-06 Simon Josefsson * ChangeLog: Generated. 2009-10-06 Simon Josefsson * NEWS: Version 2.9.7. 2009-10-06 Simon Josefsson * gl/Makefile.am, gl/m4/gnulib-comp.m4, gl/m4/stdio_h.m4, gl/m4/unistd_h.m4, gl/progname.c, gl/stdio.in.h, gl/unistd.in.h, lib/gl/Makefile.am, lib/gl/m4/stdio_h.m4, lib/gl/m4/unistd_h.m4, lib/gl/stdio.in.h, lib/gl/unistd.in.h, maint.mk: Update gnulib files. 2009-10-06 Simon Josefsson * NEWS: Add. 2009-10-06 Simon Josefsson * lib/libgnutlsxx.map: Fix symbol export rules. Tiny patch by Boyan Kasarov . 2009-10-06 Simon Josefsson * lib/gnutlsxx.cpp: Include config.h. Tiny patch from Boyan Kasarov . 2009-10-01 Daiki Ueno * lib/gnutls_sig.c: Reserve enough room for hash buffers. This fixes x509self self-test. 2009-09-30 Simon Josefsson * gl/Makefile.am, gl/m4/sys_stat_h.m4, gl/m4/unistd_h.m4, gl/tests/Makefile.am, gl/unistd.in.h, lib/gl/Makefile.am, lib/gl/m4/sys_stat_h.m4, lib/gl/m4/unistd_h.m4, lib/gl/tests/Makefile.am, lib/gl/unistd.in.h: Update gnulib files. 2009-09-30 Simon Josefsson * NEWS: Add. 2009-09-30 Simon Josefsson * lib/gnutls_priority.c: Attempt to negotiate TLS 1.2 by default. 2009-09-30 Simon Josefsson * NEWS: Add. 2009-09-30 Simon Josefsson * lib/auth_cert.c: Fix comment. 2009-09-30 Daiki Ueno * lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa_export.c, lib/auth_srp_rsa.c, lib/gnutls_sig.c, lib/gnutls_sig.h: Fix server-side TLS 1.2 support. 2009-09-30 Daiki Ueno * lib/gnutls_sig.c: Calculate DER-encoded DigestInfo on-the-fly rather than hard code it. 2009-09-28 Ludovic Courtès * configure.ac, guile/src/core.c: guile: Adjust for Guile 1.9.3+. * guile/src/core.c (mark_session_record_port, free_session_record_port): Conditionalize on `SCM_MAJOR_VERSION == 1 && SCM_MINOR_VERSION <= 8'. (scm_init_gnutls_session_record_port_type): Adjust accordingly. (make_session_record_port): Use `scm_gc_malloc_pointerless ()' when available. 2009-09-28 Ludovic Courtès * guile/src/core.c: guile: Syntactic nitpicking. * guile/src/core.c (SCM_GNUTLS_MAKE_SESSION_DATA, SCM_GNUTLS_SET_SESSION_RECORD_PORT): Remove extraneous semicolon. 2009-09-28 Ludovic Courtès * guile/src/core.c: guile: Use Guile's malloc routines. * guile/src/core.c (scm_init_gnutls): Use Guile's malloc routines. 2009-09-23 Simon Josefsson * lib/ext_server_name.c: Clarify gnutls_server_name_set usage. Reported by Daniel Black in . 2009-09-23 Ludovic Courtès * guile/src/core.c: Fix integer/pointer cast warnings in the Guile bindings on x86_64. * guile/src/core.c (do_fill_port, fill_session_record_port_input, scm_gnutls_set_session_transport_fd_x): Make sure pointer/integer casts use integers of the right size. 2009-09-23 Ludovic Courtès * guile/src/extra.c: Update Guile bindings to the current OpenPGP API. * guile/src/extra.c (scm_gnutls_openpgp_certificate_id, scm_gnutls_openpgp_certificate_id_x): Use the newer `gnutls_openpgp_crt_get_key_id ()'. 2009-09-23 Ludovic Courtès * doc/Makefile.am, guile/src/Makefile.am, guile/tests/Makefile.am: Turn off auto-compilation when using Guile 1.9+. * guile/src/Makefile.am (GUILE_FOR_BUILD): Turn off auto-compilation with Guile 1.9+. * guile/tests/Makefile.am (TESTS_ENVIRONMENT): Likewise. * doc/Makefile.am (GUILE_FOR_BUILD): Likewise. 2009-09-23 Ludovic Courtès * guile/src/core.c, guile/src/errors.c, guile/src/extra.c, guile/src/utils.c, guile/src/utils.h: Fix inclusion of in Guile bindings. * guile/src/core.c, guile/src/errors.c, guile/src/extra.c, guile/src/utils.c: Include first, as suggested by Simon Josefsson. * guile/src/utils.h: Don't include . 2009-09-22 Simon Josefsson * gl/unistd.in.h, lib/gl/unistd.in.h: Update gnulib files. 2009-09-22 Simon Josefsson * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, libextra/configure.ac: Bump versions. 2009-09-22 Simon Josefsson * build-aux/gendocs.sh: Chmod. 2009-09-22 Simon Josefsson * ChangeLog: Generated. 2009-09-22 Simon Josefsson * NEWS: Version 2.9.6. 2009-09-22 Simon Josefsson * gl/Makefile.am, gl/m4/getdelim.m4, gl/m4/stdio_h.m4, gl/m4/stdlib_h.m4, gl/m4/sys_stat_h.m4, gl/m4/unistd_h.m4, gl/stdio.in.h, gl/stdlib.in.h, gl/sys_stat.in.h, gl/unistd.in.h, lib/gl/Makefile.am, lib/gl/m4/stdio_h.m4, lib/gl/m4/stdlib_h.m4, lib/gl/m4/sys_stat_h.m4, lib/gl/m4/unistd_h.m4, lib/gl/stdio.in.h, lib/gl/stdlib.in.h, lib/gl/sys_stat.in.h, lib/gl/unistd.in.h, maint.mk: Update gnulib files. 2009-09-13 Brad Hards * lib/x509/x509.c: Add forgotten documentation bits for issuer altname Signed-off-by: Simon Josefsson 2009-09-11 Simon Josefsson * build-aux/gendocs.sh, gl/m4/getaddrinfo.m4, gl/m4/getline.m4, gl/m4/readline.m4, gl/m4/select.m4, gl/m4/sockets.m4, gl/m4/socklen.m4, gl/m4/sockpfaf.m4, lib/gl/m4/sockets.m4, lib/gl/m4/socklen.m4, lib/gl/m4/sockpfaf.m4, lib/gl/m4/time_r.m4: Update gnulib files. 2009-09-11 Simon Josefsson * lib/gnutls_cipher.c: Add debug message. Tiny patch from Miroslav Kratochvil in . 2009-09-11 Daiki Ueno * lib/Makefile.am: Fix out-of-tree build. Fix out-of-tree build; gnutls.h is generated in the build tree. 2009-09-10 Simon Josefsson * NEWS, lib/m4/hooks.m4: Enable Camellia by default. 2009-09-10 Simon Josefsson * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, libextra/configure.ac: Bump versions. 2009-09-10 Simon Josefsson * ChangeLog: Generated. 2009-09-10 Simon Josefsson * NEWS: Version 2.9.5. 2009-09-10 Simon Josefsson * configure.ac: Bump version. 2009-09-10 Simon Josefsson * gl/Makefile.am, gl/m4/stdio_h.m4, gl/m4/string_h.m4, gl/m4/sys_stat_h.m4, gl/m4/unistd_h.m4, gl/stdio.in.h, gl/string.in.h, gl/sys_stat.in.h, gl/unistd.in.h, lib/gl/Makefile.am, lib/gl/m4/stdio_h.m4, lib/gl/m4/string_h.m4, lib/gl/m4/sys_stat_h.m4, lib/gl/m4/unistd_h.m4, lib/gl/stdio.in.h, lib/gl/string.in.h, lib/gl/sys_stat.in.h, lib/gl/unistd.in.h, maint.mk: Update gnulib files. 2009-09-10 Simon Josefsson * NEWS: Add. 2009-09-10 Simon Josefsson * AUTHORS: Add. 2009-09-10 Simon Josefsson * lib/m4/hooks.m4: Bump library version for new APIs. 2009-09-10 Simon Josefsson * lib/x509/output.c, lib/x509/x509.c: Indent. 2009-09-10 Simon Josefsson * lib/libgnutls.map: Move the new ABIs to the GNUTLS_2_10 section. 2009-09-09 Brad Hards * doc/manpages/Makefile.am, lib/includes/gnutls/x509.h, lib/libgnutls.map, lib/x509/output.c, lib/x509/x509.c, tests/Makefile.am, tests/x509_altname.c: Add X509 Issuer Altname functions Signed-off-by: Simon Josefsson 2009-09-07 Simon Josefsson * tests/key-id/key-id: Don't use ! to negate exit status. Reported by "Tom G. Christensen" in . 2009-09-03 Simon Josefsson * gl/Makefile.am, gl/close.c, gl/inet_ntop.c, gl/inet_pton.c, gl/m4/sys_stat_h.m4, gl/sys_stat.in.h, gl/tests/Makefile.am, gl/unistd.in.h, lib/gl/Makefile.am, lib/gl/m4/sys_stat_h.m4, lib/gl/sys_stat.in.h, lib/gl/unistd.in.h, maint.mk: Update gnulib files. 2009-09-03 Simon Josefsson * NEWS, lib/configure.ac, lib/m4/hooks.m4, libextra/configure.ac: Bump versions. 2009-09-03 Simon Josefsson * cfg.mk: Commit cyclo/ dir too. 2009-09-03 Simon Josefsson * ChangeLog: Generated. 2009-09-03 Simon Josefsson * NEWS: Version 2.9.4. 2009-09-03 Simon Josefsson * tests/hostname-check.c: Build when OpenPGP is disabled. 2009-09-03 Simon Josefsson * cfg.mk: Fix! 2009-09-03 Simon Josefsson * cfg.mk: Typo. 2009-09-03 Simon Josefsson * cfg.mk: Ugly hack for autobuilder. 2009-09-01 Simon Josefsson * NEWS: Add. 2009-09-01 Simon Josefsson * lib/gnutls_priority.c: Use SHA256 as MAC by default. 2009-09-01 Simon Josefsson * NEWS: Add. 2009-09-01 Daiki Ueno * lib/gnutls_algorithms.c: Add SHA-2 cipher suites. Signed-off-by: Simon Josefsson 2009-09-01 Daiki Ueno * lib/debug.c: Print NewSessionTicket handshake. Signed-off-by: Simon Josefsson 2009-08-31 Simon Josefsson * NEWS: Add. 2009-08-31 Simon Josefsson * lib/x509/x509.c: Handle XMPP SANs properly. Reported by Howard Chu in . 2009-08-31 Simon Josefsson * lib/auth_dhe.c: Need another header. 2009-08-31 Simon Josefsson * AUTHORS, NEWS: Add. 2009-08-31 Simon Josefsson * lib/gnutls_algorithms.c: Add comment explaining where magic values come from. 2009-08-31 Daiki Ueno * lib/auth_cert.c: Fix parsing Certificate Request for TLS 1.2. Fix the logic to skip supported_signature_algorithms in Certificate Request. Signed-off-by: Simon Josefsson 2009-08-31 Daiki Ueno * lib/gnutls_handshake.c, lib/gnutls_pk.c, lib/gnutls_state.c: Use SHA256 for PRF if TLS 1.2. Use SHA256 for the basis of PRF, and for the hash over handshake messages. Signed-off-by: Simon Josefsson 2009-08-31 Daiki Ueno * lib/auth_dhe.c, lib/auth_rsa_export.c, lib/auth_srp_rsa.c, lib/gnutls_sig.c, lib/gnutls_sig.h: Respect TLS signature algorithm in server KX. Verify signature of DH parameters in Server Key Exchange with the embedded signature algorithm. Signed-off-by: Simon Josefsson 2009-08-31 Daiki Ueno * lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_int.h: Add functions for TLS signature algorithm. Add functions to convert TLS signature algorithm from/to constants defined by GnuTLS. Signed-off-by: Simon Josefsson 2009-08-31 Simon Josefsson * NEWS: Add. 2009-08-31 Simon Josefsson * maint.mk: Update gnulib files. 2009-08-31 Simon Josefsson * THANKS: Add. 2009-08-25 Fabian Keil * src/serv.c: Remove dead store in listen_socket(). Signed-off-by: Simon Josefsson 2009-08-25 Fabian Keil * lib/gnutls_buffers.c: Remove dead store in _gnutls_io_write_buffered(). Signed-off-by: Simon Josefsson 2009-08-24 Fabian Keil * lib/x509/x509.c: Remove dead store in gnutls_x509_crt_list_import(). Signed-off-by: Simon Josefsson 2009-08-24 Fabian Keil * lib/auth_srp_passwd.c: Remove dead store in pwd_put_values(). Signed-off-by: Simon Josefsson 2009-08-24 Fabian Keil * src/certtool.c: Remove dead store in pkcs12_info(). Signed-off-by: Simon Josefsson 2009-08-25 Fabian Keil * lib/auth_cert.c: Remove write-only variable info in _gnutls_proc_cert_cert_req(). Signed-off-by: Simon Josefsson 2009-08-25 Fabian Keil * lib/auth_rsa_export.c: Remove write-only variable info in gen_rsa_export_server_kx(). Signed-off-by: Simon Josefsson 2009-08-25 Fabian Keil * src/cfg/shared.c: Remove write-only variable sep_ar_idx in split_multi_arg(). Signed-off-by: Simon Josefsson 2009-08-24 Fabian Keil * lib/x509/pkcs12.c: Remove write-only variable tmp_size in _pkcs12_decode_safe_content(). Signed-off-by: Simon Josefsson 2009-08-29 Fabian Keil * THANKS: Remove duplicates. Two exact ones and a pretty close one. Signed-off-by: Simon Josefsson 2009-08-25 Fabian Keil * lib/auth_srp_passwd.c: Mark what looks like a bug in in _gnutls_srp_pwd_read_entry() Signed-off-by: Simon Josefsson 2009-08-24 Fabian Keil * src/crypt.c: In main(), rename salt to salt_size and don't bother reading info.salt which we don't use anyway. Signed-off-by: Simon Josefsson 2009-08-31 Simon Josefsson * lib/opencdk/misc.c: (cdk_strlist_next): Handle NULL root value better. Based on report by Fabian Keil . 2009-08-24 Fabian Keil * lib/x509/output.c: In print_extensions(), declare the *_idx variables as int instead of size_t. While it shouldn't make a difference, it makes more sense to me. It's also consistent with (at least) print_crl(). Signed-off-by: Simon Josefsson 2009-08-24 Fabian Keil * lib/x509/output.c: In print_extensions(), initialize *_idx variables once before entering the for loop instead of each run. Otherwise checking them is pointless as they always will be zero. Signed-off-by: Simon Josefsson 2009-08-24 Fabian Keil * lib/x509/output.c: In print_crq(), initialize challenge and extensions once before entering the for loop instead of each run. Signed-off-by: Simon Josefsson 2009-08-24 Fabian Keil * lib/x509/output.c: In print_crl(), initialize aki_idx and crl_nr once before entering the for loop instead of each run. Otherwise the "error: more than one AKI extension\n" and "error: more than one CRL number\n" checks want work. Signed-off-by: Simon Josefsson 2009-08-28 Simon Josefsson * tests/x509dn.c: Likewise. 2009-08-28 Simon Josefsson * tests/x509dn.c: Don't use deprecated type. 2009-08-28 Simon Josefsson * cfg.mk: Overwrite gettext's size_max.m4 to make sure we use one that works. 2009-08-28 Simon Josefsson * gl/Makefile.am, gl/m4/gnulib-comp.m4, gl/m4/stdlib_h.m4, gl/m4/sys_socket_h.m4, gl/m4/unistd_h.m4, gl/progname.c, gl/stdlib.in.h, gl/sys_socket.in.h, gl/tests/Makefile.am, gl/unistd.in.h, gl/vasnprintf.c, lib/gl/Makefile.am, lib/gl/m4/stdlib_h.m4, lib/gl/m4/sys_socket_h.m4, lib/gl/m4/unistd_h.m4, lib/gl/stdlib.in.h, lib/gl/sys_socket.in.h, lib/gl/tests/test-func.c, lib/gl/unistd.in.h, lib/gl/vasnprintf.c, libextra/gl/override/lib/md5.c.diff: Update gnulib files. 2009-08-28 Simon Josefsson * configure.ac, lib/configure.ac, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_str.h, lib/opencdk/Makefile.am, lib/x509/privkey_pkcs8.c, libextra/configure.ac: Fix use of deprecated types, for now and the future. 2009-08-28 Simon Josefsson * NEWS: Add. 2009-08-28 Simon Josefsson * lib/x509/crq.c: Fix gnutls_datum usage. 2009-08-28 Simon Josefsson * lib/gnutls_buffers.c, lib/gnutls_pk.c, lib/gnutls_str.c, lib/gnutls_x509.c, lib/includes/gnutls/gnutls.h.in, lib/opencdk/pubkey.c, lib/openpgp/gnutls_openpgp.c, lib/x509/common.c, lib/x509/extensions.c, lib/x509/mpi.c, lib/x509/privkey_pkcs8.c, lib/x509/x509_write.c, src/certtool.c, tests/openpgp_test.c, tests/resume.c, tests/x509_test.c, tests/x509dn.c, tests/x509sign-verify.c: Fix deprecated usage of gnutls_datum. 2009-08-27 Dan Fandrich * lib/opencdk/new-packet.c, lib/opencdk/packet.h, lib/opencdk/pubkey.c, lib/opencdk/read-packet.c, lib/opencdk/stream.c, lib/opencdk/stream.h, lib/opencdk/verify.c, lib/x509/crq.c: Fix compiler warning bugs for OpenWatcom. Signed-off-by: Simon Josefsson 2009-08-25 Daiki Ueno * tests/resume.c: Fix double-free Signed-off-by: Simon Josefsson 2009-08-24 Simon Josefsson * .gitattributes: Disable whitespace for file that need it. 2009-08-20 Simon Josefsson * tests/hostname-check.c: Add check of OpenPGP cert too. 2009-08-20 Simon Josefsson * THANKS: Add. 2009-08-20 Simon Josefsson * libextra/gl/override/lib/md5.c.diff: Work around whitespace commit hook. 2009-08-20 Simon Josefsson * gl/Makefile.am, gl/m4/stdio_h.m4, gl/select.c, gl/stdio.in.h, lib/gl/Makefile.am, lib/gl/m4/stdio_h.m4, lib/gl/stdio.in.h, maint.mk: Update gnulib files. 2009-08-20 Simon Josefsson * libextra/gl/gnulib.mk, libextra/gl/m4/gnulib-cache.m4, libextra/gl/md5.c, libextra/gl/override/lib/md5.c.diff: Reduce stack usage and remove code. 2009-08-20 Simon Josefsson * lib/gnutls_int.h: Remove unused constant. 2009-08-20 Simon Josefsson * lib/gnutls_errors.c: Reduce stack usage. 2009-08-20 Simon Josefsson * lib/openpgp/pgp.c: Fix OpenPGP hostname comparison. 2009-08-20 Simon Josefsson * lib/openpgp/output.c, lib/openpgp/pgp.c: Reduce stack usage. 2009-08-20 Simon Josefsson * lib/x509/output.c: Reduce stack usage. 2009-08-20 Simon Josefsson * .x-sc_m4_quote_check, lib/gnutls_sig.c, lib/opencdk/write-packet.c: Fix syntax-check nits. 2009-08-20 Daiki Ueno * lib/libgnutls.map, lib/opencdk/keydb.c, tests/dn2.c, tests/mpi.c, tests/resume.c: Fix memleaks. Signed-off-by: Simon Josefsson 2009-08-19 Simon Josefsson * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, libextra/configure.ac: Bump versions. 2009-08-19 Simon Josefsson * doc/gnutls.texi: Fix references. 2009-08-19 Simon Josefsson * cfg.mk: Also commit devel/ web pages. 2009-08-19 Simon Josefsson * ChangeLog: Fix ChangeLog. 2009-08-19 Simon Josefsson * ChangeLog: Generated. 2009-08-19 Simon Josefsson * NEWS: Version 2.9.3. 2009-08-19 Simon Josefsson * lib/ext_session_ticket.c: Typo. 2009-08-19 Simon Josefsson * lib/gnutls_sig.c: Need gnutls_algorithms.h for prototypes. 2009-08-19 Simon Josefsson * AUTHORS: Add. 2009-08-18 Jonathan Bastien-Filiatrault * lib/auth_cert.c, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_cipher.c, lib/gnutls_handshake.c, lib/gnutls_sig.c, lib/gnutls_state.c: Replace explicit version checks with feature checks Signed-off-by: Simon Josefsson 2009-08-19 Simon Josefsson * doc/gnutls.texi: Reformat paragraphs. 2009-08-19 Simon Josefsson * doc/manpages/Makefile.am, src/cli-gaa.c, src/cli-gaa.h, src/serv-gaa.c, src/serv-gaa.h: Generated. 2009-08-19 Simon Josefsson * doc/gnutls.texi: Typo. 2009-08-19 Simon Josefsson * doc/gnutls.texi: Add cross reference. 2009-08-19 Simon Josefsson * doc/gnutls.texi: Add. 2009-08-19 Simon Josefsson * doc/reference/gnutls-docs.sgml, lib/ext_session_ticket.c: Fix GTK-DOC output. 2009-08-19 Simon Josefsson * NEWS: Add. 2009-08-19 Simon Josefsson * lib/libgnutls.map: Fix namespace of new APIs. 2009-08-19 Simon Josefsson * lib/ext_session_ticket.c, lib/gnutls_extensions.c, lib/gnutls_session_pack.c: Fix whitespace. 2009-08-19 Daiki Ueno * doc/TODO, lib/Makefile.am, lib/ext_session_ticket.c, lib/ext_session_ticket.h, lib/gnutls_constate.c, lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_session_pack.c, lib/gnutls_state.c, lib/includes/gnutls/gnutls.h.in, lib/libgnutls.map, lib/m4/hooks.m4, src/cli.c, src/cli.gaa, src/serv.c, src/serv.gaa, tests/resume.c: session ticket support Signed-off-by: Simon Josefsson 2009-08-19 Simon Josefsson * cfg.mk: Fix indent rule. 2009-08-19 Daiki Ueno * doc/gnutls.texi: internals doc update Hi, When I wrote SessionTicket extension I referred to the manual node "Adding a New TLS Extension", and noticed that it is not up to date. So, here is a patch. Signed-off-by: Simon Josefsson 2009-08-18 Simon Josefsson * gl/stdio.in.h, lib/gl/Makefile.am, lib/gl/m4/gnulib-cache.m4, lib/gl/m4/gnulib-comp.m4, lib/gl/m4/memmove.m4, lib/gl/memmove.c, lib/gl/stdio.in.h, maint.mk: Update gnulib files. 2009-08-15 Simon Josefsson * gl/m4/stddef_h.m4, lib/gl/m4/stddef_h.m4: Update gnulib files. 2009-08-15 Simon Josefsson * .gitignore: Don't ignore gl/ files! 2009-08-15 Simon Josefsson * gl/tests/test-stddef.c, lib/gl/tests/test-stddef.c: Update gnulib files. 2009-08-15 Simon Josefsson * gl/Makefile.am, gl/m4/gnulib-comp.m4, gl/m4/wchar.m4, gl/stddef.in.h, gl/stdlib.in.h, gl/string.in.h, gl/tests/Makefile.am, gl/tests/test-stdio.c, gl/tests/test-stdlib.c, gl/tests/test-string.c, gl/tests/test-unistd.c, gl/tests/test-wchar.c, gl/unistd.in.h, lib/gl/Makefile.am, lib/gl/m4/gnulib-comp.m4, lib/gl/m4/wchar.m4, lib/gl/stddef.in.h, lib/gl/stdlib.in.h, lib/gl/string.in.h, lib/gl/tests/Makefile.am, lib/gl/tests/test-stdio.c, lib/gl/tests/test-stdlib.c, lib/gl/tests/test-string.c, lib/gl/tests/test-time.c, lib/gl/tests/test-unistd.c, lib/gl/tests/test-wchar.c, lib/gl/time.in.h, lib/gl/unistd.in.h, maint.mk: Update gnulib files. 2009-08-14 Simon Josefsson * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, libextra/configure.ac: Bump versions. 2009-08-14 Simon Josefsson * ChangeLog: Generated. 2009-08-14 Simon Josefsson * NEWS: Version 2.9.2. 2009-08-14 Simon Josefsson * NEWS: Add 2.8.3 entry. 2009-08-14 Simon Josefsson * gl/Makefile.am, gl/m4/close.m4, gl/m4/fclose.m4, gl/m4/gnulib-comp.m4, gl/m4/sys_ioctl_h.m4, gl/m4/sys_socket_h.m4, gl/m4/unistd_h.m4, gl/tests/Makefile.am, gl/tests/sys_ioctl.in.h, gl/tests/test-stdio.c, gl/tests/test-stdlib.c, gl/tests/test-string.c, gl/tests/test-unistd.c, gl/tests/test-version-etc.sh, gl/unistd.in.h, gl/vasnprintf.c, lib/gl/Makefile.am, lib/gl/m4/sys_socket_h.m4, lib/gl/m4/threadlib.m4, lib/gl/m4/unistd_h.m4, lib/gl/tests/test-stdio.c, lib/gl/tests/test-stdlib.c, lib/gl/tests/test-string.c, lib/gl/tests/test-unistd.c, lib/gl/unistd.in.h, lib/gl/vasnprintf.c: Update gnulib files. 2009-08-13 Simon Josefsson * gl/tests/test-version-etc.sh: Update gnulib files. 2009-08-13 Simon Josefsson * gl/tests/test-version-etc.sh: Update gnulib files. 2009-08-13 Simon Josefsson * configure.ac: Don't generate gzip archives. 2009-08-13 Simon Josefsson * lib/Makefile.am, lib/gnutls_buffers.c, lib/gnutls_int.h, lib/io_debug.h: Remove io_debug.h stuff, it is superseded by self-tests like mini-eagain.c. 2009-08-13 Simon Josefsson * NEWS: Fix. 2009-08-13 Simon Josefsson * NEWS: Add. 2009-08-13 Simon Josefsson * lib/x509/x509.c: (gnutls_x509_crt_import): Re-initialize the ASN.1 structure. If this is not done here, the next certificate loading may fail because asn1_der_decoding modified the ASN.1 structure. Triggered by the hostname-check self-test. 2009-08-13 Simon Josefsson * cfg.mk: Revert "Always build vc checkouts with debugging." This reverts commit b68235be4d1ff7739456e0c5d8c28c6e96e15a14. It breaks because -Wdisabled-optimizations will cause an error when optimizations are disabled. 2009-08-13 Simon Josefsson * cfg.mk: Always build vc checkouts with debugging. 2009-08-13 Simon Josefsson * tests/hostname-check.c: Fix. 2009-08-13 Simon Josefsson * tests/hostname-check.c: Add another SAN/CN collision test. Reported by Daniel Stenberg in . 2009-08-12 Simon Josefsson * tests/hostname-check.c: Fix logic. 2009-08-12 Simon Josefsson * tests/hostname-check.c: Test when SAN and CN differs. Inspired by report by Daniel Stenberg in . 2009-08-12 Simon Josefsson * libextra/Makefile.am, libextra/gl/m4/sockets.m4: Use include instead of copy. 2009-08-12 Simon Josefsson * libextra/gl/m4/sockets.m4: Add, needed for -lws2_32 in libextra. 2009-08-12 Simon Josefsson * libextra/m4/hooks.m4: Add. 2009-08-11 Simon Josefsson * lib/gnutls_algorithms.c: Doc fix. 2009-08-11 Simon Josefsson * lib/gnutls_algorithms.c, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_cert.c, lib/gnutls_psk.c, lib/gnutls_srp.c, lib/gnutls_state.c, lib/gnutls_x509.c, lib/openpgp/gnutls_openpgp.c, lib/openpgp/pgp.c, libextra/gnutls_ia.c: Fix typos in documentation. Reported by Daiki Ueno in . 2009-08-10 Simon Josefsson * gl/m4/gnulib-comp.m4, gl/m4/sys_select_h.m4, gl/stdio-write.c, gl/sys_select.in.h, gl/tests/gettimeofday.c, gl/tests/test-sys_select.c, gl/tests/test-version-etc.sh, lib/gl/m4/gnulib-comp.m4, lib/gl/stdio-write.c, maint.mk: Update gnulib files. 2009-08-10 Simon Josefsson * libextra/Makefile.am: Need to add LIBSOCKET because we link to ../lib's gnulib library, for mingw. 2009-08-10 Simon Josefsson * lib/po/cs.po.in, lib/po/fr.po.in, lib/po/nl.po.in, lib/po/pl.po.in, lib/po/sv.po.in: Sync with TP. 2009-08-10 Simon Josefsson * NEWS: Add 2.8.x news entries. 2009-08-10 Simon Josefsson * cfg.mk: Fix usage. 2009-08-10 Simon Josefsson * cfg.mk: Copy cyclomatic code complexity charts too. 2009-08-10 Simon Josefsson * NEWS: Add. 2009-08-10 Simon Josefsson * lib/gnutls_global.c: Look only for latest _required_ libgcrypt/libtasn1 version. Reported by Marco d'Itri via Andreas Metzler as Debian BTS #540449. 2009-08-10 Simon Josefsson * NEWS: Add. 2009-08-08 Nikos Mavrogiannopoulos * : commit c529f792e4c899080eb1f6e104c8552fa0770356 Author: Nikos Mavrogiannopoulos Date: Sat Aug 8 09:06:57 2009 +0300 2009-08-07 Simon Josefsson * NEWS: Fix. 2009-08-07 Simon Josefsson * NEWS: Fix. 2009-08-07 Simon Josefsson * NEWS: Add. 2009-08-07 Simon Josefsson * lib/x509/output.c: Check for NUL in SANs and replace accordingly. 2009-08-07 Simon Josefsson * tests/Makefile.am, tests/hostname-check.README, tests/hostname-check.c: Move comment into source. 2009-08-07 Simon Josefsson * lib/x509/common.c: Refuse to return DNs with embedded NULs which breaks other code. Problem published by Dan Kaminsky and Moxie Marlinspike at BlackHat09. 2009-08-07 Simon Josefsson * lib/x509/common.c: Revert everything since last release, to allow minimal patch to be applied. 2009-08-06 Simon Josefsson * tests/Makefile.am: Fix invocation of rfc2253-escape-test. Reported by Brad Hards in . 2009-08-06 Simon Josefsson * build-aux/vc-list-files, gl/Makefile.am, gl/error.c, gl/fseeko.c, gl/m4/gnulib-comp.m4, gl/m4/lib-link.m4, gl/m4/stdio_h.m4, gl/m4/unistd_h.m4, gl/socket.c, gl/sockets.c, gl/stdio.in.h, gl/tests/Makefile.am, gl/tests/test-select.c, gl/tests/test-stdio.c, gl/tests/test-stdlib.c, gl/tests/test-string.c, gl/tests/test-unistd.c, gl/tests/test-version-etc.c, gl/tests/test-version-etc.sh, gl/unistd.in.h, gl/version-etc.c, gl/version-etc.h, lib/gl/Makefile.am, lib/gl/fseeko.c, lib/gl/m4/iconv.m4, lib/gl/m4/lib-link.m4, lib/gl/m4/stdio_h.m4, lib/gl/m4/time_h.m4, lib/gl/m4/unistd_h.m4, lib/gl/sockets.c, lib/gl/stdio.in.h, lib/gl/tests/test-stdio.c, lib/gl/tests/test-stdlib.c, lib/gl/tests/test-string.c, lib/gl/tests/test-unistd.c, lib/gl/time.in.h, lib/gl/unistd.in.h, libextra/gl/m4/lib-link.m4, libextra/gl/md5.h, maint.mk: Update gnulib files. 2009-08-05 Simon Josefsson * tests/Makefile.am, tests/rfc2253-escape-test: Add self-test of RFC 2253 escaping. 2009-08-04 Simon Josefsson * lib/x509/common.c: Simplify and fix mem leak. 2009-08-04 Simon Josefsson * lib/x509/common.c: Don't use fixed size buffer for strings. 2009-08-04 Simon Josefsson * tests/nul-in-x509-names.c: Exit with failure on failure. 2009-08-04 Simon Josefsson * tests/nul-in-x509-names.c: Fix output. 2009-08-04 Simon Josefsson * lib/gnutls_str.c: Cleanup code. 2009-08-04 Tomas Hoger * lib/gnutls_str.c, lib/gnutls_str.h, lib/openpgp/pgp.c, lib/x509/rfc2818_hostname.c: GnuTLS vs. NULL chars in CNs Check cert name size in _gnutls_hostname_compare() This is needed to protect against NULL (\0) characters embedded in X509 certificates' CNs or subjectAltNames, that can be used to fool SSL certificate verification as was demonstrated by Moxie Marlinspike on BH USA 2009: http://www.blackhat.com/html/bh-usa-09/bh-usa-09-archives.html#MarlinspikeSigned-off-by: Simon Josefsson 2009-08-04 Simon Josefsson * tests/Makefile.am, tests/nul-in-x509-names.c: Add self-test for NUL in X.509 CN/SAN problem. 2009-08-03 Simon Josefsson * lib/x509/common.c: Fix typo. 2009-08-03 Simon Josefsson * tests/chainverify.c: Fix expected output, a cert have expired. 2009-08-03 Simon Josefsson * lib/x509/common.c: Fix crash. 2009-08-03 Simon Josefsson * tests/mini-eagain.c: Make it build. 2009-07-29 Simon Josefsson * .gitignore: Drop .c and sort. 2009-07-29 Simon Josefsson * NEWS, lib/minitasn1/errors.c, lib/minitasn1/libtasn1.h: Use libtasn1 v2.3. 2009-07-29 Simon Josefsson * NEWS: Add. 2009-07-26 Nikos Mavrogiannopoulos * : commit c02e9f1459330119d2947a4e46fb60c0e12fa32d Author: Nikos Mavrogiannopoulos Date: Sun Jul 26 15:22:06 2009 +0300 2009-07-26 Nikos Mavrogiannopoulos * lib/x509/common.c: do not allow null character in DN. 2009-07-16 Nikos Mavrogiannopoulos * .gitignore: updated files to be ignored. 2009-07-16 Nikos Mavrogiannopoulos * tests/dn.c: Typo fix in test output. Patch by Brad Hards 2009-07-15 Nikos Mavrogiannopoulos * THANKS: Removed duplicate entry of Daniel and added Fabian, Brad and Daiki. 2009-07-15 Nikos Mavrogiannopoulos * doc/examples/ex-serv-anon.c, doc/examples/ex-serv-export.c, doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-psk.c, doc/examples/ex-serv-srp.c, doc/examples/ex-serv1.c, lib/auth_cert.c, lib/gnutls_buffers.c, lib/gnutls_mpi.c, lib/gnutls_pk.c, lib/gnutls_sig.c, lib/opencdk/stream.c, lib/opencdk/write-packet.c, lib/openpgp/pgp.c, lib/openpgp/privkey.c, lib/x509/privkey_pkcs8.c, src/certtool.c, src/psk.c: Several bug fixes by Fabian Keil (some were modified by me). 2009-07-15 Nikos Mavrogiannopoulos * tests/mini-eagain.c: reduced transferred data size. 2009-07-13 Nikos Mavrogiannopoulos * lib/auth_srp.c, lib/gnutls_buffers.c, lib/gnutls_errors.c, lib/gnutls_record.c, lib/gnutls_supplemental.c, lib/opencdk/armor.c, lib/opencdk/keydb.c, lib/opencdk/literal.c, lib/opencdk/read-packet.c, lib/opencdk/sig-check.c, lib/opencdk/stream.c, src/certtool-cfg.c, tests/chainverify.c: Added casts to reduce warnings (based on report by Brad Hards). 2009-07-13 Nikos Mavrogiannopoulos * .gitignore: Added more stuff to have a clean status. 2009-07-13 Nikos Mavrogiannopoulos * README-alpha: Documentation corrections by Brad Hards. 2009-07-13 Nikos Mavrogiannopoulos * lib/x509/crq.c: size_t and unsigned int fixes. 2009-07-01 Nikos Mavrogiannopoulos * lib/gnutls_str.c: There are cases where those buffers might overlap 2009-07-01 Nikos Mavrogiannopoulos * lib/gnutls_handshake.c: Patch by Tim Kosse: "If _gnutls_send_finished fails with GNUTLS_E_AGAIN or GNUTLS_E_AGAIN it eventually gets called a second time. It however does not call _gnutls_send_handshake with a NULL pointer on repeated calls, ultimately leading to an internal error in _gnutls_handshake_io_send_int." 2009-07-01 Nikos Mavrogiannopoulos * lib/auth_cert.h, lib/gnutls_ui.c: Corrected gnutls_certificate_client_get_request_status(). Based on observation by Peter Hendrickson . 2009-07-01 Nikos Mavrogiannopoulos * lib/gnutls_buffers.c, tests/Makefile.am, tests/mini-eagain.c: Added bug fix that allows gnutls_record_recv/send resuming from previously interrupted actions. Patch by from Tim Kosse . Added a self test to check those functions in handling interrupted states. 2009-06-30 Nikos Mavrogiannopoulos * : commit 21a7186bf83084a2bc85bbb7ddb600ccd070f1c2 Author: Simon Josefsson Date: Tue Jun 23 23:04:51 2009 +0200 2009-06-23 Simon Josefsson * lib/gnutls_errors.c: Doc fix. 2009-06-22 Simon Josefsson * NEWS: Fix. 2009-06-22 Simon Josefsson * tests/Makefile.am, tests/dn2.c: Add self-test of off-by-one size error. 2009-06-22 Simon Josefsson * THANKS: Add. 2009-06-22 Simon Josefsson * NEWS: Add. 2009-06-22 Simon Josefsson * lib/x509/dn.c: Fix off-by-one size computation that leads to truncated strings. Reported by Tim Kosse in . 2009-06-18 Simon Josefsson * gl/Makefile.am, gl/errno.in.h, gl/getpagesize.c, gl/m4/errno_h.m4, gl/m4/gnulib-comp.m4, gl/m4/memchr.m4, gl/m4/string_h.m4, gl/memchr.valgrind, gl/strerror.c, gl/string.in.h, gl/tests/Makefile.am, gl/tests/getpagesize.c, lib/gl/Makefile.am, lib/gl/errno.in.h, lib/gl/getpagesize.c, lib/gl/m4/errno_h.m4, lib/gl/m4/gnulib-comp.m4, lib/gl/m4/memchr.m4, lib/gl/m4/string_h.m4, lib/gl/memchr.valgrind, lib/gl/string.in.h, lib/gl/tests/Makefile.am, lib/gl/tests/getpagesize.c: Update gnulib files. 2009-06-18 Simon Josefsson * libextra/m4/hooks.m4: Fix --disable-openssl-compatibility parameter. Reported by Matthias Drochner in . 2009-06-17 Simon Josefsson * doc/gnutls.texi: Typo. 2009-06-17 Simon Josefsson * tests/mpi.c: Fix build error. 2009-06-17 Simon Josefsson * NEWS: Add. 2009-06-17 Simon Josefsson * lib/gnutls_ui.c: Return proper MPI lengths in bits. Reported by Peter Hendrickson in . 2009-06-13 Nikos Mavrogiannopoulos * : commit fad0d9b3289087dbd56176e7a1ccb498cf5ef099 Author: Simon Josefsson Date: Wed Jun 10 17:55:05 2009 +0200 2009-06-10 Simon Josefsson * NEWS: Add. 2009-06-10 Simon Josefsson * tests/pkcs12_s2k.c: Improve test vectors. 2009-06-10 Simon Josefsson * NEWS, tests/Makefile.am, tests/pkcs12_s2k_pem.c: Added new self-test pkcs12_s2k_pem. 2009-06-10 Simon Josefsson * NEWS: Fix. 2009-06-10 Simon Josefsson * NEWS: Add. 2009-06-10 Simon Josefsson * lib/x509/pkcs12_encr.c: Fix PKCS#12 string to key function for 1/128 inputs. Reported by "Kukosa, Tomas" in . 2009-06-09 Simon Josefsson * gl/Makefile.am, gl/m4/getpagesize.m4, gl/m4/gnulib-comp.m4, gl/m4/memchr.m4, gl/m4/mmap-anon.m4, gl/memchr.c, gl/tests/Makefile.am, gl/tests/getpagesize.c, gl/tests/test-memchr.c, gl/tests/zerosize-ptr.h, lib/gl/Makefile.am, lib/gl/m4/getpagesize.m4, lib/gl/m4/gnulib-comp.m4, lib/gl/m4/memchr.m4, lib/gl/m4/mmap-anon.m4, lib/gl/memchr.c, lib/gl/tests/Makefile.am, lib/gl/tests/getpagesize.c, lib/gl/tests/test-memchr.c, lib/gl/tests/zerosize-ptr.h: Update gnulib files. 2009-06-09 Simon Josefsson * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, libextra/configure.ac: Bump versions. 2009-06-09 Simon Josefsson * ChangeLog: Generated. 2009-06-09 Simon Josefsson * gl/m4/gnulib-comp.m4, gl/m4/version-etc.m4, gl/tests/test-alignof.c, gl/version-etc.c: Update gnulib files. 2009-06-08 Simon Josefsson * NEWS: Version 2.9.1. 2009-06-08 Simon Josefsson * lib/gnutls_extensions.c: Mark global extfunc_size as having static scope. 2009-06-08 Simon Josefsson * NEWS: Add. 2009-06-08 Simon Josefsson * tests/Makefile.am, tests/init_roundtrip.c: Add self-test to detect extension init/deinit problem. 2009-06-08 Simon Josefsson * lib/gnutls_extensions.c: Deinitalize extension global variable properly. See . 2009-06-03 Simon Josefsson * gl/Makefile.am, gl/alignof.h, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/tests/Makefile.am, gl/tests/test-alignof.c, lib/gl/alignof.h: Update gnulib files. 2009-06-03 Simon Josefsson * lib/auth_srp.c, lib/debug.c, lib/debug.h, lib/gnutls_errors.c, lib/gnutls_errors.h, lib/libgnutls.map, lib/pk-libgcrypt.c, tests/mpi.c: Rename _gnutls_dump_mpi to _gnutls_mpi_log. Rewrite to use less stack space. 2009-06-03 Simon Josefsson * configure.ac: Reduce stack size limit check. 2009-06-03 Simon Josefsson * lib/x509/output.c: Reduce stack size. 2009-06-03 Simon Josefsson * lib/x509/output.c: Fix malloc failure error strings. 2009-06-03 Simon Josefsson * tests/crq_apis.c: Test more. 2009-06-03 Simon Josefsson * lib/x509/common.c: (_gnutls_x509_oid_data2string): Return proper @res_size for NULL res. 2009-06-03 Simon Josefsson * lib/x509/crq.c: Indent. 2009-06-03 Simon Josefsson * lib/x509/crq.c: Doc fix. 2009-06-03 Simon Josefsson * lib/x509/crq.c: Reduce stack usage. 2009-06-03 Simon Josefsson * lib/x509/crq.c: Doc fix. 2009-06-03 Simon Josefsson * lib/x509/crq.c: Simplify. 2009-06-03 Simon Josefsson * tests/crq_apis.c: Test more. 2009-06-03 Simon Josefsson * lib/x509/crq.c: Reduce stack usage. 2009-06-03 Simon Josefsson * tests/crq_apis.c: Test more. 2009-06-03 Simon Josefsson * lib/x509/crq.c: Reduce stack usage. 2009-06-03 Simon Josefsson * lib/x509/crq.c: Fix uninitialized variable access. 2009-06-03 Simon Josefsson * lib/x509/crq.c: Reduce stack frame usage. 2009-06-03 Simon Josefsson * lib/x509/x509_write.c: Reduce stack usage. 2009-06-02 Simon Josefsson * gl/m4/manywarnings.m4: Update gnulib files. 2009-06-02 Simon Josefsson * tests/crq_apis.c: Add. 2009-06-02 Simon Josefsson * lib/x509/crq.c: Don't assert on expected errors. 2009-06-01 Simon Josefsson * NEWS: Add. 2009-06-01 Simon Josefsson * tests/Makefile.am: Add crq self-test. 2009-06-01 Simon Josefsson * lib/x509/extensions.c: Reduce stack usage. 2009-06-01 Simon Josefsson * lib/x509/crq.c: Reduce stack usage. Fix build failure wrt variable names. 2009-06-01 Simon Josefsson * lib/includes/gnutls/x509.h: Doc fix. 2009-06-01 Simon Josefsson * lib/x509/crq.c: Doc fix. 2009-06-01 Simon Josefsson * lib/x509/crq.c: Return buffer size for NULL/0 inputs. Fix output buffer size computation. 2009-06-01 Simon Josefsson * lib/x509/extensions.c: Fix mem leak. 2009-06-01 Simon Josefsson * lib/x509/crq.c: Don't assert for expected errors. 2009-06-01 Simon Josefsson * configure.ac: Export wstack. 2009-06-01 Simon Josefsson * lib/configure.ac, libextra/configure.ac: Fix WSTACK_CFLAGS. 2009-06-01 Simon Josefsson * src/serv.c: Improve logging and fix warnings. 2009-06-01 Simon Josefsson * configure.ac, lib/Makefile.am, lib/openpgp/Makefile.am, lib/x509/Makefile.am, libextra/Makefile.am: Check stack size. 2009-06-01 Simon Josefsson * gl/m4/manywarnings.m4: Update gnulib files. 2009-05-31 Nikos Mavrogiannopoulos * doc/TODO: Added gnutls_dh_get_prime_bits limitation. 2009-05-28 Simon Josefsson * lib/x509/pkcs12_bag.c, lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509_write.c: Doc fix. Reported by Peter Hendrickson . 2009-05-28 Simon Josefsson * NEWS: Add. 2009-05-28 Simon Josefsson * configure.ac, lib/configure.ac, lib/m4/hooks.m4, libextra/configure.ac: Bump versions. 2009-05-28 Simon Josefsson * cfg.mk: Fix paths. 2009-05-28 Simon Josefsson * ChangeLog: Generated. 2009-05-28 Simon Josefsson * NEWS: Version 2.9.0. 2009-05-28 Simon Josefsson * cfg.mk: Fix paths for alpha release. 2009-05-28 Simon Josefsson * lib/gnutls_ui.c: Doc fix. 2009-05-28 Simon Josefsson * build-aux/gnupload: Update gnulib files. 2009-05-27 Simon Josefsson * doc/manpages/srptool.1: Fix. 2009-05-27 Simon Josefsson * NEWS: Add. 2009-05-27 Simon Josefsson * doc/manpages/gnutls-serv.1: Doc fix. 2009-05-27 Simon Josefsson * lib/gnutls_psk.c: Doc fix. 2009-05-27 Simon Josefsson * lib/x509/pkcs7.c: Doc fix. 2009-05-27 Simon Josefsson * doc/Makefile.am: Cleanup rules. 2009-05-27 Simon Josefsson * doc/Makefile.am, doc/gnutls.texi, lib/Makefile.am, lib/openpgp/Makefile.am, lib/x509/Makefile.am, libextra/Makefile.am: Move API texinfo generation into doc/. 2009-05-27 Simon Josefsson * gl/m4/include_next.m4, gl/m4/size_max.m4, lib/gl/m4/include_next.m4, lib/gl/m4/size_max.m4: Update gnulib files. 2009-05-27 Simon Josefsson * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, libextra/configure.ac: Bump versions. 2009-05-27 Simon Josefsson * ChangeLog: Generated. 2009-05-27 Simon Josefsson * NEWS: Version 2.8.0. 2009-05-27 Simon Josefsson * NEWS: Add. 2009-05-27 Simon Josefsson * doc/announcement-template.txt: Typo. 2009-05-27 Simon Josefsson * NEWS: Fix. 2009-05-27 Simon Josefsson * NEWS, cfg.mk, configure.ac, lib/configure.ac, libextra/configure.ac: Prepare for stable release. 2009-05-27 Simon Josefsson * configure.ac, lib/configure.ac, lib/m4/hooks.m4, libextra/configure.ac: Bump versions. 2009-05-27 Simon Josefsson * NEWS: Add. 2009-05-27 Simon Josefsson * lib/gnutls_ui.c: Doc fix. Reported by Peter Hendrickson . 2009-05-26 Simon Josefsson * src/select.c: Remove unused file, replaced by poll from gnulib. 2009-05-26 Simon Josefsson * doc/Makefile.am: Fix generation of error_codes.texi and algorithms.texi. 2009-05-26 Simon Josefsson * ChangeLog: Generated. 2009-05-26 Simon Josefsson * doc/announcement-template.txt: Fix. 2009-05-26 Simon Josefsson * NEWS: Version 2.7.14. 2009-05-26 Simon Josefsson * src/certtool-gaa.c, src/serv-gaa.c: Regenerate. 2009-05-26 Simon Josefsson * NEWS: Add. 2009-05-26 Simon Josefsson * NEWS: Add. 2009-05-26 Simon Josefsson * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, libextra/configure.ac: Bump versions. 2009-05-26 Simon Josefsson * lib/gnutls_global.c, lib/includes/gnutls/compat.h, libextra/gnutls_extra.c, libextra/includes/gnutls/extra.h, libextra/includes/gnutls/openssl.h, tests/openssl.c, tests/simple.c: Fix version symbol namespace. 2009-05-26 Simon Josefsson * doc/examples/ex-serv-anon.c, doc/examples/ex-serv-export.c, doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-psk.c, doc/examples/ex-serv1.c, doc/examples/ex-session-info.c, doc/gnutls.texi, doc/manpages/certtool.1, doc/manpages/gnutls-serv.1, lib/auth_anon.c, lib/auth_dh_common.c, lib/auth_dhe.c, lib/auth_dhe_psk.c, lib/gnutls_anon_cred.c, lib/gnutls_errors.c, lib/gnutls_handshake.c, lib/gnutls_psk.c, lib/gnutls_record.c, lib/gnutls_ui.c, lib/includes/gnutls/gnutls.h.in, libextra/gnutls_ia.c, src/certtool.gaa, src/prime.c, src/serv.c, src/serv.gaa, src/tls_test.c, tests/anonself.c, tests/dhepskself.c, tests/openpgpself.c, tests/oprfi.c, tests/resume.c, tests/tlsia.c, tests/x509dn.c, tests/x509self.c, tests/x509signself.c: Doc fixes. Suggested by Peter Hendrickson . 2009-05-26 Simon Josefsson * lib/gnutls_auth.c: Doc fix. Reported by Peter Hendrickson . 2009-05-25 Simon Josefsson * ChangeLog: Generated. 2009-05-25 Simon Josefsson * NEWS: Version 2.7.13. 2009-05-25 Simon Josefsson * doc/announcement-template.txt: Fix. 2009-05-25 Simon Josefsson * NEWS: Fix. 2009-05-25 Simon Josefsson * NEWS: Add. 2009-05-25 Simon Josefsson * doc/announcement-template.txt: Improve. 2009-05-25 Simon Josefsson * lib/libgnutls.map: Sort symbols. 2009-05-25 Simon Josefsson * lib/libgnutls.map: Auto-generate from GnuTLS 2.6.x list of exported symbols. No substantial change. 2009-05-25 Simon Josefsson * lib/libgnutls.map: Move functions. Reported by Andreas Metzler in . 2009-05-25 Simon Josefsson * lib/libgnutls.map: Move gnutls_x509_crq_set_key back to old ABI namespace. Reported by Andreas Metzler in . 2009-05-25 Simon Josefsson * NEWS: Add. 2009-05-25 Simon Josefsson * tests/chainverify.c: Fix expired certs. Exit early to make it easier to find failing test. Reported by Andreas Metzler in . 2009-05-20 Simon Josefsson * .clcopying: Fix. 2009-05-20 Simon Josefsson * AUTHORS: Fix PGP key. 2009-05-20 Simon Josefsson * doc/gnutls.texi, src/Makefile.am, src/README, src/README.srptool: Removed duplicated documentation. 2009-05-20 Simon Josefsson * THANKS: Add. 2009-05-20 Simon Josefsson * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, libextra/configure.ac: Bump versions. 2009-05-20 Simon Josefsson * ChangeLog: Generated. 2009-05-20 Simon Josefsson * NEWS: Version 2.7.12. 2009-05-20 Simon Josefsson * NEWS, src/serv.c, src/tls_test.c: Fix gnutls-serv and gnutls-cli-debug on Windows. 2009-05-20 Simon Josefsson * gl/getdelim.c: Update gnulib files. 2009-05-20 Simon Josefsson * NEWS, doc/reference/Makefile.am, lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c: Use libtasn1 2.2. 2009-05-20 Simon Josefsson * NEWS: Add. 2009-05-20 Simon Josefsson * build-aux/gnupload, gl/Makefile.am, gl/m4/sys_socket_h.m4, gl/sys_socket.in.h, gl/tests/test-sys_socket.c, lib/gl/Makefile.am, lib/gl/m4/sys_socket_h.m4, lib/gl/sys_socket.in.h, lib/gl/tests/test-sys_socket.c, maint.mk: Update gnulib files. 2009-05-20 Simon Josefsson * lib/gl/Makefile.am, lib/gl/m4/gnulib-cache.m4, lib/gl/m4/gnulib-comp.m4, lib/gl/m4/vsnprintf.m4, lib/gl/tests/Makefile.am, lib/gl/tests/test-vsnprintf.c, lib/gl/vsnprintf.c: Replace vsnprintf if needed. 2009-05-20 Simon Josefsson * NEWS: Add. 2009-05-20 Simon Josefsson * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, libextra/configure.ac: Bump versions. 2009-05-20 Simon Josefsson * tests/crq_key_id.c: Reorder gcry quick random to make it effective. Reported by Andreas Metzler in . 2009-05-18 Simon Josefsson * ChangeLog: Generated. 2009-05-18 Simon Josefsson * NEWS: Version 2.7.11. 2009-05-18 Simon Josefsson * NEWS, cfg.mk, configure.ac, doc/examples/Makefile.am, lib/Makefile.am, lib/configure.ac, lib/openpgp/Makefile.am, lib/x509/Makefile.am, libextra/Makefile.am, libextra/configure.ac, src/Makefile.am, tests/Makefile.am: Don't build with warnings all the time. Use a WERROR_CFLAGS. 2009-05-18 Simon Josefsson * maint.mk: Update gnulib files. 2009-05-18 Simon Josefsson * NEWS: Add. 2009-05-18 Simon Josefsson * src/serv.c: Don't use unportable NI_MAXHOST/NI_MAXSERV. 2009-05-17 Simon Josefsson * src/Makefile.am: Link getaddrinfo libraries. Reported by "Tom G. Christensen" in . 2009-05-17 Simon Josefsson * NEWS, configure.ac, lib/configure.ac: Need to run AC_PROG_CXX unconditionally. 2009-05-16 Simon Josefsson * doc/doxygen/Doxyfile.in, libextra/gl/Makefile.am: Fix old gnulib lgpl/ paths. Reported by "Tom G. Christensen" in . 2009-05-14 Simon Josefsson * NEWS: Fix. 2009-05-14 Simon Josefsson * lib/minitasn1/Makefile.am: Need -DASN1_BUILDING for libtasn1. 2009-05-14 Simon Josefsson * doc/announcement-template.txt: Add. 2009-05-14 Simon Josefsson * NEWS: Add. 2009-05-14 Simon Josefsson * lib/minitasn1/Makefile.am: Fix -I's after gnulib changes. Reported by "Tom G. Christensen" in . 2009-05-14 Simon Josefsson * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, libextra/configure.ac: Bump versions. 2009-05-13 Simon Josefsson * ChangeLog: Generated. 2009-05-13 Simon Josefsson * NEWS: Version 2.7.10. 2009-05-13 Simon Josefsson * gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/tests/Makefile.am, gl/tests/test-alignof.c, lib/gl/Makefile.am, lib/gl/m4/gnulib-cache.m4, lib/gl/m4/gnulib-comp.m4, lib/gl/tests/Makefile.am, lib/gl/tests/test-alignof.c: Avoid failing tests. 2009-05-13 Simon Josefsson * lib/gnutls_algorithms.c, lib/gnutls_auth.c, lib/gnutls_buffers.c, lib/gnutls_cert.c, lib/gnutls_global.c, lib/gnutls_priority.c, lib/gnutls_psk.c, lib/gnutls_session.c, lib/gnutls_state.c, lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/openpgp.h, lib/includes/gnutls/pkcs12.h, lib/includes/gnutls/x509.h, lib/openpgp/extras.c, lib/openpgp/gnutls_openpgp.c, lib/openpgp/pgp.c, lib/openpgp/privkey.c, lib/x509/crq.c, lib/x509/dn.c, lib/x509/pkcs12_bag.c, lib/x509/x509.c, lib/x509/x509_write.c, libextra/gnutls_ia.c: Doc fixes for GTK-DOC. 2009-05-13 Simon Josefsson * lib/ext_server_name.c, lib/gnutls_priority.c, lib/gnutls_record.c, lib/gnutls_srp.c, lib/gnutls_state.c, lib/gnutls_ui.c, lib/gnutls_x509.c, lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/x509.h, lib/x509/crq.c, lib/x509/dn.c, lib/x509/pkcs7.c, lib/x509/privkey.c, lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509_write.c: Doc fixes for GTK-DOC. 2009-05-13 Simon Josefsson * lib/includes/gnutls/crypto.h, lib/includes/gnutls/openpgp.h, lib/includes/gnutls/x509.h, lib/openpgp/gnutls_openpgp.c, lib/x509/dn.c, lib/x509/output.c, lib/x509/pkcs7.c, lib/x509/verify.c, lib/x509/x509.c: Doc fixes for GTK-DOC. 2009-05-13 Simon Josefsson * NEWS: Add. 2009-05-13 Simon Josefsson * doc/examples/ex-alert.c, doc/examples/ex-cert-select.c, doc/examples/ex-client-psk.c, doc/examples/ex-client-resume.c, doc/examples/ex-client-srp.c, doc/examples/ex-client-tlsia.c, doc/examples/ex-client1.c, doc/examples/ex-client2.c, doc/examples/ex-crq.c, doc/examples/ex-pkcs12.c, doc/examples/ex-rfc2818.c, doc/examples/ex-serv-anon.c, doc/examples/ex-serv-export.c, doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-psk.c, doc/examples/ex-serv-srp.c, doc/examples/ex-serv1.c, doc/examples/ex-session-info.c, doc/examples/ex-verify.c, doc/examples/ex-x509-info.c, doc/examples/tcp.c: Place examples in public domain. After discussion with Karl. 2009-05-13 Simon Josefsson * gl/alignof.h, gl/m4/gnulib-comp.m4, gl/tests/Makefile.am, gl/tests/test-alignof.c, lib/gl/alignof.h, lib/gl/m4/gnulib-comp.m4, lib/gl/tests/Makefile.am, lib/gl/tests/test-alignof.c, maint.mk: Update gnulib files. 2009-05-13 Simon Josefsson * lib/opencdk/keydb.c: Avoid sprintf. 2009-05-13 Simon Josefsson * doc/examples/ex-client-tlsia.c, lib/opencdk/literal.c, lib/opencdk/misc.c, src/common.c, tests/chainverify.c, tests/tlsia.c: Fix warnings. 2009-05-13 Simon Josefsson * NEWS: Fix. 2009-05-13 Simon Josefsson * doc/gnutls.texi: Fix. 2009-05-13 Simon Josefsson * NEWS: Add. 2009-05-13 Simon Josefsson * lib/pk-libgcrypt.c: Fix crash. 2009-05-12 Simon Josefsson * lib/gnutls_cert.c: Doc fix. 2009-05-12 Simon Josefsson * lib/gnutls_dh_primes.c: Doc fix. 2009-05-12 Simon Josefsson * lib/minitasn1/Makefile.am, lib/minitasn1/errors.h: Drop removed libtasn1 file. 2009-05-12 Simon Josefsson * NEWS, lib/minitasn1/coding.c, lib/minitasn1/decoding.c, lib/minitasn1/element.c, lib/minitasn1/element.h, lib/minitasn1/errors.c, lib/minitasn1/gstr.c, lib/minitasn1/gstr.h, lib/minitasn1/int.h, lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, lib/minitasn1/parser_aux.h, lib/minitasn1/structure.c, lib/minitasn1/structure.h: Upgrade libtasn1 to v2.1. 2009-05-12 Simon Josefsson * lib/gnutls_global.c, libextra/gnutls_extra.c: Doc fixes. Remove debugging code. 2009-05-12 Simon Josefsson * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, libextra/configure.ac: Bump versions. 2009-05-11 Simon Josefsson * ChangeLog: Generated. 2009-05-11 Simon Josefsson * NEWS: Version 2.7.9. 2009-05-11 Simon Josefsson * lib/configure.ac, libextra/configure.ac: Drop obsolete stuff. 2009-05-11 Simon Josefsson * configure.ac: Drop obsolete stuff. 2009-05-11 Simon Josefsson * gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/ld-output-def.m4, gl/m4/ld-version-script.m4, lib/gl/Makefile.am, lib/gl/m4/gnulib-cache.m4, lib/gl/m4/gnulib-comp.m4, lib/gl/m4/ld-output-def.m4, lib/gl/m4/ld-version-script.m4, libextra/gl/gnulib.mk, libextra/gl/m4/gnulib-cache.m4, libextra/gl/m4/gnulib-comp.m4, libextra/gl/m4/ld-output-def.m4, libextra/gl/m4/ld-version-script.m4: Move gnulib tests into proper directory. 2009-05-11 Simon Josefsson * NEWS: Fix. 2009-05-11 Simon Josefsson * doc/manpages/Makefile.am: Generated. 2009-05-11 Simon Josefsson * doc/scripts/gdoc: Fix gnutls_priority_init documentation. 2009-05-11 Simon Josefsson * doc/scripts/gdoc: Revert "Fix man output for "%COMPAT" in docstrings." This reverts commit d10f1872bcbf7eb63632a8ce2e50728f42bd03fa. 2009-05-11 Simon Josefsson * doc/scripts/gdoc: Fix man output for "%COMPAT" in docstrings. 2009-05-11 Simon Josefsson * doc/manpages/Makefile.am: When writing man pages, don't append to any existing file. 2009-05-11 Simon Josefsson * lib/gnutls_priority.c: Doc fix. 2009-05-11 Simon Josefsson * NEWS, doc/examples/Makefile.am, lib/gl/Makefile.am, lib/gl/m4/gnulib-cache.m4, lib/gl/m4/gnulib-comp.m4, lib/gl/tests/Makefile.am, lib/gl/tests/test-lseek.c, lib/gl/tests/test-lseek.sh, src/Makefile.am, tests/Makefile.am: Fix MinGW build failures. 2009-05-11 Simon Josefsson * lib/autogen.sh: Add. 2009-05-11 Simon Josefsson * maint.mk: Update gnulib files. 2009-05-11 Simon Josefsson * gtk-doc.make: Fix syntax-check. 2009-05-11 Simon Josefsson * gtk-doc.make, m4/gtk-doc.m4: Upgrade gtk-doc files. 2009-05-11 Simon Josefsson * cfg.mk, gl/sys_socket.in.h, gl/tests/test-vc-list-files-git.sh, lib/gl/Makefile.am, lib/gl/m4/gnulib-cache.m4, lib/gl/m4/gnulib-comp.m4, lib/gl/sys_socket.in.h, lib/gl/tests/Makefile.am, lib/gl/tests/test-lseek.c, lib/gl/tests/test-lseek.sh, libextra/gl/gnulib.mk, libextra/gl/m4/gnulib-cache.m4, libextra/gl/m4/gnulib-comp.m4: Update gnulib files. 2009-05-10 Simon Josefsson * tests/chainverify.c: Verisign CA v1 cert has expired! Change expected results. Also test expiration code more. 2009-05-08 Simon Josefsson * doc/Makefile.am: Don't always rebuild manual. 2009-05-08 Simon Josefsson * gl/m4/sys_socket_h.m4, lib/gl/m4/sys_socket_h.m4: Update gnulib files. 2009-05-08 Simon Josefsson * gl/Makefile.am, lib/gl/Makefile.am: Update gnulib files. 2009-05-08 Simon Josefsson * gl/Makefile.am, gl/alignof.h, lib/gl/Makefile.am: Update gnulib files. 2009-05-08 Simon Josefsson * cfg.mk: Fix. 2009-05-08 Simon Josefsson * cfg.mk: Fix. 2009-05-08 Simon Josefsson * build-aux/gnupload, gl/Makefile.am, gl/m4/errno_h.m4, gl/m4/gnulib-comp.m4, gl/m4/multiarch.m4, gl/m4/sys_socket_h.m4, gl/m4/vasnprintf.m4, gl/sys_socket.in.h, gl/tests/test-sys_socket.c, lib/gl/Makefile.am, lib/gl/alignof.h, lib/gl/m4/errno_h.m4, lib/gl/m4/gnulib-comp.m4, lib/gl/m4/multiarch.m4, lib/gl/m4/sys_socket_h.m4, lib/gl/m4/vasnprintf.m4, lib/gl/sys_socket.in.h, lib/gl/tests/test-sys_socket.c, maint.mk: Update gnulib files. 2009-05-08 Simon Josefsson * cfg.mk: Fix -Werror handling. 2009-05-08 Simon Josefsson * lib/x509/output.c: Fix warnings. 2009-05-07 Simon Josefsson * doc/examples/ex-serv-anon.c, doc/examples/ex-serv-export.c, doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-psk.c, doc/examples/ex-serv-srp.c, doc/examples/ex-serv1.c, tests/anonself.c, tests/dhepskself.c, tests/openpgpself.c, tests/oprfi.c, tests/pskself.c, tests/resume.c, tests/tlsia.c, tests/x509dn.c, tests/x509self.c, tests/x509signself.c: Fix warnings. 2009-05-07 Simon Josefsson * NEWS: Fix. 2009-05-07 Simon Josefsson * tests/anonself.c, tests/dhepskself.c, tests/openpgpself.c, tests/oprfi.c, tests/pskself.c, tests/resume.c, tests/tlsia.c, tests/x509dn.c, tests/x509self.c, tests/x509signself.c: Use memset instead of deprecated bzero. 2009-05-07 Simon Josefsson * NEWS, src/certtool-cfg.c, src/serv.c: Fix build failure on systems without AF_INET6, e.g., Solaris 2.6. Reported by "Tom G. Christensen" in . 2009-05-06 Simon Josefsson * doc/Makefile.am: Drop README.GIT. 2009-05-06 Simon Josefsson * tests/Makefile.am: Need to link directly to libgcrypt here. 2009-05-06 Simon Josefsson * lib/mpi-libgcrypt.c: Don't use casts that break strict-aliasing rules. 2009-05-06 Simon Josefsson * README-alpha: Fix. 2009-05-06 Simon Josefsson * configure.ac: Fix. 2009-05-05 Simon Josefsson * README-alpha, doc/README.GIT: Replace doc/README.GIT with README-alpha. 2009-05-05 Simon Josefsson * README-alpha: Fix. 2009-05-05 Simon Josefsson * README-alpha: Add. 2009-05-03 Simon Josefsson * NEWS, lib/libgnutls.map: Fix build failure when LZO is enabled. 2009-05-03 Simon Josefsson * lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/openpgp.h, libextra/includes/gnutls/extra.h: Fix gtk-doc warnings. 2009-05-03 Simon Josefsson * NEWS: Fix. 2009-05-03 Simon Josefsson * lib/gnutls_asn1_tab.c, lib/pkix_asn1_tab.c: Regenerated libtasn1 files. 2009-05-03 Simon Josefsson * doc/Makefile.am: Build tools before using them. 2009-05-03 Simon Josefsson * .x-sc_GPL_version, .x-sc_avoid_if_before_free, .x-sc_cast_of_alloca_return_value, .x-sc_cast_of_argument_to_free, .x-sc_file_system, .x-sc_m4_quote_check, .x-sc_makefile_check, .x-sc_program_name, .x-sc_prohibit_HAVE_MBRTOWC, .x-sc_prohibit_S_IS_definition, .x-sc_space_tab, .x-sc_the_the, .x-sc_two_space_separator_in_usage, .x-sc_useless_cpp_parens, NEWS, cfg.mk, doc/examples/ex-serv-export.c, doc/gnutls.texi, gtk-doc.make, lib/gnutls.asn, lib/m4/hooks.m4, lib/openpgp/Makefile.am, lib/pkix.asn, lib/x509/Makefile.am, libextra/m4/hooks.m4, m4/valgrind.m4, src/Makefile.am, src/certtool-cfg.c, src/certtool.c, src/crypt.c, src/psk.c, src/serv.c, src/tls_test.c, tests/Makefile.am, tests/resume.c, tests/x509dn.c: Fix syntax-check warnings. 2009-05-03 Simon Josefsson * doc/reference/Makefile.am, gtk-doc.make: Upgrade gtk-doc files. 2009-05-03 Simon Josefsson * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, libextra/configure.ac: Bump versions. 2009-05-03 Simon Josefsson * ChangeLog: Generated. 2009-05-03 Simon Josefsson * NEWS: Version 2.7.8. 2009-05-03 Simon Josefsson * gl/Makefile.am, gl/gettext.h, gl/m4/wchar.m4, gl/wchar.in.h, lib/gl/Makefile.am, lib/gl/gettext.h, lib/gl/m4/wchar.m4, lib/gl/wchar.in.h: Update gnulib files. 2009-05-03 Simon Josefsson * tests/pkcs1-padding/pkcs1-pad: Fix self test fails because of expired certs using datefudge. 2009-05-01 Simon Josefsson * tests/chainverify.c: Print cert details. Fix verifying expired cert. 2009-05-01 Simon Josefsson * tests/cve-2008-4989.c: Avoid time checks. 2009-04-30 Simon Josefsson * tests/Makefile.am, tests/cve-2009-1415.c, tests/cve-2009-1416.c: Add self-tests for security problems. 2009-04-30 Simon Josefsson * NEWS: Add. 2009-04-30 Simon Josefsson * lib/gnutls_cert.c, lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/x509.h, lib/x509/verify.c, src/common.c: libgnutls: Check activation/expiration times on untrusted certificates. Reported by Romain Francoise. 2009-04-30 Simon Josefsson * lib/gnutls_pk.c: Fix DSA key generation. 2009-04-30 Simon Josefsson * cfg.mk: Use modern git names. 2009-04-30 Simon Josefsson * NEWS: Add old NEWS entries. 2009-04-30 Simon Josefsson * doc/gnutls.texi: Document how to use TLS exporters. 2009-04-30 Simon Josefsson * src/serv.c: Fix getaddrinfo/bind loop. 2009-04-28 Simon Josefsson * maint.mk: Update gnulib files. 2009-04-27 Simon Josefsson * : Replace PDF with official ZIP file. The PDFs have the same SHA-1. The file was downloaded from: http://csrc.nist.gov/groups/ST/crypto_apps_infra/documents/PKI%20Testing%20Page.htmUsing the direct link: http://csrc.nist.gov/groups/ST/crypto_apps_infra/documents/certpath1.07.zip 2009-04-27 Simon Josefsson * cfg.mk: Fix. 2009-04-27 Simon Josefsson * build-aux/useless-if-before-free, build-aux/vc-list-files, gl/Makefile.am, gl/m4/gnulib-comp.m4, gl/tests/Makefile.am, gl/tests/test-vc-list-files-cvs.sh, gl/tests/test-vc-list-files-git.sh, maint.mk: Update gnulib files. 2009-04-27 Simon Josefsson * src/certtool.c: Fix some error messages. 2009-04-27 Simon Josefsson * gl/m4/lib-link.m4, gl/m4/lib-prefix.m4, gl/vasnprintf.c, lib/gl/m4/lib-link.m4, lib/gl/m4/lib-prefix.m4, lib/gl/vasnprintf.c, libextra/gl/m4/lib-link.m4, libextra/gl/m4/lib-prefix.m4, maint.mk: Update gnulib files. 2009-04-27 Simon Josefsson * NEWS: Fix. 2009-04-27 Simon Josefsson * NEWS: Fix. 2009-04-27 Simon Josefsson * lib/libgnutls.map: Move symbols new with gnutls 2.8.x under GNUTLS_2_8 version. 2009-04-24 Simon Josefsson * NEWS, src/serv.c: gnutls-serv: Listen on all interfaces. 2009-04-24 Simon Josefsson * maint.mk: Update gnulib files. 2009-04-24 Simon Josefsson * lib/pk-libgcrypt.c: Cleanup code and fix memory leaks. 2009-04-23 Simon Josefsson * doc/gendocs_template: Update gnulib files. 2009-04-23 Simon Josefsson * NEWS, doc/gnutls.texi: Improve texinfo section names. 2009-04-23 Simon Josefsson * tests/x509sign-verify.c: Also test DSA keys. 2009-04-21 Nikos Mavrogiannopoulos * lib/x509/verify.c: release allocated mpis in _gnutls_x509_verify_algorithm(). 2009-04-21 Simon Josefsson * tests/libgcrypt.supp: Suppress more for modern libgcrypt. 2009-04-21 Simon Josefsson * tests/x509sign-verify.c: Cleanup code. 2009-04-21 Simon Josefsson * src/cli.c: Pass proper socket to libgnutls on Windows. 2009-04-21 Simon Josefsson * gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/sockets.c, gl/sockets.h, gl/tests/Makefile.am, gl/tests/dummy.c, gl/tests/sockets.c, gl/tests/sockets.h: Need sockets module. 2009-04-20 Simon Josefsson * lib/libgnutls.map: Make check needs more symbols. 2009-04-20 Simon Josefsson * NEWS, lib/Makefile.am, lib/libgnutls.map, libextra/Makefile.am, libextra/libgnutls-extra.map, libextra/libgnutls-extra.vers: Improve version scripts. Limit exported symbols on systems without linker script. 2009-04-20 Simon Josefsson * NEWS: Add. 2009-04-20 Simon Josefsson * NEWS, build-aux/gendocs.sh, configure.ac, lib/configure.ac, lib/m4/hooks.m4, libextra/configure.ac: Bump version. 2009-04-20 Simon Josefsson * ChangeLog: Generated. 2009-04-20 Simon Josefsson * NEWS: Version 2.7.7. 2009-04-20 Simon Josefsson * doc/manpages/Makefile.am: Generated. 