aboutsummaryrefslogblamecommitdiffstats
path: root/lib/crypto/doc/src/notes.xml
blob: c0b302734ec7ba552f78d3e4966b2a625bdb573f (plain) (tree)
1
2
3
4
5
6
7
8
9
10
1542
1543
1544
1545
1546
1547
1548
1549
1550
1551
1552
1553
1554
1555
1556
1557
1558
1559
1560
1561
1562
1563
1564
1565
1566
1567
1568
1569
1570
1571
1572
1573
1574
1575
1576
1577
1578
1579
1580
1581
1582
1583
1584
1585
1586
1587
1588
1589
1590
1591
1592
1593
1594
1595
1596
1597
1598
1599
1600
1601
1602
1603
1604
1605
1606
1607
1608
1609
1610
1611
1612
1613
1614
1615
1616
1617
1618
1619
1620
1621
1622
1623
1624
1625
1626
1627
1628
1629
1630
1631
1632
1633
1634
1635
1636
1637
1638
1639
1640
1641
1642
1643
1644
1645
1646
1647
1648
1649
1650
1651
1652
1653
1654
1655
1656
1657
1658
1659
1660
1661
1662
1663
1664
1665
1666
1667
1668
1669
1670
1671
1672
1673
1674
1675
1676
1677
1678
1679
1680
1681
1682
1683
1684
1685
1686
1687
1688
1689
1690
1691
1692
1693
1694
1695
1696
1697
1698
1699
1700
1701
1702
1703
1704
1705
1706
1707
1708
1709
1710
1711
1712
1713
1714
1715
1716
1717
1718
1719
1720
1721
1722
1723
1724
1725
1726
1727
1728
1729
1730
1731
1732
1733
1734
1735
1736
1737
1738
1739
1740
1741
1742
1743
1744
1745
1746
1747
1748
1749
1750
1751
1752
1753
1754
1755
1756
1757
1758
1759
1760
1761
1762
1763
1764
1765
1766
1767
1768
1769
1770
1771
1772
1773
1774
1775
1776
1777
1778
1779
1780
1781
1782
1783
1784
1785
1786
1787
1788
1789
1790
1791
1792
1793
1794
1795
1796
1797
1798
1799
1800
1801
1802
1803
1804
1805
1806
1807
1808
1809
1810
1811
1812
1813
1814
1815
1816
1817
1818
1819
1820
1821
1822
1823
1824
1825
1826
1827
1828
1829
1830
1831
1832
1833
1834
1835
1836
1837
1838
1839
1840
1841
1842
1843
1844
1845
1846
1847
1848
1849
1850
1851
1852
1853
1854
1855
1856
1857
1858
1859
1860
1861
1862
1863
1864
1865
1866
1867
1868
1869
1870
1871
1872
1873
1874
1875
1876
1877
1878
1879
1880
1881
1882
1883
1884
1885
1886
1887
1888
1889
1890
1891
1892
1893
1894
1895
1896
1897
1898
1899
1900
1901
1902
1903
1904
1905
1906
1907
1908
1909
1910
1911
1912
1913
1914
1915
1916
1917
1918
1919
1920
1921
1922
1923
1924
1925
1926
1927
1928
1929
1930
1931
1932
1933
1934
1935
1936
1937
1938
1939
1940
1941
1942
1943
1944
1945
1946
1947
1948
1949
1950
1951
1952
1953
1954
1955
1956
1957
1958
1959
1960
1961
1962
1963
1964
1965
1966
1967
1968
1969
1970
1971
1972
1973
1974
1975
1976
1977
1978
                                       




                                       
                                        


                                                        




                                                                      
 




                                                                              
 










                                                                            































                                                                    




































                                                                    














































































































                                                                      






























                                                                     















                                                                














































                                                                     















                                                                





















                                                                   















                                                                   





































































                                                                     













































                                                                     































































































































                                                                           















                                                                

















                                                                     







































                                                                    

























                                                                     













































                                                                    






















                                                                  














                                                       















                                                               










































                                                                    
















                                                                    
























                                                                  
















                                                                       



































                                                                        







































































































                                                                         















                                                                   















                                                              


























































                                                                         





























                                                                  














































                                                                    





































                                                                     
























                                                                    






































                                                                     














                                                                             














                                                         














                                                            

















































                                                                     




































                                                                         







































                                                                                          
                                                  


















































                                                                                    




















































































































































































































































































































































































































































                                                                             
<?xml version="1.0" encoding="utf-8" ?>
<!DOCTYPE chapter SYSTEM "chapter.dtd">

<chapter>
  <header>
    <copyright>
      <year>1999</year><year>2018</year>
      <holder>Ericsson AB. All Rights Reserved.</holder>
    </copyright>
    <legalnotice>
      Licensed under the Apache License, Version 2.0 (the "License");
      you may not use this file except in compliance with the License.
      You may obtain a copy of the License at
 
          http://www.apache.org/licenses/LICENSE-2.0

      Unless required by applicable law or agreed to in writing, software
      distributed under the License is distributed on an "AS IS" BASIS,
      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
      See the License for the specific language governing permissions and
      limitations under the License.

    </legalnotice>

    <title>Crypto Release Notes</title>
    <prepared>Peter H&ouml;gfeldt</prepared>
    <docno></docno>
    <date>2003-06-06</date>
    <rev>B</rev>
    <file>notes.xml</file>
  </header>
  <p>This document describes the changes made to the Crypto application.</p>

<section><title>Crypto 4.4.1</title>

    <section><title>Fixed Bugs and Malfunctions</title>
      <list>
        <item>
          <p>
	    Fixes a bug that caused <c>crypto:sign</c> and
	    <c>crypto:verify</c> to return the error message
	    <c>badarg</c> instead of <c>notsup</c> in one case. That
	    case was when signing or verifying with eddsa keys (that
	    is, ed15519 or ed448), but only when FIPS was supported
	    and enabled.</p>
          <p>
	    Own Id: OTP-15634</p>
        </item>
      </list>
    </section>


    <section><title>Improvements and New Features</title>
      <list>
        <item>
          <p>
	    Added a crypto benchmark test suite.</p>
          <p>
	    Own Id: OTP-15447</p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 4.4</title>

    <section><title>Fixed Bugs and Malfunctions</title>
      <list>
        <item>
          <p>
	    Updated the RSA options part in the crypto application's
	    C-code, documentation and tests.</p>
          <p>
	    Own Id: OTP-15302</p>
        </item>
      </list>
    </section>


    <section><title>Improvements and New Features</title>
      <list>
        <item>
          <p>
	    Added ed25519 and ed448 sign/verify.</p>
          <p>
	    Requires OpenSSL 1.1.1 or higher as cryptolib under the
	    OTP application <c>crypto</c>.</p>
          <p>
	    Own Id: OTP-15419 Aux Id: OTP-15094 </p>
        </item>
        <item>
          <p>
	    Fixed valgrind warnings.</p>
          <p>
	    Own Id: OTP-15467</p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 4.3.3</title>

