12008-06-26  Love Hörnquist Åstrand  <lha@kth.se>
2
3	* ui.c: Send newline from use to stderr, just like the
4	prompt. From Ted Percival.
5
62008-05-20  Love Hörnquist Åstrand  <lha@kth.se>
7
8	* rand-fortuna.c: If we forked, force a reseed again. Add the pid
9	as part of the reseed().
10
112008-04-29  Björn Sandell <biorn@chalmers.se>
12
13	* des.h: Add DES_set_key_unchecked
14
15	* version-script.map: Export DES_set_key_unchecked
16
172008-04-29  Love Hörnquist Åstrand  <lha@it.su.se>
18
19	* evp.c: EVP_MD_CTX_init already implemented.
20
212008-04-28  Love Hörnquist Åstrand  <lha@it.su.se>
22
23	* evp.[ch]: deprecate functions that are needed for exported
24	EVP_MD_CTX.
25
26	* evp.h: Internalize hc_EVP_MD_CTX.
27
28	* evp.c: Internalize hc_EVP_MD_CTX.
29
30	* mdtest.c: Use EVP_MD_CTX_create()/EVP_MD_CTX_destroy().
31
32	* test_cipher.c: unbreak des-test
33
34	* evp.c: Fixup key parity before going ahead and using the key.
35
36	* evp.c: use DES_set_key_unchecked().
37
38	* des.c: Remove inifinite loop in DES_set_key().
39
402008-04-27  Love Hörnquist Åstrand  <lha@it.su.se>
41
42	* des.c: Document missing functions, add DES_check_key_parity().
43
44	* des.h: Add DES_check_key_parity, deprecate DES_set_key.
45
46	* version-script.map: Export DES_check_key_parity.
47
48	* des.h: DES_set_odd_parity "returns" void.
49
50	* rand.c: Drop const warnings.
51
52	* des.h: Sort options.
53
542008-04-18  Love Hörnquist Åstrand  <lha@it.su.se>
55
56	* pkcs5.c: Document PKCS5_PBKDF2_HMAC_SHA1.
57
58	* des.c: DES is withdrawn.
59
60	* des.c: Document using doxygen.
61
62	* des.c: History of DES.
63
64	* doxygen.c: History of hcrypto.
65
66	* test_rand.c: do a head vs tail test on the random buffer.
67
68	* test_crypto.in: Use --file to test_rand.
69
70	* rand.c: Document, implement RAND_set_rand_engine().
71
72	* doxygen.c: Add reference to DES, more quick links.
73
74	* rnd_keys.c: Reimplement using RAND_ interface.
75
76	* des.h: Undeprecate DES_new_random_key.
77
78	* des.c: Add documentation.
79
802008-04-15  Love Hörnquist Åstrand  <lha@it.su.se>
81
82	* camellia-ntt.h: Move the typedef u<num> to camellia-ntt.h header
83	file.  Use u32 to define KEY_TABLE_TYPE, avoids warning on
84	platfors where u32 is not unsigned int.
85
86	* camellia-ntt.c: Move the typedef u<num> to camellia-ntt.h
87	header file.
88
89	* camellia.h: Drop need to camellia-ntt.h by including some more
90	defines.
91
922008-04-11  Love Hörnquist Åstrand  <lha@it.su.se>
93
94	* rnd_keys.c: deprecated.
95
96	* des.h: c++ wrappers + deprecated.
97
98	* aes.h: c++ wrappers
99
100	* des.h: c++ wrappers + deprecated
101
102	* rnd_keys.c: Use matching prototypes, prompted by bug report by
103	David Rosenstrauch.
104
1052008-03-19  Love Hörnquist Åstrand  <lha@it.su.se>
106
107	* camellia.h: Drop unused defined that originates from aes.
108
1092008-01-11  Love Hörnquist Åstrand  <lha@it.su.se>
110
111	* Makefile.am: Add extra files missing from dist.
112
1132007-12-30  Love Hörnquist Åstrand  <lha@it.su.se>
114
115	* rsa.c: ENGINE_get_default_RSA can return NULL.
116
117	* dh.c: more doxygen.
118
1192007-12-28  Love Hörnquist Åstrand  <lha@it.su.se>
120
121	* evp.c: Add last of the doxygen documentation for functions in
122	this module.
123
124	* evp.c: complete the EVP_MD functions doxygen.
125
1262007-12-11  Love Hörnquist Åstrand  <lha@it.su.se>
127
128	* version-script.map: export RSA_gmp_method.
129
130	* doxygen.c: More documentation.
131
132	* rsa.h: add RSA_gmp_method
133
134	* rsa-gmp.c: RSA implementation written using GMP.
135
136	* test_dh.c: Test of DH by Matthias Koenig.
137
1382007-12-09  Love Hörnquist Åstrand  <lha@it.su.se>
139
140	* bn.h (BN_is_negative): make argument const.
141
1422007-12-07  Love Hörnquist Åstrand  <lha@it.su.se>
143
144	* rand.c: Can't call getpwuid(getuid()) at all since that causes
145	recursive lookups. Pointed out by Hai Zaar.
146
1472007-08-16  Love Hörnquist Åstrand  <lha@it.su.se>
148
149	* test_cipher.c: Use test from camellia samples.
150
151	* version-script.map: Export camellia.
152
153	* test_cipher.c: Make camellia-128-cbc tests pass.
154
1552007-08-07  Love Hörnquist Åstrand  <lha@it.su.se>
156
157	* test_cipher.c: Sprinkle EVP cipher names.
