blob: 97bde335a0a8ca02c97ebdc9bd1f64bed857f75c [file] [log] [blame]
Paul Bakkerb749d682009-01-04 16:08:55 +00001PolarSSL ChangeLog
2
Paul Bakker4593aea2009-02-09 22:32:35 +00003= Version 0.11.0 released on 2009-XXXX
Paul Bakker4e0d7ca2009-01-29 22:24:33 +00004 * Fixed a bug in mpi_gcd() so that it also works when both
5 input numbers are even and added testcases to check
6 (found by Pierre Habouzit)
Paul Bakker4593aea2009-02-09 22:32:35 +00007 * Added support for SHA-224, SHA-256, SHA-384 and SHA-512
8 one way hash functions with the PKCS#1 v1.5 signing and
9 verification.
Paul Bakkerebb2beb2009-03-28 17:52:44 +000010 * Fixed minor bug regarding mpi_gcd located within the
11 POLARSSL_GENPRIME block.
Paul Bakker4e0d7ca2009-01-29 22:24:33 +000012
Paul Bakker71cd2c62009-01-15 19:45:54 +000013= Version 0.10.0 released on 2009-01-12
Paul Bakker7a7c78f2009-01-04 18:15:48 +000014 * Migrated XySSL to PolarSSL
15 * Added XTEA symmetric cipher
Paul Bakker38119b12009-01-10 23:31:23 +000016 * Added Camellia symmetric cipher
Paul Bakker72989ff2009-01-11 20:26:11 +000017 * Added support for ciphersuites: SSL_RSA_CAMELLIA_128_SHA,
18 SSL_RSA_CAMELLIA_256_SHA and SSL_EDH_RSA_CAMELLIA_256_SHA
Paul Bakkerf1306182009-01-12 21:50:17 +000019 * Fixed dangerous bug that can cause a heap overflow in
20 rsa_pkcs1_decrypt (found by Christophe Devine)
Paul Bakkerb749d682009-01-04 16:08:55 +000021
22================================================================
23XySSL ChangeLog
Paul Bakker5121ce52009-01-03 21:22:43 +000024
25= Version 0.9 released on 2008-03-16
26
27 * Added support for ciphersuite: SSL_RSA_AES_128_SHA
28 * Enabled support for large files by default in aescrypt2.c
29 * Preliminary openssl wrapper contributed by David Barrett
30 * Fixed a bug in ssl_write() that caused the same payload to
31 be sent twice in non-blocking mode when send returns EAGAIN
32 * Fixed ssl_parse_client_hello(): session id and challenge must
33 not be swapped in the SSLv2 ClientHello (found by Greg Robson)
34 * Added user-defined callback debug function (Krystian Kolodziej)
35 * Before freeing a certificate, properly zero out all cert. data
36 * Fixed the "mode" parameter so that encryption/decryption are
37 not swapped on PadLock; also fixed compilation on older versions
38 of gcc (bug reported by David Barrett)
39 * Correctly handle the case in padlock_xcryptcbc() when input or
40 ouput data is non-aligned by falling back to the software
41 implementation, as VIA Nehemiah cannot handle non-aligned buffers
42 * Fixed a memory leak in x509parse_crt() which was reported by Greg
43 Robson-Garth; some x509write.c fixes by Pascal Vizeli, thanks to
44 Matthew Page who reported several bugs
45 * Fixed x509_get_ext() to accept some rare certificates which have
46 an INTEGER instead of a BOOLEAN for BasicConstraints::cA.
47 * Added support on the client side for the TLS "hostname" extension
48 (patch contributed by David Patino)
49 * Make x509parse_verify() return BADCERT_CN_MISMATCH when an empty
50 string is passed as the CN (bug reported by spoofy)
51 * Added an option to enable/disable the BN assembly code
52 * Updated rsa_check_privkey() to verify that (D*E) = 1 % (P-1)*(Q-1)
53 * Disabled obsolete hash functions by default (MD2, MD4); updated
54 selftest and benchmark to not test ciphers that have been disabled
55 * Updated x509parse_cert_info() to correctly display byte 0 of the
56 serial number, setup correct server port in the ssl client example
57 * Fixed a critical denial-of-service with X.509 cert. verification:
58 peer may cause xyssl to loop indefinitely by sending a certificate
59 for which the RSA signature check fails (bug reported by Benoit)
60 * Added test vectors for: AES-CBC, AES-CFB, DES-CBC and 3DES-CBC,
61 HMAC-MD5, HMAC-SHA1, HMAC-SHA-256, HMAC-SHA-384, and HMAC-SHA-512
62 * Fixed HMAC-SHA-384 and HMAC-SHA-512 (thanks to Josh Sinykin)
63 * Modified ssl_parse_client_key_exchange() to protect against
64 Daniel Bleichenbacher attack on PKCS#1 v1.5 padding, as well
65 as the Klima-Pokorny-Rosa extension of Bleichenbacher's attack
66 * Updated rsa_gen_key() so that ctx->N is always nbits in size
67 * Fixed assembly PPC compilation errors on Mac OS X, thanks to
68 David Barrett and Dusan Semen
69
70= Version 0.8 released on 2007-10-20
71
72 * Modified the HMAC functions to handle keys larger
73 than 64 bytes, thanks to Stephane Desneux and gary ng
74 * Fixed ssl_read_record() to properly update the handshake
75 message digests, which fixes IE6/IE7 client authentication
76 * Cleaned up the XYSSL* #defines, suggested by Azriel Fasten
77 * Fixed net_recv(), thanks to Lorenz Schori and Egon Kocjan
78 * Added user-defined callbacks for handling I/O and sessions
79 * Added lots of debugging output in the SSL/TLS functions