    <section><title>Fixed Bugs and Malfunctions</title>
      <list>
        <item>
          <p>
	    The RSA options <c>rsa_mgf1_md</c>, <c>rsa_oaep_md</c>,
	    and <c>rsa_oaep_label</c> were always disabled. They will
	    now be enabled when a suitable cryptolib is used.</p>
          <p>
	    They are still experimental and may change without prior
	    notice.</p>
          <p>
	    Own Id: OTP-15212 Aux Id: ERL-675, PR1899, PR838 </p>
        </item>
        <item>
          <p>
	    The ciphers <c>aes_ige256</c> and <c>blowfish_cbc</c> had
	    naming issues in <c>crypto:next_iv/2</c>.</p>
          <p>
	    Own Id: OTP-15283</p>
        </item>
        <item>
          <p>
	    the <c>RSA_SSLV23_PADDING</c> is disabled if LibreSSL is
	    used as cryptlib. This is due to compilation problems.</p>
          <p>
	    This will be investigated further in the future.</p>
          <p>
	    Own Id: OTP-15303</p>
        </item>
      </list>
    </section>


    <section><title>Improvements and New Features</title>
      <list>
        <item>
          <p>
	    The supported named elliptic curves are now reported in
	    <c>crypto:supports/0</c> in a new entry tagged by
	    <c>'curves'</c>.</p>
          <p>
	    The function <c>crypto:ec_curves/0</c> is kept for
	    compatibility.</p>
          <p>
	    Own Id: OTP-14717 Aux Id: OTP-15244 </p>
        </item>
        <item>
          <p>
	    The typing in the CRYPTO and PUBLIC_KEY applications are
	    reworked and a few mistakes are corrected.</p>
          <p>
	    The documentation is now generated from the typing and
	    some clarifications are made.</p>
          <p>
	    A new chapter on Algorithm Details such as key sizes and
	    availability is added to the CRYPTO User's Guide.</p>
          <p>
	    Own Id: OTP-15134</p>
        </item>
        <item>
          <p>
	    Support for SHA3 both as a separate hash and in HMAC is
	    now available if OpenSSL 1.1.1 or higher is used as
	    cryptolib.</p>
          <p>
	    Available lengths are reported in the <c>'hashs'</c>
	    entry in <c>crypto:supports/0</c> as <c>sha3_*</c>.</p>
          <p>
	    Own Id: OTP-15153</p>
        </item>
        <item>
          <p>
	    The mac algorithm <c>poly1305</c> and the cipher
	    algorithm <c>chacha20</c> are now supported if OpenSSL
	    1.1.1 or higher is used as cryptolib.</p>
          <p>
	    Own Id: OTP-15164 Aux Id: OTP-15209 </p>
        </item>
        <item>
          <p>
	    The key exchange Edward curves <c>x25519</c> and
	    <c>x448</c> are now supported if OpenSSL 1.1.1 or higher
	    is used as cryptolib.</p>
          <p>
	    Own Id: OTP-15240 Aux Id: OTP-15133 </p>
        </item>
        <item>
          <p>
	    The supported RSA options for sign/verify and
	    encrypt/decrypt are now reported in
	    <c>crypto:supports/0</c> in a new entry tagged by
	    '<c>rsa_opts</c>'.</p>
          <p>
	    The exakt set is still experimental and may change
	    without prior notice.</p>
          <p>
	    Own Id: OTP-15260</p>
        </item>
        <item>
          <p>
	    The cipher <c>aes_ccm</c> is added.</p>
          <p>
	    Own Id: OTP-15286</p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 4.3.2</title>

    <section><title>Fixed Bugs and Malfunctions</title>
      <list>
        <item>
	    <p> Update the crypto engine functions to handle multiple
	    loads of an engine. </p> <p><c>engine_load/3/4</c> is
	    updated so it doesn't add the engine ID to OpenSSLs
	    internal list of engines which makes it possible to run
	    the engine_load more than once if it doesn't contain
	    global data.</p> <p>Added <c>ensure_engine_loaded/2/3</c>
	    which guarantees that the engine just is loaded once and
	    the following calls just returns a reference to it. This
	    is done by add the ID to the internal OpenSSL list and
	    check if it is already registered when the function is
	    called.</p> <p>Added <c>ensure_engine_unloaded/1/2</c> to
	    unload engines loaded with ensure_engine_loaded.</p>
	    <p>Then some more utility functions are added.</p>
	    <p><c>engine_add/1</c>, adds the engine to OpenSSL
	    internal list</p> <p><c>engine_remove/1</c>, remove the
	    engine from OpenSSL internal list</p>
	    <p><c>engine_get_id/1</c>, fetch the engines id</p>
	    <p><c>engine_get_name/1</c>, fetch the engine name</p>
          <p>
	    Own Id: OTP-15233</p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 4.3.1</title>

    <section><title>Fixed Bugs and Malfunctions</title>
      <list>
        <item>
	    <p>Fixed a node crash in <c>crypto:compute_key(ecdh,
	    ...)</c> when passing a wrongly typed Others
	    argument.</p>
          <p>
	    Own Id: OTP-15194 Aux Id: ERL-673 </p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 4.3</title>

    <section><title>Fixed Bugs and Malfunctions</title>
      <list>
        <item>
          <p>
	    Removed two undocumented and erroneous functions
	    (<c>crypto:dh_generate_parameters/2</c> and
	    <c>crypto:dh_check/1</c>).</p>
          <p>
	    Own Id: OTP-14956 Aux Id: ERL-579 </p>
        </item>
        <item>
          <p>
	    Fixed bug causing VM crash if doing runtime upgrade of a
	    crypto module built against OpenSSL older than 0.9.8h.
	    Bug exists since OTP-20.2.</p>
          <p>
	    Own Id: OTP-15088</p>
        </item>
      </list>
    </section>


    <section><title>Improvements and New Features</title>
      <list>
        <item>
          <p>
	    A new <c>rand</c> plugin algorithm has been implemented
	    in <c>crypto</c>, that is: <c>crypto_cache</c>. It uses
	    strong random bytes as randomness source and caches them
	    to get good speed. See <c>crypto:rand_seed_alg/1</c>.</p>
          <p>
	    Own Id: OTP-13370 Aux Id: PR-1573 </p>
        </item>
        <item>
          <p>
	    Diffie-Hellman key functions are re-written with the
	    EVP_PKEY api.</p>
          <p>
	    Own Id: OTP-14864</p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 4.2.2.1</title>

    <section><title>Fixed Bugs and Malfunctions</title>
      <list>
        <item>
	    <p>Fixed a node crash in <c>crypto:compute_key(ecdh,
	    ...)</c> when passing a wrongly typed Others
	    argument.</p>
          <p>
	    Own Id: OTP-15194 Aux Id: ERL-673 </p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 4.2.2</title>

    <section><title>Fixed Bugs and Malfunctions</title>
      <list>
        <item>
          <p>
	    If OPENSSL_NO_EC was set, the compilation of the crypto
	    nifs failed.</p>
          <p>
	    Own Id: OTP-15073</p>
        </item>
        <item>
          <p>
	    C-compile errors for LibreSSL 2.7.0 - 2.7.2 fixed</p>
          <p>
	    Own Id: OTP-15074 Aux Id: ERL-618 </p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 4.2.1</title>