158
1592007-07-30  David Love  <fx@gnu.org>
160
161	* camellia-ntt.c: Include <krb5-types.h>
162
1632007-07-24  Love Hörnquist Åstrand  <lha@it.su.se>
164
165	* Add Camellia.
166
1672007-07-10  Love Hörnquist Åstrand  <lha@it.su.se>
168
169	* Makefile.am: New library version.
170
1712007-06-30  Love Hörnquist Åstrand  <lha@it.su.se>
172
173	* hmac.c (HMAC_Init_ex): also zero out key material on re-init.
174
1752007-06-20  Love Hörnquist Åstrand  <lha@it.su.se>
176
177	* rand.c: Default to fortuna due to weired /dev/*random that
178	failes to deliver random data for us in hi load situations.
179
180	* rand-fortuna.c: Reseed the random generator now and then from
181	external sources.
182
1832007-06-19  Love Hörnquist Åstrand  <lha@it.su.se>
184
185	* rand-egd.c: Avoid stoping unrelated memory.
186
1872007-06-18  Love Hörnquist Åstrand  <lha@it.su.se>
188
189	* rand-fortuna.c: Use /etc/shadow, not /dev/shadow, pointed out by
190	Andrew Bartlett
191
192	* Makefile.am: add rand-timer.c
193
194	* rand-fortuna.c: Fall back to gattering data from timer and
195	secret files, this is really the last resort.
196
197	* rand-timer.c: Pick up timing diffrences in the timeing info from
198	realtime timer, only in use as a last resort.
199
200	* version-script.map: Add hc_RAND_timer_method.
201
2022007-06-10  Love Hörnquist Åstrand  <lha@it.su.se>
203
204	* test_bn.c: Add <rand.h>.
205
206	* test_crypto.in: Test for random device before running the tests.
207
208	* test_engine_dso.c: Test for random device.
209
210	* test_bn.c (test_BN_rand): skip this test if there is no random
211	device
212
2132007-06-07  Love Hörnquist Åstrand  <lha@it.su.se>
214
215	* Makefile.am: Include more ui.[ch] in libbctest.
216
217	* version-script.map: Unexport _hc_DES_ipfp_test now there is a
218	separate test lib.
219
220	* Makefile.am: Build library libhctest.la for testing and link
221	with that when testing.
222
223	* version-script.map: export _hc_DES_ipfp_test
224
2252007-06-03  Love Hörnquist Åstrand  <lha@it.su.se>
226
227	* imath: new update from Michael Fromberger
228
229	* test_imath.c: Try to find ABR in mp_int_mul.
230
231	* engine.c: Don't try to load gmp module.
232
2332007-06-02  Love Hörnquist Åstrand  <lha@it.su.se>
234
235	* test_bn.c: Plug memory leak.
236
2372007-05-31  Love Hörnquist Åstrand  <lha@it.su.se>
238
239	* imath/imath.[ch]: New snapshot for Michael Fromberger, lets see if
240	this corrupts memory less.
241
2422007-05-30  Love Hörnquist Åstrand  <lha@it.su.se>
243
244	* version-script.map: Don't prefix all symbols with _
245
2462007-05-10  Love Hörnquist Åstrand  <lha@it.su.se>
247
248	* test_pkcs12.c: test the difference between "" and NULL password.
249
250	* test_pkcs12.c: one more pkcs12-pbe-s2k check
251
2522007-04-20  Love Hörnquist Åstrand  <lha@it.su.se>
253
254	* Add version-script
255
256	* test_crypto.in: try generate a couple of rsa keys of
257	diffrent (random) sizes, spelling.
258
259	* test_rsa.c: try generate a couple of rsa keys of
260	diffrent (random) sizes.
261
2622007-04-19  Love Hörnquist Åstrand  <lha@it.su.se>
263
264	* mdtest.c: stop leaking memory
265
266	* test_imath.c: fix warnings, make test into function.
267
268	* test_imath.c: shortest program causing the problem.
269
270	* test_imath.c: basic imath test
271
2722007-04-18  Love Hörnquist Åstrand  <lha@it.su.se>
273
274	* test_cipher.c (test_cipher): avoid leaking memory
275
2762007-04-17  Love Hörnquist Åstrand  <lha@it.su.se>
277
278	* rsa.c: plug memory leak
279
2802007-04-16  Love Hörnquist Åstrand  <lha@it.su.se>
281
282	* Makefile.am: CLEANFILES += test.file
283
2842007-04-15  Love Hörnquist Åstrand  <lha@it.su.se>
285
286	* Makefile.am: Add randi.h.
287
2882007-04-11  Love Hörnquist Åstrand  <lha@it.su.se>
289
290	* rsa.c: spelling.
291
2922007-02-01  Love Hörnquist Åstrand  <lha@it.su.se>
293
294	* rand.c: Name the random file ~/.rnd, this is the same as
295	OpenSSL.
296
2972007-01-31  Love Hörnquist Åstrand  <lha@it.su.se>
298
299	* rand-egd.c: Make get_bytes static.
300
301	* rand.c (RAND_write_file): default to failure.
302
3032007-01-30  Love Hörnquist Åstrand  <lha@it.su.se>
304
305	* rand.c: Implement RAND_file_name.
306
307	* test_rand.c: test RAND_file_name().
308
309	* rand.c: Provide dummy implementation of RAND_file_name.
310
311	* rand.h: add RAND_file_name
312
3132007-01-21  Love Hörnquist Åstrand  <lha@it.su.se>
314
315	* Makefile.am: clean more files
316
317	* rand-egd.c: access private functions though the RAND_METHOD
318	switch, move global egd function to rand-egd.c
319
320	* rand-fortuna.c: access private functions though the RAND_METHOD
321	switch
322
323	* rand-unix.c: unexport private functions.
