Author: Zoltan Fridrich <zfridric@redhat.com>
Date:   Fri May 27 09:17:55 2022 +0200

    Release 3.7.6
    
    Signed-off-by: Zoltan Fridrich <zfridric@redhat.com>

Author: Asad Mehmood <asad78611@googlemail.com>
Date:   Mon May 23 14:35:46 2022 +0000

    libdane: fix typo in Makefile.am
    
    Signed-off-by: Asad Mehmood <asad78611@googlemail.com>

Author: Zoltan Fridrich <zfridric@redhat.com>
Date:   Fri May 13 14:37:05 2022 +0200

    Add release steps for windows builds
    
    Signed-off-by: Zoltan Fridrich <zfridric@redhat.com>

Author: Zoltan Fridrich <zfridric@redhat.com>
Date:   Wed May 18 11:43:26 2022 +0200

    Fix out-of-bounds memcpy in gnutls_realloc_zero()
    
    Co-authored-by: Tobias Heider <tobias.heider@canonical.com>
    Co-authored-by: Daiki Ueno <ueno@gnu.org>
    Signed-off-by: Zoltan Fridrich <zfridric@redhat.com>

Author: Zoltan Fridrich <zfridric@redhat.com>
Date:   Thu May 19 10:27:51 2022 +0200

    Disable test scripts on windows
    
    This is a temporary solution to avoid failures
    of test scripts when ran on windows
    
    Signed-off-by: Zoltan Fridrich <zfridric@redhat.com>

Author: Zoltan Fridrich <zfridric@redhat.com>
Date:   Thu May 12 10:38:23 2022 +0200

    Release 3.7.5
    
    Signed-off-by: Zoltan Fridrich <zfridric@redhat.com>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Tue May 10 09:52:26 2022 +0200

    cligen: update git submodule
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Zoltan Fridrich <zfridric@redhat.com>
Date:   Fri Apr 29 12:28:50 2022 +0200

    Improve certificate sanity checks
    
    Signed-off-by: Zoltan Fridrich <zfridric@redhat.com>

Author: Tim Kosse <tim.kosse@filezilla-project.org>
Date:   Mon Mar 28 17:49:22 2022 +0200

    Fix psk_ke_modes_recv_params() wrongly setting HSK_PSK_KE_MODE_INVALID
    
    If the preferred side (as per session->internals.priorities->server_precedence)
    only supports one algorithm and if it is not the first in the other side's list
    of algorithms, then psk_ke_modes_recv_params did wrongly set
    session->internals.hsk_flags to HSK_PSK_KE_MODE_INVALID.
    
    Fixes #1303
    
    This issue was originally discovered while analyzing
    https://forum.filezilla-project.org/viewtopic.php?t=54333
    
    Signed-off-by: Tim Kosse <tim.kosse@filezilla-project.org>
    Co-authored-by: Daiki Ueno <ueno@gnu.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Sat May 7 10:07:01 2022 +0200

    tests/cmocka-common.h: include <stdarg.h> before <cmocka.h>
    
    As documented in <https://api.cmocka.org/group__cmocka.html#details>,
    <stdarg.h> must be included before <cmocka.h>.
    
    Suggested by Brad Smith in:
    https://gitlab.com/gnutls/gnutls/-/issues/1360
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Fri Apr 29 12:01:53 2022 +0200

    configure.ac: check if compiler supports -Wa,-march=all
    
    Clang from LLVM 13.0.0 caused a segumentation fault if an unknown
    architecture is supplied through -march.  While this has been fixed in
    13.0.1, until it is widely deployed this adds a configure check as a
    safeguard:
    https://github.com/llvm/llvm-project/commit/d31f8cc6884ba3cc3e088fd57c4c533868e8a8b2
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Sat Jan 15 11:27:20 2022 +0100

    gnutls_aead_cipher_set_key: new function
    
    This adds gnutls_aead_cipher_set_key, which enables to reuse the same
    handle but reset the context and key, without releasing the memory.
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Mon Jan 17 11:48:39 2022 +0100

    crypto-api: support AES-SIV with scatter-gather API
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Mon Jan 17 11:17:46 2022 +0100

    crypto-api: refactor iov_store_st operations
    
    This replaces copy_from_iov to more generic append_from_iov.
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Mon Jan 17 10:36:44 2022 +0100

    crypto-api: split scatter-gather AEAD implementation to helper funcs
    
    These _encryptv, _encryptv2, and _decryptv2 functions take orthogonal
    code paths depending on whether the underlying AEAD implementation
    supports message based API.  This patch split the implementation to
    dedicated helper functions.
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Mon Jan 17 10:07:02 2022 +0100

    crypto-api: add integer overflow checks around copying IOV
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Zoltan Fridrich <zfridric@redhat.com>
Date:   Thu May 5 12:10:46 2022 +0200

