[gnutls-dev] GnuTLS 1.7.17 -- Last call for next stable major release v2.0!
simon at josefsson.org
Wed Aug 15 01:18:17 CEST 2007
This is scheduled to be the last release on the development branch.
Unless I hear anything, I will release this as v2.0 on September 1th.
Test this release as you would a new stable release! All feedback is
welcome... is the documentation ok? Do the examples work? Is
everything ready for a new stable release? Compare this to v1.6.3.
If you sent me a bug report that I haven't responded to, now is the time
to re-send it! Preferably to the gnutls-dev list.
This release also comes with an updated binary Windows installer, please
test it as well.
Below is the regular release announcement...
* Version 1.7.17 (released 2007-08-15)
** New functions to perform external signing.
Set the signing callback function (of the gnutls_sign_func prototype)
using the gnutls_sign_callback_set function. In the callback, you may
find the new functions gnutls_x509_privkey_sign_hash and
gnutls_openpgp_privkey_sign_hash useful. A new function
gnutls_sign_callback_get is also added, to retrieve the function
pointer. Thanks to "Alon Bar-Lev" <alon.barlev at gmail.com> for
comments and testing.
** New self test of client and server authenticated X.509 TLS sessions.
See tests/x509self.c and tests/x509signself.c. The latter also tests
the new external signing callback interface.
** New errors GNUTLS_E_APPLICATION_ERROR_MIN..GNUTLS_E_APPLICATION_ERROR_MAX.
These two actually describe the outer limits of a range of error codes
reserved to the application. All of the errors are treated as fatal
by the library (it has to since it doesn't know the semantics of the
error codes). This can be useful in callbacks, to signal some
application-specific error condition, which will usually eventually
cause some gnutls API to return the same error code as the callback,
which then can be inspected by the application. Note that error codes
** gnutls_set_default_priority now disable TLS 1.2 by default.
The RFC is not released yet, and we're approaching a major release so
let's not enable it just yet.
** Fix namespace so that gnutls_*_t is used consistently.
Before, many places in the GnuTLS code used the old deprecated type
names without the '_t' suffix.
** Build fixes for Guile code.
Patch from Ludovic Courtes <ludovic.courtes at laas.fr>.
** More documentation fixes.
In particular, the section headings were modified for casing. By
Ludovic Courtes <ludovic.courtes at laas.fr>.
** Updated Polish and Swedish translations.
Thanks to Jakub Bogusz <qboosh at pld-linux.org> and Daniel Nylander
<po at danielnylander.se>.
** API and ABI modifications:
gnutls_sign_func: ADD, new type for sign callback.
gnutls_sign_callback_set: ADD, new function to set sign callback.
gnutls_sign_callback_get: ADD, new function to retrieve sign callback.
gnutls_openpgp_privkey_sign_hash: ADD, new functions useful in sign callback.
GNUTLS_E_APPLICATION_ERROR_MAX: ADD, new CPP #defines for error codes.
Here are the compressed sources (4.6MB):
Here are GPG detached signatures signed using key 0xB565716F:
For more information about GnuTLS for Windows:
The Windows binary installer and PGP signature:
Here are the SHA-1 and SHA-224 checksums:
Improving GnuTLS is costly, but you can help! We are looking for
organizations that find GnuTLS useful and wish to contribute back.
You can contribute by reporting bugs, improve the software, or donate
money or equipment.
Commercial support contracts for GnuTLS are available, and they help
finance continued maintenance. Simon Josefsson Datakonsult, a
Stockholm based privately held company, is currently funding GnuTLS
maintenance. We are always looking for interesting development
projects. See http://josefsson.org/ for more details.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Size: 419 bytes
Desc: not available
More information about the Gnutls-devel