1 Revision history for Perl extension Net::SSLeay.
3 0.01 Thu Jun 27 03:56:00 1996
4 - original version; created by h2xs 1.16
5 0.02 Trial with SSL.pm name
6 0.03 Renamed everything Net::SSLeay
7 0.04 19.7.1996 Fixed some 0.6.1 incompatibilities, namely removed
8 #include <ssl_locl.h>, fixed typo in SSL_get_cerificate, fixed
9 the return type of the same. --Sampo
10 1.00 19.6.1998, Sampo Kellomaki <sampo@@_iki.fi>
11 - overhauled to SSLeay-0.9.0
12 - renamed cat to sslcat
13 - added lots of convenience functions, like get_https
14 - added couple of X509 routines
15 - improved tests and documentation
16 - fixed callbacks (but found that old callbacks dont work)
17 1.01 23.6.1998, Sampo Kellomaki <sampo@@iki_.fi>
18 - made Makefile.PL check SSLeay version and to be more CPAN kosher
19 - changed build instructions to build outside perl source tree
20 - added random number initialization using /dev/urandom (if available)
21 - made ssl_write_all accept references, this is more memory efficient
22 1.02 8.7.1998, Sampo Kellomaki <sampo@@iki._fi>
23 - Added SSL_(CTX)?_set_options and associated constants
25 1.03 4.1.1999, Sampo Kellomaki <sampo@@iki._fi>
26 - Merged URI encoding patch to make_form
27 from Joe Rhett <jrhett@@navigist._com>
28 - changed sslcat, ssl_read_all, ssl_write_all to return error messages
29 as second member of list. Functions continue to behave the old way
30 if scalar return value is used (they check this with wantarray).
31 Change was suggested by Joe Rhett.
32 - changed $trace levels so that 0 does not produce any output
33 - changed get_https and put_https to fake error 900 in $response
35 - changed print_errs and some other internals to return textual
36 errors instead of error count
37 - changed SSLeay.xs comments from #if 0 to #define REM. This will
38 hopefully make it easier to compile with some vendor compilers
39 - Added version detection code for OpenSSL-0.9.1c and checked
41 1.04 31.1.1999, Sampo Kellomaki <sampo@@_iki._fi>
42 - Backward incompatible changes in OpenSSL API mean that 1.04 will
43 drop support for SSLeay and all OpenSSL versions prior
44 to 0.9.2b release. Thanks guys!
45 - Detected errors in OpenSSL-0.9.2b/ssl/ssl.h - see patch in README
46 - Reordered arguments of several functions to track OpenSSL-0.9.2b
47 changes. This also changes the order of args in corresponding
48 perl functions. You have been warned!
49 - SSL_use_certificate_ASN1(s,d,len) // swapped d and len
50 - WARNING: Possibly fatal verify_callback parameter list issue
52 - cleaned up many macros that used to access ctx->session directly,
53 OpenSSL-0.9.2b defines thes macros properly so I use them now.
54 - Added SSL_ctrl() and SSL_CTX_ctrl()
55 - Added SSL_get_options(), SSL_CTX_get_options(),
56 SSL_CTX_set_cipher_list()
57 - Removed SSL_add_session(), SSL_remove_session(),
58 and SSL_flush_sessions() per #if 0 in ssl.h, line 667
59 - Updated paths in various utility programs
60 - Upgraded version number detection logic in Makefile.PL
61 - Added -rsaref flag to Makefile.PL. This allows linking against rsaref
62 30.7.1999, final squeeze to get this out --Sampo
63 - upgrade to OpenSSL-0.9.3a
64 - upper case all header names so keys of the hash returned
65 from get_https are predictible
66 - fixed get_https and post_https so they don't do shutdown
67 anymore. This used to cause headaches when connection
68 renegotiation happened.
