[gnutls-devel] GnuTLS | WIP: Record layer separation for QUIC TLS API: Notify the key (epoch) change (!1086)

Development of GNU's TLS library gnutls-devel at lists.gnutls.org
Fri Oct 25 18:00:57 CEST 2019



Aniketh Girish pushed new commits to merge request !1086

https://gitlab.com/gnutls/gnutls/merge_requests/1086


* 5f6b6555 - Fix typo in gnutls_db_set_cache_expiration() docs
* 945df8c5 - guile: Update the list of certificate status values.
* 0245f015 - Implemented client rawpk fuzzer.
* 2c0097ca - Implemented server rawpk fuzzer.
* a909bbbb - Added initial corpora for rawpk client and server fuzzers.
* dff197ea - gnutls-cli-debug: fix early break for no version supported check
* 56508ec5 - priority: fix loop which removes systemwide disabled KX algos
* 582586f9 - gnutls_int.h: make DECR_LEN neutral to signedness
* 60011458 - lib/*: remove unnecessary cast to ssize_t
* 9105cbc1 - tests: added interoperability test with gnutls 2.12.x
* fb99ef3d - _gnutls_epoch_set_keys: do not forbid random padding in TLS1.x CBC ciphersuites
* 55d72ede - tests: check interoperability testing with gnutls 2.12.x and SHA256
* f0fc049b - tlsfuzzer: enable atypical padding check
* 9321a37a - maint: Include Guile's M4 macros.
* a356ff2a - .gitlab-ci.yml: doc-dist.Fedora: Pass "GUILE", "GUILD", and "guile_snarf" to 'configure'.
* 17996005 - .gitlab-ci.yml: minimal.Fedora.x86_64: Pass '--disable-guile' the 2nd time as well.
* 778ad3ac - .gitlab-ci.yml: export guile related envvars for doc-dist.Fedora
* 3d605b22 - .gitlab-ci.yml: bump configure cache version
* cd103f29 - doc: Run guile with '-q'.
* 8dc04c3d - guile: Add support for Guile 3.0.
* 236d6072 - pkcs11-mock: updated license based on upstream project [ci skip]
* da7032a2 - nettle: use nettle_get_secpp* consistently
* b65a5c84 - tests: mini-alignment moved to modern nettle API
* 1e542874 - tests: cipher-alignment: ensure cipher registration
* 9af6c0ba - _gnutls_io_check_recv: added newline to error message
* e79f105d - gnutls_session_get_data2: fix operation without a timeout callback
* 716fc838 - ext/supported_versions: reorder client precedence if necessary
* f428fede - gnutls_ocsp_status_request_is_checked: added tests in client side
* 0502f3a2 - tests: added server-side verification test
* 5affd646 - tests: added server side OCSP check
* 50cbbf74 - Updates in OCSP status response related documentation
* 7db1f4c2 - tests: add verbose logging to server-kx-neg tests
* 5ec943c1 - x509: add support for Russian extensions defined for qualified certificate
* f222e7a5 - nettle: provide GOST 28147-89 CNT mode support
* 785926c8 - nettle: provide GOST 28147-89 IMIT MAC support
* a78f8f47 - crypto-selftests: add CNT and IMIT self tests
* ee33947b - NEWS: document previous changes [ci skip]
* 97780b2f - certtool: ensure that PKCS#8 file does not contain key description
* 5d3fbb3a - Regenerate asm files with -fPIC
* fa62d585 - .gitlab-ci.yml: run pic-check on i686-linux-gnu to catch wrong assembly
* 6f0fd2eb - bumped versions
* 2350547d - cipher-alignment: migrate LDADD/CFLAGS after rename
* 2bfda472 - lib/algorithms: add AID values assigned by IANA
* 9f44a7d3 - nettle/mac: add missing ifdef
* a6e5143f - Implemented raw public key support for gnutls-cli application.
* bd93208f - Implemented raw public key support for gnutls-serv application.
* a7867802 - Added functional regression tests for rawpk functionality in gnutls-cli and gnutls-serv.