324
325	* randi.h: Unexport internal functions.
326
327	* rand.c: access private functions though the RAND_METHOD switch,
328	don't truncate the seed-file, move global egd function to
329	rand-egd.c
330
331	* test_crypto.in: add basic random tests
332
333	* rand-egd.c: SGI cc doesn' like return void_returning_function();
334	in a void returning function.
335
3362007-01-20  Love Hörnquist Åstrand  <lha@it.su.se>
337
338	* test_rand.c: Allow select rand method.
339
340	* rand-unix.c: expose _hc_rand_unix_status
341
342	* randi.h: expose _hc_rand_unix_status and the internal
343	RAND_METHODs
344
345	* rand.c: Implement RAND_load_file and RAND_write_file.  Select
346	UNIX random device if available, otherwise use Fortuna.
347
348	* Add EGD/PRNGD support
349
3502007-01-17  Love Hörnquist Åstrand  <lha@it.su.se>
351
352	* fortuna: Add fortuna based on Marko Kreen's pgcrypt, no enabled yet
353
3542007-01-11  Love Hörnquist Åstrand  <lha@it.su.se>
355
356	* test_rsa.c: if RAND is unhappy, don't run the tests.
357
358	* test_engine_dso.c: if RAND is unhappy, don't run the tests.
359
360	* imath/imath.c: Update to imath-1.8 from Michael Fromberger
361
362	Fixed a bug in s_udiv() affecting the computation of quotient
363	digits.  Thanks to Love Åstrand for isolating this bug.  Also in
364	this release, defining USELLONG=Y or USELLONG=N on the command
365	line for make will switch support for the "long long" data type on
366	or off without having to edit the Makefile.  The default is still
367	to permit use of "long long", even though the type is not standard
368	ANSI C90.
369
370	* imath/imath.c (s_udiv): Allocate one more for q, remove debug
371	printfs
372
3732007-01-10  Love Hörnquist Åstrand  <lha@it.su.se>
374
375	* imath/imath.c (s_udiv): make a copy of a and b before we start
376	to make sure there is something un-tainted to print in cause of
377	failure. XXX remove this delta
378	(s_embar): make static
379
3802007-01-09  Love Hörnquist Åstrand  <lha@it.su.se>
381
382	* rsa.c: Correct the test if the rsa is a complete RSA private
383	key.
384
3852007-01-08  Love Hörnquist Åstrand  <lha@it.su.se>
386
387	* imath/imath.c: More verbose debugging in case of assertion
388	failure. XXX temporary for AIX problem.
389
3902007-01-06  Love Hörnquist Åstrand  <lha@it.su.se>
391
392	* rsa-imath.c: Fix a silly typo, and with that enable CRT since
393	now it works.
394
395	* rsa-imath.c: With this crt works, but something is wrong in the
396	key generation, so keep it turned off for now.
397
398	* test_rsa.c: Allow testing effect of key-blinding
399
400	* test_rsa.c: Add timing info to rsa keygen.
401
402	* rsa-imath.c: don't include <imath/rsamath.h>
403
4042007-01-05  Love Hörnquist Åstrand  <lha@it.su.se>
405
406	* imath: prune off stuff we dont use
407
408	* imath/import.sh: Prune off stuff we don't use from imathsource
409
410	* Makefile.am: Prune off stuff we don't use from imathsource
411
412	* rsa-imath.c: Use mp_int_exptmod directly.
413
414	* imath/iprime.c: Use a larger table of small primes, cut down
415	genenration in best cases to half compared to using a small table.
416
417	* rsa.h: add RSA_FLAG_NO_BLINDING
418
419	* rsa-imath.c: Add keyblinding, add a commented out CRT based RSA.
420
421	* rsa.c: Add iqmp.
422
4232007-01-04  Love Hörnquist Åstrand  <lha@it.su.se>
424
425	* rsa.c: add missing ;
426
427	* rsa.c: Add i2d_RSAPrivateKey.
428
429	* rsa.h: Add i2d_RSAPrivateKey.
430
431	* test_rsa.c: test RSA_generate_key_ex
432
433	* rsa-imath.c: Add imath_rsa_generate_key.
434
4352006-12-31  Love Hörnquist Åstrand  <lha@it.su.se>
436
437	* rsa.c: add RSA_generate_key_ex
438
439	* rsa.h: add RSA_generate_key_ex
440
4412006-12-07  Love Hörnquist Åstrand  <lha@it.su.se>
442
443	* Makefile.am: CLEANFILES += test_crypto
444
4452006-12-06  Love Hörnquist Åstrand  <lha@it.su.se>
446
447	* Makefile.am: Add rsakey.der to EXTRA_DIST.
448
4492006-12-05  Love Hörnquist Åstrand  <lha@it.su.se>
450
451	* Makefile.am: Add test_crypto.in to EXTRA_DIST.
452
453	* test_crypto.in: Add more spaces to allow sh to parse this
454
455	* test_rsa.c: Explain what the fixed "sha1" checksum test tries to
456	test.
457
458	* test_crypto.in: test rsa, dh and engine code
459
4602006-12-04  Love Hörnquist Åstrand  <lha@it.su.se>
461
462	* Makefile.am: rsa and crypto engine test cases
463
464	* test_rsa.c: Make faster and less verbose
465
466	* rsakey.der: test rsa key
467
468	* test_rsa.c: Test rsa operations
469
470	* rsa-imath.c: Fix the rsa-decrypt failed case that been hauting
471	me for a while.
