diff options
| author | Theo Buehler <tb@openbsd.org> | 2025-05-31 06:03:46 -0600 |
|---|---|---|
| committer | Theo Buehler <tb@openbsd.org> | 2025-05-31 06:03:46 -0600 |
| commit | e17b8834d2eb9ed65707844930ab88140602fe8a (patch) | |
| tree | 42a51d15c6daa4877a7d25cd283a49d3c7ea403d | |
| parent | cb5eff72d41a5bf6938923006779d0f66de207a3 (diff) | |
| download | portable-e17b8834d2eb9ed65707844930ab88140602fe8a.tar.gz portable-e17b8834d2eb9ed65707844930ab88140602fe8a.tar.bz2 portable-e17b8834d2eb9ed65707844930ab88140602fe8a.zip | |
Update ChangeLog
| -rw-r--r-- | ChangeLog | 17 |
1 files changed, 17 insertions, 0 deletions
| @@ -38,19 +38,36 @@ LibreSSL Portable Release Notes: | |||
| 38 | - Removed assembly implementations of AES using bit slicing (BS-AES) | 38 | - Removed assembly implementations of AES using bit slicing (BS-AES) |
| 39 | and vector permutation (VP-AES). | 39 | and vector permutation (VP-AES). |
| 40 | - Removed OPENSSL_SMALL_FOOTPRINT and OPENSSL_FIPSAPI. | 40 | - Removed OPENSSL_SMALL_FOOTPRINT and OPENSSL_FIPSAPI. |
| 41 | - Lots of cleanup and removal of code with undefined behavior in | ||
| 42 | the block cipher modes of operation implementations. | ||
| 43 | - Implemented constant time EC field element operations to allow | ||
| 44 | implementing elliptic curve operations without bignum arithmetic. | ||
| 45 | - Implemented an EC method using homogeneous projective coordinates. | ||
| 46 | This allows exception-free elliptic curve arithmetic in constant | ||
| 47 | time. | ||
| 48 | - Started cleaning up the openssl speed implementation. | ||
| 49 | - The last SIGILL-based CPU capability detection was removed. | ||
| 50 | Instead, capabilities are now detected using a constructor on | ||
| 51 | library load, which improves the incomplete coverage by calls | ||
| 52 | to OPENSSL_init_crypto() on various entry points. | ||
| 41 | * Compatibility changes | 53 | * Compatibility changes |
| 42 | - Removed the -msie_hack option from the openssl(1) ca subcommand. | 54 | - Removed the -msie_hack option from the openssl(1) ca subcommand. |
| 43 | - Removed parameters of the 239-bit prime curves from X9.62, H.5.2: | 55 | - Removed parameters of the 239-bit prime curves from X9.62, H.5.2: |
| 44 | prime239v1, prime239v2, prime239v3. | 56 | prime239v1, prime239v2, prime239v3. |
| 45 | - Increased default MAC salt length used by PKCS12_set_mac(3) to 16 | 57 | - Increased default MAC salt length used by PKCS12_set_mac(3) to 16 |
| 46 | per recommendation of NIST SP 800-132. | 58 | per recommendation of NIST SP 800-132. |
| 59 | - Encrypted PKCS#8 key files now use a default password-based key | ||
| 60 | derivation function that is acceptable in the present millenium. | ||
| 47 | - Of the old *err() only PEMerr(), RSAerr(), and SSLerr() remain. | 61 | - Of the old *err() only PEMerr(), RSAerr(), and SSLerr() remain. |
| 48 | * New features | 62 | * New features |
| 49 | * Bug fixes | 63 | * Bug fixes |
| 64 | - Avoid pointer arithmetic on NULL for memory BIOs. | ||
| 50 | * Documentation | 65 | * Documentation |
| 51 | - Rewrote most of the EC documentation from scratch to be at least | 66 | - Rewrote most of the EC documentation from scratch to be at least |
| 52 | somewhat accurate and intelligible. | 67 | somewhat accurate and intelligible. |
| 53 | * Testing and proactive security | 68 | * Testing and proactive security |
| 69 | - Added a testing framework that will help deduplicating lots of | ||
| 70 | ad-hoc code in the regression tests. | ||
| 54 | 71 | ||
| 55 | 4.1.0 - Stable release | 72 | 4.1.0 - Stable release |
| 56 | 73 | ||