    <section><title>Fixed Bugs and Malfunctions</title>
      <list>
        <item>
          <p>
	    Fix build error caused by removed RSA padding functions
	    in LibreSSL >= 2.6.1</p>
          <p>
	    Own Id: OTP-14873</p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 4.2</title>

    <section><title>Fixed Bugs and Malfunctions</title>
      <list>
        <item>
          <p>
	    The compatibility function <c>void HMAC_CTX_free</c> in
	    <c>crypto.c</c> erroneously tried to return a value.</p>
          <p>
	    Own Id: OTP-14720</p>
        </item>
      </list>
    </section>


    <section><title>Improvements and New Features</title>
      <list>
        <item>
          <p>
	    Rewrite public and private key encode/decode with EVP
	    api. New RSA padding options added. This is a modified
	    half of PR-838.</p>
          <p>
	    Own Id: OTP-14446</p>
        </item>
        <item>
          <p>
	    The crypto API is extended to use private/public keys
	    stored in an Engine for sign/verify or encrypt/decrypt
	    operations.</p>
          <p>
	    The ssl application provides an API to use this new
	    engine concept in TLS.</p>
          <p>
	    Own Id: OTP-14448</p>
        </item>
        <item>
	    <p> Add support to plug in alternative implementations
	    for some or all of the cryptographic operations supported
	    by the OpenSSL Engine API. When configured appropriately,
	    OpenSSL calls the engine's implementation of these
	    operations instead of its own. </p>
          <p>
	    Own Id: OTP-14567</p>
        </item>
        <item>
          <p>
	    Replaced a call of the OpenSSL deprecated function
	    <c>DH_generate_parameters</c> in <c>crypto.c</c>.</p>
          <p>
	    Own Id: OTP-14639</p>
        </item>
        <item>
          <p>
	    Documentation added about how to use keys stored in an
	    Engine.</p>
          <p>
	    Own Id: OTP-14735 Aux Id: OTP-14448 </p>
        </item>
        <item>
	    <p> Add engine_ ctrl_cmd_string/3,4 the OpenSSL Engine
	    support in crypto. </p>
          <p>
	    Own Id: OTP-14801</p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 4.1</title>

    <section><title>Fixed Bugs and Malfunctions</title>
      <list>
        <item>
	    <p>On macOS, <c>crypto</c> would crash if <c>observer</c>
	    had been started before <c>crypto</c>. On the beta for
	    macOS 10.13 (High Sierra), <c>crypto</c> would crash.
	    Both of those bugs have been fixed.</p>
          <p>
	    Own Id: OTP-14499 Aux Id: ERL-251 ERL-439 </p>
        </item>
      </list>
    </section>


    <section><title>Improvements and New Features</title>
      <list>
        <item>
          <p>
	    Extend crypto:sign, crypto:verify, public_key:sign and
	    public_key:verify with:</p>
          <p>
	    * support for RSASSA-PS padding for signatures and for
	    saltlength setting<br/> * X9.31 RSA padding.<br/> * sha,
	    sha224, sha256, sha384, and sha512 for dss signatures as
	    mentioned in NIST SP 800-57 Part 1.<br/> * ripemd160 to
	    be used for rsa signatures.</p>
          <p>
	    This is a manual merge of half of the pull request 838 by
	    potatosalad from Sept 2015.</p>
          <p>
	    Own Id: OTP-13704 Aux Id: PR838 </p>
        </item>
        <item>
          <p>
	    A new tuple in <c>crypto:supports/0</c> reports supported
	    MAC algorithms.</p>
          <p>
	    Own Id: OTP-14504</p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 4.0</title>

    <section><title>Fixed Bugs and Malfunctions</title>
      <list>
        <item>
          <p>
	    LibreSSL can now be used by the modernized crypto app.</p>
          <p>
	    Own Id: OTP-14247</p>
        </item>
        <item>
          <p>
	    Add compile option <c>-compile(no_native)</c> in modules
	    with <c>on_load</c> directive which is not yet supported
	    by HiPE.</p>
          <p>
	    Own Id: OTP-14316 Aux Id: PR-1390 </p>
        </item>
        <item>
          <p>
	    Fix a bug in aes cfb128 function introduced by the bug
	    fix in GitHub pull request <url
	    href="https://github.com/erlang/otp/pull/1393">#1393</url>.</p>
          <p>
	    Own Id: OTP-14435 Aux Id: PR-1462, PR-1393, OTP-14313 </p>
        </item>
      </list>
    </section>


    <section><title>Improvements and New Features</title>
      <list>
        <item>
          <p>
	    Add basic support for CMAC</p>
          <p>
	    Own Id: OTP-13779 Aux Id: ERL-82 PR-1138 </p>
        </item>
        <item>
          <p>
	    Removed functions deprecated in crypto-3.0 first released
	    in OTP-R16B01</p>
          <p>
	    *** POTENTIAL INCOMPATIBILITY ***</p>
          <p>
	    Own Id: OTP-13873</p>
        </item>
        <item>
          <p>
	    The <c>crypto</c> application now supports OpenSSL 1.1.</p>
          <p>
	    Own Id: OTP-13900</p>
        </item>
        <item>
          <p>
	    Allow Erlang/OTP to use OpenSSL in FIPS-140 mode, in
	    order to satisfy specific security requirements (mostly
	    by different parts of the US federal government). </p>
          <p>
	    See the new crypto users guide "FIPS mode" chapter about
	    building and using the FIPS support which is disabled by
	    default.</p>
          <p>
	    (Thanks to dszoboszlay and legoscia)</p>
          <p>
	    Own Id: OTP-13921 Aux Id: PR-1180 </p>
        </item>
        <item>
          <p>
	    Crypto chacha20-poly1305 as in RFC 7539 enabled for
	    OpenSSL >= 1.1.</p>
          <p>
	    Thanks to mururu.</p>
          <p>
	    Own Id: OTP-14092 Aux Id: PR-1291 </p>
        </item>
        <item>
          <p>
	    RSA key generation added to <c>crypto:generate_key/2</c>.
	    Thanks to wiml.</p>
          <p>
	    An interface is also added to
	    <c>public_key:generate_key/1</c>.</p>
          <p>
	    Own Id: OTP-14140 Aux Id: ERL-165, PR-1299 </p>
        </item>
        <item>
          <p>
	    Raised minimum requirement for OpenSSL version to
	    OpenSSL-0.9.8.c although we recommend a much higher
	    version, that is a version that is still maintained
	    officially by the OpenSSL project. Note that using such
	    an old version may restrict the crypto algorithms
	    supported.</p>
          <p>
	    *** POTENTIAL INCOMPATIBILITY ***</p>
          <p>
	    Own Id: OTP-14171</p>
        </item>
        <item>
          <p>
	    Deprecate crypto:rand_uniform/2 as it is not
	    cryptographically strong</p>
          <p>
	    Own Id: OTP-14274</p>
        </item>
        <item>
          <p>
	    The Crypto application now supports generation of
	    cryptographically strong random numbers (floats &lt; 1.0
	    and integer arbitrary ranges) as a plugin to the 'rand'
	    module.</p>
          <p>
	    Own Id: OTP-14317 Aux Id: PR-1372 </p>
        </item>
        <item>
          <p>
	    This replaces the hard coded test values for AES, CMAC
	    and GCM ciphers with the full validation set from NIST's
	    CAVP program.</p>
          <p>
	    Own Id: OTP-14436 Aux Id: PR-1396 </p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 3.7.4</title>