472
4732006-12-02  Love Hörnquist Åstrand  <lha@it.su.se>
474
475	* rsa-imath.c: Use mp_int_to_binary to encode bignums
476
477	* rsa-imath.c: Check if header is there
478
4792006-11-27  Love Hörnquist Åstrand  <lha@it.su.se>
480
481	* rsa-imath.c: Return -1 for failure.
482
483	* rsa-imath.c: Its ok with smaller signatures.
484
485	* rsa-imath.c: Split error codes for now
486
4872006-10-22  Love Hörnquist Åstrand  <lha@it.su.se>
488
489	* rsa.c: Try to not leak memory.
490
4912006-10-21  Love Hörnquist Åstrand  <lha@it.su.se>
492
493	* rand-unix.c (unix_bytes): read until the other side give us all
494	or fail.
495
496	* imath: import imath-1.7, fixes buffer overrun problems
497
498	* rsa.c (RSA_free): free the whole key
499
500	* test_engine_dso.c: Add more dh tests.
501
5022006-10-20  Love Hörnquist Åstrand  <lha@it.su.se>
503
504	* imath/imath.c: Allocate more bits.
505
506	* dh-imath.c (dh_compute_key): fix signness test
507
508	* dh-imath.c: Try harder to generate a good keypair.
509
510	* dh-imath.c: Return -1 dh_compute_key on failure, pointed out by
511	Olga Kornievskaia.
512
5132006-10-19  Love Hörnquist Åstrand  <lha@it.su.se>
514
515	* Makefile.am: Add hash.h and des-tables.h.
516
517	* dh.c (DH_compute_key): return -1 on bad public key.
518
519	* rsa.c: remove stray ;
520
521	* engine.c: Does function typecasts instead of void * type-casts.
522
523	* evp.c: Does function typecasts instead of void * type-casts.
524
5252006-10-16  Love Hörnquist Åstrand  <lha@it.su.se>
526
527	* Makefile.am: add rand-unix.c
528
529	* rand.c: Move out rand-unix functions from the core lib.
530
531	* rand-unix.c: Move out rand-unix functions from the core lib.
532
5332006-10-15  Love Hörnquist Åstrand  <lha@it.su.se>
534
535	* hmac.c (HMAC_CTX_cleanup): destroy the EVP_MD_CTX, so it will be
536	freed.
537
5382006-10-14  Love Hörnquist Åstrand  <lha@it.su.se>
539
540	* bn.c: Drop heim_any.h, prefix der primitives with der_
541
542	* rsa.c: Drop heim_any.h.
543
5442006-10-11  Love Hörnquist Åstrand <lha@it.su.se>
545
546	* rsa.c (RSA_free): Call the meth->finish before releasing the
547	engine.
548
5492006-10-06  Love Hörnquist Åstrand  <lha@it.su.se>
550
551	* imath/imath.c: Cast argument to ctype(3) functions to (unsigned
552	char).
553
554	* imath/imrat.c: Cast argument to ctype(3) functions to (unsigned
555	char).
556
5572006-09-22  Love Hörnquist Åstrand  <lha@it.su.se>
558
559	* ui.c (read_string): Try to not call signaction for signal 0 and
560	use NSIG if it exists to determin how many signals there exists,
561	also, only restore those signalhandlers that we got out.
562
563	Bug reported by and patch tested by Harald Barth.
564
5652006-09-15  Love Hörnquist Åstrand  <lha@it.su.se>
566
567	* rsa-imath.c: Add commeted out test that exponent is > 3
568
5692006-05-13  Love Hörnquist Åstrand  <lha@it.su.se>
570
571	* bn.c (BN_rand): avoid shadowing.
572
5732006-05-12  Love Hörnquist Åstrand  <lha@it.su.se>
574
575	* rsa-imath.c: Fix the last one of the asserts.
576
5772006-05-08  Love Hörnquist Åstrand  <lha@it.su.se>
578
579	* rand.c (get_device_fd): use /dev/urandom first.
580
581	* rctest.c: Less "pointer targets in passing argument differ in
582	signedness" warnings.
583
584	* rc2test.c: Less "pointer targets in passing argument differ in
585	signedness" warnings.
586
5872006-05-07  Love Hörnquist Åstrand  <lha@it.su.se>
588
589	* rsa-imath.c: Fix a off by one.
590
591	* test_engine_dso.c: print the lengths when they don't match.
592
593	* engine.c (ENGINE_load_builtin_engines): use RSA_imath_method for
594	the building engine.
595
596	* rsa.h: expose RSA_imath_method
597
598	* rsa.c (RSA_check_key): Do sign/verify instead.
599
600	* dsa.c: rename the DSA_METHOD
601
602	* dh.c: rename the DH_METHOD
603
604	* dh-imath.c: rename the DH_METHOD
605
606	* rsa.c: Default to use rsa-imath.
607
608	* Makefile.am: Add rsa-imath.c to libhcrypto
609
610	* rsa-imath.c: Add RSA support using imath.
611
6122006-05-06 Love Hörnquist Åstrand <lha@it.su.se>
613
614	* imath: Add imath-1.1.9
615
616	* dh.h: Expose DH_imath_method.
617
618	* Makefile.am: Add imath source, add test_engine_dso to TESTS.
619
620	* engine.c: Lets say we have RSA_null_method(), not really
621	useable, but still.
622
623	* test_engine_dso.c: If there are no arguments, use the internal
624	engine.
625
626	* engine.h: Cpp rename some ENGINE symbols.
627
628	* engine.c (ENGINE_load_builtin_engines): Load the internal
629	engine.
