1 files changed, 48 insertions, 4 deletions
diff --git a/ChangeLog b/ChangeLog
index d9c4421..1739cfc 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -28,10 +28,54 @@ history is also available from Git.
 LibreSSL Portable Release Notes:
-4.1.0 - In development
+4.2.0 - In development
+        * Portable changes
+        * Internal improvements
+          - Cleaned up code implementing block cipher modes of operation.
+            Includes untangling a horrible #ifdef mess and removing a few
+            instances of undefined behavior.
+          - Removed assembly implementations of AES using bit slicing (BS-AES)
+            and vector permutation (VP-AES).
+          - Integrated AES-NI into the AES API.
+          - Removed OPENSSL_SMALL_FOOTPRINT and OPENSSL_FIPSAPI.
+          - Lots of cleanup and removal of code with undefined behavior in
+            the block cipher modes of operation implementations.
+          - Implemented constant time EC field element operations to allow
+            implementing elliptic curve operations without bignum arithmetic.
+          - Implemented an EC method using homogeneous projective coordinates.
+            This allows exception-free elliptic curve arithmetic in constant
+            time.
+          - Started cleaning up the openssl speed implementation.
+          - The last SIGILL-based CPU capability detection was removed.
+            Instead, capabilities are now detected using a constructor on
+            library load, which improves the incomplete coverage by calls
+            to OPENSSL_init_crypto() on various entry points.
+        * Compatibility changes
+          - Removed the -msie_hack option from the openssl(1) ca subcommand.
+          - Removed parameters of the 239-bit prime curves from X9.62, H.5.2:
+            prime239v1, prime239v2, prime239v3.
+          - Increased default MAC salt length used by PKCS12_set_mac(3) to 16 
+            per recommendation of NIST SP 800-132.
+          - Encrypted PKCS#8 key files now use a default password-based key
+            derivation function that is acceptable in the present millenium.
+          - Of the old *err() only PEMerr(), RSAerr(), and SSLerr() remain.
+        * New features
+          - Allow specifying ALPN in nc(1) via -Talpn="http/1.1,http:/1.0".
+        * Bug fixes
+          - Avoid pointer arithmetic on NULL for memory BIOs.
+        * Documentation
+          - Rewrote most of the EC documentation from scratch to be at least
+            somewhat accurate and intelligible.
+        * Testing and proactive security
+          - Added a testing framework that will help deduplicating lots of
+            ad-hoc code in the regression tests.
+4.1.0 - Stable release
        * Portable changes
          - Added initial experimental support for loongarch64.
+          - Fixed compilation for mips32 and reenable CI.
          - Fixed CMake builds on FreeBSD.
          - Fixed the --prefix option for cmake --install.
          - Fixed tests for MinGW due to missing sh(1).
@@ -62,9 +106,8 @@ LibreSSL Portable Release Notes:
          - Replaced combinations of BN_MONT_CTX_new/set with an internal
            BN_MONT_CTX_create().
          - Replaced BN_bn2hex() reimplementation in openssl(1) ca with
-            a poper API call.
+            a proper API call.
          - Fixed integer overflows due to signed shift in obj_dat.c.
-          - Fixed a few memory leaks in legacy code.
          - Improved some X509_VERIFY_PARAM internals and avoid an out of
            bounds read from public API.
          - Imported ML-KEM 768 and 1024 from BoringSSL (not yet public API).
@@ -102,9 +145,10 @@ LibreSSL Portable Release Notes:
          - Plugged a leak in eckey_compute_pubkey().
          - Again allow the magic values -1, -2 and -3 for the salt length
            of an RSA-PSS key in the EVP_PKEY_CTX_ctrl_str() interface.
+          - Fixed a few memory leaks in legacy code.
        * Documentation
          - The remaining undocumented public EVP API is now documented.
-            Reorganization of existing documentation for clarity and accuracy.
+          - Reorganization of existing documentation for clarity and accuracy.
        * Testing and proactive security
          - Improved regress coverage of the EC code.

diff --git a/ChangeLog b/ChangeLog index d9c4421..1739cfc 100644 --- a/ChangeLog +++ b/ChangeLog
@@ -28,10 +28,54 @@ history is also available from Git.
28		28
29	LibreSSL Portable Release Notes:	29	LibreSSL Portable Release Notes:
30		30
31	4.1.0 - In development	31	4.2.0 - In development
		32
		33	* Portable changes
		34	* Internal improvements
		35	- Cleaned up code implementing block cipher modes of operation.
		36	Includes untangling a horrible #ifdef mess and removing a few
		37	instances of undefined behavior.
		38	- Removed assembly implementations of AES using bit slicing (BS-AES)
		39	and vector permutation (VP-AES).