    <section><title>Fixed Bugs and Malfunctions</title>
      <list>
        <item>
          <p>
	    Fix a bug with AES CFB 128 for 192 and 256 bit keys.
	    Thanks to kellymclaughlin !</p>
          <p>
	    Own Id: OTP-14313 Aux Id: PR-1393 </p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 3.7.3</title>

    <section><title>Improvements and New Features</title>
      <list>
        <item>
          <p>
	    The implementation of the key exchange algorithms
	    diffie-hellman-group-exchange-sha* are optimized, up to a
	    factor of 11 for the slowest ( = biggest and safest)
	    group size.</p>
          <p>
	    Own Id: OTP-14169 Aux Id: seq-13261 </p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 3.7.2</title>

    <section><title>Fixed Bugs and Malfunctions</title>
      <list>
        <item>
          <p>
	    The crypto application has been fixed to not use RC2
	    against OpenSSL built with RC2 disabled.</p>
          <p>
	    Own Id: OTP-13895 Aux Id: PR-1163 </p>
        </item>
        <item>
          <p>
	    The crypto application has been fixed to not use RC4
	    against OpenSSL built with RC4 disabled.</p>
          <p>
	    Own Id: OTP-13896 Aux Id: PR-1169 </p>
        </item>
      </list>
    </section>


    <section><title>Improvements and New Features</title>
      <list>
        <item>
          <p>
	    To ease troubleshooting, <c>erlang:load_nif/2</c> now
	    includes the return value from a failed call to
	    load/reload/upgrade in the text part of the error tuple.
	    The <c>crypto</c> NIF makes use of this feature by
	    returning the source line where/if the initialization
	    fails.</p>
          <p>
	    Own Id: OTP-13951</p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 3.7.1</title>

    <section><title>Fixed Bugs and Malfunctions</title>
      <list>
        <item>
          <p>
	    Crypto has been fixed to work against OpenSSL versions
	    with disabled DES ciphers. Correct spelling of cipher
	    algorithm 'des3_cfb' has been introduced; the previous
	    misspeling still works.</p>
          <p>
	    Own Id: OTP-13783 Aux Id: ERL-203 </p>
        </item>
        <item>
          <p>
	    The size of an internal array in crypto has been fixed to
	    not segfault when having all possible ciphers. Bug fix by
	    Duncan Overbruck.</p>
          <p>
	    Own Id: OTP-13789 Aux Id: PR-1140 </p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 3.7</title>

    <section><title>Improvements and New Features</title>
      <list>
        <item>
          <p>
	    Refactor <c>crypto</c> to use the EVP interface of
	    OpenSSL, which is the recommended interface that also
	    enables access to hardware acceleration for some
	    operations.</p>
          <p>
	    Own Id: OTP-12217</p>
        </item>
        <item>
          <p>
	    Add support for 192-bit keys for the <c>aes_cbc</c>
	    cipher.</p>
          <p>
	    Own Id: OTP-13206 Aux Id: pr 832 </p>
        </item>
        <item>
          <p>
	    Add support for 192-bit keys for <c>aes_ecb</c>.</p>
          <p>
	    Own Id: OTP-13207 Aux Id: pr829 </p>
        </item>
        <item>
          <p>
	    Deprecate the function <c>crypto:rand_bytes</c> and make
	    sure that <c>crypto:strong_rand_bytes</c> is used in all
	    places that are cryptographically significant.</p>
          <p>
	    Own Id: OTP-13214</p>
        </item>
        <item>
          <p>
	    Enable AES-GCM encryption/decryption to change the tag
	    length between 1 to 16 bytes.</p>
          <p>
	    Own Id: OTP-13483 Aux Id: PR-998 </p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 3.6.3</title>

    <section><title>Fixed Bugs and Malfunctions</title>
      <list>
        <item>
          <p>
	    Fix bug for <c>aes_ecb</c> block crypto when data is
	    larger than 16 bytes.</p>
          <p>
	    Own Id: OTP-13249</p>
        </item>
        <item>
          <p>
	    Improve portability of ECC tests in Crypto and SSL for
	    "exotic" OpenSSL versions.</p>
          <p>
	    Own Id: OTP-13311</p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 3.6.2</title>

    <section><title>Fixed Bugs and Malfunctions</title>
      <list>
        <item>
          <p>
	    Small documentation fixes</p>
          <p>
	    Own Id: OTP-13017</p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 3.6.1</title>

    <section><title>Fixed Bugs and Malfunctions</title>
      <list>
        <item>
          <p>
	    Make <c>crypto:ec_curves/0</c> return empty list if
	    elliptic curve is not supported at all.</p>
          <p>
	    Own Id: OTP-12944</p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 3.6</title>

    <section><title>Fixed Bugs and Malfunctions</title>
      <list>
        <item>
          <p>
	    Enhance crypto:generate_key to calculate ECC public keys
	    from private key.</p>
          <p>
	    Own Id: OTP-12394</p>
        </item>
        <item>
          <p>
	    Fix bug in <c>crypto:generate_key</c> for <c>ecdh</c>
	    that could cause VM crash for faulty input.</p>
          <p>
	    Own Id: OTP-12733</p>
        </item>
      </list>
    </section>


    <section><title>Improvements and New Features</title>
      <list>
        <item>
          <p>
	    Use the EVP API for AES-CBC crypto to enables the use of
	    hardware acceleration for AES-CBC crypto on newer Intel
	    CPUs (AES-NI), among other platforms.</p>
          <p>
	    Own Id: OTP-12380</p>
        </item>
        <item>
          <p>
	    Add AES ECB block encryption.</p>
          <p>
	    Own Id: OTP-12403</p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 3.5</title>

    <section><title>Improvements and New Features</title>
      <list>
        <item>
          <p>
	    Extend block_encrypt/decrypt for aes_cfb8 and aes_cfb128
	    to accept keys of length 128, 192 and 256 bits. Before
	    only 128 bit keys were accepted.</p>
          <p>
	    Own Id: OTP-12467</p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 3.4.2</title>

    <section><title>Improvements and New Features</title>
      <list>
        <item>
          <p>
	    Add configure option --with-ssl-incl=PATH to support
	    OpenSSL installations with headers and libraries at
	    different places.</p>
          <p>
	    Own Id: OTP-12215 Aux Id: seq12700 </p>
        </item>
        <item>
          <p>
	    Add configure option --with-ssl-rpath to control which
	    runtime library path to use for dynamic linkage toward
	    OpenSSL.</p>
          <p>
	    Own Id: OTP-12316 Aux Id: seq12753 </p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 3.4.1</title>

    <section><title>Fixed Bugs and Malfunctions</title>
      <list>
        <item>
          <p>
	    Make <c>crypto</c> verify major version number of OpenSSL
	    header files and runtime library. Loading of
	    <c>crypto</c> will fail if there is a version mismatch.</p>
          <p>
	    Own Id: OTP-12146 Aux Id: seq12700 </p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 3.4</title>

