Require OpenSSL 1.1.0 or later. This gets rid of some backwards compatibility code, and avoids calling deprecated OpenSSL functions.
Releasing 1.0.36.
Fix compilation without deprecated OpenSSL APIs This is an optional part of OpenWrt designed to save space.
Fix compilation when OpenSSL has no ENGINE support This will be the case in OpenWrt soon.
Remove the call to RAND_load_file(). It might have been necessary for some very old version of OpenSSL, but the currently minimum required version for tinc will do a proper initialization of its PRNG automatically. LibreSSL of course does the right thing too, and its RAND_load_file() is just a dummy.
Don't check for NULL-pointers before calling free().
Check the return values from BN_hex2bn() and RAND_load_file(). Closes #205 on GitHub. Closes #206 on GitHub.
Releasing 1.0.34.
Support autoconf's --runstatedir option. Put the PID file in @runstatedir@ instead of @localstatedir@/run. This requires autoconf 2.70, which is not released yet, so add a fallback to use @localstatedir@/run if @runstatedir@ is not set.
Fix all -Wall -W compiler warnings.
Fix some "make distcheck" errors. The only issue left is the installation of systemd service files, which is done to a custom data directory. Make distcheck calls install without DESTDIR it seems, but running "make install" manually works fine.
Don't call ERR_remove_state(). It's impossible to write portable code that properly cleans up after OpenSSL without resulting in compile time warnings, so don't try.
Reformat all code using astyle.
Convert sizeof foo to sizeof(foo). While technically sizeof is an operator and doesn't need the parentheses around expressions it operates on, except if they are type names, code formatters don't seem to handle this very well.
Update all header guards. Don't start with underscores, as those are reserved for system libraries. Make sure all start with TINC_, and that they appear at the top of the file.
Fix a few minor memory leaks.
Use stack-allocated strings for temporary filenames.
Releasing 1.0.31.
Check return value of RSA_generate_key_ex().
Ensure compatibility with OpenSSL 1.1.0.