diff options
author | Jack Lloyd <[email protected]> | 2016-07-18 16:51:04 -0400 |
---|---|---|
committer | Jack Lloyd <[email protected]> | 2016-07-18 16:51:04 -0400 |
commit | 3404b86897748307457f16a32dd7492e39564365 (patch) | |
tree | 4ab375c8bed5940f3d5e50bebe8be46087e0a6d8 | |
parent | a0cb5db844141afad3ca0f289a46a66f68f26174 (diff) |
Update news
[ci skip]
-rw-r--r-- | doc/news.rst | 7 |
1 files changed, 5 insertions, 2 deletions
diff --git a/doc/news.rst b/doc/news.rst index 6edc34e62..67f458fec 100644 --- a/doc/news.rst +++ b/doc/news.rst @@ -12,6 +12,10 @@ Version 1.11.31, Not Yet Released * Add KDF1 from ISO 18033 (GH #483) +* RNG changes: NIST SP900-80's HMAC_DRBG is now the default generator + for userspace RNG (AutoSeeded_RNG). HMAC_DRBG now attempts to detect + use of fork (via pid checks) + * Fix undefined behavior in Curve25519 on platforms without a native 128-bit integer type. This was known to produce incorrect results on 32-bit ARM under Clang. GH #532 @@ -22,7 +26,7 @@ Version 1.11.31, Not Yet Released a future release. The developers believe that it is unlikely that any modern system requires EGD and so the code is now dead weight. If you rely on EGD support, you should contact the developers by email or GitHub ASAP. - + * Changes in DLIES: Previously the input to the KDF was the concatenation of the (ephemeral) public key and the secret value derived by the key agreement operation. Now the input is only the secret value obtained @@ -33,7 +37,6 @@ Version 1.11.31, Not Yet Released Furthermore the order of the output was changed from {public key, tag, ciphertext} to {public key, ciphertext, tag}. Both modes are compatible with bouncycastle. - * Fix a bug in ANSI X9.23 padding mode, which returned one byte more than the given block size (GH #529). |