2005-04-27 Simon Josefsson <simon@josefsson.org> * NEWS: Version 1.0.25. 2005-04-27 Simon Josefsson <simon@josefsson.org> * configure.in: Bump version. 2005-04-27 nmav <nmav@gnutls.org> * lib/x509/privkey.c: [no log message] 2005-04-27 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_cipher.c, lib/gnutls_mpi.h, lib/x509/privkey.c: Backported from the new stable branch: - Corrected bug in record packet parsing that could lead to a denial of service attack. - Corrected bug in RSA key export. 2005-01-26 nmav <nmav@gnutls.org> * lib/gnutls_handshake.c: changes to make the --disable-srp-authentication work again. 2005-01-19 Simon Josefsson <simon@josefsson.org> * Makefile.am: (ChangeLog): Only log 1.0 entries. 2005-01-18 Simon Josefsson <simon@josefsson.org> * NEWS: Version 1.0.24. 2005-01-18 Simon Josefsson <simon@josefsson.org> * Makefile.am: Fix. 2005-01-18 Simon Josefsson <simon@josefsson.org> * Makefile.am: (ChangeLog): Use other syntax. 2005-01-18 Simon Josefsson <simon@josefsson.org> * Makefile.am: (release): Fix. 2005-01-18 Simon Josefsson <simon@josefsson.org> * THANKS: Pull up from trunk. 2005-01-15 nmav <nmav@gnutls.org> * src/cli.c: rolled back incorrect commit in cli.c 2005-01-05 Simon Josefsson <simon@josefsson.org> * lib/x509/dn.c: (_gnutls_x509_parse_dn): Return buffer size, not string size, in *sizeof_buf. Reported by Martin Lambers <marlam@web.de>. 2004-12-16 nmav <nmav@gnutls.org> * NEWS, THANKS: [no log message] 2004-12-15 nmav <nmav@gnutls.org> * lib/x509/common.c: corrected bug in gnutls_x509_set_time() 2004-12-15 nmav <nmav@gnutls.org> * doc/tex/cert_auth.tex: [no log message] 2004-12-15 nmav <nmav@gnutls.org> * lib/gnutls_x509.c, libextra/gnutls_openssl.c, src/certtool.c, src/cli.c, src/common.c: Corrected bugs found by Marcin Garski <mgarski@post.pl> 2004-11-25 nmav <nmav@gnutls.org> * lib/x509/dn.c: corrected bug in parse_dn_oid(). Traced and reported by Pelle Johansson. 2004-11-13 Simon Josefsson <simon@josefsson.org> * NEWS, configure.in: Bump versions. 2004-11-13 Simon Josefsson <simon@josefsson.org> * NEWS: Version 1.0.23. 2004-11-13 Simon Josefsson <simon@josefsson.org> * NEWS: Add. 2004-11-13 Simon Josefsson <simon@josefsson.org> * src/certtool.c: Make private key optional in --to-p12, suggested by Fabian Fagerholm <fabbe@paniq.net>. 2004-11-11 nmav <nmav@gnutls.org> * lib/minitasn1/coding.c, lib/minitasn1/decoding.c, lib/minitasn1/errors.c, lib/minitasn1/parser_aux.c, lib/minitasn1/structure.c: updated to the new libtasn1. 2004-11-11 nmav <nmav@gnutls.org> * NEWS, lib/x509/extensions.c: backported the fix for CRL distribution points from unstable branch. 2004-11-04 Simon Josefsson <simon@josefsson.org> * AUTHORS: Pull up from trunk. 2004-10-29 Simon Josefsson <simon@josefsson.org> * NEWS, configure.in, lib/Makefile.am, libextra/Makefile.am: Replace GNU LD version script with Libtool -export-symbols-regex, tiny patch from Joe Orton <joe@manyfish.co.uk>. 2004-10-28 Simon Josefsson <simon@josefsson.org> * THANKS: Add. 2004-10-28 Simon Josefsson <simon@josefsson.org> * lib/minitasn1/coding.c, lib/minitasn1/decoding.c, lib/minitasn1/element.c, lib/minitasn1/errors.c, lib/minitasn1/errors.h, lib/minitasn1/errors_int.h, lib/minitasn1/gstr.c, lib/minitasn1/gstr.h, lib/minitasn1/int.h, lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c: Doc fixes, from Martijn Koster <mak@greenhills.co.uk>. 2004-10-28 Simon Josefsson <simon@josefsson.org> * NEWS, lib/minitasn1/decoding.c, lib/minitasn1/int.h, lib/minitasn1/libtasn1.h: Sync libtasn1 files with 0.2.11. 2004-10-28 Simon Josefsson <simon@josefsson.org> * NEWS, configure.in: Bump versions. 2004-10-28 Simon Josefsson <simon@josefsson.org> * NEWS: Version 1.0.22. 2004-10-28 Simon Josefsson <simon@josefsson.org> * lib/x509/common.c: Make it compile. 2004-10-28 Simon Josefsson <simon@josefsson.org> * NEWS: Typo. 2004-10-25 Simon Josefsson <simon@josefsson.org> * configure.in: Move LIBS (i.e., -lz) to end of LIBGNUTLS_LIBS, to fix libgnutls*-config --libs output, reported by Yoann Vandoorselaere <yoann@prelude-ids.org>. 2004-10-25 Simon Josefsson <simon@josefsson.org> * NEWS: Add. 2004-10-24 Simon Josefsson <simon@josefsson.org> * NEWS: Add. 2004-10-24 Simon Josefsson <simon@josefsson.org> * src/certtool.c: Fix --password. 2004-10-24 Simon Josefsson <simon@josefsson.org> * NEWS, THANKS: Add. 2004-10-24 Simon Josefsson <simon@josefsson.org> * lib/gnutls_x509.c: (gnutls_certificate_set_x509_trust): Fix memory bug, tiny patch by Aleix Conchillo Flaque <aleix@member.fsf.org>. 2004-10-24 Simon Josefsson <simon@josefsson.org> * NEWS, THANKS, configure.in, lib/Makefile.am, lib/gnutls.pc.in, libextra/Makefile.am, libextra/gnutls-extra.pc.in: Add pkg-config meta files, suggested by Stéphane LOEUILLET <stephane.loeuillet@tiscali.fr>. 2004-10-24 Simon Josefsson <simon@josefsson.org> * lib/gnutls.pc.in, libextra/gnutls-extra.pc.in: Add pkg-config meta files, suggested by Stéphane LOEUILLET <stephane.loeuillet@tiscali.fr>. 2004-10-24 Simon Josefsson <simon@josefsson.org> * NEWS, THANKS, lib/libgnutls-config.in, libextra/libgnutls-extra-config.in: Add parameter --la-file to libgnutls-config and libgnutls-extra-config, tiny patch contributed by Joe Orton <joe@manyfish.co.uk>. 2004-10-20 nmav <nmav@gnutls.org> * lib/x509/common.c: print teletex strings if they contain only ASCII characters. 2004-10-18 nmav <nmav@gnutls.org> * NEWS, lib/x509/common.c: Added second precision to the X.509 parsing functions. (backported from the unstable) 2004-10-17 nmav <nmav@gnutls.org> * NEWS: [no log message] 2004-10-17 nmav <nmav@gnutls.org> * lib/x509/dn.c: corrected bug in _gnutls_x509_get_dn_oid(). 2004-10-13 nmav <nmav@gnutls.org> * NEWS: [no log message] 2004-10-13 nmav <nmav@gnutls.org> * lib/x509/common.c, lib/x509/common.h, lib/x509/dn.c, lib/x509/dn.h: print DN of certificates with unknown characters in them, but in hex form only. 2004-10-13 nmav <nmav@gnutls.org> * lib/x509/common.c: reject printing DN in certificates that contain non-UTF-8 characters in DN. 2004-10-06 Simon Josefsson <simon@josefsson.org> * NEWS, configure.in: Bump versions. 2004-10-06 Simon Josefsson <simon@josefsson.org> * configure.in: Oops, forgot to bump version. 2004-10-06 Simon Josefsson <simon@josefsson.org> * NEWS: Version 1.0.21. 2004-10-06 Simon Josefsson <simon@josefsson.org> * NEWS: Add. 2004-10-06 Simon Josefsson <simon@josefsson.org> * THANKS: Pull up from trunk. 2004-10-05 Simon Josefsson <simon@josefsson.org> * NEWS: Add. 2004-10-05 Simon Josefsson <simon@josefsson.org> * configure.in: Check for getpass, for opencdk, reported by Yoann Vandoorselaere <yoann@prelude-ids.org>. 2004-10-05 Simon Josefsson <simon@josefsson.org> * libextra/opencdk/main.c: (getpass): Only implement when !HAVE_GETPASS. 2004-09-19 Simon Josefsson <simon@josefsson.org> * doc/tex/ex-rfc2818.tex: Fix. 2004-09-19 Simon Josefsson <simon@josefsson.org> * doc/tex/ex-rfc2818.tex, doc/tex/examples.tex: Add, from Nikos. 2004-09-17 Simon Josefsson <simon@josefsson.org> * NEWS: Add. 2004-09-17 Simon Josefsson <simon@josefsson.org> * src/Makefile.am: Fix objdir != srcdir in -I, reported by "Gerrit P. Haase" <gp@familiehaase.de>. 2004-09-17 Simon Josefsson <simon@josefsson.org> * lib/Makefile.am, libextra/Makefile.am: Fix objdir != srcdir in -I, reported by "Gerrit P. Haase" <gp@familiehaase.de>. 2004-09-17 Simon Josefsson <simon@josefsson.org> * tests/Makefile.am, configure.in: Fix objdir != srcdir in -I, reported by "Gerrit P. Haase" <gp@familiehaase.de>. 2004-09-17 Simon Josefsson <simon@josefsson.org> * THANKS: Add. 2004-09-17 Simon Josefsson <simon@josefsson.org> * lib/minitasn1/Makefile.am: Fix objdir != srcdir in -I, reported by "Gerrit P. Haase" <gp@familiehaase.de>. 2004-09-17 Simon Josefsson <simon@josefsson.org> * buildconf: Cleanup. 2004-09-15 Simon Josefsson <simon@josefsson.org> * NEWS: Add. 2004-09-15 Simon Josefsson <simon@josefsson.org> * src/certtool.c: (load_cert): Fix crash in `certtool --to-p12 --load-privkey foo'. 2004-08-31 Simon Josefsson <simon@josefsson.org> * NEWS: Ad. 2004-08-31 Simon Josefsson <simon@josefsson.org> * lib/x509/x509.c: Fix mem leak. 2004-08-31 Simon Josefsson <simon@josefsson.org> * lib/gnutls_cert.c, lib/x509/x509.c: Fix mem leak (tiny patch). From Simon Posnjak <simon.posnjak@cetrtapot.si>. 2004-08-31 Simon Josefsson <simon@josefsson.org> * THANKS: Pull up from trunk. 2004-08-18 Simon Josefsson <simon@josefsson.org> * Makefile.am: [no log message] 2004-08-18 Simon Josefsson <simon@josefsson.org> * Makefile.am: (release): Fix. 2004-08-18 Simon Josefsson <simon@josefsson.org> * NEWS: Version 1.0.20. 2004-08-18 Simon Josefsson <simon@josefsson.org> * tests/simple.c: Fix warning. 2004-08-18 Simon Josefsson <simon@josefsson.org> * Makefile.am: (release): Add. 2004-08-18 Simon Josefsson <simon@josefsson.org> * lib/gnutls_mpi.h: Reorder, to get config.h included before gcrypt.h. 2004-08-18 Simon Josefsson <simon@josefsson.org> * libextra/opencdk/keyserver.c: Pull up from trunk. 2004-08-17 Simon Josefsson <simon@josefsson.org> * THANKS: Pull up from trunk. 2004-08-17 Simon Josefsson <simon@josefsson.org> * NEWS: Add. 2004-08-17 Simon Josefsson <simon@josefsson.org> * configure.in: Bump version. 2004-08-17 Simon Josefsson <simon@josefsson.org> * lib/gnutls_pk.c: Simplify computation of PKCS#1 version 1.5 type 2 non-zero pad bytes, reported by Robey Pointer <robey@danger.com>. 2004-08-09 Simon Josefsson <simon@josefsson.org> * src/Makefile.am: Replace $(RM) with rm, the former doesn't seem to exist, and automake generated makefile use rm directly anyway. 2004-08-09 Simon Josefsson <simon@josefsson.org> * NEWS: Version 1.0.19. 2004-08-09 Simon Josefsson <simon@josefsson.org> * THANKS: Pull up from trunk. 2004-08-09 Simon Josefsson <simon@josefsson.org> * NEWS: Add. 2004-08-09 Simon Josefsson <simon@josefsson.org> * THANKS: Pull up from trunk. 2004-08-09 Simon Josefsson <simon@josefsson.org> * tests/Makefile.am: Typo, reported by Michael Heironimus <mkh01@earthlink.net>. 2004-08-09 Simon Josefsson <simon@josefsson.org> * configure.in: Bump version. 2004-08-04 Simon Josefsson <simon@josefsson.org> * NEWS: Version 1.0.18. 2004-08-04 Simon Josefsson <simon@josefsson.org> * Makefile.am: More cvs2cl ignores. 2004-08-04 Simon Josefsson <simon@josefsson.org> * Makefile.am: cvs2cl --prune doesn't work with version 2.55 nor 2.57. 2004-08-02 Simon Josefsson <simon@josefsson.org> * NEWS: Added simple self test suite. 2004-08-02 Simon Josefsson <simon@josefsson.org> * Makefile.am, configure.in, tests/Makefile, tests/Makefile.am, tests/simple.c, tests/utils.c, tests/utils.h: Add (start of) self test suite. 2004-08-02 Simon Josefsson <simon@josefsson.org> * buildconf: Use autoreconf. 2004-08-02 Simon Josefsson <simon@josefsson.org> * configure.in: Bump version. 2004-08-02 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_cert.c: [no log message] 2004-08-02 nmav <nmav@gnutls.org> * doc/examples/Makefile.am: [no log message] 2004-07-31 nmav <nmav@gnutls.org> * lib/gnutls_int.h: [no log message] 2004-07-31 nmav <nmav@gnutls.org> * src/certtool.c: print the number of bits of the public key in a certificate. 2004-07-31 nmav <nmav@gnutls.org> * NEWS, doc/tex/examples.tex: [no log message] 2004-07-31 nmav <nmav@gnutls.org> * NEWS, lib/auth_cert.h, lib/gnutls.h.in.in, lib/gnutls_cert.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_int.h, lib/gnutls_ui.c, lib/gnutls_ui.h, lib/gnutls_x509.c: Added some default limits in the verification of certificate chains, to avoid denial of service attacks. Also added gnutls_certificate_set_verify_limits() to override them. 2004-07-30 nmav <nmav@gnutls.org> * doc/tex/ex-cert-select.tex, lib/gnutls_cert.c: corrected documentation. 2004-07-28 nmav <nmav@gnutls.org> * libextra/openssl_compat.h: [no log message] 2004-07-28 nmav <nmav@gnutls.org> * configure.in: [no log message] 2004-07-28 nmav <nmav@gnutls.org> * libextra/openssl_compat.c: [no log message] 2004-07-27 nmav <nmav@gnutls.org> * src/cfg/Makefile.am, src/cfg/cfg+.c, src/cfg/cfg+.h, src/cfg/cfgfile.c, src/cfg/cfgfile.h, src/cfg/cmdline.c, src/cfg/cmdline.h, src/cfg/parse.c, src/cfg/props.c, src/cfg/shared.c, src/cfg/shared.h, src/cfg/platon/Makefile.am, src/cfg/platon/str/Makefile.am, src/cfg/platon/str/dynfgets.c, src/cfg/platon/str/dynfgets.h, src/cfg/platon/str/strctype.c, src/cfg/platon/str/strctype.h, src/cfg/platon/str/strdyn.c, src/cfg/platon/str/strdyn.h, src/cfg/platon/str/strplus.c, src/cfg/platon/str/strplus.h: added missing files. 2004-07-27 nmav <nmav@gnutls.org> * NEWS, doc/tex/gnutls.bib, lib/Makefile.am, lib/minitasn1/Makefile.am, lib/x509/Makefile.am, libextra/Makefile.am, libextra/gnutls_openpgp.c, libextra/opencdk/Makefile.am, libextra/openpgp/Makefile.am, libextra/openpgp/openpgp.c, libextra/openpgp/pgp.c, libextra/openpgp/pgpverify.c, libextra/openpgp/privkey.c, libextra/openpgp/verify.c, libextra/openpgp/xml.c: avoid using libtool's convenience libraries since they are buggy and cause conflicts in linking. 2004-07-27 nmav <nmav@gnutls.org> * libextra/openpgp/pgp.c: [no log message] 2004-07-27 nmav <nmav@gnutls.org> * NEWS, libextra/auth_srp.c, libextra/gnutls_srp.c, libextra/gnutls_srp.h: * Updated the SRP authentication to conform to the latest (yet unreleased) draft. Unfortunately this breaks compatibility with previous versions. 2004-07-25 nmav <nmav@gnutls.org> * libextra/openpgp/pgp.c, libextra/openpgp/pgpverify.c: avoid using libtool's convenience libraries since they are buggy and cause conflicts in linking. 2004-07-25 nmav <nmav@gnutls.org> * libextra/opencdk/encrypt.c, libextra/opencdk/main.c, libextra/opencdk/misc.c: removed the malloc.h include. 2004-07-16 nmav <nmav@gnutls.org> * doc/tex/cert_auth.tex: [no log message] 2004-07-10 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_x509.c: [no log message] 2004-07-09 nmav <nmav@gnutls.org> * NEWS, configure.in: gnutls 1.0.16 2004-07-09 nmav <nmav@gnutls.org> * lib/gnutls_x509.c, lib/x509/verify.c, lib/x509/x509.c: eliminated some memory leaks. Reported by Yoann Vandoorselaere <yoann@prelude-ids.org>. 2004-07-02 nmav <nmav@gnutls.org> * lib/x509/Makefile.am: [no log message] 2004-07-01 nmav <nmav@gnutls.org> * lib/x509/Makefile.am: corrected a makefile problem when the included opencdk was used. Reported by Robey Pointer <robey@danger.com>. 2004-06-29 nmav <nmav@gnutls.org> * libextra/auth_srp.h, libextra/auth_srp_passwd.c, libextra/gnutls_srp.c: Do not free the SRP (n/g) parameters from the callback if they are the static ones defined in extra.h 2004-06-28 nmav <nmav@gnutls.org> * NEWS, configure.in: released 1.0.15 2004-06-24 nmav <nmav@gnutls.org> * NEWS, doc/tex/certificate.tex, doc/tex/gnutls.bib, doc/tex/tlsintro.tex, lib/x509/verify.c, libextra/gnutls_srp.c: Corrected a bug in certificate verification. Pointed out by Yoann Vandoorselaere <yoann@prelude-ids.org> 2004-06-16 nmav <nmav@gnutls.org> * lib/gnutls_pk.c: Corrected bug in PKCS #1 encryption. 2004-06-13 nmav <nmav@gnutls.org> * libextra/openssl_compat.c, libextra/openssl_compat.h: Added the '_t' suffix to all exported symbols. 2004-06-12 nmav <nmav@gnutls.org> * doc/tex/ex-verify.tex, lib/gnutls_ui.c, libextra/openpgp/openpgp.c: [no log message] 2004-06-12 nmav <nmav@gnutls.org> * NEWS, includes/gnutls/openpgp.h: [no log message] 2004-06-12 nmav <nmav@gnutls.org> * libextra/openpgp/Makefile.am, libextra/openpgp/verify.c: Added gnutls_openpgp_keyring_check_id() 2004-06-12 nmav <nmav@gnutls.org> * doc/tex/ex-verify.tex, doc/examples/Makefile.am, doc/tex/Makefile.am, doc/tex/ex-rfc2818.tex, doc/tex/examples.tex: added an improved verification example. 2004-06-10 nmav <nmav@gnutls.org> * lib/gnutls_handshake.c, lib/gnutls_state.c, lib/x509/x509.c: some fixes in the session resuming code. 2004-06-07 nmav <nmav@gnutls.org> * libextra/openssl_compat.c: changed indentation to 4 spaces instead of tabs. 2004-06-06 nmav <nmav@gnutls.org> * NEWS, doc/tex/cover.tex.in, includes/gnutls/x509.h, lib/gnutls_int.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/x509/x509.c: Added the functions gnutls_x509_crt_get_pk_rsa_raw() and gnutls_x509_crt_get_pk_dsa_raw() to retrieve parameters from certificates. 2004-06-06 nmav <nmav@gnutls.org> * NEWS, doc/tex/certificate.tex, doc/tex/compression.tex, doc/tex/gnutls.bib, doc/tex/howto.tex, doc/tex/programs.tex, lib/gnutls_mpi.h, libextra/auth_srp.c, libextra/gnutls_srp.c: Updated to conform to the latest srp draft (draft-ietf-tls-srp-07). Some documentation updates. 2004-06-06 nmav <nmav@gnutls.org> * doc/TODO, doc/tex/certificate.tex, lib/gnutls_mpi.c, lib/x509/pkcs12_bag.c, src/cli.c: [no log message] 2004-06-01 nmav <nmav@gnutls.org> * configure.in, libtasn1.m4: [no log message] 2004-06-01 nmav <nmav@gnutls.org> * doc/tex/certificate.tex, doc/tex/gnutls.bib: [no log message] 2004-05-31 nmav <nmav@gnutls.org> * src/cli.c: ciphers are sorted according to a strength order. 2004-05-27 nmav <nmav@gnutls.org> * libextra/auth_srp.c: only static parameters from the TLS-SRP draft are now allowed (to be conservative in security) 2004-05-27 nmav <nmav@gnutls.org> * lib/gnutls_handshake.c, lib/gnutls_v2_compat.c: added some extra checks in hello packet parsing. 2004-05-27 nmav <nmav@gnutls.org> * acinclude.m4, configure.in, lib/Makefile.am, libextra/Makefile.am, libextra/openpgp/Makefile.am, src/Makefile.am, src/certtool-cfg.h: some libtasn1 related compilation fixes 2004-05-27 nmav <nmav@gnutls.org> * configure.in: [no log message] 2004-05-27 nmav <nmav@gnutls.org> * configure.in, libextra/opencdk/keydb.c, libextra/opencdk/main.h, libextra/opencdk/opencdk.h, libextra/opencdk/pubkey.c, libextra/opencdk/read-packet.c, libextra/opencdk/sig-check.c, libextra/openpgp/verify.c: added dependency on opencdk 0.5.5 2004-05-26 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_handshake.c, lib/pkix.asn, lib/pkix_asn1_tab.c, libextra/libgnutls-extra.m4: Corrected session resuming in SRP ciphersuites. 2004-05-26 nmav <nmav@gnutls.org> * doc/tex/programs.tex, lib/gnutls_state.c, lib/libgnutls.m4: [no log message] 2004-05-18 nmav <nmav@gnutls.org> * lib/minitasn1/decoding.c: [no log message] 2004-05-16 nmav <nmav@gnutls.org> * lib/minitasn1/int.h: [no log message] 2004-05-16 nmav <nmav@gnutls.org> * libtasn1.m4, NEWS, acinclude.m4, configure.in, lib/minitasn1/int.h, lib/minitasn1/libtasn1.h, lib/minitasn1/structure.c: added proper libtasn1 version detection. 2004-05-16 nmav <nmav@gnutls.org> * lib/minitasn1/decoding.c: Applied patch by Max Vozeler <max@hinterhof.net>, sent by Ivo Timmermans. 2004-05-15 nmav <nmav@gnutls.org> * NEWS, configure.in, doc/certtool.cfg, lib/pkix.asn, libextra/Makefile.am, src/certtool-cfg.c, src/certtool.c: certtool has now support for more X.520 DN attribute types. 2004-05-14 nmav <nmav@gnutls.org> * configure.in, doc/certtool.cfg: [no log message] 2004-05-14 nmav <nmav@gnutls.org> * src/certtool-cfg.c, src/certtool-cfg.h, src/certtool.c: certtool can now read and set the UID field to a DN. 2004-05-13 nmav <nmav@gnutls.org> * doc/tex/ex-pkcs12.tex, doc/tex/examples.tex, lib/gnutls.h.in.in, lib/gnutls_int.h, lib/x509/pkcs12_bag.c, src/certtool.c: removed gnutls_const_datum type. 2004-05-13 nmav <nmav@gnutls.org> * libextra/opencdk/Makefile.am, libextra/opencdk/README: [no log message] 2004-05-13 nmav <nmav@gnutls.org> * configure.in, libextra/openpgp/Makefile.am, libextra/openpgp/gnutls_openpgp.h, libextra/openpgp/openpgp.h: [no log message] 2004-05-13 nmav <nmav@gnutls.org> * src/prime.c, src/certtool-cfg.c, src/certtool-cfg.h: [no log message] 2004-05-13 nmav <nmav@gnutls.org> * configure.in, lib/gnutls_compress_int.c, lib/gnutls_handshake.c, lib/gnutls_priority.c, libextra/Makefile.am, libextra/gnutls_extra.c, libextra/gnutls_openpgp.c, libextra/openpgp/compat.c, libextra/openpgp/extras.c, libextra/openpgp/openpgp.c, libextra/openpgp/privkey.c, libextra/openpgp/verify.c, libextra/openpgp/xml.c, src/cli.c, src/common.c, src/serv.c: some fixes in the compilation system. 2004-05-13 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/Makefile.am, libextra/Makefile.am, libextra/opencdk/Makefile.am, libextra/opencdk/armor.c, libextra/opencdk/cipher.c, libextra/opencdk/cipher.h, libextra/opencdk/compress.c, libextra/opencdk/context.h, libextra/opencdk/encrypt.c, libextra/opencdk/filters.h, libextra/opencdk/kbnode.c, libextra/opencdk/keydb.c, libextra/opencdk/keygen.c, libextra/opencdk/keylist.c, libextra/opencdk/keyserver.c, libextra/opencdk/main.c, libextra/opencdk/main.h, libextra/opencdk/md.c, libextra/opencdk/md.h, libextra/opencdk/misc.c, libextra/opencdk/new-packet.c, libextra/opencdk/opencdk.h, libextra/opencdk/packet.h, libextra/opencdk/plaintext.c, libextra/opencdk/pubkey.c, libextra/opencdk/read-packet.c, libextra/opencdk/seskey.c, libextra/opencdk/sig-check.c, libextra/opencdk/sign.c, libextra/opencdk/stream.c, libextra/opencdk/stream.h, libextra/opencdk/sym-cipher.c, libextra/opencdk/trustdb.c, libextra/opencdk/types.h, libextra/opencdk/verify.c, libextra/opencdk/write-packet.c: Opencdk library is being included if not found. 2004-05-12 nmav <nmav@gnutls.org> * libextra/opencdk/Makefile.am, libextra/opencdk/armor.c, libextra/opencdk/cipher.c, libextra/opencdk/cipher.h, libextra/opencdk/compress.c, libextra/opencdk/context.h, libextra/opencdk/encrypt.c, libextra/opencdk/filters.h, libextra/opencdk/kbnode.c, libextra/opencdk/keydb.c, libextra/opencdk/keygen.c, libextra/opencdk/keylist.c, libextra/opencdk/keyserver.c, libextra/opencdk/main.c, libextra/opencdk/main.h, libextra/opencdk/md.c, libextra/opencdk/md.h, libextra/opencdk/misc.c, libextra/opencdk/new-packet.c, libextra/opencdk/opencdk.h, libextra/opencdk/packet.h, libextra/opencdk/plaintext.c, libextra/opencdk/pubkey.c, libextra/opencdk/read-packet.c, libextra/opencdk/seskey.c, libextra/opencdk/sig-check.c, libextra/opencdk/sign.c, libextra/opencdk/stream.c, libextra/opencdk/stream.h, libextra/opencdk/sym-cipher.c, libextra/opencdk/trustdb.c, libextra/opencdk/types.h, libextra/opencdk/verify.c, libextra/opencdk/write-packet.c: opencdk is being included if not found. 2004-05-12 nmav <nmav@gnutls.org> * NEWS, doc/certtool.cfg, doc/tex/srp.tex, src/certtool.c, src/crypt-gaa.c, src/crypt-gaa.h, src/crypt.gaa, src/certtool-cfg.c, src/certtool-cfg.h: certtool can now add ip address SAN extension. 2004-05-11 nmav <nmav@gnutls.org> * lib/gnutls_handshake.c: the TLS hello message random values no longer use strong random data. 2004-05-08 nmav <nmav@gnutls.org> * src/README.srptool, src/Makefile.am, src/README.srpcrypt: [no log message] 2004-05-08 nmav <nmav@gnutls.org> * doc/Makefile.am, doc/certtool.cfg: [no log message] 2004-05-08 nmav <nmav@gnutls.org> * lib/gnutls_handshake.c, libextra/auth_srp_passwd.c, libextra/gnutls_srp.c, lib/auth_rsa.c: Fixed some things in the random number usage. Weak levels are used where possible to avoid emptying the strong random pool. 2004-05-08 nmav <nmav@gnutls.org> * doc/tex/srp.tex: [no log message] 2004-05-08 nmav <nmav@gnutls.org> * NEWS, configure.in, doc/manpages/Makefile.am, doc/manpages/gnutls-srpcrypt.1, doc/manpages/srptool.1, doc/tex/ex-x509-info.tex: [no log message] 2004-05-08 nmav <nmav@gnutls.org> * doc/tex/Makefile.am, doc/tex/alert.tex, doc/tex/cert_auth.tex, doc/tex/certificate.tex, doc/tex/ciphers.tex, doc/tex/examples.tex, doc/tex/gnutls.tex, doc/tex/howto.tex, doc/tex/programs.tex, doc/tex/srp.tex: copied documentation from the devel branch. 2004-05-08 nmav <nmav@gnutls.org> * doc/tex/cert_auth.tex: some additions to certificate stuff. 2004-04-30 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/auth_cert.c, lib/ext_cert_type.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_state.c: Automatically disable certificate types that do not have corresponding certificates. 2004-04-29 nmav <nmav@gnutls.org> * NEWS: [no log message] 2004-04-29 nmav <nmav@gnutls.org> * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: added xml exporting capabilities to certtool utility. 2004-04-28 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/Makefile.am, src/Makefile.am: some complilation fixes. Reported by Jerry Lundstroem <prox@lunar-linux.org> 2004-04-26 nmav <nmav@gnutls.org> * configure.in: [no log message] 2004-04-23 nmav <nmav@gnutls.org> * lib/gnutls_cert.c: [no log message] 2004-04-23 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/auth_cert.c, src/Makefile.am: [no log message] 2004-04-23 nmav <nmav@gnutls.org> * NEWS, configure.in, includes/gnutls/x509.h, lib/gnutls_cipher_int.c, lib/gnutls_global.c, lib/x509/Makefile.am, lib/x509/extensions.c, lib/x509/extensions.h, lib/x509/rc2.c, lib/x509/rc2.h, lib/x509/x509.c, lib/x509/x509_write.c, src/Makefile.am, src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: * Changes backported from the development brach: - Added support for authority key identifier and the extended key usage X.509 extension fields. The certtoool was updated to support them. - Added batch support to certtool. Now it can use templates. - The RC2 cipher is no more included. The one in libgcrypt is now used. 2004-04-22 nmav <nmav@gnutls.org> * NEWS, doc/TODO, lib/gnutls_record.c: allow unexpected handshake requests by the client. 2004-04-19 nmav <nmav@gnutls.org> * src/Makefile.am: srptool is now linked to gnutls-srpcrypt 2004-04-19 nmav <nmav@gnutls.org> * lib/gnutls_global.c: [no log message] 2004-04-18 nmav <nmav@gnutls.org> * NEWS, doc/tex/ex-serv-srp.tex, doc/tex/programs.tex, src/Makefile.am: Renamed gnutls-srpcrypt to srptool 2004-04-18 nmav <nmav@gnutls.org> * NEWS, configure.in, includes/gnutls/openpgp.h, lib/auth_cert.c: Corrected bug in OpenPGP key loading using a callback. 2004-04-17 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_str.c: Corrected bug in TLS renegotiation. 2004-04-17 nmav <nmav@gnutls.org> * NEWS: [no log message] 2004-04-17 nmav <nmav@gnutls.org> * NEWS, configure.in, doc/tex/ex-rfc2818.tex, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, src/certtool.c: Added gnutls_sign_algorithm_get_name() and gnutls_pk_algorithm_get_name(). 2004-04-15 nmav <nmav@gnutls.org> * src/certtool-cfg.c: Some updates in order to compile with tcc. 2004-04-15 nmav <nmav@gnutls.org> * src/certtool-cfg.c, src/certtool-cfg.h: some cleanups in the parsing code. 2004-04-14 nmav <nmav@gnutls.org> * doc/certtool.cfg: [no log message] 2004-04-14 nmav <nmav@gnutls.org> * doc/certtool.cfg, src/certtool-cfg.c, src/certtool-cfg.h: [no log message] 2004-04-14 nmav <nmav@gnutls.org> * doc/certtool.cfg: [no log message] 2004-04-14 nmav <nmav@gnutls.org> * src/certtool-cfg.c, src/certtool-cfg.h, src/cfg/Makefile.am, src/cfg/cfg+.c, src/cfg/cfg+.h, src/cfg/cfgfile.c, src/cfg/cfgfile.h, src/cfg/cmdline.c, src/cfg/cmdline.h, src/cfg/parse.c, src/cfg/props.c, src/cfg/shared.c, src/cfg/shared.h, src/cfg/platon/Makefile.am, src/cfg/platon/str/Makefile.am, src/cfg/platon/str/dynfgets.c, src/cfg/platon/str/dynfgets.h, src/cfg/platon/str/strctype.c, src/cfg/platon/str/strctype.h, src/cfg/platon/str/strdyn.c, src/cfg/platon/str/strdyn.h, src/cfg/platon/str/strplus.c, src/cfg/platon/str/strplus.h: Added batch support to certtool. Now can use templates. 2004-04-03 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c, lib/gnutls_compress_int.c, lib/gnutls_int.h: [no log message] 2004-04-03 nmav <nmav@gnutls.org> * NEWS: [no log message] 2004-04-03 nmav <nmav@gnutls.org> * NEWS, lib/auth_cert.c, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_extensions.c, lib/gnutls_extensions.h, lib/gnutls_handshake.c, lib/gnutls_sig.c: - Corrected bug in SSL 3.0 authentication. (backported changes from the development branch) 2004-04-03 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/gnutls_state.c: - Corrected bug in RSA parameters handling which could cause unexpected crashes. 2004-04-03 nmav <nmav@gnutls.org> * doc/tex/library.tex: [no log message] 2004-03-29 nmav <nmav@gnutls.org> * configure.in, lib/libgnutls.vers, libextra/libgnutls-extra.vers: [no log message] 2004-03-29 nmav <nmav@gnutls.org> * NEWS, configure.in: [no log message] 2004-03-25 nmav <nmav@gnutls.org> * doc/tex/gnutls.bib, doc/tex/howto.tex, doc/tex/tls_extensions.tex: [no log message] 2004-03-25 nmav <nmav@gnutls.org> * NEWS, includes/gnutls/compat8.h, includes/gnutls/extra.h, lib/gnutls_ui.h: [no log message] 2004-03-25 nmav <nmav@gnutls.org> * NEWS, configure.in, libgcrypt.m4, doc/examples/Makefile.am, doc/tex/Makefile.am, doc/tex/auth.tex, doc/tex/examples.tex, doc/tex/preparation.tex, includes/gnutls/x509.h, lib/Makefile.am, lib/auth_anon.c, lib/auth_anon.h, lib/auth_cert.h, lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/gnutls.h.in.in, lib/gnutls_anon_cred.c, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_dh.h, lib/gnutls_dh_primes.c, lib/gnutls_global.c, lib/gnutls_int.h, lib/gnutls_rsa_export.c, lib/gnutls_rsa_export.h, lib/gnutls_sig.c, lib/gnutls_state.c, lib/gnutls_ui.c, lib/gnutls_ui.h, lib/x509/privkey.c, lib/x509/privkey.h, libextra/openpgp/openpgp.c, libextra/openpgp/xml.c, src/Makefile.am, src/certtool.c, src/crypt.c, src/getpass.c, src/getpass.h, src/serv.c: Backported changes from the development cvs version. Those are: - Added gnutls_certificate_set_params_function() and gnutls_anon_set_params_function() that set the RSA or DH parameters using a callback. - Added functions gnutls_rsa_params_cpy(), gnutls_dh_params_cpy() and gnutls_x509_privkey_cpy(). - Corrected a compilation issue when opencdk was installed in a non standard directory. 2004-03-16 nmav <nmav@gnutls.org> * src/getpass.c, src/getpass.h: replaced the getpass() call with an internal one. 2004-02-28 nmav <nmav@gnutls.org> * libextra/openpgp/openpgp.h: [no log message] 2004-02-28 nmav <nmav@gnutls.org> * libextra/openpgp/openpgp.h: compilation fixes for the case where --disable-openpgp-authentication is specified. 2004-02-28 nmav <nmav@gnutls.org> * lib/minitasn1/coding.c, lib/minitasn1/decoding.c, lib/minitasn1/element.c, lib/minitasn1/int.h, lib/minitasn1/libtasn1.h, lib/minitasn1/structure.c: added new libtasn1 (0.2.7) 2004-02-28 nmav <nmav@gnutls.org> * configure.in, lib/gnutls_handshake.c, lib/gnutls_hash_int.c: some bugfixes. No longer allow sending client hello if a TLS version is not set. 2004-02-27 nmav <nmav@gnutls.org> * lib/gnutls_handshake.c, lib/gnutls_sig.c: Corrected bug in mutual certificate authentication in SSL 3.0 (part 2). 2004-02-27 nmav <nmav@gnutls.org> * NEWS, includes/gnutls/compat8.h, lib/auth_cert.c, lib/gnutls_cipher.c, lib/gnutls_constate.c, lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_kx.c, lib/gnutls_kx.h, lib/gnutls_sig.c: Corrected bug in mutual certificate authentication in SSL 3.0. 2004-02-25 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, lib/gnutls_cipher.c, src/cli.c, src/common.c, src/serv.c, src/tests.c, src/tests.h, src/tls_test-gaa.c, src/tls_test.c: [no log message] 2004-02-22 nmav <nmav@gnutls.org> * libextra/openpgp/openpgp.c: [no log message] 2004-02-22 nmav <nmav@gnutls.org> * NEWS, opencdk.m4, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/x509/Makefile.am, lib/x509/rfc2818_hostname.c: Corrected the return values of gnutls_x509_crt_check_hostname(). 2004-02-22 nmav <nmav@gnutls.org> * doc/tex/preface.tex: [no log message] 2004-02-16 nmav <nmav@gnutls.org> * lib/x509/Makefile.am: [no log message] 2004-02-13 nmav <nmav@gnutls.org> * lib/x509/common.h: [no log message] 2004-02-12 nmav <nmav@gnutls.org> * NEWS, configure.in, doc/tex/Makefile.am, doc/tex/auth.tex, doc/tex/certificate.tex, doc/tex/ciphers.tex, doc/tex/ciphersuites.tex, doc/tex/compression.tex, doc/tex/ex-cert-select.tex, doc/tex/examples.tex, doc/tex/gnutls.bib, doc/tex/handshake.tex, doc/tex/library.tex, doc/tex/macros.tex, doc/tex/preparation.tex, doc/tex/programs.tex, doc/tex/record_weaknesses.tex, doc/tex/tls_extensions.tex, includes/gnutls/openpgp.h, includes/gnutls/openssl.h, lib/Makefile.am, lib/auth_anon.c, lib/auth_cert.c, lib/auth_cert.h, lib/auth_dh_common.c, lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/debug.c, lib/dh_compat.c, lib/ext_cert_type.c, lib/ext_max_record.c, lib/ext_server_name.c, lib/gnutls.h.in.in, lib/gnutls_alert.c, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_buffers.c, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_cipher.c, lib/gnutls_cipher_int.c, lib/gnutls_compress.c, lib/gnutls_compress_int.c, lib/gnutls_constate.c, lib/gnutls_datum.c, lib/gnutls_db.c, lib/gnutls_dh.c, lib/gnutls_dh.h, lib/gnutls_dh_primes.c, lib/gnutls_errors.c, lib/gnutls_extensions.c, lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_int_compat.c, lib/gnutls_kx.c, lib/gnutls_mem.c, lib/gnutls_mpi.c, lib/gnutls_num.c, lib/gnutls_pk.c, lib/gnutls_priority.c, lib/gnutls_random.c, lib/gnutls_record.c, lib/gnutls_rsa_export.c, lib/gnutls_session.c, lib/gnutls_session_pack.c, lib/gnutls_sig.c, lib/gnutls_state.c, lib/gnutls_str.c, lib/gnutls_ui.c, lib/gnutls_ui.h, lib/gnutls_v2_compat.c, lib/gnutls_x509.c, lib/gnutls_x509.h, lib/rsa_compat.c, lib/strnstr.c, lib/x509_b64.c, lib/x509/compat.c, lib/x509/compat.h, lib/x509/x509.h, libextra/Makefile.am, libextra/auth_srp.c, libextra/auth_srp_passwd.c, libextra/auth_srp_rsa.c, libextra/auth_srp_sb64.c, libextra/ext_srp.c, libextra/gnutls_extra.c, libextra/gnutls_extra.h, libextra/gnutls_openpgp.c, libextra/gnutls_openssl.c, libextra/gnutls_srp.c, libextra/openpgp/Makefile.am, libextra/openpgp/compat.c, libextra/openpgp/extras.c, libextra/openpgp/gnutls_openpgp.h, libextra/openpgp/openpgp.c, libextra/openpgp/openpgp.h, libextra/openpgp/privkey.c, libextra/openpgp/verify.c, libextra/openpgp/xml.c, src/serv.c: backported all the changes from the development branch to 1.0.x, except for TLS 1.1 which is untested. 2004-02-11 nmav <nmav@gnutls.org> * libextra/auth_srp.c: [no log message] 2004-02-11 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_mpi.h, libextra/auth_srp.c: added check for a%n==0,1,-1 2004-02-11 nmav <nmav@gnutls.org> * src/cli.c: ported the client from the development branch. 2004-02-11 nmav <nmav@gnutls.org> * NEWS, lib/pkix.asn, lib/pkix_asn1_tab.c: [no log message] 2004-02-11 nmav <nmav@gnutls.org> * configure.in, doc/tex/ex-x509-info.tex, lib/gnutls.h.in.in, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/x509/dsa.c, lib/x509/dsa.h, src/common.c: some other bugfixes ported from the development branch. 2004-02-10 nmav <nmav@gnutls.org> * NEWS, lib/ext_server_name.c, lib/gnutls.h.in.in, src/cli.c: some bugfixes. 2004-02-10 nmav <nmav@gnutls.org> * NEWS, configure.in, includes/gnutls/x509.h, lib/Makefile.am, lib/gnutls.h.in.in, lib/gnutls_cipher.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_hash_int.c, lib/gnutls_int.h, lib/gnutls_mpi.h, lib/gnutls_rsa_export.c, lib/gnutls_rsa_export.h, lib/gnutls_ui.h, lib/rsa_compat.c, lib/x509/Makefile.am, lib/x509/common.c, lib/x509/common.h, lib/x509/crl.c, lib/x509/crl_write.c, lib/x509/crq.c, lib/x509/dn.c, lib/x509/extensions.c, lib/x509/extensions.h, lib/x509/mpi.c, lib/x509/mpi.h, lib/x509/pkcs12.c, lib/x509/pkcs12_bag.c, lib/x509/pkcs12_encr.c, lib/x509/pkcs5.c, lib/x509/pkcs7.c, lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, lib/x509/rc2.c, lib/x509/rfc2818_hostname.c, lib/x509/sign.c, lib/x509/sign.h, lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509.h, lib/x509/x509_write.c, lib/x509/xml.c, src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: Backported several things from the development branch. 2004-02-10 nmav <nmav@gnutls.org> * lib/gnutls_dh_primes.c: Fixed some bugs. Patch by Brieuc Jeunhomme <bbp@via.ecp.fr>. 2004-01-06 nmav <nmav@gnutls.org> * doc/tex/cert_auth.tex: Several bug fixes and cleanups by Arne Thomassen. 2004-01-05 nmav <nmav@gnutls.org> * src/Makefile.am: [no log message] 2004-01-04 nmav <nmav@gnutls.org> * NEWS, configure.in: the -D_REENTRANT cflag is now used. 2004-01-04 nmav <nmav@gnutls.org> * src/certtool.c: [no log message] 2004-01-04 nmav <nmav@gnutls.org> * src/certtool.c: [no log message] 2004-01-03 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_handshake.c, src/common.c: * Changed handshake behaviour to send the lowest TLS version when an unsupported version was advertized. The current behaviour is to send the maximum version we support. 2004-01-03 nmav <nmav@gnutls.org> * lib/x509/crl_write.c: [no log message] 2003-12-28 nmav <nmav@gnutls.org> * doc/tex/cert_auth.tex: Added gnutls_x509_crt_cpy_crl_dist_points() 2003-12-26 nmav <nmav@gnutls.org> * lib/x509/dsa.c, libextra/openssl_compat.c, libextra/openssl_compat.h, libextra/openpgp/privkey.c: * Added CRL verification functionality to certtool. * Added the FSF copyright notices. * Moved all the compatibility interface to the openssl compatibility library. 2003-12-23 nmav <nmav@gnutls.org> * lib/x509/dsa.c: Added support for reading and generating CRL distribution points extensions in certificates (not working yet). 2003-12-21 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/x509/extensions.c: [no log message] 2003-12-20 nmav <nmav@gnutls.org> * libextra/openpgp/privkey.c: several cleanups. 2003-12-20 nmav <nmav@gnutls.org> * libextra/openpgp/privkey.c: [no log message] 2003-12-19 nmav <nmav@gnutls.org> * includes/gnutls/x509.h, lib/gnutls_cert.h: [no log message] 2003-12-19 nmav <nmav@gnutls.org> * NEWS, includes/gnutls/x509.h, lib/gnutls_cert.h: Corrected a bug in the GNUTLS_KEY key usage definitions. 2003-12-19 nmav <nmav@gnutls.org> * doc/tex/cert_auth.tex: [no log message] 2003-12-19 nmav <nmav@gnutls.org> * doc/tex/cert_auth.tex: some updated in documentation 2003-12-19 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_int.h, lib/gnutls_record.c, src/cli.c: Corrected bug in gnutls_bye() which made it return an error code of INVALID_REQUEST instead of success. 2003-12-18 nmav <nmav@gnutls.org> * opencdk.m4: [no log message] 2003-12-18 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/x509/privkey.c: Corrected a bug in the RSA key generation. This was generating unusable RSA keys. 2003-12-18 nmav <nmav@gnutls.org> * lib/x509/dsa.c, lib/x509/dsa.h: Added support for generating and exporting DSA private keys. Exporting to PKCS #8 is still not supported due to lack of standards. 2003-12-10 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/gnutls_dh_primes.c: Corrected a bug in gnutls_dh_params_export_pkcs3() which made it report a wrong size for the output data. 2003-12-10 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/gnutls.h.in.in, lib/gnutls_dh_primes.c, lib/gnutls_rsa_export.c, lib/gnutls_state.c: Added gnutls_rsa_params_export_pkcs1() and gnutls_rsa_params_import_pkcs1(). 2003-12-10 nmav <nmav@gnutls.org> * THANKS: [no log message] 2003-12-09 nmav <nmav@gnutls.org> * lib/gnutls_handshake.c, lib/gnutls_record.c: Some documentation fixes. 2003-12-09 nmav <nmav@gnutls.org> * NEWS, src/tests.c, src/tests.h, src/tls_test.c: Fixed the SRP detection test in gnutls-cli-debug. 2003-12-05 nmav <nmav@gnutls.org> * NEWS, lib/Makefile.am, libextra/Makefile.am, libextra/openpgp/Makefile.am, src/cli.c: Some minor fixes in the makefiles. They now include CFLAGS from libgcrypt or opencdk if installed in a non standard directory. 2003-12-05 nmav <nmav@gnutls.org> * doc/TODO, doc/tex/ciphers.tex, lib/gnutls_dh_primes.c, lib/gnutls_mpi.c, src/prime.c: some minor fixes and cleanups. 2003-12-04 nmav <nmav@gnutls.org> * NEWS, src/common.c: [no log message] 2003-12-02 nmav <nmav@gnutls.org> * lib/gnutls_cipher.c, lib/gnutls_cipher_int.c: some cleanups in the record protocol processing. 2003-12-02 nmav <nmav@gnutls.org> * NEWS, doc/TODO, doc/tex/srp.tex, includes/gnutls/extra.h, lib/gnutls.h.in.in, lib/gnutls_errors.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_state.c, libextra/auth_srp.c, libextra/auth_srp.h, libextra/ext_srp.c, libextra/ext_srp.h, libextra/gnutls_srp.c, src/cli.c: Improved the support for draft-ietf-tls-srp-05. The two-phase handshake is now fully supported without any interaction with the application layer (except for a callback). 2003-12-02 nmav <nmav@gnutls.org> * doc/manpages/Makefile.am, doc/manpages/certtool.1, doc/manpages/gnutls-cli-debug.1, doc/manpages/gnutls-cli.1, doc/manpages/gnutls-serv.1, doc/manpages/gnutls-srpcrypt.1: Added new manpages by Ivo. 2003-12-01 nmav <nmav@gnutls.org> * doc/tex/ciphersuites.tex: [no log message] 2003-12-01 nmav <nmav@gnutls.org> * configure.in, lib/gnutls_hash_int.c, lib/gnutls_random.c, lib/x509/dn.c, src/common.c: eliminated some memory leaks and other fixes. 2003-12-01 nmav <nmav@gnutls.org> * doc/tex/ex-serv-export.tex, doc/tex/ex-serv-srp.tex, doc/tex/preface.tex: [no log message] 2003-11-30 nmav <nmav@gnutls.org> * src/tests.c, src/tests.h, src/tls_test.c: added detection for ZLIB compression. 2003-11-30 nmav <nmav@gnutls.org> * src/tests.c, src/tls_test.c: improved srp detection. 2003-11-30 nmav <nmav@gnutls.org> * NEWS, doc/tex/srp.tex, lib/gnutls_cipher.c, libextra/auth_srp.c, src/cli.c: Some fixes in the certificate authenticated SRP ciphersuites. 2003-11-30 nmav <nmav@gnutls.org> * doc/README.autoconf, lib/gnutls_alert.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_handshake.c, libextra/auth_srp.c, src/serv-gaa.c, src/serv.c: some fixes to comply with the SRP draft. The handshake is now repeated if an empty SRP username is received. 2003-11-30 nmav <nmav@gnutls.org> * NEWS, doc/tex/srp.tex, includes/gnutls/extra.h, lib/gnutls_anon_cred.c, lib/gnutls_cert.c, lib/gnutls_x509.c, lib/libgnutls.vers, lib/x509_b64.c, libextra/auth_srp.c, libextra/auth_srp_sb64.c, libextra/gnutls_openpgp.c, libextra/gnutls_srp.c, libextra/libgnutls-extra.vers, libextra/openpgp/gnutls_openpgp.h, libextra/openpgp/openpgp.c, libextra/openpgp/verify.c, src/common.c, src/crypt.c: several corrections in the documentation. 2003-11-28 nmav <nmav@gnutls.org> * configure.in, lib/libgnutls.vers, libextra/libgnutls-extra.vers: [no log message] 2003-11-28 nmav <nmav@gnutls.org> * NEWS: [no log message] 2003-11-28 nmav <nmav@gnutls.org> * doc/tex/auth.tex, doc/tex/examples.tex, doc/tex/gnutls.bib, doc/tex/gnutls.tex, doc/tex/handshake.tex, doc/tex/library.tex, doc/tex/preface.tex, doc/tex/programs.tex, doc/tex/srp.tex: [no log message] 2003-11-27 nmav <nmav@gnutls.org> * NEWS, doc/tex/Makefile.am, doc/tex/appendix.tex, doc/tex/ciphers.tex, doc/tex/ciphersuites.tex, doc/tex/supported_ciphersuites.tex, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, lib/gnutls_cipher_int.c, lib/gnutls_int.h, lib/gnutls_state.c: Removed the TWOFISH cipher. Documented the supported ciphersuites. 