2009-04-20 Simon Josefsson * doc/gnutls.texi: Really generate DSA key in example. 2009-04-20 Simon Josefsson * lib/x509/x509.c: Fix return value. Doc fix. 2009-04-20 Simon Josefsson * doc/gnutls.texi: Explain how to generate DSA key. 2009-04-20 Simon Josefsson * lib/gnutls_x509.c, lib/x509/x509.c: Doc fix for new APIs. 2009-04-20 Nikos Mavrogiannopoulos * NEWS, lib/pk-libgcrypt.c: Corrected possible memory corruption on signature verification failure. Reported by Miroslav Kratochvil 2009-04-18 Nikos Mavrogiannopoulos * doc/printlist.c: Added small patch from Romain Francoise to remove unneeded include. 2009-04-18 Nikos Mavrogiannopoulos * lib/includes/gnutls/x509.h, lib/x509/privkey.c, lib/x509/x509.c, tests/Makefile.am, tests/x509sign-verify.c: Added self test for gnutls_x509_crt_verify_hash() and gnutls_x509_crt_get_verify_algorithm(). Added some notes in gnutls_x509_privkey_sign_hash(). 2009-04-17 Nikos Mavrogiannopoulos * NEWS, lib/includes/gnutls/x509.h, lib/x509/verify.c, lib/x509/x509.c: gnutls_x509_crt_get_sig_algorithm was renamed to gnutls_x509_crt_get_verify_algorithm. Corrected some issues with the code. 2009-04-17 Simon Josefsson * NEWS: Reorder. 2009-04-17 Simon Josefsson * NEWS, lib/gnutls.pc.in: Add -ltasn1 to pkg-config file. Reported by Andreas Metzler in . 2009-04-17 Simon Josefsson * NEWS: Add. 2009-04-17 Simon Josefsson * cfg.mk: Use new po domain. 2009-04-17 Simon Josefsson * lib/po/de.po.in: Sync with TP. 2009-04-17 Simon Josefsson * lib/po/de.po.in: Sync with TP. 2009-04-17 Simon Josefsson * maint.mk: Update gnulib files. 2009-04-17 Simon Josefsson * lib/po/de.po.in: Sync with TP. 2009-04-16 Simon Josefsson * : commit 934102c33ac89ace9a1e1d02047d54f2fea6b59b Merge: bc279f4 d720f3f Author: Nikos Mavrogiannopoulos Date: Wed Apr 15 22:43:03 2009 +0300 2009-04-14 Simon Josefsson * build-aux/gendocs.sh, doc/gendocs_template, doc/lgpl-2.1.texi: Update gnulib files. 2009-04-11 Simon Josefsson * gl/Makefile.am, gl/m4/inet_ntop.m4, maint.mk: Update gnulib files. 2009-04-03 Nikos Mavrogiannopoulos * NEWS: documented Cedric Bail's function addition 2009-04-03 Nikos Mavrogiannopoulos * : commit 258d2e873f61d5543c674f46a6247b4a379d2cca Author: Simon Josefsson Date: Fri Apr 3 15:20:09 2009 +0200 2009-04-03 Simon Josefsson * lib/po/POTFILES.in: Fix filenames. 2009-04-03 Simon Josefsson * cfg.mk: Fix PODIR. 2009-04-03 Simon Josefsson * Makefile.am, configure.ac, lib/Makefile.am, lib/configure.ac, lib/po/LINGUAS, lib/po/Makevars, lib/po/POTFILES.in, lib/po/cs.po.in, lib/po/de.po.in, lib/po/fr.po.in, lib/po/ms.po.in, lib/po/nl.po.in, lib/po/pl.po.in, lib/po/sv.po.in, lib/po/vi.po.in, po/LINGUAS, po/Makevars, po/POTFILES.in, po/cs.po.in, po/de.po.in, po/fr.po.in, po/ms.po.in, po/nl.po.in, po/pl.po.in, po/sv.po.in, po/vi.po.in: Move i18n dir back to lib/, after discussion with Bruno. 2009-04-03 Simon Josefsson * configure.ac, gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/ld-version-script.m4, m4/linker-script.m4: Use linker-script from gnulib. 2009-04-03 Simon Josefsson * configure.ac, gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/ld-output-def.m4, lib/configure.ac, libextra/configure.ac, m4/output-def.m4: Use output-def test from gnulib. 2009-04-03 Simon Josefsson * configure.ac, lib/Makefile.am, lib/libgnutls.map, lib/libgnutls.vers, lib/libgnutlsxx.map, lib/libgnutlsxx.vers: Rename linker script. 2009-04-03 Simon Josefsson * lib/Makefile.am, lib/m4/hooks.m4, libextra/Makefile.am: Use DLL_VERSION variable name. 2009-03-30 Simon Josefsson * po/LINGUAS, po/cs.po.in: Sync with TP. 2009-03-30 Simon Josefsson * lib/gnutls_global.c, lib/openpgp/output.c, lib/x509/output.c: Fix warnings. 2009-03-30 Simon Josefsson * configure.ac: Only add warnings when using gcc. Don't use -Wformat-nonliteral. 2009-03-30 Simon Josefsson * GNUmakefile, build-aux/gnupload, gl/Makefile.am, gl/close-hook.c, gl/close-hook.h, gl/close.c, gl/fseeko.c, gl/gai_strerror.c, gl/m4/close.m4, gl/m4/gnulib-common.m4, gl/m4/gnulib-comp.m4, gl/m4/printf.m4, gl/m4/select.m4, gl/m4/stdarg.m4, gl/m4/sys_select_h.m4, gl/readline.c, gl/select.c, gl/setsockopt.c, gl/stdint.in.h, gl/sys_select.in.h, gl/sys_socket.in.h, gl/tests/Makefile.am, gl/tests/sockets.c, gl/tests/sockets.h, gl/tests/test-getaddrinfo.c, gl/tests/test-sockets.c, gl/unistd.in.h, gl/vasnprintf.c, gl/winsock-select.c, lib/gl/Makefile.am, lib/gl/close-hook.c, lib/gl/close-hook.h, lib/gl/fseeko.c, lib/gl/m4/gnulib-common.m4, lib/gl/m4/gnulib-comp.m4, lib/gl/m4/printf.m4, lib/gl/sockets.c, lib/gl/sockets.h, lib/gl/stdint.in.h, lib/gl/sys_socket.in.h, lib/gl/tests/test-sockets.c, lib/gl/unistd.in.h, lib/gl/vasnprintf.c, lib/gl/w32sock.h, libextra/gl/m4/gnulib-common.m4, maint.mk: Update gnulib files. 2009-03-26 Nikos Mavrogiannopoulos * lib/includes/gnutls/x509.h, lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509_int.h: Applied patch by Cedric Bail to add functions gnutls_x509_crt_verify_hash() and gnutls_x509_crt_get_sig_algorithm(). 2009-03-23 Simon Josefsson * cfg.mk: Fix bootstrap. 2009-03-23 Simon Josefsson * Makefile.am, cfg.mk, configure.ac, lib/Makefile.am, lib/configure.ac: Fix po paths. 2009-03-23 Simon Josefsson * lib/po/LINGUAS, lib/po/Makevars, lib/po/POTFILES.in, lib/po/de.po.in, lib/po/fr.po.in, lib/po/ms.po.in, lib/po/nl.po.in, lib/po/pl.po.in, lib/po/sv.po.in, lib/po/vi.po.in, po/LINGUAS, po/Makevars, po/POTFILES.in, po/de.po.in, po/fr.po.in, po/ms.po.in, po/nl.po.in, po/pl.po.in, po/sv.po.in, po/vi.po.in: Move lib/po to po/ since the gettext domain is global for gnutls. 2009-03-04 Simon Josefsson * lib/x509/Makefile.am: Cosmetic fix. 2009-03-04 Simon Josefsson * lib/gnutls_global.c, lib/x509/x509_int.h: Be compatible with libtasn1 before v1.6. 2009-03-04 Simon Josefsson * NEWS: Add. 2009-03-04 Simon Josefsson * NEWS, lib/minitasn1/coding.c, lib/minitasn1/decoding.c, lib/minitasn1/element.c, lib/minitasn1/errors.c, lib/minitasn1/errors.h, lib/minitasn1/gstr.c, lib/minitasn1/int.h, lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, lib/minitasn1/structure.c: Update to minitasn1 v1.8. 2009-03-04 Simon Josefsson * lib/gnutls_global.c, lib/gnutls_global.h, lib/x509/common.c, lib/x509/crl.c, lib/x509/crq.c, lib/x509/dn.c, lib/x509/extensions.c, lib/x509/pkcs12.c, lib/x509/pkcs7.c, lib/x509/x509.c: Use modern libtasn1 interfaces. 2009-03-02 Simon Josefsson * NEWS: Add. 2009-03-02 Simon Josefsson * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, libextra/configure.ac: Bump version. 2009-03-02 Simon Josefsson * doc/Makefile.am: Add -I's for errcodes/printlist. Reported by Roman Bogorodskiy in . 2009-02-27 Simon Josefsson * ChangeLog: Generated. 2009-02-27 Simon Josefsson * doc/Makefile.am: Fix distcheck. 2009-02-27 Simon Josefsson * doc/Makefile.am: Fix. 2009-02-27 Simon Josefsson * doc/Makefile.am: Remove error_codes.texi and algorithms.texi to fix make distcheck. 2009-02-27 Simon Josefsson * doc/Makefile.am: Update --css-include path to fix distcheck. 2009-02-27 Simon Josefsson * NEWS: Version 2.7.6. 2009-02-27 Simon Josefsson * .gitignore: Fix. 2009-02-27 Simon Josefsson * gl/tests/test-fseeko2.sh, lib/gl/tests/test-fseeko2.sh: Update gnulib files. 2009-02-27 Simon Josefsson * gl/m4/gnulib-comp.m4, gl/m4/printf.m4, gl/m4/stdint.m4, gl/m4/stdlib_h.m4, gl/m4/vasnprintf.m4, gl/tests/Makefile.am, gl/tests/test-fseeko.c, gl/tests/test-getaddrinfo.c, gl/vasnprintf.c, lib/gl/m4/gnulib-comp.m4, lib/gl/m4/printf.m4, lib/gl/m4/stdint.m4, lib/gl/m4/stdlib_h.m4, lib/gl/m4/vasnprintf.m4, lib/gl/tests/Makefile.am, lib/gl/tests/test-fseeko.c, lib/gl/vasnprintf.c: Update gnulib files. 2009-02-27 Simon Josefsson * gl/m4/ungetc.m4, lib/gl/m4/ungetc.m4: Update gnulib files. 2009-02-27 Simon Josefsson * doc/scripts/gdoc: Revert %-hack that lead to syntax errors in texinfo output. 2009-02-24 Simon Josefsson * src/certtool.c: Minor cleanup. 2009-02-24 Simon Josefsson * NEWS, src/certtool-cfg.c: certtool: Query for multiple dnsName subjectAltName in interactive mode. 2009-02-23 Simon Josefsson * gl/m4/include_next.m4, lib/gl/m4/include_next.m4: Update gnulib files. 2009-02-22 Nikos Mavrogiannopoulos * NEWS: documented pkix.asn change 2009-02-22 Nikos Mavrogiannopoulos * lib/pkix.asn: Removed several unneeded parameters from pkix tree. This reduces initial memory usage after gnutls_global_init() from 140kb (in amd64) to 50kb. 2009-02-22 Nikos Mavrogiannopoulos * lib/x509/dn.c, tests/crq_key_id.c: Added more verbose information. 2009-02-22 Nikos Mavrogiannopoulos * lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509/dn.c, tests/crq_key_id.c: Revert "Added more verbose debugging info" This reverts commit c2d3596cddbb54ac4f19c44b15a03ee1fcceab12. 2009-02-22 Nikos Mavrogiannopoulos * lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509/dn.c, tests/crq_key_id.c: Added more verbose debugging info 2009-02-22 Nikos Mavrogiannopoulos * doc/TODO: removed items that have already been done or solved. 2009-02-22 Nikos Mavrogiannopoulos * NEWS: documented the SSL3_RECORD_VERSION priority string 2009-02-22 Nikos Mavrogiannopoulos * doc/scripts/gdoc, lib/gnutls_priority.c: Applied patch by Martin von Gagern: The attached patch fixes gnutls_priority_init(3), but in a very hackish way, treating a percent sign as indicating a constant only if it is not immediately preceded by a double quote. 2009-02-21 Nikos Mavrogiannopoulos * doc/manpages/gnutls-cli.1: Corrected listing of special keywords. Reported by Martin von Gagern. 2009-02-21 Nikos Mavrogiannopoulos * doc/manpages/gnutls-cli.1, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_priority.c: Added %SSL3_RECORD_VERSION priority option that allows to specify the client hello message record version. Used to overcome buggy TLS servers. Report by Martin von Gagern. 2009-02-15 Nikos Mavrogiannopoulos * lib/x509/verify.c: Corrected bit disable (was flipping instead). Initialy reported by Daniel Kahn Gillmor on 9/1/2008. Many thanks to moog@sysdev.oucs.ox.ac.uk for bringing this into my attention. 2009-02-11 Simon Josefsson * NEWS: Fix. 2009-02-11 Simon Josefsson * NEWS, src/serv.c: gnutls-serv: No longer disable MAC padding by default. 2009-02-11 Simon Josefsson * src/serv.c: More gnulib usage. 2009-02-11 Simon Josefsson * src/cli.c: Use more gnulib interfaces. 2009-02-11 Simon Josefsson * NEWS: Add. 2009-02-11 Simon Josefsson * doc/gnutls.texi: Update gnutls-serv --help output. 2009-02-11 Simon Josefsson * doc/gnutls.texi: Update gnutls-cli --help output. 2009-02-11 Simon Josefsson * NEWS, lib/gnutls_int.h, lib/gnutls_priority.c, lib/gnutls_x509.c: libgnutls: Add new priority strings for allowing RSA-MD5 and V1-CA. 2009-02-11 Simon Josefsson * NEWS, src/cli.c: gnutls-cli: Don't permit V1 CAs by default. 2009-02-11 Simon Josefsson * doc/Makefile.am, doc/errcodes.c, doc/printlist.c, src/Makefile.am, src/errcodes.c, src/printlist.c: Move doc related tools from src/ to doc/. 2009-02-11 Simon Josefsson * src/common.c: Typo. 2009-02-11 Simon Josefsson * src/common.c: Typo. 2009-02-11 Simon Josefsson * src/common.c: Print OpenPGP cert info using libgnutls. 2009-02-11 Simon Josefsson * NEWS, lib/openpgp/output.c: libgnutls: gnutls_openpgp_crt_print supports oneline mode. 2009-02-11 Simon Josefsson * tests/pathlen/ca-no-pathlen.pem, tests/pathlen/no-ca-or-pathlen.pem: Fix expected test vectors. 2009-02-11 Simon Josefsson * NEWS, lib/x509/output.c: libgnutls: gnutls_x509_crt_print prints signature algorithm in oneline mode. 2009-02-11 Simon Josefsson * gl/m4/close.m4, gl/m4/sockets.m4, gl/tests/sockets.h, gl/tests/test-sockets.c, lib/gl/m4/sockets.m4, lib/gl/sockets.h, lib/gl/tests/test-sockets.c: Update gnulib files. 2009-02-11 Simon Josefsson * NEWS, src/common.c: gnutls-cli: Print certificate info using libgnutls. 2009-02-11 Simon Josefsson * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, libextra/configure.ac: Bump versions. 2009-02-11 Simon Josefsson * lib/x509/output.c: Print bit size of RSA exponents. 2009-02-06 Simon Josefsson * ChangeLog: Generated. 2009-02-06 Simon Josefsson * src/Makefile.am: Need -lgnutls etc for certtool-cfg.c. 2009-02-06 Simon Josefsson * NEWS: Version 2.7.5. 2009-02-06 Simon Josefsson * NEWS: Merge in old NEWS entries. 2009-02-06 Simon Josefsson * lib/x509/verify.c: Move down revocation check to revert code to how it looked before. The idea is that if you have marked a cert as trusted, you may want to trust it even though some authority has revoked it. This changes back how this code used to work. 2009-02-02 Simon Josefsson * NEWS, doc/TODO, lib/x509/verify.c, tests/chainverify.c: Make it possible to trust intermediary certificates. Based on tiny patch from "Douglas E. Engert" in . 2009-02-02 Simon Josefsson * tests/chainverify.c: Add another chain from bug reports. 2009-02-02 Simon Josefsson * src/common.c: Print more certificate status values. 2009-02-02 Simon Josefsson * lib/x509/x509.c: Assert less for expected errors. 2009-02-02 Simon Josefsson * lib/x509/output.c: Simplify keyid printing to avoid allocation and asserts. 2009-02-01 Simon Josefsson * doc/manpages/Makefile.am, doc/scripts/gdoc: Update gdoc and use -pkg-name. 2009-02-01 Simon Josefsson * build-aux/gnupload, gl/Makefile.am, gl/m4/00gnulib.m4, gl/m4/errno_h.m4, gl/m4/extensions.m4, gl/m4/gnulib-common.m4, gl/m4/gnulib-comp.m4, gl/m4/multiarch.m4, gl/m4/pmccabe2html.m4, gl/m4/stdlib_h.m4, gl/stdlib.in.h, gl/tests/test-getaddrinfo.c, gl/version-etc.c, gl/version-etc.h, lib/gl/Makefile.am, lib/gl/m4/00gnulib.m4, lib/gl/m4/errno_h.m4, lib/gl/m4/extensions.m4, lib/gl/m4/gnulib-common.m4, lib/gl/m4/gnulib-comp.m4, lib/gl/m4/multiarch.m4, lib/gl/m4/stdlib_h.m4, lib/gl/stdlib.in.h, libextra/gl/m4/00gnulib.m4, libextra/gl/m4/extensions.m4, libextra/gl/m4/gnulib-common.m4, libextra/gl/m4/gnulib-comp.m4: Update gnulib files. 2009-01-27 Nikos Mavrogiannopoulos * NEWS, lib/gnutls_handshake.c: gnutls_handshake when sending client hello during a rehandshake, will not offer a version number larger than the current. Reported by Tristan Hill . 2009-01-27 Nikos Mavrogiannopoulos * lib/gnutls_psk.c: result_size in gnutls_hex_encode behaves as documented. It now holds the size of the result. Reported by John Brooks. 2009-01-21 Simon Josefsson * gl/Makefile.am, gl/arpa_inet.in.h, gl/fseeko.c, gl/m4/alloca.m4, gl/m4/errno_h.m4, gl/m4/getaddrinfo.m4, gl/m4/getline.m4, gl/m4/getpass.m4, gl/m4/gettimeofday.m4, gl/m4/gnulib-common.m4, gl/m4/inet_ntop.m4, gl/m4/inet_pton.m4, gl/m4/intmax_t.m4, gl/m4/inttypes_h.m4, gl/m4/lib-ld.m4, gl/m4/lib-link.m4, gl/m4/longlong.m4, gl/m4/malloc.m4, gl/m4/minmax.m4, gl/m4/printf.m4, gl/m4/readline.m4, gl/m4/realloc.m4, gl/m4/sockets.m4, gl/m4/sockpfaf.m4, gl/m4/stdbool.m4, gl/m4/stdint.m4, gl/m4/stdint_h.m4, gl/m4/stdio_h.m4, gl/m4/unistd_h.m4, gl/m4/vasnprintf.m4, gl/m4/wchar_t.m4, gl/m4/wint_t.m4, gl/progname.c, gl/stdint.in.h, gl/stdio.in.h, gl/strerror.c, gl/sys_stat.in.h, gl/tests/gettimeofday.c, gl/tests/ioctl.c, gl/tests/test-unistd.c, gl/unistd.in.h, gl/wchar.in.h, lib/gl/Makefile.am, lib/gl/fseeko.c, lib/gl/m4/alloca.m4, lib/gl/m4/byteswap.m4, lib/gl/m4/codeset.m4, lib/gl/m4/errno_h.m4, lib/gl/m4/gettext.m4, lib/gl/m4/gnulib-common.m4, lib/gl/m4/iconv.m4, lib/gl/m4/intldir.m4, lib/gl/m4/intlmacosx.m4, lib/gl/m4/intmax.m4, lib/gl/m4/intmax_t.m4, lib/gl/m4/inttypes-pri.m4, lib/gl/m4/inttypes_h.m4, lib/gl/m4/lcmessage.m4, lib/gl/m4/lib-ld.m4, lib/gl/m4/lib-link.m4, lib/gl/m4/lock.m4, lib/gl/m4/longlong.m4, lib/gl/m4/malloc.m4, lib/gl/m4/memmem.m4, lib/gl/m4/memmove.m4, lib/gl/m4/minmax.m4, lib/gl/m4/nls.m4, lib/gl/m4/po.m4, lib/gl/m4/printf-posix.m4, lib/gl/m4/printf.m4, lib/gl/m4/progtest.m4, lib/gl/m4/realloc.m4, lib/gl/m4/sockets.m4, lib/gl/m4/sockpfaf.m4, lib/gl/m4/stdbool.m4, lib/gl/m4/stdint.m4, lib/gl/m4/stdint_h.m4, lib/gl/m4/stdio_h.m4, lib/gl/m4/strcase.m4, lib/gl/m4/strverscmp.m4, lib/gl/m4/threadlib.m4, lib/gl/m4/uintmax_t.m4, lib/gl/m4/unistd_h.m4, lib/gl/m4/vasnprintf.m4, lib/gl/m4/wchar_t.m4, lib/gl/m4/wint_t.m4, lib/gl/stdint.in.h, lib/gl/stdio.in.h, lib/gl/sys_stat.in.h, lib/gl/tests/test-unistd.c, lib/gl/unistd.in.h, lib/gl/wchar.in.h: Update gnulib files. 2009-01-21 Simon Josefsson * THANKS: Add. 2009-01-21 Simon Josefsson * libextra/gl/Makefile.am, libextra/gl/gnulib.mk, libextra/gl/m4/gnulib-cache.m4, libextra/gl/m4/gnulib-common.m4, libextra/gl/m4/lib-ld.m4, libextra/gl/m4/lib-link.m4, libextra/gl/m4/md5.m4: Add -I's in libextra/gl for stdint.h on Solaris. Reported by Dagobert Michelsen in http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3388 2009-01-13 Simon Josefsson * lib/gnutls_state.c: Check return value properly. 2009-01-13 Simon Josefsson * lib/gnutls_state.c: Fix mem leak because buffer is not expanded correctly. 2009-01-09 Simon Josefsson * NEWS: Fix typos. 2009-01-09 Simon Josefsson * NEWS, lib/x509/verify.c: Permit V1 Certificate Authorities properly. Before they were mistakenly rejected even though GNUTLS_VERIFY_ALLOW_ANY_X509_V1_CA_CRT and/or GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT were supplied. Reported by "Douglas E. Engert" in . 2009-01-09 Simon Josefsson * src/certtool.c: Permit V1 CA's in new --verify-chain code. 2009-01-09 Simon Josefsson * THANKS: Add. 2009-01-09 Simon Josefsson * tests/chainverify.c: Added chain supplied by "Douglas E. Engert" . 2009-01-07 Simon Josefsson * src/errcodes.c, src/printlist.c: Fix license header. 2009-01-07 Simon Josefsson * lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_global.c, lib/gnutls_global.h, lib/gnutls_int.h: Cleanup logger function type. 2009-01-07 Simon Josefsson * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, libextra/configure.ac: Bump versions. 2009-01-07 Simon Josefsson * ChangeLog: Generated. 2009-01-07 Simon Josefsson * NEWS: Version 2.7.4. 2009-01-07 Simon Josefsson * lib/gnutls_rsa_export.c: Doc fixes. 2009-01-07 Simon Josefsson * doc/examples/ex-client-psk.c, doc/examples/ex-client-resume.c, doc/examples/ex-client-srp.c, doc/examples/ex-client-tlsia.c, doc/examples/ex-client1.c, lib/gnutls_algorithms.c, lib/gnutls_rsa_export.c, lib/openpgp/output.c, lib/x509/output.c, lib/x509/privkey.c, src/cli.c, src/common.c, src/serv.c, src/tls_test.c, tests/dhepskself.c: Fix warnings. 2009-01-07 Simon Josefsson * build-aux/gendocs.sh, doc/gendocs_template, gl/Makefile.am, gl/m4/errno_h.m4, gl/m4/extensions.m4, gl/m4/getaddrinfo.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/inttypes_h.m4, gl/m4/lib-link.m4, gl/m4/manywarnings.m4, gl/m4/multiarch.m4, gl/m4/printf.m4, gl/m4/size_max.m4, gl/m4/stdint.m4, gl/m4/stdint_h.m4, gl/m4/wchar.m4, gl/m4/wchar_t.m4, gl/m4/wint_t.m4, gl/m4/xsize.m4, gl/stdint.in.h, gl/stdlib.in.h, gl/sys_select.in.h, gl/tests/Makefile.am, gl/tests/test-select-in.sh, gl/unistd.in.h, gl/version-etc.c, gl/wchar.in.h, lib/gl/Makefile.am, lib/gl/m4/codeset.m4, lib/gl/m4/errno_h.m4, lib/gl/m4/extensions.m4, lib/gl/m4/gettext.m4, lib/gl/m4/glibc2.m4, lib/gl/m4/glibc21.m4, lib/gl/m4/gnulib-cache.m4, lib/gl/m4/gnulib-comp.m4, lib/gl/m4/iconv.m4, lib/gl/m4/intdiv0.m4, lib/gl/m4/intlmacosx.m4, lib/gl/m4/intmax.m4, lib/gl/m4/inttypes-pri.m4, lib/gl/m4/inttypes_h.m4, lib/gl/m4/lcmessage.m4, lib/gl/m4/lib-link.m4, lib/gl/m4/multiarch.m4, lib/gl/m4/nls.m4, lib/gl/m4/po.m4, lib/gl/m4/printf-posix.m4, lib/gl/m4/printf.m4, lib/gl/m4/progtest.m4, lib/gl/m4/size_max.m4, lib/gl/m4/stdint.m4, lib/gl/m4/stdint_h.m4, lib/gl/m4/threadlib.m4, lib/gl/m4/uintmax_t.m4, lib/gl/m4/visibility.m4, lib/gl/m4/wchar.m4, lib/gl/m4/wchar_t.m4, lib/gl/m4/wint_t.m4, lib/gl/m4/xsize.m4, lib/gl/stdint.in.h, lib/gl/stdlib.in.h, lib/gl/tests/Makefile.am, lib/gl/unistd.in.h, lib/gl/wchar.in.h, libextra/gl/Makefile.am, libextra/gl/m4/extensions.m4, libextra/gl/m4/gnulib-cache.m4, libextra/gl/m4/gnulib-comp.m4, libextra/gl/m4/lib-link.m4: Update gnulib files. 2009-01-07 Simon Josefsson * NEWS: Fix NEWS entry. 2009-01-07 Simon Josefsson * tests/sha2/sha2: Fix self-test with new certtool --verify-chain output. 2009-01-06 Daniel Kahn Gillmor * NEWS: added NEWS item about MD5 deprecation 2009-01-06 Simon Josefsson * tests/pkcs1-padding/pkcs1-pad: Fix expect strings to compensate for new certtool -e output. 2009-01-06 Simon Josefsson * NEWS, src/certtool.c: certtool: Make --verify-chain use libgnutls verification algorithm. 2009-01-06 Simon Josefsson * tests/chainverify.c: Test chain with EE cert signed using RSA-MD5. 2009-01-06 Daniel Kahn Gillmor * lib/x509/verify.c: actually deprecate MD5 and MD2 signatures during X.509 verification by treating them as invalid unless the GNUTLS_VERIFY_ALLOW_SIGN_RSA_{MD5,MD2} flags are present. 2008-12-12 Simon Josefsson * NEWS: Add NEWS entries from 2.6.3. 2008-12-12 Simon Josefsson * tests/crq_key_id.c: Fix. 2008-12-12 Simon Josefsson * tests/crq_key_id.c: Make it compile. Speed up key generation. 2008-12-12 Simon Josefsson * tests/crq_key_id.c: Indent. 2008-12-12 Simon Josefsson * NEWS, tests/Makefile.am, tests/crq_key_id.c: Add crq_key_id self-test from David Marín Carreño. 2008-12-11 Simon Josefsson * configure.ac: Update manywarnings usage. 2008-12-11 Simon Josefsson * NEWS: Add. 2008-12-11 Simon Josefsson * lib/x509/output.c: Print public key id for certificate requests too. 2008-12-11 Simon Josefsson * doc/manpages/Makefile.am: Generated. 2008-12-11 Simon Josefsson * configure.ac, lib/configure.ac, lib/m4/hooks.m4, libextra/configure.ac: Bump versions. 2008-12-11 Simon Josefsson * AUTHORS, NEWS, lib/includes/gnutls/x509.h, lib/x509/crq.c: gnutls: New interface to get key id for certificate requests. Patch from David Marín Carreño in . 2008-12-10 Simon Josefsson * ChangeLog: Generated. 2008-12-10 Simon Josefsson * NEWS: Version 2.7.3. 2008-12-10 Simon Josefsson * tests/chainverify.c: Check ca=false with flags too. 2008-12-10 Simon Josefsson * gl/override/tests/test-lseek.sh.diff, gl/tests/test-lseek.sh, lib/gl/tests/test-lseek.sh: Disable parts of gnulib self-tests that fail on mingw. 2008-12-10 Simon Josefsson * lib/gl/tests/test-lseek.c, maint.mk: Update gnulib files. 2008-12-10 Simon Josefsson * gl/override/tests/test-lseek.c.diff, gl/override/tests/test-select-in.sh.diff, gl/tests/test-lseek.c, gl/tests/test-select-in.sh: Disable parts of gnulib self-tests that fail on mingw. 2008-12-10 Simon Josefsson * doc/examples/ex-cxx.cpp: Drop config.h, not needed (hopefully?) and breaks mingw due to rpl_gmtime. 2008-12-10 Simon Josefsson * src/Makefile.am: Certtool need libgnutls etc for libcmd-certtool.la too, due to certtool-cfg.c. 2008-12-10 Simon Josefsson * tests/x509self.c: Fix comments. 2008-12-10 Simon Josefsson * NEWS: Add. 2008-12-10 Simon Josefsson * NEWS: Add. 2008-12-10 Simon Josefsson * tests/cve-2008-4989.c: Align with Nikos' patch. 2008-12-10 Simon Josefsson * lib/opencdk/Makefile.am, lib/opencdk/armor.c, lib/opencdk/keydb.c, lib/opencdk/literal.c, lib/opencdk/misc.c, lib/opencdk/new-packet.c, lib/opencdk/read-packet.c, lib/opencdk/sig-check.c, lib/opencdk/stream.c: Revert "Fix warnings in opencdk." This reverts commit 59cddc711e55bbd094bdf95986277fb33ba964ee. 2008-12-10 Simon Josefsson * lib/x509/verify.c: Revert last commit. 2008-12-10 Simon Josefsson * tests/chainverify.c: Add GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT flag when needed. 2008-12-10 Simon Josefsson * tests/chainverify.c: Add hbci chain. 2008-12-10 Simon Josefsson * tests/chainverify.c: Fix comments. 2008-12-10 Simon Josefsson * tests/chainverify.c: Fix order to match comments. 2008-12-10 Simon Josefsson * tests/chainverify.c: Don't fail on expect errors, to allow more information to be collected. 2008-12-10 Simon Josefsson * NEWS, lib/x509/verify.c: Revert Nikos revert, and fix verification hopefully better. The new logic is to include the CA cert in validation, but short-cut full validation of trusted certificates. 2008-12-10 Simon Josefsson * tests/chainverify.c: Add chain with CA having a basic constraint saying CA=FALSE. 2008-12-10 Simon Josefsson * tests/cve-2008-4989.c: Add note. 2008-12-10 Simon Josefsson * NEWS, tests/Makefile.am, tests/chainverify.c: Add self-test of chain verification logic. 2008-12-09 Simon Josefsson * tests/libgcrypt.supp: Ignore more. 2008-12-05 Simon Josefsson * NEWS: Add. 2008-12-05 Nikos Mavrogiannopoulos * lib/x509/verify.c: reintroduced the self signed certificate removal code. This time shouldn't have the drawbacks that used to. 2008-12-05 Simon Josefsson * lib/gnutls_global.c: Disable secmem rather than overriding libgcrypt memory allocators. Suggested by Werner Koch in . 2008-12-04 Nikos Mavrogiannopoulos * lib/gnutls_global.c: rearranged initialization stuff based on Werner's suggestions. 2008-12-04 Nikos Mavrogiannopoulos * src/certtool.c: gcry_control (GCRYCTL_ENABLE_QUICK_RANDOM, 0) is being called after libgcrypt initialization (gnutls_global_init). 2008-12-03 Simon Josefsson * lib/opencdk/Makefile.am, lib/opencdk/armor.c, lib/opencdk/keydb.c, lib/opencdk/literal.c, lib/opencdk/misc.c, lib/opencdk/new-packet.c, lib/opencdk/read-packet.c, lib/opencdk/sig-check.c, lib/opencdk/stream.c: Fix warnings in opencdk. 2008-12-03 Simon Josefsson * gl/m4/manywarnings.m4: Add. 2008-12-01 Simon Josefsson * configure.ac, gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/include_next.m4, gl/m4/warnings.m4, gl/stdint.in.h, gl/sys_time.in.h, lib/gl/m4/include_next.m4, lib/gl/stdint.in.h: Update gnulib files. 2008-11-29 Nikos Mavrogiannopoulos * tests/x509self.c: Incorporated patch (with modifications) from Joe Orton that also checks the rehandshake capabilities. 2008-11-25 Simon Josefsson * lib/opencdk/Makefile.am, lib/openpgp/Makefile.am, libextra/Makefile.am, tests/Makefile.am: Fix minitasn1 -I's. 2008-11-25 Simon Josefsson * lib/x509/Makefile.am: Fix minitasn1 -I. 2008-11-25 Simon Josefsson * lib/gnutls_buffers.c: Fix compiler warning. 2008-11-23 Simon Josefsson * src/Makefile.am: Libreadline is needed by libcmd_certtool.la, not certtool. Reported by Arfrever Frehtes Taifersar Arahesis in . 2008-11-23 Nikos Mavrogiannopoulos * lib/opencdk/context.h, lib/opencdk/literal.c, lib/opencdk/misc.c, lib/opencdk/new-packet.c, lib/opencdk/opencdk.h, lib/opencdk/read-packet.c: Converted non-C compliant code to standard C. The usage of structures like: struct x { int el1; char str[1]; } and the trick of using a single allocation for str and the structure itself by allocating sizeof(x) + strlen()-1, are questionable. They were converted to: struct x { int el1; char *str; } and there is a single allocation of sizeof(x)+strlen() but then the str pointer is updated to point to the rest of the data. 2008-11-23 Nikos Mavrogiannopoulos * lib/gnutls_buffers.c, lib/gnutls_int.h, lib/gnutls_str.c, lib/gnutls_str.h, lib/x509/dn.c: When reading data from a buffer (gnutls_string) avoid memmoving all remaining data. This will speed up short byte reads. 2008-11-21 Nikos Mavrogiannopoulos * doc/TODO: reorganized goals 2008-11-21 Nikos Mavrogiannopoulos * src/cli.c: return non zero error code on error conditions. 2008-11-21 Nikos Mavrogiannopoulos * doc/certtool.cfg: better grouping of configuration directives 2008-11-21 Nikos Mavrogiannopoulos * : commit 8b14ab18cf5e5214ac3d28412e0c503e83a753c1 Author: Nikos Mavrogiannopoulos Date: Fri Nov 21 21:02:45 2008 +0200 2008-11-18 Simon Josefsson * lib/gnutls_compress.c: Clean up LZO initialization. 2008-11-18 Simon Josefsson * lib/auth_cert.c: Don't use // comments. 2008-11-18 Simon Josefsson * src/Makefile.am: Change link order, so that gnulib is last. 2008-11-18 Simon Josefsson * maint.mk: Update gnulib files. 2008-11-18 Simon Josefsson * lib/po/LINGUAS: Sync with TP. 2008-11-18 Simon Josefsson * lib/po/LINGUAS: Sync with TP. 2008-11-18 Simon Josefsson * lib/po/LINGUAS, lib/po/ms.po.in: Sync with TP. 2008-11-18 Simon Josefsson * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, libextra/configure.ac: Bump versions. 2008-11-18 Simon Josefsson * ChangeLog: Generated. 2008-11-18 Simon Josefsson * NEWS: Version 2.7.2. 2008-11-18 Simon Josefsson * doc/reference/Makefile.am: Add deprecated guard for libtasn1. 2008-11-18 Simon Josefsson * NEWS, lib/minitasn1/coding.c, lib/minitasn1/decoding.c, lib/minitasn1/element.c, lib/minitasn1/element.h, lib/minitasn1/errors.c, lib/minitasn1/gstr.h, lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, lib/minitasn1/parser_aux.h, lib/minitasn1/structure.c, lib/minitasn1/structure.h: Sync with libtasn1 v1.7. 2008-11-18 Simon Josefsson * doc/examples/Makefile.am, lib/Makefile.am, lib/openpgp/Makefile.am, libextra/Makefile.am: Fix WARN_CFLAGS uses. 2008-11-18 Simon Josefsson * lib/gnutls_compress.c: Fix warnings. 2008-11-18 Simon Josefsson * tests/Makefile.am: Respect ENABLE_OPENSSL. 2008-11-18 Simon Josefsson * configure.ac: Move gnulib EARLY early. 2008-11-18 Simon Josefsson * configure.ac, lib/configure.ac, lib/m4/hooks.m4, lib/m4/output-def.m4, libextra/configure.ac, m4/output-def.m4: Move C++ and -output-def detection. 2008-11-18 Simon Josefsson * configure.ac, lib/configure.ac, lib/m4/hooks.m4, lib/m4/linker-script.m4, libextra/configure.ac, m4/linker-script.m4: Fix linker script test. 2008-11-18 Simon Josefsson * configure.ac: Fix typo. 2008-11-18 Simon Josefsson * configure.ac, libextra/m4/hooks.m4: Print Openssl status. 2008-11-18 Simon Josefsson * configure.ac, lib/m4/hooks.m4: Print C++ status. 2008-11-18 Simon Josefsson * configure.ac: Cleanup guile tests. 2008-11-17 Simon Josefsson * gl/m4/warnings.m4: Update gnulib files. 2008-11-17 Simon Josefsson * configure.ac: Rewrite warning initializations. 2008-11-17 Simon Josefsson * configure.ac: Typo. 2008-11-17 Simon Josefsson * gl/m4/warnings.m4: Update gnulib files. 2008-11-17 Simon Josefsson * doc/examples/examples.h: Add. 2008-11-17 Simon Josefsson * configure.ac, doc/examples/Makefile.am, doc/examples/ex-alert.c, doc/examples/ex-client-psk.c, doc/examples/ex-pkcs12.c, doc/examples/ex-rfc2818.c, doc/examples/ex-session-info.c, doc/examples/ex-verify.c, doc/examples/ex-x509-info.c, doc/examples/tcp.c, gl/gettext.h, gl/override/lib/gettext.h.diff, lib/gl/gettext.h, lib/gl/override/lib/gettext.h.diff, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_state.c, lib/gnutls_str.h, lib/openpgp/output.c, lib/x509/Makefile.am, lib/x509/dn.c, lib/x509/output.c, lib/x509/privkey.c, libextra/fipsmd5.c, libextra/gnutls_extra.c, libextra/gnutls_openssl.c, src/Makefile.am, src/cli.c, src/common.h, src/crypt.c, src/prime.c, src/psk.c, src/serv.c, src/tls_test.c, tests/Makefile.am, tests/anonself.c, tests/crypto_rng.c, tests/dhepskself.c, tests/dn.c, tests/finished.c, tests/gc.c, tests/mini.c, tests/openpgpself.c, tests/pkcs12_s2k.c, tests/pskself.c, tests/resume.c, tests/set_pkcs12_cred.c, tests/tlsia.c, tests/utils.c, tests/utils.h, tests/x509dn.c, tests/x509self.c, tests/x509signself.c: Use more warnings. Fix many warnings. 2008-11-17 Simon Josefsson * gl/m4/warnings.m4, gl/override/tests/test-select-out.sh.diff, gl/tests/test-select-out.sh: Update gnulib files. 2008-11-17 Simon Josefsson * lib/includes/gnutls/compat.h, lib/includes/gnutls/crypto.h, lib/includes/gnutls/gnutlsxx.h, lib/includes/gnutls/openpgp.h, lib/includes/gnutls/pkcs12.h, lib/includes/gnutls/x509.h: Fix cosmetic nits in header files. 2008-11-17 Simon Josefsson * NEWS, lib/includes/gnutls/compat.h, lib/includes/gnutls/gnutls.h.in: Fix namespace of version symbols. 2008-11-17 Simon Josefsson * NEWS: Add. 2008-11-17 Simon Josefsson * lib/includes/gnutls/gnutls.h.in: Move #include's outside of C++ markers. 2008-11-17 Simon Josefsson * src/cli-gaa.c, src/cli-gaa.h, src/serv-gaa.c, src/serv-gaa.h: Generated. 2008-11-17 Simon Josefsson * src/common.c: Work around gnulib+mingw problem. 2008-11-17 Simon Josefsson * src/cli.gaa, src/common.h, src/serv.c, src/serv.gaa: Never include config.h in *.h files. 2008-11-17 Simon Josefsson * gl/m4/hostent.m4, gl/m4/servent.m4: Update gnulib files. 2008-11-17 Simon Josefsson * gl/override/tests/test-select-out.sh.diff, gl/tests/test-select-out.sh: Work around reported bug in gnulib self-tests. 2008-11-17 Simon Josefsson * gl/m4/getaddrinfo.m4, gl/m4/gnulib-comp.m4, gl/m4/sockets.m4, gl/tests/test-select-out.sh, lib/gl/m4/sockets.m4: Update gnulib files. 2008-11-17 Simon Josefsson * Makefile.am, build-aux/gnupload, gl/m4/getaddrinfo.m4, gl/m4/netdb_h.m4, gl/netdb.in.h, gl/tests/sockets.h, lib/gl/Makefile.am, lib/gl/m4/gnulib-cache.m4, lib/gl/m4/gnulib-comp.m4, lib/gl/m4/netdb_h.m4, lib/gl/netdb.in.h, lib/gl/sockets.h, lib/gl/tests/Makefile.am, libextra/gl/Makefile.am, libextra/gl/m4/gnulib-cache.m4, libextra/gl/m4/gnulib-comp.m4: Update gnulib files. 2008-11-17 Simon Josefsson * lib/gnutls_auth.c: Make it build. 2008-11-15 Nikos Mavrogiannopoulos * lib/gnutls_auth.c: Corrected memory leak in _gnutls_free_auth_info(). Trace and patch by Michael Weiser. 2008-11-14 Simon Josefsson * tests/Makefile.am: Disable openpgp-keyring when not building openpgp. 2008-11-14 Simon Josefsson * tests/Makefile.am: Add -I for libextra too. 2008-11-14 Simon Josefsson * lib/gnutlsxx.cpp: Make it compile with --disable-openpgp. 2008-11-14 Simon Josefsson * tests/resume.c: Fix warning. 2008-11-14 Simon Josefsson * lib/mpi-libgcrypt.c: Don't return from void function. Reported by Jeff Cai in https://savannah.gnu.org/support/?106549 2008-11-14 Simon Josefsson * lib/gnutls_int.h, libextra/ext_inner_application.c, libextra/gnutls_ia.c: Include gnutls/extra.h at the right places. 2008-11-14 Simon Josefsson * lib/mac-libgcrypt.c: Don't return from void function. Reported by Jeff Cai in https://savannah.gnu.org/support/?106549 2008-11-14 Simon Josefsson * tests/Makefile.am, tests/pkcs12-decode/Makefile.am, tests/pkcs12-decode/pkcs12_s2k.c, tests/pkcs12_s2k.c: Move pkcs12_s2k.c test to top-level to avoid -I/etc flag duplication. 2008-11-14 Simon Josefsson * tests/pkcs12-decode/pkcs12: Test pkcs12_2certs.p12 too. 2008-11-14 Simon Josefsson * tests/pkcs12-decode/Makefile.am: Dist pkcs12_2certs.p12. 2008-11-14 Simon Josefsson * doc/Makefile.am: Dist README.gaa. 2008-11-14 Simon Josefsson * doc/Makefile.am: Remove README.autoconf. 2008-11-14 Simon Josefsson * lib/m4/hooks.m4: Run AC_PROG_CXX only when needed. Reported by Daniel Black in . 2008-11-13 Simon Josefsson * configure.ac: Use more warnings. 2008-11-13 Simon Josefsson * libextra/gnutls_openssl.c: Fix warning. 2008-11-13 Simon Josefsson * lib/Makefile.am: Drop incorrect -I. 2008-11-13 Simon Josefsson * doc/README.gaa: Add. 2008-11-13 Simon Josefsson * configure.ac, doc/examples/ex-serv-export.c, libextra/gnutls_ia.c, src/Makefile.am, src/certtool-gaa.c, src/cli-gaa.c, src/crypt-gaa.c, src/psk-gaa.c, src/serv-gaa.c, src/tests.c, src/tls_test-gaa.c: Use more warnings. Fix warnings. 2008-11-12 Simon Josefsson * lib/auth_cert.c, lib/gnutls_mpi.c, lib/gnutls_pk.c, lib/mac-libgcrypt.c: Fix warnings. 2008-11-12 Simon Josefsson * cfg.mk: Add -Werror again, code is fixed. 2008-11-12 Simon Josefsson * doc/examples/Makefile.am: Use warning flags, but not for C++ code. 2008-11-12 Simon Josefsson * tests/Makefile.am, tests/cve-2008-4989.c: Use more warnings. Fix warnings. 2008-11-12 Simon Josefsson * src/Makefile.am, src/certtool-cfg.h, src/certtool-gaa.c: Use more warnings. Fix warnings. 2008-11-12 Simon Josefsson * lib/openpgp/Makefile.am, libextra/Makefile.am, libextra/gl/Makefile.am, libextra/gl/m4/extensions.m4, libextra/gl/m4/gnulib-cache.m4, libextra/gl/m4/gnulib-comp.m4: Use more warning flags. Need extensions in libextra. 2008-11-12 Simon Josefsson * lib/gnutls_buffers.c, lib/gnutls_extensions.c, lib/gnutls_extensions.h, lib/gnutls_handshake.c, lib/gnutls_mpi.c, lib/gnutls_x509.c: Fix warnings. 2008-11-12 Simon Josefsson * lib/includes/gnutls/gnutls.h.in: Add prototype for gnutls_certificate_set_x509_simple_pkcs12_mem. 2008-11-12 Simon Josefsson * lib/x509/Makefile.am: Use WARN_CFLAGS. 2008-11-12 Simon Josefsson * lib/ext_server_name.c, lib/gnutls_cipher.c, lib/gnutls_constate.c, lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_record.c, lib/gnutls_supplemental.c, lib/gnutls_v2_compat.c: Fix warnings. 2008-11-12 Simon Josefsson * Makefile.am: Build gl/ later. 2008-11-12 Simon Josefsson * cfg.mk: Drop -Werror because gnutls code doesn't compile with it. 2008-11-12 Simon Josefsson * configure.ac, lib/Makefile.am: Disable pointer sign warnings. Use WARN_CFLAGS more. 2008-11-12 Simon Josefsson * configure.ac: Better warning flag hangling. 2008-11-12 Simon Josefsson * cfg.mk, doc/README.GIT: Drop --enable-developer-mode. 2008-11-12 Simon Josefsson * configure.ac: Remove debug code. 2008-11-12 Simon Josefsson * cfg.mk, configure.ac: Use warnings module. 2008-11-12 Simon Josefsson * cfg.mk, configure.ac, gl/m4/gnulib-comp.m4, gl/m4/warnings.m4, lib/configure.ac, libextra/configure.ac: Use gnulib warnings module. 2008-11-12 Simon Josefsson * NEWS: Add v2.6.2 entries. 2008-11-12 Simon Josefsson * lib/m4/hooks.m4, lib/m4/output-def.m4: Use output-def.m4. 2008-11-12 Simon Josefsson * lib/gnutls.pc.in, libextra/gnutls-extra.pc.in: Add URL fields. 2008-11-12 Simon Josefsson * lib/m4/hooks.m4, lib/m4/linker-script.m4: Fix version script detection. 2008-11-12 Simon Josefsson * configure.ac, lib/configure.ac, lib/m4/hooks.m4, lib/m4/linker-script.m4, libextra/configure.ac, m4/valgrind.m4: Use external m4 files for shared tests. 2008-11-12 Simon Josefsson * NEWS: Fix. 2008-11-12 Simon Josefsson * tests/cve-2008-4989.c: Frob expected verify status code. With latest verify.c patch it just say the chain is invalid, rather than complaining about missing signer certificate. This is arguable more correct. 2008-11-12 Simon Josefsson * lib/x509/verify.c: Remove check of last certificate in path is self signed. Causes crashes further down in the code for certificate chains that only contain one self-signed certificate. Still protects against the GNUTLS-SA-2008-3 vulnerabillity. Reported by Michael Meskes in . 2008-11-12 Simon Josefsson * gl/tests/test-select-out.sh: Comment out broken test. 2008-11-11 Simon Josefsson * gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/warnings.m4, lib/gl/Makefile.am, lib/gl/m4/gnulib-cache.m4, lib/gl/m4/gnulib-comp.m4, lib/gl/m4/warnings.m4: Update gnulib files. 2008-11-11 Simon Josefsson * Makefile.am: Need more -I's. 2008-11-11 Simon Josefsson * gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, lib/gl/Makefile.am, lib/gl/m4/gnulib-cache.m4, lib/gl/m4/gnulib-comp.m4, lib/gl/m4/warnings.m4: Update gnulib files. 2008-11-11 Simon Josefsson * gl/Makefile.am, gl/fseeko.c, gl/m4/getaddrinfo.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/netdb_h.m4, gl/m4/printf.m4, gl/netdb.in.h, gl/tests/test-select-fd.c, gl/tests/test-select-in.sh, gl/tests/test-select-out.sh, lib/gl/Makefile.am, lib/gl/fseeko.c, lib/gl/m4/netdb_h.m4, lib/gl/m4/printf.m4, lib/gl/netdb.in.h: Update gnulib files. 2008-11-11 Simon Josefsson * tests/cve-2008-4989.c: Also test chain length of 1 since the security patch caused a crash. 2008-11-11 Simon Josefsson * tests/libgcrypt.supp: Add another gcrypt leak. 2008-11-11 Simon Josefsson * lib/gnutls_extensions.c, lib/gnutls_extensions.h, lib/gnutls_global.c: Fix mem leak. 2008-11-11 Simon Josefsson * tests/cve-2008-4989.c: Fix mem leaks. 2008-11-11 Simon Josefsson * NEWS, tests/Makefile.am, tests/cve-2008-4989.c: Add cve-2008-4989.c self-test. 2008-11-10 Simon Josefsson * gl/tests/gettimeofday.c, gl/tests/test-gettimeofday.c, gl/tests/test-select-fd.c, gl/tests/test-select-in.sh, gl/tests/test-select-out.sh, gl/tests/test-select-stdin.c: Update gnulib files. 2008-11-10 Simon Josefsson * gl/m4/gettimeofday.m4, gl/m4/gnulib-comp.m4, gl/m4/sys_ioctl_h.m4, gl/tests/Makefile.am, lib/gl/m4/include_next.m4, lib/gl/sys_stat.in.h: Update gnulib files. 2008-11-10 Simon Josefsson * NEWS, THANKS, lib/x509/verify.c: Merge in v2.6.1 fixes. 2008-11-07 Simon Josefsson * NEWS, lib/m4/hooks.m4: Use modern -Wl,--version-script check. 2008-11-07 Simon Josefsson * doc/cyclo/Makefile.am: Cover more files. 2008-11-07 Simon Josefsson * lib/opencdk/opencdk.h: Fix C++ rule, for pmccabe2html. 2008-11-07 Simon Josefsson * build-aux/pmccabe.css, build-aux/pmccabe2html, configure.ac, doc/Makefile.am, doc/cyclo/Makefile.am, gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/pmccabe2html.m4, gl/sys_stat.in.h: Add cyclomatic code complexity charts. 2008-11-07 Simon Josefsson * doc/manpages/Makefile.am: Generated. 2008-11-07 Simon Josefsson * NEWS, lib/m4/hooks.m4, libextra/configure.ac: Need LZO detection in libgnutls. 2008-11-05 Nikos Mavrogiannopoulos * NEWS, lib/gnutls_x509.c, tests/Makefile.am, tests/set_pkcs12_cred.c: * Added gnutls_certificate_set_x509_simple_pkcs12_mem * Made gnutls_certificate_set_x509_simple_pkcs12_file() more advanced. It will return a corresponding certificate and key pair. [The previous version would return the first ones found]. Eliminated memory leaks on error conditions on these functions. 2008-11-05 Nikos Mavrogiannopoulos * .gitignore: ignore more stuff 2008-11-05 Nikos Mavrogiannopoulos * NEWS, doc/certtool.cfg, src/certtool-cfg.c, src/certtool.c: certtool: allow setting arbitrary key purpose object identifiers. 2008-11-05 Simon Josefsson * doc/README.autoconf: Remove obsolete instructions. 2008-11-04 Simon Josefsson * lib/gnutls_srp.c, lib/gnutls_ui.c: Doc fix. 2008-11-04 Simon Josefsson * NEWS: Add. 2008-11-04 Simon Josefsson * src/certtool.c: Use error instead of fprintf. 2008-11-04 Simon Josefsson * lib/includes/gnutls/gnutls.h.in: Indent differently for gtk-doc. 2008-11-04 Simon Josefsson * doc/reference/Makefile.am: Ignore gnulib headers. 2008-11-04 Simon Josefsson * m4/ax_create_stdint_h.m4: Remove. 2008-11-04 Simon Josefsson * doc/reference/Makefile.am: Ignore config.h. 2008-11-04 Simon Josefsson * tests/Makefile.am: Drop pointless gc_LDADD. 2008-11-04 Simon Josefsson * tests/Makefile.am: Drop removed -Ilgl. 2008-11-04 Simon Josefsson * NEWS, doc/Makefile.am, doc/fdl-1.3.texi, doc/fdl.texi, doc/gnutls.texi, gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/include_next.m4: Update gnulib files. Use GFDLv1.3 for manual. 2008-11-04 Simon Josefsson * NEWS: Add. 2008-11-04 Simon Josefsson * lib/includes/gnutls/gnutls.h.in: Fix typo. 2008-11-04 Simon Josefsson * lib/includes/gnutls/gnutls.h.in: Sync gnutls_srp_set_prime_bits prototype with code. 2008-11-04 Simon Josefsson * lib/includes/gnutls/gnutls.h.in: Add forgotten prototype for gnutls_srp_server_get_username. Reported by Kevin Quick. 2008-11-03 Nikos Mavrogiannopoulos * lib/gnutls_ui.c: documented that gnutls_dh_set_prime_bits() has no effect in server side. 2008-11-03 Nikos Mavrogiannopoulos * : commit fe191e360728fcee72cf5ba835f2301f1bf78b49 Author: Nikos Mavrogiannopoulos Date: Mon Nov 3 21:44:38 2008 +0200 2008-11-03 Simon Josefsson * lib/gl/Makefile.am, lib/gl/m4/gnulib-comp.m4, lib/gl/m4/memchr.m4, lib/gl/m4/memcmp.m4, lib/gl/memchr.c, lib/gl/memcmp.c, lib/gl/tests/Makefile.am, lib/gl/tests/test-memchr.c, lib/gl/tests/test-memcmp.c, maint.mk: Update gnulib files. 2008-11-03 Simon Josefsson * NEWS: Add. 2008-11-03 Simon Josefsson * NEWS, configure.ac, lib/configure.ac, lib/m4/hooks.m4, libextra/configure.ac: Bump versions. 2008-11-03 Simon Josefsson * lib/m4/hooks.m4: Check for C99 macros. 2008-11-02 Nikos Mavrogiannopoulos * lib/minitasn1/decoding.c, lib/minitasn1/element.c, lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, lib/minitasn1/parser_aux.h: * added BER octet string decoder from libtasn1. * added the tree generation optimizations. 2008-11-02 Nikos Mavrogiannopoulos * src/certtool.c: * Some more verbose out. * Do not abort the pkcs12 structure parsing if one bag failed. 2008-11-02 Nikos Mavrogiannopoulos * lib/x509/pkcs12.c: Reduce verbosity 2008-11-02 Nikos Mavrogiannopoulos * lib/x509/pkcs12.c: print DER errors if any. 2008-10-31 Simon Josefsson * doc/texinfo.css: Use white background. 2008-10-31 Simon Josefsson * ChangeLog: Generated. 2008-10-31 Simon Josefsson * NEWS: Version 2.7.1. 2008-10-30 Simon Josefsson * guile/src/Makefile.am: Really fix -I's. 2008-10-30 Simon Josefsson * guile/src/Makefile.am: Fix -I's. 2008-10-30 Simon Josefsson * tests/Makefile.am: Add -lgnutls-extra for openpgp-keyring. 2008-10-30 Simon Josefsson * gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/sys_stat_h.m4, gl/sys_stat.in.h, gl/tests/Makefile.am, gl/tests/test-sys_stat.c: Need more gnulib modules. 2008-10-30 Simon Josefsson * gl/Makefile.am, gl/connect.c, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/recv.c, gl/send.c, gl/tests/Makefile.am, gl/tests/connect.c, src/certtool.c, src/cli.c: Need more gnulib modules. 2008-10-30 Simon Josefsson * gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/perror.c, gl/tests/Makefile.am, gl/tests/perror.c: Update gnulib files. 2008-10-30 Simon Josefsson * .gitignore: Update. 2008-10-30 Simon Josefsson * doc/.gitignore, lib/po/.gitignore, libextra/.gitignore: Update. 2008-10-30 Simon Josefsson * gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/minmax.m4, gl/m4/read-file.m4, gl/minmax.h, gl/read-file.c, gl/read-file.h, gl/tests/Makefile.am, gl/tests/test-read-file.c, src/Makefile.am, src/cli.c, src/serv.c: Need more gnulib modules. 2008-10-30 Simon Josefsson * gl/accept.c, gl/alloca.c, gl/bind.c, gl/close.c, gl/fclose.c, gl/listen.c, gl/m4/close.m4, gl/m4/fclose.m4, gl/m4/perror.m4, gl/m4/sockets.m4, gl/m4/sys_ioctl_h.m4, gl/m4/sys_select_h.m4, gl/m4/sys_time_h.m4, gl/setsockopt.c, gl/socket.c, gl/sys_select.in.h, gl/sys_time.in.h, gl/tests/connect.c, gl/tests/ioctl.c, gl/tests/perror.c, gl/tests/sockets.c, gl/tests/sockets.h, gl/tests/sys_ioctl.in.h, gl/tests/test-perror.c, gl/tests/test-perror.sh, gl/tests/test-select.c, gl/tests/test-sockets.c, gl/tests/test-sys_select.c, gl/tests/test-sys_time.c, gl/tests/w32sock.h, gl/winsock-select.c: Update gnulib files. 2008-10-30 Simon Josefsson * gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/shutdown.c, gl/tests/Makefile.am, gl/tests/dummy.c, gl/w32sock.h, lib/Makefile.am, src/common.h: Use sockets module. 2008-10-30 Simon Josefsson * guile/src/Makefile.am: Fix. 2008-10-30 Simon Josefsson * configure.ac, lib/gl/Makefile.am, lib/gl/m4/gnulib-cache.m4, lib/gl/m4/gnulib-comp.m4, lib/gl/m4/sockets.m4, lib/gl/sockets.c, lib/gl/sockets.h, lib/gl/tests/Makefile.am, lib/gl/tests/test-sockets.c, lib/gnutls_buffers.c, lib/gnutls_global.c: Better gnulib module usage. 2008-10-30 Simon Josefsson * gl/m4/gnulib-comp.m4: Update gnulib files. 2008-10-30 Simon Josefsson * configure.ac, configure.in: Rename. 2008-10-30 Simon Josefsson * guile/src/Makefile.am, src/Makefile.am: Fixes. 2008-10-30 Simon Josefsson * configure.in, lib/configure.ac, tests/Makefile.am: Fixes. 2008-10-30 Simon Josefsson * configure.in: Remove. 2008-10-30 Simon Josefsson * Makefile.am, configure.in, doc/Makefile.am, doc/examples/Makefile.am, doc/reference/Makefile.am, guile/src/Makefile.am, includes/Makefile.am, includes/gnutls/compat.h, includes/gnutls/crypto.h, includes/gnutls/extra.h, includes/gnutls/gnutls.h.in, includes/gnutls/gnutlsxx.h, includes/gnutls/openpgp.h, includes/gnutls/openssl.h, includes/gnutls/pkcs12.h, includes/gnutls/x509.h, lib/Makefile.am, lib/configure.ac, lib/includes/Makefile.am, lib/includes/gnutls/compat.h, lib/includes/gnutls/crypto.h, lib/includes/gnutls/gnutls.h.in, lib/includes/gnutls/gnutlsxx.h, lib/includes/gnutls/openpgp.h, lib/includes/gnutls/pkcs12.h, lib/includes/gnutls/x509.h, lib/opencdk/Makefile.am, lib/openpgp/Makefile.am, lib/x509/Makefile.am, libextra/Makefile.am, libextra/configure.ac, libextra/includes/Makefile.am, libextra/includes/gnutls/extra.h, libextra/includes/gnutls/openssl.h, src/Makefile.am, tests/Makefile.am, tests/hostname-check.README, tests/hostname-check.c, tests/hostname-check/Makefile.am, tests/hostname-check/README, tests/hostname-check/hostname-check.c, tests/openpgp-keyring.c, tests/openpgp/Makefile.am, tests/openpgp/keyring.c, tests/pkcs12-decode/Makefile.am: Separate headers as well. Clean up -I's. 2008-10-30 Simon Josefsson * guile/src/Makefile.am, tests/Makefile.am, tests/pkcs12-decode/Makefile.am: Builds on my system now. 2008-10-30 Simon Josefsson * NEWS: Add. 2008-10-30 Simon Josefsson * configure.in, lib/gnutls_mem.h: Drop dmalloc and efence support. 2008-10-30 Simon Josefsson * configure.in, lib/Makefile.am, lib/configure.ac, lib/m4/hooks.m4, lib/openpgp/Makefile.am, lib/x509/Makefile.am, libextra/Makefile.am, src/Makefile.am: Make it build better. 2008-10-30 Simon Josefsson * configure.in, lib/Makefile.am, lib/m4/hooks.m4, libextra/Makefile.am, src/Makefile.am: Fixes. 2008-10-30 Simon Josefsson * cfg.mk, configure.in, includes/gnutls/gnutls.h.in, lib/Makefile.am, lib/configure.ac, lib/m4/hooks.m4, lib/openpgp/Makefile.am, lib/x509/Makefile.am: Make it build. 2008-10-30 Simon Josefsson * lib/po/POTFILES.in: Fix paths. 2008-10-30 Simon Josefsson * cfg.mk, lib/m4/hooks.m4: Build fixes. 2008-10-30 Simon Josefsson * cfg.mk: Fix i18n stuff. 2008-10-30 Simon Josefsson * lib/m4/hooks.m4, libextra/m4/hooks.m4: New files, forgotten in last commit. 2008-10-30 Simon Josefsson * lib/build-aux/config.rpath, lib/build-aux/link-warning.h, lib/gl/Makefile.am, lib/gl/m4/gnulib-cache.m4, libextra/build-aux/config.rpath: Update gnulib files. 2008-10-30 Simon Josefsson * COPYING.LIB, Makefile.am, configure.in, lib/AUTHORS, lib/COPYING, lib/ChangeLog, lib/Makefile.am, lib/NEWS, lib/README, lib/configure.ac, lib/po/.gitignore, lib/po/LINGUAS, lib/po/Makevars, lib/po/POTFILES.in, lib/po/de.po.in, lib/po/fr.po.in, lib/po/ms.po.in, lib/po/nl.po.in, lib/po/pl.po.in, lib/po/sv.po.in, lib/po/vi.po.in, libextra/AUTHORS, libextra/COPYING, libextra/ChangeLog, libextra/Makefile.am, libextra/NEWS, libextra/README, libextra/configure.ac, libextra/gl/Makefile.am, libextra/gl/m4/gnulib-cache.m4, libextra/gl/m4/gnulib-comp.m4, libextra/gl/m4/lib-ld.m4, libextra/gl/m4/lib-link.m4, libextra/gl/m4/lib-prefix.m4, po/.gitignore, po/LINGUAS, po/Makevars, po/POTFILES.in, po/de.po.in, po/fr.po.in, po/ms.po.in, po/nl.po.in, po/pl.po.in, po/sv.po.in, po/vi.po.in: More splitting updates. 2008-10-30 Simon Josefsson * libextra/gl/Makefile.am, libextra/gl/m4/gnulib-cache.m4, libextra/gl/m4/gnulib-comp.m4: Update gnulib files. 2008-10-30 Simon Josefsson * gl/alloca.in.h, gl/asnprintf.c, gl/errno.in.h, gl/float+.h, gl/float.in.h, gl/fseeko.c, gl/gettext.h, gl/lseek.c, gl/m4/alloca.m4, gl/m4/errno_h.m4, gl/m4/float_h.m4, gl/m4/fseeko.m4, gl/m4/intmax_t.m4, gl/m4/inttypes_h.m4, gl/m4/longlong.m4, gl/m4/lseek.m4, gl/m4/malloc.m4, gl/m4/printf.m4, gl/m4/realloc.m4, gl/m4/size_max.m4, gl/m4/snprintf.m4, gl/m4/sockpfaf.m4, gl/m4/stdbool.m4, gl/m4/stdint.m4, gl/m4/stdint_h.m4, gl/m4/stdio_h.m4, gl/m4/stdlib_h.m4, gl/m4/string_h.m4, gl/m4/sys_socket_h.m4, gl/m4/unistd_h.m4, gl/m4/vasnprintf.m4, gl/m4/wchar.m4, gl/m4/wchar_t.m4, gl/m4/wint_t.m4, gl/m4/xsize.m4, gl/printf-args.c, gl/printf-args.h, gl/printf-parse.c, gl/printf-parse.h, gl/realloc.c, gl/size_max.h, gl/snprintf.c, gl/stdbool.in.h, gl/stdint.in.h, gl/stdio-impl.h, gl/stdio-write.c, gl/stdio.in.h, gl/stdlib.in.h, gl/string.in.h, gl/sys_socket.in.h, gl/tests/dummy.c, gl/tests/test-alloca-opt.c, gl/tests/test-errno.c, gl/tests/test-fseeko.c, gl/tests/test-fseeko.sh, gl/tests/test-lseek.c, gl/tests/test-lseek.sh, gl/tests/test-snprintf.c, gl/tests/test-stdbool.c, gl/tests/test-stdint.c, gl/tests/test-stdio.c, gl/tests/test-stdlib.c, gl/tests/test-string.c, gl/tests/test-sys_socket.c, gl/tests/test-unistd.c, gl/tests/test-vasnprintf.c, gl/tests/test-wchar.c, gl/tests/verify.h, gl/unistd.in.h, gl/vasnprintf.c, gl/vasnprintf.h, gl/wchar.in.h, gl/xsize.h: Update gnulib files. 2008-10-30 Simon Josefsson * Makefile.am, configure.in, gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/tests/Makefile.am, lib/configure.ac, libextra/Makefile.am, libextra/configure.ac: More splitting. 2008-10-30 Simon Josefsson * build-aux/config.rpath, lib/gl/Makefile.am, lib/gl/m4/gnulib-cache.m4, lib/gl/m4/gnulib-comp.m4, lib/gl/m4/stdlib_h.m4, lib/gl/m4/sys_ioctl_h.m4, lib/gl/m4/sys_socket_h.m4, lib/gl/stdlib.in.h, lib/gl/sys_socket.in.h, lib/gl/sys_stat.in.h, lib/gl/tests/Makefile.am, lib/gl/unistd.in.h: Update gnulib files. 2008-10-30 Simon Josefsson * Makefile.am, build-aux/config.rpath, configure.in, lgl/Makefile.am, lgl/alloca.in.h, lgl/asnprintf.c, lgl/asprintf.c, lgl/byteswap.in.h, lgl/c-ctype.c, lgl/c-ctype.h, lgl/errno.in.h, lgl/float+.h, lgl/float.in.h, lgl/fseeko.c, lgl/gettext.h, lgl/lseek.c, lgl/m4/alloca.m4, lgl/m4/byteswap.m4, lgl/m4/codeset.m4, lgl/m4/errno_h.m4, lgl/m4/extensions.m4, lgl/m4/float_h.m4, lgl/m4/fseeko.m4, lgl/m4/func.m4, lgl/m4/gettext.m4, lgl/m4/glibc2.m4, lgl/m4/glibc21.m4, lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-common.m4, lgl/m4/gnulib-comp.m4, lgl/m4/gnulib-tool.m4, lgl/m4/iconv.m4, lgl/m4/include_next.m4, lgl/m4/intdiv0.m4, lgl/m4/intl.m4, lgl/m4/intldir.m4, lgl/m4/intlmacosx.m4, lgl/m4/intmax.m4, lgl/m4/intmax_t.m4, lgl/m4/inttypes-pri.m4, lgl/m4/inttypes_h.m4, lgl/m4/lcmessage.m4, lgl/m4/lib-ld.m4, lgl/m4/lib-link.m4, lgl/m4/lib-prefix.m4, lgl/m4/lock.m4, lgl/m4/longlong.m4, lgl/m4/lseek.m4, lgl/m4/malloc.m4, lgl/m4/memchr.m4, lgl/m4/memcmp.m4, lgl/m4/memmem.m4, lgl/m4/memmove.m4, lgl/m4/minmax.m4, lgl/m4/netdb_h.m4, lgl/m4/nls.m4, lgl/m4/po.m4, lgl/m4/printf-posix.m4, lgl/m4/printf.m4, lgl/m4/progtest.m4, lgl/m4/read-file.m4, lgl/m4/realloc.m4, lgl/m4/size_max.m4, lgl/m4/snprintf.m4, lgl/m4/socklen.m4, lgl/m4/sockpfaf.m4, lgl/m4/stdbool.m4, lgl/m4/stdint.m4, lgl/m4/stdint_h.m4, lgl/m4/stdio_h.m4, lgl/m4/stdlib_h.m4, lgl/m4/strcase.m4, lgl/m4/string_h.m4, lgl/m4/strings_h.m4, lgl/m4/strverscmp.m4, lgl/m4/sys_ioctl_h.m4, lgl/m4/sys_socket_h.m4, lgl/m4/sys_stat_h.m4, lgl/m4/threadlib.m4, lgl/m4/time_h.m4, lgl/m4/time_r.m4, lgl/m4/uintmax_t.m4, lgl/m4/unistd_h.m4, lgl/m4/vasnprintf.m4, lgl/m4/vasprintf.m4, lgl/m4/visibility.m4, lgl/m4/wchar.m4, lgl/m4/wchar_t.m4, lgl/m4/wint_t.m4, lgl/m4/xsize.m4, lgl/memchr.c, lgl/memcmp.c, lgl/memmem.c, lgl/memmove.c, lgl/minmax.h, lgl/netdb.in.h, lgl/override/lib/gc-libgcrypt.c.diff, lgl/printf-args.c, lgl/printf-args.h, lgl/printf-parse.c, lgl/printf-parse.h, lgl/read-file.c, lgl/read-file.h, lgl/realloc.c, lgl/size_max.h, lgl/snprintf.c, lgl/stdbool.in.h, lgl/stdint.in.h, lgl/stdio-impl.h, lgl/stdio-write.c, lgl/stdio.in.h, lgl/stdlib.in.h, lgl/str-two-way.h, lgl/strcasecmp.c, lgl/string.in.h, lgl/strings.in.h, lgl/strncasecmp.c, lgl/strverscmp.c, lgl/sys_socket.in.h, lgl/sys_stat.in.h, lgl/tests/Makefile.am, lgl/tests/dummy.c, lgl/tests/intprops.h, lgl/tests/test-alloca-opt.c, lgl/tests/test-byteswap.c, lgl/tests/test-c-ctype.c, lgl/tests/test-errno.c, lgl/tests/test-fseeko.c, lgl/tests/test-fseeko.sh, lgl/tests/test-func.c, lgl/tests/test-lseek.c, lgl/tests/test-lseek.sh, lgl/tests/test-memchr.c, lgl/tests/test-memcmp.c, lgl/tests/test-netdb.c, lgl/tests/test-read-file.c, lgl/tests/test-snprintf.c, lgl/tests/test-stdbool.c, lgl/tests/test-stdint.c, lgl/tests/test-stdio.c, lgl/tests/test-stdlib.c, lgl/tests/test-string.c, lgl/tests/test-strings.c, lgl/tests/test-strverscmp.c, lgl/tests/test-sys_socket.c, lgl/tests/test-sys_stat.c, lgl/tests/test-time.c, lgl/tests/test-unistd.c, lgl/tests/test-vasnprintf.c, lgl/tests/test-vasprintf.c, lgl/tests/test-wchar.c, lgl/tests/verify.h, lgl/time.in.h, lgl/time_r.c, lgl/unistd.in.h, lgl/vasnprintf.c, lgl/vasnprintf.h, lgl/vasprintf.c, lgl/wchar.in.h, lgl/xsize.h, lib/Makefile.am, lib/configure.ac, lib/gl/Makefile.am, lib/gl/alloca.in.h, lib/gl/asnprintf.c, lib/gl/asprintf.c, lib/gl/byteswap.in.h, lib/gl/c-ctype.c, lib/gl/c-ctype.h, lib/gl/errno.in.h, lib/gl/float+.h, lib/gl/float.in.h, lib/gl/fseeko.c, lib/gl/gettext.h, lib/gl/lseek.c, lib/gl/m4/alloca.m4, lib/gl/m4/byteswap.m4, lib/gl/m4/codeset.m4, lib/gl/m4/errno_h.m4, lib/gl/m4/extensions.m4, lib/gl/m4/float_h.m4, lib/gl/m4/fseeko.m4, lib/gl/m4/func.m4, lib/gl/m4/gettext.m4, lib/gl/m4/glibc2.m4, lib/gl/m4/glibc21.m4, lib/gl/m4/gnulib-cache.m4, lib/gl/m4/gnulib-common.m4, lib/gl/m4/gnulib-comp.m4, lib/gl/m4/gnulib-tool.m4, lib/gl/m4/iconv.m4, lib/gl/m4/include_next.m4, lib/gl/m4/intdiv0.m4, lib/gl/m4/intl.m4, lib/gl/m4/intldir.m4, lib/gl/m4/intlmacosx.m4, lib/gl/m4/intmax.m4, lib/gl/m4/intmax_t.m4, lib/gl/m4/inttypes-pri.m4, lib/gl/m4/inttypes_h.m4, lib/gl/m4/lcmessage.m4, lib/gl/m4/lib-ld.m4, lib/gl/m4/lib-link.m4, lib/gl/m4/lib-prefix.m4, lib/gl/m4/lock.m4, lib/gl/m4/longlong.m4, lib/gl/m4/lseek.m4, lib/gl/m4/malloc.m4, lib/gl/m4/memchr.m4, lib/gl/m4/memcmp.m4, lib/gl/m4/memmem.m4, lib/gl/m4/memmove.m4, lib/gl/m4/minmax.m4, lib/gl/m4/netdb_h.m4, lib/gl/m4/nls.m4, lib/gl/m4/po.m4, lib/gl/m4/printf-posix.m4, lib/gl/m4/printf.m4, lib/gl/m4/progtest.m4, lib/gl/m4/read-file.m4, lib/gl/m4/realloc.m4, lib/gl/m4/size_max.m4, lib/gl/m4/snprintf.m4, lib/gl/m4/socklen.m4, lib/gl/m4/sockpfaf.m4, lib/gl/m4/stdbool.m4, lib/gl/m4/stdint.m4, lib/gl/m4/stdint_h.m4, lib/gl/m4/stdio_h.m4, lib/gl/m4/stdlib_h.m4, lib/gl/m4/strcase.m4, lib/gl/m4/string_h.m4, lib/gl/m4/strings_h.m4, lib/gl/m4/strverscmp.m4, lib/gl/m4/sys_ioctl_h.m4, lib/gl/m4/sys_socket_h.m4, lib/gl/m4/sys_stat_h.m4, lib/gl/m4/threadlib.m4, lib/gl/m4/time_h.m4, lib/gl/m4/time_r.m4, lib/gl/m4/uintmax_t.m4, lib/gl/m4/unistd_h.m4, lib/gl/m4/vasnprintf.m4, lib/gl/m4/vasprintf.m4, lib/gl/m4/visibility.m4, lib/gl/m4/wchar.m4, lib/gl/m4/wchar_t.m4, lib/gl/m4/wint_t.m4, lib/gl/m4/xsize.m4, lib/gl/memchr.c, lib/gl/memcmp.c, lib/gl/memmem.c, lib/gl/memmove.c, lib/gl/minmax.h, lib/gl/netdb.in.h, lib/gl/override/lib/gc-libgcrypt.c.diff, lib/gl/printf-args.c, lib/gl/printf-args.h, lib/gl/printf-parse.c, lib/gl/printf-parse.h, lib/gl/read-file.c, lib/gl/read-file.h, lib/gl/realloc.c, lib/gl/size_max.h, lib/gl/snprintf.c, lib/gl/stdbool.in.h, lib/gl/stdint.in.h, lib/gl/stdio-impl.h, lib/gl/stdio-write.c, lib/gl/stdio.in.h, lib/gl/stdlib.in.h, lib/gl/str-two-way.h, lib/gl/strcasecmp.c, lib/gl/string.in.h, lib/gl/strings.in.h, lib/gl/strncasecmp.c, lib/gl/strverscmp.c, lib/gl/sys_socket.in.h, lib/gl/sys_stat.in.h, lib/gl/tests/Makefile.am, lib/gl/tests/dummy.c, lib/gl/tests/intprops.h, lib/gl/tests/test-alloca-opt.c, lib/gl/tests/test-byteswap.c, lib/gl/tests/test-c-ctype.c, lib/gl/tests/test-errno.c, lib/gl/tests/test-fseeko.c, lib/gl/tests/test-fseeko.sh, lib/gl/tests/test-func.c, lib/gl/tests/test-lseek.c, lib/gl/tests/test-lseek.sh, lib/gl/tests/test-memchr.c, lib/gl/tests/test-memcmp.c, lib/gl/tests/test-netdb.c, lib/gl/tests/test-read-file.c, lib/gl/tests/test-snprintf.c, lib/gl/tests/test-stdbool.c, lib/gl/tests/test-stdint.c, lib/gl/tests/test-stdio.c, lib/gl/tests/test-stdlib.c, lib/gl/tests/test-string.c, lib/gl/tests/test-strings.c, lib/gl/tests/test-strverscmp.c, lib/gl/tests/test-sys_socket.c, lib/gl/tests/test-sys_stat.c, lib/gl/tests/test-time.c, lib/gl/tests/test-unistd.c, lib/gl/tests/test-vasnprintf.c, lib/gl/tests/test-vasprintf.c, lib/gl/tests/test-wchar.c, lib/gl/tests/verify.h, lib/gl/time.in.h, lib/gl/time_r.c, lib/gl/unistd.in.h, lib/gl/vasnprintf.c, lib/gl/vasnprintf.h, lib/gl/vasprintf.c, lib/gl/wchar.in.h, lib/gl/xsize.h, libextra/configure.ac: Start configure split. 