    Extend fipshmac to take a path to libgnutls.so
    
    Signed-off-by: Zoltan Fridrich <zfridric@redhat.com>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Wed May 4 15:27:16 2022 +0200

    .github/workflows/macos.yml: display tests/cert-tests/*.log
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Wed May 4 15:23:49 2022 +0200

    lib/fips.c: suppress -Wdiscarded-qualifiers warning
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Wed May 4 15:22:16 2022 +0200

    .gitignore: ignore tests/tls13/compress-cert*
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Wed May 4 15:19:17 2022 +0200

    tests/cert-tests/pkcs12.sh: use portable sed invocations
    
    The BSD sed doesn't recognize '\|' as the alternative operator, and
    the last '}' must be preceded with a newline.
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Tue Sep 21 08:07:25 2021 +0200

    tls: add flag to disable session ticket in TLS 1.2
    
    The existing GNUTLS_NO_TICKETS flag affects all versions of TLS, where
    PFS is assured in TLS 1.3, while it is not in TLS 1.2.  This adds a
    new flag GNUTLS_NO_TICKETS_TLS12 to allow applications to disable
    session tickets only in TLS 1.2.
    
    As the only means of resumption in TLS 1.3 is using session tickets,
    we could repurpose the GNUTLS_NO_TICKETS flag make it no-op in TLS
    1.3.  However it would break backward compatibility, so we defer it to
    the next major release.
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Sun Nov 28 11:31:30 2021 +0100

    session_ticket: avoid invalid free on error path
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Tue Sep 21 11:08:06 2021 +0200

    _gnutls_version_max: return NULL if priorities are not populated
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Mon May 2 07:41:12 2022 +0200

    m4: update from autoconf-archive
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Sun Apr 17 10:56:35 2022 +0200

    .github/workflows/macos.yml: pull in gtk-doc
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Zoltan Fridrich <zfridric@redhat.com>
Date:   Thu Apr 28 12:17:16 2022 +0200

    gnutls-cli, gnutls-serv: print supported channel binding
    
    Signed-off-by: Zoltan Fridrich <zfridric@redhat.com>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Sat Sep 4 07:16:18 2021 +0200

    .gitlab-ci.yml: replace valgrind checks with ASan
    
    Running the full test suite under valgrind wastes a lot of time and
    may cause intermittent failures due to timeout.  We have them mainly
    for VALGRIND_MAKE_MEM_UNDEFINED client request, though the ASan tests
    now cover the equivalent after
    f23c3a6cba43706a6ebb3f9b0018cd658dcc0a72.
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Zoltan Fridrich <zfridric@redhat.com>
Date:   Thu Apr 14 11:29:26 2022 +0200

    Use packit to automate fedora upstream release
    
    Signed-off-by: Zoltan Fridrich <zfridric@redhat.com>

Author: Tatsuhiro Tsujikawa <tatsuhiro.t@gmail.com>
Date:   Sun Apr 24 17:03:18 2022 +0900

    Preserve mbuffer type when linearized
    
    Signed-off-by: Tatsuhiro Tsujikawa <tatsuhiro.t@gmail.com>

Author: Brian Wickman <bwickman97@outlook.com>
Date:   Thu Apr 21 05:52:36 2022 +0000

    Fix for #1132

Author: Daiki Ueno <ueno@gnu.org>
Date:   Mon Apr 11 14:00:16 2022 +0200

    .gitignore: ignore files generated by asn1Parser
    
    These files are no longer maintained in the repository, after commit
    16061937.
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Fri Apr 8 10:23:51 2022 +0200

    cligen: update git submodule
    
    This also reverts commit fd0e28a3 and changes how the cligen python
    files are included in the distribution.
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Zoltan Fridrich <zfridric@redhat.com>
Date:   Tue Apr 12 16:34:52 2022 +0200

    Small fips-test refactoring
    
    Signed-off-by: Zoltan Fridrich <zfridric@redhat.com>

Author: Zoltan Fridrich <zfridric@redhat.com>
Date:   Mon Apr 11 16:04:38 2022 +0200

    Add zeroization of some critical security parameters
    to comply with FIPS-140-3 requirements
    
    Signed-off-by: Zoltan Fridrich <zfridric@redhat.com>

Author: Andreas Metzler <ametzler@debian.org>
Date:   Sun Apr 10 13:22:22 2022 +0200

    Document C++ soname bump in NEWS.
    