2003-11-27 nmav <nmav@gnutls.org> * doc/protocol/draft-benaloh-pct-00.txt, doc/protocol/draft-benaloh-pct-01.txt, doc/protocol/draft-hickman-netscape-ssl-00.txt: Added historical documents. Got from http://www21.ocn.ne.jp/~k-west/SSLandTLS/index-e.html 2003-11-27 nmav <nmav@gnutls.org> * doc/TODO, doc/tex/preface.tex: [no log message] 2003-11-27 nmav <nmav@gnutls.org> * doc/tex/preface.tex: [no log message] 2003-11-27 nmav <nmav@gnutls.org> * NEWS, doc/TODO, doc/tex/Makefile.am, lib/auth_cert.c, lib/auth_rsa_export.c, lib/gnutls.h.in.in, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_mem.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_x509.c, libextra/gnutls_openpgp.c, src/serv.c: corrected some bugs that affected openpgp authentication. 2003-11-26 nmav <nmav@gnutls.org> * doc/tex/ciphersuites.tex, doc/tex/gnutls.bib, doc/tex/gnutls.tex, doc/tex/handshake.tex, doc/tex/library.tex, doc/tex/openpgp.tex, doc/tex/preface.tex: [no log message] 2003-11-26 nmav <nmav@gnutls.org> * NEWS, doc/protocol/rfc3279.txt, doc/tex/cover.tex.in, doc/tex/gnutls.bib, doc/tex/library.tex, includes/gnutls/x509.h, lib/gnutls_pk.c, lib/x509/privkey.c, lib/x509/verify.c, lib/x509/verify.h, lib/x509/x509.c: Exported the gnutls_x509_privkey_sign_data(), gnutls_x509_privkey_verify_data() and gnutls_x509_crt_verify_data(). 2003-11-26 nmav <nmav@gnutls.org> * src/certtool.c: only generate v3 certificates, since we always use the CA (basicConstraints) extension. 2003-11-25 nmav <nmav@gnutls.org> * lib/x509/common.c, lib/x509/privkey.c: ensure that the leading zero is there on RSA keys. 2003-11-25 nmav <nmav@gnutls.org> * lib/x509/crq.c, lib/x509/sign.c, lib/x509/x509_write.c: [no log message] 2003-11-25 nmav <nmav@gnutls.org> * doc/tex/ex-x509-info.tex: [no log message] 2003-11-25 nmav <nmav@gnutls.org> * lib/x509/crq.c: added crq_get_version(). 2003-11-25 nmav <nmav@gnutls.org> * doc/tex/certificate.tex, doc/tex/ex-crq.tex, doc/tex/gnutls.bib, doc/tex/openssl.tex, lib/x509/crq.c, lib/x509/x509_write.c, src/certtool.c: Some documentation fixes. Changed gnutls_x509_*_set_version() to have a compatible input with gnutls_x509_*_get_version(). 2003-11-25 nmav <nmav@gnutls.org> * doc/protocol/rfc3280.txt: added the newest PKIX rfc. 2003-11-24 nmav <nmav@gnutls.org> * doc/tex/ex-cert-select.tex, doc/tex/ex-client-resume.tex, doc/tex/ex-client-srp.tex, doc/tex/ex-client2.tex, doc/tex/ex-serv-export.tex, doc/tex/ex-serv-pgp.tex, doc/tex/examples.tex: [no log message] 2003-11-23 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2003-11-23 nmav <nmav@gnutls.org> * lib/gnutls_record.c: [no log message] 2003-11-22 nmav <nmav@gnutls.org> * doc/README.autoconf, includes/gnutls/x509.h, lib/x509/pkcs5.c, src/common.c, src/serv.c: [no log message] 2003-11-21 nmav <nmav@gnutls.org> * doc/protocol/draft-ietf-tls-compression-06.txt, doc/protocol/draft-ietf-tls-ecc-04.txt: [no log message] 2003-11-21 nmav <nmav@gnutls.org> * src/certtool.c: generated certificates by certtool now have version 1 if they do not include extensions. 2003-11-21 nmav <nmav@gnutls.org> * NEWS, lib/ext_server_name.c, lib/gnutls.h.in.in, opencdk.m4: [no log message] 2003-11-21 nmav <nmav@gnutls.org> * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c: [no log message] 2003-11-21 nmav <nmav@gnutls.org> * THANKS, lib/gnutls_session.c, lib/x509/pkcs12.c, libextra/gnutls_openssl.c, src/certtool.gaa, src/serv-gaa.c, src/serv.c, src/serv.gaa: Some fixes pointed out by Dimitri Papadopoulos-Orfanos <papadopo@shfj.cea.fr> 2003-11-17 nmav <nmav@gnutls.org> * doc/tex/ex-client-resume.tex, doc/tex/ex-client-srp.tex, doc/tex/ex-client2.tex, doc/tex/ex-rfc2818.tex, doc/tex/examples.tex: [no log message] 2003-11-17 nmav <nmav@gnutls.org> * doc/tex/Makefile.am, doc/tex/ex-client-resume.tex, doc/tex/ex-client-srp.tex, doc/tex/ex-client2.tex, doc/tex/examples.tex: Simplified a bit the client examples. 2003-11-17 nmav <nmav@gnutls.org> * src/certtool-gaa.c, src/certtool.gaa, src/serv.c, src/tests.c: [no log message] 2003-11-17 nmav <nmav@gnutls.org> * lib/x509/pkcs5.c: [no log message] 2003-11-17 nmav <nmav@gnutls.org> * src/certtool.c: some changes in password reading. 2003-11-17 nmav <nmav@gnutls.org> * lib/x509/pkcs5.c: some corrections in the pkcs5 module by Simon Josefsson. 2003-11-17 nmav <nmav@gnutls.org> * lib/ext_server_name.c, lib/gnutls_int.h: [no log message] 2003-11-17 nmav <nmav@gnutls.org> * lib/gnutls_int.h, lib/gnutls_session_pack.c, lib/gnutls_session_pack.h: [no log message] 2003-11-17 nmav <nmav@gnutls.org> * configure.in, lib/auth_cert.c, lib/defines.h, lib/ext_server_name.c, lib/gnutls.h.in.in, lib/gnutls_cert.c, lib/gnutls_record.c, lib/gnutls_session.c, lib/gnutls_state.c, lib/gnutls_str.c, lib/gnutls_ui.c, lib/gnutls_ui.h, lib/x509_b64.c, lib/x509/crl.c, lib/x509/crq.c, lib/x509/dn.c, lib/x509/extensions.c, lib/x509/pkcs12.h, lib/x509/pkcs12_bag.c, lib/x509/pkcs12_encr.c, lib/x509/pkcs5.c, lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509_write.c, libextra/gnutls_srp.c, src/certtool.c, src/common.c, src/serv.c: Several minor fixes in code and function documentation. 2003-11-16 nmav <nmav@gnutls.org> * NEWS: [no log message] 2003-11-16 nmav <nmav@gnutls.org> * doc/tex/ex-crq.tex: [no log message] 2003-11-16 nmav <nmav@gnutls.org> * includes/gnutls/x509.h, lib/x509/common.c, lib/x509/crl.c, lib/x509/crq.c, lib/x509/x509.c, lib/x509/x509_write.c: [no log message] 2003-11-16 nmav <nmav@gnutls.org> * NEWS, includes/gnutls/x509.h, lib/x509/crl.c, lib/x509/crq.c, lib/x509/dn.c, lib/x509/dn.h, lib/x509/extensions.c, lib/x509/extensions.h, lib/x509/x509.c, src/certtool.c: * Added gnutls_x509_*_get_dn_oid() and gnutls_x509_crt_get_extension_oid() functions which return the available OIDs. * The certtool utility now prints all available extension OIDs and values. 2003-11-15 nmav <nmav@gnutls.org> * NEWS, includes/gnutls/x509.h, lib/gnutls_str.c, lib/gnutls_str.h, lib/x509/common.c, lib/x509/compat.c, lib/x509/crl.c, lib/x509/crq.c, lib/x509/crq.h, lib/x509/dn.c, lib/x509/dn.h, lib/x509/rfc2818_hostname.c, lib/x509/x509.c, lib/x509/x509.h, libextra/openpgp/openpgp.h: gnutls_x509_*_get_*_dn_by_oid() functions have a raw_flag parameter added. Several other fixes. 2003-11-14 nmav <nmav@gnutls.org> * NEWS, configure.in, includes/gnutls/compat8.h, includes/gnutls/openpgp.h, includes/gnutls/pkcs12.h, includes/gnutls/x509.h, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/x509/compat.c, lib/x509/crl.c, lib/x509/crq.c, lib/x509/dn.c, lib/x509/dn.h, lib/x509/pkcs12.c, lib/x509/pkcs7.c, lib/x509/pkcs7.h, lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, lib/x509/x509.c, lib/x509/x509.h, lib/x509/x509_write.c, libextra/openpgp/openpgp.c, src/certtool.c, src/cli.c, src/common.c, src/tests.c: gnutls_x509_*_set_dn_by_oid() functions have a raw_flag parameter added. Some other fixes in function types. 2003-11-14 nmav <nmav@gnutls.org> * NEWS: [no log message] 2003-11-14 nmav <nmav@gnutls.org> * configure.in, includes/gnutls/compat8.h, includes/gnutls/x509.h, lib/gnutls.h.in.in, lib/x509/crq.c, lib/x509/crq.h, lib/x509/x509.c, lib/x509/x509.h: Compatibility header for gnutls4 is no longer included in gnutls.h. Added deprecated warnings to gnutls8 stuff. 2003-11-14 nmav <nmav@gnutls.org> * includes/gnutls/openssl.h: [no log message] 2003-11-14 nmav <nmav@gnutls.org> * lib/x509/crq.c, lib/x509/x509.c: [no log message] 2003-11-14 nmav <nmav@gnutls.org> * includes/gnutls/x509.h, lib/x509/common.c, lib/x509/crq.c, lib/x509/x509_write.c: added gnutls_x509_oid_known() to report known OIDs. 2003-11-13 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/defines.h, lib/gnutls.h.in.in, src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.gaa, src/crypt-gaa.c, src/crypt-gaa.h, src/crypt.gaa, src/prime.c, src/tls_test-gaa.c, src/tls_test-gaa.h, src/tls_test.gaa: [no log message] 2003-11-13 nmav <nmav@gnutls.org> * src/cli.c: [no log message] 2003-11-13 nmav <nmav@gnutls.org> * lib/auth_cert.c, lib/ext_max_record.c, lib/gnutls_extensions.c, lib/gnutls_int.h, src/cli.c: [no log message] 2003-11-13 nmav <nmav@gnutls.org> * configure.in, lib/auth_cert.c, lib/debug.c, lib/ext_server_name.c, lib/gnutls_buffers.c, lib/gnutls_constate.c, lib/gnutls_dh_primes.c, lib/gnutls_extensions.c, lib/gnutls_extensions.h, lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_hash_int.c, lib/gnutls_int.h, lib/gnutls_mem.c, lib/gnutls_record.c, lib/gnutls_record.h, lib/gnutls_state.c, lib/gnutls_state.h, lib/gnutls_v2_compat.c, lib/gnutls_x509.c, lib/x509_b64.c, lib/x509/crl.c, libextra/auth_srp.c, libextra/auth_srp_sb64.c, libextra/gnutls_openpgp.c, libextra/gnutls_openssl.c, libextra/openpgp/gnutls_openpgp.h, libextra/openpgp/verify.c, src/common.h: Some bugfixes, and type corrections. 2003-11-13 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in: [no log message] 2003-11-13 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, lib/gnutls_hash_int.c, lib/gnutls_int.h, lib/gnutls_priority.c, lib/x509/common.c, src/cli.c, src/common.c, src/serv.c: Added the RIPEMD ciphersuites defined in draft-ietf-tls-openpgp-keys-04. 2003-11-13 nmav <nmav@gnutls.org> * lib/libgnutls.m4, libextra/libgnutls-extra.m4: [no log message] 2003-11-13 nmav <nmav@gnutls.org> * NEWS, configure.in, doc/tex/openssl.tex, includes/Makefile.am, lib/minitasn1/mem.h, libextra/Makefile.am, libextra/libgnutls-extra.vers: The openssl compatibility layer was moved to gnutls-openssl to allow the extension of it without bloating the libgnutls-extra. 2003-11-12 nmav <nmav@gnutls.org> * lib/defines.h: [no log message] 2003-11-12 nmav <nmav@gnutls.org> * src/certtool.c: [no log message] 2003-11-12 nmav <nmav@gnutls.org> * src/certtool.c: Prints certificate information before signing. 2003-11-11 nmav <nmav@gnutls.org> * lib/gnutls_random.h: [no log message] 2003-11-11 nmav <nmav@gnutls.org> * configure.in, lib/gnutls_random.c, src/crypt.c: Patch by Werner Koch: * configure.in: Check for gcry_create_nonce. * lib/gnutls_random.c (_gnutls_get_random): Ditto. * src/crypt.c (_srp_crypt): Use gcry_create_nonce if available. Also removed some unneeded code in random.c. 2003-11-11 nmav <nmav@gnutls.org> * NEWS, configure.in: [no log message] 2003-11-11 nmav <nmav@gnutls.org> * includes/gnutls/x509.h, src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: Added capability to read CRLs to certtool. 2003-11-11 nmav <nmav@gnutls.org> * includes/gnutls/x509.h, lib/gnutls_x509.c, lib/x509/compat.c, lib/x509/crl.c, lib/x509/pkcs7.c, lib/x509/pkcs7.h, lib/x509/x509.c, lib/x509/x509.h: Renamed several pkcs #7 related functions. That is to allow future extensions to the API. 2003-11-11 nmav <nmav@gnutls.org> * doc/scripts/gdoc: [no log message] 2003-11-11 nmav <nmav@gnutls.org> * lib/x509/crl.c, lib/x509/crq.c, lib/x509/pkcs12_bag.c, lib/x509/x509.c, lib/x509/x509_write.c: [no log message] 2003-11-11 nmav <nmav@gnutls.org> * doc/scripts/gdoc: [no log message] 2003-11-11 nmav <nmav@gnutls.org> * doc/scripts/gdoc: [no log message] 2003-11-11 nmav <nmav@gnutls.org> * includes/gnutls/x509.h: [no log message] 2003-11-11 nmav <nmav@gnutls.org> * NEWS, configure.in, includes/gnutls/x509.h, lib/gnutls.h.in.in, lib/gnutls_dh_primes.c, lib/gnutls_ui.h, lib/x509_b64.c, lib/x509/pkcs7.c, src/cli-gaa.c: Added gnutls_pkcs7_set_certificate2() and gnutls_pkcs7_set_crl2() functions. 2003-11-11 nmav <nmav@gnutls.org> * lib/x509/crl.c, lib/x509/crq.c, lib/x509/pkcs12.c, lib/x509/pkcs12_bag.c, lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, lib/x509/x509.c: added some check for the input parameters. 2003-11-11 nmav <nmav@gnutls.org> * libgcrypt.m4, doc/TODO: [no log message] 2003-11-10 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/x509/common.c, lib/x509/crl.c, lib/x509/crq.c, lib/x509/dn.c, lib/x509/x509.c: Removed the gnutls_handshake_set_rsa_pms_check() prototype from gnutls.h. Corrected the *_get_dn() functions to return the data size if the data argument is NULL, and *data_size == 0. Bugs reported by Gergely Nagy <algernon@bonehunter.rulez.org>. 2003-11-10 nmav <nmav@gnutls.org> * lib/auth_cert.c, lib/ext_cert_type.c, lib/ext_cert_type.h, lib/gnutls_constate.c, lib/gnutls_extensions.c, lib/gnutls_session_pack.c: some fixes to have the correct cert_type on resumed sessions. 2003-11-10 nmav <nmav@gnutls.org> * NEWS, src/certtool.c: The certtool utility can now generate PKCS #12 structures without specifying a certificate. 2003-11-09 nmav <nmav@gnutls.org> * NEWS, configure.in, doc/tex/gnutls.bib: [no log message] 2003-11-09 nmav <nmav@gnutls.org> * lib/minitasn1/errors.c, lib/minitasn1/int.h, lib/minitasn1/libtasn1.h, lib/minitasn1/mem.h, lib/minitasn1/structure.c: Included the new libtasn 0.2.6. 2003-11-09 nmav <nmav@gnutls.org> * doc/protocol/draft-ietf-tls-openpgp-keys-04.txt: [no log message] 2003-11-09 nmav <nmav@gnutls.org> * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.gaa, src/cli.c, src/common.c, src/common.h, src/crypt-gaa.c, src/crypt-gaa.h, src/crypt.gaa, src/prime.c, src/serv.c, src/tests.c, src/tls_test-gaa.c, src/tls_test-gaa.h, src/tls_test.c, src/tls_test.gaa: some code cleanups. 2003-11-08 nmav <nmav@gnutls.org> * lib/gnutls_cert.c, libextra/gnutls_srp.c: [no log message] 2003-11-08 nmav <nmav@gnutls.org> * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.gaa, src/common.c, src/crypt-gaa.c, src/crypt-gaa.h, src/crypt.gaa, src/tests.c, src/tests.h, src/tls_test-gaa.c, src/tls_test-gaa.h, src/tls_test.c, src/tls_test.gaa: [no log message] 2003-11-07 nmav <nmav@gnutls.org> * NEWS, src/certtool-gaa.c, src/certtool.gaa, src/cli.c, src/common.c, src/common.h, src/crypt-gaa.c, src/crypt.gaa, src/serv.c, src/tls_test.c: [no log message] 2003-11-07 nmav <nmav@gnutls.org> * libextra/gnutls_openpgp.c, src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.gaa, src/crypt-gaa.c, src/crypt-gaa.h, src/crypt.c, src/crypt.gaa: [no log message] 2003-11-07 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in: Corrected the types in gnutls_anon_free_client_credentials() and gnutls_anon_allocate_client_credentials(). Reported by Ivo. 2003-11-06 nmav <nmav@gnutls.org> * configure.in, src/crypt.c, src/tests.c, src/tls_test.c: [no log message] 2003-11-06 nmav <nmav@gnutls.org> * configure.in, libgcrypt.m4, lib/gnutls_buffers.c, libextra/auth_srp_passwd.c, libextra/gnutls_openpgp.c, src/Makefile.am, src/certtool.c, src/cli-gaa.c, src/cli.c, src/crypt.c, src/serv.c, src/tests.c, src/tests.h, src/tls_test-gaa.c, src/tls_test.c: some changes to compile in mingw32. 2003-11-04 nmav <nmav@gnutls.org> * doc/scripts/gdoc: added the new gdoc by Simon. 2003-11-04 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_compress.c, lib/gnutls_handshake.c, lib/gnutls_ui.c, lib/x509/privkey.c: [no log message] 2003-11-04 nmav <nmav@gnutls.org> * includes/gnutls/pkcs12.h, lib/ext_server_name.c, lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cert.c, lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_compress_int.c, lib/gnutls_compress_int.h, lib/gnutls_db.c, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_state.h, lib/gnutls_ui.c, lib/gnutls_v2_compat.c, lib/x509_b64.c, lib/x509_b64.h, lib/x509/common.c, lib/x509/common.h, lib/x509/crl.c, lib/x509/crq.c, lib/x509/dn.c, lib/x509/dn.h, lib/x509/extensions.h, lib/x509/pkcs12.c, lib/x509/pkcs5.c, lib/x509/pkcs5.h, lib/x509/pkcs7.c, lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, lib/x509/rfc2818_hostname.c, lib/x509/verify.c, lib/x509/x509.c: some type fixes. Based on build logs sent by Dimitri Papadopoulos-Orfanos <papadopo@shfj.cea.fr>. 2003-11-03 nmav <nmav@gnutls.org> * lib/x509/verify.c: preserve the flags from the last certificate verification, in a chain. 2003-11-02 nmav <nmav@gnutls.org> * NEWS: [no log message] 2003-11-02 nmav <nmav@gnutls.org> * libextra/openpgp/verify.c: added gnutls_openpgp_key_verify_self() which verifies the self signature in the key. 2003-11-02 nmav <nmav@gnutls.org> * includes/gnutls/openpgp.h, libextra/gnutls_openpgp.c, libextra/openpgp/compat.c, libextra/openpgp/openpgp.c, libextra/openpgp/verify.c, src/common.c: added gnutls_openpgp_key_export() function. 2003-11-02 nmav <nmav@gnutls.org> * lib/x509/verify.c: [no log message] 2003-11-02 nmav <nmav@gnutls.org> * includes/gnutls/openpgp.h, includes/gnutls/x509.h, doc/tex/certificate.tex, doc/tex/library.tex: [no log message] 2003-11-02 nmav <nmav@gnutls.org> * libextra/openpgp/compat.c, libextra/openpgp/openpgp.h, libextra/openpgp/verify.c: [no log message] 2003-11-02 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_int.h, lib/x509/pkcs12_bag.c, lib/x509/privkey.h, lib/x509/privkey_pkcs8.c: Some changes to preserve binary compatibility. 2003-11-01 nmav <nmav@gnutls.org> * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: Added option to certtool to use export-grade algorithms. If password is set in pkcs8 mode, then the output structure will be encrypted. 2003-11-01 nmav <nmav@gnutls.org> * NEWS, lib/x509/verify.c, libextra/openpgp/verify.c, src/certtool-gaa.c, src/certtool.gaa, tests/test25.pem: [no log message] 2003-11-01 nmav <nmav@gnutls.org> * doc/scripts/Makefile.am: gdoc and sort1.pl are now included in the distribution. 2003-11-01 nmav <nmav@gnutls.org> * NEWS, doc/tex/certificate.tex, doc/tex/cover.tex.in, doc/tex/ex-rfc2818.tex, lib/gnutls.h.in.in, lib/gnutls_cert.c, lib/gnutls_int.h, lib/x509/compat.c, lib/x509/verify.c, libextra/openpgp/compat.c, libextra/openpgp/extras.c, libextra/openpgp/verify.c, src/Makefile.am, src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa, src/common.c, src/prime.c: * Several changes in certificate and key verification. * GNUTLS_CERT_NOT_TRUSTED was replaced by GNUTLS_CERT_INVALID, to avoid having two flags for the same thing. * Updated documentation for openpgp key verification. * The prime tool was combined with the certtool. 2003-10-31 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_errors.c, lib/gnutls_errors_int.h, libextra/gnutls_openpgp.c, libextra/openpgp/extras.c: [no log message] 2003-10-31 nmav <nmav@gnutls.org> * src/certtool.c, src/certtool.gaa, src/common.c: [no log message] 2003-10-31 nmav <nmav@gnutls.org> * libextra/openpgp/openpgp.c, libextra/openpgp/openpgp.h: [no log message] 2003-10-31 nmav <nmav@gnutls.org> * includes/gnutls/pkcs12.h, libextra/gnutls_openpgp.c, src/certtool.c, src/common.c: more openpgp related changes. 2003-10-31 nmav <nmav@gnutls.org> * lib/x509/pkcs12_bag.c: Added gnutls_pkcs12_bag_set_crl() and gnutls_pkcs12_bag_set_crt() functions. 2003-10-31 nmav <nmav@gnutls.org> * libextra/gnutls_openpgp.c: [no log message] 2003-10-31 nmav <nmav@gnutls.org> * doc/tex/ex-pgp-keyserver.tex, lib/Makefile.am, lib/gnutls_x509.c, lib/strfile.h, libextra/gnutls_openpgp.c, libextra/openpgp/openpgp.h, src/serv.c: some openpgp related changes. 2003-10-30 nmav <nmav@gnutls.org> * src/crypt.c: [no log message] 2003-10-30 nmav <nmav@gnutls.org> * configure.in, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_global.c: added version check against libtasn1 2003-10-30 nmav <nmav@gnutls.org> * src/certtool-gaa.c, src/certtool.c, src/certtool.gaa, src/common.c: [no log message] 2003-10-30 nmav <nmav@gnutls.org> * src/certtool.c, src/cli.c, src/crypt.c, src/serv.c: Added error checking to global_init() calls. 2003-10-30 nmav <nmav@gnutls.org> * doc/tex/auth.tex, doc/tex/handshake.tex, doc/tex/howto.tex: Corrected some things in documentation. Got from Debian bug tracking system, Reported by Ivan Nestlerode <nestler@speakeasy.net> 2003-10-30 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/x509/pkcs12_bag.c, libextra/openpgp/compat.c, libextra/openpgp/extras.c, libextra/openpgp/verify.c: [no log message] 2003-10-30 nmav <nmav@gnutls.org> * includes/gnutls/pkcs12.h, lib/gnutls.h.in.in, lib/x509/pkcs12_bag.c, lib/x509/verify.c, src/certtool.c: introduced gnutls_const_datum for gnutls_pkcs12_bag_get_data(). Some other cleanups in the verification functions. 2003-10-30 nmav <nmav@gnutls.org> * lib/x509/verify.c: corrected some bugs in the verification functions. 2003-10-30 nmav <nmav@gnutls.org> * tests/test22.pem: [no log message] 2003-10-30 nmav <nmav@gnutls.org> * lib/x509/verify.c, src/certtool.c, tests/test23.pem: [no log message] 2003-10-30 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/gnutls.h.in.in, lib/gnutls_int.h, lib/x509/compat.c, lib/x509/verify.c, src/certtool.c, src/common.c, tests/test1.pem, tests/test10.pem, tests/test13.pem, tests/test2.pem, tests/test20.pem, tests/test21.pem, tests/test22.pem, tests/test23.pem, tests/test24.pem, tests/test25.pem, tests/test26.pem, tests/test3.pem: Improved the certificate verification functions and the certtool program's verification capability. 2003-10-30 nmav <nmav@gnutls.org> * src/certtool.c, src/crypt.c: Certtool is only compiled when ENABLE_PKI is defined. 2003-10-30 nmav <nmav@gnutls.org> * libextra/openpgp/Makefile.am: [no log message] 2003-10-30 nmav <nmav@gnutls.org> * lib/x509_b64.c, lib/x509_b64.h, lib/x509/common.c: Made the B64FSIZE to return an accurate value. 2003-10-30 nmav <nmav@gnutls.org> * NEWS, configure.in, doc/tex/programs.tex, lib/x509_b64.c, lib/x509/common.c, src/certtool.c: some fixes. 2003-10-30 nmav <nmav@gnutls.org> * src/certtool.c: [no log message] 2003-10-30 nmav <nmav@gnutls.org> * doc/tex/programs.tex: [no log message] 2003-10-30 nmav <nmav@gnutls.org> * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: added capability to print pkcs12 structures. 2003-10-30 nmav <nmav@gnutls.org> * libextra/libgnutls-extra.vers: exported OpenSSL* symbols. 2003-10-30 nmav <nmav@gnutls.org> * lib/x509/rfc2818.h: added missing file. 2003-10-28 nmav <nmav@gnutls.org> * NEWS, doc/tex/ex-pkcs12.tex, includes/gnutls/pkcs12.h, lib/x509/common.c, src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: added pkcs #12 support to certtool. Corrected some bugs in the export functions. 2003-10-27 nmav <nmav@gnutls.org> * doc/protocol/draft-ietf-tls-sharedkeys-02.txt: [no log message] 2003-10-27 nmav <nmav@gnutls.org> * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: [no log message] 2003-10-27 nmav <nmav@gnutls.org> * src/certtool-gaa.c, src/certtool.c, src/certtool.gaa: [no log message] 2003-10-27 nmav <nmav@gnutls.org> * configure.in, lib/gnutls_dh_primes.c: Used the new gcrypt API for generating primes and groups. 2003-10-27 nmav <nmav@gnutls.org> * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: added the --der option to certtool. 2003-10-27 nmav <nmav@gnutls.org> * NEWS, configure.in, doc/tex/programs.tex, includes/gnutls/openpgp.h, lib/x509/x509.c, lib/x509/x509_write.c, src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: several improvements for the certtool utility. 2003-10-27 nmav <nmav@gnutls.org> * src/common.c: [no log message] 2003-10-27 nmav <nmav@gnutls.org> * doc/Makefile.am, doc/manpages/Makefile.am, doc/manpages/gnutls-cli-debug.1, doc/manpages/gnutls-cli.1, doc/manpages/gnutls-serv.1, doc/manpages/gnutls-srpcrypt.1: Added manpages created by Ivo Timmermans <ivo@o2w.nl> 2003-10-26 nmav <nmav@gnutls.org> * src/certtool.c, src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, src/common.c: Added the --print-cert option to gnutls-cli. 2003-10-26 nmav <nmav@gnutls.org> * NEWS, src/Makefile.am: [no log message] 2003-10-26 nmav <nmav@gnutls.org> * lib/gnutls_x509.c, lib/x509_b64.c, lib/x509/common.c, lib/x509/mpi.c, lib/x509/mpi.h, lib/x509/privkey.c, lib/x509/privkey.h, lib/x509/x509.c, src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: Added capability to print the keyid of a certificate or a private key to certtool. Updated the key_id functions to return the hash of the SubjectPublicKey. 2003-10-26 nmav <nmav@gnutls.org> * src/certtool.c: Added fingerprint calculation to certtool. 2003-10-26 nmav <nmav@gnutls.org> * configure.in, libextra/gnutls_openssl.c: added configure option to disable the openssl compatibility layer. 2003-10-26 nmav <nmav@gnutls.org> * lib/x509/x509.c: a fix in the get_subject_alt_name, to return GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE when finished reading. 2003-10-26 nmav <nmav@gnutls.org> * src/certtool.c: Added capability to decode some X.509v3 extensions. 2003-10-26 nmav <nmav@gnutls.org> * src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: Added certificate chain verification capability to certtool 2003-10-25 nmav <nmav@gnutls.org> * lib/x509/crq.c: [no log message] 2003-10-25 nmav <nmav@gnutls.org> * NEWS, lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509/common.c, lib/x509/crq.c, lib/x509/privkey_pkcs8.c, src/Makefile.am, src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa: Several improvments in the certtool. 2003-10-25 nmav <nmav@gnutls.org> * lib/x509/privkey_pkcs8.c, src/Makefile.am, src/certtool-gaa.c, src/certtool-gaa.h, src/certtool.c, src/certtool.gaa, src/common.c: Added a certtool primitive command line utility 2003-10-25 nmav <nmav@gnutls.org> * includes/gnutls/x509.h, lib/x509/common.c, lib/x509/common.h, lib/x509/crl.c, lib/x509/dn.c, lib/x509/extensions.c, lib/x509/extensions.h, lib/x509/mpi.c, lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509.h, lib/x509/x509_write.c: Improved the certificate generation stuff. 2003-10-25 nmav <nmav@gnutls.org> * NEWS, doc/TODO, includes/gnutls/x509.h, lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509/common.c, lib/x509/common.h, lib/x509/dn.c, lib/x509/dn.h, lib/x509/sign.c, lib/x509/x509_write.c: Almost finished the X.509 certificate generation. 2003-10-23 nmav <nmav@gnutls.org> * NEWS, THANKS, configure.in, libgcrypt.m4, includes/gnutls/x509.h, lib/Makefile.am, lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509/Makefile.am, lib/x509/common.c, lib/x509/common.h, lib/x509/crq.c, lib/x509/crq.h, lib/x509/dn.c, lib/x509/dn.h, lib/x509/extensions.c, lib/x509/extensions.h, lib/x509/x509.c, lib/x509/x509_write.c: Added some support for writable gnutls_x509_crt structures. Not ready yet. 2003-10-23 nmav <nmav@gnutls.org> * configure.in, lib/gnutls_mem.h, lib/minitasn1/mem.h: some alloca-related fixes. Patch by Philip Brown <phil@bolthole.com>. 2003-10-17 nmav <nmav@gnutls.org> * lib/x509/rfc2818_hostname.c: The hostname verification in the certificate is now case insensitive. 2003-10-17 nmav <nmav@gnutls.org> * NEWS, configure.in: [no log message] 2003-10-17 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_handshake.c: corrected a bug in the debugging output of handshake. Pointed out by Mark McLoughlin <mark@skynet.ie>. 2003-10-17 nmav <nmav@gnutls.org> * libextra/openpgp/gnutls_openpgp.h, libextra/openpgp/openpgp.h: Corrected issue in openpgp code, which did not allow compilation when opencdk was not present. 2003-10-16 nmav <nmav@gnutls.org> * configure.in: [no log message] 2003-10-16 nmav <nmav@gnutls.org> * doc/tex/cover.tex.in: [no log message] 2003-10-12 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2003-10-09 nmav <nmav@gnutls.org> * configure.in: opencdk is now mandatory in the base installation. 2003-10-08 nmav <nmav@gnutls.org> * NEWS: [no log message] 2003-10-08 nmav <nmav@gnutls.org> * includes/gnutls/openpgp.h, includes/gnutls/x509.h, lib/gnutls_dh.h, lib/gnutls_dh_primes.c, lib/gnutls_rsa_export.c, lib/gnutls_state.c, lib/gnutls_state.h, lib/gnutls_ui.c, lib/x509/common.c, lib/x509/pkcs5.c, lib/x509/pkcs7.c, lib/x509/privkey.c, lib/x509/x509.c, lib/x509/x509.h, libextra/openpgp/openpgp.c: Some changes in types. 2003-10-08 nmav <nmav@gnutls.org> * includes/gnutls/x509.h: [no log message] 2003-10-07 nmav <nmav@gnutls.org> * lib/x509/extensions.c, lib/x509/x509.c, lib/x509/x509.h: [no log message] 2003-10-07 nmav <nmav@gnutls.org> * includes/gnutls/x509.h, lib/gnutls_errors.c, lib/gnutls_global.c, lib/gnutls_int.h, lib/x509_b64.c, lib/x509/common.c, lib/x509/common.h, lib/x509/crl.c, lib/x509/crq.c, lib/x509/crq.h, lib/x509/dn.c, lib/x509/pkcs7.c, lib/x509/pkcs7.h, lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, lib/x509/x509.c, lib/x509/x509.h, libextra/auth_srp_sb64.c: Corrected some of the return types. Several other minor corrections. 2003-10-04 nmav <nmav@gnutls.org> * doc/tex/gnutls.bib, configure.in, doc/README.autoconf, lib/gnutls_pk.c: [no log message] 2003-10-04 nmav <nmav@gnutls.org> * doc/tex/fdl.tex, doc/tex/gnutls.bib: [no log message] 2003-10-04 nmav <nmav@gnutls.org> * doc/tex/fdl.tex, doc/tex/funcs.tex, doc/tex/gnutls.bib: Documentation is now under FDL 1.2. 2003-10-03 nmav <nmav@gnutls.org> * doc/tex/Makefile.am: [no log message] 2003-10-03 nmav <nmav@gnutls.org> * doc/tex/funcs.tex, libextra/gnutls_openpgp.c: [no log message] 2003-10-03 nmav <nmav@gnutls.org> * libextra/Makefile.am, libextra/gnutls_openpgp.c, libextra/openpgp/Makefile.am: [no log message] 2003-10-03 nmav <nmav@gnutls.org> * doc/tex/certificate.tex, libextra/Makefile.am, src/cli.c, src/common.c, src/serv.c: [no log message] 2003-10-03 nmav <nmav@gnutls.org> * NEWS, configure.in, doc/tex/Makefile.am, doc/tex/funcs.tex, includes/Makefile.am, includes/gnutls/openpgp.h, lib/x509/crl.c, lib/x509/crq.c, lib/x509/pkcs12.c, lib/x509/pkcs12_bag.c, lib/x509/pkcs7.c, lib/x509/privkey.c, lib/x509/x509.c, libextra/Makefile.am, libextra/gnutls_extra.c, libextra/openpgp/Makefile.am, libextra/openpgp/gnutls_openpgp.h, libextra/openpgp/openpgp.c, libextra/openpgp/openpgp.h, src/common.c: Updated the openpgp key API. 2003-10-03 nmav <nmav@gnutls.org> * libextra/Makefile.am: [no log message] 2003-10-03 nmav <nmav@gnutls.org> * configure.in, includes/gnutls/openpgp.h, libextra/Makefile.am, libextra/openpgp/Makefile.am, libextra/openpgp/gnutls_openpgp.h, libextra/openpgp/openpgp.c, libextra/openpgp/openpgp.h: Converted the pgp verification functions to the new API. 2003-10-03 nmav <nmav@gnutls.org> * includes/gnutls/extra.h, includes/gnutls/openpgp.h: [no log message] 2003-10-03 nmav <nmav@gnutls.org> * libextra/openpgp/xml.c: the place where the XML stuff were moved. 2003-10-03 nmav <nmav@gnutls.org> * libextra/openpgp/Makefile.am, libextra/openpgp/openpgp.c, libextra/openpgp/openpgp.h: Updated the old opencdk code and moved the XML stuff. Based on patch by Mikhail Teterin <mi+mx@aldan.algebra.com>. 2003-10-03 nmav <nmav@gnutls.org> * includes/gnutls/Makefile.am, lib/gnutls_alert.c, lib/gnutls_algorithms.c, lib/x509/Makefile.am, lib/x509/rfc2818_hostname.c, libextra/Makefile.am, src/cli.c, src/common.c, src/common.h, src/serv.c: Applied patch by Arne that fixes several possible NULL pointer dereferences. 2003-10-03 nmav <nmav@gnutls.org> * src/cli.c: Disable buffering. Clear FD set. Patch by Simon Josefsson <jas@extundo.com> 2003-10-03 nmav <nmav@gnutls.org> * libextra/gnutls_openpgp.c: [no log message] 2003-10-03 nmav <nmav@gnutls.org> * libextra/Makefile.am, libextra/gnutls_openpgp.c, libextra/openpgp/Makefile.am, libextra/openpgp/openpgp.c, libextra/openpgp/openpgp.h: started some rewrite of the openpgp stuff. 2003-10-02 nmav <nmav@gnutls.org> * src/cli.gaa, src/cli-gaa.c: [no log message] 2003-10-02 nmav <nmav@gnutls.org> * src/cli.c, src/common.h, src/serv.c: Rolled back some of Arne's changes. Now the ciphers can be set in the client/server. 2003-10-02 nmav <nmav@gnutls.org> * NEWS: [no log message] 2003-10-01 nmav <nmav@gnutls.org> * doc/scripts/gdoc, doc/tex/Makefile.am, lib/gnutls_errors.c: Patch by Arne. Fixes a linking problem with _gnutls_handshake2str() and _gnutls_packet2str(). Some other fixes in the documentation creation. 2003-10-01 nmav <nmav@gnutls.org> * lib/gnutls_alert.c, lib/gnutls_errors.c, lib/gnutls_record.c, lib/gnutls_state.c, lib/minitasn1/structure.c, src/cli.c, src/common.c, src/serv.c: A new patch by Arne. More bug fixes and optimizations. 2003-10-01 nmav <nmav@gnutls.org> * lib/gnutls_handshake.c: Corrected some unaligned accesses in IA64. Initial patch by Ian Wienand <ianw@gelato.unsw.edu.au>. 2003-10-01 nmav <nmav@gnutls.org> * libextra/gnutls_srp.c: Corrected a bug in the SRP U calculation. Reported by Casey Marshall <rsdio@metastatic.org>. 2003-10-01 nmav <nmav@gnutls.org> * src/cli.c, src/common.c: Applied Simos' patch for the SIGALRM triggered handshake. 2003-09-17 nmav <nmav@gnutls.org> * lib/gnutls_errors.c, lib/gnutls_pk.c, lib/x509/rfc2818_hostname.c: some cleanups. 2003-09-17 nmav <nmav@gnutls.org> * NEWS, doc/tex/ex-serv-pgp.tex, includes/gnutls/x509.h, src/cli.c, src/common.c, src/common.h, src/serv.c, src/tests.c: Added a hostname check with the certificate in the gnutls-cli. 2003-09-17 nmav <nmav@gnutls.org> * NEWS, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, lib/gnutls_cipher_int.c, lib/gnutls_int.h, lib/gnutls_priority.c, libextra/gnutls_openssl.c, src/cli.c, src/serv.c, src/tests.c: RIJNDAEL ciphersuites were renamed to AES. 2003-09-14 nmav <nmav@gnutls.org> * src/cli.c: [no log message] 2003-09-14 nmav <nmav@gnutls.org> * lib/gnutls_handshake.c: [no log message] 2003-09-14 nmav <nmav@gnutls.org> * lib/gnutls_constate.c, lib/gnutls_errors.c, lib/gnutls_handshake.c, lib/gnutls_v2_compat.c, src/cli.c, src/serv.c: some more cleanups. 2003-09-14 nmav <nmav@gnutls.org> * lib/gnutls_handshake.c, src/cli.c, src/serv.c: Corrected the client's behaviour in the handshake handling. Some fixes in the documentation. 2003-09-13 nmav <nmav@gnutls.org> * NEWS, src/crypt.c: [no log message] 2003-09-13 nmav <nmav@gnutls.org> * NEWS, configure.in, src/cli.c: [no log message] 2003-09-12 nmav <nmav@gnutls.org> * lib/libgnutls.vers, libextra/libgnutls-extra.vers: [no log message] 2003-09-12 nmav <nmav@gnutls.org> * configure.in, lib/Makefile.am, lib/libgnutls.vers, libextra/Makefile.am, libextra/libgnutls-extra.vers: Some additions to export only the documented API, and some support for versioning. 2003-09-11 nmav <nmav@gnutls.org> * configure.in, doc/tex/library.tex, lib/debug.c, lib/debug.h, lib/gnutls_errors.c, src/cli.c: cleanups. 2003-09-11 nmav <nmav@gnutls.org> * libextra/auth_srp.c, src/crypt-gaa.c, src/crypt-gaa.h, src/crypt.c, src/crypt.gaa, src/srp/tpasswd, src/srp/tpasswd.conf: Corrected and improved SRP support. The gnutls-srpcrypt now generates several primes. 2003-09-11 nmav <nmav@gnutls.org> * libextra/auth_srp.c: added a size check in the group generator received by the server. 2003-09-11 nmav <nmav@gnutls.org> * NEWS, configure.in, doc/README.autoconf, doc/TODO, doc/tex/ex-pkcs12.tex, includes/gnutls/x509.h, lib/x509/privkey_pkcs8.c, src/cli.c: Improved the error handling in the gnutls-cli. 2003-09-10 nmav <nmav@gnutls.org> * lib/gnutls_alert.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, libextra/auth_srp.c: [no log message] 2003-09-10 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_alert.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, libextra/auth_srp.c, src/crypt.c, src/srp/tpasswd, src/srp/tpasswd.conf: Updated the SRP implementation to follow the latest draft. 2003-09-01 nmav <nmav@gnutls.org> * src/tests.c, src/tls_test.c: corrected bug which made some tests now to be compiled. 2003-09-01 nmav <nmav@gnutls.org> * lib/gnutls_errors.c, lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_priority.c, lib/x509_b64.c, src/retcodes.c: More more fixes by Arne. 2003-09-01 nmav <nmav@gnutls.org> * lib/x509_b64.c: [no log message] 2003-08-27 nmav <nmav@gnutls.org> * lib/ext_server_name.c: [no log message] 2003-08-27 nmav <nmav@gnutls.org> * src/serv.c, src/tests.c, src/tls_test-gaa.c, src/tls_test-gaa.h, src/tls_test.c, src/tls_test.gaa: corrected bug in the session resumption detection in the gnutls-cli-debug, and other minor fixes. 2003-08-25 nmav <nmav@gnutls.org> * doc/tex/programs.tex, src/tls_test.c: [no log message] 2003-08-25 nmav <nmav@gnutls.org> * NEWS: [no log message] 2003-08-21 nmav <nmav@gnutls.org> * includes/gnutls/openssl.h, lib/gnutls_compress_int.c, src/tls_test.c: minor cleanups. 2003-08-21 nmav <nmav@gnutls.org> * lib/gnutls_global.c: [no log message] 2003-08-20 nmav <nmav@gnutls.org> * NEWS, lib/x509_b64.c: CR is now allowed in the base64 decoder. 2003-08-15 nmav <nmav@gnutls.org> * NEWS, configure.in, doc/README.CVS: [no log message] 2003-08-15 nmav <nmav@gnutls.org> * lib/gnutls_errors.c: _gnutls_bin2hex function was removed from gnutls_errors.c 2003-08-13 nmav <nmav@gnutls.org> * src/cli.c, src/serv.c: [no log message] 2003-08-13 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/gnutls_global.c, lib/x509/Makefile.am, lib/x509/rc2.c, lib/x509/rc2.h: RC2 is not included when PKCS#12 is disabled. 2003-08-13 nmav <nmav@gnutls.org> * configure.in, doc/README.CODING_STYLE, doc/README.CVS: [no log message] 2003-08-13 nmav <nmav@gnutls.org> * lib/gnutls_global.c: [no log message] 2003-08-13 nmav <nmav@gnutls.org> * configure.in, lib/defines.h: RC2 was made reentrant. The stddef.h is now included if found. 2003-08-13 nmav <nmav@gnutls.org> * configure.in, lib/gnutls_global.c: [no log message] 2003-08-13 nmav <nmav@gnutls.org> * lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_global.c: added better check for gcrypt library. 2003-08-13 nmav <nmav@gnutls.org> * configure.in, lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_record.c, lib/gnutls_state.c, lib/gnutls_v2_compat.c, libextra/ext_srp.c: Arne: - gcry_check_version() _must_ be called nowadays, says libgcrypt-1.1.42/NEWS. - configure.in: the respective test in configure.in included <sys/stddef.h> (which doesn't exist) instead of the usual <stddef.h>. - lib/gnutls_errors.c: declaration of function _gnutls_bin2hex() doesn't match prototype from file lib/gnutls_str.h, causing compilation failure - configure.in: -Wsign-compare removed. 2003-08-12 nmav <nmav@gnutls.org> * lib/auth_anon.c, lib/dh_compat.c, lib/gnutls_cipher_int.c, lib/gnutls_compress.c, lib/gnutls_dh_primes.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_mem.c, lib/gnutls_record.c, lib/gnutls_rsa_export.c, lib/rsa_compat.c, lib/x509_b64.c, lib/x509/common.c, libextra/ext_srp.c: more fixes by Arne. 2003-08-11 nmav <nmav@gnutls.org> * doc/tex/alert.tex, doc/tex/ciphersuites.tex, doc/tex/ex-cert-select.tex, doc/tex/howto.tex, doc/tex/record.tex, doc/tex/record_weaknesses.tex, doc/tex/srp.tex, doc/tex/translayer.tex, lib/auth_cert.c, lib/auth_cert.h, lib/auth_dh_common.c, lib/auth_rsa_export.c, lib/dh_compat.c, lib/gnutls_algorithms.c, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_cert.c, lib/gnutls_compress_int.c, lib/gnutls_dh_primes.c, lib/gnutls_errors.c, lib/gnutls_extensions.c, lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_mem.c, lib/gnutls_num.c, lib/gnutls_pk.c, lib/gnutls_record.c, lib/gnutls_state.c, lib/gnutls_x509.c, lib/io_debug.h, lib/x509/compat.c, lib/x509/verify.c, libextra/auth_srp_sb64.c, src/retcodes.c: still more patches by Arne Thomassen 2003-08-11 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c, lib/gnutls_compress_int.c, lib/gnutls_record.c: some more cleanups. 2003-08-11 nmav <nmav@gnutls.org> * doc/tex/record_weaknesses.tex, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_buffers.c, lib/gnutls_cert.c, lib/gnutls_compress_int.c, lib/gnutls_db.c, lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_mem.c, lib/gnutls_record.c, lib/x509_b64.c, lib/x509/pkcs7.c, libextra/auth_srp_passwd.h, libextra/auth_srp_sb64.c, libextra/ext_srp.c: more patches by Arne Thomassen. 2003-08-09 nmav <nmav@gnutls.org> * lib/gnutls_handshake.c, lib/gnutls_kx.c, lib/gnutls_mpi.c: [no log message] 2003-08-09 nmav <nmav@gnutls.org> * lib/gnutls_anon_cred.c: [no log message] 2003-08-09 nmav <nmav@gnutls.org> * NEWS, configure.in, doc/README.CODING_STYLE, doc/README.CVS, doc/protocol/draft-ietf-tls-rfc2246-bis-05.txt, includes/gnutls/x509.h, lib/auth_anon.c, lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/gnutls_alert.c, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_cert.c, lib/gnutls_compress_int.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_extensions.c, lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_int.h, lib/gnutls_num.c, lib/gnutls_pk.c, lib/gnutls_random.c, lib/gnutls_state.c, lib/gnutls_v2_compat.c, lib/gnutls_x509.c, lib/minitasn1/errors.c, libextra/auth_srp.c, libextra/auth_srp_passwd.c, libextra/auth_srp_rsa.c, libextra/gnutls_extra.c, libextra/gnutls_openssl.c, libextra/gnutls_srp.h, src/common.c, src/serv.c, tests/x509_test.c: Applied patch from Arne Thomassen <arne@arne-thomassen.de>, which corrects several things in the library. 2003-08-07 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/debug.c, lib/gnutls_algorithms.c, lib/gnutls_cert.h, lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, lib/gnutls_dh.h, lib/gnutls_global.c, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_rsa_export.c, lib/x509/pkcs12.c, lib/x509/pkcs12.h, lib/x509/pkcs12_encr.c, lib/x509/pkcs5.c, lib/x509/privkey.c, lib/x509/privkey.h, lib/x509/privkey_pkcs8.c, lib/x509/x509.h: Ported to the new libgcrypt (still unstable). Also added the RC2 cipher and improved the PKCS #12 stuff in order to support it. 2003-08-04 nmav <nmav@gnutls.org> * NEWS, configure.in, doc/tex/Makefile.am, lib/minitasn1/coding.c, lib/minitasn1/decoding.c, lib/minitasn1/element.c: * Added the new libtasn1. * the tex files are included in the distribution. 2003-07-09 nmav <nmav@gnutls.org> * lib/Makefile.am: added missing rfc2818_hostname.lo object. 2003-06-30 nmav <nmav@gnutls.org> * lib/x509/pkcs12_encr.c: Removed the salt size restriction (multiple of 8) to allow parsing IE5 generated structures. 2003-06-30 nmav <nmav@gnutls.org> * includes/gnutls/compat4.h: [no log message] 2003-06-29 nmav <nmav@gnutls.org> * doc/tex/certificate.tex, doc/tex/ex-client-srp.tex, doc/tex/ex-serv1.tex, doc/tex/handshake.tex: [no log message] 2003-06-29 nmav <nmav@gnutls.org> * doc/tex/ex-client-resume.tex, doc/tex/ex-client-srp.tex, doc/tex/ex-client2.tex, doc/tex/ex-serv-export.tex, doc/tex/ex-serv-pgp.tex, doc/tex/ex-serv-srp.tex, doc/tex/ex-serv1.tex: added the (gnutls_transport_ptr) cast to example programs. 