diff options
| author | Werner Koch <wk@gnupg.org> | 2022-02-01 21:19:25 +0100 |
|---|---|---|
| committer | Werner Koch <wk@gnupg.org> | 2022-02-01 21:19:25 +0100 |
| commit | e4ab2147f3e236f7be95f9709ce09193b2ca5c1a (patch) | |
| tree | a8ed9b5b6db181d00df9f92d9ba4eef4f611abe5 | |
| parent | f33510d93b1c39574c53935d4df82456c4ab3ea5 (diff) | |
| download | libgcrypt-e4ab2147f3e236f7be95f9709ce09193b2ca5c1a.tar.gz | |
Release 1.10.0libgcrypt-1.10.0
| -rw-r--r-- | Makefile.am | 2 | ||||
| -rw-r--r-- | NEWS | 70 |
2 files changed, 61 insertions, 11 deletions
diff --git a/Makefile.am b/Makefile.am index 6a76515e..77355d1a 100644 --- a/Makefile.am +++ b/Makefile.am @@ -124,7 +124,7 @@ release: sign-release: +(set -e; \ - cd dist; \ + test $$(pwd | sed 's,.*/,,') = dist || cd dist; \ x=$$(grep '^RELEASE_ARCHIVE=' $$HOME/.gnupg-autogen.rc|cut -d= -f2);\ if [ -z "$$x" ]; then \ echo "error: RELEASE_ARCHIVE missing in ~/.gnupg-autogen.rc">&2; \ @@ -1,34 +1,84 @@ -Noteworthy changes in version 1.10.0 (unreleased) [C24/A4/R0] ------------------------------------------------- +Noteworthy changes in version 1.10.0 (2022-02-01) [C24/A4/R0] +------------------------------------------------- * New and extended interfaces: + - New control codes to check for FIPS 140-3 approved algorithms. + + - New control code to switch into non-FIPS mode. + + - New cipher modes SIV and GCM-SIV as specified by RFC-5297. + + - Extended cipher mode AESWRAP with padding as specified by + RFC-5649. [T5752] + + - New set of KDF functions. + + - New KDF modes Argon2 and Balloon. + + - New functions for combining hashing and signing/verification. [T4894] * Performance: - - A lot of improvements. + - Improved support for PowerPC architectures. + + - Improved ECC performance on zSeries/s390x by using accelerated + scalar multiplication. + - Many more assembler performance improvements for several + architectures. * Bug fixes: - Fix Elgamal encryption for other implementations. - [#5328,CVE-2021-40528] + [R5328,CVE-2021-40528] - - Fix alignment problem on macOS. [#5440] + - Fix alignment problem on macOS. [T5440] - - Check the input length of the point in ECDH. [#5423] + - Check the input length of the point in ECDH. [T5423] - - Fix an abort in gcry_pk_get_param for "Curve25519". [#5490] + - Fix an abort in gcry_pk_get_param for "Curve25519". [T5490] * Other features: + - The control code GCRYCTL_SET_ENFORCED_FIPS_FLAG is ignored + because it is useless with the FIPS 140-3 related changes. - * Interface changes relative to the 1.10.0 release: - ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ + - Update of the jitter entropy RNG code. [T5523] + - Simplification of the entropy gatherer when using the getentropy + system call. - Release-info: https://dev.gnupg.org/T5691 + * Interface changes relative to the 1.10.0 release: + ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ + GCRYCTL_SET_DECRYPTION_TAG NEW control code. + GCRYCTL_FIPS_SERVICE_INDICATOR_CIPHER NEW control code. + GCRYCTL_FIPS_SERVICE_INDICATOR_KDF NEW control code. + GCRYCTL_NO_FIPS_MODE = 83 NEW control code. + GCRY_CIPHER_MODE_SIV NEW mode. + GCRY_CIPHER_MODE_GCM_SIV NEW mode. + GCRY_CIPHER_EXTENDED NEW flag. + GCRY_SIV_BLOCK_LEN NEW macro. + gcry_cipher_set_decryption_tag NEW macro. + GCRY_KDF_ARGON2 NEW constant. + GCRY_KDF_BALLOON NEW constant. + GCRY_KDF_ARGON2D NEW constant. + GCRY_KDF_ARGON2I NEW constant. + GCRY_KDF_ARGON2ID NEW constant. + gcry_kdf_hd_t NEW type. + gcry_kdf_job_fn_t NEW type. + gcry_kdf_dispatch_job_fn_t NEW type. + gcry_kdf_wait_all_jobs_fn_t NEW type. + struct gcry_kdf_thread_ops NEW struct. + gcry_kdf_open NEW function. + gcry_kdf_compute NEW function. + gcry_kdf_final NEW function. + gcry_kdf_close NEW function. + gcry_pk_hash_sign NEW function. + gcry_pk_hash_verify NEW function. + gcry_pk_random_override_new NEW function. + Release-info: https://dev.gnupg.org/T5691 Release dates of 1.9.x versions: ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ |