blob: 59ce6db824482b8fdb82bd34b498a9d416057a6d [file] [log] [blame]
Paul Bakkerb749d682009-01-04 16:08:55 +00001PolarSSL ChangeLog
2
3= Version 0.x released on 2009-01-??
Paul Bakker7a7c78f2009-01-04 18:15:48 +00004 * Migrated XySSL to PolarSSL
5 * Added XTEA symmetric cipher
Paul Bakkerb749d682009-01-04 16:08:55 +00006? * Added Camellia symmetric cipher
Paul Bakkerb749d682009-01-04 16:08:55 +00007? * Fixed dangerous bug that can cause a heap overflow in
8 rsa_pkcs1_decrypt
9
10================================================================
11XySSL ChangeLog
Paul Bakker5121ce52009-01-03 21:22:43 +000012
13= Version 0.9 released on 2008-03-16
14
15 * Added support for ciphersuite: SSL_RSA_AES_128_SHA
16 * Enabled support for large files by default in aescrypt2.c
17 * Preliminary openssl wrapper contributed by David Barrett
18 * Fixed a bug in ssl_write() that caused the same payload to
19 be sent twice in non-blocking mode when send returns EAGAIN
20 * Fixed ssl_parse_client_hello(): session id and challenge must
21 not be swapped in the SSLv2 ClientHello (found by Greg Robson)
22 * Added user-defined callback debug function (Krystian Kolodziej)
23 * Before freeing a certificate, properly zero out all cert. data
24 * Fixed the "mode" parameter so that encryption/decryption are
25 not swapped on PadLock; also fixed compilation on older versions
26 of gcc (bug reported by David Barrett)
27 * Correctly handle the case in padlock_xcryptcbc() when input or
28 ouput data is non-aligned by falling back to the software
29 implementation, as VIA Nehemiah cannot handle non-aligned buffers
30 * Fixed a memory leak in x509parse_crt() which was reported by Greg
31 Robson-Garth; some x509write.c fixes by Pascal Vizeli, thanks to
32 Matthew Page who reported several bugs
33 * Fixed x509_get_ext() to accept some rare certificates which have
34 an INTEGER instead of a BOOLEAN for BasicConstraints::cA.
35 * Added support on the client side for the TLS "hostname" extension
36 (patch contributed by David Patino)
37 * Make x509parse_verify() return BADCERT_CN_MISMATCH when an empty
38 string is passed as the CN (bug reported by spoofy)
39 * Added an option to enable/disable the BN assembly code
40 * Updated rsa_check_privkey() to verify that (D*E) = 1 % (P-1)*(Q-1)
41 * Disabled obsolete hash functions by default (MD2, MD4); updated
42 selftest and benchmark to not test ciphers that have been disabled
43 * Updated x509parse_cert_info() to correctly display byte 0 of the
44 serial number, setup correct server port in the ssl client example
45 * Fixed a critical denial-of-service with X.509 cert. verification:
46 peer may cause xyssl to loop indefinitely by sending a certificate
47 for which the RSA signature check fails (bug reported by Benoit)
48 * Added test vectors for: AES-CBC, AES-CFB, DES-CBC and 3DES-CBC,
49 HMAC-MD5, HMAC-SHA1, HMAC-SHA-256, HMAC-SHA-384, and HMAC-SHA-512
50 * Fixed HMAC-SHA-384 and HMAC-SHA-512 (thanks to Josh Sinykin)
51 * Modified ssl_parse_client_key_exchange() to protect against
52 Daniel Bleichenbacher attack on PKCS#1 v1.5 padding, as well
53 as the Klima-Pokorny-Rosa extension of Bleichenbacher's attack
54 * Updated rsa_gen_key() so that ctx->N is always nbits in size
55 * Fixed assembly PPC compilation errors on Mac OS X, thanks to
56 David Barrett and Dusan Semen
57
58= Version 0.8 released on 2007-10-20
59
60 * Modified the HMAC functions to handle keys larger
61 than 64 bytes, thanks to Stephane Desneux and gary ng
62 * Fixed ssl_read_record() to properly update the handshake
63 message digests, which fixes IE6/IE7 client authentication
64 * Cleaned up the XYSSL* #defines, suggested by Azriel Fasten
65 * Fixed net_recv(), thanks to Lorenz Schori and Egon Kocjan
66 * Added user-defined callbacks for handling I/O and sessions
67 * Added lots of debugging output in the SSL/TLS functions
68 * Added preliminary X.509 cert. writing by Pascal Vizeli
69 * Added preliminary support for the VIA PadLock routines
70 * Added AES-CFB mode of operation, contributed by chmike
71 * Added an SSL/TLS stress testing program (ssl_test.c)
72 * Updated the RSA PKCS#1 code to allow choosing between
73 RSA_PUBLIC and RSA_PRIVATE, as suggested by David Barrett
74 * Updated ssl_read() to skip 0-length records from OpenSSL