69 - applied ssl_read_CRLF patch by Clinton Wong <clintdw@@netcom._com>
70 - ActivePerl diffs from anton@@_genua.de applied,
72 1.05 31.1.1999, --Sampo
73 - fixed test cert creation (lack of symlinks, reported
74 by schinder@@_pobox.com)
75 - callbacks fixed and tested to work
76 - added Authentication examples
77 - added couple more X509_STORE_CTX family functions
78 1.06 7.4.2001, --Sampo
79 - fixed ssl_read_all bug where `0' input was mistaken for EOF.
80 - openssl-0.9.6a fixes (e.g. random number generator init)
81 - various minor fixes subnitted by fellow netters (sorry, I lost track
82 of your names so I do not name the contributors here)
84 - TLSv1 support by Stephen C. Koehler <koehler@@securecomputing_.com>
86 - applied 64 bit fixes by Marko Asplund <aspa@@kronodoc._fi>
88 - applied error codes and SSL_*_method patch by Noel Burton-Krahn
89 <noel@burton-krahn.com> via aspa
90 - warning cleanups by Jared Allison <jallison@@UU_.NET>
91 - do last loop fixes from Jim Bowlin <bowlin@@_mindspring.com>
92 - Fixed extra-newline-if-header-already-contained-newline problem
93 reported by Sean McMurray <smcmurray@verio.net> (first reported by
94 Yuao TANIGAWA <yuao@@_www.infosite.ne.jp> but not fixed by me back
95 then for some reason, my bad)
96 - Added ability to set client certificate for https_cat and sslcat
97 as suggested by Avi Ben-Harush <avib@@_atomica.com>
98 - created do_https2 with more rational calling sequence
100 - numerous windows oriented fixes from Eric A Selber
101 <eselber@@_briefcase.com>
102 - bumped OpenSSL version requirement to 0.9.6b and tested
103 - merged in Net::SSLeay::Handle by Jim Bowlin <jbowlin@@_linklint.org>
105 - fixed Makefile.PL (computation of bin_path) and test.pl ($perl
106 use before defined) per Gordon Lack <gml4410@@_ggr.co.uk>
108 - Patch by Jeremy Mates <jmates@@_mbt.washington.edu> to make Handle.pm
109 more acceptable for older perls
111 - systematically implemented many of the newer functions of
112 openssl API (per popular request and for completeness)
114 - Added proxy support by Bruno De Wolf <bruno.dewolf@@pandora._be>
116 - Added proxy support to Net::SSLeay::Handle, too
118 - cosmetic fix to socket options from
119 Kwindla Hultman Kramer <kwindla@@allafrica_.com>
121 - eliminated initializing random numbers using /etc/passwd per
122 comments by Matt Messier <matt@@securesw_.com>
123 - tested against openssl-0.9.6c
125 - added code to Makefile.PL to verify that the same C compiler
126 is used for both perl and openssl
127 - added code to Makefile.PL to support aCC on HPUX. Detective
128 work contributed by Marko Asplund.
129 - added peer certificate support to hilevel API, inspired
130 by mock@@_obscurity.org
132 - added `use bytes' from Marcus Taylor <marcus@@semantico_.com>
133 This avoids unicode/utf8 (as may appear in some XML docs)
134 from fooling the length comuptations.