630
631	* dh.c: Default to use DH-imath.
632
633	* dh.c (DH_check_pubkey): describe what the function do
634
6352006-05-05  Love Hörnquist Åstrand  <lha@it.su.se>
636
637	* dh.c (DH_compute_key): check return status value from
638	DH_check_pubkey
639
640	* Rename u_intXX_t to uintXX_t
641
6422006-04-24  Love Hörnquist Åstrand  <lha@it.su.se>
643
644	* pkcs5.c: include <krb5-types.h>
645
646	* evp.c: Sprinkel some assertions.
647
648	* des.c: Move assertion and add another restriction, used as hint
649	to beam that its ok
650
6512006-04-23  Love Hörnquist Åstrand  <lha@it.su.se>
652
653	* rsa.c (RSA_check_key): don't do any checking if there is no
654	private key
655
656	* engine.c (add_engine): reassign engines variable after realloc
657
6582006-04-21  Love Hörnquist Åstrand  <lha@it.su.se>
659
660	* evp.h: Add EVP_get_cipherbyname, unbreak EVP_BytesToKey
661
662	* evp.h: Add prototype for EVP_BytesToKey
663
664	* evp.c: Add stub for EVP_BytesToKey
665
6662006-04-20  Love Hörnquist Åstrand  <lha@it.su.se>
667
668	* dh.h: Add cpp-rename for DH_check_pubkey
669
6702006-04-17  Love Hörnquist Åstrand  <lha@it.su.se>
671
672	* rand.h: Add more RAND functions.
673
674	* rand.c: Split out unix /dev/random to a RAND_METHOD
675
676	* engine.h: add RAND support
677
678	* engine.c: add RAND support
679
680	* evp.h: s/rc4_64/rc2_64/
681
682	* rand.c: Add RAND_METHOD and some associated functions.
683
684	* rand.h: Add RAND_METHOD and some associated functions.
685
686	* test_bn.c: Test BN_rand
687
6882006-04-16  Love Hörnquist Åstrand  <lha@it.su.se>
689
690	* engine.c (ENGINE_by_dso): less printf
691
692	* rsa.h (i2d_RSAPublicKey): fix prototype
693
694	* rsa.c (i2d_RSAPublicKey): fix prototype
695
6962006-04-15  Love Hörnquist Åstrand  <lha@it.su.se>
697
698	* evp.h: Add EVP_rc2_64_cbc
699
700	* evp.c: Add EVP_rc2_64_cbc
701
702	* evp.h: Add SHA-256 symbols.
703
704	* evp.c: Add SHA-256.
705
706	* sha.h: Add SHA-256 symbols.
707
708	* mdtest.c: Test SHA-256.
709
710	* sha256.c: Inital (naive) SHA-256 implementation.
711
7122006-04-14 Love Hörnquist Åstrand <lha@it.su.se>
713
714	* des.c (DES_cfb64_encrypt): add asserts that the *num pointers is
715	>= 0, because if it is, its a programmer error.
716
7172006-04-09  Love Hörnquist Åstrand  <lha@it.su.se>
718
719	* rc2.c (RC2_set_key): abort on erroneous input (len <= 0) size
720	that will case out out bound indexing, and its invalid input.
721
722	* rsa.c: Make compile again.
723
7242006-04-03  Love Hörnquist Åstrand  <lha@it.su.se>
725
726	* rsa.c: Implement i2d_RSAPublicKey
727
728	* rsa.h: Add i2d_RSAPublicKey
729
7302006-03-07 Love Hörnquist Åstrand <lha@it.su.se>
731
732	* Makefile.am: EVP interface depends on dlopen, add it to LIBFLAGS
733
7342006-02-28  Love Hörnquist Åstrand  <lha@it.su.se>
735
736	* Makefile.am: Add pkcs5 files.
737
738	* test_pkcs5.c: Testcases for pkcs5 pbe2.
739
740	* pkcs5.c (PKCS5_PBKDF2_HMAC_SHA1): new function.
741
742	* hmac.c: Digest key when it exceeds block size, not when it
743	exceeds the size of the output block.
744
7452006-02-16  Love Hörnquist Åstrand  <lha@it.su.se>
746
747	* rand.c (RAND_bytes): Don't abort() on failure, return error.
748
749	* bn.c (BN_rand): check return value from RAND_bytes
750
7512006-01-18  Love Hörnquist Åstrand  <lha@it.su.se>
752
753	* dh.c (DH_compute_key): check public key
754
755	* dh.h: Add DH_check_pubkey and defines it uses.
756
757	* dh.c (DH_check_pubkey): New function.
758
759	* bn.c: Remove unused fragment.
760
761	* test_bn.c: Compare numbers with BN_cmp().
762
7632006-01-17  David Love  <fx@gnu.org>
764
765	* bn.c: Include <limits.h>.
766
7672006-01-13  Love Hörnquist Åstrand  <lha@it.su.se>
768
769	* *.h: use #include <hcrypto/...>
770
771	* Makefile.am: provide a symlink so the directory hcrypto/ seems
772	to exists
773
774	* engine.h: Expose dsa symbols
775
776	* Makefile.am: Rename library to hcrypto and install headerfiles
777	in hcrypto/.
778
779	* test_pkcs12.c: Test for PKCS12_key_gen.
780
781	* hmac.h: Drop HMAC_CTX_create and HMAC_CTX_destroy.
782
783	* engine.c (ENGINE_add_conf_module): Also load DH
784
785	* dh.h: Reorder includes to avoid compile errors, provide
786	DH_new_method().
787
788	* dh.c: Indent.