75 * Fixed the make install target to comply with *BSD make
76 * Fixed a bug in mpi_read_binary() on 64-bit platforms
77 * mpi_is_prime() speedups, thanks to Kevin McLaughlin
78 * Fixed a long standing memory leak in mpi_is_prime()
79 * Replaced realloc with malloc in mpi_grow(), and set
80 the sign of zero as positive in mpi_init() (reported
81 by Jonathan M. McCune)
82
83= Version 0.7 released on 2007-07-07
84
85 * Added support for the MicroBlaze soft-core processor
86 * Fixed a bug in ssl_tls.c which sometimes prevented SSL
87 connections from being established with non-blocking I/O
88 * Fixed a couple bugs in the VS6 and UNIX Makefiles
89 * Fixed the "PIC register ebx clobbered in asm" bug
90 * Added HMAC starts/update/finish support functions
91 * Added the SHA-224, SHA-384 and SHA-512 hash functions
92 * Fixed the net_set_*block routines, thanks to Andreas
93 * Added a few demonstration programs: md5sum, sha1sum,
94 dh_client, dh_server, rsa_genkey, rsa_sign, rsa_verify
95 * Added new bignum import and export helper functions
96 * Rewrote README.txt in program/ssl/ca to better explain
97 how to create a test PKI
98
99= Version 0.6 released on 2007-04-01
100
101 * Ciphers used in SSL/TLS can now be disabled at compile
102 time, to reduce the memory footprint on embedded systems
103 * Added multiply assembly code for the TriCore and modified
104 havege_struct for this processor, thanks to David Patiño
105 * Added multiply assembly code for 64-bit PowerPCs,
106 thanks to Peking University and the OSU Open Source Lab
107 * Added experimental support of Quantum Cryptography
108 * Added support for autoconf, contributed by Arnaud Cornet
109 * Fixed "long long" compilation issues on IA-64 and PPC64
110 * Fixed a bug introduced in xyssl-0.5/timing.c: hardclock
111 was not being correctly defined on ARM and MIPS
112
113= Version 0.5 released on 2007-03-01
114
115 * Added multiply assembly code for SPARC and Alpha
116 * Added (beta) support for non-blocking I/O operations
117 * Implemented session resuming and client authentication
118 * Fixed some portability issues on WinCE, MINIX 3, Plan9
119 (thanks to Benjamin Newman), HP-UX, FreeBSD and Solaris
120 * Improved the performance of the EDH key exchange
121 * Fixed a bug that caused valid packets with a payload
122 size of 16384 bytes to be rejected
123
124= Version 0.4 released on 2007-02-01
125
126 * Added support for Ephemeral Diffie-Hellman key exchange
127 * Added multiply asm code for SSE2, ARM, PPC, MIPS and M68K
128 * Various improvement to the modular exponentiation code
129 * Rewrote the headers to generate the API docs with doxygen
130 * Fixed a bug in ssl_encrypt_buf (incorrect padding was
131 generated) and in ssl_parse_client_hello (max. client
132 version was not properly set), thanks to Didier Rebeix
133 * Fixed another bug in ssl_parse_client_hello: clients with
134 cipherlists larger than 96 bytes were incorrectly rejected
135 * Fixed a couple memory leak in x509_read.c
136
137= Version 0.3 released on 2007-01-01
138
139 * Added server-side SSLv3 and TLSv1.0 support
140 * Multiple fixes to enhance the compatibility with g++,
141 thanks to Xosé Antón Otero Ferreira
142 * Fixed a bug in the CBC code, thanks to dowst; also,
143 the bignum code is no longer dependant on long long
144 * Updated rsa_pkcs1_sign to handle arbitrary large inputs
145 * Updated timing.c for improved compatibility with i386
146 and 486 processors, thanks to Arnaud Cornet
147
148= Version 0.2 released on 2006-12-01
149
150 * Updated timing.c to support ARM and MIPS arch
151 * Updated the MPI code to support 8086 on MSVC 1.5
152 * Added the copyright notice at the top of havege.h
153 * Fixed a bug in sha2_hmac, thanks to newsoft/Wenfang Zhang
154 * Fixed a bug reported by Adrian Rüegsegger in x509_read_key
155 * Fixed a bug reported by Torsten Lauter in ssl_read_record
156 * Fixed a bug in rsa_check_privkey that would wrongly cause
157 valid RSA keys to be dismissed (thanks to oldwolf)
158 * Fixed a bug in mpi_is_prime that caused some primes to fail
159 the Miller-Rabin primality test
160
161 I'd also like to thank Younès Hafri for the CRUX linux port,
162 Khalil Petit who added XySSL into pkgsrc and Arnaud Cornet
163 who maintains the Debian package :-)
164
165= Version 0.1 released on 2006-11-01
166