2003-06-29 nmav <nmav@gnutls.org> * includes/gnutls/openssl.h, libextra/gnutls_openssl.c: [no log message] 2003-06-29 nmav <nmav@gnutls.org> * configure.in, lib/gnutls.h.in.in: [no log message] 2003-06-28 nmav <nmav@gnutls.org> * doc/tex/ex-pkcs12.tex, lib/x509/pkcs12_encr.c, doc/TODO: [no log message] 2003-06-28 nmav <nmav@gnutls.org> * NEWS, doc/tex/ex-pkcs12.tex, includes/Makefile.am, includes/gnutls/Makefile.am, includes/gnutls/pkcs12.h, includes/gnutls/x509.h: [no log message] 2003-06-28 nmav <nmav@gnutls.org> * lib/x509/pkcs12_encr.c: [no log message] 2003-06-28 nmav <nmav@gnutls.org> * doc/examples/Makefile.am, doc/tex/Makefile.am, doc/tex/certificate.tex, doc/tex/ex-crq.tex, doc/tex/ex-pkcs12.tex, doc/tex/examples.tex, doc/tex/gnutls.tex: some reorganization on the documentation. Added also stuff about PKCS #12 structures. 2003-06-28 nmav <nmav@gnutls.org> * lib/gnutls_ui.c: Corrected a null pointer dereference in gnutls_certificate_get_ours(). Report and Patch by Steve Langasek. 2003-06-28 nmav <nmav@gnutls.org> * NEWS, lib/x509/dn.c, lib/x509/pkcs12.c, lib/x509/privkey_pkcs8.c: some cleanups. 2003-06-27 nmav <nmav@gnutls.org> * NEWS: [no log message] 2003-06-27 nmav <nmav@gnutls.org> * includes/gnutls/x509.h, lib/gnutls_buffers.c, lib/gnutls_dh_primes.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_pk.c, lib/x509/mpi.c, lib/x509/mpi.h, lib/x509/pkcs12.c, lib/x509/privkey.c, lib/x509/privkey_pkcs8.c: Added function to do the MAC verification in the PKCS #12 structure. 2003-06-27 nmav <nmav@gnutls.org> * includes/gnutls/x509.h, lib/x509/common.h, lib/x509/dn.c, lib/x509/dn.h, lib/x509/pkcs12.c, lib/x509/pkcs12.h: Added stuff needed to read PKCS #12 bag attributes. 2003-06-27 nmav <nmav@gnutls.org> * lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509/common.c, lib/x509/dn.c, lib/x509/pkcs12.c, lib/x509/pkcs12.h, lib/x509/pkcs12_bag.c: Added ability to write Bag attributes LocalKeyId and friendlyName, in order for browsers to be able to import our structures. 2003-06-26 nmav <nmav@gnutls.org> * includes/gnutls/x509.h, lib/gnutls_state.c, lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509/pkcs12_encr.c, lib/x509/privkey_pkcs8.c: some cleanups. 2003-06-26 nmav <nmav@gnutls.org> * lib/minitasn1/decoding.c, lib/minitasn1/element.c: added new Fabio's fixes. 2003-06-26 nmav <nmav@gnutls.org> * lib/x509/pkcs12.c, lib/x509/privkey_pkcs8.c: PKCS #12 generation, finaly can interoperate with openssl even in the encrypted case. 2003-06-26 nmav <nmav@gnutls.org> * lib/x509/common.c, lib/x509/common.h, lib/x509/pkcs12.c, lib/x509/pkcs12.h, lib/x509/pkcs12_bag.c, lib/x509/privkey_pkcs8.c: Some more improvements in the PKCS #12 part. Now it interoperates with openssl pkcs12, in the unencrypted case. 2003-06-26 nmav <nmav@gnutls.org> * lib/gnutls_dh_primes.c, lib/gnutls_int.h, lib/x509/common.c, lib/x509/common.h, lib/x509/pkcs12.c, lib/x509/pkcs12.h, lib/x509/pkcs12_bag.c, lib/x509/pkcs5.c, lib/x509/privkey.h, lib/x509/privkey_pkcs8.c: Several more additions to PKCS #12 to allow encrypting bags. Still not interoperable. 2003-06-25 nmav <nmav@gnutls.org> * configure.in, includes/gnutls/x509.h, lib/gnutls_algorithms.c, lib/gnutls_cipher_int.c, lib/gnutls_errors.c, lib/gnutls_int.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_session.c, lib/gnutls_state.c, lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509/common.c, lib/x509/common.h, lib/x509/pkcs12.c, lib/x509/pkcs12.h, lib/x509/pkcs12_bag.c, lib/x509/pkcs12_encr.c, lib/x509/pkcs7.c, lib/x509/privkey_pkcs8.c: More PKCS #12 additions. Now the code can generate PKCS #12 files. Also added the ability to decrypt plain DES encrypted PKCS #8 keys. 2003-06-24 nmav <nmav@gnutls.org> * includes/gnutls/x509.h, lib/gnutls_cert.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/x509/pkcs12.c, lib/x509/pkcs12.h, lib/x509/pkcs12_encr.c, lib/x509/pkcs5.c: Passwords in PKCS5 and PKCS12 are now restricted to ASCII ones. 2003-06-24 nmav <nmav@gnutls.org> * includes/gnutls/x509.h, lib/x509/pkcs12.c, lib/x509/pkcs12.h, lib/x509/pkcs12_bag.c, lib/x509/pkcs12_encr.c: Some changes in PKCS12 to allow a bag to hold more than one elements. 2003-06-23 nmav <nmav@gnutls.org> * lib/gnutls_errors.c, lib/x509/common.h, lib/x509/pkcs12.c, lib/x509/pkcs12.h, lib/x509/pkcs12_bag.c, lib/x509/privkey_pkcs8.c: some pkcs12 improvements. 2003-06-22 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509/Makefile.am, lib/x509/common.h, lib/x509/pkcs12.h, lib/x509/pkcs12_bag.c, lib/x509/pkcs12_encr.c, lib/x509/privkey_pkcs8.c: Some additions to allow decrypting PKCS #5 encrypted data, with PKCS #12 schema OIDs. 2003-06-22 nmav <nmav@gnutls.org> * doc/tex/ex-cert-select.tex, doc/tex/ex-client2.tex, doc/tex/ex-serv-srp.tex, doc/tex/layers.tex, doc/tex/record.tex, doc/tex/tlsintro.tex, includes/gnutls/x509.h, lib/Makefile.am, lib/gnutls_alert.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/x509/Makefile.am, lib/x509/common.c, lib/x509/common.h, lib/x509/pkcs12.c, lib/x509/pkcs12.h, lib/x509/pkcs12_bag.c, lib/x509/privkey.h: Some improvements in PKCS12 parser. Now it can extract private keys from the structure. 2003-06-20 nmav <nmav@gnutls.org> * NEWS, doc/protocol/rfc3546.txt, doc/tex/gnutls.bib: new extensions RFC 2003-06-17 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2003-06-17 nmav <nmav@gnutls.org> * doc/protocol/draft-ietf-tls-srp-05.txt, doc/tex/gnutls.bib: new srp draft. 2003-06-16 nmav <nmav@gnutls.org> * doc/tex/gnutls.bib, doc/tex/library.tex: corrected a typo. 2003-06-12 nmav <nmav@gnutls.org> * libextra/auth_srp.c: [no log message] 2003-06-10 nmav <nmav@gnutls.org> * lib/gnutls_priority.c: added the most compatible ciphers in default priorities. 2003-06-09 nmav <nmav@gnutls.org> * NEWS, src/cli.c, src/crypt.c: Corrected bug in SRP where a non allocated value was freed. Reported by Hiroshi Hayakawa <deuva@rapid.ocn.ne.jp>. Also the SRP programs are now build by default (they weren't due to a bug). 2003-06-03 nmav <nmav@gnutls.org> * includes/gnutls/x509.h: [no log message] 2003-06-03 nmav <nmav@gnutls.org> * lib/auth_dh_common.c, lib/gnutls_auth.c, lib/gnutls_auth_int.h, lib/gnutls_dh.c, lib/x509/privkey.c, lib/x509/x509.c: [no log message] 2003-05-28 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_buffers.c: Corrected a bug in the record layer buffering, which affected the case where external pull function was used. Report and a patch by Sergey Poznyakoff <gray@Mirddin.farlep.net>. 2003-05-21 nmav <nmav@gnutls.org> * lib/ext_server_name.c, lib/ext_server_name.h, lib/gnutls.h.in.in: [no log message] 2003-05-16 nmav <nmav@gnutls.org> * lib/defines.h, lib/pkix.asn, lib/pkix_asn1_tab.c, lib/minitasn1/decoding.c, lib/minitasn1/element.c, lib/x509/pkcs12.c, lib/x509/pkcs12.h: some more stuff about PKCS12. Still on early stage and incomplete. 2003-05-12 nmav <nmav@gnutls.org> * lib/minitasn1/coding.c, lib/minitasn1/decoding.c: [no log message] 2003-05-08 nmav <nmav@gnutls.org> * lib/defines.h: [no log message] 2003-05-08 nmav <nmav@gnutls.org> * includes/gnutls/openssl.h: [no log message] 2003-05-08 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_cipher.c, lib/minitasn1/decoding.c, lib/minitasn1/der.h, lib/minitasn1/int.h, lib/minitasn1/libtasn1.h, lib/x509/privkey.c, lib/x509/x509.c, libextra/gnutls_openssl.c, libextra/gnutls_srp.c, src/serv-gaa.c, src/serv.c, src/serv.gaa: Several fixes in several places. Patch by Sean Gao <sean.gao@sun.com>. 2003-05-04 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2003-05-03 nmav <nmav@gnutls.org> * lib/auth_cert.c: Corrections in the TLS layer openpgp certificate packet parser. 2003-04-20 nmav <nmav@gnutls.org> * README: [no log message] 2003-04-18 nmav <nmav@gnutls.org> * NEWS, includes/gnutls/x509.h, lib/gnutls_x509.c, lib/x509/privkey.c, lib/x509/privkey.h, lib/x509/x509.c, src/serv.c: * Added gnutls_x509_privkey_get_key_id() and gnutls_x509_crt_get_key_id() functions which return a unique (per public key) ID. These can be used to check if the private key corresponds to a given certificate. 2003-04-16 nmav <nmav@gnutls.org> * lib/x509/crq.c: [no log message] 2003-04-16 nmav <nmav@gnutls.org> * doc/protocol/x509guide.txt: [no log message] 2003-04-16 nmav <nmav@gnutls.org> * lib/x509/crq.c: The PEM header for certificate requests is now BEGIN NEW CERTIFICATE REQUEST. 2003-04-16 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_x509.c, lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509/crq.c, lib/x509/pkcs7.c: Renamed all of the PKCS #xx stuff names, to pkcs-x-name. 2003-04-16 nmav <nmav@gnutls.org> * lib/pkix.asn, lib/x509/Makefile.am, lib/x509/common.h, lib/x509/pkcs7.c, lib/x509/privkey_pkcs8.c: [no log message] 2003-04-16 nmav <nmav@gnutls.org> * lib/pkix.asn, lib/pkix_asn1_tab.c: added definitions for pkcs12 2003-04-15 nmav <nmav@gnutls.org> * src/cli.c: Corrected a bug in gnutls-cli while resuming sessions. Reported by Ivo Timmermans, patch by Gergely Nagy <algernon@boszorka.mad.hu>. 2003-04-14 nmav <nmav@gnutls.org> * lib/ext_server_name.c: Corrected bug in server_name extension which made the client to send the wrong size of data. 2003-04-14 nmav <nmav@gnutls.org> * src/cli.c, src/common.c, src/serv.c: [no log message] 2003-04-14 nmav <nmav@gnutls.org> * lib/gnutls_state.c: Increased the default DH bits limit. 2003-04-06 nmav <nmav@gnutls.org> * lib/x509/verify.c: some prototype fixes. 2003-04-06 nmav <nmav@gnutls.org> * NEWS: [no log message] 2003-04-01 nmav <nmav@gnutls.org> * libextra/gnutls_extra.c, src/cli.c, src/common.c, src/crypt.c, src/serv.c, src/tests.c, src/tls_test.c: Some fixes to allow proper compiling when --disable-srp-authentication and --disable-anon-authentication are specified. Patch by Paul Sheer. 2003-04-01 nmav <nmav@gnutls.org> * configure.in, lib/gnutls_cert.c, lib/gnutls_x509.c, lib/x509/common.c, lib/x509/common.h, lib/x509/compat.c, lib/x509/crl.c, lib/x509/crq.c, lib/x509/pkcs5.c, lib/x509/pkcs7.c, lib/x509/privkey_pkcs8.c, lib/x509/sign.c, lib/x509/verify.c, lib/x509/x509.c, lib/x509/xml.c, src/cli.c, src/common.c, src/serv.c: Added the --disable-extra-pki configure option, which disables all extra PKI stuff like PKCS #7, PKCS #10 etc. To be used in constraint systems. 2003-04-01 nmav <nmav@gnutls.org> * lib/x509/common.c, lib/x509/x509.c: [no log message] 2003-04-01 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_mpi.c, lib/minitasn1/decoding.c, lib/x509/crl.c, lib/x509/x509.c, libextra/gnutls_openpgp.c: several bug fixes in the certificate parsing, and some in the asn1 parser. 2003-03-31 nmav <nmav@gnutls.org> * lib/gnutls_int.h, lib/gnutls_x509.c, lib/x509/crl.c, lib/x509/x509.c: More fixes to eliminate constants. 2003-03-31 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c, lib/gnutls_dh_primes.c, lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_pk.c, lib/x509/mpi.c, lib/x509/privkey.c, lib/x509/x509.h: Eliminated the need for a hard coded max MPI parameter size. 2003-03-29 nmav <nmav@gnutls.org> * includes/gnutls/x509.h, lib/x509/common.h, lib/x509/xml.c, src/common.c: Some fixes in the gnutls_x509_crt_to_xml() function. 2003-03-29 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/x509/pkcs7.c, libextra/Makefile.am: [no log message] 2003-03-28 nmav <nmav@gnutls.org> * lib/x509_b64.c: some cleanups. 2003-03-28 nmav <nmav@gnutls.org> * NEWS, configure.in, includes/gnutls/x509.h, lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509/crl.c, lib/x509/pkcs7.c: Several improvments in the PKCS #7 handling. Added capability to delete certificates, and handle CRLs. 2003-03-28 nmav <nmav@gnutls.org> * NEWS: [no log message] 2003-03-28 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_alert.c, lib/gnutls_alert.h, lib/x509/common.c, lib/x509/common.h, lib/x509/privkey_pkcs8.c, lib/x509/x509.c, lib/x509/x509.h: several cleanups. 2003-03-27 nmav <nmav@gnutls.org> * lib/x509_b64.c, lib/x509_b64.h: [no log message] 2003-03-26 nmav <nmav@gnutls.org> * lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509_b64.c, lib/x509_b64.h, lib/x509/pkcs7.c, lib/x509/x509.c: Several fixes to allow exporting the PKCS #7 structures. 2003-03-26 nmav <nmav@gnutls.org> * lib/x509/pkcs7.c, lib/x509/privkey_pkcs8.c: [no log message] 2003-03-26 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c, lib/gnutls_handshake.c, lib/gnutls_v2_compat.c: Some improvements in the version detection in the client hello. 2003-03-26 nmav <nmav@gnutls.org> * NEWS, includes/gnutls/x509.h, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/x509/pkcs7.c, lib/x509/privkey_pkcs8.c, lib/x509/x509.c, lib/x509/x509.h: Added functionality to generate PKCS #7 structures. Currently only certificates can be put there. (untested) 2003-03-26 nmav <nmav@gnutls.org> * src/serv-gaa.c, src/serv-gaa.h, src/serv.c, src/serv.gaa: Added the --debug option to the gnutls-serv. 2003-03-26 nmav <nmav@gnutls.org> * configure.in, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_state.c, lib/gnutls_state.h, lib/pkix.asn, lib/minitasn1/coding.c, lib/minitasn1/element.c, lib/minitasn1/int.h, lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, src/tests.c, src/tests.h, src/tls_test.c: Added bogus TLS record version check in the gnutls-cli-debug tool. 2003-03-25 nmav <nmav@gnutls.org> * lib/auth_cert.c, lib/ext_server_name.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_session_pack.c, lib/gnutls_sig.c, lib/x509/crl.c, lib/x509/crq.c, lib/x509/mpi.c, lib/x509/privkey.c, lib/x509/privkey_pkcs8.c, lib/x509/sign.c, lib/x509/verify.c, lib/x509/x509.c: Several GNUTLS_E_UNIMPLEMENTED_FEATURE errors were replaced with meaningful error values. 2003-03-24 nmav <nmav@gnutls.org> * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa: Added the --debug option in the client. 2003-03-24 nmav <nmav@gnutls.org> * NEWS, lib/auth_cert.c, lib/gnutls_buffers.c, lib/gnutls_global.c, lib/gnutls_kx.c: * Corrected behaviour when a certificate request message is received. Now a certificate packet is always sent, and in SSL 3.0 cipher suites a no_certificate alert is sent instead. 2003-03-24 nmav <nmav@gnutls.org> * lib/auth_cert.c: Corrected a parsing error in the Certificate request message. 2003-03-24 nmav <nmav@gnutls.org> * NEWS, lib/x509/Makefile.am: last changes for 0.9.3 release. 2003-03-23 nmav <nmav@gnutls.org> * lib/gnutls_x509.c, lib/x509/mpi.c, lib/x509/pkcs7.c, lib/x509/verify.c: reduced the FIXMEs. 2003-03-23 nmav <nmav@gnutls.org> * includes/gnutls/x509.h, lib/x509/privkey.h, lib/x509/privkey_pkcs8.c, src/cli-gaa.c, src/cli.gaa: Allow for unencrypted PKCS #8 private keys. 2003-03-23 nmav <nmav@gnutls.org> * lib/x509/common.c: [no log message] 2003-03-23 nmav <nmav@gnutls.org> * lib/gnutls_global.c, lib/gnutls_global.h, lib/gnutls_rsa_export.c: The functions that return the pkix_asn and gnutls_asn types were converted to macros. 2003-03-23 nmav <nmav@gnutls.org> * lib/x509/common.c, lib/x509/common.h, lib/x509/privkey_pkcs8.c, lib/x509/xml.c: Some cleanups. 2003-03-23 nmav <nmav@gnutls.org> * NEWS, includes/gnutls/x509.h, lib/Makefile.am, lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, lib/gnutls_constate.c, lib/gnutls_errors.c, lib/x509/privkey_pkcs8.c, lib/x509/x509.c, lib/x509/x509.h: * Added support for encoding and decoding PKCS #8 2.0 encrypted RSA private keys. 2003-03-22 nmav <nmav@gnutls.org> * NEWS, doc/tex/funcs.tex, lib/gnutls_cert.c, lib/x509/Makefile.am: the idea of using a separate library for x509 stuff was dropped for now. 2003-03-22 nmav <nmav@gnutls.org> * lib/gnutls_cert.c: more cleanups. 2003-03-22 nmav <nmav@gnutls.org> * lib/gnutls_cert.c, lib/gnutls_x509.c: [no log message] 2003-03-22 nmav <nmav@gnutls.org> * NEWS, includes/gnutls/x509.h, lib/gnutls.h.in.in, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_x509.c, lib/pkix.asn, lib/minitasn1/coding.c, lib/x509/crl.c, lib/x509/x509.c, lib/x509/x509.h: * Added the new functions: gnutls_certificate_set_x509_key() gnutls_certificate_set_x509_trust(), gnutls_certificate_set_x509_crl(), gnutls_x509_crt_export(), gnutls_x509_crl_export(). 2003-03-21 nmav <nmav@gnutls.org> * NEWS, includes/gnutls/x509.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/x509/mpi.c, lib/x509/mpi.h, lib/x509/privkey_pkcs8.c: [no log message] 2003-03-21 nmav <nmav@gnutls.org> * lib/gnutls_global.c, lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509/Makefile.am, lib/x509/common.c, lib/x509/common.h, lib/x509/pkcs5.c, lib/x509/pkcs5.h, lib/x509/privkey.c, lib/x509/privkey.h, lib/x509/privkey_pkcs8.c: Added ability to import PKCS8 encrypted keys. 2003-03-20 nmav <nmav@gnutls.org> * NEWS, doc/tex/ex-serv-export.tex, includes/gnutls/compat8.h, lib/gnutls.h.in.in, lib/gnutls_ui.c: * The gnutls_certificate_set_rsa_params() was renamed to gnutls_certificate_set_rsa_export_params(). 2003-03-20 nmav <nmav@gnutls.org> * doc/tex/ex-serv-export.tex, doc/tex/ex-serv1.tex: [no log message] 2003-03-20 nmav <nmav@gnutls.org> * lib/auth_rsa.c, lib/gnutls_int.h, lib/gnutls_pk.c: [no log message] 2003-03-20 nmav <nmav@gnutls.org> * NEWS, lib/auth_rsa.c, lib/gnutls.h.in.in, lib/gnutls_alert.c, lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_pk.c, lib/gnutls_state.c, src/tests.c, src/tests.h, src/tls_test.c: * The RSA premaster secret version check can no longer be disabled. * Implemented the counter measure discussed in the paper "Attacking RSA-based Sessions in SSL/TLS", against the attack discussed in the same paper. * Added the functions: gnutls_handshake_get_last_in(), gnutls_handshake_get_last_out(). 2003-03-20 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_priority.c, lib/minitasn1/coding.c, lib/minitasn1/decoding.c, lib/minitasn1/element.c, lib/minitasn1/errors.c, lib/minitasn1/errors_int.h, lib/minitasn1/int.h, lib/minitasn1/libtasn1.h, lib/minitasn1/structure.c, lib/x509/dn.c: * The diffie Hellman ciphersuites are now of higher priority than the plain RSA. * Added the new libtasn1. 2003-03-19 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/auth_rsa.c, lib/debug.c, lib/debug.h, lib/dh_compat.c, lib/gnutls.h.in.in, lib/gnutls_alert.c, lib/gnutls_alert.h, lib/gnutls_buffers.c, lib/gnutls_constate.c, lib/gnutls_dh_primes.c, lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_extensions.c, lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_pk.c, lib/gnutls_sig.c, lib/rsa_compat.c, lib/x509/dn.c, lib/x509/x509.c, libextra/auth_srp.c, libextra/gnutls_openpgp.c, src/cli.c: * Improved the error logging functions, by adding a level, and by allowing debugging messages just by increasing the level. 2003-03-19 nmav <nmav@gnutls.org> * doc/examples/Makefile.am, doc/tex/Makefile.am, doc/tex/ex-session-info.tex, doc/tex/ex-x509-info.tex, doc/tex/examples.tex: [no log message] 2003-03-18 nmav <nmav@gnutls.org> * NEWS, configure.in: [no log message] 2003-03-18 nmav <nmav@gnutls.org> * NEWS, doc/tex/funcs.tex, lib/Makefile.am, lib/x509/Makefile.am: some of the extra X.509 functionality was moved to libgnutls-x509 library. 2003-03-17 nmav <nmav@gnutls.org> * lib/gnutls_dh_primes.c, lib/gnutls_errors.c, lib/gnutls_pk.c, lib/x509/crq.c, lib/x509/dn.c, lib/x509/mpi.c, lib/x509/sign.c, lib/x509/verify.c, lib/x509/x509.c: better use of asn1_der_coding() to avoid using static buffers. 2003-03-17 nmav <nmav@gnutls.org> * lib/gnutls_hash_int.c: [no log message] 2003-03-17 nmav <nmav@gnutls.org> * NEWS, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, lib/gnutls_hash_int.c, lib/gnutls_int.h, lib/x509/common.c, lib/x509/verify.c, lib/x509/x509.h: MD2 support was dropped this is an algorithm we cannot use. 2003-03-17 nmav <nmav@gnutls.org> * lib/gnutls_hash_int.c, lib/x509/common.c, lib/x509/common.h, lib/x509/sign.c, lib/x509/verify.c: some cleanups. 2003-03-15 nmav <nmav@gnutls.org> * includes/gnutls/x509.h, lib/x509/crq.c, lib/x509/x509.c: Added gnutls_x509_crq_get_challenge_password(). 2003-03-15 nmav <nmav@gnutls.org> * doc/README.CVS: [no log message] 2003-03-15 nmav <nmav@gnutls.org> * doc/examples/Makefile.am, doc/tex/Makefile.am, doc/tex/ex-crq.tex, doc/tex/examples.tex: added an example about certificate request and private key generation. 2003-03-15 nmav <nmav@gnutls.org> * lib/gnutls_int.h, lib/x509/crq.c, lib/x509/x509.c, NEWS: [no log message] 2003-03-15 nmav <nmav@gnutls.org> * NEWS, configure.in, includes/gnutls/x509.h, lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509/common.c, lib/x509/common.h, lib/x509/crq.c, lib/x509/dn.c, lib/x509/dn.h, lib/x509/x509.c, libextra/auth_srp_rsa.c: Added support for PKCS#10 certificate requests generation. 2003-03-14 nmav <nmav@gnutls.org> * doc/protocol/rfc2985.txt: added pkcs9 rfc. 2003-03-14 nmav <nmav@gnutls.org> * lib/gnutls_int.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/x509/common.c, lib/x509/common.h, lib/x509/crq.c, lib/x509/dn.c, lib/x509/dn.h, lib/x509/mpi.c, lib/x509/mpi.h, lib/x509/sign.c, lib/x509/sign.h: several other additions and fixes for the certificate request stuff. 2003-03-14 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2003-03-14 nmav <nmav@gnutls.org> * tests/Makefile, tests/openpgp_test.c: [no log message] 2003-03-14 nmav <nmav@gnutls.org> * doc/protocol/rfc2986.txt: added rfc for certificate requests. 2003-03-14 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_sig.c, lib/gnutls_sig.h, lib/pkix.asn, lib/pkix_asn1_tab.c, lib/x509/Makefile.am, lib/x509/crl.c, lib/x509/crq.c, lib/x509/crq.h, lib/x509/pkcs7.c, lib/x509/privkey.c, lib/x509/sign.c, lib/x509/sign.h, lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509.h: Added some stuff needed in PKCS#10 certificate request generation. Some other fixes as well. 2003-03-14 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in: [no log message] 2003-03-14 nmav <nmav@gnutls.org> * NEWS: [no log message] 2003-03-14 nmav <nmav@gnutls.org> * includes/gnutls/x509.h, lib/auth_rsa_export.c, lib/gnutls_int.h, lib/gnutls_rsa_export.c, lib/gnutls_rsa_export.h, lib/x509/privkey.c, lib/x509/x509.h: The RSA parameters handling functions, are now implemented using the rsa privkey functions. 2003-03-13 nmav <nmav@gnutls.org> * includes/gnutls/x509.h, lib/x509/privkey.c: added flags to privkey_generate() 2003-03-13 nmav <nmav@gnutls.org> * lib/gnutls_x509.c: unmap data and close the file descriptor after the mmap(). 2003-03-12 nmav <nmav@gnutls.org> * lib/gnutls_int.h: [no log message] 2003-03-12 nmav <nmav@gnutls.org> * libextra/gnutls_srp.c: [no log message] 2003-03-12 nmav <nmav@gnutls.org> * NEWS: [no log message] 2003-03-12 nmav <nmav@gnutls.org> * NEWS: [no log message] 2003-03-12 nmav <nmav@gnutls.org> * libextra/gnutls_srp.c: fixed a memory leak. Reported by Rupert Kittinger <r.kittinger@efkon.com> 2003-03-12 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/gnutls_dh_primes.c, lib/gnutls_x509.c, src/cli.c: Use mmap() if available to read files. 2003-03-12 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/Makefile.am, lib/defines.h, lib/gnutls_dh_primes.c, lib/gnutls_x509.c, lib/strnstr.c, lib/x509_b64.c, lib/x509/crl.c, lib/x509/pkcs7.c, lib/x509/privkey.c: * Added an strnstr() function and the requirement in some functions to use null terminated PEM structures is no more. 2003-03-12 nmav <nmav@gnutls.org> * lib/gnutls_cert.c: [no log message] 2003-03-12 nmav <nmav@gnutls.org> * NEWS, includes/gnutls/x509.h, lib/auth_cert.c, lib/auth_cert.h, lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_mpi.h, lib/gnutls_sig.c, lib/gnutls_sig.h, lib/gnutls_x509.c, lib/x509/privkey.c, lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509.h, libextra/auth_srp_rsa.c, libextra/gnutls_openpgp.c: * Added ability to generate RSA keys. * Increased the maximum parameter size in order to read some large keys by some CAs. Patch by Ian Peters <itp@ximian.com>. * Rolled back some of yesterdays changes. The gnutls_x509_privkey, was replaced (again) by the gnutls_privkey. 2003-03-11 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/auth_cert.c, lib/auth_cert.h, lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_int.h, lib/gnutls_sig.c, lib/gnutls_sig.h, lib/gnutls_x509.c, lib/gnutls_x509.h, lib/x509/privkey.c, lib/x509/x509.h: some improvements in the private key handling api. It is now used internally. 2003-03-11 nmav <nmav@gnutls.org> * lib/gnutls_int.h, lib/gnutls_ui.c: [no log message] 2003-03-11 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_ui.c: The fingerprint now accepts a pointer to an int instead of a ptr to a size_t. 2003-03-11 nmav <nmav@gnutls.org> * src/common.c: [no log message] 2003-03-10 nmav <nmav@gnutls.org> * NEWS, THANKS: [no log message] 2003-03-06 nmav <nmav@gnutls.org> * configure.in: [no log message] 2003-03-06 nmav <nmav@gnutls.org> * configure.in, lib/Makefile.am, lib/gnutls_buffers.c, lib/x509/Makefile.am, libextra/Makefile.am: the documentation is now created on dist time. 2003-03-06 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c, NEWS: Corrected a broken buffer check in _gnutls_io_read_buffered() 2003-03-06 nmav <nmav@gnutls.org> * libextra/Makefile.am: [no log message] 2003-03-05 nmav <nmav@gnutls.org> * doc/README.CODING_STYLE, doc/tex/certificate.tex, doc/tex/ex-rfc2818.tex, doc/tex/ex-serv-export.tex, doc/tex/ex-serv1.tex: some documentation fixes. 2003-03-04 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2003-03-04 nmav <nmav@gnutls.org> * doc/tex/record_weaknesses.tex: Documented the last timing attack. 2003-03-04 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/defines.h, lib/gnutls.h.in.in, lib/gnutls_alert.c, lib/gnutls_cipher.c, lib/gnutls_constate.c, lib/gnutls_dh_primes.c, lib/gnutls_int.h, lib/gnutls_num.c, lib/gnutls_num.h, lib/gnutls_ui.c, lib/gnutls_x509.c, src/serv.c: * Corrected a bug in 64 bit architectures, which affected the serial number calculation in the record layer. * Added gnutls_certificate_free_keys() which deletes all the private keys and certificates from the credentials structure. 2003-03-04 nmav <nmav@gnutls.org> * lib/minitasn1/coding.c, lib/minitasn1/decoding.c, lib/minitasn1/element.c, lib/minitasn1/int.h, lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c: updated to the new libtasn1. 2003-03-03 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_cipher.c, lib/gnutls_cipher_int.c: Added protection against the new TLS 1.0 record layer timing attack. 2003-03-03 nmav <nmav@gnutls.org> * includes/gnutls/x509.h, lib/auth_cert.h, lib/gnutls.h.in.in, lib/gnutls_ui.c, lib/gnutls_x509.c, lib/x509/verify.c, lib/x509/verify.h, src/cli.c, src/common.c: Added a flag to allow signing by v1 X.509 certificates. Also added a function to allow setting the verification flags in the credentials structure. 2003-03-03 nmav <nmav@gnutls.org> * src/tests.c, src/tls_test.c: some fixes in tests 2003-02-27 nmav <nmav@gnutls.org> * NEWS, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, lib/gnutls_hash_int.c, lib/gnutls_int.h, lib/x509/verify.c: Added support for MD2 signature verification in X.509 certificates. 2003-02-25 nmav <nmav@gnutls.org> * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, src/tests.c, src/tls_test.c: Added option to disable all TLS 1.0 extensions. 2003-02-25 nmav <nmav@gnutls.org> * src/tests.c: [no log message] 2003-02-22 nmav <nmav@gnutls.org> * configure.in, doc/tex/Makefile.am, lib/Makefile.am: some fixes in makefiles. 2003-02-21 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_cipher.c, lib/gnutls_global.c, lib/gnutls_dh_primes.c: [no log message] 2003-02-20 nmav <nmav@gnutls.org> * lib/auth_cert.c: [no log message] 2003-02-20 nmav <nmav@gnutls.org> * doc/examples/Makefile.am, doc/tex/Makefile.am, doc/tex/ex-cert-select.tex, doc/tex/examples.tex: Added a small example on how to use the certificate selection callback in client side. 2003-02-19 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2003-02-18 nmav <nmav@gnutls.org> * lib/gnutls_auth.c, lib/gnutls_mpi.c, lib/gnutls_pk.c, libextra/auth_srp.c, libextra/gnutls_srp.c: some fixes in types. 2003-02-18 nmav <nmav@gnutls.org> * lib/auth_cert.c, lib/gnutls_cert.c, src/cli.c, src/tests.c: The client certificate selection callback is no longer called twice. It is called once if it is set. 2003-02-16 nmav <nmav@gnutls.org> * lib/gnutls_priority.c, lib/gnutls_record.c, lib/gnutls_session.c: [no log message] 2003-02-16 nmav <nmav@gnutls.org> * src/common.c: [no log message] 2003-02-16 nmav <nmav@gnutls.org> * src/tests.c, src/tls_test.c: works better in buggy servers. 2003-02-16 nmav <nmav@gnutls.org> * lib/gnutls_x509.c: [no log message] 2003-02-16 nmav <nmav@gnutls.org> * NEWS, doc/tex/ex-serv-export.tex, doc/tex/ex-serv1.tex, includes/gnutls/compat8.h, includes/gnutls/x509.h, lib/Makefile.am, lib/dh_compat.c, lib/gnutls.h.in.in, lib/gnutls_dh_primes.c, lib/gnutls_int.h, lib/gnutls_rsa_export.c, lib/gnutls_rsa_export.h, lib/rsa_compat.c, lib/x509/mpi.c, libextra/Makefile.am, src/prime.c, src/serv.c: The RSA and DH parameter handling has been updated. 2003-02-15 nmav <nmav@gnutls.org> * lib/auth_cert.c, lib/gnutls_x509.c, lib/x509/x509.c: Added a primitive function to load a file into memory, so that no certificate files are truncated. Also fixed a bug in the client certificate callback function. 2003-02-15 nmav <nmav@gnutls.org> * lib/gnutls_ui.c, lib/x509/dn.c, lib/x509/pkcs7.c, lib/x509/pkcs7.h, lib/x509/x509.c: Null, as the data value, is now an acceptable value in functions that may return the size of the data. 2003-02-14 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c: [no log message] 2003-02-14 nmav <nmav@gnutls.org> * src/common.c: [no log message] 2003-02-14 nmav <nmav@gnutls.org> * lib/auth_cert.c, lib/gnutls.h.in.in, lib/gnutls_cert.c, lib/gnutls_ui.h, lib/x509/dn.c, lib/x509/rfc2818_hostname.c, src/cli.c, src/common.c, src/tests.c, src/tests.h, src/tls_test.c: Corrected bugs in gnutls_x509_rdn_get(). Added a test to print the server's trusted CAs in gnutls-cli-debug, and in gnutls-cli. 2003-02-14 nmav <nmav@gnutls.org> * src/prime.c: [no log message] 2003-02-14 nmav <nmav@gnutls.org> * configure.in: [no log message] 2003-02-14 nmav <nmav@gnutls.org> * NEWS, configure.in, includes/gnutls/x509.h, lib/gnutls_cert.c, lib/gnutls_dh_primes.c, lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_pk.c, lib/gnutls_x509.c, lib/minitasn1/coding.c, lib/minitasn1/decoding.c, lib/minitasn1/element.c, lib/minitasn1/errors.c, lib/minitasn1/gstr.h, lib/minitasn1/int.h, lib/minitasn1/libtasn1.h, lib/minitasn1/parser_aux.c, lib/minitasn1/structure.c, lib/x509/common.c, lib/x509/compat.c, lib/x509/crl.c, lib/x509/dn.c, lib/x509/dn.h, lib/x509/extensions.c, lib/x509/mpi.c, lib/x509/pkcs7.c, lib/x509/verify.c, lib/x509/x509.c, lib/x509/xml.c: ported to libtasn1 0.2.x. Also the included minitasn1 was replaced by the 0.2.1 version of libtasn1. 2003-02-14 nmav <nmav@gnutls.org> * includes/gnutls/x509.h, lib/gnutls.h.in.in, lib/gnutls_int.h, lib/x509/crl.c, lib/x509/dn.c, lib/x509/x509.c: gnutls_const_datum was removed from exported types, for the time being. 2003-02-14 nmav <nmav@gnutls.org> * includes/gnutls/extra.h: [no log message] 2003-02-14 nmav <nmav@gnutls.org> * lib/x509/common.c: [no log message] 2003-02-13 nmav <nmav@gnutls.org> * README, doc/TODO, lib/auth_cert.c, lib/gnutls_int.h, lib/gnutls_state.c, lib/gnutls_x509.c: Added option to allow an X.509 server not to send the trusted CA list to the peer. 2003-02-12 nmav <nmav@gnutls.org> * doc/tex/appendix.tex, doc/tex/certificate.tex, doc/tex/ex-rfc2818.tex, doc/tex/funcs.tex, doc/tex/gnutls.bib, doc/tex/x509cert.xml.tex: [no log message] 2003-02-12 nmav <nmav@gnutls.org> * src/cli.c, src/serv.c, doc/TODO: [no log message] 2003-02-12 nmav <nmav@gnutls.org> * src/tests.c: [no log message] 2003-02-12 nmav <nmav@gnutls.org> * lib/Makefile.am, src/tests.c, src/tests.h, src/tls_test.c: Added test which prints the Diffie Hellman prime bits used. 2003-02-12 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2003-02-12 nmav <nmav@gnutls.org> * NEWS, includes/gnutls/compat8.h, includes/gnutls/x509.h, lib/gnutls.h.in.in, lib/gnutls_dh_primes.c, lib/gnutls_int.h, lib/gnutls_ui.h, lib/gnutls_x509.c, lib/x509/Makefile.am, lib/x509/compat.c, lib/x509/crl.c, lib/x509/pkcs7.c, lib/x509/pkcs7.h, lib/x509/privkey.c, lib/x509/x509.c, lib/x509/x509.h: Added some private key handling functions. They are primitive enough for now. 2003-02-12 nmav <nmav@gnutls.org> * libextra/gnutls_openpgp.c: some fixes to compile. 2003-02-12 nmav <nmav@gnutls.org> * NEWS, includes/gnutls/compat8.h, includes/gnutls/x509.h, lib/auth_cert.c, lib/auth_cert.h, lib/gnutls.h.in.in, lib/gnutls_cert.c, lib/gnutls_dh_primes.c, lib/gnutls_int.h, lib/gnutls_ui.h, lib/gnutls_x509.c, lib/x509/compat.c, lib/x509/crl.c, lib/x509/extensions.c, lib/x509/extensions.h, lib/x509/mpi.c, lib/x509/mpi.h, lib/x509/pkcs7.c, lib/x509/pkcs7.h, lib/x509/rfc2818_hostname.c, lib/x509/verify.c, lib/x509/verify.h, lib/x509/x509.c, lib/x509/x509.h, lib/x509/xml.c, tests/x509_test.c: gnutls_x509_certificate_* were renamed gnutls_x509_crt_*. 2003-02-12 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_int.h, lib/gnutls_ui.c, lib/x509/x509.c, includes/gnutls/x509.h: added gnutls_x509_certificate_get_fingerprint(). Untested yet. 2003-02-10 nmav <nmav@gnutls.org> * includes/gnutls/compat8.h, lib/debug.c, lib/debug.h, lib/gnutls.h.in.in, lib/gnutls_errors.c, lib/gnutls_global.c, lib/gnutls_ui.c, lib/gnutls_ui.h, lib/x509/compat.h, lib/x509/rfc2818_hostname.c, lib/x509/x509.c: renamed gnutls_x509_fingerprint to gnutls_fingerprint. 2003-02-09 nmav <nmav@gnutls.org> * lib/gnutls_dh_primes.c, src/prime.c: fixes in pkcs3 DH parameter generation. 2003-02-09 nmav <nmav@gnutls.org> * libextra/auth_srp_rsa.c: [no log message] 2003-02-09 nmav <nmav@gnutls.org> * includes/Makefile.am, includes/gnutls/Makefile.am, includes/gnutls/compat8.h, lib/Makefile.am, lib/auth_cert.c, lib/auth_cert.h, lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/gnutls.h.in.in, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_dh_primes.c, lib/gnutls_handshake.c, lib/gnutls_rsa_export.c, lib/gnutls_ui.h, lib/gnutls_x509.c, lib/gnutls_x509.h, lib/x509/compat.c, lib/x509/extensions.c, lib/x509/pkcs7.h, lib/x509/x509.h, libextra/auth_srp_rsa.c, libextra/gnutls_extra.h, libextra/gnutls_openpgp.c, src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, src/serv-gaa.c, src/serv-gaa.h, src/serv.c, src/serv.gaa: Several internal changes to use the new certificate API. CRL support is complete. 2003-02-08 nmav <nmav@gnutls.org> * includes/gnutls/x509.h, lib/x509/Makefile.am, lib/x509/common.c, lib/x509/crl.c, lib/x509/dn.c, lib/x509/dn.h, lib/x509/pkcs7.c, lib/x509/verify.c, lib/x509/x509.c, lib/x509/x509.h, tests/test20.pem, tests/test21.pem, tests/x509_test.c: Certificate revocation support is almost complete. 2003-02-08 nmav <nmav@gnutls.org> * includes/gnutls/x509.h, lib/gnutls.h.in.in, lib/gnutls_int.h, lib/x509/crl.c, lib/x509/verify.c, lib/x509/verify.h, lib/x509/x509.c, lib/x509/x509.h: added a crl verification function (untested yet). 2003-02-08 nmav <nmav@gnutls.org> * libextra/gnutls_openpgp.c, src/common.c: [no log message] 2003-02-08 nmav <nmav@gnutls.org> * includes/gnutls/x509.h, lib/Makefile.am, lib/gnutls_x509.c, lib/x509_b64.c, lib/x509/Makefile.am, lib/x509/compat.c, lib/x509/compat.h, lib/x509/crl.c, lib/x509/dn.c, lib/x509/dn.h, lib/x509/extensions.c, lib/x509/extensions.h, lib/x509/mpi.c, lib/x509/mpi.h, lib/x509/rfc2818_hostname.c, lib/x509/verify.c, lib/x509/verify.h, lib/x509/x509.c, lib/x509/x509.h, tests/test2.pem, tests/x509_test.c: Added some new certificate verification functions. 2003-02-08 nmav <nmav@gnutls.org> * NEWS, includes/gnutls/x509.h, lib/gnutls_cert.c, lib/x509/dn.c: [no log message] 2003-02-07 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/gnutls_cert.c, lib/gnutls_cert.h: removed the raw part in the gnutls_privkey internal structure.. 2003-02-07 nmav <nmav@gnutls.org> * includes/gnutls/x509.h, lib/x509/compat.c, lib/x509/extensions.c, lib/x509/extensions.h, lib/x509/rfc2818_hostname.c, lib/x509/x509.c, lib/x509/x509.h: Criticality of an X.509 extension can now be extracted. 2003-02-07 nmav <nmav@gnutls.org> * lib/x509/extensions.c, lib/x509/extensions.h: Added function to extract the key usage extension from an X.509 certificate, and combined some code. 2003-02-07 nmav <nmav@gnutls.org> * includes/gnutls/x509.h, lib/x509/x509.c: Added function to extract the key usage extension from an X.509 certificate, and combined some code. 2003-02-07 nmav <nmav@gnutls.org> * lib/Makefile.am: [no log message] 2003-02-07 nmav <nmav@gnutls.org> * NEWS, doc/tex/Makefile.am, doc/tex/certificate.tex, doc/tex/ex-rfc2818.tex, doc/tex/funcs.tex, includes/gnutls/x509.h, lib/Makefile.am, lib/gnutls_dh_primes.c, lib/gnutls_ui.h, lib/gnutls_x509.h, lib/x509/Makefile.am, lib/x509/compat.h, lib/x509/dn.h, lib/x509/rfc2818_hostname.c, lib/x509/x509.h, lib/x509/xml.c: More stuff for the new certificate API. 2003-02-07 nmav <nmav@gnutls.org> * NEWS, includes/gnutls/x509.h, lib/Makefile.am, lib/gnutls_cert.c, lib/gnutls_errors.h, lib/gnutls_errors_int.h, lib/gnutls_x509.c, lib/x509/Makefile.am, lib/x509/compat.c, lib/x509/dn.c: The old certificate parsing API was reimplemented over the new one. It will stay in the 1.0.0 release for compatibility reasons. 2003-02-07 nmav <nmav@gnutls.org> * includes/gnutls/x509.h, lib/Makefile.am, lib/gnutls_x509.h, lib/x509/Makefile.am, lib/x509/common.h, lib/x509/crl.c, lib/x509/pkcs7.c, lib/x509/pkcs7.h, lib/x509/x509.c: Added the new PKCS7 parsing functions. 2003-02-07 nmav <nmav@gnutls.org> * lib/x509/x509.c, lib/x509/x509.h: Added the new certificate handling functions. 2003-02-07 nmav <nmav@gnutls.org> * doc/tex/ex-client-resume.tex, doc/tex/ex-client2.tex, doc/tex/ex-serv-export.tex, doc/tex/ex-serv-pgp.tex, doc/tex/ex-serv1.tex, includes/gnutls/x509.h, lib/Makefile.am, lib/gnutls_x509.c, lib/gnutls_x509.h, lib/x509/Makefile.am, lib/x509/common.c, lib/x509/common.h, lib/x509/crl.c: Added the new certificate handling functions. 2003-02-07 nmav <nmav@gnutls.org> * THANKS, includes/gnutls/x509.h, lib/Makefile.am, lib/gnutls_x509.c, lib/gnutls_x509.h, lib/x509/Makefile.am, lib/x509/common.c, lib/x509/common.h, lib/x509/crl.c, lib/x509/dn.c, lib/x509/dn.h: More improvements in the CRL support, and the X.509 backend. Added a function to get some parts of the DN using an OID. 2003-02-06 nmav <nmav@gnutls.org> * includes/gnutls/x509.h, lib/gnutls.h.in.in, lib/gnutls_x509.c, lib/gnutls_x509.h, lib/x509/crl.c: CRL parsing support is almost complete. 2003-02-06 nmav <nmav@gnutls.org> * includes/gnutls/x509.h, lib/debug.c, lib/debug.h, lib/gnutls_dh_primes.c, lib/gnutls_rsa_export.c, lib/gnutls_str.c, lib/gnutls_str.h, lib/gnutls_x509.c, lib/gnutls_x509.h, lib/x509/crl.c, lib/x509/dn.c, lib/x509/dn.h: Several fixes and improvements in CRL support. 2003-02-05 nmav <nmav@gnutls.org> * NEWS, configure.in, includes/Makefile.am, includes/gnutls/Makefile.am, includes/gnutls/x509.h, lib/Makefile.am, lib/gnutls_int.h, lib/gnutls_x509.c, lib/x509/Makefile.am, lib/x509/crl.c, lib/x509/dn.c, lib/x509/dn.h: Added preliminary CRL support. This will be under the new X.509 API. Other x509 functions will be updated later. 2003-02-05 nmav <nmav@gnutls.org> * lib/gnutls_dh_primes.c, lib/gnutls_pk.c: some fixes. There wasn't any limitation in libtasn1 code... just my lazyness. 2003-02-03 nmav <nmav@gnutls.org> * src/prime.c: use options to print DH parameters. 2003-02-03 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_dh_primes.c, lib/gnutls_int.h, lib/gnutls_ui.h, lib/minitasn1/coding.c, src/prime.c: * Added gnutls_pkcs3_extract_dh_params() and gnutls_pkcs3_export_dh_params() which extracts and export parameters from and to PKCS#3 encoded structures. These were added to read parameters generated using the openssl dhparam tool. * The prime program was modified to also print the generated prime and generator using the PKCS#3 format. 2003-02-03 nmav <nmav@gnutls.org> * NEWS, doc/TODO, doc/tex/ex-serv-export.tex, doc/tex/ex-serv-pgp.tex, doc/tex/ex-serv1.tex, lib/Makefile.am, lib/auth_anon.c, lib/auth_dhe.c, lib/gnutls.asn, lib/gnutls.h.in.in, lib/gnutls_alert.c, lib/gnutls_anon_cred.c, lib/gnutls_asn1_tab.c, lib/gnutls_cert.c, lib/gnutls_dh.h, lib/gnutls_dh_primes.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_global.c, lib/gnutls_int.h, lib/gnutls_mpi.c, lib/gnutls_rsa_export.c, lib/gnutls_state.c, lib/gnutls_ui.h, src/serv-gaa.c, src/serv-gaa.h, src/serv.c, src/serv.gaa: * gnutls_dh_params_generate() and gnutls_rsa_params_generate() now use gnutls_malloc() to allocate the output parameters. * Added gnutls_pkcs3_extract_dh_params() which extracts parameters from PKCS#3 encoded structures. This was in order to read parameters generated using the openssl dhparam tool. * Several changes in the temporary (DH/RSA) parameter codebase. No DH parameters are now included in the library. Also a credentials structure can now hold only one temporary parameter. 2003-01-30 nmav <nmav@gnutls.org> * lib/gnutls_ui.c: more doc for the gnutls_set_dh_prime_bits(). 2003-01-30 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/gnutls_alert.c, lib/gnutls_int_compat.c: removed backward compatibility functions for 0.9.0 version. 2003-01-28 nmav <nmav@gnutls.org> * doc/tex/compression.tex: [no log message] 2003-01-25 nmav <nmav@gnutls.org> * doc/tex/certificate.tex, doc/tex/compression.tex: [no log message] 2003-01-25 nmav <nmav@gnutls.org> * lib/gnutls_errors.c, lib/gnutls_errors_int.h, libextra/auth_srp.c: use RECEIVED_ILLEGAL_PARAMETER instead of SRP_PROTOCOL_FAILURE, when the SRP protocol fails. 2003-01-24 nmav <nmav@gnutls.org> * lib/gnutls_global.c: The gcrypt log handler is only set when we are in debugging mode. 2003-01-24 nmav <nmav@gnutls.org> * lib/gnutls_global.c: [no log message] 2003-01-23 nmav <nmav@gnutls.org> * NEWS, lib/auth_rsa.c, lib/debug.c, lib/gnutls_algorithms.c, lib/gnutls_compress_int.c, lib/gnutls_dh_primes.c, lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_extensions.c, lib/gnutls_global.c, lib/gnutls_rsa_export.c, lib/gnutls_x509.c, src/cli.c: Added ability to send some messages back to the application using the gnutls_global_set_log_function(). This is quite experimental. 