* 9ceb25e4 - Updated NEWS to reflect the added raw public-key handling functionality for gnutls-cli/serv tools.
* 4f54803e - NEWS: added entry for 3.6.11
* 28729608 - iov: _gnutls_iov_iter_next: return bytes instead of blocks
* a4b38c90 - iov: add _gnutls_iov_iter_sync to write back cached data to iov
* 1dea6b92 - gnutls_aead_cipher_{en,de}cryptv2: write back cached data to buffers
* 79256ce4 - .gitlab-ci.yml: include an automated coverity build on tags
* 5887f0e1 - .gitlab-ci.yml: only run coverity task on 3_6_x tags [ci skip]
* 4a9da14e - lib: define more GOST curves
* 885112d6 - lib/ecc: add documentation for GOST-related curves
* e3c2f72a - nettle/pk: add support for "new" TC26 256 B curve
* acedb15e - lib: implement support for updated GOST PublicKeyParameters
* 6b983d1f - cert-tests/gost: add certificate with new GOSTParameters struct
* 069570e6 - tests: correct gost server certificates
* 24c01971 - document limitations of gnutls_record_discard_queued() [ci skip]
* 77d7e34a - crq APIs: fix typos [ci skip]
* 34089112 - ext/supported_groups: don't consider non-EC groups for EC
* d1421694 - tests/psk-file: fix heizenbug in last test
* 32759637 - p11tool: print mechanism info in list-mechanisms
* d120495c - testpkcs11.sh: test that we output mechanism flags correctly
* d0405201 - README.md: document lscpu/util-linux dependency for make check
* 044f8bde - session tickets: parse extension during session resumption on client side
* 316a48e0 - .gitlab-ci.yml: removed coverity build [ci skip]
* 1de00ed1 - Remove trailing spaces in several files
* a8aea8f8 - lib/handshake.c: Check return value of _gnutls_version_max()
* 9466e8e4 - lib/str.c: Replace sscanf() in _gnutls_buffer_unescape()
* 934b5ab8 - lib/auth/srp_passwd.c: Fix NULL dereference in _gnutls_srp_pwd_read_entry()
* bc50e543 - lib/x509/output.c: Remove unneeded NULL check in print_crt_pubkey()
* eeefc70d - lib/sslv2_compat.c: Check return value of _gnutls_generate_session_id()
* 84ddb406 - lib/record.c: Use assignment instead of memcpy()
* 5ec76e23 - cipher: Let _gnutls_auth_cipher_setiv() return int
* b8106bf6 - lib/x509/x509.c: Check before pointer dereference in get_alt_name()
* 33bd5888 - tests/buffer.c: Add unit test for _gnutls_buffer_unescape()
* 268000c3 - Add const to several read-only packet sequence params
* 1d5f6b9d - prf: add Streebog (GOST R 34.11-2012) PRF support
* 859c2d0b - Allow using implicit IV for stream ciphers with TLS
* 6929ed38 - src: fix noreturn-related warning
* 82d0ab40 - lib: pubkey vs TLS signature compatibility for GOST algorithms
* 3a11f3df - tls-sig: split TLS 1.0/1.1 CertificateVerify code
* 12603c8a - sign: convert tls13_ok to flags field
* bb19fdfa - cipher: replace several bools with single flags instance
* cfa7ec3a - mac: change preimage_insecure to be a flag
* ef655ed9 - Support GOST cipher suite MAC calculation
* 0a1a9988 - mac: mark GOST28147-TC26Z-IMIT as using CONTINUOUS_MAC
* 03b9095a - lib: drop gnutls_uint64 usage as sequence number
* 8734a806 - Record Layer Seperation: Notify the key (epoch) change

-- 
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/merge_requests/1086
You're receiving this email because of your account on gitlab.com.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20191025/c4062f80/attachment-0001.html>


More information about the Gnutls-devel mailing list