gnutls:gnutls.git
10 years agoUpdated gnulib and added usleep and getaddrinfo modules.
Nikos Mavrogiannopoulos [Sun, 8 Jan 2012 10:29:59 +0000 (11:29 +0100)]
Updated gnulib and added usleep and getaddrinfo modules.

10 years agoAuthority information access information -> Authority information access
Nikos Mavrogiannopoulos [Sun, 8 Jan 2012 10:02:49 +0000 (11:02 +0100)]
Authority information access information -> Authority information access

10 years ago_gnutls_proc_cert_client_certificate and _gnutls_proc_cert_server_certificate renamed...
Nikos Mavrogiannopoulos [Sat, 7 Jan 2012 09:29:19 +0000 (10:29 +0100)]
_gnutls_proc_cert_client_certificate and _gnutls_proc_cert_server_certificate renamed to _gnutls_proc_certificate.

10 years agoupdated news
Nikos Mavrogiannopoulos [Sat, 7 Jan 2012 09:20:06 +0000 (10:20 +0100)]
updated news

10 years agognutls_dh_params_cpy() copies the src->q_bits.
Nikos Mavrogiannopoulos [Fri, 6 Jan 2012 20:38:58 +0000 (21:38 +0100)]
gnutls_dh_params_cpy() copies the src->q_bits.

10 years agoproperly deinitialize.
Nikos Mavrogiannopoulos [Fri, 6 Jan 2012 20:38:44 +0000 (21:38 +0100)]
properly deinitialize.

10 years agocorrected leak in DH parameter generation.
Nikos Mavrogiannopoulos [Fri, 6 Jan 2012 20:38:17 +0000 (21:38 +0100)]
corrected leak in DH parameter generation.

10 years agoupdated changelog
Nikos Mavrogiannopoulos [Fri, 6 Jan 2012 20:24:01 +0000 (21:24 +0100)]
updated changelog

10 years agoremoved old comment
Nikos Mavrogiannopoulos [Fri, 6 Jan 2012 20:23:48 +0000 (21:23 +0100)]
removed old comment

10 years agoupdated changelog and news for release gnutls_3_0_11
Nikos Mavrogiannopoulos [Fri, 6 Jan 2012 19:32:17 +0000 (20:32 +0100)]
updated changelog and news for release

10 years agocorrected typo
Nikos Mavrogiannopoulos [Fri, 6 Jan 2012 19:25:51 +0000 (20:25 +0100)]
corrected typo

10 years agobumped version
Nikos Mavrogiannopoulos [Fri, 6 Jan 2012 19:11:13 +0000 (20:11 +0100)]
bumped version

10 years agoCorrected functionality of gnutls_record_get_direction(). Reported by Philip Allison.
Nikos Mavrogiannopoulos [Fri, 6 Jan 2012 19:07:55 +0000 (20:07 +0100)]
Corrected functionality of gnutls_record_get_direction(). Reported by Philip Allison.

10 years agoprovide less timing information when decoding packets. Patch by Nadhem Alfardan.
Nikos Mavrogiannopoulos [Fri, 6 Jan 2012 18:49:24 +0000 (19:49 +0100)]
provide less timing information when decoding packets. Patch by Nadhem Alfardan.

10 years agouse AI_ADDRCONFIG if available.
Nikos Mavrogiannopoulos [Wed, 4 Jan 2012 20:06:05 +0000 (21:06 +0100)]
use AI_ADDRCONFIG if available.

