Add IETF standard ChaCha20Poly1305 ciphersuites to TLS

author: Jack Lloyd <[email protected]> 2016-03-23 17:02:55 -0400
committer: Jack Lloyd <[email protected]> 2016-03-23 17:02:55 -0400
commit: 858cf5c82260e45e5bf51ff17b63f493d8295356 (patch)
tree: 3186029f089ffdb3e1c9e0ac004018d0953ff5e8 /doc
parent: 646ddaef38845a7ce33e4dcc7a02500a674c7033 (diff)
2 files changed, 12 insertions, 1 deletions
diff --git a/doc/news.rst b/doc/news.rst
index e7a62b0c2..80b0dfe5a 100644
--- a/doc/news.rst
+++ b/doc/news.rst
@@ -1,6 +1,18 @@
 Release Notes
 ========================================
 
+Version 1.11.30, Not Yet Released
+^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
+
+* Add IETF versions of the ChaCha20Poly1305 TLS ciphersuites from
+  draft-ietf-tls-chacha20-poly1305-04. The previously implemented
+  (non-standard) ChaCha20Poly1305 ciphersuites from
+  draft-agl-tls-chacha20poly1305 remain but are deprecated.
+
+* A bug in the IETF version of ChaCha20Poly1305 (with 96 bit nonces)
+  caused incorrect computation when the plaintext or AAD was exactly
+  a multiple of 16 bytes.
+
 Version 1.11.29, 2016-03-20
 ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
 
diff --git a/doc/todo.rst b/doc/todo.rst
index 0045b18be..dfab3cdf9 100644
--- a/doc/todo.rst
+++ b/doc/todo.rst
@@ -17,7 +17,6 @@ TLS
 * Make DTLS support optional at build time
 * Make TLS v1.0 and v1.1 optional at build time
 * Curve25519 key exchange
-* IETF standard ChaCha20Poly1305
 * TLS OCSP stapling (RFC 6066)
 * Encrypt-then-MAC extension (RFC 7366)
 * Authentication using TOFU (sqlite3 storage)
author	Jack Lloyd <[email protected]>	2016-03-23 17:02:55 -0400
committer	Jack Lloyd <[email protected]>	2016-03-23 17:02:55 -0400
commit	858cf5c82260e45e5bf51ff17b63f493d8295356 (patch)
tree	3186029f089ffdb3e1c9e0ac004018d0953ff5e8 /doc
parent	646ddaef38845a7ce33e4dcc7a02500a674c7033 (diff)