version

ipsec vpn

Version 4.04
	Fixed a few tests in destest.  Also added x86 assember for
	des_ncbc_encrypt() which is the standard cbc mode function.
	This makes a very very large performace difference.
	Ariel Glenn ariel@columbia.edu reports that the terminal
	'turn echo off' can return (errno == EINVAL) under solaris
	when redirection is used.  So I now catch that as well as ENOTTY.


Version 4.03
	Left a static out of enc_write.c, which caused to buffer to be
	continiously malloc()ed.  Does anyone use these functions?  I keep
	on feeling like removing them since I only had these in there
	for a version of kerberised login.  Anyway, this was pointed out
	by Theo de Raadt <deraadt@cvs.openbsd.org>
	The 'n' bit ofb code was wrong, it was not shifting the shift
	register. It worked correctly for n == 64.  Thanks to
	Gigi Ankeny <Gigi.Ankeny@Eng.Sun.COM> for pointing this one out.

Version 4.02
	I was doing 'if (memcmp(weak_keys[i],key,sizeof(key)) == 0)'
	when checking for weak keys which is wrong :-(, pointed out by
	Markus F.X.J. Oberhumer <markus.oberhumer@jk.uni-linz.ac.at>.

Version 4.01
	Even faster inner loop in the DES assembler for x86 and a modification
	for IP/FP which is faster on x86.  Both of these changes are
	from Svend Olaf Mikkelsen <svolaf@inet.uni-c.dk>.  His
	changes make the assembler run %40 faster on a pentium.  This is just
	a case of getting the instruction sequence 'just right'.
	All credit to 'Svend' :-)
	Quite a few special x86 'make' targets.
	A libdes-l (lite) distribution.

Version 4.00
	After a bit of a pause, I'll up the major version number since this
	is mostly a performace release.  I've added x86 assembler and
	added more options for performance.  A %28 speedup for gcc 
	on a pentium and the assembler is a %50 speedup.
	MIPS CPU's, sparc and Alpha are the main CPU's with speedups.
	Run des_opts to work out which options should be used.
	DES_RISC1/DES_RISC2 use alternative inner loops which use
	more registers but should give speedups on any CPU that does
	dual issue (pentium).  DES_UNROLL unrolls the inner loop,
	which costs in code size.

Version 3.26
	I've finally removed one of the shifts in D_ENCRYPT.  This
	meant I've changed the des_SPtrans table (spr.h), the set_key()
	function and some things in des_enc.c.  This has definitly
	made things faster :-).  I've known about this one for some
	time but I've been too lazy to follow it up :-).
	Noticed that in the D_ENCRYPT() macro, we can just do L^=(..)^(..)^..
	instead of L^=((..)|(..)|(..)..  This should save a register at
	least.
	Assember for x86.  The file to replace is des_enc.c, which is replaced
	by one of the assembler files found in asm.  Look at des/asm/readme
	for more info.

	/* Modification to fcrypt so it can be compiled to support
	HPUX 10.x's long password format, define -DLONGCRYPT to use this.
	Thanks to Jens Kupferschmidt <bt1cu@hpboot.rz.uni-leipzig.de>. */

	SIGWINCH case put in des_read_passwd() so the function does not
	'exit' if this function is recieved.

Version 3.25 17/07/96
	Modified read_pwd.c so that stdin can be read if not a tty.
	Thanks to Jeff Barber <jeffb@issl.atl.hp.com> for the patches.
	des_init_random_number_generator() shortened due to VMS linker
	limits.
	Added RSA's DESX cbc mode.  It is a form of cbc encryption, with 2
	8 byte quantites xored before and after encryption.
	des_xcbc_encryption() - the name is funny to preserve the des_
	prefix on all functions.

Version 3.24 20/04/96
	The DES_PTR macro option checked and used by SSLeay configuration

Version 3.23 11/04/96
	Added DES_LONG.  If defined to 'unsigned int' on the DEC Alpha,
	it gives a %20 speedup :-)
	Fixed the problem with des.pl under perl5.  The patches were
	sent by Ed Kubaitis (ejk@uiuc.edu).
	if fcrypt.c, changed values to handle illegal salt values the way
	normal crypt() implementations do.  Some programs apparently use
	them :-(. The patch was sent by Bjorn Gronvall <bg@sics.se>

Version 3.22 29/11/95
	Bug in des(1), an error with the uuencoding stuff when the
	'data' is small, thanks to Geoff Keating <keagchon@mehta.anu.edu.au>
	for the patch.