		40	- Integrated AES-NI into the AES API.
		41	- Removed OPENSSL_SMALL_FOOTPRINT and OPENSSL_FIPSAPI.
		42	- Lots of cleanup and removal of code with undefined behavior in
		43	the block cipher modes of operation implementations.
		44	- Implemented constant time EC field element operations to allow
		45	implementing elliptic curve operations without bignum arithmetic.
		46	- Implemented an EC method using homogeneous projective coordinates.
		47	This allows exception-free elliptic curve arithmetic in constant
		48	time.
		49	- Started cleaning up the openssl speed implementation.
		50	- The last SIGILL-based CPU capability detection was removed.
		51	Instead, capabilities are now detected using a constructor on
		52	library load, which improves the incomplete coverage by calls
		53	to OPENSSL_init_crypto() on various entry points.
		54	* Compatibility changes
		55	- Removed the -msie_hack option from the openssl(1) ca subcommand.
		56	- Removed parameters of the 239-bit prime curves from X9.62, H.5.2:
		57	prime239v1, prime239v2, prime239v3.
		58	- Increased default MAC salt length used by PKCS12_set_mac(3) to 16
		59	per recommendation of NIST SP 800-132.
		60	- Encrypted PKCS#8 key files now use a default password-based key
		61	derivation function that is acceptable in the present millenium.
		62	- Of the old *err() only PEMerr(), RSAerr(), and SSLerr() remain.
		63	* New features
		64	- Allow specifying ALPN in nc(1) via -Talpn="http/1.1,http:/1.0".
		65	* Bug fixes
		66	- Avoid pointer arithmetic on NULL for memory BIOs.
		67	* Documentation
		68	- Rewrote most of the EC documentation from scratch to be at least
		69	somewhat accurate and intelligible.
		70	* Testing and proactive security
		71	- Added a testing framework that will help deduplicating lots of
		72	ad-hoc code in the regression tests.
		73
		74	4.1.0 - Stable release
32		75
33	* Portable changes	76	* Portable changes
34	- Added initial experimental support for loongarch64.	77	- Added initial experimental support for loongarch64.
		78	- Fixed compilation for mips32 and reenable CI.
35	- Fixed CMake builds on FreeBSD.	79	- Fixed CMake builds on FreeBSD.
36	- Fixed the --prefix option for cmake --install.	80	- Fixed the --prefix option for cmake --install.
37	- Fixed tests for MinGW due to missing sh(1).	81	- Fixed tests for MinGW due to missing sh(1).
@@ -62,9 +106,8 @@ LibreSSL Portable Release Notes:
62	- Replaced combinations of BN_MONT_CTX_new/set with an internal	106	- Replaced combinations of BN_MONT_CTX_new/set with an internal
63	BN_MONT_CTX_create().	107	BN_MONT_CTX_create().
64	- Replaced BN_bn2hex() reimplementation in openssl(1) ca with	108	- Replaced BN_bn2hex() reimplementation in openssl(1) ca with
65	a poper API call.	109	a proper API call.
66	- Fixed integer overflows due to signed shift in obj_dat.c.	110	- Fixed integer overflows due to signed shift in obj_dat.c.
67	- Fixed a few memory leaks in legacy code.
68	- Improved some X509_VERIFY_PARAM internals and avoid an out of	111	- Improved some X509_VERIFY_PARAM internals and avoid an out of
69	bounds read from public API.	112	bounds read from public API.
70	- Imported ML-KEM 768 and 1024 from BoringSSL (not yet public API).	113	- Imported ML-KEM 768 and 1024 from BoringSSL (not yet public API).
@@ -102,9 +145,10 @@ LibreSSL Portable Release Notes:
102	- Plugged a leak in eckey_compute_pubkey().	145	- Plugged a leak in eckey_compute_pubkey().
103	- Again allow the magic values -1, -2 and -3 for the salt length	146	- Again allow the magic values -1, -2 and -3 for the salt length
104	of an RSA-PSS key in the EVP_PKEY_CTX_ctrl_str() interface.	147	of an RSA-PSS key in the EVP_PKEY_CTX_ctrl_str() interface.
		148	- Fixed a few memory leaks in legacy code.
105	* Documentation	149	* Documentation
106	- The remaining undocumented public EVP API is now documented.	150	- The remaining undocumented public EVP API is now documented.
107	Reorganization of existing documentation for clarity and accuracy.	151	- Reorganization of existing documentation for clarity and accuracy.
108	* Testing and proactive security	152	* Testing and proactive security
109	- Improved regress coverage of the EC code.	153	- Improved regress coverage of the EC code.
110		154