[SCM] GNU gnutls branch, gnutls_2_12_x, updated. gnutls_2_11

gnutls-commit

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[SCM] GNU gnutls branch, gnutls_2_12_x, updated. gnutls_2_11_6-88-gdd179

From:	Nikos Mavrogiannopoulos
Subject:	[SCM] GNU gnutls branch, gnutls_2_12_x, updated. gnutls_2_11_6-88-gdd179db
Date:	Wed, 09 Feb 2011 22:36:00 +0000

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "GNU gnutls".

http://git.savannah.gnu.org/cgit/gnutls.git/commit/?id=dd179dbd188da5ee0ecb1d5ba9d1a97a067ce4b8

The branch, gnutls_2_12_x has been updated
       via  dd179dbd188da5ee0ecb1d5ba9d1a97a067ce4b8 (commit)
      from  749ab1ace417becaac0be0f3e923fdfb24fb1abb (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commit dd179dbd188da5ee0ecb1d5ba9d1a97a067ce4b8
Author: Nikos Mavrogiannopoulos <address@hidden>
Date:   Wed Feb 9 23:34:46 2011 +0100

    Allow DSA2 even in protocols before TLS 1.2.

-----------------------------------------------------------------------

Summary of changes:
 NEWS             |    6 ++++++
 lib/gnutls_sig.c |    8 --------
 2 files changed, 6 insertions(+), 8 deletions(-)

diff --git a/NEWS b/NEWS
index 69ed565..56bd526 100644
--- a/NEWS
+++ b/NEWS
@@ -5,6 +5,12 @@ See the end for copying conditions.
 
 * Version 2.11.7 (unreleased)
 
+** libgnutls: SRP and PSK are no longer set on the default priorities. 
+They have to be explicitly set.
+
+** libgnutls: During handshake message verification using DSS
+use the hash algorithm required by it.
+
 ** libgnutls: The deprecated  gnutls_x509_privkey_sign_hash() was
 replaced by gnutls_privkey_sign_hash2().
 
diff --git a/lib/gnutls_sig.c b/lib/gnutls_sig.c
index 5a379a6..3087f0f 100644
--- a/lib/gnutls_sig.c
+++ b/lib/gnutls_sig.c
@@ -133,14 +133,6 @@ gnutls_protocol_t ver = gnutls_protocol_get_version 
(session);
     { /* override */
       *hash_algo = _gnutls_dsa_q_to_hash (cert->params[1]);
 
-      if (!_gnutls_version_has_selectable_sighash (ver) && *hash_algo != 
GNUTLS_DIG_SHA1)
-        {
-          /* In TLS < 1.2 one cannot use anything but SHA1
-           */
-          gnutls_assert();
-          return GNUTLS_E_INVALID_REQUEST;
-        }
-      
       ret = _gnutls_session_sign_algo_requested(session, 
_gnutls_x509_pk_to_sign (GNUTLS_PK_DSA, *hash_algo));
       if (ret < 0)
         return gnutls_assert_val(ret);


hooks/post-receive
-- 
GNU gnutls

[Prev in Thread]

Current Thread

[Next in Thread]

[SCM] GNU gnutls branch, gnutls_2_12_x, updated. gnutls_2_11_6-88-gdd179db, Nikos Mavrogiannopoulos <=

Prev by Date: [SCM] GNU gnutls branch, master, updated. gnutls_2_11_6-140-gb2f736f
Next by Date: [SCM] GNU gnutls branch, gnutls_2_12_x, updated. gnutls_2_11_6-90-g5bd1eb7
Previous by thread: [SCM] GNU gnutls branch, master, updated. gnutls_2_11_6-140-gb2f736f
Next by thread: [SCM] GNU gnutls branch, gnutls_2_12_x, updated. gnutls_2_11_6-90-g5bd1eb7
Index(es):
- Date
- Thread