2008-10-30 Simon Josefsson * NEWS, configure.in, doc/gnutls.texi, lib/Makefile.am, lib/libgnutls-config.in, lib/libgnutls.m4, libextra/.gitignore, libextra/Makefile.am, libextra/libgnutls-extra-config.in, libextra/libgnutls-extra.m4: Remove *-config scripts and old M4 checks. 2008-10-29 Simon Josefsson * cfg.mk, maint.mk: Update gnulib files. 2008-10-28 Simon Josefsson * cfg.mk: Fix coverage rules. 2008-10-28 Simon Josefsson * cfg.mk: Need to build before running checks. 2008-10-28 Simon Josefsson * cfg.mk: Add code coverage rules. 2008-10-23 Simon Josefsson * : commit 3eab289192e97f0bada61ca2c4d51214a4e4f7df Author: Nikos Mavrogiannopoulos Date: Wed Oct 22 22:06:21 2008 +0300 2008-10-22 Nikos Mavrogiannopoulos * : commit 8973cd66b52fda65b4c9ffadab3b9db59a464fb0 Author: Simon Josefsson Date: Wed Oct 22 18:42:41 2008 +0200 2008-10-22 Simon Josefsson * gl/m4/netdb_h.m4, gl/netdb.in.h, lgl/m4/netdb_h.m4, lgl/netdb.in.h, lgl/sys_socket.in.h: Update gnulib files. 2008-10-22 Simon Josefsson * doc/scripts/gdoc: Sync gdoc with libidn for license fixes. 2008-10-22 Simon Josefsson * src/serv.c: Use netdb.h instead of getaddrinfo.h. 2008-10-22 Simon Josefsson * NEWS: Fix. 2008-10-22 Simon Josefsson * gl/arpa_inet.in.h, gl/gai_strerror.c, gl/getaddrinfo.c, gl/getaddrinfo.h, gl/gnulib.mk, gl/m4/getaddrinfo.m4, gl/m4/gnulib-common.m4, gl/m4/gnulib-comp.m4, gl/m4/netdb_h.m4, gl/netdb.in.h, gl/netinet_in.in.h, gl/stdarg.in.h, gl/tests/gnulib.mk, gl/tests/test-getaddrinfo.c, gl/tests/test-netdb.c, lgl/Makefile.am, lgl/errno.in.h, lgl/float.in.h, lgl/m4/gnulib-common.m4, lgl/m4/gnulib-comp.m4, lgl/m4/netdb_h.m4, lgl/m4/stdlib_h.m4, lgl/m4/sys_socket_h.m4, lgl/m4/sys_stat_h.m4, lgl/m4/unistd_h.m4, lgl/netdb.in.h, lgl/stdint.in.h, lgl/stdio.in.h, lgl/stdlib.in.h, lgl/string.in.h, lgl/strings.in.h, lgl/sys_socket.in.h, lgl/sys_stat.in.h, lgl/time.in.h, lgl/unistd.in.h, lgl/wchar.in.h, lgl/winsock.c, libextra/gl/m4/gnulib-common.m4: Update gnulib files. 2008-10-22 Simon Josefsson * NEWS, configure.in: Bump versions. 2008-10-16 Nikos Mavrogiannopoulos * : commit a1c1da1939efe571f427a6323a8bb5311d933061 Author: Simon Josefsson Date: Thu Oct 16 12:21:32 2008 +0200 2008-10-16 Simon Josefsson * NEWS: Version 2.7.0. 2008-10-16 Simon Josefsson * configure.in: Drop netdb.h check. 2008-10-16 Simon Josefsson * lgl/Makefile.am, lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4, lgl/m4/netdb_h.m4, lgl/netdb.in.h, lgl/tests/Makefile.am, lgl/tests/test-netdb.c, src/common.h: Add netdb gnulib module. Use it. 2008-10-16 Simon Josefsson * NEWS: Add. 2008-10-16 Simon Josefsson * NEWS: Add. 2008-10-16 Simon Josefsson * gl/Makefile.am: Upgrade. 2008-10-16 Simon Josefsson * GNUmakefile, gl/getaddrinfo.c, gl/m4/getaddrinfo.m4, lgl/Makefile.am, lgl/m4/gnulib-comp.m4, lgl/m4/stdio_h.m4, lgl/m4/sys_ioctl_h.m4, lgl/m4/sys_socket_h.m4, lgl/m4/unistd_h.m4, lgl/stdio-write.c, lgl/stdio.in.h, lgl/sys_socket.in.h, lgl/unistd.in.h, lgl/winsock.c: Update gnulib files. 2008-10-15 Simon Josefsson * tests/Makefile.am: Need to build libutils.la before recursing into e.g. pkcs12-decode. 2008-10-14 Simon Josefsson * lib/gnutlsxx.cpp: Minimize ABI changes. 2008-10-13 Simon Josefsson * THANKS: Add. 2008-10-13 Simon Josefsson * lib/gnutls_errors.c: Improve GNUTLS_E_AGAIN explanation. Suggested by "Lavrentiev, Anton (NIH/NLM/NCBI) [C]" . 2008-10-12 Simon Josefsson * doc/TODO: Add. 2008-10-11 Nikos Mavrogiannopoulos * .gitignore: added to reduce untracked files. 2008-10-11 Simon Josefsson * NEWS: Add. 2008-10-11 Simon Josefsson * THANKS, libextra/fipsmd5.c: Add static qualifiers on internal symbols. Tiny patch from Aaron Ucko . 2008-10-09 Simon Josefsson * doc/reference/Makefile.am: Sync with upstream. 2008-10-08 Simon Josefsson * lib/gnutls_cert.h, lib/opencdk/armor.c, lib/opencdk/hash.c, lib/opencdk/kbnode.c, lib/opencdk/new-packet.c, lib/opencdk/seskey.c, lib/opencdk/verify.c, lib/x509/x509_int.h, src/cfg/platon/str/strplus.c: Fix syntax-check warnings. 2008-10-08 Simon Josefsson * lib/opencdk/opencdk.h: Indent. 2008-10-08 Simon Josefsson * lib/debug.c, lib/opencdk/seskey.c, lib/opencdk/sig-check.c: Drop gcrypt.h includes. 2008-10-08 Simon Josefsson * NEWS: Mention libgcrypt dependency. 2008-10-08 Simon Josefsson * configure.in, lib/Makefile.am, lib/opencdk/Makefile.am, lib/openpgp/Makefile.am, lib/x509/Makefile.am, libextra/Makefile.am: More libgcrypt fixes. 2008-10-08 Simon Josefsson * configure.in, lib/Makefile.am, src/Makefile.am, tests/Makefile.am: More libgcrypt fixes. 2008-10-08 Simon Josefsson * configure.in, lib/gnutls_global.c, m4/libgcrypt.m4: Modernize libgcrypt detection. 2008-10-08 Simon Josefsson * doc/reference/gnutls-docs.sgml, includes/gnutls/x509.h, lib/x509/crl.c, lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/output.c, lib/x509/x509_write.c: Doc fixes. 2008-10-08 Simon Josefsson * doc/manpages/Makefile.am: Generated. 2008-10-08 Simon Josefsson * NEWS: Sync with real list. 2008-10-08 Simon Josefsson * lib/x509/x509_int.h: Need libtasn1.h here. 2008-10-08 Simon Josefsson * lib/auth_rsa.c, lib/auth_rsa_export.c, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_mpi.h, lib/gnutls_sig.c, lib/gnutls_x509.c, lib/mpi-libgcrypt.c, lib/rnd-libgcrypt.c: Reduce libtasn1.h includes. 2008-10-08 Simon Josefsson * configure.in: Drop obsolete libtasn1 flags. 2008-10-08 Simon Josefsson * lib/Makefile.am, libextra/Makefile.am, src/Makefile.am: Update libtasn1 linker flags. 2008-10-08 Simon Josefsson * GNUmakefile, configure.in, gl/arpa_inet.in.h, gl/c-ctype.h, gl/gnulib.mk, gl/m4/arpa_inet_h.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/inet_ntop.m4, gl/m4/inet_pton.m4, gl/strerror.c, lgl/Makefile.am, lgl/c-ctype.h, lgl/errno.in.h, lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4, lgl/m4/memcmp.m4, lgl/m4/stdio_h.m4, lgl/m4/string_h.m4, lgl/m4/sys_socket_h.m4, lgl/m4/unistd_h.m4, lgl/m4/wchar.m4, lgl/stdio.in.h, lgl/string.in.h, lgl/sys_socket.in.h, lgl/unistd.in.h, libextra/gl/Makefile.am, libextra/gl/m4/gnulib-cache.m4, libextra/gl/md5.c: Update gnulib files. 2008-10-08 Simon Josefsson * configure.in: Remove obsolete stuff. 2008-10-08 Simon Josefsson * lib/auth_cert.c, lib/gnutls_constate.c, lib/gnutls_mpi.c, lib/gnutls_pk.c, lib/opencdk/armor.c, lib/opencdk/hash.c, lib/opencdk/kbnode.c, lib/opencdk/keydb.c, lib/opencdk/pubkey.c, lib/opencdk/stream.c, lib/openpgp/privkey.c, lib/x509/common.c, lib/x509/crl.c, lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/extensions.c, lib/x509/mpi.c, lib/x509/output.c, lib/x509/privkey.c, lib/x509/x509.c, lib/x509/x509_write.c, libextra/fipsmd5.c, libextra/gl/md5.c, src/certtool-cfg.c, src/certtool.c, src/cli.c, src/serv.c: Indent. 2008-10-08 Simon Josefsson * NEWS, configure.in, lib/gnutls_global.c, m4/libtasn1.m4: Detect libtasn1 via AC_LIB_HAVE_LINKFLAGS. 2008-10-07 Simon Josefsson * NEWS: Fix. 2008-10-07 Ludovic Courtès * tests/Makefile.am: More test compilation fixes with minitasn1. * tests/Makefile.am (AM_CPPFLAGS)[ENABLE_MINITASN1]: Add minitasn1 directory. Signed-off-by: Simon Josefsson 2008-10-07 Simon Josefsson * NEWS: Add. 2008-10-07 Ludovic Courtès * tests/pkcs12-decode/Makefile.am: Fix compilation of `pkcs12-decode' test when using minitasn1. * tests/pkcs12-decode/Makefile.am (AM_CPPFLAGS)[ENABLE_MINITASN1]: Add `minitasn1' include directory. Signed-off-by: Simon Josefsson 2008-10-06 Simon Josefsson * THANKS: Add. 2008-10-06 Simon Josefsson * libextra/gnutls_openssl.c: Get issuer dn in X509_get_issuer_name, correct last patch. 2008-10-06 Simon Josefsson * NEWS: Add 2.6.0 entries. 2008-10-05 Simon Josefsson * NEWS, configure.in: Bump versions. 2008-10-05 Simon Josefsson * NEWS: Add. 2008-10-05 Simon Josefsson * libextra/gnutls_openssl.c: Fix out-of-bounds access. Similar to debian #499945 lynx-cur problem. libextra/gnutls_openssl.c: fix X509_get_issuer_name to return issuer name of given certificate and not try to get the subject dn of the issuer certificate wich may or may not exist. (Checked how openssl does this, too.) This fixes a accessing an array outside its bounds. Debian bug #499945 is instructive about the problem. While lynx-cur credits Thomas Dickey for the bug, the code and implications are essentially the same for the gnutls openssl-compat libary. Tiny patch from Thomas Viehmann . 2008-10-04 Nikos Mavrogiannopoulos * src/certtool-cfg.c, src/certtool-cfg.h, src/certtool-common.h, src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: reduced warnings in compilation of certtool. 2008-10-04 Nikos Mavrogiannopoulos * lib/x509/output.c: use union to avoid wrong type issues. 2008-10-04 Nikos Mavrogiannopoulos * lib/x509/output.c: corrected print order. 2008-10-04 Nikos Mavrogiannopoulos * NEWS, doc/certtool.cfg, includes/gnutls/x509.h, lib/gnutls_errors.h, lib/gnutls_handshake.c, lib/x509/common.c, lib/x509/crl.c, lib/x509/crq.c, lib/x509/dn.c, lib/x509/extensions.c, lib/x509/mpi.c, lib/x509/output.c, lib/x509/pkcs12.c, lib/x509/pkcs7.c, lib/x509/x509.c, lib/x509/x509_int.h, lib/x509/x509_write.c, src/certtool-cfg.c, src/certtool-cfg.h, src/certtool.c: Added function to copy extensions from a CRL to a certificate. Reduced many warnings (and added more by defining gnutls_log as printf like function --gcc only) 2008-10-04 Nikos Mavrogiannopoulos * configure.in: Disable certain warnings that do not work with my compiler. 2008-10-04 Nikos Mavrogiannopoulos * NEWS, includes/gnutls/x509.h, lib/x509/crq.c, lib/x509/extensions.c, lib/x509/output.c, src/certtool.c: Added gnutls_x509_crq_set_key_purpose_oid and gnutls_x509_crq_get_key_purpose_oid. 2008-10-04 Nikos Mavrogiannopoulos * NEWS: documentation added functions 2008-10-04 Nikos Mavrogiannopoulos * NEWS: updated 2008-10-04 Nikos Mavrogiannopoulos * lib/x509/crq.c, lib/x509/extensions.c, lib/x509/x509_int.h: set global maximum size for certificate requests' extensions size. 2008-10-04 Nikos Mavrogiannopoulos * src/Makefile.am: added missing file 2008-10-04 Nikos Mavrogiannopoulos * includes/gnutls/x509.h, lib/x509/crl.c, lib/x509/crq.c, lib/x509/extensions.c, lib/x509/mpi.c, lib/x509/output.c, lib/x509/x509.c, lib/x509/x509_int.h, src/certtool-cfg.c, src/certtool-cfg.h, src/certtool-common.h, src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: Added initial support for certificate requests handling of X.509 extensions. Added support to certtool to handle these extensions (add/read) 2008-10-03 Nikos Mavrogiannopoulos * NEWS, doc/certtool.cfg, includes/gnutls/x509.h, lib/x509/crl.c, lib/x509/crl_write.c, lib/x509/extensions.c, lib/x509/output.c, lib/x509/x509_int.h, src/certtool-cfg.c, src/certtool-cfg.h, src/certtool.c: Added functions to handle and set CRL extensions. 2008-10-01 Simon Josefsson * po/nl.po.in, po/vi.po.in: Sync with TP. 2008-10-01 Simon Josefsson * NEWS, configure.in: Bump versions. 2008-09-29 Nikos Mavrogiannopoulos * : commit c357933a30801a82e484bed8fbc4bd5b2b34d5e0 Author: Nikos Mavrogiannopoulos Date: Mon Sep 29 15:08:02 2008 +0300 2008-09-29 Simon Josefsson * ChangeLog: Generated. 2008-09-29 Simon Josefsson * NEWS: Version 2.5.9. 2008-09-29 Simon Josefsson * NEWS: Fix. 2008-09-29 Simon Josefsson * NEWS, configure.in: Document ABI change. 2008-09-29 Simon Josefsson * lib/gnutls_constate.c: Re-add comment about too long function, it is one of the most complex in gnutls. 2008-09-29 Simon Josefsson * configure.in: Need AC_CONFIG_MACRO_DIR for modern libtool. 2008-09-28 Nikos Mavrogiannopoulos * includes/gnutls/crypto.h, lib/gnutls_pk.c, lib/opencdk/pubkey.c, lib/pk-libgcrypt.c, lib/x509/privkey.c, lib/x509/x509_int.h: changed crypto API to reduce probability of memory leaks during usage of pk_params. 2008-09-28 Nikos Mavrogiannopoulos * : commit 699aa57dacc6446e92c123e93bba1f894067893e Author: Nikos Mavrogiannopoulos Date: Sun Sep 28 03:34:59 2008 +0300 2008-09-28 Nikos Mavrogiannopoulos * NEWS: Revert "fixed" This reverts commit 14647811d21d3eda2d5bd82557329bcf7778f31b. 2008-09-28 Nikos Mavrogiannopoulos * NEWS: fixed 2008-09-28 Nikos Mavrogiannopoulos * lib/gnutls_algorithms.c, lib/gnutls_constate.c, lib/gnutls_int.h: avoid using malloc for small buffers. 2008-09-28 Nikos Mavrogiannopoulos * lib/gnutls_mpi.c: optimized in order to avoid calling malloc for small buffers. 2008-09-27 Nikos Mavrogiannopoulos * lib/gnutls_constate.c, lib/gnutls_mpi.c: Revert "Revert C99 uses. Fixes gnutls_mpi.c mem leak, but not others." This reverts commit bdfa289133b15ad7d92eb3151ce86cca4c879426. 2008-09-25 Simon Josefsson * tests/pathlen/Makefile.am, tests/pathlen/pathlen: Use EXEEXT in self-test scripts. 2008-09-25 Simon Josefsson * NEWS, tests/key-id/Makefile.am, tests/key-id/key-id, tests/pkcs1-padding/Makefile.am, tests/pkcs1-padding/pkcs1-pad, tests/rsa-md5-collision/Makefile.am, tests/rsa-md5-collision/rsa-md5-collision, tests/sha2/Makefile.am, tests/sha2/sha2, tests/userid/Makefile.am, tests/userid/userid: Use EXEEXT in self-test scripts. 2008-09-25 Simon Josefsson * NEWS: Add. 2008-09-25 Simon Josefsson * lgl/vasnprintf.c: Update gnulib files. 2008-09-25 Simon Josefsson * NEWS, THANKS: Add. 2008-09-25 Simon Josefsson * lib/gnutls_constate.c, lib/gnutls_mpi.c: Revert C99 uses. Fixes gnutls_mpi.c mem leak, but not others. 2008-09-24 Simon Josefsson * NEWS: Add. 2008-09-24 Simon Josefsson * NEWS: Add. 2008-09-24 Simon Josefsson * NEWS, configure.in: Bump versions. 2008-09-23 Nikos Mavrogiannopoulos * lib/x509/x509.c: Corrected buffer overrun in crt_list_import. Reported and patch by Jonathan Manktelow. 2008-09-23 Nikos Mavrogiannopoulos * README: corrected libgcrypt site. 2008-09-23 Nikos Mavrogiannopoulos * lib/x509/privkey.c: corrected embarrasing bug. 2008-09-23 Nikos Mavrogiannopoulos * lib/auth_cert.c, lib/gnutls_constate.c, lib/gnutls_mpi.c, lib/pk-libgcrypt.c, lib/x509/common.c, lib/x509/dn.c: Corrected several memory leaks reported by Sam. In some cases switched to C99 to avoid having complex code. 2008-09-23 Simon Josefsson * lib/openpgp/extras.c: Doc fix. 2008-09-23 Simon Josefsson * lib/x509/crl_write.c, lib/x509/x509_write.c: Doc fix. 2008-09-23 Simon Josefsson * configure.in, doc/reference/Makefile.am: Use automake warnings. 2008-09-23 Simon Josefsson * cfg.mk: Typo. 2008-09-23 Simon Josefsson * cfg.mk: Fix mingw32 rules. 2008-09-23 Simon Josefsson * cfg.mk, doc/Makefile.am, doc/texinfo.css: Use a stylesheet for texinfo HTML manual. 2008-09-21 Nikos Mavrogiannopoulos * lib/x509/privkey.c: fixed memory leak in reencoding of RSA and DSA private keys. Reported and studied by Sam Varshavchik 2008-09-21 Nikos Mavrogiannopoulos * lib/x509/x509_write.c: documented the way set_subject_alt_name() can set value. 2008-09-21 Simon Josefsson * ChangeLog: Generated. 2008-09-21 Simon Josefsson * NEWS: Version 2.5.8. 2008-09-21 Simon Josefsson * po/fr.po.in, po/pl.po.in, po/sv.po.in: Sync with TP. 2008-09-21 Simon Josefsson * libextra/Makefile.am: Use srcdir for -Igl/. 2008-09-21 Simon Josefsson * Makefile.am: Don't use CFLAGS with distcheck, causes errors in ./configure tests. 2008-09-21 Simon Josefsson * src/certtool.c: Fix warnings. 2008-09-21 Simon Josefsson * src/Makefile.am, src/certtool.c, src/serv.c: Use internal md5 if libgcrypt is in FIPS mode. 2008-09-21 Simon Josefsson * src/cli.c: Initialize libgnutls-extra too. 2008-09-21 Simon Josefsson * includes/gnutls/extra.h: Add prototype for gnutls_register_md5_handler. 2008-09-21 Simon Josefsson * libextra/fipsmd5.c: Add Since: tag. 2008-09-21 Simon Josefsson * lib/x509/x509_write.c: Doc fixes. 2008-09-21 Simon Josefsson * Makefile.am: Need -I for aclocal. 2008-09-21 Simon Josefsson * lgl/Makefile.am, lgl/m4/wchar.m4, lgl/tests/test-wchar.c, lgl/wchar.in.h: Add. 2008-09-21 Simon Josefsson * configure.in, libextra/Makefile.am, src/Makefile.am, src/cli.c: Fix libextra build. Make gnutls-cli work in libgcrypt FIPS mode. 2008-09-21 Simon Josefsson * libextra/Makefile.am: Fix typo. 2008-09-21 Simon Josefsson * NEWS: Add. 2008-09-21 Simon Josefsson * doc/manpages/Makefile.am: Generated. 2008-09-21 Simon Josefsson * doc/gnutls.texi: Fix markup. 2008-09-21 Simon Josefsson * libextra/Makefile.am: Add -I for hmac.h, md5.h. 2008-09-21 Nikos Mavrogiannopoulos * src/certtool.c: deinitialize structures after use. 2008-09-21 Nikos Mavrogiannopoulos * lib/gnutls_pk.c: Corrected memory leak. Reported by Sam Varshavchik. 2008-09-21 Nikos Mavrogiannopoulos * includes/gnutls/x509.h: added missing headers. 2008-09-21 Nikos Mavrogiannopoulos * lib/gnutls_pk.c, lib/x509/privkey.c: Corrected several bugs in DSA DER key importing. Reported and debugged by Sam Varshavchik. 2008-09-20 Nikos Mavrogiannopoulos * lib/opencdk/armor.c, lib/opencdk/hash.c, lib/opencdk/kbnode.c, lib/opencdk/keydb.c, lib/opencdk/stream.c: added gnutls_assert() to assist debugging. 2008-09-20 Nikos Mavrogiannopoulos * lib/openpgp/privkey.c: properly report the error line. 2008-09-20 Nikos Mavrogiannopoulos * NEWS, doc/gnutls.texi, lib/x509/extensions.c, lib/x509/output.c, lib/x509/x509_int.h, lib/x509/x509_write.c, src/certtool-cfg.c, src/certtool-cfg.h, src/certtool.c: output.c: Can properly print IP addresses in certificates. x509_write.c: added gnutls_x509_crt_set_subject_alt_name added that can add multiple subject alternative names. certtool: use the new function to be able to add several names. 2008-09-19 Simon Josefsson * configure.in: Bump versions. 2008-09-19 Simon Josefsson * NEWS, libextra/Makefile.am, libextra/fipsmd5.c: Add gnutls_register_md5_handler. 2008-09-19 Simon Josefsson * gl/gnulib.mk, gl/m4/gnulib-comp.m4, gl/m4/strdup.m4, gl/strdup.c, lgl/vasnprintf.c: Update gnulib files. 2008-09-19 Simon Josefsson * configure.in, libextra/gl/Makefile.am, libextra/gl/hmac-md5.c, libextra/gl/hmac.h, libextra/gl/m4/gnulib-cache.m4, libextra/gl/m4/gnulib-common.m4, libextra/gl/m4/gnulib-comp.m4, libextra/gl/m4/gnulib-tool.m4, libextra/gl/m4/hmac-md5.m4, libextra/gl/m4/md5.m4, libextra/gl/m4/memxor.m4, libextra/gl/md5.c, libextra/gl/md5.h, libextra/gl/memxor.c, libextra/gl/memxor.h: Add md5 and hmac from gnulib to libextra/gl/. 2008-09-19 Simon Josefsson * NEWS: Add. 2008-09-19 Simon Josefsson * lib/gnutls_hash_int.c: Make _gnutls_hash_copy work with registered hashes. 2008-09-19 Simon Josefsson * THANKS, lib/gnutls_compress.c, lib/gnutls_compress.h, libextra/gnutls_extra.c: Make LZO compression support build. Tiny patch from Arfrever Frehtes Taifersar Arahesis . 2008-09-17 Simon Josefsson * doc/reference/Makefile.am, lib/Makefile.am, lib/defines.h, lib/gnutls_errors.h, lib/gnutls_int.h: Merge defines.h into gnutls_int.h. 2008-09-17 Simon Josefsson * lib/gnutls_buffer.h: Remove, unused. 2008-09-17 Simon Josefsson * lib/auth_cert.c, lib/gnutls_x509.c: Fix overflows in gnutls_calloc calls. 2008-09-17 Simon Josefsson * libextra/openssl_compat.c: Fix last commit. 2008-09-17 Simon Josefsson * NEWS, lib/auth_cert.c, lib/gnutls_cert.c, lib/gnutls_session_pack.c, libextra/openssl_compat.c: Fix overflows in gnutls_calloc calls. 2008-09-17 Simon Josefsson * NEWS, lib/gnutls_mem.c: libgnutls: Check for overflows in gnutls_calloc and gnutls_secure_calloc. Reported by Werner Koch . 2008-09-17 Simon Josefsson * doc/manpages/Makefile.am: Generated. 2008-09-17 Simon Josefsson * NEWS, THANKS, lib/auth_srp.c, lib/gnutls_int.h, lib/gnutls_srp.c: libgnutls: New function to set minimum acceptable SRP bits. The function is gnutls_srp_set_prime_bits. Tiny patch by Kevin Quick in . 2008-09-17 Simon Josefsson * doc/manpages/gnutls-cli.1: Fix markup, tiny patch from Sam Varshavchik . 2008-09-16 Simon Josefsson * NEWS, lib/auth_cert.c, lib/auth_rsa.c, lib/ext_cert_type.c, lib/ext_max_record.c, lib/ext_oprfi.c, lib/ext_server_name.c, lib/gnutls_algorithms.c, lib/gnutls_auth.c, lib/gnutls_buffers.c, lib/gnutls_cert.c, lib/gnutls_cipher.c, lib/gnutls_compress.c, lib/gnutls_constate.c, lib/gnutls_extensions.c, lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_kx.c, lib/gnutls_pk.c, lib/gnutls_record.c, lib/gnutls_session_pack.c, lib/gnutls_sig.c, lib/gnutls_state.c, lib/gnutls_v2_compat.c, lib/gnutls_x509.c, lib/mac-libgcrypt.c, lib/minitasn1/structure.c, lib/opencdk/armor.c, lib/opencdk/read-packet.c, lib/openpgp/pgp.c, lib/x509/common.c, lib/x509/crq.c, lib/x509/pkcs12.c, lib/x509/privkey.c, libextra/gnutls_ia.c, src/printlist.c, src/serv.c, tests/finished.c, tests/openssl.c, tests/pgps2kgnu.c, tests/pkcs12-decode/pkcs12_s2k.c, tests/simple.c: Indent. 2008-09-16 Simon Josefsson * NEWS, configure.in: Bump versions. 2008-09-16 Simon Josefsson * ChangeLog: Generated. 2008-09-16 Simon Josefsson * NEWS: Version 2.5.7. 2008-09-16 Simon Josefsson * includes/gnutls/gnutls.h.in: Fix warning about trailing comma. 2008-09-16 Simon Josefsson * doc/gnutls.texi: Fix math markup. 2008-09-16 Simon Josefsson * src/printlist.c: Fix. 2008-09-16 Simon Josefsson * doc/Makefile.am, doc/gnutls.texi, src/printlist.c: Fix. 2008-09-16 Simon Josefsson * NEWS: Add. 2008-09-16 Simon Josefsson * doc/reference/gnutls-docs.sgml: Document crypto.h stuff. 2008-09-16 Simon Josefsson * doc/reference/gnutls-docs.sgml: Add list of new symbols in 2.6.x. 2008-09-16 Simon Josefsson * doc/manpages/Makefile.am: Generated. 2008-09-16 Simon Josefsson * includes/gnutls/crypto.h: Indent. 2008-09-16 Simon Josefsson * includes/gnutls/gnutls.h.in: Don't use extern on functions, for consistency. 2008-09-16 Simon Josefsson * NEWS: Mention new functions. 2008-09-16 Simon Josefsson * NEWS, doc/manpages/Makefile.am, includes/gnutls/gnutls.h.in, lib/gnutls_algorithms.c, src/printlist.c: Add interfaces to get PK and PK-sign algorithms. Use them. 2008-09-16 Simon Josefsson * NEWS: Credit. 2008-09-16 Simon Josefsson * tests/Makefile.am: Don't run pgps2kgnu self test when openpgp is disable. 2008-09-16 Simon Josefsson * NEWS: Merge in 2.4.2 news entries. 2008-09-16 Simon Josefsson * lib/opencdk/main.c, lib/opencdk/opencdk.h: Remove cdk_strerror, unused and uses non-thread safe strerror. 2008-09-16 Simon Josefsson * tests/openpgpself.c, tests/x509dn.c, tests/x509self.c: Fix warnings. 2008-09-16 Simon Josefsson * tests/crypto_rng.c: Fix warnings. 2008-09-16 Simon Josefsson * tests/parse_ca.c: Fix warning. 2008-09-16 Simon Josefsson * cfg.mk: Split release target. 2008-09-16 Simon Josefsson * gl/gnulib.mk, gl/m4/eoverflow.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/strerror.m4, gl/strerror.c, gl/tests/gnulib.mk, gl/tests/test-EOVERFLOW.c, gl/tests/test-strerror.c, lgl/Makefile.am, lgl/errno.in.h, lgl/m4/eoverflow.m4, lgl/m4/errno_h.m4, lgl/m4/gnulib-comp.m4, lgl/m4/stdio_h.m4, lgl/stdio.in.h, lgl/sys_socket.in.h, lgl/tests/Makefile.am, lgl/tests/test-EOVERFLOW.c, lgl/tests/test-errno.c, lgl/tests/test-memchr.c: Update gnulib files. 2008-09-15 Simon Josefsson * NEWS: Add. 2008-09-15 Simon Josefsson * tests/Makefile.am, tests/setcredcrash.c: Self-test regression of gnutls_credentials_set. 2008-09-15 Nikos Mavrogiannopoulos * lib/gnutls_auth.c: removed unnesessary and dangerous free from credentials_set(). 2008-09-14 Nikos Mavrogiannopoulos * lib/auth_cert.c: added some pedantic error checking. 2008-09-09 Simon Josefsson * src/certtool-gaa.c, src/cli-gaa.c, src/crypt-gaa.c, src/psk-gaa.c, src/serv-gaa.c, src/tls_test-gaa.c: Regenerate using patched gaa. 2008-09-09 Simon Josefsson * Makefile.am: Test release with -Werror to avoid regressions. 2008-09-09 Simon Josefsson * libextra/openssl_compat.c: Remove unused code. 2008-09-09 Simon Josefsson * lib/mac-libgcrypt.c: Fix warning. 2008-09-09 Simon Josefsson * lib/opencdk/new-packet.c: Fix warning. 2008-09-09 Simon Josefsson * lib/opencdk/opencdk.h: (CDK_KEY_USG_ENCR, CDK_KEY_USG_SIGN): Protect | op. 2008-09-09 Simon Josefsson * lib/cipher-libgcrypt.c: Fix warnings. 2008-09-09 Simon Josefsson * lib/mac-libgcrypt.c: Fix warnings. 2008-09-09 Simon Josefsson * lib/mpi-libgcrypt.c: Fix warnings. 2008-09-09 Simon Josefsson * NEWS: Add. 2008-09-09 Simon Josefsson * doc/gnutls.texi: Add initialization section. Update thread initialization discussion. 2008-09-09 Simon Josefsson * tests/openssl.c: Need to initialize gnutls to avoid crash. 2008-09-08 Simon Josefsson * cfg.mk: Drop redundant. 2008-09-08 Simon Josefsson * NEWS: Add. 2008-09-08 Simon Josefsson * NEWS, configure.in: Bump versions. 2008-09-08 Simon Josefsson * configure.in: Remove foo.def after testing --output-def. 2008-09-08 Simon Josefsson * ChangeLog: Generated. 2008-09-08 Simon Josefsson * NEWS: Version 2.5.6. 2008-09-08 Simon Josefsson * build-aux/config.rpath, gl/m4/include_next.m4, lgl/m4/include_next.m4: Update gnulib files. 2008-09-03 Simon Josefsson * doc/examples/ex-alert.c, doc/examples/ex-cert-select.c, doc/examples/ex-client-psk.c, doc/examples/ex-client-resume.c, doc/examples/ex-client-srp.c, doc/examples/ex-client-tlsia.c, doc/examples/ex-client1.c, doc/examples/ex-client2.c, doc/examples/ex-crq.c, doc/examples/ex-cxx.cpp, doc/examples/ex-pkcs12.c, doc/examples/ex-rfc2818.c, doc/examples/ex-serv-anon.c, doc/examples/ex-serv-export.c, doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-psk.c, doc/examples/ex-serv-srp.c, doc/examples/ex-serv1.c, doc/examples/ex-session-info.c, doc/examples/ex-verify.c, doc/examples/ex-x509-info.c, doc/examples/tcp.c, lib/defines.h, lib/gnutls_asn1_tab.c, lib/openpgp/openpgp_int.h, lib/pkix_asn1_tab.c, src/errcodes.c, tests/anonself.c, tests/certificate_set_x509_crl.c, tests/dhepskself.c, tests/finished.c, tests/hostname-check/hostname-check.c, tests/mini.c, tests/moredn.c, tests/netconf-psk.c, tests/openpgpself.c, tests/oprfi.c, tests/pgps2kgnu.c, tests/pskself.c, tests/resume.c, tests/tlsia.c, tests/x509dn.c, tests/x509self.c, tests/x509signself.c: Use #ifdef for checking HAVE_CONFIG_H for consistency. 2008-09-02 Simon Josefsson * po/POTFILES.in: Mark gnutls_alert for translation. 2008-09-02 Simon Josefsson * po/ms.po.in: Sync with TP. 2008-09-02 Simon Josefsson * lgl/vasnprintf.c: Update gnulib files. 2008-09-02 Simon Josefsson * NEWS: Add. 2008-09-02 Simon Josefsson * NEWS: Add. 2008-09-02 Simon Josefsson * THANKS: Add. 2008-09-02 Simon Josefsson * lib/gnutls_cipher_int.c: Don't return from a void function. Reported by Dave Uhring . 2008-09-01 Daniel Kahn Gillmor * tests/Makefile.am, tests/pgps2kgnu.c: added pgps2kgnu test for GNU extensions to OpenPGP String-to-Key (S2K) conventions. 2008-09-01 Simon Josefsson * src/tls_test.c: Use gnulib for --version. 2008-09-01 Simon Josefsson * src/crypt.c: Use gnulib more. Remove code. 2008-09-01 Simon Josefsson * src/crypt.c, src/psk.c: Use gnulib for --version. 2008-09-01 Simon Josefsson * src/cli-gaa.c, src/cli-gaa.h, src/serv-gaa.c, src/serv-gaa.h: Generated. 2008-09-01 Simon Josefsson * doc/gnutls.texi, doc/manpages/certtool.1, doc/manpages/gnutls-cli.1, doc/manpages/gnutls-serv.1: Drop --copyright from documentation. 2008-09-01 Simon Josefsson * NEWS, src/cli.gaa, src/common.c, src/serv.c, src/serv.gaa: Drop --copyright. 2008-09-01 Simon Josefsson * src/serv.c: Use gnulib for --version. 2008-09-01 Simon Josefsson * src/cli.c: Use gnulib for --version. 2008-09-01 Simon Josefsson * src/certtool.c: Only print libgnutls version in --version if it is different. 2008-09-01 Simon Josefsson * NEWS: Add. 2008-09-01 Simon Josefsson * doc/reference/Makefile.am, lib/Makefile.am, lib/gnutls_int.h, lib/gnutls_str.h: Remove gnutls_buffer.h, move definitions to gnutls_str.h. 2008-09-01 Simon Josefsson * lib/gnutls_alert.c: Translate error messages. Cleanup code. 2008-09-01 Simon Josefsson * lib/gnutls_compress.c, lib/gnutls_compress.h: Remove unused stuff. 2008-09-01 Simon Josefsson * doc/manpages/Makefile.am: Generated. 2008-09-01 Simon Josefsson * NEWS: Add. 2008-09-01 Simon Josefsson * tests/simple.c: Test sign algos. 2008-09-01 Simon Josefsson * src/common.c: Print pk and sign algos. 2008-09-01 Simon Josefsson * lib/gnutls_algorithms.c: Typo. 2008-09-01 Simon Josefsson * NEWS: Add. 2008-09-01 Simon Josefsson * NEWS, includes/gnutls/gnutls.h.in, lib/gnutls_algorithms.c: Add gnutls_sign_list and gnutls_sign_get_id. Suggested by Sam Varshavchik . 2008-09-01 Simon Josefsson * lib/gnutls_algorithms.h, lib/gnutls_compress.h: Move declarations. 2008-09-01 Simon Josefsson * doc/reference/Makefile.am, lib/Makefile.am, lib/gnutls_compress.c, lib/gnutls_compress.h, lib/gnutls_compress_int.c, lib/gnutls_compress_int.h, lib/gnutls_int.h: Merge gnutls_compress_int.? with gnutls_compress.?. 2008-09-01 Simon Josefsson * doc/reference/Makefile.am, lib/Makefile.am, lib/auth_anon.c, lib/auth_cert.c, lib/auth_dh_common.c, lib/auth_dhe.c, lib/auth_dhe_psk.c, lib/auth_psk.c, lib/auth_psk_passwd.c, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/auth_srp.c, lib/auth_srp_passwd.c, lib/auth_srp_rsa.c, lib/ext_server_name.c, lib/ext_srp.c, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_auth.h, lib/gnutls_auth_int.h, lib/gnutls_cert.c, lib/gnutls_handshake.c, lib/gnutls_record.c, lib/gnutls_session_pack.c, lib/gnutls_state.c, lib/gnutls_state.h, lib/gnutls_ui.c, lib/gnutls_v2_compat.c, lib/gnutls_x509.c, libextra/ext_inner_application.c: Move definitions in gnutls_auth_int.h to gnutls_auth.h and update callers. 2008-09-01 Simon Josefsson * lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_compress.c: Move compression functions to gnutls_compress.c to make gnutls_algorithms.c more readable. 2008-09-01 Simon Josefsson * lib/gnutls_algorithms.c: Fix warning. 2008-09-01 Simon Josefsson * doc/manpages/Makefile.am: Generated. 2008-09-01 Simon Josefsson * lib/gnutls_algorithms.c: Doc fix. 2008-09-01 Simon Josefsson * tests/simple.c: Add more tests. 2008-09-01 Simon Josefsson * lib/gnutls_algorithms.c: Fix typo. 2008-09-01 Simon Josefsson * NEWS, includes/gnutls/gnutls.h.in, lib/gnutls_algorithms.c: Add gnutls_pk_list and gnutls_pk_get_id. Suggested by Sam Varshavchik . 2008-09-01 Simon Josefsson * gl/arpa_inet.in.h, gl/gnulib.mk, gl/m4/include_next.m4, gl/m4/lib-link.m4, gl/m4/lib-prefix.m4, gl/netinet_in.in.h, gl/stdarg.in.h, lgl/Makefile.am, lgl/float.in.h, lgl/m4/include_next.m4, lgl/m4/lib-link.m4, lgl/m4/lib-prefix.m4, lgl/stdint.in.h, lgl/stdio.in.h, lgl/stdlib.in.h, lgl/string.in.h, lgl/strings.in.h, lgl/sys_socket.in.h, lgl/sys_stat.in.h, lgl/time.in.h, lgl/unistd.in.h, lgl/wchar.in.h: Update gnulib files. 2008-09-01 Simon Josefsson * lib/minitasn1/Makefile.am, lib/openpgp/Makefile.am: Fixes. 2008-09-01 Simon Josefsson * doc/gnutls.texi: Fix license and libgnutls-extra stuff. 2008-08-31 Nikos Mavrogiannopoulos * : commit 765c079be0195f0f7fbefccf8b6a8910015042a6 Author: Nikos Mavrogiannopoulos Date: Sun Aug 31 13:33:52 2008 +0300 2008-08-29 Simon Josefsson * lib/Makefile.am, lib/gnutls_openpgp.c, lib/openpgp/Makefile.am, lib/openpgp/gnutls_openpgp.c: Move gnutls_openpgp.c to lib/openpgp/. 2008-08-29 Simon Josefsson * lib/gnutls_errors.c: Add Since: tag for gtk-doc. 2008-08-29 Simon Josefsson * NEWS, configure.in: Bump versions. 2008-08-29 Simon Josefsson * cfg.mk: Fix release target. 2008-08-29 Simon Josefsson * NEWS: Version 2.5.5. 2008-08-29 Simon Josefsson * ChangeLog: Generated. 2008-08-29 Simon Josefsson * .clcopying: Update copyright years. 2008-08-29 Simon Josefsson * Makefile.am, cfg.mk: Split up release targets. 2008-08-29 Simon Josefsson * NEWS, lib/minitasn1/element.c, lib/minitasn1/libtasn1.h, lib/minitasn1/structure.c: Use libtasn1 1.5. 2008-08-29 Simon Josefsson * lib/gnutls_str.c: Include stdarg.h for va_start etc. 2008-08-29 Simon Josefsson * lib/gnutls_anon_cred.c: Fix dummy cred. 2008-08-29 Simon Josefsson * configure.in: Bump libtool version because of new API. 2008-08-29 Simon Josefsson * doc/examples/ex-client-tlsia.c, doc/examples/ex-serv-anon.c, doc/examples/ex-serv-export.c, doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-psk.c, doc/examples/ex-serv-srp.c, doc/examples/ex-serv1.c, lib/gnutls_anon_cred.c, lib/gnutls_buffers.c, lib/opencdk/keydb.c, libextra/openssl_compat.c, libextra/openssl_compat.h, src/certtool-cfg.c, src/certtool.c, src/cli.c, src/common.c, src/crypt.c, src/prime.c, src/printlist.c, src/serv.c, src/tests.c, src/tls_test.c: Fix warnings. 2008-08-29 Simon Josefsson * configure.in: Fix description of --enable-developer-mode. Right now all it does is to enable compiler warnings. 2008-08-29 Simon Josefsson * NEWS, lib/auth_cert.c, lib/auth_srp_passwd.h, lib/auth_srp_sb64.c, lib/gnutls_constate.c, lib/gnutls_global.c, lib/gnutls_helper.c, lib/gnutls_int.h, lib/gnutls_srp.c, lib/gnutls_supplemental.c, lib/gnutls_x509.c, lib/mac-libgcrypt.c, lib/mpi-libgcrypt.c, lib/opencdk/armor.c, lib/opencdk/hash.c, lib/opencdk/keydb.c, lib/opencdk/literal.c, lib/opencdk/main.h, lib/opencdk/opencdk.h, lib/opencdk/stream.c, lib/openpgp/extras.c, lib/pk-libgcrypt.c, libextra/gnutls_ia.c: Fix warnings. 2008-08-29 Simon Josefsson * doc/manpages/Makefile.am: Generated. 2008-08-29 Simon Josefsson * lib/gnutls_errors.c: Translate unknown error code message. 2008-08-29 Simon Josefsson * lib/gnutls_errors.c: Don't translate symbol names. 2008-08-29 Simon Josefsson * lib/gnutls_errors.c: Fix warning about defining variable inside functions. 2008-08-29 Simon Josefsson * NEWS, includes/gnutls/gnutls.h.in, lib/gnutls_errors.c, src/errcodes.c: Add gnutls_strerror_name. 2008-08-29 Simon Josefsson * lib/gnutls_extensions.c: Re-add, but mark static. 2008-08-29 Simon Josefsson * GNUmakefile, gl/getdelim.c, gl/m4/getdelim.m4, maint.mk: Update gnulib files. 2008-08-29 Simon Josefsson * NEWS, lib/opencdk/Makefile.am, lib/x509/Makefile.am: Fix libtasn1 include paths. 2008-08-28 Nikos Mavrogiannopoulos * lib/opencdk/read-packet.c: avoid using gcrypt function. 2008-08-28 Simon Josefsson * configure.in, lib/auth_rsa.c, lib/debug.c, lib/gnutls_cert.c, lib/gnutls_dh.c, lib/gnutls_errors.c, lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_v2_compat.c: Fix warnings. 2008-08-28 Simon Josefsson * lib/x509/common.c: Simplify logic. 2008-08-28 Simon Josefsson * lib/x509/dn.c: Remove dead code. 2008-08-28 Simon Josefsson * lib/openpgp/Makefile.am: Don't include missing -I's. 2008-08-28 Simon Josefsson * configure.in: Drop warning. 2008-08-28 Simon Josefsson * lib/x509/Makefile.am: Drop removed libextra directories from -I's. 2008-08-28 Simon Josefsson * configure.in: Enable all kind of warnings. If you remove some, add a comment on why. 2008-08-28 Simon Josefsson * lib/openpgp/pgp.c, lib/x509/pbkdf2-sha1.c: Fix warnings. 2008-08-28 Simon Josefsson * configure.in: Tweak warnings. 2008-08-28 Simon Josefsson * includes/gnutls/x509.h, lib/x509/common.c, lib/x509/common.h, lib/x509/dn.c: Fix warnings. 2008-08-28 Simon Josefsson * lib/x509/common.c, lib/x509/common.h: Fix warnings. 2008-08-28 Simon Josefsson * lib/auth_srp.c, lib/rnd-libgcrypt.c: Fix warnings. 2008-08-28 Simon Josefsson * lib/gnutls_num.h: Protect against double inclusion. 2008-08-28 Simon Josefsson * lib/crypto.h: Protect against double inclusions. 2008-08-28 Simon Josefsson * lgl/Makefile.am, lgl/byteswap.in.h, lgl/m4/byteswap.m4, lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4, lgl/tests/Makefile.am, lgl/tests/test-byteswap.c, lib/gnutls_num.c, lib/gnutls_num.h: Use byteswap from gnulib. 2008-08-28 Simon Josefsson * lib/auth_srp.h, lib/gnutls_global.c: Fix warnings. 2008-08-28 Simon Josefsson * lib/gnutls_auth_int.h: Protect against double inclusion. 2008-08-28 Simon Josefsson * lib/gnutls_errors.h: Protect against double inclusion. 2008-08-28 Simon Josefsson * lib/gnutls_buffers.h, lib/gnutls_record.h, lib/gnutls_state.h: Fix warnings. 2008-08-28 Simon Josefsson * lib/gnutls_algorithms.h, lib/gnutls_pk.h, lib/gnutls_x509.h, lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, lib/x509/verify.c: Fix warnings. 2008-08-28 Simon Josefsson * configure.in: Add warning. 2008-08-28 Simon Josefsson * configure.in: Check whether warning flags are supported before using them. 2008-08-28 Simon Josefsson * doc/examples/Makefile.am, lib/gnutls_x509.c, lib/x509/output.c: Make disable-extra-pki work better. 2008-08-28 Simon Josefsson * configure.in: Fix --disable-extra-pki flag. 2008-08-28 Simon Josefsson * NEWS, lib/gnutls_x509.c, lib/gnutls_x509.h, tests/Makefile.am, tests/set_pkcs7_cred.c: Remove code to import PKCS#7 certificate chains. The code hasn't worked since GnuTLS v0.9.0. Reported by Christian Grothoff . 2008-08-27 Simon Josefsson * lib/gnutls_handshake.c: Cast datasize to long to match %ld printf format. 2008-08-26 Simon Josefsson * tests/set_pkcs7_cred.c: Fix. 2008-08-26 Simon Josefsson * tests/set_pkcs7_cred.c: Use utils infrastructure. 2008-08-26 Simon Josefsson * tests/Makefile.am, tests/set_pkcs7_cred.c: Add set_pkcs7_cred self test. 2008-08-26 Daniel Kahn Gillmor * : commit 06ee30f6e553d4739ca50ab84492179da64cfc3e Author: Daniel Kahn Gillmor Date: Tue Aug 26 11:00:27 2008 -0400 2008-08-26 Simon Josefsson * lib/gnutls_global.c, libextra/gnutls_extra.c: Fix gnulib calls. 2008-08-26 Simon Josefsson * THANKS: Add. 2008-08-26 Simon Josefsson * NEWS: Add. 2008-08-26 Simon Josefsson * NEWS: Add. 2008-08-26 Simon Josefsson * NEWS: Add. 2008-08-26 Simon Josefsson * NEWS: Add. 2008-08-26 Simon Josefsson * gl/m4/autobuild.m4, lgl/Makefile.am, lgl/m4/gnulib-comp.m4, lgl/m4/string_h.m4, lgl/m4/strverscmp.m4, lgl/m4/threadlib.m4, lgl/string.in.h, lgl/strverscmp.h, lgl/tests/Makefile.am, lgl/tests/test-strverscmp.c: Update gnulib files. 2008-08-25 Nikos Mavrogiannopoulos * lib/gnutls_pk.c, lib/pk-libgcrypt.c, lib/x509/privkey.c: corrected private key generation 2008-08-25 Nikos Mavrogiannopoulos * : commit 976565830d853f981ecd749bdb15dd02133ed93b Author: Nikos Mavrogiannopoulos Date: Mon Aug 25 19:50:07 2008 +0300 2008-08-25 Nikos Mavrogiannopoulos * lib/x509/output.c: removed code that incorrectly printed IP addresses. 2008-08-23 Simon Josefsson * NEWS: Add. 2008-08-23 Simon Josefsson * po/LINGUAS, po/fr.po.in, po/nl.po.in: Sync with TP. 2008-08-20 Simon Josefsson * NEWS: Add. 2008-08-19 Simon Josefsson * NEWS, configure.in: Bump versions. 2008-08-19 Nikos Mavrogiannopoulos * lib/opencdk/opencdk.h, lib/opencdk/read-packet.c: patch by Daniel Kahn Gillmor, to enable parsing (but not decrypting) of locked secret keys (including the "gnu-dummy" S2K option). 2008-08-19 Simon Josefsson * ChangeLog: Generated. 2008-08-19 Simon Josefsson * NEWS: Version 2.5.4. 2008-08-18 Simon Josefsson * gl/m4/autobuild.m4, lgl/m4/lock.m4: Update gnulib files. 2008-08-18 Simon Josefsson * NEWS: Fix. 2008-08-18 Simon Josefsson * NEWS: Add. 2008-08-18 Simon Josefsson * NEWS: Add. 2008-08-18 Simon Josefsson * lib/gnutls_global.c: Fix secure memory initialization of libgcrypt. Reported by Joe Orton in . 2008-08-16 Simon Josefsson * doc/gnutls.texi: Reference NIST SP 800-57. 2008-08-16 Simon Josefsson * doc/protocol/rfc5246.txt: Add. 2008-08-14 Simon Josefsson * NEWS: Re-add lost entry. 2008-08-14 Simon Josefsson * lib/crypto.c, lib/gnutls_extensions.c, lib/gnutls_state.c, lib/x509/crq.c: Doc fixes. 2008-08-14 Simon Josefsson * NEWS, configure.in: Bump versions. 2008-08-14 Simon Josefsson * ChangeLog: Generated. 2008-08-14 Simon Josefsson * NEWS: Version 2.5.3. 2008-08-13 Simon Josefsson * NEWS: Add. 2008-08-13 Simon Josefsson * NEWS: Add. 2008-08-13 Simon Josefsson * includes/gnutls/extra.h, includes/gnutls/openssl.h, includes/gnutls/pkcs12.h, includes/gnutls/x509.h: Bump copyright in installed header files. 2008-08-13 Simon Josefsson * doc/manpages/Makefile.am: Generated. 2008-08-13 Simon Josefsson * NEWS: Add. 2008-08-13 Simon Josefsson * includes/gnutls/gnutls.h.in: Drop final comma in enum. Reported in . 2008-08-13 Simon Josefsson * lib/gnutlsxx.cpp: Don't call SRP functions if SRP is disabled. 2008-08-13 Simon Josefsson * includes/gnutls/compat.h, includes/gnutls/gnutls.h.in, lib/auth_rsa.c, lib/gnutls_constate.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_session_pack.c, lib/gnutls_sig.c, lib/gnutls_state.c, lib/gnutls_v2_compat.c, libextra/gnutls_ia.c: Fix namespace problem with TLS_MASTER_SIZE and TLS_RANDOM_SIZE. 2008-08-13 Simon Josefsson * gl/c-ctype.c, gl/c-ctype.h, gl/gnulib.mk, gl/inet_pton.c, gl/m4/gnulib-comp.m4, gl/m4/inet_pton.m4, gl/tests/gnulib.mk, gl/tests/test-c-ctype.c: Update gnulib files. 2008-08-13 Simon Josefsson * NEWS, includes/gnutls/gnutls.h.in, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_state.c, tests/Makefile.am, tests/finished.c: Add API to set callback to extract TLS Finished messages. 2008-08-08 Simon Josefsson * doc/manpages/Makefile.am: Generated. 2008-08-05 Simon Josefsson * GNUmakefile: Update gnulib files. 2008-08-05 Simon Josefsson * NEWS: Add. 2008-08-04 Simon Josefsson * GNUmakefile, build-aux/gnupload: Update gnulib files. 2008-08-03 Nikos Mavrogiannopoulos * includes/gnutls/x509.h, lib/x509/crq.c: added gnutls_x509_crq_set_key_rsa_raw() which will set a raw key to a certificate request. 2008-08-02 Nikos Mavrogiannopoulos * : commit 767fb210de7dcde20ac05e1f3ca78375279f5603 Author: Nikos Mavrogiannopoulos Date: Sat Aug 2 11:55:56 2008 +0300 2008-07-22 Simon Josefsson * lib/auth_psk_passwd.c, lib/gnutls_cipher.c, lib/gnutls_handshake.c, lib/x509/pkcs12.c, lib/x509/privkey_pkcs8.c, src/crypt.c: Make it compile. 2008-07-22 Simon Josefsson * doc/Makefile.am: Drop doxygen. 2008-07-22 Simon Josefsson * GNUmakefile, gl/m4/gnulib-comp.m4, lgl/m4/gnulib-comp.m4, lgl/vasnprintf.c: Update gnulib files. 2008-07-10 Simon Josefsson * configure.in: Bump versions. 2008-07-10 Simon Josefsson * NEWS, configure.in, doc/Makefile.am, doc/doxygen/Doxyfile.in, doc/doxygen/Doxyfile.orig: Add doxygen scripts. 2008-07-10 Simon Josefsson * lib/x509/common.c: Cleanup struct name, for doxygen documentation. 2008-07-09 Simon Josefsson * lib/random.h: Add license. 2008-07-09 Simon Josefsson * lib/auth_rsa.c, lib/auth_srp_passwd.c, lib/gnutls_pk.c, lib/random.c, lib/random.h, lib/x509/privkey_pkcs8.c, src/psk.c: Minor randomness API cleanups. 2008-07-09 Simon Josefsson * lib/x509/dsa.c: Remove unused code. 2008-07-08 Simon Josefsson * ChangeLog: Generated. 2008-07-08 Simon Josefsson * NEWS: Version 2.5.2. 2008-07-08 Simon Josefsson * doc/gnutls.texi: Fix @include of algorithms.texi. 2008-07-08 Simon Josefsson * doc/Makefile.am: Fix typos. 2008-07-08 Simon Josefsson * doc/Makefile.am, src/Makefile.am: Generate algorithms.texi the same way as error_codes.texi for consistency. Fixes 'make distcheck' due to srcdir != objdir breakage. 2008-07-08 Simon Josefsson * configure.in: Bump libtool library version because we added interfaces. 2008-07-08 Simon Josefsson * NEWS, lib/Makefile.am, lib/ext_inner_application.c, lib/ext_inner_application.h, lib/gnutls_extensions.c, libextra/Makefile.am, libextra/ext_inner_application.c, libextra/ext_inner_application.h, libextra/gnutls_extra.c: Move TLS/IA features to libgnutls-extra. 2008-07-08 Simon Josefsson * tests/tlsia.c: Initialize extra library. 2008-07-08 Simon Josefsson * doc/manpages/Makefile.am: Generated. 2008-07-07 Nikos Mavrogiannopoulos * src/printlist.c: added missing file. 2008-07-06 Nikos Mavrogiannopoulos * doc/Makefile.am, doc/gnutls.texi: automatically generate the appendix with supported algorithms and ciphersuites. 2008-07-06 Nikos Mavrogiannopoulos * src/Makefile.am: automatically generate the appendix with supported algorithms and ciphersuites. 2008-07-06 Nikos Mavrogiannopoulos * lib/gnutls_priority.c: document a way to get the available algorithms and protocols. 2008-07-05 Nikos Mavrogiannopoulos * lib/x509/common.c: Corrected memory leak in read_octet. Based on patch by Colin Leroy (colin@colino.net) 2008-07-03 Simon Josefsson * NEWS: Add. 2008-07-03 Simon Josefsson * includes/gnutls/gnutls.h.in, lib/gnutls_extensions.c, lib/gnutls_extensions.h, lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_int.h: Add APIs to register TLS extension handlers. 2008-07-02 Simon Josefsson * lib/minitasn1/Makefile.am, lib/x509/Makefile.am: Use AM_CPPFLAGS. 2008-07-02 Simon Josefsson * lib/opencdk/Makefile.am: lib/opencdk/Makefile.am (INCLUDES): Rename to `AM_CPPFLAGS'. 2008-07-02 Simon Josefsson * NEWS: Fix. 2008-07-02 Simon Josefsson * NEWS: Add. 2008-07-02 Simon Josefsson * Makefile.am, cfg.mk: Guile problem fixed. 2008-07-02 Simon Josefsson * lib/gnutls_dh_primes.c: Fix typo that swapped prime/generator in gnutls_dh_params_generate2. 2008-07-02 Simon Josefsson * NEWS, configure.in: Bump versions. 2008-07-02 Simon Josefsson * ChangeLog: Generated. 2008-07-02 Simon Josefsson * NEWS: Version 2.5.1. 2008-07-02 Simon Josefsson * cfg.mk, doc/examples/ex-cert-select.c, doc/examples/ex-client-psk.c, doc/examples/ex-client-tlsia.c, doc/examples/ex-client1.c, doc/examples/ex-client2.c, doc/examples/ex-serv-export.c, doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-psk.c, doc/examples/ex-serv1.c, guile/src/core.c, guile/src/errors.c, guile/src/extra.c, lib/auth_cert.c, lib/auth_dh_common.c, lib/auth_dhe.c, lib/auth_psk.c, lib/auth_psk_passwd.c, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/auth_srp.c, lib/auth_srp_passwd.c, lib/auth_srp_rsa.c, lib/cipher-libgcrypt.c, lib/crypto.c, lib/debug.c, lib/ext_cert_type.c, lib/ext_max_record.c, lib/ext_oprfi.c, lib/ext_server_name.c, lib/ext_srp.c, lib/gnutls_alert.c, lib/gnutls_algorithms.c, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_buffers.c, lib/gnutls_cert.c, lib/gnutls_cipher.c, lib/gnutls_cipher_int.c, lib/gnutls_compress.c, lib/gnutls_constate.c, lib/gnutls_db.c, lib/gnutls_dh.c, lib/gnutls_dh_primes.c, lib/gnutls_errors.c, lib/gnutls_extensions.c, lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_kx.c, lib/gnutls_mpi.c, lib/gnutls_openpgp.c, lib/gnutls_pk.c, lib/gnutls_priority.c, lib/gnutls_psk.c, lib/gnutls_psk_netconf.c, lib/gnutls_record.c, lib/gnutls_session.c, lib/gnutls_session_pack.c, lib/gnutls_sig.c, lib/gnutls_srp.c, lib/gnutls_state.c, lib/gnutls_str.c, lib/gnutls_supplemental.c, lib/gnutls_ui.c, lib/gnutls_v2_compat.c, lib/gnutls_x509.c, lib/mac-libgcrypt.c, lib/minitasn1/structure.c, lib/mpi-libgcrypt.c, lib/opencdk/armor.c, lib/opencdk/dummy.c, lib/opencdk/hash.c, lib/opencdk/kbnode.c, lib/opencdk/keydb.c, lib/opencdk/literal.c, lib/opencdk/main.c, lib/opencdk/misc.c, lib/opencdk/new-packet.c, lib/opencdk/pubkey.c, lib/opencdk/read-packet.c, lib/opencdk/seskey.c, lib/opencdk/sig-check.c, lib/opencdk/stream.c, lib/opencdk/verify.c, lib/opencdk/write-packet.c, lib/openpgp/compat.c, lib/openpgp/extras.c, lib/openpgp/output.c, lib/openpgp/pgp.c, lib/openpgp/pgpverify.c, lib/openpgp/privkey.c, lib/pk-libgcrypt.c, lib/random.c, lib/rnd-libgcrypt.c, lib/x509/common.c, lib/x509/crl.c, lib/x509/crq.c, lib/x509/dn.c, lib/x509/dsa.c, lib/x509/extensions.c, lib/x509/mpi.c, lib/x509/output.c, lib/x509/pbkdf2-sha1.c, lib/x509/pkcs12.c, lib/x509/pkcs12_encr.c, lib/x509/pkcs7.c, lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, lib/x509/rfc2818_hostname.c, lib/x509/sign.c, lib/x509/x509.c, lib/x509/x509_write.c, libextra/gnutls_openssl.c, src/certtool-cfg.c, src/certtool.c, src/cli.c, src/common.c, src/crypt.c, src/psk.c, src/select.c, src/serv.c, src/tests.c, src/tls_test.c, tests/certificate_set_x509_crl.c, tests/crypto_rng.c, tests/dhepskself.c, tests/dn.c, tests/gc.c, tests/hostname-check/hostname-check.c, tests/mini.c, tests/moredn.c, tests/mpi.c, tests/openpgp/keyring.c, tests/openpgpself.c, tests/oprfi.c, tests/parse_ca.c, tests/pkcs12-decode/pkcs12_s2k.c, tests/x509dn.c, tests/x509self.c, tests/x509signself.c: Indent code. 2008-07-02 Simon Josefsson * NEWS, configure.in: Bump versions. 2008-07-02 Simon Josefsson * ChangeLog: Generated. 2008-07-02 Simon Josefsson * NEWS: Version 2.5.0. 2008-07-02 Simon Josefsson * tests/pkcs12-decode/Makefile.am: The -I.. needs to point to srcdir. 2008-07-02 Simon Josefsson * NEWS: Add. 2008-07-02 Simon Josefsson * NEWS: Add. 2008-07-02 Simon Josefsson * lib/opencdk/Makefile.am: Need -I to builddir for gnutls.h. 2008-07-02 Simon Josefsson * doc/reference/Makefile.am: Ignore more. 2008-07-02 Simon Josefsson * lib/x509/Makefile.am: Dist pbkdf2-sha1.h. 2008-07-02 Simon Josefsson * po/pl.po.in, po/vi.po.in: Sync with TP. 2008-07-02 Simon Josefsson * Makefile.am, cfg.mk: Disable building guile for now, to be able to do a release. 2008-07-02 Simon Josefsson * NEWS: Sort functions. 2008-07-02 Simon Josefsson * doc/gnutls.texi: Don't use @acronym for C++, as it breaks old texinfo/tetex installations. Further, C++ isn't an acronym anyway as far as I know. 2008-07-01 Simon Josefsson * gl/gnulib.mk, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/tests/Makefile.am, gl/tests/gnulib.mk, gl/tests/test-EOVERFLOW.c, gl/tests/test-arpa_inet.c, gl/tests/test-getaddrinfo.c, gl/tests/test-getdelim.c, gl/tests/test-getline.c, gl/tests/test-netinet_in.c, gl/tests/test-strerror.c, lgl/Makefile.am, lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4, lgl/tests/Makefile.am, lgl/tests/dummy.c, lgl/tests/intprops.h, lgl/tests/test-EOVERFLOW.c, lgl/tests/test-alloca-opt.c, lgl/tests/test-c-ctype.c, lgl/tests/test-fseeko.c, lgl/tests/test-fseeko.sh, lgl/tests/test-func.c, lgl/tests/test-lseek.c, lgl/tests/test-lseek.sh, lgl/tests/test-memchr.c, lgl/tests/test-memcmp.c, lgl/tests/test-read-file.c, lgl/tests/test-snprintf.c, lgl/tests/test-stdbool.c, lgl/tests/test-stdint.c, lgl/tests/test-stdio.c, lgl/tests/test-stdlib.c, lgl/tests/test-string.c, lgl/tests/test-strings.c, lgl/tests/test-sys_socket.c, lgl/tests/test-sys_stat.c, lgl/tests/test-time.c, lgl/tests/test-unistd.c, lgl/tests/test-vasnprintf.c, lgl/tests/test-vasprintf.c, lgl/tests/test-wchar.c, lgl/tests/verify.h: Add gnulib self-tests. 2008-07-01 Simon Josefsson * lgl/m4/gnulib-cache.m4: Put gnulib tests in a separate directory. 2008-07-01 Simon Josefsson * m4/gc_random.m4: Remove unused code. 2008-07-01 Simon Josefsson * lgl/Makefile.am, lgl/arcfour.c, lgl/arcfour.h, lgl/arctwo.c, lgl/arctwo.h, lgl/des.c, lgl/des.h, lgl/gc-gnulib.c, lgl/gc-libgcrypt.c, lgl/gc-pbkdf2-sha1.c, lgl/gc.h, lgl/hmac-md5.c, lgl/hmac-sha1.c, lgl/hmac.h, lgl/m4/arcfour.m4, lgl/m4/arctwo.m4, lgl/m4/des.m4, lgl/m4/gc-arcfour.m4, lgl/m4/gc-arctwo.m4, lgl/m4/gc-camellia.m4, lgl/m4/gc-des.m4, lgl/m4/gc-hmac-md5.m4, lgl/m4/gc-hmac-sha1.m4, lgl/m4/gc-md2.m4, lgl/m4/gc-md4.m4, lgl/m4/gc-md5.m4, lgl/m4/gc-pbkdf2-sha1.m4, lgl/m4/gc-random.m4, lgl/m4/gc-rijndael.m4, lgl/m4/gc-sha1.m4, lgl/m4/gc.m4, lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4, lgl/m4/hmac-md5.m4, lgl/m4/hmac-sha1.m4, lgl/m4/md2.m4, lgl/m4/md4.m4, lgl/m4/md5.m4, lgl/m4/memxor.m4, lgl/m4/rijndael.m4, lgl/m4/sha1.m4, lgl/md2.c, lgl/md2.h, lgl/md4.c, lgl/md4.h, lgl/md5.c, lgl/md5.h, lgl/memxor.c, lgl/memxor.h, lgl/rijndael-alg-fst.c, lgl/rijndael-alg-fst.h, lgl/rijndael-api-fst.c, lgl/rijndael-api-fst.h, lgl/sha1.c, lgl/sha1.h: Drop gnulib gc modules. 2008-07-01 Simon Josefsson * configure.in, lgl/m4/gnulib-cache.m4: Drop gc. 2008-07-01 Simon Josefsson * lib/gnutls_cipher.c, lib/gnutls_handshake.c, lib/x509/privkey_pkcs8.c: Drop gc.h. 2008-06-30 Simon Josefsson * NEWS: Add. 2008-06-30 Simon Josefsson * lib/gnutls_handshake.c: (_gnutls_handshake_hash_buffers_clear): Make sure deinitialized MAC hashes are initialized. Report and tiny patch from Tomas Mraz . 2008-06-30 Simon Josefsson * THANKS: Add. 2008-06-30 Nikos Mavrogiannopoulos * src/crypt.c: this fixes a problem in srptool, where the passwords never match (--verify check) on some architectures (patch by Matthias Koenig ) 2008-06-30 Nikos Mavrogiannopoulos * includes/gnutls/openssl.h, libextra/gnutls_openssl.c: corrected openssl. 2008-06-30 Nikos Mavrogiannopoulos * includes/gnutls/openssl.h, libextra/gnutls_openssl.c: use native gnutls functions. 2008-06-30 Nikos Mavrogiannopoulos * lib/gnutls_hash_int.c, lib/gnutls_hash_int.h: added _gnutls_hash_fast() 2008-06-30 Nikos Mavrogiannopoulos * : commit fded9a7d1e6d58f951fc7e8f4db80d3e23f5ea1f Author: Nikos Mavrogiannopoulos Date: Mon Jun 30 20:15:19 2008 +0300 2008-06-30 Nikos Mavrogiannopoulos * src/crypt.c, src/psk.c: avoid using gc_ functions for random data. 2008-06-30 Nikos Mavrogiannopoulos * lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/x509/Makefile.am, lib/x509/pbkdf2-sha1.c, lib/x509/pbkdf2-sha1.h, lib/x509/privkey_pkcs8.c, tests/gc.c: added _gnutls_pkcs5_pbkdf2_sha1() based on gc_pkcs5_pbkdf2_sha1() 2008-06-30 Simon Josefsson * : Remove executable. 2008-06-30 Simon Josefsson * lib/gnutls_psk_netconf.c: Remove debug code. 2008-06-30 Simon Josefsson * doc/manpages/Makefile.am: Generated. 2008-06-30 Simon Josefsson * gl/m4/gnulib-cache.m4, gl/m4/gnulib-tool.m4, lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-tool.m4: Update gnulib files. 2008-06-30 Simon Josefsson * NEWS: Add. 2008-06-29 Nikos Mavrogiannopoulos * lib/gnutls_state.c: added check before reallocation of parameters to avoid memory leaks on rehandshake. 2008-06-28 Nikos Mavrogiannopoulos * NEWS: document the rewrite of opencdk crypto backend. 2008-06-28 Nikos Mavrogiannopoulos * NEWS, doc/gnutls.texi, includes/gnutls/crypto.h, includes/gnutls/gnutls.h.in, lib/Makefile.am, lib/auth_anon.c, lib/auth_dh_common.c, lib/auth_dh_common.h, lib/auth_dhe.c, lib/auth_dhe_psk.c, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/auth_srp.c, lib/cipher-libgcrypt.c, lib/crypto.c, lib/crypto.h, lib/debug.c, lib/debug.h, lib/gnutls_algorithms.c, lib/gnutls_cert.h, lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, lib/gnutls_datum.h, lib/gnutls_dh.c, lib/gnutls_dh.h, lib/gnutls_dh_primes.c, lib/gnutls_global.c, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_openpgp.c, lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_priority.c, lib/gnutls_psk_netconf.c, lib/gnutls_rsa_export.c, lib/gnutls_rsa_export.h, lib/gnutls_sig.c, lib/gnutls_sig.h, lib/gnutls_srp.c, lib/gnutls_srp.h, lib/gnutls_state.c, lib/gnutls_state.h, lib/gnutls_supplemental.c, lib/gnutls_x509.h, lib/mac-libgcrypt.c, lib/mpi-libgcrypt.c, lib/opencdk/Makefile.am, lib/opencdk/armor.c, lib/opencdk/context.h, lib/opencdk/dummy.c, lib/opencdk/filters.h, lib/opencdk/hash.c, lib/opencdk/kbnode.c, lib/opencdk/keydb.c, lib/opencdk/literal.c, lib/opencdk/main.c, lib/opencdk/main.h, lib/opencdk/misc.c, lib/opencdk/new-packet.c, lib/opencdk/opencdk.h, lib/opencdk/packet.h, lib/opencdk/pubkey.c, lib/opencdk/read-packet.c, lib/opencdk/seskey.c, lib/opencdk/sig-check.c, lib/opencdk/stream.c, lib/opencdk/types.h, lib/opencdk/verify.c, lib/opencdk/write-packet.c, lib/openpgp/extras.c, lib/openpgp/openpgp_int.h, lib/openpgp/output.c, lib/openpgp/pgp.c, lib/openpgp/privkey.c, lib/pk-libgcrypt.c, lib/random.c, lib/random.h, lib/rnd-libgcrypt.c, lib/x509/Makefile.am, lib/x509/common.c, lib/x509/common.h, lib/x509/crl.c, lib/x509/mpi.c, lib/x509/pkcs12.c, lib/x509/pkcs12_encr.c, lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, lib/x509/sign.c, lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509_int.h, src/psk-gaa.c, tests/Makefile.am, tests/ca.pem, tests/crypto_rng.c, tests/mpi.c, tests/netconf-psk.c, tests/openpgp/keyring.c, tests/pkcs12-decode/Makefile.am, tests/pkcs12-decode/pkcs12_s2k.c: Initial merge attempt with gnutls_with_ext_mpi 2008-06-25 Nikos Mavrogiannopoulos * lib/gnutls_dh_primes.c: do not add trailing zero on the size count. 2008-06-23 Simon Josefsson * GNUmakefile: Update gnulib files. 2008-06-23 Simon Josefsson * NEWS: Add. 2008-06-23 Simon Josefsson * lib/Makefile.am: Fix build failures related to opencdk.h. Reported by Roman Bogorodskiy in . 