    <section><title>Fixed Bugs and Malfunctions</title>
      <list>
        <item>
          <p>
	    Fix memory leak in <c>crypto:hmac_init/upgrade/final</c>
	    functions for all data and in <c>crypto:hmac/3/4</c> for
	    data larger than 20000 bytes. Bug exists since OTP 17.0.</p>
          <p>
	    Own Id: OTP-11953</p>
        </item>
        <item>
          <p>
	    Fix memory leak in <c>crypto</c> for elliptic curve.</p>
          <p>
	    Own Id: OTP-11999</p>
        </item>
      </list>
    </section>


    <section><title>Improvements and New Features</title>
      <list>
        <item>
          <p>
	    Add <c>aes_cfb8</c> cypher to <c>crypto:block_encrypt</c>
	    and <c>block_decrypt</c>.</p>
          <p>
	    Own Id: OTP-11911</p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 3.3</title>

    <section><title>Fixed Bugs and Malfunctions</title>
      <list>
        <item>
          <p>
	    Fix memory leaks and invalid deallocations in
	    <c>mod_pow</c>, <c>mod_exp</c> and
	    <c>generate_key(srp,...)</c> when bad arguments are
	    passed. (Thanks to Florian Zumbiehi)</p>
          <p>
	    Own Id: OTP-11550</p>
        </item>
        <item>
          <p>
	    Correction of the word 'ChipherText' throughout the
	    documentation (Thanks to Andrew Tunnell-Jones)</p>
          <p>
	    Own Id: OTP-11609</p>
        </item>
        <item>
          <p>
	    Fix fatal bug when using a hmac context variable in more
	    than one call to <c>hmac_update</c> or <c>hmac_final</c>.
	    The reuse of hmac contexts has never worked as the
	    underlying OpenSSL implementation does not support it. It
	    is now documented as having undefined behaviour, but it
	    does not crash or corrupt the VM anymore.</p>
          <p>
	    Own Id: OTP-11724</p>
        </item>
        <item>
          <p>
	    Crypto handles out-of-memory with a controlled abort
	    instead of crash/corruption. (Thanks to Florian Zumbiehi)</p>
          <p>
	    Own Id: OTP-11725</p>
        </item>
        <item>
          <p>
	    Application upgrade (appup) files are corrected for the
	    following applications: </p>
          <p>
	    <c>asn1, common_test, compiler, crypto, debugger,
	    dialyzer, edoc, eldap, erl_docgen, et, eunit, gs, hipe,
	    inets, observer, odbc, os_mon, otp_mibs, parsetools,
	    percept, public_key, reltool, runtime_tools, ssh,
	    syntax_tools, test_server, tools, typer, webtool, wx,
	    xmerl</c></p>
          <p>
	    A new test utility for testing appup files is added to
	    test_server. This is now used by most applications in
	    OTP.</p>
          <p>
	    (Thanks to Tobias Schlager)</p>
          <p>
	    Own Id: OTP-11744</p>
        </item>
      </list>
    </section>


    <section><title>Improvements and New Features</title>
      <list>
        <item>
          <p>
	    By giving --enable-static-{nifs,drivers} to configure it
	    is now possible to statically linking of nifs and drivers
	    to the main Erlang VM binary. At the moment only the asn1
	    and crypto nifs of the Erlang/OTP nifs and drivers have
	    been prepared to be statically linked. For more details
	    see the Installation Guide in the System documentation.</p>
          <p>
	    Own Id: OTP-11258</p>
        </item>
        <item>
          <p>
	    Add IGE mode for AES cipher in crypto (Thanks to Yura
	    Beznos).</p>
          <p>
	    Own Id: OTP-11522</p>
        </item>
        <item>
          <p>
	    Moved elliptic curve definition from the crypto
	    NIF/OpenSSL into Erlang code, adds the RFC-5639 brainpool
	    curves and makes TLS use them (RFC-7027).</p>
          <p>
	    Thanks to Andreas Schultz</p>
          <p>
	    Own Id: OTP-11578</p>
        </item>
        <item>
          <p>
	    Remove all obsolete application processes from crypto and
	    make it into a pure library application.</p>
          <p>
	    Own Id: OTP-11619</p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 3.2</title>

    <section><title>Fixed Bugs and Malfunctions</title>
      <list>
        <item>
          <p>
	    Fix uninitialized pointers in crypto (Thanks to Anthony
	    Ramine)</p>
          <p>
	    Own Id: OTP-11510</p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 3.1</title>

    <section><title>Improvements and New Features</title>
      <list>
        <item>
          <p>
	    Refactor ecdsa cipher to simplify code and improve
	    performance.</p>
          <p>
	    Own Id: OTP-11320</p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 3.0</title>

    <section><title>Improvements and New Features</title>
      <list>
        <item>
          <p>
	    Integrate elliptic curve contribution from Andreas
	    Schultz </p>
          <p>
	    In order to be able to support elliptic curve cipher
	    suites in SSL/TLS, additions to handle elliptic curve
	    infrastructure has been added to public_key and crypto.</p>
          <p>
	    This also has resulted in a rewrite of the crypto API to
	    gain consistency and remove unnecessary overhead. All OTP
	    applications using crypto has been updated to use the new
	    API.</p>
          <p>
	    Impact: Elliptic curve cryptography (ECC) offers
	    equivalent security with smaller key sizes than other
	    public key algorithms. Smaller key sizes result in
	    savings for power, memory, bandwidth, and computational
	    cost that make ECC especially attractive for constrained
	    environments.</p>
          <p>
	    Own Id: OTP-11009</p>
        </item>
        <item>
          <p>
	    Fixed a spelling mistake in crypto docs. Thanks to Klaus
	    Trainer</p>
          <p>
	    Own Id: OTP-11058</p>
        </item>
      </list>
    </section>


    <section><title>Known Bugs and Problems</title>
      <list>
        <item>
          <p>
	    Make the crypto functions interruptible by chunking input
	    when it is very large and bumping reductions in the nifs.</p>
          <p>
	    Not yet implemented for block_encrypt|decrypt/4</p>
          <p>
	    Impact: Individual calls to crypto functions may take
	    longer time but over all system performance should
	    improve as crypto calls will not become throughput
	    bottlenecks.</p>
          <p>
	    Own Id: OTP-11142</p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 2.3</title>

    <section><title>Improvements and New Features</title>
      <list>
        <item>
          <p>
	    Enable runtime upgrade of crypto including the OpenSSL
	    library used by crypto.</p>
          <p>
	    Own Id: OTP-10596</p>
        </item>
        <item>
          <p>
	    Improve documentation and tests for hmac functions in
	    crypto. Thanks to Daniel White</p>
          <p>
	    Own Id: OTP-10640</p>
        </item>
        <item>
          <p>
	    Added ripemd160 support to crypto. Thanks to Michael
	    Loftis</p>
          <p>
	    Own Id: OTP-10667</p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 2.2</title>

    <section><title>Fixed Bugs and Malfunctions</title>
      <list>
        <item>
          <p>
	    Remove unnecessary dependency to libssl from crypto NIF
	    library. This dependency was introduced by accident in
	    R14B04.</p>
          <p>
	    Own Id: OTP-10064</p>
        </item>
      </list>
    </section>