2003-01-23 nmav <nmav@gnutls.org> * doc/tex/ex-client-resume.tex, doc/tex/ex-client-srp.tex, doc/tex/ex-client2.tex, doc/tex/ex-rfc2818.tex: some minor bugfixes in the documentation. 2003-01-23 nmav <nmav@gnutls.org> * lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_mpi.h, libextra/auth_srp.c: Added check and error code for some SRP fatal protocol failures. 2003-01-23 nmav <nmav@gnutls.org> * src/tls_test.c: [no log message] 2003-01-23 nmav <nmav@gnutls.org> * libextra/auth_srp_passwd.c, libextra/gnutls_srp.c: more cleanups. 2003-01-23 nmav <nmav@gnutls.org> * lib/gnutls_alert.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h: [no log message] 2003-01-23 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_alert.c, lib/gnutls_auth_int.h, lib/gnutls_handshake.c, libextra/auth_srp.c, libextra/auth_srp_passwd.c, libextra/ext_srp.c, libextra/gnutls_openpgp.c, src/cli.c: The library notifies the application on empty and illegal SRP usernames, so that proper notification (via an alert) is sent to the peer. Currently when the SRP ciphersuite is advertized but no username is sent by the peer, the library returns GNUTLS_E_EMPTY_SRP_USERNAME, and the alert associated with this is GNUTLS_A_ACCESS_DENIED (to be changed when the srp draft defines something more appropriate). 2003-01-23 nmav <nmav@gnutls.org> * libextra/auth_srp_passwd.c: Some cleanups. 2003-01-22 nmav <nmav@gnutls.org> * NEWS, libextra/auth_srp_passwd.c, configure.in: [no log message] 2003-01-22 nmav <nmav@gnutls.org> * lib/gnutls_x509.c, doc/Makefile.am, doc/scripts/Makefile.am: [no log message] 2003-01-22 nmav <nmav@gnutls.org> * src/tests.c, src/tls_test.c: improved srp detection 2003-01-22 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_dh.h, lib/gnutls_dh_primes.c, libextra/auth_srp.c, libextra/auth_srp_passwd.c, libextra/auth_srp_passwd.h, libextra/gnutls_srp.c, src/cli.c, src/tests.c: Improved the SRP support, to prevent attackers guessing the available usernames by brute force. The g,n values sent are now obtained by the password conf file. (they were static ones) 2003-01-20 nmav <nmav@gnutls.org> * doc/tex/cover.tex.in, lib/Makefile.am, lib/auth_anon.c, lib/auth_cert.c, lib/auth_dh_common.c, lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/debug.c, lib/ext_cert_type.c, lib/ext_server_name.c, lib/gnutls_alert.c, lib/gnutls_algorithms.c, lib/gnutls_auth.c, lib/gnutls_buffers.c, lib/gnutls_cert.c, lib/gnutls_cipher.c, lib/gnutls_compress_int.c, lib/gnutls_constate.c, lib/gnutls_datum.c, lib/gnutls_db.c, lib/gnutls_dh.c, lib/gnutls_errors.c, lib/gnutls_extensions.c, lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_mem.c, lib/gnutls_mpi.c, lib/gnutls_pk.c, lib/gnutls_record.c, lib/gnutls_rsa_export.c, lib/gnutls_state.c, lib/gnutls_ui.c, lib/gnutls_x509.c: [no log message] 2003-01-20 nmav <nmav@gnutls.org> * doc/tex/Makefile.am: [no log message] 2003-01-20 nmav <nmav@gnutls.org> * NEWS: [no log message] 2003-01-20 nmav <nmav@gnutls.org> * configure.in: [no log message] 2003-01-16 nmav <nmav@gnutls.org> * doc/tex/Makefile.am, includes/gnutls/compat4.h: [no log message] 2003-01-16 nmav <nmav@gnutls.org> * lib/gnutls_alert.c, lib/gnutls_buffers.c, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_record.c, lib/gnutls_record.h: Prefixed with underscore some internal functions. 2003-01-14 nmav <nmav@gnutls.org> * NEWS, doc/tex/appendix.tex, doc/tex/library.tex, doc/tex/srp.tex: [no log message] 2003-01-13 nmav <nmav@gnutls.org> * doc/tex/srp.tex, lib/Makefile.am, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_x509.c, lib/x509_b64.c, libextra/auth_srp.c, libextra/auth_srp_passwd.c, libextra/gnutls_openpgp.c: GNUTLS_E_PARSING_ERROR error code was replaced by GNUTLS_E_BASE64_DECODING_ER and GNUTLS_E_SRP_PWD_PARSING_ERROR. GNUTLS_E_ASCII_ARMOR_ERROR was also replaced by GNUTLS_E_BASE64_DECODING_ERROR. 2003-01-11 nmav <nmav@gnutls.org> * NEWS, doc/Makefile.am, doc/tex/Makefile.am, doc/tex/appendix.tex: Added some information about the SRP patents in the documentation. 2003-01-10 nmav <nmav@gnutls.org> * doc/tex/ex-serv-srp.tex: [no log message] 2003-01-09 nmav <nmav@gnutls.org> * lib/gnutls_hash_int.c: [no log message] 2003-01-09 nmav <nmav@gnutls.org> * NEWS, acinclude.m4, configure.in, doc/README.CODING_STYLE, lib/Makefile.am, lib/defines.h, lib/gnutls.h.in.in, lib/gnutls_auth.c, lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_state.c, libextra/Makefile.am: Only the documented symbols are now exported. 2003-01-09 nmav <nmav@gnutls.org> * lib/gnutls_x509.c: If the certificate does not contain the basicConstraints extension GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE will be returned by gnutls_x509_extract_certificate_ca_status(). 2003-01-08 nmav <nmav@gnutls.org> * lib/gnutls_x509.c: [no log message] 2003-01-08 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_ui.h, lib/gnutls_x509.c: Added gnutls_x509_extract_certificate_ca_status() which returns the CA status of the given certificate. 2003-01-08 nmav <nmav@gnutls.org> * doc/tex/ex-rfc2818.tex: [no log message] 2003-01-08 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2003-01-07 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in: [no log message] 2003-01-01 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/gnutls_compress_int.c, lib/minitasn1/Makefile.am, libextra/Makefile.am: If liblzo is found in the system then libgnutls-extra will depend on it, instead of including minilzo. 2002-12-30 nmav <nmav@gnutls.org> * lib/gnutls_mpi.c: Added a test for null (zero) integers in MPI scanning. 2002-12-29 nmav <nmav@gnutls.org> * src/tests.c, src/tls_test.c: some fixes in the gnutls-cli-debug program 2002-12-29 nmav <nmav@gnutls.org> * libextra/gnutls_openpgp.c: Added missing stub function. 2002-12-29 nmav <nmav@gnutls.org> * tests/Makefile: [no log message] 2002-12-29 nmav <nmav@gnutls.org> * lib/minitasn1/Makefile.am, lib/minitasn1/README, configure.in: [no log message] 2002-12-28 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/Makefile.am: [no log message] 2002-12-28 nmav <nmav@gnutls.org> * Makefile.am, NEWS, configure.in, doc/README.CVS, lib/Makefile.am, lib/defines.h, lib/minitasn1/coding.c, lib/minitasn1/decoding.c, lib/minitasn1/der.h, lib/minitasn1/element.c, lib/minitasn1/element.h, lib/minitasn1/errors.c, lib/minitasn1/errors.h, lib/minitasn1/errors_int.h, lib/minitasn1/gstr.c, lib/minitasn1/gstr.h, lib/minitasn1/int.h, lib/minitasn1/libtasn1.h, lib/minitasn1/mem.h, lib/minitasn1/parser_aux.c, lib/minitasn1/parser_aux.h, lib/minitasn1/structure.c, lib/minitasn1/structure.h: [no log message] 2002-12-22 nmav <nmav@gnutls.org> * configure.in: depends on libgcrypt 1.1.11 2002-12-16 nmav <nmav@gnutls.org> * lib/auth_anon.c, lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/gnutls_auth.h, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_kx.h, libextra/auth_srp.c, libextra/auth_srp.h, libextra/auth_srp_rsa.c: Dropped the support for the client key exchange message 0, and server key exchange message 2. 2002-12-16 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/debug.c, lib/gnutls_mpi.h, lib/gnutls_record.c, libextra/auth_srp.c: Finished SRP-6 stuff. It should work fine now. 2002-12-16 nmav <nmav@gnutls.org> * libextra/auth_srp.c, libextra/auth_srp_rsa.c, libextra/ext_srp.c, libextra/gnutls_srp.c, libextra/gnutls_srp.h: First part of SRP-6 support. Follows draft-ietf-tls-srp-04 and does not need the second key exchange part. Does not work yet. 2002-12-16 nmav <nmav@gnutls.org> * doc/tex/gnutls.bib, doc/tex/programs.tex: [no log message] 2002-12-13 nmav <nmav@gnutls.org> * NEWS, includes/gnutls/extra.h, libextra/gnutls_openpgp.c: Added gnutls_openpgp_extract_key_name_string() which returns a single string for a pgp user id. 2002-12-13 nmav <nmav@gnutls.org> * doc/tex/ex-serv-export.tex, src/serv.c: updated some example and the server to use the new gnutls_malloc() in callbacks. 2002-12-12 nmav <nmav@gnutls.org> * lib/gnutls_x509.c, lib/gnutls_ui.h: Added the gnutls_x509_extract_dn_string() function. 2002-12-12 nmav <nmav@gnutls.org> * doc/README.CODING_STYLE, NEWS: [no log message] 2002-12-12 nmav <nmav@gnutls.org> * lib/gnutls_errors.c: [no log message] 2002-12-12 nmav <nmav@gnutls.org> * README, doc/TODO: [no log message] 2002-12-08 nmav <nmav@gnutls.org> * lib/gnutls_mem.c: [no log message] 2002-12-08 nmav <nmav@gnutls.org> * libextra/gnutls_openpgp.c: [no log message] 2002-12-08 nmav <nmav@gnutls.org> * NEWS: [no log message] 2002-12-08 nmav <nmav@gnutls.org> * NEWS, configure.in: [no log message] 2002-12-08 nmav <nmav@gnutls.org> * src/serv.c: updated to include a callback for receiving openpgp keys, using libopencdk. 2002-12-08 nmav <nmav@gnutls.org> * lib/ext_cert_type.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_sig.c, lib/x509_b64.c, libextra/auth_srp_sb64.c: some cleanups 2002-12-08 nmav <nmav@gnutls.org> * libextra/gnutls_openpgp.c: minor cleanups 2002-12-08 nmav <nmav@gnutls.org> * doc/tex/ex-pgp-keyserver.tex: [no log message] 2002-12-07 nmav <nmav@gnutls.org> * lib/ext_server_name.c: some fixes in server_name extension 2002-12-07 nmav <nmav@gnutls.org> * src/serv-gaa.c, src/serv-gaa.h, src/serv.c, src/serv.gaa, doc/tex/ex-pgp-keyserver.tex: [no log message] 2002-12-07 nmav <nmav@gnutls.org> * NEWS, doc/tex/callbacks.tex, lib/gnutls.h.in.in, lib/gnutls_db.c, lib/gnutls_global.c, lib/gnutls_mem.c, lib/x509_b64.c, libextra/auth_srp_sb64.c, libextra/gnutls_srp.c: Exported the more convenient gnutls_malloc() and gnutls_free() functions. Actually pointers to functions. 2002-12-07 nmav <nmav@gnutls.org> * lib/gnutls_global.c, lib/gnutls.h.in.in: [no log message] 2002-12-07 twoaday <twoaday@gnutls.org> * libextra/gnutls_openpgp.c: Some bug fixes for the OpenPGP code. 2002-12-07 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2002-12-06 nmav <nmav@gnutls.org> * lib/gnutls_db.c, libextra/gnutls_srp.c: [no log message] 2002-12-06 nmav <nmav@gnutls.org> * NEWS, lib/x509_b64.c, libextra/auth_srp_sb64.c: Changed the semantics of gnutls_pem_base64_encode_alloc() and gnutls_pem_base64_decode_alloc(). In the default case were the gnutls library is used with malloc/realloc/free, these are binary compatible. They now require the returned data to be freed using the gnutls_global_get_free_function(). 2002-12-06 nmav <nmav@gnutls.org> * includes/gnutls/extra.h, lib/gnutls_int.h, lib/gnutls_ui.h, libextra/auth_srp_passwd.c, libextra/gnutls_srp.c, libextra/gnutls_srp.h: some cleanups. 2002-12-06 nmav <nmav@gnutls.org> * NEWS, doc/TODO, doc/tex/Makefile.am, doc/tex/callbacks.tex, doc/tex/library.tex, lib/gnutls.h.in.in, lib/gnutls_datum.c, lib/gnutls_datum.h, lib/gnutls_db.c, lib/gnutls_global.c, lib/gnutls_mem.c, lib/gnutls_mem.h, lib/gnutls_state.c, lib/gnutls_str.c, lib/gnutls_str.h, libextra/auth_srp_passwd.c, libextra/auth_srp_passwd.h, libextra/gnutls_srp.c, src/cli.c, src/serv.c: Added the new functions gnutls_get_malloc_function(), gnutls_get_free_function(). Also changed the way callback functions must allocate data. They now need to use these functions, instead of just calling malloc(). 2002-12-06 nmav <nmav@gnutls.org> * libextra/auth_srp.c, libextra/auth_srp_passwd.c, libextra/auth_srp_passwd.h, libextra/gnutls_srp.c: more updates in the SRP parameter callback. 2002-12-06 nmav <nmav@gnutls.org> * configure.in, includes/gnutls/extra.h: [no log message] 2002-12-06 nmav <nmav@gnutls.org> * libextra/ext_srp.c, libextra/gnutls_srp.c: Some updates in the srp codebase, to detect illegal usernames etc. 2002-12-06 nmav <nmav@gnutls.org> * lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_extensions.c, lib/gnutls_handshake.c: added error code to report illegal srp usernames. Some fixes in the extension parsing to report fatal errors. 2002-12-04 nmav <nmav@gnutls.org> * tests/openpgp_test.c: [no log message] 2002-12-04 nmav <nmav@gnutls.org> * doc/tex/ex-pgp-keyserver.tex: [no log message] 2002-12-04 nmav <nmav@gnutls.org> * lib/gnutls_global.c: [no log message] 2002-12-04 nmav <nmav@gnutls.org> * doc/tex/Makefile.am, doc/tex/ex-pgp-keyserver.tex, doc/tex/examples.tex, doc/tex/macros.tex, doc/tex/preparation.tex: Added a chapter for sources preparation. Based on the documenation of libksba. 2002-12-02 nmav <nmav@gnutls.org> * configure.in, doc/tex/ex-pgp-keyserver.tex: depends on opencdk 0.3.5 2002-12-02 nmav <nmav@gnutls.org> * doc/tex/ex-pgp-keyserver.tex, doc/tex/gnutls.bib, doc/tex/srp.tex, doc/tex/x509.tex: [no log message] 2002-12-02 nmav <nmav@gnutls.org> * lib/gnutls_extensions.c: Corrected bug in extension parsing. 2002-12-02 nmav <nmav@gnutls.org> * libextra/gnutls_extra.c: [no log message] 2002-12-02 nmav <nmav@gnutls.org> * doc/tex/Makefile.am, doc/tex/srp.tex, NEWS: [no log message] 2002-12-02 nmav <nmav@gnutls.org> * doc/tex/auth.tex, includes/gnutls/extra.h, libextra/gnutls_srp.c: some updates on srp documentation. 2002-12-02 nmav <nmav@gnutls.org> * doc/tex/ex-pgp-keyserver.tex: [no log message] 2002-12-02 nmav <nmav@gnutls.org> * doc/tex/ex-pgp-keyserver.tex: [no log message] 2002-12-02 nmav <nmav@gnutls.org> * lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/ext_cert_type.c, lib/ext_server_name.c, lib/gnutls_alert.c, lib/gnutls_algorithms.c, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_buffers.c, lib/gnutls_cert.c, lib/gnutls_cipher.c, lib/gnutls_compress.c, lib/gnutls_compress_int.c, lib/gnutls_constate.c, lib/gnutls_datum.c, lib/gnutls_datum.h, lib/gnutls_db.c, lib/gnutls_dh.c, lib/gnutls_dh_primes.c, lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_kx.c, lib/gnutls_mem.c, lib/gnutls_mpi.c, lib/gnutls_num.c, lib/gnutls_pk.c, lib/gnutls_priority.c, lib/gnutls_random.c, lib/gnutls_record.c, lib/gnutls_rsa_export.c, lib/gnutls_session.c, lib/gnutls_session_pack.c, lib/gnutls_sig.c, lib/gnutls_state.c, lib/gnutls_str.c, lib/gnutls_ui.c, lib/gnutls_v2_compat.c, lib/gnutls_x509.c, libextra/auth_srp.c, libextra/auth_srp_passwd.c, libextra/auth_srp_rsa.c, libextra/ext_srp.c, libextra/gnutls_extra.c, libextra/gnutls_openpgp.c, libextra/gnutls_srp.c: Cleanups. Prefixed some internal function with underscore. 2002-12-01 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2002-12-01 nmav <nmav@gnutls.org> * lib/gnutls_x509.c: more fixes in gnutls_x509_extract_certificate_dn_string() 2002-12-01 nmav <nmav@gnutls.org> * lib/gnutls_dh_primes.c: [no log message] 2002-12-01 nmav <nmav@gnutls.org> * NEWS, doc/tex/ex-pgp-keyserver.tex, includes/gnutls/extra.h, lib/gnutls_dh.h, lib/gnutls_dh_primes.c, libextra/auth_srp.c, libextra/auth_srp.h, libextra/auth_srp_passwd.c, libextra/auth_srp_passwd.h, libextra/gnutls_openpgp.c, libextra/gnutls_srp.c, libextra/gnutls_srp.h, src/common.c: Added the function gnutls_srp_server_set_credentials_function() to allow retrieving SRP parameters from an external backend - other than password files. 2002-12-01 nmav <nmav@gnutls.org> * NEWS, doc/tex/ex-pgp-keyserver.tex, lib/auth_cert.c, libextra/gnutls_extra.h, libextra/gnutls_openpgp.c: Enabled the OpenPGP key retrieval callback function (untested yet). 2002-12-01 nmav <nmav@gnutls.org> * libextra/Makefile.am: removed all files related to srpsha1 encoding. The are not needed any more. 2002-12-01 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2002-12-01 nmav <nmav@gnutls.org> * NEWS, includes/gnutls/extra.h, lib/x509_b64.c, libextra/auth_srp_sb64.c, libextra/gnutls_srp.c, libextra/gnutls_srp.h, src/common.c, src/crypt-gaa.c, src/crypt.c, src/crypt.gaa: Added the functions: gnutls_srp_verifier() gnutls_srp_base64_encode() gnutls_srp_base64_decode() and modified the gnutls-srpcrypt, to use the exported functions. 2002-12-01 twoaday <twoaday@gnutls.org> * libextra/gnutls_openpgp.c: Some new code for the OpenPGP lib. 2002-12-01 twoaday <twoaday@gnutls.org> * tests/openpgp_test.c: Some enhancements for the OpenPGP test program. 2002-11-27 nmav <nmav@gnutls.org> * NEWS, configure.in: [no log message] 2002-11-27 nmav <nmav@gnutls.org> * NEWS: [no log message] 2002-11-25 nmav <nmav@gnutls.org> * lib/gnutls_int.h, lib/gnutls_x509.c: gnutls_x509_extract_certificate_dn_string() now behaves as described in RFC2253. 2002-11-23 nmav <nmav@gnutls.org> * doc/README.CODING_STYLE, includes/gnutls/extra.h, lib/gnutls_int.h: some changes in the callback function behaviour. 2002-11-22 nmav <nmav@gnutls.org> * lib/Makefile.am: linked against libgcrypt (I saw that in debian) 2002-11-22 nmav <nmav@gnutls.org> * doc/README.CODING_STYLE, doc/README.CVS: [no log message] 2002-11-22 nmav <nmav@gnutls.org> * doc/README.CODING_STYLE: [no log message] 2002-11-21 nmav <nmav@gnutls.org> * doc/tex/alert.tex, doc/tex/certificate.tex, doc/tex/errors.tex, doc/tex/examples.tex, doc/tex/funcs.tex, doc/tex/gnutls.bib, doc/tex/handshake.tex, doc/tex/layers.tex, doc/tex/openpgp.tex, doc/tex/record.tex, doc/tex/record_weaknesses.tex, doc/tex/tls_extensions.tex: [no log message] 2002-11-20 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_errors.c, lib/gnutls_extensions.c, libextra/auth_srp_rsa.c, libextra/gnutls_extra.c: Several cleanups and elimination of warnings. 2002-11-20 nmav <nmav@gnutls.org> * doc/tex/Makefile.am, doc/tex/gnutls.bib, doc/tex/record.tex, doc/tex/record_weaknesses.tex, doc/tex/tls_extensions.tex, doc/tex/tlsintro.tex, includes/gnutls/compat4.h, lib/ext_server_name.c, lib/gnutls_int_compat.c: updated documentation to include record layer weaknesses and counter-measures, and the supported TLS extensions. 2002-11-20 nmav <nmav@gnutls.org> * includes/Makefile.am, includes/gnutls/Makefile.am: [no log message] 2002-11-20 nmav <nmav@gnutls.org> * includes/gnutls/compat4.h, lib/gnutls.h.in.in: compat4.h was added, and is included by default in gnutls.h. 2002-11-20 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_cert.h, lib/gnutls_sig.c, lib/gnutls_ui.h, lib/gnutls_x509.c, libextra/gnutls_extra.c: Moved the GNUTLS_X509KEY_* to gnutls_cert.h and renamed them to KEY_*. Improved the checking of key usage. 2002-11-20 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c: added the AES ciphersuites for certificate srp authentication. 2002-11-19 nmav <nmav@gnutls.org> * doc/README.autoconf, doc/TODO: [no log message] 2002-11-19 nmav <nmav@gnutls.org> * doc/tex/auth.tex: [no log message] 2002-11-19 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_alert.c, lib/gnutls_algorithms.c, lib/gnutls_cert.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_x509.c, libextra/auth_srp_rsa.c, libextra/ext_srp.c, libextra/gnutls_extra.c, src/cli.c, src/common.c, src/common.h, src/serv.c: Added support for the DSS certificate SRP authenticated cipher suites (currently only with 3DES cipher). Cleaned up the client and server code, which was duplicated. 2002-11-19 nmav <nmav@gnutls.org> * NEWS, lib/auth_cert.c, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_auth.c, lib/gnutls_auth_int.h, lib/gnutls_cert.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_v2_compat.c, lib/gnutls_x509.c, libextra/Makefile.am, libextra/auth_srp.c, libextra/auth_srp.h, libextra/auth_srp_rsa.c, libextra/ext_srp.c, libextra/gnutls_extra.c, libextra/gnutls_extra.h, src/cli.c, src/common.c, src/serv.c: Added certificate authenticated SRP cipher suites. 2002-11-18 nmav <nmav@gnutls.org> * doc/tex/auth.tex, doc/tex/compression.tex, doc/tex/gnutls.bib, doc/tex/openpgp.tex, doc/tex/tlsintro.tex: [no log message] 2002-11-18 nmav <nmav@gnutls.org> * lib/gnutls_x509.c, doc/tex/certificate.tex: [no log message] 2002-11-17 nmav <nmav@gnutls.org> * lib/gnutls_int_compat.c: added compatibility function for the openpgp_keyserver. 2002-11-17 nmav <nmav@gnutls.org> * doc/tex/Makefile.am, doc/tex/appendix.tex, doc/tex/auth.tex, doc/tex/compression.tex, doc/tex/examples.tex, doc/tex/gnutls.bib, doc/tex/gnutls.tex, doc/tex/openpgp.tex, doc/tex/tlsintro.tex: added bibliography in documentation. 2002-11-16 nmav <nmav@gnutls.org> * doc/tex/ex-pgp-keyserver.tex: [no log message] 2002-11-16 nmav <nmav@gnutls.org> * doc/tex/ex-pgp-keyserver.tex: [no log message] 2002-11-16 nmav <nmav@gnutls.org> * doc/tex/ex-pgp-keyserver.tex: [no log message] 2002-11-16 nmav <nmav@gnutls.org> * doc/examples/Makefile.am, doc/tex/Makefile.am, doc/tex/ex-pgp-keyserver.tex, doc/tex/examples.tex, includes/gnutls/extra.h, lib/gnutls_int.h: updated pgp key retrieval callback and added example. 2002-11-15 nmav <nmav@gnutls.org> * doc/tex/Makefile.am: [no log message] 2002-11-15 nmav <nmav@gnutls.org> * NEWS, configure.in, doc/Makefile.am, doc/examples/Makefile.am, doc/tex/Makefile.am: example programs are now located in doc/examples directory. 2002-11-14 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_alert.c, lib/gnutls_alert.h: Added some new alert codes from the extensions draft. 2002-11-14 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_ui.c: [no log message] 2002-11-14 nmav <nmav@gnutls.org> * doc/tex/ex-client2.tex, doc/tex/examples.tex: updated the basic client to support OpenPGP certificate authentication. 2002-11-12 nmav <nmav@gnutls.org> * doc/tex/Makefile.am, doc/tex/ex-serv-pgp.tex, doc/tex/examples.tex: added example with an openpgp server 2002-11-12 nmav <nmav@gnutls.org> * NEWS, configure.in: [no log message] 2002-11-12 nmav <nmav@gnutls.org> * NEWS, includes/Makefile.am, includes/gnutls/Makefile.am: [no log message] 2002-11-12 nmav <nmav@gnutls.org> * lib/auth_anon.c, lib/auth_cert.c, lib/auth_dh_common.c, lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/gnutls_auth.c, lib/gnutls_cert.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_session_pack.c, lib/gnutls_state.c, lib/gnutls_ui.c, lib/gnutls_v2_compat.c, lib/gnutls_x509.c, libextra/auth_srp.c, libextra/auth_srp_passwd.c, libextra/ext_srp.c: The session->gnutls_key was renamed to session->key. 2002-11-12 nmav <nmav@gnutls.org> * includes/gnutls/extra.h: added compat.h which has definitions for compatibility with older (0.4.x and 0.5.y, y<5) versions. 2002-11-12 nmav <nmav@gnutls.org> * lib/gnutls_ui.h: [no log message] 2002-11-12 nmav <nmav@gnutls.org> * includes/gnutls/extra.h, lib/gnutls_int.h: The gnutls_openpgp_recv_key_func() callback function now accepts a key fingerprint, instead of the key id. 2002-11-11 nmav <nmav@gnutls.org> * src/cli.c, src/common.h, src/serv.c, src/tests.c, src/tests.h, src/tls_test.c: [no log message] 2002-11-11 nmav <nmav@gnutls.org> * src/cli.c, src/serv.c, src/tests.c: cleanups 2002-11-11 nmav <nmav@gnutls.org> * includes/gnutls/extra.h, lib/gnutls.h.in.in: dropped source backwards compatibility 2002-11-11 nmav <nmav@gnutls.org> * configure.in, includes/gnutls/extra.h, lib/gnutls_int.h, libextra/gnutls_openpgp.c: Added callback for OpenPGP key retrieval. 2002-11-06 nmav <nmav@gnutls.org> * opencdk.m4: updated url for opencdk 2002-11-05 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c, lib/gnutls_buffers.c, lib/gnutls_db.c, lib/gnutls_global.c, lib/gnutls_state.c, lib/gnutls_x509.c: some updated in the documentation 2002-11-05 nmav <nmav@gnutls.org> * NEWS: [no log message] 2002-11-04 twoaday <twoaday@gnutls.org> * libextra/gnutls_openpgp.c: Applied patch to make the error handling with keyservers more easier. 2002-11-04 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_alert.c, lib/gnutls_alert.h, lib/gnutls_errors_int.h: Added new alert (certificate unobtainable) from draft-ietf-tls-extensions. 2002-11-04 nmav <nmav@gnutls.org> * NEWS, configure.in: depends on opencdk 0.3.2 2002-11-04 twoaday <twoaday@gnutls.org> * libextra/gnutls_openpgp.c: Some debug code for the OpenPGP part. 2002-11-03 nmav <nmav@gnutls.org> * src/common.c: [no log message] 2002-11-03 twoaday <twoaday@gnutls.org> * lib/gnutls_errors.c, lib/gnutls_errors_int.h, libextra/gnutls_openpgp.c: Use the old error codes for OpenPGP again. 2002-11-03 twoaday <twoaday@gnutls.org> * lib/auth_cert.c: Fixed an off-by-one bug for OpenPGP fingerprint handling. 2002-11-03 twoaday <twoaday@gnutls.org> * lib/gnutls_errors_int.h: Corrected error number (the old was reserved). 2002-11-03 twoaday <twoaday@gnutls.org> * lib/gnutls_errors.c, lib/gnutls_errors_int.h, libextra/gnutls_openpgp.c: Unification for the OpenPGP error code. 2002-11-03 nmav <nmav@gnutls.org> * lib/gnutls_cert.c: corrected behaviour of verification in openpgp keys. 2002-11-03 twoaday <twoaday@gnutls.org> * libextra/gnutls_openpgp.c: Set the OpenPGP certificate status to GNUTLS_CERT_NOT_TRUSTED if the function failed. 2002-11-03 twoaday <twoaday@gnutls.org> * libextra/gnutls_openpgp.c, tests/openpgp_test.c: Bug fix for the OpenPGP secret key order. 2002-11-03 twoaday <twoaday@gnutls.org> * lib/gnutls_errors.c, lib/gnutls_errors_int.h, libextra/gnutls_openpgp.c: Add OpenPGP error description 2002-11-03 nmav <nmav@gnutls.org> * lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_sig.c, lib/gnutls_x509.c: Renamed GNUTLS_E_X509_KEY_USAGE_VIOLATION to GNUTLS_E_KEY_USAGE_VIOLATION, in order to apply to PGP keys as well. 2002-11-03 nmav <nmav@gnutls.org> * lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_pk.c, lib/gnutls_sig.c, src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, src/common.c: Added some new error codes and updated client. 2002-11-02 nmav <nmav@gnutls.org> * libextra/gnutls_openpgp.c: [no log message] 2002-11-02 nmav <nmav@gnutls.org> * configure.in: [no log message] 2002-11-02 nmav <nmav@gnutls.org> * lib/gnutls_errors.c: [no log message] 2002-11-02 nmav <nmav@gnutls.org> * libextra/gnutls_openpgp.c: fixed stub 2002-11-02 nmav <nmav@gnutls.org> * NEWS: [no log message] 2002-11-02 nmav <nmav@gnutls.org> * NEWS, lib/ext_cert_type.c, lib/ext_max_record.c, lib/ext_server_name.c, lib/gnutls_alert.c, lib/gnutls_buffers.c, lib/gnutls_cert.c, lib/gnutls_dh_primes.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_handshake.c, lib/gnutls_record.c, lib/gnutls_rsa_export.c, lib/gnutls_session_pack.c, lib/gnutls_ui.c, lib/x509_b64.c, libextra/gnutls_openpgp.c, libextra/gnutls_srp.c: Combined GNUTLS_E_INVALID_PARAMETERS wich GNUTLS_E_INVALID_REQUEST. Introduced GNUTLS_E_SHORT_MEMORY_BUFFER. 2002-11-02 nmav <nmav@gnutls.org> * lib/gnutls_x509.c: Fixed some memory leaks which may occured on error cases. 2002-11-01 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_x509.c, src/common.c: gnutls_x509_extract_certificate_dn_string() was rewritten. 2002-11-01 nmav <nmav@gnutls.org> * lib/Makefile.am: [no log message] 2002-11-01 nmav <nmav@gnutls.org> * lib/gnutls_x509.c: Added a check for dn extraction failure in gnutls_x509_extract_certificate_dn_string(). 2002-11-01 twoaday <twoaday@gnutls.org> * libextra/gnutls_openpgp.c: Adjust the keydb search code. 2002-10-29 twoaday <twoaday@gnutls.org> * configure.in: Bump OpenCDK version to 0.3.0 2002-10-29 twoaday <twoaday@gnutls.org> * lib/gnutls_errors_int.h, libextra/gnutls_openpgp.c, tests/Makefile, tests/openpgp_test.c: Add new regression test for OpenPGP. New code for the OpenCDK 0.3.0 version. A new error code for the OpenPGP part. 2002-10-29 nmav <nmav@gnutls.org> * lib/gnutls_buffer.h: added missing file 2002-10-28 nmav <nmav@gnutls.org> * lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/gnutls_buffers.c, lib/gnutls_cert.c, lib/gnutls_cipher_int.c, lib/gnutls_constate.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_handshake.c, lib/gnutls_pk.c, lib/gnutls_record.c, lib/gnutls_rsa_export.c, lib/gnutls_state.c, lib/gnutls_ui.c, lib/gnutls_x509.c, libextra/auth_srp_passwd.c, libextra/gnutls_openpgp.c: GNUTLS_E_UNKNOWN_ERROR was removed, and was replaced by GNUTLS_E_INTERNAL_ERROR. 2002-10-28 nmav <nmav@gnutls.org> * lib/gnutls_errors.c: [no log message] 2002-10-27 nmav <nmav@gnutls.org> * doc/tex/auth.tex, doc/tex/tlsintro.tex, doc/tex/translayer.tex, doc/scripts/Makefile.am: [no log message] 2002-10-26 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_state.c, lib/gnutls_str.c, lib/gnutls_str.h: Optimizations in buffering code, which reduce the number of malloc/realloc calls. 2002-10-26 nmav <nmav@gnutls.org> * lib/gnutls_errors.c, src/retcodes.c: The error code table now contains all the error codes sorted. 2002-10-25 nmav <nmav@gnutls.org> * NEWS, configure.in, doc/tex/Makefile.am, doc/tex/appendix.tex, doc/tex/errors.tex, doc/tex/gnutls.tex, lib/gnutls_errors.c, lib/gnutls_pk.c, src/Makefile.am, src/retcodes.c: Documented error codes in an appendix. This documentation is generated automatically using the retcodes program. 2002-10-24 nmav <nmav@gnutls.org> * doc/scripts/gdoc: [no log message] 2002-10-24 nmav <nmav@gnutls.org> * doc/scripts/gdoc, doc/scripts/sort1.pl, doc/tex/Makefile.am: Added script to sort function names in function reference. 2002-10-24 nmav <nmav@gnutls.org> * lib/gnutls_errors.c: [no log message] 2002-10-24 nmav <nmav@gnutls.org> * lib/auth_cert.c, lib/gnutls_cipher.c, lib/gnutls_constate.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_handshake.c, lib/gnutls_pk.c, lib/gnutls_v2_compat.c: Added more descriptive error codes to be returned by gnutls_strerror(). Removed old and unused error codes. 2002-10-24 nmav <nmav@gnutls.org> * src/tls_test-gaa.c, src/tls_test-gaa.h, src/tls_test.c, src/tls_test.gaa: gnutls-cli-debug now accepts one hostname only 2002-10-24 nmav <nmav@gnutls.org> * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa: gnutls-cli now accepts one hostname only 2002-10-23 nmav <nmav@gnutls.org> * doc/TODO, doc/tex/Makefile.am, lib/Makefile.am, lib/auth_anon.c, lib/auth_dh_common.c, lib/auth_dh_common.h, lib/auth_dhe.c: Merged common stuff in DHE and anonymous DH key exchange. 2002-10-14 nmav <nmav@gnutls.org> * doc/tex/examples.tex: [no log message] 2002-10-14 nmav <nmav@gnutls.org> * NEWS, doc/tex/Makefile.am, doc/tex/ex-client-resume.tex, doc/tex/ex-client-srp.tex, doc/tex/ex-client2.tex, doc/tex/ex-serv-export.tex, doc/tex/ex-serv-srp.tex, doc/tex/ex-serv1.tex: Example programs found in the documentation can now be generated by running "make examples" in doc/tex directory. 2002-10-14 nmav <nmav@gnutls.org> * libextra/Makefile.am, THANKS: Fixed interlibrary dependencies. By Ivo Timmermans. This requires the debian libtool 1.4.2-7.1 2002-10-14 nmav <nmav@gnutls.org> * doc/tex/compression.tex, doc/tex/layers.tex, doc/tex/translayer.tex: [no log message] 2002-10-14 nmav <nmav@gnutls.org> * lib/ext_max_record.c, lib/ext_server_name.c: cleanups in the server name extension. 2002-10-14 nmav <nmav@gnutls.org> * NEWS, src/cli.c: Some fixes in 'gnutls-cli' client program to prevent some segmentation faults at exit. 2002-10-13 nmav <nmav@gnutls.org> * NEWS: [no log message] 2002-10-13 nmav <nmav@gnutls.org> * doc/tex/auth.tex, doc/tex/funcs.tex: [no log message] 2002-10-13 nmav <nmav@gnutls.org> * doc/tex/Makefile.am, doc/tex/alert.tex, doc/tex/auth.tex, doc/tex/certificate.tex, doc/tex/ciphersuites.tex, doc/tex/compression.tex, doc/tex/handshake.tex, doc/tex/howto.tex, doc/tex/memory.tex, doc/tex/record.tex, doc/tex/tlsintro.tex: spelling corrections, and addition of a subsection for compression algorithms. 2002-10-13 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c: ZLIB's number was changed according to draft-ietf-tls-compression-02 2002-10-13 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/auth_anon.c, lib/auth_cert.c, lib/auth_cert.h, lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/defines.h, lib/ext_cert_type.c, lib/ext_cert_type.h, lib/ext_max_record.c, lib/ext_max_record.h, lib/ext_server_name.c, lib/ext_server_name.h, lib/gnutls.h.in.in, lib/gnutls_alert.c, lib/gnutls_alert.h, lib/gnutls_algorithms.c, lib/gnutls_auth.c, lib/gnutls_auth.h, lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cert.c, lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_compress_int.c, lib/gnutls_compress_int.h, lib/gnutls_db.c, lib/gnutls_dh_primes.c, lib/gnutls_extensions.h, lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_mem.c, lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_record.c, lib/gnutls_rsa_export.c, lib/gnutls_session_pack.c, lib/gnutls_sig.c, lib/gnutls_sig.h, lib/gnutls_state.c, lib/gnutls_ui.c, lib/gnutls_ui.h, lib/gnutls_x509.c, lib/gnutls_x509.h, lib/x509_b64.c, lib/x509_b64.h, libextra/auth_srp.c, libextra/auth_srp.h, libextra/auth_srp_passwd.c, libextra/auth_srp_passwd.h, libextra/auth_srp_sb64.c, libextra/ext_srp.c, libextra/ext_srp.h, libextra/gnutls_openpgp.c: several fixes in the codebase, mostly in signed/unsigned checkings. 2002-10-12 nmav <nmav@gnutls.org> * lib/ext_max_record.c, lib/ext_max_record.h: Corrected some types, to work in 64 bits machines. Suggested by Ivo Timmermans <ivo@o2w.nl>. 2002-10-12 admcd <admcd@gnutls.org> * includes/gnutls/openssl.h: Enclose in extern "C" (from Debian bug #163394). 2002-10-12 nmav <nmav@gnutls.org> * src/serv.c: now does not require carriage return 2002-10-11 nmav <nmav@gnutls.org> * lib/ext_server_name.c: Fixes (or not) in server name extension parsing 2002-10-11 nmav <nmav@gnutls.org> * doc/tex/certificate.tex, doc/tex/ex-rfc2818.tex, doc/tex/examples.tex: updated documentation 2002-10-11 nmav <nmav@gnutls.org> * NEWS, lib/ext_server_name.c, lib/gnutls_int.h, lib/gnutls_priority.c, src/serv.c: Improved the server name extension. Resumed sessions can now use it. 2002-10-11 nmav <nmav@gnutls.org> * NEWS, lib/Makefile.am, lib/ext_server_name.c, lib/ext_server_name.h, lib/gnutls.h.in.in, lib/gnutls_extensions.c, lib/gnutls_int.h, src/cli.c, src/common.c, src/serv.c: Added server name extension, from draft-ietf-tls-extension-05. 2002-10-10 nmav <nmav@gnutls.org> * doc/tex/ex-alert.tex, doc/tex/ex-rfc2818.tex, doc/tex/examples.tex: more documentation updates 2002-10-10 nmav <nmav@gnutls.org> * doc/tex/ex-alert.tex: [no log message] 2002-10-10 nmav <nmav@gnutls.org> * NEWS, configure.in, doc/tex/Makefile.am, doc/tex/ex-alert.tex, doc/tex/examples.tex, doc/tex/handshake.tex, src/serv.c: Separated alert checking from the example programs, to make them cleaner. Added an example which demonstrates the alert checking. 2002-10-10 nmav <nmav@gnutls.org> * NEWS, doc/tex/examples.tex: last minute changes for 0.5.9 release. 2002-10-09 nmav <nmav@gnutls.org> * NEWS, lib/Makefile.am, lib/gnutls_ui.h: Added int gnutls_x509_check_certificates_hostname() which check whether the given hostname matches the owner of the given X.509 certificate. 2002-10-09 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/gnutls_extensions.c: cleanups 2002-10-08 nmav <nmav@gnutls.org> * lib/gnutls_priority.c: [no log message] 2002-10-08 nmav <nmav@gnutls.org> * src/cli.c: [no log message] 2002-10-08 nmav <nmav@gnutls.org> * NEWS, lib/gnutls.h.in.in, lib/gnutls_priority.c, src/cli-gaa.c: Added gnutls_set_default_priority() and gnutls_set_default_export_priority() functions, to avoid calling all the *_priority() functions if the defaults are ok. 2002-10-07 nmav <nmav@gnutls.org> * lib/gnutls_x509.c: [no log message] 2002-10-07 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_ui.h, lib/gnutls_x509.c: Added gnutls_x509_extract_certificate_dn_string() which returns the peer's Distinguished name in a single string. 2002-10-07 nmav <nmav@gnutls.org> * NEWS, doc/TODO, lib/gnutls.h.in.in, lib/gnutls_auth.c, lib/gnutls_errors.h, lib/gnutls_handshake.c, lib/gnutls_kx.c, src/cli.c, src/cli.gaa: several cleanups 2002-10-07 nmav <nmav@gnutls.org> * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa: Changes in gnutls-cli, to allow testing of starttls implementations. 2002-10-05 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_ui.c, lib/gnutls_ui.h: rolled back addition of certificate_get_our_issuer() function. 2002-10-05 nmav <nmav@gnutls.org> * includes/gnutls/extra.h, libextra/gnutls_extra.c, libextra/libgnutls-extra.m4: Corrected the broken detection of libgnutls-extra. Bug reported by Ivo Timmermans. 2002-10-04 nmav <nmav@gnutls.org> * NEWS: [no log message] 2002-10-04 nmav <nmav@gnutls.org> * NEWS, doc/TODO, lib/gnutls_state.c, lib/gnutls_ui.c, lib/gnutls_ui.h: Corrected bug which prevented gnutls_certificate_get_ours() from working. Added gnutls_certificate_get_our_issuer() function. 2002-10-04 nmav <nmav@gnutls.org> * lib/gnutls_ui.h, lib/gnutls_x509.c, lib/x509_b64.c: Improved gnutls_x509_extract_key_pk_algorithm(), which can now distinguish DSA keys from unknown keys. 2002-10-02 nmav <nmav@gnutls.org> * configure.in, lib/gnutls_buffers.c: some fixes to compile with gcc-2.95. 2002-10-02 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2002-10-01 nmav <nmav@gnutls.org> * NEWS: [no log message] 2002-10-01 nmav <nmav@gnutls.org> * configure.in, doc/TODO, lib/gnutls.h.in.in, lib/gnutls_ui.h: Added function to extract the public key algorithm of a DER encoded private key. 2002-09-25 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/auth_rsa.c, lib/gnutls_cert.c: [no log message] 2002-09-20 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/gnutls_cert.c: [no log message] 2002-09-20 nmav <nmav@gnutls.org> * lib/gnutls_global.c: enabled error messages of libgcrypt in debug mode 2002-09-17 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/defines.h, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, libextra/Makefile.am, libextra/gnutls_extra.c, libextra/lzoconf.h, libextra/minilzo.c, libextra/minilzo.h, src/cli.c, src/serv.c, lib/gnutls_compress_int.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_handshake.c, lib/gnutls_int.h: Added support for the LZO compression library in gnutls-extra. Some fixes in the hello message parsing. 2002-09-16 nmav <nmav@gnutls.org> * NEWS, lib/gnutls.h.in.in, lib/gnutls_state.c: [no log message] 2002-09-16 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_buffers.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_int_compat.c, lib/gnutls_state.c: replaced gnutls_handshake_get_direction() with gnutls_record_get_direction(). 2002-09-16 nmav <nmav@gnutls.org> * doc/tex/appendix.tex, doc/tex/certificate.tex, doc/tex/library.tex: updated documentation 2002-09-16 nmav <nmav@gnutls.org> * README, src/serv.c: [no log message] 2002-09-15 nmav <nmav@gnutls.org> * lib/gnutls_record.c: [no log message] 2002-09-15 nmav <nmav@gnutls.org> * doc/tex/auth.tex, doc/tex/library.tex, doc/tex/macros.tex, doc/tex/tlsintro.tex, doc/tex/translayer.tex: [no log message] 2002-09-14 nmav <nmav@gnutls.org> * lib/gnutls_global.c: [no log message] 2002-09-14 nmav <nmav@gnutls.org> * doc/tex/library.tex: [no log message] 2002-09-13 nmav <nmav@gnutls.org> * configure.in, doc/TODO, doc/tex/alert.tex, doc/tex/auth.tex, doc/tex/programs.tex, lib/gnutls_alert.c, src/crypt.c: [no log message] 2002-09-13 nmav <nmav@gnutls.org> * doc/tex/layers.tex: [no log message] 2002-09-13 nmav <nmav@gnutls.org> * doc/tex/library.tex: [no log message] 2002-09-13 nmav <nmav@gnutls.org> * README, lib/gnutls.h.in.in, lib/gnutls_alert.c: Added a new function to convert from an error to an alert code. 2002-09-12 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_alert.c, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_compress_int.c, lib/gnutls_handshake.c, lib/gnutls_int.h: Improved support for zlib. 2002-09-11 nmav <nmav@gnutls.org> * NEWS: [no log message] 2002-09-11 nmav <nmav@gnutls.org> * NEWS, src/cli.c, tests/x509_test.c: [no log message] 2002-09-11 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_db.c, lib/gnutls_dh_primes.c, lib/gnutls_rsa_export.c: Corrected bug in gnutls_dh_params_set(). Corrected bug in session resuming code of server side. 2002-09-11 nmav <nmav@gnutls.org> * lib/ext_cert_type.c, lib/ext_max_record.c, libextra/ext_srp.c: some cleanups in the extension parsing 2002-09-10 nmav <nmav@gnutls.org> * doc/scripts/gdoc: Added Simon Josefsson's patch for gdoc. Now gdoc supports texinfo output. 2002-09-10 nmav <nmav@gnutls.org> * NEWS, buildconf, configure.in, lib/gnutls.h.in.in, lib/gnutls_global.c, libextra/gnutls_extra.c: changes for autoconf 2.50 2002-09-09 nmav <nmav@gnutls.org> * doc/tex/certificate.tex, doc/tex/examples.tex, doc/tex/handshake.tex, doc/tex/library.tex, doc/tex/x509.tex: [no log message] 2002-09-09 nmav <nmav@gnutls.org> * NEWS, configure.in, src/serv.c: Removed dependency on libgdbm library. 2002-09-09 nmav <nmav@gnutls.org> * lib/auth_dhe.c, lib/auth_rsa_export.c, lib/gnutls_algorithms.c, lib/gnutls_compress_int.c, lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_mem.c, lib/gnutls_mem.h, lib/gnutls_str.c, lib/gnutls_x509.c, libextra/gnutls_openpgp.c, libextra/gnutls_srp.c: Some fixes for the used realloc() function. Now we have gnutls_realloc_fast() which frees the given pointer if the new allocation failed. 2002-09-08 nmav <nmav@gnutls.org> * configure.in, lib/gnutls_num.h, lib/gnutls_str.c: updated string functions 2002-09-07 nmav <nmav@gnutls.org> * lib/gnutls_rsa_export.c: [no log message] 2002-09-06 nmav <nmav@gnutls.org> * doc/tex/certificate.tex, doc/tex/ciphers.tex, doc/tex/ex-rfc2818.tex, doc/tex/examples.tex, doc/tex/layers.eps, doc/tex/layers.tex, doc/tex/memory.tex, doc/tex/figures/layers.dia: [no log message] 2002-09-06 nmav <nmav@gnutls.org> * doc/tex/x509cert.xml.tex, src/common.c: [no log message] 2002-09-06 nmav <nmav@gnutls.org> * configure.in: last changes for 0.5.6 release 2002-09-06 nmav <nmav@gnutls.org> * NEWS, doc/tex/pgpcert.xml.tex, doc/tex/x509cert.xml.tex, libextra/gnutls_openpgp.c, src/common.c, src/gnutls-http-serv: added versioning in the XML output of certificate functions. 2002-09-06 nmav <nmav@gnutls.org> * doc/tex/Makefile.am, doc/tex/gnutls.tex, doc/tex/library.tex: [no log message] 2002-09-06 nmav <nmav@gnutls.org> * doc/tex/Makefile.am, doc/tex/gnutls.tex, doc/tex/internals.eps, doc/tex/library.tex, doc/tex/figures/internals.dia, doc/tex/figures/x509-1.dia: [no log message] 2002-09-05 nmav <nmav@gnutls.org> * doc/TODO, doc/tex/Makefile.am, doc/tex/certificate.tex, doc/tex/x509-1.eps, NEWS, lib/gnutls_global.h: [no log message] 2002-09-05 nmav <nmav@gnutls.org> * doc/tex/Makefile.am, doc/tex/certificate.tex, doc/tex/ciphers.tex, doc/tex/ciphersuites.tex, doc/tex/gnutls.tex, doc/tex/layers.tex, doc/tex/library.tex, doc/tex/openpgp.tex, doc/tex/tlsintro.tex, doc/tex/x509.tex: reorganized documentation 2002-09-05 nmav <nmav@gnutls.org> * tests/Makefile, tests/Makefile.am: [no log message] 2002-09-05 nmav <nmav@gnutls.org> * tests/test22.pem: [no log message] 2002-09-05 nmav <nmav@gnutls.org> * Makefile.am, configure.in, tests/Makefile, tests/Makefile.am, tests/ca.pem, tests/test1.pem, tests/test10.pem, tests/test13.pem, tests/test2.pem, tests/test23.pem, tests/test24.pem, tests/test26.pem, tests/test3.pem, tests/x509_test.c: Added more tests for the X.509 certificate validation. These tests are now only included in the CVS not the distribution. 