This is an attempt at defining a development target for Nettle-3.3, inspired by similar pages for recent GMP releases. [Last updated 2016-09-19]
This really ought to be done before release
Try to get this done before release
Done!
Leave for some later release!
Add larger "safe" curves, e.g., M-383, curve41417, curve448 and E-521.
Add functions for converting ECC points to and from ANSI x9.62.
Use side-channel silent mpz_powm_sec for RSA and DSA.
Side-channel silent memeql_sec.
Assembly optimizations for ARMv8 (64-bit).
Further optimizations of curve25519 and EdDSA, in particular, more efficient point addition.
Use GMP-5 functions unconditionally.
Use more functions from GMP-6 and later, when available: mpn_sec_add_1, mpn_sec_tabselect, mpn_sec_invert, mpn_cnd_swap, ...
Document memeql_sec.
Update AX_CREATE_STDINT_H to the latest version.
Since xenofarm isn't up and running, do some manual testing:
These are some other changes under consideration.
For Merkle-Damgaard hash functions, separate the state and the buffering. E.g., when using them for HMAC keyed "inner" and "outer" states, we now get three buffers but we only need one.
Reorganize private key operations. Need to support RSA with and without blinding, and DSA according to spec and some deterministic variant (like putty or RFC6979), and possibly also smartcard versions where the private key is not available to the library. And without an explosion of the number of functions.