    <section><title>Improvements and New Features</title>
      <list>
        <item>
          <p>
	    Add crypto and public_key support for the hash functions
	    SHA224, SHA256, SHA384 and SHA512 and also hmac and
	    rsa_sign/verify support using these hash functions.
	    Thanks to Andreas Schultz for making a prototype.</p>
          <p>
	    Own Id: OTP-9908</p>
        </item>
        <item>
          <p>
	    Optimize RSA private key handling in <c>crypto</c> and
	    <c>public_key</c>.</p>
          <p>
	    Own Id: OTP-10065</p>
        </item>
        <item>
          <p>
	    Make <c>crypto:aes_cfb_128_encrypt</c> and
	    <c>crypto:aes_cfb_128_decrypt</c> handle data and cipher
	    with arbitrary length. (Thanks to Stefan Zegenhagen)</p>
          <p>
	    Own Id: OTP-10136</p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 2.1</title>

    <section><title>Improvements and New Features</title>
      <list>
        <item>
          <p>
	    public_key, ssl and crypto now supports PKCS-8</p>
          <p>
	    Own Id: OTP-9312</p>
        </item>
        <item>
	    <p>Erlang/OTP can now be built using parallel make if you
	    limit the number of jobs, for instance using '<c>make
	    -j6</c>' or '<c>make -j10</c>'. '<c>make -j</c>' does not
	    work at the moment because of some missing
	    dependencies.</p>
          <p>
	    Own Id: OTP-9451</p>
        </item>
        <item>
          <p>
	    Add DES and Triple DES cipher feedback (CFB) mode
	    functions to <c>crypto</c>. (Thanks to Paul Guyot)</p>
          <p>
	    Own Id: OTP-9640</p>
        </item>
        <item>
          <p>
	    Add sha256, sha384 and sha512 support for
	    <c>crypto:rsa_verify</c>.</p>
          <p>
	    Own Id: OTP-9778</p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 2.0.4</title>

    <section><title>Fixed Bugs and Malfunctions</title>
      <list>
        <item>
          <p>
	    <c>crypto:rand_uniform</c> works correctly for negative
	    integers. Fails with <c>badarg</c> exception for invalid
	    ranges (when <c>Hi =&lt; Lo</c>) instead of returning
	    incorrect output.</p>
          <p>
	    Own Id: OTP-9526</p>
        </item>
        <item>
          <p>
	    Fix win32 OpenSSL static linking (Thanks to Dave
	    Cottlehuber)</p>
          <p>
	    Own Id: OTP-9532</p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 2.0.3</title>

    <section><title>Fixed Bugs and Malfunctions</title>
      <list>
        <item>
          <p>
	    Various small documentation fixes (Thanks to Bernard
	    Duggan)</p>
          <p>
	    Own Id: OTP-9172</p>
        </item>
      </list>
    </section>


    <section><title>Improvements and New Features</title>
      <list>
        <item>
          <p>
	    New <c>crypto</c> support for streaming of AES CTR and
	    HMAC. (Thanks to Travis Jensen)</p>
          <p>
	    Own Id: OTP-9275</p>
        </item>
        <item>
          <p>
	    Due to standard library DLL mismatches between versions
	    of OpenSSL and Erlang/OTP, OpenSSL is now linked
	    statically to the crypto driver on Windows. This fixes
	    problems starting crypto when running Erlang as a service
	    on all Windows versions.</p>
          <p>
	    Own Id: OTP-9280</p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 2.0.2.2</title>

    <section><title>Improvements and New Features</title>
      <list>
        <item>
          <p>
	    Strengthened random number generation. (Thanks to Geoff Cant)</p>
          <p>
	    Own Id: OTP-9225</p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 2.0.2.1</title>

    <section><title>Improvements and New Features</title>
      <list>
        <item>
          <p>
	    Misc. Updates.</p>
          <p>
	    Own Id: OTP-9132</p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 2.0.2</title>

    <section><title>Improvements and New Features</title>
      <list>
        <item>
          <p>
	    AES CTR encryption support in <c>crypto</c>.</p>
          <p>
	    Own Id: OTP-8752 Aux Id: seq11642 </p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 2.0.1</title>

    <section><title>Fixed Bugs and Malfunctions</title>
      <list>
        <item>
          <p>
	    Crypto dialyzer type error in md5_mac and sha_mac.</p>
          <p>
	    Own Id: OTP-8718</p>
        </item>
        <item>
          <p>
	    RC4 stream cipher didn't work. This since the new NIF
	    implementation of <c>crypto:rc4_encrypt_with_state/2</c>
	    introduced in <c>crypto-2.0</c> didn't return an updated
	    state. (Thanks to Paul Guyot)</p>
          <p>
	    Own Id: OTP-8781</p>
        </item>
        <item>
          <p>
	    A number of memory leaks in the crypto NIF library have
	    been fixed.</p>
          <p>
	    Own Id: OTP-8810</p>
        </item>
      </list>
    </section>


    <section><title>Improvements and New Features</title>
      <list>
        <item>
          <p>
	    Added erlang:system_info(build_type) which makes it
	    easier to chose drivers, NIF libraries, etc based on
	    build type of the runtime system.</p>
          <p>
	    The NIF library for crypto can now be built for valgrind
	    and/or debug as separate NIF libraries that will be
	    automatically loaded if the runtime system has been built
	    with a matching build type.</p>
          <p>
	    Own Id: OTP-8760</p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 2.0</title>

    <section><title>Improvements and New Features</title>
      <list>
        <item>
          <p>
	    crypto application changed to use NIFs instead of driver.</p>
          <p>
	    Own Id: OTP-8333</p>
        </item>
        <item>
          <p>
	    des_ecb_encrypt/2 and des_ecb_decrypt/2 has been added to
	    the crypto module. The crypto:md4/1 function has been
	    documented.</p>
          <p>
	    Own Id: OTP-8551</p>
        </item>
        <item>
	    <p>The undocumented, unsupport, and deprecated function
	    <c>lists:flat_length/1</c> has been removed.</p>
          <p>
	    Own Id: OTP-8584</p>
        </item>
        <item>
          <p>
	    New variants of <c>crypto:dss_sign</c> and
	    <c>crypto:dss_verify</c> with an extra argument to
	    control how the digest is calculated.</p>
          <p>
	    Own Id: OTP-8700</p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 1.6.4</title>

