Engine for the ICSF backend
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

19 lines
1.1 KiB

  1. * Fri Jul 9 2010 - yoder1@us.ibm.com
  2. o converted patch to stand-alone packaging.
  3. o added #ifdef OPENCRYPTOKI around the #pragma(pack) instructions in
  4. cryptoki.h. openCryptoki doesn't pack its structures, so this was causing an
  5. alignment issue.
  6. o added #ifdef's based on openssl version in order to support the 2 different
  7. prototypes for RSA_verify between openssl 0.9.8 and 1.0.0.
  8. o Fixed an issue with passing a reference to an unsigned int through the
  9. pkcs11 library interface. This broke RSA_sign on 64bit platforms.
  10. o changed SSL_SIG_LENGTH from 64 to 36. 36 is the size of the concatenation of
  11. an MD5 hash and a SHA1 hash, which is the length of the NID_md5_sha1 data to
  12. be signed or verified. See e_pkcs11.c lines 2226 and 2093.
  13. o in pkcs11_FindOrCreateKey, check that rsa->n exists before creating a pkcs11
  14. object based on the RSA struct.
  15. o in pkcs11_init_key, fix a condition where the iv is passed in through the
  16. CIPHER_CTX pointer instead of the API itself, which led to a segfault.
  17. o Fixed reference counting issue, probably compiler-induced
  18. o drafted an rpm specfile