10 years agoprevent building of crywrap in windows
Nikos Mavrogiannopoulos [Wed, 4 Jan 2012 20:02:08 +0000 (21:02 +0100)]
prevent building of crywrap in windows

10 years agoupdated
Nikos Mavrogiannopoulos [Wed, 4 Jan 2012 19:55:07 +0000 (20:55 +0100)]
updated

10 years agoupdated gnutls_3_0_10
Nikos Mavrogiannopoulos [Wed, 4 Jan 2012 18:23:03 +0000 (19:23 +0100)]
updated

10 years agoadded missing file
Nikos Mavrogiannopoulos [Wed, 4 Jan 2012 18:13:33 +0000 (19:13 +0100)]
added missing file

10 years agobumped version
Nikos Mavrogiannopoulos [Wed, 4 Jan 2012 18:05:01 +0000 (19:05 +0100)]
bumped version

10 years agoUpdated auto-generated files
Nikos Mavrogiannopoulos [Wed, 4 Jan 2012 16:48:17 +0000 (17:48 +0100)]
Updated auto-generated files

10 years agoadded missing file
Nikos Mavrogiannopoulos [Wed, 4 Jan 2012 16:41:39 +0000 (17:41 +0100)]
added missing file

10 years agoprint the RSA and DH bits as well as EC bits for comparison.
Nikos Mavrogiannopoulos [Mon, 2 Jan 2012 22:52:52 +0000 (00:52 +0200)]
print the RSA and DH bits as well as EC bits for comparison.

10 years agouse 1840 bit DH and RSA to compare with 192 bits of ECDH
Nikos Mavrogiannopoulos [Mon, 2 Jan 2012 22:44:06 +0000 (00:44 +0200)]
use 1840 bit DH and RSA to compare with 192 bits of ECDH

10 years agoGNUTLS_PK_ECC -> GNUTLS_PK_EC
Nikos Mavrogiannopoulos [Mon, 2 Jan 2012 10:15:00 +0000 (12:15 +0200)]
GNUTLS_PK_ECC -> GNUTLS_PK_EC

10 years agoCDK_EOF error code now returns GNUTLS_E_PARSING_ERROR
Nikos Mavrogiannopoulos [Sat, 31 Dec 2011 17:32:30 +0000 (19:32 +0200)]
CDK_EOF error code now returns GNUTLS_E_PARSING_ERROR

10 years agoremoved cdk_armor_filter_use()
Nikos Mavrogiannopoulos [Sat, 31 Dec 2011 09:45:19 +0000 (11:45 +0200)]
removed cdk_armor_filter_use()

10 years agocorrectly report 0 keys on a keyring
Nikos Mavrogiannopoulos [Fri, 30 Dec 2011 22:48:58 +0000 (00:48 +0200)]
correctly report 0 keys on a keyring

10 years agomore opencdk simplifications
Nikos Mavrogiannopoulos [Fri, 30 Dec 2011 22:39:08 +0000 (00:39 +0200)]
more opencdk simplifications

10 years agospecify key type (raw) to certtool
Nikos Mavrogiannopoulos [Fri, 30 Dec 2011 22:38:55 +0000 (00:38 +0200)]
specify key type (raw) to certtool

10 years agoRemoved unneeded opencdk functionality.
Nikos Mavrogiannopoulos [Fri, 30 Dec 2011 22:03:54 +0000 (00:03 +0200)]
Removed unneeded opencdk functionality.

10 years agoverify signatures on download
Nikos Mavrogiannopoulos [Fri, 30 Dec 2011 21:30:02 +0000 (23:30 +0200)]
verify signatures on download

10 years ago_gnutls_is_secure_memory is no more.
Nikos Mavrogiannopoulos [Fri, 30 Dec 2011 19:47:47 +0000 (21:47 +0200)]
_gnutls_is_secure_memory is no more.

10 years agognutls-cli can now read input from win32.
Nikos Mavrogiannopoulos [Fri, 30 Dec 2011 16:22:38 +0000 (18:22 +0200)]
gnutls-cli can now read input from win32.

10 years agoAvoid using base64 armor auto-detection which causes decoding errors in win32.
Nikos Mavrogiannopoulos [Fri, 30 Dec 2011 15:23:02 +0000 (17:23 +0200)]
Avoid using base64 armor auto-detection which causes decoding errors in win32.
For some reason reading from the stream modifies the stream
and this work-around avoids that issue.