135 - Dropped support for perl5.005_03 because I do not have opportunity
137 1.16 17.4.2002-22.5.2002
138 - applied patch to fix CTX_set_default_passwd_cb() contributed
139 by Timo Kujala <timo.kujala@@intellitel_.com>, --Sampo
140 - similar patch by Chris Ridd <chris.ridd@messagingdirect.com>
141 - applied patch to add various API functions by mikem@open.com_.au
142 - 5.005_03 compat fix for Handle.pm from Jim Mintha <jim@@ic._uva.nl>
144 - further fixes for Net::SSLeay::Handle from jbowlin@@_linklint.org
145 - improved README.Win32 and added RECIPE.Win32 from
146 Hermann Kelley <hkelley@@secmon._com>
148 - applied minor patch by Mark Veltzer <mark@@veltzer._org> to Makefile.PL
149 1.19 10.8.2002-16.8.2002
150 - Added SSL_peek patch to ssl_read_until from
151 Peter Behroozi <peter@@fhpwireless_.com> --Sampo
152 - Improved Windows instructions per Marcel Bucher <marcle@bucher._cc>
154 - Additional patch by Peter Behroozi <peter@@fhpwireless_.com> --Sampo
155 - Patch by Mike McCauley mikem@open.com_.au
157 - Patch by Mike McCauley mikem@open.com_.au
159 - applied patch from Tim Engler <tim@burntcouch_.com>
161 - perl-5.8/gcc-3.2 patch on Makefile.PL from
162 Joern_Hoos@@notes.uni-paderborn._de, lucho@@galix._com,
163 bellis@@saberlogic._com, and simonclewer@@superquote._com
165 - proxy auth fix from Bill.Muller@@ubsw_..com
167 - RAND patch from Toni Andjelkovic <toni@soth._at>
169 - some minor tweaks by many, mainly for RH build
170 - memory leak and cleanup patches from Marian Jancar <mjancar@suse._cz>
172 - write_partial() return value patch from
173 Kim Minh Kaplan <kmkaplan@selfoffice._com>
175 - applied version check fix to Net::SSLeay::Handle.pm
176 from Jason Rhinelander <jason@gossamer-threads._com>
178 - new features: http and raw tcp support
179 - fixed apparent STDIO vs. sysread bug in proxy connect
181 - added tcpecho.pl and tcpcat.pl to MANIFEST
182 - fixed some further bugs with TCP read all, etc.
183 - fixed some const char pointer warnings
185 - Fixed the MD5 function for hashsums containing \0
186 - Fixed some compile warnings with recent gcc.
188 + Don't add additional Host: headers if it's already given
189 + Omit the :$port suffix for standard ports
190 + Thanks to ivan-cpan-rt@420.am
191 - Limit the chunk size when reading with tcp_read_all to 0x1000.
192 This fixes various rt tickets.
193 - Added patch to allow session caching
194 - Mike McCauley and Florian Ragwitz maintain this module now
196 - Only bind X509_STORE_set_trust #if OPENSSL_VERSION_NUMBER >= 0x0090800fL
197 - Removed %Filenum_Objects from Net::SSLeay::Handle so unused handles will be freed.
199 - improved openssl path guessing, forcing openssl path now
200 requires the -path flag (caution: incompatible flag change)
201 Path guessing works on windows too.
202 mikem, with patches from Stas Bekman
203 - Added /usr/sfw/bin/openssl to path guessing for Open Solaris,
204 suggested by Igor Boehme.
205 - Fixed a problem with X509_get_subjectAltNames not working when the
206 subjectAltNAmes are the first extension. Reported by Achim Grolms
209 - Fix linking problems on Windows. Tested with VC++ 6.0, Shining Light
210 0.9.7L on Windows Server 2003 with ActivePerl 5.8.8.820. Also tested
211 with OpenSSL 0.9.8e compiled from source.
212 - Unable to get working systems when compiling with MS Visual Studio
213 Express 2005. Contributions requested. This may be relevant:
214 http://www.itwriting.com/blog/?postid=261&replyto=2542
215 - Fixed a number of minor compile warnings on Windows
216 - Updated README.Win32 to define building procedures on Windows
217 - Fixed incorrect test failure reports in 08_external.
218 - Add parens to function calls in Makefile.PL to prevent
219 warnings with some perls.