789
790	* bn.c: BN_get_negative was really named BN_is_negative, a comment
791	confused me.
792
793	* bn.h: BN_get_negative was really named BN_is_negative, a comment
794	confused me.
795
796	* pkcs12.h: Add PKCS12_key_gen().
797
798	* pkcs12.c: Add PKCS12_key_gen().
799
800	* Makefile.am: Add test_cipher, test_pkcs12, add pkcs12.[ch].
801
802	* evp.c: Rename rc2_40_cbc internal variable to something better.
803	Unbreak des-ede3-cbc.
804
8052006-01-11  Love Hörnquist Åstrand  <lha@it.su.se>
806
807	* test_bn.c: Test BN_uadd.
808
809	* bn.c (BN_rand): don't leak memory on failure, catch malloc(0)
810	case
811
812	* bn.c (BN_rand): clear the bits above the bits that user
813	requested.
814	(BN_uadd): new function.
815
816	* bn.h (BN_uadd): new function.
817
8182006-01-10  Love Hörnquist Åstrand <lha@it.su.se>
819
820	* evp.c (EVP_CIPHER_CTX_cleanup): clean up less aggressively
821
822	* Makefile.am (check_PROGRAMS): add test_hmac
823
824	* test_hmac.c: Simple regression test for HMAC.
825
826	* hmac.c: Make hmac work.
827
828	* evp.c: return the right blocksize for digests.
829
8302006-01-09  Love Hörnquist Åstrand <lha@it.su.se>
831
832	* test_engine_dso.c: Add test for DH.
833
834	* dh.c: Add DH_new_method, add ENGINE refcounting.
835
836	* engine.[ch]: Add ENGINE_set_default_DH and ENGINE_get_default_DH
837
838	* test_engine_dso.c: Add test for RSA encryption.
839
8402006-01-08  Love Hörnquist Åstrand  <lha@it.su.se>
841
842	* test_engine_dso.c: Add test for RSA.
843
844	* implement enough glue to support OpenSSLs EVP, RSA, DSA, DH,
845	HMAC, RAND and ENGINE interfaces for use in hx509. rename all
846	symbols to start with hc_ to avoid clobbering namespaces. contains
847	no RSA/DH/DSA code, just glue to support using dynamic
848	ENGINE. hx509 supports this via pkcs11 and there is a gmp ENGINE
849	module supporting RSA. Also contains a MD2 digest for completion.
850
8512005-07-20  Love Hörnquist Åstrand  <lha@it.su.se>
852
853	* des.c,des.h,rnd_keys.c: change unsigned char * to void *
854
8552005-06-30  Love Hörnquist Åstrand  <lha@it.su.se>
856
857	* rnd_keys.c: const poision for unwriteable strings
858
8592005-06-19  Love Hörnquist Åstrand  <lha@it.su.se>
860
861	* des.c,aes.c,rc2.c: Rename parameter, as encrypt shadows a
862	global, from Andrew Bartlett
863
8642005-06-02  Love Hörnquist Åstrand  <lha@it.su.se>
865
866	* rnd_keys.c: Include <stdlib.h> for srandom/random.
867
8682005-05-29  Love Hörnquist Åstrand  <lha@it.su.se>
869
870	* des.c (DES_cbc_cksum): init u to make sure it have a value in
871	case of the empty in data
872
873	* destest.c: add test for the empty password ""
874
8752005-05-27  Love Hörnquist Åstrand  <lha@it.su.se>
876
877	* rctest.c (cipher3): used unsigned char to avoid problems with
878	platforms using "signed char"
879
8802005-05-13  Love Hörnquist Åstrand  <lha@it.su.se>
881
882	* rc2.c: use unsigned char to avoid signess warning
883
884	* des.c: use unsigned char to avoid signess warning
885
886	* aes.c (AES_cbc_encrypt): use unsigned char to avoid signess
887	warning
888
8892005-05-03  Dave Love  <fx@gnu.org>
890
891	* mdtest.c: Fix typo for HAVE_STDLIB_H.
892
8932005-05-03  Love Hörnquist Åstrand  <lha@it.su.se>
894
895	* rnd_keys.c: Enabled to build on cygwin, based on patch from
896	David Love <fx@gnu.org>
897
8982005-05-02  Dave Love  <fx@gnu.org>
899
900	* mdtest.c: Include <krb5-types.h>.
901
9022005-04-30  Love Hörnquist Åstrand  <lha@it.su.se>
903
904	* ui.c: Include <des.h>.
905	(UI_UTIL_read_pw_string): make the prompt argument const.
906
907	* des.h (UI_UTIL_read_pw_string): make the prompt argument const
908
909	* ui.c (UI_UTIL_read_pw_string): remove unused variable plen
910
911	* des.c: replace <strings.h> with <string.h>
912
9132005-04-29  Dave Love  <fx@gnu.org>
914
915	* Makefile.am: Add LIB_roken.
916
9172005-04-27  Dave Love  <fx@gnu.org>
918
919	* sha.c: Include hash.h first.
920
921	* md4.c: Include hash.h first.
922
923	* md5.c: Include hash.h first.