10 years agoenable debugging in pgps2kgnu
Nikos Mavrogiannopoulos [Fri, 30 Dec 2011 10:04:06 +0000 (12:04 +0200)]
enable debugging in pgps2kgnu

10 years agodo not use valgrind in windows
Nikos Mavrogiannopoulos [Fri, 30 Dec 2011 10:01:16 +0000 (12:01 +0200)]
do not use valgrind in windows

10 years agogmp is compiled with --enable-fat.
Nikos Mavrogiannopoulos [Fri, 30 Dec 2011 09:55:36 +0000 (11:55 +0200)]
gmp is compiled with --enable-fat.

10 years agolink libutils with libgnu.
Nikos Mavrogiannopoulos [Fri, 30 Dec 2011 09:55:21 +0000 (11:55 +0200)]
link libutils with libgnu.

10 years agomore files to ignore
Nikos Mavrogiannopoulos [Fri, 30 Dec 2011 00:20:41 +0000 (02:20 +0200)]
more files to ignore

10 years agoAdded missing function names.
Nikos Mavrogiannopoulos [Fri, 30 Dec 2011 00:19:40 +0000 (02:19 +0200)]
Added missing function names.

10 years agoAdded a preliminary win32 compilation makefile.
Nikos Mavrogiannopoulos [Fri, 30 Dec 2011 00:18:54 +0000 (02:18 +0200)]
Added a preliminary win32 compilation makefile.

10 years agowin32 fixes
Nikos Mavrogiannopoulos [Fri, 30 Dec 2011 00:18:45 +0000 (02:18 +0200)]
win32 fixes

10 years agodo not build crywrap on win32
Nikos Mavrogiannopoulos [Thu, 29 Dec 2011 23:24:35 +0000 (01:24 +0200)]
do not build crywrap on win32

10 years agoundefine possible system macros.
Nikos Mavrogiannopoulos [Thu, 29 Dec 2011 23:18:42 +0000 (01:18 +0200)]
undefine possible system macros.

10 years agoupdated DTLS example
Nikos Mavrogiannopoulos [Thu, 29 Dec 2011 20:25:22 +0000 (22:25 +0200)]
updated DTLS example

10 years agomore updates
Nikos Mavrogiannopoulos [Thu, 29 Dec 2011 19:24:15 +0000 (21:24 +0200)]
more updates

10 years agoSmall improvements in documentation.
Nikos Mavrogiannopoulos [Thu, 29 Dec 2011 19:10:44 +0000 (21:10 +0200)]
Small improvements in documentation.

10 years agocorrected bug in DSA private key parsing.
Nikos Mavrogiannopoulos [Wed, 28 Dec 2011 23:51:25 +0000 (01:51 +0200)]
corrected bug in DSA private key parsing.

10 years agoAdded --rsa option which is a no-op for now.
Nikos Mavrogiannopoulos [Wed, 28 Dec 2011 23:29:59 +0000 (01:29 +0200)]
Added --rsa option which is a no-op for now.

10 years agoAllow the insertion of characters to align the randomart.
Nikos Mavrogiannopoulos [Wed, 28 Dec 2011 23:23:23 +0000 (01:23 +0200)]
Allow the insertion of characters to align the randomart.

10 years agoPrint the fingerprint of PGP keys and not only the key ID.
Nikos Mavrogiannopoulos [Wed, 28 Dec 2011 20:01:00 +0000 (22:01 +0200)]
Print the fingerprint of PGP keys and not only the key ID.

10 years agoAdd random art to keys.
Nikos Mavrogiannopoulos [Wed, 28 Dec 2011 19:45:28 +0000 (21:45 +0200)]
Add random art to keys.

10 years agoSkip deflate test if libz is not available.
Nikos Mavrogiannopoulos [Wed, 28 Dec 2011 19:35:15 +0000 (21:35 +0200)]
Skip deflate test if libz is not available.

