gnutls 3.0.9

gnutls-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

gnutls 3.0.9

From:	Nikos Mavrogiannopoulos
Subject:	gnutls 3.0.9
Date:	Tue, 13 Dec 2011 23:23:52 +0100
User-agent:	Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.2.24) Gecko/20111114 Icedove/3.1.16

Hello,
 I've just released gnutls 3.0.9. This release optimizes several
parts of gnutls, more prominent being optimizations in Diffie-Hellman 
and elliptic curve Diffie-Hellman key exchange. Moreover servers
can now enforce their priority for ciphersuites.

* Version 3.0.9 (released 2011-12-13)

** certtool: Added new parameter --dh-info.

** certtool: -l option was overloaded so if combined with --priority
it will only list the ciphersuites that are enabled by the given
priority string.

** libgnutls: Added new priority string %SERVER_PRECEDENCE, which
changes the ciphersuite selection procedure. If specified the server
priorities will be used for selection instead of the client's.

** libgnutls: Optimizations in Diffie-Hellman parameters generation
and key exchange.

** libgnutls: When session tickets are negotiated and used in a
session, a server will not store that session data into its cache.

** libgnutls: Added the SECP192R1 curve.

** libgnutls: Added gnutls_priority_get_cipher_suite_index() to
allow listing the ciphersuites enabled in a priority structure.
It outputs an index to be used in gnutls_get_cipher_suite_info().

** libgnutls: Optimizations in the elliptic curve code --timing
attacks resistant code is only used in ECDSA private key operations.

** doc: man pages for API functions generation was fixed and are
now added again in the distribution.

** API and ABI modifications:
GNUTLS_ECC_CURVE_SECP192R1: New curve definition
gnutls_priority_get_cipher_suite_index: Added


Getting the Software
====================

GnuTLS may be downloaded from one of the GNU mirror sites or directly
>From <ftp://ftp.gnu.org/gnu/gnutls/>.  The list of GNU mirrors can be
found at <http://www.gnu.org/prep/ftp.html> and a list of GnuTLS mirrors
can be found at <http://www.gnu.org/software/gnutls/download.html>.

Here are the XZ compressed sources:

  ftp://ftp.gnu.org/gnu/gnutls/gnutls-3.0.9.tar.xz
  http://ftp.gnu.org/gnu/gnutls/gnutls-3.0.9.tar.xz
  ftp://ftp.gnutls.org/pub/gnutls/gnutls-3.0.9.tar.xz

Here are OpenPGP detached signatures signed using key 0x96865171:

  ftp://ftp.gnu.org/gnu/gnutls/gnutls-3.0.9.tar.xz.sig
  http://ftp.gnu.org/gnu/gnutls/gnutls-3.0.9.tar.xz.sig
  ftp://ftp.gnutls.org/pub/gnutls/gnutls-3.0.9.tar.xz.sig

Note that it has been signed with my openpgp key:
pub   3104R/96865171 2008-05-04 [expires: 2028-04-29]
uid                  Nikos Mavrogiannopoulos <nmav <at> gnutls.org>
uid                  Nikos Mavrogiannopoulos <n.mavrogiannopoulos <at>
gmail.com>
sub   2048R/9013B842 2008-05-04 [expires: 2018-05-02]
sub   2048R/1404A91D 2008-05-04 [expires: 2018-05-02]

regards,
Nikos

[Prev in Thread]

Current Thread

[Next in Thread]

gnutls 3.0.9, Nikos Mavrogiannopoulos <=

Prev by Date: [sr #107850] gnutls 3.0.4 fails to compile on VIA C7 unless --disable-hardware-acceleration is provided
Next by Date: gnutls 3.0.9 fails test phase under Gentoo
Previous by thread: [sr #107850] gnutls 3.0.4 fails to compile on VIA C7 unless --disable-hardware-acceleration is provided
Next by thread: gnutls 3.0.9 fails test phase under Gentoo
Index(es):
- Date
- Thread