Release Notes: This release adds support for UCS-2 encoded DNs, improvements to smart card key generation, and a few bugfixes.
Release Notes: This release includes initial support for the DTLS-SRTP protocol, updates related to the new DANE library, and several simplifications to the existing API.
Release Notes: This release includes feature updates, notably support for the DTLS heartbeat message, and bugfixes in the current stable branch.
Release Notes: Several bugfixes and optimizations in the elliptic curve subsystem.
Release Notes: This is a minor feature update and bugfix release for the current stable branch. It adds support for an earlier version of DTLS used by CISCO's anyconnect vpn and other DTLS improvements.
Release Notes: This is a minor feature enhancement and bugfix release. The main enhancement is the ability to load trusted certificates (CAs) from the system certificate store.
Release Notes: This is a bugfix release on the current stable branch. It includes date-related (Y2K38) fixes, a fix for older VIA processors, and adds new APIs related to extraction of session random numbers and certificate parsing.
Release Notes: Several bug fixes and minor updates were done.
Release Notes: Certtool now prints the value of the pathLenConstraints field for certs and queries for the value when generating CA certs. A new API to get and set pathLenConstraints was added. A new API was added in OpenCDK to extract public/secret OpenPGP keys to S-expr. Certtool --to-p12 can now store more than one certificate in the blob. The separation of gnutls and gnutls-extra was cleaned up for OpenPGP. The URL is printed to gaa when missing, and srcdir not being the same as builddir was fixed for GAA files. GnuTLS no longer uses -mms-bitfields --enable-runtime-pseudo-reloc. A minor fix was done to the C++ library to make it build. The gnulib files were updated.
Release Notes: New API functions to set errno in push/pull functions were added. When calling "recv" or "send", Windows errors are handled properly. Several OpenPGP API fixes were made. When a GnuTLS server receives a SSLv2 Client Hello for an unknown TLS version, it now tries to negotiate the highest version supported by the GnuTLS server, instead of the lowest. Old constructs were replaced with the use of gnulib modules. SOVERSION computation for *.def files was fixed.