diff options
| author | Brent Cook <bcook@openbsd.org> | 2018-12-14 12:05:54 -0600 |
|---|---|---|
| committer | Brent Cook <bcook@openbsd.org> | 2018-12-14 12:05:54 -0600 |
| commit | 960ea062b18dcaa32b284d860564a94215a981ab (patch) | |
| tree | 24d0f366bf6b0e1ce107d3e9171b3d4f5245561b /ChangeLog | |
| parent | 29e0e7b43858485bda8264ddd1892d597573f995 (diff) | |
| download | portable-960ea062b18dcaa32b284d860564a94215a981ab.tar.gz portable-960ea062b18dcaa32b284d860564a94215a981ab.tar.bz2 portable-960ea062b18dcaa32b284d860564a94215a981ab.zip | |
update changelog
Diffstat (limited to 'ChangeLog')
| -rw-r--r-- | ChangeLog | 18 |
1 files changed, 8 insertions, 10 deletions
| @@ -33,8 +33,7 @@ LibreSSL Portable Release Notes: | |||
| 33 | * CRYPTO_LOCK is now automatically initialized, with the legacy | 33 | * CRYPTO_LOCK is now automatically initialized, with the legacy |
| 34 | callbacks stubbed for compatibility. | 34 | callbacks stubbed for compatibility. |
| 35 | 35 | ||
| 36 | * Added the SM3 hash function from the Chinese standard GB/T | 36 | * Added the SM3 hash function from the Chinese standard GB/T 32905-2016. |
| 37 | 32905-2016. | ||
| 38 | 37 | ||
| 39 | * Added more OPENSSL_NO_* macros for compatibility with OpenSSL. | 38 | * Added more OPENSSL_NO_* macros for compatibility with OpenSSL. |
| 40 | 39 | ||
| @@ -44,10 +43,8 @@ LibreSSL Portable Release Notes: | |||
| 44 | * Added additional wycheproof tests and related bug fixes. | 43 | * Added additional wycheproof tests and related bug fixes. |
| 45 | 44 | ||
| 46 | * Simplified sigalgs option processing and handshake signing algorithm | 45 | * Simplified sigalgs option processing and handshake signing algorithm |
| 47 | selection. | ||
| 48 | 46 | ||
| 49 | * Added the ability to use the RSA PSS algorithm for handshake | 47 | * Added the ability to use the RSA PSS algorithm for handshake signatures. |
| 50 | signatures. | ||
| 51 | 48 | ||
| 52 | * Added bn_rand_interval() and use it in code needing ranges of random | 49 | * Added bn_rand_interval() and use it in code needing ranges of random |
| 53 | bn values. | 50 | bn values. |
| @@ -57,17 +54,18 @@ LibreSSL Portable Release Notes: | |||
| 57 | 54 | ||
| 58 | * Added handshake state machine from RFC8446. | 55 | * Added handshake state machine from RFC8446. |
| 59 | 56 | ||
| 60 | * Removed some ASN.1 related code from libcrypto that had not been | 57 | * Removed some ASN.1 related code from libcrypto that had not been used |
| 61 | used since around 2000. | 58 | since around 2000. |
| 62 | 59 | ||
| 63 | * Unexported internal symbols and internalized more record layer structs. | 60 | * Unexported internal symbols and internalized more record layer structs. |
| 64 | 61 | ||
| 65 | * Added support for assembly optimizations on 32-bit ARM ELF targets. | 62 | * Added support for assembly optimizations on 32-bit ARM ELF targets. |
| 66 | 63 | ||
| 67 | * Fix timing vulnerability in ECDSA signature generation (CVE-2018-0735). | 64 | * Improved protection against timing side channels in ECDSA signature generation. |
| 68 | 65 | ||
| 69 | * Fix for Portsmash vulnerability originally by Brumley, ul Hassan and | 66 | * Coordinate blinding was added to some elliptic curves. This is the |
| 70 | Tuveri. | 67 | last bit of the work by Brumley et al. to protect against the |
| 68 | Portsmash vulnerability. | ||
| 71 | 69 | ||
| 72 | * Ensure transcript handshake is always freed with TLS 1.2. | 70 | * Ensure transcript handshake is always freed with TLS 1.2. |
| 73 | 71 | ||