80 * Added preliminary X.509 cert. writing by Pascal Vizeli
81 * Added preliminary support for the VIA PadLock routines
82 * Added AES-CFB mode of operation, contributed by chmike
83 * Added an SSL/TLS stress testing program (ssl_test.c)
84 * Updated the RSA PKCS#1 code to allow choosing between
85 RSA_PUBLIC and RSA_PRIVATE, as suggested by David Barrett
86 * Updated ssl_read() to skip 0-length records from OpenSSL
87 * Fixed the make install target to comply with *BSD make
88 * Fixed a bug in mpi_read_binary() on 64-bit platforms
89 * mpi_is_prime() speedups, thanks to Kevin McLaughlin
90 * Fixed a long standing memory leak in mpi_is_prime()
91 * Replaced realloc with malloc in mpi_grow(), and set
92 the sign of zero as positive in mpi_init() (reported
93 by Jonathan M. McCune)
94
95= Version 0.7 released on 2007-07-07
96
97 * Added support for the MicroBlaze soft-core processor
98 * Fixed a bug in ssl_tls.c which sometimes prevented SSL
99 connections from being established with non-blocking I/O
100 * Fixed a couple bugs in the VS6 and UNIX Makefiles
101 * Fixed the "PIC register ebx clobbered in asm" bug
102 * Added HMAC starts/update/finish support functions
103 * Added the SHA-224, SHA-384 and SHA-512 hash functions
104 * Fixed the net_set_*block routines, thanks to Andreas
105 * Added a few demonstration programs: md5sum, sha1sum,
106 dh_client, dh_server, rsa_genkey, rsa_sign, rsa_verify
107 * Added new bignum import and export helper functions
108 * Rewrote README.txt in program/ssl/ca to better explain
109 how to create a test PKI
110
111= Version 0.6 released on 2007-04-01
112
113 * Ciphers used in SSL/TLS can now be disabled at compile
114 time, to reduce the memory footprint on embedded systems
115 * Added multiply assembly code for the TriCore and modified
116 havege_struct for this processor, thanks to David Patiño
117 * Added multiply assembly code for 64-bit PowerPCs,
118 thanks to Peking University and the OSU Open Source Lab
119 * Added experimental support of Quantum Cryptography
120 * Added support for autoconf, contributed by Arnaud Cornet
121 * Fixed "long long" compilation issues on IA-64 and PPC64
122 * Fixed a bug introduced in xyssl-0.5/timing.c: hardclock
123 was not being correctly defined on ARM and MIPS
124
125= Version 0.5 released on 2007-03-01
126
127 * Added multiply assembly code for SPARC and Alpha
128 * Added (beta) support for non-blocking I/O operations
129 * Implemented session resuming and client authentication
130 * Fixed some portability issues on WinCE, MINIX 3, Plan9
131 (thanks to Benjamin Newman), HP-UX, FreeBSD and Solaris
132 * Improved the performance of the EDH key exchange
133 * Fixed a bug that caused valid packets with a payload
134 size of 16384 bytes to be rejected
135
136= Version 0.4 released on 2007-02-01
137
138 * Added support for Ephemeral Diffie-Hellman key exchange
139 * Added multiply asm code for SSE2, ARM, PPC, MIPS and M68K
140 * Various improvement to the modular exponentiation code
141 * Rewrote the headers to generate the API docs with doxygen
142 * Fixed a bug in ssl_encrypt_buf (incorrect padding was
143 generated) and in ssl_parse_client_hello (max. client
144 version was not properly set), thanks to Didier Rebeix
145 * Fixed another bug in ssl_parse_client_hello: clients with
146 cipherlists larger than 96 bytes were incorrectly rejected
147 * Fixed a couple memory leak in x509_read.c
148
149= Version 0.3 released on 2007-01-01
150
151 * Added server-side SSLv3 and TLSv1.0 support
152 * Multiple fixes to enhance the compatibility with g++,
153 thanks to Xosé Antón Otero Ferreira
154 * Fixed a bug in the CBC code, thanks to dowst; also,
155 the bignum code is no longer dependant on long long
156 * Updated rsa_pkcs1_sign to handle arbitrary large inputs
157 * Updated timing.c for improved compatibility with i386
158 and 486 processors, thanks to Arnaud Cornet
159
160= Version 0.2 released on 2006-12-01
161
162 * Updated timing.c to support ARM and MIPS arch
163 * Updated the MPI code to support 8086 on MSVC 1.5
164 * Added the copyright notice at the top of havege.h
165 * Fixed a bug in sha2_hmac, thanks to newsoft/Wenfang Zhang
166 * Fixed a bug reported by Adrian Rüegsegger in x509_read_key
167 * Fixed a bug reported by Torsten Lauter in ssl_read_record
168 * Fixed a bug in rsa_check_privkey that would wrongly cause
169 valid RSA keys to be dismissed (thanks to oldwolf)
170 * Fixed a bug in mpi_is_prime that caused some primes to fail
171 the Miller-Rabin primality test
172
173 I'd also like to thank Younès Hafri for the CRUX linux port,
174 Khalil Petit who added XySSL into pkgsrc and Arnaud Cornet
175 who maintains the Debian package :-)
176
177= Version 0.1 released on 2006-11-01
178