diff options
| author | Jack Lloyd <[email protected]> | 2016-10-20 20:16:40 -0400 |
|---|---|---|
| committer | Jack Lloyd <[email protected]> | 2016-10-20 20:16:40 -0400 |
| commit | 709aad063e72a1cd157ee0768e6677bc1cadfd6d (patch) | |
| tree | 43524dc13dcf1dd2b17c3b45574ef0f697ed7521 | |
| parent | 9419f3a8f544e9cfca60d458ba512ed69d4cc22a (diff) | |
Update release notes
| -rw-r--r-- | doc/news.rst | 29 |
1 files changed, 29 insertions, 0 deletions
diff --git a/doc/news.rst b/doc/news.rst index 80a8457e3..471c4ffb8 100644 --- a/doc/news.rst +++ b/doc/news.rst @@ -11,6 +11,15 @@ Version 1.11.33, Not Yet Released * The Certificate_Store interface has been changed to deal with std::shared_ptrs instead of raw pointers (GH #471 #631) +* Add support for official SHA-3. Keccak-1600 was already supported + but used different padding from FIPS 202. + +* Add SHAKE-128 based stream cipher. + +* NewHope now supports the AES-128/CTR + SHA-256 parameters used by + BoringSSL in addition to the SHA-3/SHAKE-128 parameters used by the + reference implementation. + * Add support for the TLS Supported Point Formats Extension from RFC 4492. Adds TLS::Policy::use_ecc_point_compression policy option. If supported on both sides, ECC points can be sent in compressed format which saves a few bytes @@ -34,6 +43,24 @@ Version 1.11.33, Not Yet Released statistical information, but if this functionality was disabled in the build a PRNG_Unseeded exception would result. (GH #655) +* Add support for building the library as part of the IncludeOS unikernel. + This included making filesystem and threading support optional. (GH #665) + +* Added ISA annotations so that with GCC (all supported versions) and + Clang (since 3.7) it is no longer required to compile amalgamation + files with ABI specific flags such as ``-maes``. (GH #665) + +* Internal cleanups to TLS CBC record handling. TLS CBC ciphersuites + can now be disabled by disabling `tls_cbc` module. + +* Avoid static_assert triggering under MSVC debug builds (GH #646) + +* The antique PBKDF1 password hashing scheme is deprecated and will be + removed in a future release. It was only used to support the equally + ancient PBES1 private key encryption scheme, which was removed in 1.11.8. + +* Added MSVC debug/checked iterator builds (GH #666 #667) + * Added Linux ppc64le cross compile target to Travis CI (GH #654) * If RC4 is disabled, also disable it coming from the OpenSSL provider (GH #641) @@ -42,6 +69,8 @@ Version 1.11.33, Not Yet Released * Updated BSI policy to prohibit DES, HKDF, HMAC_RNG (GH #649) +* Documentation improvements (GH #660 #662 #663 #670) + Version 1.11.32, 2016-09-28 ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ |