Bug fixes:

   * Fixed missing code block for support of SHA-224, SHA-256,
     SHA-384 and SHA-512 in rsa_pkcs1_sign().

Download links: polarssl-0.11.1-gpl.tgz

polarssl-0.11.1-gpl.tgz:
MD5    : 885d70f15d31eb736975e5473d8ea7ec  
SHA-1  : f6831d2c870aa0d8b5f056da4f4d535d60c7c845
SHA-256: 5a652075140fbff46c3c8df937923671e83ff098a6038a01128ff968a17c7986

New features:

   * Added support for SHA-224, SHA-256, SHA-384 and SHA-512
     one way hash functions with the PKCS#1 v1.5 signing and
     verification.
   * Added support for Certificate Revocation List (CRL) parsing.
   * Added support for CRL revocation to x509parse_verify() and
     SSL/TLS code.

Bug fixes:

   * Fixed a bug in mpi_gcd() so that it also works when both
     input numbers are even and added testcases to check
     (found by Pierre Habouzit).
   * Fixed minor bug regarding mpi_gcd located within the
     POLARSSL_GENPRIME block.
   * Fixed minor memory leak in x509parse_crt() and added better
     handling of 'full' certificate chains (found by Mathias
     Olsson).
   * Centralized file opening and reading for x509 files into
     load_file()
   * Made definition of net_htons() endian-clean for big endian
     systems (Found by Gernot).
   * Undefining POLARSSL_HAVE_ASM now also handles prevents asm in
     padlock and timing code.
   * Fixed an off-by-one buffer allocation in ssl_set_hostname()
     responsible for crashes and unwanted behaviour.
   * Fixed compatibility of XTEA and Camellia on a 64-bit system
     (found by Felix von Leitner).

Download links: polarssl-0.11.0-gpl.tgz

MD5 checksums:
7433101affb3dd2febaf5e5fc7e0f2e3  polarssl-0.11.0-gpl.tgz

SHA-1 checksums:
86b4f1dd98fb4f2d408a9b699910b0b599a7e7b9  polarssl-0.11.0-gpl.tgz

To accommodate multiple requests for more information on the site and to support future enhancements and additions, the layout has slightly changed.

It took a while, but there is a forum again. It seems IE has some issues with the visual side of the entire site code. (X)HTML and CSS improvements are always welcome.

Made available the BSD and corrected GPL version of the PolarSSL library

Download links: polarssl-0.10.1-gpl.tgz | polarssl-0.10.1-bsd.tgz

MD5 checksums:
492a4a82a7985e7f824e2617ef33b62c  polarssl-0.10.1-bsd.tgz
49bd1c6b46a8699d8bf215d3a318899e  polarssl-0.10.1-gpl.tgz

SHA-1 checksums:
4b1d763d2c7a8526c8facf443473c6eb12ccc257  polarssl-0.10.1-bsd.tgz
65c18f3d007a843fa4b2fc9b45e90e03da1de4cf  polarssl-0.10.1-gpl.tgz

From the changelog:

 * Migrated XySSL to PolarSSL
 * Added XTEA symmetric cipher
 * Added Camellia symmetric cipher
 * Added support for ciphersuites: SSL_RSA_CAMELLIA_128_SHA,
   SSL_RSA_CAMELLIA_256_SHA and SSL_EDH_RSA_CAMELLIA_256_SHA
 * Fixed dangerous bug that can cause a heap overflow in
   rsa_pkcs1_decrypt (found by Christophe Devine)

Download links: polarssl-0.10.0-gpl.tgz

MD5 checksums:
f595ec97f412e318db8717d41d0d5cfe  polarssl-0.10.0-gpl.tgz

SHA-1 checksums:
b528fa0e30a5f3a781dda90d09f1646d0a9ddbf0  polarssl-0.10.0-gpl.tgz

Happy New Year everybody!

The first version of the PolarSSL site is now live. It is based on the original XySSL site to keep the original look and feel. If you think anything is missing, please contact me.

For any questions / suggestions please contact me.

The original author of XySSL (http://www.xyssl.org), Christophe Devine, sadly had to stop maintaining the project. An official fork of the project will be hosted here and is called PolarSSL.

For any questions / suggestions please contact me or post a message to the forum.