924
925	* hash.h: Include krb5-types.h
926
9272005-04-26  Dave Love  <fx@gnu.org>
928
929	* mdtest.c: Maybe include stdlib.h
930
9312005-04-10  Love Hörnquist Åstrand  <lha@it.su.se>
932
933	* sha.h,md5.h, md4.h: don't include bit types, the user must do
934	that #ifdef wrap
935
936	* aes.h: #ifdef wrap
937
9382005-03-23  Love Hörnquist Åstrand  <lha@it.su.se>
939
940	* des.h: fix prototype for DES_random_key
941
942	* rnd_keys.c: fix prototype for DES_random_key
943
944	* des.[ch]: provide compatibility function DES_key_sched, same as
945	DES_set_key
946
9472005-03-20  Love Hörnquist Åstrand  <lha@it.su.se>
948
949	* destest.c: include config.h and protect some headers
950
951	* rnd_keys.c: move <des.h> to after include <krb5-types.h> so the
952	C99 integer types exists
953
9542005-03-14  Love Hörnquist Åstrand  <lha@it.su.se>
955
956	* des.c: add DES_set_key_checked
957
958	* des.h: add DES_set_key_checked
959
9602005-03-01  Love Hörnquist Åstrand  <lha@it.su.se>
961
962	* des-tables.h: Add the missing file
963
9642005-02-23  Love Hörnquist Åstrand  <lha@it.su.se>
965
966	* ui.c: remove dependency on asprintf
967
968	* Makefile.am: make destest only once
969
970	* Replace the eay DES code with key scheule setup code by me and DES
971	s-box and p permutation from Richard Outerbridge implemtation (in
972	public domain).  The DES modes are implemented by me. ui.c code are
973	from appl/login.
974
975	The implementation is about 3 times slower then Eric for encryption,
976	and about the same speed for key setup.
977
978
9792004-08-10  Love Hörnquist Åstrand  <lha@it.su.se>
980
981	* rnd_keys.c (DES_rand_data): also try /dev/arandom
982
9832004-06-02  Love Hörnquist Åstrand  <lha@it.su.se>
984
985	* rnd_keys.c: don't include krb4 headers
986
987	* rijndael-alg-fst.c: don't include krb4 headers
988
989	* aes.c: don't include krb4 headers
990
991	* aes.h: define AES_{EN,DE}CRYPT; remove #ifdefs, this is an
992	installed file
993
9942004-04-25  Love Hörnquist Åstrand  <lha@it.su.se>
995
996	* rc2.c: handle non blocksized cbc messages
997
998	* aes.[ch]: add AES_cbc_encrypt
999
10002004-04-24  Love Hörnquist Åstrand  <lha@it.su.se>
1001
1002	* rc2test.c: test vectors from RFC2268
1003
1004	* rc2.c (RC2_set_key): rewrite the mask calculation
1005
1006	* rc2.c (RC2_set_key): handle keys where effective bits are
1007	diffrent from keylength
1008
10092004-04-23  Love Hörnquist Åstrand  <lha@it.su.se>
1010
1011	* rc2.c: rc2 implementation
1012
1013	* rc2.h: rc2 implementation
1014
1015	* rc2test.c: rc2 implementation
1016
1017	* Makefile.am: rc2 implementation
1018
10192004-03-25  Love Hörnquist Åstrand  <lha@it.su.se>
1020
1021	* Makefile.am: new arcfour implementation
1022
1023	* rc4.c: implemented from description in
1024	draft-kaukonen-cipher-arcfour-03.txt
1025
1026	* rc4.h: replace with new implementation
1027
1028	* rc4_enc.c rc4_skey.c: remove
1029
1030	* rctest.c: test for arcfour
1031
10322003-12-07  Love Hörnquist Åstrand  <lha@it.su.se>
1033
1034	* rnd_keys.c: uninitialized variable, from Panasas Inc
1035
10362003-09-03  Love Hörnquist Åstrand  <lha@it.su.se>
1037
1038	* md4.c (MD4_Final): make the function threadsafe by removing
1039	static on the local variable zeros
1040
1041	* md5.c (MD5_Final): make the function threadsafe by removing
1042	static on the local variable zeros
1043
1044	* switch to the DES_ api, dont provide any compat glue
1045
10462003-08-27  Love Hörnquist Åstrand  <lha@it.su.se>
1047
1048	* sha.c: make the function threadsafe by removing static on the
1049	local variable zeros
1050
10512003-07-23  Love Hörnquist Åstrand  <lha@it.su.se>
1052
1053	* rijndael-alg-fst.h,rijndael-alg-fst.c,aes.c,aes.h:
1054	Makefile.am: add AES support
1055
10562003-03-19  Love Hörnquist Åstrand  <lha@it.su.se>
1057
1058	* des.1: sunOS -> SunOS, from jmc <jmc@prioris.mini.pw.edu.pl>
1059
10602003-03-19  Love Hörnquist Åstrand  <lha@it.su.se>
1061
1062	* des.1: spelling, from <jmc@prioris.mini.pw.edu.pl>
1063
10642002-08-28  Johan Danielsson  <joda@pdc.kth.se>
1065
1066	* read_pwd.c: move NeXT SGTTY stuff here
1067
10682001-05-17  Assar Westerlund  <assar@sics.se>
1069
1070	* Makefile.am: bump version to 3:1:0
1071
10722001-05-11  Assar Westerlund  <assar@sics.se>
1073
1074	* str2key.c (des_string_to_key, des_string_to_2keys): avoid weak
1075	keys
1076
10772001-02-16  Assar Westerlund  <assar@sics.se>
1078
1079	* set_key.c: correct weak keys and update comment
1080
10812001-02-14  Assar Westerlund  <assar@sics.se>
1082
1083	* set_key.c: correct the two last weak keys in accordance with
1084	FIPS 74.  noted by <jhutz@cmu.edu>
1085
10862001-01-30  Assar Westerlund  <assar@sics.se>
1087
1088	* Makefile.am (libdes_la_LDFLAGS): bump version to 3:0:0
1089
10902000-10-19  Assar Westerlund  <assar@sics.se>
1091
1092	* Makefile.in (LIBSRC, LIBOBJ): add rc4* and enc_{read,write}
1093	files so that this library contains the same things as libdes in
1094	Heimdal
1095
10962000-08-16  Assar Westerlund  <assar@sics.se>
1097
1098	* Makefile.am: bump version to 2:1:0
1099
11002000-08-03  Johan Danielsson  <joda@pdc.kth.se>
1101
1102	* enc_writ.c: BSIZE -> des_BSIZE to avoid conflicts with AIX
1103	jfs/fsparam.h
1104
1105	* enc_read.c: BSIZE -> des_BSIZE to avoid conflicts with AIX
1106	jfs/fsparam.h
1107
1108	* des_locl.h: BSIZE -> des_BSIZE to avoid conflicts with AIX
1109	jfs/fsparam.h
1110
11112000-02-07  Assar Westerlund  <assar@sics.se>
1112
1113	* Makefile.am: set version to 2:0:0
1114
11152000-01-26  Assar Westerlund  <assar@sics.se>
1116
1117	* mdtest.c: update to pseudo-standard APIs for md4,md5,sha.