    Signed-off-by: Andreas Metzler <ametzler@bebt.de>

Author: Andreas Metzler <ametzler@debian.org>
Date:   Wed Mar 30 18:26:36 2022 +0200

    Add missing gtk-doc for GNUTLS_COMP_BROTLI/ZSTD.
    
    Signed-off-by: Andreas Metzler <ametzler@bebt.de>

Author: Andreas Metzler <ametzler@debian.org>
Date:   Wed Mar 30 18:18:12 2022 +0200

    Add missing copyright header
    
    Signed-off-by: Andreas Metzler <ametzler@bebt.de>

Author: Zoltan Fridrich <zfridric@redhat.com>
Date:   Tue Apr 5 16:28:41 2022 +0200

    Add missing FIPS service indicator transitions
    
    Signed-off-by: Zoltan Fridrich <zfridric@redhat.com>

Author: Zoltan Fridrich <zfridric@redhat.com>
Date:   Wed Apr 6 15:33:32 2022 +0200

    Remove 3DES from FIPS approved algorithms.
    According to the section 2 of SP800-131A Rev.2, 3DES algorithm
    will be disallowed for encryption after December 31, 2023:
    https://csrc.nist.gov/publications/detail/sp/800-131a/rev-2/final
    
    Signed-off-by: Zoltan Fridrich <zfridric@redhat.com>

Author: Zoltan Fridrich <zfridric@redhat.com>
Date:   Fri Apr 1 12:34:12 2022 +0200

    Mark HKDF and AES-GCM as approved when used in TLS
    
    Co-authored-by: Pedro Monreal <pmgdeb@gmail.com>
    Signed-off-by: Zoltan Fridrich <zfridric@redhat.com>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Thu Mar 31 15:50:51 2022 +0200

    bootstrap.conf: use install-sh to copy cligen files
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Sat Mar 19 10:01:09 2022 +0100

    lib/{gnutls,pkix}_asn1_tab.c: remove autogenerated files
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Sat Mar 19 10:00:08 2022 +0100

    devel/README-ci.freebsd.md: stop mentioning autogen
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Sat Mar 19 09:59:58 2022 +0100

    .github/workflows/macos.yml: stop installing autogen
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Sat Mar 19 09:53:54 2022 +0100

    configure.ac: always assume GTK_DOC_CHECK macro
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Thu Mar 31 14:28:32 2022 +0200

    fips: simplify library integrity checking
    
    This removes code duplication by grouping the path and hmac fields in
    hmac_file structure.
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Zoltan Fridrich <zfridric@redhat.com>
Date:   Thu Mar 31 10:13:06 2022 +0200

    Increase length limit of PKCS#12 passwords
    
    Signed-off-by: Zoltan Fridrich <zfridric@redhat.com>

Author: František Krenželok <krenzelok.frantisek@gmail.com>
Date:   Fri Mar 25 11:31:05 2022 +0100

    ktls config documentation
    
    Signed-off-by: Frantisek Krenzelok <krenzelok.frantisek@gmail.com>

Author: Benjamin Herrenschmidt <benh@kernel.crashing.org>
Date:   Thu Mar 31 08:57:07 2022 +1100

    Fix off-by one exit condition in pkcs#11 priv keys lookup
    
    In function find_privkeys(), the list-> array is allocated to be of size
    lists->key_ids_size. "current" is the index where the next found key will
    be written (starts at 0).
    
    The current exit condition is thus incorrect:
    
                    if (current > list->key_ids_size)
                            break;
    
    This will allow "current" to be equal to list->key_ids_size which will
    potentially cause an overflow if more keys are returned by the loop than
     was originally found when calculating that size.
    
    This is very unlikely, but incorrect nonetheless.
    
    Fix this by using the more classic construct of testing for the array bound
    in the loop exit condition, as suggested by Daiki Ueno.
    
