gnutls 3.0.4

Nikos Mavrogiannopoulos nmav at gnutls.org
Sat Oct 15 01:49:54 CEST 2011


Hello,
  I've just released gnutls 3.0.4. It includes several bug fixes
and adds new features to the latest stable branch. Moreover since this
version the printed manual (see
http://www.gnu.org/software/gnutls/documentation.html ) is no longer
used as a donation method, and is available at the printing cost.

The changelog since 3.0.3 follows.

* Version 3.0.4 (released 2011-10-15)

** gnutls-cli-debug: Added more tests including AES-GCM,
SHA256 and elliptic curves.

** gnutls-cli: Added --benchmark-soft-ciphers to benchmark
the software version of the ciphers instead of hw accelerated
(where available)

** libgnutls: Public key ID calculation is consistent among
all structures. It uses a SHA-1 hash of the subjectPublicKeyInfo.

** libgnutls: gnutls_privkey_t allows setting external callback
to perform signing or decryption. Can be set using
gnutls_privkey_import_ext()

** libgnutls: A certificate credentials structure can be
used with a gnutls_privkey_t and a gnutls_pcert_st
structure using gnutls_certificate_set_key().

** libgnutls: Fixes to enable external signing callback to
operate with TLS 1.2.

** libgnutls: Fixed crash when printing ECDSA certificate key
ID. Reported by Erik Jensen.

** libgnutls: Corrected VIA padlock code for C3. In C3 benchmarks
show a 2x increase in AES speed and a 14x increase in VIA nano. Added
support for hashes and HMACs.

** libgnutls: Compilation fixed when p11-kit is not detected.

** libgnutls: Fixed the deflate compression code.

** libgnutls: Added gnutls_x509_crt_get_authority_info_access.
Used to get the PKIX Authority Information Access (AIA) field.

** libgnutls: gnutls_x509_crt_print supports printing AIA fields.

** libgnutls: Added ability to gnutls_privkey_t to operate with
signing callback function.

** API and ABI modifications:
gnutls_x509_crt_get_authority_info_access (x509.h): Added function.
gnutls_privkey_import_ext: Added function.
gnutls_certificate_set_key: Added function.
gnutls_info_access_what_t (x509.h): Added enum.
GNUTLS_OID_AIA (x509.h): Added symbol.
GNUTLS_OID_AD_OCSP (x509.h): Added symbol.
GNUTLS_OID_AD_CAISSUERS (x509.h): Added symbol.


Getting the Software
====================

GnuTLS may be downloaded from one of the GNU mirror sites or directly
 From <ftp://ftp.gnu.org/gnu/gnutls/≥.  The list of GNU mirrors can be
found at <http://www.gnu.org/prep/ftp.html> and a list of GnuTLS mirrors
can be found at <http://www.gnu.org/software/gnutls/download.html>.

Here are the XZ compressed sources:

   ftp://ftp.gnu.org/gnu/gnutls/gnutls-3.0.4.tar.xz
   http://ftp.gnu.org/gnu/gnutls/gnutls-3.0.4.tar.xz
   ftp://ftp.gnutls.org/pub/gnutls/gnutls-3.0.4.tar.xz

Here are OpenPGP detached signatures signed using key 0x96865171:

   ftp://ftp.gnu.org/gnu/gnutls/gnutls-3.0.4.tar.xz.sig
   http://ftp.gnu.org/gnu/gnutls/gnutls-3.0.4.tar.xz.sig
   ftp://ftp.gnutls.org/pub/gnutls/gnutls-3.0.4.tar.xz.sig

Note that it has been signed with my openpgp key:
pub   3104R/96865171 2008-05-04 [expires: 2028-04-29]
uid                  Nikos Mavrogiannopoulos <nmav <at> gnutls.org>
uid                  Nikos Mavrogiannopoulos <n.mavrogiannopoulos <at>
gmail.com>
sub   2048R/9013B842 2008-05-04 [expires: 2018-05-02]
sub   2048R/1404A91D 2008-05-04 [expires: 2018-05-02]

regards,
Nikos




More information about the Gnutls-devel mailing list