[gnutls-dev] GnuTLS 1.6.3

Simon Josefsson simon at josefsson.org
Sat May 26 23:05:00 CEST 2007 

I am happy to announce GnuTLS 1.6.3!

This is a bugfix-only release on the stable branch.  This version is
what we recommend for those who need a stable version of GnuTLS.

GnuTLS is a modern C library that implement the standard network
security protocol Transport Layer Security (TLS), for use by network
applications.  GnuTLS is developed for GNU/Linux, but works on many
Unix-like systems and comes with a binary installer for Windows.

   Warning!  GnuTLS uses OpenCDK for OpenPGP parsing.  Recently, a new
   branch of OpenCDK has been released by Timo as 0.6.x.  Unfortunately,
   the new branch is not backwards API/ABI compatible with the old 0.5.x
   branch.  The stable branch of GnuTLS do not support the newer OpenCDK
   0.6.x releases.  To be able to build GnuTLS 1.6.x, you must use
   OpenCDK 0.5.x instead of 0.6.x.  Alternatively, use the ./configure
   parameter --with-included-opencdk to use the included copy of OpenCDK
   0.5.13 for building GnuTLS, or the --disable-openpgp-authentication
   parameter to disable OpenPGP altogether.

* Version 1.6.3 (released 2007-05-26)

** New API functions to extract DER encoded X.509 Subject/Issuer DN.
Suggested by Nate Nielsen <nielsen-list at memberwebs.com>.  Backported
From the 1.7.x branch, see
<http://lists.gnu.org/archive/html/help-gnutls/2007-05/msg00029.html>.

** Have PKCS8 parser return better error codes.
Reported by Nate Nielsen <nielsen-list at memberwebs.com>, see
<http://lists.gnupg.org/pipermail/gnutls-dev/2007-May/001653.html> and
<http://lists.gnupg.org/pipermail/gnutls-dev/2007-May/001654.html>.

** Fix mem leak for sessions with client authentication via certificates.
Reported by Andrew W. Nosenko <andrew.w.nosenko at gmail.com>, see
<http://lists.gnupg.org/pipermail/gnutls-dev/2007-April/001539.html>.

** Fix building of 'tlsia' self test.
Earlier some gcc are known to build tlsia linking to
$prefix/lib/libgnutls-extra.so rather than the libgnutls-extra.so in
the build directory, even though command line parameters look OK.
Changing order of some parameters fixes it.

** API and ABI modifications:
gnutls_x509_crt_get_raw_issuer_dn: ADD.
gnutls_x509_crt_get_raw_dn: ADD.

Improving GnuTLS is costly, but you can help!  We are looking for
organizations that find GnuTLS useful and wish to contribute back.
You can contribute by reporting bugs, improve the software, or donate
money or equipment.

Commercial support contracts for GnuTLS are available, and they help
finance continued maintenance.  Simon Josefsson Datakonsult, a
Stockholm based privately held company, is currently funding GnuTLS
maintenance.  We are always looking for interesting development
projects.  See http://josefsson.org/ for more details.

All manual formats are available from:
  http://www.gnutls.org/manual/

Direct link to the most popular formats:
  http://www.gnutls.org/manual/gnutls.html - HTML format
  http://www.gnutls.org/manual/gnutls.pdf  - PDF format
  http://www.gnutls.org/reference/ch01.html  - API Reference, GTK-DOC HTML

If you need help to use GnuTLS, or want to help others, you are
invited to join our help-gnutls mailing list, see:
<http://lists.gnu.org/mailman/listinfo/help-gnutls>.

The project page of the library is available at:
  http://www.gnutls.org/
  http://www.gnu.org/software/gnutls/
  http://josefsson.org/gnutls/

Here are the compressed sources (4.2MB):
  ftp://ftp.gnutls.org/pub/gnutls/gnutls-1.6.3.tar.bz2
  http://josefsson.org/gnutls/releases/gnutls-1.6.3.tar.bz2

Here are GPG detached signatures signed using key 0xB565716F:
  ftp://ftp.gnutls.org/pub/gnutls/gnutls-1.6.3.tar.bz2.sig
  http://josefsson.org/gnutls/releases/gnutls-1.6.3.tar.bz2.sig

For more information about GnuTLS for Windows:
  http://josefsson.org/gnutls4win/

The Windows binary installer and PGP signature:
  http://josefsson.org/gnutls4win/gnutls-1.6.3.exe (23MB)
  http://josefsson.org/gnutls4win/gnutls-1.6.3.exe.sig

The software is cryptographically signed by the author using an
OpenPGP key identified by the following information:

pub   1280R/B565716F 2002-05-05 [expires: 2008-06-30]
      Key fingerprint = 0424 D4EE 81A0 E3D1 19C6  F835 EDA2 1E94 B565 716F
uid                  Simon Josefsson <simon at josefsson.org>
uid                  Simon Josefsson <jas at extundo.com>
sub   1280R/4D5D40AE 2002-05-05 [expires: 2008-06-30]

The key is available from:
  http://josefsson.org/key.txt
  dns:b565716f.josefsson.org?TYPE=CERT

Here are the SHA-1 and SHA-224 checksums:

7553b9f7ddd4982c0759b814bc6d9bf892cf7347  gnutls-1.6.3.tar.bz2
bc498d2b5c889508f4710a2df5fb12efd68017b6  gnutls-1.6.3.tar.bz2.sig

ad48dcb65eb2c35bf4056d91c61f7653007b9e54bb458d40e71991d8  gnutls-1.6.3.tar.bz2
d66b001c0a82b6e6db9939a93d367f2c0983eaff5a9d649058b60405  gnutls-1.6.3.tar.bz2.sig

0aa3170d94fef9760fafdfab7cb0dbf5ad51b8be  gnutls-1.6.3.exe
6beaaa5fcefd0f137470c527bfe7e6d3cb926d6b  gnutls-1.6.3.exe.sig

4ac84057d4dde931dab4db0886acb448cb778ccc4e7cfce1bdc549e8  gnutls-1.6.3.exe
217ba330a6e8ad2e9ed0fa9c9dd0defec14fd9d27d113920a48d1d35  gnutls-1.6.3.exe.sig

/Simon
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 419 bytes
Desc: not available
URL: </pipermail/attachments/20070526/805440e4/attachment.pgp>

More information about the Gnutls-devel mailing list