    Signed-off-by: Benjamin Herrenschmidt <benh@kernel.crashing.org>

Author: Benjamin Herrenschmidt <benh@kernel.crashing.org>
Date:   Mon Mar 21 13:45:11 2022 +1100

    Fix matching of last key of a pkcs#11 token
    
    Retrieving the cert for the last key of a token fails due to an
    off-by-one bug in find_privkeys():
    
    In the loop that iterates the keys, "current" contains the index
    of the "next" key slot, which is also the active "count" of populated
    slots in the output struct find_pkey_list_st.
    
    The current statement:
    
            list->key_ids_size = current - 1;
    
    Means we return a "key_ids_size" of the current count minus one, ie 0
    for 1 key etc... However, this isn't what the callers expect, for example:
    
    find_multi_objs_cb() does:
    
                    ret = find_privkeys(sinfo, tinfo, &plist);
                    if (ret < 0) {
                            gnutls_assert();
                            return ret;
                    }
    
                    if (plist.key_ids_size == 0) {
                            gnutls_assert();
                            return GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE;
                    }
    
    So a slot with a single key will fail when trying to find a certificate
    
    Subsequent uses of "plist" in that function also show that it's expected
    to contain the real slot count:
    
                    for (i = 0; i < plist.key_ids_size; i++) {
    
    Signed-off-by: Benjamin Herrenschmidt <benh@kernel.crashing.org>

Author: Zoltan Fridrich <zfridric@redhat.com>
Date:   Wed Mar 23 16:55:51 2022 +0100

    Consolidate FIPS .hmac files
    
    Signed-off-by: Zoltan Fridrich <zfridric@redhat.com>

Author: František Krenželok <krenzelok.frantisek@gmail.com>
Date:   Fri Mar 18 11:37:10 2022 +0100

    system config disable KTLS
    
    Added option for system config `ktls = false` to disable ktls
    system-wide
    
    Signed-off-by: Frantisek Krenzelok <krenzelok.frantisek@gmail.com>

Author: Pedro Monreal <pmgdeb@gmail.com>
Date:   Tue Mar 22 13:01:53 2022 +0100

    lib/crypto-selftests.c: Add a selftest for PBKDF2 that complies with FIPS 140-3.
    
    Signed-off-by: Pedro Monreal <pmgdeb@gmail.com>

Author: Tobias Heider <tobias.heider@canonical.com>
Date:   Mon Mar 14 16:17:28 2022 +0100

    Use custom allocators for GMP to make sure temporary secrets
    from cryptographic operations in nettle are deleted safely.
    
    Signed-off-by: Tobias Heider <tobias.heider@canonical.com>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Fri Mar 18 08:10:12 2022 +0100

    devel/release-steps.md: expand steps to generate tarball [ci-skip]
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Fri Mar 18 07:54:06 2022 +0100

    NEWS: mention couple more changes in 3.7.4 release [ci-skip]
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Sam James <sam@gentoo.org>
Date:   Fri Mar 18 05:51:29 2022 +0000

    configure.ac: fix zstd detection
    
    Fixes typo in zstd detection.
    
    None of the used autoconf macros will define `has_zstd_h` so
    configure will (AFAICT) always fail to find zstd, even if it succeeded
    via pkg-config moments before.
    
    Drop it and rely solely on pkg-config as that's the only search
    we're actually doing.
    
    Fixes: https://gitlab.com/gnutls/gnutls/-/issues/1343
    Signed-off-by: Sam James <sam@gentoo.org>

Author: Sam James <sam@gentoo.org>
Date:   Fri Mar 18 05:40:28 2022 +0000

    configure.ac: fix brotli/zstd configure argument name
    
    The old `./configure` arguments for brotli and zstd respectively
    were inconsistent with the `./configure --help` output.
    