220 - Tested on Sparc Solaris 8, Sparc Solaris 10, OpenSuSE 10.2 x64,
221 OpenSuSE 10.0 x86, FreeBSD 6.0 x86, Ubuntu 6.10, Fedora Core 6 x86
222 - Changed type of SSL_set_info_callback args to stop compiler warnings
224 - Removed auto_include from Makefile.PL
225 - Removed build_requires('Test::NoWarnings') from Makefile.PL
226 - Testing with Strawberry Perl on Windows XP SP2, added doc to
228 - Testing with Perl CamelPack 5.8.7 on Windows XP SP2,added doc to
230 - Added optional support for SSL_set_hello_extension,
231 SSL_set_session_secret_cb to support various extension patches from
232 a patch to openssl-0.9.9-dev contributed by Jouni Malinen.
233 See wpa_supplicant/patches/openssl-0.9.9-session-ticket.patch in the
234 latest (git) version 0.6 and later of wpa_suplicant at
235 http://hostap.epitest.fi/. These additions are ifdefed to
236 SSL_F_SSL_SET_HELLO_EXTENSION which is added by the patch
237 Tested with openssl-SNAP-20070816.
238 - Added SSL_SESSION_set_master_key and SSL_get_keyblock_size.
239 - Added all SSL_OP_* options flags present in 0.9.9
240 - Fixed a bug in SSL_set_tmp_dh
241 - Doc improvements in README.Win32
243 - Don't let the tests die when something unexpected happens. Just BAIL_OUT.
244 - Some Win32 improvements.
247 - Fixed a compile problem with inc_paths /usr/kerberos/include
248 in inc/Module/Install/PRIVATE/Net/SSLeay.pm. Reported by "J. Nick
250 - Added optional support for SSL_set_hello_extension,
251 SSL_set_session_secret_cb to support various extension patches from
252 a patch to openssl-0.9.9-dev contributed by Jouni Malinen.
253 See wpa_supplicant/patches/openssl-0.9.9-session-ticket.patch in the
254 latest (git) version 0.6 and later of wpa_suplicant at
255 http://hostap.epitest.fi/. These additions are ifdefed to
256 SSL_F_SSL_SET_HELLO_EXTENSION which is added by the patch
257 Tested with openssl-SNAP-20070816.
258 - Added SSL_SESSION_set_master_key and SSL_get_keyblock_size.
259 - Added all SSL_OP_* options flags present in 0.9.9
260 - Fixed a bug in SSL_set_tmp_dh
261 - Doc improvements in README.Win32
262 - Fixed a problem with proxy connections: open_proxy_tcp_connection
263 was stopping after the first \n from teh proxy,
264 but instead should have looked for
265 $CRLF . $CRLF to find the beginning of the SSL content
266 - Fixed missing / on /usr/kerberos/include, reported by several people
267 - removed bacus.pt from host list in t/handle/external/10_destroy.t,
268 since it seems no longer to respond. Reported by tco2.
269 - changed t/handle/external/10_destroy.t so this list of URIs to be
270 tested can be configured with environment variable SSLEAY_URIS, a
271 colon separated list of host names. Suggested by tco2.
272 - changed t/handle/external/50_external.t and t/external/08_external.t
273 so this list of sites to be
274 tested can be configured with environment variable SSLEAY_SITES, a
275 colon separated list of host names. Suggested by tco2.
276 - Fixed doucumentation in README of how to use OPENSSL_PREFIX
277 environment variable to control the location of openssl. Reported by
278 "Quanah Gibson-Mount via RT".
279 - Don't use Module::Installs auto_install.
280 - Bind NID_ and GEN_ constants.
281 - Default to not running external tests.
284 - Fixed problem with X509_get_subjectAltNames, where some types of Alt
285 Name (eg DIRNAMEs) were not properly handled, resulting in seg faults.
286 Reported by Achim Grolms.
287 - Added support for ENGINE_load_builtin_engines and
288 ENGINE_register_all_complete in order to enable built-in OpenSSL
289 crypto engines for hardware acceleration etc.
290 - Added support for ENGINE_by_id and ENGINE_set_default, required
291 to enable Sun crypto acceleration
294 - Fix test plan for autoload.t if Test::Exception isn't available.
295 - Skip rsa_generate_key.t if Test::Exception isn't available.