2002-09-05 nmav <nmav@gnutls.org> * libextra/auth_srp.c: [no log message] 2002-09-04 nmav <nmav@gnutls.org> * lib/gnutls_int.h: [no log message] 2002-09-04 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_extensions.c, lib/gnutls_int.h: Corrected extension type checks which used an 8 bit extension size, instead of 16 bits. 2002-09-04 nmav <nmav@gnutls.org> * libextra/auth_srp.c, libextra/gnutls_srp.c: Corrected the SRP 'u' generation, and the size part of 's' changed to 8bits. 2002-09-03 nmav <nmav@gnutls.org> * lib/auth_anon.c, lib/auth_anon.h, lib/auth_cert.c, lib/auth_cert.h, lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/gnutls.h.in.in, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_cert.c, lib/gnutls_handshake.c, lib/gnutls_ui.c, lib/gnutls_x509.c, libextra/auth_srp.c, libextra/auth_srp.h, libextra/auth_srp_passwd.c, libextra/ext_srp.c, libextra/gnutls_extra.h, libextra/gnutls_openpgp.c, libextra/gnutls_srp.c, src/cli.c, src/serv.c, src/tests.c, src/tls_test.c: [no log message] 2002-09-03 nmav <nmav@gnutls.org> * NEWS, THANKS, configure.in, libextra/ext_srp.c: [no log message] 2002-09-03 nmav <nmav@gnutls.org> * libextra/auth_srp.c: corrected the SRP key exchange (bugs pointed out by D. Taylor) 2002-09-03 nmav <nmav@gnutls.org> * lib/ext_cert_type.c, lib/gnutls_int.h, lib/gnutls_x509.c: corrected the cert_type extension. (bug pointed out by D. Taylor) 2002-09-03 nmav <nmav@gnutls.org> * lib/gnutls_priority.c, lib/gnutls_priority.h: gnutls_list replaced by const int* 2002-09-03 nmav <nmav@gnutls.org> * NEWS, doc/tex/appendix.tex, doc/tex/cover.tex.in, doc/tex/gnutls.tex, doc/tex/handshake.tex, tests/Makefile.am: last changes for 0.5.5 release 2002-09-02 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2002-09-02 nmav <nmav@gnutls.org> * configure.in: [no log message] 2002-09-02 nmav <nmav@gnutls.org> * NEWS, lib/gnutls.h.in.in, lib/gnutls_int_compat.c, lib/gnutls_state.c, lib/gnutls_x509.c, libextra/gnutls_openssl.c, src/cli.c, src/serv.c, src/tls_test.c: [no log message] 2002-09-01 nmav <nmav@gnutls.org> * doc/tex/Makefile.am, doc/tex/programs.tex: [no log message] 2002-09-01 nmav <nmav@gnutls.org> * lib/gnutls_ui.c: [no log message] 2002-09-01 nmav <nmav@gnutls.org> * includes/gnutls/extra.h, lib/gnutls.h.in.in, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_auth_int.h, lib/gnutls_cert.c, lib/gnutls_handshake.c, lib/gnutls_int_compat.c, lib/gnutls_record.c, lib/x509_b64.c, libextra/gnutls_openssl.c, libextra/gnutls_srp.c, src/tests.c: more cleanups 2002-09-01 nmav <nmav@gnutls.org> * doc/tex/Makefile.am, doc/tex/auth.tex, doc/tex/examples.tex, doc/tex/gnutls.tex: Updated documentation and added more server examples. 2002-09-01 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_int.h, lib/gnutls_int_compat.c, lib/gnutls_ui.h, lib/gnutls_x509.c, lib/gnutls_x509.h, lib/x509_b64.c, lib/x509_b64.h, tests/x509_test.c: Updated the base64 encoding/decoding functions. 2002-09-01 nmav <nmav@gnutls.org> * lib/auth_anon.c, lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/gnutls_cert.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_handshake.c, lib/gnutls_state.c, lib/gnutls_v2_compat.c, lib/gnutls_x509.c, libextra/gnutls_openpgp.c: several clean ups 2002-09-01 nmav <nmav@gnutls.org> * doc/tex/Makefile.am, doc/tex/appendix.tex, doc/tex/gnutls.tex, doc/tex/howto.tex, doc/tex/macros.tex, doc/tex/pgpcert.xml.tex, doc/tex/x509.tex, doc/tex/x509cert.xml.tex: Updated documentation to include examples of XML certificates. 2002-09-01 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_state.c, src/common.c: [no log message] 2002-08-31 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_x509.c, lib/gnutls_x509.h: Improved the certificate and key read functions. They can now read a PEM encoded key and certificate from the same file. 2002-08-30 nmav <nmav@gnutls.org> * doc/tex/handshake.tex, lib/auth_cert.c, lib/ext_cert_type.c, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, lib/gnutls_cert.c, lib/gnutls_int_compat.c, lib/gnutls_priority.c, lib/gnutls_priority.h, lib/gnutls_state.c, lib/gnutls_state.h, libextra/gnutls_openssl.c, src/cli.c, src/common.c, src/serv.c, src/tests.c: cert_type abreviation was expanded to certificate_type. 2002-08-30 nmav <nmav@gnutls.org> * doc/tex/Makefile.am, doc/tex/ex-rfc2818.tex, doc/tex/examples.tex: updated examples 2002-08-29 nmav <nmav@gnutls.org> * NEWS, configure.in: [no log message] 2002-08-29 nmav <nmav@gnutls.org> * doc/tex/examples.tex, includes/gnutls/extra.h, includes/gnutls/openssl.h, lib/auth_anon.c, lib/auth_anon.h, lib/auth_cert.c, lib/auth_cert.h, lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/debug.c, lib/debug.h, lib/ext_cert_type.c, lib/ext_cert_type.h, lib/ext_max_record.c, lib/ext_max_record.h, lib/gnutls.h.in.in, lib/gnutls_alert.c, lib/gnutls_alert.h, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_auth.c, lib/gnutls_auth.h, lib/gnutls_auth_int.h, lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, lib/gnutls_compress.c, lib/gnutls_compress.h, lib/gnutls_compress_int.c, lib/gnutls_compress_int.h, lib/gnutls_constate.c, lib/gnutls_constate.h, lib/gnutls_db.c, lib/gnutls_db.h, lib/gnutls_dh.h, lib/gnutls_dh_primes.c, lib/gnutls_extensions.c, lib/gnutls_extensions.h, lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_int_compat.c, lib/gnutls_kx.c, lib/gnutls_kx.h, lib/gnutls_priority.c, lib/gnutls_priority.h, lib/gnutls_record.c, lib/gnutls_record.h, lib/gnutls_rsa_export.c, lib/gnutls_rsa_export.h, lib/gnutls_session.c, lib/gnutls_session.h, lib/gnutls_session_pack.c, lib/gnutls_session_pack.h, lib/gnutls_sig.c, lib/gnutls_sig.h, lib/gnutls_state.c, lib/gnutls_state.h, lib/gnutls_ui.c, lib/gnutls_ui.h, lib/gnutls_v2_compat.c, lib/gnutls_v2_compat.h, lib/gnutls_x509.c, lib/gnutls_x509.h, libextra/auth_srp.c, libextra/auth_srp.h, libextra/auth_srp_passwd.c, libextra/auth_srp_passwd.h, libextra/ext_srp.c, libextra/ext_srp.h, libextra/gnutls_openssl.c, libextra/gnutls_srp.c, src/cli.c, src/common.c, src/serv.c, src/tests.c, src/tls_test.c: Renamed all the constructed types to have more consisten names, and some other minor improvements. 2002-08-29 nmav <nmav@gnutls.org> * Makefile.am: removed PGPKEYS from the distribution. 2002-08-28 nmav <nmav@gnutls.org> * libextra/gnutls_openpgp.c: [no log message] 2002-08-28 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c, lib/gnutls_record.c: Allow the NULL pointer for data in gnutls_record_send(), if the previous call was interrupted. 2002-08-28 nmav <nmav@gnutls.org> * lib/gnutls_record.c: Corrected possible bug in decompression code. Well compressed packets may have been rejected due to limited buffer. 2002-08-28 nmav <nmav@gnutls.org> * doc/tex/auth.tex: [no log message] 2002-08-28 nmav <nmav@gnutls.org> * NEWS, doc/README.autoconf, doc/TODO, lib/gnutls_algorithms.c, lib/gnutls_int.h, libextra/Makefile.am, libextra/auth_srp.c, libextra/auth_srp_passwd.c, libextra/auth_srp_passwd.h, libextra/gnutls_srp.c, libextra/gnutls_srp.h, src/crypt-gaa.c, src/crypt-gaa.h, src/crypt.c, src/crypt.gaa: Added support for the new SRP draft by D. Taylor. This includes the removal of the blowfish crypt hash option, and the change of SRP cipher suite numbers. 2002-08-27 nmav <nmav@gnutls.org> * lib/debug.c, lib/gnutls_hash_int.c, lib/gnutls_x509.c: removed old FIXME stuff. 2002-08-27 nmav <nmav@gnutls.org> * NEWS: [no log message] 2002-08-26 nmav <nmav@gnutls.org> * doc/tex/x509.tex, src/cli.c: [no log message] 2002-08-26 nmav <nmav@gnutls.org> * doc/tex/figures/layers.dia, doc/tex/figures/pgp1.dia: added figures used in the documentation. Figures were generated by DIA. 2002-08-26 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_algorithms.c, lib/gnutls_cipher_int.c, lib/gnutls_int.h, libextra/gnutls_openssl.c, src/cli.c, src/serv.c, src/tests.c, doc/tex/auth.tex, doc/tex/ciphers.tex: Renamed GNUTLS_CIPHER_ARCFOUR to GNUTLS_CIPHER_ARCFOUR_128 2002-08-26 nmav <nmav@gnutls.org> * README: [no log message] 2002-08-26 nmav <nmav@gnutls.org> * lib/gnutls_state.c: better export ciphersuite detection 2002-08-26 admcd <admcd@gnutls.org> * libextra/gnutls_openssl.c: Update SSL_CIPHER_get_name() to use gnutls_cipher_suite_get_name() 2002-08-26 nmav <nmav@gnutls.org> * lib/auth_rsa_export.c: [no log message] 2002-08-26 nmav <nmav@gnutls.org> * src/Makefile.am, src/common.c, src/common.h, src/tests.c, src/tests.h, src/tls_test.c: Improved the gnutls-cli-debug program 2002-08-26 nmav <nmav@gnutls.org> * configure.in, lib/gnutls_state.c: [no log message] 2002-08-26 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_algorithms.c, lib/gnutls_cipher_int.c, lib/gnutls_int.h, doc/tex/ciphers.tex, src/cli.c, src/serv.c, src/tests.c: renamed ARCFOUR-EXPORT to ARCFOUR-40 2002-08-26 nmav <nmav@gnutls.org> * lib/auth_rsa.c, lib/auth_rsa_export.c, lib/gnutls_kx.c, lib/gnutls_rsa_export.h, lib/gnutls_state.c, lib/gnutls_state.h: Added support for RSA_EXPORT_WITH_RC4_EXPORT_MD5 with RSA certificates with modulus less than 512 bits. This change made the code a bit messy. 2002-08-25 nmav <nmav@gnutls.org> * src/serv.c: [no log message] 2002-08-25 nmav <nmav@gnutls.org> * src/serv.c, src/tests.c, src/tests.h, src/tls_test.c: improvements in server html output 2002-08-25 nmav <nmav@gnutls.org> * doc/tex/auth.tex, doc/tex/ciphers.tex: changes in order to keep up with the addition of export-grade ciphersuite 2002-08-25 nmav <nmav@gnutls.org> * lib/auth_rsa_export.c: [no log message] 2002-08-25 nmav <nmav@gnutls.org> * lib/gnutls_int.h: [no log message] 2002-08-25 nmav <nmav@gnutls.org> * src/cli.c, src/serv.c: changes for export cipher suites 2002-08-25 nmav <nmav@gnutls.org> * NEWS: Added the first EXPORT-grade ciphersuite 2002-08-25 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/auth_cert.h, lib/auth_dhe.c, lib/auth_rsa.c, lib/auth_rsa_export.c, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, lib/gnutls_cert.c, lib/gnutls_dh_primes.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_rsa_export.c, lib/gnutls_rsa_export.h, lib/gnutls_state.c, lib/gnutls_state.h, lib/gnutls_ui.c, lib/gnutls_ui.h, lib/gnutls_x509.c: Corrected bug in DHE key exchange which prevented from parsing the given certificates properly. 2002-08-23 nmav <nmav@gnutls.org> * NEWS: [no log message] 2002-08-23 nmav <nmav@gnutls.org> * includes/gnutls/extra.h, libextra/gnutls_openpgp.c: Exported gnutls_openpgp_extract_key_id(). This is the gnutls_openpgp_keyid() function renamed. 2002-08-22 nmav <nmav@gnutls.org> * lib/gnutls_auth.c: [no log message] 2002-08-22 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_int_compat.c, src/serv.c: gnutls_handshake_set_exportable_detection() was obsoleted. 2002-08-22 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2002-08-21 nmav <nmav@gnutls.org> * src/cli.c: [no log message] 2002-08-21 nmav <nmav@gnutls.org> * lib/gnutls_constate.c, lib/gnutls_hash_int.c: corrected bug in SSL3 random generation function. Now the export ciphersuite works in SSL3 mode too. 2002-08-21 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_constate.c, lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_state.c: Added the first exportable ciphersuite (TLS_RSA_WITH_RC4_EXPORT_MD5). This one only works in servers that have certificates of 512 bits length. 2002-08-21 nmav <nmav@gnutls.org> * lib/gnutls_int.h: [no log message] 2002-08-21 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_cipher_int.c, lib/gnutls_constate.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_state.c, src/cli.c: Added some initials for the export cipher suites. 2002-08-20 nmav <nmav@gnutls.org> * lib/gnutls_handshake.c: included the change cipher specs in gnutls_handshake_get_direction(). 2002-08-19 nmav <nmav@gnutls.org> * src/cli.c: [no log message] 2002-08-18 nmav <nmav@gnutls.org> * NEWS, lib/gnutls.h.in.in, lib/gnutls_handshake.c: gnutls_handshake_check_direction() renamed to gnutls_handshake_get_direction(). 2002-08-18 nmav <nmav@gnutls.org> * src/tls_test-gaa.c, src/tls_test-gaa.h, src/tls_test.c, src/tls_test.gaa: Added verbose option to gnutls-cli-debug. 2002-08-18 nmav <nmav@gnutls.org> * NEWS, lib/gnutls.h.in.in, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_state.c: Added the gnutls_handshake_set_exportable_detection() function, which is used to control whether the handshake will check for exportable cipher suites in the server. In that case an error of GNUTLS_E_EXPORT_CIPHER_SUITE is returned. 2002-08-18 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c: [no log message] 2002-08-17 nmav <nmav@gnutls.org> * AUTHORS: included cvs aliases into authors file 2002-08-17 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c: [no log message] 2002-08-17 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c, lib/gnutls.h.in.in: Added gnutls_cipher_suite_get_name(). This functions constructs the name of a cipher suite using the given algorithms. 2002-08-15 nmav <nmav@gnutls.org> * NEWS: [no log message] 2002-08-15 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_handshake.c, lib/gnutls_int.h: Added new function gnutls_handshake_check_direction(), which returns the state where the handshake function was interrupted. 2002-08-15 nmav <nmav@gnutls.org> * buildconf, configure.in, doc/README.CVS: Added the --enable-maintainer-mode configure option, and renamed the old one to --enable-developer-mode. 2002-08-15 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/gnutls.h.in.in, lib/gnutls_x509.c: added some missing consts 2002-07-21 admcd <admcd@gnutls.org> * doc/tex/openssl.tex, includes/gnutls/openssl.h, libextra/gnutls_openssl.c: add ability to use separate file descriptors for send() and recv() using new set_transport_ptr2() function 2002-07-21 admcd <admcd@gnutls.org> * includes/gnutls/openssl.h, libextra/gnutls_openssl.c: some initial support for TLS/SSL server applications 2002-07-20 nmav <nmav@gnutls.org> * lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_handshake.c: Added a special error code for cases where the peer (server) supports only export ciphersuites. 2002-07-18 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2002-07-18 nmav <nmav@gnutls.org> * lib/gnutls_int.h: [no log message] 2002-07-17 nmav <nmav@gnutls.org> * NEWS: [no log message] 2002-07-15 nmav <nmav@gnutls.org> * doc/tex/auth.tex, doc/tex/errors.tex, doc/tex/howto.tex, doc/tex/openpgp.tex, doc/tex/record.tex: Several documentation fixes. Suggestions and patch by Paul Wujek <pwujek@xp2telecom.com> 2002-07-15 nmav <nmav@gnutls.org> * configure.in: [no log message] 2002-07-15 nmav <nmav@gnutls.org> * NEWS, lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, lib/ext_max_record.c, lib/gnutls_cert.c, lib/gnutls_compress.c, lib/gnutls_compress_int.c, lib/gnutls_constate.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_global.c, lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_state.c, libextra/gnutls_extra.c: Fixes in zlib compression code. gnutls_global_init_extra() in libgnutls-extra fails if library versions do not match. Semantic changes in gnutls_record_set_max_size(). The requested size is now immediately enforced at the output buffers. 2002-07-15 nmav <nmav@gnutls.org> * src/cli.c, src/serv.c: Client and server now accept the null cipher option. 2002-07-13 nmav <nmav@gnutls.org> * NEWS, lib/gnutls.h.in.in, lib/gnutls_buffers.c, lib/gnutls_int.h, lib/gnutls_record.c: Added gnutls_transport_set_ptr2() which accepts two pointers. 2002-07-12 nmav <nmav@gnutls.org> * lib/gnutls_x509.c: [no log message] 2002-07-12 nmav <nmav@gnutls.org> * configure.in, lib/gnutls_mpi.h: moved to libgcrypt 1.1.8 2002-07-12 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2002-07-12 nmav <nmav@gnutls.org> * NEWS, lib/libgnutls.m4, libextra/libgnutls-extra.m4: corrected m4 macros for gnutls 2002-07-12 nmav <nmav@gnutls.org> * doc/protocol/rfc3268.txt: [no log message] 2002-07-10 nmav <nmav@gnutls.org> * lib/auth_anon.c, lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, lib/ext_cert_type.c, lib/ext_max_record.c, lib/gnutls_buffers.c, lib/gnutls_cert.c, lib/gnutls_cipher.c, lib/gnutls_compress.c, lib/gnutls_constate.c, lib/gnutls_datum.c, lib/gnutls_db.c, lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_mpi.c, lib/gnutls_num.c, lib/gnutls_pk.c, lib/gnutls_priority.c, lib/gnutls_random.c, lib/gnutls_record.c, lib/gnutls_session_pack.c, lib/gnutls_state.c, lib/gnutls_state.h, lib/gnutls_ui.c, lib/gnutls_v2_compat.c, lib/x509_b64.c: Added some hints on the file purpose, and some other cleanups. 2002-07-10 nmav <nmav@gnutls.org> * lib/gnutls_db.h, lib/gnutls_state.c: [no log message] 2002-07-10 nmav <nmav@gnutls.org> * lib/gnutls_db.c, lib/gnutls_state.c: Now gnutls_deinit() removes abnormally terminated sessions. Added the _gnutls_deinit() function which has the behaviour of the older gnutls_deinit(). 2002-07-10 nmav <nmav@gnutls.org> * src/serv.c: corrected possible bug in http server 2002-07-09 nmav <nmav@gnutls.org> * doc/tex/gnutls.tex: [no log message] 2002-07-07 nmav <nmav@gnutls.org> * lib/gnutls_x509.c, src/serv.c: [no log message] 2002-07-06 nmav <nmav@gnutls.org> * configure.in: [no log message] 2002-07-06 nmav <nmav@gnutls.org> * NEWS: [no log message] 2002-07-06 nmav <nmav@gnutls.org> * src/common.h: [no log message] 2002-07-06 admcd <admcd@gnutls.org> * doc/tex/openssl.tex: added some more information about current limitations of OpenSSL compatibility layer 2002-07-06 nmav <nmav@gnutls.org> * libextra/Makefile.am: added gnutls_openssl.c 2002-07-06 nmav <nmav@gnutls.org> * doc/tex/examples.tex: [no log message] 2002-07-06 nmav <nmav@gnutls.org> * doc/tex/x509.tex: some documentation fixes. 2002-07-06 admcd <admcd@gnutls.org> * includes/gnutls/openssl.h, libextra/gnutls_openssl.c: get rid of some warnings during build 2002-07-06 twoaday <twoaday@gnutls.org> * libextra/gnutls_openpgp.c: Minor fixes for the OpenPGP code. 2002-07-05 admcd <admcd@gnutls.org> * includes/gnutls/openssl.h, libextra/gnutls_openssl.c: yet more functions, and some fixes 2002-07-05 admcd <admcd@gnutls.org> * includes/gnutls/openssl.h, libextra/gnutls_openssl.c: some more functions implemented 2002-07-05 nmav <nmav@gnutls.org> * doc/tex/Makefile.am, doc/tex/examples.tex, doc/tex/funcs.tex, doc/tex/openssl.tex: [no log message] 2002-07-05 nmav <nmav@gnutls.org> * libextra/gnutls_openpgp.c: [no log message] 2002-07-05 nmav <nmav@gnutls.org> * includes/gnutls/extra.h, lib/gnutls.h.in.in, lib/gnutls_ui.h: Added defines for old function names. 2002-07-05 nmav <nmav@gnutls.org> * src/common.c, src/serv.c: [no log message] 2002-07-05 nmav <nmav@gnutls.org> * libextra/gnutls_openpgp.c: Fixed stub for xml keys. Added support for the new string functions in xml key generation. 2002-07-04 nmav <nmav@gnutls.org> * doc/tex/auth.tex: [no log message] 2002-07-04 nmav <nmav@gnutls.org> * src/README.srpcrypt, src/crypt-gaa.c, src/crypt-gaa.h, src/crypt.gaa, src/serv.c: updated the parameters of srpcrypt program. Other minor changes in included programs. 2002-07-04 nmav <nmav@gnutls.org> * lib/gnutls_x509.c: Corrected bug in the mpi extraction function from X.509 certificates (affects DSA certificates). 2002-06-30 nmav <nmav@gnutls.org> * includes/gnutls/extra.h, libextra/gnutls_openpgp.c: [no log message] 2002-06-30 nmav <nmav@gnutls.org> * src/common.c, lib/auth_cert.c, lib/gnutls_cipher.c, lib/gnutls_handshake.c, lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_ui.h, libextra/gnutls_openpgp.c: Made the xml convertion functions more mnemonic. Several other fixes in the core library. 2002-06-30 nmav <nmav@gnutls.org> * lib/gnutls_alert.c, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_auth.h, lib/gnutls_cipher.c, lib/gnutls_compress_int.c, lib/gnutls_compress_int.h, lib/gnutls_errors.c, lib/gnutls_extensions.c, lib/gnutls_extensions.h, lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_state.c, lib/gnutls_state.h, lib/gnutls_x509.c: Several (internal) cleanups. Const flags are better used now. 2002-06-29 nmav <nmav@gnutls.org> * lib/auth_cert.c, lib/gnutls_x509.c: Better organization of cert2gnutls_cert function. 2002-06-28 nmav <nmav@gnutls.org> * lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, lib/gnutls_x509.c, lib/gnutls_x509.h: Now certificate decoding makes use of partial DER decoding of the libtasn1 library. It speedups a bit the handshake in client side, which needs to decode the certificate, in order to read the public key parameters. 2002-06-24 nmav <nmav@gnutls.org> * NEWS: [no log message] 2002-06-24 admcd <admcd@gnutls.org> * libextra/gnutls_openssl.c: fix SSL_CIPHER_get_bits to return key size in bits rather than bytes 2002-06-23 nmav <nmav@gnutls.org> * configure.in: Depends on opencdk 0.2.0 2002-06-23 nmav <nmav@gnutls.org> * configure.in, includes/Makefile.am, includes/gnutls/Makefile.am: [no log message] 2002-06-23 twoaday <twoaday@gnutls.org> * libextra/gnutls_openpgp.c: Changes for the new OpenCDK version. 2002-06-22 nmav <nmav@gnutls.org> * tests/x509_test.c: [no log message] 2002-06-22 nmav <nmav@gnutls.org> * libextra/gnutls_openpgp.c: [no log message] 2002-06-22 nmav <nmav@gnutls.org> * lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, lib/gnutls_cert.h, lib/gnutls_record.c, lib/gnutls_str.h, lib/gnutls_x509.c, lib/gnutls_x509.h: The TLS handshake no longer fails if the X.509 extensions in the Certificate are critical and unsupported. The unsupported critical extensions are now only catched by the verification functions. 2002-06-22 nmav <nmav@gnutls.org> * lib/gnutls_str.c, lib/gnutls_str.h: Added new string functions to handle the XML string stuff. 2002-06-22 nmav <nmav@gnutls.org> * doc/TODO, includes/gnutls/Makefile.am, includes/gnutls/extra.h, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, lib/gnutls_anon_cred.c, lib/gnutls_cert.c, lib/gnutls_x509.c, lib/gnutls_x509.h, libextra/gnutls_openssl.c, libextra/gnutls_srp.c, src/cli.c, src/serv.c, src/tls_test.c: Renamed credential allocation functions from *_sc() to *_cred(). 2002-06-22 nmav <nmav@gnutls.org> * includes/gnutls/Makefile.am: [no log message] 2002-06-22 nmav <nmav@gnutls.org> * tests/Makefile.am, lib/gnutls_algorithms.c: [no log message] 2002-06-22 nmav <nmav@gnutls.org> * libextra/Makefile.am, libextra/gnutls_openssl.c, src/Makefile.am, src/cli.c, src/common.c, src/prime.c, src/serv.c, src/tests.c, src/tls_test.c, lib/Makefile.am, Makefile.am, configure.in, lib/gnutls.h.in.in, lib/gnutls_int_compat.c, lib/gnutls_x509.c: [no log message] 2002-06-22 nmav <nmav@gnutls.org> * includes/Makefile.am, includes/gnutls/Makefile.am, includes/gnutls/extra.h, includes/gnutls/openssl.h: Installed headers moved to includes/ directory. 2002-06-21 admcd <admcd@gnutls.org> * libextra/gnutls_openssl.c: changes to way SSL_CIPHER allocation is handled make use of option SSL_OP_NO_TLSv1 2002-06-21 admcd <admcd@gnutls.org> * libextra/gnutls_openssl.c: use gnutls_cipher_get_key_size() in SSL_CIPHER_get_bits() 2002-06-21 admcd <admcd@gnutls.org> * libextra/gnutls_openssl.c: make arrays for priority information in SSL_METHOD statically allocated 2002-06-21 nmav <nmav@gnutls.org> * lib/gnutls_x509.c: [no log message] 2002-06-21 nmav <nmav@gnutls.org> * lib/pkix.asn, lib/pkix_asn1_tab.c: [no log message] 2002-06-21 nmav <nmav@gnutls.org> * lib/gnutls_x509.c: corrected countryName 2002-06-21 nmav <nmav@gnutls.org> * src/common.c: [no log message] 2002-06-21 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c, lib/gnutls_x509.c, lib/gnutls_x509.h: [no log message] 2002-06-21 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_constate.c, lib/gnutls_int.h: Exported gnutls_cipher_get_key_size(). Better name printing for MAC algorithms. 2002-06-20 nmav <nmav@gnutls.org> * src/cli.c, src/common.c, src/serv.c, src/tests.c, src/tls_test.c: [no log message] 2002-06-20 nmav <nmav@gnutls.org> * NEWS: [no log message] 2002-06-20 nmav <nmav@gnutls.org> * libextra/Makefile.am, configure.in, doc/tex/funcs.tex: New install directory for headers is /gnutls 2002-06-20 nmav <nmav@gnutls.org> * lib/gnutls_x509.c, lib/gnutls_x509.h: [no log message] 2002-06-20 nmav <nmav@gnutls.org> * configure.in, doc/tex/handshake.tex, doc/tex/memory.tex, doc/tex/translayer.tex, lib/gnutls.h.in.in, lib/gnutls_global.c: [no log message] 2002-06-19 admcd <admcd@gnutls.org> * libextra/gnutls_openssl.c: Implemented some more functions. Basic TLS/SSL operations tested with: slrn, wget, lynx 2002-06-19 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_cert.c, lib/gnutls_db.c, lib/gnutls_global.c, lib/gnutls_int_compat.c, lib/gnutls_ui.h, libextra/gnutls_srp.c, src/serv.c: _func abreviation is no longer used. Functions renamed to _function. 2002-06-19 nmav <nmav@gnutls.org> * src/serv.c: removed ioctl stuff. 2002-06-19 nmav <nmav@gnutls.org> * src/serv-gaa.c, src/serv-gaa.h, src/serv.c, src/serv.gaa, src/tls_test.c: added 'nodb' and 'quiet' options to server. 2002-06-19 nmav <nmav@gnutls.org> * lib/gnutls_pk.c, src/cli.c: [no log message] 2002-06-19 nmav <nmav@gnutls.org> * lib/gnutls_pk.c: Corrected bug in PKCS-1 RSA encryption. 2002-06-19 nmav <nmav@gnutls.org> * src/common.c: [no log message] 2002-06-19 nmav <nmav@gnutls.org> * AUTHORS: [no log message] 2002-06-18 nmav <nmav@gnutls.org> * src/Makefile.am, src/common.c, src/list.h, src/serv.c: The server used was changed to a non blocking one. The server was created by Paul Sheer. 2002-06-17 nmav <nmav@gnutls.org> * libextra/gnutls_openpgp.c: cleanups 2002-06-17 nmav <nmav@gnutls.org> * libextra/gnutls_openpgp.c: fixed stubs 2002-06-17 twoaday <twoaday@gnutls.org> * libextra/gnutls_openpgp.c: Minor changes and a XML stub if OpenCDK is not used. 2002-06-16 nmav <nmav@gnutls.org> * lib/gnutls_int_compat.c, lib/gnutls_x509.c: [no log message] 2002-06-16 nmav <nmav@gnutls.org> * libextra/gnutls_openssl.c: [no log message] 2002-06-16 nmav <nmav@gnutls.org> * lib/gnutls_cert.c: [no log message] 2002-06-16 nmav <nmav@gnutls.org> * doc/tex/Makefile.am, doc/tex/gnutls.tex, doc/tex/howto.tex: Added chapter on how to use TLS in application protocols. 2002-06-16 nmav <nmav@gnutls.org> * libextra/gnutls_openssl.c: [no log message] 2002-06-16 nmav <nmav@gnutls.org> * libextra/Makefile.am: Added Andrew's openssl compatible interface. 2002-06-16 nmav <nmav@gnutls.org> * lib/gnutls_ui.h: [no log message] 2002-06-16 twoaday <twoaday@gnutls.org> * libextra/gnutls_openpgp.c: Changed the xml function name to fit into the GnuTLS API. New memory handling for gnutls_datum. 2002-06-16 nmav <nmav@gnutls.org> * src/serv.c: [no log message] 2002-06-15 nmav <nmav@gnutls.org> * doc/tex/alert.tex, doc/tex/ciphers.tex, doc/tex/errors.tex, doc/tex/examples.tex, doc/tex/handshake.tex, doc/tex/layers.tex, doc/tex/macros.tex, doc/tex/memory.tex, doc/tex/record.tex, doc/tex/translayer.tex: [no log message] 2002-06-15 nmav <nmav@gnutls.org> * configure.in: [no log message] 2002-06-15 nmav <nmav@gnutls.org> * configure.in, doc/TODO, src/Makefile.am: Corrected libgdbm issues 2002-06-15 nmav <nmav@gnutls.org> * doc/tex/Makefile.am: [no log message] 2002-06-15 nmav <nmav@gnutls.org> * configure.in: [no log message] 2002-06-15 nmav <nmav@gnutls.org> * configure.in: [no log message] 2002-06-15 nmav <nmav@gnutls.org> * NEWS, configure.in, doc/TODO, doc/tex/handshake.tex, lib/defines.h, lib/gnutls.h.in.in, lib/gnutls_db.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_int_compat.c, lib/gnutls_state.c, src/Makefile.am, src/common.c, src/serv.c: Removed the gdbm backend for resuming TLS sessions. Program gnutls-serv was modified to include support for resuming sessions with the callback api. 2002-06-14 nmav <nmav@gnutls.org> * doc/tex/Makefile.am, doc/tex/alert.tex, doc/tex/auth.tex, doc/tex/errors.tex, doc/tex/examples.tex, doc/tex/funcs.tex, doc/tex/gnutls.tex, doc/tex/handshake.tex, doc/tex/layers.tex, doc/tex/openpgp.tex, doc/tex/record.tex, doc/tex/x509.tex: Added index. 2002-06-14 nmav <nmav@gnutls.org> * doc/tex/Makefile.am, doc/tex/auth.tex, doc/tex/macros.tex, doc/tex/openpgp.tex, doc/tex/x509.tex: [no log message] 2002-06-14 nmav <nmav@gnutls.org> * configure.in, lib/gnutls_ui.h: [no log message] 2002-06-14 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/gnutls_ui.h: Added XML extraction from an X.509 certificate. Only some basic functionality is now available. 2002-06-14 twoaday <twoaday@gnutls.org> * libextra/gnutls_openpgp.c: Corrected the key length calcuation for the key data fields. 2002-06-13 nmav <nmav@gnutls.org> * lib/pkix.asn, lib/pkix_asn1_tab.c: [no log message] 2002-06-12 twoaday <twoaday@gnutls.org> * libextra/gnutls_openpgp.c: Some minor improvements for the XML code. 2002-06-12 twoaday <twoaday@gnutls.org> * libextra/gnutls_openpgp.c: Implemented verbosity level for XML output. 2002-06-11 nmav <nmav@gnutls.org> * libextra/Makefile.am, src/Makefile.am, tests/Makefile.am: [no log message] 2002-06-11 nmav <nmav@gnutls.org> * configure.in, doc/README.CVS: [no log message] 2002-06-11 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/auth_cert.c, lib/auth_rsa.c, lib/gnutls_asn1_tab.c, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_errors.c, lib/gnutls_global.c, lib/gnutls_global.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_sig.c, lib/gnutls_x509.c, lib/gnutls_x509.h, lib/pkix_asn1_tab.c: renamed libasn1 to libtasn1 2002-06-11 nmav <nmav@gnutls.org> * configure.in: [no log message] 2002-06-11 nmav <nmav@gnutls.org> * doc/README.CVS: renamed libasn1 to libtasn1 2002-06-10 twoaday <twoaday@gnutls.org> * libextra/gnutls_openpgp.c: A small fix for the XML code. 2002-06-10 twoaday <twoaday@gnutls.org> * libextra/gnutls_openpgp.c: Basic XML output for OpenPGP certificates. 2002-06-10 nmav <nmav@gnutls.org> * doc/tex/Makefile.am, doc/tex/layers.eps, doc/tex/layers.tex, doc/tex/openpgp.tex, doc/tex/pgp-fig1.eps: [no log message] 2002-06-10 nmav <nmav@gnutls.org> * doc/tex/Makefile.am, doc/tex/auth.tex, doc/tex/gnutls.tex, doc/tex/openpgp.tex, doc/tex/pgp-fig1.eps: Added Timo's openpgp guide 2002-06-10 nmav <nmav@gnutls.org> * configure.in: [no log message] 2002-06-10 nmav <nmav@gnutls.org> * Makefile.am, buildconf, configure.in, lib/Makefile.am: Added configure option to use the included libasn1. 2002-06-10 nmav <nmav@gnutls.org> * Makefile.am, NEWS, configure.in, libextra/Makefile.am, tests/Makefile.am: [no log message] 2002-06-10 nmav <nmav@gnutls.org> * doc/README.CVS: [no log message] 2002-06-10 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/auth_cert.c, lib/auth_rsa.c, lib/gnutls_asn1_tab.c, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_errors.c, lib/gnutls_global.c, lib/gnutls_global.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h, lib/gnutls_pk.c, lib/gnutls_sig.c, lib/gnutls_x509.c, lib/gnutls_x509.h, lib/pkix_asn1_tab.c: Adapted codebase to the new libasn1 0.1.0. 2002-06-10 nmav <nmav@gnutls.org> * src/Makefile.am: removed asn1c.c program. Moved to libasn1. 2002-06-09 nmav <nmav@gnutls.org> * lib/gnutls_ui.h: [no log message] 2002-06-09 nmav <nmav@gnutls.org> * tests/x509_test.c: [no log message] 2002-06-09 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_datum.c, lib/gnutls_datum.h, lib/gnutls_global.c, lib/gnutls_mem.c, lib/gnutls_mem.h, lib/x509_b64.c: Added gnutls_b64_encode_fmt2() and gnutls_b64_decode_fmt2(). These functions return allocated data. Cleaned up the gnutls_datum code and some of memory stuff. 2002-06-09 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/gnutls_alert.c, lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_global.c, lib/gnutls_mem.c, lib/gnutls_mem.h: Added check for C99 macro support. Stubs are used if they are not supported by the compile. A more elegant solution is required. 2002-06-09 nmav <nmav@gnutls.org> * lib/gnutls_global.c, lib/gnutls_mem.c, lib/gnutls_mem.h: only use the libc's strdup, if using the libc's malloc function. 2002-06-08 nmav <nmav@gnutls.org> * src/cli.c: [no log message] 2002-06-08 nmav <nmav@gnutls.org> * lib/gnutls_mem.c, lib/gnutls_mem.h: Removed gnutls_strdup(). Replaced with a pointer to libc's strdup() function. 2002-06-08 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c, lib/gnutls_record.c, lib/gnutls_state.c: [no log message] 2002-06-08 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c: No longer realloc() the record buffers. It had some meaning when gnutls_realloc_fast() was there, but now they one cause a slowdown. 2002-06-08 nmav <nmav@gnutls.org> * NEWS, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, lib/gnutls_int.h, lib/gnutls_state.c, src/cli.c, src/serv.c: Created gnutls_handshake_set_private_extensions() function. 2002-06-08 nmav <nmav@gnutls.org> * lib/gnutls_state.c: [no log message] 2002-06-07 nmav <nmav@gnutls.org> * configure.in, lib/defines.h, lib/gnutls_algorithms.c, lib/gnutls_int.h, lib/gnutls_state.c: Corrected issues with ptrdiff_t. Added option to enable private (experimental) cipher suites. They are now disabled by default so they do not create interoperability problems. 2002-06-07 nmav <nmav@gnutls.org> * configure.in: added check for ptrdiff_t type. 2002-06-05 nmav <nmav@gnutls.org> * src/cli.c, src/serv.c: [no log message] 2002-06-03 nmav <nmav@gnutls.org> * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, src/serv-gaa.c, src/serv-gaa.h, src/serv.gaa: [no log message] 2002-06-03 nmav <nmav@gnutls.org> * doc/tex/Makefile.am, lib/Makefile.am: asn1.ps is no longer generated in the gnutls package. It is included in the libasn1 package. 2002-06-03 twoaday <twoaday@gnutls.org> * libextra/gnutls_openpgp.c: Corrected some data types and more documentation. 2002-06-03 nmav <nmav@gnutls.org> * tests/x509_test.c: [no log message] 2002-06-02 twoaday <twoaday@gnutls.org> * libextra/gnutls_openpgp.c: More fixes for the keyid and some changes for the _mem functions. 2002-06-02 twoaday <twoaday@gnutls.org> * libextra/gnutls_openpgp.c: Applied the patches. Changed the keyid from u32[2] to byte[8]. 2002-06-02 nmav <nmav@gnutls.org> * NEWS: [no log message] 2002-06-02 nmav <nmav@gnutls.org> * Makefile.am, NEWS, configure.in, doc/TODO, lib/gnutls_anon_cred.c, lib/gnutls_x509.c, lib/gnutls_x509.h, libextra/gnutls_srp.c: Removed stubs for srp and anonymous authentication. Added test suite directory. 2002-06-02 nmav <nmav@gnutls.org> * tests/Makefile.am, tests/test1.pem, tests/test10.pem, tests/test2.pem, tests/test25.pem, tests/test3.pem, tests/x509_test.c: added test suite 2002-06-02 twoaday <twoaday@gnutls.org> * libextra/gnutls_openpgp.c: Some modifications for the newest OpenCDK snapshot. 2002-05-28 nmav <nmav@gnutls.org> * lib/gnutls_handshake.c: [no log message] 2002-05-28 nmav <nmav@gnutls.org> * lib/gnutls_handshake.c, lib/gnutls_record.c: [no log message] 2002-05-28 nmav <nmav@gnutls.org> * libextra/gnutls_openpgp.c: Minor fixes. Added documentation for gnutls_certificate_set_openpgp_trustdb() function. 2002-05-27 nmav <nmav@gnutls.org> * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, src/common.c, src/serv-gaa.c, src/serv.c, src/serv.gaa, src/tls_test-gaa.c, src/tls_test.gaa: [no log message] 2002-05-27 nmav <nmav@gnutls.org> * lib/gnutls_errors.c, lib/gnutls_errors_int.h, libextra/gnutls_openpgp.c: Added error code for unsupported trustdb. 2002-05-27 twoaday <twoaday@gnutls.org> * libextra/gnutls_openpgp.c: Check the trustdb format before the handshake begins. 2002-05-27 nmav <nmav@gnutls.org> * NEWS: [no log message] 2002-05-27 twoaday <twoaday@gnutls.org> * libextra/gnutls_openpgp.c: Added a check for the trustdb so we can figure out if the format is useable for OpenCDK. 2002-05-27 nmav <nmav@gnutls.org> * src/cli.c, src/common.c, src/serv.c: [no log message] 2002-05-26 nmav <nmav@gnutls.org> * src/Makefile.am, src/cli-gaa.c, src/cli.gaa, src/crypt.c, src/serv-gaa.c, src/serv.gaa: some parts were moved to libasn1. 2002-05-26 nmav <nmav@gnutls.org> * lib/gnutls_mem.h: [no log message] 2002-05-24 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2002-05-24 nmav <nmav@gnutls.org> * doc/tex/Makefile.am, doc/tex/errors.tex, doc/tex/gnutls.tex, doc/tex/memory.tex: added memory handling section 2002-05-23 nmav <nmav@gnutls.org> * lib/gnutls_auth.c, lib/gnutls_buffers.c, lib/gnutls_mem.h, lib/gnutls_priority.c: reintroduced realloc_fast() which prevents some malloc(0) situations. 2002-05-23 nmav <nmav@gnutls.org> * Makefile.am: [no log message] 2002-05-23 nmav <nmav@gnutls.org> * doc/TODO, lib/auth_cert.c, lib/auth_rsa.c, lib/gnutls_int.h, lib/gnutls_num.h, lib/gnutls_record.c, libextra/auth_srp.c, libextra/auth_srp_passwd.c, libextra/gnutls_srp.c, libextra/gnutls_srp.h: Several clean ups and bug fixes. 2002-05-22 nmav <nmav@gnutls.org> * NEWS, THANKS, configure.in, lib/auth_cert.c, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, lib/gnutls_auth.c, lib/gnutls_buffers.c, lib/gnutls_constate.c, lib/gnutls_datum.c, lib/gnutls_dh_primes.c, lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_mem.c, lib/gnutls_mem.h, lib/gnutls_pk.c, lib/gnutls_x509.c, lib/x509_b64.c, libextra/auth_srp.c, libextra/auth_srp_passwd.c, libextra/gnutls_openpgp.c, libextra/gnutls_srp.c, src/common.c: Applied Jeff Johnson's patch which fixes type problems in 64 bit machines. Removed the default allocation handlers, and made the libc's functions to be defaults. Added function which sets the memory allocation functions to be used. 2002-05-22 nmav <nmav@gnutls.org> * libextra/gnutls_extra.h: [no log message] 2002-05-22 nmav <nmav@gnutls.org> * configure.in, lib/gnutls.h.in.in, libextra/gnutls_openpgp.c: [no log message] 2002-05-22 nmav <nmav@gnutls.org> * libextra/gnutls_openpgp.c: corrected function declaration 2002-05-21 nmav <nmav@gnutls.org> * doc/README.CVS, doc/tex/Makefile.am: Updated documentation for the gnutls-extra library 2002-05-21 nmav <nmav@gnutls.org> * lib/auth_anon.c, lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, lib/gnutls_cipher.c, lib/gnutls_constate.c, lib/gnutls_datum.c, lib/gnutls_datum.h, lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_num.c, lib/gnutls_num.h, lib/gnutls_record.c, lib/gnutls_session_pack.c, lib/gnutls_v2_compat.c, lib/gnutls_x509.c, libextra/auth_srp.c: Prefixed internal functions with _gnutls_ 2002-05-21 nmav <nmav@gnutls.org> * NEWS, configure.in: [no log message] 2002-05-21 nmav <nmav@gnutls.org> * configure.in: [no log message] 2002-05-20 twoaday <twoaday@gnutls.org> * libextra/gnutls_openpgp.c: Modifications for the new OpenCDK version and some minor fixes. 2002-05-20 nmav <nmav@gnutls.org> * configure.in, doc/README.autoconf, lib/Makefile.am, libextra/Makefile.am, libextra/libgnutls-extra-config.in, libextra/libgnutls-extra.m4, src/crypt.c, src/tests.c: [no log message] 2002-05-20 nmav <nmav@gnutls.org> * README, doc/tex/Makefile.am, lib/Makefile.am, libextra/Makefile.am, src/Makefile.am, src/cli.c, src/common.c, src/serv.c, src/tls_test.c: [no log message] 2002-05-20 nmav <nmav@gnutls.org> * NEWS: [no log message] 2002-05-20 nmav <nmav@gnutls.org> * README: [no log message] 2002-05-20 nmav <nmav@gnutls.org> * Makefile.am, configure.in, libextra/auth_srp.c, libextra/auth_srp_passwd.c, libextra/auth_srp_sb64.c, libextra/ext_srp.c, libextra/gnutls_extra.c, libextra/gnutls_openpgp.c, libextra/gnutls_srp.c: [no log message] 2002-05-20 nmav <nmav@gnutls.org> * lib/Makefile.am, libextra/Makefile.am, libextra/auth_srp.c, libextra/auth_srp.h, libextra/auth_srp_passwd.c, libextra/auth_srp_passwd.h, libextra/auth_srp_sb64.c, libextra/ext_srp.c, libextra/ext_srp.h, libextra/gnutls_extra.c, libextra/gnutls_extra.h, libextra/gnutls_openpgp.c, libextra/gnutls_srp.c, libextra/gnutls_srp.h: Moved the gnutls-extra files to libextra directory. 2002-05-20 nmav <nmav@gnutls.org> * doc/tex/Makefile.am, doc/tex/funcs.tex, lib/Makefile.am: removed html version of the documentation 2002-05-20 nmav <nmav@gnutls.org> * src/cli.c, src/serv.c: [no log message] 2002-05-20 nmav <nmav@gnutls.org> * NEWS, README, configure.in, doc/tex/Makefile.am, doc/tex/funcs.tex, doc/tex/macros.tex, lib/Makefile.am, lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_cert.c, lib/gnutls_extensions.c, lib/gnutls_extensions.h, lib/gnutls_ui.h, lib/libgnutls-config.in, src/Makefile.am, src/cli.c, src/common.c, src/serv.c, src/tests.c, src/tls_test.c: Separated the library to gnutls and gnutls-extra. gnutls-extra library contains the GPL parts of gnutls 2002-05-18 nmav <nmav@gnutls.org> * README, configure.in, src/prime.c, src/tests.c: [no log message] 2002-05-17 nmav <nmav@gnutls.org> * README, configure.in, lib/auth_anon.c, lib/auth_dhe.c, lib/auth_rsa.c, lib/libgnutls-config.in, src/prime.c: Added --modules option to libgnutls-config. This option prints the extra modules that have been enabled into the library. 2002-05-16 nmav <nmav@gnutls.org> * lib/gnutls_global.c: [no log message] 2002-05-14 nmav <nmav@gnutls.org> * configure.in: configure script now prints the library license 2002-05-14 nmav <nmav@gnutls.org> * NEWS: [no log message] 2002-05-14 nmav <nmav@gnutls.org> * lib/gnutls_dh_primes.c: Replaced group1 prime with a prime of 1024 bits 2002-05-14 nmav <nmav@gnutls.org> * COPYING.LIB, NEWS, README, lib/auth_anon.c, lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, lib/debug.c, lib/ext_cert_type.c, lib/ext_max_record.c, lib/gnutls.h.in.in, lib/gnutls_alert.c, lib/gnutls_algorithms.c, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_buffers.c, lib/gnutls_cert.c, lib/gnutls_cipher.c, lib/gnutls_cipher_int.c, lib/gnutls_compress.c, lib/gnutls_compress_int.c, lib/gnutls_constate.c, lib/gnutls_datum.c, lib/gnutls_db.c, lib/gnutls_dh_primes.c, lib/gnutls_errors.c, lib/gnutls_extensions.c, lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_mem.c, lib/gnutls_mpi.c, lib/gnutls_num.c, lib/gnutls_pk.c, lib/gnutls_priority.c, lib/gnutls_random.c, lib/gnutls_record.c, lib/gnutls_session.c, lib/gnutls_session_pack.c, lib/gnutls_sig.c, lib/gnutls_state.c, lib/gnutls_str.c, lib/gnutls_ui.c, lib/gnutls_v2_compat.c, lib/gnutls_x509.c, lib/x509_b64.c: License changed to LGPL 2002-05-14 nmav <nmav@gnutls.org> * lib/gnutls_dh.c: [no log message] 2002-05-13 nmav <nmav@gnutls.org> * lib/gnutls_dh.c: Some cleanups in the Diffie Hellman code. 2002-05-13 nmav <nmav@gnutls.org> * lib/gnutls_int.h: Added the missing user_ptr pointer in gnutls_internals. 