GnuTLS 2.7.3

gnutls-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

GnuTLS 2.7.3

From:	Simon Josefsson
Subject:	GnuTLS 2.7.3
Date:	Wed, 10 Dec 2008 17:35:41 +0100
User-agent:	Gnus/5.110011 (No Gnus v0.11) Emacs/23.0.60 (gnu/linux)

The GnuTLS 2.7.x branch is NOT what you want for your stable system.  It
is intended for developers and experienced users.

Here are the compressed sources:
  http://alpha.gnu.org/gnu/gnutls/gnutls-2.7.3.tar.bz2 (5.8MB)
  ftp://alpha.gnu.org/gnu/gnutls/gnutls-2.7.3.tar.bz2

Here is the OpenPGP signature:
  http://alpha.gnu.org/gnu/gnutls/gnutls-2.7.3.tar.bz2.sig
  ftp://alpha.gnu.org/gnu/gnutls/gnutls-2.7.3.tar.bz2.sig

Improving GnuTLS is costly, but you can help!  We are looking for
organizations that find GnuTLS useful and wish to contribute back.  You
can contribute by reporting bugs, improve the software, or donate money
or equipment.

Commercial support contracts for GnuTLS are available, and they help
finance continued maintenance.  Simon Josefsson Datakonsult AB, a
Stockholm based privately held company, is currently funding GnuTLS
maintenance.  We are always looking for interesting development
projects.  See http://josefsson.org/ for more details.

/Simon

* Version 2.7.3 (released 2008-12-10)

** gnutls: Fix chain verification for chains that ends with RSA-MD2 CAs.
Reported by Michael Kiefer <address@hidden> in
<http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507633> forwarded by
Andreas Metzler <address@hidden> in
<http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3309>.

** gnutls: Libgcrypt initialization changed.
If libgcrypt has not already been initialized, GnuTLS will now
initialize libgcrypt with disabled secure memory.  Initialize
libgcrypt explicitly in your application if you want to enable secure
memory.  Before GnuTLS initialized libgcrypt to use GnuTLS's memory
allocation functions, which doesn't use secure memory, so there is no
real change in behaviour.

** gnutls: Fix memory leak in PSK authentication.
Reported by Michael Weiser <address@hidden> in
<http://permalink.gmane.org/gmane.network.gnutls.general/1465>.

** gnutls: Small byte reads via gnutls_record_recv() optimized.

** certtool: Move gcry_control(GCRYCTL_ENABLE_QUICK_RANDOM, 0) call earlier.
It needs to be invoked before libgcrypt is initialized.

** gnutls-cli: Return non-zero exit code on error conditions.

** gnutls-cli: Corrected bug which caused a rehandshake request to be ignored.

** tests: Added chainverify self-test that tests X.509 chain verifications.

** API and ABI modifications:
No changes since last version.

pgpGPG58g47KJ.pgp
Description: PGP signature

[Prev in Thread]

Current Thread

[Next in Thread]

GnuTLS 2.7.3, Simon Josefsson <=

Prev by Date: Release candidate of 2.6.3
Next by Date: Re: Bug#507633: libgnutls26: GnuTLS does not know VeriSign any more
Previous by thread: Release candidate of 2.6.3
Next by thread: Patch updated: New function gnutls_x509_crq_get_key_id
Index(es):
- Date
- Thread