gnutls 3.0.9

Nikos Mavrogiannopoulos nmav at
Tue Dec 13 23:23:52 CET 2011

 I've just released gnutls 3.0.9. This release optimizes several
parts of gnutls, more prominent being optimizations in Diffie-Hellman 
and elliptic curve Diffie-Hellman key exchange. Moreover servers
can now enforce their priority for ciphersuites.

* Version 3.0.9 (released 2011-12-13)

** certtool: Added new parameter --dh-info.

** certtool: -l option was overloaded so if combined with --priority
it will only list the ciphersuites that are enabled by the given
priority string.

** libgnutls: Added new priority string %SERVER_PRECEDENCE, which
changes the ciphersuite selection procedure. If specified the server
priorities will be used for selection instead of the client's.

** libgnutls: Optimizations in Diffie-Hellman parameters generation
and key exchange.

** libgnutls: When session tickets are negotiated and used in a
session, a server will not store that session data into its cache.

** libgnutls: Added the SECP192R1 curve.

** libgnutls: Added gnutls_priority_get_cipher_suite_index() to
allow listing the ciphersuites enabled in a priority structure.
It outputs an index to be used in gnutls_get_cipher_suite_info().

** libgnutls: Optimizations in the elliptic curve code --timing
attacks resistant code is only used in ECDSA private key operations.

** doc: man pages for API functions generation was fixed and are
now added again in the distribution.

** API and ABI modifications:
GNUTLS_ECC_CURVE_SECP192R1: New curve definition
gnutls_priority_get_cipher_suite_index: Added

Getting the Software

GnuTLS may be downloaded from one of the GNU mirror sites or directly
>From <>.  The list of GNU mirrors can be
found at <> and a list of GnuTLS mirrors
can be found at <>.

Here are the XZ compressed sources:

Here are OpenPGP detached signatures signed using key 0x96865171:

Note that it has been signed with my openpgp key:
pub   3104R/96865171 2008-05-04 [expires: 2028-04-29]
uid                  Nikos Mavrogiannopoulos <nmav <at>>
uid                  Nikos Mavrogiannopoulos <n.mavrogiannopoulos <at>>
sub   2048R/9013B842 2008-05-04 [expires: 2018-05-02]
sub   2048R/1404A91D 2008-05-04 [expires: 2018-05-02]


More information about the Gnutls-devel mailing list