    <section><title>Improvements and New Features</title>
      <list>
        <item>
	    <p>Cross compilation improvements and other build system
	    improvements.</p>
	    <p>Most notable:</p> <list><item> Lots of cross
	    compilation improvements. The old cross compilation
	    support was more or less non-existing as well as broken.
	    Please, note that the cross compilation support should
	    still be considered as experimental. Also note that old
	    cross compilation configurations cannot be used without
	    modifications. For more information on cross compiling
	    Erlang/OTP see the <c>$ERL_TOP/INSTALL-CROSS.md</c> file.
	    </item><item> Support for staged install using <url
	    href="http://www.gnu.org/prep/standards/html_node/DESTDIR.html">DESTDIR</url>.
	    The old broken <c>INSTALL_PREFIX</c> has also been fixed.
	    For more information see the <c>$ERL_TOP/INSTALL.md</c>
	    file. </item><item> Documentation of the <c>release</c>
	    target of the top <c>Makefile</c>. For more information
	    see the <c>$ERL_TOP/INSTALL.md</c> file. </item><item>
	    <c>make install</c> now by default creates relative
	    symbolic links instead of absolute ones. For more
	    information see the <c>$ERL_TOP/INSTALL.md</c> file.
	    </item><item> <c>$ERL_TOP/configure --help=recursive</c>
	    now works and prints help for all applications with
	    <c>configure</c> scripts. </item><item> Doing <c>make
	    install</c>, or <c>make release</c> directly after
	    <c>make all</c> no longer triggers miscellaneous
	    rebuilds. </item><item> Existing bootstrap system is now
	    used when doing <c>make install</c>, or <c>make
	    release</c> without a preceding <c>make all</c>.
	    </item><item> The <c>crypto</c> and <c>ssl</c>
	    applications use the same runtime library path when
	    dynamically linking against <c>libssl.so</c> and
	    <c>libcrypto.so</c>. The runtime library search path has
	    also been extended. </item><item> The <c>configure</c>
	    scripts of <c>erl_interface</c> and <c>odbc</c> now
	    search for thread libraries and thread library quirks the
	    same way as ERTS do. </item><item> The
	    <c>configure</c> script of the <c>odbc</c> application
	    now also looks for odbc libraries in <c>lib64</c> and
	    <c>lib/64</c> directories when building on a 64-bit
	    system. </item><item> The <c>config.h.in</c> file in the
	    <c>erl_interface</c> application is now automatically
	    generated in instead of statically updated which reduces
	    the risk of <c>configure</c> tests without any effect.
	    </item></list>
	    <p>(Thanks to Henrik Riomar for suggestions and
	    testing)</p>
	    <p>(Thanks to Winston Smith for the AVR32-Linux cross
	    configuration and testing)</p>
          <p>
	    *** POTENTIAL INCOMPATIBILITY ***</p>
          <p>
	    Own Id: OTP-8323</p>
        </item>
        <item>
          <p>
	    The crypto module now supports Blowfish in ECB, CBC and
	    OFB modes. (Thanks to Paul Oliver.)</p>
          <p>
	    Own Id: OTP-8331</p>
        </item>
        <item>
	    <p>The documentation is now possible to build in an open
	    source environment after a number of bugs are fixed and
	    some features are added in the documentation build
	    process. </p>
	    <p>- The arity calculation is updated.</p>
	    <p>- The module prefix used in the function names for
	    bif's are removed in the generated links so the links
	    will look like
	    "http://www.erlang.org/doc/man/erlang.html#append_element-2"
	    instead of
	    "http://www.erlang.org/doc/man/erlang.html#erlang:append_element-2".</p>
	    <p>- Enhanced the menu positioning in the html
	    documentation when a new page is loaded.</p>
	    <p>- A number of corrections in the generation of man
	    pages (thanks to Sergei Golovan)</p>
	    <p>- The legal notice is taken from the xml book file so
	    OTP's build process can be used for non OTP
	    applications.</p>
          <p>
	    Own Id: OTP-8343</p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 1.6.3</title>

    <section><title>Fixed Bugs and Malfunctions</title>
      <list>
        <item>
          <p>
	    Suppressed false valgrind errors caused by libcrypto
	    using uninitialized data as entropy.</p>
          <p>
	    Own Id: OTP-8200</p>
        </item>
      </list>
    </section>


    <section><title>Improvements and New Features</title>
      <list>
        <item>
          <p>
	    The documentation is now built with open source tools
	    (xsltproc and fop) that exists on most platforms. One
	    visible change is that the frames are removed.</p>
          <p>
	    Own Id: OTP-8201</p>
        </item>
        <item>
          <p>
	    When the crypto application failed to load the
	    OpenSSL/LibEAY shared object, error indication was
	    sparse. Now a more specific error message is sent to the
	    error logger.</p>
          <p>
	    Own Id: OTP-8281</p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 1.6.2</title>

    <section><title>Fixed Bugs and Malfunctions</title>
      <list>
        <item>
          <p>
            Fixed emulator crash caused by crypto using an old
            openssl version that did not cope with large file
            descriptors.</p>
          <p>
            Own Id: OTP-8261 Aux Id: seq11434 </p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 1.6.1</title>

    <section><title>Fixed Bugs and Malfunctions</title>
      <list>
        <item>
          <p>
	    <c>Makefile.in</c> has been updated to use the LDFLAGS
	    environment variable (if set). (Thanks to Davide
	    Pesavento.)</p>
          <p>
	    Own Id: OTP-8157</p>
        </item>
      </list>
    </section>


    <section><title>Improvements and New Features</title>
      <list>
        <item>
          <p>
	    Support for Blowfish cfb64 added to <c>crypto</c>.</p>
          <p>
	    Own Id: OTP-8096</p>
        </item>
        <item>
          <p>
	    New function <c>crypto:aes_cbc_ivec</c></p>
          <p>
	    Own Id: OTP-8141</p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 1.6</title>

    <section><title>Fixed Bugs and Malfunctions</title>
      <list>
        <item>
          <p>
	    The <c>dh_compute_key</c> sometimes returned a
	    SharedSecret of incorrect size.</p>
          <p>
	    Own Id: OTP-7674</p>
        </item>
      </list>
    </section>


    <section><title>Improvements and New Features</title>
      <list>
        <item>
          <p>
	    Optimization for drivers by creating small binaries
	    direct on process heap.</p>
          <p>
	    Own Id: OTP-7762</p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 1.5.3</title>

    <section><title>Improvements and New Features</title>
      <list>
        <item>
          <p>
            Added new functions: dss_verify/3, rsa_verify/3,
            rsa_verify/4, dss_sign/2, rsa_sign/2, rsa_sign/3,
            rsa_public_encrypt, rsa_private_decrypt/3,
            rsa_private_encrypt/3, rsa_public_decrypt/3,
            dh_generate_key/1, dh_generate_key/2, dh_compute_key/3.</p>
          <p>
            Own Id: OTP-7545</p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 1.5.2.1</title>

    <section><title>Improvements and New Features</title>
      <list>
        <item>
          <p>
	    Minor performance optimization.</p>
          <p>
	    Own Id: OTP-7521</p>
        </item>
      </list>
    </section>

</section>

<section><title>Crypto 1.5.2</title>

    <section><title>Fixed Bugs and Malfunctions</title>
      <list>
        <item>
          <p>
	    ./configure has been improved to find 64-bit OpenSSL
	    libraries.</p>
          <p>
	    Own Id: OTP-7270</p>
        </item>
      </list>
    </section>


    <section><title>Improvements and New Features</title>
      <list>
        <item>
          <p>
	    crypto and zlib drivers improved to allow concurent smp
	    access.</p>
          <p>
	    Own Id: OTP-7262</p>
        </item>
      </list>
    </section>

