1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
|
aespipe-v1.0b May 14 2002
- First release to public
aespipe-v2.0a October 18 2002
- IV computation now wraps back to zero at 2^137 bytes instead of 2^41
bytes (2 TB). First 2 TB is fully compatible with v1.0 version.
- Added '-K file' and '-G dir' command line options to enable use of
GnuPG encrypted key files.
aespipe-v2.1a December 26 2002
- Added ./configure for better portability.
- Removed dependence of OpenSSL RIPE-MD160 library function by including
rmd160.[ch] files (copied from GnuPG package).
- Added mlockall() to prevent key leak to swap.
- Added '-C nnn' command line option that iterates encryption key nnn
thousand times through AES-256.
aespipe-v2.1b June 4 2003
- Added man page for aespipe.
- Minimum password length is now configurable at compile time.
aespipe-v2.1c September 8 2003
- bz2aespipe script rewritten to use unique random seed for each
encrypted archive. This version of bz2aespipe script is not compatible
with earlier headerless version.
- Man page now explains input file size padding (so that people
hopefully stop reporting this feature as a bug).
aespipe-v2.2a November 29 2003
- Added support for MD5 IV computation and multi-key operation that
reduce chances of identical ciphertexts and triggers change to all
cipher blocks in 512 byte CBC chain if any bit is changed in the 512
byte CBC chain. MD5 IV is only used in multi-key mode, read aespipe -K
man page for more details.
- When aespipe attempts to run gpg, and does not find gpg in obvious
locations, aespipe attempts to run gpg from same dir that aespipe was
run from.
aespipe-v2.2b February 11 2004
- Tiny speed optimization in MD5 IV computation.
- Automatic detection of weirdo gpg program location.
aespipe-v2.2c April 22 2004
- Added back aes.c code that avoids byte swaps on big endian boxes. This
change improves performance on all non-x86 computers.
- Security fix: restrict length of passphrase to max 4094 bytes when it
is read from file descriptor using "aespipe -p 3" option.
- Removed strip command from Makefile.in -- didn't work on solaris
aespipe-v2.2d July 7 2004
- Added optimized assembler implementations of AES and MD5 functions for
AMD64 and compatible processors.
- Pentium-2 optimized assembler implementations of AES and MD5 are
really i386 compatible, so now those assembler implementations are
enabled for all x86 processors.
aespipe-v2.2e August 21 2004
- Added multi-key compatibility to -p command line option handling.
aespipe-v2.3a November 26 2004
- Added support for loop-AES version 3 on-disk format.
aespipe-v2.3b March 18 2005
- Changed gpg pipe code to use '--no-options' instead of '--options
/dev/null'. Fix from Lars Packschies.
- Changed aespipe to warn about unknown key data format.
aespipe-v2.3c October 28 2006
- Changed aespipe program to output error message if gpg program does
not exist when gpg encrypted key file is used.
aespipe-v2.3d February 23 2007
- Added compatibility for two obsolete key setup methods, "-H unhashed1"
and "-H unhashed2". Patch from Jordan Ritter.
- Added "-P file" command line option.
aespipe-v2.3e October 28 2008
- Added -A option for gpg-agent usage. Patch from Richard Davies.
- Passphrase handling code cleanup.
aespipe-v2.4b June 3 2010
- Added DESTDIR make variable for "make install DESTDIR=/tmp/root", and
support for separate build directory (mkdir xx; cd xx; ../configure).
Patch from Alon Bar-Lev.
- Added faster (single thread) parallelized version of MD5 for amd64.
- Added support for VIA padlock hardware AES.
- Added support for Intel hardware AES.
- Added x86/amd64/padlock/intelaes auto-detections to ./configure
script, and these options to override its guesses: --disable-asm
--enable-asm=x86 --enable-asm=amd64 --enable-padlock --disable-padlock
--enable-intelaes --disable-intelaes
aespipe-v2.4c February 23 2011
- Fixed a bug that would either decrypt incorrectly or segfault in
single-key mode if input data size was not multiple of 512 bytes.
Encrypt code path or multi-key modes were not affected. Normal use of
encrypting/decrypting disk sectors (size always multiple of 512 bytes)
was not affected. This bug was introduced in aespipe-v2.4b, older
versions were not affected.
- Fixed a problem by locking RAM using mlockall() only if "ulimit -l"
was "unlimited". Smaller "ulimit -l" could cause memory allocation
failure or segfault.
aespipe-v2.4d May 24 2015
- Fixed endianness bug on little-endian PowerPC. More common big-endian
PowerPC was OK. Bug reported by Fernando Seiti Furusato.
aespipe-v2.4e September 10 2017
- Added workaround for gpg 2 pinentry-mode bug.
aespipe-v2.4f October 2 2019
- Fixed configure script mis-detection of "labels need underline
prefix" on Fedora. Fix from Jiri Hladky.
- Added configure script autodetection for x86/amd64 -fno-pie compile
and -no-pie linker flags. These are needed when compiler/linker
produces position independent executable (PIE) by default.
aespipe-v2.4g October 23 2023
- Added configure script autodetection for -fno-strict-aliasing compile
flag. This option is needed with some compilers that miscompile code
when link-time-optimization is used.
aespipe-v2.4h May 14 2024
- Added assembler implementations of AES for 32-bit arm and 64-bit arm64
|
