aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorJack Lloyd <[email protected]>2018-07-01 08:27:18 -0400
committerJack Lloyd <[email protected]>2018-07-01 08:27:18 -0400
commitc8af0dc207e798ef3d918a94601fc73ffae963c5 (patch)
tree49b07920fc18f1f847163b91b0b5ea878314f599
parent62c9bf4d367026a53ee2bdcd4a87f2358533d2e5 (diff)
Update news [ci skip]
-rw-r--r--news.rst62
1 files changed, 42 insertions, 20 deletions
diff --git a/news.rst b/news.rst
index 4aa2ee65c..817748a41 100644
--- a/news.rst
+++ b/news.rst
@@ -9,21 +9,29 @@ Version 2.7.0, Not Yet Released
* Avoid a side channel in RSA key generation due to use of a non-constant time
gcd algorithm. (GH #1542 #1556)
-* Optimize prime generation, especially improving RSA key generation.
- (GH #1542)
+* Optimize prime generation, especially improving RSA key generation. (GH #1542)
-* Make Karatsuba multiplication and Montgomery field operations const time (GH #1606)
+* Make Karatsuba multiplication, Montgomery field operations, Barrett reduction
+ and Montgomery exponentiation const time (GH #1540 #1606 #1609 #1610)
-* Optimizations for elliptic curve operations (GH #1534 #1531 #1546 #1547 #1550)
+* Optimizations for elliptic curve operations especially improving reductions
+ and inversions modulo NIST primes (GH #1534 #1538 #1545 #1546 #1547 #1550)
-* Add 24 word wide Comba multiplication, improving 3072-bit RSA and DH by
- about 25%. (GH #1564)
+* Add 24 word wide Comba multiplication, improving 3072-bit RSA and DH by ~25%.
+ (GH #1564)
+
+* Unroll Montgomery reduction for specific sizes (GH #1603)
* Improved performance of signature verification in ECGDSA, ECKCDSA,
SM2 and GOST by 10-15%.
* XMSS optimizations (GH #1583 #1585)
+* Fix an error that meant XMSS would only sign half as many signatures as is
+ allowed (GH #1582)
+
+* Add support for base32 encoding/decoding (GH #1541)
+
* Add BMI2 optimized version of SHA-256, 40% faster on Skylake (GH #1584)
* Allow the year to be up to 2200 in ASN.1 time objects. Previously this
@@ -33,40 +41,54 @@ Version 2.7.0, Not Yet Released
* Add support for using Scrypt for private key encryption (GH #1574)
-* Optimizations for DES/3DES, approx 50% faster when used in certain
- modes such as CBC decrypt or CTR.
+* Optimizations for DES/3DES, approx 50% faster when used in certain modes such
+ as CBC decrypt or CTR.
* XMSS signature verification did not check that the signature was of
the expected length which could lead to a crash. (GH #1537)
+* The bcrypt variants 2b and 2y are now supported.
+
+* Support for 192-bit Suite B TLS profile is now implemented, as the 128-bit
+ Suite B is since 2015 not allowed anymore.
+
+* Previously botan allowed GCM to be used with an empty nonce, which is not
+ allowed by the specification. Now such nonces are rejected.
+
+* Avoid problems on Windows when compiling in Unicode mode (GH #1615 #1616)
+
* Previously for ASN.1 encoded signatures (eg ECDSA) Botan would accept any
valid BER encoding. Now only the single valid DER encoding is accepted.
* Correct an error that could in rare cases cause an internal error exception
when doing computations with the P-224 curve.
-* Reduce allocations/copies during BER decoding (GH #1600)
+* Optimizations to reduce allocations/copies during DER encoding and BER
+ decoding (GH #1571 #1572 #1600)
+
+* Botan generates X.509 subject key IDs by hashing the public key with whatever
+ hash function is being used to sign the certificate. However especially for
+ SHA-512 this caused SKIDs that were far longer than necessary. Now all SKIDs
+ are truncated to 192 bits.
-* Botan generates X.509 subject key IDs by hashing the public key with
- whatever hash function is being used to sign the certificate. However
- especially for SHA-512 this caused SKIDs that were far longer than
- necessary. Now all SKIDs are truncated to 192 bits.
+* In the test suite use ``mkstemp`` to create temporary files instead of
+ creating them in the current working directory. (GH #1533 #1530)
-* In the test suite use ``mkstemp`` to create temporary files instead
- of creating them in the current working directory. (GH #1533 #1530)
+* It is now possible to safely override ``CXX`` when invoking make in addition
+ to when ``configure.py`` is run. (GH #1579)
+
+* OIDs for Camellia and SM4 in CBC and GCM mode are now defined, making it
+ possible to use this algorithms for private key encryption.
* Avoid creating symlinks to the shared object on OpenBSD (#1535)
* The ``factor`` command runs much faster on larger inputs now.
-* Support for Windows Phone/UWP was deprecated starting in 2.5. This
- deprecation has been reversed as it seems UWP is still actively used.
+* Support for Windows Phone/UWP was deprecated starting in 2.5. This deprecation
+ has been reversed as it seems UWP is still actively used. (GH #1586 #1587)
* Support for Visual C++ 2013 is deprecated, and will be removed in Jan 2019.
-* Implement Base32 encoding with template function to prepare
- refactoring of Base64. (GH #1541)
-
* Added support for GCC's --sysroot option to configure.py for cross-compiling.
Version 2.6.0, 2018-04-10