From the changelog:

 * Added support for ciphersuite: SSL_RSA_AES_128_SHA
 * Enabled support for large files by default in aescrypt2.c
 * Preliminary openssl wrapper contributed by David Barrett
 * Fixed a bug in ssl_write() that caused the same payload to
   be sent twice in non-blocking mode when send returns EAGAIN
 * Fixed ssl_parse_client_hello(): session id and challenge must
   not be swapped in the SSLv2 ClientHello (found by Greg Robson)
 * Added user-defined callback debug function (Krystian Kolodziej)
 * Before freeing a certificate, properly zero out all cert. data
 * Fixed the "mode" parameter so that encryption/decryption are
   not swapped on PadLock; also fixed compilation on older versions
   of gcc (bug reported by David Barrett)
 * Correctly handle the case in padlock_xcryptcbc() when input or
   ouput data is non-aligned by falling back to the software
   implementation, as VIA Nehemiah cannot handle non-aligned buffers
 * Fixed a memory leak in x509parse_crt() which was reported by Greg
   Robson-Garth; some x509write.c fixes by Pascal Vizeli, thanks to
   Matthew Page who reported several bugs
 * Fixed x509_get_ext() to accept some rare certificates which have
   an INTEGER instead of a BOOLEAN for BasicConstraints::cA.
 * Added support on the client side for the TLS "hostname" extension
   (patch contributed by David Patino)
 * Make x509parse_verify() return BADCERT_CN_MISMATCH when an empty
   string is passed as the CN (bug reported by spoofy)
 * Added an option to enable/disable the BN assembly code
 * Updated rsa_check_privkey() to verify that (D*E) = 1 % (P-1)*(Q-1)
 * Disabled obsolete hash functions by default (MD2, MD4); updated
   selftest and benchmark to not test ciphers that have been disabled
 * Updated x509parse_cert_info() to correctly display byte 0 of the
   serial number, setup correct server port in the ssl client example
 * Fixed a critical denial-of-service with X.509 cert. verification:
   peer may cause xyssl to loop indefinitely by sending a certificate
   for which the RSA signature check fails (bug reported by Benoit)
 * Added test vectors for: AES-CBC, AES-CFB, DES-CBC and 3DES-CBC,
   HMAC-MD5, HMAC-SHA1, HMAC-SHA-256, HMAC-SHA-384, and HMAC-SHA-512
 * Fixed HMAC-SHA-384 and HMAC-SHA-512 (thanks to Josh Sinykin)
 * Modified ssl_parse_client_key_exchange() to protect against
   Daniel Bleichenbacher attack on PKCS#1 v1.5 padding, as well
   as the Klima-Pokorny-Rosa extension of Bleichenbacher's attack
 * Updated rsa_gen_key() so that ctx->N is always nbits in size
 * Fixed assembly PPC compilation errors on Mac OS X, thanks to
   David Barrett and Dusan Semen

Download links: xyssl-0.9-gpl.tgz | xyssl-0.9-bsd.tgz

MD5 checksums:
47699a8e5be1be4cab5be92e3f214aaf  xyssl-0.9-bsd.tgz
3f0695831aa874cb77e3790755d6b570  xyssl-0.9-gpl.tgz

SHA-1 checksums:
749b28fc281a5f5febf1f144f22611adabe87414  xyssl-0.9-bsd.tgz
0ececa2084c9cc45afc37d18ba50f90869a3f098  xyssl-0.9-gpl.tgz

From the changelog:

 * Modified the HMAC functions to handle keys larger
   than 64 bytes, thanks to Stephane Desneux and gary ng
 * Fixed ssl_read_record() to properly update the handshake
   message digests, which fixes IE6/IE7 client authentication
 * Cleaned up the XYSSL* #defines, suggested by Azriel Fasten
 * Fixed net_recv(), thanks to Lorenz Schori and Egon Kocjan
 * Added user-defined callbacks for handling I/O and sessions
 * Added lots of debugging output in the SSL/TLS functions
 * Added preliminary X.509 cert. writing by Pascal Vizeli
 * Added preliminary support for the VIA PadLock routines
 * Added AES-CFB mode of operation, contributed by chmike
 * Added an SSL/TLS stress testing program (ssl_test.c)
 * Updated the RSA PKCS#1 code to allow choosing between
   RSA_PUBLIC and RSA_PRIVATE, as suggested by David Barrett
 * Updated ssl_read() to skip 0-length records from OpenSSL
 * Fixed the make install target to comply with *BSD make
 * Fixed a bug in mpi_read_binary() on 64-bit platforms
 * mpi_is_prime() speedups, thanks to Kevin McLaughlin
 * Fixed a long standing memory leak in mpi_is_prime()
 * Replaced realloc with malloc in mpi_grow(), and set
   the sign of zero as positive in mpi_init() (reported
   by Jonathan M. McCune)

Download links: xyssl-0.8-lgpl.tgz | xyssl-0.8-bsd.tgz

MD5 checksums:
ef7105995442ed88e7ba8d6b9e8e45ec  xyssl-0.8-bsd.tgz
5c80e021e3bca4b77fbe2429c9e61541  xyssl-0.8-lgpl.tgz

SHA-1 checksums:
d566f86a17a90b280805b84a54672c020f80891f  xyssl-0.8-bsd.tgz
f738f99e8fcfc5140983babffdd885841297819e  xyssl-0.8-lgpl.tgz