---
- branch: MAIN
  date: Thu Jan 16 10:14:09 UTC 2014
  files:
  - new: '1.137'
    old: '1.136'
    path: pkgsrc/security/gnutls/Makefile
    pathrev: pkgsrc/security/gnutls/Makefile@1.137
    type: modified
  - new: '1.50'
    old: '1.49'
    path: pkgsrc/security/gnutls/PLIST
    pathrev: pkgsrc/security/gnutls/PLIST@1.50
    type: modified
  - new: '1.101'
    old: '1.100'
    path: pkgsrc/security/gnutls/distinfo
    pathrev: pkgsrc/security/gnutls/distinfo@1.101
    type: modified
  - new: '1.3'
    old: '1.2'
    path: pkgsrc/security/gnutls/libgnutls-config.mk
    pathrev: pkgsrc/security/gnutls/libgnutls-config.mk@1.3
    type: modified
  - new: '0'
    old: '1.1'
    path: pkgsrc/security/gnutls/patches/patch-configure
    pathrev: pkgsrc/security/gnutls/patches/patch-configure@0
    type: deleted
  - new: '0'
    old: '1.2'
    path: pkgsrc/security/gnutls/patches/patch-lib_nettle_egd.c
    pathrev: pkgsrc/security/gnutls/patches/patch-lib_nettle_egd.c@0
    type: deleted
  - new: '1.1'
    old: '0'
    path: pkgsrc/security/gnutls/patches/patch-tests_Makefile.in
    pathrev: pkgsrc/security/gnutls/patches/patch-tests_Makefile.in@1.1
    type: added
  - new: '1.1'
    old: '0'
    path: pkgsrc/security/gnutls/patches/patch-tests_openpgp-certs_Makefile.in
    pathrev: pkgsrc/security/gnutls/patches/patch-tests_openpgp-certs_Makefile.in@1.1
    type: added
  id: 20140116T101409Z.56fa4c3bb48c639043edc30a37c774368654c7c7
  log: |
    Update to 3.2.8.1.

    Changes in 3.2.8.1:
    Note, that I've realized that this release has issues with the
    assembly files in win32 and macosx systems. In these systems
    use gnutls 3.2.8.1.

    3.2.8:

    * Version 3.2.8 (released 2013-12-20)

    ** libgnutls: Updated code for AES-NI. That prevents an uninitialized
    variable complaint from valgrind.

    ** libgnutls: Enforce a maximum size for DH primes.

    ** libgnutls: Added SSSE3 optimized SHA1, and SHA256, using Andy Polyakov's
    code.

    ** libgnutls: Added SSSE3 optimized AES using Mike Hamburg's code.

    ** libgnutls: It only links to librt if the required functions are
    not present in libc. This also prevents an indirect linking to libpthread.

    ** libgnutls: Fixed issue with gnulib strerror replacement by adding
    the strerror gnulib module.

    ** libgnutls: The time provided in the TLS random values is only precise
    on its first 3 bytes. That prevents leakage of the precise system
    time (at least on the client side when only few connections are
    done on a single server).

    ** certtool: The --verify option will use the system CAs if the
    load-ca-certificate option is not provided.

    ** configure: Added option --with-default-blacklist-file to allow
    specifying a certificate blacklist file.

    ** configure: Added --disable-non-suiteb-curves option. This option
    restricts the supported curves to SuiteB curves.

    ** API and ABI modifications:
    gnutls_record_check_corked: Added
  module: pkgsrc
  subject: 'CVS commit: pkgsrc/security/gnutls'
  unixtime: '1389867249'
  user: wiz