    Old: --without-libbrotli --without-libzstd (also --with-*)
    New: --without-brotli --without-zstd (also --with-*)
    
    Fixes: https://gitlab.com/gnutls/gnutls/-/issues/1342
    Signed-off-by: Sam James <sam@gentoo.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Wed Mar 16 11:19:29 2022 +0100

    cligen: update git submodule
    
    To avoid emitting empty "list" substruct in header files, as well as
    assuming the Python pwd module is always available.
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Zoltan Fridrich <zfridric@redhat.com>
Date:   Wed Mar 16 15:42:40 2022 +0100

    Release 3.7.4
    
    Signed-off-by: Zoltan Fridrich <zfridric@redhat.com>

Author: Zoltan Fridrich <zfridric@redhat.com>
Date:   Tue Mar 8 18:01:37 2022 +0100

    Make gnutls compliant to RFC5280
    
    Signed-off-by: Zoltan Fridrich <zfridric@redhat.com>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Mon Mar 14 16:03:07 2022 +0100

    cli, serv: allow multiple --compress-cert options
    
    This eliminates the need of parsing the comma separated list manually.
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Tobias Heider <tobias.heider@canonical.com>
Date:   Sun Mar 13 23:58:42 2022 +0100

    Handle all cases of calloc returning NULL.
    
    Signed-off-by: Tobias Heider <tobias.heider@canonical.com>

Author: František Krenželok <krenzelok.frantisek@gmail.com>
Date:   Fri Mar 11 18:22:18 2022 +0100

    Fix global-ini-handler
    
    Signed-off-by: Frantisek Krenzelok <krenzelok.frantisek@gmail.com>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Thu Feb 10 15:58:08 2022 +0100

    Make option specification type-safe
    
    This switches the CLI code and documentation generation to the
    external cligen module, which provides more type-safe specification.
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Tobias Heider <tobias.heider@canonical.com>
Date:   Wed Mar 9 01:18:20 2022 +0100

    fips: use GNUTLS_FIPS140_STRICT instead of magic number.
    
    Signed-off-by: Tobias Heider <tobias.heider@canonical.com>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Wed Mar 9 08:07:58 2022 +0100

    locks: define lock functions as a macro
    
    When threads are not supported, glthread_* functions are defined as
    no-op and thus dereferencing lock variables in inline functions will
    cause compilation error.  This change fixes it by redefining our lock
    functions as a macro so it will also be compiled out.
    
    Reported by Fabrice Fontaine in:
    https://gitlab.com/gnutls/gnutls/-/issues/1330
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Wed Mar 9 07:25:01 2022 +0100

    .gitlab-ci.yml: prolong timeout for slow CI jobs
    
    Suggested by Marvin Scholz in:
    https://gitlab.com/gnutls/gnutls/-/merge_requests/1543#note_859825412
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Wed Feb 23 19:48:52 2022 +0100

    tpm2: dynamically load tss2 libraries as needed
    
    libtss2-esys links to OpenSSL or mbed TLS for cryptography, which may
    cause packaging issues.  This instead dlopen's tss2 libraries as
    needed so non-TPM applications continue working without loading
    multiple crypto libraries.
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Zoltan Fridrich <zfridric@redhat.com>
Date:   Wed Jan 12 14:57:42 2022 +0100

    Add compress_certificate extension (RFC8879)
    
    Signed-off-by: Zoltan Fridrich <zfridric@redhat.com>

Author: Craig Gallek <cgallek@gmail.com>
Date:   Sun Feb 27 10:39:07 2022 -0500

    x509: fix return error code for failed decryption without key
    
    Decrypting an encrypted private key previously returned
    GNUTLS_E_DECRYPTION_FAILED when no password was supplied.  This changed when
    decryption via pin callbacks was added in d31b89de.
    
    That change should have included a check for callback existence in order to
    preserve the error path of the no-password case.
    
    This adds the check and a test for the previous behavior.
    Resolves bug #1321
    
    Signed-off-by: Craig Gallek <cgallek@gmail.com>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Thu Feb 24 09:55:01 2022 +0100

    gnutls_record_send_file: make it work with non-blocking I/O
    
    When either read() or gnutls_record_send() returns EAGAIN, just return
    to the caller so it can call this function again, instead of retrying
    internally.
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Marvin Scholz <epirat07@gmail.com>
Date:   Wed Feb 23 19:03:51 2022 +0100

    configure.ac: add missing Libs.private for macOS
    
    On macOS the CoreFoundation and Security frameworks are used by
    GnuTLS, however those were missing in the Libs.private in the .pc
    resulting in link failures with static builds when relying on the
    output of pkg-config --static.
    