2002-05-13 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2002-05-11 nmav <nmav@gnutls.org> * NEWS, lib/gnutls.h.in.in, lib/gnutls_state.c: Added gnutls_state_set_ptr() and gnutls_state_get_ptr() functions, to assist in callback functions. 2002-05-11 nmav <nmav@gnutls.org> * lib/gnutls_ui.h: Corrected prototypes for callback selector functions, which now accept the state. 2002-05-11 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2002-05-10 nmav <nmav@gnutls.org> * lib/auth_anon.c, lib/gnutls_anon_cred.c, lib/gnutls_cert.c, lib/gnutls_dh.c, lib/gnutls_dh_primes.c, lib/gnutls_kx.c, lib/gnutls_pk.c, lib/gnutls_sig.c: [no log message] 2002-05-08 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/gnutls_int.h, lib/gnutls_mpi.c, lib/gnutls_mpi.h: renamed gnutls_gcry* to gnutls_mpi* 2002-05-08 nmav <nmav@gnutls.org> * configure.in, lib/gnutls_global.c: Updated libgcrypt initialization stuff. Now depends on libgcrypt 1.1.7, and only initializes libgcrypt if this has not been done before. 2002-05-01 nmav <nmav@gnutls.org> * lib/auth_anon.c, lib/auth_dhe.c, lib/auth_rsa.c, lib/debug.c, lib/gnutls_auth.c, lib/gnutls_dh.c, lib/gnutls_dh_primes.c, lib/gnutls_pk.c, lib/gnutls_x509.c: Cleaned up the big number support. 2002-05-01 nmav <nmav@gnutls.org> * lib/gnutls_alert.h: [no log message] 2002-04-29 nmav <nmav@gnutls.org> * src/common.c: [no log message] 2002-04-29 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in: [no log message] 2002-04-21 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c, lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_compress.c, lib/gnutls_compress.h, lib/gnutls_compress_int.c, lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_state.h: Optimized memory handling in the record protocol. 2002-04-21 nmav <nmav@gnutls.org> * lib/gnutls_anon_cred.c, lib/gnutls_ui.c, src/cli.c, src/serv.c: Added stubs when SRP or anonymous authentication are disabled, to preserve binary compatibility 2002-04-19 nmav <nmav@gnutls.org> * NEWS, doc/TODO, lib/gnutls.h.in.in, lib/gnutls_state.c, src/cli.c, src/serv.c: gnutls_session_resumed() was renamed to gnutls_session_is_resumed(), and changed semantics, to make the return value be the obvious one. 2002-04-18 nmav <nmav@gnutls.org> * doc/tex/Makefile.am, doc/tex/examples.tex: updated documentation for the new resumption check function 2002-04-18 nmav <nmav@gnutls.org> * doc/TODO, lib/gnutls.h.in.in, lib/gnutls_int.h, lib/gnutls_state.c, src/cli.c, src/serv.c: Added function to report if a session is a resumed one. See gnutls_session_resumed(). 2002-04-18 nmav <nmav@gnutls.org> * configure.in, lib/ext_cert_type.c, lib/ext_cert_type.h, lib/ext_max_record.c, lib/ext_max_record.h, lib/gnutls_extensions.c, src/gnutls-http-serv, src/serv.c: Some minor fixes in SRP support. Changed extension generation. Now less allocation with malloc are done. 2002-04-16 nmav <nmav@gnutls.org> * lib/gnutls_dh.c: [no log message] 2002-04-16 nmav <nmav@gnutls.org> * doc/protocol/draft-ietf-tls-56-bit-ciphersuites-01.txt: [no log message] 2002-04-14 nmav <nmav@gnutls.org> * lib/gnutls_x509.c: Fixed description of gnutls_x509_extract_certificate_subject_alt_name(). 2002-04-13 nmav <nmav@gnutls.org> * doc/tex/auth.tex, doc/tex/ciphersuites.tex, doc/tex/errors.tex, doc/tex/examples.tex, doc/tex/gnutls.tex, doc/tex/handshake.tex, src/crypt.c: Documentation fixes 2002-04-12 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2002-04-12 nmav <nmav@gnutls.org> * configure.in, src/Makefile.am: [no log message] 2002-04-12 nmav <nmav@gnutls.org> * configure.in: fixed opencdk detection problem 2002-04-12 nmav <nmav@gnutls.org> * lib/gnutls_x509.c, lib/gnutls_x509.h: better doc (internal) for _gnutls_int2str() 2002-04-10 nmav <nmav@gnutls.org> * NEWS: [no log message] 2002-04-10 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_state.c: [no log message] 2002-04-10 nmav <nmav@gnutls.org> * NEWS, lib/auth_rsa.c, lib/gnutls_int.h, lib/gnutls_state.c: Added function which disables the version check in the RSA premaster secret -only needed in server side 2002-04-09 nmav <nmav@gnutls.org> * NEWS: [no log message] 2002-04-08 nmav <nmav@gnutls.org> * NEWS, doc/tex/Makefile.am, doc/tex/cover.tex.in, doc/tex/funcs.tex, doc/tex/gnutls.tex, lib/Makefile.am: separated asn1 parser library and tls library documentation 2002-04-08 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_pk.c: changes for 0.4.1 2002-04-06 nmav <nmav@gnutls.org> * lib/gnutls_errors.h: [no log message] 2002-04-06 nmav <nmav@gnutls.org> * configure.in: [no log message] 2002-04-06 nmav <nmav@gnutls.org> * opencdk.m4, Makefile.am: [no log message] 2002-04-05 nmav <nmav@gnutls.org> * Makefile.am: [no log message] 2002-04-05 nmav <nmav@gnutls.org> * acinclude.m4, buildconf, libgcrypt.m4, opencdk.m4: m4 files were removed from acinclude.m4 2002-04-05 nmav <nmav@gnutls.org> * acinclude.m4, configure.in: added detection of opencdk 2002-04-05 nmav <nmav@gnutls.org> * doc/README.autoconf: [no log message] 2002-04-04 nmav <nmav@gnutls.org> * NEWS, configure.in: [no log message] 2002-04-04 nmav <nmav@gnutls.org> * lib/gnutls_x509.c, lib/gnutls_x509.h: Improved X.509 time convertion functions 2002-04-04 nmav <nmav@gnutls.org> * lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_x509.c: GNUTLS_E_UNIX_TIME_LIMIT_REACHED error code was removed 2002-04-04 nmav <nmav@gnutls.org> * doc/tex/ciphers.tex, doc/tex/handshake.tex, doc/tex/translayer.tex: [no log message] 2002-04-04 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_cert.c, lib/gnutls_int.h, lib/gnutls_int_compat.c, lib/gnutls_ui.h, lib/gnutls_x509.c, lib/gnutls_x509.h, src/common.c: GNUTLS_CERT_EXPIRED is no longer returned by verification functions. Added functions to check the expiration and activation date of peer's certificate. See gnutls_certificate_expiration_time_peers(). 2002-04-04 nmav <nmav@gnutls.org> * configure.in, lib/defines.h: Replaced mktime() with mktime_utc(). This corrects a bug with the localtime returned by mktime(). 2002-04-03 nmav <nmav@gnutls.org> * lib/auth_cert.c, lib/defines.h, lib/gnutls_algorithms.c, lib/gnutls_buffers.c, lib/gnutls_handshake.c, lib/gnutls_mem.h, lib/gnutls_x509.c: merged changes from gnutls_0_4_with_alloca. 2002-04-03 nmav <nmav@gnutls.org> * NEWS, configure.in: merged changes from gnutls_0_4_with_alloca. 2002-04-03 nmav <nmav@gnutls.org> * lib/gnutls_cert.h: [no log message] 2002-04-03 nmav <nmav@gnutls.org> * doc/TODO, lib/gnutls_cert.h, lib/gnutls_pk.c: Optimized RSA signature calculation 2002-04-02 nmav <nmav@gnutls.org> * lib/auth_rsa.c, lib/gnutls_int.h: [no log message] 2002-04-01 nmav <nmav@gnutls.org> * lib/auth_rsa.c: [no log message] 2002-04-01 nmav <nmav@gnutls.org> * NEWS, configure.in, doc/TODO: [no log message] 2002-03-31 nmav <nmav@gnutls.org> * lib/gnutls_pk.c: [no log message] 2002-03-31 nmav <nmav@gnutls.org> * lib/gnutls_cipher.c: [no log message] 2002-03-31 nmav <nmav@gnutls.org> * lib/auth_cert.c, lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_global.c, lib/gnutls_pk.c, lib/gnutls_x509.c: Error codes of ASN.1 parser are now independent, with a map to gnutls' error codes. 2002-03-31 nmav <nmav@gnutls.org> * lib/gnutls_cipher.c: cleanups 2002-03-30 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_x509.c, src/cli.c, src/serv.c: Removed the CRL list parameter from gnutls_certificate_set_x509_trust_*. 2002-03-30 nmav <nmav@gnutls.org> * lib/gnutls_x509.c: gnutls_certificate_set_x509_trust_*() now accept single DER certificates or PEM certificate lists. 2002-03-29 nmav <nmav@gnutls.org> * lib/auth_cert.c: [no log message] 2002-03-29 nmav <nmav@gnutls.org> * lib/auth_cert.c, lib/gnutls_x509.c: Added ability to read DSA DER formatted keys, and corrected bugs in DER certificate reading. 2002-03-29 nmav <nmav@gnutls.org> * lib/gnutls_db.c: [no log message] 2002-03-29 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c, lib/gnutls_cipher.c, lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, lib/gnutls_compress.c, lib/gnutls_compress_int.c, lib/gnutls_compress_int.h, lib/gnutls_constate.c, lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_sig.c, lib/gnutls_state.c, lib/gnutls_ui.c: Prefixed with underscore several internal functions. 2002-03-29 nmav <nmav@gnutls.org> * src/cli.c: [no log message] 2002-03-29 nmav <nmav@gnutls.org> * lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_global.c, lib/gnutls_x509.c: removed unneeded functions 2002-03-29 nmav <nmav@gnutls.org> * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa: added crlf option 2002-03-29 nmav <nmav@gnutls.org> * doc/TODO, lib/auth_rsa.c, lib/gnutls_int.h, lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_sig.c, src/cli.c, src/serv-gaa.c, src/serv-gaa.h, src/serv.gaa: Some cleanups in the certificate authentication. Parameters are passed together with the length, to avoid abuse. 2002-03-28 nmav <nmav@gnutls.org> * lib/gnutls_pk.c: [no log message] 2002-03-28 nmav <nmav@gnutls.org> * NEWS, doc/TODO: [no log message] 2002-03-28 nmav <nmav@gnutls.org> * lib/gnutls_x509.c, lib/x509_b64.c: Cleaned up the return values of several functions. 2002-03-28 nmav <nmav@gnutls.org> * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, src/serv-gaa.c, src/serv-gaa.h, src/serv.c, src/serv.gaa: added option to read DER encoded certificates 2002-03-28 nmav <nmav@gnutls.org> * lib/auth_rsa.c, lib/gnutls_cert.h, lib/gnutls_pk.c: Optimized RSA decryption. (Very) Much faster now 2002-03-28 nmav <nmav@gnutls.org> * lib/gnutls_x509.c: read PKCS7 certificate chains in the reverse order. 2002-03-28 nmav <nmav@gnutls.org> * lib/gnutls_compress_int.c: [no log message] 2002-03-28 nmav <nmav@gnutls.org> * lib/gnutls_ui.h: [no log message] 2002-03-26 nmav <nmav@gnutls.org> * src/common.c: [no log message] 2002-03-26 nmav <nmav@gnutls.org> * NEWS, src/common.c: [no log message] 2002-03-26 nmav <nmav@gnutls.org> * lib/gnutls_x509.c, src/common.c: changed semantics of gnutls_x509_extract_certificate_pk_algorithm() 2002-03-26 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_buffers.c, lib/gnutls_global.c, lib/gnutls_record.c: Several optimizations 2002-03-26 nmav <nmav@gnutls.org> * lib/gnutls_int.h, lib/gnutls_x509.c, lib/gnutls_pk.h: [no log message] 2002-03-26 nmav <nmav@gnutls.org> * NEWS, doc/TODO, lib/gnutls.h.in.in, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_pk.h, lib/gnutls_ui.h, lib/gnutls_x509.c, src/common.c, src/gnutls-http-serv, src/serv.c: added gnutls_x509_extract_certificate_pk_algorithm() 2002-03-25 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_int.h, lib/gnutls_x509.c, src/cli-gaa.c, src/cli.c, src/cli.gaa, src/serv-gaa.c, src/serv.c, src/serv.gaa: Improved PKCS7 support 2002-03-24 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_x509.c: Added function which reads the DER encoded certificate and key. (now only works for RSA keys) 2002-03-24 nmav <nmav@gnutls.org> * configure.in: [no log message] 2002-03-24 nmav <nmav@gnutls.org> * NEWS, lib/Makefile.am, lib/auth_cert.c, lib/gnutls_global.c, lib/gnutls_hash_int.c, lib/gnutls_random.c, lib/gnutls_ui.h, lib/gnutls_x509.c, lib/pkix.asn, lib/pkix_asn1_tab.c, src/gnutls-http-serv, src/serv.c: Added support for RFC2630 - PKCS7 formated structures 2002-03-23 nmav <nmav@gnutls.org> * lib/auth_cert.c: more cleanups 2002-03-23 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/auth_cert.c: [no log message] 2002-03-23 nmav <nmav@gnutls.org> * lib/auth_cert.c: Cleanups and fixes in X.509 certificate message parsing 2002-03-23 nmav <nmav@gnutls.org> * src/cli-gaa.c, src/common.h, src/serv-gaa.c, src/serv.c, src/tls_test-gaa.c: [no log message] 2002-03-22 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c: Corrected code to avoid compiler's warnings 2002-03-21 nmav <nmav@gnutls.org> * configure.in: [no log message] 2002-03-21 nmav <nmav@gnutls.org> * configure.in, lib/auth_anon.c, lib/gnutls_algorithms.c, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_extensions.c, lib/gnutls_session_pack.c, lib/gnutls_ui.c, src/serv.c: Added hooks not to include SRP and Anonymous authentication 2002-03-21 nmav <nmav@gnutls.org> * lib/gnutls_cert.c, lib/gnutls_x509.c: Corrected behaviour when no certificate is got by the peer. 2002-03-21 nmav <nmav@gnutls.org> * src/Makefile.am, src/gnutls-http-serv: Added script which runs an http server with the appropriate parameters. 2002-03-21 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_record.c, lib/gnutls_state.c: CBC protection support is disabled by default. 2002-03-21 nmav <nmav@gnutls.org> * NEWS: [no log message] 2002-03-20 nmav <nmav@gnutls.org> * lib/gnutls_constate.c: [no log message] 2002-03-20 nmav <nmav@gnutls.org> * lib/gnutls_constate.c: [no log message] 2002-03-20 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c, lib/gnutls_cipher.c, lib/gnutls_compress_int.c, lib/gnutls_compress_int.h, lib/gnutls_constate.c: Optimizations and fixes in compression 2002-03-20 nmav <nmav@gnutls.org> * lib/gnutls_cipher.c, lib/gnutls_x509.c: [no log message] 2002-03-20 nmav <nmav@gnutls.org> * lib/auth_cert.c, lib/gnutls_cipher.c, lib/gnutls_compress.c, lib/gnutls_compress_int.c, lib/gnutls_compress_int.h, lib/gnutls_constate.c, lib/gnutls_int.h, lib/gnutls_state.c: Improved compression support. Corrected several bugs in empty fragment sending and receiving. 2002-03-18 twoaday <twoaday@gnutls.org> * lib/gnutls_errors_int.h: Detection of revoked OpenPGP userID's. 2002-03-18 nmav <nmav@gnutls.org> * src/common.c: [no log message] 2002-03-18 nmav <nmav@gnutls.org> * lib/gnutls_ui.h: added missing prototypes 2002-03-18 nmav <nmav@gnutls.org> * src/cli.c, src/serv.c: removed default parameters arguments 2002-03-17 nmav <nmav@gnutls.org> * THANKS, configure.in, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_mem.c, lib/gnutls_mem.h, src/cli.c: Added hooks for electric fence 2002-03-17 nmav <nmav@gnutls.org> * src/Makefile.am, doc/README.CVS: [no log message] 2002-03-17 nmav <nmav@gnutls.org> * doc/README.CVS: [no log message] 2002-03-12 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in: [no log message] 2002-03-12 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_state.c: made CBC chosen plaintext protection configurable 2002-03-12 nmav <nmav@gnutls.org> * configure.in: [no log message] 2002-03-11 nmav <nmav@gnutls.org> * lib/gnutls_ui.h: [no log message] 2002-03-11 nmav <nmav@gnutls.org> * lib/gnutls_x509.c: [no log message] 2002-03-10 nmav <nmav@gnutls.org> * lib/gnutls_constate.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_handshake.c, lib/gnutls_pk.c, lib/gnutls_record.c, lib/gnutls_sig.c, lib/gnutls_state.c, lib/gnutls_x509.c: some error codes were renamed to more appropriate names 2002-03-09 nmav <nmav@gnutls.org> * NEWS, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, lib/gnutls_cert.c, lib/gnutls_constate.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_record.c, lib/gnutls_state.c, lib/gnutls_state.h, src/common.c: removed GNUTLS_CERT_TRUSTED enumeration 2002-03-08 nmav <nmav@gnutls.org> * lib/gnutls_state.c: [no log message] 2002-03-08 nmav <nmav@gnutls.org> * lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_record.c: Added protection against denial of service attacks, while receiving empty packets. 2002-03-08 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c: [no log message] 2002-03-08 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c: corrected memory leak 2002-03-08 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_record.c, lib/gnutls_state.h: Added protection against the newly discovered CBC attacks against TLS. Experimental code. 2002-03-08 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c: Added references to internet drafts. Added DHE_DSS with ARCFOUR from 56 bit draft. 2002-03-06 nmav <nmav@gnutls.org> * configure.in, doc/README.autoconf, doc/TODO, doc/tex/alert.tex, doc/tex/examples.tex, doc/tex/handshake.tex, doc/tex/record.tex: [no log message] 2002-03-06 nmav <nmav@gnutls.org> * NEWS, lib/Makefile.am, lib/auth_cert.c, lib/gnutls_alert.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_global.c, lib/gnutls_pk.c, lib/gnutls_x509.c: Combined error codes of gnutls and ASN.1 parser. Also several cleanups in the X.509 code. 2002-03-06 nmav <nmav@gnutls.org> * doc/tex/Makefile.am, doc/tex/ciphers.tex, doc/tex/ciphersuites.tex, doc/tex/examples.tex, doc/tex/funcs.tex, doc/tex/gnutls.tex, doc/tex/handshake.tex, doc/tex/record.tex, doc/tex/translayer.tex: [no log message] 2002-03-06 nmav <nmav@gnutls.org> * doc/tex/Makefile.am, doc/tex/alert.tex, doc/tex/gnutls.tex, doc/tex/translayer.tex: Added alert protocol section 2002-03-05 nmav <nmav@gnutls.org> * lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_x509.c: Added the error UNIX_TIME_LIMIT_EXCEEDED, and corrected bugs in X.509 certificate parsing. 2002-03-04 nmav <nmav@gnutls.org> * doc/tex/errors.tex, lib/gnutls.h.in.in: updated 2002-03-04 nmav <nmav@gnutls.org> * doc/tex/Makefile.am, doc/tex/auth.tex, doc/tex/ciphersuites.tex, doc/tex/gnutls.tex, doc/tex/handshake.tex, doc/tex/layers.tex, doc/tex/macros.tex, doc/tex/translayer.tex: updated documentation 2002-03-04 nmav <nmav@gnutls.org> * configure.in, doc/scripts/gdoc, lib/gnutls_cert.c, lib/gnutls_handshake.c: changes for pretty documentation and cleanups. 2002-03-03 nmav <nmav@gnutls.org> * lib/gnutls_state.c: pgp_fingerprint indicator is not cleared. 2002-03-03 nmav <nmav@gnutls.org> * src/tls_test.c: [no log message] 2002-03-03 nmav <nmav@gnutls.org> * src/tls_test.c: last minute changes for 0.3.91 release 2002-03-03 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/auth_anon.c, lib/auth_cert.c, lib/auth_dhe.c, lib/gnutls_auth.c, lib/gnutls_auth_int.h, lib/gnutls_errors.c, src/cli.c: Added checks in authentication type renegotiation procedure. 2002-03-03 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2002-03-03 nmav <nmav@gnutls.org> * lib/auth_cert.c, lib/gnutls_auth.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_state.c, lib/gnutls_state.h: Changed behaviour in rehandshake procedure. Now can use rehandshake with a different authentication method (ie. perform anonymous authentication, and after that perform a certificate authentication, or srp). 2002-03-01 nmav <nmav@gnutls.org> * lib/gnutls_mem.h, lib/gnutls_x509.c: corrected certificate type checking. 2002-03-01 nmav <nmav@gnutls.org> * src/Makefile.am, src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, src/common.h, src/crypt.c, src/serv-gaa.c, src/serv-gaa.h, src/serv.c, src/serv.gaa, src/tls_test-gaa.c, src/tls_test.gaa: Updated cli and server to read certificate and keys from command line parameters. client, client-debug and server are now being installed. 2002-03-01 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_priority.c: Cleanups in gnutls_handshake.c and gnutls_algorithms.c. Now cipher suites get associated with a protocol version. This will allow disabling several ciphersuites which are only defined in TLS 1.0, when using SSL 3.0. 2002-03-01 nmav <nmav@gnutls.org> * lib/gnutls_handshake.c: No extensions are now sent if SSL 3.0 is the only protocol advertized. 2002-02-28 nmav <nmav@gnutls.org> * lib/gnutls_session.c: added a check in the given parameters for null 2002-02-28 nmav <nmav@gnutls.org> * src/tests.c, src/tests.h, src/tls_test.c: added session resumption test 2002-02-28 nmav <nmav@gnutls.org> * src/cli-gaa.c, src/cli.c, src/cli.gaa, src/serv-gaa.c, src/tls_test-gaa.c, src/tls_test-gaa.h, src/tls_test.c, src/tls_test.gaa: updated gaa files, and client options. 2002-02-28 nmav <nmav@gnutls.org> * src/tests.c, lib/gnutls.h.in.in, lib/gnutls_state.c, lib/gnutls_state.h: gnutls_record_set_default_version() was prefixed with underscore, and it is no longer exported. 2002-02-28 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_db.c, lib/gnutls_int.h, lib/gnutls_session_pack.c, lib/gnutls_state.c: Corrected session resuming in certificate authentication. gnutls_deinit, does not remove the session entry any more if it is invalid. Added gnutls_db_remove_session() function, which does this. 2002-02-28 nmav <nmav@gnutls.org> * src/tls_test-gaa.c, src/tls_test-gaa.h, src/tls_test.gaa: added missing files 2002-02-27 nmav <nmav@gnutls.org> * lib/gnutls_mem.c: removed cycle from gnutls_free and gnutls_secure_free. 2002-02-27 nmav <nmav@gnutls.org> * NEWS, src/tests.c, src/tests.h, src/tls_test.c: added check for TLS closure alerts 2002-02-27 nmav <nmav@gnutls.org> * src/tests.c, src/tests.h, src/tls_test.c: added openpgp authentication test, and unknown cipher suites test 2002-02-27 nmav <nmav@gnutls.org> * src/cli.c, src/tests.c, src/tests.h, src/tls_test.c: added check for client hello extensions. 2002-02-27 nmav <nmav@gnutls.org> * src/Makefile.am, src/cli.c, src/tests.c, src/tests.h, src/tls_test.c: Added tls_test. This is program that can be used to test TLS servers' parameters. 2002-02-27 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_errors.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_state.c: Added gnutls_record_set_default_version(). This is a low level function. 2002-02-27 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in: SOCKET_PTR was removed 2002-02-27 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in: corrected record_send() prototype 2002-02-26 nmav <nmav@gnutls.org> * configure.in: updated for fcdump 2002-02-25 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2002-02-25 nmav <nmav@gnutls.org> * lib/gnutls_pk.c: added (an impossible situation) check 2002-02-25 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c: [no log message] 2002-02-24 nmav <nmav@gnutls.org> * src/openpgp/Makefile.am: added missing makefile.am 2002-02-24 nmav <nmav@gnutls.org> * doc/tex/Makefile.am, lib/auth_anon.c, lib/auth_anon.h, lib/auth_cert.h, lib/auth_dhe.c, lib/gnutls.h.in.in, lib/gnutls_anon_cred.c, lib/gnutls_cert.c, lib/gnutls_dh.h, lib/gnutls_dh_primes.c, lib/gnutls_int.h, lib/gnutls_ui.c, src/cli.c, src/serv.c: The Diffie Hellman parameters are now stored in the credentials structures. This will allow precomputation of signatures (for DHE cipher suites). 2002-02-24 nmav <nmav@gnutls.org> * src/cli.c: [no log message] 2002-02-24 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/gnutls_int.h, lib/gnutls_ui.h: [no log message] 2002-02-24 nmav <nmav@gnutls.org> * src/cli.c, src/common.c, src/serv.c: [no log message] 2002-02-24 nmav <nmav@gnutls.org> * doc/tex/auth.tex, doc/tex/ciphers.tex, doc/tex/ciphersuites.tex, doc/tex/errors.tex, doc/tex/gnutls.tex: [no log message] 2002-02-24 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_cert.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_x509.c: removed GNUTLS_CERT_NONE (replaced by GNUTLS_E_NO_CERTIFICATE_FOUND). removed GNUTLS_CERT_VALID (it's valid if it's not invalid) 2002-02-23 nmav <nmav@gnutls.org> * lib/auth_cert.c, lib/debug.c: [no log message] 2002-02-22 nmav <nmav@gnutls.org> * lib/gnutls_x509.c: [no log message] 2002-02-22 nmav <nmav@gnutls.org> * lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, lib/gnutls.h.in.in, lib/gnutls_cert.c, lib/gnutls_x509.c, src/common.c, src/serv.c: Changed certificate verification functions. 2002-02-22 nmav <nmav@gnutls.org> * lib/gnutls_int.h: [no log message] 2002-02-22 nmav <nmav@gnutls.org> * lib/auth_cert.h, lib/gnutls.h.in.in, lib/gnutls_cert.c: added trustdb stuff 2002-02-22 nmav <nmav@gnutls.org> * lib/gnutls_record.c: [no log message] 2002-02-22 nmav <nmav@gnutls.org> * lib/gnutls_errors.c: [no log message] 2002-02-22 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c: moved private cipher suites to 0xFF space. 2002-02-22 nmav <nmav@gnutls.org> * doc/tex/layers.tex, lib/gnutls.h.in.in, lib/gnutls_alert.c, lib/gnutls_alert.h, lib/gnutls_algorithms.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_record.c, src/cli.c, src/serv.c: Several alert protocol changes. 2002-02-21 nmav <nmav@gnutls.org> * lib/gnutls_alert.c: [no log message] 2002-02-21 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in: set_key_server renamed to set_keyserver 2002-02-21 nmav <nmav@gnutls.org> * NEWS, lib/debug.c, lib/debug.h, lib/gnutls.h.in.in, lib/gnutls_alert.c, src/cli.c: Added gnutls_alert_str (allows printing alert number descriptions) 2002-02-21 nmav <nmav@gnutls.org> * lib/auth_cert.c: Updated the openpgp certificate message, fingerprint handling. 2002-02-21 nmav <nmav@gnutls.org> * src/cli-gaa.c, src/cli-gaa.h, src/cli.gaa, src/common.c, src/common.h, src/serv-gaa.c, src/serv-gaa.h, src/serv.gaa: [no log message] 2002-02-19 twoaday <twoaday@gnutls.org> * lib/gnutls_cert.h, lib/gnutls_errors_int.h: Applied the patches to fix the GDOC problem. Some bug fixes all over the place and the implementation of some function stubs. 2002-02-19 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_cert.c, lib/gnutls_int.h, lib/gnutls_x509.c, src/common.c: removed CERT_CORRUPTED 2002-02-19 nmav <nmav@gnutls.org> * lib/auth_cert.c: openpgp fingerprint is calculated dynamically. 2002-02-18 nmav <nmav@gnutls.org> * lib/auth_cert.c, lib/auth_cert.h, lib/gnutls.h.in.in: Added some support the OpenPGP Certificate message, with key fingerprints. 2002-02-18 nmav <nmav@gnutls.org> * lib/auth_cert.c, lib/gnutls.h.in.in, lib/gnutls_int.h, lib/gnutls_state.c, lib/gnutls_state.h, src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, src/common.c: Added some stuff for the client to send the OpenPGP fingerprint. 2002-02-18 nmav <nmav@gnutls.org> * doc/tex/cover.tex.in: [no log message] 2002-02-17 nmav <nmav@gnutls.org> * lib/auth_rsa.c, lib/gnutls_pk.c: Corrected bug in RSA authentication, responsible for random (very very rare, and difficult to reproduce) failures. 2002-02-17 nmav <nmav@gnutls.org> * lib/gnutls_x509.c: [no log message] 2002-02-17 nmav <nmav@gnutls.org> * lib/gnutls_x509.c: Improved X.509 verification functions. They are still too primitive. 2002-02-17 nmav <nmav@gnutls.org> * lib/auth_rsa.c, lib/gnutls_dh.c: [no log message] 2002-02-16 nmav <nmav@gnutls.org> * lib/auth_rsa.c: Some cleanups. 2002-02-16 nmav <nmav@gnutls.org> * doc/tex/auth.tex: [no log message] 2002-02-16 nmav <nmav@gnutls.org> * doc/tex/ciphersuites.tex, doc/tex/layers.tex: [no log message] 2002-02-15 nmav <nmav@gnutls.org> * doc/tex/Makefile.am, doc/tex/errors.tex, doc/tex/layers.tex, lib/gnutls.h.in.in, lib/gnutls_record.c, src/cli.c, src/serv.c: [no log message] 2002-02-15 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_record.c: renamed gnutls_read to gnutls_record_read and gnutls_write to gnutls_record_write. 2002-02-15 nmav <nmav@gnutls.org> * doc/tex/Makefile.am, doc/tex/ciphersuites.tex, doc/tex/cover.tex.in, doc/tex/errors.tex, doc/tex/gnutls.tex, doc/tex/layers.tex: Added TLS Layers section. 2002-02-15 nmav <nmav@gnutls.org> * NEWS: [no log message] 2002-02-15 nmav <nmav@gnutls.org> * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, src/serv-gaa.c, src/serv.gaa: updated client and server 2002-02-15 nmav <nmav@gnutls.org> * NEWS: [no log message] 2002-02-15 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_extensions.c, lib/gnutls_extensions.h, lib/gnutls_record.c: Extension types now use a 16 bit type field (following the current draft). Some fixes in the max record size extension. 2002-02-14 nmav <nmav@gnutls.org> * lib/gnutls_cert.c: Verification function returns the GNUTLS_CERT_VALID flag. 2002-02-14 nmav <nmav@gnutls.org> * lib/gnutls_int.h, lib/gnutls_ui.h: Changed srp callback function parameters. 2002-02-14 nmav <nmav@gnutls.org> * lib/gnutls_dh_primes.c, src/serv.c: Corrected bugs in prime generation. 2002-02-14 nmav <nmav@gnutls.org> * src/Makefile.am, src/cli.c, src/common.c, src/serv-gaa.c, src/serv-gaa.h, src/serv.c, src/serv.gaa: Server updated. Now command line parameters are available. 2002-02-14 nmav <nmav@gnutls.org> * src/cli-gaa.c, src/cli.c, src/cli.gaa: [no log message] 2002-02-14 nmav <nmav@gnutls.org> * configure.in: [no log message] 2002-02-14 nmav <nmav@gnutls.org> * src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa, src/common.c: Updated client 2002-02-14 nmav <nmav@gnutls.org> * NEWS: [no log message] 2002-02-14 nmav <nmav@gnutls.org> * lib/auth_anon.c, lib/gnutls_cipher.c, lib/gnutls_handshake.c, lib/gnutls_kx.c, lib/gnutls_record.c: Direct access to version field in the state was replaced by the function gnutls_protocol_get_version(). 2002-02-14 nmav <nmav@gnutls.org> * lib/auth_rsa.c: Corrected bugs in RSA authentication. Random value is not generated using the GNUTLS_STRONG_RANDOM flag, and fixed client key exchange packet formating, to depend on the correct version. 2002-02-14 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in: [no log message] 2002-02-14 nmav <nmav@gnutls.org> * lib/gnutls_int.h: Added GNUTLS_CERT_INVALID and GNUTLS_CERT_VALID of CertificateStatus flags, which replace GNUTLS_CERT_NOT_TRUSTED. 2002-02-13 nmav <nmav@gnutls.org> * lib/auth_anon.c, lib/auth_anon.h, lib/auth_cert.h, lib/auth_dhe.c, lib/gnutls.h.in.in, lib/gnutls_dh.c, lib/gnutls_dh.h, lib/gnutls_dh_primes.c, lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_errors_int.h, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_state.c, lib/gnutls_state.h, lib/gnutls_ui.c, lib/gnutls_ui.h, src/cli.c, src/common.c, src/serv.c: Added more functions to allow access to Diffie Hellman parameters (partially at least). Corrected Diffie Hellman stuff. 2002-02-13 nmav <nmav@gnutls.org> * doc/tex/auth.tex: [no log message] 2002-02-13 nmav <nmav@gnutls.org> * src/cli.c: [no log message] 2002-02-13 nmav <nmav@gnutls.org> * src/Makefile.am, src/cli-gaa.c, src/cli-gaa.h, src/cli.c, src/cli.gaa: Made most ifdefs in client program, configurable via command line. 2002-02-13 nmav <nmav@gnutls.org> * lib/ext_cert_type.c: It does not send the cert_type extension if only x.509 certificates are used. 2002-02-12 nmav <nmav@gnutls.org> * lib/gnutls_priority.c: Priority cannot be set if not using the OPENCDK library. 2002-02-11 nmav <nmav@gnutls.org> * doc/tex/auth.tex, doc/tex/ciphersuites.tex, doc/tex/cover.tex.in, doc/tex/gnutls.tex: Updated documentation. 2002-02-11 nmav <nmav@gnutls.org> * src/cli.c, src/openpgp/cli_pub.asc, src/openpgp/cli_ring.gpg, src/openpgp/cli_sec.asc: Added new client pgp keys and a keyring 2002-02-10 nmav <nmav@gnutls.org> * src/cli.c: [no log message] 2002-02-10 nmav <nmav@gnutls.org> * src/common.c: [no log message] 2002-02-10 nmav <nmav@gnutls.org> * NEWS: [no log message] 2002-02-10 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in: [no log message] 2002-02-10 nmav <nmav@gnutls.org> * lib/gnutls_cert.c: [no log message] 2002-02-09 nmav <nmav@gnutls.org> * src/cli.c, src/common.c, src/serv.c: [no log message] 2002-02-09 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_algorithms.c: [no log message] 2002-02-09 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_algorithms.c: Added gnutls_certificate_type_get_name() function. 2002-02-09 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_cert.c, lib/gnutls_ui.h: [no log message] 2002-02-09 nmav <nmav@gnutls.org> * src/cli.c, src/serv.c: [no log message] 2002-02-09 nmav <nmav@gnutls.org> * lib/gnutls_cert.c, lib/gnutls_int.h, lib/gnutls_ui.h, lib/gnutls_x509.c: Added ability for an SRP server to use multiple password files. The password file is selected on the fly (handshake) using a callback function. 2002-02-09 twoaday <twoaday@gnutls.org> * lib/auth_cert.h: * auth_cert.h: Added OpenPGP keyring item. * gnutls_openpgp.c: Improved support for keyring handling. 2002-02-09 nmav <nmav@gnutls.org> * lib/gnutls_cipher.c: Some fixes in ciphertext2compressed handling 2002-02-09 nmav <nmav@gnutls.org> * lib/gnutls_alert.c, lib/gnutls_cipher.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h: Removed the GNUTLS_E_MAC_FAILED error. Now only GNUTLS_E_DECRYPTION_FAILED error is used. That we don't leak any information about the result of a possible attack. 2002-02-08 nmav <nmav@gnutls.org> * lib/auth_cert.c, lib/auth_dhe.c, lib/auth_rsa.c, lib/gnutls_cert.c: Added LIBOPENCDK ifdefs (suggested by Andrew McDonald) 2002-02-07 nmav <nmav@gnutls.org> * lib/gnutls_priority.c: [no log message] 2002-02-07 nmav <nmav@gnutls.org> * lib/auth_cert.c, src/cli.c, src/openpgp/cli_pub.asc, src/openpgp/cli_sec.asc: Corrected behaviour of client openpgp certificate selection. 2002-02-07 nmav <nmav@gnutls.org> * lib/gnutls_x509.c: [no log message] 2002-02-07 nmav <nmav@gnutls.org> * lib/gnutls_ui.c, lib/gnutls_ui.h: removed gnutls_certificate_get_ours_index() 2002-02-07 nmav <nmav@gnutls.org> * lib/gnutls_asn1_tab.c: Added asn1 file 2002-02-06 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_ui.h, lib/gnutls_x509.c: Modified gnutls_x509_extract_subject_alt_name() to return the type, instead of storing it to a pointer. 2002-02-06 nmav <nmav@gnutls.org> * lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_ui.h, lib/gnutls_x509.c: Added function which returns the subjectAltName (subject_dns_name was obsoleted). 2002-02-05 nmav <nmav@gnutls.org> * AUTHORS: added Timo 2002-02-05 nmav <nmav@gnutls.org> * lib/gnutls_cert.c, lib/gnutls_num.c, lib/gnutls_num.h, src/common.c: [no log message] 2002-02-05 nmav <nmav@gnutls.org> * lib/gnutls_ui.h: [no log message] 2002-02-04 nmav <nmav@gnutls.org> * lib/gnutls_cert.c, lib/gnutls_ui.h, src/common.c: Changes for gnutls_openpgp_name structure 2002-02-04 twoaday <twoaday@gnutls.org> * lib/gnutls_ui.h: Now OpenPGP uses its own context for DN. 2002-02-03 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_ui.h, lib/gnutls_x509.c, src/common.c: renamed the gnutls_dn structure to gnutls_x509_dn 2002-02-03 nmav <nmav@gnutls.org> * src/Makefile.am, src/common.c, src/common.h: made the print_info stuff much cleaner. 2002-02-03 nmav <nmav@gnutls.org> * lib/gnutls_int.h: [no log message] 2002-02-03 nmav <nmav@gnutls.org> * lib/gnutls_cert.h: keyUsage is now 16 bits 2002-02-03 nmav <nmav@gnutls.org> * src/common.h: [no log message] 2002-02-03 nmav <nmav@gnutls.org> * src/common.h: [no log message] 2002-02-03 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/auth_cert.c, lib/auth_cert.h, lib/auth_dhe.c, lib/auth_rsa.c, lib/gnutls_alert.c, lib/gnutls_algorithms.c, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_x509.c, src/cli.c, src/common.h, src/serv.c: Added OpenPGP certificate support in gnutls. Several changes. 2002-02-03 nmav <nmav@gnutls.org> * lib/gnutls_ui.h: Exported openpgp keys' related functions. 2002-02-03 nmav <nmav@gnutls.org> * lib/gnutls_record.c, lib/gnutls_record.h, lib/gnutls_state.c, lib/gnutls_state.h: Moved functions unrelated to record layer to gnutls_state.c 2002-02-03 nmav <nmav@gnutls.org> * lib/gnutls_int.h: several modifications for cert_type extension etc 2002-02-03 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_priority.c, lib/gnutls_priority.h: Added option to set the cert_type priority. 2002-02-03 nmav <nmav@gnutls.org> * lib/ext_cert_type.c, lib/ext_cert_type.h: Added stuff for parsing the CertType extension type. 2002-02-02 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_ui.c: renamed gnutls_fingerprint() to gnutls_x509_fingerprint(). 2002-02-01 nmav <nmav@gnutls.org> * configure.in, lib/Makefile.am, src/Makefile.am: Added gnutls_openpgp in the makefiles. Added some kind of opencdk library detection. 2002-02-01 twoaday <twoaday@gnutls.org> * src/openpgp/pub.asc, src/openpgp/sec.asc: New files for OpenPGP tests. 2002-02-01 nmav <nmav@gnutls.org> * lib/gnutls_x509.h: added new header file 2002-02-01 nmav <nmav@gnutls.org> * configure.in, lib/Makefile.am, lib/auth_cert.c, lib/auth_cert.h, lib/gnutls.h.in.in, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_int_compat.c, lib/gnutls_session_pack.c, lib/gnutls_ui.h, lib/gnutls_x509.c, src/cli.c, src/common.h, src/serv.c: Several changes in certificate and key handling. * gnutls_certificate_allocate_sc() does not require the ncerts argument 2002-01-31 nmav <nmav@gnutls.org> * Makefile.am, lib/Makefile.am, lib/auth_cert.c, lib/debug.c, lib/gnutls.h.in.in, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_state.h, lib/gnutls_ui.c, lib/gnutls_ui.h, lib/gnutls_x509.c, src/cli.c, src/common.h: Renamed gnutls_x509pki_extract_* to gnutls_x509_extract_*. Separated gnutls_x509_extract_* functions. Now are in gnutls_x509.c. 2002-01-29 twoaday <twoaday@gnutls.org> * lib/gnutls_cert.h: Basic GnuTLS OpenPGP support. 2002-01-29 nmav <nmav@gnutls.org> * configure.in, src/common.h: updated for gnutls_certificate_get_peers() 2002-01-29 nmav <nmav@gnutls.org> * lib/gnutls_ui.c, lib/gnutls_ui.h: Added gnutls_certificate_get_peers() Added gnutls_certificate_get_ours() Added gnutls_certificate_get_ours_index() 2002-01-29 nmav <nmav@gnutls.org> * lib/auth_cert.c, lib/gnutls.h.in.in, lib/gnutls_cert.h, lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_record.h, lib/gnutls_state.c, lib/gnutls_state.h: CertificateType is now accesible from the API. 2002-01-29 nmav <nmav@gnutls.org> * lib/gnutls_handshake.c: corrected bug in certificate selection. 2002-01-29 nmav <nmav@gnutls.org> * lib/gnutls_state.c, lib/gnutls_state.h: Added this gnutls_state.c/h files. Are added in order to access some of the GNUTLS_STATE structures members, indirectly. It's not possible to move all the members of this structure here, yet, but it is desirable. 2002-01-29 nmav <nmav@gnutls.org> * Makefile.am: [no log message] 2002-01-29 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/auth_cert.c, lib/gnutls_cert.c, lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_ui.h: Modified the state's parameters to hold the negotiated certificate type. Modified the certificate selection procedure to take the certificate type in account, when choosing the most appropriate certificate. 2002-01-29 nmav <nmav@gnutls.org> * lib/auth_cert.c, lib/gnutls.h.in.in, lib/gnutls_int.h, src/cli.c, src/common.h, src/serv.c: Added in CertificateStatus: GNUTLS_CERT_CORRUPTED (replaces GNUTLS_CERT_INVALID) GNUTLS_CERT_REVOKED 2002-01-29 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_cert.c: gnutls_x509pki_allocate_sc() renamed to gnutls_certificate_allocate_sc() and similar functions too. They share too common properties with OpenPGP certificates, that it is not needed a separate function. 2002-01-29 nmav <nmav@gnutls.org> * lib/gnutls_ui.c, lib/gnutls_ui.h: Updated function names. 2002-01-29 nmav <nmav@gnutls.org> * lib/auth_cert.c, lib/auth_cert.h: Separated X509 specific stuff in the CERTIFICATE_CREDENTIALS structure. 2002-01-28 nmav <nmav@gnutls.org> * lib/gnutls.asn: Removed fake OID. 2002-01-28 nmav <nmav@gnutls.org> * Makefile.am: better ChangeLog output 2002-01-28 nmav <nmav@gnutls.org> * lib/gnutls_record.c, src/cli.c, src/serv.c: Identified a race condition in the example client. If application data is sent after a rehandshake request, the server thinks we ignored his request, and breaks the connection. This is a bad design of this client. 2002-01-28 nmav <nmav@gnutls.org> * lib/gnutls_datum.c: minor fixes 2002-01-28 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c: changed some buffering code, to use the cleaner gnutls_datum_append(). Leads to a much cleaner code. 2002-01-28 nmav <nmav@gnutls.org> * lib/gnutls_datum.c, lib/gnutls_datum.h: added gnutls_datum_append() 2002-01-28 nmav <nmav@gnutls.org> * lib/gnutls_cert.c, lib/gnutls_cert.h: signature is now a gnutls_datum 2002-01-28 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/auth_anon.c, lib/auth_cert.c, lib/auth_cert.h, lib/auth_dhe.c, lib/auth_rsa.c, lib/debug.c, lib/gnutls.h.in.in, lib/gnutls_algorithms.c, lib/gnutls_auth.c, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_session_pack.c, lib/gnutls_sig.c, lib/gnutls_sig.h, lib/gnutls_ui.c, lib/gnutls_ui.h, src/cli.c, src/common.h, src/serv.c: GNUTLS_X509PKI -> GNUTLS_CRD_X509PKI GNUTLS_SRP -> GNUTLS_CRD_SRP GNUTLS_ANON -> GNUTLS_CRD_ANON 2002-01-28 nmav <nmav@gnutls.org> * doc/TODO, lib/gnutls_int.h, src/cli.c: [no log message] 2002-01-28 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_handshake.c: corrected and optimized handshake. 2002-01-28 nmav <nmav@gnutls.org> * lib/gnutls_int_compat.c: not used by default 2002-01-28 nmav <nmav@gnutls.org> * lib/auth_dhe.c, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_int.h, lib/gnutls_record.c: Added ability of the client to choose a certificate depending on the server's sign algorithm preference. Added CertType in gnutls_cert structure (which identified X509, OPENPGP certificates) 2002-01-28 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_handshake.c: Optimizations in the handshake messages hashing. (no more mallocs) 2002-01-27 nmav <nmav@gnutls.org> * lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_int.h, lib/x509_b64.c, src/cli.c, src/serv.c: cleanups 2002-01-27 nmav <nmav@gnutls.org> * lib/gnutls_pk.c: corrected bug in DSA signing. 2002-01-27 nmav <nmav@gnutls.org> * lib/gnutls_cert.c: corrected bug in file read 2002-01-27 nmav <nmav@gnutls.org> * lib/auth_rsa.c, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_v2_compat.c: Added support to select a certificate based on the peer's cipher suite list. (ie if DSS cipher suites are requested and a DSA certificate is available, then this will be used) 2002-01-27 nmav <nmav@gnutls.org> * src/x509/Makefile.am: [no log message] 2002-01-27 nmav <nmav@gnutls.org> * lib/auth_dhe.c, src/x509/cert-dsa.pem, src/x509/key-dsa.pem: added missing files 2002-01-27 nmav <nmav@gnutls.org> * NEWS, lib/Makefile.am, lib/gnutls_algorithms.c, lib/gnutls_cert.c, lib/gnutls_int.h, lib/gnutls_sig.c, src/cli.c, src/serv.c: added support for DHE_DSS cipher suites. 