10 years agoupdated random art's messages.
Nikos Mavrogiannopoulos [Wed, 28 Dec 2011 19:24:17 +0000 (21:24 +0200)]
updated random art's messages.

10 years agoPrint the pgp key's randomart as well.
Nikos Mavrogiannopoulos [Wed, 28 Dec 2011 18:58:14 +0000 (20:58 +0200)]
Print the pgp key's randomart as well.

10 years agoPrint the randomart on the key ID and not the fingerprint.
Nikos Mavrogiannopoulos [Wed, 28 Dec 2011 18:57:52 +0000 (20:57 +0200)]
Print the randomart on the key ID and not the fingerprint.

10 years agoUpdated GNUTLS_E_NO_CERTIFICATE_FOUND description.
Nikos Mavrogiannopoulos [Wed, 28 Dec 2011 18:46:52 +0000 (20:46 +0200)]
Updated GNUTLS_E_NO_CERTIFICATE_FOUND description.

10 years agomore files to ignore
Nikos Mavrogiannopoulos [Wed, 28 Dec 2011 18:41:03 +0000 (20:41 +0200)]
more files to ignore

10 years agoprint randomart for private keys as well.
Nikos Mavrogiannopoulos [Wed, 28 Dec 2011 18:40:25 +0000 (20:40 +0200)]
print randomart for private keys as well.

10 years agognutls_atfork was no longer in use.
Nikos Mavrogiannopoulos [Wed, 28 Dec 2011 14:24:18 +0000 (16:24 +0200)]
gnutls_atfork was no longer in use.

10 years agoAdded function gnutls_random_art() to convert fingerprints to images (currently ascii...
Nikos Mavrogiannopoulos [Wed, 28 Dec 2011 14:12:17 +0000 (16:12 +0200)]
Added function gnutls_random_art() to convert fingerprints to images (currently ascii-art).

10 years agominor doc and comment fixes
Patrick Pelletier [Wed, 28 Dec 2011 09:37:06 +0000 (01:37 -0800)]
minor doc and comment fixes

Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
10 years agoupdated examples and added new "handling alerts" section.
Nikos Mavrogiannopoulos [Wed, 28 Dec 2011 08:49:56 +0000 (10:49 +0200)]
updated examples and added new "handling alerts" section.

10 years agoupdated and included in the documentation the udp code.
Nikos Mavrogiannopoulos [Wed, 28 Dec 2011 08:40:32 +0000 (10:40 +0200)]
updated and included in the documentation the udp code.

10 years agoSet don't fragment bit in Linux as well as in BSD variants.
Nikos Mavrogiannopoulos [Wed, 28 Dec 2011 08:32:48 +0000 (10:32 +0200)]
Set don't fragment bit in Linux as well as in BSD variants.

10 years agoupdated server examples
Nikos Mavrogiannopoulos [Tue, 27 Dec 2011 21:32:12 +0000 (23:32 +0200)]
updated server examples

10 years agosmallexample is no longer used. It is intended only for typesetting with smaller...
Nikos Mavrogiannopoulos [Mon, 26 Dec 2011 15:12:49 +0000 (17:12 +0200)]
smallexample is no longer used. It is intended only for typesetting with smaller pages and had no relation to our usage.

10 years agoprepend UDP to server application name when in UDP mode.
Nikos Mavrogiannopoulos [Mon, 26 Dec 2011 15:08:56 +0000 (17:08 +0200)]
prepend UDP to server application name when in UDP mode.

10 years agoAdded DTLS server example.
Nikos Mavrogiannopoulos [Mon, 26 Dec 2011 15:08:20 +0000 (17:08 +0200)]
Added DTLS server example.

