3 * proxy/gnome: Fix SOCKS to work when no http proxy is set
5 * Updated translations:
10 * gnutls: added /etc/ssl/ca-bundle.pem to the list of files to check
11 for to use as the default CA list. (This is what openSUSE uses.)
12 (#673944, Federico Mena Quintero)
14 * Updated translations:
15 Catalan (Valencian), Marathi, Odia, Persian
19 * New/updated translations:
20 Hindi, Japanese, Khmer, Latvian, Malayalam
24 * Updated translations:
25 British English, Catalan, Finnish, Lithuanian, Portuguese,
30 * gnutls: Fixed a linking problem on some platforms when PKCS#11 is
31 enabled. (#670956, Kalev Lember)
33 * Updated translations:
34 Assamese, Basque, Belarusian, Brazilian Portuguese, Danish,
35 Estonian, French, German, Hungarian, Italian, Korean, Polish,
40 * gnutls: Fixed a TLS handshaking bug that in particular caused lots
41 of crashes in epiphany. (#658771)
43 * tls/tests: Fixed a bug in the pkcs11-pin test that could cause it
46 * Updated translations:
47 Bulgarian, Chinese (traditional), Czech, Japanese,
48 Norwegian bokmål, Turkish, Vietnamese
53 * Support gnutls built against nettle instead of gcrypt
56 * Implement TLS session caching for GTlsServerConnection
59 * tls/tests: Explicitly request the memory GSettings backend, to
60 avoid warnings in partial jhbuild environments
62 * proxy/gnome: Update to use GInetAddressMask
64 * Updated translations:
65 Chinese (simplified), Hebrew, Norwegian bokmål, Slovenian,
71 * Added gnutls-pkcs11 backend, which uses gnutls 2.12.8 and
72 p11-kit (a new optional dependency) to provide access to
73 PKCS#11 tokens. At the moment, this is only enabled if you
74 set GIO_USE_TLS=gnutls-pkcs11 in the environment. (Stef,
77 * GTlsCertificateGnutls can now read unencrypted PKCS#8 keys
78 (which show "BEGIN PRIVATE KEY" in PEM form) in addition to
79 the previously-supported PKCS#1 keys ("BEGIN RSA PRIVATE
82 * Updated translations:
83 Galician, German, Lithuanian, Norwegian bokmål, Spanish,
89 * Bumped required GNUTLS version to 2.11.0 and updated
90 code for that (Stef, #656903)
92 * Fixed a crash when passing a NULL GCancellable to
93 g_tls_connection_close_async() (Dan, #659786) or a NULL
94 GError to g_tls_file_database_new().
96 * Fixed handling of self-signed CA certificates in
97 GTlsDatabaseGnutls (Dan, #660508)
99 * Added another G_TLS_ERROR_NOT_TLS (aka "dumb server, try
100 falling back from TLS to SSLv3") case, when the handshake
101 completes but then packets after that don't decrypt
102 correctly. (Dan, #662104)
104 * Made sure that GTlsConnection:peer-certificate and
105 :peer-certificate-errors get set even when the peer
106 certificate is rejected. (Dan)
109 * Fixed ignore_hosts handling (Dan, #655581)
111 * Fixed configure check so that "--without-gnome-proxy" works.
112 (Alexandre Rostovtsev, #662203)
114 * Fixed tests to only build the gnome proxy test if we're
115 building the gnome proxy. (Kalev Lember, #662085)
122 * Updated translation:
127 * New/updated translations:
128 Belarusian, Tamil, Japanese
130 * gnutls: Fixed a problem when linking against GNUTLS 3.0, where
131 connections would sometimes return the error "The TLS connection
132 was non-properly terminated". (Dan Winship, #659233)
134 * gnutls: Plugged a few memory leaks (Dan Winship)
138 * gnutls: fixed two rehandshaking bugs; one in which a client
139 would erroneously report an error after successfully rehandshaking
140 (Igor Makarov, #653645), and one where initiating an asynchronous
141 rehandshake on the server side would send illegal packets and
142 cause the client to disconnect (Dan Winship).
144 * gnutls: made GTlsDatabaseGnutls and GTlsFileDatabaseGnutls
145 properly cancellable (Stef Walter)
147 * gnutls: fixed the client-side session cache to not share session
148 IDs between different virtual hosts on the same IP address, which
149 caused problems with some servers. (Dan Winship, #581342)
151 * tls: Fixed up the tls test program so it can be run from "make
159 * gnutls: implement GTlsDatabase (Stef Walter, #636572)
161 * gnutls: override minimum key length, to allow connecting to HTTP
162 servers with very small keys (eg, on some embedded devices). (Dan
165 * gnutls: use %COMPAT mode, which makes GNUTLS behave more like
166 OpenSSL/NSS/Windows in a few ways, making it work with certain
167 broken HTTP servers. (Dan Winship, part of #581342)
169 * gnutls: fixed a crash when passed a NULL GError (Dan Winship)
173 * Optimized GDBus usage in PACRunner (davidz)
175 * Fixed a race condition in GProxyResolverGnome (davidz)
177 * Changed configure to --enable-maintainer-mode by default,
181 Belarusian, Catalan (Valencian), Esperanto, Finnish,
186 * Fixed some leaks in the gnutls backend
193 * New/updated translations:
194 Basque, Brazilian Portuguese, Chinese (Traditional), Danish,
195 Hindi, Kannada, Marathi, Uyghur
199 * Added a new proxy backend, GProxyResolverGnome, that uses
200 GSettings and the network proxy schemas from
201 gsettings-desktop-schemas to provide proxy information (and using
202 a new D-Bus service provided by the libproxy backend to provide
205 If you are building glib-networking in a GNOME 3.0 environment,
206 you should make sure that gsettings-desktop-schemas.pc is
207 available when building, so that this backend gets built.
210 Assamese, Latvian, Oriya, Serbian
214 * Fixed broken libtool check in autogen.sh that failed for libtool
217 * New/updated translations:
218 Bengali (India), Catalan, Chinese (Simplified), Chinese
219 (Traditional), Czech, Dutch, Estonian, Galician, German,
220 Greek, Gujarati, Hebrew, Indonesian, Italian, Korean,
221 Norwegian (Bokmål), Polish, Punjabi, Slovenian, Spanish,
222 Swedish, Uyghur, Ukranian
226 * Fixed configure script to actually error out if installed glib
227 version is too old (Emilio Pozuelo Monfort)
229 * gnutls: updated GTlsClientConnectionGnutls for :accepted-cas type
231 * gnutls: fixed an uninitialized variable (Dan Winship)
235 * gnutls: finish implementing GTlsRehandshakeMode, which was present
236 but non-functional in 2.27.4
237 * gnutls: updates for glib TLS API changes
238 * gnutls: fix some async bugs that caused the main loop to spin
239 * gnutls: implement a client-side session cache, to speed up
242 * Compile with gcc warnings by default
246 * GNUTLS-based implementation of GTlsBackend
251 * No changes, just a version bump
256 * Initial release, with libproxy-based GProxyResolver