[gnutls-dev] GnuTLS 1.7.17 -- Last call for next stable major release v2.0!

Simon Josefsson simon at josefsson.org
Wed Aug 15 01:18:17 CEST 2007

This is scheduled to be the last release on the development branch.
Unless I hear anything, I will release this as v2.0 on September 1th.
Test this release as you would a new stable release!  All feedback is
welcome... is the documentation ok?  Do the examples work?  Is
everything ready for a new stable release?  Compare this to v1.6.3.

If you sent me a bug report that I haven't responded to, now is the time
to re-send it!  Preferably to the gnutls-dev list.

This release also comes with an updated binary Windows installer, please
test it as well.

Below is the regular release announcement...

* Version 1.7.17 (released 2007-08-15)

** New functions to perform external signing.
Set the signing callback function (of the gnutls_sign_func prototype)
using the gnutls_sign_callback_set function.  In the callback, you may
find the new functions gnutls_x509_privkey_sign_hash and
gnutls_openpgp_privkey_sign_hash useful.  A new function
gnutls_sign_callback_get is also added, to retrieve the function
pointer.  Thanks to "Alon Bar-Lev" <alon.barlev at gmail.com> for
comments and testing.

** New self test of client and server authenticated X.509 TLS sessions.
See tests/x509self.c and tests/x509signself.c.  The latter also tests
the new external signing callback interface.

These two actually describe the outer limits of a range of error codes
reserved to the application.  All of the errors are treated as fatal
by the library (it has to since it doesn't know the semantics of the
error codes).  This can be useful in callbacks, to signal some
application-specific error condition, which will usually eventually
cause some gnutls API to return the same error code as the callback,
which then can be inspected by the application.  Note that error codes
are negative.

** gnutls_set_default_priority now disable TLS 1.2 by default.
The RFC is not released yet, and we're approaching a major release so
let's not enable it just yet.

** Fix namespace so that gnutls_*_t is used consistently.
Before, many places in the GnuTLS code used the old deprecated type
names without the '_t' suffix.

** Build fixes for Guile code.
Patch from Ludovic Courtes <ludovic.courtes at laas.fr>.

** More documentation fixes.
In particular, the section headings were modified for casing.  By
Ludovic Courtes <ludovic.courtes at laas.fr>.

** Updated Polish and Swedish translations.
Thanks to Jakub Bogusz <qboosh at pld-linux.org> and Daniel Nylander
<po at danielnylander.se>.

** API and ABI modifications:
gnutls_sign_func: ADD, new type for sign callback.
gnutls_sign_callback_set: ADD, new function to set sign callback.
gnutls_sign_callback_get: ADD, new function to retrieve sign callback.
gnutls_openpgp_privkey_sign_hash: ADD, new functions useful in sign callback.
GNUTLS_E_APPLICATION_ERROR_MAX: ADD, new CPP #defines for error codes.

Here are the compressed sources (4.6MB):

Here are GPG detached signatures signed using key 0xB565716F:

For more information about GnuTLS for Windows:

The Windows binary installer and PGP signature:
  http://josefsson.org/gnutls4win/gnutls-1.7.17.exe (24MB)

Here are the SHA-1 and SHA-224 checksums:

3d961c86aafc17555f23b21d749c25379cd2c388  gnutls-1.7.17.tar.bz2
5f990656e6a97329d0810cbfd7aabe9706286af2  gnutls-1.7.17.tar.bz2.sig

86e8dd9083aeffadbc4782c682e3d16ae8d278d27ffa0a31ef231c8b  gnutls-1.7.17.tar.bz2
a6c81ba03814d7b4255e4ef939e5d5df2327484c095359645e988062  gnutls-1.7.17.tar.bz2.sig

0f0897a343a636137e426a4ac1057e3dfe7c8de9  gnutls-1.7.17.exe
7caaabb2ad3e238e25334554c52dd0c15a4d41b5  gnutls-1.7.17.exe.sig

ac0101436e8e906f84fabd75f376a765ba6b32f0ae6c93db51ce9879  gnutls-1.7.17.exe
4cf3a9550883ca7ee9dd70bae72782e1412582a225ff77bcd3097dfe  gnutls-1.7.17.exe.sig

Improving GnuTLS is costly, but you can help!  We are looking for
organizations that find GnuTLS useful and wish to contribute back.
You can contribute by reporting bugs, improve the software, or donate
money or equipment.

Commercial support contracts for GnuTLS are available, and they help
finance continued maintenance.  Simon Josefsson Datakonsult, a
Stockholm based privately held company, is currently funding GnuTLS
maintenance.  We are always looking for interesting development
projects.  See http://josefsson.org/ for more details.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 419 bytes
Desc: not available
URL: </pipermail/attachments/20070815/e295c4c0/attachment.pgp>

More information about the Gnutls-devel mailing list