    Signed-off-by: Marvin Scholz <epirat07@gmail.com>

Author: František Krenželok <krenzelok.frantisek@gmail.com>
Date:   Wed Feb 16 11:25:11 2022 +0100

    non-KTLS sendfile test
    
    Signed-off-by: Frantisek Krenzelok <krenzelok.frantisek@gmail.com>

Author: František Krenželok <krenzelok.frantisek@gmail.com>
Date:   Wed Feb 16 11:23:36 2022 +0100

    non-KTLS sendfile
    
    Added: sendfile API functionality for non KTLS enabled builds.
    Signed-off-by: Frantisek Krenzelok <krenzelok.frantisek@gmail.com>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Tue Feb 22 17:09:46 2022 +0100

    algorithms: ensure _list() exclude non-existing algorithms
    
    This aligns the behavior of _list() function for sign/pk to the one
    for cipher/mac: the former previously returned all the algorithms
    defined, while the latter returns only algorithms compiled in.
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Tue Feb 22 17:25:26 2022 +0100

    Revert "algorithms: compile out GOST algorithm IDs if they are disabled"
    
    This reverts commit aa94bcbdaa55899f4f4ae13dc3e9a8c559354676.
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: František Krenželok <krenzelok.frantisek@gmail.com>
Date:   Wed Feb 16 11:22:47 2022 +0100

    auto-generated files update
    
    Signed-off-by: Frantisek Krenzelok <krenzelok.frantisek@gmail.com>

Author: František Krenželok <krenzelok.frantisek@gmail.com>
Date:   Tue Nov 16 12:05:53 2021 +0100

    ktls: sendfile
    
    added API function: gnutls_record_send_file().
    added: _gnutls_ktls_send_file() function which increases the performance
    by offloading the file encryption to kernel, thus the data never goes
    to userspace.
    updated tests/gnutls_ktls to cover new API
    
    Signed-off-by: Frantisek Krenzelok <krenzelok.frantisek@gmail.com>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Mon Feb 21 16:36:32 2022 +0100

    algorithms: compile out GOST algorithm IDs if they are disabled
    
    When compiled with --disable-gost, gnutls-cli --list still prints GOST
    algorithms for public key systems and signatures.  This change adds
    compile time checks to suppress them.
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Alexander Sosedkin <asosedkin@redhat.com>
Date:   Mon Feb 21 18:19:25 2022 +0100

    lib/algorithms: add UB warnings on late allowlisting API invocations
    
    Signed-off-by: Alexander Sosedkin <asosedkin@redhat.com>

Author: Alexander Sosedkin <asosedkin@redhat.com>
Date:   Mon Feb 14 13:48:37 2022 +0100

    lib/priority: defer setting system-wide priority string
    
    Signed-off-by: Alexander Sosedkin <asosedkin@redhat.com>

Author: Alexander Sosedkin <asosedkin@redhat.com>
Date:   Mon Feb 14 12:44:57 2022 +0100

    lib/priority: split up update_system_wide_priority_string
    
    This is done in preparation for deferring priority string evaluation.
    
    Signed-off-by: Alexander Sosedkin <asosedkin@redhat.com>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Mon Feb 21 16:28:49 2022 +0100

    priority: compile out GOST algorithms IDs if they are disabled
    
    When compiled with --disable-gost, gnutls-cli --priority NORMAL --list
    still prints GOST algorithms for ciphers, MACs, and signatures.  This
    change adds compile time checks to suppress them.
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Alexander Sosedkin <asosedkin@redhat.com>
Date:   Fri Feb 18 11:05:15 2022 +0100

    bump GNUTLS_MAX_ALGORITHM_NUM / MAX_ALGOS
    
    Fedora 36 LEGACY crypto-policy uses allowlisting format
    and is long enough to blow past the 64 priority string
    elements mark, causing, effectively, priority string truncation.
    
    Signed-off-by: Alexander Sosedkin <asosedkin@redhat.com>

Author: Dimitris Apostolou <dimitris.apostolou@icloud.com>
Date:   Thu Feb 17 17:35:59 2022 +0200

    Fix typos
    
    Signed-off-by: Dimitris Apostolou <dimitris.apostolou@icloud.com>

Author: Zoltan Fridrich <zfridric@redhat.com>
Date:   Thu Feb 17 11:46:29 2022 +0100

    Disable some tests in fips mode
    
    Signed-off-by: Zoltan Fridrich <zfridric@redhat.com>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Thu Feb 10 17:35:13 2022 +0100

    _gnutls_pkcs_raw_{decrypt,encrypt}_data: use public crypto API
    
    These functions previously used the internal crypto
    API (_gnutls_cipher_*) which does not have algorithm checks for FIPS.
    