</section>

  <section>
    <title>Crypto 1.5.1.1</title>

    <section>
      <title>Improvements and New Features</title>
      <list type="bulleted">
        <item>
          <p>The linked in driver for the crypto application is now
            linked statically against the OpenSSL libraries, to avoid
            installation and runtime problems in connection to the
            OpenSSL library locations.</p>
          <p>Own Id: OTP-6680</p>
        </item>
        <item>
          <p>Minor Makefile changes.</p>
          <p>Own Id: OTP-6689</p>
        </item>
      </list>
    </section>
  </section>

  <section>
    <title>Crypto 1.5</title>

    <section>
      <title>Improvements and New Features</title>
      <list type="bulleted">
        <item>
          <p>It is now explicitly checked at start-up that the crypto
            driver is properly loaded (Thanks to Claes Wikstrom).</p>
          <p>Own Id: OTP-6109</p>
        </item>
      </list>
    </section>
  </section>

  <section>
    <title>Crypto 1.4</title>

    <section>
      <title>Improvements and New Features</title>
      <list type="bulleted">
        <item>
          <p>The previously undocumented and UNSUPPORTED <c>ssh</c>
            application has been updated and documented. This release
            of the <c>ssh</c> application is still considered to be a
            beta release and (if necessary) there could still be
            changes in its API before it reaches 1.0.</p>
          <p>Also, more cryptographic algorithms have been added to
            the <c>crypto</c> application.</p>
          <p>*** POTENTIAL INCOMPATIBILITY ***</p>
          <p>Own Id: OTP-5631</p>
        </item>
      </list>
    </section>
  </section>

  <section>
    <title>Crypto 1.3</title>

    <section>
      <title>Improvements and New Features</title>
      <list type="bulleted">
        <item>
          <p>Added support for RFC 3826 - The Advanced Encryption Standard 
            (AES) Cipher Algorithm in the SNMP User-based Security Model.
                        <br></br>
Martin Bj&ouml;rklund</p>
        </item>
      </list>
    </section>
  </section>

  <section>
    <title>Crypto 1.2.3</title>

    <section>
      <title>Fixed Bugs and Malfunctions</title>
      <list type="bulleted">
        <item>
          <p>Linked in drivers in the crypto, and asn1 applications
            are now compiled with the -D_THREAD_SAFE and -D_REENTRANT
            switches on unix when the emulator has thread support
            enabled.</p>
          <p>Linked in drivers on MacOSX are not compiled with the
            undocumented -lbundle1.o switch anymore. Thanks to Sean
            Hinde who sent us a patch.</p>
          <p>Linked in driver in crypto, and port programs in ssl, now
            compiles on OSF1.</p>
          <p>Minor makefile improvements in runtime_tools.</p>
          <p>Own Id: OTP-5346</p>
        </item>
      </list>
    </section>
  </section>

  <section>
    <title>Crypto 1.2.2</title>

    <section>
      <title>Improvements and New Features</title>
      <list type="bulleted">
        <item>
          <p>Corrected error handling. If the port to the driver that
            crypto uses is unexpectedly closed (which should not
            happen during normal operation of crypto), crypto will
            terminate immediately (rather than crashing the next time
            crypto is used). Also corrected build problems on Mac OS
            X.</p>
          <p>Own Id: OTP-5279</p>
        </item>
      </list>
    </section>
  </section>

  <section>
    <title>Crypto 1.2.1</title>

    <section>
      <title>Fixed Bugs and Malfunctions</title>
      <list type="bulleted">
        <item>
          <p>It was not possible in R9 to relink the crypto driver.
            The object file was missing as well as an example
            makefile. The crypto driver object file is now released
            with the application (installed in priv/obj). An example
            makefile has also been added to the priv/obj directory.
            The makefile serves as an example of how to relink the
            driver on Unix (crypto_drv.so) or Windows
            (crypto_drv.dll).</p>
          <p>Own Id: OTP-4828 Aux Id: seq8193 </p>
        </item>
      </list>
    </section>
  </section>

  <section>
    <title>Crypto 1.2</title>

    <section>
      <title>Improvements and New Features</title>
      <list type="bulleted">
        <item>
          <p>Previous versions of Crypto where delivered with
            statically linked binaries based on SSLeay. That is not
            longer the case.  The current version of Crypto requires
            dynamically linked OpenSSL libraries that the user has to
            install. The library needed is <c>libcrypto.so</c> (Unix)
            or <c>libeay32.[lib|dll]</c> (Win32). For further details
            see the crypto(6) application manual page.</p>
        </item>
        <item>
          <p>This version of Crypto uses the new DES interface of
            OpenSSL 0.9.7, which is not backward compatible with
            earlier versions of OpenSSL.
            </p>
        </item>
        <item>The functions <c>des_ede3_cbc_encrypt/5</c> and
        <c>des_ede3_cbc_decrypt/5</c> have been renamed to
        <c>des3_cbc_encrypt/5</c> and <c>des3_cbc_decrypt/5</c>,
         respectively. The old functions have been retained (they are
         deprecated and not listed in the crypto(3) manual page).</item>
      </list>
    </section>

    <section>
      <title>Reported Fixed Bugs and Malfunctions</title>
      <list type="bulleted">
        <item>
          <p>The start of crypto failed on Windows, due to erroneous addition
            of a DES3 algorithm.</p>
          <p>Own Id: OTP-4684
                        <br></br>
Aux Id: seq7864</p>
        </item>
      </list>
    </section>
  </section>

  <section>
    <title>Crypto 1.1.3</title>

    <section>
      <title>Reported Fixed Bugs and Malfunctions</title>
      <list type="bulleted">
        <item>To obtain backward compatibility with the old SSLeay
         package, and with earlier versions of OpenSSL, the macro
         OPENSSL_DES_LIBDES_COMPATIBILITY has been added to
        <c>crypto_drv.c</c>. This is of importance only for the open
         source version of Crypto.
        </item>
      </list>
    </section>
  </section>

  <section>
    <title>Crypto 1.1.2</title>

    <section>
      <title>Reported Fixed Bugs and Malfunctions</title>
      <list type="bulleted">
        <item>
          <p>In the manual page <c>crypto(3)</c> the function names
            <c>md5_finish</c> and <c>sha_finish</c> have been changed to
            <c>md5_final</c> and <c>sha_final</c> to correctly document
            the implementation.</p>
          <p>Own Id: OTP-3409
            </p>
        </item>
      </list>
    </section>
  </section>

  <section>
    <title>Crypto 1.1.1</title>
    <p>Code replacement in runtime is supported. Upgrade can be done from
      from version 1.1 and downgrade to version 1.1.
      </p>

    <section>
      <title>Improvements and New Features</title>
      <list type="bulleted">
        <item>
          <p>The driver part of the Crypto application has been
            updated to use the erl_driver header file. Version 1.1.1
            requires emulator version 4.9.1 or later.</p>
        </item>
      </list>
    </section>
  </section>

  <section>
    <title>Crypto 1.1</title>

    <section>
      <title>Reported Fixed Bugs and Malfunctions</title>
      <list type="bulleted">
        <item>
          <p>On Windows the crypto_drv was incorrectly linked to
            static run-time libraries instead of dynamic ones.</p>
          <p>Own Id: OTP-3240
            </p>
        </item>
      </list>
    </section>
  </section>

  <section>
    <title>Crypto 1.0</title>
    <p>New application.
      </p>
  </section>
</chapter>