2008-06-19 Simon Josefsson * configure.in: Fix typo. 2008-06-19 Simon Josefsson * configure.in: Disable C++ library if psk, srp, anon etc have been disabled. The libgnutlsxx.cpp file calls several functions that may have been removed. 2008-06-19 Simon Josefsson * configure.in, doc/examples/Makefile.am: Make --disable-psk-authentication work. 2008-06-19 Simon Josefsson * lgl/m4/lock.m4: Update gnulib files. 2008-06-19 Simon Josefsson * doc/examples/ex-cxx.cpp: Use cstring instead of string.h. Reported by Daniel Black in . 2008-06-19 Simon Josefsson * NEWS: Add. 2008-06-18 Simon Josefsson * src/cli.c, src/psk.c: Fix warning regarding undeclared getpass replacement. Reported by Massimo Gaspari in . 2008-06-18 Simon Josefsson * src/cli.c: Fix warning. Reported by Massimo Gaspari in . 2008-06-18 Simon Josefsson * lib/gnutls_state.h: Add prototype for _gnutls_session_is_psk. Reported by Massimo Gaspari in . 2008-06-18 Simon Josefsson * Makefile.am, NEWS, configure.in: Bump versions. 2008-06-18 Simon Josefsson * ChangeLog: Generated. 2008-06-18 Simon Josefsson * NEWS: Add v2.4.0 release notes. 2008-06-18 Simon Josefsson * Makefile.am: Fix release target. 2008-06-18 Simon Josefsson * NEWS: Version 2.4.0. 2008-06-18 Simon Josefsson * doc/manpages/Makefile.am: Generated. 2008-06-18 Simon Josefsson * AUTHORS, NEWS, includes/gnutls/openpgp.h, lib/openpgp/pgp.c, lib/openpgp/privkey.c: libgnutls [OpenPGP]: New APIs to retrieve fingerprint from OpenPGP subkeys. Contributed by Daniel Kahn Gillmor . 2008-06-16 Simon Josefsson * NEWS, configure.in: Bump versions. 2008-06-16 Simon Josefsson * lib/openpgp/pgp.c: Fix typo in documentation. Tiny patch from Daniel Kahn Gillmor . 2008-06-15 Simon Josefsson * ChangeLog: Generated. 2008-06-15 Simon Josefsson * NEWS: Version 2.3.15. 2008-06-15 Simon Josefsson * tests/Makefile.am, tests/openpgp-certs/Makefile.am: Disable openpgp-certs properly. 2008-06-15 Simon Josefsson * doc/gendocs_template, lgl/Makefile.am, lgl/m4/stdio_h.m4, lgl/stdio.in.h: Update gnulib files. 2008-06-15 Simon Josefsson * NEWS, tests/Makefile.am: Disable openpgp-certs self-test. 2008-06-11 Simon Josefsson * NEWS, configure.in: Bump versions. 2008-06-11 Simon Josefsson * ChangeLog: Generated. 2008-06-11 Simon Josefsson * NEWS: Version 2.3.14. 2008-06-10 Simon Josefsson * lgl/m4/memmem.m4: Update gnulib files. 2008-06-10 Simon Josefsson * tests/openpgp-certs/testcerts: Use port 5557. 2008-06-10 Simon Josefsson * NEWS: Unrelease it. 2008-06-09 Simon Josefsson * tests/openpgp-certs/testcerts: Fix. 2008-06-09 Simon Josefsson * tests/openpgp-certs/testcerts: Deal with objdir != srcdir builds. 2008-06-09 Simon Josefsson * tests/openpgp-certs/Makefile.am: Dist *.gpg's. 2008-06-09 Simon Josefsson * Makefile.am: Fix release target. 2008-06-09 Simon Josefsson * configure.in: Reorder. 2008-06-09 Simon Josefsson * configure.in: Drop AC_CANONICAL_TARGET, unused. 2008-06-09 Simon Josefsson * configure.in, gl/gnulib.mk, gl/m4/autobuild.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, m4/autobuild.m4: Import autobuild from gnulib. 2008-06-09 Simon Josefsson * NEWS: Version 2.3.14. 2008-06-09 Simon Josefsson * NEWS: Fix. 2008-06-09 Simon Josefsson * lib/x509/x509.c: Doc fix. 2008-06-08 Simon Josefsson * THANKS: Add. 2008-06-08 Simon Josefsson * NEWS, lib/x509/x509.c: gnutls_x509_crt_get_extension_oid: Doc fix. Reported by Sam Varshavchik . 2008-06-08 Nikos Mavrogiannopoulos * lib/opencdk/sig-check.c: added check for empty UID list. 2008-06-08 Nikos Mavrogiannopoulos * configure.in, tests/Makefile.am, tests/openpgp-certs/Makefile.am, tests/openpgp-certs/ca-public.gpg, tests/openpgp-certs/ca-secret.gpg, tests/openpgp-certs/srv-public-127.0.0.1-signed.gpg, tests/openpgp-certs/srv-public-all-signed.gpg, tests/openpgp-certs/srv-public-localhost-signed.gpg, tests/openpgp-certs/srv-public.gpg, tests/openpgp-certs/srv-secret.gpg, tests/openpgp-certs/testcerts: Added OpenPGP certificate verification test. 2008-06-08 Nikos Mavrogiannopoulos * NEWS, lib/opencdk/keydb.c, lib/opencdk/main.h, lib/opencdk/sig-check.c: Changed OpenPGP verification behaviour. An OpenPGP certificate is now only considered verified if all the user IDs are verified. 2008-06-07 Simon Josefsson * NEWS, doc/examples/ex-cxx.cpp: Make it find strlen. Problem reported by Rainer Gerhards and suggested fix by "John Brooks" . 2008-06-07 Simon Josefsson * NEWS, configure.in: Bump versions. 2008-06-07 Simon Josefsson * po/LINGUAS: Sync with TP. 2008-06-07 Simon Josefsson * po/LINGUAS: Sync with TP. 2008-06-07 Simon Josefsson * ChangeLog: Generated. 2008-06-07 Simon Josefsson * NEWS: Version 2.3.13. 2008-06-07 Simon Josefsson * NEWS: Fix. 2008-06-07 Simon Josefsson * NEWS: Add. 2008-06-07 Simon Josefsson * doc/examples/ex-serv-export.c: Fix memory leak. 2008-06-07 Simon Josefsson * tests/resume.c: Fix memory leak. 2008-06-07 Simon Josefsson * GNUmakefile: Update gnulib files. 2008-06-07 Simon Josefsson * NEWS, tests/anonself.c, tests/dhepskself.c, tests/mini.c, tests/openpgpself.c, tests/oprfi.c, tests/x509dn.c, tests/x509self.c, tests/x509signself.c: tests/: Reduce amount of debugging output. 2008-06-05 Simon Josefsson * NEWS: Add. 2008-06-05 Simon Josefsson * tests/set_pkcs12_cred.c: Make it run without PKCS12FILE for typical scenarios. 2008-06-05 Simon Josefsson * NEWS: Fix. 2008-06-05 Simon Josefsson * tests/resume.c: Fix memory leak. 2008-06-05 Simon Josefsson * tests/tlsia.c: Fix memory leak. 2008-06-05 Simon Josefsson * tests/x509dn.c: Fix memory leaks. 2008-06-05 Simon Josefsson * tests/pskself.c: Fix most memory leaks. 2008-06-05 Simon Josefsson * tests/dhepskself.c: Fix memory leaks. 2008-06-05 Simon Josefsson * tests/x509signself.c: Fix memory leaks. 2008-06-05 Simon Josefsson * tests/anonself.c: Fix memory leaks. 2008-06-05 Simon Josefsson * tests/x509self.c: Revert last commit, fix memory leak the right way. 2008-06-05 Simon Josefsson * tests/openpgpself.c: Fix memory leak. 2008-06-05 Simon Josefsson * tests/x509self.c: Fix memory leaks. 2008-06-05 Simon Josefsson * doc/examples/ex-x509-info.c: Fix printing of serial number. 2008-06-05 Simon Josefsson * tests/libgcrypt.supp: Drop non-generic stuff. 2008-06-05 Simon Josefsson * tests/gc.c: Fix memory leak. 2008-06-05 Simon Josefsson * tests/certder.c: Fix memory leaks. 2008-06-05 Simon Josefsson * tests/moredn.c: Fix memory leak. 2008-06-05 Simon Josefsson * NEWS: Add. 2008-06-05 Simon Josefsson * tests/Makefile.am: Dist libgcrypt.supp. 2008-06-05 Simon Josefsson * tests/libgcrypt.supp: Add. 2008-06-05 Simon Josefsson * tests/mini.c: Fix warnings. 2008-06-05 Simon Josefsson * NEWS, tests/Makefile.am, tests/mini.c: Add mini self-test, to avoid having to fork to test TLS handshakes. 2008-06-05 Simon Josefsson * po/ms.po.in: Sync with TP. 2008-06-05 Simon Josefsson * NEWS: Add. 2008-06-05 Simon Josefsson * doc/gnutls.texi: Reorder. 2008-06-05 Simon Josefsson * doc/gnutls.texi: Add psktool to @direntry. Alphasort @direntry. 2008-06-05 Simon Josefsson * README: Drop experimental stuff. 2008-06-05 Simon Josefsson * NEWS: Fix. 2008-06-05 Simon Josefsson * NEWS: Add. 2008-06-05 Simon Josefsson * tests/openpgpself.c: The test now works. 2008-06-05 Simon Josefsson * lgl/stdio-impl.h: Update gnulib files. 2008-06-05 Simon Josefsson * NEWS, configure.in: Bump versions. 2008-06-04 Nikos Mavrogiannopoulos * lib/openpgp/pgp.c, lib/openpgp/privkey.c: safer copying of keyid type. 2008-06-04 Simon Josefsson * ChangeLog: Generated. 2008-06-04 Simon Josefsson * NEWS: Version 2.3.12. 2008-06-04 Simon Josefsson * doc/protocol/draft-ietf-netconf-tls-02.txt: Add. 2008-06-04 Simon Josefsson * NEWS: We reverted the ABI bump. 2008-06-04 Simon Josefsson * lib/gnutls_psk_netconf.c: Doc fix. 2008-06-04 Simon Josefsson * lib/gnutls_psk.c: Doc fix. 2008-06-04 Simon Josefsson * doc/manpages/Makefile.am, src/psk-gaa.c: Generated. 2008-06-04 Simon Josefsson * configure.in: Bump ABI version due to added symbols. 2008-06-04 Simon Josefsson * : commit aa2c7264a52b993aca39c613e5fe1aed7511c972 Author: Simon Josefsson Date: Wed Jun 4 08:11:34 2008 +0200 2008-06-04 Simon Josefsson * doc/examples/ex-session-info.c: Update example with more PSK printing. 2008-06-04 Simon Josefsson * NEWS: Version 2.3.4.netconf.2. 2008-06-04 Simon Josefsson * doc/manpages/Makefile.am: Generated. 2008-06-04 Simon Josefsson * doc/gnutls.texi: Document PSK stuff. 2008-06-04 Simon Josefsson * src/cli.c: Allow --pskusername to be specified to avoid query in PSK callback. 2008-06-04 Simon Josefsson * NEWS: Add. 2008-06-04 Simon Josefsson * src/serv-gaa.c, src/serv-gaa.h: Generated. 2008-06-04 Simon Josefsson * NEWS, src/cli.c: gnutls-cli: Implement PSK callback. 2008-06-04 Simon Josefsson * NEWS, src/serv.c, src/serv.gaa: Add gnutls-serv --pskhint. 2008-06-04 Simon Josefsson * lib/auth_psk.c: Generate server key exchange (psk identity hint). Invoke client callback. 2008-06-04 Simon Josefsson * includes/gnutls/gnutls.h.in, lib/auth_psk.h, lib/gnutls_psk.c: Add gnutls_psk_set_server_credentials_hint. 2008-06-03 Simon Josefsson * NEWS, includes/gnutls/gnutls.h.in, lib/gnutls_psk.c, src/common.c: Add gnutls_psk_client_get_hint function. Use it. 2008-06-03 Simon Josefsson * lib/gnutls_session_pack.c: Pack/unpack psk identity hint too. 2008-06-03 Simon Josefsson * NEWS, src/psk-gaa.c, src/psk-gaa.h, src/psk.c, src/psk.gaa: psktool: Support --netconf-hint. 2008-06-03 Simon Josefsson * NEWS, configure.in: Bump versions. 2008-06-02 Nikos Mavrogiannopoulos * lib/openpgp/openpgp_int.h: safer use of KEYID_IMPORT(). 2008-06-02 Nikos Mavrogiannopoulos * lib/auth_cert.c: Corrected usage of DECR_LEN() 2008-06-01 Nikos Mavrogiannopoulos * tests/openpgpself.c: reduced logging level 2008-05-27 Simon Josefsson * m4/libgcrypt.m4: Update to latest version. 2008-05-27 Simon Josefsson * lib/libgnutls.vers, libextra/libgnutls-extra.vers: Add emacs mode markers. 2008-05-26 Simon Josefsson * NEWS: Fix. 2008-05-26 Simon Josefsson * configure.in: Revert "Revert ABI version, make libgnutls-extra use another ABI version." This reverts commit 1a0f4dbf5a79ac61c7d10257221d851a4a12d814. 2008-05-26 Simon Josefsson * libextra/Makefile.am: Revert "Use libtool EXTRA_ version symbols." This reverts commit 4e6bc87a35ed471022019265f7b5628e480f7e38. 2008-05-26 Simon Josefsson * NEWS: Mention ABI bump. 2008-05-26 Simon Josefsson * libextra/Makefile.am: Use libtool EXTRA_ version symbols. 2008-05-26 Simon Josefsson * configure.in: Revert ABI version, make libgnutls-extra use another ABI version. 2008-05-26 Simon Josefsson * configure.in: Bump ABI version. 2008-05-26 Simon Josefsson * lib/gnutls_cert.c: Doc fix. 2008-05-26 Simon Josefsson * NEWS: Merge 2.2.x branch NEWS entries. 2008-05-26 Simon Josefsson * NEWS: Add. 2008-05-26 Simon Josefsson * lib/x509/crl_write.c: (gnutls_x509_crl_set_version): Fix on platform where 'char' can be unsigned. Based on report from Laurence Withers , see: . 2008-05-26 Simon Josefsson * lgl/m4/memcmp.m4, lgl/stdbool.in.h, lgl/vasnprintf.c: Update gnulib files. 2008-05-26 Simon Josefsson * NEWS, includes/gnutls/openssl.h, libextra/gnutls_openssl.c: libgnutls-openssl: added RAND_pseudo_bytes API. Tiny patch from Robert Millan . 2008-05-26 Simon Josefsson * NEWS, configure.in: Bump versions. 2008-05-24 Nikos Mavrogiannopoulos * lib/opencdk/sig-check.c: added error check. 2008-05-24 Nikos Mavrogiannopoulos * lib/openpgp/output.c: Print Never when a certificate never expires. 2008-05-24 Nikos Mavrogiannopoulos * lib/openpgp/pgp.c: Corrected bug gnutls_openpgp_crt_get_name() which returned the same value for index==0 or 1. 2008-05-20 Simon Josefsson * ChangeLog: Generated. 2008-05-20 Simon Josefsson * NEWS: Version 2.3.11. 2008-05-20 Simon Josefsson * NEWS: Add. 2008-05-20 Simon Josefsson * lgl/m4/memcmp.m4, maint.mk: Update gnulib files. 2008-05-20 Simon Josefsson * doc/examples/Makefile.am: Fix ex-cxx name. Fix LDADD's. 2008-05-20 Simon Josefsson * po/nl.po.in, po/pl.po.in, po/sv.po.in, po/vi.po.in: Sync with TP. 2008-05-20 Simon Josefsson * src/certtool.c: Restore umask after opening file. Suggested by Daniel Kahn Gillmor . 2008-05-20 Simon Josefsson * NEWS, configure.in, src/certtool.c, src/crypt.c, src/psk.c: Use umask unconditionally. 2008-05-19 Simon Josefsson * NEWS: Add. 2008-05-19 Simon Josefsson * lib/gnutls_cipher.c: Fix broken debug check for GNUTLS-SA-2008-1. 2008-05-19 Simon Josefsson * NEWS: Add. 2008-05-19 Simon Josefsson * lib/Makefile.am: Don't pass all C flags when building C++ library. 2008-05-19 Simon Josefsson * NEWS, configure.in: Bump versions. 2008-05-19 Simon Josefsson * ChangeLog: Generated. 2008-05-19 Simon Josefsson * NEWS: Version 2.3.10. 2008-05-19 Simon Josefsson * configure.in: Bump versions. 2008-05-19 Simon Josefsson * NEWS: Add. 2008-05-05 Nikos Mavrogiannopoulos * lib/gnutls_str.c, tests/hostname-check/hostname-check.c: added wide wildcard hostname matching. Patch by Jean-Philippe Garcia Ballester. 2008-05-19 Simon Josefsson * Makefile.am: Disable ftp.gnutls.org for now. 2008-05-19 Simon Josefsson * lgl/vasnprintf.c: Update gnulib files. 2008-05-19 Simon Josefsson * NEWS: Add. 2008-05-19 Simon Josefsson * lib/ext_server_name.c, lib/gnutls_cipher.c, lib/gnutls_handshake.c: Fix GNUTLS-SA-2008-1 security vulnerabilities. See http://www.gnu.org/software/gnutls/security.html for updates. 2008-05-18 Nikos Mavrogiannopoulos * NEWS: Use umask to restrict permissions to owner before creating a file. 2008-05-18 Nikos Mavrogiannopoulos * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: Use umask to restrict the newly created file's permissions if operating on a private key. This effectively fixes the issue reported at and the followups. 2008-05-17 Nikos Mavrogiannopoulos * NEWS, doc/examples/Makefile.am, doc/examples/ex-cxx.cpp, doc/gnutls.texi, includes/gnutls/gnutlsxx.h, lib/gnutlsxx.cpp: Updated the C++ API with patch from Eduardo Villanueva Che. Suggested by Benjamin Herr. 2008-05-16 Simon Josefsson * ChangeLog: Generated. 2008-05-16 Simon Josefsson * NEWS: Version 2.3.9. 2008-05-16 Simon Josefsson * configure.in: Remove obsolete comment. 2008-05-16 Simon Josefsson * configure.in: Typo. 2008-05-16 Simon Josefsson * NEWS: Add. 2008-05-16 Simon Josefsson * configure.in: Don't check for present headers, hard code checks for silly src/cfg/. 2008-05-16 Simon Josefsson * configure.in, lgl/Makefile.am, lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4: Replace strings.h check with gnulib module. 2008-05-16 Simon Josefsson * lgl/m4/strcase.m4, lgl/m4/strings_h.m4, lgl/strcasecmp.c, lgl/strings.in.h, lgl/strncasecmp.c: Replace strings.h check with gnulib module. 2008-05-16 Simon Josefsson * NEWS, THANKS, src/certtool.c: certtool: When writing private keys to files, change permissions of file. Now the file which the private key is saved to is chmod'ed 0600. Reported by martin f krafft see . 2008-05-16 Simon Josefsson * NEWS, THANKS, src/certtool-cfg.c, src/certtool-cfg.h, src/certtool.c: certtool: Encrypting a private key now require a confirmed password. Before, './certtool -k -8' would merely ask for a password once. Reported by Daniel 'NebuchadnezzaR' Dehennin see . 2008-05-16 Simon Josefsson * gl/gnulib.mk, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4: Update gnulib files. 2008-05-16 Simon Josefsson * NEWS, configure.in: Remove --enable-profile-mode. 2008-05-16 Simon Josefsson * lgl/m4/memmem.m4, lgl/str-two-way.h: Update gnulib files. 2008-05-15 Simon Josefsson * ChangeLog: Generated. 2008-05-15 Simon Josefsson * lib/auth_psk.c, lib/gnutls_kx.c, lib/gnutls_state.c: Allow for server key exchange message to be optional for PSK ciphers. 2008-05-15 Simon Josefsson * NEWS: Version 2.3.4.netconf.1. 2008-05-15 Simon Josefsson * NEWS: Add. 2008-05-15 Simon Josefsson * NEWS: Add. 2008-05-15 Simon Josefsson * lib/auth_psk.c, lib/auth_psk.h: Parse psk_identity_hint field. 2008-05-15 Simon Josefsson * src/cli.c: Fix so that PSK authentication works. 2008-05-15 Simon Josefsson * NEWS, doc/gnutls.texi: Document gnutls-cli PSK fix. 2008-05-15 Simon Josefsson * src/cli.c: Fix so that PSK authentication works. 2008-05-15 Simon Josefsson * gl/m4/gnulib-common.m4, gl/m4/gnulib-comp.m4, lgl/m4/gnulib-common.m4, lgl/m4/gnulib-comp.m4: Update gnulib files. 2008-05-11 Simon Josefsson * doc/protocol/draft-ietf-tls-ecc-new-mac-07.txt: Add. 2008-05-07 Simon Josefsson * NEWS: Add. 2008-05-07 Simon Josefsson * guile/tests/Makefile.am: Don't run guile openpgp self tests if openpgp is disabled. 2008-05-07 Simon Josefsson * tests/Makefile.am: Don't run openpgpself if openpgp stuff wasn't built. 2008-05-07 Simon Josefsson * NEWS, doc/examples/ex-session-info.c, guile/src/core.c, guile/tests/Makefile.am: libgnutls: Compile if SRP is disabled. Report and tiny patches from , see . 2008-05-06 Simon Josefsson * lib/gnutls_global.c: Fix warning. 2008-05-06 Simon Josefsson * NEWS, gl/getaddrinfo.h: Update gnulib files. 2008-05-06 Simon Josefsson * NEWS: Fix. 2008-05-06 Simon Josefsson * NEWS: Add. 2008-05-06 Simon Josefsson * lib/openpgp/output.c: More translation markups. 2008-05-06 Simon Josefsson * po/POTFILES.in: Add translations from openpgp output functions too. 2008-05-06 Simon Josefsson * lib/x509/output.c: Translation fixes, tiny patch from Benno Schulenberg . 2008-05-05 Simon Josefsson * gl/m4/inet_ntop.m4, gl/m4/inet_pton.m4, lgl/override/lib/gc-libgcrypt.c.diff: Update gnulib files. 2008-05-02 Simon Josefsson * : commit 382e242d6ab440749f44f53020a928c09a4c4765 Author: Nikos Mavrogiannopoulos Date: Thu May 1 11:06:19 2008 +0300 2008-04-30 Simon Josefsson * doc/protocol/draft-badra-tls-psk-new-mac-aes-gcm-02.txt: Add. 2008-04-30 Simon Josefsson * gl/arpa_inet.in.h, gl/getaddrinfo.c, gl/gnulib.mk, gl/m4/arpa_inet_h.m4, gl/m4/inet_ntop.m4, gl/m4/inet_pton.m4: Update gnulib files. 2008-04-29 Simon Josefsson * doc/protocol/draft-ietf-tls-ecc-new-mac-06.txt, doc/protocol/draft-rescorla-tls-extended-random-00.txt: Add. 2008-04-29 Simon Josefsson * NEWS: Add. 2008-04-29 Simon Josefsson * configure.in: Call AM_CONDITIONAL at top-level. 2008-04-29 Simon Josefsson * NEWS, configure.in: Bump versions. 2008-04-29 Simon Josefsson * Makefile.am: Dist maint.mk. 2008-04-29 Simon Josefsson * ChangeLog: Generated. 2008-04-29 Simon Josefsson * NEWS: Version 2.3.8. 2008-04-29 Simon Josefsson * gl/gnulib.mk, gl/m4/arpa_inet_h.m4, lgl/Makefile.am, lgl/m4/stdlib_h.m4, lgl/m4/string_h.m4, lgl/stdlib.in.h, lgl/string.in.h: Update gnulib files. 2008-04-29 Simon Josefsson * po/LINGUAS, po/vi.po.in: Sync with TP. 2008-04-29 Simon Josefsson * NEWS: Add. 2008-04-29 Simon Josefsson * NEWS: Add. 2008-04-29 Simon Josefsson * NEWS: Add. 2008-04-29 Simon Josefsson * NEWS: Clarify area of change. 2008-04-29 Simon Josefsson * NEWS: Add. 2008-04-29 Simon Josefsson * NEWS: Add. 2008-04-29 Simon Josefsson * lib/gnutls_handshake.c: Doc fix. 2008-04-29 Simon Josefsson * NEWS, includes/gnutls/gnutls.h.in, lib/gnutls_buffers.c, lib/gnutls_errors.c, lib/gnutls_handshake.c, lib/gnutls_int.h: Increase max handshake packet size. Add new error code for situation. Thanks to Marc Haber and "Marc F. Clemente" for reporting and providing test servers. 2008-04-29 Simon Josefsson * : commit 08e4c95c3659544c39b93539d62209d4c296d5b1 Author: Simon Josefsson Date: Tue Apr 29 00:13:26 2008 +0200 2008-04-28 Simon Josefsson * src/cli.c: Avoid another duplicate call to socket_bye() which can cause a crash. 2008-04-28 Nikos Mavrogiannopoulos * NEWS, src/cli.c, src/common.c, src/common.h, src/serv.c, src/tests.c: gnutls-cli will exit once a certificate that doesn't have the correct name is found. 2008-04-28 Simon Josefsson * doc/reference/gnutls-docs.sgml, lib/gnutls_cert.c, lib/gnutls_openpgp.c, lib/gnutls_str.c, lib/gnutls_x509.c, lib/openpgp/pgp.c, lib/openpgp/privkey.c, lib/x509/dn.c: Doc markup for newly added APIs. 2008-04-28 Simon Josefsson * lib/x509/crl.c, lib/x509/crq.c, lib/x509/pkcs12_bag.c, lib/x509/pkcs7.c, lib/x509/x509.c: Doc fixes (silence gtk-doc warnings). 2008-04-28 Simon Josefsson * lib/x509/crl_write.c, lib/x509/x509_write.c: Doc fixes (silence gtk-doc warnings). 2008-04-28 Simon Josefsson * lib/x509/crl.c, lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/pkcs12.c, lib/x509/pkcs12_bag.c, lib/x509/pkcs7.c, lib/x509/privkey_pkcs8.c, lib/x509/sign.c, lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509_write.c: Doc fixes (silence gtk-doc warnings). 2008-04-28 Simon Josefsson * lib/x509/common.c, lib/x509/dn.c, lib/x509/output.c, lib/x509/privkey.c: Doc fixes (silence gtk-doc warnings). 2008-04-28 Simon Josefsson * : commit 02393bd4ef0c2ee7864c356f70623f3950f372f0 Author: Simon Josefsson Date: Mon Apr 28 18:14:14 2008 +0200 2008-04-28 Simon Josefsson * NEWS: Add. 2008-04-28 Simon Josefsson * build-aux/gendocs.sh, gl/arpa_inet.in.h, gl/gnulib.mk, gl/inet_ntop.c, gl/inet_ntop.h, gl/inet_pton.c, gl/inet_pton.h, gl/m4/gnulib-comp.m4, gl/m4/inet_ntop.m4, gl/m4/inet_pton.m4, lgl/Makefile.am, lgl/fseeko.c, lgl/intprops.h, lgl/m4/gnulib-comp.m4, lgl/m4/sys_socket_h.m4, lgl/memchr.c, lgl/stdio-impl.h, lgl/sys_socket.in.h: Update gnulib files. 2008-04-28 Simon Josefsson * NEWS: Add. 2008-04-28 Simon Josefsson * configure.in: Fix typo. 2008-04-28 Simon Josefsson * configure.in, includes/gnutls/crypto.h: Hide crypto.h definitions by default. 2008-04-26 Nikos Mavrogiannopoulos * tests/Makefile.am, tests/crypto_rng.c: added crypto rng registration test. 2008-04-26 Nikos Mavrogiannopoulos * lib/crypto.c: add warning that these functions have to be called before gnutls_global_init(). 2008-04-26 Nikos Mavrogiannopoulos * lib/crypto.c, lib/random.c: faster seek into the list. 2008-04-25 Simon Josefsson * NEWS, lib/gnutls_psk_netconf.c, tests/netconf-psk.c: Change PSK key derivation algorithm. 2008-04-25 Simon Josefsson * NEWS, configure.in: Bump versions. 2008-04-25 Nikos Mavrogiannopoulos * lib/crypto.c, lib/crypto.h, lib/gnutls_global.c: Added deregisteration function to free buffers allocated for registering algorithms. 2008-04-25 Nikos Mavrogiannopoulos * lib/crypto.c: corrected segmentation fault on registering ciphers. 2008-04-25 Nikos Mavrogiannopoulos * doc/manpages/certtool.1, src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.gaa: added --outraw --inraw options. 2008-04-23 Simon Josefsson * gl/gnulib.mk, lgl/sys_socket.in.h: Update gnulib files. 2008-04-23 Simon Josefsson * configure.in: Revert libgcrypt vs vasprintf workaround, now that 1.4.1rc1 is released. 2008-04-22 Simon Josefsson * gl/arpa_inet.in.h: Update gnulib files. 2008-04-22 Simon Josefsson * gl/arpa_inet.in.h, gl/gnulib.mk, gl/m4/arpa_inet_h.m4, gl/m4/gnulib-comp.m4, lgl/sys_socket.in.h: Update gnulib files. 2008-04-22 Simon Josefsson * NEWS, configure.in: Bump versions. 2008-04-22 Simon Josefsson * : commit 34e3d59b2e276b8a45924f11f6916399fa14f5be Author: Simon Josefsson Date: Tue Apr 22 09:56:03 2008 +0200 2008-04-21 Nikos Mavrogiannopoulos * : commit 1b6c0f521f7e6e3d48b74fbb568a53547c5ff8ec Author: Nikos Mavrogiannopoulos Date: Mon Apr 21 21:53:55 2008 +0300 2008-04-21 Simon Josefsson * ChangeLog: Generated. 2008-04-21 Simon Josefsson * NEWS: Version 2.3.7. 2008-04-21 Simon Josefsson * doc/Makefile.am: Don't clean Guile documentations on make clean. 2008-04-21 Simon Josefsson * src/cli.c, src/psk-gaa.c, src/psk.gaa, src/serv.c, src/tests.c: Fix warnings. 2008-04-21 Simon Josefsson * NEWS: Fix. 2008-04-21 Simon Josefsson * NEWS, doc/reference/Makefile.am, lib/minitasn1/Makefile.am, lib/minitasn1/coding.c, lib/minitasn1/decoding.c, lib/minitasn1/element.c, lib/minitasn1/int.h, lib/minitasn1/libtasn1.h, lib/minitasn1/mem.h: Update to libtasn1 1.4. 2008-04-19 Nikos Mavrogiannopoulos * NEWS: opencdk now properly sets the key usage bits into openpgp keys. 2008-04-19 Nikos Mavrogiannopoulos * lib/opencdk/keydb.c, lib/opencdk/read-packet.c: save key usage while reading public keys. 2008-04-18 Simon Josefsson * NEWS, THANKS: Add. 2008-04-18 Simon Josefsson * src/cli.c: Don't crash on TLS handshake failures. Reported by "Marc F. Clemente" in Debian BTS #466477. This is related to the 5e5f086e124d8d90829fc8e22f34044161da5f80 fix, this part is necessary too. 2008-04-18 Simon Josefsson * NEWS, src/certtool.c: certtool: with --generate-request and newly generated keys, print the key. 2008-04-18 Simon Josefsson * configure.in: Explain libgcrypt around gnulib. 2008-04-18 Simon Josefsson * doc/reference/Makefile.am, doc/reference/gnutls-docs.sgml: Don't document opencdk API. 2008-04-18 Simon Josefsson * NEWS: Add. 2008-04-18 Simon Josefsson * NEWS: Add. 2008-04-18 Simon Josefsson * configure.in: Typo fix. 2008-04-18 Simon Josefsson * lib/Makefile.am: Link to -lws2_32 if needed. 2008-04-18 Simon Josefsson * configure.in: Define WINVER to get modern features. Test for ws2_32. Add conditional. 2008-04-18 Simon Josefsson * NEWS: Add. 2008-04-18 Simon Josefsson * lib/x509/output.c: Use ASCII-only isprint function to get consistent outputs. Reported by Massimo Gaspari in . 2008-04-18 Simon Josefsson * lgl/Makefile.am, lgl/c-ctype.c, lgl/c-ctype.h, lgl/dummy.c, lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4: Add c-ctype module, for lib/x509/output.c. 2008-04-18 Simon Josefsson * gl/fseeko.c, gl/gnulib.mk, gl/lseek.c, gl/m4/extensions.m4, gl/m4/fseeko.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/lseek.m4, gl/m4/netinet_in_h.m4, gl/m4/strerror.m4, lgl/Makefile.am, lgl/fseeko.c, lgl/lseek.c, lgl/m4/extensions.m4, lgl/m4/fseeko.m4, lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4, lgl/m4/lseek.m4, lgl/m4/memmem.m4, lgl/m4/stdint.m4, lgl/m4/stdio_h.m4, lgl/m4/sys_socket_h.m4: Move fseeko to lgl/ from gl/ for opencdk. 2008-04-18 Simon Josefsson * configure.in: Link to libgcrypt when running gnulib checks, to get their vasprintf on MinGW. 2008-04-18 Simon Josefsson * configure.in: Don't check for vasprintf, already checked for by gnulib. 2008-04-17 Nikos Mavrogiannopoulos * lib/openpgp/pgp.c: corrected typo. 2008-04-17 Simon Josefsson * .clcopying, .cvscopying, .cvsusers, Makefile.am, src/pkcs1.asn: Fix some obsolete stuff. 2008-04-17 Simon Josefsson * NEWS, configure.in: Bump versions. 2008-04-17 Simon Josefsson * lib/x509/x509.c: (gnutls_x509_crt_get_key_usage): Doc fix. 2008-04-17 Simon Josefsson * ChangeLog: Generated. 2008-04-17 Simon Josefsson * NEWS: Version 2.3.6. 2008-04-17 Simon Josefsson * src/Makefile.am: Link errcodes with gnulib. Possibly fixes rpl_strerror problem when linking on HPUX, see: . 2008-04-17 Simon Josefsson * NEWS: Add. 2008-04-17 Simon Josefsson * NEWS: Add. 2008-04-17 Simon Josefsson * : commit 01a64fe6798a4ba82df9accf67c7c8f657abd9f5 Author: Simon Josefsson Date: Thu Apr 17 14:27:03 2008 +0200 2008-04-17 Simon Josefsson * lib/opencdk/kbnode.c: Doc fix (gtk-doc warning). 2008-04-17 Simon Josefsson * includes/gnutls/openssl.h: Fix gtk-doc warning about duplicate RSA namespace. 2008-04-17 Simon Josefsson * lib/auth_cert.c: Fix warning. 2008-04-17 Ludovic Courtès * : commit 2b4f4e3fd2b0df0b77b283928154b5f3e9139fe8 Author: Simon Josefsson Date: Thu Apr 17 14:15:49 2008 +0200 2008-04-17 Simon Josefsson * doc/reference/Makefile.am: Fix --source-dir to only cover lib/, libextra/ and includes/. 2008-04-17 Simon Josefsson * lib/Makefile.am: Simplify cdk handling. 2008-04-17 Simon Josefsson * doc/gnutls.texi: Discuss OpenCDK better. 2008-04-17 Simon Josefsson * README: No need for external opencdk. 2008-04-17 Simon Josefsson * configure.in, lib/Makefile.am, lib/opencdk/misc.c: Remove code to link with external opencdk. It seems we now don't have resources to maintain the LGPL opencdk code externally, since making it use GnuTLS's crypto code will be complicated. See discussion in: http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/2672/focus=2711 2008-04-17 Simon Josefsson * configure.in: No need for alloca checks. 2008-04-17 Simon Josefsson * NEWS, lib/gnutls_algorithms.c, lib/gnutls_buffers.c, lib/gnutls_constate.c, lib/gnutls_handshake.c, lib/gnutls_mem.h, lib/gnutls_mpi.c, lib/gnutls_pk.c, lib/x509/crl.c, lib/x509/mpi.c, lib/x509/privkey_pkcs8.c, lib/x509/sign.c, lib/x509/x509.c: Remove all uses of gnutls_alloca/gnutls_afree. Use normal gnutls_malloc instead. One reason is increased portability to Windows, the other is that several of the uses may be unsafe because the size of data allocated could be large. Reported by Massimo Gaspari in . 2008-04-17 Simon Josefsson * lib/auth_cert.c: Don't use alloca, the certificate list can be larger than stack size. 2008-04-17 Simon Josefsson * THANKS: Add. 2008-04-17 Simon Josefsson * THANKS: Add. 2008-04-17 Simon Josefsson * NEWS, lib/x509/output.c: Don't use %e specifier with strftime, it doesn't work under Windows. Reported by Massimo Gaspari in . 2008-04-17 Simon Josefsson * lib/gnutls_asn1_tab.c, lib/pkix_asn1_tab.c: Re-generate using modern libtasn1. 2008-04-17 Simon Josefsson * doc/examples/Makefile.am: Fix typo. 2008-04-17 Simon Josefsson * NEWS, tests/pathlen/pathlen: Run diff without parameters, to improve portability. Based on HPUX recommendations in . 2008-04-16 Simon Josefsson * doc/examples/Makefile.am: Reorder libgnu.la last. Possibly fix rpl_fseeko problem reported in . 2008-04-15 Simon Josefsson * doc/gnutls.texi: Update bibliography. 2008-04-15 Simon Josefsson * lib/gnutls_state.c: Doc fix (silence texinfo warning). 2008-04-15 Simon Josefsson * lib/openpgp/pgp.c: Improve error messages. See . 2008-04-15 Simon Josefsson * doc/protocol/draft-ietf-tls-rsa-aes-gcm-03.txt: Add. 2008-04-15 Simon Josefsson * NEWS, lib/x509/crq.c, src/certtool.c: Make gnutls_x509_crq_sign2 set certificate request version if not set. 2008-04-15 Simon Josefsson * NEWS, THANKS, lib/x509/crq.c: Improve documentation for gnutls_x509_crq_sign2. Based on report from "John Brooks" in . 2008-04-15 Simon Josefsson * NEWS, configure.in: Bump versions. 2008-04-14 Simon Josefsson * doc/protocol/draft-rescorla-tls-suiteb-02.txt: Add. 2008-04-14 Simon Josefsson * doc/protocol/draft-ietf-tls-ecc-new-mac-05.txt: Add. 2008-04-14 Simon Josefsson * ChangeLog: Generated. 2008-04-14 Simon Josefsson * NEWS: Version 2.3.5. 2008-04-14 Simon Josefsson * NEWS: Add. 2008-04-14 Simon Josefsson * NEWS: Add. 2008-04-14 Simon Josefsson * NEWS: Add. 2008-04-13 Simon Josefsson * src/cli.c, src/tls_test.c: Rely on sys/socket.h for SHUT_*. 2008-04-13 Simon Josefsson * lgl/m4/sys_socket_h.m4, lgl/sys_socket.in.h: Update gnulib files. 2008-04-13 Simon Josefsson * lgl/Makefile.am, lgl/gc-libgcrypt.c, lgl/m4/gnulib-cache.m4: Update gnulib files. 2008-04-13 Simon Josefsson * lgl/m4/gnulib-cache.m4, lgl/override/lib/gc-libgcrypt.c.diff: Quick fix for SHA-224 and old libgcrypt's. 2008-04-13 Simon Josefsson * NEWS: Add. 2008-04-13 Simon Josefsson * NEWS: Add. 2008-04-13 Simon Josefsson * doc/manpages/Makefile.am: Generated. 2008-04-13 Simon Josefsson * lib/random.h: Fix warnings. 2008-04-13 Simon Josefsson * cfg.mk: Typo. 2008-04-13 Simon Josefsson * po/Makevars: We don't need --no-location any more, git stores *.po.in's. 2008-04-13 Simon Josefsson * Makefile.am, cfg.mk: Translation fixes. 2008-04-13 Simon Josefsson * po/de.po, po/de.po.in, po/ms.po, po/ms.po.in, po/nl.po, po/nl.po.in, po/pl.po, po/pl.po.in, po/sv.po, po/sv.po.in: Improve translation handling to avoid git conflicts. 2008-04-13 Simon Josefsson * GNUmakefile, build-aux/gnupload, gl/fseeko.c, gl/getdelim.c, gl/m4/eoverflow.m4, gl/m4/gnulib-common.m4, gl/m4/gnulib-comp.m4, gl/m4/include_next.m4, lgl/gc-gnulib.c, lgl/m4/gc-random.m4, lgl/m4/gnulib-common.m4, lgl/m4/gnulib-comp.m4, lgl/m4/include_next.m4, lgl/m4/stdint.m4, lgl/m4/vasnprintf.m4, lgl/snprintf.c, lgl/vasnprintf.c, lgl/vasprintf.c, lgl/wchar.in.h: Update gnulib files. 2008-04-13 Simon Josefsson * doc/manpages/Makefile.am: Cosmetic. 2008-04-13 Simon Josefsson * doc/manpages/Makefile.am: Whitespace fix. 2008-04-13 Simon Josefsson * doc/manpages/Makefile.am: Improve APIMANS/SRPMANS, to make it easier to understand changes. 2008-04-13 Simon Josefsson * NEWS: Add. 2008-04-13 Simon Josefsson * configure.in: Fix test. 2008-04-13 Simon Josefsson * configure.in: Don't bother checking for --output-def if shared libraries are disabled. Based on report from Massimo Gaspari in . 2008-04-13 Simon Josefsson * NEWS, THANKS, doc/gnutls.texi: Document how to generate CRLs. 2008-04-13 Simon Josefsson * ChangeLog: Generated. 2008-04-13 Simon Josefsson * NEWS: Version 2.3.4.netconf.0. 2008-04-13 Simon Josefsson * Makefile.am: Fix release target. 2008-04-13 Simon Josefsson * configure.in: Bump version. 2008-04-13 Simon Josefsson * doc/examples/ex-client-psk.c: Typo. 2008-04-13 Simon Josefsson * NEWS: Add. 2008-04-13 Simon Josefsson * lib/gnutls_psk_netconf.c: Typo. 2008-04-13 Simon Josefsson * includes/gnutls/gnutls.h.in: Typo. 2008-04-13 Nikos Mavrogiannopoulos * includes/gnutls/openpgp.h: changed api. 2008-04-12 Simon Josefsson * doc/examples/ex-serv-psk.c: Doc fix. 2008-04-12 Simon Josefsson * NEWS: Add. 2008-04-12 Simon Josefsson * doc/examples/ex-client-psk.c, doc/examples/ex-serv-psk.c: Add, PSK self test. 2008-04-12 Simon Josefsson * lib/gnutls_psk_netconf.c: Typo. 2008-04-12 Simon Josefsson * doc/examples/Makefile.am: Add ex-serv-psk. 2008-04-12 Nikos Mavrogiannopoulos * src/cli.c: get_auth_subkey has one more parameter. 2008-04-12 Nikos Mavrogiannopoulos * lib/opencdk/pubkey.c: return the size of the required buffer to hold the data 2008-04-12 Nikos Mavrogiannopoulos * lib/openpgp/output.c: Deallocate memory from parameters only when function run was successful. 2008-04-12 Nikos Mavrogiannopoulos * lib/gnutls_openpgp.c, lib/openpgp/pgp.c: Added a flag in get_auth_subkey() to work for all use cases 2008-04-10 Nikos * lib/openpgp/pgp.c: do not return any subkey if an authentication subkey is not found 2008-04-10 Nikos * lib/openpgp/extras.c, lib/openpgp/pgp.c, lib/openpgp/privkey.c: corrected bug in openpgp import when data is of size zero. Reported by Daniel Kahn 2008-04-08 Simon Josefsson * lib/gnutls_psk_netconf.c: Fix mem leak on errors. 2008-04-08 Simon Josefsson * doc/manpages/Makefile.am: Generated. 2008-04-08 Simon Josefsson * tests/netconf-psk.c: Fix bugs. 2008-04-08 Simon Josefsson * lib/gnutls_psk_netconf.c: Fix bugs. 2008-04-08 Simon Josefsson * tests/netconf-psk.c: Starting pointer for NETCONF-PSK support. 2008-04-08 Simon Josefsson * NEWS, includes/gnutls/gnutls.h.in, lib/Makefile.am, lib/gnutls_psk_netconf.c, tests/Makefile.am: Starting pointer for NETCONF-PSK support. 2008-04-04 Nikos * lib/openpgp/pgp.c, lib/openpgp/privkey.c: Fail at import stage if a non proper certificate is loaded. 2008-04-04 Simon Josefsson * doc/protocol/draft-nir-tls-eap-03.txt: Add. 2008-04-04 Simon Josefsson * doc/protocol/draft-ietf-netconf-tls-01.txt: Add. 2008-04-03 Simon Josefsson * NEWS: Add. 2008-04-03 Simon Josefsson * lib/auth_psk_passwd.c: (_gnutls_psk_pwd_find_entry): Call fclose after fopen. Tiny patch from Laurence Withers , see . 2008-04-03 Simon Josefsson * : commit 117152d4c91e1c01055eedada1412ec763e5196b Author: Simon Josefsson Date: Thu Apr 3 09:40:01 2008 +0200 2008-04-02 Nikos * NEWS: documented the openpgp updates. 2008-04-02 Nikos * doc/manpages/certtool.1: added the openpgp functionality to the manpage. 2008-04-02 Nikos * lib/openpgp/privkey.c: Corrected exporting the DSA secret key parameters. 2008-04-02 Nikos * lib/openpgp/openpgp_int.h, lib/openpgp/pgp.c, lib/openpgp/privkey.c: Add proper ARMOR header in private keys. 2008-04-02 Nikos * lib/openpgp/output.c, lib/openpgp/pgp.c, lib/openpgp/privkey.c: Consistent printing of revoked status. Consistent printing of key algorithm. 2008-04-02 Nikos * lib/gnutls_errors.c: Added revoked UID error string. 2008-04-02 Nikos * lib/openpgp/output.c, lib/openpgp/privkey.c: Print revoked names. 2008-04-02 Simon Josefsson * doc/protocol/draft-ietf-tls-ecdhe-psk-01.txt: Add. 2008-03-30 Simon Josefsson * lib/crypto.h: Fix warnings. 2008-03-30 Simon Josefsson * lgl/Makefile.am, lgl/gc-libgcrypt.c, lgl/gc.h, lgl/m4/stdlib_h.m4, lgl/stdlib.in.h: Update gnulib files. 2008-03-29 Nikos * NEWS: Documented the --priority option to gnutls-cli and gnutls-serv. 2008-03-29 Nikos * doc/manpages/gnutls-cli.1, doc/manpages/gnutls-serv.1: documented the --priority option. 2008-03-29 Nikos * NEWS: corrected the news entry. 2008-03-29 Nikos * lib/auth_cert.c: Reverted to gnutls 2.2 behaviour of allowing an empty key (for PKCS #11). Reported by Joe Orton. 2008-03-29 Nikos * NEWS: gnutls_crypto_rnd_register: ADDED 2008-03-29 Nikos * : commit 0b37eef0f6b6626d5e4b5936bbc6f012416ef61a Author: Nikos Date: Sat Mar 29 12:01:27 2008 +0200 2008-03-29 Simon Josefsson * doc/protocol/draft-badra-tls-psk-new-mac-aes-gcm-00.txt, doc/protocol/draft-badra-tls-psk-new-mac-aes-gcm-01.txt: Add. 2008-03-28 Simon Josefsson * lgl/gc-libgcrypt.c, lgl/gc.h: Update gnulib files. 2008-03-28 Simon Josefsson * NEWS: Entries added at wrong place, move them. 2008-03-28 Simon Josefsson * NEWS, includes/gnutls/gnutls.h.in: Avoid defining SHA-224 MAC since it isn't specified in TLS 1.2. 2008-03-28 Simon Josefsson * NEWS, includes/gnutls/gnutls.h.in: Add SHA-224 enum types. 2008-03-28 Simon Josefsson * gl/gnulib.mk: Update gnulib files. 2008-03-27 Simon Josefsson * doc/protocol/draft-ietf-tls-rfc4346-bis-10.txt: Add. 2008-03-25 Simon Josefsson * GNUmakefile, build-aux/GNUmakefile, build-aux/maint.mk, cfg.mk, gl/gnulib.mk, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/lib-link.m4, lgl/Makefile.am, lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4, lgl/m4/lib-link.m4, maint-cfg.mk, maint.mk: Update gnulib files. 2008-03-20 Ludovic Courtès * configure.in, guile/src/Makefile.am: Check whether `-fgnu89-inline' is supported before using it. * configure.in: Check for `-fgnu89-inline', define Automake conditional `HAVE_GCC_GNU89_INLINE_OPTION'. * guile/src/Makefile.am (AM_CFLAGS): Only use `-fgnu89-inline' when `HAVE_GCC_GNU89_INLINE_OPTION' is true. 2008-03-19 Simon Josefsson * libextra/gnutls_extra.c: Fix LZO build failure. 2008-03-19 Ludovic Courtès * guile/src/Makefile.am: guile: Compile with `-fgnu89-inline'. * guile/src/Makefile.am (AM_CFLAGS): Add `-fgnu89-inline' when `HAVE_GCC' is true. This works around the fact that GnuTLS is compiled with `-std=c99', while Guile and GMP expect GNU inline semantics, which defer from C99 inline semantics. 2008-03-19 Ludovic Courtès * guile/src/core.c: guile: Don't declare `inline' functions that use `alloca ()'. * guile/src/core.c (set_certificate_file): Remove `inline' keyword. 2008-03-19 Simon Josefsson * NEWS, configure.in: Bump versions. 2008-03-19 Simon Josefsson * ChangeLog: Generated. 2008-03-19 Simon Josefsson * includes/Makefile.am: Dist gnutls/crypto.h. 2008-03-19 Simon Josefsson * NEWS: Version 2.3.4. 2008-03-19 Simon Josefsson * NEWS: Add. 2008-03-19 Simon Josefsson * NEWS: Fix. 2008-03-19 Simon Josefsson * NEWS: Add. 2008-03-19 Simon Josefsson * doc/examples/ex-client-resume.c, lib/crypto.c, lib/gnutls_compress_int.c, lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_openpgp.c, lib/openpgp/extras.c, lib/openpgp/output.c, lib/openpgp/pgp.c, lib/openpgp/privkey.c, libextra/gnutls_extra.c, libextra/gnutls_ia.c, src/certtool.c, src/serv.c: Fix gcc warnings. 2008-03-19 Simon Josefsson * lib/x509/x509.c: Fix warning. 2008-03-16 Nikos * lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h: fixes for all tests to succeed. 2008-03-16 Nikos * includes/gnutls/crypto.h: updated 2008-03-16 Nikos * lib/gnutls_cipher.c, lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, lib/gnutls_constate.c, lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_sig.c, lib/gnutls_srp.c, lib/gnutls_state.c, lib/gnutls_ui.c, lib/x509/pkcs12.c, lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, lib/x509/sign.c, lib/x509/verify.c, lib/x509/x509.c: several fixes in the cipher (register) interface and added hash. 2008-03-16 Nikos * NEWS, includes/gnutls/crypto.h, includes/gnutls/gnutls.h.in, lib/Makefile.am, lib/crypto.c, lib/crypto.h, lib/gnutls_cipher.c, lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, lib/gnutls_constate.c, lib/gnutls_errors.c, lib/gnutls_int.h, lib/gnutls_state.c: Added functionality to override (register) a cipher. Initial functionality for MAC and digest algorithms. 2008-03-11 Simon Josefsson * lib/openpgp/gnutls_openpgp.h: Remove things already in includes/gnutls/openpgp.h. 2008-03-11 Simon Josefsson * lib/gnutls_openpgp.c, lib/opencdk/Makefile.am, lib/opencdk/armor.c, lib/opencdk/context.h, lib/opencdk/filters.h, lib/opencdk/hash.c, lib/opencdk/kbnode.c, lib/opencdk/keydb.c, lib/opencdk/literal.c, lib/opencdk/main.c, lib/opencdk/main.h, lib/opencdk/misc.c, lib/opencdk/new-packet.c, lib/opencdk/opencdk.h, lib/opencdk/packet.h, lib/opencdk/pubkey.c, lib/opencdk/read-packet.c, lib/opencdk/seskey.c, lib/opencdk/sig-check.c, lib/opencdk/stream.c, lib/opencdk/stream.h, lib/opencdk/types.h, lib/opencdk/verify.c, lib/opencdk/write-packet.c, lib/openpgp/Makefile.am, lib/openpgp/compat.c, lib/openpgp/extras.c, lib/openpgp/pgp.c, lib/openpgp/pgpverify.c, lib/openpgp/privkey.c: Clean up license headers for OpenPGP code. According to Nikos they are now licensed under the LGPL, see: http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/2658/focus=2659 2008-03-11 Simon Josefsson * lib/Makefile.am: Typo. 2008-03-11 Simon Josefsson * gl/gnulib.mk, gl/m4/gnulib-comp.m4, gl/m4/include_next.m4, gl/m4/stdarg.m4, gl/stdarg.in.h, lgl/Makefile.am, lgl/m4/absolute-header.m4, lgl/m4/gnulib-comp.m4, lgl/m4/include_next.m4: Update gnulib files. 2008-03-10 Simon Josefsson * NEWS: Add. 2008-03-10 Simon Josefsson * build-aux/gendocs.sh, gl/m4/fseeko.m4: Update gnulib files. 2008-03-10 Simon Josefsson * includes/gnutls/gnutls.h.in: Finish renaming of export x509/openpgp functions. In particular, gnutls_certificate_get_x509_cas, gnutls_certificate_get_x509_crls, and gnutls_certificate_get_openpgp_keyring. 2008-03-10 Simon Josefsson * NEWS, configure.in: Bump versions. 2008-03-10 Simon Josefsson * ChangeLog: Generated. 2008-03-10 Simon Josefsson * libextra/Makefile.am: Revert a3e4759117cee5d756475215437a440dc12fcc6c because it breaks libtool v2.2. ../libtool: line 4398: cd: ../../lib/.libs: No such file or directory libtool: link: cannot determine absolute directory name of `../../lib/.libs' 2008-03-10 Simon Josefsson * NEWS: Version 2.3.3. 2008-03-10 Simon Josefsson * NEWS: Fix. 2008-03-10 Simon Josefsson * NEWS: Fix. 2008-03-10 Simon Josefsson * NEWS, doc/reference/Makefile.am, libextra/Makefile.am, libextra/gnutls_extra.c, libextra/gnutls_extra.h: Remove gnutls_extra.h, not needed anymore. Fixes build failure in libextra that looked for opencdk.h (via auth_cert.h). Reported by Roman Bogorodskiy . 2008-03-08 Nikos * : commit cf8fb4bca34ec865959f1544e395b5566f2449ac Author: Nikos Date: Sat Mar 8 02:06:25 2008 +0200 2008-03-07 Ludovic Courtès * guile/src/Makefile.am: guile: Propagate Guile's CPPFLAGS to `guile-snarf'. 2008-03-07 Ludovic Courtès * guile/src/make-enum-header.scm, guile/src/utils.h: guile: Include , not "config.h". 2008-03-07 Simon Josefsson * NEWS: Add. 2008-03-07 Simon Josefsson * THANKS: Add. 2008-03-06 Simon Josefsson * NEWS: Add. 2008-03-06 Simon Josefsson * doc/reference/gnutls-docs.sgml: Add index. 2008-03-06 Simon Josefsson * lib/x509_b64.c: Doc fixes. 2008-03-06 Simon Josefsson * lib/gnutls_alert.c: Doc fix. 2008-03-06 Simon Josefsson * NEWS, includes/gnutls/gnutls.h.in, lib/gnutls_str.c: Fix gnutls_hex2bin prototype. 2008-03-06 Simon Josefsson * doc/manpages/Makefile.am: Generated. 2008-03-06 Simon Josefsson * src/cli.c: Fix warnings. 2008-03-06 Simon Josefsson * src/select.c: Avoid confusing gtk-doc. 2008-03-06 Simon Josefsson * lib/opencdk/kbnode.c: Doc fixes. 2008-03-06 Simon Josefsson * lib/opencdk/stream.c, lib/opencdk/verify.c: Doc fixes. 2008-03-06 Simon Josefsson * lib/openpgp/privkey.c: Doc fixes. 2008-03-06 Simon Josefsson * lib/openpgp/pgp.c, lib/openpgp/privkey.c: Doc fixes. 2008-03-06 Simon Josefsson * lib/gnutls_algorithms.c, lib/gnutls_state.c: Doc fixes. 2008-03-06 Simon Josefsson * lib/gnutls_alert.c, lib/gnutls_algorithms.c, lib/gnutls_record.c, lib/gnutls_state.c: Doc fixes. 2008-03-06 Simon Josefsson * lib/gnutls_ui.c: Doc fix. 2008-03-06 Simon Josefsson * lib/gnutls_db.c: Doc fix. 2008-03-06 Simon Josefsson * lib/gnutls_session.c: Doc fix. 2008-03-06 Simon Josefsson * lib/gnutls_global.c: Doc fix. 2008-03-06 Simon Josefsson * lib/gnutls_srp.c: Doc fix. 2008-03-06 Simon Josefsson * lib/gnutls_auth.c, lib/gnutls_openpgp.c, lib/gnutls_srp.c, libextra/gnutls_ia.c: Doc fixes. 2008-03-06 Simon Josefsson * m4/pkg.m4: Added, needed by new gtk-doc.m4. 2008-03-06 Simon Josefsson * doc/reference/Makefile.am: Update gtk-doc Makefile.am to latest examples. 2008-03-06 Simon Josefsson * doc/reference/tmpl/gnutls-unused.sgml, gtk-doc.make: Update gtk-doc makefile, this version allows us to get rid of tmpl/. 2008-03-06 Simon Josefsson * m4/gtk-doc.m4: Update gtk-doc.m4. 2008-03-06 Simon Josefsson * lib/gnutls_alert.c, lib/gnutls_cert.c, lib/gnutls_global.c, lib/gnutls_psk.c, lib/gnutls_record.c, lib/gnutls_srp.c, lib/gnutls_state.c, lib/gnutls_ui.c, lib/gnutls_x509.c: Doc fix, remove verbose 'This function ...' Improves looks in 'apropos' output. 2008-03-06 Simon Josefsson * lib/gnutls_anon_cred.c, lib/gnutls_db.c, lib/gnutls_dh_primes.c, lib/gnutls_handshake.c, lib/gnutls_openpgp.c, lib/gnutls_psk.c, lib/gnutls_rsa_export.c, lib/gnutls_state.c, lib/gnutls_ui.c, lib/x509_b64.c: Doc fix, remove verbose 'This function will' stuff. Improves man page look in 'apropos'. 2008-03-06 Simon Josefsson * lgl/Makefile.am, lgl/m4/func.m4, lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4: Use func module, to get __func__. 2008-03-05 Simon Josefsson * NEWS: Add. 2008-03-05 Simon Josefsson * NEWS, src/common.c: Print DH parameters of session. 2008-03-05 Simon Josefsson * gl/getaddrinfo.c, gl/getdelim.c, lgl/alloca.in.h, lgl/gc-gnulib.c, lgl/xsize.h: Update gnulib files. 2008-02-28 Simon Josefsson * guile/src/utils.c: Use __func__ instead of __FUNCTION__. Reported by Tim Mooney, see . A gnulib module to make sure __func__ is available would be nice. 2008-02-27 Simon Josefsson * NEWS: Add. 2008-02-27 Simon Josefsson * lib/x509/x509_write.c: Doc fix. 2008-02-27 Simon Josefsson * NEWS, lib/gnutls_x509.c: Optimize adding many trusted certificates. See . 2008-02-26 Simon Josefsson * lib/x509/x509_write.c: Doc fixes. 2008-02-26 Simon Josefsson * AUTHORS: Add. 2008-02-26 Simon Josefsson * AUTHORS: Add. 2008-02-26 Simon Josefsson * NEWS, configure.in: Bump versions. 2008-02-26 Simon Josefsson * Makefile.am: Fix release target. 2008-02-26 Simon Josefsson * ChangeLog: Generated. 2008-02-26 Simon Josefsson * NEWS: Version 2.3.2. 2008-02-26 Simon Josefsson * tests/openpgpself.c: Force success. 2008-02-26 Simon Josefsson * NEWS: Add. 2008-02-26 Simon Josefsson * doc/reference/Makefile.am, lib/Makefile.am, lib/gnutls_db.c, lib/gnutls_session.h: Remove empty gnutls_session.h. 2008-02-26 Simon Josefsson * lib/x509/x509_int.h: align comments 2008-02-26 Simon Josefsson * lib/x509/x509_int.h: Pull in gnutls/pkcs12.h instead of duplicating stuff. 2008-02-26 Simon Josefsson * lib/x509/Makefile.am, lib/x509/pkcs12.c, lib/x509/pkcs12.h, lib/x509/pkcs12_bag.c, lib/x509/privkey_pkcs8.c, lib/x509/x509_int.h: Move lib/x509/pkcs12.h stuff to x509_int.h. 2008-02-26 Simon Josefsson * doc/reference/Makefile.am, lib/gnutls_cert.c, lib/gnutls_dh_primes.c, lib/gnutls_pk.c, lib/gnutls_x509.c, lib/x509/Makefile.am, lib/x509/common.c, lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/extensions.c, lib/x509/mpi.c, lib/x509/mpi.h, lib/x509/pkcs12.c, lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, lib/x509/sign.c, lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509_int.h, lib/x509/x509_write.c: Move mpi.h stuff to x509_int.h. 2008-02-26 Simon Josefsson * doc/reference/Makefile.am, lib/gnutls_str.c, lib/gnutls_str.h, lib/openpgp/pgp.c, lib/x509/Makefile.am, lib/x509/rfc2818.h, lib/x509/rfc2818_hostname.c: Move rfc2818.h hostname comparison to gnutls_str.h and update callers. 2008-02-26 Simon Josefsson * libextra/openssl_compat.c: gnutls_int includes config.h, no need to do it twice. 2008-02-26 Simon Josefsson * libextra/openssl_compat.c: Need gnutls_int.h for mpi_t and stuff (now in lib/x509/x509_int.h). 2008-02-26 Simon Josefsson * doc/reference/Makefile.am, lib/x509/Makefile.am, lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/extensions.c, lib/x509/extensions.h, lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, lib/x509/x509.c, lib/x509/x509_int.h, lib/x509/x509_write.c: Move extensions.h stuff to x509_int.h. 2008-02-26 Simon Josefsson * doc/reference/Makefile.am, lib/gnutls_rsa_export.c, lib/gnutls_x509.c, lib/x509/Makefile.am, lib/x509/pkcs12_bag.c, lib/x509/privkey.h, lib/x509/privkey_pkcs8.c, lib/x509/x509.c, lib/x509/x509_int.h: Move privkey.h stuff to x509_int.h. 2008-02-26 Simon Josefsson * doc/reference/Makefile.am, lib/gnutls_x509.c, lib/openpgp/pgpverify.c, lib/x509/Makefile.am, lib/x509/privkey.c, lib/x509/sign.c, lib/x509/verify.c, lib/x509/verify.h, lib/x509/x509.c, lib/x509/x509_int.h: Move verify.h stuff to x509_int.h. 2008-02-26 Simon Josefsson * doc/reference/Makefile.am, lib/gnutls_x509.c, lib/x509/Makefile.am, lib/x509/pkcs7.c, lib/x509/pkcs7.h, lib/x509/x509_int.h: Move pkcs7.h stuff to x509_int.h. 2008-02-26 Simon Josefsson * doc/reference/Makefile.am, lib/x509/Makefile.am, lib/x509/dsa.c, lib/x509/dsa.h, lib/x509/privkey.c, lib/x509/x509_int.h: Move dsa.h stuff to x509_int.h. 2008-02-26 Simon Josefsson * doc/reference/Makefile.am, lib/x509/Makefile.am, lib/x509/crl.c, lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/dn.c, lib/x509/dn.h, lib/x509/pkcs12.c, lib/x509/pkcs7.c, lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, lib/x509/rfc2818_hostname.c, lib/x509/sign.c, lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509_int.h, lib/x509/x509_write.c, libextra/openssl_compat.c: Move dn.h stuff to x509_int.h. 2008-02-26 Simon Josefsson * doc/reference/Makefile.am, lib/x509/Makefile.am, lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/privkey.c, lib/x509/sign.c, lib/x509/sign.h, lib/x509/x509_int.h, lib/x509/x509_write.c: Move sign.h stuff to x509_int.h. 2008-02-26 Simon Josefsson * lib/openpgp/privkey.c: No need for rfc2818.h. 2008-02-26 Simon Josefsson * lib/x509/x509_int.h: Doc fixes. 2008-02-26 Simon Josefsson * lib/x509/x509_int.h: Remove stuff already in includes/gnutls/x509.h. 2008-02-26 Simon Josefsson * .gitignore: [no log message] 2008-02-26 Simon Josefsson * Makefile.am, build-aux/gnupload, gl/gnulib.mk, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4: Use gnupload. 2008-02-26 Simon Josefsson * doc/protocol/draft-ietf-tls-rfc4366-bis-02.txt: Add. 2008-02-25 Simon Josefsson * doc/reference/Makefile.am, lib/x509/Makefile.am, lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/crq.h, lib/x509/x509_int.h, lib/x509/x509_write.c: Merge crq.h into x509_int.h, avoid one trivial header file. 2008-02-25 Simon Josefsson * doc/manpages/Makefile.am: Generated. 2008-02-25 Simon Josefsson * lib/x509/Makefile.am: Rename x509.h to x509_int.h. 2008-02-25 Simon Josefsson * NEWS: Add. 2008-02-25 Simon Josefsson * lib/auth_cert.h, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_rsa_export.c, lib/gnutls_x509.c, lib/x509/crl.c, lib/x509/extensions.c, lib/x509/mpi.c, lib/x509/mpi.h, lib/x509/output.c, lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, lib/x509/rfc2818_hostname.c, lib/x509/sign.c, lib/x509/verify.c, lib/x509/verify.h, lib/x509/x509.c, lib/x509/x509.h, lib/x509/x509_int.h: Rename lib/x509/x509.h to x509_int.h. Fixes name-space collision that confuses GTK-DOC with includes/gnutls/x509.h. 2008-02-25 Simon Josefsson * lib/auth_cert.h, lib/openpgp/Makefile.am, lib/openpgp/compat.c, lib/openpgp/extras.c, lib/openpgp/openpgp.h, lib/openpgp/openpgp_int.h, lib/openpgp/pgp.c, lib/openpgp/pgpverify.c, lib/openpgp/privkey.c: Rename lib/openpgp/openpgp.h to openpgp_int.h. Fixes name-space collision that confuses GTK-DOC with includes/gnutls/openpgp.h. 2008-02-25 Simon Josefsson * doc/reference/Makefile.am: Change DOC_SOURCE_DIR, needed for GTK-DOC to have comments for variables. 2008-02-25 Simon Josefsson * lib/gnutls_int.h: Remove unused defines. 2008-02-25 Simon Josefsson * tests/moredn.c: Added, lost part of Joe's original gnutls_x509_dn_export patch. 2008-02-25 Simon Josefsson * lgl/Makefile.am, lgl/m4/time_r.m4, lgl/m4/unistd_h.m4, lgl/unistd.in.h: Update gnulib files. 2008-02-25 Simon Josefsson * doc/protocol/draft-badra-tls-password-ext-01.txt: Add. 2008-02-24 Nikos * NEWS, doc/manpages/Makefile.am, includes/gnutls/x509.h, lib/x509/common.c, lib/x509/common.h, lib/x509/dn.c, tests/Makefile.am: Added gnutls_x509_dn_export(). Patch by Joe Orton. 2008-02-21 Nikos * lib/gnutls_cert.c: _export_ -> _get_ 2008-02-21 Simon Josefsson * NEWS: Add. 2008-02-21 Simon Josefsson * tests/openpgpself.c: Don't use credentials from files (causes problems with srcdir!=builddir). 2008-02-21 Simon Josefsson * NEWS, configure.in: Bump version. 2008-02-21 Simon Josefsson * ChangeLog: Generated. 2008-02-21 Simon Josefsson * NEWS: Version 2.3.1. 2008-02-21 Simon Josefsson * NEWS: Add. 2008-02-21 Simon Josefsson * doc/manpages/Makefile.am: Generated. 2008-02-21 Simon Josefsson * NEWS: Fixes. 2008-02-21 Simon Josefsson * NEWS: Typo. 2008-02-21 Simon Josefsson * NEWS: Fix. 2008-02-21 Simon Josefsson * NEWS, includes/gnutls/compat.h, includes/gnutls/gnutls.h.in, lib/x509/output.c, src/certtool.c, src/serv.c: Use better names in gnutls_certificate_print_formats_t. 2008-02-21 Simon Josefsson * NEWS: Mention new APIs. 2008-02-21 Simon Josefsson * includes/gnutls/openpgp.h: Drop gnutls_openpgp_crt_get_id (handled by compat.h). 2008-02-21 Simon Josefsson * NEWS: Fix. 2008-02-21 Simon Josefsson * NEWS: Credit. 2008-02-21 Simon Josefsson * NEWS, includes/gnutls/compat.h, lib/openpgp/pgp.c: Cleanup gnutls_openpgp_crt_get_id vs gnutls_openpgp_crt_get_key_id. 2008-02-21 Simon Josefsson * includes/gnutls/gnutls.h.in: Typo. 2008-02-21 Simon Josefsson * includes/gnutls/gnutls.h.in, includes/gnutls/openpgp.h: Make it build. 2008-02-21 Simon Josefsson * doc/protocol/draft-ietf-tls-extractor-01.txt, doc/protocol/draft-mavrogiannopoulos-rfc5081bis-00.txt: Add. 2008-02-20 Nikos * NEWS: removed function 2008-02-20 Nikos * NEWS, includes/gnutls/gnutls.h.in, lib/gnutls_cert.c: Added gnutls_certificate_export_x509_cas and other functions to export elements from the certificate credentials structure. 2008-02-19 Nikos * lib/auth_cert.h, lib/openpgp/openpgp.h: changes to compile with ENABLE_OPENPGP undef. 2008-02-19 Nikos * lib/openpgp/pgp.c: do not return more than the available names. 2008-02-19 Nikos * lib/openpgp/output.c: corrected bug that prevented printing the names. 2008-02-19 Nikos * tests/openpgp_test.c, tests/openpgpself.c: some updates 2008-02-19 Nikos * tests/Makefile.am, tests/openpgpself.c: added self test for openpgp connection 2008-02-19 Nikos * NEWS, includes/gnutls/x509.h, lib/x509/dn.c, lib/x509/x509.c, tests/Makefile.am, tests/x509dn.c: Added gnutls_x509_dn_import/init/deinit() to access raw DER DN. Patch by Joe Orton. 2008-02-19 Nikos * lib/auth_cert.c, lib/gnutls_cert.c, lib/gnutls_openpgp.c, lib/openpgp/gnutls_openpgp.h: better usage of gnutls_openpgp_keyid_t 2008-02-19 Nikos * lib/auth_cert.c, lib/gnutls_openpgp.c, lib/openpgp/extras.c, lib/openpgp/output.c, lib/openpgp/pgpverify.c, lib/openpgp/privkey.c: copyright 2008 2008-02-18 Nikos * doc/examples/ex-serv-pgp.c, includes/gnutls/gnutls.h.in, includes/gnutls/openpgp.h, lib/auth_cert.c, lib/gnutls_cert.c, lib/gnutls_openpgp.c, lib/openpgp/extras.c, lib/openpgp/gnutls_openpgp.h, lib/openpgp/openpgp.h, lib/openpgp/output.c, lib/openpgp/pgp.c, lib/openpgp/pgpverify.c, lib/openpgp/privkey.c, src/certtool.c, src/cli-gaa.c, src/cli.c, src/serv-gaa.c, tests/openpgp/keyring.c: pgp_keyid_t is now compatible with the 2.2 key id. 2008-02-18 Nikos * : commit 8784572575208f8755087125b168bb0a8832cee4 Author: Nikos Date: Mon Feb 18 17:58:24 2008 +0200 2008-02-18 Simon Josefsson * README: Don't mention SSL/TLS versions here. Some minor other fixes. 2008-02-18 Simon Josefsson * includes/gnutls/openpgp.h: For compatibility. 2008-02-18 Simon Josefsson * lib/openpgp/openpgp.h: Remove all external APIs already declared in includes/gnutls/openpgp.h. 2008-02-18 Simon Josefsson * NEWS, includes/gnutls/compat.h, lib/openpgp/pgp.c: Re-add gnutls_openpgp_crt_get_id to avoid breaking ABI. 2008-02-18 Simon Josefsson * NEWS: Mention gnutls_openpgp_keyid_t. 2008-02-18 Simon Josefsson * lgl/m4/vasnprintf.m4, lgl/vasnprintf.c: Update gnulib files. 2008-02-17 Nikos * lib/x509/x509.c: corrected string handling in parse_general_name. Thanks to Andreas Metzler for pointing out. 2008-02-17 Nikos * NEWS, lib/gnutls_int.h, lib/gnutls_ui.c, lib/gnutls_x509.c: Increased the default certificate verification chain limits and allowed for checks without limitation. 2008-02-17 Nikos * lib/gnutls_priority.c: corrected previous fix in priorities handling. 