[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[SCM] GNU gnutls branch, master, updated. gnutls_3_1_3-98-g5f9d3a2
|
From: |
Nikos Mavrogiannopoulos |
|
Subject: |
[SCM] GNU gnutls branch, master, updated. gnutls_3_1_3-98-g5f9d3a2 |
|
Date: |
Thu, 08 Nov 2012 22:30:09 +0000 |
This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "GNU gnutls".
http://git.savannah.gnu.org/cgit/gnutls.git/commit/?id=5f9d3a2b2f618e4369d7851b6c0ec0806e5162c2
The branch, master has been updated
via 5f9d3a2b2f618e4369d7851b6c0ec0806e5162c2 (commit)
via d3af4aada3a0f170535a2f90e2ec3121b34b9a85 (commit)
from 3a7a9116a5ac1dd8fdb45ab90b6f86e6fcd10bb8 (commit)
Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.
- Log -----------------------------------------------------------------
commit 5f9d3a2b2f618e4369d7851b6c0ec0806e5162c2
Author: Nikos Mavrogiannopoulos <address@hidden>
Date: Thu Nov 8 23:29:57 2012 +0100
doc updates
commit d3af4aada3a0f170535a2f90e2ec3121b34b9a85
Author: Nikos Mavrogiannopoulos <address@hidden>
Date: Thu Nov 8 23:08:46 2012 +0100
doc update
-----------------------------------------------------------------------
Summary of changes:
doc/cha-cert-auth.texi | 4 +++-
doc/cha-gtls-app.texi | 16 +++++++++++-----
doc/cha-intro-tls.texi | 2 +-
doc/latex/gnutls.bib | 11 ++++++++++-
4 files changed, 25 insertions(+), 8 deletions(-)
diff --git a/doc/cha-cert-auth.texi b/doc/cha-cert-auth.texi
index 168b106..6b9c85d 100644
--- a/doc/cha-cert-auth.texi
+++ b/doc/cha-cert-auth.texi
@@ -498,7 +498,9 @@ provide an alternative public key infrastructure to the
commercial CAs that
are typically used to sign TLS certificates. The DANE protocol takes advantage
of the DNSSEC infrastructure to verify TLS certificates. This can be
in addition to the verification by CA infrastructure or
-could even replace it where DNSSEC is deployed.
+may even replace it where DNSSEC is fully deployed. Note however, that DNSSEC
deployment is
+fairly new and it would be better to use it as an additional verification
+method rather than the only one.
The DANE functionality is provided by the @code{libgnutls-dane} library that
is shipped
with GnuTLS and the function prototypes are in @code{gnutls/dane.h}.
diff --git a/doc/cha-gtls-app.texi b/doc/cha-gtls-app.texi
index 85c758a..b6ad475 100644
--- a/doc/cha-gtls-app.texi
+++ b/doc/cha-gtls-app.texi
@@ -19,6 +19,11 @@
@node Introduction to the library
@section Introduction
+This chapter tries to explain the basic functionality of the current GnuTLS
+library. Note that there may be additional functionality not discussed here
+but included in the library. Checking the header files in
@file{/usr/include/gnutls/}
+and the manpages is recommended.
+
@menu
* General idea::
* Error handling::
@@ -31,16 +36,17 @@
@node General idea
@subsection General idea
-A brief description of how @acronym{GnuTLS} works internally is shown
-at @ref{fig:gnutls-design}. This section may become more clear after
-having read the rest of this section.
+A brief description of how @acronym{GnuTLS} sessions operate is shown
+at @ref{fig:gnutls-design}. This section will become more clear when it
+is completely read.
As shown in the figure, there is a read-only global state that is
initialized once by the global initialization function. This global
structure, among others, contains the memory allocation functions
-used, and structures needed for the @acronym{ASN.1} parser. This
+used, structures needed for the @acronym{ASN.1} parser and depending
+on the system's CPU, pointers to hardware accelerated encryption functions.
This
structure is never modified by any @acronym{GnuTLS} function, except
for the deinitialization function which frees all allocated memory
-and is called after the program has permanently
+and must be called after the program has permanently
finished using @acronym{GnuTLS}.
@float Figure,fig:gnutls-design
diff --git a/doc/cha-intro-tls.texi b/doc/cha-intro-tls.texi
index a83c0f7..9674fb4 100644
--- a/doc/cha-intro-tls.texi
+++ b/doc/cha-intro-tls.texi
@@ -371,7 +371,7 @@ established keys, meaning the server needs to store the
state of established
connections (unless session tickets are used -- @ref{Session tickets}).
Session resumption is an integral part of @acronym{GnuTLS}, and
address@hidden resumption} and @ref{ex:resume-client} illustrate typical
address@hidden resumption}, @ref{ex:resume-client} illustrate typical
uses of it.
@node TLS Extensions
diff --git a/doc/latex/gnutls.bib b/doc/latex/gnutls.bib
index 74a4915..40ac460 100644
--- a/doc/latex/gnutls.bib
+++ b/doc/latex/gnutls.bib
@@ -7,7 +7,16 @@
url = "http://tools.ietf.org/html/draft-ietf-websec-key-pinning-01";
}
address@hidden RFC2246,
address@hidden RFC5764,
+ author = "David McGrew and Eric Rescorla",
+ title = "{Datagram Transport Layer Security (DTLS) Extension to
Establish Keys for the Secure Real-time Transport Protocol (SRTP)}",
+ month = "May",
+ year = "2010",
+ note = "Available from \url{http://www.ietf.org/rfc/rfc5764}";,
+ url = "http://www.ietf.org/rfc/rfc5764 "
+}
+
address@hidden RFC2246 ,
author = "Tim Dierks and Christopher Allen",
title = "{The TLS Protocol Version 1.0}",
month = "January",
hooks/post-receive
--
GNU gnutls
| [Prev in Thread] |
Current Thread |
[Next in Thread] |
- [SCM] GNU gnutls branch, master, updated. gnutls_3_1_3-98-g5f9d3a2,
Nikos Mavrogiannopoulos <=