10 years agocorrected a leak
Nikos Mavrogiannopoulos [Mon, 26 Dec 2011 15:07:47 +0000 (17:07 +0200)]
corrected a leak

10 years agoAdded SECP192R1 curve.
Nikos Mavrogiannopoulos [Mon, 26 Dec 2011 13:32:41 +0000 (15:32 +0200)]
Added SECP192R1 curve.

10 years agopkcs11.h and abstract.h use extern C idiom for C++.
Nikos Mavrogiannopoulos [Mon, 26 Dec 2011 13:31:08 +0000 (15:31 +0200)]
pkcs11.h and abstract.h use extern C idiom for C++.

10 years agoAdded ciphersuites: GNUTLS_PSK_WITH_AES_256_GCM_SHA384 and GNUTLS_DHE_PSK_WITH_AES_25...
Nikos Mavrogiannopoulos [Mon, 19 Dec 2011 00:16:43 +0000 (01:16 +0100)]
Added ciphersuites: GNUTLS_PSK_WITH_AES_256_GCM_SHA384 and GNUTLS_DHE_PSK_WITH_AES_256_GCM_SHA384.

10 years agoCorrected ciphersuite GNUTLS_ECDHE_PSK_AES_256_CBC_SHA384
Nikos Mavrogiannopoulos [Mon, 19 Dec 2011 00:10:16 +0000 (01:10 +0100)]
Corrected ciphersuite GNUTLS_ECDHE_PSK_AES_256_CBC_SHA384

10 years agoOnly use configured interfaces. Patch by Pino Toscano.
Nikos Mavrogiannopoulos [Sun, 18 Dec 2011 18:36:03 +0000 (19:36 +0100)]
Only use configured interfaces. Patch by Pino Toscano.

10 years agobetter comments.
Nikos Mavrogiannopoulos [Sat, 17 Dec 2011 11:39:53 +0000 (12:39 +0100)]
better comments.

10 years agognutls_protocol_get_version() and _gnutls_set_current_version() are now inline functions
Nikos Mavrogiannopoulos [Sat, 17 Dec 2011 11:32:51 +0000 (12:32 +0100)]
gnutls_protocol_get_version() and _gnutls_set_current_version() are now inline functions

10 years agodocumented _gnutls_supported_ciphersuites()
Nikos Mavrogiannopoulos [Sat, 17 Dec 2011 11:26:15 +0000 (12:26 +0100)]
documented _gnutls_supported_ciphersuites()

10 years agorenamed the _SHA ciphersuites to _SHA1.
Nikos Mavrogiannopoulos [Sat, 17 Dec 2011 11:21:42 +0000 (12:21 +0100)]
renamed the _SHA ciphersuites to _SHA1.

10 years agocorrectly set the odd bits.
Nikos Mavrogiannopoulos [Fri, 16 Dec 2011 04:02:45 +0000 (05:02 +0100)]
correctly set the odd bits.

10 years agomake dist forces regeneration of ChangeLog and manpages.
Nikos Mavrogiannopoulos [Tue, 13 Dec 2011 22:37:10 +0000 (23:37 +0100)]
make dist forces regeneration of ChangeLog and manpages.

10 years agoAdded missing file gnutls_3_0_9
Nikos Mavrogiannopoulos [Tue, 13 Dec 2011 22:16:57 +0000 (23:16 +0100)]
Added missing file

10 years agobumped version
Nikos Mavrogiannopoulos [Tue, 13 Dec 2011 22:03:58 +0000 (23:03 +0100)]
bumped version

10 years agodocumented new priority strings.
Nikos Mavrogiannopoulos [Tue, 13 Dec 2011 19:19:46 +0000 (20:19 +0100)]
documented new priority strings.

10 years agoserver precedence also used in compression methods.
Nikos Mavrogiannopoulos [Tue, 13 Dec 2011 19:19:35 +0000 (20:19 +0100)]
server precedence also used in compression methods.