2008-02-17 Nikos * NEWS, lib/auth_dh_common.c, lib/gnutls_auth.c, lib/gnutls_session.c, lib/gnutls_session_pack.c: Corrected memory leaks in session resuming and DHE ciphersuites. Reported by Daniel Stenberg. 2008-02-15 Nikos * NEWS: documented the gnutls_x509_crt_get_subject_alt_name fix. 2008-02-15 Nikos * lib/x509/x509.c: null terminate only printable strings. 2008-02-14 Simon Josefsson * doc/protocol/draft-ietf-tls-des-idea-00.txt: Add. 2008-02-13 Simon Josefsson * NEWS: Add. 2008-02-12 Simon Josefsson * doc/protocol/draft-ietf-tls-ecc-new-mac-04.txt: Add. 2008-02-12 Simon Josefsson * NEWS: Add. 2008-02-12 Simon Josefsson * lib/auth_srp_sb64.c: Doc fixes, to clarify that srp_base64 != base64. Based on discussion in . 2008-02-10 Simon Josefsson * doc/protocol/draft-ietf-tls-ecc-new-mac-03.txt, doc/protocol/draft-ietf-tls-rfc4346-bis-09.txt, doc/protocol/draft-ietf-tls-rsa-aes-gcm-02.txt: Add. 2008-02-07 Nikos * : commit 5178625a7e120fdf7b859f52848aa9cc69574268 Author: Nikos Date: Thu Feb 7 18:15:26 2008 +0200 2008-02-06 Simon Josefsson * GNUmakefile, Makefile.am, maint-cfg.mk: Brace expansion is not POSIX portable. 2008-02-04 Simon Josefsson * NEWS: Add. 2008-02-04 Simon Josefsson * src/cli.c: When --debug is given, also print libgcrypt RNG information. 2008-02-04 Simon Josefsson * NEWS, doc/gnutls.texi: Add 'On Record Padding' section. 2008-02-04 Simon Josefsson * doc/gnutls.texi: Re-order indices so they are last in the PDF. 2008-02-04 Simon Josefsson * NEWS: Merge in 2.2.1 release notes. 2008-02-03 Simon Josefsson * lib/gnutls_cert.c: Make it compile. 2008-02-03 Simon Josefsson * lib/defines.h: Drop SIZEOF_UNSIGNED_LONG_INT, it's done in configure.in now. 2008-02-03 Simon Josefsson * lgl/Makefile.am, lgl/m4/md4.m4, lgl/m4/md5.m4, lgl/m4/sha1.m4, lgl/m4/unistd_h.m4, lgl/md2.c, lgl/md2.h, lgl/md4.c, lgl/md4.h, lgl/md5.c, lgl/md5.h, lgl/sha1.c, lgl/sha1.h, lgl/unistd.in.h: Update gnulib files. 2008-02-01 Simon Josefsson * configure.in, lib/minitasn1/int.h, lib/minitasn1/libtasn1.h, lib/minitasn1/structure.c: Update libtasn1 to 1.3. 2008-01-31 Simon Josefsson * lgl/Makefile.am, lgl/m4/unistd_h.m4, lgl/unistd.in.h, lgl/vasnprintf.c: Update gnulib files. 2008-01-27 Nikos * src/certtool.c: some updates 2008-01-27 Nikos * includes/gnutls/openpgp.h: new definitions 2008-01-26 Nikos * : commit 2d73da902a2a983cf146d32e7528f8d5d3efc287 Author: Nikos Date: Sat Jan 26 23:08:18 2008 +0200 2008-01-26 Simon Josefsson * doc/protocol/rfc5077.txt: Add. 2008-01-26 Simon Josefsson * doc/protocol/draft-ietf-tls-rfc4346-bis-08.txt: Add. 2008-01-25 Nikos * lib/gnutls_openpgp.c, lib/openpgp/extras.c: updates in openpgp keyring handling. 2008-01-25 Nikos * lib/opencdk/Makefile.am, lib/opencdk/keydb.c, lib/opencdk/keydb.h, lib/opencdk/opencdk.h: Modified the search to include a state. 2008-01-25 Nikos * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: print keyrings 2008-01-23 Simon Josefsson * doc/manpages/Makefile.am: Simplify output. 2008-01-23 Simon Josefsson * doc/manpages/Makefile.am: Fix paths. 2008-01-19 Simon Josefsson * configure.in: Bump version so we are higher than gnutls 2.2.x but remain compatible. This will avoid shared library name conflicts with 2.2.x, and also that any 2.3.x libraries will always be prefered over 2.2.x. 2008-01-19 Simon Josefsson * build-aux/gendocs.sh, gl/error.h, lgl/Makefile.am, lgl/gc-libgcrypt.c, lgl/m4/gnulib-comp.m4, lgl/m4/string_h.m4, lgl/memmem.c, lgl/stdio.in.h, lgl/str-two-way.h, lgl/string.in.h, lgl/vasnprintf.h: Update gnulib files. 2008-01-17 Simon Josefsson * AUTHORS: Update Ludovic's e-mail. 2008-01-17 Simon Josefsson * guile/tests/openpgp-auth.scm: Also test dhe-rsa. 2008-01-15 Simon Josefsson * libextra/openpgp/Makefile.am, libextra/openpgp/compat.c, libextra/openpgp/extras.c, libextra/openpgp/gnutls_openpgp.h, libextra/openpgp/openpgp.h, libextra/openpgp/pgp.c, libextra/openpgp/pgpverify.c, libextra/openpgp/privkey.c: Remove openpgp files moved to lib/openpgp/. 2008-01-15 Simon Josefsson * doc/Makefile.am: Fix pgp-api.texi move. 2008-01-14 Simon Josefsson * doc/protocol/rfc2440.txt: Fix chmod. 2008-01-14 Simon Josefsson * doc/protocol/draft-ietf-tls-rfc4366-bis-01.txt: Add. 2008-01-14 Nikos * : commit c6093b9df165dfbfbce8922e2192eedba5303f08 Author: Nikos Date: Mon Jan 14 21:08:18 2008 +0200 2008-01-14 Nikos * NEWS: documented more changes. 2008-01-14 Nikos * tests/openpgp/keyring.c: changes for the new api 2008-01-14 Simon Josefsson * lgl/Makefile.am, lgl/m4/alloca.m4, lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4, lgl/m4/memmem.m4, lgl/string.in.h: Use gnulib's memmem-simple instead. 2008-01-14 Simon Josefsson * configure.in: Remove libextra/minilozo/Makefile. 2008-01-14 Nikos * includes/gnutls/openpgp.h, lib/openpgp/privkey.c, src/certtool.c: openpgp_privkey_export() has parameters to export encrypted secret keys. Added for future compatibility. 2008-01-13 Simon Josefsson * doc/protocol/draft-ietf-tls-rsa-aes-gcm-01.txt: Add. 2008-01-13 Nikos * lib/gnutls_openpgp.c: use the first valid subkey if an authentication subkey is not found. 2008-01-13 Nikos * NEWS, includes/gnutls/compat.h, includes/gnutls/openpgp.h, lib/openpgp/openpgp.h, lib/openpgp/output.c, lib/openpgp/pgp.c, lib/openpgp/pgpverify.c, lib/openpgp/privkey.c, src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: Additions to make certtool print information on openpgp keys. 2008-01-13 Nikos * NEWS: documented changes. 2008-01-13 Nikos * README, configure.in, includes/gnutls/gnutls.h.in, includes/gnutls/openpgp.h, lib/Makefile.am, lib/auth_cert.c, lib/auth_cert.h, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_errors.c, lib/gnutls_extra_hooks.c, lib/gnutls_extra_hooks.h, lib/gnutls_openpgp.c, lib/gnutls_state.c, lib/opencdk/Makefile.am, lib/opencdk/README, lib/opencdk/armor.c, lib/opencdk/context.h, lib/opencdk/dummy.c, lib/opencdk/filters.h, lib/opencdk/hash.c, lib/opencdk/kbnode.c, lib/opencdk/keydb.c, lib/opencdk/literal.c, lib/opencdk/main.c, lib/opencdk/main.h, lib/opencdk/misc.c, lib/opencdk/new-packet.c, lib/opencdk/opencdk.h, lib/opencdk/packet.h, lib/opencdk/pubkey.c, lib/opencdk/read-packet.c, lib/opencdk/seskey.c, lib/opencdk/sig-check.c, lib/opencdk/stream.c, lib/opencdk/stream.h, lib/opencdk/types.h, lib/opencdk/verify.c, lib/opencdk/write-packet.c, lib/openpgp/Makefile.am, lib/openpgp/compat.c, lib/openpgp/extras.c, lib/openpgp/gnutls_openpgp.h, lib/openpgp/openpgp.h, lib/openpgp/output.c, lib/openpgp/pgp.c, lib/openpgp/pgpverify.c, lib/openpgp/privkey.c, libextra/Makefile.am, libextra/gnutls_extra.c, libextra/gnutls_openpgp.c, libextra/opencdk/Makefile.am, libextra/opencdk/README, libextra/opencdk/armor.c, libextra/opencdk/cipher.c, libextra/opencdk/compress.c, libextra/opencdk/context.h, libextra/opencdk/dummy.c, libextra/opencdk/filters.h, libextra/opencdk/kbnode.c, libextra/opencdk/keydb.c, libextra/opencdk/literal.c, libextra/opencdk/main.c, libextra/opencdk/main.h, libextra/opencdk/misc.c, libextra/opencdk/new-packet.c, libextra/opencdk/opencdk.h, libextra/opencdk/packet.h, libextra/opencdk/pubkey.c, libextra/opencdk/read-packet.c, libextra/opencdk/seskey.c, libextra/opencdk/sig-check.c, libextra/opencdk/stream.c, libextra/opencdk/stream.h, libextra/opencdk/types.h, libextra/opencdk/verify.c, libextra/opencdk/write-packet.c, src/Makefile.am, src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa, src/cli.c, src/serv.c, src/tls_test.c: merged the openpgp branch to head\! 2008-01-12 Nikos * libextra/Makefile.am: Added fix by Alon to avoid linking against /usr/lib/libgnutls.so. 2008-01-09 Simon Josefsson * GNUmakefile, maint-cfg.mk: Re-add config.rpath hack, since gnulib updated config.rpath. 2008-01-09 Simon Josefsson * build-aux/config.rpath, lgl/Makefile.am, lgl/dummy.c, lgl/m4/eealloc.m4, lgl/m4/gnulib-comp.m4, lgl/m4/malloca.m4, lgl/malloca.c, lgl/malloca.h, lgl/malloca.valgrind, lgl/memmem.c, lgl/printf-parse.c: Update gnulib files. 2008-01-08 Simon Josefsson * NEWS, configure.in: Bump versions. 2008-01-08 Simon Josefsson * ChangeLog: Generated. 2008-01-08 Simon Josefsson * NEWS: Version 2.3.0. 2008-01-08 Simon Josefsson * po/LINGUAS: Sync with TP. 2008-01-08 Simon Josefsson * po/LINGUAS: Sync with TP. 2008-01-08 Simon Josefsson * configure.in: Further LZO fixes. 2008-01-08 Simon Josefsson * doc/reference/Makefile.am: Cleanup after LZO removal. 2008-01-08 Simon Josefsson * NEWS, configure.in, doc/gnutls.texi, libextra/Makefile.am, libextra/minilzo/Makefile.am, libextra/minilzo/README.LZO, libextra/minilzo/lzoconf.h, libextra/minilzo/lzodefs.h, libextra/minilzo/minilzo.c, libextra/minilzo/minilzo.h, libextra/minilzo/testmini.c: Remove LZO compression support. 2008-01-08 Simon Josefsson * Makefile.am: Call git-push (git-push --tags doesn't push changes..). 2008-01-08 Simon Josefsson * NEWS, gl/progname.c, lgl/m4/memmem.m4, lgl/memmem.c: Update gnulib files. 2008-01-07 Simon Josefsson * NEWS: Add. 2008-01-07 Simon Josefsson * lib/ext_server_name.c: Handle more than one server name field correctly. Tiny patch from mark.phillips@virgin.net. 2008-01-05 Simon Josefsson * configure.in: Drop -D_REENTRANT -D_THREAD_SAFE, not needed as far as I can tell. 2008-01-04 Simon Josefsson * NEWS: Add. 2008-01-04 Simon Josefsson * po/LINGUAS, po/ms.po: Sync with TP. 2008-01-04 Simon Josefsson * po/LINGUAS: Sync with TP. 2008-01-02 Simon Josefsson * doc/manpages/Makefile.am: Bump copyright years. 2008-01-02 Simon Josefsson * NEWS: Remove dupe entry. 2008-01-02 Simon Josefsson * gl/fseeko.c, gl/m4/gnulib-comp.m4, gl/progname.c, gl/version-etc.c, lgl/Makefile.am, lgl/float.in.h, lgl/m4/float_h.m4, lgl/m4/gnulib-comp.m4, lgl/m4/memmem.m4, lgl/m4/stdlib_h.m4, lgl/m4/string_h.m4, lgl/m4/unistd_h.m4, lgl/memmem.c, lgl/stdint.in.h, lgl/stdlib.in.h, lgl/string.in.h, lgl/unistd.in.h: Update gnulib files. 2008-01-02 Simon Josefsson * lgl/dummy.c, lgl/m4/eealloc.m4, lgl/m4/malloca.m4, lgl/m4/memchr.m4, lgl/m4/memcmp.m4, lgl/malloca.c, lgl/malloca.h, lgl/malloca.valgrind, lgl/memchr.c, lgl/memcmp.c: Update gnulib files. 2008-01-02 Simon Josefsson * gl/.gitignore, lgl/.gitignore: Remove .gitignore's from gnulib. 2007-12-21 Simon Josefsson * doc/protocol/draft-ietf-tls-ecc-new-mac-02.txt, doc/protocol/draft-ietf-tls-extractor-00.txt: Add. 2007-12-21 Simon Josefsson * lib/gnutls_priority.c: Doc fixes. 2007-12-17 Simon Josefsson * doc/protocol/draft-hajjeh-tls-sign-04.txt: Add. 2007-12-15 Nikos * lib/gnutls_state.c: Fix for certificate selection in servers with certificate callbacks. 2007-12-16 Nikos * : 1 2 lib/gnutls_state.c 2007-12-10 Simon Josefsson * lib/minitasn1/libtasn1.h: Bump versions. 2007-12-14 Simon Josefsson * NEWS: Merge in old NEWS entries. 2007-12-14 Simon Josefsson * po/LINGUAS, po/nl.po, po/pl.po, po/sv.po: Sync with TP. 2007-12-13 Simon Josefsson * .cvscopying: Add 2007. 2007-12-13 Simon Josefsson * NEWS: Add. 2007-12-13 Simon Josefsson * lib/gnutls_state.c: If the server has a callback, the search for a valid certificate will fail. Patch from Nikos. 2007-12-13 Simon Josefsson * doc/protocol/draft-hajjeh-tls-identity-protection-02.txt: Add. 2007-12-12 Ludovic Courtès * : commit a37e52e18a625138cb0e3441023e2ac9fbb62552 Author: Ludovic Courtès Date: Tue Dec 11 18:23:15 2007 +0100 2007-12-11 Ludovic Courtès * guile/tests/openpgp-auth.scm, guile/tests/openpgp-keyring.scm, guile/tests/openpgp-keys.scm: Update Guile OpenPGP test cases to use the new names. * guile/tests/*.scm: Substitute `certificate' to `public-key' in tests using the OpenPGP API. 2007-12-11 Ludovic Courtès * doc/guile.texi: Update OpenPGP names in Guile examples. * doc/guile.texi (Guile Examples): Substitute `certificate' to `public-key' in OpenPGP examples. 2007-12-11 Ludovic Courtès * guile/modules/gnutls.scm, guile/modules/gnutls/extra.scm, guile/pre-inst-guile.in, guile/src/Makefile.am: Bump Guile glue libraries version number. * guile/modules/gnutls.scm: Load `libguile-gnutls-v-1'. * guile/modules/gnutls/extra.scm: Load `libguile-gnutls-extra-v-1'. * guile/pre-inst-guile.in: Load `v-1' libraries. * guile/src/Makefile.am (lib_LTLIBRARIES): Bump libraries from `v-0' to `v-1'. Update all variables. 2007-12-11 Ludovic Courtès * guile/modules/gnutls/build/enums.scm, guile/modules/gnutls/build/smobs.scm, guile/modules/gnutls/extra.scm, guile/src/extra.c: Substitute `certificate' to `public-key' in `(gnutls extra)'. * guile/modules/gnutls/build/enums.scm (%openpgp-key-format-enum): Rename to... (%openpgp-certificate-format-enum): This. (%gnutls-extra-enums): Update. * guile/modules/gnutls/build/smobs.scm (%openpgp-public-key-smob): Rename to... (%openpgp-certificate-smob): This. (%gnutls-extra-smobs): Update. * guile/modules/gnutls/extra.scm: Substitute all `certificate' in all `public-key' names. Add backward-compatible bindings. * guile/src/extra.c: Substitute `certificate' to `public-key'. 2007-12-11 Simon Josefsson * GNUmakefile, maint-cfg.mk: Remove config.rpath hack. 2007-12-10 Simon Josefsson * NEWS: Add. 2007-12-10 Simon Josefsson * src/certtool.c: Make --verify-chain support larger inputs than 64kb. 2007-12-10 Simon Josefsson * configure.in: Re-order gettext invocation to avoid autoconf warnings. 2007-12-10 Simon Josefsson * NEWS, configure.in: Bump versions. 2007-12-10 Simon Josefsson * ChangeLog: Generated. 2007-12-10 Simon Josefsson * NEWS: Version 2.1.8. 2007-12-09 Simon Josefsson * doc/Makefile.am: GPLv3 typo. 2007-12-09 Simon Josefsson * NEWS: Doc fix. 2007-12-09 Simon Josefsson * NEWS, configure.in, maint-cfg.mk: Gettext 0.17 to solve -L problem. 2007-12-09 Simon Josefsson * configure.in: GPLv3. 2007-12-09 Simon Josefsson * gl/version-etc.c: Revert local gnulib override regarding GPLv3. 2007-12-09 Simon Josefsson * doc/Makefile.am, doc/credentials/Makefile.am, doc/extract-guile-c-doc.scm, doc/guile.texi, gl/Makefile.am, guile/modules/gnutls/extra.scm, guile/modules/system/documentation/c-snarf.scm, guile/modules/system/documentation/output.scm, guile/pre-inst-guile.in, guile/src/extra.c, guile/tests/openpgp-auth.scm, guile/tests/openpgp-keyring.scm, guile/tests/openpgp-keys.scm, includes/Makefile.am: More GPLv3 fixes. 2007-12-09 Simon Josefsson * gl/override/lib/version-etc.c.diff: More GPLv3 fixes. 2007-12-09 Simon Josefsson * doc/gpl-3.0.texi: Use GPLv3 in manual. 2007-12-09 Simon Josefsson * doc/gnutls.texi, doc/gpl-2.0.texi, gl/gnulib.mk, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4: Use GPLv3 in manual. 2007-12-09 Simon Josefsson * Makefile.am, doc/examples/Makefile.am, doc/manpages/Makefile.am, includes/gnutls/extra.h, includes/gnutls/openssl.h, libextra/Makefile.am, libextra/gnutls_extra.h, libextra/libgnutls-extra.vers, libextra/openpgp/Makefile.am, libextra/openssl_compat.h, maint-cfg.mk: GPLv3 fixes. 2007-12-09 Simon Josefsson * src/Makefile.am, src/common.c, src/list.h, src/serv.c: Use GPLv3 in src/. 2007-12-09 Simon Josefsson * tests/Makefile.am, tests/anonself.c, tests/certder.c, tests/certificate_set_x509_crl.c, tests/dhepskself.c, tests/dn.c, tests/gc.c, tests/hostname-check/Makefile.am, tests/hostname-check/hostname-check.c, tests/key-id/Makefile.am, tests/key-id/key-id, tests/nist-pkits/pkits, tests/nist-pkits/pkits_crl, tests/nist-pkits/pkits_crt, tests/nist-pkits/pkits_pkcs12, tests/nist-pkits/pkits_smime, tests/openpgp/Makefile.am, tests/openpgp/keyring.c, tests/openssl.c, tests/oprfi.c, tests/parse_ca.c, tests/pathlen/Makefile.am, tests/pathlen/pathlen, tests/pkcs1-padding/Makefile.am, tests/pkcs1-padding/pkcs1-pad, tests/pkcs12-decode/Makefile.am, tests/pkcs12-decode/pkcs12, tests/pkcs8-decode/Makefile.am, tests/pkcs8-decode/pkcs8, tests/pskself.c, tests/resume.c, tests/rsa-md5-collision/Makefile.am, tests/rsa-md5-collision/rsa-md5-collision, tests/set_pkcs12_cred.c, tests/sha2/Makefile.am, tests/sha2/sha2, tests/simple.c, tests/tlsia.c, tests/userid/Makefile.am, tests/userid/userid, tests/utils.c, tests/utils.h, tests/x509paths/chain, tests/x509self.c, tests/x509signself.c: Use GPLv3 for self-tests. 2007-12-09 Simon Josefsson * build-aux/config.rpath, build-aux/gendocs.sh, doc/fdl.texi, doc/gendocs_template, gl/fseeko.c, gl/gai_strerror.c, gl/getaddrinfo.c, gl/getaddrinfo.h, gl/getdelim.c, gl/getline.c, gl/getpass.c, gl/getpass.h, gl/inet_ntop.c, gl/inet_ntop.h, gl/lseek.c, gl/m4/getdelim.m4, gl/m4/getline.m4, gl/m4/gnulib-comp.m4, gl/m4/lib-link.m4, gl/m4/strerror.m4, gl/netinet_in.in.h, gl/strdup.c, gl/strerror.c, gl/version-etc.c, lgl/Makefile.am, lgl/m4/gettext.m4, lgl/m4/gnulib-comp.m4, lgl/m4/iconv.m4, lgl/m4/intdiv0.m4, lgl/m4/intl.m4, lgl/m4/intlmacosx.m4, lgl/m4/intmax_t.m4, lgl/m4/lib-link.m4, lgl/m4/lock.m4, lgl/m4/longlong.m4, lgl/m4/po.m4, lgl/m4/printf-posix.m4, lgl/m4/stdio_h.m4, lgl/m4/stdlib_h.m4, lgl/m4/string_h.m4, lgl/m4/uintmax_t.m4, lgl/m4/ulonglong.m4, lgl/m4/unistd_h.m4, lgl/m4/vasnprintf.m4, lgl/m4/wint_t.m4, lgl/printf-parse.c, lgl/realloc.c, lgl/stdlib.in.h, lgl/string.in.h, lgl/unistd.in.h, lgl/vasnprintf.c: Update gnulib. 2007-12-09 Nikos * lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_v2_compat.c: user_hello_func is call always. Even when resuming a session. 2007-12-09 Nikos * src/common.c: print session ID 2007-12-07 System User * NEWS: license update 2007-12-07 System User * COPYING, libextra/gnutls_extra.c, libextra/gnutls_ia.c, libextra/gnutls_openpgp.c, libextra/gnutls_openssl.c, libextra/openpgp/compat.c, libextra/openpgp/extras.c, libextra/openpgp/pgp.c, libextra/openpgp/pgpverify.c, libextra/openpgp/privkey.c, libextra/openssl_compat.c, src/certtool-cfg.c, src/certtool.c, src/cli.c, src/common.c, src/crypt.c, src/prime.c, src/psk.c, src/serv.c, src/tests.c, src/tls_test.c: GPL parts under GPLv3 2007-12-06 System User * lib/gnutls_record.c: It seems we were ahead of our time. 2007-12-06 System User * NEWS, lib/gnutls_record.c: Revert "We now ignore received packets with unknown content types" This reverts commit 4a19fd59da474b3de977a925fd91578db7e3d4a1. 2007-12-06 Simon Josefsson * lib/x509/x509.c: Doc fix.es 2007-12-06 Simon Josefsson * lib/x509/x509.c: Typo fix. Tiny patch from Daniel Kahn Gillmor . 2007-12-04 Nikos * : commit bd3b0f49c966277e91f57c64cfcc720cbebb4a73 Author: Nikos Date: Tue Dec 4 22:05:25 2007 +0200 2007-12-04 Simon Josefsson * maint-cfg.mk: Overwrite autopoint files with gnulib files. 2007-12-03 Nikos * : commit dac01d7279eb28e7c5909d53bf346206f10319b5 Author: Nikos Date: Mon Dec 3 20:05:32 2007 +0200 2007-12-03 Simon Josefsson * doc/manpages/Makefile.am: Generated. 2007-12-03 Simon Josefsson * NEWS: Add. 2007-12-03 Simon Josefsson * configure.in: Bump version. 2007-12-03 Simon Josefsson * configure.in: Bump to indicate added ABI. 2007-12-03 Simon Josefsson * maint-cfg.mk: Copy, don't remove... to fix Makefile.in hard-coded links to m4 filenames. 2007-12-03 Simon Josefsson * maint-cfg.mk: Remove gettext havelib files. 2007-12-03 Simon Josefsson * lib/x509/privkey_pkcs8.c: Indent. 2007-12-03 Nikos * : 3 0 NEWS 2007-12-02 Nikos * NEWS, includes/gnutls/x509.h, lib/x509/x509.c: added gnutls_x509_crt_get_subject_alt_name2 to overcome some limitations of the original function. 2007-12-02 Nikos * : 1 1 lib/x509/x509.c 2007-12-01 Simon Josefsson * : commit b6e4b1ff3f7ef8a8d26f2e89c0bc50d2fc9d23f4 Author: Nikos Date: Sat Dec 1 08:25:34 2007 +0200 2007-11-30 Nikos * configure.in, lib/x509/dsa.c, src/certtool.c: Depend on libgcrypt 1.2.4 again (lose DSA2 functionality). 2007-11-30 Nikos * lib/gnutls_priority.c: Added SECURE256 and SECURE128 level. 2007-11-29 Simon Josefsson * ChangeLog: Generated. 2007-11-29 Simon Josefsson * NEWS: Version 2.1.7. 2007-11-28 Nikos * : 2 2 lib/gnutls_priority.c 2007-11-28 Nikos * lib/auth_srp_passwd.c: more assertions. 2007-11-28 Nikos * lib/auth_srp.c: more assertions 2007-11-28 Nikos * lib/auth_srp.c: added assertion. 2007-11-28 Nikos * src/serv.c: fix in priority_set 2007-11-28 Nikos * includes/gnutls/gnutlsxx.h: updated the gnutlsxx interface 2007-11-28 Nikos * includes/gnutls/gnutls.h.in, lib/gnutls_priority.c: more updates for priority functions. 2007-11-28 Nikos * doc/examples/ex-cert-select.c, doc/examples/ex-client-resume.c, doc/examples/ex-client-srp.c, doc/examples/ex-client-tlsia.c, doc/examples/ex-client1.c, doc/examples/ex-client2.c, doc/examples/ex-serv-anon.c, doc/examples/ex-serv-export.c, doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-srp.c, doc/examples/ex-serv1.c, lib/gnutls_priority.c, lib/gnutlsxx.cpp, src/cli.c, src/serv.c: Return the string position in case of an error in the priority functions. 2007-11-28 Simon Josefsson * lib/gnutls_priority.c: Typo. 2007-11-28 Simon Josefsson * NEWS: Fix. 2007-11-28 Simon Josefsson * lib/gnutls_priority.c: Give example for %COMPAT. 2007-11-28 Simon Josefsson * lib/gnutls_priority.c: Rename HIGH to SECURE. 2007-11-28 Simon Josefsson * lib/gnutls_priority.c: Re-add aes-256 so we don't fail to negotiate it in case end only supports it. Doc fixes. 2007-11-28 Simon Josefsson * lib/gnutls_priority.c: Doc fixes. Fix warnings. 2007-11-28 Simon Josefsson * lib/gnutls_priority.c: Re-indent. 2007-11-28 Simon Josefsson * po/ms.po: Sync with TP. 2007-11-28 Simon Josefsson * doc/manpages/Makefile.am: Generated. 2007-11-28 Simon Josefsson * NEWS: Fix. 2007-11-28 Simon Josefsson * includes/gnutls/compat.h, includes/gnutls/gnutls.h.in, lib/gnutls_priority.c: Re-add gnutls_set_default_priority and gnutls_set_default_export_priority. 2007-11-27 Simon Josefsson * doc/protocol/draft-ietf-tls-rfc4346-bis-07.txt: Add. 2007-11-26 Simon Josefsson * doc/protocol/rfc5054.txt: Add. 2007-11-26 Simon Josefsson * doc/protocol/draft-rescorla-tls-extractor-01.txt: Add. 2007-11-26 Nikos Mavrogiannopoulos * : 1 1 lib/gnutls_priority.c 2007-11-25 Nikos Mavrogiannopoulos * lib/x509/common.c: corrected bug in the new read_mpis 2007-11-25 Nikos Mavrogiannopoulos * lib/x509/common.c, lib/x509/common.h, lib/x509/crl.c, lib/x509/crq.c, lib/x509/pkcs12.c, lib/x509/pkcs7.c, lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, lib/x509/x509.c: export_int was simplified are no artificial limits are imposed any more 2007-11-25 Nikos Mavrogiannopoulos * lib/x509/common.c: variables for the time functions are not more rational. 2007-11-25 Nikos Mavrogiannopoulos * lib/x509/common.c, lib/x509/mpi.c: in RSA certificate parameters no artificial limits are imposed any more 2007-11-25 Nikos Mavrogiannopoulos * lib/x509/privkey_pkcs8.c: corrected documentation 2007-11-25 Nikos Mavrogiannopoulos * NEWS, lib/x509/mpi.c, lib/x509/mpi.h, lib/x509/privkey.c, lib/x509/privkey.h, lib/x509/privkey_pkcs8.c: added support for PKCS #8 decoding of DSA keys. 2007-11-24 Nikos Mavrogiannopoulos * lib/x509/mpi.c, lib/x509/privkey_pkcs8.c: added ability to write DSA private keys. 2007-11-24 Nikos Mavrogiannopoulos * doc/examples/ex-cert-select.c, doc/examples/ex-serv1.c: examples now compile 2007-11-24 Nikos Mavrogiannopoulos * : 3 3 doc/examples/ex-cert-select.c 2007-11-24 Nikos Mavrogiannopoulos * NEWS, doc/examples/ex-cert-select.c, doc/examples/ex-client-resume.c, doc/examples/ex-client-srp.c, doc/examples/ex-client-tlsia.c, doc/examples/ex-client1.c, doc/examples/ex-client2.c, doc/examples/ex-serv-anon.c, doc/examples/ex-serv-export.c, doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-srp.c, doc/examples/ex-serv1.c, doc/gnutls.texi, includes/gnutls/compat.h, includes/gnutls/gnutls.h.in, includes/gnutls/gnutlsxx.h, lib/gnutls_int.h, lib/gnutls_priority.c, lib/gnutlsxx.cpp, src/cli.c, src/common.c, src/serv.c: new era of priority functions. 2007-11-24 Nikos Mavrogiannopoulos * lib/ext_cert_type.c, lib/gnutls_algorithms.c, lib/gnutls_int.h, lib/gnutls_priority.c, lib/gnutls_record.c, lib/gnutls_state.c: cleanup the priority functionality 2007-11-21 Nikos Mavrogiannopoulos * doc/gnutls.texi: links to rfc 5054 (srp) 2007-11-18 Nikos Mavrogiannopoulos * includes/gnutls/compat.h: updated the priority compatibility functions 2007-11-18 Nikos Mavrogiannopoulos * NEWS, doc/gnutls.texi, includes/gnutls/gnutls.h.in, lib/gnutls_priority.c, lib/gnutls_state.h: added gnutls_check_priority() to check syntax of priority strings. 2007-11-18 Nikos Mavrogiannopoulos * lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_v2_compat.c: Renegotiate the protocol version after the user_hello_func has been called 2007-11-18 Nikos Mavrogiannopoulos * doc/examples/ex-cert-select.c, doc/examples/ex-client-srp.c, includes/gnutls/gnutlsxx.h, lib/gnutls_priority.c, lib/gnutlsxx.cpp: fixes for the new gnutls_set_priority(). 2007-11-18 Nikos Mavrogiannopoulos * doc/gnutls.texi: The gnutls_*_convert_priority() functions were deprecated by the gnutls_set_priority() 2007-11-18 Nikos Mavrogiannopoulos * NEWS, lib/gnutls_priority.c: The gnutls_*_convert_priority() functions were deprecated by the gnutls_set_priority() 2007-11-18 Nikos Mavrogiannopoulos * NEWS, configure.in, doc/examples/ex-client-resume.c, doc/examples/ex-client-srp.c, doc/examples/ex-client-tlsia.c, doc/examples/ex-client1.c, doc/examples/ex-client2.c, doc/examples/ex-serv-anon.c, doc/examples/ex-serv-export.c, doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-srp.c, doc/examples/ex-serv1.c, doc/gnutls.texi, includes/gnutls/compat.h, includes/gnutls/gnutls.h.in, includes/gnutls/gnutlsxx.h, lib/gnutls_algorithms.h, lib/gnutls_priority.c, lib/gnutlsxx.cpp, src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, src/serv-gaa.c, src/serv-gaa.h, src/serv.c, src/serv.gaa: added gnutls_set_priority() to replace gnutls_set_default_priority2(). 2007-11-16 Simon Josefsson * libextra/opencdk/keydb.c, libextra/opencdk/seskey.c: Re-apply opencdk fixes that were lost in 0.6.6 upgrade. 2007-11-16 Simon Josefsson * NEWS, libextra/opencdk/cipher.c, libextra/opencdk/keydb.c, libextra/opencdk/opencdk.h, libextra/opencdk/seskey.c, libextra/opencdk/stream.c: Use OpenCDK 0.6.6. 2007-11-16 Simon Josefsson * NEWS, configure.in: Bump versions. 2007-11-15 Simon Josefsson * ChangeLog: Generated. 2007-11-15 Simon Josefsson * NEWS: Version 2.1.6. 2007-11-15 Simon Josefsson * NEWS: Add. 2007-11-15 Simon Josefsson * NEWS: Add. 2007-11-15 Simon Josefsson * NEWS: Add. 2007-11-15 Simon Josefsson * includes/gnutls/compat.h: Revert rename of GNUTLS_E_UNKNOWN_HASH_ALGORITHM. Instead we add a new GNUTLS_E_UNKNOWN_ALGORITHM. 2007-11-15 Simon Josefsson * includes/gnutls/gnutls.h.in: Revert rename of GNUTLS_E_UNKNOWN_HASH_ALGORITHM. Instead we add a new GNUTLS_E_UNKNOWN_ALGORITHM. 2007-11-15 Simon Josefsson * lib/gnutls_errors.c: Revert rename of GNUTLS_E_UNKNOWN_HASH_ALGORITHM. Instead we add a new GNUTLS_E_UNKNOWN_ALGORITHM. 2007-11-14 Simon Josefsson * libextra/opencdk/seskey.c: Doc fix. 2007-11-14 Simon Josefsson * libextra/opencdk/keydb.c: Doc fix. 2007-11-14 Simon Josefsson * lib/gnutls_record.c: Doc fix. 2007-11-14 Simon Josefsson * lib/gnutls_cert.c: Doc fix. 2007-11-14 Simon Josefsson * lib/gnutls_anon_cred.c: Doc fix. 2007-11-14 Simon Josefsson * lib/gnutls_state.c: Doc fix. 2007-11-14 Simon Josefsson * lib/gnutls_x509.c: Doc fix. 2007-11-14 Simon Josefsson * lib/gnutls_x509.c: Doc fix. 2007-11-14 Simon Josefsson * lib/gnutls_psk.c: Doc fix. 2007-11-14 Simon Josefsson * lib/gnutls_algorithms.c: Doc fix. 2007-11-14 Simon Josefsson * lib/gnutls_handshake.c: Doc fixes. 2007-11-14 Simon Josefsson * includes/gnutls/compat.h, includes/gnutls/extra.h: Move compat stuff to compat.h. 2007-11-14 Simon Josefsson * guile/src/extra.c: Use new APIs. 2007-11-14 Simon Josefsson * guile/modules/gnutls/build/enums.scm: Typo. 2007-11-14 Simon Josefsson * guile/modules/gnutls/build/enums.scm, guile/modules/gnutls/build/smobs.scm: Update API. 2007-11-14 Simon Josefsson * guile/modules/gnutls/build/enums.scm: Add unknown-algorithm (new name of unknown-hash-algorithm). 2007-11-14 Simon Josefsson * guile/modules/gnutls/build/enums.scm: Remove openpgp trustdb error. 2007-11-14 Simon Josefsson * includes/gnutls/compat.h, includes/gnutls/gnutls.h.in: Move compat mappings to compat.h. 2007-11-14 Simon Josefsson * src/cli.c, src/common.c: Use new API. 2007-11-14 Simon Josefsson * doc/examples/ex-serv-export.c, lib/auth_cert.h, libextra/gnutls_openpgp.c: Use new API. 2007-11-14 Simon Josefsson * libextra/gnutls_openpgp.c: Don't use trustdb error code. 2007-11-14 Simon Josefsson * includes/gnutls/gnutlsxx.h, lib/gnutlsxx.cpp: Use new API in C++ library. 2007-11-14 Simon Josefsson * src/cli.c: Use new API. 2007-11-14 Simon Josefsson * includes/gnutls/compat.h, includes/gnutls/gnutls.h.in, includes/gnutls/openpgp.h: Move compat mappings to compat.h. 2007-11-14 Simon Josefsson * includes/gnutls/compat.h: Fix. 2007-11-14 Simon Josefsson * includes/gnutls/compat.h: Remove trustdb error code, since we removed all functions. 2007-11-14 Nikos Mavrogiannopoulos * lib/gnutls_cipher.c, lib/gnutls_compress.c, lib/gnutls_compress_int.c: some updates in the compression code 2007-11-14 Nikos Mavrogiannopoulos * NEWS, lib/gnutls_cipher.c, lib/gnutls_compress.c, lib/gnutls_compress.h, lib/gnutls_record.c: Corrected bug in decompression of expanded compression data. 2007-11-13 Nikos Mavrogiannopoulos * lib/gnutls_cipher.c: When decompressed data are more than the record max size warn using GNUTLS_E_DECOMPRESSION_FAILED. 2007-11-11 Nikos Mavrogiannopoulos * : 1 1 src/certtool.gaa 2007-11-11 Nikos Mavrogiannopoulos * includes/gnutls/gnutls.h.in, lib/gnutls_cert.c, src/tls_test.c: Applied documentation and prototype fixes reported by Evan Martin . 2007-11-05 Nikos Mavrogiannopoulos * doc/gnutls.texi: updated the links to openpgp draft 2007-11-05 Simon Josefsson * src/cli.c: Add warnings about messages used by Emacs tls.el. 2007-11-03 Simon Josefsson * NEWS, configure.in: Bump versions. 2007-11-03 Simon Josefsson * doc/protocol/rfc5081.txt: Add. 2007-11-01 Simon Josefsson * ChangeLog: Generated. 2007-11-01 Simon Josefsson * NEWS: Version 2.1.5. 2007-11-01 Simon Josefsson * NEWS: Add. 2007-11-01 Simon Josefsson * NEWS: Add. 2007-11-01 Simon Josefsson * NEWS: Add. 2007-11-01 Simon Josefsson * configure.in: Bump ABI to 25. 2007-11-01 Simon Josefsson * doc/protocol/draft-ietf-tls-rfc4346-bis-06.txt: Add. 2007-10-31 Nikos Mavrogiannopoulos * src/certtool-cfg.c, src/crypt-gaa.c: certtool now prints defaults. 2007-10-31 Nikos Mavrogiannopoulos * lib/gnutls_dh_primes.c: The pkcs3 parameters are now corrected exported (without sign). 2007-10-30 Nikos Mavrogiannopoulos * src/crypt.gaa: parameters -> group parameters 2007-10-30 Nikos Mavrogiannopoulos * AUTHORS, Makefile.am, NEWS, README, THANKS, build-aux/config.rpath, configure.in, doc/Makefile.am, doc/gnutls.texi, includes/gnutls/extra.h, includes/gnutls/openpgp.h, includes/gnutls/pkcs12.h, includes/gnutls/x509.h, lib/Makefile.am, lib/auth_anon.c, lib/auth_anon.h, lib/auth_cert.c, lib/auth_cert.h, lib/auth_dh_common.c, lib/auth_dh_common.h, lib/auth_dhe.c, lib/auth_dhe_psk.c, lib/auth_psk.c, lib/auth_psk.h, lib/auth_psk_passwd.c, lib/auth_psk_passwd.h, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/auth_srp.c, lib/auth_srp.h, lib/auth_srp_passwd.c, lib/auth_srp_passwd.h, lib/auth_srp_rsa.c, lib/auth_srp_sb64.c, lib/debug.c, lib/debug.h, lib/defines.h, lib/ext_cert_type.c, lib/ext_cert_type.h, lib/ext_max_record.c, lib/ext_max_record.h, lib/ext_server_name.c, lib/ext_server_name.h, lib/ext_srp.c, lib/ext_srp.h, lib/gnutls_alert.c, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_auth.h, lib/gnutls_auth_int.h, lib/gnutls_buffer.h, lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, lib/gnutls_compress.c, lib/gnutls_compress.h, lib/gnutls_compress_int.c, lib/gnutls_compress_int.h, lib/gnutls_constate.c, lib/gnutls_constate.h, lib/gnutls_datum.c, lib/gnutls_datum.h, lib/gnutls_db.c, lib/gnutls_db.h, lib/gnutls_dh.c, lib/gnutls_dh.h, lib/gnutls_dh_primes.c, lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_extensions.c, lib/gnutls_extensions.h, lib/gnutls_global.c, lib/gnutls_global.h, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_helper.c, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_kx.h, lib/gnutls_mem.c, lib/gnutls_mem.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_num.c, lib/gnutls_num.h, lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_priority.c, lib/gnutls_psk.c, lib/gnutls_record.c, lib/gnutls_record.h, lib/gnutls_rsa_export.c, lib/gnutls_rsa_export.h, lib/gnutls_session.c, lib/gnutls_session.h, lib/gnutls_session_pack.c, lib/gnutls_session_pack.h, lib/gnutls_sig.c, lib/gnutls_sig.h, lib/gnutls_srp.c, lib/gnutls_srp.h, lib/gnutls_state.c, lib/gnutls_state.h, lib/gnutls_str.c, lib/gnutls_str.h, lib/gnutls_ui.c, lib/gnutls_v2_compat.c, lib/gnutls_v2_compat.h, lib/gnutls_x509.c, lib/gnutls_x509.h, lib/io_debug.h, lib/x509/common.c, lib/x509/common.h, lib/x509/crl.c, lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/crq.h, lib/x509/dn.c, lib/x509/dn.h, lib/x509/dsa.c, lib/x509/dsa.h, lib/x509/extensions.c, lib/x509/extensions.h, lib/x509/mpi.c, lib/x509/mpi.h, lib/x509/pkcs12.c, lib/x509/pkcs12.h, lib/x509/pkcs12_bag.c, lib/x509/pkcs7.c, lib/x509/pkcs7.h, lib/x509/privkey.c, lib/x509/privkey.h, lib/x509/privkey_pkcs8.c, lib/x509/rfc2818.h, lib/x509/sign.c, lib/x509/sign.h, lib/x509/verify.c, lib/x509/verify.h, lib/x509/x509.c, lib/x509/x509.h, lib/x509/x509_write.c, lib/x509_b64.c, lib/x509_b64.h, libextra/Makefile.am, libextra/gnutls_extra.c, libextra/gnutls_extra.h, libextra/openpgp/Makefile.am, libextra/openpgp/compat.c, libextra/openpgp/extras.c, libextra/openpgp/pgp.c, libextra/openpgp/pgpverify.c, libextra/openpgp/privkey.c, libextra/openssl_compat.c, libextra/openssl_compat.h, src/certtool.c, src/cli.c, src/common.c, src/crypt.c, src/prime.c, src/serv.c, src/tests.c, src/tls_test.c: Changed my name to my "official" name. 2007-10-30 Nikos Mavrogiannopoulos * includes/gnutls/compat.h, includes/gnutls/gnutls.h.in: Moved some old defines to compat.c. 2007-10-30 Nikos Mavrogiannopoulos * lib/libgnutlsxx.vers, libextra/libgnutls-extra.vers: Updated the ld version. 2007-10-29 Simon Josefsson * includes/gnutls/gnutls.h.in: Fix gnutls_set_default_priority and gnutls_set_default_export priority. The old functions returned an error code, need to fake it. 2007-10-29 Simon Josefsson * Makefile.am: Reorder release target, to do disconnected ops first, and to avoid losing tags. 2007-10-29 Simon Josefsson * NEWS, configure.in: Bump versions. 2007-10-29 Simon Josefsson * lgl/Makefile.am, lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4, lgl/stdint.in.h: Update gnulib files. 2007-10-28 Nikos Mavrogiannopoulos * configure.in: Used the original libtool library version. 2007-10-27 Simon Josefsson * ChangeLog: Generated. 2007-10-27 Simon Josefsson * NEWS: Version 2.1.4. 2007-10-27 Simon Josefsson * doc/manpages/Makefile.am: Generated. 2007-10-27 Simon Josefsson * configure.in: Bump version. 2007-10-27 Simon Josefsson * includes/gnutls/compat.h: Add for backwards compatibility. 2007-10-27 Simon Josefsson * doc/gnutls.texi: Fix typo. 2007-10-27 Simon Josefsson * NEWS: Add. 2007-10-27 Simon Josefsson * build-aux/config.rpath, gl/m4/gnulib-common.m4, gl/strerror.c, lgl/m4/gnulib-common.m4, lgl/m4/ulonglong.m4, lgl/stdbool.in.h, lgl/stdint.in.h: Update gnulib files. 2007-10-27 Simon Josefsson * NEWS: Add. 2007-10-27 Simon Josefsson * libextra/opencdk/cipher.c, libextra/opencdk/keydb.c, libextra/opencdk/new-packet.c, libextra/opencdk/opencdk.h, libextra/opencdk/seskey.c: Sync with OpenCDK 0.6.5. 2007-10-27 Nikos Mavrogiannopoulos * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: quick-random option was removed since it is now the default. 2007-10-26 Nikos Mavrogiannopoulos * : 1 2 lib/gnutls_algorithms.c 2007-10-26 Ludovic Courtès * doc/README.CODING_STYLE: Add doc about maintenance of the Guile bindings. 2007-10-25 Simon Josefsson * : commit d3ebcb4c39cd2e7650694e08faad5a7ca57c662e Author: Simon Josefsson Date: Thu Oct 25 21:51:38 2007 +0200 2007-10-25 Nikos Mavrogiannopoulos * doc/gnutls.texi: added some text for the debugging functions. 2007-10-25 Simon Josefsson * doc/gnutls.texi: Typo. 2007-10-25 Simon Josefsson * Makefile.am: Reorder and simplify. 2007-10-25 Simon Josefsson * lib/gnutls_state.c: Doc fix. 2007-10-25 Simon Josefsson * : commit 867ffe404fbc7e16a543d2314bca85d613a902ef Author: Nikos Mavrogiannopoulos Date: Wed Oct 24 23:48:27 2007 +0300 2007-10-24 Nikos Mavrogiannopoulos * : 2 2 doc/examples/ex-serv-pgp.c 2007-10-24 Nikos Mavrogiannopoulos * NEWS, doc/examples/ex-client-srp.c, doc/examples/ex-client-tlsia.c, doc/examples/ex-serv-anon.c, doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-srp.c, doc/examples/ex-serv1.c, includes/gnutls/gnutls.h.in, lib/gnutls_priority.c: Introduced GNUTLS_PRIORITIES_SECURITY_NORMAL and GNUTLS_PRIORITIES_SECURITY_HIGH 2007-10-24 Simon Josefsson * : commit 74200139866f14efc4cbabeec8c6698982327296 Author: Nikos Mavrogiannopoulos Date: Wed Oct 24 18:33:00 2007 +0300 2007-10-24 Nikos Mavrogiannopoulos * lib/gnutls_v2_compat.c: The user handshake callback function is now called on SSLv2 hello messages. 2007-10-24 Nikos Mavrogiannopoulos * NEWS, doc/examples/ex-client-resume.c, doc/examples/ex-client-srp.c, doc/examples/ex-client-tlsia.c, doc/examples/ex-client1.c, doc/examples/ex-client2.c, doc/examples/ex-serv-anon.c, doc/examples/ex-serv-export.c, doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-srp.c, doc/examples/ex-serv1.c, includes/gnutls/gnutls.h.in, lib/gnutls_priority.c, src/cli.c, src/serv.c: Added gnutls_set_default_priority2() and deprecated gnutls_set_default_priority(). 2007-10-24 Nikos Mavrogiannopoulos * : 4 0 doc/manpages/certtool.1 2007-10-24 Nikos Mavrogiannopoulos * NEWS: added news entry for --disable-quick-random 2007-10-24 Nikos Mavrogiannopoulos * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.gaa, src/cli.c, src/serv.c: /dev/urandom is used now by default for key generation. The option --disable-quick-random was introduced. 2007-10-24 Nikos Mavrogiannopoulos * doc/examples/ex-serv-export.c, doc/examples/ex-serv1.c: updated some examples. 2007-10-24 Nikos Mavrogiannopoulos * configure.in: The library version is now 14 instead of 24. (14 is greater than our current 13). 2007-10-24 Nikos Mavrogiannopoulos * NEWS, doc/examples/ex-serv1.c, includes/gnutls/gnutls.h.in, lib/gnutls_state.c, src/serv.c, src/tests.c, src/tests.h: Introduced gnutls_session_enable_compatibility_mode() to allow enabling all supported compatibility options (like disabling padding). Some other bug fixes in tls-test.c. 2007-10-24 Nikos Mavrogiannopoulos * doc/examples/ex-client-srp.c, doc/gnutls.texi: Added some documentation for the new convert functions. 2007-10-23 Nikos Mavrogiannopoulos * lib/gnutls_priority.c: renamed zlib to deflate 2007-10-23 Nikos Mavrogiannopoulos * lib/gnutls_algorithms.c, lib/libgnutls.vers: Updata gnutls.vers since we changed our interfaces and some other fixes. 2007-10-23 Nikos Mavrogiannopoulos * : 2 2 lib/gnutls_algorithms.c 2007-10-23 Nikos Mavrogiannopoulos * doc/examples/ex-alert.c, doc/examples/ex-cert-select.c, doc/examples/ex-client-resume.c, doc/examples/ex-client-srp.c, doc/examples/ex-client-tlsia.c, doc/examples/ex-client1.c, doc/examples/ex-client2.c, doc/examples/ex-crq.c, doc/examples/ex-pkcs12.c, doc/examples/ex-rfc2818.c, doc/examples/ex-serv-anon.c, doc/examples/ex-serv-export.c, doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-srp.c, doc/examples/ex-serv1.c, doc/examples/ex-session-info.c, doc/examples/ex-verify.c, doc/examples/ex-x509-info.c, doc/examples/tcp.c: Added copyright notices to examples 2007-10-23 Nikos Mavrogiannopoulos * includes/gnutls/gnutls.h.in: corrected the prototypes 2007-10-23 Nikos Mavrogiannopoulos * lib/x509/verify.c: replaced UNKNOWN_HASH_ALGORITHM WITH UNKNOWN_ALGORITHM 2007-10-23 Nikos Mavrogiannopoulos * includes/gnutls/gnutls.h.in: corrected typo. 2007-10-23 Nikos Mavrogiannopoulos * : 1 1 lib/gnutls_record.c 2007-10-23 Nikos Mavrogiannopoulos * NEWS, includes/gnutls/gnutls.h.in, lib/gnutls_priority.c: Updated the priority functions to be more compatible to our interface and avoid parsing on every session generation. The current approach stores parsed data to our integer format.CG: ----------------------------------------------------------------------- 2007-10-22 Nikos Mavrogiannopoulos * NEWS, includes/gnutls/gnutls.h.in, lib/gnutls_int.h, lib/gnutls_record.c: Added gnutls_record_disable_padding() to allow servers talk to buggy clients that complain if TLS 1.0 padding is used. 2007-10-22 Nikos Mavrogiannopoulos * NEWS, includes/gnutls/gnutls.h.in, lib/gnutls_errors.c, lib/gnutls_priority.c, lib/gnutls_record.c: Added new priority functions that accept text instead of integers. 2007-10-22 Nikos Mavrogiannopoulos * build-aux/config.rpath, lib/gnutls_buffers.c, lib/gnutls_record.c: Removed some ancient non-used functions. 2007-10-22 Nikos Mavrogiannopoulos * : commit 628c62e935effc1c276fa6e4ae653f8488e017be Author: Nikos Mavrogiannopoulos Date: Mon Oct 22 14:03:08 2007 +0300 2007-10-22 Simon Josefsson * po/de.po, po/ms.po, po/pl.po, po/sv.po: Sync with TP. 2007-10-22 Simon Josefsson * lgl/m4/gc-camellia.m4: Add. 2007-10-22 Simon Josefsson * lgl/Makefile.am, lgl/gc-libgcrypt.c, lgl/gc.h, lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4: Update gnulib files. 2007-10-22 Simon Josefsson * build-aux/config.rpath, build-aux/maint.mk, gl/error.c, gl/error.h, gl/fseeko.c, gl/gnulib.mk, gl/inet_pton.c, gl/inet_pton.h, gl/intprops.h, gl/m4/extensions.m4, gl/m4/getaddrinfo.m4, gl/m4/getdelim.m4, gl/m4/getline.m4, gl/m4/gnulib-comp.m4, gl/m4/socklen.m4, gl/m4/strerror.m4, gl/netinet_in.in.h, gl/netinet_in_.h, gl/progname.c, gl/progname.h, gl/readline.c, gl/readline.h, gl/strerror.c, gl/version-etc-fsf.c, gl/version-etc.c, gl/version-etc.h, lgl/Makefile.am, lgl/alloca.in.h, lgl/alloca_.h, lgl/dummy.c, lgl/float.in.h, lgl/float_.h, lgl/gc-gnulib.c, lgl/gc-libgcrypt.c, lgl/gc.h, lgl/m4/extensions.m4, lgl/m4/gnulib-comp.m4, lgl/m4/lock.m4, lgl/m4/longlong.m4, lgl/m4/memmem.m4, lgl/m4/socklen.m4, lgl/m4/stdint.m4, lgl/m4/stdio_h.m4, lgl/m4/string_h.m4, lgl/m4/strverscmp.m4, lgl/m4/ulonglong.m4, lgl/m4/vasprintf.m4, lgl/printf-parse.c, lgl/realloc.c, lgl/stdbool.in.h, lgl/stdbool_.h, lgl/stdint.in.h, lgl/stdint_.h, lgl/stdio.in.h, lgl/stdio_.h, lgl/stdlib.in.h, lgl/stdlib_.h, lgl/string.in.h, lgl/string_.h, lgl/sys_socket.in.h, lgl/sys_socket_.h, lgl/sys_stat.in.h, lgl/sys_stat_.h, lgl/time.in.h, lgl/time_.h, lgl/unistd.in.h, lgl/unistd_.h, lgl/vasnprintf.c, lgl/wchar.in.h, lgl/wchar_.h: Update gnulib files. 2007-10-22 Simon Josefsson * : commit 07837c92f65f09b58c0ec55e3f49382ce0d71ba5 Author: Nikos Mavrogiannopoulos Date: Fri Oct 19 22:05:28 2007 +0300 2007-10-19 Nikos Mavrogiannopoulos * NEWS, doc/gnutls.texi, includes/gnutls/gnutls.h.in, includes/gnutls/openpgp.h, lib/auth_cert.c, lib/gnutls_cert.c, lib/gnutls_extra_hooks.c, lib/gnutls_extra_hooks.h, lib/gnutls_state.c, libextra/gnutls_extra.c, libextra/gnutls_openpgp.c, libextra/openpgp/compat.c, libextra/openpgp/extras.c, libextra/openpgp/gnutls_openpgp.h, libextra/openpgp/openpgp.h, libextra/openpgp/pgp.c, libextra/openpgp/pgpverify.c, libextra/openpgp/privkey.c, src/common.c: Occurences of gnutls_openpgp_key were renamed to gnutls_openpgp_cert, leaving an API compatibility layer. 2007-10-19 Nikos Mavrogiannopoulos * includes/gnutls/gnutls.h.in, includes/gnutls/openpgp.h, lib/auth_cert.c, lib/gnutls_extra_hooks.c, lib/gnutls_extra_hooks.h, libextra/gnutls_extra.c, libextra/gnutls_extra.h, libextra/gnutls_openpgp.c, libextra/openpgp/compat.c, libextra/openpgp/extras.c, libextra/openpgp/openpgp.h, libextra/openpgp/pgp.c, libextra/openpgp/pgpverify.c: Renamed gnutls_openpgp_key_t to gnutls_openpgp_cert_t 2007-10-17 Simon Josefsson * ChangeLog: Generated. 2007-10-17 Simon Josefsson * lib/Makefile.am: Revert mistake removal. 2007-10-17 Simon Josefsson * doc/manpages/Makefile.am, po/de.po, po/ms.po, po/pl.po, po/sv.po, src/cli-gaa.c, src/cli-gaa.h, src/cli.gaa, src/serv-gaa.c, src/serv-gaa.h, src/serv.gaa: Generated. 2007-10-17 Simon Josefsson * NEWS: Version 2.1.3. 2007-10-17 Simon Josefsson * configure.in: Bump ABI version. 2007-10-17 Simon Josefsson * lib/gnutls_extensions.c, lib/gnutls_int.h, lib/gnutls_supplemental.c: Remove tls-authz. 2007-10-17 Simon Josefsson * doc/gnutls.texi: Remove tls-authz. 2007-10-17 Simon Josefsson * NEWS, configure.in, doc/examples/Makefile.am, doc/examples/ex-client-authz.c, doc/examples/ex-serv-authz.c, doc/reference/Makefile.am, includes/gnutls/gnutls.h.in, lib/Makefile.am, lib/ext_authz.c, lib/ext_authz.h, src/cli.c, src/cli.gaa, src/serv.c, src/serv.gaa: Remove TLS-authz. 2007-10-15 Simon Josefsson * configure.in: Bump version. 2007-10-15 Simon Josefsson * NEWS: Add. 2007-10-15 Nikos Mavrogiannopoulos * lib/gnutls_priority.c: Reenabled the 256 bit algorithms in the default priorities. 2007-10-15 Nikos Mavrogiannopoulos * NEWS, configure.in, lib/auth_cert.h, lib/gnutls_cert.c, lib/gnutls_errors.c, lib/gnutls_extra_hooks.c, lib/gnutls_extra_hooks.h, libextra/gnutls_extra.c, libextra/gnutls_openpgp.c, libextra/opencdk/main.h, libextra/opencdk/sig-check.c, libextra/openpgp/compat.c, libextra/openpgp/gnutls_openpgp.h, libextra/openpgp/pgpverify.c: ** Corrected bugs in the openpgp certificate verification functions using a keyring. Now it correctly verifies openpgp certificates. ** Removed the ancient pgpkeyserver support (which was not used anywhere) 2007-10-14 Simon Josefsson * ChangeLog: Generated. 2007-10-14 Simon Josefsson * NEWS: Typo. 2007-10-14 Simon Josefsson * NEWS: Version 2.1.2. 2007-10-14 Simon Josefsson * doc/protocol/draft-nir-tls-eap-02.txt: Add. 2007-10-14 Simon Josefsson * NEWS: Wrap. 2007-10-14 Simon Josefsson * NEWS: Mention enum's. 2007-10-14 Simon Josefsson * includes/gnutls/compat.h, includes/gnutls/gnutls.h.in: Move deprecated SRP alerts to compat.h. 2007-10-14 Simon Josefsson * includes/gnutls/compat.h: Add compatibility mapping for GNUTLS_E_OPENPGP_TRUSTDB_VERSION_UNSUPPORTED. 2007-10-14 Simon Josefsson * configure.in: Encode in shared library that we aren't backwards compatible. 2007-10-13 Nikos Mavrogiannopoulos * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, src/serv-gaa.c, src/serv-gaa.h, src/serv.c, src/serv.gaa: removed references to trustdb 2007-10-13 Nikos Mavrogiannopoulos * NEWS, doc/gnutls.texi, includes/gnutls/compat.h, includes/gnutls/extra.h, includes/gnutls/gnutls.h.in, includes/gnutls/openpgp.h, libextra/gnutls_openpgp.c, libextra/openpgp/compat.c, libextra/openpgp/extras.c, libextra/openpgp/openpgp.h, libextra/openpgp/pgpverify.c: Removed all the trustdb related code. It wasn't used and trustdbs are not specified anywhere except pgp. Now we use the standard key rings. 2007-10-13 Nikos Mavrogiannopoulos * doc/gnutls.texi: more text 2007-10-12 Nikos Mavrogiannopoulos * NEWS, lib/gnutls_priority.c: The 256 bit ciphers are not enabled in the default priorities. 2007-10-12 Nikos Mavrogiannopoulos * configure.in, lib/gnutls_algorithms.c, lib/gnutls_pk.c, lib/x509/dsa.c, lib/x509/sign.c, src/certtool-gaa.c, src/certtool.c, src/certtool.gaa: Added support for DSA2 (key sizes for more than 1024 bits on DSA) via libgcrypt 1.3.0. 2007-10-12 Nikos Mavrogiannopoulos * doc/gnutls.texi: Updated documentation. 2007-10-12 Nikos Mavrogiannopoulos * : 1 0 NEWS 2007-10-09 Simon Josefsson * NEWS: Mention certtool --quick-random. 2007-10-09 Nikos Mavrogiannopoulos * includes/gnutls/gnutls.h.in: Added defines for the deprecated SRP alert numbers. 2007-10-09 Nikos Mavrogiannopoulos * lib/x509/extensions.c: added an assertion. 2007-10-09 Nikos Mavrogiannopoulos * lib/gnutls_kx.c: Corrected an error in a parenthesis. 2007-10-09 Nikos Mavrogiannopoulos * : commit 72b99e94b1ecb51a2182645797e6153baeb60fc4 Author: Nikos Mavrogiannopoulos Date: Tue Oct 9 11:37:45 2007 +0300 2007-10-08 Ludovic Courtès * guile/modules/gnutls.scm, guile/modules/gnutls/build/enums.scm: Guile: Reflect SRP/PSK changes. * guile/modules/gnutls.scm (alert-description/unknown-srp-username, alert-description/missing-srp-username): Remove. (alert-description/unknown-psk-identity): New. * guile/modules/gnutls/build/enums.scm (%alert-description-enum): Likewise. 2007-10-08 Ludovic Courtès * NEWS: Update `NEWS'. 2007-10-08 Ludovic Courtès * configure.in: Fix configure-time Guile detection. * configure.in: Substitute `GUILE_LDFLAGS' into `LIBS', not `LDFLAGS'. Patch by Nix . 2007-10-08 Nikos Mavrogiannopoulos * : 1 1 doc/Makefile.am 2007-10-08 Nikos Mavrogiannopoulos * : commit 175526ddfe18f4c443fb31a676b8f1d50895b053 Author: Nikos Mavrogiannopoulos Date: Mon Oct 8 12:57:03 2007 +0300 2007-10-08 Simon Josefsson * : commit 1f24725c9a0b09e7a42ee18f2bb4c0fbac581b8f Author: Nikos Mavrogiannopoulos Date: Mon Oct 8 12:08:33 2007 +0300 2007-10-07 Nikos Mavrogiannopoulos * lib/auth_srp.c: corrected possible size issue 2007-10-07 Nikos Mavrogiannopoulos * NEWS, build-aux/config.rpath, doc/gnutls.texi, includes/gnutls/openpgp.h, includes/gnutls/x509.h, lib/x509/Makefile.am, lib/x509/xml.c, libextra/openpgp/Makefile.am, libextra/openpgp/xml.c, po/de.po, po/ms.po, src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa, src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, src/common.c: Removed all the xml functions and stubs, as well as references in the documentation. 2007-10-06 Nikos Mavrogiannopoulos * lib/gnutls_alert.c: error_to_alert() now always return an alert number. This is to avoid sending illegal values when the return value is not checked (commonplace). 2007-10-06 Nikos Mavrogiannopoulos * : 51 51 src/certtool-gaa.c 10 10 src/certtool-gaa.h 2007-10-06 Nikos Mavrogiannopoulos * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: Added the --quick-random option to certtool to improve generation time of private keys. They delay is quite annoying especially when generating test keys. 2007-10-06 Simon Josefsson * configure.in: Bump versions. 2007-10-06 Simon Josefsson * NEWS: Add. 2007-10-06 Nikos Mavrogiannopoulos * src/certtool.c: Corrected output in DER format and corrected output for smime_to_pkcs7 to output in outfile instead of stdout. 2007-09-24 Simon Josefsson * ChangeLog: Generated. 2007-09-24 Simon Josefsson * configure.in: Bump version. 2007-09-24 Simon Josefsson * NEWS: Version 2.1.1. 2007-09-24 Simon Josefsson * NEWS: Add. 2007-09-24 Simon Josefsson * configure.in: Rework Camellia configure messages and logic. 2007-09-24 Simon Josefsson * NEWS: Add fixes, for trac. 2007-09-24 Simon Josefsson * NEWS: Add. 2007-09-24 Simon Josefsson * configure.in: Typo. 2007-09-24 Simon Josefsson * configure.in: Add --disable-camellia. Remove automake conditional, not used. 2007-09-24 Simon Josefsson * AUTHORS: Add. 2007-09-24 Simon Josefsson * NEWS: Add. 2007-09-24 Simon Josefsson * NEWS: Bump version. 2007-09-24 Simon Josefsson * configure.in, includes/gnutls/gnutls.h.in, lgl/gc-libgcrypt.c, lgl/gc.h, lib/gnutls_algorithms.c, lib/gnutls_cipher_int.c, lib/gnutls_priority.c, libextra/gnutls_openssl.c, libextra/opencdk/opencdk.h, src/common.c, src/tests.c, src/tests.h, src/tls_test.c: Add patch to support Camellia, contributed by Yoshisato YANAGISAWA. Fixes #1. See http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/2331 2007-09-20 Simon Josefsson * ChangeLog: Generated. 2007-09-20 Simon Josefsson * NEWS: Version 2.1.0. 2007-09-20 Simon Josefsson * configure.in: Move CFLAGS setting further down, to make AC_PROG_CC add -g to it. 2007-09-20 Simon Josefsson * src/cli-gaa.c, src/serv-gaa.c: Generated. 2007-09-20 Simon Josefsson * src/serv.gaa: Set variables to NULL. Fix oprfi variable. 2007-09-20 Simon Josefsson * src/cli.gaa: Set variables to NULL. 2007-09-20 Simon Josefsson * lib/ext_oprfi.c: Fix crash. 2007-09-20 Simon Josefsson * lib/ext_oprfi.c: Fix crash. 2007-09-20 Simon Josefsson * src/serv.c: Fix infloop. 2007-09-20 Simon Josefsson * src/serv.c: Fix crash. 2007-09-20 Simon Josefsson * src/cli.c: Fix crash. 2007-09-20 Simon Josefsson * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, src/serv-gaa.c, src/serv-gaa.h, src/serv.c, src/serv.gaa: Support Opaque PRF Input in gnutls-cli and gnutls-serv. 2007-09-20 Simon Josefsson * doc/manpages/Makefile.am: Generated. 2007-09-20 Simon Josefsson * NEWS: Mention how to enable oprfi support. 2007-09-20 Simon Josefsson * doc/gnutls.texi: Typo. 2007-09-20 Simon Josefsson * lib/Makefile.am: Document more. 2007-09-20 Simon Josefsson * lib/ext_oprfi.c: Doc fix. 2007-09-20 Simon Josefsson * NEWS, configure.in, doc/gnutls.texi, includes/gnutls/gnutls.h.in, lib/Makefile.am, lib/ext_oprfi.c, lib/ext_oprfi.h, lib/gnutls_extensions.c, lib/gnutls_int.h, lib/gnutls_kx.c, tests/Makefile.am, tests/oprfi.c: Support for Opaque PRF Input TLS extension. 2007-09-20 Simon Josefsson * doc/gnutls.texi: Add configure.in snippet to TLS ext section. 2007-09-20 Simon Josefsson * doc/gnutls.texi: Typo. 2007-09-20 Simon Josefsson * NEWS: Add. 2007-09-20 Simon Josefsson * configure.in: Bump versions. 2007-09-20 Simon Josefsson * doc/examples/Makefile.am: Fix -I's. 2007-09-20 Simon Josefsson * ChangeLog: Generated. 2007-09-20 Simon Josefsson * Makefile.am: Fix release target (git-tag no longer exit with failure for non-existing tags). 2007-09-20 Simon Josefsson * NEWS: Version 2.0.1. 2007-09-20 Simon Josefsson * doc/gnutls.texi: Improve TLS ext section. 2007-09-19 Simon Josefsson * doc/protocol/draft-ietf-tls-rfc4346-bis-05.txt: Add. 2007-09-18 Simon Josefsson * doc/gnutls.texi: Notes on adding a new TLS extension. 2007-09-17 Simon Josefsson * : commit 344057de0fbf1cbc55dbd74cc23c78ebd2609cfc Author: Simon Josefsson Date: Mon Sep 17 11:13:39 2007 +0200 2007-09-17 Nikos Mavrogiannopoulos * : commit 6d3a3222640ce3b5e4daa67a4624a507445de334 Author: Simon Josefsson Date: Mon Sep 17 11:06:24 2007 +0200 2007-09-17 Simon Josefsson * NEWS: Add. 2007-09-17 Simon Josefsson * doc/Makefile.am, doc/credentials/Makefile.am, doc/credentials/ca.tmpl, doc/credentials/client.tmpl, doc/credentials/gnutls-http-serv, doc/credentials/openpgp-server-key.txt, doc/credentials/openpgp-server.txt, doc/credentials/openpgp/Makefile.am, doc/credentials/openpgp/cli_pub.asc, doc/credentials/openpgp/cli_ring.asc, doc/credentials/openpgp/cli_sec.asc, doc/credentials/openpgp/pub.asc, doc/credentials/openpgp/sec.asc, doc/credentials/params.pem, doc/credentials/proxy.tmpl, doc/credentials/psk-passwd.txt, doc/credentials/server.tmpl, doc/credentials/srp-passwd.txt, doc/credentials/srp-tpasswd.conf, doc/credentials/srp/Makefile.am, doc/credentials/srp/tpasswd, doc/credentials/srp/tpasswd.conf, doc/credentials/x509-ca-key.pem, doc/credentials/x509-ca.pem, doc/credentials/x509-client-key.pem, doc/credentials/x509-client.pem, doc/credentials/x509-other-ca.pem, doc/credentials/x509-proxy-key.pem, doc/credentials/x509-proxy.pem, doc/credentials/x509-server-dsa.pem, doc/credentials/x509-server-key-dsa.pem, doc/credentials/x509-server-key.pem, doc/credentials/x509-server.pem, doc/credentials/x509-trust.pem, doc/credentials/x509/Makefile.am, doc/credentials/x509/ca.pem, doc/credentials/x509/cert-dsa.pem, doc/credentials/x509/cert.pem, doc/credentials/x509/clicert-dsa.pem, doc/credentials/x509/clicert.pem, doc/credentials/x509/clikey-dsa.pem, doc/credentials/x509/clikey.pem, doc/credentials/x509/key-dsa.pem, doc/credentials/x509/key.pem, src/Makefile.am, src/gnutls-http-serv, src/openpgp/Makefile.am, src/openpgp/cli_pub.asc, src/openpgp/cli_ring.asc, src/openpgp/cli_sec.asc, src/openpgp/pub.asc, src/openpgp/sec.asc, src/params.pem, src/srp/Makefile.am, src/srp/tpasswd, src/srp/tpasswd.conf, src/x509/Makefile.am, src/x509/ca.pem, src/x509/cert-dsa.pem, src/x509/cert.pem, src/x509/clicert-dsa.pem, src/x509/clicert.pem, src/x509/clikey-dsa.pem, src/x509/clikey.pem, src/x509/key-dsa.pem, src/x509/key.pem: Move test credentials from src/ to doc/credentials/. 2007-09-17 Nikos Mavrogiannopoulos * : commit 9afa028dae6756ef463652e56543c89b04add024 Author: Nikos Mavrogiannopoulos Date: Mon Sep 17 11:47:12 2007 +0300 2007-09-11 Simon Josefsson * gl/gnulib.mk, gl/m4/extensions.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/string_h.m4, gl/string_.h: Remove duplicate gnulib modules. 2007-09-11 Simon Josefsson * gl/gettext.h, gl/gnulib.mk, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/sockpfaf.m4, gl/m4/stdbool.m4, gl/m4/stdio_h.m4, gl/m4/sys_socket_h.m4, gl/m4/unistd_h.m4, gl/stdbool_.h, gl/stdio_.h, gl/sys_socket_.h, gl/unistd_.h: Remove duplicate gnulib modules. 2007-09-11 Simon Josefsson * gl/gnulib.mk, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4: Update gnulib files. 2007-09-11 Simon Josefsson * lgl/m4/absolute-header.m4: Update gnulib files. 2007-09-11 Simon Josefsson * lgl/m4/malloc.m4, lgl/m4/realloc.m4, lgl/m4/stdlib_h.m4, lgl/realloc.c, lgl/stdlib_.h: Add. 2007-09-04 Ludovic Courtès * guile/src/core.c: Guile: Fix `x509-certificate-dn-oid' and related functions. * guile/src/core.c (X509_CERTIFICATE_DN_OID_FUNCTION_BODY): Use `scm_take_locale_stringn ()' instead of `scm_take_locale_string ()'. * NEWS: Update. Signed-off-by: Simon Josefsson 2007-09-04 Ludovic Courtès * NEWS: Guile: Fix `x509-certificate-dn-oid' and related functions. * guile/src/core.c (X509_CERTIFICATE_DN_OID_FUNCTION_BODY): Use `scm_take_locale_stringn ()' instead of `scm_take_locale_string ()'. * NEWS: Update. Signed-off-by: Simon Josefsson 2007-09-10 Simon Josefsson * gl/gnulib.mk, gl/m4/gnulib-comp.m4, lgl/Makefile.am, lgl/m4/gnulib-comp.m4, lgl/m4/time_h.m4: Update gnulib files. 