    This change switches the code to use the public crypto
    API (gnutls_cipher_*) to trigger proper state transitions under FIPS
    mode.
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Thu Feb 10 16:43:08 2022 +0100

    pkcs12: mark MAC generation and verification as FIPS non-approved
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Tue Feb 15 17:38:20 2022 +0100

    gnutls_transport_is_ktls_enabled: fix return value of stub
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Wed Jan 12 10:37:53 2022 +0100

    gnutls_ciphersuite_get: new function to get unique ciphersuite name
    
    The existing method to obtain the name of the currently negotiated TLS
    ciphersuite is as follows:
    
    - call gnutls_cipher_get, gnutls_mac_get, gnutls_kx_get
    - call gnutls_cipher_suite_get_name with the value from the above functions
    
    This process is cumbersome and only works with TLS 1.2 or earlier;
    moreover the returned names are GnuTLS specific.
    
    This change adds a new function gnutls_ciphersuite_get to eliminate
    those limitations.  It returns the "canonical" name of the
    ciphersuite, which is mostly identical to the ones registered in IANA,
    with an exception for compatibility.
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Mon Dec 20 09:28:10 2021 +0100

    tls-fuzzer: prolong timeout for FFDHE tests
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Fri Nov 26 20:03:15 2021 +0100

    .gitlab-ci.yml: prolong timeout for fedora-nettle-minigmp/test
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Fri Nov 26 09:37:58 2021 +0100

    .gitlab-ci.yml: fix nettle installation path
    
    .fedora-nettle/build clones the nettle into "nettle-git" and
    temporarily change the working directory while buidling it.  After
    moving back to the original working directory, the installation path
    should be prefixed with "${PWD}/nettle-git/".
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Tue Feb 1 15:19:52 2022 +0100

    certtool --generate-privkey: update warnings on RSA key sizes
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Thu Jan 27 18:17:43 2022 +0100

    rsa_generate_fips186_4_keypair: accept a few more modulus sizes
    
    While _rsa_generate_fips186_4_keypair was modified to accept modulus
    sizes other than 2048 and 3076, rsa_generate_fips186_4_keypair, which
    calls that function, was not updated to accept such modulus sizes.
    
    Spotted by Alexander Sosedkin.
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Fri Jan 7 11:24:36 2022 +0100

    .gitlab-ci.yml: update Fedora images to Fedora 35
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Seppo Yli-Olli <seppo.yliolli@gmail.com>
Date:   Mon Jan 31 18:32:28 2022 +0200

    Bump libgnutlsxx soname due to ABI break
    
    db_check_entry and db_check_entry now have const parameters
    
    Signed-off-by: Seppo Yli-Olli <seppo.yliolli@gmail.com>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Fri Jan 28 07:49:42 2022 +0100

    configure.ac: make --with-tpm and --with-tpm2 independent
    
    These features are not mutually exclusive, so it doesn't make sense to
    disable the TPM 1.2 support with TPM 2.0 support.
    
    Reported by Jan Palus in:
    https://gitlab.com/gnutls/gnutls/-/issues/1313
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Fri Jan 28 12:50:56 2022 +0100

    gen-getopt.py: avoid struct member name clash with C keywords
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Fri Jan 28 07:55:25 2022 +0100

    tests: tcp_connect: avoid resource leak on error path
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Fri Jan 28 08:48:47 2022 +0100

    README.md: fix versions in build status and add 3.6.x
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: Jan Palus <jpalus@fastmail.com>
Date:   Fri Jan 28 11:07:02 2022 +0100

    ktls: fix _gnutls_ktls_send_control_msg return value
    
    always returned 0 on success while contract mandates to return number of
    bytes sent
    
    Fixes #1314
    
    Signed-off-by: Jan Palus <jpalus@fastmail.com>

Author: Daiki Ueno <ueno@gnu.org>
Date:   Fri Jan 28 06:35:45 2022 +0100

    release-steps: fix markup
    
    Signed-off-by: Daiki Ueno <ueno@gnu.org>

Author: František Krenželok <krenzelok.frantisek@gmail.com>
Date:   Thu Jan 27 13:54:21 2022 +0100

    KTLS: hotfix
    
    fixed: keys will be set only when both sockets were enabled for ktls
    fixed: session->internals.ktls_enabled left uninitialized for non
    ktls-enabled build
