[SCM] GNU gnutls annotated tag, gnutls_2_99_2, created. gnutls_2_99_2

[Nikos Mavrogiannopoulos]

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "GNU gnutls".

http://git.savannah.gnu.org/cgit/gnutls.git/commit/?id=88e7061f9146263e29e96b07663738dd136f477e

The annotated tag, gnutls_2_99_2 has been created
        at  88e7061f9146263e29e96b07663738dd136f477e (tag)
   tagging  a3c23384acf3faeb02146c1a1cee0290ef64a7f3 (commit)
  replaces  gnutls_2_99_1
 tagged by  Nikos Mavrogiannopoulos
        on  Thu May 26 19:06:07 2011 +0200

- Log -----------------------------------------------------------------
released 2.99.2.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iQEcBAABAgAGBQJN3oiEAAoJEJ1eqvaQE7hCvM0H/3F7/NMTg84+lGUe91pAFrvO
6bOcszGRbaGaG4cRThWRPfHUB0s5C4FWSlhLq4VCS6dUkDCJDX2JuhQChjq2be4S
HyuYjOX6oRKD1Zev4TD1i0khKbZYaXpLD56DDZUSOm3pcARG09BCqIYFydRZGlHn
bSx1GX5ypq3H5mpve3x3bqA9sebWe8Psj5pLd0K1XFs3yjvAR6MiRHHHyJJ8cPXq
QVvbhRCrDOrMSZbXOBDgnt0soN+iYRsuDE6pvpq0vzFPPuhZF+m88oChp5FSM2xs
NXB8pXEU5ngYufhPOcjKCeVpfLk9g7xMdPv4T7ek+U1RHhgELxF+dgWhpInXsNk=
=qPpc
-----END PGP SIGNATURE-----

Andreas Metzler (1):
      escape dashes in manpage

Giuseppe Scrivano (1):
      Fix example in the documentation.

Ludovic Courtès (1):
      guile: Fix tests to match the `exit' behavior introduced in Guile 2.0.1.

Nikos Mavrogiannopoulos (103):
      removed pakchois dependency
      Check for openssl 1.0.x to test DTLS.
      documented previous updates.
      Added missing m4 gl files.
      Added gnutls_certificate_get_issuer() to allow getting the issuer a 
certificate from the certificate credentials structure.
      use > 0 instead of == 1.
      Use c_toupper to avoid converting characters non in the english ASCII 
set. Reported by Kalle Olavi Niemitalo.
      _gnutls_hostname_compare() was incredibly slow when over ten wildcards 
were present. Set a limit on 6 wildcards to avoid any denial of service attack. 
Reported by Kalle Olavi Niemitalo.
      Added a check to verify that we don't try forever trying to verify too 
many wildcards.
      Do not use /tmp for temporary file. Just use the local (test) directory.
      No libgnutls-extra is required for certtool or p11tool.
      gnutls_pkcs11_privkey_import_url() will correctly set algorithm of 
private key.
      certtool can now load private keys and public keys from PKCS #11 tokens 
(via URLs).
      Added gnutls_x509_crq_verify().
      updates
      Added gnutls_global_set_audit_log_function() that allows associating TLS 
session with several important issues.
      undef X509_NAME before including openssl.h.
      Added discussion on compatibility issues.
      Added missing nodes.
      removed references that produced nothing in pdf.
      doc update in gnutls_pkcs11_init()
      update on compatibility issues text.
      eliminated last instances of strcpy() and strcat() to keep pendantics 
happy.
      Correctly import and export pkcs11-urls with ID field set.
      updated
      discuss missing algorithms.
      reduce the repetitions for rabin-miller to a sensible value.
      assign value
      Corrected PIN caching.
      corrected message reporting.
      Added benchmark utility that tests the encryption time in TLS packets.
      Some debugging moved to a higher level.
      corrections in win32 version.
      more win32 fixes.
      Initial ecc support. Adds support for anonymous ECDH ciphersuites.
      added error.h
      removed debugging.
      Added new gnulib and error.h.
      Account 'A' in calculations for point doubling.
      corrected debugging.
      client side ECC fixes.
      benchmark ECDH and DH.
      Added curve SECP512R1.
      updates to benchmarks.
      Added SECP224R1.
      Added previous code that was fixed for y^2 = x^3 - 3x + b, because all 
secg curves have a fixed to -3.
      inlined function to avoid gcc warnings
      Added support for ECDHE-RSA ciphersuites.
      use new nettle's name for gcm_aes_auth().
      corrected memory leak.
      Dropped ltc_ from function and type names.
      removed ecc_is_valid_idx() prototype
      Added ability to specify curves as priority strings.
      compare ECDH and DH on the same security level.
      Print purpose of testing.
      Added OIDs and definitions for ECDSA signature algorithm.
      use the _gnutls_session_is_ecc() to check for ECDH.
      gnutls_algorithms.c was split into manageable files in algorithms/.
      Curve TLS ID is being stored in algorithms/ecc.c.
      gnutls_pk_params_st is used internally to transfer public key parameters. 
This replaces the raw bigint_t arrays.
      print information on ECC certificates.
      No need to keep Z in parameters since the pubkey can always be converted 
to an affine point.
      Corrected bug in public key import.
      corrected ECC public key encoding/decoding.
      gnutls_algorithms.h -> algorithms.h
      corrected file descriptor leak.
      leaks fixes.
      print the bits together with the security level.
      always put leading zero to output keys
      Added ECDHE-RSA tests.
      leak fix and updates for new formats.
      Only reply with ECC Packet format extension if we have negotiated ECC.
      Added support for verifying server certificates with ECDSA.
      updated
      do not crash on null message.
      updates to allow the generation of an ECC private key.
      Decode PEM ECC private keys.
      Added gnutls_x509_privkey_import_ecc_raw() and 
gnutls_x509_privkey_export_ecc_raw().
      Print the private key after generation. Print ECC keys.
      Added ECC ciphersuites from rfc5289.
      Added algorithms/ to function index.
      Discussed the newly added ciphersuites.
      corrected bug in ciphersuite name searching.
      updated certtool info.
      Several updates to allow generation and signing of an ECC certificate.
      SHA256 is the default hash algorithm in certtool.
      Only warn on invalid security level hashes.
      _gnutls_handshake_hash_buffer_clear was replaced by  
_gnutls_buffer_clear();
      increased log level
      do not try to write to a socket when no data.
      Added elliptic curves chain certificate.
      If Q=-P return the point at infinity.
      updated documentation on PSK.
      Added gnutls_global_set_time_function() to allow overriding
      Added server and client mode tests for ECDH-ECDSA.
      Changes to allow ECDH-DSA with client mode certificates.
      reduced debugging.
      more updates for ECDSA ciphersuites.
      Use nettle's functions for integer import/export.
      listed newly added functions.
      libgcrypt support was removed.
      document elliptic curves addition.
      Added new headers.

Simon Josefsson (2):
      Update gnulib files.
      Override gnulib code with fix for memxor and valgrind.

-----------------------------------------------------------------------


hooks/post-receive
-- 
GNU gnutls