2007-09-10 Simon Josefsson * .cvsignore, build-aux/.cvsignore, doc/.cvsignore, doc/examples/.cvsignore, doc/manpages/.cvsignore, doc/reference/.cvsignore, doc/reference/tmpl/.cvsignore, doc/scripts/.cvsignore, gl/.cvsignore, includes/.cvsignore, includes/gnutls/.cvsignore, lgl/.cvsignore, lib/.cvsignore, lib/minitasn1/.cvsignore, lib/x509/.cvsignore, libextra/.cvsignore, libextra/minilzo/.cvsignore, libextra/opencdk/.cvsignore, libextra/openpgp/.cvsignore, m4/.cvsignore, po/.cvsignore, src/.cvsignore, src/cfg/.cvsignore, src/cfg/platon/.cvsignore, src/cfg/platon/str/.cvsignore, src/openpgp/.cvsignore, src/srp/.cvsignore, src/x509/.cvsignore, tests/.cvsignore, tests/hostname-check/.cvsignore, tests/key-id/.cvsignore, tests/nist-pkits/.cvsignore, tests/pathlen/.cvsignore, tests/pkcs1-padding/.cvsignore, tests/pkcs12-decode/.cvsignore, tests/pkcs8-decode/.cvsignore, tests/rsa-md5-collision/.cvsignore, tests/sha2/.cvsignore, tests/userid/.cvsignore, tests/x509paths/.cvsignore: Remove .cvsignore's. 2007-09-07 Simon Josefsson * NEWS: Fix. 2007-09-07 Simon Josefsson * configure.in: Bump versions. 2007-09-07 Simon Josefsson * NEWS, lib/gnutls_algorithms.c, lib/gnutls_int.h: Use official IANA values for SRP. 2007-09-06 Simon Josefsson * doc/examples/Makefile.am: TLS/IA example uses anonymous ciphers. 2007-09-04 Simon Josefsson * ChangeLog: Generated. 2007-09-04 Simon Josefsson * NEWS: Version 2.0.0. 2007-09-04 Simon Josefsson * NEWS: Add. 2007-09-03 Simon Josefsson * NEWS: Add 1.6.x entries. 2007-09-03 Simon Josefsson * NEWS: Fix. 2007-09-03 Simon Josefsson * configure.in: Use three-digit versions. 2007-09-01 Simon Josefsson * NEWS: Fix. 2007-09-01 Simon Josefsson * lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c: Use libtasn1 v1.1. 2007-08-31 Simon Josefsson * NEWS, configure.in: Bump versions. 2007-08-31 Simon Josefsson * lib/minitasn1/libtasn1.h, lib/minitasn1/structure.c: Use libtasn1 v1.0. 2007-08-31 Simon Josefsson * configure.in: Drop gnits mode. 2007-08-31 Simon Josefsson * doc/examples/Makefile.am: Also don't build ex-serv-anon when anonymous ciphers are disabled. 2007-08-31 Simon Josefsson * doc/examples/Makefile.am: Don't try to build ex-client1 if anonymous ciphers are disabled. 2007-08-27 Simon Josefsson * ChangeLog: Generated. 2007-08-27 Simon Josefsson * NEWS: Version 1.7.19. 2007-08-27 Simon Josefsson * NEWS: Add. 2007-08-27 Simon Josefsson * doc/examples/ex-session-info.c: Support GNUTLS_CRD_PSK and GNUTLS_CRD_IA. 2007-08-27 Simon Josefsson * src/common.c: Handle GNUTLS_CRD_IA in print_info(). 2007-08-27 Simon Josefsson * NEWS: Add. 2007-08-27 Simon Josefsson * lib/gnutls_errors.c: Doc fix. 2007-08-27 Simon Josefsson * lib/gnutls_handshake.c: Revert "Check that value is negative before using gnutls_error_is_fatal." This reverts commit 9949a4b0b6b62a0ff3c05fee4283928d1a53b675. 2007-08-27 Simon Josefsson * lib/gnutls_errors.c: Have gnutls_error_is_fatal return 0 on positive "errors". Would fix bug reported by Andreas Metzler in . 2007-08-27 Simon Josefsson * lib/gnutls_handshake.c: Check that value is negative before using gnutls_error_is_fatal. Fixes bug reported by Andreas Metzler in see also . 2007-08-24 Simon Josefsson * NEWS: Add. 2007-08-24 Simon Josefsson * libextra/opencdk/misc.c, libextra/opencdk/opencdk.h: Upgrade to OpenCDK 0.6.4. 2007-08-24 Simon Josefsson * doc/protocol/draft-babu-serv-cert-trans-from-proxy-00.txt: Add. 2007-08-23 Simon Josefsson * gl/readline.c: Upgrade gnulib files. 2007-08-23 Simon Josefsson * src/certtool.c: No need for getline.h. 2007-08-23 Simon Josefsson * NEWS: Add. 2007-08-23 Simon Josefsson * gl/getdelim.c, gl/getdelim.h, gl/getline.c, gl/getline.h, gl/getpass.c, gl/gnulib.mk, gl/m4/getdelim.m4, gl/m4/getline.m4, gl/m4/gnulib-comp.m4, gl/m4/stdio_h.m4, gl/m4/unistd_h.m4, gl/stdio_.h, gl/unistd_.h, lgl/Makefile.am, lgl/m4/stdio_h.m4, lgl/stdio_.h: Upgrade gnulib files. 2007-08-23 Simon Josefsson * NEWS: Add. 2007-08-23 Simon Josefsson * gl/fseeko.c, gl/getpass.c, gl/getpass.h, gl/gnulib.mk, gl/lseek.c, gl/m4/fseeko.m4, gl/m4/getpass.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/lseek.m4, lgl/Makefile.am, lgl/fseeko.c, lgl/getdelim.c, lgl/getdelim.h, lgl/getline.c, lgl/getline.h, lgl/getpass.c, lgl/getpass.h, lgl/lseek.c, lgl/m4/fseeko.m4, lgl/m4/getdelim.m4, lgl/m4/getline.m4, lgl/m4/getpass.m4, lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4, lgl/m4/lseek.m4: Update gnulib files. 2007-08-20 Simon Josefsson * NEWS, configure.in: Bump versions. 2007-08-20 Simon Josefsson * doc/examples/Makefile.am: Don't build pgp example if pgp has been disabled. 2007-08-16 Simon Josefsson * ChangeLog: Generated. 2007-08-16 Simon Josefsson * NEWS: Version 1.7.18. 2007-08-16 Simon Josefsson * NEWS: Add. 2007-08-16 Simon Josefsson * configure.in: Bump version. 2007-08-16 Simon Josefsson * NEWS: Add. 2007-08-16 Simon Josefsson * NEWS: Add. 2007-08-16 Simon Josefsson * lib/auth_psk_passwd.c, lib/gnutls_psk.c, lib/gnutls_x509.c, libextra/gnutls_openpgp.c, libextra/openssl_compat.c: Fix pointer mix for different sized variables. Tiny patch from . 2007-08-15 Simon Josefsson * doc/Makefile.am: Typo. 2007-08-15 Simon Josefsson * doc/Makefile.am: Install images in info directory. 2007-08-15 Simon Josefsson * doc/Makefile.am, doc/arch/certificate-user-use-case.eps, doc/arch/certificate-user-use-case.pdf, doc/arch/client-server-use-case.eps, doc/arch/client-server-use-case.pdf, doc/arch/extensions_st.eps, doc/arch/extensions_st.pdf, doc/arch/handshake-sequence.eps, doc/arch/handshake-sequence.pdf, doc/arch/handshake-state.eps, doc/arch/handshake-state.pdf, doc/arch/mod_auth_st.eps, doc/arch/mod_auth_st.pdf, doc/arch/objects.eps, doc/arch/objects.pdf, doc/gnutls-certificate-user-use-case.eps, doc/gnutls-certificate-user-use-case.pdf, doc/gnutls-client-server-use-case.eps, doc/gnutls-client-server-use-case.pdf, doc/gnutls-extensions_st.eps, doc/gnutls-extensions_st.pdf, doc/gnutls-handshake-sequence.eps, doc/gnutls-handshake-sequence.pdf, doc/gnutls-handshake-state.eps, doc/gnutls-handshake-state.pdf, doc/gnutls-mod_auth_st.eps, doc/gnutls-mod_auth_st.pdf, doc/gnutls-objects.eps, doc/gnutls-objects.pdf, doc/gnutls.texi: More image renaming. 2007-08-15 Simon Josefsson * doc/Makefile.am, doc/gnutls-internals.eps, doc/gnutls-internals.pdf, doc/gnutls-layers.eps, doc/gnutls-layers.pdf, doc/gnutls-pgp.eps, doc/gnutls-pgp.pdf, doc/gnutls-x509.eps, doc/gnutls-x509.pdf, doc/gnutls.texi, doc/internals.eps, doc/internals.pdf, doc/layers.eps, doc/layers.pdf, doc/pgp1.eps, doc/pgp1.pdf, doc/x509-1.eps, doc/x509-1.pdf: Rename images to deal with texinfo brokenness. See . 2007-08-15 Simon Josefsson * doc/Makefile.am, doc/my-bib-macros.texi: Remove my-bib-macros, not used. 2007-08-15 Simon Josefsson * tests/x509self.c: Fix warning. Tiny patch from Andreas Metzler . 2007-08-15 Simon Josefsson * libextra/gnutls_openpgp.c: Fix warning. Tiny patch from Andreas Metzler . 2007-08-15 Simon Josefsson * ChangeLog: Generated. 2007-08-15 Simon Josefsson * NEWS: Typo. 2007-08-15 Simon Josefsson * NEWS: Version 1.7.17. 2007-08-15 Simon Josefsson * doc/manpages/Makefile.am: Generated. 2007-08-13 Simon Josefsson * NEWS: Add. 2007-08-13 Simon Josefsson * NEWS, includes/gnutls/openpgp.h, libextra/gnutls_openpgp.c: Add gnutls_openpgp_privkey_sign_hash. 2007-08-13 Simon Josefsson * doc/examples/ex-cert-select.c, includes/gnutls/gnutls.h.in, includes/gnutls/gnutlsxx.h, includes/gnutls/openpgp.h, includes/gnutls/pkcs12.h, lib/auth_dh_common.c, lib/auth_dhe_psk.c, lib/auth_psk.c, lib/auth_psk.h, lib/auth_psk_passwd.c, lib/auth_psk_passwd.h, lib/gnutls_psk.c, lib/gnutls_session.c, lib/gnutls_session_pack.c, lib/gnutls_x509.c, lib/gnutlsxx.cpp, lib/x509/output.c, src/certtool-cfg.c, src/certtool-cfg.h, src/certtool.c, src/cli.c, src/common.c, src/common.h, src/crypt.c, src/prime.c, src/psk.c, src/serv.c, src/tests.c, src/tests.h, src/tls_test.c: Use *_t types consistently. 2007-08-12 Simon Josefsson * includes/gnutls/gnutls.h.in, includes/gnutls/x509.h, lib/gnutls_cert.c, lib/gnutls_sig.c, lib/x509/privkey.c, tests/x509signself.c: Use const and pointers to gnutls_datum_t in sign callback. 2007-08-12 Simon Josefsson * tests/x509signself.c: Fix warnings. 2007-08-11 Simon Josefsson * doc/manpages/Makefile.am: Update. 2007-08-11 Simon Josefsson * configure.in: Set shared library version correctly. 2007-08-11 Simon Josefsson * NEWS, includes/gnutls/gnutls.h.in: New errors GNUTLS_E_APPLICATION_ERROR_MIN..GNUTLS_E_APPLICATION_ERROR_MAX. 2007-08-11 Simon Josefsson * NEWS, includes/gnutls/gnutls.h.in, lib/gnutls_cert.c, lib/gnutls_sig.c: Add gnutls_sign_callback_get. * includes/gnutls/gnutls.h.in (gnutls_sign_callback_get): Add. * lib/gnutls_cert.c (gnutls_sign_callback_set): Move here from gnutls_sig.c. Doc fix. (gnutls_sign_callback_get): New function. * lib/gnutls_sig.c (gnutls_sign_callback_set): Removed. 2007-08-10 Simon Josefsson * lib/gnutls_errors.c: (gnutls_error_is_fatal): Return default is 1 for unknown error codes. 2007-08-10 Simon Josefsson * doc/manpages/Makefile.am: Update. 2007-08-10 Simon Josefsson * NEWS, includes/gnutls/gnutls.h.in, includes/gnutls/x509.h, lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa_export.c, lib/gnutls_int.h, lib/gnutls_sig.c, lib/gnutls_x509.c, lib/x509/privkey.c, tests/Makefile.am, tests/x509signself.c: External signing callback interface. * includes/gnutls/gnutls.h.in (gnutls_sign_func): New type. (gnutls_sign_callback_set): New function. * includes/gnutls/x509.h (gnutls_x509_privkey_sign_hash): New function. * lib/gnutls_x509.c (gnutls_certificate_set_x509_key_mem): Handle NULL key. Doc fix. * lib/gnutls_sig.c (_gnutls_tls_sign_hdata): Pass session to _gnutls_tls_sign. (_gnutls_tls_sign_params): Likewise. (_gnutls_tls_sign): Add new parameter 'session'. Call sign callback if appropriate. (gnutls_sign_callback_set): New function. * lib/gnutls_x509.c (read_key_mem): Support a NULL key. * lib/gnutls_int.h (internals_st): Add sign_func, sign_func_userdata. * lib/auth_dhe.c (gen_dhe_server_kx): Use length of certificate list to decide wheter to sign, not presence of private key. * lib/auth_cert.c (_gnutls_gen_cert_client_cert_vrfy): Likewise. * lib/auth_rsa_export.c (gen_rsa_export_server_kx): Likewise. * lib/auth_cert.c(_gnutls_get_selected_cert): Don't require that private key is present. * lib/auth_rsa_export.c (gen_rsa_export_server_kx): Don't check key size when key is not present, assume it is > 512 bits. * lib/x509/privkey.c (gnutls_x509_privkey_sign_hash): New function. * tests/Makefile.am: Add x509signself. 2007-08-10 Simon Josefsson * NEWS: Add. 2007-08-10 Simon Josefsson * tests/Makefile.am: Build x509self. 2007-08-10 Simon Josefsson * tests/x509self.c: New file. 2007-08-08 Simon Josefsson * NEWS: Add. 2007-08-08 Simon Josefsson * lib/gnutls_priority.c: Disable TLS 1.2 by default, at least until RFC is out and we've done simple interop of it. 2007-08-08 Simon Josefsson * AUTHORS: Add. 2007-08-08 Simon Josefsson * NEWS: Add. 2007-08-08 Simon Josefsson * po/pl.po, po/sv.po: Sync with TP. 2007-08-08 Simon Josefsson * NEWS: Add. 2007-07-09 Ludovic Courtès * doc/gnutls.texi, doc/signatures.texi: Capitalized subsection titles. * doc/gnutls.texi: Capitalized subsection titles. * doc/signatures.texi: Likewise. Signed-off-by: Simon Josefsson 2007-08-08 Simon Josefsson * NEWS: Add. 2007-08-03 Ludovic Courtès * doc/Makefile.am, guile/src/Makefile.am: Fixed CPPFLAGS for Guile code and documentation. * doc/Makefile.am (SNARF_CPPFLAGS): Added `{top_srcdir,top_builddir}/includes' and `top_builddir'. (core.c.texi): Added `&&' between the `make' command and the `$(GUILE_FOR_BUILD)' command. Use `$(MAKE)' instead of `make'. (extra.c.texi): Likewise. * src/Makefile.am (AM_CPPFLAGS): Added `{top_srcdir,top_builddir}/includes'. Signed-off-by: Simon Josefsson 2007-08-08 Simon Josefsson * NEWS, configure.in: Bump versions. 2007-08-08 Simon Josefsson * ChangeLog: Generated. 2007-08-07 Simon Josefsson * NEWS: Version 1.7.16. 2007-08-07 Simon Josefsson * NEWS: Add. 2007-08-07 Simon Josefsson * NEWS: Add. 2007-08-07 Simon Josefsson * build-aux/GNUmakefile, build-aux/maint.mk, doc/fdl.texi, doc/gnutls.texi, doc/gpl-2.0.texi, doc/lgpl-2.1.texi, gl/error.c, gl/gnulib.mk, gl/m4/gnulib-cache.m4, gl/m4/include_next.m4, gl/override/doc/gpl-2.0.texi.diff, gl/override/doc/lgpl-2.1.texi.diff, lgl/Makefile.am, lgl/m4/gnulib-cache.m4, lgl/m4/include_next.m4, lgl/m4/stdint.m4: Update gnulib files. 2007-08-02 Ludovic Courtès * NEWS: Updated `NEWS'. Signed-off-by: Simon Josefsson 2007-08-01 Ludovic Courtès * lib/auth_cert.c: Fixed erroneous checks and sloppy return values in certificate selection. * lib/auth_cert.c (_gnutls_get_selected_cert): Dereference APR_CERT_LIST_LENGTH, APR_PKEY and APR_CERT_LIST when validating their value. (_gnutls_server_select_cert): When IDX < 0, set RET to `GNUTLS_E_INSUFFICIENT_CREDENTIALS'. Signed-off-by: Simon Josefsson 2007-08-02 Simon Josefsson * doc/protocol/draft-santesson-tls-gssapi-03.txt: Add. 2007-08-02 Simon Josefsson * AUTHORS: Add. 2007-07-14 Simon Josefsson * lgl/stdint_.h, lgl/vasnprintf.c: Update gnulib files. 2007-07-14 Simon Josefsson * NEWS: Add. 2007-07-14 Simon Josefsson * configure.in: Bump versions. 2007-07-14 Simon Josefsson * src/cli.c: On starttls EOF on stdin, clear EOF flag to make future reads work OK. Needed for Mac OS X. Report and tiny patch by Hal Eden . 2007-07-12 Simon Josefsson * build-aux/gendocs.sh, gl/override/lib/version-etc.c.diff, lgl/Makefile.am, lgl/m4/wchar.m4, lgl/wchar_.h: Update. 2007-07-09 Simon Josefsson * doc/protocol/draft-ietf-tls-rfc4346-bis-04.txt, doc/protocol/draft-santesson-tls-gssapi-02.txt: Add. 2007-07-09 Simon Josefsson * doc/Makefile.am, doc/gnutls.texi, doc/internals.texi: Avoid make errors regarding internals.texi. See . 2007-07-09 Simon Josefsson * doc/Makefile.am, guile/src/Makefile.am: Fix build failure in doc/ when guile isn't installed built yet. 2007-07-08 Ludovic Courtès * doc/gnutls.texi, doc/internals.texi: Manual: Capitalized section and chapter titles. * doc/gnutls.texi: Capitalized section and chapter titles. (Certificate to XML convertion functions): Fixed typo both in node name and chapter title. Updated menu. * doc/internals.texi: Likewise. Signed-off-by: Simon Josefsson 2007-07-06 Simon Josefsson * doc/protocol/draft-nir-tls-eap-01.txt: Add. 2007-07-02 Ludovic Courtès * doc/guile.texi: Manual: Small Guile fixes. * doc/guile.texi: Fixed typos, added cross-refs to the Guile manual. Signed-off-by: Simon Josefsson 2007-07-03 Simon Josefsson * doc/protocol/draft-ietf-tls-rfc4366-bis-00.txt: Add. 2007-07-02 Simon Josefsson * ChangeLog: Generated. 2007-07-02 Simon Josefsson * NEWS: Version 1.7.15. 2007-07-02 Simon Josefsson * po/LINGUAS: Revert. 2007-07-02 Simon Josefsson * po/LINGUAS: Sync with TP. 2007-07-02 Simon Josefsson * NEWS: Add. 2007-07-02 Simon Josefsson * doc/gpl-2.0.texi, doc/gpl.texi, doc/lgpl-2.1.texi, doc/lgpl.texi: Fix gnulib name changes. 2007-07-02 Simon Josefsson * build-aux/config.rpath, build-aux/maint.mk, doc/Makefile.am, doc/gnutls.texi, gl/gnulib.mk, gl/m4/getaddrinfo.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/override/doc/gpl-2.0.texi.diff, gl/override/doc/gpl.texi.diff, gl/override/doc/lgpl-2.1.texi.diff, gl/override/doc/lgpl.texi.diff: Update gnulib files. Fix GPL renaming. 2007-07-02 Simon Josefsson * NEWS: Add. 2007-07-02 Simon Josefsson * doc/gnutls.texi: Typo. 2007-07-02 Simon Josefsson * doc/gnutls.texi: Improve installation instructions. 2007-07-02 Simon Josefsson * doc/gnutls.texi: Add 'Obtaining and Installing'. Suggested by ludo@gnu.org (Ludovic Courtès). 2007-06-29 Simon Josefsson * NEWS: Add. 2007-06-29 Simon Josefsson * doc/guile.texi: Add 'Guile Preparations' section. Based on discussions with ludo@gnu.org (Ludovic Courtès). 2007-06-29 Simon Josefsson * configure.in: Check for scm_from_locale_string instead of SCM_API. Patch from ludo@gnu.org (Ludovic Courtès). 2007-06-29 Simon Josefsson * NEWS: Add. 2007-06-29 Simon Josefsson * guile/src/Makefile.am: Put $(GUILE_FLAGS) in LIBADD, not LDFLAGS. Reported by ludo@gnu.org (Ludovic Courtès). 2007-06-27 Simon Josefsson * doc/TODO: Add. 2007-06-27 Simon Josefsson * NEWS: Add. 2007-06-27 Simon Josefsson * po/LINGUAS, po/ms.po: Sync with TP. 2007-06-27 Simon Josefsson * NEWS: Add. 2007-06-27 Simon Josefsson * tests/key-id/key-id: Can't use /dev/null as template under mingw32, probably really a bug in cfg+. 2007-06-27 Simon Josefsson * gl/m4/getaddrinfo.m4: Fix gai_strerror on mingw32. 2007-06-26 Simon Josefsson * NEWS, configure.in: Check that the guile header files is recent enough and that it works. 2007-06-26 Simon Josefsson * configure.in: Move Guile setup stuff down under 'External libraries'. 2007-06-26 Simon Josefsson * Makefile.am, NEWS, configure.in: Fix installation path of Guile bindings. 2007-06-26 Simon Josefsson * NEWS, configure.in: Bump versions. 2007-06-26 Simon Josefsson * ChangeLog: Generated. 2007-06-26 Simon Josefsson * NEWS: Version 1.7.14. 2007-06-26 Simon Josefsson * NEWS: Add. 2007-06-26 Simon Josefsson * NEWS: Add. 2007-06-26 Simon Josefsson * doc/gendocs_template, gl/gnulib.mk, gl/m4/absolute-header.m4, gl/m4/gnulib-comp.m4, gl/m4/include_next.m4, gl/m4/netinet_in_h.m4, gl/m4/string_h.m4, gl/m4/sys_socket_h.m4, gl/netinet_in_.h, gl/string_.h, gl/sys_socket_.h, lgl/Makefile.am, lgl/float_.h, lgl/m4/absolute-header.m4, lgl/m4/float_h.m4, lgl/m4/gnulib-comp.m4, lgl/m4/include_next.m4, lgl/m4/stdint.m4, lgl/m4/stdio_h.m4, lgl/m4/string_h.m4, lgl/m4/sys_socket_h.m4, lgl/m4/sys_stat_h.m4, lgl/m4/time_h.m4, lgl/m4/unistd_h.m4, lgl/m4/wchar.m4, lgl/printf-args.c, lgl/printf-parse.h, lgl/stdint_.h, lgl/stdio_.h, lgl/string_.h, lgl/sys_socket_.h, lgl/sys_stat_.h, lgl/time_.h, lgl/unistd_.h, lgl/wchar_.h: Update gnulib files. 2007-06-26 Simon Josefsson * NEWS: Add. 2007-06-17 Ludovic Courtes * configure.in: Make sure Guile is 1.8 or later. * configure.in: Make sure Guile is 1.8 or later, using `GUILE_CHECK'. Signed-off-by: Simon Josefsson 2007-06-26 Simon Josefsson * NEWS: Add. 2007-06-26 Ludovic Courtes * lib/gnutls_pk.c: Fixed memory leak in `_gnutls_dsa_verify ()'. * lib/gnutls_pk.c (_gnutls_dsa_verify): Release `rs[0]' and `rs[1]' when done. Signed-off-by: Simon Josefsson 2007-06-20 Simon Josefsson * NEWS: Add. 2007-06-20 Simon Josefsson * THANKS: Add. 2007-06-20 Simon Josefsson * src/cli.c: Don't crash if TLS handshake fails. Reported by Marc Haber and Andreas Metzler via Debian BTS #429183. 2007-06-20 Simon Josefsson * doc/protocol/draft-ietf-tls-rsa-aes-gcm-00.txt: Add. 2007-06-15 Simon Josefsson * doc/protocol/draft-ietf-tls-srp-14.txt: Add. 2007-06-14 Simon Josefsson * AUTHORS: Update PGP key. 2007-06-14 Simon Josefsson * AUTHORS: Change Ludovic' description. 2007-06-14 Simon Josefsson * libextra/gnutls_openpgp.c: Merge patch from Timo, applied to CVS. (stream_to_datum): Call gnutls_assert() on error. 2007-06-13 Ludovic Courtès * lib/auth_cert.c: Fix off-by-one in TLS 1.2 handshake. * lib/auth_cert.c (_gnutls_gen_cert_server_cert_req): Before invoking `gnutls_malloc ()', increment SIZE when using TLS 1.2 so that the allocated buffer is large-enough to contain the list of supported hashes. Don't change SIZE later on. Signed-off-by: Simon Josefsson 2007-06-13 Ludovic Courtès * libextra/gnutls_openpgp.c: Fix use of uninitialized variable in `gnutls_certificate_set_openpgp_key_mem ()' * libextra/gnutls_openpgp.c (stream_to_datum): Check whether INP is NULL rather than checking BUF (which is not initialized yet). Signed-off-by: Simon Josefsson 2007-06-13 Simon Josefsson * NEWS, configure.in: Bump versions. 2007-06-13 Simon Josefsson * doc/protocol/draft-salowey-tls-rfc4507bis-00.txt: Add. 2007-06-12 Simon Josefsson * doc/TODO: Add. 2007-06-11 Ludovic Courtes * guile/tests/openpgp-auth.scm, guile/tests/openpgp-keyring.scm, guile/tests/raw-to-c.scm: Small cleanups in `guile/tests'. Signed-off-by: Simon Josefsson 2007-06-12 Simon Josefsson * doc/Makefile.am: Clarify that guile.texi dependencies are dependencies of gnutls.texi too. 2007-06-11 Simon Josefsson * doc/protocol/draft-nir-tls-eap-00.txt: Add. 2007-06-11 Simon Josefsson * THANKS, configure.in: Need to use CFLAGS when checking for -Wno-pointer-sign. Reported by "Kristofer T. Karas" . 2007-06-11 Simon Josefsson * ChangeLog: Generated. 2007-06-11 Simon Josefsson * NEWS: Version 1.7.13. 2007-06-11 Simon Josefsson * Makefile.am: Fix update-po target. 2007-06-11 Simon Josefsson * NEWS: Fix. 2007-06-11 Simon Josefsson * NEWS: Add. 2007-06-11 Simon Josefsson * doc/manpages/Makefile.am: Fix copyright years. 2007-06-11 Simon Josefsson * doc/reference/gnutls.types: Add, to work around problems if this file isn't present. 2007-06-11 Simon Josefsson * Makefile.am: Fix release target. 2007-06-11 Simon Josefsson * po/Makevars: Specify MSGFILTER, to fix make distcheck. 2007-06-11 Simon Josefsson * guile/src/Makefile.am: Need to put libguile-gnutls-v-0.la before gnulib_libs, to fix rpath issue. 2007-06-11 Simon Josefsson * guile/src/Makefile.am: Use _LIBADD for libraries, not _LDFLAGS. 2007-06-11 Simon Josefsson * NEWS: Add. 2007-06-11 Simon Josefsson * NEWS: Add. 2007-06-11 Simon Josefsson * gl/gnulib.mk, gl/m4/string_h.m4, gl/string_.h, lgl/Makefile.am, lgl/fseeko.c, lgl/m4/gettext.m4, lgl/m4/gnulib-comp.m4, lgl/m4/intlmacosx.m4, lgl/m4/string_h.m4, lgl/m4/vasnprintf.m4, lgl/printf-args.c, lgl/printf-args.h, lgl/printf-parse.c, lgl/printf-parse.h, lgl/string_.h, lgl/vasnprintf.c: Update gnulib files. 2007-06-11 Simon Josefsson * libextra/opencdk/armor.c, libextra/opencdk/cipher.c, libextra/opencdk/compress.c, libextra/opencdk/context.h, libextra/opencdk/filters.h, libextra/opencdk/kbnode.c, libextra/opencdk/keydb.c, libextra/opencdk/literal.c, libextra/opencdk/main.c, libextra/opencdk/main.h, libextra/opencdk/misc.c, libextra/opencdk/new-packet.c, libextra/opencdk/opencdk.h, libextra/opencdk/pubkey.c, libextra/opencdk/read-packet.c, libextra/opencdk/seskey.c, libextra/opencdk/sig-check.c, libextra/opencdk/stream.c, libextra/opencdk/stream.h, libextra/opencdk/verify.c: Update to OpenCDK 0.6.3. 2007-06-11 Simon Josefsson * doc/protocol/draft-badra-ecdhe-tls-psk-00.txt, doc/protocol/draft-hajjeh-tls-identity-protection-01.txt, doc/protocol/draft-hajjeh-tls-sign-03.txt: Add. 2007-06-08 Ludovic Courtes * guile/src/Makefile.am: Fix Guile linking so that the right GnuTLS libs are used. * guile/src/Makefile.am (GNUTLS_CORE_LIBS, GNUTLS_EXTRA_LIBS): New. (GNULIB_LDFLAGS): Renamed to `GNULIB_LIBS'. Explicitly pass the `.la' path. (libguile_gnutls_v_0_la_LDFLAGS): Pass `$(GUILE_LDFLAGS)' as the last item so that RPATH is in the right order (i.e., all `$(top_builddir)/...' appear first). (libguile_gnutls_extra_v_0_la_LDFLAGS): Likewise. 2007-06-08 Simon Josefsson * NEWS, configure.in: Bump versions. 2007-06-08 Simon Josefsson * ChangeLog: Generated. 2007-06-08 Simon Josefsson * NEWS: Version 1.7.12. 2007-06-08 Simon Josefsson * NEWS: Add. 2007-06-08 Simon Josefsson * lib/x509/x509.c: Fix warnings on amd64, from Nikos. 2007-06-08 Simon Josefsson * NEWS: Add. 2007-06-08 Simon Josefsson * NEWS: Add. 2007-06-08 Simon Josefsson * : commit 42c591867afe192eae45c56f1e0f9e3b8867d2ad Author: Simon Josefsson Date: Fri Jun 8 13:45:59 2007 +0200 2007-06-08 Simon Josefsson * po/Makevars: Try to fix line number collisions. 2007-06-06 Ludovic Courtes * configure.in, guile/src/Makefile.am: Fixed the `-Wno-strict-prototypes' issue in Guile code. * configure.in: Add all custom CFLAGS to `AM_CFLAGS' rather than `CFLAGS', except for `-D_REENTRANT -D_THREAD_SAFE' which must be present during feature tests. Substitute `AM_CFLAGS'. * src/Makefile.am (libguile_gnutls_v_0_la_CFLAGS): Added `$(AM_CFLAGS)'. (libguile_gnutls_extra_v_0_la_CFLAGS): Likewise. (AM_CFLAGS): When GCC is used, add `-Wno-strict-prototypes'. 2007-06-06 Ludovic Courtes * configure.in: Cosmetic changes in `configure.in'. * configure.in: Display a heading indicating that Guile stuff are being detected. 2007-06-06 Ludovic Courtes * m4/guile.m4: Added `guile.m4', per Simon's request. 2007-06-06 Ludovic Courtes * configure.in: Don't look for Guile when `guile-snarf' is not found. * configure.in: Don't invoke `GUILE_PROGS' and `GUILE_FLAGS' when `guile-snarf' is not found. 2007-06-04 Simon Josefsson * doc/protocol/draft-rescorla-tls-suiteb-01.txt: Add. 2007-06-04 Simon Josefsson * doc/protocol/draft-ietf-tls-ecc-new-mac-01.txt: Add. 2007-06-01 Simon Josefsson * doc/guile.texi: More @node fixes. 2007-06-01 Simon Josefsson * doc/guile.texi: Avoid @node collisions with main manual. 2007-06-01 Simon Josefsson * doc/Makefile.am: Need -I for config.h. 2007-06-01 Simon Josefsson * Makefile.am: Need to build doc/ after guile/. 2007-06-01 Simon Josefsson * NEWS: Add. 2007-06-01 Simon Josefsson * guile/src/Makefile.am: Need -I for config.h. 2007-06-01 Ludovic Courtès * : commit f469cfce51318df3b629d9af210ce4b4e587fac0 Author: Ludovic Courtes Date: Fri Jun 1 00:51:10 2007 +0200 2007-06-01 Ludovic Courtes * doc/extract-guile-c-doc.scm, guile/modules/system/documentation/c-snarf.scm: Tiny bug fixes in Guile's documentation extraction. * doc/extract-guile-c-doc.scm (main): Use named arguments rather than a single rest arg. Fixed the order of arguments as passed to `run-cpp-and-extract-snarfing' so that `ccache gcc -E' is really passed as `("ccache" "gcc" "-E")' (in this order). * guile/modules/system/documentation/c-snarf.scm (run-cpp-and-extract-snarfing): Pass FILE as the last CPP argument. 2007-05-31 Ludovic Courtes * Makefile.am, configure.in, guile/src/Makefile.am: Build cleanups following Simon's comments. * Makefile.am (SUBDIRS): Add `guile' when `HAVE_GUILE'. * configure.in: When `guile-snarf' is not found, set `opt_guile_bindings' to `no' instead of bailing out. * src/Makefile.am (GUILE_FOR_BUILD): Fixed `-L' parameter. 2007-05-31 Simon Josefsson * doc/gnutls.texi: Revert unnecessary changes. 2007-05-31 Simon Josefsson * : commit d51689f572e544759632fa2f9ca0209a843d4452 Author: Ludovic Courtès Date: Thu May 31 00:28:19 2007 +0200 2007-05-31 Ludovic Courtès * doc/guile.texi: Minor doc fixes. 2007-05-31 Ludovic Courtès * doc/Makefile.am: Handle missing Guile when building the documentation. 2007-05-31 Ludovic Courtès * doc/Makefile.am, doc/extract-guile-c-doc.scm, doc/gnutls.texi, doc/guile.texi: Integrated documentation of Guile bindings. 2007-05-30 Ludovic Courtès * configure.in, guile/src/Makefile.am: Try to handle "function declaration isn't a prototype" warnings. 2007-05-30 Simon Josefsson * gl/netinet_in_.h, gl/string_.h, gl/sys_socket_.h, lgl/Makefile.am, lgl/float_.h, lgl/fseeko.c, lgl/lseek.c, lgl/m4/iconv.m4, lgl/m4/lseek.m4, lgl/m4/stdio_h.m4, lgl/stdint_.h, lgl/stdio_.h, lgl/string_.h, lgl/sys_socket_.h, lgl/sys_stat_.h, lgl/time_.h, lgl/unistd_.h, lgl/wchar_.h: Update. 2007-05-30 Ludovic Courtès * Makefile.am, configure.in, guile/Makefile.am, guile/modules/Makefile.am, guile/modules/gnutls.scm, guile/modules/gnutls/build/enums.scm, guile/modules/gnutls/build/priorities.scm, guile/modules/gnutls/build/smobs.scm, guile/modules/gnutls/build/utils.scm, guile/modules/gnutls/extra.scm, guile/modules/system/documentation/README, guile/modules/system/documentation/c-snarf.scm, guile/modules/system/documentation/output.scm, guile/pre-inst-guile.in, guile/src/Makefile.am, guile/src/core.c, guile/src/errors.c, guile/src/errors.h, guile/src/extra.c, guile/src/make-enum-header.scm, guile/src/make-enum-map.scm, guile/src/make-session-priorities.scm, guile/src/make-smob-header.scm, guile/src/make-smob-types.scm, guile/src/utils.c, guile/src/utils.h, guile/tests/Makefile.am, guile/tests/anonymous-auth.scm, guile/tests/errors.scm, guile/tests/openpgp-auth.scm, guile/tests/openpgp-keyring.asc, guile/tests/openpgp-keyring.scm, guile/tests/openpgp-keys.scm, guile/tests/openpgp-pub.asc, guile/tests/openpgp-sec.asc, guile/tests/pkcs-import-export.scm, guile/tests/raw-to-c.scm, guile/tests/rsa-parameters.pem, guile/tests/session-record-port.scm, guile/tests/srp-base64.scm, guile/tests/x509-auth.scm, guile/tests/x509-certificate.pem, guile/tests/x509-certificates.scm, guile/tests/x509-key.pem: Started Guile integration. Documentation is still missing. A bit rough on the edges, but `make' and `make check' do work. 2007-05-28 Simon Josefsson * doc/Makefile.am: Make sure all images are distributed in all formats. Reported by Andreas Metzler . 2007-05-27 Simon Josefsson * lib/gnutls_x509.c: (parse_pem_ca_mem): Handle reads beyond first certificate properly. Reported by Dennis Vshivkov in . 2007-05-27 Simon Josefsson * tests/Makefile.am, tests/parse_ca.c: Add self-test. 2007-05-27 Simon Josefsson * THANKS: Add. 2007-05-27 Simon Josefsson * NEWS: Fix. 2007-05-27 Simon Josefsson * NEWS: [no log message] 2007-05-27 Simon Josefsson * lib/gnutls_datum.c: (_gnutls_free_datum_m): Free even if size is 0. 2007-05-26 Simon Josefsson * NEWS: Add. 2007-05-26 Simon Josefsson * lib/x509/privkey_pkcs8.c: (decode_pkcs8_key): If ASN.1 decoding fails after decrypting an already properly decoded value, assume it is due to a bad password rather than ASN.1 error. Reported by Nate Nielsen . (From 1.6.x branch.) 2007-05-26 Simon Josefsson * lib/x509/privkey_pkcs8.c: (decode_private_key_info): Translate asn1 errors properly. Reported by Nate Nielsen . 2007-05-26 Simon Josefsson * lib/auth_cert.c: Fix mem leak, reported by Andrey Nosenko . (From 1.6.x branch.) 2007-05-26 Simon Josefsson * THANKS: Add (from 1.6.x). 2007-05-26 Simon Josefsson * NEWS, configure.in: Bump versions. 2007-05-26 Simon Josefsson * ChangeLog: Generated. 2007-05-26 Simon Josefsson * NEWS: Version 1.7.11. 2007-05-26 Simon Josefsson * NEWS: Fix. 2007-05-26 Simon Josefsson * configure.in: Bump versions. 2007-05-26 Simon Josefsson * NEWS: Add. 2007-05-26 Simon Josefsson * libextra/opencdk/Makefile.am: Add opencdk.h to sources. 2007-05-25 Simon Josefsson * ChangeLog: Generated. 2007-05-25 Simon Josefsson * NEWS: Version 1.7.10. 2007-05-25 Simon Josefsson * Makefile.am: Use cg instead of cvs commands, for update-po target. 2007-05-25 Simon Josefsson * NEWS: Add. 2007-05-25 Simon Josefsson * Makefile.am: Change release target from cvs to git. 2007-05-25 Simon Josefsson * lgl/lseek.c, lgl/m4/lseek.m4: Update. 2007-05-25 Simon Josefsson * doc/gendocs_template, lgl/.cvsignore, lgl/Makefile.am, lgl/fseeko.c, lgl/m4/fseeko.m4, lgl/m4/gnulib-comp.m4, lgl/m4/unistd_h.m4, lgl/stdio_.h, lgl/unistd_.h: Update. 2007-05-25 Simon Josefsson * NEWS: Typo. 2007-05-24 Simon Josefsson * doc/manpages/Makefile.am: Update. 2007-05-24 Simon Josefsson * lib/gnutls_x509.c: Use new API. 2007-05-24 Simon Josefsson * NEWS: Add. 2007-05-24 Simon Josefsson * gl/gnulib.mk, gl/netinet_in_.h, gl/string_.h, gl/sys_socket_.h, lgl/.cvsignore, lgl/Makefile.am, lgl/float+.h, lgl/float_.h, lgl/fseeko.c, lgl/m4/float_h.m4, lgl/m4/fseeko.m4, lgl/m4/gnulib-comp.m4, lgl/m4/stdio_h.m4, lgl/m4/vasnprintf.m4, lgl/m4/vasprintf.m4, lgl/m4/wint_t.m4, lgl/stdint_.h, lgl/stdio_.h, lgl/string_.h, lgl/sys_socket_.h, lgl/sys_stat_.h, lgl/time_.h, lgl/unistd_.h, lgl/vasnprintf.c, lgl/wchar_.h: Update. 2007-05-24 Simon Josefsson * configure.in: Bump versions. 2007-05-24 Simon Josefsson * NEWS, includes/gnutls/x509.h, lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509.h: Export gnutls_x509_crt_get_raw_dn, gnutls_x509_crt_get_raw_issuer_dn. 2007-05-23 Timo Schulz * libextra/openpgp/xml.c: fix the key ID representation in the XML code. 2007-05-21 Timo Schulz * libextra/openpgp/extras.c, libextra/openpgp/openpgp.h, libextra/openpgp/pgp.c, libextra/openpgp/xml.c: cleanups for the xml code: elgamal keys are not supported. bug fix for the key import (base64) code, store the stream and close it in the deinit function. 2007-05-21 Timo Schulz * src/openpgp/Makefile.am, src/openpgp/cli_ring.asc: Add client keyring in base64 format. This is the same file as cli_ring.gpg but armored. 2007-05-21 Timo Schulz * libextra/openpgp/extras.c: do not close the input stream in the import code when the base64 is used. 2007-05-14 Timo Schulz * tests/openpgp/keyring.c: few more comments. 2007-05-14 Timo Schulz * configure.in: add makefile for the openpgp test folder 2007-05-14 Timo Schulz * libextra/openpgp/extras.c: patch to support raw keyrings. 2007-05-14 Timo Schulz * tests/Makefile.am, tests/openpgp/Makefile.am, tests/openpgp/keyring.c: Add simple openpgp test. 2007-05-12 Simon Josefsson * ChangeLog: [no log message] 2007-05-12 Simon Josefsson * NEWS: Version 1.7.9. 2007-05-12 Simon Josefsson * NEWS: Add. 2007-05-12 Simon Josefsson * tests/Makefile.am: Reorder to work around libtool bug. 2007-05-12 Simon Josefsson * NEWS: Fix. 2007-05-12 Simon Josefsson * NEWS: Add. 2007-05-12 Simon Josefsson * lgl/m4/vasnprintf.m4, lgl/vasnprintf.c, libextra/opencdk/armor.c, libextra/opencdk/cipher.c, libextra/opencdk/compress.c, libextra/opencdk/context.h, libextra/opencdk/filters.h, libextra/opencdk/kbnode.c, libextra/opencdk/keydb.c, libextra/opencdk/literal.c, libextra/opencdk/main.c, libextra/opencdk/main.h, libextra/opencdk/misc.c, libextra/opencdk/opencdk.h, libextra/opencdk/pubkey.c, libextra/opencdk/read-packet.c, libextra/opencdk/sig-check.c, libextra/opencdk/stream.c, libextra/opencdk/verify.c, libextra/opencdk/write-packet.c: Update. 2007-05-11 Simon Josefsson * NEWS: Add. 2007-05-11 Simon Josefsson * lib/gnutls_priority.c: (gnutls_set_default_priority): Change order to prefer X.509 over OpenPGP. 2007-05-03 Simon Josefsson * doc/gendocs_template, gl/override/doc/gendocs_template, gl/override/doc/gendocs_template.diff: Update. 2007-05-03 Simon Josefsson * doc/gendocs_template: Revert to upstream gnulib version. 2007-05-03 Simon Josefsson * NEWS: Fix. 2007-05-03 Simon Josefsson * NEWS: Add. 2007-05-03 Simon Josefsson * gl/gnulib.mk, gl/m4/gnulib-comp.m4, gl/m4/socklen.m4, gl/socket_.h, gl/string_.h, gl/sys_socket_.h, lgl/Makefile.am, lgl/getpass.c, lgl/m4/fseeko.m4, lgl/m4/gnulib-comp.m4, lgl/m4/socklen.m4, lgl/m4/stdint.m4, lgl/m4/stdio_h.m4, lgl/m4/sys_stat_h.m4, lgl/m4/unistd_h.m4, lgl/socket_.h, lgl/stat_.h, lgl/stdio_.h, lgl/string_.h, lgl/sys_socket_.h, lgl/sys_stat_.h, lgl/time_.h, lgl/unistd_.h, lgl/wchar_.h: Update. 2007-05-02 Simon Josefsson * doc/Makefile.am: Add gnutls-logo.pdf, to fix distcheck. 2007-05-02 Simon Josefsson * lib/x509/output.c: Fix mem leaks. 2007-04-29 Simon Josefsson * doc/protocol/draft-otto-tls-sigma-ciphersuite-00.txt: Add. 2007-04-24 Timo Schulz * libextra/opencdk/literal.c: missing file. 2007-04-24 Simon Josefsson * doc/protocol/draft-ietf-tls-ecc-new-mac-00.txt, doc/protocol/draft-ietf-tls-suiteb-00.txt: Add. 2007-04-22 Timo Schulz * libextra/opencdk/dummy.c: [no log message] 2007-04-22 Timo Schulz * libextra/opencdk/Makefile.am, libextra/opencdk/README, libextra/opencdk/armor.c, libextra/opencdk/cipher.c, libextra/opencdk/cipher.h, libextra/opencdk/compress.c, libextra/opencdk/context.h, libextra/opencdk/encrypt.c, libextra/opencdk/filters.h, libextra/opencdk/kbnode.c, libextra/opencdk/keydb.c, libextra/opencdk/keygen.c, libextra/opencdk/keylist.c, libextra/opencdk/keyserver.c, libextra/opencdk/main.c, libextra/opencdk/main.h, libextra/opencdk/md.c, libextra/opencdk/md.h, libextra/opencdk/misc.c, libextra/opencdk/new-packet.c, libextra/opencdk/opencdk.h, libextra/opencdk/packet.h, libextra/opencdk/plaintext.c, libextra/opencdk/pubkey.c, libextra/opencdk/read-packet.c, libextra/opencdk/seskey.c, libextra/opencdk/sig-check.c, libextra/opencdk/sign.c, libextra/opencdk/stream.c, libextra/opencdk/stream.h, libextra/opencdk/sym-cipher.c, libextra/opencdk/trustdb.c, libextra/opencdk/types.h, libextra/opencdk/verify.c, libextra/opencdk/write-packet.c: replace the old build-in opencdk version with the most recent cvs version. 2007-04-22 Simon Josefsson * configure.in: Check for OpenCDK function that is only available in OpenCDK 0.6.0. 2007-04-21 Simon Josefsson * doc/TODO: Add. 2007-04-21 Simon Josefsson * doc/protocol/draft-badra-tls-password-00.txt, doc/protocol/draft-badra-tls-password-ext-00.txt: Add. 2007-04-20 Timo Schulz * libextra/gnutls_openpgp.c: Adjustments for the opencdk migration and some cleanups. 2007-04-20 Timo Schulz * libextra/openpgp/compat.c, libextra/openpgp/extras.c, libextra/openpgp/gnutls_openpgp.h, libextra/openpgp/openpgp.h, libextra/openpgp/pgp.c, libextra/openpgp/pgpverify.c, libextra/openpgp/privkey.c, libextra/openpgp/xml.c: First bunch of patches for the opencdk migration. 2007-04-19 Simon Josefsson * libextra/openpgp/extras.c: (gnutls_openpgp_keyring_import): Make it work (it seems the old code didn't work). Patch from ludo@chbouib.org (Ludovic Courtès). 2007-04-18 Simon Josefsson * doc/gnutls.texi: Mention P12 structure. 2007-04-18 Simon Josefsson * tests/tlsia.c: Check return codes from init functions. 2007-04-18 Simon Josefsson * NEWS, lib/x509/sign.c: Write NULL in parameters for RSA signing. 2007-04-17 Simon Josefsson * NEWS, src/certtool-cfg.c, src/certtool.c: Use current time as default serial number. 2007-04-17 Simon Josefsson * NEWS: Add. 2007-04-16 Simon Josefsson * NEWS, configure.in: Bump versions. 2007-04-16 Simon Josefsson * ChangeLog: [no log message] 2007-04-16 Simon Josefsson * NEWS: Version 1.7.8. 2007-04-16 Simon Josefsson * lib/x509/x509_write.c: Doc fix. 2007-04-16 Simon Josefsson * tests/gc.c: Need to init libgcrypt with secure memory hooks. 2007-04-16 Simon Josefsson * NEWS, doc/manpages/Makefile.am: Add. 2007-04-16 Simon Josefsson * includes/gnutls/gnutls.h.in: Reorder to make it compile. 2007-04-16 Simon Josefsson * gl/m4/gnulib-comp.m4, gl/string_.h, lgl/Makefile.am, lgl/float+.h, lgl/m4/gnulib-comp.m4, lgl/m4/intl.m4, lgl/m4/longdouble.m4, lgl/m4/stdint.m4, lgl/m4/stdio_h.m4, lgl/m4/vasnprintf.m4, lgl/printf-args.c, lgl/printf-args.h, lgl/printf-parse.c, lgl/stdio_.h, lgl/string_.h, lgl/time_.h, lgl/vasnprintf.c, lgl/wchar_.h: Update. 2007-04-16 Simon Josefsson * lgl/gc-libgcrypt.c, lib/gnutls_handshake.c, lib/gnutls_session_pack.c, lib/x509/output.c, lib/x509/verify.c: Fix warnings, tiny patch from Andreas Metzler . 2007-04-12 Simon Josefsson * doc/TODO: Fix. 2007-04-12 Simon Josefsson * doc/TODO: Fix. 2007-04-12 Simon Josefsson * doc/TODO: Add. 2007-04-11 Simon Josefsson * NEWS, includes/gnutls/gnutls.h.in, lib/gnutls_psk.c: (gnutls_psk_set_client_credentials): Fix prototype. 2007-04-10 Simon Josefsson * NEWS: Add. 2007-04-10 Simon Josefsson * doc/examples/Makefile.am, lib/Makefile.am, src/cli.c, src/serv.c: Respect ENABLE_AUTHZ. 2007-04-10 Simon Josefsson * lib/gnutls_extensions.c: Make tls-authz conditional on ENABLE_AUTHZ. 2007-04-10 Simon Josefsson * configure.in: Add anon conditional. 2007-04-10 Simon Josefsson * configure.in: Fix --disable-*. 2007-04-10 Simon Josefsson * configure.in: Add --disable-tls-authorization. 2007-04-10 Simon Josefsson * libextra/gnutls_openpgp.c: (gnutls_certificate_set_openpgp_key): Allocate certificate structure properly. Tiny patch from ludo@chbouib.org (Ludovic Courtès). 2007-04-06 Simon Josefsson * src/cli.c: Make -d work again after last change. 2007-04-06 Simon Josefsson * NEWS: Add. 2007-04-06 Simon Josefsson * lib/x509/x509.c: (gnutls_x509_crt_get_key_id): Don't fail on non-RSA/DSA public keys. 2007-04-04 Simon Josefsson * src/cli-gaa.c, src/cli.gaa, src/common.c, src/common.h, src/serv-gaa.c, src/serv.gaa: Use gnutls_cipher_suite_info. 2007-04-04 Simon Josefsson * NEWS, includes/gnutls/gnutls.h.in, lib/gnutls_algorithms.c: Add gnutls_cipher_suite_info API, suggested by Howard Chu . 2007-04-04 Simon Josefsson * src/common.c: Don't hard code algorithm list. 2007-04-04 Simon Josefsson * NEWS, includes/gnutls/gnutls.h.in, lib/gnutls_algorithms.c: Add new APIs to list supported algorithms: gnutls_cipher_list, gnutls_mac_list, gnutls_compression_list, gnutls_protocol_list, gnutls_certificate_type_list, and gnutls_kx_list. Suggested by Howard Chu . 2007-04-04 Simon Josefsson * lib/gnutls_algorithms.c, lib/gnutls_algorithms.h: Simplify kx definition, since gnutls-extra no longer touches it. 2007-04-04 Simon Josefsson * src/cli.c: Init the library immediately (for print_list(), called by gaa_parser, to be able to call gnutls functions). 2007-04-03 Simon Josefsson * src/Makefile.am: $(LIBOPENCDK_LIBS) should be necessary here, since libgnutls-extra links to it. 2007-04-03 Simon Josefsson * libextra/Makefile.am: Fix LIBOPENCDK_LIBS. No need for AM_CPPFLAGS += $(LIBOPENCDK_CFLAGS), the new macro add necessary -I's to CPPFLAGS automatically. 2007-04-03 Simon Josefsson * configure.in: Need stddef.h for opencdk.h. 2007-04-03 Simon Josefsson * gl/getpass.c, gl/getpass.h, gl/gnulib.mk, gl/m4/getpass.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, lgl/.cvsignore, lgl/Makefile.am, lgl/getdelim.c, lgl/getdelim.h, lgl/getline.c, lgl/getline.h, lgl/getpass.c, lgl/getpass.h, lgl/m4/getdelim.m4, lgl/m4/getline.m4, lgl/m4/getpass.m4, lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4: Update. 2007-04-03 Simon Josefsson * configure.in: Fix LIBGNUTLS_EXTRA_* for cdk changes. 2007-04-03 Simon Josefsson * NEWS: Add. 2007-04-03 Simon Josefsson * configure.in, m4/opencdk.m4: Use AC_LIB_HAVE_LINKFLAGS to find opencdk, remove opencdk.m4. 2007-04-03 Simon Josefsson * build-aux/gendocs.sh, gl/stdbool_.h, lgl/Makefile.am, lgl/alloca_.h, lgl/asprintf.c, lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4, lgl/m4/iconv.m4, lgl/m4/intdiv0.m4, lgl/stat_.h, lgl/stdbool_.h, lgl/vasprintf.c: Update. 2007-03-28 Simon Josefsson * lib/x509/output.c: No need to error about unknown algorithm, it already says unknown. 2007-03-28 Simon Josefsson * lib/gnutls_algorithms.c: Remove #if GNUTLS_PK_LOOP madness that hides problems. (gnutls_pk_algorithm_get_name): Don't return GOST for unsupported algorithms (e.g., ECC). 2007-03-28 Simon Josefsson * lib/gnutls_str.c: No need for vasprintf.h. 2007-03-28 Simon Josefsson * gl/getaddrinfo.c, gl/string_.h, gl/version-etc.c, lgl/.cvsignore, lgl/Makefile.am, lgl/asprintf.c, lgl/des.c, lgl/dummy.c, lgl/float+.h, lgl/m4/gnulib-comp.m4, lgl/m4/printf-posix.m4, lgl/m4/stdio_h.m4, lgl/m4/vasnprintf.m4, lgl/m4/vasprintf.m4, lgl/printf-parse.c, lgl/stdio_.h, lgl/string_.h, lgl/vasnprintf.c, lgl/vasprintf.c, lgl/vasprintf.h: Update. 2007-03-21 Simon Josefsson * doc/examples/ex-crq.c, doc/examples/ex-pkcs12.c, doc/examples/ex-rfc2818.c, src/crypt.c: Use size_t at appropriate places. Tiny patch by Deanna Phillips . 2007-03-21 Simon Josefsson * tests/anonself.c: Need netinet/in.h. Tiny patch from Deanna Phillips . 2007-03-21 Simon Josefsson * tests/pkcs1-padding/pkcs1-pad: Trim whitespace from 'wc' output. Tiny patch from Deanna Phillips . 2007-03-15 Simon Josefsson * doc/TODO: Add. 2007-03-15 Simon Josefsson * lib/x509/x509_write.c: (gnutls_x509_crt_set_version): Doc fix, tiny patch from Florian Weimer . 2007-03-12 Simon Josefsson * gl/gnulib.mk, gl/m4/gnulib-comp.m4, gl/m4/netinet_in_h.m4, gl/m4/sys_socket_h.m4, gl/netinet_in_.h, gl/socket_.h, lgl/Makefile.am, lgl/des.c, lgl/des.h, lgl/dummy.c, lgl/gc-gnulib.c, lgl/m4/gnulib-comp.m4, lgl/m4/snprintf.m4, lgl/m4/stdbool.m4, lgl/m4/stdio_h.m4, lgl/m4/sys_socket_h.m4, lgl/m4/vasnprintf.m4, lgl/snprintf.c, lgl/socket_.h, lgl/stdbool_.h, lgl/stdint_.h, lgl/stdio_.h, lgl/vasnprintf.c, lgl/vasnprintf.h, lgl/vasprintf.h: Update. 2007-03-07 Simon Josefsson * doc/protocol/draft-ietf-tls-rfc4346-bis-03.txt: Update, 2007-03-07 Simon Josefsson * lib/gnutls_buffers.c: Simplify error handling. 2007-03-07 Simon Josefsson * NEWS: Add. 2007-03-07 Simon Josefsson * lib/gnutls_priority.c: Doc fix. 2007-03-07 Simon Josefsson * configure.in: Bump due to added APIs. 2007-03-07 Simon Josefsson * lib/gnutls_priority.c: Prefer aes256. 2007-03-06 Simon Josefsson * doc/manpages/Makefile.am: Update. 2007-03-06 Simon Josefsson * GNUmakefile, maint-cfg.mk: Work around config.rpath issue. 2007-03-06 Simon Josefsson * lgl/stdio_.h: Update. 2007-03-05 Simon Josefsson * src/serv.c: Use libgnutls' priorities. 2007-03-05 Simon Josefsson * src/cli.c: Fix. 2007-03-05 Simon Josefsson * tests/dhepskself.c: Remove priority setting. Fix output. 2007-03-05 Simon Josefsson * doc/examples/ex-client-authz.c, doc/examples/ex-client-srp.c, doc/examples/ex-client2.c, doc/examples/ex-serv-pgp.c: Remove confusing priority setting stuff. 2007-03-05 Simon Josefsson * .cvsignore, build-aux/.cvsignore, doc/.cvsignore: [no log message] 2007-03-05 Simon Josefsson * lib/ext_authz.c: Don't assert when no authz. 2007-03-05 Simon Josefsson * src/cli.c: Use default ciphers. Simplify SRP callback. 2007-03-05 Simon Josefsson * lib/gnutls_priority.c: (gnutls_set_default_priority): Fix defaults. 2007-03-05 Simon Josefsson * src/cli.c: Let libgnutls remove SRP/PSK if not used. 2007-03-05 Simon Josefsson * lib/gnutls_priority.c: Indent and doc fix. 2007-03-05 Simon Josefsson * lib/Makefile.am, lib/gnutls_priority.h, lib/gnutls_record.c, lib/gnutls_state.c: Remove gnutls_priority.h, not needed. 2007-03-05 Simon Josefsson * configure.in: Reorder. 2007-03-05 Simon Josefsson * configure.in: Reorder. 2007-03-05 Simon Josefsson * configure.in: Reorder. 2007-03-05 Simon Josefsson * GNUmakefile, build-aux/GNUmakefile, build-aux/config.rpath, build-aux/gendocs.sh, build-aux/link-warning.h, build-aux/maint.mk, gendocs.sh, gl/gnulib.mk, gl/m4/gnulib-cache.m4, lgl/Makefile.am, lgl/m4/gnulib-cache.m4, link-warning.h, maint.mk: Fixes for build-aux. 2007-03-05 Simon Josefsson * configure.in: Use build-aux/. 2007-03-05 Simon Josefsson * doc/protocol/draft-ietf-tls-rfc4346-bis-03.txt, lgl/m4/gnulib-comp.m4, lgl/m4/time_r.m4, lgl/m4/vasnprintf.m4, lgl/m4/vasprintf.m4, lgl/time_.h, lgl/vasnprintf.c, lgl/vasnprintf.h, lgl/vasprintf.h: Updaet. 2007-02-26 Simon Josefsson * doc/protocol/draft-salowey-tls-rsa-aes-gcm-00.txt: Add. 2007-02-26 Simon Josefsson * po/sv.po: Sync with TP. 2007-02-26 Simon Josefsson * po/pl.po: Sync with TP. 2007-02-26 Simon Josefsson * doc/protocol/draft-nir-tee-pm-00.txt: Add. 2007-02-25 Simon Josefsson * doc/examples/.cvsignore: [no log message] 2007-02-25 Simon Josefsson * doc/gnutls.texi: Add authz server. 2007-02-25 Simon Josefsson * NEWS: Fix. 2007-02-25 Simon Josefsson * doc/examples/Makefile.am: Add authz. 2007-02-25 Simon Josefsson * doc/examples/ex-serv-authz.c: Add. 2007-02-25 Simon Josefsson * doc/examples/ex-client-authz.c, doc/gnutls.texi: Add. 2007-02-24 Simon Josefsson * lib/x509/x509.c: Add credits. 2007-02-22 Simon Josefsson * lib/x509/output.c: Minor tweaks to proxy output. 2007-02-22 Simon Josefsson * NEWS: Add. 2007-02-22 Simon Josefsson * THANKS: Typo. 2007-02-22 Simon Josefsson * THANKS: Add. 2007-02-22 Simon Josefsson * tests/.cvsignore: [no log message] 2007-02-22 Simon Josefsson * tests/dn.c: Other cert. 2007-02-22 Simon Josefsson * tests/Makefile.am: Add dn. 2007-02-22 Simon Josefsson * tests/dn.c: Add. 2007-02-22 Simon Josefsson * lib/x509/x509.c: Rename. 2007-02-22 Simon Josefsson * includes/gnutls/x509.h: Rename non-released functions. 2007-02-22 Simon Josefsson * lib/x509/x509.h: Remove. 2007-02-22 Simon Josefsson * lib/x509/x509.c: Code cleanup and documentation of last patch. 2007-02-22 Simon Josefsson * includes/gnutls/x509.h, lib/x509/x509.h: Fix. 2007-02-22 Simon Josefsson * includes/gnutls/x509.h, lib/x509/x509.c, lib/x509/x509.h: New APIs to deal with DN's. Patch from Howard Chu . 2007-02-22 Simon Josefsson * NEWS, configure.in: Bump versions. 2007-02-22 Simon Josefsson * ChangeLog: [no log message] 2007-02-22 Simon Josefsson * NEWS: Version 1.7.7. 2007-02-22 Simon Josefsson * lgl/.cvsignore: [no log message] 2007-02-22 Simon Josefsson * gl/getaddrinfo.c, gl/gnulib.mk, gl/m4/gnulib-comp.m4, gl/m4/string_h.m4, gl/string_.h, lgl/Makefile.am, lgl/m4/gnulib-comp.m4, lgl/m4/intdiv0.m4, lgl/m4/snprintf.m4, lgl/m4/stdio_h.m4, lgl/m4/string_h.m4, lgl/m4/unistd_h.m4, lgl/snprintf.c, lgl/snprintf.h, lgl/stdio_.h, lgl/string_.h, lgl/unistd_.h, link-warning.h: Update. 2007-02-22 Simon Josefsson * doc/manpages/Makefile.am: Update. 2007-02-22 Simon Josefsson * lib/ext_authz.c, lib/gnutls_supplemental.c: Typo. 2007-02-22 Simon Josefsson * lib/gnutls_extensions.c, lib/gnutls_extensions.h: Revert. 2007-02-22 Simon Josefsson * lib/gnutls_int.h: New flags for authz extension. 2007-02-22 Simon Josefsson * lib/ext_authz.c: Use our own logic to determine whether to send extension replies in server. 2007-02-22 Simon Josefsson * lib/gnutls_extensions.h: Add prototype for _gnutls_extension_list_check, we use it in ext_authz.c. 2007-02-22 Simon Josefsson * lib/gnutls_extensions.c: Remove static from _gnutls_extension_list_check, we use it in ext_authz.c 2007-02-22 Simon Josefsson * lib/ext_authz.c: Don't send authz extension when we shouldn't. 2007-02-22 Simon Josefsson * src/cli-gaa.c, src/cli-gaa.h: Generated. 2007-02-22 Simon Josefsson * src/cli.c, src/serv.c: Fix #include's. 2007-02-22 Simon Josefsson * NEWS: Add. 2007-02-22 Simon Josefsson * src/cli.c, src/cli.gaa: Support gnutls-cli --authz-x509-attr-cert and --authz-saml-assertion. 2007-02-22 Simon Josefsson * src/common.c, src/serv-gaa.c, src/serv-gaa.h, src/serv.c, src/serv.gaa: Support gnutls-serv --authz-x509-attr-cert and --authz-saml-assertion. 2007-02-22 Simon Josefsson * NEWS: Fix. 2007-02-22 Simon Josefsson * configure.in: Fix so version due to added APIs. 2007-02-22 Simon Josefsson * doc/reference/Makefile.am: Ignore more. 2007-02-22 Simon Josefsson * NEWS: Revert. 2007-02-22 Simon Josefsson * lib/gnutls.pc.in: Revert Requires-change. 2007-02-21 Simon Josefsson * NEWS: Typo. 2007-02-21 Simon Josefsson * lib/gnutls_extensions.c: Add authz extension. 2007-02-21 Simon Josefsson * lib/ext_authz.c: Typo. 2007-02-21 Simon Josefsson * lib/gnutls_supplemental.c: Add authz hooks. 2007-02-21 Simon Josefsson * includes/gnutls/gnutls.h.in: Fix type (in never released prototypes). 2007-02-21 Simon Josefsson * lib/gnutls_int.h: Add authz stuff. 2007-02-21 Simon Josefsson * lib/Makefile.am: Build ext_authz.h and ext_authz.c. 2007-02-21 Simon Josefsson * lib/ext_authz.c, lib/ext_authz.h: New file. 2007-02-21 Simon Josefsson * lib/gnutls_handshake.c, lib/gnutls_supplemental.h: Sync with gnutls_supplemental.c. 2007-02-21 Simon Josefsson * lib/gnutls_supplemental.c: Fill in type+length. 2007-02-21 Simon Josefsson * NEWS: Add. 2007-02-21 Simon Josefsson * includes/gnutls/gnutls.h.in: Add gnutls_authz_recv_callback_func and gnutls_authz_send_callback_func. Add gnutls_authz_enable, gnutls_authz_send_x509_attr_cert, gnutls_authz_send_saml_assertion, gnutls_authz_send_x509_attr_cert_url, and gnutls_authz_send_saml_assertion_url. Remove GNUTLS_AUTHZ_LAST from gnutls_authz_data_format_type_t (never part of any release). 2007-02-21 Simon Josefsson * lib/gnutls_supplemental.c: If callbacks failed to provide anything, at least send protocol valid (yet semantically invalid) supplemental message. 2007-02-21 Simon Josefsson * lib/gnutls_int.h: Add for supplemental support. 2007-02-21 Simon Josefsson * lib/gnutls_handshake.c: Support supplemental handshake messages. 2007-02-21 Simon Josefsson * lib/Makefile.am: Add gnutls_supplemental.h and gnutls_supplemental.c. 2007-02-21 Simon Josefsson * lib/gnutls_supplemental.c, lib/gnutls_supplemental.h: New file. 2007-02-21 Simon Josefsson * doc/TODO: Add. 2007-02-19 Simon Josefsson * includes/gnutls/gnutls.h.in: Add gnutls_supplemental_get_name. Fix gnutls_authz_data_format_type_t. 2007-02-19 Simon Josefsson * NEWS: Add. 2007-02-17 Simon Josefsson * lib/debug.c: Support SUPPLEMENTAL handshake type. 2007-02-16 Simon Josefsson * AUTHORS: update 2007-02-16 Simon Josefsson * NEWS: Add. 2007-02-16 Simon Josefsson * tests/hostname-check/hostname-check.c: Tests ipAddress SAN's too. 2007-02-16 Simon Josefsson * tests/hostname-check/hostname-check.c: Test wildcard stuff too. 2007-02-16 Simon Josefsson * lib/x509/rfc2818_hostname.c: Indent. 2007-02-16 Simon Josefsson * lib/x509/rfc2818_hostname.c: Support iPAddress too. Doc fix. 2007-02-16 Simon Josefsson * NEWS: Add. 2007-02-16 Simon Josefsson * tests/hostname-check/hostname-check.c: Fix mem leak. 2007-02-16 Simon Josefsson * lib/x509/rfc2818_hostname.c: Doc fix. 2007-02-16 Simon Josefsson * lib/x509/rfc2818_hostname.c: Don't treat absence of CN in subject as a successful RFC 2818 hostname comparison match. Reported by "Richard W.M. Jones" . 2007-02-16 Simon Josefsson * tests/hostname-check/.cvsignore: [no log message] 2007-02-16 Simon Josefsson * configure.in, tests/Makefile.am, tests/hostname-check/Makefile.am, tests/hostname-check/README, tests/hostname-check/hostname-check.c: Add self test of rfc2818 server identity check. 2007-02-15 Simon Josefsson * NEWS: Add. 2007-02-15 Simon Josefsson * lib/gnutls.pc.in: Add 'Requires: libtasn1' to make 'pkg-config --libs gnutls' output -ltasn1. Reported by Pavlov Konstantin . 2007-02-14 Simon Josefsson * lib/gnutls_hash_int.c: Avoid assert. 2007-02-14 Simon Josefsson * src/certtool.c: Make sure NULL is a pointer. 2007-02-14 Simon Josefsson * src/certtool.c: Change vararg 0 to NULL. Tiny change suggested by Joe Orton . 2007-02-14 Simon Josefsson * includes/gnutls/gnutls.h.in: Fix gnutls_authz_data_format_type_t. 2007-02-14 Simon Josefsson * NEWS: Add. 2007-02-14 Simon Josefsson * includes/gnutls/gnutls.h.in: Add gnutls_supplemental_data_format_type_t with member GNUTLS_SUPPLEMENTAL_AUTHZ_DATA. 2007-02-14 Simon Josefsson * NEWS: Add. 2007-02-14 Simon Josefsson * includes/gnutls/gnutls.h.in: Add gnutls_authz_data_format_type_t, with members GNUTLS_AUTHZ_X509_ATTR_CERT, GNUTLS_AUTHZ_SAML_ASSERTION, GNUTLS_AUTHZ_X509_ATTR_CERT_URL, GNUTLS_AUTHZ_SAML_ASSERTION_URL. 2007-02-14 Simon Josefsson * lib/gnutls_int.h: Reorder. 2007-02-14 Simon Josefsson * lib/gnutls_int.h: Add GNUTLS_EXTENSION_AUTHZ_CLIENT and GNUTLS_EXTENSION_AUTHZ_SERVER. 2007-02-14 Simon Josefsson * NEWS: Add. 2007-02-14 Simon Josefsson * includes/gnutls/gnutls.h.in: Add GNUTLS_HANDSHAKE_SUPPLEMENTAL. 2007-02-14 Simon Josefsson * includes/gnutls/gnutls.h.in: Spell out handshake types. 2007-02-13 Simon Josefsson * src/certtool-gaa.c, src/certtool-gaa.h: Update. 2007-02-13 Simon Josefsson * src/certtool.c: Use error(). 2007-02-13 Simon Josefsson * src/certtool.c: Cleanup p12 printing. 2007-02-13 Simon Josefsson * src/certtool.c: Cleanup pkcs7_info. 2007-02-13 Simon Josefsson * src/certtool.c: Fix. 2007-02-13 Simon Josefsson * src/certtool.c: Better errors. 2007-02-13 Simon Josefsson * src/certtool.gaa: Remove --copyright (use --version). 2007-02-13 Simon Josefsson * src/certtool.c: Use version-etc. 2007-02-13 Simon Josefsson * configure.in: Fix for version-etc. 2007-02-13 Simon Josefsson * gl/gnulib.mk, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/stdarg.m4, gl/version-etc-fsf.c, gl/version-etc.c, gl/version-etc.h: Update. 2007-02-13 Simon Josefsson * src/certtool.c: Cleanup CRL. 2007-02-13 Simon Josefsson * src/certtool.c: Cleanup. 2007-02-13 Simon Josefsson * src/certtool.c: Simplify. 2007-02-13 Simon Josefsson * src/certtool.c: Cleanups. 2007-02-13 Simon Josefsson * src/certtool.c: Rewrite generate_private_key_int. 2007-02-13 Simon Josefsson * src/certtool.c: Fix mem leak. 2007-02-13 Simon Josefsson * src/certtool.c: Fix crl_info. 2007-02-13 Simon Josefsson * src/certtool.c: Rewrite load_private_key. 2007-02-13 Simon Josefsson * src/certtool.c: Rewrite load_request. 2007-02-13 Simon Josefsson * src/certtool.c: Rewrite load_ca_private_key. 2007-02-13 Simon Josefsson * src/certtool.c: Remove. 2007-02-13 Simon Josefsson * src/certtool.c: Rewrite load_ca_cert. 2007-02-13 Simon Josefsson * src/certtool.c: No limit on CRL size during verification. 2007-02-13 Simon Josefsson * lib/x509/x509.c: Simplify. 2007-02-13 Simon Josefsson * tests/certificate_set_x509_crl.c: Need config.h. 2007-02-13 Simon Josefsson * src/Makefile.am: Use AM_CPPFLAGS, not obsolete INCLUDES. 2007-02-13 Simon Josefsson * src/Makefile.am: Need libgnu.la. 2007-02-13 Simon Josefsson * src/errcodes.c: Need config.h. 2007-02-13 Simon Josefsson * lib/gnutls_asn1_tab.c, lib/pkix_asn1_tab.c: Update. 2007-02-13 Simon Josefsson * configure.in: Remove stuff obsoleted by time_r. 2007-02-13 Simon Josefsson * configure.in: Don't check for time.h, not needed. 2007-02-13 Simon Josefsson * lib/defines.h: Only use time.h, from gnulib if needed. 2007-02-13 Simon Josefsson * lgl/.cvsignore: [no log message] 2007-02-13 Simon Josefsson * tests/pathlen/ca-no-pathlen.pem, tests/pathlen/no-ca-or-pathlen.pem: UPdate. 2007-02-13 Simon Josefsson * NEWS: Add. 2007-02-13 Simon Josefsson * lib/x509/output.c: Remove. 2007-02-13 Simon Josefsson * gl/string_.h, lgl/Makefile.am, lgl/m4/gnulib-comp.m4, lgl/m4/time_h.m4, lgl/m4/time_r.m4, lgl/string_.h, lgl/time_.h, lgl/time_r.c, lgl/time_r.h: Update. 2007-02-13 Simon Josefsson * tests/nist-pkits/.cvsignore, tests/x509paths/.cvsignore: [no log message] 2007-02-13 Simon Josefsson * tests/nist-pkits/README: Fix. 2007-02-13 Simon Josefsson * tests/nist-pkits/gnutls-nist-tests.html: Add. 2007-02-13 Simon Josefsson * tests/nist-pkits/README: Fix. 2007-02-13 Simon Josefsson * tests/nist-pkits/pkits_test: Unpack. 