---
- branch: MAIN
  date: Fri Dec  6 14:00:09 UTC 2019
  files:
  - new: '1.204'
    old: '1.203'
    path: pkgsrc/security/gnutls/Makefile
    pathrev: pkgsrc/security/gnutls/Makefile@1.204
    type: modified
  - new: '1.141'
    old: '1.140'
    path: pkgsrc/security/gnutls/distinfo
    pathrev: pkgsrc/security/gnutls/distinfo@1.141
    type: modified
  - new: '0'
    old: '1.9'
    path: pkgsrc/security/gnutls/patches/patch-lib_Makefile.in
    pathrev: pkgsrc/security/gnutls/patches/patch-lib_Makefile.in@0
    type: deleted
  - new: '1.3'
    old: '1.2'
    path: pkgsrc/security/gnutls/patches/patch-src_libopts_autoopts_options.h
    pathrev: pkgsrc/security/gnutls/patches/patch-src_libopts_autoopts_options.h@1.3
    type: modified
  - new: '1.3'
    old: '1.2'
    path: pkgsrc/security/gnutls/patches/patch-src_libopts_compat_compat.h
    pathrev: pkgsrc/security/gnutls/patches/patch-src_libopts_compat_compat.h@1.3
    type: modified
  - new: '1.3'
    old: '1.2'
    path: pkgsrc/security/gnutls/patches/patch-src_libopts_makeshell.c
    pathrev: pkgsrc/security/gnutls/patches/patch-src_libopts_makeshell.c@1.3
    type: modified
  - new: '1.3'
    old: '1.2'
    path: pkgsrc/security/gnutls/patches/patch-src_libopts_proto.h
    pathrev: pkgsrc/security/gnutls/patches/patch-src_libopts_proto.h@1.3
    type: modified
  - new: '1.2'
    old: '1.1'
    path: pkgsrc/security/gnutls/patches/patch-src_libopts_libopts.c
    pathrev: pkgsrc/security/gnutls/patches/patch-src_libopts_libopts.c@1.2
    type: modified
  id: 20191206T140009Z.13ee6e4d415fa6189284c897f32d0879031a9ca5
  log: |
    gnutls: Update to 3.6.11.1

    Not sure of 3.6.11.1's specific changes - possibly fixing an incorrectly
    generated tarball?

    These changes from apply:

    * Version 3.6.11 (released 2019-12-01)

    ** libgnutls: Use KERN_ARND for the system random number generator on NetBSD.
       This syscall provides an endless stream of random numbers from the kernel's
       ChaCha20-based random number generator, without blocking or requiring an open file
       descriptor.

    ** libgnutls: Corrected issue with TLS 1.2 session ticket handling as client
       during resumption (#841).

    ** libgnutls: gnutls_base64_decode2() succeeds decoding the empty string to
       the empty string. This is a behavioral change of the API but it conforms
       to the RFC4648 expectations (#834).

    ** libgnutls: Fixed AES-CFB8 implementation, when input is shorter than
       the block size. Fix backported from nettle.

    ** certtool: CRL distribution points will be set in CA certificates even when
       non self-signed (#765).

    ** gnutls-cli/serv: added raw public-key handling capabilities (RFC7250).
       Key material can be set via the --rawpkkeyfile and --rawpkfile flags.

    ** API and ABI modifications:
    No changes since last version.
  module: pkgsrc
  subject: 'CVS commit: pkgsrc/security/gnutls'
  unixtime: '1575640809'
  user: nia