Version 3.21 22/11/95
	After some emailing back and forth with 
	Colin Plumb <colin@nyx10.cs.du.edu>, I've tweaked a few things
	and in a future version I will probably put in some of the
	optimisation he suggested for use with the DES_USE_PTR option.
	Extra routines from Mark Murray <mark@grondar.za> for use in
	freeBSD.  They mostly involve random number generation for use
	with kerberos.  They involve evil machine specific system calls
	etc so I would normally suggest pushing this stuff into the
	application and/or using RAND_seed()/RAND_bytes() if you are
	using this DES library as part of SSLeay.
	Redone the read_pw() function so that it is cleaner and
	supports termios, thanks to Sameer Parekh <sameer@c2.org>
	for the initial patches for this.
	Renamed 3ecb_encrypt() to ecb3_encrypt().  This has been
	 done just to make things more consistent.
	I have also now added triple DES versions of cfb and ofb.

Version 3.20
	Damn, Damn, Damn, as pointed out by Mike_Spreitzer.PARC@xerox.com,
	my des_random_seed() function was only copying 4 bytes of the
	passed seed into the init structure.  It is now fixed to copy 8.
	My own suggestion is to used something like MD5 :-)

Version 3.19 
	While looking at my code one day, I though, why do I keep on
	calling des_encrypt(in,out,ks,enc) when every function that
	calls it has in and out the same.  So I dropped the 'out'
	parameter, people should not be using this function.

Version 3.18 30/08/95
	Fixed a few bit with the distribution and the filenames.
	3.17 had been munged via a move to DOS and back again.
	NO CODE CHANGES

Version 3.17 14/07/95
	Fixed ede3 cbc which I had broken in 3.16.  I have also
	removed some unneeded variables in 7-8 of the routines.

Version 3.16 26/06/95
	Added des_encrypt2() which does not use IP/FP, used by triple
	des routines.  Tweaked things a bit elsewhere. %13 speedup on
	sparc and %6 on a R4400 for ede3 cbc mode.

Version 3.15 06/06/95
	Added des_ncbc_encrypt(), it is des_cbc mode except that it is
	'normal' and copies the new iv value back over the top of the
	passed parameter.
	CHANGED des_ede3_cbc_encrypt() so that it too now overwrites
	the iv.  THIS WILL BREAK EXISTING CODE, but since this function
	only new, I feel I can change it, not so with des_cbc_encrypt :-(.
	I need to update the documentation.

Version 3.14 31/05/95
	New release upon the world, as part of my SSL implementation.
	New copyright and usage stuff.  Basically free for all to use
	as long as you say it came from me :-)

Version 3.13 31/05/95
	A fix in speed.c, if HZ is not defined, I set it to 100.0
	which is reasonable for most unixes except SunOS 4.x.
	I now have a #ifdef sun but timing for SunOS 4.x looked very
	good :-(.  At my last job where I used SunOS 4.x, it was
	defined to be 60.0 (look at the old INSTALL documentation), at
	the last release had it changed to 100.0 since I now work with
	Solaris2 and SVR4 boxes.
	Thanks to  Rory Chisholm <rchishol@math.ethz.ch> for pointing this
	one out.

Version 3.12 08/05/95
	As pointed out by The Crypt Keeper <tck@bend.UCSD.EDU>,
	my D_ENCRYPT macro in crypt() had an un-necessary variable.
	It has been removed.

Version 3.11 03/05/95
	Added des_ede3_cbc_encrypt() which is cbc mode des with 3 keys
	and one iv.  It is a standard and I needed it for my SSL code.
	It makes more sense to use this for triple DES than
	3cbc_encrypt().  I have also added (or should I say tested :-)
	cfb64_encrypt() which is cfb64 but it will encrypt a partial
	number of bytes - 3 bytes in 3 bytes out.  Again this is for
	my SSL library, as a form of encryption to use with SSL
	telnet.

Version 3.10 22/03/95
	Fixed a bug in 3cbc_encrypt() :-(.  When making repeated calls
	to cbc3_encrypt, the 2 iv values that were being returned to
	be used in the next call were reversed :-(.
	Many thanks to Bill Wade <wade@Stoner.COM> for pointing out
	this error.

Version 3.09 01/02/95
	Fixed des_random_key to far more random, it was rather feeble
	with regards to picking the initial seed.  The problem was
	pointed out by Olaf Kirch <okir@monad.swb.de>.

Version 3.08 14/12/94
	Added Makefile.PL so libdes can be built into perl5.
	Changed des_locl.h so RAND is always defined.

Version 3.07 05/12/94
	Added GNUmake and stuff so the library can be build with
	glibc.

Version 3.06 30/08/94
	Added rpc_enc.c which contains _des_crypt.  This is for use in
	secure_rpc v 4.0
	Finally fixed the cfb_enc problems.
	Fixed a few parameter parsing bugs in des (-3 and -b), thanks
	to Rob McMillan <R.McMillan@its.gu.edu.au>