diff options
author | Dr. Stephen Henson <steve@openssl.org> | 2000-05-28 12:44:46 +0000 |
---|---|---|
committer | Dr. Stephen Henson <steve@openssl.org> | 2000-05-28 12:44:46 +0000 |
commit | 360370d9530d552078a453f7333faeab0039268f (patch) | |
tree | 8bc290cacd648726e273496e748e1f1f1eba6695 /CHANGES | |
parent | 1fab73ac856225762dae9ef738e792b5ccbd8a32 (diff) | |
download | openssl-360370d9530d552078a453f7333faeab0039268f.tar.gz |
Third phase of EVP cipher overhaul.
Remove duplicated code in EVP.
Diffstat (limited to 'CHANGES')
-rw-r--r-- | CHANGES | 12 |
1 files changed, 11 insertions, 1 deletions
@@ -4,6 +4,17 @@ Changes between 0.9.5a and 0.9.6 [xx XXX 2000] + *) Remove lots of duplicated code from the EVP library. For example *every* + cipher init() function handles the 'iv' in the same way according to the + cipher mode. They also all do nothing if the 'key' parameter is NULL and + for CFB and OFB modes they zero ctx->num. + + By shifting this to the top level EVP_CipherInit() it can be removed from + all individual ciphers. If the cipher wants to handle IVs or keys + differently it can set the EVP_CIPH_CUSTOM_IV or EVP_CIPH_ALWAYS_CALL_INIT + flags. + [Steve Henson] + *) In ssl/s2_clnt.c and ssl/s3_clnt.c, call ERR_clear_error() when the handshake is continued after ssl_verify_cert_chain(); otherwise, if SSL_VERIFY_NONE is set, remaining error codes @@ -23,7 +34,6 @@ Change lots of functions like EVP_EncryptUpdate() to now return a value: although software versions of the algorithms cannot fail any installed hardware versions can. - [Steve Henson] *) Implement SSL_OP_TLS_ROLLBACK_BUG: In ssl3_get_client_key_exchange, if |