v0.5.20

Release v0.5.20 contains the following changes:

• Fix Issue with disable flags in autoconf - e0eab06
• Fix for engine async notification fd getting closed too early - 10650b5
• Add Unique QATerr messages to qat_ec.c - a24d486
• Allow user to run autogen.sh from any folder - 0b87b15
• Fix compilation warnings with disable flags - 7e3cd4a

This release was tested against:
OpenSSL 1.1.0e

v0.5.19

Release v0.5.19 contains the following changes:

• Fix for Lenstra vulnerability. (CVE-2017-5681) - c90fc09
• Correct misleading RSA comments - 96d4b2b
• Add debug dump before QA API calls - e1a9f8b
• Remove spurious warnings in qat_parseconf.c added by mistake - 5fb264d
• Refactoring of ENGINE_set_xxx_function calls - ebb93e4
• Refactoring of XXX_meth_set_* function calls - aec04b9
• Remove unnecessary checks for the calls to BN_CTX_get - 93879b2

* Security Alert *
The RSA-CRT implementation in the Intel® QuickAssist Technology (QAT) Engine for OpenSSL versions prior to v0.5.19 may allow remote attackers to obtain private RSA keys by conducting a Lenstra side-channel attack.
For further details please see:
INTEL-SA-00071 - https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00071&languageid=en-fr
CVE-2017-5681 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5681

This release was tested against:
OpenSSL 1.1.0e

v0.5.18

Release v0.5.18 contains the following changes:

• Amend DEBUG and WARN macros to add filename,line number and function name. - 144a065
• Tidy up elliptical curve code Add missing warns and group allocations and buffer conversions - b62fcb6
• Explain OpenSSL bug with fds in async wait context - e09bde1
• Changes to enable a child process to initialise the QAT engine at forking. - 5c5c44c
• Re-instate engine initialisation code in function get_next_inst(). - 9761cab
• Update logs with unique message that points to precise condition - 7a6cd5c

This release was tested against:
OpenSSL 1.1.0e

v0.5.17

Release v0.5.17 contains the following changes:

• Fix compilation warnings with unused functions when QAT is disabled - 47f18b2
• Fix async wait context fds in case of failure - 8758644
• Add missing NULL checks in DSA - 6a21aee

This release was tested against:
OpenSSL 1.1.0c

v0.5.16

Release v0.5.16 contains the following changes:

• Fix Compilation warning with enable-qat_small_pkt_offload flag - b774167
• Removed unused label 'end' from sendPoll_ns - 7153728
• Fix brackets near initiliaziation of epoll_data_t - 6376a68
• Remove unused variable 'status' from get_next_inst() - 86c9b08
• Fix printf format since variable 'i' is long - 1e18e91
• Update the year in all Copyright information - a55cc6f
• Use the correct format string to print unsigned int variables - b29ba9f
• Enable compilation warnings by default (-Wall) - 0d08d47
• Add documentation to better describe the threshold value used for small packet offload. - 8d0f11e
• Fix the NULL check for temp_pub_key - 9dce4ab
• Use only one polling thread with multiple instances - aaede51

This release was tested against:
OpenSSL 1.1.0c

v0.5.15

Release v0.5.15 contains the following changes:

• Print warning messages when debug is enabled - fe71a16
• Removal of trailing white space in order to prevent spurious git errors. - bb5c6d9
• Add missing NULL check - e07974e
• Replace pointer to func (potentially NULL) with func - e01bd39
• Remove unused variable 'status' - 361dc59
• Check index value before accessing the array - 3a799d9
• Fix memory leak of ckey when allocation of ssd fails - ed55835
• Refactor small packet threshold size to use array instead of hash table. - ddd45ac
• Add table of contents to README - cac803c
• Check outlen only when the out pointer is not NULL - 4b715eb

This release was tested against:
OpenSSL 1.1.0c

v0.5.14

Release v0.5.14 contains the following changes:

• Add debug output with engine initialization variables - a30286f
• Remove config file parsing when the upstream driver is used - f535e65
• Improve documentation of small packets offload - 89d607b
• Improve explanation of engine configuration using openssl.cnf - 9dc7d12
• Ignore .tmp_versions in every folder of the repository - 65f1aef
• Add missing NULL Check at PRF ctrl function - fe4c771
• Fix the values of the configuration global variables after forking - eba8765
• Fix return value of qat_engine_finish - 4004da2
• Refactor chained cipher implementation and Add support for openssl pipelining - b47a787
• Fix compilation error with disable-qat_ciphers flag - 055b4c1

This release was tested against:
OpenSSL 1.1.0c

v0.5.13

Release v0.5.13 contains the following changes:

• Add wrapper function to pthread_create and pthread_join. - c177b05
• Update README.md to have a generic OpenSSL 1.1.0 reference. - 3085de6

This release was tested against:
OpenSSL 1.1.0c

v0.5.12

Release v0.5.12 contains the following changes:

• Add missing padding check for cbc decrypt. - 03aa68a
• Fix issue with memory initialization in rsa - 58dd9fc
• Remove re-initialization of variables in qat_engine_finish() - 65b919f
• Correct iv position for decrypting padding - 00af43a

This release was tested against:
OpenSSL 1.1.0b

v0.5.11

Release v0.5.11 contains the following changes:

• Fix warning message - 1324fda
• Add new ctrl message to set epoll timeout - 59a2278
• Fix issue with the behaviour of stopInstance during error conditions - 0c9f309
• Add new feature to do cipher operation for small packets using CPU - cbbf939
• Fix array indexing error and compilation warning - a18dcb5

This release was tested against:
OpenSSL 1.1.0b