2002-01-27 nmav <nmav@gnutls.org> * lib/auth_rsa.c, lib/gnutls.asn, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_sig.c, src/cli.c: added support for DSS certificates. 2002-01-26 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/ext_max_record.c, lib/gnutls.asn, lib/gnutls_buffers.c, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_extensions.c, lib/gnutls_global.c, lib/gnutls_global.h, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_sig.c, lib/pkix.asn: Added stuff for DSS certificates (not ready yet) 2002-01-26 nmav <nmav@gnutls.org> * src/x509/Makefile.am, src/x509/ca.pem, src/x509/cert.pem, src/x509/clicert-dsa.pem, src/x509/clicert.pem, src/x509/clikey-dsa.pem, src/x509/clikey.pem, src/x509/key.pem: added new DSA certificates.. 2002-01-26 nmav <nmav@gnutls.org> * acinclude.m4, lib/gnutls.h.in.in, lib/gnutls_buffers.c, lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_record.c: [no log message] 2002-01-26 nmav <nmav@gnutls.org> * lib/gnutls_str.c, lib/gnutls_str.h: added _gnutls_mem_cpy() 2002-01-25 nmav <nmav@gnutls.org> * NEWS, lib/gnutls.h.in.in, lib/gnutls_int_compat.c, lib/gnutls_record.c, lib/gnutls_record.h, src/common.h, src/serv.c: gnutls_*_get_algo() renamed to gnutls_*_get() (suggested by Simon Josefsson) 2002-01-25 nmav <nmav@gnutls.org> * lib/gnutls_extensions.c, lib/gnutls_int.h: [no log message] 2002-01-25 nmav <nmav@gnutls.org> * src/cli.c: [no log message] 2002-01-25 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_extensions.c, lib/gnutls_int.h, lib/gnutls_int_compat.c, src/cli.c: added check for requested TLS extensions 2002-01-25 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_int_compat.c: [no log message] 2002-01-25 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/gnutls.h.in.in, lib/gnutls_buffers.c, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_sig.c, lib/gnutls_sig.h: Handshake messages are not kept in memory any more. Now we use less memory during a handshake. 2002-01-24 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c: [no log message] 2002-01-24 nmav <nmav@gnutls.org> * lib/gnutls_random.c: added an #error 2002-01-24 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_int.h, lib/gnutls_kx.c: GNUTLS_A_NETSCAPE_NO_CLIENT_CERTIFICATE -> GNUTLS_A_SSL3_NO_CERTIFICATE 2002-01-24 nmav <nmav@gnutls.org> * lib/debug.c, lib/gnutls_alert.c, lib/gnutls_buffers.c, lib/gnutls_constate.c, lib/gnutls_errors.h, lib/gnutls_errors_int.h, lib/gnutls_handshake.c, lib/gnutls_kx.c, lib/gnutls_record.c, lib/gnutls_ui.h, lib/gnutls_v2_compat.c: added _gnutls_record_log(), gnutls_handshake_log(), to avoid that #ifdef XXX stuff. Done some cleanups in record layer. 2002-01-23 nmav <nmav@gnutls.org> * lib/gnutls_str.c: [no log message] 2002-01-23 nmav <nmav@gnutls.org> * NEWS, doc/TODO, lib/Makefile.am, lib/gnutls_cert.c, lib/gnutls_str.c, lib/gnutls_str.h: Added a minimal string library to assist in safer ASN.1 parsing 2002-01-23 nmav <nmav@gnutls.org> * src/common.h: in server side now prints srp username 2002-01-23 nmav <nmav@gnutls.org> * lib/debug.c, lib/gnutls_cert.c, lib/gnutls_errors.c, lib/gnutls_global.c, lib/x509_b64.c: Some corrections done ( found by using flawfinder). Added several tags for flawfinder to ignore. 2002-01-23 nmav <nmav@gnutls.org> * doc/TODO: added string library 2002-01-23 nmav <nmav@gnutls.org> * NEWS, doc/scripts/gdoc, lib/gnutls_buffers.c, lib/gnutls_cert.c, lib/gnutls_errors.c, lib/gnutls_errors.h: cleanups 2002-01-23 nmav <nmav@gnutls.org> * lib/gnutls_record.c: more cleanups in the recv_int() function 2002-01-23 nmav <nmav@gnutls.org> * lib/auth_rsa.c: corrected behaviour against PKCS-1 attacks. (it seems that debugging code has made it to release) 2002-01-22 nmav <nmav@gnutls.org> * lib/gnutls_record.c: Made recv_int() cleaner (needs a lot of improvement) 2002-01-20 nmav <nmav@gnutls.org> * doc/tex/errors.tex, lib/gnutls_handshake.c, lib/gnutls_record.c, src/cli.c, src/serv.c: Now a server in a case of rehandshake can continue normaly if the handshake request is ignored by the client. 2002-01-20 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in: corrected gnutls_alert_send() prototype. 2002-01-20 nmav <nmav@gnutls.org> * NEWS: [no log message] 2002-01-19 nmav <nmav@gnutls.org> * lib/gnutls_int.h: [no log message] 2002-01-19 nmav <nmav@gnutls.org> * lib/auth_anon.c, lib/auth_anon.h, lib/gnutls_algorithms.c, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_auth_int.h, lib/gnutls_int.h: updated auth info structures handling. Corrected bug in DHE_RSA. 2002-01-19 nmav <nmav@gnutls.org> * lib/gnutls_handshake.c: corrected bug introduced in the buffering code update 2002-01-19 nmav <nmav@gnutls.org> * lib/gnutls_dh.c: [no log message] 2002-01-19 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/auth_anon.c, lib/gnutls.h.in.in, lib/gnutls_anon_cred.c, lib/gnutls_dh.c, lib/gnutls_dh.h, lib/gnutls_int.h, lib/gnutls_int_compat.c, lib/gnutls_record.c, lib/gnutls_ui.c, lib/gnutls_ui.h, src/common.h, src/serv.c: Combined gnutls_x509pki_(set/get)_dh_bits() and gnutls_anon_server/client_get to gnutls_dh_(set/get)_bits(). gnutls_anon_set_server_cred() was deprecated by gnutls_dh_set_bits(). 2002-01-19 nmav <nmav@gnutls.org> * lib/gnutls_cert.c: gnutls_x509pki_set_trust_(file/mem) can now be called multiple times 2002-01-18 nmav <nmav@gnutls.org> * doc/protocol/draft-freier-ssl-version3-02.txt, doc/protocol/ssl-version2.txt: [no log message] 2002-01-18 nmav <nmav@gnutls.org> * doc/protocol/rfc2440.txt: added openpgp rfc 2002-01-18 nmav <nmav@gnutls.org> * configure.in, lib/Makefile.am, lib/debug.c, lib/gnutls.h.in.in, lib/gnutls_alert.c, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_auth.c, lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_db.c, lib/gnutls_db.h, lib/gnutls_dh.h, lib/gnutls_dh_primes.c, lib/gnutls_errors.c, lib/gnutls_global.c, lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_ui.c, lib/gnutls_ui.h, src/cli.c, src/common.h, src/serv.c: several cleanups in order to move to gnutls 0.4.0 2002-01-18 nmav <nmav@gnutls.org> * lib/gnutls_int_compat.c: added file to hold functions for backwards binary compatibility. 2002-01-18 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_ui.h, lib/x509_b64.c: cleanups 2002-01-17 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_algorithms.c, lib/gnutls_cert.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_ui.c, lib/gnutls_ui.h, src/common.h, src/serv.c: Renamed gnutls_x509pki_s/get_dh_bits() to gnutls_dh_s/get_dhe_bits(). Renamed gnutls_anon_server/client_get_dh_bits() to gnutls_dh_get_dha_bits(). 2002-01-17 nmav <nmav@gnutls.org> * NEWS: [no log message] 2002-01-17 nmav <nmav@gnutls.org> * NEWS, doc/tex/auth.tex, lib/gnutls_algorithms.c, lib/gnutls_int.h: Key exchange methods changed so they do not depend on the Certificate type (GNUTLS_KX_X509PKI_* renamed to GNUTLS_KX_*). 2002-01-17 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_algorithms.c, lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cipher_int.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_sig.c: changes in buffering code (actually variables' names are more rational now). 2002-01-17 nmav <nmav@gnutls.org> * doc/tex/auth.tex, doc/tex/ciphers.tex, doc/tex/gnutls.tex, doc/tex/macros.tex, doc/tex/translayer.tex: [no log message] 2002-01-17 nmav <nmav@gnutls.org> * configure.in: corrected library interface numbers 2002-01-17 nmav <nmav@gnutls.org> * NEWS, THANKS, doc/tex/Makefile.am, doc/tex/ciphersuites.tex, doc/tex/cover.tex.in, doc/tex/gnutls-logo.ps, doc/tex/gnutls.tex: updated documentation 2002-01-17 nmav <nmav@gnutls.org> * lib/gnutls_handshake.c, lib/gnutls_random.c, src/crypt.c: fixed bugs reported (with patches) by Marc Huber and Guillaume Morin. 2002-01-14 nmav <nmav@gnutls.org> * NEWS, THANKS, lib/gnutls.h.in.in, lib/gnutls_cert.c, lib/x509_b64.c, lib/x509_b64.h: Added gnutls_x509pki_set_trust_mem() and gnutls_x509pki_set_key_mem() 2002-01-12 nmav <nmav@gnutls.org> * lib/gnutls_int.h: [no log message] 2002-01-12 nmav <nmav@gnutls.org> * lib/gnutls_alert.h, lib/gnutls_int.h, lib/gnutls_record.c: better length checking in the record layer. 2002-01-09 nmav <nmav@gnutls.org> * doc/tex/gnutls.tex: [no log message] 2002-01-09 nmav <nmav@gnutls.org> * NEWS, doc/tex/gnutls.tex: added gnutls_x509pki_verify_certificate() 2002-01-07 nmav <nmav@gnutls.org> * lib/gnutls_ui.c: renamed DigestAlgorithm to GNUTLS_DigestAlgorithm (in order to be consistent with gnutls.h) 2002-01-05 nmav <nmav@gnutls.org> * lib/libgnutls.m4: corrected the temp file name 2002-01-05 nmav <nmav@gnutls.org> * NEWS, doc/tex/cover.tex.in, doc/tex/errors.tex, lib/Makefile.am, lib/gnutls_errors.c: last minute changes for 0.3.2 release 2002-01-05 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_ui.h, lib/x509_b64.c: renamed gnutls_b64_encode() to gnutls_b64_encode_fmt() 2002-01-05 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_ui.h, lib/x509_b64.c: Added gnutls_b64_encode() and gnutls_b64_decode() 2002-01-04 nmav <nmav@gnutls.org> * doc/tex/auth.tex, doc/tex/translayer.tex: updated documentation 2002-01-04 nmav <nmav@gnutls.org> * NEWS, src/common.h: updated documentation 2002-01-04 nmav <nmav@gnutls.org> * configure.in, lib/auth_rsa.c, lib/gnutls_auth.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_priority.c, lib/gnutls_record.c, lib/gnutls_record.h: Cleanups 2002-01-04 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/gnutls_alert.c, lib/gnutls_alert.h: separated alert protocol functions 2002-01-03 nmav <nmav@gnutls.org> * NEWS, lib/auth_rsa.c, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_priority.c, lib/gnutls_record.c: corrected behaviour in version advertizing 2002-01-03 nmav <nmav@gnutls.org> * lib/libgnutls.m4: now removes the temp file 2002-01-03 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in: check_version() updated 2002-01-02 nmav <nmav@gnutls.org> * lib/auth_rsa.c, lib/gnutls_int.h: [no log message] 2002-01-02 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_auth.c, lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_int.h, lib/gnutls_sig.c, lib/gnutls_ui.c: cleanups 2002-01-02 nmav <nmav@gnutls.org> * NEWS, lib/gnutls.h.in.in, lib/gnutls_algorithms.h, lib/gnutls_ui.c, lib/gnutls_ui.h, src/cli.c, src/common.h, src/serv.c: Added gnutls_x509pki_extract_certificate_serial() and some cleanups. 2002-01-02 nmav <nmav@gnutls.org> * lib/gnutls_ui.c: more error checking 2002-01-02 nmav <nmav@gnutls.org> * lib/gnutls_ui.c: [no log message] 2002-01-02 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in: prefixed all variable with GNUTLS_ 2002-01-02 nmav <nmav@gnutls.org> * lib/gnutls_global.c: added support for calling global_init() several times. 2002-01-02 nmav <nmav@gnutls.org> * lib/gnutls_global.c: added static variable to check if global_init() is called for a second time. 2002-01-02 nmav <nmav@gnutls.org> * NEWS, README, lib/gnutls.h.in.in, lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_int.h, lib/gnutls_sig.c, lib/gnutls_ui.c, src/cli.c: Cleanups in the digest code (separated from HMAC). Added gnutls_fingerprint_calc(), which calculates a fingerprint. 2001-12-30 nmav <nmav@gnutls.org> * Makefile.am: added PGPKEYS 2001-12-30 nmav <nmav@gnutls.org> * doc/README.CVS: updated 2001-12-30 nmav <nmav@gnutls.org> * NEWS: corrected bug which did not allow a client to accept multiple CA distinguished names. 2001-12-30 nmav <nmav@gnutls.org> * src/README.srpcrypt: updated 2001-12-24 nmav <nmav@gnutls.org> * doc/TODO, lib/gnutls_buffers.c: [no log message] 2001-12-23 nmav <nmav@gnutls.org> * lib/gnutls_cert.c: some corrections in documentation 2001-12-21 nmav <nmav@gnutls.org> * NEWS: releasing 0.3.0 2001-12-20 nmav <nmav@gnutls.org> * doc/scripts/gdoc: corrected in order not to complain if func(void) is used. 2001-12-19 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/gnutls.h.in.in: cleanups 2001-12-19 nmav <nmav@gnutls.org> * doc/TODO, lib/auth_anon.h, lib/gnutls.h.in.in, lib/gnutls_anon_cred.c, lib/gnutls_cert.c, lib/gnutls_global.c, lib/gnutls_global.h, lib/gnutls_handshake.c, lib/gnutls_sig.c, lib/gnutls_ui.h, src/cli.c, src/serv.c: some cleanups. *_CREDENTIALS renamed to GNUTLS_*_CREDENTIALS. Added defines to keep source compatibility. 2001-12-19 nmav <nmav@gnutls.org> * lib/auth_anon.c: corrected bugs in AUTH_INFO allocation 2001-12-18 nmav <nmav@gnutls.org> * lib/gnutls.h.in.in, lib/gnutls_algorithms.c, lib/gnutls_int.h: cleanups 2001-12-18 nmav <nmav@gnutls.org> * NEWS, THANKS, configure.in, lib/Makefile.am, lib/gnutls.h.in.in, lib/gnutls_buffers.c, lib/gnutls_int.h: corrections in the configuration files. 2001-12-17 nmav <nmav@gnutls.org> * configure.in: some corrections in assembler detection. Also chmod -w gnutls.h was removed. 2001-12-17 nmav <nmav@gnutls.org> * lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_record.c: Corrections for big endian machines. Pointed out by Mike Siers <mikes@poliac.com> 2001-12-17 nmav <nmav@gnutls.org> * NEWS, doc/tex/ciphersuites.tex, lib/gnutls_buffers.c, lib/gnutls_cert.c, lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_record.c, lib/gnutls_session.c, src/cli.c, src/serv.c: cleanups and documentation updates 2001-12-17 nmav <nmav@gnutls.org> * lib/gnutls_int.h: [no log message] 2001-12-17 nmav <nmav@gnutls.org> * lib/auth_anon.c, lib/gnutls_record.c, lib/gnutls_session_pack.c, src/cli.c: corrections in SRP and ANON authentication. Also corrections in the session packing for anonymous auth info. 2001-12-17 nmav <nmav@gnutls.org> * lib/gnutls_kx.c, lib/gnutls_record.c, lib/gnutls_record.h, src/cli.c, src/serv.c: *_alert -> alert_* 2001-12-17 nmav <nmav@gnutls.org> * lib/auth_anon.c, lib/gnutls_auth.c, lib/gnutls_auth_int.h, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_session_pack.c, lib/gnutls_ui.c, lib/gnutls_ui.h, src/cli.c, src/serv.c: gnutls_set_max_record_size -> gnutls_record_set_max_size gnutls_get_max_record_size -> gnutls_record_get_max_size gnutls_set_cred -> gnutls_cred_set gnutls_get_auth_type -> gnutls_auth_get_type 2001-12-16 nmav <nmav@gnutls.org> * doc/tex/auth.tex, doc/tex/ciphers.tex, doc/tex/ciphersuites.tex, doc/tex/errors.tex, doc/tex/gnutls.tex, doc/tex/macros.tex, doc/tex/translayer.tex, lib/gnutls_handshake.c: documentation updated 2001-12-16 nmav <nmav@gnutls.org> * lib/gnutls_db.c, lib/gnutls_record.c: changed function names 2001-12-16 nmav <nmav@gnutls.org> * doc/tex/gnutls.tex, doc/tex/macros.tex, doc/tex/translayer.tex: fixes in documentation 2001-12-16 nmav <nmav@gnutls.org> * doc/Makefile.am: removed ASN1.readme.txt 2001-12-16 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2001-12-15 nmav <nmav@gnutls.org> * src/serv.c: [no log message] 2001-12-14 nmav <nmav@gnutls.org> * NEWS, buildconf, doc/README.autoconf, doc/tex/gnutls.tex, lib/gnutls_cert.c, lib/gnutls_int.h, src/cli.c, src/serv.c: renamed gnutls_x509pki_set_trust/key to gnutls_x509pki_set_trust_file/key_file 2001-12-14 nmav <nmav@gnutls.org> * lib/gnutls_errors.c, lib/gnutls_extensions.c, lib/gnutls_int.h: some corrections in the DECR_LEN stuff added recently. 2001-12-14 nmav <nmav@gnutls.org> * configure.in, doc/README.autoconf, doc/tex/Makefile.am, doc/tex/errors.tex, doc/tex/gnutls.tex: updated documentation 2001-12-13 nmav <nmav@gnutls.org> * lib/auth_anon.c, lib/gnutls_extensions.c, lib/gnutls_handshake.c: More carefull parsing of incoming packets. 2001-12-13 nmav <nmav@gnutls.org> * configure.in, doc/tex/translayer.tex: [no log message] 2001-12-11 nmav <nmav@gnutls.org> * NEWS, THANKS, lib/gnutls_int.h, lib/gnutls_pk.c: [no log message] 2001-12-11 nmav <nmav@gnutls.org> * lib/gnutls_handshake.c: several cleanups 2001-12-10 nmav <nmav@gnutls.org> * COPYING: [no log message] 2001-12-10 nmav <nmav@gnutls.org> * configure.in: [no log message] 2001-12-10 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_int.h: last commits for 0.2.91 2001-12-10 nmav <nmav@gnutls.org> * doc/TODO, lib/auth_anon.c, lib/auth_rsa.c, lib/gnutls_constate.c, lib/gnutls_datum.c, lib/gnutls_datum.h, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_mem.c, lib/gnutls_mem.h, lib/gnutls_record.c: optimizations and fixes in the TLS PRF calculation (and the SSL3 equivalent) 2001-12-10 nmav <nmav@gnutls.org> * src/cli.c: [no log message] 2001-12-10 nmav <nmav@gnutls.org> * doc/tex/auth.tex: [no log message] 2001-12-09 nmav <nmav@gnutls.org> * doc/tex/ciphers.tex: updated documentation 2001-12-09 nmav <nmav@gnutls.org> * lib/gnutls_anon_cred.c: fixed gnutls_anon_free_client_sc() 2001-12-09 nmav <nmav@gnutls.org> * NEWS, doc/tex/auth.tex, lib/auth_anon.h, lib/gnutls_anon_cred.c, lib/gnutls_auth.c, lib/gnutls_handshake.c, lib/gnutls_int.h, src/cli.c: Fixes in anonymous authentication. Fixes in client ciphersuite selection. 2001-12-09 nmav <nmav@gnutls.org> * lib/debug.c, lib/gnutls_cert.c: GET_CN() now works. (affects debug mode only) 2001-12-09 nmav <nmav@gnutls.org> * src/Makefile.am, src/README.srpcrypt: crypt -> srpcrypt 2001-12-09 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_cert.c, lib/gnutls_errors_int.h, lib/gnutls_handshake.c, lib/gnutls_int.h: Optimizations in server certificate callback. 2001-12-08 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_db.c, lib/gnutls_int.h, lib/gnutls_record.c: added gnutls_transport_get_ptr() and gnutls_db_get_ptr() functions. 2001-12-08 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/gnutls_extensions.c, lib/gnutls_handshake.c, src/cli.c, src/serv.c: remove dnsname (name_ind) extension 2001-12-08 nmav <nmav@gnutls.org> * lib/auth_anon.c, lib/gnutls_buffers.c, lib/gnutls_cert.c, lib/gnutls_dh_primes.c, lib/gnutls_int.h, lib/gnutls_pk.c: Cleanups. Now use GCRYMPI_FMT_STD instead of USG. 2001-12-08 nmav <nmav@gnutls.org> * lib/gnutls_record.c: [no log message] 2001-12-07 nmav <nmav@gnutls.org> * NEWS: [no log message] 2001-12-07 nmav <nmav@gnutls.org> * doc/tex/auth.tex, doc/tex/ciphers.tex: added missing files 2001-12-07 nmav <nmav@gnutls.org> * NEWS, doc/tex/Makefile.am, doc/tex/ciphersuites.tex, doc/tex/gnutls.tex, doc/tex/translayer.tex: updated documentation 2001-12-07 nmav <nmav@gnutls.org> * lib/gnutls_int.h, lib/gnutls_ui.h: callbacks now get a GNUTLS_STATE argument. 2001-12-07 nmav <nmav@gnutls.org> * doc/tex/ciphersuites.tex, lib/gnutls_algorithms.c, lib/gnutls_cert.c, lib/gnutls_int.h, src/cli.c, src/serv.c: GNUTLS_KX_RSA renamed to GNUTLS_KX_X509PKI_RSA (and the other X509 key exchange methods). This will allow GNUTLS_KX_PGP_RSA etc. 2001-12-06 nmav <nmav@gnutls.org> * configure.in, lib/defines.h, lib/gnutls_algorithms.c, lib/gnutls_int.h, lib/gnutls_priority.c, lib/gnutls_record.c, src/cli.c, src/serv.c: GNUTLS_LIST is now int* 2001-12-06 nmav <nmav@gnutls.org> * lib/debug.c, lib/gnutls_algorithms.c, lib/gnutls_cipher.c, lib/gnutls_cipher_int.c, lib/gnutls_compress_int.c, lib/gnutls_constate.c, lib/gnutls_errors_int.h, lib/gnutls_hash_int.c, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_record.c, lib/gnutls_v2_compat.c, src/cli.c, src/serv.c: cleanups again 2001-12-06 nmav <nmav@gnutls.org> * NEWS, lib/auth_rsa.c, lib/gnutls_algorithms.c, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_errors_int.h, lib/gnutls_global.c, lib/gnutls_int.h, lib/gnutls_priority.c, lib/gnutls_priority.h, lib/gnutls_record.c, lib/gnutls_record.h, src/cli.c, src/serv.c: Several cleanups. 2001-12-05 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/gnutls_db.c, lib/gnutls_db.h, lib/gnutls_session.c, lib/gnutls_session.h, src/cli.c, src/serv.c: Changes in function names concerning _db_ handling and _session_ handling. 2001-12-05 nmav <nmav@gnutls.org> * NEWS, doc/TODO, lib/gnutls_anon_cred.c, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_ui.h, src/cli.c, src/serv.c: Added callback to select the server certificate. 2001-12-05 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_record.c, lib/gnutls_ui.c, lib/gnutls_ui.h, src/cli.c, src/common.h, src/serv.c: optimized certificate handling API 2001-12-05 nmav <nmav@gnutls.org> * lib/gnutls_cert.h, lib/gnutls_ui.h, src/serv.c: several cleanups. Removed old unneeded functions. certificate verification was moved out of the handshake procedure. 2001-12-04 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c, lib/gnutls_global.c, lib/gnutls_int.h, lib/gnutls_record.c: some cleanups 2001-12-04 nmav <nmav@gnutls.org> * configure.in, lib/gnutls_auth.c, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_record.c, lib/gnutls_session_pack.c, lib/gnutls_ui.c, lib/gnutls_ui.h, src/Makefile.am, src/cli.c, src/common.h, src/serv.c: now the peer's certificate list is stored into auth info structure (instead of the certificate). several other cleanups. 2001-12-04 nmav <nmav@gnutls.org> * lib/debug.c, lib/debug.h, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_ui.c, lib/gnutls_ui.h, src/cli.c, src/serv.c: moving gnutls_DN structures out of gnutls_cert and auth_info structures. Now they are generated upon request. 2001-12-01 nmav <nmav@gnutls.org> * configure.in, lib/defines.h: fixes in autoconf scripts 2001-12-01 nmav <nmav@gnutls.org> * AUTHORS, Makefile.am, NEWS, configure.in, lib/defines.h, lib/gnutls_random.c: updated detection of library settings 2001-11-30 nmav <nmav@gnutls.org> * AUTHORS, lib/gnutls_cert.c, lib/gnutls_int.h, src/cli.c: The RDN sequence needed in the certificate request message is now generated and cached into a x509pki_credentials structure. This would save a lot of time in the server side. 2001-11-29 nmav <nmav@gnutls.org> * src/cli.c: [no log message] 2001-11-29 nmav <nmav@gnutls.org> * NEWS, lib/Makefile.am, lib/auth_anon.c, lib/auth_rsa.c, lib/gnutls_algorithms.c, lib/gnutls_auth.c, lib/gnutls_db.c, lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_session.c, lib/gnutls_session_pack.c, lib/gnutls_session_pack.h, lib/gnutls_ui.c, lib/gnutls_ui.h, src/cli.c: introduced gnutls_x509pki_get_certificate(). This function returns the peer's certificate DER encoded. This certificate is also stored in the resume db. 2001-11-28 nmav <nmav@gnutls.org> * lib/gnutls_db.h: [no log message] 2001-11-26 nmav <nmav@gnutls.org> * THANKS, configure.in, doc/README.autoconf, doc/TODO, lib/gnutls_db.c, lib/libgnutls.m4: cleanups and some corrections. 2001-11-25 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_db.c, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_kx.h, lib/gnutls_record.c, lib/gnutls_record.h, src/cli.c, src/serv.c: gnutls_handshake(), gnutls_read() etc. functions no longer require the 'SOCKET cd' argument. This argument is set using the function gnutls_set_transport_ptr(). 2001-11-24 nmav <nmav@gnutls.org> * doc/README.autoconf: [no log message] 2001-11-23 nmav <nmav@gnutls.org> * doc/README.autoconf: gnutls.m4 -> libgnutls.m4 2001-11-23 nmav <nmav@gnutls.org> * doc/tex/Makefile.am: added new pictures 2001-11-23 nmav <nmav@gnutls.org> * doc/tex/ciphersuites.tex: updated 2001-11-23 nmav <nmav@gnutls.org> * doc/Makefile.am: [no log message] 2001-11-20 nmav <nmav@gnutls.org> * doc/scripts/gdoc: [no log message] 2001-11-20 nmav <nmav@gnutls.org> * doc/scripts/gdoc: produces better tex output 2001-11-20 nmav <nmav@gnutls.org> * doc/scripts/gdoc, lib/gnutls_ui.c: updated documentation (and generation of tex) 2001-11-20 nmav <nmav@gnutls.org> * AUTHORS: updated 2001-11-20 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c: fixed gnutls_kx_get_name() 2001-11-20 nmav <nmav@gnutls.org> * lib/gnutls_handshake.c, lib/gnutls_ui.h: cleanups 2001-11-17 nmav <nmav@gnutls.org> * doc/scripts/gdoc, lib/gnutls_record.c: Gdoc updated. Now handles powers and '->' symbol automatically for tex. 2001-11-16 nmav <nmav@gnutls.org> * NEWS, doc/TODO: [no log message] 2001-11-16 nmav <nmav@gnutls.org> * doc/scripts/gdoc, doc/tex/Makefile.am, doc/tex/gnutls.tex, lib/Makefile.am: Documentation for ASN.1 has been moved to inline comments and to the tex documentation. 2001-11-15 nmav <nmav@gnutls.org> * lib/gnutls_errors.c, lib/gnutls_errors_int.h: removed E_TIMEOUT 2001-11-15 nmav <nmav@gnutls.org> * configure.in, lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_record.c, src/serv.c: corrected some obscure bugs in the handshake and record send buffering code. 2001-11-13 nmav <nmav@gnutls.org> * lib/gnutls_int.h: removed debugging stuff 2001-11-13 nmav <nmav@gnutls.org> * NEWS: [no log message] 2001-11-13 nmav <nmav@gnutls.org> * NEWS: [no log message] 2001-11-13 nmav <nmav@gnutls.org> * NEWS: [no log message] 2001-11-13 nmav <nmav@gnutls.org> * THANKS, NEWS: [no log message] 2001-11-13 nmav <nmav@gnutls.org> * lib/gnutls_handshake.c: more fixes 2001-11-13 nmav <nmav@gnutls.org> * lib/auth_rsa.c, lib/gnutls_algorithms.c, lib/gnutls_buffers.c, lib/gnutls_cipher.c, lib/gnutls_constate.c, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_priority.c, lib/gnutls_record.c, lib/io_debug.h, src/serv.c: more non blocking IO fixes 2001-11-12 nmav <nmav@gnutls.org> * src/cli.c: now resolves hostnames. 2001-11-12 nmav <nmav@gnutls.org> * lib/defines.h, lib/gnutls_priority.c: va_copy macro renamed to VA_COPY 2001-11-12 nmav <nmav@gnutls.org> * configure.in: now requires autoconf 2.50 2001-11-10 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/ext_max_record.c, lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_compress_int.c, lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_mem.c, lib/gnutls_mem.h, lib/gnutls_record.c, lib/io_debug.h, src/cli.c, src/serv.c: several fixes. Including: - max_record_header extension. - resume handshake sending wrong ssl version - Non blocking IO (not ready yet) 2001-11-08 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c, lib/gnutls_int.h: [no log message] 2001-11-08 nmav <nmav@gnutls.org> * NEWS, doc/tex/Makefile.am, doc/tex/translayer.tex, lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_record.c, src/cli.c: cleanups and documentation updates 2001-11-07 nmav <nmav@gnutls.org> * lib/auth_anon.c, lib/gnutls_buffers.c, lib/gnutls_cert.c, lib/gnutls_dh.c, lib/gnutls_dh_primes.c, lib/gnutls_pk.c, lib/gnutls_record.c, lib/gnutls_session.c, lib/gnutls_sig.c: corrected memory leaks and other bugs 2001-11-06 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c: added warning 2001-11-06 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/Makefile.am, lib/ext_max_record.c, lib/ext_max_record.h, lib/gnutls_constate.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_record.c, src/cli.c: added max_record_size extension 2001-11-06 nmav <nmav@gnutls.org> * lib/gnutls_session.c: corrected bug which made get_current_session, not to return the right size of the session. 2001-11-05 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_int.h, lib/gnutls_mem.c, lib/gnutls_record.c: receive buffer is now dynamic. 2001-11-05 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_handshake.c, lib/gnutls_record.c, src/cli.c: changed semantics of the GNUTLS_E_REHANDSHAKE error code. 2001-11-05 nmav <nmav@gnutls.org> * configure.in, lib/defines.h, lib/gnutls_priority.c: added support for va_copy 2001-11-05 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2001-11-05 nmav <nmav@gnutls.org> * NEWS, doc/tex/translayer.tex, lib/gnutls_db.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_record.c, src/serv.c: cleanups 2001-11-05 nmav <nmav@gnutls.org> * lib/gnutls_priority.h: list -> gnutls_list 2001-11-04 nmav <nmav@gnutls.org> * lib/gnutls_anon_cred.c, lib/gnutls_int.h, lib/gnutls_priority.c: changed LIST to GNUTLS_LIST 2001-11-04 nmav <nmav@gnutls.org> * lib/gnutls_db.c: added new function to check for expired sessions. 2001-11-04 nmav <nmav@gnutls.org> * lib/gnutls_record.c: cleanups 2001-11-02 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_handshake.c, lib/gnutls_record.c, lib/gnutls_sig.c: cleanups in function names 2001-11-02 nmav <nmav@gnutls.org> * lib/gnutls_db.c: cleanups in the resuming code 2001-11-02 nmav <nmav@gnutls.org> * NEWS, THANKS, configure.in, lib/gnutls_db.c, lib/gnutls_db.h, lib/gnutls_int.h, lib/gnutls_record.c: added hooks in order to use external database to store session to be resumed. Works but it is not finished. 2001-11-02 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c, lib/gnutls_global.c, lib/gnutls_int.h: set_push() & set_pull() functions moved to state (instead of being global) 2001-11-02 nmav <nmav@gnutls.org> * doc/Makefile.am, doc/README.CVS: moved README.CVS to doc/ 2001-11-01 nmav <nmav@gnutls.org> * lib/gnutls_auth.c, lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_mem.c, lib/gnutls_record.c, lib/gnutls_record.h, lib/io_debug.h, src/cli.c, src/serv.c: Adopted some of the patches of Jon Nelson. Fixes the non blocking behaviour. 2001-10-31 nmav <nmav@gnutls.org> * lib/gnutls_int.h: [no log message] 2001-10-30 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c, lib/gnutls_record.c: corrected and fixed several things in send_int() etc. 2001-10-30 nmav <nmav@gnutls.org> * doc/tex/translayer.tex: Added missing file. 2001-10-30 nmav <nmav@gnutls.org> * configure.in: [no log message] 2001-10-30 nmav <nmav@gnutls.org> * doc/Makefile.am, doc/TODO, doc/scripts/Makefile.am: added scripts into distribution 2001-10-30 nmav <nmav@gnutls.org> * lib/gnutls_handshake.c: [no log message] 2001-10-30 nmav <nmav@gnutls.org> * lib/gnutls_db.c, lib/gnutls_session.c: corrected bugs in session resuming. 2001-10-27 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/gnutls_db.c, lib/gnutls_int.h, lib/gnutls_mem.c, lib/gnutls_session.c: [no log message] 2001-10-23 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c, lib/gnutls_int.h, lib/io_debug.h: cleanups 2001-10-23 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/io_debug.h: added IO debugging code 2001-10-23 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_buffers.c, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_kx.h, lib/gnutls_record.c: added some checks for memory allocation. Fixes in write interrupts. 2001-10-23 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c: corrected bugs which could break non blocking IO 2001-10-22 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c, lib/gnutls_record.c: corrections for the gnutls_read_buffered() function. 2001-10-22 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_int.h, lib/gnutls_record.c, src/serv.c: updated/fixed the handling of interrupted writes 2001-10-21 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_int.h, lib/gnutls_record.c: changed gnutls_write() semantics in order to cope with interrupted system calls and non blocking IO 2001-10-21 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c: [no log message] 2001-10-21 nmav <nmav@gnutls.org> * lib/gnutls_int.h: [no log message] 2001-10-21 nmav <nmav@gnutls.org> * NEWS, doc/tex/Makefile.am, doc/tex/gnutls.tex, lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_record.c: changes in order to be independent of the berkeley style sockets (but it is still difficult to use gnutls with any other api) 2001-10-21 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c: made gnutls_write() unaware of interrupted system calls and eagain errors. 2001-10-21 nmav <nmav@gnutls.org> * THANKS, lib/gnutls_buffers.c, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_record.c, lib/gnutls_ui.c, lib/gnutls_ui.h, src/serv.c: several cleanups 2001-10-20 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c, lib/gnutls_int.h: Corrected short read bug 2001-10-20 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c: corrected _gnutls_write() 2001-10-20 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c: peeked data now stays also in handshake 2001-10-20 nmav <nmav@gnutls.org> * lib/gnutls_kx.c: corrected bug which caused a fatal alert to be sent even if it wasn't required 2001-10-20 nmav <nmav@gnutls.org> * src/cli.c, lib/gnutls_record.c, lib/gnutls_sig.c: [no log message] 2001-10-20 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_buffers.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_handshake.c, lib/gnutls_record.c: introduced GNUTLS_E_INTERRUPTED, fixes in error handling 2001-10-20 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c, lib/gnutls_handshake.c, lib/gnutls_int.h: the gnutls handshake protocol can now hold it's state. Thus it may be used in some kind of non blocking mode. Not tested at all 2001-10-19 nmav <nmav@gnutls.org> * NEWS, doc/TODO, lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_record.c: clean ups in the handshake protocol 2001-10-15 nmav <nmav@gnutls.org> * doc/tex/Makefile.am, doc/tex/gnutls.tex: [no log message] 2001-10-15 nmav <nmav@gnutls.org> * NEWS, configure.in, doc/TODO, lib/auth_rsa.c, lib/gnutls_auth.c, lib/gnutls_auth_int.h, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_ui.c, lib/gnutls_ui.h, src/cli.c, src/serv.c: auth_info types and structures were moved to the internals of the library. This makes the library incompatible (source & binary) with the previous versions. 2001-10-12 nmav <nmav@gnutls.org> * lib/gnutls_cert.c, lib/gnutls_dh_primes.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_ui.h: added option to regenerate primes and generators for EDH 2001-10-11 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2001-10-10 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_int.h, src/cli.c, src/crypt.c, src/serv.c: updated name indication extension (dnsname) 2001-10-10 nmav <nmav@gnutls.org> * src/Makefile.am, src/crypt-gaa.c, src/crypt.gaa: renamed crypt to srpcrypt. 2001-10-10 nmav <nmav@gnutls.org> * NEWS, doc/TODO, lib/auth_anon.c, lib/gnutls_dh.h, lib/gnutls_dh_primes.c, lib/gnutls_global.c, lib/gnutls_int.h, src/crypt.c: better prime handling 2001-10-09 nmav <nmav@gnutls.org> * doc/tex/ciphersuites.tex: [no log message] 2001-10-09 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/gnutls_dh.c, lib/gnutls_dh.h, lib/gnutls_dh_primes.c, lib/gnutls_record.h: Updated the handling of prime numbers. 2001-10-08 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_sig.c, lib/gnutls_sig.h: several cleanups 2001-10-08 nmav <nmav@gnutls.org> * lib/gnutls_sig.c: [no log message] 2001-10-08 nmav <nmav@gnutls.org> * NEWS, THANKS, configure.in, lib/auth_anon.c, lib/gnutls_algorithms.c, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_datum.c, lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_sig.c, lib/gnutls_sig.h, src/cli.c, src/serv.c: added DHE_RSA ciphersuites 2001-10-08 nmav <nmav@gnutls.org> * doc/protocol/rfc2712.txt: updated documents 2001-10-07 nmav <nmav@gnutls.org> * lib/gnutls_errors.c: [no log message] 2001-09-27 nmav <nmav@gnutls.org> * doc/tex/gnutls.tex: [no log message] 2001-09-27 nmav <nmav@gnutls.org> * doc/tex/ciphersuites.tex: [no log message] 2001-09-25 nmav <nmav@gnutls.org> * buildconf, doc/tex/macros.tex: [no log message] 2001-09-25 nmav <nmav@gnutls.org> * doc/tex/Makefile.am, doc/tex/ciphersuites.tex, doc/tex/gnutls.tex: more documentation 2001-09-24 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2001-09-23 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/auth_anon.c, lib/auth_rsa.c, lib/gnutls_cert.c, lib/gnutls_dh.h, lib/gnutls_ui.c, lib/gnutls_ui.h: several cleanups in order to support DHE_RSA 2001-09-21 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2001-09-21 nmav <nmav@gnutls.org> * lib/gnutls_compress_int.h, lib/gnutls_num.c: [no log message] 2001-09-19 nmav <nmav@gnutls.org> * doc/tex/Makefile.am: [no log message] 2001-09-19 nmav <nmav@gnutls.org> * NEWS: [no log message] 2001-09-19 nmav <nmav@gnutls.org> * lib/gnutls_cert.c: updated documentation 2001-09-17 nmav <nmav@gnutls.org> * README, doc/TODO: [no log message] 2001-09-14 nmav <nmav@gnutls.org> * NEWS, lib/Makefile.am, lib/auth_rsa.c, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_errors.c, lib/gnutls_int.h, lib/gnutls_ui.c, lib/gnutls_ui.h, src/cli.c, src/serv.c: Client certificate callback has been improved 2001-09-12 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2001-09-10 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2001-09-07 nmav <nmav@gnutls.org> * doc/README.autoconf, doc/TODO: [no log message] 2001-09-04 nmav <nmav@gnutls.org> * NEWS, configure.in, doc/tex/Makefile.am, lib/Makefile.am: updated documentation generation 2001-09-04 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2001-09-03 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c: updated documentation 2001-08-27 nmav <nmav@gnutls.org> * src/cli.c: [no log message] 2001-08-27 nmav <nmav@gnutls.org> * lib/gnutls_global.c, lib/gnutls_int.h, lib/gnutls_num.h: minor bugfixes 2001-08-26 nmav <nmav@gnutls.org> * configure.in, lib/gnutls_global.c: use of sigaction instead of signal(), to ignore SIGPIPE 2001-08-26 nmav <nmav@gnutls.org> * buildconf: [no log message] 2001-08-26 nmav <nmav@gnutls.org> * NEWS, configure.in, doc/tex/Makefile.am, doc/tex/cover.tex.in, lib/auth_rsa.c, lib/gnutls_cert.c, lib/gnutls_int.h, lib/gnutls_ui.c, lib/gnutls_ui.h, src/serv.c: gnutls_set_certificate_request() renamed to gnutls_x509pki_set_cert_request(). Added gnutls_x509pki_set_cert_callback(). 2001-08-26 nmav <nmav@gnutls.org> * NEWS, doc/TODO, lib/gnutls_anon_cred.c, lib/gnutls_cipher.c, lib/gnutls_record.c, lib/x509_b64.c, src/serv.c: fixed memory leaks 2001-08-25 nmav <nmav@gnutls.org> * configure.in: updated gnutls.h file 2001-08-25 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_record.c, lib/gnutls_ui.c, src/serv.c: some memory optimization while receiving packets 2001-08-25 nmav <nmav@gnutls.org> * lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_record.c: header size is now written in gnutls_cipher.c 2001-08-20 nmav <nmav@gnutls.org> * NEWS: [no log message] 2001-08-20 nmav <nmav@gnutls.org> * lib/auth_rsa.c, lib/gnutls_int.h, lib/gnutls_record.c, src/cli.c, src/serv.c: bugfixes and minor updates 2001-08-20 nmav <nmav@gnutls.org> * lib/gnutls_int.h, lib/gnutls_record.c, src/cli.c, src/serv.c: changed gnutls_bye() behaviour 2001-08-19 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2001-08-19 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c, lib/gnutls_int.h, lib/gnutls_record.c: several fixes in gnutls_bye() function, and in gnutls_recv_int() 2001-08-19 nmav <nmav@gnutls.org> * lib/gnutls_cert.c: corrected bugs in version handling and in certificate initialization 2001-08-19 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_int.h, lib/gnutls_record.c, src/cli.c: better support for buffered read and several cleanups 2001-08-19 nmav <nmav@gnutls.org> * lib/gnutls_cipher.c, lib/gnutls_kx.c, lib/gnutls_record.c: gnutls now sends (again) record packets using one write. 2001-08-18 nmav <nmav@gnutls.org> * lib/auth_anon.c, lib/gnutls_buffers.c, lib/gnutls_dh.c, lib/gnutls_handshake.c, lib/gnutls_mem.c, lib/gnutls_mem.h: several checks for failed allocations and other fixes 2001-08-07 nmav <nmav@gnutls.org> * src/cli.c: [no log message] 2001-08-07 nmav <nmav@gnutls.org> * lib/auth_anon.c, lib/gnutls_dh.c, lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_int.h, src/cli.c: fixes in SRP key exchange and several others. 2001-08-07 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/auth_rsa.c, lib/gnutls_auth_int.h, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_sig.c, lib/gnutls_sig.h, lib/gnutls_ui.h, src/cli.c, src/serv.c: server side client authentication works 2001-08-07 nmav <nmav@gnutls.org> * doc/TODO, lib/auth_anon.c, lib/auth_rsa.c, lib/gnutls_auth.h, lib/gnutls_cert.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_kx.h, src/serv.c: additions in order for gnutls server to support client authentication 2001-08-07 nmav <nmav@gnutls.org> * lib/auth_rsa.c, lib/gnutls_buffers.c, lib/gnutls_cipher.c, lib/gnutls_constate.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_pk.c: ssl3 fixes and several others. 2001-08-07 nmav <nmav@gnutls.org> * lib/gnutls_mem.c: realloc does not realloc memory if less size is requested. 2001-08-06 nmav <nmav@gnutls.org> * lib/auth_rsa.c, lib/gnutls_cert.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_handshake.c, lib/gnutls_int.h: updated in key usage fields 2001-08-06 nmav <nmav@gnutls.org> * lib/gnutls_int.h, lib/gnutls_sig.c, lib/gnutls_sig.h: cleanups in the signature generating functions 2001-08-06 nmav <nmav@gnutls.org> * lib/gnutls_kx.c: [no log message] 2001-08-06 nmav <nmav@gnutls.org> * NEWS, lib/auth_anon.c, lib/auth_anon.h, lib/auth_rsa.c, lib/gnutls_auth.c, lib/gnutls_buffers.c, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_ui.c, lib/gnutls_ui.h, lib/gnutls_v2_compat.c, src/cli.c, src/serv.c: several fixes. Added client authentication with x509PKI 2001-08-06 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/auth_rsa.c, lib/gnutls_buffers.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_sig.c: more x509 client certificate stuff 2001-08-06 nmav <nmav@gnutls.org> * src/x509/clicert.pem, src/x509/clikey.pem: added client certificates 2001-08-06 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/auth_rsa.c, lib/gnutls_cert.h, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_pk.c, lib/gnutls_sig.c, lib/gnutls_sig.h, src/cli.c, src/x509/Makefile.am: several additions for x509 client authentication 2001-08-06 nmav <nmav@gnutls.org> * lib/auth_rsa.c, lib/gnutls_buffers.c, lib/gnutls_cert.c, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_mem.c, lib/gnutls_mem.h, lib/gnutls_record.c: added the concept of optional handshake packets (like CERTIFICATE_REQUEST). several other fixes. 