2007-02-13 Simon Josefsson * tests/nist-pkits/.cvsignore: [no log message] 2007-02-13 Simon Josefsson * tests/nist-pkits/pkits_test: Add. 2007-02-13 Simon Josefsson * tests/nist-pkits/pkits_test_list_generator.patch: Update. 2007-02-13 Simon Josefsson * tests/nist-pkits/gnutls_test_entry: Remove. 2007-02-13 Simon Josefsson * tests/nist-pkits/build-chain, tests/nist-pkits/gnutls_test_entry, tests/nist-pkits/pkits_test_list_generator.patch: Add. 2007-02-13 Simon Josefsson * tests/nist-pkits/README: Add. 2007-02-13 Simon Josefsson * tests/nist-pkits/README: Add. 2007-02-13 Simon Josefsson * lib/x509/mpi.c: We don't support inherited DSA parameters. 2007-02-13 Simon Josefsson * tests/nist-pkits/pkits_crl, tests/nist-pkits/pkits_crt, tests/nist-pkits/pkits_pkcs12, tests/nist-pkits/pkits_smime: Update. 2007-02-13 Simon Josefsson * tests/nist-pkits/pkits: Fix. 2007-02-13 Simon Josefsson * tests/nist-pkits/pkits: Fix. 2007-02-13 Simon Josefsson * tests/nist-pkits/pkits: Fix. 2007-02-13 Simon Josefsson * tests/.cvsignore, tests/nist-pkits/.cvsignore: [no log message] 2007-02-13 Simon Josefsson * tests/nist-pkits/README, tests/nist-pkits/pkits, tests/nist-pkits/pkits_crl, tests/nist-pkits/pkits_crt, tests/nist-pkits/pkits_pkcs12, tests/nist-pkits/pkits_smime, tests/pkits, tests/pkits_crl, tests/pkits_crt, tests/pkits_pkcs12, tests/pkits_smime: Move PKITS stuff to nist-pkits/. 2007-02-13 Simon Josefsson * doc/TODO: Add. 2007-02-13 Simon Josefsson * tests/x509paths/README: Fix. 2007-02-13 Simon Josefsson * tests/x509paths/chain: fix for chain 1. 2007-02-13 Simon Josefsson * tests/.cvsignore: [no log message] 2007-02-13 Simon Josefsson * tests/chain, tests/x509paths/README, tests/x509paths/chain: Move old NIST stuff to separate directory. 2007-02-13 Simon Josefsson * lib/x509/dn.c: Don't write to buf if *sizeof_buf==0. 2007-02-13 Simon Josefsson * lib/x509/output.c: Don't use uninitialized. 2007-02-13 Simon Josefsson * lib/x509/x509.c: Don't access ret unless *ret_size>0. 2007-02-13 Simon Josefsson * configure.in: Fix PKI test. 2007-02-13 Simon Josefsson * doc/manpages/Makefile.am: Update. 2007-02-13 Simon Josefsson * src/certtool.c: Simplify copyright. 2007-02-13 Simon Josefsson * NEWS: Add. 2007-02-13 Simon Josefsson * src/certtool-cfg.c: Remove. 2007-02-13 Simon Josefsson * src/certtool.c: Remove unused. 2007-02-13 Simon Josefsson * src/Makefile.am: Make certtool conditional on ENABLE_PKI. 2007-02-13 Simon Josefsson * configure.in: Add conditional for PKI stuff. 2007-02-13 Simon Josefsson * src/certtool.c: Handle larger certificate lists. 2007-02-13 Simon Josefsson * src/certtool.c: Fix. 2007-02-13 Simon Josefsson * src/certtool.c: Fix. 2007-02-13 Simon Josefsson * lib/x509/output.c: crl: Support GNUTLS_X509_CRT_UNSIGNED_FULL. 2007-02-13 Simon Josefsson * src/certtool.c: Use gnutls_x509_crl_print. 2007-02-13 Simon Josefsson * NEWS, includes/gnutls/x509.h, lib/x509/crl.c, lib/x509/output.c, lib/x509/x509.c: Add gnutls_x509_crl_get_signature and gnutls_x509_crl_print. 2007-02-13 Simon Josefsson * src/certtool.c: Use error(). 2007-02-13 Simon Josefsson * libextra/Makefile.am: We do need lgl/ though. 2007-02-13 Simon Josefsson * libextra/Makefile.am, libextra/opencdk/Makefile.am: No need for gl/. 2007-02-13 Simon Josefsson * libextra/openpgp/Makefile.am: Don't include gl/. 2007-02-13 Simon Josefsson * gl/error.c, gl/error.h, gl/gnulib.mk, gl/m4/error.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/progname.c, gl/progname.h: Add. 2007-02-13 Simon Josefsson * configure.in: Revert. 2007-02-13 Simon Josefsson * Makefile.am, configure.in: Revert. 2007-02-13 Simon Josefsson * gl/dummy.c, src/lib/Makefile.am, src/lib/error.c, src/lib/error.h, src/lib/m4/error.m4, src/lib/m4/gnulib-cache.m4, src/lib/m4/gnulib-common.m4, src/lib/m4/gnulib-comp.m4, src/lib/m4/gnulib-tool.m4, src/lib/progname.c, src/lib/progname.h: Remove. 2007-02-13 Simon Josefsson * libextra/Makefile.am: No need for gl/. 2007-02-13 Simon Josefsson * Makefile.am: Fix src/lib/. 2007-02-13 Simon Josefsson * configure.in: Build src/lib/. 2007-02-13 Simon Josefsson * configure.in: Init src/lib/. 2007-02-13 Simon Josefsson * gl/gnulib.mk, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, src/lib/Makefile.am, src/lib/m4/gnulib-cache.m4, src/lib/m4/gnulib-comp.m4: Update. 2007-02-13 Simon Josefsson * gl/error.c, gl/error.h, gl/m4/error.m4: Remove. 2007-02-13 Simon Josefsson * gl/error.c, gl/error.h, gl/gnulib.mk, gl/m4/error.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, src/lib/Makefile.am, src/lib/error.c, src/lib/error.h, src/lib/m4/error.m4, src/lib/m4/gnulib-cache.m4, src/lib/m4/gnulib-common.m4, src/lib/m4/gnulib-comp.m4, src/lib/m4/gnulib-tool.m4, src/lib/progname.c, src/lib/progname.h: Add. 2007-02-13 Simon Josefsson * src/certtool.c: No size limit on CRL data. 2007-02-12 Simon Josefsson * lib/x509/common.c: (_gnutls_x509_san_find_type): Support GNUTLS_SAN_DN. 2007-02-12 Simon Josefsson * lib/x509/output.c: Support GNUTLS_SAN_DN. 2007-02-12 Simon Josefsson * NEWS: Add. 2007-02-12 Simon Josefsson * lib/x509/x509.c: (parse_general_name): Support GNUTLS_SAN_DN. 2007-02-12 Simon Josefsson * NEWS: Fix. 2007-02-12 Simon Josefsson * configure.in: Bump versions. 2007-02-12 Simon Josefsson * NEWS, includes/gnutls/gnutls.h.in: Add. 2007-02-12 Simon Josefsson * ChangeLog: [no log message] 2007-02-12 Simon Josefsson * NEWS: Version 1.7.6. 2007-02-12 Simon Josefsson * configure.in: New APIs, bump libtool library versions. 2007-02-12 Simon Josefsson * gl/gnulib.mk, gl/m4/string_h.m4, gl/string_.h, lgl/Makefile.am, lgl/m4/string_h.m4, lgl/string_.h: Update. 2007-02-12 Simon Josefsson * Makefile.am: Use latest docs on web site. 2007-02-12 Simon Josefsson * po/POTFILES.in: Add. 2007-02-12 Simon Josefsson * lib/x509/output.c: Mark for translation. 2007-02-12 Simon Josefsson * lib/pkix_asn1_tab.c: Generated. 2007-02-12 Simon Josefsson * lib/x509/output.c: Print more than one SAN. 2007-02-12 Simon Josefsson * lib/x509/output.c: Better printing of XMPP SAN. 2007-02-12 Simon Josefsson * lib/pkix.asn: Add XMPP definitions. 2007-02-12 Simon Josefsson * lib/x509/x509.c: Doc fix. 2007-02-12 Simon Josefsson * lib/x509/x509.c: Decode XMPP data. Suggested by Matthias Wimmer . 2007-02-12 Simon Josefsson * src/serv.c: Print X.509 client cert info. 2007-02-09 Simon Josefsson * src/serv.c: Text fix. 2007-02-09 Simon Josefsson * doc/manpages/Makefile.am: Update. 2007-02-09 Simon Josefsson * tests/pathlen/ca-no-pathlen.pem, tests/pathlen/no-ca-or-pathlen.pem: Update. 2007-02-09 Simon Josefsson * lib/x509/output.c: strftime %Z on mingw32 seems to not understand that gmtime was used and that the time given is in UTC. Just hard code it to UTC. 2007-02-09 Simon Josefsson * lib/gnutls_str.c: Typo. 2007-02-09 Simon Josefsson * lgl/Makefile.am, lgl/asprintf.c, lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4, lgl/m4/vasprintf.m4, lgl/vasprintf.c, lgl/vasprintf.h: Add. 2007-02-09 Simon Josefsson * lib/x509/output.c: Use gnulib's time_r for systems that lack gmtime_r. 2007-02-09 Simon Josefsson * lgl/Makefile.am, lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4, lgl/m4/time_r.m4, lgl/time_r.c, lgl/time_r.h: Add. 2007-02-09 Simon Josefsson * tests/pathlen/no-ca-or-pathlen.pem: Fix. 2007-02-09 Simon Josefsson * lib/x509/output.c: Strings not zero terminated. 2007-02-09 Simon Josefsson * lib/x509/output.c: Hexprint unknown extensions. 2007-02-09 Simon Josefsson * tests/key-id/key-id, tests/pathlen/ca-no-pathlen.pem, tests/pathlen/no-ca-or-pathlen.pem: Update. 2007-02-09 Simon Josefsson * src/certtool.c: Remove. 2007-02-09 Simon Josefsson * src/certtool.c: Fix. 2007-02-09 Simon Josefsson * NEWS: Add. 2007-02-09 Simon Josefsson * lib/x509/output.c: Support GNUTLS_X509_CRT_UNSIGNED_FULL. 2007-02-09 Simon Josefsson * src/certtool.c: Use gnutls_x509_crt_print. 2007-02-09 Simon Josefsson * NEWS, includes/gnutls/x509.h: Add. 2007-02-09 Simon Josefsson * lib/x509/output.c: Fix error messages. 2007-02-09 Simon Josefsson * lib/x509/output.c: Really fix. 2007-02-09 Simon Josefsson * lib/x509/output.c: Fix. 2007-02-09 Simon Josefsson * includes/gnutls/x509.h: Change signature (ok since no release). 2007-02-09 Simon Josefsson * lib/x509/output.c: Use datum for outputs. 2007-02-09 Simon Josefsson * doc/protocol/draft-housley-tls-authz-extns-07.txt: Add. 2007-02-09 Simon Josefsson * lib/x509/output.c: Simplify. 2007-02-09 Simon Josefsson * lib/x509/extensions.c: Don't crash on NULL's. 2007-02-08 Simon Josefsson * NEWS: Add, from older branches. 2007-02-08 Simon Josefsson * lib/x509/output.c: Doc fix. 2007-02-08 Simon Josefsson * lib/x509/Makefile.am: Build output.c. 2007-02-08 Simon Josefsson * NEWS, lib/x509/output.c: Add. 2007-02-08 Simon Josefsson * NEWS, includes/gnutls/x509.h, lib/x509/x509.c: Add gnutls_x509_crt_get_signature. 2007-02-08 Simon Josefsson * NEWS: Add. 2007-02-08 Simon Josefsson * doc/gnutls.texi: gnutls-serv: create client & proxy too. 2007-02-08 Simon Josefsson * src/certtool-cfg.c: Default proxy policy is ALL. Fixes crash. 2007-02-08 Simon Josefsson * lib/x509/extensions.c: Fix warnings. 2007-02-08 Simon Josefsson * lib/gnutls_str.c, lib/gnutls_str.h: Add _gnutls_string_append_printf. 2007-02-08 Simon Josefsson * NEWS, includes/gnutls/x509.h, lib/x509/x509.c: Add gnutls_x509_crt_get_extension_data and gnutls_x509_crt_get_extension_info. 2007-02-08 Simon Josefsson * src/certtool.c: Fix. 2007-02-08 Simon Josefsson * src/certtool.c: XMPP otherName SAN support. 2007-02-08 Simon Josefsson * NEWS: Typo. 2007-02-08 Simon Josefsson * NEWS, THANKS: Add. 2007-02-08 Simon Josefsson * NEWS: Add. 2007-02-08 Simon Josefsson * NEWS, lib/x509/x509.c: Fix. 2007-02-08 Simon Josefsson * includes/gnutls/gnutls.h.in: Doc fix. 2007-02-08 Simon Josefsson * lib/x509/x509.c: Support XMPP OID. 2007-02-08 Simon Josefsson * lib/x509/x509.c: Doc fix. 2007-02-08 Simon Josefsson * NEWS, includes/gnutls/gnutls.h.in, includes/gnutls/x509.h, lib/x509/common.c, lib/x509/x509.c, src/certtool.c: Support otherName SAN's. 2007-02-07 Simon Josefsson * doc/gnutls.texi: Fix. 2007-02-07 Simon Josefsson * doc/gnutls.texi: add tcp and tlsia 2007-02-07 Simon Josefsson * AUTHORS: Fix. 2007-02-07 Simon Josefsson * src/serv.c: Don't say TLS 1.0. 2007-02-07 Simon Josefsson * NEWS: Fix. 2007-02-07 Simon Josefsson * lib/gnutls_sig.c: Fix DSA sign, broken by last commit. 2007-02-07 Simon Josefsson * NEWS: Add. 2007-02-07 Simon Josefsson * lib/gnutls_sig.c: Fix TLS 1.2 signing (for servers). 2007-02-07 Simon Josefsson * NEWS: Add. 2007-02-07 Simon Josefsson * doc/gnutls.texi: dsa key 2007-02-06 Simon Josefsson * doc/gnutls.texi: Fix. 2007-02-06 Simon Josefsson * lib/gnutls_sig.c: Fix crash on failures. 2007-02-06 Simon Josefsson * NEWS, configure.in: Bump versions. 2007-02-06 Simon Josefsson * doc/protocol/draft-ietf-tls-srp-00.txt, doc/protocol/draft-ietf-tls-srp-01.txt, doc/protocol/draft-ietf-tls-srp-02.txt, doc/protocol/draft-ietf-tls-srp-03.txt, doc/protocol/draft-ietf-tls-srp-04.txt, doc/protocol/draft-ietf-tls-srp-05.txt, doc/protocol/draft-ietf-tls-srp-06.txt, doc/protocol/draft-ietf-tls-srp-07.txt: Add. 2007-02-06 Simon Josefsson * ChangeLog: [no log message] 2007-02-06 Simon Josefsson * NEWS: Version 1.7.5. 2007-02-06 Simon Josefsson * NEWS: Fix. 2007-02-06 Simon Josefsson * NEWS: Add. 2007-02-06 Simon Josefsson * gl/gnulib.mk, gl/m4/string_h.m4, gl/string_.h, lgl/Makefile.am, lgl/m4/string_h.m4, lgl/string_.h: Update. 2007-02-06 Simon Josefsson * NEWS: Reorder. 2007-02-06 Simon Josefsson * doc/gnutls.texi: Fix. 2007-02-06 Simon Josefsson * NEWS: Add. 2007-02-06 Simon Josefsson * src/cli.c: Don't ask for PSK if we don't have credentials for it. 2007-02-06 Simon Josefsson * doc/gnutls.texi: mention psk 2007-02-06 Simon Josefsson * NEWS: Add. 2007-02-06 Simon Josefsson * lib/gnutls_handshake.c: (_gnutls_remove_unwanted_ciphersuites): Remove GNUTLS_KX_SRP_RSA or GNUTLS_KX_SRP_DSS if there is no SRP credential. 2007-02-06 Simon Josefsson * doc/gnutls.texi: fix 2007-02-06 Simon Josefsson * doc/gnutls.texi: fix 2007-02-06 Simon Josefsson * src/cli.c: Don't try to negotiate SRP kx if we don't have SRP username/password. 2007-02-06 Simon Josefsson * doc/gnutls.texi: Add. 2007-02-06 Simon Josefsson * src/cli.c: Prefer PSK. 2007-02-06 Simon Josefsson * src/cli.c, src/serv.c: Modernize priorities. 2007-02-06 Simon Josefsson * doc/gnutls.texi: more 2007-02-06 Simon Josefsson * src/common.c: Parse new MACs. 2007-02-06 Simon Josefsson * src/serv.c: Prefer OpenPGP certs from client. 2007-02-06 Simon Josefsson * doc/gnutls.texi: Fix. 2007-02-06 Simon Josefsson * NEWS: Fix. 2007-02-06 Simon Josefsson * src/cli-gaa.c: Generated. 2007-02-06 Simon Josefsson * configure.in: Bump versions. 2007-02-06 Simon Josefsson * NEWS: Add. 2007-02-06 Simon Josefsson * src/common.c: Typo in last commit. 2007-02-06 Simon Josefsson * src/cli.gaa: Typo. 2007-02-06 Simon Josefsson * src/common.c: Fix --list. 2007-02-06 Simon Josefsson * doc/gnutls.texi: Add. 2007-02-06 Simon Josefsson * lib/gnutls_hash_int.c: Revert, not needed. 2007-02-06 Simon Josefsson * lib/gnutls_hash_int.c: (_gnutls_hash_get_algo_len): Handle NULL MACs again, broken by last commit. 2007-02-06 Simon Josefsson * src/serv.c: Fix last commit. 2007-02-06 Simon Josefsson * src/serv.c: Support TLS 1.2 and AES 256. 2007-02-05 Simon Josefsson * ChangeLog: [no log message] 2007-02-05 Simon Josefsson * NEWS: Version 1.7.4. 2007-02-05 Simon Josefsson * NEWS: Add. 2007-02-05 Simon Josefsson * src/serv.c: use static DH params if none or provided 2007-02-05 Simon Josefsson * tests/anonself.c, tests/dhepskself.c, tests/resume.c, tests/tlsia.c, tests/utils.c, tests/utils.h: Use static DH. 2007-02-05 Simon Josefsson * tests/pskself.c: No dh here. 2007-02-05 Simon Josefsson * NEWS: Reorder. 2007-02-05 Simon Josefsson * tests/sha2/.cvsignore: [no log message] 2007-02-05 Simon Josefsson * NEWS: Fix. 2007-02-05 Simon Josefsson * configure.in, tests/Makefile.am: Add SHA-2 self test. 2007-02-05 Simon Josefsson * NEWS, tests/sha2/Makefile.am, tests/sha2/key-ca.pem, tests/sha2/key-subca.pem, tests/sha2/key-subsubca.pem, tests/sha2/key-user.pem, tests/sha2/sha2: Add. 2007-02-05 Simon Josefsson * NEWS: Add. 2007-02-05 Simon Josefsson * src/certtool-cfg.c: Set pathlength to -1 (not present) by default, for templates. 2007-02-05 Simon Josefsson * src/certtool-gaa.c: Generated. 2007-02-05 Simon Josefsson * src/certtool.c, src/certtool.gaa: Support --hash SHA-256/384/512. 2007-02-05 Simon Josefsson * lib/gnutls_algorithms.c, lib/gnutls_hash_int.c, lib/gnutls_int.h, lib/x509/common.h, lib/x509/dn.c, lib/x509/x509.h: Support (RSA-)SHA-256/384/512. 2007-02-05 Simon Josefsson * lgl/gc-libgcrypt.c, lgl/gc.h: Update. 2007-02-05 Simon Josefsson * lib/gnutls_algorithms.c: (GNUTLS_SIGN_ALG_LOOP): Don't match unknown algorithms to GOST. Affects gnutls_sign_algorithm_get_name, and _gnutls_x509_sign_to_oid. 2007-02-05 Simon Josefsson * NEWS, includes/gnutls/gnutls.h.in: Enum types for SHA-256/384/512. 2007-02-05 Simon Josefsson * gl/gnulib.mk, gl/m4/gnulib-comp.m4, gl/m4/string_h.m4, gl/stdbool_.h, gl/string_.h, lgl/Makefile.am, lgl/m4/gnulib-comp.m4, lgl/m4/string_h.m4, lgl/memmem.c, lgl/string_.h: Update. 2007-02-04 Simon Josefsson * NEWS: Add. 2007-02-04 Simon Josefsson * gl/gai_strerror.c, gl/gnulib.mk, gl/m4/gnulib-comp.m4, gl/m4/socklen.m4, gl/m4/string_h.m4, gl/string_.h, lgl/Makefile.am, lgl/m4/gnulib-comp.m4, lgl/m4/socklen.m4, lgl/m4/string_h.m4, lgl/string_.h: Update. 2007-02-02 Simon Josefsson * doc/gnutls.texi: Typo. 2007-02-02 Simon Josefsson * NEWS: Add. 2007-02-02 Simon Josefsson * NEWS, configure.in: Bump versions. 2007-02-02 Simon Josefsson * doc/signatures.texi: Removed the wrong file, re-add this one. Oops. 2007-02-02 Simon Josefsson * doc/Makefile.am: Remove bibliography.texi. 2007-02-02 Simon Josefsson * doc/bibliography.texi, doc/signatures.texi: Remove. 2007-02-02 Simon Josefsson * doc/gnutls.texi: Don't use my-bib-macros. 2007-02-02 Simon Josefsson * doc/my-bib-macros.texi: use pxref. 2007-02-02 Simon Josefsson * doc/my-bib-macros.texi: Fix. 2007-02-02 Simon Josefsson * doc/gnutls.texi: proxy and certtool stuff 2007-02-02 Simon Josefsson * lib/x509/xml.c: Doc fix. 2007-02-02 Simon Josefsson * doc/bibliography.texi: reorder 2007-02-02 Simon Josefsson * doc/bibliography.texi: Add rfc3820. 2007-02-02 Simon Josefsson * doc/gnutls.texi: Mention RFC 3820. 2007-02-02 Simon Josefsson * doc/gnutls.texi: Improve extensions stuff. 2007-02-01 Simon Josefsson * ChangeLog: [no log message] 2007-02-01 Simon Josefsson * NEWS: Version 1.7.3. 2007-02-01 Simon Josefsson * NEWS: Typo. 2007-02-01 Simon Josefsson * tests/pathlen/ca-no-pathlen.pem, tests/pathlen/no-ca-or-pathlen.pem: Update. 2007-02-01 Simon Josefsson * NEWS: Add. 2007-02-01 Simon Josefsson * src/certtool.c: Print times in UTC. 2007-02-01 Simon Josefsson * NEWS: Fix. 2007-02-01 Simon Josefsson * tests/key-id/.cvsignore: [no log message] 2007-02-01 Simon Josefsson * NEWS: Reorder. 2007-02-01 Simon Josefsson * configure.in: Typo. 2007-02-01 Simon Josefsson * configure.in, tests/Makefile.am, tests/key-id/Makefile.am, tests/key-id/README, tests/key-id/ca-gnutls-keyid.pem, tests/key-id/ca-no-keyid.pem, tests/key-id/ca-weird-keyid.pem, tests/key-id/key-ca.pem, tests/key-id/key-id, tests/key-id/key-user.pem: Add key-id self test. 2007-02-01 Simon Josefsson * src/certtool.c: Don't print proxy info if there aren't any proxy extension. 2007-02-01 Simon Josefsson * doc/protocol/rfc4785.txt: Add. 2007-01-31 Simon Josefsson * src/certtool.c: Use the CA's SKI as the AKI value, if it is present. Reported by Dale Sedivec . 2007-01-31 Simon Josefsson * lib/x509/x509.c: Doc fix. 2007-01-31 Simon Josefsson * doc/manpages/Makefile.am: Add. 2007-01-31 Simon Josefsson * src/certtool-cfg.c: Fix last commit. 2007-01-31 Simon Josefsson * NEWS, src/certtool-cfg.c, src/certtool-cfg.h, src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: Support reading/generating proxy certificates in certtool. 2007-01-31 Simon Josefsson * NEWS, includes/gnutls/x509.h, lib/x509/extensions.c, lib/x509/extensions.h, lib/x509/x509.c: Add gnutls_x509_crt_get_proxy. 2007-01-31 Simon Josefsson * lib/x509/x509_write.c: Fix last commit. 2007-01-31 Simon Josefsson * lib/x509/x509_write.c: (gnutls_x509_crt_set_proxy_dn): Permit NULL @name's. 2007-01-31 Simon Josefsson * NEWS: Mention RFC 3820. 2007-01-31 Simon Josefsson * NEWS, includes/gnutls/x509.h, lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509/extensions.c, lib/x509/extensions.h, lib/x509/x509_write.c: Add proxy certificate APIs. 2007-01-31 Simon Josefsson * NEWS: Add. 2007-01-31 Simon Josefsson * src/certtool-cfg.c: Have RET for path lengths to mean -1. 2007-01-31 Simon Josefsson * gl/.cvsignore, lgl/.cvsignore: [no log message] 2007-01-31 Simon Josefsson * lib/defines.h: String.h from gnulib now makes sure memmem is available. 2007-01-31 Simon Josefsson * gl/strdup.h, lgl/memmem.h: Remove. 2007-01-31 Simon Josefsson * gl/getaddrinfo.c, gl/gnulib.mk, gl/m4/absolute-header.m4, gl/m4/extensions.m4, gl/m4/gnulib-common.m4, gl/m4/gnulib-comp.m4, gl/m4/strdup.m4, gl/m4/string_h.m4, gl/socket_.h, gl/strdup.c, gl/string_.h, lgl/Makefile.am, lgl/m4/extensions.m4, lgl/m4/gnulib-common.m4, lgl/m4/gnulib-comp.m4, lgl/m4/memmem.m4, lgl/m4/stdint.m4, lgl/m4/string_h.m4, lgl/m4/unistd_h.m4, lgl/m4/wchar.m4, lgl/printf-args.c, lgl/printf-args.h, lgl/printf-parse.c, lgl/socket_.h, lgl/stdint_.h, lgl/string_.h, lgl/vasnprintf.c, lgl/wchar_.h: Update. 2007-01-31 Simon Josefsson * tests/pathlen/.cvsignore: Add. 2007-01-26 Simon Josefsson * NEWS: Add. 2007-01-26 Simon Josefsson * configure.in, tests/Makefile.am, tests/pathlen/Makefile.am, tests/pathlen/ca-no-pathlen.pem, tests/pathlen/no-ca-or-pathlen.pem, tests/pathlen/pathlen: Test for pathlen bug (and general certificate parsing). 2007-01-26 Simon Josefsson * NEWS: Add. 2007-01-26 Simon Josefsson * lib/x509/extensions.c: (_gnutls_x509_ext_extract_basicConstraints): Make sure pathLenConstraint is read, even if CA reading fails. 2007-01-25 Simon Josefsson * NEWS: Add. 2007-01-25 Simon Josefsson * includes/gnutls/gnutlsxx.h, lib/gnutlsxx.cpp: Add comment to describe C++ compiler bug problem. 2007-01-25 Simon Josefsson * includes/gnutls/gnutlsxx.h, lib/gnutlsxx.cpp: Fix C++ compiler bug in a "better" way, tiny patch from Matthias Scheler . 2007-01-16 Simon Josefsson * configure.in: Bump versions. 2007-01-16 Simon Josefsson * NEWS: Add. 2007-01-16 Simon Josefsson * lib/gnutls_cert.c, lib/gnutls_extra_hooks.h, libextra/gnutls_openpgp.c, libextra/openpgp/gnutls_openpgp.h, libextra/openpgp/privkey.c: Fix import of ASCII armored OpenPGP keys, patch from ludovic.courtes@laas.fr (Ludovic Courtès). 2007-01-15 Simon Josefsson * doc/protocol/draft-rescorla-tls-extractor-00.txt: Add. 2007-01-14 Simon Josefsson * ChangeLog: [no log message] 2007-01-14 Simon Josefsson * NEWS: Version 1.7.2. 2007-01-14 Simon Josefsson * lgl/Makefile.am, lgl/gc-gnulib.c, lgl/m4/gnulib-comp.m4, lgl/m4/unistd_h.m4, lgl/m4/wint_t.m4, lgl/unistd_.h: Update. 2007-01-14 Simon Josefsson * NEWS: Add. 2007-01-14 Simon Josefsson * libextra/opencdk/pubkey.c: Doc fix. 2007-01-14 Simon Josefsson * libextra/opencdk/opencdk.h, libextra/opencdk/pubkey.c: (cdk_pubkey_to_sexp, cdk_seckey_to_sexp): New functions, from Mario Lenz . 2007-01-13 Simon Josefsson * NEWS, THANKS: Add. 2007-01-12 Simon Josefsson * lib/gnutlsxx.cpp: Make it compile by commenting out call to virtual method (possibly incorrect but I don't know what the intention was). 2007-01-12 Simon Josefsson * NEWS, configure.in: Don't use -mms-bitfields --enable-runtime-pseudo-reloc. 2007-01-12 Simon Josefsson * gl/Makefile.am: Fix objdir!=srcdir. 2007-01-11 Simon Josefsson * NEWS: Add. 2007-01-11 Simon Josefsson * src/certtool.c: (generate_pkcs12): Read more than one certificate, if there are more available, and store them in the PKCS12 blob. Suggested by Sascha Ziemann . 2007-01-11 Simon Josefsson * doc/reference/Makefile.am: Ignore gnutls_extra_hooks.h. 2007-01-11 Simon Josefsson * doc/manpages/Makefile.am: Add. 2007-01-11 Simon Josefsson * Makefile.am: Reorder lgl/ and gl/, to make sure lgl is built before gl. 2007-01-11 Simon Josefsson * NEWS: Fix. 2007-01-11 Simon Josefsson * NEWS, configure.in, includes/gnutls/x509.h, lib/x509/extensions.c, lib/x509/extensions.h, lib/x509/x509.c, lib/x509/x509_write.c, src/certtool-cfg.c, src/certtool-cfg.h, src/certtool.c: Support pathLenConstraint. 2007-01-11 Simon Josefsson * libextra/Makefile.am: libgnu.la depends on liblgnu.la, so don't add it twice. 2007-01-11 Simon Josefsson * gl/Makefile.am, gl/gnulib.mk, gl/m4/gnulib-cache.m4: Getaddrinfo needs snprintf from ../lgl/, so make libgnu.la depend on liblgnu.la. 2007-01-11 Simon Josefsson * libextra/gnutls_extra.c: Need strverscmp.h. 2007-01-11 Simon Josefsson * NEWS: Fix. 2007-01-11 Simon Josefsson * lib/libgnutls.vers: Don't export _E_*, they are only needed inside libgnutls now. Fix copyright years. 2007-01-11 Simon Josefsson * NEWS, lib/Makefile.am, lib/auth_cert.c, lib/auth_dh_common.c, lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/auth_srp_rsa.c, lib/gnutls_cert.c, lib/gnutls_extra_hooks.c, lib/gnutls_extra_hooks.h, libextra/gnutls_extra.c: Cleanup gnutls vs gnutls-extra integration, for OpenPGP certs. 2007-01-11 Simon Josefsson * libextra/gnutls_extra.c: Replace libgcrypt version check with strverscmp. No need to duplicate prototype found in gnutls.h for gnutls_check_version. 2007-01-09 Simon Josefsson * gl/m4/gnulib-common.m4, gl/m4/gnulib-comp.m4, gl/m4/lib-link.m4, lgl/gc-gnulib.c, lgl/gc-libgcrypt.c, lgl/m4/gc-arcfour.m4, lgl/m4/gc-arctwo.m4, lgl/m4/gc-des.m4, lgl/m4/gc-hmac-md5.m4, lgl/m4/gc-hmac-sha1.m4, lgl/m4/gc-md2.m4, lgl/m4/gc-md4.m4, lgl/m4/gc-md5.m4, lgl/m4/gc-random.m4, lgl/m4/gc-rijndael.m4, lgl/m4/gc-sha1.m4, lgl/m4/gnulib-common.m4, lgl/m4/gnulib-comp.m4, lgl/m4/lib-link.m4: Update. 2007-01-05 Simon Josefsson * NEWS: Add. 2007-01-05 Simon Josefsson * gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/lib-link.m4, lgl/Makefile.am, lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4, lgl/m4/lib-link.m4: Update. 2007-01-05 Simon Josefsson * configure.in: Bump versions. 2007-01-05 Simon Josefsson * NEWS: Add. 2007-01-05 Simon Josefsson * configure.in: Revert part of patch. 2007-01-05 Simon Josefsson * configure.in, src/Makefile.am: Tiny patch from ludovic.courtes@laas.fr (Ludovic Courtès). * configure.in: Look for `gaa', issuing a warning with the URL if not found. * src/Makefile.am (*-gaa.c): Use `$(GAA)' instead of `gaa'. Mark `.gaa' files as being in `$(srcdir)', thereby allowing for out-of-source-tree builds. 2006-12-28 Simon Josefsson * ChangeLog: [no log message] 2006-12-28 Simon Josefsson * Makefile.am: Don't dist mkinstalldirs, automake no longer copies it. 2006-12-28 Simon Josefsson * ChangeLog: [no log message] 2006-12-28 Simon Josefsson * NEWS: Version 1.7.1. 2006-12-28 Simon Josefsson * NEWS: Add. 2006-12-28 Simon Josefsson * NEWS: Add. 2006-12-28 Simon Josefsson * NEWS: Fix. 2006-12-28 Simon Josefsson * NEWS: Fix. 2006-12-28 Simon Josefsson * NEWS, THANKS: Add. 2006-12-28 Simon Josefsson * lib/gnutls_asn1_tab.c: Generate. 2006-12-28 Simon Josefsson * lib/gnutls.asn: Fix comment to make it parse correctly. 2006-12-27 Simon Josefsson * tests/.cvsignore: [no log message] 2006-12-27 Simon Josefsson * NEWS: Add. 2006-12-27 Simon Josefsson * lib/gnutls_sig.c: Fix signature verification for DSA signatures in TLS 1.2, reported by ludovic.courtes@laas.fr (Ludovic Courtès). (_gnutls_pkcs1_rsa_verify_sig): Rename to _gnutls_verify_sig, and add new parameter SHA1POS to indicate where in hash_concat the SHA.1 hash is stored (for DSA). (_gnutls_verify_sig_hdata): Pass proper SHA1POS. (_gnutls_verify_sig_params): Likewise. 2006-12-27 Simon Josefsson * NEWS: Add. 2006-12-27 Simon Josefsson * doc/Makefile.am, doc/manpages/Makefile.am, lib/Makefile.am, lib/x509/Makefile.am, libextra/Makefile.am, libextra/openpgp/Makefile.am: Tiny patch from ludovic.courtes@laas.fr (Ludovic Courtès). * doc/Makefile.am: Refer to `sort2.pl' as `$(srcdir)/scripts/sort2.pl' instead of `scripts/sort2.pl'. * doc/manpages/Makefile.am: Refer to `gdoc' as `$(top_srcdir)/doc/scripts/gdoc' instead of `../scripts/gdoc'. * doc/lib/Makefile.am: Likewise. * doc/lib/x509/Makefile.am: Likewise. * doc/libextra/Makefile.am: Likewise. * doc/libextra/openpgp/Makefile.am: Likewise. 2006-12-27 Simon Josefsson * NEWS, THANKS: Add. 2006-12-27 Simon Josefsson * lib/auth_cert.c: (_gnutls_gen_cert_server_cert_req): For TLS 1.2, generate conforming cert requests (i.e., include a empty list of supported hashes). Report and tiny patch from ludovic.courtes@laas.fr (Ludovic Courtès). 2006-12-27 Simon Josefsson * NEWS: Add. 2006-12-27 Simon Josefsson * tests/userid/.cvsignore: [no log message] 2006-12-27 Simon Josefsson * lib/x509/common.c: (_oid2str): Mark UID as a CHOICE-field (i.e., DirectoryString). (_gnutls_x509_oid_data2string): Handle ia5String in CHOICEs. Fixes problem reported by Max Kellermann . 2006-12-27 Simon Josefsson * lib/pkix_asn1_tab.c: Generated. 2006-12-27 Simon Josefsson * lib/pkix.asn: Encoded UID DN fields as DirectoryString (e.g., PrintableString), not as IA5String. Add IA5String as a CHOICE for DirectoryString, to deal with backwards compatibility if there are IA5String UID fields out there that were generated by older versions. Reported by Max Kellermann . 2006-12-27 Simon Josefsson * tests/userid/userid: Add. 2006-12-27 Simon Josefsson * configure.in: Add tests/userid/. 2006-12-27 Simon Josefsson * tests/Makefile.am: Add userid/. 2006-12-27 Simon Josefsson * tests/userid/Makefile.am, tests/userid/userid.pem: Add. 2006-12-27 Simon Josefsson * NEWS: Add. 2006-12-27 Simon Josefsson * lib/gnutls_x509.c: (generate_rdn_seq): Store subject DN instead of issuer DN in the certificate authority list, to make sure server's send the proper list of expected CAs to the client. Reported by Max Kellermann . 2006-12-27 Simon Josefsson * lib/gnutls_x509.c: (gnutls_certificate_set_x509_crl): Initialize before use, reported by Max Kellermann . 2006-12-27 Simon Josefsson * NEWS, THANKS, tests/Makefile.am, tests/certificate_set_x509_crl.c: Add. 2006-12-27 Simon Josefsson * NEWS: Add. 2006-12-27 Simon Josefsson * gl/m4/lib-link.m4, gl/strdup.h, lgl/m4/lib-link.m4, lgl/m4/stdint.m4: Update. 2006-12-26 Simon Josefsson * doc/protocol/draft-ietf-tls-srp-13.txt: Add. 2006-12-26 Simon Josefsson * doc/protocol/draft-santesson-tls-gssapi-01.txt: Add. 2006-12-26 Simon Josefsson * doc/protocol/draft-rescorla-tls-opaque-prf-input-00.txt, doc/protocol/draft-rescorla-tls-suiteb-00.txt: Add. 2006-12-26 Simon Josefsson * po/LINGUAS, po/de.po: Sync with TP. 2006-12-10 Simon Josefsson * m4/intl.m4, m4/intldir.m4, m4/lock.m4, m4/visibility.m4: Remove (should have just been .cvsignore'd). 2006-12-10 Simon Josefsson * m4/.cvsignore: [no log message] 2006-12-10 Simon Josefsson * m4/intl.m4, m4/intldir.m4, m4/lock.m4, m4/visibility.m4: Add. 2006-12-10 Simon Josefsson * NEWS: Fix. 2006-12-10 Simon Josefsson * NEWS: Add. 2006-12-10 Simon Josefsson * configure.in: Bump versions. 2006-12-10 Simon Josefsson * NEWS, configure.in: Bump versions. 2006-12-01 Simon Josefsson * lib/gnutls_record.c: Doc fix. 2006-11-29 Simon Josefsson * gl/Makefile.am, lgl/Makefile.am: Update. 2006-11-29 Simon Josefsson * ChangeLog: [no log message] 2006-11-29 Simon Josefsson * Makefile.am: Put in devel/ directory. Disable doc generation. 2006-11-29 Simon Josefsson * NEWS: Version 1.7.0. 2006-11-29 Simon Josefsson * NEWS: Add. 2006-11-29 Simon Josefsson * gl/Makefile.am, lgl/Makefile.am: Fix gnulib-tool bug. 2006-11-29 Simon Josefsson * lib/gnutls_priority.c: Attempt TLS 1.2 and TLS 1.1 too, by default. 2006-11-29 Simon Josefsson * NEWS: Fix. 2006-11-28 Simon Josefsson * gl/Makefile.am, gl/gettext.h, lgl/Makefile.am, lgl/gettext.h, lgl/m4/eoverflow.m4, lgl/m4/size_max.m4, lgl/m4/stdint.m4: Update. 2006-11-26 Simon Josefsson * NEWS: Fix. 2006-11-26 Simon Josefsson * NEWS: Add. 2006-11-26 Simon Josefsson * tests/anonself.c: Print TLS version too. 2006-11-26 Simon Josefsson * tests/anonself.c: More debugging. 2006-11-26 Simon Josefsson * tests/utils.c: Output more debug info. 2006-11-26 Simon Josefsson * NEWS: Fix. 2006-11-26 Simon Josefsson * libextra/opencdk/keyserver.c: Doc fix. 2006-11-26 Simon Josefsson * libextra/opencdk/opencdk.h: Doc fixes. 2006-11-26 Simon Josefsson * libextra/opencdk/kbnode.c, libextra/opencdk/keydb.c, libextra/opencdk/keygen.c, libextra/opencdk/keylist.c, libextra/opencdk/sign.c: Doc fix. 2006-11-26 Simon Josefsson * libextra/opencdk/kbnode.c, libextra/opencdk/keygen.c, libextra/opencdk/sign.c: Doc fix. 2006-11-26 Simon Josefsson * libextra/opencdk/keydb.c: Doc fix. 2006-11-26 Simon Josefsson * libextra/gnutls_ia.c: Use new internal PRF API. 2006-11-26 Simon Josefsson * lib/gnutls_sig.c: To use NULL DigestInfo.AlgorithmsIdentifier.parameters or not, that is the question. 2006-11-26 Simon Josefsson * configure.in: Move AM_CONDITIONAL outside of 'if gcc' clause, fixes problem reported by "Michael C. Vergallen" . 2006-11-26 Simon Josefsson * NEWS: Add. 2006-11-25 Simon Josefsson * NEWS: Add. 2006-11-25 Simon Josefsson * lib/auth_cert.c, lib/gnutls_constate.c, lib/gnutls_handshake.c, lib/gnutls_kx.c, lib/gnutls_sig.c, lib/gnutls_state.c, lib/gnutls_state.h: Client TLS 1.2 support. Works against www.mikestoolbox.org:4433. 2006-11-25 Simon Josefsson * src/common.c: Support "TLS1.2" as protocol name. 2006-11-25 Simon Josefsson * NEWS: Add. 2006-11-25 Simon Josefsson * includes/gnutls/gnutls.h.in: (gnutls_protocol_t): Add GNUTLS_TLS1_2. 2006-11-25 Simon Josefsson * lib/gnutls_algorithms.c: Support TLS 1.2. 2006-11-25 Simon Josefsson * NEWS: Add. 2006-11-25 Simon Josefsson * gl/Makefile.am, gl/getaddrinfo.c, gl/imaxtostr.c, gl/intprops.h, gl/inttostr.c, gl/inttostr.h, gl/m4/absolute-header.m4, gl/m4/gnulib-comp.m4, gl/m4/inttostr.m4, gl/m4/longlong.m4, gl/m4/stdint.m4, gl/m4/ulonglong.m4, gl/offtostr.c, gl/stdint_.h, gl/uinttostr.c, gl/umaxtostr.c, lgl/m4/alloca.m4, lgl/m4/gettext.m4: Update. 2006-11-25 Simon Josefsson * NEWS, configure.in: Bump versions. 2006-11-22 Simon Josefsson * doc/protocol/draft-housley-evidence-extns-01.txt: Add. 2006-11-17 Simon Josefsson * ChangeLog: [no log message] 2006-11-17 Simon Josefsson * Makefile.am: Release do non-devel directory. 2006-11-17 Simon Josefsson * NEWS: Version 1.6.0. 2006-11-17 Simon Josefsson * doc/manpages/Makefile.am: Fix copyright years. 2006-11-17 Simon Josefsson * configure.in: Bump versions. 2006-11-17 Simon Josefsson * NEWS: Add. 2006-11-16 Simon Josefsson * ChangeLog: [no log message] 2006-11-16 Simon Josefsson * NEWS: Version 1.5.5. 2006-11-16 Simon Josefsson * lib/gnutls_record.c: (gnutls_record_recv): Fix docstring, suggested by Tim Kosse . 2006-11-16 Simon Josefsson * doc/protocol/draft-ietf-sasl-rfc2831bis-11.txt: Remove, oops wrong project. 2006-11-16 Simon Josefsson * doc/protocol/draft-ietf-sasl-rfc2831bis-11.txt: Add. 2006-11-16 Simon Josefsson * tests/rsa-md5-collision/Makefile.am: Remove. 2006-11-16 Simon Josefsson * NEWS: Add. 2006-11-16 Simon Josefsson * NEWS: Add. 2006-11-16 Simon Josefsson * NEWS: Add. 2006-11-16 Simon Josefsson * gl/Makefile.am, gl/gettext.h, gl/m4/gnulib-comp.m4, gl/m4/lib-link.m4, gl/m4/longlong.m4, gl/stdint_.h, lgl/Makefile.am, lgl/gettext.h, lgl/m4/gnulib-comp.m4, lgl/m4/lib-link.m4, lgl/m4/longlong.m4, lgl/stdint_.h: Update. 2006-11-16 Simon Josefsson * tests/rsa-md5-collision/chain1-expect.log, tests/rsa-md5-collision/chain2-expect.log: Remove. 2006-11-16 Simon Josefsson * tests/rsa-md5-collision/rsa-md5-collision: Remove -x. 2006-11-16 Simon Josefsson * tests/rsa-md5-collision/rsa-md5-collision: Make it work under mingw32. 2006-11-15 Simon Josefsson * configure.in: Bump versions (done incorrectly in the 1.5.4 release). 2006-11-15 Simon Josefsson * NEWS: Add. 2006-11-15 Simon Josefsson * doc/examples/ex-x509-info.c: Fix cert_list_size type to match API, reported by Tim Kosse . 2006-11-14 Simon Josefsson * doc/protocol/draft-hajjeh-tls-identity-protection-00.txt: Add. 2006-11-11 Simon Josefsson * doc/protocol/draft-hajjeh-tls-sign-02.txt: Add. 2006-11-07 Simon Josefsson * ChangeLog: [no log message] 2006-11-07 Simon Josefsson * NEWS: Version 1.5.4. 2006-11-07 Simon Josefsson * NEWS: Add. 2006-11-07 Simon Josefsson * NEWS: Add. 2006-11-07 Simon Josefsson * lgl/Makefile.am, lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4, lgl/m4/strverscmp.m4, lgl/strverscmp.c, lgl/strverscmp.h, lib/gnutls_global.c: Use strverscmp. 2006-11-07 Simon Josefsson * lib/gnutls_buffers.c: Typo. 2006-11-07 Simon Josefsson * NEWS, doc/manpages/Makefile.am: Add. 2006-11-07 Simon Josefsson * libextra/gnutls_ia.c: Doc fix. 2006-11-07 Simon Josefsson * doc/gnutls.texi: More errno discussion regarding push/pull functions. 2006-11-07 Simon Josefsson * NEWS: Add. 2006-11-07 Simon Josefsson * lib/gnutls_buffers.c: Don't use errno to avoid thread-safety issues. 2006-11-07 Simon Josefsson * lib/gnutls_buffers.c: Convert to EINTR/EAGAIN errno under Windows, using WSAGetLastError(). 2006-11-07 Simon Josefsson * NEWS, includes/gnutls/gnutls.h.in, lib/gnutls_buffers.c, lib/gnutls_int.h: Add new APIs to set errno for push/pull functions, suggested by tim.kosse@filezilla-project.org. 2006-11-06 Simon Josefsson * NEWS: Fix. 2006-11-05 Simon Josefsson * NEWS: Add. 2006-11-05 Simon Josefsson * lib/Makefile.am, libextra/Makefile.am: Remove SOVERSION (see configure.in). 2006-11-05 Simon Josefsson * configure.in: Set SOVERSION here. 2006-11-05 Simon Josefsson * lgl/.cvsignore: [no log message] 2006-11-05 Simon Josefsson * libextra/openpgp/openpgp.h: (gnutls_openpgp_key_get_pk_algorithm): Fix prototype. 2006-11-03 Simon Josefsson * lgl/printf-parse.c: Update. 2006-10-30 Simon Josefsson * NEWS: Add. 2006-10-30 Simon Josefsson * libextra/openpgp/pgp.c: (gnutls_openpgp_key_get_fingerprint): Doc fix. Reported by ludovic.courtes@laas.fr (Ludovic Courtès). 2006-10-30 Simon Josefsson * libextra/openpgp/pgp.c: (gnutls_openpgp_key_get_name): Make SIZEOF_BUF contain actual/required buffer size on return. Suggested by ludovic.courtes@laas.fr (Ludovic Courtès). 2006-10-30 Simon Josefsson * NEWS, includes/gnutls/openpgp.h, libextra/openpgp/pgp.c, libextra/openpgp/privkey.c: Fix return types. 2006-10-30 Simon Josefsson * NEWS: Add. 2006-10-30 Simon Josefsson * lib/gnutls_v2_compat.c: Have SSLv2 ClientHello's for unknown versions negotiate the highest version we support, instead of the lowest. Reported by Pasi.Eronen@nokia.com. 2006-10-30 Simon Josefsson * NEWS: Add. 2006-10-30 Simon Josefsson * configure.in: Simplify ssize_t test. 2006-10-30 Simon Josefsson * doc/examples/ex-cert-select.c: Remove duplicate #include . 2006-10-30 Simon Josefsson * configure.in, lib/defines.h: Simplify #include's using gnulib modules. 2006-10-30 Simon Josefsson * gl/getaddrinfo.c, gl/getdelim.c, gl/getline.c, gl/gettext.h, gl/m4/lib-link.m4, gl/readline.c, lgl/Makefile.am, lgl/arcfour.c, lgl/arctwo.c, lgl/des.c, lgl/gc-gnulib.c, lgl/gc-libgcrypt.c, lgl/gc-pbkdf2-sha1.c, lgl/gettext.h, lgl/hmac-md5.c, lgl/hmac-sha1.c, lgl/m4/codeset.m4, lgl/m4/gettext.m4, lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4, lgl/m4/intl.m4, lgl/m4/intldir.m4, lgl/m4/intmax.m4, lgl/m4/inttypes-h.m4, lgl/m4/inttypes-pri.m4, lgl/m4/lib-link.m4, lgl/m4/lock.m4, lgl/m4/signed.m4, lgl/m4/sys_stat_h.m4, lgl/m4/unistd_h.m4, lgl/m4/vasnprintf.m4, lgl/md2.c, lgl/md4.c, lgl/memxor.c, lgl/read-file.c, lgl/rijndael-alg-fst.c, lgl/rijndael-api-fst.c, lgl/stat_.h: Update. 2006-10-30 Simon Josefsson * lgl/m4/gnulib-comp.m4, lgl/m4/sys_stat_h.m4, lgl/stat_.h: Update. 2006-10-30 Simon Josefsson * NEWS, configure.in: Bump versions. 2006-10-26 Simon Josefsson * ChangeLog: [no log message] 2006-10-26 Simon Josefsson * NEWS: Version 1.5.3. 2006-10-26 Simon Josefsson * lgl/.cvsignore: [no log message] 2006-10-26 Simon Josefsson * libextra/opencdk/Makefile.am: Fix -I's. 2006-10-26 Simon Josefsson * tests/rsa-md5-collision/Makefile.am: Dist more. 2006-10-26 Simon Josefsson * NEWS, tests/rsa-md5-collision/README: Add. 2006-10-26 Simon Josefsson * lib/Makefile.am, libextra/Makefile.am, src/Makefile.am, tests/Makefile.am: Change lgpl/ library name. 2006-10-26 Simon Josefsson * lgl/Makefile.am, lgl/m4/gnulib-cache.m4: Change lgpl/ library name to liblgnu, to avoid weird libtool errors. 2006-10-26 Simon Josefsson * lgl/Makefile.am, lgl/stdint_.h: Update. 2006-10-26 Simon Josefsson * gl/Makefile.am, gl/getaddrinfo.c, gl/imaxtostr.c, gl/intprops.h, gl/inttostr.c, gl/inttostr.h, gl/m4/absolute-header.m4, gl/m4/gnulib-comp.m4, gl/m4/inttostr.m4, gl/m4/longlong.m4, gl/m4/stdint.m4, gl/m4/ulonglong.m4, gl/offtostr.c, gl/stdint_.h, gl/uinttostr.c, gl/umaxtostr.c: Add. 2006-10-26 Simon Josefsson * NEWS: Fix. 2006-10-26 Simon Josefsson * libextra/opencdk/encrypt.c, libextra/opencdk/opencdk.h: Update to 0.5.11. 2006-10-26 Simon Josefsson * doc/gnutls.texi: Be specific about SSLv2 security problems. 2006-10-24 Simon Josefsson * tests/rsa-md5-collision/rsa-md5-collision: Fix distcheck. 2006-10-24 Simon Josefsson * tests/rsa-md5-collision/Makefile.am: Dist more. 2006-10-24 Simon Josefsson * NEWS: Add. 2006-10-24 Simon Josefsson * tests/pkcs12-decode/.cvsignore: [no log message] 2006-10-24 Simon Josefsson * configure.in: Add tests. 2006-10-24 Simon Josefsson * tests/Makefile.am, tests/pkcs12-decode/Makefile.am, tests/pkcs12-decode/pkcs12, tests/pkcs12_neon: Move pkcs12 tests to pkcs12-decode/. 2006-10-24 Simon Josefsson * tests/pkcs8-decode/pkcs8: More debugging info. 2006-10-24 Simon Josefsson * tests/pkcs8-decode/.cvsignore: [no log message] 2006-10-24 Simon Josefsson * tests/Makefile.am, tests/enc2pkcs8.pem, tests/encpkcs8.pem, tests/pkcs8, tests/pkcs8-decode/Makefile.am, tests/pkcs8-decode/enc2pkcs8.pem, tests/pkcs8-decode/encpkcs8.pem, tests/pkcs8-decode/pkcs8, tests/pkcs8-decode/unencpkcs8.pem, tests/unencpkcs8.pem: Move pkcs8 tests to pkcs8-decode/. 2006-10-24 Simon Josefsson * tests/Makefile.am: Move pkcs1-pad stuff to pkcs1-padding/. Add rsa-md5-collision/. 2006-10-24 Simon Josefsson * tests/pkcs1-padding/.cvsignore, tests/rsa-md5-collision/.cvsignore: [no log message] 2006-10-24 Simon Josefsson * tests/rsa-md5-collision/Makefile.am, tests/rsa-md5-collision/chain1-expect.log, tests/rsa-md5-collision/chain2-expect.log, tests/rsa-md5-collision/mbox, tests/rsa-md5-collision/rsa-md5-collision: Add. 2006-10-24 Simon Josefsson * tests/pkcs1-padding/Makefile.am, tests/pkcs1-padding/pkcs1-pad, tests/pkcs1-padding/pkcs1-pad-broken.pem, tests/pkcs1-padding/pkcs1-pad-broken2.pem, tests/pkcs1-padding/pkcs1-pad-broken3.pem, tests/pkcs1-padding/pkcs1-pad-ok.pem, tests/pkcs1-padding/pkcs1-pad-ok2.pem: Moved from ../. 2006-10-24 Simon Josefsson * tests/pkcs1-pad, tests/pkcs1-pad-broken.pem, tests/pkcs1-pad-broken2.pem, tests/pkcs1-pad-broken3.pem, tests/pkcs1-pad-ok.pem, tests/pkcs1-pad-ok2.pem: Move to separate directory. 2006-10-24 Simon Josefsson * doc/protocol/draft-ietf-tls-psk-null-03.txt, doc/protocol/draft-ietf-tls-rfc4346-bis-02.txt: Add. 2006-10-21 Simon Josefsson * NEWS: Add. 2006-10-21 Simon Josefsson * lgl/.cvsignore: [no log message] 2006-10-21 Simon Josefsson * tests/Makefile.am: Need lgpl gnulib. 2006-10-21 Simon Josefsson * src/Makefile.am: Add lgpl too. 2006-10-21 Simon Josefsson * libextra/Makefile.am: Reorder libgnu.la's. 2006-10-21 Simon Josefsson * libextra/opencdk/Makefile.am: Need lgpl/ gnulib in CFLAGS. 2006-10-21 Simon Josefsson * lgl/alloca.h, lgl/stdint.h: Remove files that shouldn't have been committed. 2006-10-21 Simon Josefsson * gl/Makefile.am, gl/m4/gnulib-cache.m4: Fix avoid modules. 2006-10-21 Simon Josefsson * gl/Makefile.am, gl/alloca_.h, gl/asnprintf.c, gl/m4/alloca.m4, gl/m4/eoverflow.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/intmax_t.m4, gl/m4/inttypes_h.m4, gl/m4/longdouble.m4, gl/m4/longlong.m4, gl/m4/signed.m4, gl/m4/size_max.m4, gl/m4/snprintf.m4, gl/m4/stdint_h.m4, gl/m4/vasnprintf.m4, gl/m4/wchar_t.m4, gl/m4/wint_t.m4, gl/m4/xsize.m4, gl/printf-args.c, gl/printf-args.h, gl/printf-parse.c, gl/printf-parse.h, gl/size_max.h, gl/snprintf.c, gl/snprintf.h, gl/vasnprintf.c, gl/vasnprintf.h, gl/xsize.h: Avoid duplicate modules. 2006-10-21 Simon Josefsson * gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4: Avoid duplicate modules. 2006-10-21 Simon Josefsson * libextra/Makefile.am: Need gnulib lgl/ in CFLAGS and LIBADD. 2006-10-21 Simon Josefsson * libextra/openpgp/Makefile.am: Need gnulib lgl/ in CFLAGS. 2006-10-21 Simon Josefsson * gl/Makefile.am: Move modules from gl/ to lgl/. 2006-10-21 Simon Josefsson * gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, lgl/Makefile.am, lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4: Move modules from gl/ to lgl/. 2006-10-21 Simon Josefsson * gl/Makefile.am, gl/m4/absolute-header.m4, gl/m4/codeset.m4, gl/m4/gettext.m4, gl/m4/glibc2.m4, gl/m4/glibc21.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/iconv.m4, gl/m4/intdiv0.m4, gl/m4/intmax.m4, gl/m4/inttypes-h.m4, gl/m4/inttypes-pri.m4, gl/m4/lcmessage.m4, gl/m4/lock.m4, gl/m4/memmove.m4, gl/m4/minmax.m4, gl/m4/nls.m4, gl/m4/po.m4, gl/m4/printf-posix.m4, gl/m4/progtest.m4, gl/m4/read-file.m4, gl/m4/stdint.m4, gl/m4/uintmax_t.m4, gl/m4/ulonglong.m4, gl/m4/visibility.m4, gl/memmove.c, gl/minmax.h, gl/read-file.c, gl/read-file.h, gl/stdint_.h, lgl/Makefile.am, lgl/alloca.h, lgl/alloca_.h, lgl/asnprintf.c, lgl/gettext.h, lgl/m4/alloca.m4, lgl/m4/codeset.m4, lgl/m4/eoverflow.m4, lgl/m4/gettext.m4, lgl/m4/glibc2.m4, lgl/m4/glibc21.m4, lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4, lgl/m4/iconv.m4, lgl/m4/intdiv0.m4, lgl/m4/intmax.m4, lgl/m4/intmax_t.m4, lgl/m4/inttypes-h.m4, lgl/m4/inttypes-pri.m4, lgl/m4/inttypes_h.m4, lgl/m4/lcmessage.m4, lgl/m4/lock.m4, lgl/m4/longdouble.m4, lgl/m4/memmove.m4, lgl/m4/nls.m4, lgl/m4/po.m4, lgl/m4/printf-posix.m4, lgl/m4/progtest.m4, lgl/m4/read-file.m4, lgl/m4/signed.m4, lgl/m4/size_max.m4, lgl/m4/snprintf.m4, lgl/m4/socklen.m4, lgl/m4/sockpfaf.m4, lgl/m4/stdint_h.m4, lgl/m4/sys_socket_h.m4, lgl/m4/uintmax_t.m4, lgl/m4/vasnprintf.m4, lgl/m4/visibility.m4, lgl/m4/wchar_t.m4, lgl/m4/wint_t.m4, lgl/m4/xsize.m4, lgl/memmove.c, lgl/printf-args.c, lgl/printf-args.h, lgl/printf-parse.c, lgl/printf-parse.h, lgl/read-file.c, lgl/read-file.h, lgl/size_max.h, lgl/snprintf.c, lgl/snprintf.h, lgl/socket_.h, lgl/stdint.h, lgl/vasnprintf.c, lgl/vasnprintf.h, lgl/xsize.h: Move modules from gl/ to lgl/. 2006-10-21 Simon Josefsson * lgl/.cvsignore: [no log message] 2006-10-21 Simon Josefsson * Makefile.am: Build lgl/ too. 2006-10-21 Simon Josefsson * gl/Makefile.am, gl/arcfour.c, gl/arcfour.h, gl/arctwo.c, gl/arctwo.h, gl/des.c, gl/des.h, gl/gc-gnulib.c, gl/gc-libgcrypt.c, gl/gc-pbkdf2-sha1.c, gl/gc.h, gl/hmac-md5.c, gl/hmac-sha1.c, gl/hmac.h, gl/m4/arcfour.m4, gl/m4/arctwo.m4, gl/m4/des.m4, gl/m4/gc-arcfour.m4, gl/m4/gc-arctwo.m4, gl/m4/gc-des.m4, gl/m4/gc-hmac-md5.m4, gl/m4/gc-hmac-sha1.m4, gl/m4/gc-md2.m4, gl/m4/gc-md4.m4, gl/m4/gc-md5.m4, gl/m4/gc-pbkdf2-sha1.m4, gl/m4/gc-random.m4, gl/m4/gc-rijndael.m4, gl/m4/gc-sha1.m4, gl/m4/gc.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/hmac-md5.m4, gl/m4/hmac-sha1.m4, gl/m4/md2.m4, gl/m4/md4.m4, gl/m4/md5.m4, gl/m4/memxor.m4, gl/m4/rijndael.m4, gl/m4/sha1.m4, gl/md2.c, gl/md2.h, gl/md4.c, gl/md4.h, gl/md5.c, gl/md5.h, gl/memxor.c, gl/memxor.h, gl/rijndael-alg-fst.c, gl/rijndael-alg-fst.h, gl/rijndael-api-fst.c, gl/rijndael-api-fst.h, gl/sha1.c, gl/sha1.h, lgl/Makefile.am, lgl/arcfour.c, lgl/arcfour.h, lgl/arctwo.c, lgl/arctwo.h, lgl/des.c, lgl/des.h, lgl/gc-gnulib.c, lgl/gc-libgcrypt.c, lgl/gc-pbkdf2-sha1.c, lgl/gc.h, lgl/hmac-md5.c, lgl/hmac-sha1.c, lgl/hmac.h, lgl/m4/absolute-header.m4, lgl/m4/arcfour.m4, lgl/m4/arctwo.m4, lgl/m4/des.m4, lgl/m4/gc-arcfour.m4, lgl/m4/gc-arctwo.m4, lgl/m4/gc-des.m4, lgl/m4/gc-hmac-md5.m4, lgl/m4/gc-hmac-sha1.m4, lgl/m4/gc-md2.m4, lgl/m4/gc-md4.m4, lgl/m4/gc-md5.m4, lgl/m4/gc-pbkdf2-sha1.m4, lgl/m4/gc-random.m4, lgl/m4/gc-rijndael.m4, lgl/m4/gc-sha1.m4, lgl/m4/gc.m4, lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4, lgl/m4/hmac-md5.m4, lgl/m4/hmac-sha1.m4, lgl/m4/lib-ld.m4, lgl/m4/lib-link.m4, lgl/m4/lib-prefix.m4, lgl/m4/longlong.m4, lgl/m4/md2.m4, lgl/m4/md4.m4, lgl/m4/md5.m4, lgl/m4/memxor.m4, lgl/m4/minmax.m4, lgl/m4/rijndael.m4, lgl/m4/sha1.m4, lgl/m4/stdint.m4, lgl/m4/ulonglong.m4, lgl/md2.c, lgl/md2.h, lgl/md4.c, lgl/md4.h, lgl/md5.c, lgl/md5.h, lgl/memxor.c, lgl/memxor.h, lgl/minmax.h, lgl/rijndael-alg-fst.c, lgl/rijndael-alg-fst.h, lgl/rijndael-api-fst.c, lgl/rijndael-api-fst.h, lgl/sha1.c, lgl/sha1.h, lgl/stdint_.h: Move modules from gl/ to lgl/. 2006-10-21 Simon Josefsson * lib/minitasn1/Makefile.am, lib/x509/Makefile.am: Use gnulib in lgl/ instead of gl/. 2006-10-21 Simon Josefsson * configure.in, gl/Makefile.am, gl/alloca_.h, gl/arcfour.c, gl/arcfour.h, gl/arctwo.c, gl/arctwo.h, gl/asnprintf.c, gl/des.c, gl/des.h, gl/dummy.c, gl/gai_strerror.c, gl/gc-gnulib.c, gl/gc-libgcrypt.c, gl/gc-pbkdf2-sha1.c, gl/gc.h, gl/getaddrinfo.c, gl/getaddrinfo.h, gl/getdelim.c, gl/getdelim.h, gl/getline.c, gl/getline.h, gl/getpass.c, gl/getpass.h, gl/gettext.h, gl/hmac-md5.c, gl/hmac-sha1.c, gl/hmac.h, gl/inet_ntop.c, gl/inet_ntop.h, gl/inet_pton.c, gl/inet_pton.h, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/memmem.m4, gl/md2.c, gl/md2.h, gl/md4.c, gl/md4.h, gl/md5.c, gl/md5.h, gl/memmem.c, gl/memmem.h, gl/memxor.c, gl/memxor.h, gl/minmax.h, gl/printf-args.c, gl/printf-args.h, gl/printf-parse.c, gl/printf-parse.h, gl/read-file.c, gl/read-file.h, gl/readline.c, gl/readline.h, gl/rijndael-alg-fst.c, gl/rijndael-alg-fst.h, gl/rijndael-api-fst.c, gl/rijndael-api-fst.h, gl/sha1.c, gl/sha1.h, gl/size_max.h, gl/snprintf.c, gl/snprintf.h, gl/socket_.h, gl/stdbool_.h, gl/stdint_.h, gl/strdup.c, gl/strdup.h, gl/vasnprintf.c, gl/vasnprintf.h, gl/xsize.h, lgl/Makefile.am, lgl/dummy.c, lgl/m4/gnulib-cache.m4, lgl/m4/gnulib-comp.m4, lgl/m4/gnulib-tool.m4, lgl/m4/memmem.m4, lgl/memmem.c, lgl/memmem.h, lib/Makefile.am: Add lgl/ for LGPLed gnulib modules (for lib/) and use gl/ for GPL gnulib modules, for use in src/ etc. 2006-10-21 Simon Josefsson * gl/Makefile.am, gl/gettext.h, gl/m4/alloca.m4, gl/m4/gnulib-comp.m4, gl/m4/lock.m4, gl/m4/longlong.m4, gl/m4/size_max.m4, gl/m4/stdint.m4, gl/m4/ulonglong.m4, gl/m4/vasnprintf.m4, gl/printf-args.c, gl/printf-args.h, gl/printf-parse.c, gl/stdint_.h, gl/strdup.c, gl/vasnprintf.c: Update. 2006-10-19 Simon Josefsson * NEWS: Add. 2006-10-19 Simon Josefsson * lib/minitasn1/coding.c, lib/minitasn1/decoding.c, lib/minitasn1/libtasn1.h: Update to 0.3.7. 2006-10-11 Simon Josefsson * NEWS: Add. 2006-10-11 Simon Josefsson * libextra/opencdk/keylist.c, libextra/opencdk/opencdk.h: Bump to 0.5.10. 2006-10-11 Simon Josefsson * doc/protocol/rfc4680.txt, doc/protocol/rfc4681.txt: Add. 2006-10-10 Simon Josefsson * doc/protocol/draft-ietf-tls-psk-null-02.txt: Add. 2006-10-03 Simon Josefsson * NEWS: Add. 2006-10-03 Simon Josefsson * lib/Makefile.am, libextra/Makefile.am: Fix .def filename. 2006-10-03 Simon Josefsson * NEWS, configure.in: Bump versions. 2006-10-03 Simon Josefsson * ChangeLog: [no log message] 2006-10-03 Simon Josefsson * NEWS: Version 1.5.2. 2006-10-03 Simon Josefsson * NEWS: Fix. 2006-10-03 Simon Josefsson * NEWS: Add. 2006-10-03 Simon Josefsson * gl/Makefile.am, gl/getpass.c, gl/m4/getpass.m4, gl/m4/intmax.m4: Update. 2006-09-29 Simon Josefsson * doc/protocol/draft-ietf-tls-psk-null-01.txt: Add. 2006-09-26 Simon Josefsson * NEWS: Add. 2006-09-26 Simon Josefsson * libextra/gnutls_openpgp.c: (kbx_data_to_keyring): Fix off-by-one error in call to malloc, reported by "Adam Langley" . 2006-09-25 Simon Josefsson * NEWS: Add. 2006-09-25 Simon Josefsson * configure.in: Use library shared version 13 instead of 14, incrementing it was a mistake since no API/ABI changes happened. Reported by Andreas Metzler . 2006-09-25 Simon Josefsson * configure.in: Improve the C++ test, to handle CXX env. variables, suggested by Andreas Metzler . 2006-09-25 Simon Josefsson * NEWS: Add. 2006-09-25 Simon Josefsson * lib/Makefile.am: Use version script for libgnutlsxx too. 2006-09-25 Simon Josefsson * NEWS, lib/libgnutlsxx.vers: Add. 2006-09-24 Simon Josefsson * gl/gc-gnulib.c, gl/m4/gnulib-comp.m4, gl/m4/lock.m4, gl/m4/signed.m4, gl/m4/sockpfaf.m4, gl/md4.c, gl/rijndael-api-fst.c: Update. 2006-09-24 Simon Josefsson * NEWS, configure.in: Bump versions. 2006-09-24 Simon Josefsson * lib/x509/x509.c: (gnutls_x509_crt_init): Don't set output parameter on failures, reported by Alon Bar-Lev . Also clean up logic. 2006-09-24 Simon Josefsson * THANKS: Add. 2006-09-24 Simon Josefsson * lib/x509/crl.c: Fix prototype of gnutls_x509_crl_get_issuer_dn to match x509.h, for IRIX ido cc builds, reported by Georg Schwarz . 2006-09-21 Simon Josefsson * Makefile.am: Fix gendocs.sh path. 2006-09-21 Simon Josefsson * ChangeLog: [no log message] 2006-09-21 Simon Josefsson * NEWS: Version 1.5.1. 2006-09-21 Simon Josefsson * gl/override/gpl.diff: Rename. 2006-09-21 Simon Josefsson * gl/override/doc/gpl.texi.diff, gl/override/doc/lgpl.texi.diff, gl/override/gpl.diff, gl/override/gpl.texi.diff, gl/override/lgpl.diff, gl/override/lgpl.texi.diff: Rename. 2006-09-21 Simon Josefsson * gl/override/lgpl.diff: Rename. 2006-09-21 Simon Josefsson * doc/fdl.texi, doc/gpl.texi, doc/lgpl.texi, gl/Makefile.am, gl/asnprintf.c, gl/gai_strerror.c, gl/getaddrinfo.c, gl/getpass.c, gl/inet_ntop.c, gl/inet_pton.c, gl/m4/gettext.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/inttypes-h.m4, gl/m4/inttypes-pri.m4, gl/m4/lib-link.m4, gl/m4/stdint.m4, gl/md5.c, gl/memmove.c, gl/override/gpl.texi.diff, gl/override/lgpl.texi.diff, gl/printf-args.c, gl/printf-parse.c, gl/sha1.c, gl/snprintf.c, gl/stdint_.h, gl/strdup.c, gl/vasnprintf.c: Update. 2006-09-21 Simon Josefsson * NEWS: Add. 2006-09-21 Simon Josefsson * doc/Makefile.am: Dist gpl.texi and lgpl.texi. 2006-09-21 Simon Josefsson * doc/gnutls.texi: Add LGPL and GPL texts. 2006-09-21 Simon Josefsson * NEWS: Add. 2006-09-21 Simon Josefsson * tests/pkcs1-pad: Simplify grep expression, to work around debug messages from wine. 2006-09-21 Simon Josefsson * src/certtool.c: (generate_self_signed): Load key, if generate_certificate() didn't load or generate it, typically because it used a certificate request. Reported by Sascha Ziemann . 2006-09-21 Simon Josefsson * src/certtool.c: Revert last patch. 2006-09-21 Simon Josefsson * src/tests.c: (test_session_resume2): When comparing session id's, also compare that the lengths are the same. 2006-09-21 Simon Josefsson * NEWS, THANKS: Add. 2006-09-21 Simon Josefsson * src/tests.c: (test_session_resume2): If session-id is NULL, resumption isn't supported. Tiny patch from Kataja Kai . 2006-09-19 Simon Josefsson * tests/Makefile.am: Dist more. 2006-09-19 Simon Josefsson * tests/pkcs1-pad: Test another cert. 2006-09-19 Simon Josefsson * tests/pkcs1-pad-broken3.pem: Add forged cert, from Ralf-Philipp Weinmann. 2006-09-18 Simon Josefsson * configure.in: Gnulib seems to require autoconf 2.60? Bump it. 2006-09-18 Simon Josefsson * libextra/opencdk/keydb.c: (keydb_idx_search): Don't return CDK_EOF if key is found at offset 0. Suggested by "Adam Langley" . 2006-09-18 Simon Josefsson * THANKS: Remove (already there). 2006-09-18 Simon Josefsson * THANKS: Add. 2006-09-18 Simon Josefsson * doc/examples/ex-serv-pgp.c: Fix typo. Tiny patch from "Adam Langley" . 2006-09-12 Simon Josefsson * NEWS: Add. 2006-09-12 Simon Josefsson * NEWS: Fix. 2006-09-12 Simon Josefsson * tests/pkcs1-pad: Fix. 2006-09-12 Simon Josefsson * lib/x509/verify.c: Permit empty parameters field too, found after adding self tests. 2006-09-12 Simon Josefsson * tests/pkcs1-pad: Fix exit code. 2006-09-12 Simon Josefsson * tests/pkcs1-pad-broken2.pem, tests/pkcs1-pad-ok2.pem: Add, from Eric Young in . 2006-09-12 Simon Josefsson * tests/pkcs1-pad: Add more tests. 2006-09-12 Simon Josefsson * tests/Makefile.am: Add pkcs1-pad test. 2006-09-12 Simon Josefsson * tests/pkcs1-pad-broken.pem, tests/pkcs1-pad-ok.pem: Add, from Yutaka OIWA . 2006-09-12 Simon Josefsson * tests/pkcs1-pad: Add. 2006-09-12 Simon Josefsson * lib/x509/verify.c: Fix asn1_read_value() call to fix crash, reported by Andreas Metzler . 2006-09-12 Simon Josefsson * lib/gnutls_pk.c: Add 'break' to make logic easier to follow. 2006-09-11 Simon Josefsson * lib/gnutls_pk.c: Revert part of patch, logging is only enabled in debug mode, which isn't recommended for real use. 2006-09-08 Simon Josefsson * NEWS: Add. 2006-09-08 Simon Josefsson * NEWS: Fix. 2006-09-08 Simon Josefsson * NEWS: Fix. 2006-09-08 Simon Josefsson * NEWS: Add. 2006-09-08 Simon Josefsson * lib/x509/verify.c: Make sure the digestAlgorithm.parameters field is empty, which it has to be for the hashes we support. Otherwise, the field can encode "garbage" that might be used to make the signature be a perfect cube, similar (but not identical) to Bleichenbacher's Crypto 06 rump session attack. 2006-09-08 Simon Josefsson * NEWS: Add. 2006-09-08 Simon Josefsson * NEWS: Add. 2006-09-08 Simon Josefsson * lib/gnutls_pk.c: Don't return different errors depending on content of decrypted PKCS#1 token, to avoid Bleichenbacher's Crypto'98 attack, suggested by Werner Koch . 2006-09-08 Simon Josefsson * THANKS: Add. 2006-09-08 Simon Josefsson * doc/examples/ex-client-srp.c: Use GNUTLS_SHUT_RDWR, tiny patch from "Robert Millan [ackstorm]" . 2006-08-29 Simon Josefsson * doc/protocol/draft-ietf-tls-openpgp-keys-11.txt: Add. 2006-08-28 Simon Josefsson * NEWS: Fix. 2006-08-28 Simon Josefsson * gl/Makefile.am, gl/getaddrinfo.c, gl/m4/arcfour.m4, gl/m4/arctwo.m4, gl/m4/codeset.m4, gl/m4/des.m4, gl/m4/gc-pbkdf2-sha1.m4, gl/m4/gc.m4, gl/m4/getdelim.m4, gl/m4/getline.m4, gl/m4/getpass.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/hmac-md5.m4, gl/m4/hmac-sha1.m4, gl/m4/intmax_t.m4, gl/m4/inttypes-pri.m4, gl/m4/inttypes_h.m4, gl/m4/lock.m4, gl/m4/longlong.m4, gl/m4/md2.m4, gl/m4/md4.m4, gl/m4/md5.m4, gl/m4/memxor.m4, gl/m4/read-file.m4, gl/m4/readline.m4, gl/m4/rijndael.m4, gl/m4/sha1.m4, gl/m4/stdint.m4, gl/m4/stdint_h.m4, gl/m4/strdup.m4, gl/override/doc/gendocs_template, gl/stdint_.h: Update. 2006-08-27 Simon Josefsson * NEWS, THANKS: Add. 2006-08-27 Simon Josefsson * doc/examples/ex-serv-anon.c, doc/examples/ex-serv-export.c, doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-srp.c, doc/examples/ex-serv1.c, doc/examples/tcp.c: Include netinet/in.h for FreeBSD, reported by Roman Bogorodskiy . 2006-08-27 Simon Josefsson * NEWS: Add. 2006-08-27 Simon Josefsson * THANKS: Add. 2006-08-27 Simon Josefsson * src/certtool.c: (generate_certificate): Load private key when --load-request is used, based on report from Sascha Ziemann . 2006-08-27 Simon Josefsson * lib/x509/x509_write.c: (gnutls_x509_crt_sign2): Check to see if ISSUER_KEY is NULL before continuing, based on report from Sascha Ziemann . 