gnutls 3.0.9
Nikos Mavrogiannopoulos
nmav at gnutls.org
Tue Dec 13 23:23:52 CET 2011
Hello,
I've just released gnutls 3.0.9. This release optimizes several
parts of gnutls, more prominent being optimizations in Diffie-Hellman
and elliptic curve Diffie-Hellman key exchange. Moreover servers
can now enforce their priority for ciphersuites.
* Version 3.0.9 (released 2011-12-13)
** certtool: Added new parameter --dh-info.
** certtool: -l option was overloaded so if combined with --priority
it will only list the ciphersuites that are enabled by the given
priority string.
** libgnutls: Added new priority string %SERVER_PRECEDENCE, which
changes the ciphersuite selection procedure. If specified the server
priorities will be used for selection instead of the client's.
** libgnutls: Optimizations in Diffie-Hellman parameters generation
and key exchange.
** libgnutls: When session tickets are negotiated and used in a
session, a server will not store that session data into its cache.
** libgnutls: Added the SECP192R1 curve.
** libgnutls: Added gnutls_priority_get_cipher_suite_index() to
allow listing the ciphersuites enabled in a priority structure.
It outputs an index to be used in gnutls_get_cipher_suite_info().
** libgnutls: Optimizations in the elliptic curve code --timing
attacks resistant code is only used in ECDSA private key operations.
** doc: man pages for API functions generation was fixed and are
now added again in the distribution.
** API and ABI modifications:
GNUTLS_ECC_CURVE_SECP192R1: New curve definition
gnutls_priority_get_cipher_suite_index: Added
Getting the Software
====================
GnuTLS may be downloaded from one of the GNU mirror sites or directly
>From <ftp://ftp.gnu.org/gnu/gnutls/>. The list of GNU mirrors can be
found at <http://www.gnu.org/prep/ftp.html> and a list of GnuTLS mirrors
can be found at <http://www.gnu.org/software/gnutls/download.html>.
Here are the XZ compressed sources:
ftp://ftp.gnu.org/gnu/gnutls/gnutls-3.0.9.tar.xz
http://ftp.gnu.org/gnu/gnutls/gnutls-3.0.9.tar.xz
ftp://ftp.gnutls.org/pub/gnutls/gnutls-3.0.9.tar.xz
Here are OpenPGP detached signatures signed using key 0x96865171:
ftp://ftp.gnu.org/gnu/gnutls/gnutls-3.0.9.tar.xz.sig
http://ftp.gnu.org/gnu/gnutls/gnutls-3.0.9.tar.xz.sig
ftp://ftp.gnutls.org/pub/gnutls/gnutls-3.0.9.tar.xz.sig
Note that it has been signed with my openpgp key:
pub 3104R/96865171 2008-05-04 [expires: 2028-04-29]
uid Nikos Mavrogiannopoulos <nmav <at> gnutls.org>
uid Nikos Mavrogiannopoulos <n.mavrogiannopoulos <at>
gmail.com>
sub 2048R/9013B842 2008-05-04 [expires: 2018-05-02]
sub 2048R/1404A91D 2008-05-04 [expires: 2018-05-02]
regards,
Nikos
More information about the Gnutls-devel
mailing list