1118	* md4.c, md4.h, md5.c, md5.h, sha.c, sha.h: move to the
1119	pseudo-standard APIs
1120
11211999-12-06  Assar Westerlund  <assar@sics.se>
1122
1123	* Makefile.am: set version to 1:0:1
1124
11251999-11-29  Assar Westerlund  <assar@sics.se>
1126
1127	* fcrypt.c (crypt_md5): add trailing $
1128
11291999-11-13  Assar Westerlund  <assar@sics.se>
1130
1131	* Makefile.am (include_HEADERS): add rc4.h
1132	(libdes_la_SOURCES): add rc4_skey.c
1133
11341999-10-28  Assar Westerlund  <assar@sics.se>
1135
1136	* md5crypt_test.c: change the test case.  apparently we should not
1137 	include $ after the salt.  also make it print more useful stuff
1138 	when failing.
1139
11401999-10-20  Assar Westerlund  <assar@sics.se>
1141
1142	* Makefile.am: bump version to 0:2:0
1143
11441999-09-21  Johan Danielsson  <joda@pdc.kth.se>
1145
1146	* des.h: make this work with mips 64-bit abi
1147
11481999-08-14  Johan Danielsson  <joda@pdc.kth.se>
1149
1150	* fcrypt.c (crypt_md5): don't use snprintf
1151
11521999-08-13  Assar Westerlund  <assar@sics.se>
1153
1154	* Makefile.am: add md5crypt_test
1155
1156	* Makefile.in: add md5crypt_test
1157
1158	* md5crypt_test.c: test md5 crypt
1159
1160	* fcrypt.c: always enable md5 crypt
1161
11621999-07-26  Johan Danielsson  <joda@pdc.kth.se>
1163
1164	* Makefile.am: bump version number (changes to md*, sha)
1165
11661999-06-15  Assar Westerlund  <assar@sics.se>
1167
1168	* sha.c (swap_u_int32_t): add _CRAY
1169
1170Sat Apr 10 23:02:30 1999  Johan Danielsson  <joda@hella.pdc.kth.se>
1171
1172	* destest.c: fixes for crays
1173
1174Thu Apr  1 11:26:38 1999  Johan Danielsson  <joda@hella.pdc.kth.se>
1175
1176	* Makefile.am: noinst_PROGRAMS -> check_PROGRAMS; add TESTS; don't
1177 	build rpw, and speed
1178
1179Mon Mar 22 20:16:26 1999  Johan Danielsson  <joda@hella.pdc.kth.se>
1180
1181	* Makefile.am: hash.h
1182
1183	* sha.c: use hash.h; fixes for crays
1184
1185	* md5.c: use hash.h; fixes for crays
1186
1187	* md4.c: use hash.h; fixes for crays
1188
1189	* hash.h: common stuff from md4, md5, and sha1
1190
1191Sat Mar 20 00:16:53 1999  Assar Westerlund  <assar@sics.se>
1192
1193	* rnd_keys.c (des_rand_data): move declaration to get rid of
1194 	warning
1195
1196Thu Mar 18 11:22:28 1999  Johan Danielsson  <joda@hella.pdc.kth.se>
1197
1198	* Makefile.am: include Makefile.am.common
1199
1200Mon Mar 15 17:36:41 1999  Johan Danielsson  <joda@hella.pdc.kth.se>
1201
1202	* rnd_keys.c (des_rand_data): if not using setitimer, block
1203 	SIGCHLD around fork(), also make sure we get the status of the
1204 	child process
1205	(fake_signal): emulate signal using sigaction
1206
1207Tue Jan 12 05:06:54 1999  Assar Westerlund  <assar@sics.se>
1208
1209	* des.h: sparcv9 is also 64 bits, use `unsigned int' instead of
1210 	`unsigned long'
1211
1212Sun Nov 22 10:40:09 1998  Assar Westerlund  <assar@sics.se>
1213
1214	* Makefile.in (WFLAGS): set
1215
1216Mon May 25 05:24:56 1998  Assar Westerlund  <assar@sics.se>
1217
1218	* Makefile.in (clean): try to remove shared library debris
1219
1220Sun Apr 19 09:50:53 1998  Assar Westerlund  <assar@sics.se>
1221
1222	* Makefile.in: add symlink magic for linux
1223
1224Sun Nov  9 07:14:45 1997  Assar Westerlund  <assar@sics.se>
1225
1226	* mdtest.c: print out old and new string
1227
1228