2001-08-05 nmav <nmav@gnutls.org> * lib/auth_anon.c, lib/auth_anon.h, lib/auth_rsa.c, lib/gnutls_algorithms.c, lib/gnutls_auth.h, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_kx.h, lib/gnutls_record.c, lib/gnutls_ui.c: several cleanups and updates in the handshake protocol implementation iolaiiiiiCVS: ---------------------------------------------------------------------- 2001-08-05 nmav <nmav@gnutls.org> * configure.in, lib/Makefile.am, lib/gnutls_cert.h, lib/gnutls_errors_int.h, lib/gnutls_int.h, lib/gnutls_ui.c, lib/gnutls_ui.h, src/cli.c, src/serv.c: several cleanups. No longer export structures to the API, but a bunch of functions in order to access them. 2001-08-05 nmav <nmav@gnutls.org> * doc/TODO, doc/README.autoconf: [no log message] 2001-08-05 nmav <nmav@gnutls.org> * configure.in, lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_record.c: added new function gnutls_send_alert() to the api 2001-08-05 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/auth_rsa.c, lib/gnutls_cert.c, lib/gnutls_cert.h: cleanups in certificate copying 2001-08-05 nmav <nmav@gnutls.org> * src/Makefile.am, src/prime.c: fixes for the new files 2001-08-05 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/auth_rsa.c, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_global.c, lib/gnutls_global.h, lib/pkix_asn1_tab.c, lib/x509_b64.c, lib/x509_b64.h: renamed cert_* to x509_* 2001-08-04 nmav <nmav@gnutls.org> * lib/gnutls_cert.c: asn1_read_value() will no longer overflow the given buffer. (this assumes that the caller provided the size of the buffer) 2001-08-04 nmav <nmav@gnutls.org> * lib/auth_rsa.c, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_handshake.c, lib/gnutls_int.h: fixes in x509 cert extensions handling 2001-08-04 nmav <nmav@gnutls.org> * lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_errors.c, lib/gnutls_handshake.c, lib/gnutls_int.h: minor fixes 2001-08-04 nmav <nmav@gnutls.org> * lib/gnutls_mem.c, lib/gnutls_mem.h: added internal memory handlers 2001-08-04 nmav <nmav@gnutls.org> * NEWS, lib/Makefile.am, lib/auth_rsa.c, lib/gnutls_algorithms.c, lib/gnutls_datum.h, lib/gnutls_global.c, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_pk.c, src/serv.c: added internal memory handlers 2001-08-03 nmav <nmav@gnutls.org> * doc/tex/gnutls.tex: [no log message] 2001-08-02 nmav <nmav@gnutls.org> * lib/gnutls_cert.c: [no log message] 2001-08-02 nmav <nmav@gnutls.org> * lib/gnutls_cert.c, src/cli.c: subjectAltName related fixes 2001-08-02 nmav <nmav@gnutls.org> * lib/auth_rsa.c, lib/gnutls_auth.c, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_int.h, lib/gnutls_record.c, src/cli.c: added some kind of support for X509 Extensions 2001-08-02 nmav <nmav@gnutls.org> * doc/tex/gnutls.tex, doc/tex/macros.tex: [no log message] 2001-08-02 nmav <nmav@gnutls.org> * doc/tex/Makefile.am, doc/tex/fdl.tex, doc/tex/gnutls.tex, doc/tex/macros.tex: documentation updates 2001-08-02 nmav <nmav@gnutls.org> * doc/tex/gnutls.tex, lib/gnutls_auth.c, lib/gnutls_record.c: documentation fixes 2001-07-31 nmav <nmav@gnutls.org> * doc/scripts/gdoc, doc/tex/Makefile.am, doc/tex/gnutls.tex, lib/auth_anon.c, lib/auth_anon.h, lib/gnutls_anon_cred.c: fixed api documentation (for srp and anon cred allocation) 2001-07-30 nmav <nmav@gnutls.org> * doc/tex/Makefile.am, lib/gnutls_global.c, lib/gnutls_int.h, NEWS: [no log message] 2001-07-30 nmav <nmav@gnutls.org> * configure.in: added profiler option 2001-07-30 nmav <nmav@gnutls.org> * lib/debug.c, lib/gnutls_algorithms.c, lib/gnutls_buffers.c, lib/gnutls_cert.c, lib/gnutls_constate.c, lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_record.c, lib/gnutls_v2_compat.c: added log function (no longer use fprintf). 2001-07-29 nmav <nmav@gnutls.org> * lib/gnutls_handshake.c, lib/gnutls_record.c: fixes in EOF handling in handshake. 2001-07-29 nmav <nmav@gnutls.org> * lib/gnutls_handshake.c: detect EOF 2001-07-29 nmav <nmav@gnutls.org> * doc/scripts/gdoc, doc/tex/Makefile.am: [no log message] 2001-07-29 nmav <nmav@gnutls.org> * doc/scripts/gdoc, doc/tex/gnutls.tex: [no log message] 2001-07-29 nmav <nmav@gnutls.org> * NEWS: [no log message] 2001-07-29 nmav <nmav@gnutls.org> * doc/tex/Makefile.am, doc/tex/gnutls.tex: documentation updates 2001-07-28 nmav <nmav@gnutls.org> * doc/tex/gnutls.tex: [no log message] 2001-07-28 nmav <nmav@gnutls.org> * doc/scripts/gdoc, doc/tex/Makefile.am: fixes in tex production (gdoc) 2001-07-28 nmav <nmav@gnutls.org> * doc/tex/Makefile.am: [no log message] 2001-07-28 nmav <nmav@gnutls.org> * configure.in, doc/Makefile.am, doc/scripts/gdoc, doc/tex/Makefile.am, doc/tex/gnutls.tex, lib/gnutls_record.c: Added documentation in TEX 2001-07-28 nmav <nmav@gnutls.org> * doc/Makefile.am, doc/scripts/gdoc, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_record.c: added some documentation. Bug fixes in CHANGECIPHER_SPEC packet. 2001-07-27 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_buffers.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_global.c, lib/gnutls_record.c, src/cli.c, src/serv.c: changed gnutls_read() semantics 2001-07-26 fiorinaf <fiorinaf@gnutls.org> * doc/TODO: Tools for Certificate 2001-07-26 nmav <nmav@gnutls.org> * NEWS, configure.in: moving to 0.1.9 2001-07-26 nmav <nmav@gnutls.org> * doc/TODO, lib/gnutls_cert.c, src/serv.c: [no log message] 2001-07-26 nmav <nmav@gnutls.org> * doc/TODO: updated sig_check() 2001-07-24 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2001-07-24 nmav <nmav@gnutls.org> * doc/TODO, lib/auth_rsa.c, lib/gnutls_auth.c, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_int.h, src/cli.c: gnutls now checks the certificate's CN to see if it matches the peer's name. 2001-07-24 nmav <nmav@gnutls.org> * doc/TODO, lib/gnutls_pk.c, lib/gnutls_record.c: bugfixes 2001-07-24 nmav <nmav@gnutls.org> * src/cli.c: support for multiple protocol versions. 2001-07-24 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cert.c, lib/gnutls_constate.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_priority.c, lib/gnutls_priority.h, lib/gnutls_record.c, lib/gnutls_v2_compat.c, src/serv.c: corrected bug in b64 decoding. Added support for multiple TLS protocol versions. 2001-07-21 nmav <nmav@gnutls.org> * lib/Makefile.am: ignores some errors 2001-07-21 nmav <nmav@gnutls.org> * README, lib/auth_rsa.c, lib/gnutls_cert.c, lib/gnutls_int.h, lib/gnutls_pk.c, lib/gnutls_pk.h: [no log message] 2001-07-21 nmav <nmav@gnutls.org> * lib/auth_rsa.c, lib/gnutls_cert.c, lib/gnutls_cipher.c, lib/gnutls_compress_int.c, lib/gnutls_handshake.c, lib/gnutls_record.c, src/serv.c: corrected memory leaks 2001-07-21 nmav <nmav@gnutls.org> * doc/TODO, lib/Makefile.am, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_int.h, lib/gnutls_record.c, src/cli.c, src/pkcs1.asn, src/serv.c: several fixes cleanups etc. 2001-07-20 nmav <nmav@gnutls.org> * lib/gnutls_global.c: [no log message] 2001-07-20 nmav <nmav@gnutls.org> * configure.in, lib/Makefile.am, lib/gnutls_global.c, lib/pkix.asn, src/Makefile.am, src/cli.c, src/serv.c, src/srp/Makefile.am, src/x509/Makefile.am: updated file structure 2001-07-20 nmav <nmav@gnutls.org> * src/Makefile.am, src/serv.c, src/srp/tpasswd, src/srp/tpasswd.conf, src/x509/ca.pem, src/x509/cert.pem, src/x509/key.pem: updated directory structure 2001-07-20 nmav <nmav@gnutls.org> * configure.in, doc/protocol/rfc2313.txt, lib/Makefile.am, lib/auth_rsa.c, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_sig.h, src/pkcs1.asn: added some kind of certificate checking 2001-07-19 fiorinaf <fiorinaf@gnutls.org> * src/pkcs1.asn: "" 2001-07-19 fiorinaf <fiorinaf@gnutls.org> * lib/pkix_asn1_tab.c: C structure management 2001-07-18 nmav <nmav@gnutls.org> * lib/gnutls_hash_int.c: added mhash 0.8.10 support 2001-07-18 nmav <nmav@gnutls.org> * lib/auth_rsa.c, lib/gnutls_auth.c, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_constate.c, lib/gnutls_handshake.c, lib/gnutls_int.h, src/cli.c: more certificate fields parsed. Cleanups 2001-07-17 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_auth.c, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_constate.c, lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_extensions.c, lib/gnutls_extensions.h, lib/gnutls_int.h, src/cli.c, src/serv.c: several cleanups. Added check for certificate's expiration time. 2001-07-16 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/auth_rsa.c, lib/gnutls_cert.c, lib/gnutls_int.h, src/cli.c: updated cert_verify 2001-07-14 nmav <nmav@gnutls.org> * Makefile.am, lib/gnutls_anon_cred.c: minor cleanups 2001-07-14 nmav <nmav@gnutls.org> * lib/auth_rsa.c, lib/gnutls_cert.c, lib/gnutls_cert.h, src/cli.c: updated API 2001-07-14 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/gnutls_anon_cred.c: added missing file 2001-07-14 nmav <nmav@gnutls.org> * lib/auth_rsa.c, lib/gnutls_cert.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_priority.c, src/cli.c, src/serv.c: several bug fixes in ASN handling. Fixes/additions in X509 structures handling. 2001-07-14 nmav <nmav@gnutls.org> * configure.in, lib/Makefile.am, lib/auth_anon.c, lib/auth_anon.h, lib/auth_rsa.c, lib/gnutls_auth.c, lib/gnutls_cert.c, lib/gnutls_global.c, src/cli.c, src/serv.c: several cleanups 2001-07-14 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2001-07-14 nmav <nmav@gnutls.org> * doc/README.autoconf: [no log message] 2001-07-14 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/gnutls_cert.c, lib/gnutls_handshake.c, lib/gnutls_int.h: improved certificate handling 2001-07-14 nmav <nmav@gnutls.org> * src/serv.c: updated 2001-07-13 nmav <nmav@gnutls.org> * buildconf: added autoconf2.50 (for debian) 2001-07-13 nmav <nmav@gnutls.org> * acinclude.m4: added required .m4s 2001-07-12 nmav <nmav@gnutls.org> * lib/gnutls_record.c: bug fixes 2001-07-11 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_cipher.c, lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_record.c: optimizations in hash functions (removed a lot of mallocs) 2001-07-07 nmav <nmav@gnutls.org> * lib/gnutls_global.h: [no log message] 2001-07-07 nmav <nmav@gnutls.org> * NEWS, lib/Makefile.am, lib/auth_rsa.c, lib/gnutls_cert.c, lib/gnutls_global.c, lib/gnutls_int.h, src/Makefile.am, src/serv.c: Updated ASN.1 Parser (Fabio - commited by me). 2001-07-01 nmav <nmav@gnutls.org> * lib/auth_rsa.c, lib/gnutls_algorithms.c, lib/gnutls_cert.c: cleanups 2001-06-25 nmav <nmav@gnutls.org> * lib/auth_rsa.c, lib/gnutls_algorithms.c, lib/gnutls_cipher.c, lib/gnutls_cipher_int.c, lib/gnutls_db.c, lib/gnutls_errors.c, lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_kx.h, src/cli.c, src/serv.c: Cleanups. Mostly while sending client certificate (and client certificate verify) 2001-06-24 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2001-06-24 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_constate.c, lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_int.h, src/cli.c, src/serv.c: added support for DNSNAME extension (draft-ietf-tls-extensions) 2001-06-24 nmav <nmav@gnutls.org> * doc/protocol/rfc2817.txt: added more up to date documentation 2001-06-24 nmav <nmav@gnutls.org> * doc/protocol/x509guide.txt: added gutman's x509guide 2001-06-24 nmav <nmav@gnutls.org> * NEWS, doc/TODO: [no log message] 2001-06-24 nmav <nmav@gnutls.org> * lib/gnutls_handshake.c, lib/gnutls_priority.c: some portability fixes 2001-06-24 nmav <nmav@gnutls.org> * NEWS, doc/TODO, lib/Makefile.am, lib/auth_anon.c, lib/auth_rsa.c, lib/debug.c, lib/gnutls_algorithms.c, lib/gnutls_auth.c, lib/gnutls_buffers.c, lib/gnutls_cert.c, lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_cipher_int.c, lib/gnutls_compress.c, lib/gnutls_compress_int.c, lib/gnutls_constate.c, lib/gnutls_constate.h, lib/gnutls_datum.c, lib/gnutls_db.c, lib/gnutls_dh.c, lib/gnutls_errors.c, lib/gnutls_extensions.c, lib/gnutls_global.c, lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_num.c, lib/gnutls_pk.c, lib/gnutls_priority.c, lib/gnutls_random.c, lib/gnutls_record.c, lib/gnutls_session.c, lib/gnutls_v2_compat.c, src/cli.c, src/serv.c: fixes in ChangeCipherSpec handling (this also fixes rehandshake). Several cleanups. 2001-06-24 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/debug.c, lib/gnutls_buffers.c, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_cipher.c, lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, lib/gnutls_compress_int.c, lib/gnutls_datum.c, lib/gnutls_datum.h, lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_record.c, lib/gnutls_v2_compat.c: several cleanups 2001-06-23 nmav <nmav@gnutls.org> * configure.in, lib/gnutls_global.c: added checks for signals 2001-06-22 nmav <nmav@gnutls.org> * lib/gnutls_cipher.c, src/serv.c: corrected bug in stream decryption.. 2001-06-22 nmav <nmav@gnutls.org> * src/cli.c: [no log message] 2001-06-22 nmav <nmav@gnutls.org> * lib/auth_rsa.c, lib/gnutls_cert.c, lib/gnutls_cert.h: added internal representation of pkcs1 rsa private keys. 2001-06-22 nmav <nmav@gnutls.org> * Makefile.am, src/Makefile.am, src/serv.c: [no log message] 2001-06-22 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2001-06-22 nmav <nmav@gnutls.org> * NEWS, README, configure.in, doc/Makefile.am, doc/TODO, lib/Makefile.am, lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cert.c, lib/gnutls_global.c, lib/gnutls_record.c, src/cli.c, src/serv.c: added global state. 2001-06-22 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c, lib/gnutls_cert.c, lib/gnutls_cert.h, lib/gnutls_int.h, src/cli.c, src/serv.c: minor cleanups 2001-06-21 nmav <nmav@gnutls.org> * lib/gnutls_cert.h: added missing files 2001-06-21 nmav <nmav@gnutls.org> * NEWS, configure.in, doc/TODO, lib/Makefile.am, lib/auth_rsa.c, lib/gnutls_algorithms.c, lib/gnutls_auth.c, lib/gnutls_cert.c, lib/gnutls_datum.c, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_priority.c, lib/gnutls_v2_compat.c, src/serv.c: Updated Ciphersuite selection algorithm. Added internal representation of x509 structures. 2001-06-20 nmav <nmav@gnutls.org> * NEWS, doc/TODO, lib/auth_rsa.c, lib/gnutls_datum.c, lib/gnutls_datum.h, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_pk.c: client side RSA works (no certificate checking) 2001-06-19 nmav <nmav@gnutls.org> * doc/TODO, lib/auth_anon.c, lib/auth_rsa.c, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_auth.h, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_kx.h, lib/gnutls_v2_compat.c, src/cli.c, src/serv.c: removed unneeded code and added some kind of client support for RSA ciphersuites 2001-06-19 nmav <nmav@gnutls.org> * lib/gnutls_int.h: [no log message] 2001-06-19 nmav <nmav@gnutls.org> * NEWS, doc/TODO, lib/auth_rsa.c, lib/debug.c, lib/debug.h, lib/gnutls_cipher.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_kx.h, lib/gnutls_record.c, lib/gnutls_session.c, lib/gnutls_v2_compat.c, src/serv.c: fixes in session resuming.. 2001-06-18 nmav <nmav@gnutls.org> * doc/TODO, lib/gnutls_cipher.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_record.c, lib/gnutls_v2_compat.c: fixes in session resuming 2001-06-18 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/debug.c, lib/gnutls_algorithms.c, lib/gnutls_buffers.c, lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_cipher_int.c, lib/gnutls_compress.c, lib/gnutls_compress.h, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_record.c, lib/gnutls_v2_compat.c, src/serv.c: several cleanups in the low level record layer (the old code was a mess). several other fixes. 2001-06-18 nmav <nmav@gnutls.org> * lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_record.h, lib/gnutls_v2_compat.c: cleanups. No longer checks for alerts between messages. 2001-06-18 nmav <nmav@gnutls.org> * doc/TODO, lib/Makefile.am, lib/defines.h, lib/gnutls_algorithms.c, lib/gnutls_buffers.c, lib/gnutls_cipher_int.c, lib/gnutls_int.h, lib/gnutls_record.c, src/cli.c, src/serv.c: cleanups and addition of a test http server (serv.c) 2001-06-17 nmav <nmav@gnutls.org> * NEWS, doc/TODO, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_record.c, lib/gnutls_v2_compat.c, src/serv.c: fixes in V2 client hello. 2001-06-17 nmav <nmav@gnutls.org> * configure.in, lib/auth_rsa.c, lib/gnutls_algorithms.h, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_pk.c, lib/gnutls_v2_compat.c, src/pkcs1.asn, src/serv.c: several fixes for RSA. gnutls server can now work with rsa certificates. 2001-06-17 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/auth_rsa.c, lib/gnutls_algorithms.c, lib/gnutls_cert.c, lib/gnutls_cipher.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_num.h, lib/gnutls_pk.c, lib/gnutls_pk.h, lib/gnutls_random.c, lib/gnutls_random.h, lib/gnutls_record.c, lib/gnutls_v2_compat.c: several additions for RSA (mostly unstable) 2001-06-16 nmav <nmav@gnutls.org> * lib/gnutls_pk.c, lib/gnutls_pk.h: some support for public key encryption (rsa) 2001-06-16 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/auth_anon.c, lib/auth_rsa.c, lib/defines.h, lib/gnutls_auth_int.h, lib/gnutls_dh.c, lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_kx.h: more rsa fixes. Added dnsname extension. 2001-06-15 nmav <nmav@gnutls.org> * lib/auth_anon.c, lib/auth_rsa.c, lib/gnutls_algorithms.c, lib/gnutls_auth.h, lib/gnutls_datum.c, lib/gnutls_datum.h, lib/gnutls_handshake.c, lib/gnutls_int.h, src/serv.c: more rsa stuff -- and cleanups 2001-06-15 nmav <nmav@gnutls.org> * src/pkcs1.asn: removed <CR> 2001-06-15 nmav <nmav@gnutls.org> * src/pkcs1.asn: updated ASN.1 files. 2001-06-15 nmav <nmav@gnutls.org> * doc/Makefile.am, lib/Makefile.am, lib/auth_rsa.c, lib/gnutls_datum.c, lib/gnutls_datum.h, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_kx.c: several additions in order to support KX_RSA and X509PKI. 2001-06-14 nmav <nmav@gnutls.org> * lib/gnutls_auth.c: updated get_auth_info() 2001-06-14 nmav <nmav@gnutls.org> * Makefile.am, buildconf, src/cli.c, src/serv.c: changed the setting of credentials 2001-06-14 nmav <nmav@gnutls.org> * lib/auth_anon.c, lib/auth_anon.h, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_auth.c, lib/gnutls_auth_int.h, lib/gnutls_int.h: better handling of set/get credentials. 2001-06-14 nmav <nmav@gnutls.org> * lib/gnutls_auth_int.h, lib/gnutls_buffers.c, lib/gnutls_int.h: added gnutls_datum structure. 2001-06-13 nmav <nmav@gnutls.org> * THANKS: [no log message] 2001-06-13 nmav <nmav@gnutls.org> * AUTHORS, Makefile.am: added Fabio in AUTHORS, fixed the way ChangeLog is created. 2001-06-13 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c: added a warning for the addition of new algorithms 2001-06-13 nmav <nmav@gnutls.org> * doc/protocol/rfc2631.txt: added rfc on DH key exchange 2001-06-12 nmav <nmav@gnutls.org> * buildconf: [no log message] 2001-06-11 nmav <nmav@gnutls.org> * configure.in, lib/Makefile.am, src/Makefile.am: Added Fabio's ASN1/DER parser. 2001-06-09 nmav <nmav@gnutls.org> * lib/gnutls_db.c: more descriptive comments 2001-06-09 nmav <nmav@gnutls.org> * configure.in, NEWS: [no log message] 2001-06-09 nmav <nmav@gnutls.org> * src/crypt.c: bugfixes in sbase64 decoding/encoding. Changes in the included bcrypt algorithm. 2001-06-09 nmav <nmav@gnutls.org> * lib/Makefile.am: renamed cert_sb64.c to auth_srp_sb64.c (since it is only used in SRP KX) 2001-06-06 nmav <nmav@gnutls.org> * acinclude.m4, configure.in: [no log message] 2001-06-05 nmav <nmav@gnutls.org> * lib/defines.h, lib/gnutls_cipher.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_num.c, lib/gnutls_num.h: better handling of 64bit integers 2001-06-05 nmav <nmav@gnutls.org> * src/cli.c, src/serv.c: updated to new api 2001-06-05 nmav <nmav@gnutls.org> * lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_priority.c, lib/gnutls_priority.h, src/Makefile.am: updated documentation and functions 2001-06-01 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/defines.h, lib/gnutls_cipher.c, lib/gnutls_handshake.c, lib/gnutls_num.c, lib/gnutls_num.h, src/prime.c: gnutls now handles uint64 even in systems without a native one. several bug fixes. 2001-05-31 nmav <nmav@gnutls.org> * buildconf, configure.in: updated configuration scripts to comply to autoconf 2.50 2001-05-30 nmav <nmav@gnutls.org> * configure.in: [no log message] 2001-05-30 nmav <nmav@gnutls.org> * doc/Makefile.am, doc/scripts/gdoc: gdoc is now included in the cvs 2001-05-30 nmav <nmav@gnutls.org> * NEWS, doc/Makefile.am: [no log message] 2001-05-30 nmav <nmav@gnutls.org> * doc/Makefile.am, doc/TODO, lib/gnutls_algorithms.c, lib/gnutls_auth.c, lib/gnutls_auth_int.h, lib/gnutls_buffers.c, lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_db.c, lib/gnutls_errors.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_priority.c, lib/gnutls_session.c, src/cli.c, src/serv.c: updated API and documentation. Now we use the gnome way for creating API docs. 2001-05-29 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2001-05-27 nmav <nmav@gnutls.org> * configure.in: [no log message] 2001-05-27 nmav <nmav@gnutls.org> * src/Makefile.am, src/README: [no log message] 2001-05-26 nmav <nmav@gnutls.org> * lib/gnutls_dh.c: some cleanups in Diffie Hellman key exchange 2001-05-26 nmav <nmav@gnutls.org> * lib/auth_anon.c, lib/auth_anon.h, lib/gnutls_algorithms.c, lib/gnutls_auth.c, lib/gnutls_dh.c, lib/gnutls_dh.h, lib/gnutls_int.h: removed DHE_DSS. Added parameters to DH_ANON (size of prime). cleanups. 2001-05-26 nmav <nmav@gnutls.org> * src/cli.c, src/prime.c, src/serv.c: several updates 2001-05-26 nmav <nmav@gnutls.org> * lib/gnutls_int.h: [no log message] 2001-05-26 nmav <nmav@gnutls.org> * lib/gnutls_int.h, src/crypt.c: Added decoding function for the base64 encoding used in SRP. (this function is more strict in characters than the previous one) 2001-05-26 nmav <nmav@gnutls.org> * lib/auth_anon.c, lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_num.c, lib/gnutls_num.h, lib/gnutls_v2_compat.c: several cleanups in numbers' handling 2001-05-26 nmav <nmav@gnutls.org> * src/Makefile.am: [no log message] 2001-05-26 nmav <nmav@gnutls.org> * lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_num.c, lib/gnutls_num.h: updated uint24 functions. 2001-05-25 nmav <nmav@gnutls.org> * lib/auth_anon.c, lib/gnutls_cipher.c, lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_num.c, lib/gnutls_num.h, lib/gnutls_v2_compat.c: Cleanups in endian handling (convertions). 2001-05-25 nmav <nmav@gnutls.org> * lib/gnutls_cipher.c, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_handshake.c: several bug fixes 2001-05-25 nmav <nmav@gnutls.org> * src/serv.c: updated 2001-05-24 nmav <nmav@gnutls.org> * README: [no log message] 2001-05-24 nmav <nmav@gnutls.org> * README, configure.in, lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_handshake.c, src/cli.c: [no log message] 2001-05-24 nmav <nmav@gnutls.org> * lib/gnutls_cipher.c: sets the resumed_security_parameters to null after initialization 2001-05-23 nmav <nmav@gnutls.org> * NEWS, configure.in: [no log message] 2001-05-23 nmav <nmav@gnutls.org> * src/cli.c, src/serv.c: updated to new api 2001-05-23 nmav <nmav@gnutls.org> * lib/gnutls_db.c, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h: Updated API (gnutls_deinit()) gnutls_db: does not store anything if db has not been opened for reading. Added some kind of support for renegotiation of parameters. 2001-05-22 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c, lib/gnutls_handshake.h: cleanups 2001-05-22 nmav <nmav@gnutls.org> * lib/defines.h, lib/gnutls_db.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_session.c: cleanups and several fixes(and speedups) in the resume DB 2001-05-22 nmav <nmav@gnutls.org> * src/cli.c, src/serv.c: updated client and servers 2001-05-22 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c: cleanups 2001-05-22 nmav <nmav@gnutls.org> * lib/gnutls_int.h: [no log message] 2001-05-20 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_dh.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_priority.c, lib/gnutls_priority.h, src/cli.c, src/serv.c: Changed gnutls_set_*_priority functions. 2001-05-19 nmav <nmav@gnutls.org> * src/Makefile.am, src/crypt-gaa.c, src/crypt-gaa.h, src/crypt.c, src/prime.c: [no log message] 2001-05-19 nmav <nmav@gnutls.org> * src/crypt.c: updated 2001-05-19 nmav <nmav@gnutls.org> * lib/gnutls_errors.c, lib/gnutls_errors_int.h, lib/gnutls_handshake.c: [no log message] 2001-05-19 nmav <nmav@gnutls.org> * src/cli.c, src/crypt.c, src/crypt.gaa: added option to generate random primes (instead of using a default). Added option to specify a specific prime to use (index) 2001-05-17 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2001-05-16 nmav <nmav@gnutls.org> * configure.in, doc/README.autoconf, lib/libgnutls-config.in: [no log message] 2001-05-15 nmav <nmav@gnutls.org> * lib/libgnutls.m4: updated 2001-05-15 nmav <nmav@gnutls.org> * configure.in, lib/libgnutls.m4: corrected scripts 2001-05-15 nmav <nmav@gnutls.org> * acinclude.m4, configure.in, lib/Makefile.am, lib/gnutls_auth.c, lib/gnutls_errors.h, lib/gnutls_errors_int.h, lib/libgnutls-config.in, lib/libgnutls.m4, src/Makefile.am, src/serv.c: Added libgnutls-config script gnutls.h is automaticaly generated by configure script Added libgnutls.m4 2001-05-14 nmav <nmav@gnutls.org> * NEWS: [no log message] 2001-05-14 nmav <nmav@gnutls.org> * NEWS, lib/auth_anon.c, lib/gnutls_auth.c, lib/gnutls_auth_int.h, lib/gnutls_cipher.c, lib/gnutls_db.c, lib/gnutls_int.h, lib/gnutls_session.c, lib/gnutls_session.h, src/cli.c, src/serv.c: added functions to access authentication data (like username), and the key exchange algorithm used. 2001-05-14 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_db.c: [no log message] 2001-05-13 nmav <nmav@gnutls.org> * doc/TODO, lib/gnutls_db.c: clean_db() now clears expired entries only 2001-05-13 nmav <nmav@gnutls.org> * lib/gnutls_int.h, src/crypt.c: minor updates and fixes 2001-05-13 nmav <nmav@gnutls.org> * NEWS, configure.in, doc/TODO: [no log message] 2001-05-13 nmav <nmav@gnutls.org> * lib/Makefile.am, src/Makefile.am, src/cli.c, src/crypt.c, src/crypt.gaa, src/serv.c: Added compatibility with Tom Wu's libsrp's password files. 2001-05-12 nmav <nmav@gnutls.org> * configure.in, lib/Makefile.am, lib/debug.c, lib/gnutls_int.h, src/serv.c: added support for Tom Wu's srp library tpasswd and tpasswd.conf files. 2001-05-11 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2001-05-11 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2001-05-10 nmav <nmav@gnutls.org> * configure.in, lib/gnutls_int.h: fixes in memory allocation 2001-05-09 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c, lib/gnutls_db.c, lib/gnutls_hash_int.c, lib/gnutls_int.h: corrected memory leaks 2001-05-09 nmav <nmav@gnutls.org> * NEWS: [no log message] 2001-05-09 nmav <nmav@gnutls.org> * doc/Makefile.am: [no log message] 2001-05-09 nmav <nmav@gnutls.org> * lib/gnutls_auth.c, lib/gnutls_auth_int.h, src/cli.c, src/serv.c: credentials are now kept globaly (in order to minimize memory usage). This makes no harm since these are never modified by gnutls. 2001-05-08 nmav <nmav@gnutls.org> * lib/gnutls_int.h: [no log message] 2001-05-08 nmav <nmav@gnutls.org> * doc/TODO: updated TODO list 2001-05-08 nmav <nmav@gnutls.org> * lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, src/cli.c, src/serv.c: several fixes for srp. Seems to work now! 2001-05-07 nmav <nmav@gnutls.org> * lib/gnutls_v2_compat.c: better version handling 2001-05-07 nmav <nmav@gnutls.org> * NEWS, doc/TODO, lib/Makefile.am, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_v2_compat.c, lib/gnutls_v2_compat.h, src/cli.c: added support for SSL 2.0 client hello 2001-05-07 nmav <nmav@gnutls.org> * configure.in, lib/gnutls_extensions.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, src/cli.c, src/serv.c: several fixes for srp 2001-05-07 nmav <nmav@gnutls.org> * lib/gnutls_auth.c, lib/gnutls_auth_int.h, lib/gnutls_handshake.c: gnutls_get_kx_cred() now returns err value. set_kx_cred() now accepts size. 2001-05-06 nmav <nmav@gnutls.org> * src/Makefile.am: added missing gaa.h 2001-05-05 nmav <nmav@gnutls.org> * lib/gnutls_dh.c, lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_int.h: some hacks in order to exchange the algorithm used to hash the password... 2001-05-05 nmav <nmav@gnutls.org> * configure.in, lib/gnutls_int.h: more srp related fixes 2001-05-05 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c, lib/gnutls_auth_int.h, lib/gnutls_extensions.c, lib/gnutls_handshake.c: some fixes - srp related 2001-05-04 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/gnutls_algorithms.c, lib/gnutls_auth.c, lib/gnutls_auth.h, lib/gnutls_auth_int.h, lib/gnutls_dh.c, lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_int.h, lib/gnutls_kx.c, src/crypt.c: more additions for SRP 2001-05-04 nmav <nmav@gnutls.org> * src/crypt.c: fixed default case when no -s was specified 2001-05-04 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/gnutls_dh.c, src/crypt.c, src/crypt.gaa: More adds for SRP - SRPSHA1 and bcrypt 2001-05-03 nmav <nmav@gnutls.org> * configure.in, lib/Makefile.am, lib/defines.h, lib/gnutls_cipher.c, lib/gnutls_cipher_int.h, lib/gnutls_handshake.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_random.c, lib/gnutls_random.h, src/Makefile.am, src/crypt.c, src/crypt.gaa: Changes in random number handling. Added bcrypt (for use with SRP). Added test program crypt for creating bcrypt passwd files. 2001-05-02 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/gnutls_auth.c, lib/gnutls_auth.h, lib/gnutls_auth_int.h, lib/gnutls_int.h: added support for setting authentication algorithms' credentials 2001-05-02 nmav <nmav@gnutls.org> * lib/auth_anon.c, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_kx.c: cleanups... and more modular design. 2001-05-02 nmav <nmav@gnutls.org> * lib/auth_anon.c, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_auth.h, lib/gnutls_handshake.c, lib/gnutls_kx.c, lib/gnutls_kx.h: Added client kx0 and server kx2 in order to be used with SRP 2001-05-01 nmav <nmav@gnutls.org> * buildconf: updated 2001-03-18 nmav <nmav@gnutls.org> * lib/gnutls_extensions.c: in case there are no extensions ext_gen() does not return anything (NULL); 2001-03-18 nmav <nmav@gnutls.org> * lib/debug.h, lib/gnutls_algorithms.c, lib/gnutls_handshake.c: more cleanups 2001-03-18 nmav <nmav@gnutls.org> * lib/gnutls_extensions.c: send extensions feature was added. 2001-03-17 nmav <nmav@gnutls.org> * NEWS, lib/auth_anon.c, lib/debug.c, lib/gnutls_buffers.c, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c, src/serv.c: several bugfixes and cleanups 2001-03-17 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/gnutls_extensions.c, lib/gnutls_extensions.h, lib/gnutls_handshake.c, lib/gnutls_int.h: Added some preliminary support for TLS extensions; 2001-03-11 nmav <nmav@gnutls.org> * doc/TODO: updated todo list 2001-03-11 nmav <nmav@gnutls.org> * doc/protocol/rfc2945.txt: added RFC for srp protocol 2001-03-11 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c: updated with new files 2001-03-11 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/auth_anon.c, lib/auth_anon.h: moved gnutls_anon and gnutls_dhe_dss to auth_* 2001-03-11 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_auth.h, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_kx.c: Key exchange (authentication) algorithms were reorganized, and now are more modular. Most changes however are not much tested and only anonymous authentication is currently used. 2001-02-10 nmav <nmav@gnutls.org> * THANKS: added Tarun 2001-02-10 nmav <nmav@gnutls.org> * configure.in: corrected bug with dmalloc mode 2001-02-04 nmav <nmav@gnutls.org> * doc/TODO: [no log message] 2001-02-03 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_cipher.c, lib/gnutls_handshake.c, lib/gnutls_int.h: TLS version handling is now more simple (no structures) 2001-02-03 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c, lib/gnutls_cipher_int.c: corrected rijndael256 2001-02-03 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c, lib/gnutls_cipher_int.c, lib/gnutls_db.c, lib/gnutls_int.h: added rijndael-256 as described in draft-ietf-tls-ciphersuite-03 2001-02-01 nmav <nmav@gnutls.org> * lib/gnutls_cipher.c: comments are now more clear 2001-02-01 nmav <nmav@gnutls.org> * lib/gnutls_cipher.c: gnutls_send_int() no longer sends the packets with 2 Write() calls. One Write() call is enough for everybody! 2001-02-01 nmav <nmav@gnutls.org> * doc/protocol/rfc1422.txt, doc/protocol/rfc1423.txt, doc/protocol/rfc2246.txt, doc/protocol/rfc2279.txt, doc/protocol/rfc2818.txt: drafts and rfcs were moved to protocol/ directory 2001-01-30 nmav <nmav@gnutls.org> * README: updated 2001-01-28 nmav <nmav@gnutls.org> * lib/debug.h, lib/defines.h, lib/gnutls_algorithms.h, lib/gnutls_buffers.h, lib/gnutls_cipher.h, lib/gnutls_cipher_int.h, lib/gnutls_compress.h, lib/gnutls_compress_int.h, lib/gnutls_db.h, lib/gnutls_dh.h, lib/gnutls_errors.h, lib/gnutls_handshake.h, lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_kx.h, lib/gnutls_num.h, lib/gnutls_priority.h, lib/gnutls_session.h: added copyright notice 2001-01-28 nmav <nmav@gnutls.org> * lib/gnutls_cipher.c, lib/gnutls_cipher.h: removed large buffer 2001-01-28 nmav <nmav@gnutls.org> * NEWS, README, configure.in, src/cli.c: [no log message] 2001-01-28 nmav <nmav@gnutls.org> * lib/Makefile.am: removed unneeded files 2001-01-25 nmav <nmav@gnutls.org> * lib/Makefile.am: [no log message] 2001-01-25 nmav <nmav@gnutls.org> * lib/gnutls_cipher.c, lib/gnutls_cipher.h: changes in gnutls_encrypt() 2001-01-25 nmav <nmav@gnutls.org> * lib/gnutls_int.h: tls packets are now send using one write(that way ssldump understands us) 2001-01-25 nmav <nmav@gnutls.org> * doc/TODO: updated todo list 2001-01-16 nmav <nmav@gnutls.org> * AUTHORS: updated authors - tarun left 2001-01-16 nmav <nmav@gnutls.org> * doc/TODO: updated todo list 2001-01-14 nmav <nmav@gnutls.org> * lib/gnutls_handshake.c: removed time_t declarations. We need exactly 32 bits. 2001-01-11 nmav <nmav@gnutls.org> * lib/gnutls_db.c, lib/gnutls_db.h: added db files 2001-01-11 nmav <nmav@gnutls.org> * configure.in: more fixes 2001-01-11 nmav <nmav@gnutls.org> * NEWS, configure.in, src/cli.c: fixes for release 2001-01-11 nmav <nmav@gnutls.org> * acinclude.m4: added hooks for new libgcrypt 2001-01-11 nmav <nmav@gnutls.org> * NEWS, configure.in, lib/Makefile.am, lib/gnutls_algorithms.c, lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h, lib/gnutls_session.c, src/Makefile.am, src/cli.c, src/serv.c: added server side session resuming (using gdbm) 2001-01-11 nmav <nmav@gnutls.org> * configure.in, lib/gnutls_dh.c, lib/gnutls_int.h, src/Makefile.am: added hooks for dmalloc 2001-01-10 nmav <nmav@gnutls.org> * src/Makefile.am, src/cli.c, src/serv.c: corrected client/server 2001-01-10 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_cipher.c, lib/gnutls_cipher_int.c, lib/gnutls_handshake.c, lib/gnutls_int.h: corrected buffer overruns 2000-12-18 nmav <nmav@gnutls.org> * lib/gnutls_compress_int.c: more checks for zlib 2000-12-17 nmav <nmav@gnutls.org> * lib/gnutls_int.h: added a function to control the lowat size (the RCVLOWAT in socket) 2000-12-17 nmav <nmav@gnutls.org> * doc/Makefile.am: removed file 2000-12-17 nmav <nmav@gnutls.org> * NEWS, configure.in, doc/TODO, lib/gnutls_algorithms.c, lib/gnutls_buffers.c, lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_handshake.c, lib/gnutls_int.h, src/cli.c, src/serv.c: added some support for non blocking IO and socket flags. Some function names have been changed. 2000-12-17 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c: qsort seems to work now 2000-12-17 nmav <nmav@gnutls.org> * lib/gnutls_compress_int.c: added check for zlib.h 2000-12-17 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c: updated sorting algorithm - it was a mess - it is more than a mess now 2000-12-14 nmav <nmav@gnutls.org> * configure.in, doc/TODO, lib/gnutls_algorithms.c, lib/gnutls_cipher.c, lib/gnutls_cipher_int.c, lib/gnutls_compress_int.c, lib/gnutls_hash_int.c, lib/gnutls_int.h, src/cli.c, src/serv.c: some minor updates 2000-12-11 nmav <nmav@gnutls.org> * lib/gnutls_priority.h: added missing file 2000-12-11 nmav <nmav@gnutls.org> * configure.in: added option for profiling 2000-12-11 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_handshake.c, lib/gnutls_kx.c: improved some things found from gcov 2000-12-11 nmav <nmav@gnutls.org> * lib/gnutls_int.h: improved peek data handling - now keeps only 1 byte in kernel buffer 2000-12-11 nmav <nmav@gnutls.org> * configure.in: more changes 2000-12-11 nmav <nmav@gnutls.org> * lib/gnutls_int.h: removed debug definitions 2000-12-11 nmav <nmav@gnutls.org> * NEWS, lib/Makefile.am, lib/debug.h, lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_errors.h, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_hash_int.c, lib/gnutls_int.h, lib/gnutls_kx.c, src/cli.c, src/serv.c: cleanups for gcc -Wall 2000-12-11 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c, lib/gnutls_int.h, lib/gnutls_session.c, src/cli.c: added some new functions in the API. documentation updated. 2000-12-11 nmav <nmav@gnutls.org> * doc/TODO: updated documentation 2000-12-10 nmav <nmav@gnutls.org> * configure.in, doc/TODO, lib/defines.h, lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_int.h, src/cli.c: used MSG_PEEK flag in recv in order to used gnutls_recv() with select(). This change will order select to treat the socket as read even if we have read and localy buffered all data - but the user hasn't call gnutls_recv() to get that data. 2000-12-10 nmav <nmav@gnutls.org> * src/cli.c: [no log message] 2000-12-10 nmav <nmav@gnutls.org> * src/cli.c, src/serv.c: updated client 2000-12-10 nmav <nmav@gnutls.org> * lib/debug.c, lib/gnutls_buffers.c, lib/gnutls_cipher.c, lib/gnutls_handshake.c, lib/gnutls_int.h: changes in close notify- alert handling 2000-12-10 nmav <nmav@gnutls.org> * lib/gnutls_compress_int.c, lib/gnutls_compress_int.h: changes in compression handling 2000-12-10 nmav <nmav@gnutls.org> * NEWS: [no log message] 2000-12-10 nmav <nmav@gnutls.org> * lib/gnutls_session.c, lib/gnutls_session.h: moved to r2 2000-12-10 nmav <nmav@gnutls.org> * NEWS, lib/gnutls_handshake.c, lib/gnutls_int.h, src/cli.c, src/serv.c: added client side resuming 2000-12-09 nmav <nmav@gnutls.org> * lib/Makefile.am, lib/gnutls_cipher.c, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_int.h: added some support for session resuming (in client) It does not seem to work yet 2000-12-09 nmav <nmav@gnutls.org> * lib/debug.c, lib/gnutls_cipher.c, lib/gnutls_int.h: removed all things about exportable algorithms 2000-12-09 nmav <nmav@gnutls.org> * lib/gnutls_handshake.c: gnutls_handshake was broken to gnutls_handshake_begin and gnutls_handshake_finish. This will help the use of certificate API to check received certificates 2000-12-07 nmav <nmav@gnutls.org> * configure.in: added a warning if zlib was not found 2000-12-07 nmav <nmav@gnutls.org> * configure.in, lib/Makefile.am, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_cipher.c, lib/gnutls_compress.c, lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_handshake.c, lib/gnutls_int.h, lib/gnutls_priority.c, src/cli.c, src/serv.c: Added compression support (ZLIB) 2000-12-07 nmav <nmav@gnutls.org> * lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, src/cli.c: SSL3 support was added 2000-12-07 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_handshake.c, lib/gnutls_int.h: major cleanups 2000-12-06 nmav <nmav@gnutls.org> * lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cipher.c, lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h: more ssl3 fixes 2000-12-06 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c, lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cipher.c, lib/gnutls_cipher_int.c, lib/gnutls_handshake.c, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_kx.c: A lot of fixes for SSL3 2000-12-05 nmav <nmav@gnutls.org> * doc/Makefile.am: added API 2000-12-05 nmav <nmav@gnutls.org> * doc/TODO: documentation update 2000-12-05 nmav <nmav@gnutls.org> * lib/gnutls_priority.c, src/cli.c, src/serv.c: Bugfixes mainly for the priority (which was moved to the state) 2000-12-05 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_cipher.c, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_priority.c: Priorities were moved to the state (were global) 2000-11-22 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c, lib/gnutls_cipher.c, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h: added ssl3 key generation function - more fixes in ssl3 mac 2000-11-22 nmav <nmav@gnutls.org> * lib/gnutls_hash_int.c, lib/gnutls_hash_int.h: more bugfixes 2000-11-22 nmav <nmav@gnutls.org> * lib/gnutls_hash_int.c: corrected nasty bugs 2000-11-22 nmav <nmav@gnutls.org> * lib/gnutls_hash_int.c, lib/gnutls_hash_int.h: added support for the MAC used in SSLv3 2000-11-19 nmav <nmav@gnutls.org> * README: updated readme 2000-11-19 nmav <nmav@gnutls.org> * configure.in: removed unneeded check 2000-11-19 nmav <nmav@gnutls.org> * doc/Makefile.am: cleanups 2000-11-19 nmav <nmav@gnutls.org> * doc/TODO: updated todo 2000-11-17 nmav <nmav@gnutls.org> * lib/gnutls_cipher_int.c: added ARCFOUR support when using gcrypt 2000-11-15 nmav <nmav@gnutls.org> * lib/gnutls_algorithms.c: added the new tls-ciphersuite draft, and the ciphersuite TLS_DH_anon_RIJNDAEL_CBC_SHA 2000-11-15 nmav <nmav@gnutls.org> * configure.in, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_cipher_int.c, lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_handshake.c, lib/gnutls_int.h: several cleanups in order to support ssl3 2000-11-15 nmav <nmav@gnutls.org> * AUTHORS, COPYING, Makefile.am, NEWS, README, THANKS, acinclude.m4, buildconf, configure.in, doc/Makefile.am, doc/TODO, lib/Makefile.am, lib/debug.c, lib/debug.h, lib/defines.h, lib/gnutls_algorithms.c, lib/gnutls_algorithms.h, lib/gnutls_buffers.c, lib/gnutls_buffers.h, lib/gnutls_cipher.c, lib/gnutls_cipher.h, lib/gnutls_cipher_int.c, lib/gnutls_cipher_int.h, lib/gnutls_compress.c, lib/gnutls_compress.h, lib/gnutls_dh.c, lib/gnutls_dh.h, lib/gnutls_errors.c, lib/gnutls_errors.h, lib/gnutls_handshake.c, lib/gnutls_handshake.h, lib/gnutls_hash_int.c, lib/gnutls_hash_int.h, lib/gnutls_int.h, lib/gnutls_kx.c, lib/gnutls_kx.h, lib/gnutls_num.c, lib/gnutls_num.h, lib/gnutls_priority.c, src/Makefile.am, src/cli.c, src/serv.c: Moving to release 2 ---------------------------------------------------------------------- Copyright (C) 2000, 2001, 2002, 2003, 2004, 2005 Free Software Foundation Copying and distribution of this file, with or without modification, are permitted in any medium without royalty provided the copyright notice and this notice are preserved.