2006-08-14 Simon Josefsson * NEWS: Add. 2006-08-14 Simon Josefsson * src/serv.c: Map select to _win_select on Windows hosts. 2006-08-14 Simon Josefsson * src/Makefile.am: Need select.c in cli.c and serv.c. 2006-08-14 Simon Josefsson * src/select.c: Add, moved from cli.c, originally from plibc, see . 2006-08-14 Simon Josefsson * src/cli.c: Move _win_select to select.c. 2006-08-14 Simon Josefsson * src/cli.c: Make select() work on Windows, copying code from plibc, see . 2006-08-13 Simon Josefsson * libextra/gnutls_openssl.c: Mark with XXX. 2006-08-13 Simon Josefsson * NEWS, configure.in: Bump versions. 2006-08-13 Simon Josefsson * Makefile.am: Fix release target. 2006-08-13 Simon Josefsson * ChangeLog: [no log message] 2006-08-13 Simon Josefsson * NEWS: Version 1.5.0. 2006-08-13 Simon Josefsson * NEWS: Fix. 2006-08-13 Simon Josefsson * libextra/gnutls_openssl.c: Add (XXX). 2006-08-13 Simon Josefsson * lib/Makefile.am, libextra/Makefile.am: Install *.def to bin/ directory. 2006-08-13 Simon Josefsson * NEWS: Add. 2006-08-13 Simon Josefsson * configure.in, lib/Makefile.am, libextra/Makefile.am: Create *.def files for libraries, on mingw. 2006-08-13 Simon Josefsson * gl/Makefile.am, gl/m4/gc.m4, gl/m4/getaddrinfo.m4, gl/m4/gnulib-comp.m4, gl/m4/inet_ntop.m4, gl/m4/inet_pton.m4, gl/m4/memxor.m4, gl/m4/restrict.m4, gl/snprintf.c: Update. 2006-08-13 Simon Josefsson * libextra/gnutls_openssl.c: Use int/void* macros to avoid warnings, suggested by Andreas Metzler . 2006-08-13 Simon Josefsson * lib/gnutls_buffers.c: Remove. 2006-08-13 Simon Josefsson * lib/gnutls_int.h: Move GNUTLS_POINTER_TO_INT here. Add GNUTLS_INT_TO_POINTER. Based on glib macros, and suggestions from Andreas Metzler . 2006-08-13 Simon Josefsson * configure.in: Add void*, for GNUTLS_POINTER_TO_INT_CAST macros. 2006-08-11 Simon Josefsson * NEWS: Fix. 2006-08-11 Simon Josefsson * NEWS: Add. 2006-08-11 Simon Josefsson * NEWS: Add. 2006-08-11 Simon Josefsson * lib/gnutls_algorithms.c: (_gnutls_x509_oid2mac_algorithm): Don't crash trying to strcmp the NULL OID value in the hash_algorithms array, which happens when the input OID doesn't match our OIDs for SHA1, MD5, MD2 or RIPEMD160. Reported by satyakumar . 2006-08-11 Simon Josefsson * configure.in: Don't overwrite CFLAGS. 2006-08-07 Simon Josefsson * includes/gnutls/gnutlsxx.h: Make it compile. 2006-08-06 Simon Josefsson * NEWS: Add. 2006-08-06 Simon Josefsson * src/tls_test-gaa.c, src/tls_test-gaa.h: Update. 2006-08-06 Simon Josefsson * src/tls_test.gaa: Use -V for --verbose. 2006-08-06 Simon Josefsson * src/certtool.c, src/crypt.c: Fix --version to conform to FSF standards, to fix make distcheck. 2006-08-06 Simon Josefsson * src/tls_test.c, src/tls_test.gaa: Support --version. 2006-08-06 Simon Josefsson * src/cli.c, src/psk.c, src/serv.c: Fix --version to conform to FSF standards, to fix make distcheck. 2006-08-06 Simon Josefsson * NEWS: Add. 2006-08-06 Simon Josefsson * configure.in: Fix --without-included-libtasn1, reported by Daniel Black . 2006-08-06 Simon Josefsson * gl/Makefile.am, gl/m4/gnulib-cache.m4: Update. 2006-08-06 Simon Josefsson * NEWS: Fix. 2006-08-06 Simon Josefsson * NEWS: Add. 2006-08-06 Simon Josefsson * libextra/opencdk/kbnode.c, libextra/opencdk/opencdk.h, libextra/opencdk/stream.h: Update to 0.5.9. 2006-08-03 Simon Josefsson * THANKS: add 2006-08-03 Simon Josefsson * tests/Makefile.am: Fix libgcrypt link failure, reported by Brant Gurganus, tiny patch by Daniel Black . 2006-07-28 Simon Josefsson * gendocs.sh, gl/Makefile.am, gl/getaddrinfo.c, gl/getaddrinfo.h, gl/gettext.h, gl/inet_ntop.h, gl/inet_pton.h, gl/m4/getline.m4, gl/m4/gettext.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/inet_ntop.m4, gl/m4/inet_pton.m4, gl/m4/inttypes-h.m4, gl/m4/inttypes-pri.m4, gl/m4/inttypes.m4, gl/m4/isc-posix.m4, gl/m4/lib-link.m4, gl/m4/lock.m4, gl/m4/netinet_in_h.m4, gl/m4/nls.m4, gl/m4/onceonly_2_57.m4, gl/m4/po.m4, gl/m4/stdint.m4, gl/m4/visibility.m4, gl/printf-args.c, gl/stdint_.h: Update. 2006-07-23 Nikos Mavrogiannopoulos * lib/gnutls_int.h: cert_type extension was updated to the IANA assigned value 2006-07-23 Nikos Mavrogiannopoulos * lib/gnutls_int.h: cert_type extension was updated to the IANA assigned value 2006-07-13 Simon Josefsson * doc/gendocs.sh, gendocs.sh, gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4: Update. 2006-07-13 Simon Josefsson * libextra/gnutls_openssl.c: Revert. 2006-07-13 Simon Josefsson * THANKS: Add. 2006-07-13 Simon Josefsson * libextra/gnutls_openssl.c: Retry handshake on non-fatal errors. 2006-07-11 Simon Josefsson * doc/Makefile.am: Fix last commit. 2006-07-11 Simon Josefsson * doc/Makefile.am: Dist arch/ images. 2006-07-11 Simon Josefsson * doc/Makefile.am: Need -I's for arch/ images. 2006-07-11 Simon Josefsson * configure.in: Improve valgrind test. 2006-07-11 Simon Josefsson * gl/Makefile.am, gl/m4/absolute-header.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/onceonly_2_57.m4, gl/m4/stdint.m4: Update. 2006-07-10 Simon Josefsson * THANKS: Fix. 2006-07-10 Simon Josefsson * THANKS: Add. 2006-07-10 Simon Josefsson * src/cli.c: Fix load of pgp_keyfile, reported by Mario Lenz. 2006-07-10 Simon Josefsson * gl/.cvsignore: [no log message] 2006-07-07 Simon Josefsson * gl/Makefile.am, gl/getaddrinfo.c, gl/getaddrinfo.h, gl/m4/absolute-header.m4, gl/m4/full-header-path.m4, gl/m4/getpass.m4, gl/m4/gnulib-comp.m4, gl/m4/longlong.m4, gl/m4/onceonly_2_57.m4, gl/m4/sockpfaf.m4, gl/m4/stdint.m4, gl/m4/ulonglong.m4, gl/stdint_.h: Update. 2006-07-07 Nikos Mavrogiannopoulos * doc/bibliography.texi, doc/gnutls.texi: changed CRL rfc reference from 2511 to 4211 2006-07-06 Simon Josefsson * doc/TODO: Add. 2006-07-05 Nikos Mavrogiannopoulos * doc/TODO: [no log message] 2006-07-05 Nikos Mavrogiannopoulos * libextra/gnutls_openpgp.c: added an extra error check. 2006-07-05 Nikos Mavrogiannopoulos * src/cli.c, src/common.c, src/serv.c: replaced USE_OPENPGP ifdefs with ENABLE_OPENPGP. 2006-06-29 Simon Josefsson * doc/protocol/draft-funk-tls-inner-application-extension-03.txt: Add. 2006-06-28 Simon Josefsson * NEWS: Add. 2006-06-28 Simon Josefsson * doc/examples/.cvsignore: [no log message] 2006-06-28 Simon Josefsson * NEWS: Fix. 2006-06-28 Simon Josefsson * includes/Makefile.am: Only conditionally install gnutlsxx.h. 2006-06-28 Simon Josefsson * doc/examples/Makefile.am: Build and dist ex-client-tlsia. 2006-06-28 Simon Josefsson * doc/Makefile.am: Dist gnutls-logo.png. 2006-06-28 Simon Josefsson * gl/getaddrinfo.c, gl/m4/getaddrinfo.m4: Update. 2006-06-28 Simon Josefsson * gl/getaddrinfo.c: Update. 2006-06-28 Simon Josefsson * gl/Makefile.am, gl/getaddrinfo.c, gl/getaddrinfo.h, gl/m4/getaddrinfo.m4, gl/m4/stdint.m4, gl/stdint_.h: Update. 2006-06-28 Simon Josefsson * doc/protocol/draft-ietf-tls-srp-12.txt: Add. 2006-06-27 Simon Josefsson * doc/protocol/draft-ietf-tls-rfc4346-bis-01.txt: Add. 2006-06-27 Simon Josefsson * doc/scripts/gdoc: Use GNU-style warnings. 2006-06-27 Simon Josefsson * doc/scripts/gdoc: Improve man output, from libtasn1. 2006-06-27 Simon Josefsson * configure.in: Fix valgrind test. 2006-06-27 Simon Josefsson * configure.in: Move around, to make $cross_compile work. 2006-06-27 Simon Josefsson * configure.in, tests/Makefile.am: Add --enable-valgrind-tests that make it possible to enable/disable use of valgrind on self tests specifically. Defaults to enabled if valgrind is installed and we aren't cross-compiling. 2006-06-27 Simon Josefsson * tests/Makefile.am: Fix. 2006-06-27 Simon Josefsson * tests/Makefile.am: Revert. 2006-06-27 Simon Josefsson * libextra/minilzo/Makefile.am: Use libtool -no-install. 2006-06-27 Simon Josefsson * libextra/minilzo/Makefile.am: Use -DLZO_HAVE_CONFIG_H, as suggested by README.LZO. 2006-06-27 Simon Josefsson * libextra/minilzo/Makefile.am, tests/Makefile.am: Work under mingw. 2006-06-27 Simon Josefsson * configure.in, lib/gnutls_buffers.c: Avoid warnings when casting void* to int. 2006-06-27 Simon Josefsson * lib/minitasn1/coding.c, lib/minitasn1/libtasn1.h: Update. 2006-06-26 Simon Josefsson * gl/Makefile.am, gl/m4/stdint.m4, gl/stdint_.h: Update. 2006-06-26 Simon Josefsson * THANKS: Add. 2006-06-26 Simon Josefsson * lib/gnutls.pc.in, libextra/gnutls-extra.pc.in: Add Libs.Private to pkg-config files, from Andreas Metzler . 2006-06-22 Simon Josefsson * gl/getaddrinfo.c, gl/getaddrinfo.h, gl/m4/getaddrinfo.m4, gl/socket_.h: Try new win32 hooks for getaddrinfo. 2006-06-22 Simon Josefsson * configure.in: Use AC_LIBTOOL_WIN32_DLL to make OBJDUMP/DLLTOOL work under mingw. Fix use of deprecated AM_PROG_LIBTOOL. 2006-06-21 Nikos Mavrogiannopoulos * doc/TODO: [no log message] 2006-06-21 Simon Josefsson * gl/inet_pton.c: Update. 2006-06-21 Simon Josefsson * gl/alloca_.h, gl/getaddrinfo.c, gl/inet_ntop.c, gl/m4/getaddrinfo.m4, gl/m4/sockpfaf.m4, gl/m4/stdint.m4, gl/read-file.c, gl/socket_.h, gl/stdint_.h: Update. 2006-06-21 Simon Josefsson * doc/examples/Makefile.am: Add -no-install. 2006-06-21 Simon Josefsson * doc/reference/Makefile.am: Look for gnutls.h in builddir. 2006-06-19 Simon Josefsson * libextra/Makefile.am: Need -I$builddir/gl for alloca.h when srcdir != objdir. 2006-06-19 Simon Josefsson * libextra/openpgp/Makefile.am: Need -I$builddir/gl for alloca.h when srcdir != objdir. 2006-06-19 Simon Josefsson * lib/x509/Makefile.am: Need -I$builddir/gl for alloca.h when srcdir != objdir. 2006-06-19 Simon Josefsson * src/Makefile.am: Need -I$builddir/gl for alloca.h when srcdir != objdir. 2006-06-19 Simon Josefsson * lib/Makefile.am: Need -I$builddir/gl for alloca.h when srcdir != objdir. 2006-06-17 Simon Josefsson * gl/Makefile.am: Update. 2006-06-17 Simon Josefsson * gl/Makefile.am, gl/arpa_inet_.h, gl/inet_ntop.c, gl/inet_ntop.h, gl/inet_pton.c, gl/inet_pton.h, gl/m4/arpa_inet_h.m4, gl/m4/full-header-path.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/inet_ntop.m4, gl/m4/inet_pton.m4, gl/m4/size_max.m4, gl/m4/stdint.m4, gl/read-file.c, gl/size_max.h, gl/stdint_.h: Update. 2006-06-17 Simon Josefsson * gl/.cvsignore: [no log message] 2006-06-17 Simon Josefsson * doc/protocol/draft-badra-hajjeh-mtls-01.txt: Add 2006-06-16 Simon Josefsson * doc/protocol/draft-ietf-tls-ctr-01.txt: Add. 2006-06-16 Nikos Mavrogiannopoulos * NEWS: [no log message] 2006-06-16 Nikos Mavrogiannopoulos * lib/auth_cert.c: fixed bug 2006-06-16 Simon Josefsson * tests/Makefile.am: Disable tests that use fork if the host doesn't have fork. 2006-06-16 Simon Josefsson * configure.in: Test for fork. 2006-06-16 Simon Josefsson * configure.in: Typo. 2006-06-16 Simon Josefsson * configure.in: Typo. 2006-06-16 Simon Josefsson * configure.in: Fix LDFLAGS. 2006-06-16 Simon Josefsson * configure.in: Use LDFLAGS for --enable-runtime-pseudo-reloc, to avoid warnings. 2006-06-16 Simon Josefsson * tests/anonself.c, tests/dhepskself.c, tests/pskself.c, tests/resume.c, tests/tlsia.c: Need config.h. 2006-06-16 Simon Josefsson * configure.in: Workaround hard-wiring of gcrypt test in gnulib. 2006-06-16 Simon Josefsson * NEWS: Fix. 2006-06-16 Simon Josefsson * includes/gnutls/extra.h: Fix prototype. 2006-06-16 Simon Josefsson * NEWS: Add. 2006-06-16 Simon Josefsson * lib/strfile.h: Remove. 2006-06-16 Simon Josefsson * configure.in, lib/Makefile.am, lib/gnutls_x509.c, libextra/gnutls_openpgp.c: Use read_binary_file from gnulib instead of strfile stuff, to fix problem with binary files on mingw. 2006-06-16 Simon Josefsson * tests/set_pkcs12_cred.c: Use utils stuff. 2006-06-16 Simon Josefsson * lib/gnutls_global.c: Initialize winsock, for mingw. 2006-06-16 Simon Josefsson * configure.in: Add HAVE_WINSOCK. 2006-06-16 Simon Josefsson * doc/examples/ex-alert.c, doc/examples/ex-cert-select.c, doc/examples/ex-client-resume.c, doc/examples/ex-client-srp.c, doc/examples/ex-client-tlsia.c, doc/examples/ex-client1.c, doc/examples/ex-client2.c, doc/examples/ex-crq.c, doc/examples/ex-pkcs12.c, doc/examples/ex-rfc2818.c, doc/examples/ex-serv-anon.c, doc/examples/ex-serv-export.c, doc/examples/ex-serv-pgp.c, doc/examples/ex-serv-srp.c, doc/examples/ex-serv1.c, doc/examples/ex-session-info.c, doc/examples/ex-verify.c, doc/examples/ex-x509-info.c, doc/examples/tcp.c: Include config.h, don't include netinet/in.h (for mingw). 2006-06-16 Simon Josefsson * configure.in: Need to use AC_LINK_IFELSE, for -Wl,--enable-runtime-pseudo-reloc. 2006-06-16 Simon Josefsson * configure.in: Simplify. 2006-06-16 Simon Josefsson * configure.in: Fix typo. 2006-06-16 Simon Josefsson * configure.in: Set -mms-bitfields -Wl,--enable-runtime-pseudo-reloc if supported. The former is to produce MSVS-compatible DLLs. The second is needed to link libgnutls-extra at all (only due to _gnutls_compression_algorithms, fix it another way?). 2006-06-16 Simon Josefsson * gl/Makefile.am: Update. 2006-06-16 Simon Josefsson * gl/arpa_inet_.h, gl/inet_pton.c: Update. 2006-06-16 Simon Josefsson * configure.in: Typo. 2006-06-16 Simon Josefsson * configure.in: Add all the LZO tests. 2006-06-15 Simon Josefsson * po/sv.po: Sync with TP. 2006-06-15 Simon Josefsson * configure.in: AC_PROG_CXX must be invoked unconditionally, for libtool. (argh!) 2006-06-15 Simon Josefsson * lib/Makefile.am: Fix last commit. 2006-06-15 Simon Josefsson * lib/Makefile.am: Make C++ stuff conditioned on ENABLE_CXX. 2006-06-15 Simon Josefsson * configure.in: Add --disable-cxx, to make it possibly to disable the C++ stuff. Will also automatically disable it if there is no C++ compiler. 2006-06-15 Simon Josefsson * doc/examples/Makefile.am: Use gnulib, for portability. 2006-06-15 Simon Josefsson * src/common.h: Don't include inet_ntop.h, use arpa/inet.h unconditonially. 2006-06-15 Simon Josefsson * gl/m4/arpa_inet_h.m4: Update. 2006-06-15 Simon Josefsson * gl/Makefile.am, gl/arpa_inet_.h, gl/inet_ntop.c, gl/inet_ntop.h, gl/inet_pton.c, gl/m4/arpa_inet_h.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/inet_ntop.m4: Try new arpa-inet module, for mingw. 2006-06-14 Simon Josefsson * configure.in: Remove mingw32 hook to get -lwsock32, the getaddrinfo gnulib module links with -lws2_32 which is the more appropriate library to use (winsock.h goes with wsock32.lib and winsock2.h goes with ws2_32, of which the latter is backwards compatible and available since Windows 3.11 or so, I'm told). 2006-06-14 Simon Josefsson * tests/certder.c: fix 2006-06-12 Simon Josefsson * gl/Makefile.am, gl/gc-gnulib.c, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/read-file.m4, gl/read-file.c, gl/read-file.h: Update. 2006-06-10 Simon Josefsson * configure.in: Bump so version. 2006-06-08 Simon Josefsson * doc/reference/Makefile.am: Add gnutlsxx.h. 2006-06-07 Simon Josefsson * gl/getpass.c, gl/m4/stdbool.m4, gl/printf-args.c, gl/sha1.c, gl/stdint_.h: Update. 2006-06-07 Simon Josefsson * doc/protocol/draft-ietf-tls-openpgp-keys-10.txt: Add. 2006-06-01 Nikos Mavrogiannopoulos * NEWS, configure.in, includes/Makefile.am, includes/gnutls/gnutlsxx.h, lib/Makefile.am, lib/gnutls_db.c, lib/gnutlsxx.cpp: Added a preliminary C++ interface. 2006-06-01 Simon Josefsson * doc/protocol/draft-housley-tls-authz-extns-06.txt: Add. 2006-05-23 Simon Josefsson * doc/protocol/draft-housley-tls-authz-extns-05.txt: Add. 2006-05-23 Simon Josefsson * po/LINGUAS, po/sv.po: Sync with TP. 2006-05-22 Simon Josefsson * doc/manpages/certtool.1: Typo, from debian #368323. 2006-05-18 Simon Josefsson * doc/protocol/draft-ietf-tls-srp-11.txt: Add. 2006-05-17 Simon Josefsson * doc/protocol/rfc4507.txt: Add. 2006-05-17 Simon Josefsson * NEWS, configure.in: Bump versions. 2006-05-15 Simon Josefsson * ChangeLog: [no log message] 2006-05-15 Simon Josefsson * NEWS: Version 1.4.0. 2006-05-15 Simon Josefsson * doc/protocol/draft-ietf-tls-openpgp-keys-09.txt: Add. 2006-05-15 Simon Josefsson * src/certtool-cfg.c: Remove duplicated #include. 2006-05-12 Simon Josefsson * src/serv.c, src/tls_test.c: Don't use AI_NUMERICSERV, it doesn't exist on most platforms. 2006-05-12 Simon Josefsson * NEWS: Add. 2006-05-12 Simon Josefsson * src/serv.c: Need getaddrinfo.h. 2006-05-12 Simon Josefsson * gl/Makefile.am, gl/gai_strerror.c, gl/getaddrinfo.c, gl/getaddrinfo.h, gl/m4/getaddrinfo.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/strdup.m4, gl/strdup.c, gl/strdup.h: Add getaddrinfo. 2006-05-11 Simon Josefsson * buildconf: Remove. 2006-05-11 Simon Josefsson * tests/Makefile.am: No supression file. 2006-05-11 Simon Josefsson * libextra/gnutls_ia.c: Remove junk. 2006-05-11 Simon Josefsson * lib/ext_inner_application.c: Fix self tests. 2006-05-11 Simon Josefsson * libextra/gnutls_ia.c: Indent. 2006-05-11 Simon Josefsson * doc/manpages/Makefile.am: Update. 2006-05-11 Simon Josefsson * tests/Makefile.am: Improve valgrind stuff. 2006-05-11 Simon Josefsson * .cvsignore: [no log message] 2006-05-11 Simon Josefsson * config.rpath: Not needed, generated by autopoint. 2006-05-11 Simon Josefsson * config.rpath, gl/Makefile.am, gl/des.c, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/md4.c, gl/sha1.c, gl/stdint_.h: Update. 2006-05-11 Nikos Mavrogiannopoulos * lib/auth_cert.c: updated to reflect the new openpgp draft. 2006-05-11 Simon Josefsson * configure.in: Check for -Wno-pointer-sign, taken from Werner's ksba. 2006-05-10 Simon Josefsson * NEWS, doc/protocol/draft-santesson-tls-ume-07.txt: Add. 2006-05-10 Simon Josefsson * configure.in: Bump required libtasn1. 2006-05-10 Simon Josefsson * lib/minitasn1/coding.c, lib/minitasn1/decoding.c, lib/minitasn1/element.c, lib/minitasn1/errors.c, lib/minitasn1/gstr.c, lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, lib/minitasn1/parser_aux.h, lib/minitasn1/structure.c: Update to 0.3.4. 2006-05-07 Simon Josefsson * configure.in: Bump required libtasn1 version to 0.3.3. 2006-05-07 Simon Josefsson * tests/Makefile.am: Fix. 2006-05-07 Simon Josefsson * NEWS: Add. 2006-05-07 Simon Josefsson * tests/Makefile.am: Run tests under valgrind. 2006-05-07 Nikos Mavrogiannopoulos * src/cli.c, src/serv.c, src/tls_test.c: some changes for IPv6. Based on patch by Remi Denis-Courmont, sent to Debian bug tracking system. 2006-05-05 Simon Josefsson * doc/protocol/draft-housley-tls-authz-extns-04.txt: Add. 2006-05-05 Nikos Mavrogiannopoulos * lib/minitasn1/structure.c: updated to the latest libtasn1 2006-05-05 Simon Josefsson * NEWS: Add. 2006-05-05 Simon Josefsson * includes/gnutls/extra.h, includes/gnutls/gnutls.h.in, lib/ext_inner_application.c, lib/gnutls_int.h, libextra/gnutls_ia.c: TLS/IA fixes from Emile. 2006-04-27 Simon Josefsson * doc/protocol/rfc4366.txt: Add. 2006-04-27 Simon Josefsson * doc/protocol/rfc4346.txt, doc/protocol/rfc4347.txt: Add. 2006-04-26 Simon Josefsson * lib/gnutls_state.c: Fix prototypes. 2006-04-26 Simon Josefsson * gl/Makefile.am, gl/m4/getpass.m4, gl/m4/longdouble.m4: Update. 2006-04-21 Simon Josefsson * doc/protocol/draft-santesson-tls-supp-02.txt, doc/protocol/draft-santesson-tls-ume-06.txt: Add. 2006-04-19 Simon Josefsson * tests/Makefile.am: (LDADD): Add libgnutls after libgnu, for libgcrypt transitive reference, tiny patch from Nix . 2006-04-19 Simon Josefsson * doc/protocol/draft-santesson-tls-supp-01.txt: Add. 2006-04-17 Simon Josefsson * doc/protocol/draft-housley-tls-authz-extns-03.txt, doc/protocol/draft-santesson-tls-ume-05.txt: Add. 2006-04-11 Nikos Mavrogiannopoulos * lib/gnutls_priority.c: removed AES-256 from the list of default ciphers. No point in having it (when everything else is far away even from 128 bit security) 2006-04-07 Nikos Mavrogiannopoulos * includes/gnutls/gnutls.h.in, lib/gnutls_srp.c: gnutls_srp_set_client_credentials() uses const 2006-04-07 Nikos Mavrogiannopoulos * lib/gnutls_priority.c: documented the return value in the priority functions 2006-04-05 Nikos Mavrogiannopoulos * includes/gnutls/gnutls.h.in, lib/gnutls_handshake.c: [no log message] 2006-04-04 Simon Josefsson * gl/m4/gc-random.m4, gl/stdint_.h: Update. 2006-04-03 Nikos Mavrogiannopoulos * lib/x509/common.c, lib/x509/common.h, lib/x509/crl.c, lib/x509/crq.c, lib/x509/dn.c, lib/x509/extensions.c, lib/x509/pkcs12.c, lib/x509/pkcs7.c, lib/x509/x509.c: use snprintf() instead of multiple calls to str_cpy() and str_cat(). 2006-03-31 Nikos Mavrogiannopoulos * lib/x509/x509.c: bug fix 2006-03-30 Simon Josefsson * doc/protocol/draft-santesson-tls-supp-00.txt, doc/protocol/draft-santesson-tls-ume-04.txt: Add. 2006-03-26 Nikos Mavrogiannopoulos * doc/TODO: [no log message] 2006-03-26 Nikos Mavrogiannopoulos * configure.in: added -Wno-pointer-sign to gcc to avoid tons of useless warnings. 2006-03-24 Simon Josefsson * doc/protocol/draft-housley-tls-authz-extns-01.txt: Add. 2006-03-21 Simon Josefsson * configure.in: Bump version. 2006-03-21 Simon Josefsson * NEWS: Add. 2006-03-19 Nikos Mavrogiannopoulos * doc/bibliography.texi, doc/gnutls.texi: added reference for TLS 1.1 2006-03-18 Nikos Mavrogiannopoulos * lib/gnutls_cert.c, lib/gnutls_global.h, lib/gnutls_x509.c, lib/x509/rfc2818_hostname.c: some fixes for compilation 2006-03-18 Nikos Mavrogiannopoulos * src/certtool.c: export to DER format is possible with certtool 2006-03-15 Simon Josefsson * configure.in: Bump versions. 2006-03-15 Simon Josefsson * NEWS: Add. 2006-03-15 Simon Josefsson * lib/gnutls_cert.c: Indent. 2006-03-15 Simon Josefsson * lib/x509/Makefile.am, lib/x509/compat.c, lib/x509/compat.h: Move to ../gnutls_cert.c. 2006-03-15 Simon Josefsson * lib/gnutls_cert.c: Move from x509/compat.c. 2006-03-12 Simon Josefsson * doc/README.CVS: Add. 2006-03-12 Simon Josefsson * doc/manpages/Makefile.am: Update. 2006-03-12 Simon Josefsson * lib/minitasn1/structure.c: Update. 2006-03-11 Nikos Mavrogiannopoulos * lib/gnutls_global.c: force the gcrypt random generator to be initialized at startup. Maybe it should be within and ifdef? This saves lots of debugging time when something fails. 2006-03-11 Nikos Mavrogiannopoulos * lib/minitasn1/coding.c, lib/minitasn1/libtasn1.h, lib/minitasn1/structure.c: added the fix for der_coding() from libtasn1. 2006-03-09 Simon Josefsson * doc/manpages/Makefile.am: Rebuild srp manpages too. 2006-03-08 Simon Josefsson * ChangeLog: [no log message] 2006-03-08 Simon Josefsson * NEWS: Version 1.3.5. 2006-03-08 Simon Josefsson * NEWS: Add. 2006-03-08 Simon Josefsson * NEWS: Add. 2006-03-08 Simon Josefsson * NEWS: Add. 2006-03-08 Simon Josefsson * lib/minitasn1/coding.c, lib/minitasn1/libtasn1.h: Update. 2006-03-08 Simon Josefsson * po/LINGUAS, po/pl.po: Sync with TP. 2006-03-08 Simon Josefsson * Makefile.am: Add update-po target. 2006-03-08 Simon Josefsson * doc/manpages/Makefile.am: Update. 2006-03-08 Simon Josefsson * lib/x509/xml.c: Doc fix. 2006-03-08 Simon Josefsson * NEWS: Fix. 2006-03-08 Simon Josefsson * lib/x509/common.c, lib/x509/sign.c, lib/x509/x509_write.c: Use new asn1_copy_node API. 2006-03-08 Simon Josefsson * lib/minitasn1/libtasn1.h, lib/minitasn1/structure.c: Update. 2006-03-08 Simon Josefsson * lib/minitasn1/coding.c, lib/minitasn1/decoding.c, lib/minitasn1/element.c, lib/minitasn1/int.h, lib/minitasn1/libtasn1-dont.h, lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, lib/minitasn1/parser_aux.h, lib/minitasn1/structure.c: Update. 2006-03-08 Simon Josefsson * lib/x509/xml.c: Use internal error approach again, after discussion with Nikos. 2006-03-08 Simon Josefsson * lib/x509/xml.c: Fix. 2006-03-08 Simon Josefsson * lib/minitasn1/coding.c, lib/minitasn1/int.h, lib/minitasn1/libtasn1-dont.h, lib/minitasn1/libtasn1.h: Update. 2006-03-08 Simon Josefsson * lib/x509/xml.c: Fix type_field. 2006-03-08 Simon Josefsson * lib/x509/xml.c: Use external API. 2006-03-08 Simon Josefsson * lib/minitasn1/coding.c, lib/minitasn1/decoding.c, lib/minitasn1/element.c, lib/minitasn1/int.h, lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, lib/minitasn1/parser_aux.h, lib/minitasn1/structure.c: Update. 2006-03-08 Simon Josefsson * lib/x509/xml.c: Fix. 2006-03-08 Simon Josefsson * lib/x509/common.c: Use external libtasn1 API. 2006-03-08 Simon Josefsson * lib/x509/xml.c: Fix typo. 2006-03-08 Simon Josefsson * configure.in: Required libtasn1 0.3.1. 2006-03-08 Simon Josefsson * lib/x509/xml.c: Revert, we now use the new exported functions. 2006-03-08 Simon Josefsson * lib/x509/xml.c: Make it build. 2006-03-08 Simon Josefsson * NEWS: Sort. 2006-03-08 Simon Josefsson * NEWS: Add. 2006-03-08 Simon Josefsson * lib/x509/xml.c: Disable XML functionality, because it relies on libtasn1 internals. 2006-03-08 Simon Josefsson * NEWS: Add. 2006-03-08 Simon Josefsson * lib/Makefile.am, libextra/Makefile.am: Add -no-undefined, for mingw32 builds. 2006-03-08 Simon Josefsson * lib/x509/crq.c, lib/x509/xml.c, src/cli.c, src/common.c, src/common.h, src/serv.c, tests/resume.c: Indent. 2006-03-08 Simon Josefsson * gl/Makefile.am, gl/gc-gnulib.c, gl/gc-libgcrypt.c, gl/m4/gc-random.m4, gl/m4/gc.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/readline.m4, maint.mk: Update. 2006-03-08 Simon Josefsson * po/LINGUAS: Add. 2006-03-08 Simon Josefsson * doc/protocol/draft-funk-tls-inner-application-extension-02.txt: Add. 2006-03-05 Nikos Mavrogiannopoulos * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, src/common.c, src/common.h: gnutls-cli can now recognize services and port numbers with the -p option. 2006-03-03 Simon Josefsson * .cvscopying: Fix. 2006-03-03 Simon Josefsson * lib/Makefile.am: Gettext fixes. 2006-03-03 Simon Josefsson * lib/gnutls_errors.c: Fix. 2006-03-03 Simon Josefsson * lib/gnutls_errors.c, lib/gnutls_global.c: Error message translations. 2006-03-03 Simon Josefsson * .cvsignore, m4/.cvsignore, po/.cvsignore: [no log message] 2006-03-03 Simon Josefsson * maint.mk: Update. 2006-03-03 Simon Josefsson * maint-cfg.mk: Add indent file list. 2006-03-03 Simon Josefsson * Makefile.am: Remove indent target. 2006-03-03 Simon Josefsson * configure.in: Revert, autoreconf needs it. 2006-03-03 Simon Josefsson * configure.in: Remove gettext version stuff. 2006-03-03 Simon Josefsson * gl/Makefile.am, gl/gettext.h, gl/m4/codeset.m4, gl/m4/gettext.m4, gl/m4/glibc2.m4, gl/m4/glibc21.m4, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, gl/m4/iconv.m4, gl/m4/intdiv0.m4, gl/m4/intmax.m4, gl/m4/inttypes-pri.m4, gl/m4/isc-posix.m4, gl/m4/lcmessage.m4, gl/m4/nls.m4, gl/m4/po.m4, gl/m4/printf-posix.m4, gl/m4/progtest.m4, gl/m4/readline.m4, gl/m4/uintmax_t.m4, gl/m4/ulonglong.m4, maint.mk: Update. 2006-03-03 Simon Josefsson * NEWS: Add. 2006-03-03 Simon Josefsson * Makefile.am, configure.in, po/Makevars, po/POTFILES.in: Gettextize. 2006-03-01 Simon Josefsson * gtk-doc.make: Add. 2006-03-01 Simon Josefsson * gl/m4/readline.m4, gl/m4/socklen.m4, gl/m4/sys_socket_h.m4, gl/readline.c, maint.mk: Update. 2006-03-01 Simon Josefsson * buildconf, maint-cfg.mk: Don't gtkdocize. 2006-02-28 Simon Josefsson * lib/minitasn1/Makefile.am, lib/minitasn1/coding.c, lib/minitasn1/decoding.c, lib/minitasn1/der.h, lib/minitasn1/element.c, lib/minitasn1/errors.h, lib/minitasn1/errors_int.h, lib/minitasn1/gstr.c, lib/minitasn1/gstr.h, lib/minitasn1/int.h, lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, lib/minitasn1/structure.c, lib/minitasn1/structure.h: Update. 2006-02-27 Simon Josefsson * lib/gnutls_record.c: gnutls_record_send: Doc fix, suggested by Eric Leblond . 2006-02-17 Simon Josefsson * lib/x509/sign.c: Fix warning. 2006-02-17 Simon Josefsson * includes/gnutls/gnutls.h.in: Make it explicit that GNUTLS_DIG_* has the same values as GNUTLS_MAC_*. 2006-02-16 Simon Josefsson * doc/protocol/draft-santesson-tls-ume-02.txt: Add. 2006-02-14 Simon Josefsson * maint-cfg.mk: Fix. 2006-02-14 Simon Josefsson * maint-cfg.mk: Fix. 2006-02-14 Simon Josefsson * maint-cfg.mk: Fix. 2006-02-14 Simon Josefsson * maint-cfg.mk: Fix. 2006-02-14 Simon Josefsson * maint-cfg.mk: Add mingw32 target. 2006-02-14 Simon Josefsson * GNUmakefile, gl/Makefile.am, gl/m4/gnulib-cache.m4, gl/m4/gnulib-comp.m4, maint-cfg.mk, maint.mk: Add maintainer-makefile module. 2006-02-11 Simon Josefsson * lib/x509/xml.c: Use external libtasn1 API. 2006-02-11 Simon Josefsson * lib/minitasn1/coding.c, lib/minitasn1/decoding.c, lib/minitasn1/der.h, lib/minitasn1/element.c, lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, lib/minitasn1/structure.c: Sync with libtasn1 CVS. 2006-02-11 Simon Josefsson * configure.in: Bump libtasn1 version. 2006-02-10 Simon Josefsson * NEWS, configure.in: Bump versions. 2006-02-09 Simon Josefsson * NEWS: Fix typo. 2006-02-09 Simon Josefsson * ChangeLog: [no log message] 2006-02-09 Simon Josefsson * NEWS: Version 1.3.4. 2006-02-09 Simon Josefsson * NEWS: Add. 2006-02-09 Simon Josefsson * NEWS, THANKS: Add. 2006-02-09 Simon Josefsson * lib/minitasn1/coding.c, lib/minitasn1/decoding.c, lib/minitasn1/element.c, lib/minitasn1/errors.c, lib/minitasn1/errors.h, lib/minitasn1/errors_int.h, lib/minitasn1/gstr.c, lib/minitasn1/int.h, lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, lib/minitasn1/structure.c: Update from libtasn1. 2006-02-09 Simon Josefsson * THANKS: Add. 2006-02-09 Simon Josefsson * doc/protocol/draft-housley-tls-authz-extns-00.txt: Add. 2006-02-08 Simon Josefsson * lib/minitasn1/decoding.c: Fix typo in last commit. 2006-02-08 Simon Josefsson * tests/set_pkcs12_cred.c: Simplify using under gdb. 2006-02-08 Simon Josefsson * lib/minitasn1/decoding.c: Fix for latest certder bug. 2006-02-08 Simon Josefsson * tests/certder.c: Add more bug trigger. 2006-02-08 Simon Josefsson * tests/certder.c: Add. 2006-02-08 Simon Josefsson * lib/minitasn1/decoding.c: More asn1 length out of bounds checking. 2006-02-08 Simon Josefsson * lib/minitasn1/decoding.c: Fix asn1_get_length_der usage. 2006-02-08 Simon Josefsson * lib/minitasn1/coding.c: Fix asn1_get_length_der usage. 2006-02-08 Simon Josefsson * lib/minitasn1/element.c: Fix copyright. 2006-02-08 Simon Josefsson * lib/minitasn1/element.c, lib/minitasn1/structure.c: Fix asn1_get_length_der usage. 2006-02-08 Simon Josefsson * lib/minitasn1/decoding.c: Revert. 2006-02-08 Simon Josefsson * tests/.cvsignore: [no log message] 2006-02-08 Simon Josefsson * lib/minitasn1/decoding.c: Fix for cert selftest. 2006-02-08 Simon Josefsson * tests/Makefile.am: Add certder test. 2006-02-08 Simon Josefsson * tests/certder.c: Add. 2006-02-08 Simon Josefsson * NEWS: Add. 2006-02-08 Simon Josefsson * NEWS: Add. 2006-02-08 Simon Josefsson * lib/minitasn1/libtasn1.h: Bump version. 2006-02-08 Simon Josefsson * configure.in: Need libtasn1 0.2.18. 2006-02-08 Simon Josefsson * lib/minitasn1/coding.c, lib/minitasn1/decoding.c, lib/minitasn1/der.h, lib/minitasn1/element.c, lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, lib/minitasn1/structure.c: Add libtasn1 fixes from Nikos, prompted by report from "Evgeny Legerov" . 2006-02-06 Nikos Mavrogiannopoulos * lib/x509/xml.c: some fixes for the new libtasn1 2006-02-05 Nikos Mavrogiannopoulos * lib/x509/mpi.c: [no log message] 2006-02-05 Nikos Mavrogiannopoulos * lib/x509/mpi.c: corrected wrong order of free. 2006-02-02 Simon Josefsson * libextra/opencdk/main.h, libextra/opencdk/packet.h: Fix prototypes for AIX compiler, reported by "Heiden, John" . 2006-02-01 Nikos Mavrogiannopoulos * NEWS: [no log message] 2006-02-01 Nikos Mavrogiannopoulos * lib/gnutls_x509.c: Corrected bugs in gnutls_certificate_set_x509_crl() and gnutls_certificate_set_x509_trust(), that caused memory corruption if more than one certificates were added. Report and patch by Max Kellermann . 2006-01-29 Nikos Mavrogiannopoulos * NEWS: [no log message] 2006-01-29 Nikos Mavrogiannopoulos * lib/gnutls_record.c: added some text about premature termination of sessions. 2006-01-29 Nikos Mavrogiannopoulos * lib/gnutls_record.c: fixed bug in non-blocking gnutls_bye(). gnutls_send will no longer invalidate session if the underlying send fails, but it will set may_not_write to true. That is to allow reading the already received data. Patches and bug reports by Yoann Vandoorselaere 2006-01-27 Simon Josefsson * gl/.cvsignore: [no log message] 2006-01-27 Simon Josefsson * gl/inet_ntop.h, gl/m4/gnulib-tool.m4, gl/m4/socklen.m4, gl/m4/stdbool.m4, gl/socket_.h, gl/stdbool_.h, gl/vasnprintf.c: Update. 2006-01-27 Simon Josefsson * src/common.h: Mingw32 fixes. 2006-01-27 Simon Josefsson * doc/protocol/draft-salowey-tls-ticket-07.txt: Add. 2006-01-20 Simon Josefsson * doc/protocol/draft-santesson-tls-ume-01.txt: Add. 2006-01-20 Nikos Mavrogiannopoulos * src/tests.c, src/tests.h, src/tls_test.c: removed the RIPEMD test since it is not supported any more. 2006-01-20 Nikos Mavrogiannopoulos * doc/gnutls.texi: minor updates. 2006-01-19 Simon Josefsson * gl/Makefile.am, gl/m4/gnulib-comp.m4, gl/m4/sys_socket_h.m4, gl/md5.c, gl/md5.h, gl/sha1.c, gl/sha1.h, gl/socket_.h: Update. 2006-01-18 Simon Josefsson * doc/TODO: Add. 2006-01-18 Simon Josefsson * doc/protocol/draft-ietf-tls-openpgp-keys-08.txt: Add. 2006-01-12 Simon Josefsson * NEWS, configure.in: Bump versions. 2006-01-12 Simon Josefsson * Makefile.am: Fix igloo scp. 2006-01-12 Simon Josefsson * Makefile.am: Re-add igloo. 2006-01-12 Simon Josefsson * ChangeLog: [no log message] 2006-01-12 Simon Josefsson * NEWS: Version 1.3.3. 2006-01-12 Simon Josefsson * .cvscopying: Fix copyright years. 2006-01-12 Simon Josefsson * doc/manpages/Makefile.am: Update. 2006-01-11 Simon Josefsson * gl/Makefile.am, gl/dummy.c, gl/m4/gnulib-comp.m4, gl/m4/readline.m4, gl/sha1.c, gl/stdint_.h: Update. 2006-01-09 Simon Josefsson * gl/m4/gnulib-comp.m4, gl/m4/gnulib-tool.m4, gl/m4/socklen.m4, gl/m4/stdint.m4, gl/stdint_.h: Update. 2006-01-09 Simon Josefsson * doc/protocol/draft-santesson-tls-ume-00.txt: Add. 2006-01-07 Nikos Mavrogiannopoulos * doc/bibliography.texi: [no log message] 2005-12-31 Simon Josefsson * includes/gnutls/extra.h: C++ fix. 2005-12-31 Simon Josefsson * libextra/gnutls_ia.c: Doc fix. 2005-12-28 Simon Josefsson * doc/protocol/draft-ietf-tls-openpgp-keys-07.txt: Add. 2005-12-28 Simon Josefsson * NEWS, includes/gnutls/x509.h, lib/gnutls_errors.c, lib/gnutls_global.h, lib/minitasn1/coding.c, lib/minitasn1/errors.c, lib/x509/crq.c: Constify, tiny patch from "ZIGLIO, Frediano, VF-IT" . 2005-12-26 Simon Josefsson * NEWS: Add. 2005-12-26 Simon Josefsson * lib/gnutls_global.c: Doc fix. 2005-12-26 Simon Josefsson * includes/gnutls/extra.h, libextra/gnutls_ia.c: Fix TLS/IA prototypes, suggested by Jouni Malinen . 2005-12-23 Simon Josefsson * NEWS: Add. 2005-12-23 Simon Josefsson * lib/gnutls_global.c: Use _gnutls_init as increment/decrement counter for init/deinit, suggested by ZIGLIO, Frediano. 2005-12-18 Simon Josefsson * includes/gnutls/gnutls.h.in: Cosmetic changes. 2005-12-18 Simon Josefsson * includes/gnutls/gnutls.h.in: Cosmetic changes. 2005-12-18 Simon Josefsson * tests/resume.c: Fix mem leak. 2005-12-17 Simon Josefsson * NEWS: Add. 2005-12-17 Nikos Mavrogiannopoulos * doc/manpages/Makefile.am, includes/gnutls/gnutls.h.in, lib/gnutls_compress_int.c, lib/gnutls_constate.c: fixed a memory copy that caused crashes. 2005-12-17 Simon Josefsson * tests/resume.c: More debug info. 2005-12-17 Simon Josefsson * tests/.cvsignore: [no log message] 2005-12-17 Simon Josefsson * NEWS: Add. 2005-12-17 Simon Josefsson * tests/Makefile.am: Add resume self test. 2005-12-17 Simon Josefsson * tests/resume.c: Add, to test resume funtions. 2005-12-17 Simon Josefsson * NEWS: Fix. 2005-12-17 Simon Josefsson * doc/protocol/draft-salowey-tls-ticket-06.txt: Add. 2005-12-16 Simon Josefsson * doc/TODO: Add. 2005-12-16 Simon Josefsson * lib/gnutls_state.c: Doc fix. 2005-12-16 Simon Josefsson * NEWS, includes/gnutls/gnutls.h.in: Add. 2005-12-16 Simon Josefsson * lib/gnutls_state.c: Add API to get master secret too. 2005-12-15 Simon Josefsson * includes/gnutls/gnutls.h.in: Fix. 2005-12-15 Simon Josefsson * includes/gnutls/gnutls.h.in: Fix indentation. 2005-12-15 Simon Josefsson * NEWS: Add. 2005-12-15 Simon Josefsson * Makefile.am, includes/gnutls/extra.h, includes/gnutls/gnutls.h.in, includes/gnutls/openpgp.h, includes/gnutls/openssl.h, includes/gnutls/pkcs12.h, includes/gnutls/x509.h, lib/auth_anon.c, lib/auth_cert.h, lib/auth_dh_common.c, lib/auth_dh_common.h, lib/auth_dhe.c, lib/auth_dhe_psk.c, lib/auth_psk.c, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/auth_srp.c, lib/auth_srp_passwd.h, lib/auth_srp_sb64.c, lib/ext_inner_application.c, lib/ext_inner_application.h, lib/ext_max_record.c, lib/gnutls_algorithms.c, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_buffers.c, lib/gnutls_cert.c, lib/gnutls_db.h, lib/gnutls_dh.c, lib/gnutls_dh.h, lib/gnutls_errors.c, lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_psk.c, lib/gnutls_record.c, lib/gnutls_session.c, lib/gnutls_session_pack.c, lib/gnutls_state.c, lib/gnutls_ui.c, lib/gnutls_x509.c, lib/x509/mpi.h, lib/x509_b64.c, libextra/gnutls_ia.c, libextra/openpgp/gnutls_openpgp.h, src/common.c, src/serv.c, tests/dhepskself.c, tests/tlsia.c: Indent more. 2005-12-15 Simon Josefsson * NEWS, configure.in: Bump versions. 2005-12-15 Simon Josefsson * Makefile.am: Remove igloo, it seem weird. 2005-12-15 Simon Josefsson * ChangeLog: [no log message] 2005-12-15 Simon Josefsson * NEWS: Version 1.3.2. 2005-12-15 Simon Josefsson * doc/manpages/Makefile.am: Update. 2005-12-15 Simon Josefsson * NEWS: Add. 2005-12-15 Simon Josefsson * lib/gnutls_state.c, lib/gnutls_state.h: Fix warnings. 2005-12-15 Simon Josefsson * lib/gnutls_int.h: Remove debug code. 2005-12-15 Simon Josefsson * THANKS: Add. 2005-12-15 Simon Josefsson * NEWS, includes/gnutls/gnutls.h.in, lib/gnutls_state.c: Add functions to access the TLS PRF and to extract client/server random fields, suggested by Jouni Malinen . 2005-12-15 Simon Josefsson * NEWS: Fix. 2005-12-15 Simon Josefsson * NEWS: Fix. 2005-12-15 Simon Josefsson * doc/reference/Makefile.am: Ignore more. 2005-12-15 Simon Josefsson * doc/.cvsignore, libextra/.cvsignore, tests/.cvsignore: [no log message] 2005-12-15 Simon Josefsson * NEWS, doc/Makefile.am, doc/examples/ex-client-tlsia.c, doc/gnutls.texi, doc/manpages/Makefile.am, includes/gnutls/extra.h, includes/gnutls/gnutls.h.in, lib/Makefile.am, lib/debug.c, lib/defines.h, lib/ext_inner_application.c, lib/ext_inner_application.h, lib/gnutls_alert.c, lib/gnutls_buffers.c, lib/gnutls_constate.c, lib/gnutls_errors.c, lib/gnutls_extensions.c, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_record.c, lib/gnutls_state.c, libextra/Makefile.am, libextra/gnutls_ia.c, tests/Makefile.am, tests/tlsia.c: Add TLS/IA support. 2005-12-15 Simon Josefsson * gl/m4/gnulib-comp.m4: Update. 2005-12-12 Simon Josefsson * doc/TODO: Add. 2005-12-10 Nikos Mavrogiannopoulos * lib/gnutls_ui.c: added missing set_params_function() 2005-12-09 Simon Josefsson * configure.in: Bump versions. 2005-12-09 Simon Josefsson * NEWS: Add. 2005-12-09 Simon Josefsson * lib/auth_cert.c, lib/auth_cert.h, lib/auth_psk_passwd.c, lib/auth_srp_passwd.c, lib/auth_srp_sb64.c, lib/defines.h, lib/ext_cert_type.c, lib/ext_server_name.c, lib/ext_srp.c, lib/gnutls_buffers.c, lib/gnutls_cert.c, lib/gnutls_dh.h, lib/gnutls_dh_primes.c, lib/gnutls_int.h, lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_state.c, lib/gnutls_state.h, lib/gnutls_ui.c, lib/gnutls_x509.c, lib/x509/common.c, lib/x509/dn.c, lib/x509/extensions.c, lib/x509/pkcs7.c, lib/x509/privkey_pkcs8.c, lib/x509_b64.c: Replace "uint" with "unsigned". Remove unused "sint". 2005-12-09 Simon Josefsson * lib/defines.h, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_num.c, lib/gnutls_num.h, lib/gnutls_session_pack.c, lib/x509/mpi.c, lib/x509/mpi.h, libextra/openpgp/extras.c, libextra/openpgp/gnutls_openpgp.h, libextra/openpgp/pgp.c: Replace uint32 with uint32_t. 2005-12-09 Simon Josefsson * lib/auth_dh_common.c, lib/auth_psk.c, lib/auth_rsa_export.c, lib/auth_srp.c, lib/defines.h, lib/ext_max_record.c, lib/ext_max_record.h, lib/ext_server_name.c, lib/gnutls_algorithms.c, lib/gnutls_cipher.c, lib/gnutls_extensions.c, lib/gnutls_extensions.h, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_num.c, lib/gnutls_num.h, lib/gnutls_record.c, lib/gnutls_v2_compat.c, lib/x509/extensions.c, lib/x509/extensions.h, lib/x509/x509.c, lib/x509/x509_write.c: Replace uint16 with uint16_t. 2005-12-09 Simon Josefsson * configure.in: Remove unused sizeof checks. 2005-12-09 Simon Josefsson * configure.in, lib/auth_cert.c, lib/auth_dh_common.c, lib/auth_rsa_export.c, lib/auth_srp.c, lib/auth_srp_passwd.h, lib/auth_srp_sb64.c, lib/defines.h, lib/ext_cert_type.c, lib/ext_max_record.c, lib/ext_server_name.c, lib/ext_srp.c, lib/gnutls_alert.c, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_datum.c, lib/gnutls_db.c, lib/gnutls_db.h, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_num.c, lib/gnutls_record.c, lib/x509/extensions.c, lib/x509/pkcs12.c, lib/x509/pkcs7.c, lib/x509/x509.c, lib/x509_b64.c, lib/x509_b64.h, libextra/gnutls_openpgp.c, libextra/openpgp/gnutls_openpgp.h, libextra/openpgp/xml.c: Replace uint8 with uint8_t. 2005-12-09 Simon Josefsson * gl/Makefile.am, gl/m4/gnulib-cache.m4: Update. 2005-12-09 Simon Josefsson * lib/defines.h: Remove unused types, to start the transition to the POSIX integer types (uint32_t, uint16_t, uint8_t). 2005-12-09 Simon Josefsson * src/Makefile.am: Remove -I../lib, these tools should only use the external API. 2005-12-09 Simon Josefsson * lib/defines.h, lib/gnutls_str.c: ULONG_MAX should be in limits.h, so include it at the right place. 2005-12-08 Simon Josefsson * lib/x509/pkcs12.c: Fix mem leaks. Remove unused variable. 2005-12-08 Simon Josefsson * lib/gnutls_x509.c: Fix mem leak. 2005-12-08 Simon Josefsson * ChangeLog: [no log message] 2005-12-08 Simon Josefsson * NEWS: Version 1.3.1. 2005-12-08 Simon Josefsson * lib/gnutls_str.c: Fix. 2005-12-08 Simon Josefsson * tests/Makefile.am: Dist pkcs8 blobs. 2005-12-08 Simon Josefsson * NEWS: Add. 2005-12-08 Simon Josefsson * NEWS: Add. 2005-12-08 Simon Josefsson * doc/manpages/Makefile.am: Update. 2005-12-08 Simon Josefsson * NEWS: Add. 2005-12-08 Simon Josefsson * doc/TODO: Fix. 2005-12-08 Simon Josefsson * tests/enc3pkcs8.pem: add 2005-12-08 Simon Josefsson * tests/enc3pkcs8.pem: Add. 2005-12-08 Simon Josefsson * tests/enc2pkcs8.pem, tests/pkcs8: Add rc2 pkcs#8 blob. 2005-12-08 Simon Josefsson * tests/encpkcs8.pem, tests/unencpkcs8.pem: Fix. 2005-12-08 Simon Josefsson * tests/Makefile.am, tests/pkcs8: Add PKCS#8 self test. 2005-12-08 Simon Josefsson * NEWS: Add. 2005-12-08 Simon Josefsson * src/certtool.c: Make --password work for PKCS#8 --key-info. 2005-12-08 Simon Josefsson * tests/encpkcs8.pem, tests/unencpkcs8.pem: Add, PKSC#8 blobs. 2005-12-08 Simon Josefsson * doc/TODO: Remove. 2005-12-08 Simon Josefsson * NEWS: Add. 2005-12-08 Simon Josefsson * lib/x509/privkey_pkcs8.c: (gnutls_x509_privkey_import_pkcs8): Handle unencrypted PEM keys. Remove unused "encrypted" variable. 2005-12-08 Simon Josefsson * NEWS, src/certtool.c: Generate unencrypted PKCS#8 keys for blank passwords. 2005-12-08 Simon Josefsson * NEWS: Fix. 2005-12-08 Simon Josefsson * tests/.cvsignore: [no log message] 2005-12-08 Simon Josefsson * NEWS, doc/TODO, includes/gnutls/gnutls.h.in, lib/gnutls_x509.c, tests/Makefile.am, tests/set_pkcs12_cred.c: Support reading X.509 credentials from PKCS#12 files. 2005-12-08 Simon Josefsson * src/certtool.c: Print PKCS#12 type for each element. 2005-12-06 Simon Josefsson * doc/protocol/rfc4279.txt: Add. 2005-12-02 Nikos Mavrogiannopoulos * lib/gnutls_session_pack.c: Corrected bugs in session resumption. Bugs reported by Yoann Vandoorselare. 2005-12-02 Simon Josefsson * Makefile.am: Put 1.3.x releases in devel/ directory. 2005-12-02 Simon Josefsson * doc/TODO: add 2005-12-02 Simon Josefsson * doc/TODO: Add. 2005-12-02 Simon Josefsson * doc/TODO: Fix. 2005-12-02 Simon Josefsson * doc/TODO: Add. 2005-12-02 Simon Josefsson * doc/TODO: Add. 2005-12-02 Simon Josefsson * doc/TODO: Add. 2005-12-02 Simon Josefsson * doc/TODO: Add. 2005-12-02 Simon Josefsson * doc/README.CODING_STYLE: Mention indentation. 2005-12-02 Simon Josefsson * doc/TODO: Add. 2005-12-01 Simon Josefsson * gl/m4/socklen.m4, gl/readline.c, gl/stdint_.h: Update. 2005-12-01 Simon Josefsson * src/cli.c: Don't infloop. 2005-12-01 Simon Josefsson * NEWS: Add. 2005-12-01 Simon Josefsson * src/cli.c: Check starttls_alarmed earlier, the signal might be sent before select is called. Report by Otto Maddox and influenced by tiny patch from Nozomu Ando . 2005-12-01 Simon Josefsson * tests/.cvsignore: [no log message] 2005-11-30 Nikos Mavrogiannopoulos * includes/gnutls/gnutls.h.in, lib/gnutls_session.c, lib/gnutls_session_pack.c: Some fixes in session resumption and prototypes. Based on patches and suggestions by Joe Orton. 2005-11-21 Simon Josefsson * doc/protocol/tls-numbers.txt: From . 2005-11-18 Nikos Mavrogiannopoulos * lib/x509/privkey_pkcs8.c: added some clarification about the encryption status. 2005-11-16 Nikos Mavrogiannopoulos * NEWS, src/certtool.c: Corrected a bug in certtool for 64 bit machines. Reported by Max Kellermann . 2005-11-16 Nikos Mavrogiannopoulos * src/cli-gaa.c, src/cli.gaa: [no log message] 2005-11-16 Nikos Mavrogiannopoulos * lib/gnutls_datum.c, lib/gnutls_session_pack.c, src/serv.c: some more fixes for PSK. 2005-11-16 Nikos Mavrogiannopoulos * configure.in: the library version number was bumped to 13 to allow for incompatible changes. 2005-11-16 Nikos Mavrogiannopoulos * ChangeLog, lib/auth_anon.c, lib/auth_anon.h, lib/auth_dh_common.c, lib/auth_dh_common.h, lib/auth_dhe.c, lib/auth_dhe_psk.c, lib/auth_psk.c, lib/auth_psk.h, lib/gnutls_kx.c, lib/gnutls_psk.c, lib/gnutls_session_pack.c, lib/gnutls_state.c, lib/gnutls_ui.c, src/Makefile.am, src/cli-gaa.c, src/cli.c, src/cli.gaa, src/common.c, src/gnutls-http-serv, src/params.pem, src/serv.c: Completed the DHE-PSK ciphersuite additions. 2005-11-15 Nikos Mavrogiannopoulos * lib/gnutls_psk.c: some documentation updates 2005-11-15 Nikos Mavrogiannopoulos * lib/gnutls_anon_cred.c, lib/gnutls_psk.c: gnutls_anon_set_params_function was renamed to gnutls_anon_set_server_params_function to be more consistent with the other functions. The same for the PSK. 2005-11-15 Nikos Mavrogiannopoulos * lib/auth_cert.h, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/gnutls_cert.c, lib/gnutls_handshake.c: get_rsa_params was converted to behave similarly to get_dh_params. 2005-11-15 Nikos Mavrogiannopoulos * doc/gnutls.texi: [no log message] 2005-11-15 Nikos Mavrogiannopoulos * NEWS, includes/gnutls/gnutls.h.in, lib/Makefile.am, lib/auth_anon.c, lib/auth_anon.h, lib/auth_cert.h, lib/auth_dh_common.c, lib/auth_dhe.c, lib/auth_dhe_psk.c, lib/auth_psk.c, lib/auth_psk.h, lib/auth_rsa_export.c, lib/auth_srp.c, lib/auth_srp_sb64.c, lib/gnutls_algorithms.c, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_auth_int.h, lib/gnutls_cert.c, lib/gnutls_dh.c, lib/gnutls_dh.h, lib/gnutls_dh_primes.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_psk.c, lib/gnutls_rsa_export.c, lib/gnutls_rsa_export.h, lib/gnutls_state.c, lib/gnutls_ui.c, src/common.c, src/serv.c, tests/Makefile.am, tests/dhepskself.c, tests/pskself.c: added DHE-PSK ciphersuites and some cleanups. 2005-11-15 Simon Josefsson * NEWS: Typo. 2005-11-15 Simon Josefsson * NEWS, configure.in: Bump versions. 2005-11-15 Simon Josefsson * ChangeLog: [no log message] 2005-11-15 Simon Josefsson * NEWS: Version 1.3.0. 2005-11-15 Simon Josefsson * src/prime.c, src/serv.c, tests/pskself.c: Indent. 2005-11-15 Simon Josefsson * Makefile.am: Use sha1sum instead of md5sum for igloo.linux.gr CHECKSUMS. 2005-11-15 Simon Josefsson * ChangeLog.1: Add, generated using cvs2cl --utc --fsf --FSF --usermap .cvsusers -I ChangeLog -I .cvs --window 120 -l "-d""<2005-11-08""", and manually adjusting the start and end of the file. 2005-11-15 Simon Josefsson * Makefile.am: Don't use --tags for cvs2cl. 2005-11-15 Simon Josefsson * lib/Makefile.am: Dist auth_psk.h. 2005-11-15 Simon Josefsson * NEWS: Fix. 2005-11-15 Simon Josefsson * NEWS: Add. 2005-11-15 Simon Josefsson * src/certtool-gaa.c, src/cli-gaa.c, src/crypt-gaa.c, src/psk-gaa.c, src/serv-gaa.c, src/tls_test-gaa.c: Regenerate GAA code, to remove use of C++ // comments. 2005-11-15 Simon Josefsson * doc/manpages/Makefile.am: Add license. Fix parser error. Dist and install SRP man pages too. 2005-11-15 Simon Josefsson * configure.in, doc/examples/Makefile.am, doc/manpages/Makefile.am, src/Makefile.am, src/prime.c: Disable more SRP stuff if --disable-srp, tiny patch from Albert Chin and tiny patch to src/prime.c from RedHat gnutls-1.2.6 RPM. 2005-11-15 Simon Josefsson * NEWS: Use more verbose NEWS entry format. 2005-11-15 Nikos Mavrogiannopoulos * tests/pskself.c: updated PSK self test 2005-11-15 Simon Josefsson * src/certtool-gaa.c: Fix. 2005-11-15 Simon Josefsson * doc/manpages/Makefile.am: Generated. 2005-11-15 Simon Josefsson * tests/.cvsignore: [no log message] 2005-11-15 Simon Josefsson * tests/Makefile.am: Add pskself. 2005-11-15 Simon Josefsson * tests/pskself.c: Add, based on anonself.c. 2005-11-15 Simon Josefsson * lib/gnutls_errors.c: Fix error messages; PSK also use the SRP errors. 2005-11-15 Simon Josefsson * lib/gnutls_psk.c: Doc fix. 2005-11-14 Nikos Mavrogiannopoulos * doc/TODO: [no log message] 2005-11-14 Simon Josefsson * lib/debug.c, lib/x509/common.c, lib/x509/crl.c, lib/x509/dn.c, lib/x509/pkcs12.c, lib/x509/pkcs7.c, libextra/openssl_compat.c, src/serv.c: Include config.h first. Tiny patch from Albert Chin . 2005-11-14 Simon Josefsson * libextra/opencdk/opencdk.h: Don't use trailing comma in last enum constant, for IBM C v6. Tiny patch from Albert Chin . 2005-11-14 Simon Josefsson * lib/gnutls_x509.c: Tru64 UNIX 4.0D has mmap() but doesn't define MAP_FAILED, tiny patch from Albert Chin 2005-11-12 Nikos Mavrogiannopoulos * NEWS, doc/gnutls.texi, lib/gnutls_algorithms.c: removed the RIPEMD ciphersuites. 2005-11-12 Nikos Mavrogiannopoulos * doc/arch/extensions_st.eps, doc/arch/extensions_st.pdf, doc/arch/mod_auth_st.eps, doc/arch/mod_auth_st.pdf, doc/internals.texi: added brief documentation on the extension and auth_method internals. 2005-11-12 Simon Josefsson * doc/TODO: Add. 2005-11-12 Nikos Mavrogiannopoulos * doc/gnutls.texi, lib/gnutls_state.c, lib/gnutls_x509.c, src/certtool.gaa: some documentation updates. 2005-11-10 Nikos Mavrogiannopoulos * doc/arch/certificate-user-use-case.eps, doc/arch/certificate-user-use-case.pdf, doc/arch/client-server-use-case.eps, doc/arch/client-server-use-case.pdf, doc/arch/handshake-sequence.eps, doc/arch/handshake-sequence.pdf, doc/arch/handshake-state.eps, doc/arch/handshake-state.pdf, doc/arch/objects.eps, doc/arch/objects.pdf, doc/certificate-user-use-case.pdf, doc/client-server-use-case.pdf, doc/handshake-sequence.pdf, doc/handshake-state.pdf, doc/internals.texi, doc/objects.pdf: moved architecture figures to arch/ 2005-11-10 Nikos Mavrogiannopoulos * ChangeLog, Makefile.am: made ChangeLog more compact by ignoring past changes. 2005-11-10 Simon Josefsson * gl/inet_ntop.h, gl/readline.c: Update. 2005-11-08 Nikos Mavrogiannopoulos * doc/gnutls.texi: [no log message] 2005-11-08 Nikos Mavrogiannopoulos * lib/gnutls_int.h: [no log message] 2005-11-08 Simon Josefsson * doc/signatures.texi: Add. 2005-11-08 Nikos Mavrogiannopoulos * doc/Makefile.am, doc/certificate-user-use-case.pdf, doc/client-server-use-case.pdf, doc/gnutls.texi, doc/handshake-sequence.pdf, doc/handshake-state.pdf, doc/internals.texi, doc/objects.pdf: added some stuff about the internals of gnutls. 2005-11-08 Nikos Mavrogiannopoulos * : added again the files in binary mode. 2005-11-08 Nikos Mavrogiannopoulos * : [no log message] 2005-11-08 Nikos Mavrogiannopoulos * : added some architectural diagrams. Quite primitive. 2005-11-08 Simon Josefsson * doc/signatures.texi: add 2005-11-08 Simon Josefsson * doc/signatures.texi: Wrap around <80 columns. 2005-11-08 Nikos Mavrogiannopoulos * doc/manpages/Makefile.am, lib/gnutls_session_pack.c, src/cli.c, src/serv.c: fixed bug in session packing for anonymous connections. 2005-11-07 Simon Josefsson * src/serv.c, tests/anonself.c, tests/openpgp_test.c, tests/openssl.c, tests/x509_test.c: Indent. 2005-11-07 Simon Josefsson * Makefile.am: Indent tests/. 2005-11-07 Simon Josefsson * NEWS: Add. 2005-11-07 Simon Josefsson * lib/auth_anon.c, lib/auth_anon.h, lib/auth_cert.c, lib/auth_cert.h, lib/auth_dh_common.c, lib/auth_dh_common.h, lib/auth_dhe.c, lib/auth_psk.c, lib/auth_psk.h, lib/auth_psk_passwd.c, lib/auth_psk_passwd.h, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/auth_srp.c, lib/auth_srp.h, lib/auth_srp_passwd.c, lib/auth_srp_passwd.h, lib/auth_srp_rsa.c, lib/auth_srp_sb64.c, lib/debug.c, lib/debug.h, lib/defines.h, lib/ext_cert_type.c, lib/ext_cert_type.h, lib/ext_max_record.c, lib/ext_max_record.h, lib/ext_server_name.c, lib/ext_server_name.h, lib/ext_srp.c, lib/ext_srp.h, lib/gnutls_alert.c, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_anon_cred.c, lib/gnutls_asn1_tab.c, lib/gnutls_auth.c, lib/gnutls_auth.h, lib/gnutls_auth_int.h, lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, lib/gnutls_compress.c, lib/gnutls_compress.h, lib/gnutls_compress_int.c, lib/gnutls_compress_int.h, lib/gnutls_constate.c, lib/gnutls_constate.h, lib/gnutls_datum.c, lib/gnutls_datum.h, lib/gnutls_db.c, lib/gnutls_db.h, lib/gnutls_dh.c, lib/gnutls_dh.h, lib/gnutls_dh_primes.c, lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_extensions.c, lib/gnutls_extensions.h, lib/gnutls_global.c, lib/gnutls_global.h, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_helper.c, lib/gnutls_helper.h, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_kx.h, lib/gnutls_mem.c, lib/gnutls_mem.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_num.c, lib/gnutls_num.h, lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_priority.c, lib/gnutls_priority.h, lib/gnutls_psk.c, lib/gnutls_record.c, lib/gnutls_record.h, lib/gnutls_rsa_export.c, lib/gnutls_rsa_export.h, lib/gnutls_session.c, lib/gnutls_session_pack.c, lib/gnutls_session_pack.h, lib/gnutls_sig.c, lib/gnutls_sig.h, lib/gnutls_srp.c, lib/gnutls_srp.h, lib/gnutls_state.c, lib/gnutls_state.h, lib/gnutls_str.c, lib/gnutls_str.h, lib/gnutls_ui.c, lib/gnutls_v2_compat.c, lib/gnutls_v2_compat.h, lib/gnutls_x509.c, lib/gnutls_x509.h, lib/io_debug.h, lib/pkix_asn1_tab.c, lib/strfile.h, lib/x509/common.c, lib/x509/common.h, lib/x509/compat.c, lib/x509/compat.h, lib/x509/crl.c, lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/crq.h, lib/x509/dn.c, lib/x509/dn.h, lib/x509/dsa.c, lib/x509/dsa.h, lib/x509/extensions.c, lib/x509/extensions.h, lib/x509/mpi.c, lib/x509/mpi.h, lib/x509/pkcs12.c, lib/x509/pkcs12.h, lib/x509/pkcs12_bag.c, lib/x509/pkcs12_encr.c, lib/x509/pkcs7.c, lib/x509/pkcs7.h, lib/x509/privkey.c, lib/x509/privkey.h, lib/x509/privkey_pkcs8.c, lib/x509/rfc2818.h, lib/x509/rfc2818_hostname.c, lib/x509/sign.c, lib/x509/sign.h, lib/x509/verify.c, lib/x509/verify.h, lib/x509/x509.c, lib/x509/x509.h, lib/x509/x509_write.c, lib/x509/xml.c, lib/x509_b64.c, lib/x509_b64.h, libextra/gnutls_extra.c, libextra/gnutls_extra.h, libextra/gnutls_openpgp.c, libextra/gnutls_openssl.c, libextra/openpgp/compat.c, libextra/openpgp/extras.c, libextra/openpgp/gnutls_openpgp.h, libextra/openpgp/openpgp.h, libextra/openpgp/pgp.c, libextra/openpgp/pgpverify.c, libextra/openpgp/privkey.c, libextra/openpgp/xml.c, libextra/openssl_compat.c, libextra/openssl_compat.h, src/certtool-cfg.c, src/certtool-cfg.h, src/certtool.c, src/cli.c, src/common.c, src/common.h, src/crypt.c, src/errcodes.c, src/list.h, src/prime.c, src/psk.c, src/serv.c, src/tests.c, src/tests.h, src/tls_test.c: Use GNU coding style. 2005-11-07 Simon Josefsson * Makefile.am: Use GNU coding style for indent. 2005-11-07 Simon Josefsson * doc/manpages/Makefile.am: Add. 2005-11-07 Simon Josefsson * doc/reference/Makefile.am: Ignore more headers. 2005-11-07 Simon Josefsson * src/.cvsignore: [no log message] 2005-11-07 Nikos Mavrogiannopoulos * lib/auth_psk.c, lib/auth_psk_passwd.c, lib/auth_psk_passwd.h, lib/gnutls_psk.c, src/serv-gaa.c, src/serv-gaa.h: more psk stuff 2005-11-07 Nikos Mavrogiannopoulos * NEWS, configure.in, doc/TODO, doc/gnutls.texi, doc/manpages/Makefile.am, doc/manpages/psktool.1, includes/gnutls/gnutls.h.in, lib/Makefile.am, lib/auth_psk.c, lib/auth_psk.h, lib/auth_psk_passwd.c, lib/auth_psk_passwd.h, lib/auth_srp.h, lib/auth_srp_sb64.c, lib/ext_srp.c, lib/gnutls_algorithms.c, lib/gnutls_compress_int.c, lib/gnutls_db.c, lib/gnutls_helper.c, lib/gnutls_helper.h, lib/gnutls_int.h, lib/gnutls_psk.c, lib/gnutls_session.c, lib/gnutls_session_pack.c, lib/gnutls_session_pack.h, lib/gnutls_srp.c, lib/gnutls_str.c, lib/gnutls_str.h, lib/libgnutls.vers, src/Makefile.am, src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, src/common.c, src/crypt.c, src/gnutls-http-serv, src/psk-gaa.c, src/psk-gaa.h, src/psk.c, src/psk.gaa, src/serv.c, src/serv.gaa: This is the initial commit in the 1.3 branch. Ported from the PSK branch: * PSK ciphersuites have been added. * The session resumption data are now system independent. 2005-11-07 Simon Josefsson * ChangeLog: [no log message] 2005-11-07 Simon Josefsson * Version 1.2.9. ----- Copyright (C) 2005, 2006, 2007, 2008, 2009, 2010 Free Software Foundation, Inc. Copying and distribution of this file, with or without modification, are permitted provided the copyright notice and this notice are preserved.