10 years agocipher_suite_st is no longer used internally. We only use a point to 2 bytes.
Nikos Mavrogiannopoulos [Tue, 13 Dec 2011 19:08:02 +0000 (20:08 +0100)]
cipher_suite_st is no longer used internally. We only use a point to 2 bytes.

10 years agoAdded new priority string %SERVER_PRECEDENCE.
Nikos Mavrogiannopoulos [Tue, 13 Dec 2011 18:43:10 +0000 (19:43 +0100)]
Added new priority string %SERVER_PRECEDENCE.

10 years agoRemoved 128-bit ciphers from secure192, but added SHA256 (or no ciphersuites are...
Nikos Mavrogiannopoulos [Tue, 13 Dec 2011 18:26:14 +0000 (19:26 +0100)]
Removed 128-bit ciphers from secure192, but added SHA256 (or no ciphersuites are there).

10 years agoAdded the --dh-info parameter to certtool.
Nikos Mavrogiannopoulos [Tue, 13 Dec 2011 18:08:12 +0000 (19:08 +0100)]
Added the --dh-info parameter to certtool.

10 years agognutls_priority_get_cipher_suite was renamed to gnutls_priority_get_cipher_suite_index.
Nikos Mavrogiannopoulos [Mon, 12 Dec 2011 17:54:44 +0000 (18:54 +0100)]
gnutls_priority_get_cipher_suite was renamed to gnutls_priority_get_cipher_suite_index.
This makes a more consistent API at the cost of requiring gnutls_get_cipher_suite_info().
An advantage however is that more information can now be accessed.

10 years agoDiffie Hellman PKCS #3 parameters now contain the recommended private key size.
Nikos Mavrogiannopoulos [Mon, 12 Dec 2011 16:46:00 +0000 (17:46 +0100)]
Diffie Hellman PKCS #3 parameters now contain the recommended private key size.
By using the recommended key size the calculations for the server side are
reduced, giving a 50% increase in DH calculations.

10 years agosmall cleanups.
Nikos Mavrogiannopoulos [Mon, 12 Dec 2011 16:29:57 +0000 (17:29 +0100)]
small cleanups.

10 years agoOptimizations in DH parameter generation.
Nikos Mavrogiannopoulos [Mon, 12 Dec 2011 01:18:59 +0000 (02:18 +0100)]
Optimizations in DH parameter generation.

The larger prime is find first and the big loop needs to
find a smaller prime, increasing performance.
The _gnutls_rnd() function is now inline and GNUTLS_RND_NONCE doesn't update random generator state.

10 years agoupdated
Nikos Mavrogiannopoulos [Sun, 11 Dec 2011 10:05:48 +0000 (11:05 +0100)]
updated

10 years agoIf a ticket is sent to client then don't store the session information in the session...
Nikos Mavrogiannopoulos [Sun, 11 Dec 2011 10:04:39 +0000 (11:04 +0100)]
If a ticket is sent to client then don't store the session information in the session cache.

10 years agoAdded gnutls_priority_get_cipher_suite().
Nikos Mavrogiannopoulos [Sun, 11 Dec 2011 09:36:55 +0000 (10:36 +0100)]
Added gnutls_priority_get_cipher_suite().
This allows listing the ciphersuites enabled in a priority structure.
The certtool -l option was overloaded so if combined with --priority
it will only list the ciphersuites that are enabled by the given
priority string.

10 years agoremoved unused variables.
Nikos Mavrogiannopoulos [Sun, 11 Dec 2011 09:32:46 +0000 (10:32 +0100)]
removed unused variables.

10 years agoAdded 192-bit curve in normal priorities.
Nikos Mavrogiannopoulos [Sat, 10 Dec 2011 22:46:00 +0000 (23:46 +0100)]
Added 192-bit curve in normal priorities.

10 years agodocumented updates
Nikos Mavrogiannopoulos [Sat, 10 Dec 2011 22:09:46 +0000 (23:09 +0100)]
documented updates