From c109b329e643972da0c051b1bf5f004335eaef53 Mon Sep 17 00:00:00 2001 From: Brent Cook Date: Sun, 11 Nov 2018 12:36:24 -0600 Subject: 2.9.0 Changelog --- ChangeLog | 43 +++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 43 insertions(+) diff --git a/ChangeLog b/ChangeLog index b21ba99..487f4cd 100644 --- a/ChangeLog +++ b/ChangeLog @@ -28,6 +28,49 @@ history is also available from Git. LibreSSL Portable Release Notes: +2.9.0 - Development release + + * CRYPTO_LOCK is now automatically initialized, with the legacy + callbacks stubbed for compatibility. + + * Added the SM3 hash function from the Chinese standard GB/T + 32905-2016. + + * Added more OPENSSL_NO_* macros for compatibility with OpenSSL. + + * Added extensive interoperability tests between LibreSSL and OpenSSL + 1.0 and 1.1. + + * Added additional wycheproof tests and related bug fixes. + + * Simplified sigalgs option processing and handshake signing algorithm + selection. + + * Added the ability to use the RSA PSS algorithm for handshake + signatures. + + * Added bn_rand_interval() and use it in code needing ranges of random + bn values. + + * Added functionality to derive early, handshake, and application + secrets as per RFC8446. + + * Added handshake state machine from RFC8446. + + * Removed some ASN.1 related code from libcrypto that had not been + used since around 2000. + + * Unexported internal symbols and internalized more record layer structs. + + * Added support for assembly optimizations on 32-bit ARM ELF targets. + + * Fix timing vulnerability in ECDSA signature generation (CVE-2018-0735). + + * Fix for Portsmash vulnerability originally by Brumley, ul Hassan and + Tuveri. + + * Ensure transcript handshake is always freed with TLS 1.2. + 2.8.2 - Stable release * Added Wycheproof support for ECDH and ECDSA Web Crypto test vectors, -- cgit v1.2.3-55-g6feb